Re: upgraded to 8, no mouse is broken
On Friday 11 December 2009 08:17:06 Polytropon wrote: On Thu, 10 Dec 2009 21:38:04 -0700 (MST), Warren Block wbl...@wonkity.com wrote: Please see the Handbook section on X11 configuration instead: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-config.html Just a side question: 5.4.2 Note 2 § 5 states: You will have to reboot your machine to force hald to read this file. which refers to /usr/local/etc/hal/fdi/policy/x11-input.fdi that re-enables Ctrl+Alt+Backspace to kill X. Is it really, really needed to reboot the machine? Can't HAL just be restarted? I always thought reboot to make a minor setting work was the domain of Windows... At the risk of me-tooing, I also wondered about this. It seems insane to have to restart the OS and hardware to reread a config file. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: FreeBSD and ACHI driver
Hello List Having upgraded to FreeBSD 8.0 everything is running fine, I decided to try the ahci_load=YES in /boot/loader.conf The first machine was fine after a reboot, Aside from different motherboards in the machines, the machine that is not working is has 2 x 3bay icy dock hot swap bays. Does anyone have any clues as to why this is happening? Regards Graeme on the First machine the ahci driver detects the drives hence the ada[0-9] interfaces. It looks like on the other machine that ahci did not find the drives, there are stil called ad[0-9] Ahci sees the drives as ada as the normal ata driver sees them as ad Maybe you will need to go into the BIOS of the second machine and enable AHCI Regards, Johan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: HP USB 2.0 Tape Drive
Hi, I'm looking to buy a tape drive and am currently looking at USB 2.0 DAT tape drives from HP. I searched the hardware compatibility list and cannot locate any information tape drives except the disclaimer that SCSI tape drives do work on SCSI controller cards that are recognized by the FreeBSD OS. The only thing I can find is that apparently the ehci driver must be used if USB 2.0 interface is to be used with a tape drive. Does anyone have had positive or negative experience using these USB-based DAT tape drives? Specifically, I am looking at the HP (Hewlett-Packard) StorageWorks Q1581SB DAT 160 Tape Drive. If there are other branded USB 2.0-based tape drives (i.e. Quantum) that you've used with little or no problems, I would be interested in knowing about these. I have been using the usb HP Dat drives with ml115 servers with out any problems. They have been detected and work fine Terry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Thu, Dec 10, 2009 at 10:34:34PM -0600, Paul Schmehl wrote: I'm starting to wonder if the security manager really said what Anton claims he said, or Anton is filtering his perceptions through the anger he feels at being restricted in his ability to operate freely. If the latter is the case, you'd better adjust to it. It's the world of the future. You can do whatever you want at home, but on the corporate network you either follow the rules or lose your access. yes, he did, I can forward you our communication off list if you wish. -- Anton Shterenlikht Room 2.6, Queen's Building Mech Eng Dept Bristol University University Walk, Bristol BS8 1TR, UK Tel: +44 (0)117 331 5944 Fax: +44 (0)117 929 4423 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Thu, 10 Dec 2009 15:41:41 +0100, Anton Shterenlikht me...@bristol.ac.uk wrote: From my information security manager: FreeBSD isn't much used within the University (I understand) and has a (comparatively) poor security record. .. Hi, almost all of you remark how FreeBSD is more-secure-than-others-OS, will add nothing to varius comments. but i look in syslogs of some FreeBSD internet server and there is a great evidence that some botnets are (again) tryng simple combination of uid/pwd. starting from Dec 8 01:00:34 (CET) hundreds of zombies are looking for a valid username. it mean that most of the matter is our; the FreeBSD users. we are the only ones that will (or will not) patch the systems; i love the FreeBSD security while it is MOSTLY based on KNOWLEDGE of users than on a PERFECT code. cheers Alessandro -- If 386BSD had been available when I started on Linux, Linux would probably never had happened. Linus Torvalds ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
At 2009-12-11 11:29:44+, $witch writes: but i look in syslogs of some FreeBSD internet server and there is a great evidence that some botnets are (again) tryng simple combination of uid/pwd. # always, everywhere: PasswordAuthentication No Nick B ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, 11 Dec 2009 12:29:44 +0100, $witch a.spine...@rfc1925.net wrote: starting from Dec 8 01:00:34 (CET) hundreds of zombies are looking for a valid username. For example Administrator... :-) i love the FreeBSD security while it is MOSTLY based on KNOWLEDGE of users than on a PERFECT code. Security is not a state, it's a process, involving many considerations; the user is one of the most important ones. Even perfectly secure code can't cope with human stupidity. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
'X' vs. 'Mouse'
Honestly, did the 'X' developers go out of their way to break mouse, and to a lesser degree, keyboard support when upgrading? This forum has been riddled with questions on why their hardware (mouse) has stopped working and how to get it working again. If Microsoft had pulled a bone-headed stunt like this, they would be chastised; however, hardly a word has been uttered regarding the poor choices made by the 'X' development team. I question whether they actually tested this product prior to releasing it. I have been following a few forums besides this one and they all report the same problem. I realize that 'HAL' has something to do with this situation also. Perhaps if all the concerned parties would get their acts together this sort of fiasco would not continually happen. It is really hard to push the merits of an operating system when you have to give detailed instructions to the potential end user on how to get a mouse to work, when all they have to do in a Win32 based system is plug it in. I really cannot fathom a seven year old having to modify an XML document to facilitate their playing a How to Spell CD, assuming that they could even get the CD operational. -- Carmel carmel...@hotmail.com |=== |=== |=== |=== | ALGORITHM: Trendy dance for hip programmers. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
Polytropon wrote: On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) I dunno. Haven't seen many MS-DOS exploits recently either... Matthew -- Dr Matthew J Seaman MA, D.Phil. Flat 3 7 Priory Courtyard PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW, UK signature.asc Description: OpenPGP digital signature
Re: Downloading and Burning Free BSD
On Thu, Dec 10, 2009 at 11:46 PM, Roger Agraviador diminish...@gmail.com wrote: I clicked the ISO link and I was brought to a directory, this to be exact ( ftp://ftp.freebsd.org/pub/FreeBSD/releases/i386/ISO-IMAGES/7.2/) Once I have downloaded all Iso Images do I burn the 'boot only.iso' file on one DVD or CD only? or do I burn that along with 'disc1.iso', and how do I go about burning the rest of the files in that directory once I have downloaded them? As others have pointed out, disc1 will get you started and, as long as you have an internet connection, you should be able to get the rest (without the other discs). The install will take you through the process. Perhaps you should look at the handbook to familiarize yourself with the install procedures. www.freebsd.org/doc/en/books/handbook/install.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: fbsd8.0: Fatal trap 9: general protection fault while in kernel mode
On Sun, Dec 6, 2009 at 00:08, Bernt Hansson be...@bah.homeip.net wrote: Jakob Breivik Grimstveit said the following on 2009-12-05 20:16: I have - after having upgraded from 7.2 to 8.0, started experiencing system unstability, with crashes about every 12-24h. Last time my system crashed, I got the following screen output: Fatal trap 9: general protection fault while in kernel mode couid = 0; apic id = 00 instruction pointer = 0x20:0x804eb471 stack pointer = 0x28:0xff803e933a50 frame pointer = 0x28:0xff803e933a70 code segment = base 0x0, limit 0xf, type 0x1b = DPL 0, pres 1, long 1, def32 0, gan 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 3208 (httpd) trap number = 9 panic: general protection fault cpuid = 0 Uptime: 12h19m9s Cannot dump. Device not defined or unavailable Automatic reboot in 15 seconds - press a key on the console to abort (Typed in manually while reading screen). What might be the problem? How can I resolve this? Thanks in advance! How old is the motherboard. Check the capacitors on the MB and PSU. The motherboard is probably 2-3 years old, but this problem occured when upgrading from 7.2 to 8.0, and has happened several times the last week. Why should this be a hardware problem? -- Vyrdsamt, Jakob Breivik Grimstveit | +47 4829 8152 http://grimstveit.no/jakob | http://www.google.com/profiles/jakobbg ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: 8.0 installation doesn't contain X distributions
Date: Thu, 10 Dec 2009 19:47:08 +1100 From: smi...@nimnet.asn.au To: son...@otenet.gr CC: nick.chor...@gmail.com; freebsd-questions@freebsd.org Subject: Re: 8.0 installation doesn't contain X distributions In freebsd-questions Digest, Vol 287, Issue 16, Message: 8 On Sat, 05 Dec 2009 19:39:08 +0200 Manolis Kiagias son...@otenet.gr wrote: Look, I'm sorry, but I think this is a huge regression, especially if we're still hoping that people with no prior experience of installing freeBSD, people coming from Linux and such, for essentially or including desktop use, are going to have a rewarding installation experience. I think this is taking base-system-only installation purity to excess. Fine for people installing servers of course, and maybe it will shift more people wanting a GUI environment towards PC-BSD and such if we want to discourage these from using FreeBSD as it is (or maybe, was) but even with my 11 years experience of installing FrreeBSD versions from 2.2 till now, I kept on wondering, how would a newbie fare at this point? The main disadvantage is - access to all packages :) In the case of X, you and I, developers and most people here know to hunt for the Xorg meta-port. But the naive or new installer knows of no such thing, and could beat around in the huge lists of X software for ages, wondering what's required and what's not to get a desktop going. The previous basic setup menus in sysinstall for X were not only useful; I suspect that they are virtually essential for someone, say, coming from Debian or Ubuntu or such, wanting to try FreeBSD on their system, or the genuine first-time installer of FreeBSD. sysinstall used to assume as little prior knowledge or need to pre-read the Handbook and/or FAQ or follow the lists as possible. Now it's seeming much more firmly targeted at the already experienced user, and I feel that's regressive. cheers, Ian to play devils advocate, how many people do you know run a pure version of Linux? next to nobody does because there are distros built (ie, red hat, ubuntu, yellowdog...) that have the structuring together. I agree with the other person who mentioned PC-BSD as I agree that that would be perfect for a true newbie to *nix to install and use FreeBSD. most linux people will know all about packages and should be able to fumble thru the package installer in sysinstall just fine until they find the ports list. if the user is a complete newbie to *nix in general, we would all be refering them to the documentation, or a good published freebsd book. I can definitely state from my beginnings with FreeBSD as my first *nix, the packages system is pretty easy to find software users are looking for. you could technically transpose your comments about users not knowing how to install xorg with a GUI like Gnome or KDE. its still boils down to the well labled meta- package/port. but to sum it up. when i am introducing someone new to *nix and i want them to use freebsd, i point them to PC-BSD as it just works, then when they get comfortable, i show them the rest of what freebsd has to offer them, and sometimes they switch to a straight freebsd install the next time they build a system. -Sean ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
Paul Schmehl writes: And from I understand it's going to get worse. Apparently the IT services are drawing up plans to completely forbid use of non-autorized OS. I imagine fbsd will not be authorized. So I'm anticipating another battle already. Does this extend to computers used for academic research, student owned computers being used on campus, etc? Perhaps it's because we're conditioned to think this way but a lot of us at universities in the US see a lot of this as being commonplace and to *not* do them is generally considered bad security practice. This last part is surprising to me. Not only are we not Windows-centric, the very idea of not allowing a diversity of OSes is foreign to our operation. We are a heavy Solaris shop (as are many universities), have a good amount of Suse and RHEL and far less Windows servers exposed to the Internet. At the desktop users may install whatever they want, so long as it's maintained properly (which we audit routinely) and used in an acceptable manner (which you agree to when you get an account.) We have just about every OS you can imagine, including some you wouldn't believe still exist. I haven't worked directly with academic IT in decades ... but I live in Boston, which has the highest concentration of colleges on the planet, and talk to peopke who do. If any of the major local colleges tried to ban non-Windows OSs as either or desktop, the only question would be who got to IT first - the students with the stakes and holy water, or the professors with the tar and feathers. On the other hand a well considered security policy specifying ends and not means, and accompanied by end-user detection/correction mechanisms, would be adopted quite happily. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
$witch a.spine...@rfc1925.net writes: but i look in syslogs of some FreeBSD internet server and there is a great evidence that some botnets are (again) tryng simple combination of uid/pwd. starting from Dec 8 01:00:34 (CET) hundreds of zombies are looking for a valid username. Starting from Dec 8? This has been going on for years, and it is not targeted at FreeBSD; they attack anything that runs an SSH server. Of course, on current OpenSSH versions, it will get them nowhere, because there is no partial confirmation, so they have to guess at the user *and* the password, instead of first searching for an existing user and *then* guessing at the password. (on certain OSes - but not FreeBSD - running certain older OpenSSH versions, you could figure out if the user existed, even if you didn't have thee right password) DES -- Dag-Erling Smørgrav - d...@des.no ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: upgraded to 8, no mouse is broken
On Thu, Dec 10, 2009 at 11:38 PM, Warren Block wbl...@wonkity.com wrote: On Thu, 10 Dec 2009, Glen Barber wrote: On Thu, Dec 10, 2009 at 9:55 PM, mpd m...@jesters-court.net wrote: I just updated my system from 7.2 to 8.0 STABLE. What do I need to do to make my mouse work in X again? This system has an unbroken chain of fbsd since 2.2.6, but I'm about to drop it due to this. This is horrible. Since you have given no information on what the symptoms are, nor on what you have tried, I'll take a long-shot here: Have a look ate the 20090124/20090123 entries of /usr/ports/UPDATING That information was current a year ago, but is outdated now. Please see the Handbook section on X11 configuration instead: UPDATING is a more familiar source of reference for those without a working Xorg - even moreso if they only have one machine. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-config.html More specifically, AllowEmptyInput is a source of problems: http://lists.x.org/archives/xorg-devel/2009-December/003807.html I suppose this falls under the works for me category - I haven't ever used HAL on FreeBSD. -- Glen Barber ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dag-Erling Smørgrav wrote: $witch a.spine...@rfc1925.net writes: but i look in syslogs of some FreeBSD internet server and there is a great evidence that some botnets are (again) tryng simple combination of uid/pwd. starting from Dec 8 01:00:34 (CET) hundreds of zombies are looking for a valid username. Starting from Dec 8? This has been going on for years, and it is not targeted at FreeBSD; they attack anything that runs an SSH server. Of course, on current OpenSSH versions, it will get them nowhere, because there is no partial confirmation, so they have to guess at the user *and* the password, instead of first searching for an existing user and *then* guessing at the password. (on certain OSes - but not FreeBSD - running certain older OpenSSH versions, you could figure out if the user existed, even if you didn't have thee right password) The easiest way of brute-forcing access to a FreeBSD server includes locating the sysadmin and applying the common desk drawer. It's that simple. //Svein - -- - +---+--- /\ |Svein Skogen | sv...@d80.iso100.no \ / |Solberg Østli 9| PGP Key: 0xE5E76831 X|2020 Skedsmokorset | sv...@jernhuset.no / \ |Norway | PGP Key: 0xCE96CE13 | | sv...@stillbilde.net ascii | | PGP Key: 0x58CD33B6 ribbon |System Admin | svein-listm...@stillbilde.net Campaign|stillbilde.net | PGP Key: 0x22D494A4 +---+--- |msn messenger: | Mobile Phone: +47 907 03 575 |sv...@jernhuset.no | RIPE handle:SS16503-RIPE - +---+--- If you really are in a hurry, mail me at svein-mob...@stillbilde.net This mailbox goes directly to my cellphone and is checked even when I'm not in front of my computer. - Picture Gallery: https://gallery.stillbilde.net/v/svein/ - -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAksiUHcACgkQODUnwSLUlKT/MwCfdWQsuwr8EIOkJOJsrXFTmTAY KroAn0pGiF4vbGgcfQqp6IwVULGqYcQk =7Qj5 -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
Svein Skogen svein-listm...@stillbilde.net writes: The easiest way of brute-forcing access to a FreeBSD server includes locating the sysadmin and applying the common desk drawer. It's that simple. *laugh* I thought you were more of a baseball bat kind of guy :) DES -- Dag-Erling Smørgrav - d...@des.no ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: upgraded to 8, no mouse is broken
Warren Block wrote: On Thu, 10 Dec 2009, Glen Barber wrote: On Thu, Dec 10, 2009 at 9:55 PM, mpd m...@jesters-court.net wrote: I just updated my system from 7.2 to 8.0 STABLE. What do I need to do to make my mouse work in X again? This system has an unbroken chain of fbsd since 2.2.6, but I'm about to drop it due to this. This is horrible. Since you have given no information on what the symptoms are, nor on what you have tried, I'll take a long-shot here: Have a look ate the 20090124/20090123 entries of /usr/ports/UPDATING That information was current a year ago, but is outdated now. Please see the Handbook section on X11 configuration instead: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-config.html More specifically, AllowEmptyInput is a source of problems: http://lists.x.org/archives/xorg-devel/2009-December/003807.html That is, if you think HAL can be fixed. A deluded assumption in my opinion. HAL is broken by design and should not be activated. -- A: Because it fouls the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Dec 10, 2009, at 8:41 AM, Anton Shterenlikht wrote:
From my information security manager:
FreeBSD isn't much used within the University (I understand) and has a
(comparatively) poor security record. Most recently, for example:
http://www.h-online.com/security/news/item/Root-exploit-for-FreeBSD-873352.html
From
http://www.serverwatch.com/eur/article.php/3850401/FreeBSD-Shines-While-Apple-Fails.htm
All software has bugs, but it's how people react when things go wrong that
you can judge them. Did the FreeBSD folks sit around and do nothing? Did they
busy themselves with other things and leave 8.0, 7.1 and 7.0 users vulnerable
to pwnage? No, they did not! A matter of hours later Colin Percival,
FreeBSD's security officer, made this announcement:
A short time ago a 'local root' exploit was posted to the full-disclosure
mailing list; as the name suggests, this allows a local user to execute
arbitrary code as root ... since exploit code is already widely available I
want to make a patch available ASAP.
And with that, he released said patch.
So what OS does your information security manager run on his {desk,lap}top?
-stacey.___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
A question about yell on a laptop
I'm using audio/Yell a lot when I compile and run other scripted tasks. On my laptop with FreeBSD 8.0-RELEASE-p1 I can't get yell to make any sounds at all. I'm wondering if you can give me any hints on how to make yell work on my laptop, Dell Latitude E65000. I have sound working but PC-speaker doesn't seem to be present. Thanks /Leslie ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Cannot write to nfsv4 share
I am running 8.0-RELEASE. I am able to mount an nfsv4 share on a Debian GNU/Linux server, but I cannot write to it. I realise that nfsv4 is experimental on FreeBSD, but I am tantalisingly close to getting it working and thought that someone here could advise, or point me to some (web) reference. I have googled but have not found anything relevant to this problem. I have enabled the following in /etc/rc.conf: nfs_client_enable=YES nfsuserd_enable=YES nfsuserd_flags=-domain localdomain nfscbd_enable=YES I have passed the domain localdomain to nfsuserd via nfsuserd_flags because that is what it is set to (by default) via /etc/idmapd.conf on the Linux server. I mount the remote location using: # mount -t nfs -o nfsv4,rw 192.168.x.x:/freeagent /mnt which succeeds (either with or without the rw option) # mount /dev/ad2s1a on / (ufs, local) devfs on /dev (devfs, local, multilabel) /dev/ad2s1e on /tmp (ufs, local, soft-updates) /dev/ad2s1f on /usr (ufs, local, soft-updates) /dev/ad2s1d on /var (ufs, local, soft-updates) 192.168.x.x:/freeagent on /mnt (newnfs) When I execute an ls -al on /mnt all the directories have the correct permissions, except for one (NOTE THE GROUP -- 32767) drwx--2 root 32767 16384 Jul 5 12:28 lost+found If I try, either as root, or as my regular user account, to write to the drive I get $ cd /mnt $ touch junk touch: junk: Permission denied I have checked the directory permissions for my user and they are correct. I use the same username (and group) on both the FreeBSD desktop and the Linux (NFS4) server and, according to the permissions, I own and should be able to write to the share: $ cd /mnt $ ls -ald . drwxr-xr-x 7 username username 4096 Dec 11 13:37 . I can successfully read from the nfs4 mounted drive, but I cannot write to it. Has anyone got any idea where I have gone wrong. (If I boot to Linux on the same client I can successfully mount and read/write, so I'm reasonably certain the server side is set up correctly.) -Richard ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Downloading and Burning Free BSD
On Fri, 11 Dec 2009 00:46:38 -0500, Roger Agraviador diminish...@gmail.com wrote: I clicked the ISO link and I was brought to a directory, this to be exact ( ftp://ftp.freebsd.org/pub/FreeBSD/releases/i386/ISO-IMAGES/7.2/) Once I have downloaded all Iso Images do I burn the 'boot only.iso' file on one DVD or CD only? or do I burn that along with 'disc1.iso', and how do I go about burning the rest of the files in that directory once I have downloaded them? First off, welcome to FreeBSD. To add to what the others have stated, take a look at http://www.freebsd.org/releases/7.2R/announce.html Basically, you would use the DVD image or if you only have a CD drive, just 'disc1.iso'. If you need additional packages and don't have an internet connection on the machine you are installing FreeBSD, then you may want to get disc2 and disc3 as they contain other, third party, packages ready for use with FreeBSD. Hope that helps -- Jacques Manukyan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Using Opera's revolutionary e-mail client: http://www.opera.com/mail/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: upgraded to 8, no mouse is broken
On Fri, 11 Dec 2009, Polytropon wrote: On Thu, 10 Dec 2009 21:38:04 -0700 (MST), Warren Block wbl...@wonkity.com wrote: Please see the Handbook section on X11 configuration instead: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-config.html Just a side question: 5.4.2 Note 2 ? 5 states: You will have to reboot your machine to force hald to read this file. which refers to /usr/local/etc/hal/fdi/policy/x11-input.fdi that re-enables Ctrl+Alt+Backspace to kill X. Is it really, really needed to reboot the machine? Can't HAL just be restarted? I always thought reboot to make a minor setting work was the domain of Windows... I had the same question a while back: http://docs.freebsd.org/cgi/getmsg.cgi?fetch=595146+0+archive/2009/freebsd-doc/20091101.freebsd-doc -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 'X' vs. 'Mouse'
On Fri 2009-12-11 07:30:01 UTC-0500, Carmel (carmel...@hotmail.com) wrote: It is really hard to push the merits of an operating system when you have to give detailed instructions to the potential end user on how to get a mouse to work, when all they have to do in a Win32 based system Last time I had X working was in FreeBSD 6.3, with no dramas. Things may have changed a bit since then, but the general impression I get is that most of Xorg's design decisions are made by Linux developers, and so folks using Xorg in FreeBSD may have to put up with a few compromises to get it to work reliably. To be fair to FreeBSD, I don't think you can really call this as a fault of the OS since Xorg is not part of FreeBSD. is plug it in. I really cannot fathom a seven year old having to modify an XML document to facilitate their playing a How to Spell CD, assuming that they could even get the CD operational. I don't believe FreeBSD is intended to be used (let alone administered) by children. There are Linux distros better suited to children. Edubuntu springs to mind. Ubuntu is pretty much plug-and-play point-and-click on most PCs made in the last few years. Certainly no XML editing required to get Xorg working. Regards Andrew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
gnash and swfdec black screen
Hi all, I'm running 8.0-RELEASE for amd64. I want to use either gnash or swfdec to view flash contents instead of using the libflashplayer and linux compatibility layer. However, with both of them, all I get is a black window where the video should be played. Using gnash if I run firefox3 from a console, I don't see any messages. With swfdec all I get is a unhandled event 19. Probably the problem is not related to the players themselves but I don't really know how to track this... My video card is an ATI mobility Radeon 9700 and X uses the radeon driver (radeon_drv). Any help is appreciated. Thanks in advance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: XFCE4 Errors on FreeBSD 8.0 RELEASE
Warren, Got XFCE4 installed after a get amount of tweaking. It turns out Portsnap did not update all the appropriate files so installed portupgrade and did a portupgrade glib. Glib was not the current version needed for usr/ports/x11-wm/xfce4. After the portupgrade make install clean worked like a champ. My /etc/hosts file was also missing the current domain so needed to update that. Was getting a fbdev error so downloaded http://cvsweb.freebsd.org/ports/x11-drivers/xf86-video-fbdev and that fixed that error. Cheers, Diego 2009/12/10 Warren Block wbl...@wonkity.com: On Thu, 10 Dec 2009, Diego Montalvo wrote: Have upgraded my 7.1 RELEASE clean install (no ports) to 8.0 RELEASE using freebsd-update upgrade -r 8.0-RELEASE and everything installed correctly and works fine. Updated the Ports tree using portsnap and then tried to Install usr/ports/x11-wm/xfce4 but to no avail... I get the following errors: Stop in /usr/ports/x11-wm/xfce4-wm. *** Error code 1 You need to post the actual error, which happened right above those lines. Anyone encounter the same problem installing xfce4? Not for me, and I've put xfce4 on FreeBSD-8 on several computers. My guess is that you missed a step with portsnap, but it's difficult to tell without knowing exactly what you did and what errors were shown. -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: XFCE4 Errors on FreeBSD 8.0 RELEASE
Diego Montalvo wrote: Warren, Got XFCE4 installed after a get amount of tweaking. It turns out Portsnap did not update all the appropriate files so installed portupgrade and did a portupgrade glib. Glib was not the current version needed for usr/ports/x11-wm/xfce4. After the portupgrade make install clean worked like a champ. It is very likely you will have problems with glib every single time it gets updated so you will get used to it :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, Dec 11, 2009 at 08:49:42AM +, Matthew Seaman wrote: I dunno. Haven't seen many MS-DOS exploits recently either... That's true, it would be difficult to find a local privilege escalation exploit in an operating system without the concept of limited user accounts :) -- Mark Shroyer http://markshroyer.com/contact/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 'X' vs. 'Mouse'
On Fri, 11 Dec 2009, Carmel wrote: Honestly, did the 'X' developers go out of their way to break mouse, and to a lesser degree, keyboard support when upgrading? No, they were trying to upgrade a very old, static system (X11) to support their users. One thing that had been lacking was any support for hotplugging input devices. To implement that, they used HAL, because basically it's the only thing available. So now we have a combination of several unfortunate things: * Users are used to an X11 that has been unchanged for years. * At the same time, xorg users and developers want new features. * The only way to support some of the features is with new software, and HAL was the only thing out there that ran on multiple systems and supported hotplug detection. * HAL is totally unlike X and uses XML config files. * Most xorg development takes place on Linux, where HAL is more common than on FreeBSD. * There are only a couple of FreeBSD developers actively working on the huge and complicated job of porting and supporting xorg. * The first port of xorg-server with HAL support on FreeBSD had a bug. The bug workaround is still being applied by users, long after the bug was fixed, and sometimes--but not always!--it unfixes things. So add all this confusion together, and you end up where we are now. I suspect it seems worse than it really is, since the current xorg will run on a lot of systems without an xorg.conf at all. This forum has been riddled with questions on why their hardware (mouse) has stopped working and how to get it working again. If Microsoft had pulled a bone-headed stunt like this, they would be chastised; however, hardly a word has been uttered regarding the poor choices made by the 'X' development team. The other side of that argument is that Microsoft has supported hotplugging input devices for more than a decade. I question whether they actually tested this product prior to releasing it. I have been following a few forums besides this one and they all report the same problem. I realize that 'HAL' has something to do with this situation also. Perhaps if all the concerned parties would get their acts together this sort of fiasco would not continually happen. You could go to the xorg mailing lists at freedesktop.org and set them straight. They might cheerfully offer to refund your money. You could also offer to help development or testing, either to the FreeBSD developers or xorg. It is really hard to push the merits of an operating system when you have to give detailed instructions to the potential end user on how to get a mouse to work, when all they have to do in a Win32 based system is plug it in. xorg is not FreeBSD, but if you're looking for an integrated GUI operating system based on FreeBSD, PC-BSD seems to be well-regarded. I really cannot fathom a seven year old having to modify an XML document to facilitate their playing a How to Spell CD, assuming that they could even get the CD operational. Normally you'd start by finding out whether they prefer vi or emacs. -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: fdisk/bsdlabel/disklabel: Class not found?
On Thu, Dec 10, 2009 at 09:23:30PM -0500, Nick Dalsheimer wrote: So we are saying, that bsdlabel and fdisk are broken? This is *very* disappointing. Huh? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: HP USB 2.0 Tape Drive
On Fri, Dec 11, 2009 at 04:52:37AM +0100, Polytropon wrote: On Thu, 10 Dec 2009 09:50:56 -0500, Jerry McAllister jerr...@msu.edu wrote: I don't think you will have a problem using a USB2 interface. But, I really cannot recommend DAT. That type of system seems to have been pushed beyond its ability.The tapes fail frequently. What about Ultrium tape? Is it better? Yes. I like the LTO tape system. It writes and reads fast. It seems reliable, though I haven't used it as heavily. It is missing a fast file search ability, so although it reads fast, it takes a while to find files. It is also expensive - like DLT - but if cheap fails, then that is really the most expensive. It is cheaper to get something that is reliable even if it has a higher price. jerry But, if you can't read what you thought you wrote, it doesn't matter how fast you can search for it. A backup not readable is NOT a backup. And because it isn't, your hard disks will fail. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: XFCE4 Errors on FreeBSD 8.0 RELEASE
On Fri, 11 Dec 2009, Diego Montalvo wrote: Got XFCE4 installed after a get amount of tweaking. It turns out Portsnap did not update all the appropriate files so installed portupgrade and did a portupgrade glib. Glib was not the current version needed for usr/ports/x11-wm/xfce4. After the portupgrade make install clean worked like a champ. Right, portsnap only updates the ports tree, not applications that have already been installed. The Upgrading Ports section in the Handbook talks about that in more detail: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ports-using.html -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
use DD mode or not? and how to set up?
options for setting up gmirror include DD or standard mode. i don't know about others. i'm about to install 8.0-RELEASE on a system with two 750g sata disks that i want to run as a mirrored pair. what are the pros/cons of the different options? and what about the installation process? set up the mirror before installing from the CD or do it like the handbook says? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, Dec 11, 2009 at 08:49:42AM +, Matthew Seaman wrote: Polytropon wrote: On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) I dunno. Haven't seen many MS-DOS exploits recently either... Chuckle Chuckle Chuckle. I haven't either. Don't see much MS-DOS network activity either... jerry Matthew -- Dr Matthew J Seaman MA, D.Phil. Flat 3 7 Priory Courtyard PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW, UK ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: OT: XML newbie
On Fri, 11 Dec 2009 01:50:40 -0500 Aryeh Friedman aryeh.fried...@gmail.com wrote: I am a relative XML newbie (i.e. our backend does spit out some XML I wrote but it just slapped together with no knowledge of the underlaying structure of XML)... Now I am going back and actually learning XML... our main application is to insert XML directly into XHTML documents and use either CSS or XSLT (don't know enough to pick yet) to style them without resorting to javascript... Now my question what is a good/reasonable set of command line tools for working with/debugging/testing all this in such a way I do not need to rely on the browser... specifically what types (and specific ones if there is a preference) tools do I need and are there any recommended procedures for dealing with XML from the command line in the future we may want to also do Java parsing of XML but that seems to be well handled already in the JDK (1.6) API thanks in advance http://www.w3schools.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: A question about yell on a laptop
On Fri, 11 Dec 2009 15:20:42 +0100, Leslie Jensen les...@eskk.nu wrote: I have sound working but PC-speaker doesn't seem to be present. Do you have device SPEAKER in your kernel config, or have you loaded the appropriate kernel module? You can alway check it with something like # echo cdefg /dev/speaker -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, 11 Dec 2009 10:49:50 -0500, Jerry McAllister jerr...@msu.edu wrote: On Fri, Dec 11, 2009 at 08:49:42AM +, Matthew Seaman wrote: Polytropon wrote: On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) I dunno. Haven't seen many MS-DOS exploits recently either... Chuckle Chuckle Chuckle. I haven't either. Don't see much MS-DOS network activity either... Lemme check... C:\ne2000 -w 0x65 0xC 0x300 C:\doslynx :b echo Looking for Sybille... goto b Ah, there it was! :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Diskless boot fails when network card is reset before NFS root mount
Our dozen diskless FreeBSD 7.0 machines are all able to diskless boot just fine. However, when we tried to set up a FreeBSD 8.0 root for them to boot from, the boot process would load up all the devices, and then fail right after the line NFS ROOT: ... We boot using pxeboot. pxeboot then mounts our NFS root and runs the loader from /boot under there. After the beastie screen, loader runs the kernel. All this works fine under both 7 and 8. On both 7 and 8, we see messages of the form em0: link state changed to down,em0: link state changed to up. They happen right before or after NFS ROOT. Then, on version 8, we see error messages about /devfs not being found, and eventually /sbin/init not being found. We surmise that what happens is that the kernel resets the ethernet interface, right before re-mounting the NFS root (note that the NFS root was already mounted back before the beastie screen). On 8, somehow the interface reset interferes with the nfs mount resulting in no root FS. This problem seems to be referred to here: http://lists.freebsd.org/pipermail/freebsd-net/2009-January/020666.html Have others seen this issue? Is it a known bug? Is there a workaround or a fix? It seems to us, not being kernel hackers, a particularly difficult problem to get a handle on because execution is being controlled by the kernel at that point, there is no loader script or rc script that one could insert debugging print statements into. A complete description of our diskless boot procedure is given at: http://www.nber.org/sys-admin/FreeBSD-diskless.html which has worked well on several prior versions of FreeBSD. The network card is an Intel Pro/1000 card - well supported by FreeBSD. - Alex Aminoff BaseSpace.net National Bureau of Economic Research (nber.org) - Daniel Feenberg feenb...@nber.org National Bureau of Economic Research (nber.org) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dag-Erling Smørgrav wrote: Svein Skogen svein-listm...@stillbilde.net writes: The easiest way of brute-forcing access to a FreeBSD server includes locating the sysadmin and applying the common desk drawer. It's that simple. *laugh* I thought you were more of a baseball bat kind of guy :) Desk drawers are easier found around the sysadmin, and that means you don't have to carry suspicious evidence around the city. ;) //Svein - -- - +---+--- /\ |Svein Skogen | sv...@d80.iso100.no \ / |Solberg Østli 9| PGP Key: 0xE5E76831 X|2020 Skedsmokorset | sv...@jernhuset.no / \ |Norway | PGP Key: 0xCE96CE13 | | sv...@stillbilde.net ascii | | PGP Key: 0x58CD33B6 ribbon |System Admin | svein-listm...@stillbilde.net Campaign|stillbilde.net | PGP Key: 0x22D494A4 +---+--- |msn messenger: | Mobile Phone: +47 907 03 575 |sv...@jernhuset.no | RIPE handle:SS16503-RIPE - +---+--- If you really are in a hurry, mail me at svein-mob...@stillbilde.net This mailbox goes directly to my cellphone and is checked even when I'm not in front of my computer. - Picture Gallery: https://gallery.stillbilde.net/v/svein/ - -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAksikO8ACgkQODUnwSLUlKT6XwCeLkdjul97Z3I4sC4l0QPmlaPB fJcAn37Lr0NX/LFafzmNNTvg+9rDUzSB =HlBm -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: A question about yell on a laptop
On Friday 11 December 2009 18:13:04 Polytropon wrote: On Fri, 11 Dec 2009 15:20:42 +0100, Leslie Jensen les...@eskk.nu wrote: I have sound working but PC-speaker doesn't seem to be present. Do you have device SPEAKER in your kernel config, or have you loaded the appropriate kernel module? You can alway check it with something like # echo cdefg /dev/speaker Must not... can't resist... echo cdec cdec efg~ efg~ L8gagfL4ec L8gagfL4ec cgc~ cgc~ /dev/speaker :-) Warning: do not add this to your .(z|ba|c)shrc. - Pieter ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
If memory serves me right, sometime around 10:49am, Jerry McAllister told me: On Fri, Dec 11, 2009 at 08:49:42AM +, Matthew Seaman wrote: Polytropon wrote: On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) I dunno. Haven't seen many MS-DOS exploits recently either... Chuckle Chuckle Chuckle. I haven't either. Don't see much MS-DOS network activity either... jerry nor any AtariDOS either. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: googleearth complains about file instance-running-lock
Boris Samorodov wrote: ...and remove /compat/linux/home if it exists. You should make sure that installer doesn't create /compat/linux/home. Because I never created it myself, must have been installer. Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: googleearth complains about file instance-running-lock
On Fri, 11 Dec 2009 11:34:51 -0800 Yuri wrote: Boris Samorodov wrote: ...and remove /compat/linux/home if it exists. You should make sure that installer doesn't create /compat/linux/home. Because I never created it myself, must have been installer. Please show me how can I repeat that case. Or at least show # ls -l /compat/linux -- WBR, Boris Samorodov (bsam) Research Engineer, http://www.ipt.ru Telephone Internet SP FreeBSD Committer, http://www.FreeBSD.org The Power To Serve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
2009/12/11 Svein Skogen (Listmail Account) svein-listm...@stillbilde.net The easiest way of brute-forcing access to a FreeBSD server includes locating the sysadmin and applying the common desk drawer. It's that simple. http://xkcd.com/538/ indeed. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: use DD mode or not? and how to set up?
Tom Worster wrote: options for setting up gmirror include DD or standard mode. i don't know about others. i'm about to install 8.0-RELEASE on a system with two 750g sata disks that i want to run as a mirrored pair. what are the pros/cons of the different options? and what about the installation process? set up the mirror before installing from the CD or do it like the handbook says? I believe DD mode is going away. Probably has something to do with adding features to loader for GPT support. A GPT places what's called a protective MBR in the place where the old DOS style MBR would normally occupy. I would avoid DD. Last question is easy if dealing with a true hardware RAID card, as you will create the array in the card's BIOS and FreeBSD will just see that as ar0 and install to that. As far as a perfect answer I'm not certain. There is one little tidbit that may assist though. The metadata gets stored in the last sector at the end of an empty disk. As long as there is free space at the end of the drive(s) it won't matter which way you do it. The Handbook is essentially reconfiguring an already virgin install existing on the first drive. When rebooted into this changed configuration, the second drive is then added to the mirror and replication will take place. The less amount of data present will speed this replication and get you to mirrored status quicker. I've done this a couple of times and it was pretty straightforward. -Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: OT: XML newbie
On Fri, Dec 11, 2009 at 01:50:40AM -0500, Aryeh Friedman wrote: I am a relative XML newbie (i.e. our backend does spit out some XML I wrote but it just slapped together with no knowledge of the underlaying structure of XML)... Now I am going back and actually learning XML... our main application is to insert XML directly into XHTML documents and use either CSS or XSLT (don't know enough to pick yet) to style them without resorting to javascript... I'm using xsltproc from the port textproc/libxslt to apply custom XSLT style sheets to XML files, resulting in XHTML output. Works great, and is super fast. xsltproc also understands the xmlns:exsl extensions, which means that it can generate multiple output files from a single XML input file, using the exsl:document element (very useful in the context of XHTML generation where you need to create multiple interlinked pages). Now my question what is a good/reasonable set of command line tools for working with/debugging/testing all this in such a way I do not need to rely on the browser... specifically what types (and specific ones if there is a preference) tools do I need and are there any recommended procedures for dealing with XML from the command line in the future we may want to also do Java parsing of XML but that seems to be well handled already in the JDK (1.6) API thanks in advance You can test the XML prior to applying XSLT, using something like xmllint from textproc/libxml2. xmllint is also particularly useful, if your main XML file inputs (with xi:include) other XML files (use the option --xinclude), and it can verify DTD as well. I also use www/linklint on the set of generated XHTML files to check for broken links etc..., though I guess it could be automated at the XML (DTD?) level too. Regards, -cpghost -- Cordula's Web. http://www.cordula.ws/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, Dec 11, 2009 at 11:53, J Sisson sisso...@gmail.com wrote: 2009/12/11 Svein Skogen (Listmail Account) svein-listm...@stillbilde.net The easiest way of brute-forcing access to a FreeBSD server includes locating the sysadmin and applying the common desk drawer. It's that simple. http://xkcd.com/538/ indeed. Well, yes, except this assumes one has access to the sysadmin... Kurt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 'X' vs. 'Mouse'
On Fri, 11 Dec 2009 08:48:36 -0700 (MST) Warren Block wbl...@wonkity.com replied: On Fri, 11 Dec 2009, Carmel wrote: Honestly, did the 'X' developers go out of their way to break mouse, and to a lesser degree, keyboard support when upgrading? No, they were trying to upgrade a very old, static system (X11) to support their users. One thing that had been lacking was any support for hotplugging input devices. To implement that, they used HAL, because basically it's the only thing available. Correct me if I am wrong; however, I believe I read that 'HAL' is dead. Further work on it is not going to happen. If that is correct, are we to expect another fiasco when its replacement comes online. So now we have a combination of several unfortunate things: * Users are used to an X11 that has been unchanged for years. * At the same time, xorg users and developers want new features. * The only way to support some of the features is with new software, and HAL was the only thing out there that ran on multiple systems and supported hotplug detection. * HAL is totally unlike X and uses XML config files. * Most xorg development takes place on Linux, where HAL is more common than on FreeBSD. * There are only a couple of FreeBSD developers actively working on the huge and complicated job of porting and supporting xorg. * The first port of xorg-server with HAL support on FreeBSD had a bug. The bug workaround is still being applied by users, long after the bug was fixed, and sometimes--but not always!--it unfixes things. So add all this confusion together, and you end up where we are now. I suspect it seems worse than it really is, since the current xorg will run on a lot of systems without an xorg.conf at all. This forum has been riddled with questions on why their hardware (mouse) has stopped working and how to get it working again. If Microsoft had pulled a bone-headed stunt like this, they would be chastised; however, hardly a word has been uttered regarding the poor choices made by the 'X' development team. The other side of that argument is that Microsoft has supported hotplugging input devices for more than a decade. I have often wondered what the delay in developing hot-plugging in non-win32 systems was. Worse, HAL requiring the creation of of XML files sort of defeats the entire concept of 'plug play'. I question whether they actually tested this product prior to releasing it. I have been following a few forums besides this one and they all report the same problem. I realize that 'HAL' has something to do with this situation also. Perhaps if all the concerned parties would get their acts together this sort of fiasco would not continually happen. You could go to the xorg mailing lists at freedesktop.org and set them straight. They might cheerfully offer to refund your money. I think you are being overly glib regarding this problem. I stand by my original statement that the parties involved should have tested the final product more thoroughly. As a side note, I officiate youth league sport's programs in my spare time. I don't get paid either. Still, I would never do a crap job just because I was not being financially compensated for my efforts. You could also offer to help development or testing, either to the FreeBSD developers or xorg. I have beta tested applications in the past. I was not aware that Xorg was releasing beta products aimed at FreeBSD. I was under the impression that offerings from Xorg were only ported to FreeBSD after they were released to Linux users. It is really hard to push the merits of an operating system when you have to give detailed instructions to the potential end user on how to get a mouse to work, when all they have to do in a Win32 based system is plug it in. xorg is not FreeBSD, but if you're looking for an integrated GUI operating system based on FreeBSD, PC-BSD seems to be well-regarded. I never meant to infer that FreeBSD == xorg. I really cannot fathom a seven year old having to modify an XML document to facilitate their playing a How to Spell CD, assuming that they could even get the CD operational. Normally you'd start by finding out whether they prefer vi or emacs. Absolutely; anything but OO. -- Jerry ges...@yahoo.com |=== |=== |=== |=== | If one cannot enjoy reading a book over and over again, there is no use in reading it at all. Oscar Wilde ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: upgraded to 8, no mouse is broken
--On Friday, December 11, 2009 07:59:00 -0600 Glen Barber glen.j.bar...@gmail.com wrote: I suppose this falls under the works for me category - I haven't ever used HAL on FreeBSD. I have, and I would say that it's not quite ready for primetime. So I'm back to manual configuration and happy about it. -- Paul Schmehl, Senior Infosec Analyst As if it wasn't already obvious, my opinions are my own and not those of my employer. *** It is as useless to argue with those who have renounced the use of reason as to administer medication to the dead. Thomas Jefferson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
csup /etc/cvsupfile: Updater failed: Protocol error
Hi, csup /etc/cvsupfile stopped working today. I don't know why, it's been working for years. Connected to 129.241.103.69 Updating collection src-all/cvs Updater failed: Protocol error - # cat /etc/cvsupfile *default host=cvsup.no.FreeBSD.org *default base=/var/db *default prefix=/usr *default release=cvs tag=RELENG_7 *default delete use-rel-suffix src-all doc-all tag=. - # telnet 129.241.103.69 cvsup Trying 129.241.103.69... Connected to c2h5oh.idi.ntnu.no. Escape character is '^]'. OK 17 0 SNAP_16_1h CVSup server ready - # uname FreeBSD 7.0-STABLE #0: Thu Jul 24 18:57:08 CEST 2008 - Anybody have a clue? I really appreciate it - thanks a bunch! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
startx and xinit under FreeBSD8
I installed FreeBSD to another partition, so I could check it out. I selected All sources and binaries and KDE4. When I tried startx, it complained that it didn't exist. It's just a script, so I copied it over from my 7.2p5 partition. Now it complains that xinit doesn't exist. Why didn't these two get laid-down by the install?? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: startx and xinit under FreeBSD8
On Fri, Dec 11, 2009 at 04:57:06PM -0500, Steven Friedrich wrote: I installed FreeBSD to another partition, so I could check it out. I selected All sources and binaries and KDE4. When I tried startx, it complained that it didn't exist. It's just a script, so I copied it over from my 7.2p5 partition. Now it complains that xinit doesn't exist. Why didn't these two get laid-down by the install?? Well, you now need to either select X during install or install it from ports after the installation. jerry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
disk with high frequency noise only on FreeBSD
It was really big surprise for me to find Your topic! Because many people at forums said me a lot of times that my drive is probably broken and this is not a problem related to freebsd. Had same results as Yours on ubuntu linux month ago - noise absent at all. But, I understood so You have no overheating problems with freebsd as my laptop, witch had been shutting down while compile/overload. So for now, there is no such temperature related problems after some hoover cleaning), but drive is still squeaking. Now I'm using freebsd 8.0, not fresh install, got it from seven release (at almost year ago) by tracking stable branch. All noise came exactly in one reboot while upgrading to 8.0-RC2. So, it would be interesting to get Your answer about possible solutions(if You know such) or maybe some comments(if don't). I will be very happy for that, many excuse for disturbance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: WINE on 6.3
Andrea Venturoli ha scritto: Tijl Coosemans ha scritto: On Saturday 05 December 2009 13:47:00 Andrea Venturoli wrote: Is WINE usable on 6.3/i386? I cannot seem to start any win32 program and before I spend time into it, I thought I just ask. You probably need the FreeBSD 6.x patch at http://wiki.freebsd.org/Wine Unfortunately this didn't help. WINE is still seems to be hogging the CPU and doing nothing. I did some more testing. I've got 3 machines: the one I'm working on, running the X server and two boxes which I ssh into. All three are running 6.3/i386, the same version of Wine and dependencies. Wine works fine if I start it on the machine where the X server is, but exhibits the afore mentioned problems if I run it on the box I ssh into. Of course X forwarding is working (tested with a lot of other applications). So I ask: is this a known problem? Has anyone Wine working with X11 forwarded through ssh? bye Thanks av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Email sent from at command going to the wrong account
Hi, The at command sends and email with the output of the scheduled job. I've experienced inconsistent results when running jobs, receiving emails in accounts not associated with the user currently logged in. To reproduce in FreeBSD 7.2-RELEASE-p2 Case #1 login as user a (new shell through ssh) echo echo 1 | at now -- user a will receive an email containing 1 - this is as expected Case #2 login as user a (new shell through ssh) login as user b exit echo echo 1 | at now -- user b will receive an email containing 1 - this is not as expected, since I am user a again A look at the source for at reveals that at is getting the mailname from getlogin(). Running a small test program that outputs getlogin(), confirms the above behavior: A log-in and out of another account makes getlogin() return that account's name, even though the shell has been closed and we are back to the original shell and the original user a. Is this the intended behavior? Any hints would be apprecaited. Best regards, Holger Kunst ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: Diskless boot fails when network card is reset before NFS root mount
http://www.freebsd.org/cgi/query-pr.cgi?pr=139363 suggests the fix is to set boot.nfsroot.options=nfsv2 in /boot/loader.conf or via dhcp. I can see how to set options in /boot/loader.conf, but I don't see how boot loader options can be set in dhcpd.conf. All I have is: next-server 66.251.72.4; filename pxeboot; option root-path 66.251.72.44:/vol/vol1b/FreeBSD-7.2-root; Where would the boot loader options go? Are they a numbered option? Which one? Daniel Feenberg NBER ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: googleearth complains about file instance-running-lock
Boris Samorodov wrote: Please show me how can I repeat that case. Or at least show # ls -l /compat/linux The problem is actually a bug (?) in googleearth, that it leaves the lock file when it finishes ungracefully, and after it is restarted it complains about this file without understanding that the previous process is dead. But it talks about /home/ files, and it's confusing since it really talks about /compat/linux/home/... files. Now I found who creates /compat/linux/home. It's skype. After I delete /compat/linux/home and relaunch skype it recreates it. So maybe to prevent such things link /compat/linux/home - /home should be created by installer? Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
Date: Fri, 11 Dec 2009 08:49:42 + From: Matthew Seaman m.sea...@infracaninophile.co.uk Sender: owner-freebsd-curr...@freebsd.org Polytropon wrote: On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) I dunno. Haven't seen many MS-DOS exploits recently either... I'm sure that there are systems happily running MSDOS, but I bet not too many are networked. I know that there is still a lot of VMS out there and that it has remained a cash cow for HP. It lived on primarily in the banking and financial sector, though I guess the use is dropping since HP recently outsourced support to India and that lead to the retirement of the last of the original VMS developers, Andy Goldstein. Also, the the end of TECO as Andy was responsible for porting it to almost every platform DEC ever sold (RSX, RSTS, VMS, TOPS-10 and TOPS-20, RT-11, and several others) and continued to maintain it until his retirement. (Most readers of this list probably don't even remember TECO.) And, for may years VMS had major network security problems, especially the infamous default DECNET/DECNET account that lead to may compromises and the second major network worm, Worms Against Nuclear Killers. (I won't use the acronym so as not to offend our British readers. I found out about that when the BBC interviewed me about it and I was told that I could not utter the word.) -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: ober...@es.net Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 'X' vs. 'Mouse'
On Fri, 11 Dec 2009, Carmel wrote: On Fri, 11 Dec 2009 08:48:36 -0700 (MST) Warren Block wbl...@wonkity.com replied: On Fri, 11 Dec 2009, Carmel wrote: No, they were trying to upgrade a very old, static system (X11) to support their users. One thing that had been lacking was any support for hotplugging input devices. To implement that, they used HAL, because basically it's the only thing available. Correct me if I am wrong; however, I believe I read that 'HAL' is dead. Maintenance mode, so more like a zombie, but yes. Further work on it is not going to happen. If that is correct, are we to expect another fiasco when its replacement comes online. Possibly. It depends on the level of integration and testing done before release. The other side of that argument is that Microsoft has supported hotplugging input devices for more than a decade. I have often wondered what the delay in developing hot-plugging in non-win32 systems was. Worse, HAL requiring the creation of of XML files sort of defeats the entire concept of 'plug play'. Normally, the user shouldn't have to create XML files. The new hal-0.5.13_12 solves some serious problems I had with the earlier version. Maybe problems other people had too, but there haven't been any posts about someone trying HAL again and seeing if it works better now. I question whether they actually tested this product prior to releasing it. I have been following a few forums besides this one and they all report the same problem. I realize that 'HAL' has something to do with this situation also. Perhaps if all the concerned parties would get their acts together this sort of fiasco would not continually happen. You could go to the xorg mailing lists at freedesktop.org and set them straight. They might cheerfully offer to refund your money. I think you are being overly glib regarding this problem. I stand by my original statement that the parties involved should have tested the final product more thoroughly. I admit I was thinking of Monty Python on how to rid the world of all known diseases. Point being that more testing is easier to say than do. As a side note, I officiate youth league sport's programs in my spare time. I don't get paid either. Still, I would never do a crap job just because I was not being financially compensated for my efforts. Of course not: you do the best you can with what you've got. As the xorg and FreeBSD developers did and continue to do. You could also offer to help development or testing, either to the FreeBSD developers or xorg. I have beta tested applications in the past. I was not aware that Xorg was releasing beta products aimed at FreeBSD. I was under the impression that offerings from Xorg were only ported to FreeBSD after they were released to Linux users. There's always testing going on before the latest xorg is released on FreeBSD. Sometimes requests for testing are announced on freebsd-x11. It's also possible to contact the developers directly and offer to test. That can be particularly helpful if you have hardware the developers don't. -Warren Block * Rapid City, South Dakota USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
SMB shares vs. FreeBSD8
My SMB share, a 320GB WD NetCenter, fails to mount because the rl ethernet isn't up yet. I dual-boot 7.2 and 8.0. I've addedd noauto to the declaration in fstab, and I'll just mount it when I need it. I know usb has been completely re-written, but is that the cause? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: A question about yell on a laptop
Leslie, /boot/loader.conf has to contain: speaker_load=YES and even the little beep is a port to install: /usr/ports/audio/beep Cheers herb langhans On Fri, Dec 11, 2009 at 03:20:42PM +0100, Leslie Jensen wrote: I'm using audio/Yell a lot when I compile and run other scripted tasks. On my laptop with FreeBSD 8.0-RELEASE-p1 I can't get yell to make any sounds at all. I'm wondering if you can give me any hints on how to make yell work on my laptop, Dell Latitude E65000. I have sound working but PC-speaker doesn't seem to be present. Thanks /Leslie ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- sprachtraining langhans herbert langhans, warschau http://www.langhans.com.pl herbert dot raimund at gmx dot net +0048 603 341 441 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
I am not understanding something about pf
I am running 7.2-Stable with pf. I have the following pf.conf: no rdr inet proto tcp from spamd-white-local to any port smtp no rdr inet proto tcp from spamd-white to any port smtp rdr pass inet proto tcp from any to any port smtp - 127.0.0.1 port spamd This is the basic spamd configuration with an extra table spamd-white-local which lists hosts to go directly to the mail server. Everything works properly. Hosts not in either spamd table go to spamd and those in either spamd table go directly to the mail server. However, the pf statistics don't seem to make sense to me. I always see the following: no rdr inet proto tcp from spamd-white-local to any port = smtp [ Evaluations: 1193433 Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 73310 ] no rdr inet proto tcp from spamd-white to any port = smtp [ Evaluations: 110124Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 73310 ] rdr pass inet proto tcp from any to any port = smtp - 127.0.0.1 port 8025 [ Evaluations: 110124Packets: 63Bytes: 3516States: 1 ] [ Inserted: uid 0 pid 73310 ] Where the first two entries never show any Packets and the third shows everything. Does no rdr work differently than rdr with the statistics? I understood from the Book of PF that the rules were evaluated such that the last matching rule is used. Hence I think that with the above conf file the spamd-white-local table would never get used as the connection will match one of the 2 following rules. So I ran another test by putting the first rule last: no rdr inet proto tcp from spamd-white to any port smtp rdr pass inet proto tcp from any to any port smtp - 127.0.0.1 port spamd no rdr inet proto tcp from spamd-white-local to any port smtp Now entries in spamd-white-local are ignored and, the statistics are quite different: no rdr inet proto tcp from spamd-white to any port = smtp [ Evaluations: 79Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 86983 ] rdr pass inet proto tcp from any to any port = smtp - 127.0.0.1 port 8025 [ Evaluations: 52Packets: 25Bytes: 1395States: 1 ] [ Inserted: uid 0 pid 86983 ] no rdr inet proto tcp from spamd-white-local to any port = smtp [ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 86983 ] Now the last rule says its never evaluated. This indicates that its the first rule that matches that is used rather than the last. However, why are there never any packets counted in the no rdr rules? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
unable to connect to host....
Regarding the sage of the migration to a new server, I thought things were working when I went to bed. Turns out this was only because I had the old server going too. (I did some edit on my new web server but the chances didn't show up. Only the old server was replying.) Now, using lynx, I get the err that it 'Can't connect to host'.The new server is 10.47.0.230, but dig is still seeing my old server, 10.47.0.240. Any ideas why lynx cannot connect outside the server itself?? -- Gary Kline kl...@thought.org http://www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org The 7.31a release of Jottings: http://jottings.thought.org/index.php ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
On Fri, Dec 11, 2009 at 03:23:56PM -0800, Kevin Oberman wrote: Date: Fri, 11 Dec 2009 08:49:42 + From: Matthew Seaman m.sea...@infracaninophile.co.uk Sender: owner-freebsd-curr...@freebsd.org Polytropon wrote: On Fri, 11 Dec 2009 01:42:36 -0600, Sam Fourman Jr. sfour...@gmail.com wrote: I have tried looking around and OpenBSD appears to be the undisputed #1 track record in terms of security and FreeBSD is #2 (I didn't count dragonflyBSD) VMS would be #0, then? :-) I dunno. Haven't seen many MS-DOS exploits recently either... I'm sure that there are systems happily running MSDOS, but I bet not too many are networked. I know that there is still a lot of VMS out there and that it has remained a cash cow for HP. It lived on primarily in the banking and financial sector, though I guess the use is dropping since HP recently outsourced support to India and that lead to the retirement of the last of the original VMS developers, Andy Goldstein. Just go to Fry's Electronic. Most of their systems are still MS-Dos with Novell for network, running text based inventory/quote/sales app. Also, the the end of TECO as Andy was responsible for porting it to almost every platform DEC ever sold (RSX, RSTS, VMS, TOPS-10 and TOPS-20, RT-11, and several others) and continued to maintain it until his retirement. (Most readers of this list probably don't even remember TECO.) And, for may years VMS had major network security problems, especially the infamous default DECNET/DECNET account that lead to may compromises and the second major network worm, Worms Against Nuclear Killers. (I won't use the acronym so as not to offend our British readers. I found out about that when the BBC interviewed me about it and I was told that I could not utter the word.) -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: ober...@es.netPhone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 ___ freebsd-curr...@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to freebsd-current-unsubscr...@freebsd.org -- Regards, Ulf. - Ulf Zimmermann, 1525 Pacific Ave., Alameda, CA-94501, #: 510-865-0204 You can find my resume at: http://www.Alameda.net/~ulf/resume.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Root exploit for FreeBSD
Ulf Zimmermann writes: Just go to Fry's Electronic. Most of their systems are still MS-Dos with Novell for network, running text based inventory/quote/sales app. Ca _lot_ of small businesses have something similar. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: I am not understanding something about pf
On Fri, Dec 11, 2009 at 7:30 PM, Doug Hardie bc...@lafn.org wrote: I am running 7.2-Stable with pf. I have the following pf.conf: no rdr inet proto tcp from spamd-white-local to any port smtp no rdr inet proto tcp from spamd-white to any port smtp rdr pass inet proto tcp from any to any port smtp - 127.0.0.1 port spamd This is the basic spamd configuration with an extra table spamd-white-local which lists hosts to go directly to the mail server. Everything works properly. Hosts not in either spamd table go to spamd and those in either spamd table go directly to the mail server. However, the pf statistics don't seem to make sense to me. I always see the following: no rdr inet proto tcp from spamd-white-local to any port = smtp [ Evaluations: 1193433 Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 73310 ] no rdr inet proto tcp from spamd-white to any port = smtp [ Evaluations: 110124Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 73310 ] rdr pass inet proto tcp from any to any port = smtp - 127.0.0.1 port 8025 [ Evaluations: 110124Packets: 63Bytes: 3516States: 1 ] [ Inserted: uid 0 pid 73310 ] Where the first two entries never show any Packets and the third shows everything. Does no rdr work differently than rdr with the statistics? I understood from the Book of PF that the rules were evaluated such that the last matching rule is used. Hence I think that with the above conf file the spamd-white-local table would never get used as the connection will match one of the 2 following rules. So I ran another test by putting the first rule last: no rdr inet proto tcp from spamd-white to any port smtp rdr pass inet proto tcp from any to any port smtp - 127.0.0.1 port spamd no rdr inet proto tcp from spamd-white-local to any port smtp Now entries in spamd-white-local are ignored and, the statistics are quite different: no rdr inet proto tcp from spamd-white to any port = smtp [ Evaluations: 79Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 86983 ] rdr pass inet proto tcp from any to any port = smtp - 127.0.0.1 port 8025 [ Evaluations: 52Packets: 25Bytes: 1395States: 1 ] [ Inserted: uid 0 pid 86983 ] no rdr inet proto tcp from spamd-white-local to any port = smtp [ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 86983 ] Now the last rule says its never evaluated. This indicates that its the first rule that matches that is used rather than the last. However, why are there never any packets counted in the no rdr rules? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Do you have a pass in proto tcp to port smpt or some such rule that is capturing the rest of the packets/accounting stats? I believe the pass in the second test (rdr pass inet proto tcp from any to any port = smtp - 127.0.0.1 port 8025) is short circuiting your assumed last match wins. The full pf.conf would be helpful ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: googleearth complains about file instance-running-lock
On Fri, 11 Dec 2009 15:17:19 -0800 Yuri wrote: Now I found who creates /compat/linux/home. It's skype. After I delete /compat/linux/home and relaunch skype it recreates it. That's possible only if you are root. That's the most essential info. Please, annouce it everytime you have any error at the very beginning of an e-mail with capital letters. Never work as root. Never-never work as root under X. -- WBR, bsam ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: googleearth complains about file instance-running-lock
Boris Samorodov wrote: That's possible only if you are root. That's the most essential info. Please, annouce it everytime you have any error at the very beginning of an e-mail with capital letters. Never work as root. Never-never work as root under X. I don't work as root. /compat/linux diectory is owned by my user, not root, not sure why. This is a very, very old system. Upgraded many times. That's how /compat/linux/home could get created. I can't understand why skype would create it instead of using /home. I guess that's a side effect of /compat/linux not being owned by root. Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
