Re: OpenSMTPD aliases
That worked perfectly. Thank you so much, and thanks for a great tool! -Dan On Fri, Jun 10, 2011 at 05:19:29PM +0200, Gilles Chehade wrote: OHAI ! Your smtpd.conf is invalid and I am responsible for this. I have documented how to setup aliases but I did not update the examples... Will fix that tonight Here's how it should read: map myaliases { source db /etc/mail/aliases.db } accept for local alias myaliases deliver to mbox ^^^
Re: mount nullfs
On Sat, Apr 16, 2011 at 01:08:52AM +0200, Paul de Weerd wrote: On Sat, Apr 16, 2011 at 01:59:12AM +0300, Claudiu Pruna wrote: | Hi list, | | I was wondering, in OpenBSD is there an equivalent to FreeBSD's | mount_nullfs or to Linux's mount -o bind ? Sure; it's in the attic .. don't wake the spiders! http://www.openbsd.org/cgi-bin/cvsweb/src/sys/miscfs/nullfs/Attic/ I use a local NFS mount when I want to accomplish this. It drags in a lot of complexity, but it has worked for me for years. -Dan
Re: Tracking What it's changing in current
Am I missing something, or is this what you're looking for? http://cleannorth.org/lists/archive/cvs/2011-02/msg00022.html If so, it's generated by: http://search.cpan.org/dist/activitymail/bin/activitymail -Dan On Thu, Feb 17, 2011 at 09:01:20AM -0600, Marco Peereboom wrote: Right, but that is the holy grail because now you'd have change sets. I'll pay prize money for that ;-) On Thu, Feb 17, 2011 at 06:13:32AM -0800, patrick keshishian wrote: On Thu, Feb 17, 2011 at 6:05 AM, Christiano F. Haesbaert haesba...@haesbaert.org wrote: On 16 February 2011 22:21, Marco Peereboom sl...@peereboom.us wrote: Is it possible to catch the entire commit and have that diff generated? I'm a little late at this thread but yes, we do that here in work. Don't have access to the scripts though :( he means a commit that touches files in multiple directory locations throughout a source tree. I'm not sure if this is possible so easily. --patrick
Re: Experiences with hylafax
On Wed, Dec 15, 2010 at 03:21:47PM +0100, Paolo Aglialoro wrote: Hello, a friend asked me for a fax server at home, I thought about installing hylafax, but never did it on OpenBSD. Is there here anybody with specific experience to tell how it works on OpenBSD and if there are critical working/install issues to care for? I used it from 2.7 to 4.6. It works great. It's not the easiest thing in the world to configure, but once you do, it just works. Hylafax needs a modem that supports all the features it wants. The later model USR seem good for that. There are others, but I don't have experience with them. I recommend applying the following patch so a handoff to getty can work nicely if another modem calls instead of a fax. I'd do this even if you don't intend to set up a dialin service on the line too, since I found a modem calling in would cause it to hang for a while without this: http://www.svartalfheim.net/kb/openbsd-patches/41/patches/src/getty.diff the patch does apply to 4.8. -Dan
Re: Using all mod_perl in chrooted Apache, what needs to be inside?
On Wed, Oct 07, 2009 at 07:59:42AM -0500, Chris Bennett wrote: After seeing Jason Dixon's suggestion to use mod_perl to solve chroot problem, I am going to setup a test server on my laptop while traveling. With no mod_cgi scripts at all, what, if anything would I need to move inside chroot? I'm going on trip today, so I will read any replies tomorrow at earliest. Depends what you're doing. I believe if you're just using core Perl, you don't need to bring anything else in. I have a big mod_perl app that runs in chroot and accesses PostgreSQL and uses a number of CPAN modules: I have libc, libz, libm, libpq, libcom_err, libssl, libcrypto, libjpeg, libpng, libiconv, and libgd libraries copied in. I also just bring in all my Perl libraries with local NFS mounts: /etc/exports /usr/local/libdata/perl5 -ro 127.0.0.1 /usr/libdata/perl5 -ro 127.0.0.1 /etc/fstab 127.0.0.1:/usr/local/libdata/perl5 /var/www/usr/local/libdata/perl5 nfs ro 0 0 127.0.0.1:/usr/libdata/perl5 /var/www/usr/libdata/perl5 nfs ro 0 0 I suggest you list out what your dependencies are for your app and run ldd(1) on the binaries and libraries you identify. That'll tell you what you need. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: OpenBSD as MS RIS-Server alternative?
On Sat, May 17, 2008 at 10:52:49AM +0200, [EMAIL PROTECTED] wrote: Hello everybody, I would like to know if it's possible to use OpenBSD as RIS-Server to install WIndows via Network. I played around with this for 2 weeks now but I can't figure out how it gets done. Something is missing (maybe a dhcp-option?! :( ) I use OpenBSD to provide kinda anything to connected PCs (remote install, diagnostics, secure hdd formating (0,1,0 and other standards)). Also I face problems to provide VistaPE (it wont realy boot, bootloader comes up but then the bcd seams to be corrupted in soem way). So if somebody here also administrates Widnows-Servers (I don't know that much about 'em :/) and knows how to emulate a RIS please tell me. I would love to replace the Windows Box (the Imaging-Server was already replaced). The only things I've found with google where people using MS RIS to install OpenBSD (scarry, or? :p) but not vice versa. This isn't RIS, so if you're tied to that technology, ignore me, but I think this solution is a superior way to accomplish the same goal: I install all my Windows systems using http://unattended.sourceforge.net/. Not only does it let me script my Windows install, but also all my application installs as well and I can have different application sets for different machines. There's no need to keep it on similar hardware like with ghost/sysprep. All this requires is the stock dhcpd and tftpd along with samba (from ports) from the OpenBSD system serving it. While it's not trivial to set up, the instructions are very clear and you shouldn't have any major trouble. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: OpenBSD as MS RIS-Server alternative?
On Sat, May 17, 2008 at 10:17:17AM -0400, Richard Daemon wrote: On Sat, May 17, 2008 at 9:15 AM, Dan Brosemer [EMAIL PROTECTED] wrote: I didn't know about this, looks great. Were you able to do it via PXE booting? Absolutely. It's nothing-but-net. I can even get it to read the hostname from DHCP and select an unattended configuration based on that. My installs go something like this: pxelinux boot prompt: win It asks me for a username to mount the share with. It asks me for a password to mount the share with. It asks me for a password to join the domain. Now, the machine just goes and installs itself including all applications and patches including as many reboots as needed. I really can't rave about it enough, and it works beautifully with an OpenBSD server. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: OpenBSD as MS RIS-Server alternative?
On Sat, May 17, 2008 at 04:33:23PM -0400, Richard Daemon wrote: On Sat, May 17, 2008 at 4:06 PM, Dan Brosemer [EMAIL PROTECTED] wrote: On Sat, May 17, 2008 at 10:17:17AM -0400, Richard Daemon wrote: On Sat, May 17, 2008 at 9:15 AM, Dan Brosemer [EMAIL PROTECTED] wrote: I didn't know about this, looks great. Were you able to do it via PXE booting? Absolutely. It's nothing-but-net. I can even get it to read the hostname from DHCP and select an unattended configuration based on that. My installs go something like this: pxelinux boot prompt: win It asks me for a username to mount the share with. It asks me for a password to mount the share with. It asks me for a password to join the domain. Now, the machine just goes and installs itself including all applications and patches including as many reboots as needed. I really can't rave about it enough, and it works beautifully with an OpenBSD server. Sweet! I'm going to give this a try, this is something I've been looking for, for a while. pxelinux boot prompt? Should work with OpenBSD's pxeboot the same way? Actually, no. OpenBSD's pxeboot is what you want to boot OpenBSD's kernel. With unattended, you boot a linux environment off the network to begin your install (it mounts the samba share, copies files, etc.) so you use pxelinux. There are ways if you google for it to chain pxeboot off pxelinux so you can keep one environment for installing OpenBSD by and Windows over the network. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: Simple OBSD/Samba sharing/restart question
On Mon, Mar 31, 2008 at 09:00:41AM -0700, Ed Flecko wrote: Hi folks, [shared] comment = Shared directory on the proxy server path = /var/squid/logs/squid_logs read only = no browseable = yes guest ok = yes public = yes Try something along these lines: [common] comment = Public Drive writable = yes locking = yes path = /home/shares/common public = yes create mode = 666 directory mode = 777 For testing purposes, I've set the permissions on the squid_logs directory to: 777 I can map the drive from a Windows box and even create files/folders...but I can copy files from it to the Windows box or read files. O.K., I'm stumped; what am I overlooking??? Also, once you've made changes to your smb.conf file, how do you stop/restart Samba??? You don't need to. It re-reads it when there are changes. But should you need to stop and start it, just kill off the [sn]mbd processes and fire them off manually. -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
ipsec.conf/ipsecctl interop with Windows XP
Has anyone got ipsec.conf/ipsecctl to interop with Windows XP? I had this working flawlessly with my isakmpd.conf, but rather like the new syntax and want to switch. I have it to the point of giving me this message when I start isakmpd with '-K -d -vvv' 090413.992346 Default isakmpd: phase 1 done: initiator id /C=CA/ST=Ontario/L=Sault Ste. Marie/O=Clean North/[EMAIL PROTECTED], responder id c0a82101: 192.168.33.1, src: 192.168.33.1 dst: 192.168.33.151 But no tunnels are created and no more messages are displayed. My ipsec.conf looks like this (tried with and without the 'quick...' line: ike passive esp from any to 0.0.0.0 main auth hmac-sha1 enc 3des-cbc \ quick auth hmac-sha1 enc 3des-cbc \ group modp1024 And the isakmpd.conf (working) it replaces looks like this: [Phase 1] Default=ISAKMP-peer-WI [Phase-1-ID] ID-type=USER_FQDN Name= [EMAIL PROTECTED] [ISAKMP-peer-WI] Phase= 1 Transport= udp Configuration= Default-main-mode ID= Phase-1-ID [Default-main-mode] DOI=IPSEC EXCHANGE_TYPE= ID_PROT Transforms= 3DES-SHA-RSA [Default-quick-mode] DOI=IPSEC EXCHANGE_TYPE= QUICK_MODE Suites= QM-ESP-AES-SHA-PFS-SUITE [3DES-SHA-RSA] ENCRYPTION_ALGORITHM= 3DES_CBC HASH_ALGORITHM= SHA AUTHENTICATION_METHOD= RSA_SIG GROUP_DESCRIPTION= MODP_1024 Life= LIFE_28800_SECS [LIFE_28800_SECS] LIFE_TYPE= SECONDS LIFE_DURATION= 28800,600:36000 Is there anyone who knows the magic sauce I'm failing to sprinkle on this setup? I would be grateful for any assistance. Thanks. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: samba: really low throughput
On Sat, Jun 09, 2007 at 10:59:42AM -0500, Jacob Yocom-Piatt wrote: got a 4.1-release machine that shares its disks via samba to a few windows xp workstations and is transferring files slow as molasses (1 GB file takes ~30 min to transfer). this machine serves FTP at ~10 MBps, close to linespeed for 100 Mbit, so disk speed is not the bottleneck on the server side. i expect to go gigabit on this stuff in another week or two so any further tips that apply in that regime would be nice to see. [snip] socket options = TCP_NODELAY Try: socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 Then tweak those send and receive buffer sizes for your setup. I get around 7MB/sec transfers from samba with this setup. [snip] i'm sure there are some of you out there using samba sans shite performance like this, would appreciate clues on how to fix this. Hope that helps. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: apache loadbalancing
On Wed, Mar 28, 2007 at 12:20:53PM -0700, christian johansson wrote: I know PF can do simple round-robin balancing to these machines, but I want something that can take the load of the apache running machines into consideration and shape the traffic sent to them accordingly. Would it be a good idea to use apaches own loadbalancing module, the mod_proxy_balance, and run instances of apache on the openbsd machines? I'm assuming this would mean that I have to compile apache2 myself, right? Well, apache2 is in ports/packages, so not necessarily. Or can anyone suggest a better way to do this? Some people on this list speak highly of pound. I haven't used it myself yet. I like haproxy. I've run it in an 80,000 (mod_perl-generated) page per hour situation on nothing more than simple desktop hardware and it Just Worked(tm). There's no port, but I know someone who made one and could pester him to post it. :) Now that was a while ago. If I was doing it again today, I'd seriously look at the built in hoststated and pf. That work looks exciting. Now you have even more options to confuse you. :) -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: Bug in ksh // Improvement for tar ?
On Tue, Dec 05, 2006 at 12:32:38PM +0800, Uwe Dippel wrote: 2 humble suggestions to make my server OS of choice even better. I seem to have found a bug in ksh: Here is a sample that doesn't behave as I'd expect it to. # demo= # if [ $demo == -n -o $demo == -e ]; then echo bar fi # demo=-n # if [ $demo == -n -o $demo == -e ]; then echo bar fi ksh: [: -n: unexpected operator/operand IMHO, I'd consider it a bug, since the correctness of syntax must not change with the value of the variable. AFAIK, this syntax is considered correct generally; if not, please advise me. Take a look at the way /etc/rc does stuff like this: [EMAIL PROTECTED]:ttyp1[~]$ if [ x$demo == x-n -o x$demo == x-e ]; then echo bar fi bar -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: disable extended passive mode of /usr/bin/ftp question?
On Fri, Nov 10, 2006 at 07:42:13PM +, Didier Wiroth wrote: - Original Message - From: Miod Vallat Did you try ``ftp -E''? Actually, no ;-) But ... it was more because of the ports system (when fetching source files), or when using pkg_add . Isn't it possible to modify this behavior (without installing another ftp package) with the default ftp program when using the ports system or pkg_add? Did you try ``man ports''? Paying special attention to FETCH_CMD is something that will serve you well. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Re: mount_null replacement?
On Fri, Oct 06, 2006 at 11:16:46AM +0200, Rogier Krieger wrote: On 10/4/06, G 0kita [EMAIL PROTECTED] wrote: I notice mount_null was dropped as of OpenBSD 3.8, can someone tell me first of all why this was done [...] Various comments to the likes of 'turd polishing' can be found in the misc@ archives. IIRC, the developers gave up on this piece of functionality as it just wouldn't work reliably. See the archives and commit logs for a more detailed description. Specifically I'm looking to have a writable directory mounted read-only in another location. As another poster suggested, you can probably get away with local NFS mounts. Those have worked for me since 3.8, although I never put them to antthing resembling a stress test. YMMV. If 70,000 hits/hour to a mod_perl website running in the chroot with /usr/local/libdata/perl5 and /usr/libdata/perl5 brought in this way counts as a stress test, then this method works fine. I am very happy with this method and use it both at work and for a small NGO I support. It works much better than the null mounts I had going previously. -Dan -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter
Only one disk detected on PCI SATA controller VT6421
I have a VIA 6421 in a Dell Optiplex PPro machine where the card, BIOS, and OpenBSD's bootloader detect two identical drives just fine. When I boot in to OpenBSD, only the first drive is seen. I've searched the archives and found http://archives.neohapsis.com/archives/openbsd/2006-08/0597.html but it doesn't seem to apply in this case as the BIOS and bootloader both detect both drives. Worthy of note is that I am booting from sd0 which the BIOS configures as the third disk. I don't imagine this is the problem and unfortunately this BIOS is too old to change that. I would be grateful for any suggestions? Output of the bootloader and a dmesg are included below. Thanks in advance. -Dan Loading... probing: pc0 com0 com1 apm mem[640k 159M a20=on] disk: fd0 hd0+ hd1+* hd2 OpenBSD/i386 BOOT 2.10 boot booting hd2a:/bsd: 5839872+912272 [52+283888+268942]=0x6f78b8 entry point at 0x200120 [ using 553256 bytes of bsd ELF symbol table ] Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2006 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.0 (GENERIC) #1104: Fri Sep 1 11:54:27 MDT 2006 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Pentium Pro (GenuineIntel 686-class, 256KB L2 cache) 180 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV real mem = 167346176 (163424K) avail mem = 145031168 (141632K) using 2068 buffers containing 8470528 bytes (8272K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 02/11/00, BIOS32 rev. 0 @ 0xffe90 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI BIOS has 8 Interrupt Routing table entries pcibios0: PCI Interrupt Router at 000:13:0 (Intel 82371SB ISA rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0x8000 0xc8000/0x5000! 0xd/0x7000 0xd8000/0x800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82441FX rev 0x02 pcib0 at pci0 dev 13 function 0 Intel 82371SB ISA rev 0x01 pciide0 at pci0 dev 13 function 1 Intel 82371SB IDE rev 0x00: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility pciide0: channel 0 ignored (disabled) pciide0: channel 1 ignored (disabled) ppb0 at pci0 dev 14 function 0 DEC 21052 PCI-PCI rev 0x01 pci1 at ppb0 bus 1 pciide1 at pci1 dev 9 function 0 VIA VT6421 SATA rev 0x50: DMA pciide1: using irq 12 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: WDC WD3200SD-01KNB0 wd0: 16-sector PIO, LBA48, 305245MB, 625142448 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 yds0 at pci1 dev 10 function 0 Yamaha 724F rev 0x03: irq 11 ahc0 at pci1 dev 11 function 0 Adaptec AHA-2940U rev 0x00: irq 11 scsibus0 at ahc0: 16 targets sd0 at scsibus0 targ 0 lun 0: FUJITSU, MAP3367NP, 0106 SCSI3 0/direct fixed sd0: 35046MB, 48122 cyl, 2 head, 745 sec, 512 bytes/sec, 71775284 sec total vga1 at pci0 dev 16 function 0 S3 Trio32/64 rev 0x54 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) fxp0 at pci0 dev 17 function 0 Intel 8255x rev 0x05, i82558: irq 14, address 00:08:c7:ca:d6:f5 inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 0 isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec biomask bf65 netmask ff65 ttymask ffe7 pctr: 686-class user-level performance counters enabled mtrr: Pentium Pro MTRR support dkcsum: wd0 matches BIOS drive 0x80 ahc0: target 0 using 16bit transfers ahc0: target 0 synchronous at 20.0MHz, offset = 0x8 dkcsum: sd0 matches BIOS drive 0x82 root on sd0a rootdev=0x400 rrootdev=0xd00 rawdev=0xd02 ac97: codec id 0x574d4c00 (Wolfson WM9701A) ac97: codec features 18 bit DAC, 18 bit ADC, No 3D Stereo audio0 at yds0 opl at yds0 not configured opl at yds0 not configured opl at yds0 not configured opl at yds0 not configured mpu at yds0 not configured mpu at yds0 not configured mpu at yds0 not configured mpu at yds0 not configured -- Burnished gallows set with red Caress the fevered, empty mind Of man who hangs bloodied and blind To reach for wisdom, not for bread. -- Deoridhe Grimsdaughter