Re: Secure remote shell
ssh using key authentication and sudo configured to allow a certain user to run the needed commands and only the needed commands as root. rsh? Are you living in a cave? :) Thanks for the replies. The original script was written at the cave era, only I am trying to improve it today. Would that be better? Using key authentication so ssh needs no password (and key access limit to limit the client connecting via ssh) and limiting sudo to run only the mentionned script. /usr/bin/ssh [EMAIL PROTECTED] /usr/local/bin/sudo /usr/local/sbin/remove_user foor_bar TIA. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 2nd try : tap SIOCIFCREATE failure
On Wed, Nov 28, 2007 at 03:00:35PM +0100, Alain G. Fabry wrote: When creating the tap interface, my system gives the following FreeBSD# uname -a FreeBSD FreeBSD 6.2-RELEASE FreeBSD# kldstat Id Refs AddressSize Name 1 11 0xc040 6f7554 kernel 21 0xc0af8000 140c0snd_hda.ko 32 0xc0b0d000 479a8sound.ko 41 0xc0b55000 1d278kqemu.ko 51 0xc0b73000 8ea4 aio.ko 61 0xc4f44000 9000 if_bridge.ko 71 0xc5079000 16000linux.ko 81 0xc60ce000 4000 if_tap.ko FreeBSD# ifconfig tap0 create ifconfig: SIOCIFCREATE: Invalid argument Trying to get this running so my qemu clients have network access... Thanks in advance, Alain Hrm, getting the same on 5.5/6.2, though it works on 7.0/-CURRENT. Try building `device tap' in kernel, and if it fails, I'd ask [EMAIL PROTECTED] HTH, -- Yuri Pankov [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Firefox 2.0.0.9 issues on 7.0-BETA3
On Wed, Nov 28, 2007 at 04:04:57PM -0600, Doug Poland wrote: On Wed, Nov 28, 2007 at 03:58:48PM -0500, Jeremy Gransden wrote: I did some googling but nothing interesting turned up. I find it curious that the latest build of Thunderbird works, but linux-firefox fails like it's native sibling. All help is appreciated... what are the permissions on ~/.mozilla and its contents ~/.mozilla700 ~/.mozzilla/firefox 700 ~/.mozilla/plugins755 -- Regards, Doug Check also ownership on ~/.mozilla (ie, ls -ld ~/.mozilla). sudo chown -R root:wheel .mozilla firefox echo $? 1 sudo chown -R yuri:users .mozilla firefox Runs fine :-) -- Yuri Pankov [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: In the spirit of Godwin's law - I propose Beastie's law
Hi, Jerry McAllister wrote: On Tue, Nov 27, 2007 at 06:13:21PM +0800, Erich Dollansky wrote: Joshua Isom wrote: On Nov 27, 2007, at 2:44 AM, Erich Dollansky wrote: Joshua Isom wrote: On Nov 27, 2007, at 1:32 AM, Erich Dollansky wrote: Aryeh M. Friedman wrote: His was a classic case of what is often called the 'radical right syndrom' I never have heard of this bevore. Now, how does this fit in OS type questions. I'd really have to think hard to rationalize that.Sorry. Nobody seems to know this at all anymore. PS: I hope real nazis never read this as they will not be able to understand the irony in here ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Secure remote shell
root, that could be automated in a script (no password required). - have information input into browser - have web server save information to server disk in non-executable format - have script (or admin) authenticate/authorize commands to be performed (recommend doing this manually for a while to ensure you capture as many escape type bugs as possible) - have commands via another script scrubbed/cleaned/tested - have cron perform commands at every X minutes the most secure compared to others. only few programs has to be checked for security this way. it's not dirty way i think ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
Is a partition close to full, use df to see that. doesn't matter as ls read, not writes. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
ls | wc strange. i did [EMAIL PROTECTED] ~/b]$ a=0;while [ $a -lt 1 ];do mkdir $a;a=$[a+1];done completed 25 seconds on 1Ghz CPU ls takes 0.1 seconds user time, ls -l takes 0.3 second user time. unless you have 486/33 or slower system there is something wrong. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
Wojciech Puchar wrote: ls | wc strange. i did [EMAIL PROTECTED] ~/b]$ a=0;while [ $a -lt 1 ];do mkdir $a;a=$[a+1];done completed 25 seconds on 1Ghz CPU ls takes 0.1 seconds user time, ls -l takes 0.3 second user time. unless you have 486/33 or slower system there is something wrong. Has anyone tried fsck and/or smartmontools on the drive? Maybe something like Spinrite? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
In response to Wojciech Puchar [EMAIL PROTECTED]: ls | wc strange. i did [EMAIL PROTECTED] ~/b]$ a=0;while [ $a -lt 1 ];do mkdir $a;a=$[a+1];done completed 25 seconds on 1Ghz CPU ls takes 0.1 seconds user time, ls -l takes 0.3 second user time. unless you have 486/33 or slower system there is something wrong. Another possible scenario is that the directory is badly fragmented. Unless something has changed since I last researched this (which is possible) FreeBSD doesn't manage directory fragmentation during use. If you're constantly adding and removing files, it's possible that the directory entry is such a mess that it takes ls a long time to process it. Of course, Wojciech's test won't demonstrate this, as the directory is freshly created, even to the point that the filenames are actually in alpha order in the directory. One method to test this would be to tar up the directory and extract it somewhere else on the machine (assuming you have enough space to do so). If the newly created directory doesn't have the problem, it's likely that the directory entry has become a mess. Use ls -l to compare the sizes of the actual directories themselves as a little exercise. Anyway, if that turns out to be the problem, you can fix it by taring the directory and then restoring it from the tarfile. Not an ideal solution, mind you. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 7.0 installation, and Xorg in particular
Freminlins wrote: I used to find FreeBSD easy. What has happened? I have a couple of machines I usually install new versions on, one is headless the other is a desktop machine (which was a 100% reliable 5.4 installation). I boot the headless machine using floppies, then install across the net. But something has happened such that I now need five floppies, and I have to put the boot one in at least twice. This wasn't the case previously. It now reminds me of an OS/2 installation with its floppy shuffling. No idea about floppies. Then for my desktop machine. sysinstall crashes if I try to install x.org. The pain of using a beta-install. No packages included. Wait for the release. So I do a pkg_add -r xorg. After about 70 packages I give up. I only used to have about 65 packages in total on my old desktop, now I need more than 70 and I haven't even got x windows up yet. So I go off and have a look and discover that x.org 7.x is modular - Which is a blessing for maintenance. http://blogs.ittoolbox.com/unix/bsd/archives/xorg-72-on-freebsd-13661;. This fellow is talking about 300 packages just for x.org! This is nuts. No two ways about it. Whoever decided to do this needs their head (or heads) examined. ... It's not like there's more stuff being installed. Only you can be more selective about which parts you need and don't need. And you don't have to rebuild all of xorg for a little update. It used to be so simple. Now it's not. If x.org didn't work for some reason I wouldn't want to track down which of hundreds of packages is missing. Who would? That's what the x11/xorg meta-port is for. Also, I noticed that python as well as perl was being installed. Is not one scripting language enough for x.org? Why are two needed? I suggest you take a look at what depends on them (pkg_info). You will have the answer, then. None of them is required to run FreeBSD. ... more flamewar fodder ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
On Thu, 29 Nov 2007 08:42:44 -0500 Bill Moran [EMAIL PROTECTED] wrote: In response to Wojciech Puchar [EMAIL PROTECTED]: ls | wc strange. i did [EMAIL PROTECTED] ~/b]$ a=0;while [ $a -lt 1 ];do mkdir $a;a=$[a+1];done completed 25 seconds on 1Ghz CPU ls takes 0.1 seconds user time, ls -l takes 0.3 second user time. unless you have 486/33 or slower system there is something wrong. Another possible scenario is that the directory is badly fragmented. Unless something has changed since I last researched this (which is possible) FreeBSD doesn't manage directory fragmentation during use. If you're constantly adding and removing files, it's possible that the directory entry is such a mess that it takes ls a long time to process it. Yes, that's also possible. But sorting is really the culprit here: it *is* possible to create a directory with filenames in such a way that it triggers Quicksort's O(N^2) worst case instead of O(N log N). The following Python (2.5) program calls ls -lf and sorts its output with Python's own stable sort() routine (which is NOT qsort(3)). On a directory with 44,000 entries, it runs orders of magnitude faster than ls -l, even though it has to use the decorate-sort-undecorate idiom to sort the output according according the filename, and it is interpreted rather than compiled! I guess that replacing qsort(3) in /usr/src/lib/libc/gen/fts.c:fts_sort() with another sort algorithm which doesn't expose this anomaly would solve that problem. - cut here -- cut here #!/usr/bin/env python # sortls.py -- sort output of ls -lf with python's stable sort routine. import os def sort_ls_lf(path): Sort the output of ls -lf path os.chdir(path) lines = os.popen(ls -lf, r).readlines() dsu = [ (line.split()[-1], line) for line in lines ] dsu.sort() return ''.join(tupl[1] for tupl in dsu) if __name__ == '__main__': import sys if len(sys.argv) 2: print sys.stderr, Usage:, sys.argv[0], path sys.exit(1) path = sys.argv[1] try: print sort_ls_lf(path) except IOError: pass # silently absorb broken pipe and other errors - cut here -- cut here Regards, -cpghost. -- Cordula's Web. http://www.cordula.ws/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Xen howto: inexplicable Kernel image does not exist error
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 2007-Nov-29, at 01:29, Le Cocq Michel wrote: I'm in front of the same trouble, did you find a solution ? No, I haven't found a solution, and haven't received any suggestions. I've moved on until the FreeBSD under Xen thing becomes a bit more baked. M Matt Pounsett a écrit : -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I'm trying to get FreeBSD running under Xen on a RedHat RHEL5 box. I seem to be stumped really early in the process by something... strange. I don't have a good explanation for it, other than Xen doing something weird, and thought I'd ask if anyone else had seen something similar. All the information I've found googling this error relates to users forgetting to install key packages, which doesn't seem to be related here. Basically, I'm following the directions at http://www.yuanjue.net/ xen/howto.html. When I hit step 4, and try to run xm create, xen complains: # xm create -c freebsd_xen_INSTALL Using config file ./freebsd_xen_INSTALL. Error: Kernel image does not exist: /home/mattp/FreeBSD-XENU/ freebsd-XENU_INSTALL However, that kernel file does exist: # ls -l /home/mattp/FreeBSD-XENU/freebsd-XENU_INSTALL - -rw-r--r-- 1 mattp users 7379253 Aug 26 2006 /home/mattp/ FreeBSD-XENU/freebsd-XENU_INSTALL I'm using the config file suggested by the instructions with only two changes: 1) change the 'kernel' reference to the kernel file listed above 2) change the 'disk' reference to the image file created in step 1 (I also tried without this change) Am I missing something here? Looks to me like either Xen is trying to chroot somewhere before loading the kernel (don't see anything relevant in the config file I downloaded) or something is broken somewhere. Has this been seen before, or does anyone have suggestions about where to check for the error? Matt -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (Darwin) iD8DBQFHHPGpmFeRJ0tjIxERAgC3AKCWWmRyK3PgI0NXH2FZDEUE4ZBeIwCeP0ZI qTEXAYowhmspZCDlN2HMW68= =JSqE -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (Darwin) iD8DBQFHTtUImFeRJ0tjIxERAjx5AJ9SCkb/7MvK+UsLl1Y49khEVcKP2QCaAuQA 2QVAXA0wKbde60wKxF/AzEQ= =zrJs -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Xen howto: inexplicable Kernel image does not exist error
On Thu, Nov 29, 2007 at 10:04:37AM -0500, Matt Pounsett wrote: On 2007-Nov-29, at 01:29, Le Cocq Michel wrote: I'm in front of the same trouble, did you find a solution ? No, I haven't found a solution, and haven't received any suggestions. I've moved on until the FreeBSD under Xen thing becomes a bit more baked. snip # xm create -c freebsd_xen_INSTALL Using config file ./freebsd_xen_INSTALL. Error: Kernel image does not exist: /home/mattp/FreeBSD-XENU/ freebsd-XENU_INSTALL However, that kernel file does exist: # ls -l /home/mattp/FreeBSD-XENU/freebsd-XENU_INSTALL - -rw-r--r-- 1 mattp users 7379253 Aug 26 2006 /home/mattp/ FreeBSD-XENU/freebsd-XENU_INSTALL Wild guess (I don't use Xen): Have you tried changing permissions on the kernel e.g # chmod 555 freebsd-XENU_INSTALL same as the freebsd kernel. Maybe: # chown root:wheel freebsd-XENU_INSTALL also might be worth a try. -- Frank Contact info: http://www.esperance-linux.co.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Secure remote shell
On Nov 28, 2007 11:37 PM, Steve Bertrand [EMAIL PROTECTED] wrote: Although sudo and SSH are part of the solution, providing a web server with full rights on a remote server if they can gain keyless entry is a large mistake. Steve, at no point does the original email say we need to execute user input. sudo does not equate to providing full rights. I suggest reading the manpage. check yourself before you wreck yourself. I apologize, you are correct. Perhaps I was in a different context. I was assuming that data passed via a web browser was in fact data that needed to be executed as the user (web server context). Registering users is done wia a web page, and the web server will remote execute a script on the mail server to add the users in the aliases and run newaliases, remote execute a script to the radius server to add the user in the radius tables and restart radius, etc. Pardon my ignorance, I don't regularly use sudo. However, depending on how the user is being added to the mail and/or RADIUS server, if the web server has root auth via sudo to adduser, does that not allow the web server to create a user within whatever group it wants to? check yourself before you wreck yourself Fair enough. Strong statement, I'll stand by it if necessary :) A legitimate question: If I add user 'www' to 'sudoers' with the ability to run adduser, does that not give user 'www' to put the added user in a group, perhaps wheel? which is why you don't user 'sudo adduser' you use 'sudo myadduser.sh'. myadduser.sh is a wrapper around adduser (or pw, or whatever) If said commands are passed via 'user' to web browser to web server, run within context of the web server user, and web server user has sudo rights to the remote box, does that not mean that the server is essentially 'executing user input'? Steve no, you are executing commands on validated user input. validated either by javascript on the html form page, your language of choice on the page the form input is submitted to, or by the adduser wrapper script. if I were to only validate in one place I would not pick the javascript method. this is no different then taking a search term from an input box on a webpage, sanitizing it, and searching an sql database for it. -- The Mafia way is that we pursue larger goals under the guise of personal relationships. Fisheye ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 7.0 installation, and Xorg in particular
On 29/11/2007, Dominic Fandrey [EMAIL PROTECTED] wrote: So I do a pkg_add -r xorg. After about 70 packages I give up. I only used to have about 65 packages in total on my old desktop, now I need more than 70 and I haven't even got x windows up yet. So I go off and have a look and discover that x.org 7.x is modular - Which is a blessing for maintenance. But not for an end user. Who really can keep track of 300 packages? Who has some ports installed, changes one of them which is a dependency and finds something else breaks? Now this will happen to X.org. It's not like there's more stuff being installed. Only you can be more selective about which parts you need and don't need. And you don't have to rebuild all of xorg for a little update. But it is FAR more complicated. I stopped installing it after about 70 packages. I noticed it installed Cyrillic and Ethopic (didn't even know there was one) fonts. I didn't want either of them. In the old days I simply ensured that Cyrillic fonts were unchecked. Now I am supposed to go through 300 packages. It might be more selective but it is not easier. That's what the x11/xorg meta-port is for. Well the reasoning behind it is broken, and so is its implementation (see above about the unwanted fonts). I suggest you take a look at what depends on them (pkg_info). You will have the answer, then. None of them is required to run FreeBSD. Err, yeah. Look through hundreds of packages to see which dependencies they have. Helpful. Not. This way of doing X11 is seriously unhelpful to end users. If having individual packages for everything is so good, please tell me why everything in /bin, /usr/bin and so on is not an individual package. It's because the idea of doing so is dumb. Frem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
ls takes 0.1 seconds user time, ls -l takes 0.3 second user time. unless you have 486/33 or slower system there is something wrong. Has anyone tried fsck and/or smartmontools on the drive? Maybe something like Spinrite? he stated that CPU load is near 100% so it's not disk problem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
unless you have 486/33 or slower system there is something wrong. Another possible scenario is that the directory is badly fragmented. Unless something has changed since I last researched this (which is it is for sure. the fix would be mv /usr/home /usr/oldhome;mkdir /usr/home;mv /usr/oldhome/* /usr/home and after successfull move - rm -rf /usr/home Of course, Wojciech's test won't demonstrate this, as the directory is freshly created, even to the point that the filenames are actually in indeed ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
I guess that replacing qsort(3) in /usr/src/lib/libc/gen/fts.c:fts_sort() with another sort algorithm which doesn't expose this anomaly would solve that problem. for sure his /home wasn't worst case. it's just average case so it's not that problem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ataidle - causing apache cvs timeouts
I'm running ataidle on my personal server to save electricity. saving your drive instead of electricity is much more economic. all drives prefers running in stable environment - like being up 24h/day. average drive takes 10Watts , so it's 90kWh/year. in Poland it's about 30PLN/year, assuming your drive is down half time you will save 15PLN/year which is about six US dollars :) much less that increased chance of drive failure. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
before I rebuild Gnome2....
o The latest problem, first noted about 12 hours ago, is that while gdm worked, nothing else of gnome does. Not as kline, not as root. Am I missing some startup or initialization binary?? gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Broadcom
Am Donnerstag, 29. November 2007 18:52:06 schrieb Miguel Alcántara: Grettings to this list. Well, I have a doubt about Broadcom HOT_TOPIC and FBSD 6.2 Good for you. What's the question? -- Heiko Wundram Product Application Development ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
it is for sure. the fix would be mv /usr/home /usr/oldhome;mkdir /usr/home;mv /usr/oldhome/* /usr/home and after successfull move - rm -rf /usr/home I really hope you meant: rm -rf /usr/oldhome Also, mv just moves pointers around, wouldn't a cp -Rp be needed instead? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: before I rebuild Gnome2....
On Thu, Nov 29, 2007 at 10:21:06AM -0800, Gary Kline wrote: o The latest problem, first noted about 12 hours ago, is that while gdm worked, nothing else of gnome does. Not as kline, not as root. Am I missing some startup or initialization binary?? I forgot to add that when I try to de/re-install gnome2, I get hundreds of these no-origin messages. pkg_delete: package font-bitstream-100dpi-1.0.0 has no origin recorded Also, KDE comes up as normal [?] gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Broadcom
Grettings to this list. Well, I have a doubt about Broadcom HOT_TOPIC and FBSD 6.2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 7.0 installation, and Xorg in particular
Freminlins wrote: snip Err, yeah. Look through hundreds of packages to see which dependencies they have. Helpful. Not. This way of doing X11 is seriously unhelpful to end users. If having individual packages for everything is so good, please tell me why everything in /bin, /usr/bin and so on is not an individual package. It's because the idea of doing so is dumb. Frem. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Allthough I think the modular approach to Xorg is a good thing, I have to agree the xorg-meta port installs A LOT of ports. A xorg-lite port an xorg-lite port would be usefull for a user who is planning on installing a low-end X windows environment. I thought I read at the freebsd-ports list such thing was being worked on some time ago. But I haven't heard anything about it anymore for quite some time now. What happened to that idea ? Regards, -- -Frank Staals ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kpersonalizer: cannot connect to X server
williamkow schrieb: I am newbie, recently I have installed FreeBSD 6.2-Stable, and manage to configure and display the x window manager (X11) using command startx. and then i run command startkde and I received error message (kpersonalizer: cannot connect to X server) However, if i run command kdm, then it prompt for login screen. I am wondering the command startkde is not correct way to call KDE. please advise me. Thank you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] startkde should be fine also... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ls -l takes a forever to finish.
the fix would be mv /usr/home /usr/oldhome;mkdir /usr/home;mv /usr/oldhome/* /usr/home and after successfull move - rm -rf /usr/home I like this idea very much... It results in 100% data loss of your /usr/home contents... ;-) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Network Configuration with Jails. [Resolved]
Hello, I run a FreeBSD Jailer and I want to have multiple jails in 2 seperate networks. The server has 2 network interfaces and each of them are connected in a different network. Say vlan1 and vlan2. My problem is that all the network traffic is going through the first interface (vlan1). What I need is that a jail in vlan1 can't communicate with a jail in vlan2 (and vice-versa). Is it possible to split the network traffic in the right interfaces and use a diffrent default gateway for each of them ? Here is my /etc/rc.d configuration. defaultrouter=192.168.1.1 static_routes=vlan1 vlan2 route_vlan1=-net 192.168.1.0/24 192.168.1.1 route_vlan2=-net 192.168.2.0/24 192.168.2.1 # vlan1 interface config. ifconfig_bge0=inet 192.168.1.10 netmask 255.255.255.0 ifconfig_bge0_alias0=192.168.1.11 netmask 255.255.255.255 # vlan2 interface config. ifconfig_bge1=inet 192.168.2.10 netmask 255.255.255.0 ifconfig_bge1_alias0=inet 192.168.2.11 netmask 255.255.255.255 I tried to remove the default gateway but then the server was unreachable. I am thinking of using pf to resolve my issue. PF is probably the way to go. In particular using route-to to send traffic originating from 192.168.2.0/24 to 192.168.2.1 I'm not totally sure what your static routes even accomplish. The kernel will establish routes for directly connected networks automatically. So probably some rules of interest # keep jails from talking to each other block in on bge0 from 192.168.2.0/24 to 192.168.1.0/24 block in on bge1 from 192.168.1.0/24 to 192.168.2.0/24 # ignore the default route pass out route-to (bge1 192.168.2.1) from 192.168.2.0/24 to ! 192.168.2.0/24 \ keep state # redundant because of the default route # which actually does what we want pass out route-to (bge0 192.168.1.1) from 192.168.1.0/24 to ! 192.168.1.0/24 \ keep state It's working perfectly. Thanks Josh ! -- Felix Langelier Unix Sysadmin [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Producing a staticly-linked package from ports
I have Claws-mail installed on my workstation. It's compiled here from ports. I need to generate a statically-linked package, for installation on an older install of FreeBSD. (6.1 RELEASE, but running Xorg 6.9.0, I am running Xorg 7.3) Can this be done? If so, what's the general procedure. Bob -- _ /o\ // \\ The ASCII \\ // Ribbon Campaign \V/ Against HTML /A\ eMail! // \\ signature.asc Description: PGP signature
Re: kpersonalizer: cannot connect to X server
On Thu, 2007-11-29 at 21:25 +0100, Tino Engel wrote: williamkow schrieb: I am newbie, recently I have installed FreeBSD 6.2-Stable, and manage to configure and display the x window manager (X11) using command startx. and then i run command startkde and I received error message (kpersonalizer: cannot connect to X server) However, if i run command kdm, then it prompt for login screen. I am wondering the command startkde is not correct way to call KDE. please advise me. Thank you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] startkde should be fine also... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I thought X had to be fully running to start another desktop on top of it, and that was done by xinit. Hence having to put startkde in .xinitrc. I think from the situation you're describing that you're correct, it ought to be running, but try putting startkde in the .xinitrc file and then just running startx. James ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Broadcom
Sorry, I don't know what could happen, it's no the first time(maybe gmail, or safari browser). Well, I must rewrite all over again. I have a laptop compaq presario f500 with a wireless integrated chip, which is a Broadcom one, it has winxp, fbsd6.2, rofreesbie. I had tested many times trying to load the bcmwl5_sys module generated with ndisgen, but all my tries finished in reboots, it's was not possible no have some information from any log, the only information showed ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Broadcom - complete version
Sorry, I don't know what could happen, it's no the first time(maybe gmail, or safari browser). Well, I must rewrite all over again. I have a laptop compaq presario f500 with a wireless integrated chip, which is a Broadcom one, it has winxp, fbsd6.2, rofreesbie. I had tested many times trying to load the bcmwl5_sys module generated with ndisgen, but all my tries finished in reboots, it was not possible no have some information from any log, the only information showed was about memory address. The same steps with RoFreeSBIE works!!. But from FBSD6.2: #pciconf -lv outputs: class=0x028000 card=0x1375103c chip=0x431114e4 rev=0x02 hdr=0x00 vendor='Broadcom Corporation' class=network As you can see, there is already a memory address for broadcom, so, when I try to load bcmwl5_sys, there are memory address problems. I'd like to know if my theory is correct or just sucks. And if that is correct what could I do?. Thanks, this is the third time that I send this message.(this time with firefox) -- $ miguel_alcántara $ low mode --- http://perling.wordpress.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Upgrading to 6.3-RC1 using freebsd-upgrade.sh Problem
Hello. After hearing FreeBSD 6.3-RC1 was released, I wanted to upgrade to that from my 6.3-BETA2 installation. This worked fine when I went from 6.2-RELEASE to 6.3-BETA2, but after trying to follow the directions at http://www.daemonology.net/blog/2007-11-10-freebsd-minor-version-upgrade.html I get an error. This is what happens: evo# sh freebsd-update.sh -f freebsd-update.conf -r 6.3-RC1 upgrade Looking up update.FreeBSD.org mirrors... 1 mirrors found. Fetching metadata signature for 6.3-PRERELEASE from update1.FreeBSD.org... failed. No mirrors remaining, giving up. evo# I would really like to upgrade as I've been having problems with Interrupt Storms on IRQ 11 since I upgraded to 6.3-BETA2. If someone could tell me what I'm doing wrong, or how I can use freebsd-update.sh to get FreeBSD 6.3-RC1 I would appreciate it very much. Here is my uname -a if that helps. FreeBSD evo.zero 6.3-PRERELEASE FreeBSD 6.3-PRERELEASE #0: Sat Nov 10 15:54:10 MST 2007 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/EVO2 i386 Thanks in advance. -- -Tony Chidester [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: In the spirit of Godwin's law - I propose Beastie's law
On Tue, Nov 27, 2007 at 11:43:27AM -0600, Kevin Kinsey wrote: An American's a person who isn't afraid to criticize the president but is always polite to traffic cops. That's a very good point (barring edge cases like belligerent idiots who aren't polite to traffic cops, either, but tend to end up on episodes of Cops because of it). -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] Brian K. Reid: In computer science, we stand on each other's feet. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Getting DHCP to 'update' DNS records locally
Apologies if this isn't the correct forum. I'd like to configure DNS on my home network but make it work simultaneously with DHCP. So, when hosts are plugged into the network and issued an IP, DNS is updated to reflect the hostnames. That way I can refer to all my machines by name in all databases and I can avoid hardcoding IP addresses. I know Windows allows name-based recognition even in the instance you're using DHCP, but I'd like it to work more generally with any type of machine on the network. The problem is, when I search for terms related to this, I get hits for DynDNS and all that stuff which is /not/ what I want. I'm not trying to update a remote DNS record. This is just a local thing. If there's a lightweight DNS server that comes with a DHCP daemon, that would be fine too. I just need to know where to start. Thanks, -Clint ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Getting DHCP to 'update' DNS records locally
On Thursday 29 November 2007, Clint Olsen wrote: Apologies if this isn't the correct forum. I'd like to configure DNS on my home network but make it work simultaneously with DHCP. So, when hosts are plugged into the network and issued an IP, DNS is updated to reflect the hostnames. That way I can refer to all my machines by name in all databases and I can avoid hardcoding IP addresses. I know Windows allows name-based recognition even in the instance you're using DHCP, but I'd like it to work more generally with any type of machine on the network. The problem is, when I search for terms related to this, I get hits for DynDNS and all that stuff which is /not/ what I want. I'm not trying to update a remote DNS record. This is just a local thing. If there's a lightweight DNS server that comes with a DHCP daemon, that would be fine too. I just need to know where to start. You can do this fairly easily with isc-dhcp3-server and bind/named. The dhcpd.conf(5) manpage (from isc-dhcp3-server) goes into quite a bit of detail on how to set this up (including what to put in named.conf). JN ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Getting DHCP to 'update' DNS records locally
On Nov 29, 2007, at 3:09 PM, Clint Olsen wrote: Apologies if this isn't the correct forum. I'd like to configure DNS on my home network but make it work simultaneously with DHCP. So, when hosts are plugged into the network and issued an IP, DNS is updated to reflect the hostnames. That way I can refer to all my machines by name in all databases and I can avoid hardcoding IP addresses. I know Windows allows name-based recognition even in the instance you're using DHCP, but I'd like it to work more generally with any type of machine on the network. The problem is, when I search for terms related to this, I get hits for DynDNS and all that stuff which is /not/ what I want. I'm not trying to update a remote DNS record. This is just a local thing. If there's a lightweight DNS server that comes with a DHCP daemon, that would be fine too. I just need to know where to start. Try the following; it is for DHCP and BIND9... http://my-mili.eu/matt/docs/dynamic-dns-with-dhcp-and-bind-9/ Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Amarok crashes X (since portupgrade)
Testing 7.0 beta2 so I should upgrade to beta3, but all was working well until I portupgraded yesterday. Now amarok shuts down X server: Nov 30 00:14:37 asus kdm-bin[1146]: X server for display :0 terminated unexpectedly I get a couple of lines of text if I start it from an xterm, but they are gone too quick to read. I will upgrade tomorrow, but my question is more: how can I discover which ports were upgraded most recently and how can I get more debug information about a GUI program which crashes the X server. -- Thanks, John. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Amarok crashes X (since portupgrade)
On Fri, 30 Nov 2007 00:47:01 + John Murphy [EMAIL PROTECTED] wrote: Testing 7.0 beta2 so I should upgrade to beta3, but all was working well until I portupgraded yesterday. Now amarok shuts down X server: Nov 30 00:14:37 asus kdm-bin[1146]: X server for display :0 terminated unexpectedly I get a couple of lines of text if I start it from an xterm, but they are gone too quick to read. I will upgrade tomorrow, but my question is more: how can I discover which ports were upgraded most recently I use a little shell script to find upgrade dates: #!/bin/sh cd /var/db/pkg list=$(ls -trd */+COMMENT) for item in ${list}; do _date=`stat -f %Sm ${item}` printf %-25s %s\n ${_date} `echo ${item} | sed 's/\/.*//'` done I can't help with the debug part though. Randy -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Getting DHCP to 'update' DNS records locally
On Thu, Nov 29, 2007 at 03:09:00PM -0800, Clint Olsen wrote: Apologies if this isn't the correct forum. I'd like to configure DNS on my home network but make it work simultaneously with DHCP. So, when hosts are plugged into the network and issued an IP, DNS is updated to reflect the hostnames. That way I can refer to all my machines by name in all databases and I can avoid hardcoding IP addresses. I know Windows allows name-based recognition even in the instance you're using DHCP, but I'd like it to work more generally with any type of machine on the network. The problem is, when I search for terms related to this, I get hits for DynDNS and all that stuff which is /not/ what I want. I'm not trying to update a remote DNS record. This is just a local thing. If there's a lightweight DNS server that comes with a DHCP daemon, that would be fine too. I just need to know where to start. dns/dnsmasq does exactly what you want. Dan -- Daniel Bye _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ pgpUtxtTtfcmT.pgp Description: PGP signature
Re: Amarok crashes X (since portupgrade)
On Thu, 29 Nov 2007 21:30:22 -0500 Randy Pratt [EMAIL PROTECTED] wrote: On Fri, 30 Nov 2007 00:47:01 + John Murphy [EMAIL PROTECTED] wrote: Testing 7.0 beta2 so I should upgrade to beta3, but all was working well until I portupgraded yesterday. Now amarok shuts down X server: Nov 30 00:14:37 asus kdm-bin[1146]: X server for display :0 terminated unexpectedly I get a couple of lines of text if I start it from an xterm, but they are gone too quick to read. I will upgrade tomorrow, but my question is more: how can I discover which ports were upgraded most recently I use a little shell script to find upgrade dates: #!/bin/sh cd /var/db/pkg list=$(ls -trd */+COMMENT) for item in ${list}; do _date=`stat -f %Sm ${item}` printf %-25s %s\n ${_date} `echo ${item} | sed 's/\/.*//'` done I can't help with the debug part though. Very useful script that. Many thanks. The only ports upgraded at the time were: Nov 29 01:23:55 2007 samba-3.0.26a_2,1 Nov 29 01:27:05 2007 samba-libsmbclient-3.0.26a_2 Nov 29 01:36:03 2007 xorg-server-1.4_3,1 Nov 29 01:42:21 2007 wxgtk2-2.6.3_5 wxgtk isn't a dependency of amarok so that's ruled out. With stdout stderr directed to a file I see lots of variations of: amarok: [CollectionDB] [ERROR!] [virtual QStringList SqliteConnection::query(const QString, bool)] sqlite3_compile error: amarok: [CollectionDB] [ERROR!] index tags_deviceid_index already exists amarok: [CollectionDB] [ERROR!] on query: CREATE INDEX tags_deviceid_index ON tags( deviceid ); Then just before X dies: amarok: [Moodbar] Resetting moodbar: kdecore (KAction): WARNING: KAction::insertKAccel( kaccel = 0x2b562520 ): KAccel object already contains an action name play_pause QLayout: Adding KToolBar/mainToolBar (child of QVBox/unnamed) to layout for PlaylistWindow/PlaylistWindow : Fatal IO error: client killed Amarok: [Loader] Starting amarokapp.. Amarok: [Loader] Don't run gdb, valgrind, etc. against this binary! Use amarokapp. amarokapp: Fatal IO error: client killed amarok: BEGIN: virtual CollectionDB::~CollectionDB() amarok: END__: virtual CollectionDB::~CollectionDB() - Took 0.00023s amarok: [virtual EngineController::~EngineController()] I tried using 'amarokapp', but the output looks the same to my untrained eye. Had to install mp3blaster (ncurses mp3 player) to play some tunes; it worked a treat :) -- Thanks, John. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Amarok crashes X (since portupgrade)
John Murphy schrieb: Very useful script that. Many thanks. The only ports upgraded at the time were: Nov 29 01:23:55 2007 samba-3.0.26a_2,1 Nov 29 01:27:05 2007 samba-libsmbclient-3.0.26a_2 Nov 29 01:36:03 2007 xorg-server-1.4_3,1 Nov 29 01:42:21 2007 wxgtk2-2.6.3_5 I'd try to reinstall amarok... Maybe it refers some older xorg-lib which is not existing anymore... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: who wrote this
On Mon, 26 Nov 2007 12:26:11 -0500 Jerry McAllister wrote: the hitler example remain with it because it establishes a very strong case-in-point example. Yep, shoot someone and then say -- hey, that's the best example of what shouldn't be done! WBR -- Boris Samorodov (bsam) Research Engineer, http://www.ipt.ru Telephone Internet SP FreeBSD committer, http://www.FreeBSD.org The Power To Serve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
serious problems
Hi While running make installworld my computer crashed. (FreeBSD 6.2-p9 kernel) At this moment the system misses some of the elf libs. Running in single user mode and running make installworld again gives all kind of errors Any leads to solve this problem?? Jack ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: who wrote this
On Mon, 26 Nov 2007 22:14:30 -0800 Ted Mittelstaedt wrote: Fundamentally, you have to be educated to understand it. FreeBSD is first and formost, for the educated computer user. Ted, you may exchange famous Hitler's quotes with your highly educated friends, laugh at Hirosima's anecdotes with your highly educated japanese friends, etc. But every educated person should understand what may be done privately and what should be done publicly. Let's have enough tact not to bother very sensitive history at the official FreeBSD site. WBR -- Boris Samorodov (bsam) Research Engineer, http://www.ipt.ru Telephone Internet SP FreeBSD committer, http://www.FreeBSD.org The Power To Serve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: PDF_toTEXT Port /Package Is ther For FreeBSD-6.2 version ?
dhaneshk k wrote: Hi fiiends; I need PDF to Text converter Program in My FreeBSD6.2 Server : CAn any one please point out is ther a PORT for PDF_to_TEXT conversion OR how to install this utility . Any hints most welcome Thanks in Advance Dhanesh My friend, You already have converter on your computer:-) Ghostscript! Just type pdf2ps filename.pdf and then you can convert ps to ascii i with the command ps2ascii. If I remember well you can convert pdf directly to ascii but I forgot how. I think something like pdftoacsii or pdf2ascii In any case the software you want is not among converters but rather it is in print. (ghostscript and I think dvips is useful to have) . There was a thread about 3 months ago when we went systematically over all converters. Just look the archive. Cheers, Predrag _ Tried the new MSN Messenger? It’s cool! Download now. http://messenger.msn.com/Download/Default.aspx?mkt=en-in___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: who wrote this
On Fri, 30 Nov 2007 15:37:24 +0800 Erich Dollansky wrote: sensorship starts in the mind of the people. True. That's why: http://www.freebsd.org/cgi/query-pr.cgi?pr=www/118284 WBR -- Boris Samorodov (bsam) Research Engineer, http://www.ipt.ru Telephone Internet SP FreeBSD committer, http://www.FreeBSD.org The Power To Serve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
PDF_toTEXT Port /Package Is ther For FreeBSD-6.2 version ?
Hi fiiends; I need PDF to Text converter Program in My FreeBSD6.2 Server : CAn any one please point out is ther a PORT for PDF_to_TEXT conversion OR how to install this utility . Any hints most welcome Thanks in Advance Dhanesh _ Tried the new MSN Messenger? It’s cool! Download now. http://messenger.msn.com/Download/Default.aspx?mkt=en-in___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: who wrote this
Hi, Boris Samorodov wrote: On Mon, 26 Nov 2007 22:14:30 -0800 Ted Mittelstaedt wrote: Fundamentally, you have to be educated to understand it. FreeBSD is first and formost, for the educated computer user. Ted, you may exchange famous Hitler's quotes with your highly educated friends, laugh at Hirosima's anecdotes with your highly educated japanese friends, etc. But every educated person should understand what may be done privately and what should be done publicly. Let's have enough tact not to bother very sensitive history at the official FreeBSD site. sensorship starts in the mind of the people. Erich ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]