Re: MAC OS X connection to FreeBSD?
- Original Message - From: Lonnie Cumberland [EMAIL PROTECTED] To: Garrett Cooper [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Monday, November 06, 2006 3:48 AM Subject: Re: MAC OS X connection to FreeBSD? Thanks everyone for the replay to my post as it did finally occur to me that perhaps this question had been asked on the mailing list, but unfortunately it occurred to me after I sent it. So, basically the Apple team took FreeBSD and the CM micro-kernel, combined them, made some improvements and added some additional code and then used it all as the MAC OS X core (without the GUI of course)? No, they used it all as the Darwin core. Then they took Darwin and added their own GUI (used to be called Aqua) and that is MacOSX. Bear in mind that the MacOS X gui does not translate directly into UNIX. For example, you can load MacOS System 7 files with a separate resource and data fork onto MacOSX. The MacOS X gui handles a lot of this kind of stuff. Apple also doesen't use the UNIX security model. As near as I can tell their core security model is an ACL model not a user/group model. Once again this is something that's handled elsewhere. With this being said, then does anyone have any experience with the stability and performance? My guess is that if it is really based upon FreeBSD then the performance should be pretty good from my readings about FreeBSD compared to other operating systems. Mac OS X is easily more stable than FreeBSD simply because it can only be run on specific hardware that Apple sells. As a result the developers always know exactly what their enviornment is going to be like. As for performance, what performance metric are you looking at? The biggest problem with MacOS X is that a lot of UNIX software that runs on FreeBSD and such, is not ported to MacOSX, and it's very difficult to compile on MacOSX. Ted Thanks again to everyone, Cheers, Lonnie Garrett Cooper wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Lorin Lund wrote: Lonnie Cumberland wrote: Greetings All, Being a long time Linux user and now looking into moving over to FreeBSD, I decided to so some research on the web to try and get a better idea as to the strengths and weaknesses as compared to other operating systems like Linux (Fedora, Gentoo, etc..), OpenBSD, NetBSD, and Opensolaris. From what I have found, FreeBSD seems to be at the very top in almost every way. In my Internet travels, I came across a site that has this MAC OS X ( which I guess is called Darwin?) at: http://developer.apple.com/opensource/index.html and have noticed that they seem to have built the MAC OS X from a core of FreeBSD 5.x. Do I read this correctly? Also, what are the differences between MAC OS X and Darwin? I'm pretty sure that Darwin does not include the MAC gui. I believe that the guis used on Darwin are basically the same as found on *BSD and Linux - KDE, Gnome, ... Darwin is the core to the OS; it doesn't contain a GUI, unless installed from ports. Quartz is the GUI platform for OSX. - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFTr7s6CkrZkzMC68RAhAmAJ97ceqgoCvP8vZAh1IFq1qQyt7trgCfXe+w 8SWtLI36Fbx7mFyMGbbs7W8= =EgRZ -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Thanks and have a good day, Lonnie T. Cumberland OutStep Technologies Incorporated Tel: 866-425-7010 Email: [EMAIL PROTECTED] [EMAIL PROTECTED] Recommended sites: http://www.peoplesquest.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problems with sr driver and Wanic 400
- Original Message - From: John L [EMAIL PROTECTED] To: Ted Mittelstaedt [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Sunday, November 12, 2006 7:26 PM Subject: Re: Problems with sr driver and Wanic 400 What I found works is freebsd 4.x, and a Pentium 2 350-400Mhz this was using risecom n/2 cards. FreeBSD 6.1 doesen't work at any speed in this combo, it loses packets. Phoo. Does the pf or ipfw/altq stuff work on 4.x? Yes, but I don't know if it has all the features you want. I'm currently runing an ISA n/2 in an old BSD/OS box which works fine except that it can't do priority queueing, and I have some voip phones that would benefit. With Cisco 1601's selling on the used market for $25 or so, there's little interest among the developers in fixing this. Also the wanic 4xx is no longer in production, another disincentive. Hmmn. I think I have a Wanic 500 around that I bought on ebay. Any support for those? I've got a driver for this card that I was sent by Imagestream, they got it from one of their developer/customers. It's for something like FreeBSD 4.9 or 4.3, I can't remember which. It will not compile unmodified on FreeBSD 4.11 Supposedly the programming docs for the chipset used on the WanIC 500 are only available under NDA, so without clear direction from Imagestream the driver would probably not be able to be distributed publically. I never signed an NDA, though. The best bet for current support for these cards is to use Linux, you will get plenty of support from Imagestream, then. Unfortunately this is a market where the few manufacturers of synchronous serial port chipsets - Hitachi, etc. - only have a handful of router vendors (like Cisco, etc.) that regularly buy these chipsets. The router vendors are faced with a shrinking market for these chips since more people are going to DSL and such rather than T1s and they don't want to see an upstart competitor take away business, so all of them are pressuring the chipset manufacturers to be very sparing on providing documentation to anyone else. Ted Or should I just make my BSD box ether to ether and sit a Cisco on top of it? Tnx. R's, John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Unable to compile Firefox 2 from ports
Hello I tried to compile firefox 2 from ports ( mirrored every day ) and I get the following error : any idea welcome , thank you :-) c++ -I/usr/X11R6/include -I/usr/X11R6/include -I/usr/X11R6/include -fno-rtti -fno-exceptions -Wall -Wconversion - Wpointer-arith -Wcast-align -Woverloaded-virtual -Wsynth -Wno-ctor-dtor-privacy -Wno-non-virtual-dtor -Wno-long-lon g -O2 -fno-strict-aliasing -pipe -O2 -fno-strict-aliasing -O2 -fshort-wchar -pipe -DNDEBUG -DTRIMMED -O2 -fPIC -sh ared -Wl,-z,defs -Wl,-h,libgtkxtbin.so -o libgtkxtbin.so gtk2xtbin.o-L/usr/X11R6/lib -Wl,-rpath,/usr/local/lib /firefox -L/usr/X11R6/lib -lgtk-x11-2.0 -L/usr/X11R6/lib -lXt -lX11 -Wl,-Bsymbolic -lc -lm -pthread -L/usr/l ocal/lib -liconv gtk2xtbin.o(.text+0x13): In function `xt_event_prepare': : undefined reference to `gdk_threads_lock' gtk2xtbin.o(.text+0x2f): In function `xt_event_prepare': : undefined reference to `gdk_threads_unlock' gtk2xtbin.o(.text+0x5c): In function `xt_event_prepare': : undefined reference to `gdk_threads_unlock' gtk2xtbin.o(.text+0x8b): In function `xt_event_check': : undefined reference to `gdk_threads_lock' gtk2xtbin.o(.text+0xa0): In function `xt_event_check': : undefined reference to `gdk_threads_unlock' gtk2xtbin.o(.text+0xca): In function `xt_event_check': : undefined reference to `gdk_threads_unlock' gtk2xtbin.o(.text+0x110): In function `xt_event_dispatch': : undefined reference to `gdk_threads_lock' gtk2xtbin.o(.text+0x14f): In function `xt_event_dispatch': : undefined reference to `gdk_threads_unlock' gtk2xtbin.o(.text+0x254): In function `gtk_xtbin_class_init': : undefined reference to `g_type_check_class_cast' gtk2xtbin.o(.text+0x274): In function `gtk_xtbin_class_init': : undefined reference to `g_type_check_class_cast' gtk2xtbin.o(.text+0x2e2): In function `gtk_xtbin_set_position': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x30a): In function `gtk_xtbin_set_position': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x315): In function `gtk_xtbin_set_position': : undefined reference to `gdk_window_move' gtk2xtbin.o(.text+0x348): In function `gtk_xtbin_resize': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x409): In function `gtk_xtbin_new': : undefined reference to `gdk_drawable_get_visual' gtk2xtbin.o(.text+0x411): In function `gtk_xtbin_new': : undefined reference to `gdk_x11_visual_get_xvisual' gtk2xtbin.o(.text+0x41d): In function `gtk_xtbin_new': : undefined reference to `gdk_drawable_get_colormap' gtk2xtbin.o(.text+0x425): In function `gtk_xtbin_new': : undefined reference to `gdk_x11_colormap_get_xcolormap' gtk2xtbin.o(.text+0x431): In function `gtk_xtbin_new': : undefined reference to `gdk_drawable_get_visual' gtk2xtbin.o(.text+0x4d1): In function `gtk_xtbin_new': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x4e8): In function `gtk_xtbin_new': : undefined reference to `gdk_window_get_user_data' gtk2xtbin.o(.text+0x507): In function `gtk_xtbin_new': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x521): In function `gtk_xtbin_new': : undefined reference to `g_source_new' gtk2xtbin.o(.text+0x537): In function `gtk_xtbin_new': : undefined reference to `g_source_set_priority' gtk2xtbin.o(.text+0x541): In function `gtk_xtbin_new': : undefined reference to `g_source_set_can_recurse' gtk2xtbin.o(.text+0x54b): In function `gtk_xtbin_new': : undefined reference to `g_source_attach' gtk2xtbin.o(.text+0x588): In function `gtk_xtbin_new': : undefined reference to `g_main_context_add_poll' gtk2xtbin.o(.text+0x5ec): In function `gtk_xtbin_new': : undefined reference to `gdk_get_display' gtk2xtbin.o(.text+0x629): In function `gtk_xtbin_new': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x63f): In function `gtk_xtbin_new': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x66d): In function `gtk_xtbin_new': : undefined reference to `g_free' gtk2xtbin.o(.text+0x69a): In function `gtk_xtbin_unrealize': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x6ae): In function `gtk_xtbin_unrealize': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x6c0): In function `gtk_xtbin_unrealize': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x6d5): In function `gtk_xtbin_unrealize': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x6f6): In function `gtk_xtbin_unrealize': : undefined reference to `g_type_check_class_cast' gtk2xtbin.o(.text+0x75e): In function `gtk_xtbin_unrealize': : undefined reference to `g_type_check_class_cast' gtk2xtbin.o(.text+0x7ae): In function `gtk_xtbin_destroy': : undefined reference to `g_type_check_instance_is_a' gtk2xtbin.o(.text+0x7cc): In function `gtk_xtbin_destroy': : undefined reference to `g_type_check_instance_cast' gtk2xtbin.o(.text+0x814): In function `gtk_xtbin_destroy': :
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Leo L. Schwab wrote: I recently installed FreeBSD 6.1 on my gateway. It replaced an installation of FreeBSD 4.6.8 (fresh install, not an upgrade) on which I had disabled the SSH server. Since all the bugs in SSH are fixed now ( :-) ), I thought I'd leave the server on, and am somewhat dismayed to discover that I now get occasional brute-force/dictionary attacks on the port. A little Googling revealed a couple of potentially useful tools: 'sshit' and 'bruteblock', both of which notice repeated login attempts from a given IP address and blackhole it in the firewall. I first tried 'sshit', but after a couple days, I noticed in my daily reports that I was still getting lengthy bruteforce attempts, suggesting the 'sshit' was not working. So I uninstalled 'sshit' and installed 'bruteblock'. But again a couple days later, the logs showed lengthy bruteforce attempts going unblocked. The relevant lines from my /etc/syslog.conf file are: auth.info;authpriv.info /var/log/auth.log auth.info;authpriv.info | exec /usr/local/sbin/bruteblock -f /usr/local/etc/bruteblock/ssh.conf Any hints as to what I might be doing wrong? Thanks, Schwab ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I had the same 'problem'. As said it's not realy a problem since FreeBSD will hold just fine if you don't have any rather stupid user + pass combinations. ( test test or something like that ) Allthough I thought it was annoying that my intire log was clouded with those brute force attacks so I just set sshd to listen at an other port then 22. Maybe that's a acceptable solusion for you ? You can change the ssd port in /etc/ssh/sshd_config Good luck, -- -Frank Staals ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: bpf kernel module
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Vlad GURDIGA wrote: On 12/11/06, Vlad GURDIGA [EMAIL PROTECTED] wrote: On 12/11/06, Garrett Cooper [EMAIL PROTECTED] wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Vlad GURDIGA wrote: Hello, I'm trying to keep very close touch with 6.1_STABLE cvsupping sources once a week or even more often. I'm thinking of removing as much as possible devices from the kernel loading them from /boot/loader.conf instead, so I could rebuild and install them without a whole kernel/world rebuild and reboot when sources change. I'm not sure this is a correct way, any piece of advice regarding this would be highly appreciated. :) So, I've successfully done that with sound and network card drivers, but did not succeed with removing bpf from the kernel. Booting a kernel with no bpf support, and with ng_bpf_load=YES in my loader.conf, the pflogd fails to start with this error: Nov 11 20:22:33 uxterm pflogd[10251]: Failed to initialize: (no devices found) /dev/bpf0: No such file or directory Nov 11 20:22:33 uxterm pflogd[10251]: Exiting, init failure And, tcpdump also fails saying that no suitable device found. Of course there is no /dev/bpf0. Is there any way to have the bpf0 device without booting a kernel with bpf device included? Berkeley packet filter (bpf) is required for a lot of net related things, such as dhcpcd, tcpdump (as you've discovered), amongst many other things. Don't know if you want to go disabling that... I do not intend to disable it, just have it apart, so I could update it easyer. So, is it possible to have bpf apart from kernel? Not sure if it's possible or not, but someone is bound to know on one of the freebsd lists.. - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFWDwF6CkrZkzMC68RAmaJAJ43une+fFzquDmpVUkxCRwPvnv2gQCZARJr BqgPcyUDJyA1Uk4dlaXxJIs= =TU5H -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: image based stock spam
On 11/13/06, Brian [EMAIL PROTECTED] wrote: ugh, I'm running a 6.2 prerelease. The package doesn't exist, so I build the port, or try to. The tiff port wont build, so I pkg_add that. It gets a lil further along, the pkgconfig port won't build, I pkg_add that. Then, a little further here comes an x windows install, a 31 mb download. I don't want that on my server. I'll live with it for now till something better comes along. I succeeded in getting FuzzyOCR installed on several 6.1 systems before it appeared in ports, and documented my method here: http://jamesoff.net/site/projects/freebsd/fuzzyocr-for-spamassassin-on-freebsd/ Note that it will still pull in Xorg for some libraries, but doesn't actually install X itself (assuming you remember to declare WITHOUT_X11). I note that the libungif port still doesn't appear to have the patch suggested by FuzzyOCR's author to prevent segfaults. I can vouch for FuzzyOCR's effectiveness, as the image-based spam was about the only stuff still getting through my SpamAssassin. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: detach/reattach remote GUI applications?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Luke Dean wrote: On Sun, 12 Nov 2006, Eric Schuele wrote: On 11/12/06 18:37, Luke Dean wrote: I run a headless server and I've become fond of using the screen utility with SSH to allow me to launch a text-based application, detach from it, and then reattach to it later to see how it's going. I'm wondering if there's a tool I can use that would allow me to do that with GUI applications. Could this be of use? http://www.tightvnc.com/ Yes! That's exactly the kind of thing I'm looking for. I used VNC with Windows years ago and it never occurred to me that it might be available on other platforms. Thanks for putting me on the right track. Luke There is also a VNC server solution that ties into running X displays (called x11vnc under Gentoo Linux; not sure if it exists in the ports tree though), and an X11 solution that has been customized for high transfer rates referred to as either nx or nomachinex. I found standard VNC to be annoying since it requires a running X server instance, which is a waste depending on what I have running, and both solutions I mentioned earlier run well for many people (tried x11vnc but not nomachinex). - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFWD306CkrZkzMC68RAkUGAJ42lX30GEkymcGnTvr8c7f4n/epFgCeIWah uoDtlen53GF2t6N/VZ3e4uk= =HhzP -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote: I had the same 'problem'. As said it's not realy a problem since FreeBSD will hold just fine if you don't have any rather stupid user + pass combinations. ( test test or something like that ) Allthough I thought it was annoying that my intire log was clouded with those brute force attacks so I just set sshd to listen at an other port then 22. Maybe that's a acceptable solusion for you ? You can change the ssd port in /etc/ssh/sshd_config Security through obscurity is a bad idea. Rather, use SSH key based authentication exclusively. Turn off all of the password stuff in sshd_config. Laugh at the poor fools trying to break in. -- Gerard Mail from '@gmail' is rejected and/or discarded here. Don't waste your time! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
CARP: trouble or feature
Hello ALL! I have a problem with CARP on FreeBSD 6.2 in the following scheme: +--+ +---++-+ | A| | B|| C | | vlan10 |--//--| vlan20vlan10 |---//---| vlan10 | +--+ +---++-+ vlan10 10.10.10.2/26 vlan20 10.10.10.1/26 gateway 10.10.10.1 vlan10 10.10.9.1/26vlan10 10.10.9.2/26 carp10 10.10.9.3/26carp10 10.10.9.3/26 advskew 0 advskew 1 carp11 10.10.9.4/26carp11 10.10.9.4/26 advskew 1 advskew 0 i.e. server B MASTER for 10.10.9.3/26, BACKUP for 10.10.9.4/26 server C BACKUP for 10.10.9.3/26, MASTER for 10.10.9.4/26 But if to send icmp request from server A - to server C on ip 10.10.9.4, server B replay from BACKUP iface carp11 !?!? This is trouble or feature of realization ? - serverB ifconfig carp* carp10: flags=49UP,LOOPBACK,RUNNING mtu 1500 inet 10.10.9.3 netmask 0xffc0 carp: MASTER vhid 100 advbase 1 advskew 0 carp11: flags=49UP,LOOPBACK,RUNNING mtu 1500 inet 10.10.9.4 netmask 0xffc0 carp: BACKUP vhid 101 advbase 1 advskew 1 serverC ifconfig carp* carp10: flags=49UP,LOOPBACK,RUNNING mtu 1500 inet 10.10.9.3 netmask 0xffc0 carp: BACKUP vhid 100 advbase 1 advskew 1 carp11: flags=49UP,LOOPBACK,RUNNING mtu 1500 inet 10.10.9.4 netmask 0xffc0 carp: MASTER vhid 101 advbase 1 advskew 0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
choosing the cputype for core 2 duo?
Hi, So I am building an allaround server for an average business, 30 or so workstations and some misc machines. I was presented with a machine, which in my mind is bit of an overkill, but if they are willing to spend then I think I should give them the maximum I can squeeze out from that PC. So the „server” has a conroe core 2 duo processor. What would be the best choice in make.conf as a CPUTYPE paramater for this processor (other make.conf related recommendations also welcome). I have had only experience installing freebsd on a bit older amd machines where the choise was obvious. Thank you all in advance, Oliver ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Leo L. Schwab writes: A little Googling revealed a couple of potentially useful tools: 'sshit' and 'bruteblock', both of which notice repeated login attempts from a given IP address and blackhole it in the firewall. There's also denyhosts. I found the configuration annoying (need to correctly modify too many files) but once it's running it works for me. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Hello ALL! You just must use the utility 'DenyHosts', and all Your problems will be solved! DenyHosts the remarkable utility! It's protects only service ssh, and anything more. It is easy in adjustments and very effective in work. You can find this utility in a collection of ports. http://denyhosts.net/ Best regards, Masyukevich Maksim SPIRIT DSP, www.spiritDSP.com/voip, Embedded Voice Experience SeeStorm, www.SeeStorm.com, Synthetic Video Conferencing TeamSpirit - Award-Winning Multi-Point Voice Conferencing Engine -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Leo L. Schwab Sent: Monday, November 13, 2006 9:05 AM To: freebsd-questions@freebsd.org Subject: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong? I recently installed FreeBSD 6.1 on my gateway. It replaced an installation of FreeBSD 4.6.8 (fresh install, not an upgrade) on which I had disabled the SSH server. Since all the bugs in SSH are fixed now ( :-) ), I thought I'd leave the server on, and am somewhat dismayed to discover that I now get occasional brute-force/dictionary attacks on the port. A little Googling revealed a couple of potentially useful tools: 'sshit' and 'bruteblock', both of which notice repeated login attempts from a given IP address and blackhole it in the firewall. I first tried 'sshit', but after a couple days, I noticed in my daily reports that I was still getting lengthy bruteforce attempts, suggesting the 'sshit' was not working. So I uninstalled 'sshit' and installed 'bruteblock'. But again a couple days later, the logs showed lengthy bruteforce attempts going unblocked. The relevant lines from my /etc/syslog.conf file are: auth.info;authpriv.info /var/log/auth.log auth.info;authpriv.info | exec /usr/local/sbin/bruteblock -f /usr/local/etc/bruteblock/ssh.conf Any hints as to what I might be doing wrong? Thanks, Schwab ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
changing swap size
Hello, Following the advice about periodic freezes, I am going to add some RAM to my system. However, currently my swap size is 512MB. If I increase RAM to, say, 1GB, would I need to change the swap size to 2GB? If so, is it a safe process (I assume this can be done using FIPS)? Would I need to boot first in single-user mode? Any other thoughts? BTW - is there any easy way to make sure how much RAM is currently installed other than looking into the hardware? Top: Mem: 146M Active, 23M Inact, 98M Wired, 15M Cache, 41M Buf, 22M Free Which would seem to suggest I have 345 MB RAM. But from what I recall this machine uses 320 MB RAM. Thanks! -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: image based stock spam
In response to Brian [EMAIL PROTECTED]: Antony Mawer wrote: On 13/11/2006 12:00 PM, Brian wrote: Looks like the preferred approach many folks re the above problem is fuzzyocr? Since there isn't a port for that, is there another FreeBSD solution worth mentioning here? http://www.freshports.org/mail/p5-FuzzyOcr/ ugh, I'm running a 6.2 prerelease. The package doesn't exist, so I build the port, or try to. The tiff port wont build, so I pkg_add that. It gets a lil further along, the pkgconfig port won't build, I pkg_add that. If you don't report these to the ports team, they're unlikely to get fixed. Then, a little further here comes an x windows install, a 31 mb download. I don't want that on my server. Put NO_GUI=yes and NO_X11=yes in /etc/make.conf -- Bill Moran Collaborative Fusion Inc. [EMAIL PROTECTED] Phone: 412-422-3463x4023 IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Detailed questions about kernel operation (was Re: 'help')
In response to shin_ta [EMAIL PROTECTED]: I have some question about the Design and the Implementation of the FreeBSD Operating System You're questions are a too in-depth to easily answer on a mailing list. I suggest you pick up a copy of The Design and Implementation of FreeBSD, which covers these in detail. And I suggest using a more descriptive subject line. -- Bill Moran Collaborative Fusion Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 'help'
On Mon, 13 Nov 2006 11:30:14 +0800 (CST) shin_ta [EMAIL PROTECTED] wrote: I have some question about the Design and the Implementation of the FreeBSD Operating System I somehow have the feeling someone (you) is trying to get someone else (i.e., the list) to prepare the assignement for you? ... hopefully I'm wrong :-)... Anyway, you probably would gain much by reading a cleverly and vey appropriately titled book The Design and Implementation of the FreeBSD Operating System. Good luck, _ {Beto|Norberto|Numard} Meijome With sufficient thrust, pigs fly just fine. However, this is not necessarily a good idea. RFC 1925 (quoting an unnamed source) I speak for myself, not my employer. Contents may be hot. Slippery when wet. Reading disclaimers makes you go blind. Writing them is worse. You have been Warned. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
help
I have some questions about the design and implementation of the FreeBSD operating system 1. FreeBSD used System call, Hardware interrupt, Hardware trap, and Software-initiated trap to entry into the system kernel. What is the detailed operation and why FreeBSD design by this way? 2. In FreeBSD 5.2, interrupt has its own context stack, what are the influences to each aspect of the operating system?(like bottom half of kernel, top half of kernel …) 3. What is the basic function of the signal? Which main data structures are about signal? Which procedures are related in signal? 4. Why signal handler routine design in user-level but not in kernel-level? 5. After the system call completes, the system-call exit code first checks for a posted signal, after checking for posted signals, the system-call exit code checks to see whether any process has a priority higher than that of the currently running one. Why FreeBSD do this check at this time? 6. The ULE scheduler was developed as part of the overhaul of FreeBSD to support SMP. Why the ULE scheduler relatively suitable for the SMP system than 4.4BSD timeshareing scheduler. 7. FreeBSD uses pager to manage the memory. Different memory objects have different pager to deal with. Why FreeBSD designed by this way?___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
Ted, you got a couple of things wrong. Read below for the corrections. On Nov 13, 2006, at 3:28 AM, Ted Mittelstaedt wrote: - Original Message - From: Lonnie Cumberland [EMAIL PROTECTED] To: Garrett Cooper [EMAIL PROTECTED] Cc: freebsd-questions@freebsd.org Sent: Monday, November 06, 2006 3:48 AM Subject: Re: MAC OS X connection to FreeBSD? Thanks everyone for the replay to my post as it did finally occur to me that perhaps this question had been asked on the mailing list, but unfortunately it occurred to me after I sent it. So, basically the Apple team took FreeBSD and the CM micro-kernel, combined them, made some improvements and added some additional code and then used it all as the MAC OS X core (without the GUI of course)? No, they used it all as the Darwin core. Then they took Darwin and added their own GUI (used to be called Aqua) and that is MacOSX. Bear in mind that the MacOS X gui does not translate directly into UNIX. For example, you can load MacOS System 7 files with a separate resource and data fork onto MacOSX. The MacOS X gui handles a lot of this kind of stuff. No, the GUI has very little to do with the ability to run legacy System 9 (and prior) binaries. Some of these older binaries which were never updated to use the newer Carbon libraries run inside a virtual machine called the Blue Box. Many of these older apps that were updated to conform to the new Carbon libraries (primarily Carbon eliminated non-reentrant code and put in setter/getters for global vars) run natively under the darwin kernel. OSX also has a POSIX-compliant API so almost all UNIX software compiles and runs cleanly on OSX (more on this below). Lastly, OSX has the Cocoa API which is what most new OSX software targets. Cocoa is the new name for the old NeXT OpenStep API. So, darwin supports POSIX semantics, the Carbon API, and the Cocoa API. Apple also doesen't use the UNIX security model. As near as I can tell their core security model is an ACL model not a user/group model. Once again this is something that's handled elsewhere. Not quite. GUI applications owned by root with the setuid bit set are properly recognized by the GUI as special and will request password authorization from the user. Many applications can be run from the command line (even if they have GUI components) which will respect the UNIX filesystem permissions. If you go inside an application bundle (a directory containing all code and resources for an application) and change the permissions on the binary to something non-executable, the GUI cannot launch it. As of the latest OSX release (10.4, Tiger) Apple added quite a bit of support for ACL security semantics. This is relatively new. With this being said, then does anyone have any experience with the stability and performance? My guess is that if it is really based upon FreeBSD then the performance should be pretty good from my readings about FreeBSD compared to other operating systems. Mac OS X is easily more stable than FreeBSD simply because it can only be run on specific hardware that Apple sells. As a result the developers always know exactly what their enviornment is going to be like. As for performance, what performance metric are you looking at? While OSX is stable for the reason you cite, I wouldn't say it is MORE stable than FreeBSD 4.x. It probably is as stable or moreso than some of the more recent FreeBSD releases but that seems to be more related to recent poor testing and QA practices than hardware support problems. The biggest problem with MacOS X is that a lot of UNIX software that runs on FreeBSD and such, is not ported to MacOSX, and it's very difficult to compile on MacOSX. This is completely wrong. Take a look at macports [1] (formerly darwinports) for a large repository of UNIX software that compiles very cleanly on OSX. It's nearly 7 years since OSX shipped to the public. In that time, most opensource software was updated to compile cleanly on OSX. The primary changes to allow this were to the configure scripts so they recognize darwin as a base OS. If other patches were necessary, most software maintainers accepted these patches back into their trunk. OSX has excellent support for most UNIX software. cr [1] macports.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: changing swap size
If you have swap section 512 Mb that it is not necessary change anything . Simply add operative memory and all. Best regards, Masyukevich Maksim SPIRIT DSP, www.spiritDSP.com/voip, Embedded Voice Experience SeeStorm, www.SeeStorm.com, Synthetic Video Conferencing TeamSpirit - Award-Winning Multi-Point Voice Conferencing Engine -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Zbigniew Szalbot Sent: Monday, November 13, 2006 4:34 PM To: freebsd-questions@freebsd.org Subject: changing swap size Hello, Following the advice about periodic freezes, I am going to add some RAM to my system. However, currently my swap size is 512MB. If I increase RAM to, say, 1GB, would I need to change the swap size to 2GB? If so, is it a safe process (I assume this can be done using FIPS)? Would I need to boot first in single-user mode? Any other thoughts? BTW - is there any easy way to make sure how much RAM is currently installed other than looking into the hardware? Top: Mem: 146M Active, 23M Inact, 98M Wired, 15M Cache, 41M Buf, 22M Free Which would seem to suggest I have 345 MB RAM. But from what I recall this machine uses 320 MB RAM. Thanks! -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: APC SMART-UPS 750 VA
-Original Message- From: Mark [mailto:[EMAIL PROTECTED] Sent: zondag 12 november 2006 19:31 To: 'freebsd-questions@freebsd.org' Subject: APC SMART-UPS 750 VA Hello, Could someone tell me whether I can use the APC SMART-UPS 750 VA for my FreeBSD 4.11 installation? Anyone? Please? - Mark ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
On 11/13/06, Gerard Seibert [EMAIL PROTECTED] wrote: On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote: I had the same 'problem'. As said it's not realy a problem since FreeBSD will hold just fine if you don't have any rather stupid user + pass combinations. ( test test or something like that ) Allthough I thought it was annoying that my intire log was clouded with those brute force attacks so I just set sshd to listen at an other port then 22. Maybe that's a acceptable solusion for you ? You can change the ssd port in /etc/ssh/sshd_config Security through obscurity is a bad idea. Rather, use SSH key based authentication exclusively. Turn off all of the password stuff in sshd_config. Laugh at the poor fools trying to break in. I second this notion. I had bruteforceblocker running and recently switched to key based auth only. The good news is no one is breaking in. the bad news is that my server is remote and difficult to get physical access to and the only key I uploaded initially was my work PC. Tried to get in from home over the weekend and found that I had locked myself out! doh! Just make sure that you have at least one PC you can get to from anywhere which has a key to get into your server. -- Gerard Mail from '@gmail' is rejected and/or discarded here. Don't waste your time! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- I'm nerdy in the extreme and whiter than sour cream ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
cant login to my server machine(FreeBSD-6.0)
Hey can Any body help me? I have a free BSD box ,due to some power failure its rebooted , but booting failed , The error I got was Trying to mount root from ufs:/dev/ad4s1a Warning : / was not properly dismounted loading configuration files. /etc/rc.conf :9:Synatx error unterminated quoted String .Enter full pathname of shell on Return for /bin/sh: I preseed enter key then I got #prompt . but no login prompt to login to my machine: only getting # more ,tail, vim ,vi no command are working(getting this command is not found)error. when I cat the /etc.rc.conf ther is one line which is not terminated by closing quots But I tried to create the new /etc/rc.conf file by the following method #mount -o rw,remount/ #cat /etc/rc.conf but got error : failed its a read only file . so here I got stuck. how can login to may server(FreeBSD -6.0) is my version can any body solve this problem then I will be very thankful to them. Thanks in advance. Dhanesh. _ Tried the new MSN Messenger? Its cool! Download now. http://messenger.msn.com/Download/Default.aspx?mkt=en-in ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: APC SMART-UPS 750 VA
On Mon, Nov 13, 2006 at 02:20:33PM +, Mark wrote: Could someone tell me whether I can use the APC SMART-UPS 750 VA for my FreeBSD 4.11 installation? Anyone? Please? APC brand SMART-UPS work quite well with 4.x FreeBSD. Assuming you want to monitor the UPS, make sure you have the correct serial cable and pick your monitoring program from ports. I have used apcupsd in a number of 4.x installs. Googling FreeBSD and smartups turns up many interesting, relevent hits :) -- Regards, Doug ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
On Mon, Nov 13, 2006 at 01:28:16AM -0800, Ted Mittelstaedt wrote: No, they used it all as the Darwin core. Then they took Darwin and added their own GUI (used to be called Aqua) and that is MacOSX. X11 also comes on the MacOS X DVD, but is not installed by default. Bear in mind that the MacOS X gui does not translate directly into UNIX. For example, you can load MacOS System 7 files with a separate resource and data fork onto MacOSX. The MacOS X gui handles a lot of this kind of stuff. I lost you there. So what? The classic Mac file format is more advanced than a Unix (or Windows) flat file. The MacOS X Unix view of such files is morphed into a directory of files. The GUI turns such directories into a single application icon which *can* be opened to see what is inside but normally a double-click or open launches the app. Apple also doesen't use the UNIX security model. As near as I can tell their core security model is an ACL model not a user/group model. Once again this is something that's handled elsewhere. Don't know how its done underneath but from a shell and ported applications it looks exactly the same: [EMAIL PROTECTED] {767} uname -a Darwin dot-matrix.local 8.8.0 Darwin Kernel Version 8.8.0: Fri Sep 8 17:18:57 PDT 2006; root:xnu-792.12.6.obj~1/RELEASE_PPC Power Macintosh powerpc [EMAIL PROTECTED] {768} id uid=503(dkelly) gid=501(dkelly) groups=501(dkelly), 81(appserveradm), 79(appserverusr), 80(admin) [EMAIL PROTECTED] {769} who am i dkelly ttyp2Nov 13 08:17 [EMAIL PROTECTED] {770} ls -ld . drwxr-xr-x 33 dkelly dkelly 1122 Nov 1 13:30 . [EMAIL PROTECTED] {771} The biggest problem with MacOS X is that a lot of UNIX software that runs on FreeBSD and such, is not ported to MacOSX, and it's very difficult to compile on MacOSX. Really? Good thing I didn't know compiling was difficult. The other day I wanted a MacOS X version of mkisofs. Copied cdrtools from /usr/ports/distfiles/ off a FreeBSD machine. Built without a complaint in moments. Not terribly thrilled with its default install location of /opt/schily/bin/ but at least its easy to remove. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
BGE driver upgrade from 5.3-RELEASE
I have a running 5.3-RELEASE system that needs a BGE driver upgrade so that packets with VLAN tags aren't stripped. Is there any way to do this without upgrading the entire OS? This feature was just added to the driver a month ago. Thanks, James __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
delete iface tun
Hello. How to remove the interface tunN, creations ppp demon? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: APC SMART-UPS 750 VA
On Mon, Nov 13, 2006 at 02:20:33PM +, Mark wrote: Could someone tell me whether I can use the APC SMART-UPS 750 VA for my FreeBSD 4.11 installation? Anyone? Please? I don't quite understand what FreeBSD has to do with it. Is your hardware 120 VAC 60 Hz compatible? And is the UPS the same? In less time than spent asking others you could build /usr/ports/sysutils/apcupsd/ and see whether it will provide automatic shutdown of your system under UPS control. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: changing swap size
On 11/13/06, Zbigniew Szalbot [EMAIL PROTECTED] wrote: Hello, Following the advice about periodic freezes, I am going to add some RAM to my system. However, currently my swap size is 512MB. If I increase RAM to, say, 1GB, would I need to change the swap size to 2GB? If so, is it a safe process (I assume this can be done using FIPS)? Would I need to boot first in single-user mode? As has already been said, you don't really need to change your swap size unless you're going to be using all of your physical memory and need the additional space. Since it doesn't sound like you're going to be putting any more load on the server, it's unnecessary. However, if you want to do it, you could, without going to single-user mode: 1) create an empty file somewhere. This will make a 1 MB file, adjust bs and count as you need to. # dd if=/dev/zero of=/path/to/some.file bs=1k count=1024 2) create a file based device with mdconfig like this. # mdconfig -a -t vnode -f /path/to/some.file 3) swapon your shiny new md device. Use the md device that was given as output from the above command. # swapon /dev/md0 4) verify that your device is now working as a swap device with # swapinfo -h 5) now you can swapoff your main swap, change it as you need, and swapon it back # swapoff /dev/ad0s1b do something # swapon /dev/ad0s1b 6) now that you new, improved swap is working, you can swapoff your temporary swap, remove the md device, delete the file, and verify that your swap is right # swapoff /dev/md0 # mdconfig -d -u md0 # rm /path/to/some.file # swapinfo -h Any other thoughts? BTW - is there any easy way to make sure how much RAM is currently installed other than looking into the hardware? Top: Mem: 146M Active, 23M Inact, 98M Wired, 15M Cache, 41M Buf, 22M Free Which would seem to suggest I have 345 MB RAM. But from what I recall this machine uses 320 MB RAM. Thanks! -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- I'm nerdy in the extreme and whiter than sour cream ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: detach/reattach remote GUI applications?
On 11/13/06 03:42, Garrett Cooper wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Luke Dean wrote: On Sun, 12 Nov 2006, Eric Schuele wrote: On 11/12/06 18:37, Luke Dean wrote: I run a headless server and I've become fond of using the screen utility with SSH to allow me to launch a text-based application, detach from it, and then reattach to it later to see how it's going. I'm wondering if there's a tool I can use that would allow me to do that with GUI applications. Could this be of use? http://www.tightvnc.com/ Yes! That's exactly the kind of thing I'm looking for. I used VNC with Windows years ago and it never occurred to me that it might be available on other platforms. Thanks for putting me on the right track. Luke There is also a VNC server solution that ties into running X displays (called x11vnc under Gentoo Linux; not sure if it exists in the ports tree though), and an X11 solution that has been customized for high transfer rates referred to as either nx or nomachinex. I found standard VNC to be annoying since it requires a running X server instance, which is a waste depending on what I have running, and both solutions I mentioned earlier run well for many people (tried x11vnc but not nomachinex). - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFWD306CkrZkzMC68RAkUGAJ42lX30GEkymcGnTvr8c7f4n/epFgCeIWah uoDtlen53GF2t6N/VZ3e4uk= =HhzP -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Search ports for vnc... there are a couple in there. x11vnc is one. I thought there were more than I saw this morning. I know there are a handful of projects out there. But maybe only a few ported to FreeBSD. -- Regards, Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IPMI kernel module errors on 6.x
Hi Everyone, I purchased a new Supermicro Superserver SS6015B-T (motherboard is X7DBR-E) about 3 weeks ago with the IPMI module (part called SIMSO) and have had a hard time getting the IPMI functionality to work in RELENG_6. Particularly, when I attempt to 'kldload ipmi' I get the following output in dmesg: ipmi0: IPMI System Interface on isa0 ipmi0: KCS mode found at mem 0xca2 alignment 0x4 on isa ipmi0: KCS: Failed to start write ipmi0: KCS Error retry exhausted ipmi0: KCS: Failed to start write ipmi0: KCS Error retry exhausted ipmi0: KCS: Failed to start write ipmi0: KCS Error retry exhausted ipmi0: Timed out waiting for GET_DEVICE_ID From the dmesg, it appears it's finding the IPMI device, but unable to interact with it. Meanwhile, no device shows up in /dev so ipmitool does not work, either. For reference, here is my uname: FreeBSD exodus 6.2-PRERELEASE FreeBSD 6.2-PRERELEASE #9: Fri Nov 10 10:56:39 PST 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/EXODUS amd64 This is a RELENG_6 build with a CVSUP done just before the compile date of the kernel. The SIMSO IPMI card itself works, I can access it via the web management console, I just can not get the kernel driver to work with it. Any help and/or references would be greatly appreciated. Thanks! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cant login to my server machine(FreeBSD-6.0)
In response to dhaneshk k [EMAIL PROTECTED]: Hey can Any body help me? I have a free BSD box ,due to some power failure its rebooted , but booting failed , The error I got was Trying to mount root from ufs:/dev/ad4s1a Warning : / was not properly dismounted loading configuration files. /etc/rc.conf :9:Synatx error unterminated quoted String .Enter full pathname of shell on Return for /bin/sh: I preseed enter key then I got #prompt . but no login prompt to login to my machine: only getting # You _are_ logged in. If your console is marked secure (which it obviously is, see /etc/ttys) then it doesn't ask for a password when forced to boot to single user mode. The most likely course to correct the problem now, is to do the following: fsck -p mount -a then fix the problem in /etc/rc.conf. -- Bill Moran Collaborative Fusion Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Quoting Andy Greenwood [EMAIL PROTECTED]: On 11/13/06, Gerard Seibert [EMAIL PROTECTED] wrote: On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote: I had the same 'problem'. As said it's not realy a problem since FreeBSD will hold just fine if you don't have any rather stupid user + pass combinations. ( test test or something like that ) Allthough I thought it was annoying that my intire log was clouded with those brute force attacks so I just set sshd to listen at an other port then 22. Maybe that's a acceptable solusion for you ? You can change the ssd port in /etc/ssh/sshd_config Security through obscurity is a bad idea. Rather, use SSH key based authentication exclusively. Turn off all of the password stuff in sshd_config. Laugh at the poor fools trying to break in. I second this notion. I had bruteforceblocker running and recently switched to key based auth only. The good news is no one is breaking in. the bad news is that my server is remote and difficult to get physical access to and the only key I uploaded initially was my work PC. Tried to get in from home over the weekend and found that I had locked myself out! doh! Just make sure that you have at least one PC you can get to from anywhere which has a key to get into your server. If you are using pf. A quick google search give you several differing versions of what I am using on the servers that I maintain. http://www.google.com.mx/search?hl=esq=%2Bmax-src-conn-rate+%2Bpf+brute+forcebtnG=B%C3%BAsqueda+en+Googlemeta= They are all max-src-conn-rate based and use the sysutils/expiretable port to clear the blocked IP's. An example that I haven't read is here: http://johan.fredin.info/openbsd/block_ssh_bruteforce.html I just took one and tweaked it over time and it works great. I only allow 3 login attempts in 30 minutes, so the brute who is trying to force his way in had better be a very good guesser;) I did a bit of restricting in sshd_config also but only remember MaxAuthTries, An unexpected side effect of this is that now I get only one or two attempts a day and before there were multiple, simultaneous attempts 24 horas a day. In my daily security report I see something like todays, everyday. Nov 12 10:22:15 HOME sshd[82578]: Invalid user staff from 203.152.218.209 Nov 12 10:22:22 HOME sshd[83191]: Invalid user sales from 203.152.218.209 Nov 12 10:22:29 HOME sshd[83489]: Invalid user recruit from 203.152.218.209 Nov 12 12:47:10 HOME sshd[18369]: Invalid user staff from 24.11.169.203 Nov 12 12:47:12 HOME sshd[18421]: Invalid user sales from 24.11.169.203 Nov 12 12:47:15 HOME sshd[18425]: Invalid user recruit from 24.11.169.203 Before there were pages and pages. If you aren't using PF there may be something similar to max-src-conn-rate in your firewall, if not, you may want to convert ;) Good luck, ed -- Gerard Mail from '@gmail' is rejected and/or discarded here. Don't waste your time! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- I'm nerdy in the extreme and whiter than sour cream ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
Greetings All, I really appreciate all of the feedback and reply posts regaring my inquiry about Darwin and FreeBSD. I am still somewhat confused as I have been looking at FreeBSD which I think is VERY good and have also recently been able to boot up the OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to install. If I follow these messages correctly then it appears that FreeBSD is just as good as Darwin although I had expected that the inclusion of the CM kernel integrated with the FreeBSD kernel along with various other improvements would have made the Darwin software better. One thing that I can tell at the moment is that the FreeBSD OS seems to have better support for hardware since Darwin (Apple) if very specifically targeted to chosen hardware and also they seem to use these Carbon libraries for getting things to run which I do not kow where to locate more information on them. We were looking for a good OS to build from and now know that it will not be Linux, but on the BSD side of the house as I like what I have seen in both FreeBSD and also what little I have seen in Darwin. I would still like to do some more testing to get a better feel for what Darwin can offer, but the bottom line is that all of these are directly related to FreeBSD and are stable and fast compared to other non-FreeBSD related OS's. Thanks again and have a good day, Lonnie T. Cumberland OutStep Technologies Incorporated Email: [EMAIL PROTECTED] [EMAIL PROTECTED] Open Source.. opening the doors for the future in the world of today On Mon, November 13, 2006 08:38, David Kelly wrote: On Mon, Nov 13, 2006 at 01:28:16AM -0800, Ted Mittelstaedt wrote: No, they used it all as the Darwin core. Then they took Darwin and added their own GUI (used to be called Aqua) and that is MacOSX. X11 also comes on the MacOS X DVD, but is not installed by default. Bear in mind that the MacOS X gui does not translate directly into UNIX. For example, you can load MacOS System 7 files with a separate resource and data fork onto MacOSX. The MacOS X gui handles a lot of this kind of stuff. I lost you there. So what? The classic Mac file format is more advanced than a Unix (or Windows) flat file. The MacOS X Unix view of such files is morphed into a directory of files. The GUI turns such directories into a single application icon which *can* be opened to see what is inside but normally a double-click or open launches the app. Apple also doesen't use the UNIX security model. As near as I can tell their core security model is an ACL model not a user/group model. Once again this is something that's handled elsewhere. Don't know how its done underneath but from a shell and ported applications it looks exactly the same: [EMAIL PROTECTED] {767} uname -a Darwin dot-matrix.local 8.8.0 Darwin Kernel Version 8.8.0: Fri Sep 8 17:18:57 PDT 2006; root:xnu-792.12.6.obj~1/RELEASE_PPC Power Macintosh powerpc [EMAIL PROTECTED] {768} id uid=503(dkelly) gid=501(dkelly) groups=501(dkelly), 81(appserveradm), 79(appserverusr), 80(admin) [EMAIL PROTECTED] {769} who am i dkelly ttyp2Nov 13 08:17 [EMAIL PROTECTED] {770} ls -ld . drwxr-xr-x 33 dkelly dkelly 1122 Nov 1 13:30 . [EMAIL PROTECTED] {771} The biggest problem with MacOS X is that a lot of UNIX software that runs on FreeBSD and such, is not ported to MacOSX, and it's very difficult to compile on MacOSX. Really? Good thing I didn't know compiling was difficult. The other day I wanted a MacOS X version of mkisofs. Copied cdrtools from /usr/ports/distfiles/ off a FreeBSD machine. Built without a complaint in moments. Not terribly thrilled with its default install location of /opt/schily/bin/ but at least its easy to remove. -- David Kelly N4HHE, [EMAIL PROTECTED] == == Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: APC SMART-UPS 750 VA
At 09:45 AM 11/13/2006, you wrote: On Mon, Nov 13, 2006 at 02:20:33PM +, Mark wrote: Could someone tell me whether I can use the APC SMART-UPS 750 VA for my FreeBSD 4.11 installation? Anyone? Please? When I originally ported apcupsd (The actual application, not the FreeBSD port) over to *BSD, I was using a Smart-UPS 1000 on the test machine. The 750 should work well. Jeff Palmer ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Boot from CD
Hello everybody. I?m working on a thing = I never tried before. I did some googling but I don?t think I haven?t found= any correlated to this. = FONT face=Default Sans Serif,Verdana,Arial,Helvetica,sans-serif size== 2 The situation is pretty simple: I?m conf= iguring a FreeBSD (6.1) server to boot from a SAN thru a QLogic 2340 Fiber = Channel card. This in general is not a problem as I already have another wo= rking machine with this solution. Now for a couple of reason not= related to FreeBSD this new machine won?t yet _boot_ from the SAN itself but at the same time ha= ve all the system installed on the SAN. What I need to do is have a boot de= vice that loads the bootsector, the kernel and then starts everything else = from the disk in SAN. = SPAN lang=EN-GB style=FONT-SIZE: 10pt; FONT-FAMILY: Arial I thought about accomplishing this with a B= OOT-CD that starts up the kernel and then from the fstab loads the /, /etc,= /usr and so on from the SAN. Now my question is this: how do th= e kernel know where to search the fstab (considered that the fstab says whe= re to find the /etc)? I mean: I suppose I have to put on the CDROM an exact= /etc/fstab for that installation?? Or this could be avoided? Also because = I may need to edit the fstab for the machine without having to reburn the C D? so what? Or maybe the kernel can actually just be read from the CD and t= hen everything else from the ( SAN | local ) drive? Am I missing something? I?m yet in the make buildworld buildkernel stage so maybe when m aking the make distribution to create the ISO everything will appear cleare= r to me but right now something it?s not really clear. = I hope the= scenario is clear. Any suggestion? Any link to any kind of docum= entation? Thank you very much. Andrea Brancatelli ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Gerard Seibert wrote: On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote: I had the same 'problem'. As said it's not realy a problem since FreeBSD will hold just fine if you don't have any rather stupid user + pass combinations. ( test test or something like that ) Allthough I thought it was annoying that my intire log was clouded with those brute force attacks so I just set sshd to listen at an other port then 22. Maybe that's a acceptable solusion for you ? You can change the ssd port in /etc/ssh/sshd_config Security through obscurity is a bad idea. Rather, use SSH key based authentication exclusively. Turn off all of the password stuff in sshd_config. Laugh at the poor fools trying to break in. The point is it isn't security through obscurity: as allready pointed out, FreeBSD sshd can withstand those brute force attacks without much of a problem so there is no security problem, the only thing is those brute force attacks are anoying since they cloud authd.log If those attacks WERE a problem, or if there was a system which you could log in without user pass if you would find out the correct port then, but only then, it is a bad idea -- -Frank Staals ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cant login to my server machine(FreeBSD-6.0)
On Monday 13 November 2006 16:32, dhaneshk k wrote: But I tried to create the new /etc/rc.conf file by the following method #mount -o rw,remount/ #cat /etc/rc.conf you can remount rw like this: mount -u -w / then use an editor to correct /etc/rc.conf there is also /rescue which might be helpful(vi lives there). also mount -t ufs-a -u -w might be handy, which will remount read-write all your ufs filesystems, so everything will available(vi, ee etc) You also need to boot in single user and fsck your filesystems. I would do this step first. HTH, Nikos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problem with slapd nsswitch
Hello, I am trying to configure an LDAP // It seems I have problems with nsswitch Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup): ldap, passwd, endpwent, not found Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup): ldap, group, setgrent, not found Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup): ldap, group, getgrent_r, not found Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup): ldap, group, endgrent, not found Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup): ldap, group, endgrent, not found Thaugh nsswitch.conf has been configured with very simple parameters : group: files ldap group_compat: nis hosts: files dns networks: files passwd: files ldap passwd_compat: nis shells: files when I issue a simple -- id a_name -- I only have results for my local users not LDAP Users ? Thanks for your help. «?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§ Gregober --- PGP ID -- 0x1BA3C2FD bsd @at@ todoo.biz «?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§ P Please consider your environmental responsibility before printing this e-mail ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: question
On Sat, Nov 11, 2006 at 07:40:15PM +0100, Sebastian Herrmann wrote: Hallo, could you tell me how to download FreeBSD from your site? Probably, before you do that, you should read the FreeBSD Handbook - especially the parts about preparing for and installing FreeBSD - which includes portions on how to obtain FreeBSD. The general answer is that ftp is probably the easiest way to download the ISO. When you do the install, you can also choose to install the full source and documentation and you will have the whole thing. Or, download just the source using ftp if you like. The Handbook is freely available online at the FreeBSD website. http://www.freebsd.org/ Click on the Handbook like. jerry Gru? Sebastian Ein Herz f?r Kinder - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de Unser Dankesch?n: Ihr Name auf dem Segel der 1. deutschen America's Cup-Yacht! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Boot from CD (this time in ASCII :) )
Sorry about previous mail in HTML and something else. Hello everybody. I'm working on a thing I never tried before. I did some googling but I don't think I haven't found any thing correlated to this. The situation is pretty simple: I'm configuring a FreeBSD (6.1) server to boot from a SAN thru a QLogic 2340 Fiber Channel card. This in general is not a problem as I already have another working machine with this solution. Now for a couple of reason not related to FreeBSD this new machine won't yet _ boot _ from the SAN itself but at the same time have all the system installed on the SAN. What I need to do is have a (local) boot device that loads the bootsector, the kernel and then starts everything else from the disk in SAN. I thought about accomplishing this with a BOOT-CD that starts up the kernel and then from the fstab loads the /, /etc, /usr and so on from the SAN. Now my question is this: how do the kernel know where to search the fstab (considered that the fstab says where to find the /etc)? I mean: I suppose I have to put on the CDROM an exact /etc/fstab for that installation?? Or this could be avoided? Also because I may need to edit the fstab for the machine without having to reburn the CD? so what? Or maybe the kernel can actually just be read from the CD and then everything else from the ( SAN | local ) drive? Am I missing something? I'm yet in the make buildworld buildkernel stage so maybe when making the make distribution to create the ISO everything will appear clearer to me but right now something it's not really clear. I hope the scenario is clear. Any suggestion? Any link to any kind of documentation? Thank you very much. Andrea Brancatelli___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: APC SMART-UPS 750 VA
-Original Message- From: David Kelly [mailto:[EMAIL PROTECTED] Sent: maandag 13 november 2006 15:46 To: Mark Cc: freebsd-questions@freebsd.org Subject: Re: APC SMART-UPS 750 VA In less time than spent asking others you could build /usr/ports/sysutils/apcupsd/ and see whether it will provide automatic shutdown of your system under UPS control. That's assuming I already have the device. :) I don't. It's reasonably expensive (around E 300), so it seems like a fair question to ask whether someone happens to know whether I can do a good controlled shutdown with it. Especially since I could not with the 350 unit. - Mark ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ruby Vulnerability / portupgrade
Regarding the following vulnerabilities as detected by portaudit: Affected package: ruby-1.8.4_4,1 Type of problem: ruby -- cgi.rb library Denial of Service. Reference: http://www.FreeBSD.org/ports/portaudit/ab8dbe98-6be4-11db-ae91-0012f06707f0.html Affected package: ruby-1.8.4_4,1 Type of problem: ruby - multiple vulnerabilities. Reference: http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html I see that ruby is only required by portupgrade. Anyone know if there going to be a fix for this vulnerability any time soon? Anyone asked the ruby guys? # pkg_info -R ruby-1.8.4_4,1 Information for ruby-1.8.4_4,1: Required by: portupgrade-2.0.1_1,1 ruby18-bdb1-0.2.2 # pkg_info -R ruby18-bdb1-0.2.2 Information for ruby18-bdb1-0.2.2: Required by: portupgrade-2.0.1_1,1 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: pkg_cutleaves listing needed ports as leaf nodes.....
Eric Schuele [EMAIL PROTECTED] writes: When I use `pkg_cutleaves -l` to list leaf nodes. It is listing things I know are required by other apps. These aren't build dependencies. For example, it lists g-wrap, and libpcap. If I remove g-wrap, my gnucash2 immediately refuses to run. And I know libpcap was an option I selected for NTop. There are others as well. I have noticed that a `make pretty-print-run-depends-list` is empty for gnucash2. Is that significant? Why would these not be +REQUIRED_BY something? `pkgdb -F` doesn't mention anything at all. If something has no +REQUIRED_BY file... how can I go about determining why its on my machine or which port installed it? Obviously top level items I installed aside. Thanks. [Running 6.2-PRERELEASE] The requirements files are definitely supposed to be there, and their non-presence constitutes corruption in your package database. pkg_cutleaves can't figure out requirements that aren't recorded, so getting the package database restored has to be your first step. The obvious way of fixing the package database is to reinstall all of your ports before removing the leaves. You may not need to use such a brute-force solution, though... If you have backups of /var/db/pkg, you could go through and try to find the dependencies as they existed when the backup was made. Obviously, this might not be fully up-to-date; however, it's likely to be better than what you have now. Good luck. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?
Garrett Cooper [EMAIL PROTECTED] writes: Just wondering if anyone else was experiencing the same issues that I am.. it's related to Samba-3.0.22c and sockets / filehandles. For some odd reason every couple days (~2 days) I have to restart the smbd daemon because it eats up 6000+ filehandles, just for sockets I assume (based on netstat output). At the point where it reaches 8000 some filehandles open, the system refuses to fork, forcing me to login as root on the console directly instead of via SSH. My machine is a local / preferred master (smbd fights with XP Home clients because they want to be master browsers), with limited access to a few XP clients (4 clients at any given point in time), plus an XBox using smbclient with XBox Media Center. Helpful info: [EMAIL PROTECTED] /home/gcooper]# uname -a FreeBSD hoover.localdomain 6.1-RELEASE-p10 FreeBSD 6.1-RELEASE-p10 #9: Mon Oct 16 02:14:29 PDT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/HOOVER i386 /usr/local/etc/smb.conf: [global] workgroup = WORKGROUP encrypt passwords = yes log file = /var/log/samba/log.%m log level = 3 passdb:4 auth:4 # log level = 5 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 local master = yes preferred master = yes dns proxy = no guest ok = no [shared] path = /shared writeable = yes public = yes hosts deny = shiina pinocchio guest ok = no create mask = 0775 The only changes that I've made to smb.conf between now and when I last accessed samba is that I've removed an unneeded share and removed guest advertisement for my shares (need password / username anyhow to login, so I figured I might as well..). This is a Samba issue, not an OS issue, as demonstrated by the fact that the system is able to close all of the handles when the daemon is shut down. Have you looked closely at the netstat output to which you referred? It would be interesting if all of the stuck connections were coming from the same host, or were in a particular state, etc. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Asking for Ports
Ferry Limanto [EMAIL PROTECTED] writes: Hi, I'm ferry from ISP in Indonesia. I want run my squid and there is error saying that file libm.so.2 is not found. I suspect that the library is from ports compat4x, and I try to install that ports from freebsd ftp server, buat always failed, or can I do another else? I really need this file to run my squid on my freebsd 6. Can u help me sir ?? You shouldn't need that file to run squid; squid should be linking against libm.so.4 on FreeBSD 6. If for some reason you NEED to run a squid built for FreeBSD 4.x, then you will indeed need the compat4x port, and you will have to look more closely at the failure to install that port. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: installing port etherape
Matthew Pope [EMAIL PROTECTED] writes: Hello, The 'make install' on the etherape stopped, complaining about a missing function. The output is included below. My environment is FreeBSD 6.1 p10 on an Asus motherboard with a Pentium 4 processor. Given the warnings about a dependancy conflict, and my newbie lack of knowledge of using ports, I'm a bit perplexed on how to proceed. If anyone could suggest a strategy to get around this problem, I'd really appreciate it. Thanks, Matthew make install (from within etherape dir) .lots of output cc -O2 -fno-strict-aliasing -pipe -pthread -o .libs/bonobo-activation-server activation-server-corba-extensions.o activation-context-query.o activation-context-query-lexer.o activation-context-query-parser.o activation-context-corba.o object-directory-corba.o object-directory-load.o object-directory-activate.o object-directory-config-file.o activation-server-main.o -Wl,--export-dynamic -pthread -L/usr/local/lib ../bonobo/.libs/libbonobo-2.so /usr/ports/devel/libbonobo/work/libbonobo-2.16.0/bonobo-activation/.libs/libbonobo-activation.so ../bonobo-activation/.libs/libbonobo-activation.so /usr/local/lib/libgobject-2.0.so -lname-server-2 -lORBitCosNaming-2 -lORBit-2 /usr/local/lib/libgmodule-2.0.so /usr/local/lib/libgthread-2.0.so -pthread /usr/local/lib/libglib-2.0.so -lxml2 -lz -liconv -lm -lintl -Wl,--rpath -Wl,/usr/local/lib /usr/bin/ld: warning: libglib-2.0.so.400, needed by /usr/local/lib/libORBitCosNaming-2.so, may conflict with libglib-2.0.so.0 /usr/bin/ld: warning: libgmodule-2.0.so.400, needed by /usr/local/lib/libORBit-2.so, may conflict with libgmodule-2.0.so.0 /usr/bin/ld: warning: libgobject-2.0.so.400, needed by /usr/local/lib/libORBit-2.so, may conflict with libgobject-2.0.so.0 /usr/bin/ld: warning: libgthread-2.0.so.400, needed by /usr/local/lib/libORBit-2.so, may conflict with libgthread-2.0.so.0 /usr/bin/ld: warning: libm.so.3, needed by /usr/local/lib/libxml2.so, may conflict with libm.so.4 object-directory-corba.o(.text+0xa48): In function `client_cnx_broken': : undefined reference to `ORBit_sequence_remove' gmake[3]: *** [bonobo-activation-server] Error 1 gmake[3]: Leaving directory /usr/ports/devel/libbonobo/work/libbonobo-2.16.0/activation-server' gmake[2]: *** [all] Error 2 gmake[2]: Leaving directory /usr/ports/devel/libbonobo/work/libbonobo-2.16.0/activation-server' gmake[1]: *** [all-recursive] Error 1 gmake[1]: Leaving directory /usr/ports/devel/libbonobo/work/libbonobo-2.16.0' gmake: *** [all] Error 2 *** Error code 2 Stop in /usr/ports/devel/libbonobo. *** Error code 1 Stop in /usr/ports/net-mgmt/etherape. bash-2.05b# My best guess; your upgrade to Gnome 2.16 is still incomplete. Did you follow the directions in the 20061014 entry in /usr/ports/UPDATING? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: APC SMART-UPS 750 VA
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jeff Palmer Sent: maandag 13 november 2006 16:28 To: FreeBSD-Questions@freebsd.org Subject: Re: APC SMART-UPS 750 VA When I originally ported apcupsd (The actual application, not the FreeBSD port) over to *BSD, I was using a Smart-UPS 1000 on the test machine. The 750 should work well. Thanks. :) I'll go get one now. - Mark ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: AMD64 + FreeBSD 6.1 + Keyboard troubles
Coen Watstaatervoor [EMAIL PROTECTED] writes: I've installed FreeBSD 6.1 on a new Dual AMD Opeteron HE server, during the installation the keyboard works fine. But when you plug in the keyboard after a reboot (without the keyboard attached) the keyboard won't work any more. I'm doing the same installation on a Dual Intel Xeon machine and the keyboard works fine after a reboot and a cold plug in. Could this be a motherboard problem or is this something within BSD? If it's a PS/2 keyboard, then you're not supposed to do that anyway, and it's a hardware issue. If it's a USB keyboard, a newer version of FreeBSD might do better. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: X windows configuration problem
arnuld [EMAIL PROTECTED] writes: hai all, i am not able to configure my X-Windows system. i will be brief: 1.) ASUS K8V-MX motherboard running AMD64 Athlon 2.) VIA K8M800, VIA 8T237R chipsets. i downloaded FreeBSD 6.1 last night have verified the md5sum. Xorg -configure does not work. GNOME is installed. then i tried xorgconfig -textmode which worked after checking my mouse, keyboard etc it shows me the video card list which contains only 2 drivers ati vmware nothing else. so i tried both drivers, ati vmware edited ttyv8 line in /etc/ttys to on from off. but all i get is Black Terminal. does anybody has any idea on how i can configure X? You don't necessarily need to with X.org: on many systems it can run just fine without any config file. (i used to run Fedora Core 4 before that which installs vesa driver for my VGA it ran fine in 1024x768 mode. i have used FreeBSD 5.4 once which did show me a long list of drivers for my video card including vesa i ran my box with that it was fine but with this new FreeBSD i dont have any choice except 2 drivers i mentioned. ) Do you have the xorg-server port installed? [Look at the pkg_info(1) output.] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: State of gvinum RAID-5
Hi, I tried gvinum RAID-5 with a 5-Stable around the time when 5.1 or 5.2 was released (afair) and back then it basically sucked big time. Raid worked as long as nothing failed, but reconstructing a drive was somewhere between very painful and not possible. I agree. Now I will have to upgrade hardware soon, which means I could switch from NetBSD (and Raidframe) to FreeBSD (with gvinum) again. I would like to because NetBSD seems to have some kind of memory leak in connection with Samba and large or many files, but I'd rather have a somewhat unstable Samba than an unstable Raid, so what's the state of affairs? I have been running gvinum RAID-5 on a ProLiant machine for 6 months now and I hadn't had any problems so far. First I installed FreeBSD 5.4 at that time but the RAID array crashed when there was an unclean reboot. After that I installed FreeBSD 6.1 and for now (knock knock knock) everything looks to work fine. However, I hadn't had a disk crash yet so I can't tell what exactly happens when one of the disks dies. I also run Samba and NOD32fac viruschecking on the same server and it works just great. HTH, Nejc smime.p7s Description: S/MIME Cryptographic Signature
Re: Java plugin for Firefox
Erik Norgaard [EMAIL PROTECTED] writes: Lowell Gilbert wrote: Erik Norgaard [EMAIL PROTECTED] writes: Any suggestions? I just built jdk15 with the default options, and the Java plugin works in my firefox. Secondly, is there a way to just build the plugin since I have the jdk built and installed? It looks possible, but (to me) it's not worth a few hours of human time to figure it out in order to save a few hours (or even days) of the computer's time. I tried again, deleting the old options files. Building mozilla still fails, although I no longer need to disable the vuln check. Which port revision is your mozilla? Mine is 1.7.13_1,2 - it should be the most recent revision. Sorry, that's exactly what I have, and it works fine (even though I don't actually use that mozilla). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ATA drive TIMEOUT READ_DMA errors since adding power savings
I added a power down timer on one of my harddrives, and started getting READ_DMA and WRITE_DMA timeouts. Is it possible these are occuring becuase the drive is spun down and FreeBSD isn't waiting long enough for it to spin up? Everything else seems to be working. If that is the problem, is it possible to extend the timeout to eliminate these messages clouding my logs? Thanks, Mike +ad4: TIMEOUT - WRITE_DMA retrying (1 retry left) LBA=41399007 +ad4: TIMEOUT - READ_DMA retrying (1 retry left) LBA=12095 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
On Mon, Nov 13, 2006 at 09:03:20AM -0600, Lonnie Cumberland wrote: I am still somewhat confused as I have been looking at FreeBSD which I think is VERY good and have also recently been able to boot up the OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to install. If your desire is to purchase a commercially supported server then an Apple Xserve would be hard to beat. I think you misunderstand the purpose of Darwin and would be better served with FreeBSD. If I follow these messages correctly then it appears that FreeBSD is just as good as Darwin although I had expected that the inclusion of the CM kernel integrated with the FreeBSD kernel along with various other improvements would have made the Darwin software better. I think you are spending too much time keeping score on minute details and not enough time on the big picture. One thing that I can tell at the moment is that the FreeBSD OS seems to have better support for hardware since Darwin (Apple) if very specifically targeted to chosen hardware and also they seem to use these Carbon libraries for getting things to run which I do not kow where to locate more information on them. No, Carbon has almost nothing to do with Darwin. Carbon is the API which runs on top of Darwin (not a part of). Aqua is implemented in Carbon, Carbon runs on top of Darwin. Carbon is not a part of Darwin. I would still like to do some more testing to get a better feel for what Darwin can offer, but the bottom line is that all of these are directly related to FreeBSD and are stable and fast compared to other non-FreeBSD related OS's. Testing: good idea. Speed: the slowest machine is one that is down. Top-posting: Frowned upon among traditional technical communities. You'll get more out of these communities if you learn how to trim replies and insert your comments in the appropriate places. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ruby Vulnerability / portupgrade
Hi Jeff, On 13/11/2006 16:35, Jeff Dickens wrote: Regarding the following vulnerabilities as detected by portaudit: Affected package: ruby-1.8.4_4,1 Type of problem: ruby -- cgi.rb library Denial of Service. Reference: http://www.FreeBSD.org/ports/portaudit/ab8dbe98-6be4-11db-ae91-0012f06707f0.html From the link: % Affects: % * ruby =1.8.* 1.8.5_4,1 % * ruby_static =1.8.* 1.8.5_4,1 The latest version of ruby in ports is 1.8.5_4,1 which is not affected[1]. Affected package: ruby-1.8.4_4,1 Type of problem: ruby - multiple vulnerabilities. Reference: http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html Hmmm... not sure about this one, but if I'm reading CVE-2006-3694[2] right ruby 1.8.5 is not affected. portaudit is not complaining, too. HTH, Karol [1] http://www.freebsd.org/cgi/getmsg.cgi?fetch=2891067+0+/usr/local/www/db/text/2006/cvs-all/20061105.cvs-all [2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3694 -- Karol Kwiatkowski freebsd at orchid dot homeunix dot org OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: APC SMART-UPS 750 VA
Mark [EMAIL PROTECTED] writes: -Original Message- From: Mark [mailto:[EMAIL PROTECTED] Sent: zondag 12 november 2006 19:31 To: 'freebsd-questions@freebsd.org' Subject: APC SMART-UPS 750 VA Hello, Could someone tell me whether I can use the APC SMART-UPS 750 VA for my FreeBSD 4.11 installation? Sounds like it might be the same one I'm using quite happily for my machines at home: [from dmesg:] ugen0: APC Back-UPS ES 750 FW:819.z2.D USB FW:z2, rev 1.10/1.06, addr 2 I'm on -STABLE, but I don't think the OS version should matter much. Anyone? Please? Give us a day, at least, okay? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?
In response to Lowell Gilbert [EMAIL PROTECTED]: Garrett Cooper [EMAIL PROTECTED] writes: Just wondering if anyone else was experiencing the same issues that I am.. it's related to Samba-3.0.22c and sockets / filehandles. For some odd reason every couple days (~2 days) I have to restart the smbd daemon because it eats up 6000+ filehandles, just for sockets I assume (based on netstat output). At the point where it reaches 8000 some filehandles open, the system refuses to fork, forcing me to login as root on the console directly instead of via SSH. My machine is a local / preferred master (smbd fights with XP Home clients because they want to be master browsers), with limited access to a few XP clients (4 clients at any given point in time), plus an XBox using smbclient with XBox Media Center. Have you investigated the possibility that Samba legitimately needs more filehandles than that? Even if there are only 4 clients, they may be opening 2000 files each (The output of smbstatus right before the system exhausted its filehandles would be interesting) If that's the case, you can update the amount of available filehandles using sysctl or by recompiling your kernel. We have some PostgreSQL servers that require the filehandle limit be raised to 5, for example. -- Bill Moran Collaborative Fusion Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
6.2 Release delayed?
A while back, I read that 6.2 was going to be released today. Now I see that 6.2 won't be released until Mid December. Are FreeBSD releases put out whenever they're ready or is there a set schedule that is adhered to? I only ask because I am trying to schedule some server upgrades and I scheduled my QA tests for this week, thinking 6.2 would be released today. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: BGE driver upgrade from 5.3-RELEASE
James Kilton [EMAIL PROTECTED] writes: I have a running 5.3-RELEASE system that needs a BGE driver upgrade so that packets with VLAN tags aren't stripped. Is there any way to do this without upgrading the entire OS? This feature was just added to the driver a month ago. It's *possible*; how much effort are you willing to spend on porting the code? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
On Nov 13, 2006, at 01:28, Ted Mittelstaedt wrote: Apple also doesen't use the UNIX security model. As near as I can tell their core security model is an ACL model not a user/group model. Once again this is something that's handled elsewhere. The user-group security model is alive and the heart of OS-X security. It is used throughout the system even within the user's home directory where there are files the user cannot access. This causes problems for backup progrms that want to be run by the user with a window interface as they can't backup those files. ACLs are available but not used by default. The user has to create them if desired. There used to be a FreeBSD project to add ACLs but I don't know its status. i suspect the two implementations will be very similar. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
deleting automatically the oldest file from a harddisk
Hello everybody, I have a ftp -server. I use a harddisk of 9 Gb for the ftp-directory. This isn't very big so I want to throw away the oldest file if the disc is full. I can write a cronjob that checks every minute. But isn't there another solution; Can't I just write a C program that listens to some systemcalls and automatically deletes the oldest file if the harddisk is full??? I hope someone can help me? Thanks, Koen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ATA drive TIMEOUT READ_DMA errors since adding power savings
On Monday 13 November 2006 9:57 am, Michael Knoll wrote: I added a power down timer on one of my harddrives, and started getting READ_DMA and WRITE_DMA timeouts. Is it possible these are occuring becuase the drive is spun down and FreeBSD isn't waiting long enough for it to spin up? Everything else seems to be working. Yep. If that is the problem, is it possible to extend the timeout to eliminate these messages clouding my logs? First, what kind of machine is this? If anything other than a laptop, be aware that most harddrives have lifetimes measured in hundreds of thousands of hours, but a small number of thousand spin-ups. If your drive is cycling many times a day, you could get a nasty surprise in a relatively short amount of time. -- Kirk Strauser pgpafne3sZMBA.pgp Description: PGP signature
problems with serverraid 8i on an ibm x260
Hello, I am running freebsd 6.1 (amd64) on an ibm x260 and getting these errors: dmesg: g_vfs_done():aacd0s1a[WRITE(offset=16567468032, length=16384)]error = 5 aacd0: hard error cmd=write 1673028351-1673028382 and in messages : Nov 12 23:59:14 nms kernel: aac0: COMMAND 0x8bd3b2c0 TIMEOUT AFTER 50189 SECONDS Nov 12 23:59:34 nms kernel: aac0: COMMAND 0x8bd3b2c0 TIMEOUT AFTER 50209 SECONDS Nov 12 23:59:54 nms kernel: aac0: COMMAND 0x8bd3b2c0 TIMEOUT AFTER 50229 SECONDS The system will lock, and require a manual reboot. Has anyone run into this before, or can point me in the right direction to look for answers? Thanks, -- Joshua Frugé [EMAIL PROTECTED] Louisiana State University Information Technology Services ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: delete iface tun
Igoryan [EMAIL PROTECTED] writes: How to remove the interface tunN, creations ppp demon? In general, you don't. If you unload the if_tun module, that will delete all of them. See the manual for tun(4). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
David Kelly wrote: On Mon, Nov 13, 2006 at 09:03:20AM -0600, Lonnie Cumberland wrote: I am still somewhat confused as I have been looking at FreeBSD which I think is VERY good and have also recently been able to boot up the OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to install. If your desire is to purchase a commercially supported server then an Apple Xserve would be hard to beat. I think you misunderstand the purpose of Darwin and would be better served with FreeBSD. No, mostly we were just trying to look at the state of current OpneSource OS's to try and get a feel for the advantages and disadvantages of each type. Also, not to be brash, but if I am missing the point of Darwin as you say, then please help to clarify this for me as it is the fundamental reason for this whole thread and I would really like to know what the purpose are so that we can make informed judgments on FreeBSD and Darwin.. If I follow these messages correctly then it appears that FreeBSD is just as good as Darwin although I had expected that the inclusion of the CM kernel integrated with the FreeBSD kernel along with various other improvements would have made the Darwin software better. I think you are spending too much time keeping score on minute details and not enough time on the big picture. Not really trying to keep score but again looking for the strengths and weaknesses of FreeBSD vs Darwin I would still like to do some more testing to get a better feel for what Darwin can offer, but the bottom line is that all of these are directly related to FreeBSD and are stable and fast compared to other non-FreeBSD related OS's. Testing: good idea. This is always a good idea when evaluating technologies I think. Speed: the slowest machine is one that is down. Top-posting: Frowned upon among traditional technical communities. You'll get more out of these communities if you learn how to trim replies and insert your comments in the appropriate places. thanks for correcting my accepted behavior on the mailing list and I will try to improve in future posts. Thanks and have a good day, Lonnie T. Cumberland OutStep Technologies Incorporated Email: [EMAIL PROTECTED] [EMAIL PROTECTED] Open Source.. opening the doors for the future in the world of today ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blank screen after using X
Sorry... I forgot to mention that the machine is an IBM Thinkpad T23 with S3 Savage chip, max. resolution is at 1024x768. On 13/11/06, Christian Walther [EMAIL PROTECTED] wrote: Hi, I'm using FreeBSD 6.x for a couple of month now, and I'm quite happy with it. Since the beginning I've a problem that I was unable to fix: When I quit X, or X dies for some reason, the screen remains black. I can type blindly, starting X again, or doing a shutdown. I searched the net a found an older thread from another FreeBSD-User, posted to this mailing list. Link to the initial message: http://docs.freebsd.org/cgi/getmsg.cgi?fetch=195067+0+archive/2006/freebsd-questions/20060723.freebsd-questions It was suggested that this would be a configuration problem, that something has to be changed in xorg.conf. But there isn't any solution provided, so I hope that someone here can help me. I'll attach Xorg.0.log with the latest crash information (it complains a segfault at the end), and my current xorg.conf. What can I change to make this problem disappear? Cheers Christian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: image based stock spam
On Sun, 12 Nov 2006 23:17:58 -0800 Brian [EMAIL PROTECTED] wrote: ugh, I'm running a 6.2 prerelease. The package doesn't exist, so I build the port, or try to. The tiff port wont build, so I pkg_add that. It gets a lil further along, the pkgconfig port won't build, I pkg_add that. Then, a little further here comes an x windows install, a 31 mb download. I don't want that on my server. I'll live with it for now till something better comes along. A few weeks ago i made a solution for spam images myself. You can find at: ftp://pubbox.net/pub/unix/mail/mimefilter-1.0-PRE.tar.gz enjoy, Armin PUBBOX Postmaster, spam-killer no.1, free email address at http://pubbox.net/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Shutting down as user
Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. I know that this is probably some simple permission's thing, as I don't have that problem on my desktop, but I'm pretty new to all of this and would appreciate a heads up on how to shut down as user. Thanks. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
uhci.ko keeps showing up
I've commented out device uhci in my kernel config, but I keep getting uhci.ko loaded on boot. I'm not using usb at all. I understand that I should be able to disable usb in my bios, but it's difficult to get to, as the server is remote. Is there anything I can do to prevent the uhci.ko from being loaded? -- I'm nerdy in the extreme and whiter than sour cream ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. Whatever is shutting down the system would either need to be setuid (chmod u+s), or would need to use sudo (if you have the sudo port and your user is properly setup in sudoers to issue the shutdown command or whatever is running). Some details on which window manager or desktop environment you are running would help, along with whether or not you are running a display manager (GDM, KDM, XDM, etc). Josh ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. Whatever is shutting down the system would either need to be setuid (chmod u+s), or would need to use sudo (if you have the sudo port and your user is properly setup in sudoers to issue the shutdown command or whatever is running). Some details on which window manager or desktop environment you are running would help, along with whether or not you are running a display manager (GDM, KDM, XDM, etc). Josh I'm using the KDE window manager, but don't see how this would effect anything, as I am not able to shut down as user from the console. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Developer needed for a project (FreeBSD and Java)
Greetings All, While we are in the middle of evaluating various project software and also while I am trying to learn more about FreeBSD as it relates to our goals, we have come across a need to locate a developer that has skills with FreeBSD and also Java. We are working on migrating a project over from Linux to FreeBSd plus some additional modifications, but need to find some one that we can offer small contracts to for various amounts of work on the project. Since we are still very small, the contracts would be in the range of $250 - $500 for various tasks completed on the project. If anyone is interested then please get in touch with me so tha twe can talk more about the possibilities, ok. Thanks and have a good day, Lonnie T. Cumberland OutStep Technologies Incorporated Email: [EMAIL PROTECTED] [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote: Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. I know that this is probably some simple permission's thing, as I don't have that problem on my desktop, but I'm pretty new to all of this and would appreciate a heads up on how to shut down as user. Thanks. In some way or other, shutdown must be done by root, or possibly by someone in the operator group. You can log in as root -- for which you will need the root password You can 'su' to root from a regular account -- for which you will need the root password AND be in the wheel group. You can create an alkternate root account (recommended) and log in as that id or su to it -- which requires creating the account with password. You can put your account in the operator group -- You can install and set up 'sudo' to do the shutdown and allow your id access to it. All of these ways require you to have root access to set them up. They can also be done in 'single user' mode which runs with root priviledge. All of this is well covered in the handbool and other documentation. jerry Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
Rem P Roberti wrote: I'm using the KDE window manager, but don't see how this would effect anything, as I am not able to shut down as user from the console. This is the intended behaviour, you wouldn't want just anyone to shutdown your machines would you? ;) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
Joe Holden wrote: Rem P Roberti wrote: I'm using the KDE window manager, but don't see how this would effect anything, as I am not able to shut down as user from the console. This is the intended behaviour, you wouldn't want just anyone to shutdown your machines would you? ;) That is very true, and I understand why this is by design, but in this case the ONLY user of the machine is me. It really is no big deal, but I am trying to understand just what is going on here. As I said, on my desktop I am able to shut down as user, and can't remember how I set it up so that occurs. Back to the handbook! Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
On Monday 13 November 2006 10:11, Frank Staals wrote: The point is it isn't security through obscurity: as allready pointed out, FreeBSD sshd can withstand those brute force attacks without much of a problem so there is no security problem, the only thing is those brute force attacks are anoying since they cloud authd.log If those attacks WERE a problem, or if there was a system which you could log in without user pass if you would find out the correct port then, but only then, it is a bad idea Given enough time, every user/password combination can be broken. Perhaps not in your lifetime, but it is still a real possibility. Given the relative ease of setting up keys and simply dispersing with user/passwords all together, I fail to see why more users do not avail themselves of this avenue of security. Then again, I don't know how San Diego came back to beat Cincinnati yesterday either. Anyway, each to his own! -- Gerard A word to the wise is often enough to start an argument. pgpbcMcYGCYZG.pgp Description: PGP signature
Re: Shutting down as user
Rem P Roberti wrote: That is very true, and I understand why this is by design, but in this case the ONLY user of the machine is me. It really is no big deal, but I am trying to understand just what is going on here. As I said, on my desktop I am able to shut down as user, and can't remember how I set it up so that occurs. Back to the handbook! Do you have (as was mentioned) the shutdown script setuid or something? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote: Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. I know that this is probably some simple permission's thing, as I don't have that problem on my desktop, but I'm pretty new to all of this and would appreciate a heads up on how to shut down as user. Thanks. In some way or other, shutdown must be done by root, or possibly by someone in the operator group. You can log in as root -- for which you will need the root password You can 'su' to root from a regular account -- for which you will need the root password AND be in the wheel group. You can create an alkternate root account (recommended) and log in as that id or su to it -- which requires creating the account with password. You can put your account in the operator group -- You can install and set up 'sudo' to do the shutdown and allow your id access to it. All of these ways require you to have root access to set them up. They can also be done in 'single user' mode which runs with root priviledge. All of this is well covered in the handbool and other documentation. jerry Right. I now remember that putting the account in the operator group was probably how I achieved the affect on the desktop. I'll check that out, and check the handbook. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote: Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. I know that this is probably some simple permission's thing, as I don't have that problem on my desktop, but I'm pretty new to all of this and would appreciate a heads up on how to shut down as user. Thanks. Add yourself to the operator group. Just edit /etc/group. Bingo! Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Shutting down as user
On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote: Hi everyone. I just installed 6.1 on an old laptop, and I am unable to shutdown as user. I get a permission denied error message. I know that this is probably some simple permission's thing, as I don't have that problem on my desktop, but I'm pretty new to all of this and would appreciate a heads up on how to shut down as user. Thanks. Add yourself to the operator group. Just edit /etc/group. I knew that the solution was a simple one, I just couldn't remember what it was. Thanks, David. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Building Ports w/ Options, Env
Hi; Would someone kindly simply edit the following, if that's possible (if I'm not too far off how it should be done) so that I can have an example of how to build OpenLDAP with the options and env I want? Here's what I have so far. I don't know if it's correct or not... 1. Edit /usr/local/etc/pkgtools.conf and enable it to read /usr/local/etc/pkgtools.local 2. Create the local file and add something like this: MAKE_ENV = { '/usr/ports/net/openldap23-server' = [ 'CC=gcc', 'CPPFLAGS=-I/usr/local/include/openssl/' 'LDFLAGS=-L/usr/local/lib/' ], } That would set up the environment, and might actually be correct as written ;) I'm a whole lot less confident of the following: MAKE_ARGS = { '/usr/ports/net/openldap23-server'= [ '--localstatedir=/var/run/slapd', '--enable-spasswd', etc, etc ], } TIA, Rachel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Testing firewire
On Sun, 12 Nov 2006, David Kelly wrote: On Nov 12, 2006, at 5:03 PM, Erik Norgaard wrote: So I thought: Is this like ethernet that I need a crossed cable or can I connect the two with an ordinary cable and check that it works? There is no master nor slave in Firewire, all are peers, and all have (essentially) the same socket. If the cable fits, it works. Witness the difference between a hardware standard driven by Apple (Firewire) and one from Intel/Microsoft (USB). Apple computers can be booted in target mode where the machine becomes nothing more than a Firewire hard drive. Only works for the primary drive, but works well. Apple recommends this mode (and Migration Assistant) for cloning user data and applications from one Mac to another. You might also try fwe(4) if your other OS's are capable of doing IP over firewire. fwe(4) emulates an ethernet interface and is a non-standard method of making Firewire become a network interface. If would work with other BSDs? or Mac OS/X? possibly. fwip(4) is what Windows and a lot of other operating systems use to accomplish this feat. Last I check, it was no in the generic kernel and had to be compiled in, specified in the loader.conf(5), or loaded with kldload(8). #device fwe # Ethernet over FireWire (non-standard!) #device fwip# IP over FireWire I had the fwip driver working with a Windows XP box for a little while. It worked fairly well, but I don't think it was really any faster than ethernet (at least for what I was doign with it). Hope this helps. George Fazio N3GQF mailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 6.2 Release delayed?
On Mon, Nov 13, 2006 at 08:24:47AM -0800, Joe wrote: A while back, I read that 6.2 was going to be released today. Now I see that 6.2 won't be released until Mid December. Are FreeBSD releases put out whenever they're ready or is there a set schedule that is adhered to? I only ask because I am trying to schedule some server upgrades and I scheduled my QA tests for this week, thinking 6.2 would be released today. ___ When they're ready. They almost always slip because of bugs that users only bother to report late in the release cycle :-) Kris pgp4envxjrMz7.pgp Description: PGP signature
Re: Shutting down as user
On Mon, Nov 13, 2006 at 10:11:11AM -0800, Rem P Roberti wrote: Add yourself to the operator group. Just edit /etc/group. Bingo! Haven't checked recently but in the past any darn fool could Control-Alt-Delete reboot from the console keyboard. Caused a bit of a pain when a machine reboots as Microsoft has been teaching their uses that this is now the login keystroke sequence. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MAC OS X connection to FreeBSD?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Lonnie Cumberland wrote: Greetings All, I really appreciate all of the feedback and reply posts regaring my inquiry about Darwin and FreeBSD. I am still somewhat confused as I have been looking at FreeBSD which I think is VERY good and have also recently been able to boot up the OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to install. If I follow these messages correctly then it appears that FreeBSD is just as good as Darwin although I had expected that the inclusion of the CM kernel integrated with the FreeBSD kernel along with various other improvements would have made the Darwin software better. One thing that I can tell at the moment is that the FreeBSD OS seems to have better support for hardware since Darwin (Apple) if very specifically targeted to chosen hardware and also they seem to use these Carbon libraries for getting things to run which I do not kow where to locate more information on them. We were looking for a good OS to build from and now know that it will not be Linux, but on the BSD side of the house as I like what I have seen in both FreeBSD and also what little I have seen in Darwin. I would still like to do some more testing to get a better feel for what Darwin can offer, but the bottom line is that all of these are directly related to FreeBSD and are stable and fast compared to other non-FreeBSD related OS's. Thanks again and have a good day, Lonnie T. Cumberland OutStep Technologies Incorporated Email: [EMAIL PROTECTED] [EMAIL PROTECTED] Open Source.. opening the doors for the future in the world of today On Mon, November 13, 2006 08:38, David Kelly wrote: On Mon, Nov 13, 2006 at 01:28:16AM -0800, Ted Mittelstaedt wrote: No, they used it all as the Darwin core. Then they took Darwin and added their own GUI (used to be called Aqua) and that is MacOSX. X11 also comes on the MacOS X DVD, but is not installed by default. Bear in mind that the MacOS X gui does not translate directly into UNIX. For example, you can load MacOS System 7 files with a separate resource and data fork onto MacOSX. The MacOS X gui handles a lot of this kind of stuff. I lost you there. So what? The classic Mac file format is more advanced than a Unix (or Windows) flat file. The MacOS X Unix view of such files is morphed into a directory of files. The GUI turns such directories into a single application icon which *can* be opened to see what is inside but normally a double-click or open launches the app. Apple also doesen't use the UNIX security model. As near as I can tell their core security model is an ACL model not a user/group model. Once again this is something that's handled elsewhere. Don't know how its done underneath but from a shell and ported applications it looks exactly the same: [EMAIL PROTECTED] {767} uname -a Darwin dot-matrix.local 8.8.0 Darwin Kernel Version 8.8.0: Fri Sep 8 17:18:57 PDT 2006; root:xnu-792.12.6.obj~1/RELEASE_PPC Power Macintosh powerpc [EMAIL PROTECTED] {768} id uid=503(dkelly) gid=501(dkelly) groups=501(dkelly), 81(appserveradm), 79(appserverusr), 80(admin) [EMAIL PROTECTED] {769} who am i dkelly ttyp2Nov 13 08:17 [EMAIL PROTECTED] {770} ls -ld . drwxr-xr-x 33 dkelly dkelly 1122 Nov 1 13:30 . [EMAIL PROTECTED] {771} The biggest problem with MacOS X is that a lot of UNIX software that runs on FreeBSD and such, is not ported to MacOSX, and it's very difficult to compile on MacOSX. Really? Good thing I didn't know compiling was difficult. The other day I wanted a MacOS X version of mkisofs. Copied cdrtools from /usr/ports/distfiles/ off a FreeBSD machine. Built without a complaint in moments. Not terribly thrilled with its default install location of /opt/schily/bin/ but at least its easy to remove. -- David Kelly N4HHE, [EMAIL PROTECTED] == == Whom computers would destroy, they must first drive mad. Well, when I was in an interview with a Mac lead recently, he was telling me that there were issues with processor affinity in the Darwin kernel, meaning that processes/threads would jump from processor to processor, instead of staying on the same processor. This affects all machines with multiple processors (be they virtual or physical) from what I understand, and it does generate a lot more relative delay in multithreaded code as the amount of time it takes to fully change processor state is higher moving from one processor to another, when you have to move cached memory back and forth down the memory model, etc. Sad, but it's one of the current problems with the implementation of the mach kernel-Darwin-over a monolithic kernel like FreeBSD's, Linux's or Window's. Something minor to ponder over.. - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using
Re: APC SMART-UPS 750 VA
Mark wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jeff Palmer Sent: maandag 13 november 2006 16:28 To: FreeBSD-Questions@freebsd.org Subject: Re: APC SMART-UPS 750 VA When I originally ported apcupsd (The actual application, not the FreeBSD port) over to *BSD, I was using a Smart-UPS 1000 on the test machine. The 750 should work well. Thanks. :) I'll go get one now. - Mark ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I have a Smart-UPS RT 7500 X at work that works quite happily with apcupsd, as does the Back-UPS RS 1000 at home. Machines are running 6.1 and 5.x. HTH Charlie ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
v6 speed compared to previous versions
When I switched to 6.0, then 6.1, it was noticed by most of my clients that my php/mysql/apache system slowed down a fair bit compared to previous version (5.XX). I always like to be on the bleeding edge of FreeBSD, but the performance hit is being commented about by my (few) mysql/php clients. I've seen the trolls of past about speed and previous versions, and I would really be interested to hear the actual truth about 6.XX speed. It is my understanding that 6.XX is more optimized for multi-processors, and that for a single processor, 5.XX (or even 4.XX) outperforms 6.XX. Would someone please outline the choices/drawbacks/concerns of even considering going back a series? Thanks, Jim ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Lowell Gilbert wrote: Garrett Cooper [EMAIL PROTECTED] writes: Just wondering if anyone else was experiencing the same issues that I am.. it's related to Samba-3.0.22c and sockets / filehandles. For some odd reason every couple days (~2 days) I have to restart the smbd daemon because it eats up 6000+ filehandles, just for sockets I assume (based on netstat output). At the point where it reaches 8000 some filehandles open, the system refuses to fork, forcing me to login as root on the console directly instead of via SSH. My machine is a local / preferred master (smbd fights with XP Home clients because they want to be master browsers), with limited access to a few XP clients (4 clients at any given point in time), plus an XBox using smbclient with XBox Media Center. Helpful info: [EMAIL PROTECTED] /home/gcooper]# uname -a FreeBSD hoover.localdomain 6.1-RELEASE-p10 FreeBSD 6.1-RELEASE-p10 #9: Mon Oct 16 02:14:29 PDT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/HOOVER i386 /usr/local/etc/smb.conf: [global] workgroup = WORKGROUP encrypt passwords = yes log file = /var/log/samba/log.%m log level = 3 passdb:4 auth:4 # log level = 5 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 local master = yes preferred master = yes dns proxy = no guest ok = no [shared] path = /shared writeable = yes public = yes hosts deny = shiina pinocchio guest ok = no create mask = 0775 The only changes that I've made to smb.conf between now and when I last accessed samba is that I've removed an unneeded share and removed guest advertisement for my shares (need password / username anyhow to login, so I figured I might as well..). This is a Samba issue, not an OS issue, as demonstrated by the fact that the system is able to close all of the handles when the daemon is shut down. Have you looked closely at the netstat output to which you referred? It would be interesting if all of the stuck connections were coming from the same host, or were in a particular state, etc. I actually went in depth looking at the code for a long period of time and it appears that it's expected for the smbd daemon to keep on malloc'ing file descriptors (in this case sockets) until it can no longer allocate file descriptors. Then it cleans house on all of the file descriptors to reclaim them for itself. That doesn't seem to free up resources for the OS though--or at least it wasn't obvious when looking through the code, but maybe the sockets reclaim themselves due to the implementation of sockets... Needless to say this problem is new (since 3.0.22x at least), but then again I've never really had XP clients connecting to my FreeBSD box en-masse like this before. Usually I shared via SMB with my strictly my XP dualboot client and the xbox I have in my possession. My bug report that I made for this (closed it because I thought the problem was resolved--process allocation) is: https://bugzilla.samba.org/show_bug.cgi?id=4207. - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFWMpl6CkrZkzMC68RAkbPAJ44GsTfcyOj9zEFV9oCXFGzq7tHKwCeKqO0 HoLa/My3E5FVgzqnmF40CU8= =ZA7e -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 6.2 Release delayed?
On Mon, 2006-11-13 at 13:55 -0500, Kris Kennaway wrote: On Mon, Nov 13, 2006 at 08:24:47AM -0800, Joe wrote: A while back, I read that 6.2 was going to be released today. Now I see that 6.2 won't be released until Mid December. Are FreeBSD releases put out whenever they're ready or is there a set schedule that is adhered to? I only ask because I am trying to schedule some server upgrades and I scheduled my QA tests for this week, thinking 6.2 would be released today. ___ When they're ready. They almost always slip because of bugs that users only bother to report late in the release cycle :-) Kris Hmm. But the homepage says it's uploaded/uploading...? I've been away from FSBD for a couple of years and right now I'm just sitting waiting for 6.2 so I can get on it. What do they mean by this ? http://www.freebsd.org/releases/6.2R/schedule.html Any one? -- /Cheers Peo -- Registered Linux User #432116, get counted at http://counter.li.org www.whylinuxisbetter.net signature.asc Description: This is a digitally signed message part
Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Bill Moran wrote: In response to Lowell Gilbert [EMAIL PROTECTED]: Garrett Cooper [EMAIL PROTECTED] writes: Just wondering if anyone else was experiencing the same issues that I am.. it's related to Samba-3.0.22c and sockets / filehandles. For some odd reason every couple days (~2 days) I have to restart the smbd daemon because it eats up 6000+ filehandles, just for sockets I assume (based on netstat output). At the point where it reaches 8000 some filehandles open, the system refuses to fork, forcing me to login as root on the console directly instead of via SSH. My machine is a local / preferred master (smbd fights with XP Home clients because they want to be master browsers), with limited access to a few XP clients (4 clients at any given point in time), plus an XBox using smbclient with XBox Media Center. Have you investigated the possibility that Samba legitimately needs more filehandles than that? Even if there are only 4 clients, they may be opening 2000 files each (The output of smbstatus right before the system exhausted its filehandles would be interesting) If that's the case, you can update the amount of available filehandles using sysctl or by recompiling your kernel. We have some PostgreSQL servers that require the filehandle limit be raised to 5, for example. Will give that a thought--thanks! - -Garrett -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFWMtF6CkrZkzMC68RAu37AJ94ynYimAmz7u5wJTsYqJPWD4hyUgCfcHun PK7vUcytITYlRmfunW68qHU= =Pfsj -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Laptop Wireless
The OP replied off-list with his output from dmesg. I'm sending it back to the list in the off-chance that someone knows more about this wireless adapter. -Damian - Forwarded message from Rem P Roberti [EMAIL PROTECTED] - Delivered-To: [EMAIL PROTECTED] X-ASG-Debug-ID: 1163208958-311e00bd-Xqh92z X-Barracuda-URL: http://dfspam01.vail:80/cgi-bin/mark.cgi X-Barracuda-Connect: cprobd02.vailsys.com[63.210.102.130] X-Barracuda-Start-Time: 1163208958 Date: Fri, 10 Nov 2006 17:35:54 -0800 From: Rem P Roberti [EMAIL PROTECTED] User-Agent: Thunderbird 1.5.0.8 (X11/20061109) To: Damian Wiest [EMAIL PROTECTED] X-ASG-Orig-Subj: Re: Laptop Wireless Subject: Re: Laptop Wireless In-Reply-To: [EMAIL PROTECTED] X-Barracuda-Bayes: INNOCENT GLOBAL 0.5363 1. 0.7500 X-Barracuda-Virus-Scanned: by Barracuda Spam Firewall at vailsys.com X-Barracuda-Spam-Score: 1.25 X-Barracuda-Spam-Status: No, SCORE=1.25 using global scores of TAG_LEVEL=2.8 QUARANTINE_LEVEL=3.5 KILL_LEVEL=7.5 tests=BSF_RULE7568M X-Barracuda-Spam-Report: Code version 3.02, rules version 3.0.25571 Rule breakdown below pts rule name description -- -- 0.50 BSF_RULE7568M BODY: Custom Rule 7568M On Sun, Nov 05, 2006 at 07:57:03AM -0800, Rem P Roberti wrote: Would someone point me in the right direction here. I have an old Compaq Presario 1692 that my sister-in-law gave to me after she upgraded. I installed FreeBSD 6.1 and everything is working fine. However, the laptop also came with a Belkin Wireless G (F5D7011) notebook card, and I would like to learn how to install the appropriate drivers for the card to work. I am new to FreeBSD, and have glanced at the Handbook section dealing with wireless. It's a little daunting at this time, and I haven't yet been able to make sense out of it with respect to this laptop and wireless card. Any help in making the process understandable would be much appreciated. Rem Can you post the dmesg? Assuming that particular device has a working driver, you can probably use ifconfig for most of the wireless settings. -Damian Thanks for the reply, Damian. Here is the dmesg: Copyright (c) 1992-2006 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 6.1-RELEASE #2: Fri Nov 3 08:22:20 PST 2006 rem@:/usr/src/sys/i386/compile/REMKERNEL Timecounter i8254 frequency 1193182 Hz quality 0 CPU: AMD-K6(tm) 3D processor (432.98-MHz 586-class CPU) Origin = AuthenticAMD Id = 0x58c Stepping = 12 Features=0x8021bfFPU,VME,DE,PSE,TSC,MSR,MCE,CX8,PGE,MMX AMD Features=0x8800SYSCALL,3DNow real memory = 201261056 (191 MB) avail memory = 187408384 (178 MB) kbd1 at kbdmux0 K6-family MTRR support enabled (2 registers) ACPI disabled by blacklist. Contact your BIOS vendor. cpu0 on motherboard pcib0: AcerLabs M1541 (Aladdin-V) PCI host bridge pcibus 0 on motherboard pir0: PCI Interrupt Routing Table: 7 Entries on motherboard pci0: PCI bus on pcib0 agp0: Ali M1541 host to AGP bridge mem 0xe000-0xe3ff at device 0.0 on pci0 pcib1: PCI-PCI bridge at device 1.0 on pci0 pci1: PCI bus on pcib1 pci1: display, VGA at device 0.0 (no driver attached) isab0: PCI-ISA bridge at device 7.0 on pci0 isa0: ISA bus on isab0 pcm0: ESS Solo-1 (unknown vendor) port 0x1080-0x10bf,0x1070-0x107f,0x1060-0x106f,0x10c4 -0x10c7,0x10c0-0x10c3 irq 5 at device 9.0 on pci0 cbb0: TI1211 PCI-CardBus Bridge at device 10.0 on pci0 cardbus0: CardBus bus on cbb0 pccard0: 16-bit PCCard bus on cbb0 pci0: simple comms at device 15.0 (no driver attached) atapci0: AcerLabs M5229 UDMA33 controller port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xfc 90-0xfc9f at device 16.0 on pci0 ata0: ATA channel 0 on atapci0 ata1: ATA channel 1 on atapci0 pci0: bridge at device 17.0 (no driver attached) ohci0: AcerLabs M5237 (Aladdin-V) USB controller mem 0xfc00-0xfc000fff irq 5 at dev ice 20.0 on pci0 ohci0: [GIANT-LOCKED] usb0: OHCI version 1.0, legacy support usb0: AcerLabs M5237 (Aladdin-V) USB controller on ohci0 usb0: USB revision 1.0 uhub0: AcerLabs OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered pmtimer0 on isa0 orm0: ISA Option ROMs at iomem 0xc-0xcb7ff,0xdc000-0xd on isa0 atkbdc0: Keyboard controller (i8042) at port 0x60,0x64 on isa0 atkbd0: AT Keyboard irq 1 on atkbdc0 kbd0 at atkbd0 atkbd0: [GIANT-LOCKED] psm0: PS/2 Mouse irq 12 on atkbdc0 psm0: [GIANT-LOCKED] psm0: model Generic PS/2 mouse, device ID 0 fdc0: Enhanced floppy controller at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0 fdc0: [FAST] fd0: 1440-KB 3.5 drive on fdc0 drive 0 ppc0: Parallel port at port 0x378-0x37f irq 7 on isa0 ppc0: Generic chipset (EPP/NIBBLE) in COMPATIBLE mode ppbus0: Parallel port bus on ppc0 plip0: PLIP network interface on ppbus0 lpt0: Printer on ppbus0 lpt0:
Re: 6.2 Release delayed?
Peo Nilsson wrote: On Mon, 2006-11-13 at 13:55 -0500, Kris Kennaway wrote: On Mon, Nov 13, 2006 at 08:24:47AM -0800, Joe wrote: A while back, I read that 6.2 was going to be released today. Now I see that 6.2 won't be released until Mid December. Are FreeBSD releases put out whenever they're ready or is there a set schedule that is adhered to? I only ask because I am trying to schedule some server upgrades and I scheduled my QA tests for this week, thinking 6.2 would be released today. ___ When they're ready. They almost always slip because of bugs that users only bother to report late in the release cycle :-) Kris Hmm. But the homepage says it's uploaded/uploading...? I've been away from FSBD for a couple of years and right now I'm just sitting waiting for 6.2 so I can get on it. What do they mean by this ? http://www.freebsd.org/releases/6.2R/schedule.html Any one? that schedule is the perfect world schedule. things have slipped. we are still in the BETA stages for 6.2 at the moment. Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: pkg_cutleaves listing needed ports as leaf nodes.....
On 11/13/06 09:35, Lowell Gilbert wrote: Eric Schuele [EMAIL PROTECTED] writes: When I use `pkg_cutleaves -l` to list leaf nodes. It is listing things I know are required by other apps. These aren't build dependencies. For example, it lists g-wrap, and libpcap. If I remove g-wrap, my gnucash2 immediately refuses to run. And I know libpcap was an option I selected for NTop. There are others as well. I have noticed that a `make pretty-print-run-depends-list` is empty for gnucash2. Is that significant? Why would these not be +REQUIRED_BY something? `pkgdb -F` doesn't mention anything at all. If something has no +REQUIRED_BY file... how can I go about determining why its on my machine or which port installed it? Obviously top level items I installed aside. Thanks. [Running 6.2-PRERELEASE] The requirements files are definitely supposed to be there, and their non-presence constitutes corruption in your package database. pkg_cutleaves can't figure out requirements that aren't recorded, so getting the package database restored has to be your first step. The obvious way of fixing the package database is to reinstall all of your ports before removing the leaves. You may not need to use such a brute-force solution, though... If you have backups of /var/db/pkg, you could go through and try to find the dependencies as they existed when the backup was made. Obviously, this might not be fully up-to-date; however, it's likely to be better than what you have now. Good luck. Thanks for the response. Well, I would accept this without any question... especially given the full story of my machine (I did loose /var... I did reinstall everything... but after reinstalling everything, there was a different number of ports installed??? I then pulled out a backup and grabbed some straglers and got closer.). However, sticking with my gnucash2 example. You would think if I were to uninstall gnucash2, uninstall g-wrap, and reinstall gnucash2, it would correct this problem. Yet it remains. It seems odd to me. In fact looking at the backup I have, g-wrap is not +REQUIRED_BY anything. I wonder if the port(s) is somehow broken? Either way... I think I'm gonna just wait till 6.2 is cut and then rebuild (again). Simply because this is quite a systemic problem. I'm not sure I can confidently clean it up 100%. If I fail to register (for lack of a better word) some port(s) in the database, they will never get updated, as my system will not know they are present. And eventually things will get too out of whack... odd things will begin happening... etc, etc. Lots of posts to questions@ later... someone will say just rebuild the d#$% thing. :) I'll re-evaluate the situation at that time. Again, thanks for the response. -- Regards, Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
using ipfw for NAT mapping in a 1:1 fake:real IPs for VPN
Hi, I have a pretty complicated setup currently and am trying to figure out exactly how to implement it. I'm pretty unfamiliar with freebsd, the last incarnation I used was 4.3 and I only used it for a few months before moving to linux. I have a VPN setup for an IP range 10.0.0.1-10.0.0.255 for clients connecting using OpenVPN. Now I am handling NAT for these up to 5 IPs. I have 5 real IPs that are allocated to the machine that the VPN server runs on (OpenVPN). I need each client to have a real and unique IP, although not from the client's viewpoint. From my understanding, I would get OpenVPN to give out IPs 10.0.0.1-10.0.0.5. I would then set up rather than a standard NAT for like 192.168.0.0/24 through A.B.C.D (single real IP) I would now set up nat 10.0.0.1 through A.B.C.D nat 10.0.0.2 through A.B.C.E etc Does this make sense and am I missing something? These would be going through BSD's tun-type device. Thanks, -James ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Question about Ventrilo port at startup
Miles [EMAIL PROTECTED] writes: Running 6.1 installed from the most recent .iso CD and sync'd ports through CVS, I wish to have the Ventrilo port start up as a daemon upon reboot, however, I'm not having any success in having this happen. I did some searching with Google and found little information specific to FreeBSD for Ventrilo at all, let alone a start up script. The port has one, but it seems to not work, rather it is that I do not know how to make it work properly. Trying to run it results in it exiting out without anything starting. Searching the Handbook, I found that section on rc.d, and modifying a sample script there I was able to get Ventrilo to start from the script, however, it still wouldn't work if I put a line in /etc/rc.conf ventrilo_enable=YES That should be enough. Can you try calling the script by hand, giving the forcestart parameter? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
USB Wireless
As you can no doubt see, I have been going round and round with trying to get an old Compaq Presario connected via wireless. The original Belkin card that came with the laptop does not seem to be supported. At least it does not show up in the handbook under supported devices. Further, it does not show up at all in the dmesg. However, I do have a Linksys USB wirelss adapter that does show up in the USB, correctly identified in the dmesg under ugen0. I cannot find any info on wireless USB devices in the handbook, and am wondering if anyone has had any success connecting with these wireless adapters. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Leo L. Schwab wrote: I recently installed FreeBSD 6.1 on my gateway. It replaced an installation of FreeBSD 4.6.8 (fresh install, not an upgrade) on which I had disabled the SSH server. Since all the bugs in SSH are fixed now ( :-) ), I thought I'd leave the server on, and am somewhat dismayed to discover that I now get occasional brute-force/dictionary attacks on the port. Whichever service you have running, if you look in the log you will find attempts of attack, ssh is no different, it's a target. Honestly, I wouldn't worry about it: review your config and make some simple choices to reduce the noise, see this article: http://www.securityfocus.com/infocus/1876 Rather than reposting myself - this issue is regularly debated, I think last time (or last time I participated) was debated 19-09-2006. Check the archive. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Boot from CD
Hello everybody. I'm working on a thing I never tried before. I did some googling but I don't think I haven't found any correlated to this. The situation is pretty simple: I'm configuring a FreeBSD (6.1) server to boot from a SAN thru a QLogic 2340 Fiber Channel card. This in general is not a problem as I already have another working machine with this solution. Now for a couple of reason not related to FreeBSD this new machine won't yet _boot_ from the SAN itself but at the same time have all the system installed on the SAN. What I need to do is have a boot device that loads the bootsector, the kernel and then starts everything else from the disk in SAN. I thought about accomplishing this with a BOOT-CD that starts up the kernel and then from the fstab loads the /, /etc, /usr and so on from the SAN. Now my question is this: how do the kernel know where to search the fstab (considered that the fstab says where to find the /etc)? I mean: I suppose I have to put on the CDROM an exact /etc/fstab for that installation.? Or this could be avoided? Also because I may need to edit the fstab for the machine without having to reburn the CD. so what? Or maybe the kernel can actually just be read from the CD and then everything else from the ( SAN | local ) drive? Am I missing something? I'm yet in the make buildworld buildkernel stage so maybe when making the make distribution to create the ISO everything will appear clearer to me but right now something it's not really clear. I hope the scenario is clear. Any suggestion? Any link to any kind of documentation? Thank you very much. Andrea ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: image based stock spam
Brian the SARE Stock rules (and others) from www.rulesemporium.com are equally good at catching this stuff, and a lot lot lighter on CPU cycles. -- Martin On 11/13/06, Brian [EMAIL PROTECTED] wrote: Looks like the preferred approach many folks re the above problem is fuzzyocr? Since there isn't a port for that, is there another FreeBSD solution worth mentioning here? Brian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Testing firewire
David Kelly wrote: On Nov 12, 2006, at 5:03 PM, Erik Norgaard wrote: So I thought: Is this like ethernet that I need a crossed cable or can I connect the two with an ordinary cable and check that it works? There is no master nor slave in Firewire, all are peers, and all have (essentially) the same socket. If the cable fits, it works. Witness the difference between a hardware standard driven by Apple (Firewire) and one from Intel/Microsoft (USB). You might also try fwe(4) if your other OS's are capable of doing IP over firewire. Thanks, both run FreeBSD and I was thinking of trying fwe. I just don't know enough to feel certain I wouldn't short circuit and fry both devices if I connected them with a standard cable. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: USB Wireless
As you can no doubt see, I have been going round and round with trying to get an old Compaq Presario connected via wireless. The original Belkin card that came with the laptop does not seem to be supported. At least it does not show up in the handbook under supported devices. Further, it does not show up at all in the dmesg. However, I do have a Linksys USB wirelss adapter that does show up in the USB, correctly identified in the dmesg under ugen0. I cannot find any info on wireless USB devices in the handbook, and am wondering if anyone has had any success connecting with these wireless adapters. Rem Oops...the sentence should read ...that does show up in the dmesg, correctly identified in the dmesg under ugen0. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]