rotating apache logs
Hi. What is the best way to rotate apache logs on OpenBSD? Ideally I would like to create a new one at the beginning of each month. I searched my system for logrotate and could not find it. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Are we users stupid or what?
--- Nick Guenther <[EMAIL PROTECTED]> wrote: > On 4/3/06, Qv6 <[EMAIL PROTECTED]> wrote: > > on Sunday 02 April 2006 07:58 pm, Deanna Phillips wrote: > > > > > > And yeah, Linux users are generally stupid. > > > > I consider myself a Linux user - my laptop and a desktop have > Gentoo > > Linux running on them, but my firewall is OpenBSD-based. My server > is > > also OpenBSD-based. So, tell me wise guy. I'm I "generally stupid"? > > One could make a witty reply out of "So, tell me wise guy. I'm I > "generally stupid"?" but it's just not worth it. What about me? I run Slackware as well as OpenBSD. Am I stupid too? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: why is there . [dot] in default PATH?
--- Matthias Kilian <[EMAIL PROTECTED]> wrote: > On Tue, Apr 04, 2006 at 09:15:58PM +0200, RedShift wrote: > > [...] Other people were discussing cat and cta for example. For > this to > > work, one would have to be able to write to the victim's home > directory, > > Do you never cd out of your home? No, he never goes out. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: pf; XP firewall; and MS Remote Desktop
--- Don Boling <[EMAIL PROTECTED]> wrote: > On 4/5/06, Peter <[EMAIL PROTECTED]> wrote: > > I have a user that is on WinXP. She uses Microsoft's Remote > Desktop to > > connect to a remote server (TCP port 3389). I have installed > OpenBSD > > 3.8 to act as firewall for the office. She complains of serious > > intermittent latency problems for this particular network usage > > (internet browsing is fine and is corroborated by other office > users). > > > > I have a very simple ruleset which uses 'keep state' for all > outgoing > > requests. I actually keep state on all outgoing destination ports > > greater than 1024 (intended initially for passive FTP). > > > > Now I recalled XP's pseudo-firewall that is enabled by default and > ever > > since turning it off she has not experienced any more slowdowns. > > > > Since I have yet to be alerted when the problem occurs I have not > been > > able to capture any pertinent traffic. > > > > I am wondering whether the XP firewall could be to blame and why? > Or > > is it just a coincidence and the latency is going to happen again > in > > which case I am asking people what do they think I should look at? > I > > have since begun making long term tcpdump captures using pflog0. > > > > Thanks, > > > > Peter > > > > I have the same setup for my home office.. > > I have not seen any problems myself, BUT ... > > Could the latency *with* the windows firewall enabled be > a symptom of other problems with the windows box? Is > the XP box having other issues with performance? I'm swinging this thread back to the PF list. Please remove the reference to misc@openbsd.org if you reply. I have not been informed of any other performance issue. And this user is the panicky type so I'm sure I would of heard about it if there was one. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: bluefish or other web design tools
--- Jacob Yocom-Piatt <[EMAIL PROTECTED]> wrote: > i'm trying to migrate my web development to openbsd from winxp where > i use dreamweaver. i want to have similar functionality to dreamweaver: a > WYSIWYG interface, SFTP file transfers and code coloring. is this too much to ask for? > > i have installed the bluefish package on a post-3.9 current machine > and that works fine, but i can't figure out how to use SFTP to transfer site > files to and from a remote server. sftp is like ssh and scp: use the command line. Can you be more specific on how this is failing you? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
i want to share my ip accounting script
Hi. I have written a shell script designed to run on an OpenBSD firewall that accumulates lan traffic stats (inbound and outbound) and outputs the results in HTML. I would like to share this with the community and hopefully it can be improved. I am not a programmer but it seems to work and maybe this can help someone. It has some constraints and limitations as well as one bug I cannot identify (I get a negative number show up at seemingly random times). Anyone who is interested please let me know and I will send it to you. Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: ntp on soekris
--- knitti <[EMAIL PROTECTED]> wrote: > On 6/8/06, Pailloncy Jean-Gerard <[EMAIL PROTECTED]> wrote: > > minutes is larger than a "fraction of one percent". I wonder if my > > understanding is correct, and why the skew is so fast. > > And last question, is it a real problem ? > > the soekris are not very good at time keeping, in my experience. > whether this is a problem is something you have to decide, do > you need more precision? if yes, change the hardware, else > don't worry What is your experience and what did you observe? I have two 4801 units and they have no problem keeping time. Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Solution
1. POPFile - Free Spam Filter POPFile is a powerful and flexible email classification POP and NNTP proxy that you can use to filter spam efficiently and categorize good mail automatically. Unfortunately, POPFile can grow a bit heavy on memory and cpu load if you have trained on lots of mail. 2. eXpurgate - Free Spam Filter eXpurgate is an effortless but highly effective spam (and virus) filtering service. Its only real shortcoming is that eXpurgate relies on forwarding and requires two different email accounts. 3. Spamihilator - Free Spam Filter Heinz Tschabitscher Spamihilator is a pretty, easy to use anti-spam tool that works with any email client and, thanks to Bayesian filters, has a good detection rate. You cannot remotely administer or teach Spamihilator, however. 4. Spamato - Free Spam Filter Heinz Tschabitscher Spamato filters POP and IMAP accounts for spam with the potential for high precision and plug-ins that make it easy to use in Outlook and Mozilla Thunderbird. Unfortunately, Spamato can be a bit overwhelming with its multitude of options and little help. 5. SpamBayes - Free Spam Filter Heinz Tschabitscher SpamBayes employs sophisticated analysis using Bayesian statistics to rid your email Inbox of junk mail precisely and in an effortless manner. 6. SpamPal - Free Spam Filter Heinz Tschabitscher SpamPal makes it easy to use spam blacklists with any email account. Bayesian and scoring filters add further spam protection. Unfortunately, many lists aren't as well-maintained as they should be. 7. K9 - Free Spam Filter Heinz Tschabitscher K9 is a wonderfully precise, easy to use and fast learning Bayesian spam filtering tool. It's a pity this gem only works with POP accounts and lacks remote administration. 8. Cactus Spam Filter - Free Spam Filter Heinz Tschabitscher Cactus Spam Filter is a really easy to use and pretty precise spam filter. It's a pity it only works with POP accounts and does not leverage its power for further pre-sorting the good mail. 9. SpamRIP - Free Spam Filter Heinz Tschabitscher SpamRIP is a highly precise spam filter for any POP email account. A separate program, it lets you preview and delete junk before it reaches your default inbox. Unfortunately, SpamRIP does not work with IMAP accounts, is a tad clumsy to use and may crash now and then. 10. BullGuard Spamfilter - Free Spam Filter Heinz Tschabitscher BullGuard Spamfilter plugs into Outlook, Outlook Express and Mozilla Thunderbird to filter spam quite effectively and without much effort on your part. [IMAGE]
OpenBSD as Virtualbox guest
I'm looking for comments from people who have installed OpenBSD 4.0 as a Virtualbox guest. I am currently running Virtualbox 1.3.6 on Gentoo Linux 2006.1. The manual does not mention OBSD as guest even though their website states that it is possible. My main question is how to create an OBSD image since it seems that I need an ISO image. PM
Re: OpenBSD as Virtualbox guest
Le Mardi 27 Fivrier 2007 14:34, Darren Spruell a icrit : > On 2/27/07, Peter <[EMAIL PROTECTED]> wrote: > > I'm looking for comments from people who have installed OpenBSD 4.0 > > as a Virtualbox guest. I am currently running Virtualbox 1.3.6 on > > Gentoo Linux 2006.1. The manual does not mention OBSD as guest > > even though their website states that it is possible. My main > > question is how to create an OBSD image since it seems that I need > > an ISO image. > > You can't boot off of your CDROM? > > As for images, you can installer images in CDROM format and floppy > format off of the FTP mirrors. Are you talking about the "install ISO's" like cdrom.iso or floppy.iso? If so, yes, I can use them. I thought I needed a full-blown release ISO. I am also stuck at launching the virtualbox interface itself. I get either a segmentation fault if started using a non-priv user or an 'authentication rejected' error if I 'su -c virtualbox'. I have tried the usual trick of 'xhost +' as the non-priv user and then su to root and 'virtualbox' but I get the 'cannot connect to X server' stuff. Any help appreciated. I am dying to boot up OBSD on this thing. PM
Re: OpenBSD as Virtualbox guest
Le Mercredi 28 FC)vrier 2007 21:58, Marcos Laufer a C)critB : > Maybe you just have to wait a couple of weeks/months, here's an > extract from VirtualBox website: > > OpenBSD 4.0 might not work well, a fix will be in the next > version of VirtualBox. No Guest Additions available yet. Neither OpenBSD 4.0 nor FreeBSD 6.2 work. OpenBSD panics very early and FreeBSD panics during installation procedure. I'm frustrated because it was exactly these two operating systems that I wanted to work with - besides a Windows XP install. PM
pkg_add gives error and then installs
I am scripting (sh) some package installs on an updated (today) OpenBSD 4.0-STABLE system and I am getting errors even when the pkg_add command ultimately succeeds and installs the packages. The shell script in question and sample output: export PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/ for i in bash \ wget do pkg_add $i done Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/: Unknwn command. wget-1.10.2p0 complete BTW, I am also having trouble specifying a package whose name contains version numbers like: cvsup-16.1h-no_x11 I would rather include this in my for loop as: cvsup-*-no_x11 My attempts to escape the glob character have been futile ("cannot resolve"): cvsup-\*-no_x11 and putting the $i in double quotes doesn't help. Thanks for any pointers. PM
Re: pkg_add gives error and then installs
Le Samedi 3 Mars 2007 23:31, Tobias Ulmer a icrit : > On Sat, Mar 03, 2007 at 10:43:52PM -0500, Peter wrote: > > I am scripting (sh) some package installs on an updated (today) > > OpenBSD 4.0-STABLE system and I am getting errors even when the > > pkg_add command ultimately succeeds and installs the packages. > > > > The shell script in question and sample output: > > > > export > > PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/ for i > > in bash \ > >wget > > do > > pkg_add $i > > done > > And the point is? you can just do a pkg_add bash wget The point is that inside the loop I prompt the user whether to install or not. I also have a much longer list of packages that what I gave. > > Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/: > > Unknwn command. > > wget-1.10.2p0 complete > > This is a warning from ftp.openbsd.org because it doesn't > understand EPSV or something, just ignore it. Thank you. > > BTW, I am also having trouble specifying a package whose name > > contains version numbers like: > > > > cvsup-16.1h-no_x11 > > > > I would rather include this in my for loop as: > > > > cvsup-*-no_x11 [ snip ] > pkg_add -i > (interactive only) > > or grab $PKG_PATH/index.txt, grep whatever you need and feed it to > pkg_add. Thanks for these ideas. PM
Re: pkg_add gives error and then installs
Le Dimanche 4 Mars 2007 04:50, Marc Espie a icrit : > On Sat, Mar 03, 2007 at 10:43:52PM -0500, Peter wrote: > > export > > PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/ for i > > in bash \ > >wget > > do > > pkg_add $i > > done > > Don't do that. When you can, don't put pkg_add in a loop, but use > the whole list of packages you want to add in a single invocation. > > pkg_add often needs to build a memory image of which packages it > knows, and how they relate to one another. Each time you start a new > pkg_add, you pay that cost. If you use one single invocation, things > will go ways faster. Yes, I did notice it was slow. Thanks for this information. PM
trouble making an X release
I am following FAQ 5.5 on building an X release (for my 4.0 system). I have successfully made the base system release but when following the below steps I get the error: lndir: ../XF4: No such file or directory make: don't know how to make build. Stop in /usr/Xbld. make: don't know how to make release. Stop in /usr/Xbld. I manually created the XF4 directory but it still didn't work: make: don't know how to make build. Stop in /usr/Xbld. make: don't know how to make release. Stop in /usr/Xbld. What am I missing? # rm -rf /usr/Xbld # mkdir -p /usr/Xbld # cd /usr/Xbld # lndir ../XF4 # make build # export DESTDIR=/usr/Xbld/dest # export RELEASEDIR=/usr/Xbld/rel # cd /usr/Xbld # rm -rf dest # mkdir dest rel # make release
Re: trouble making an X release
Le Dimanche 4 Mars 2007 15:51, Daniel Horecki a icrit : > 2007/3/4, Peter <[EMAIL PROTECTED]>: > > I am following FAQ 5.5 on building an X release (for my 4.0 > > system). > > > > I have successfully made the base system release but when following > > the below steps I get the error: > > > > lndir: ../XF4: No such file or directory > > make: don't know how to make build. Stop in /usr/Xbld. > > make: don't know how to make release. Stop in /usr/Xbld. > > > > I manually created the XF4 directory but it still didn't work: > > > > make: don't know how to make build. Stop in /usr/Xbld. > > make: don't know how to make release. Stop in /usr/Xbld. > > > > What am I missing? > > Source of X. It should be in /usr/XF4, you can download it by cvs or > tar.gz from ftp. Ha. Not used to downloading other than src, sys, and ports. Anyway, I got it and I had it compiling for about an hour until I hit a snag: ===> xvctl install -c -s -o root -g bin -m 555 xvctl /usr/Xbld/dest/usr/X11R6/bin/xvctl install: xvctl: No such file or directory *** Error code 71 Stop in /usr/Xbld/extras/xvctl (line 127 of /usr/share/mk/bsd.prog.mk). *** Error code 1 Stop in /usr/Xbld/extras. *** Error code 1 Stop in /usr/Xbld (line 164 of Makefile). *** Error code 1 Stop in /usr/Xbld (line 116 of Makefile). Any ideas? PM
PKG_PATH pain
Hi everyone. I have a local FTP server that contains many packages. When doing an install I want my pc to first check this server before going onto the net. I have set up the following in a shell script on the pc being installed: LAN_FTP=192.168.3.11 OS_V0=$(uname -r) PKG_PATH=ftp://$LAN_FTP/OpenBSD/$OS_V0/packages/:ftp://ftp.openbsd.org/pub/OpenBSD/$OS_V0/packages/i386/ export PKG_PATH pkg_add -v postfix The thing is that pkg_add wants to go directly to the internet site instead of the local one: Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/: Unknown command. Ambiguous: postfix could be postfix-2.3.2 postfix-2.3.2-ldap postfix-2.3.2-mysql postfix-2.3.2-sasl2 postfix-2.4.20060727 postfix-2.4.20060727-ldap postfix-2.4.20060727-mysql postfix-2.4.20060727-sasl2 But my server contains postfix-2.3.2.tgz: $ lftp 192.168.3.11 lftp 192.168.3.11 ~ > cd OpenBSD/4.0/packages/ cd ok, cwd=/OpenBSD/4.0/packages lftp 192.168.3.11 /OpenBSD/4.0/packages > ls postfix* -rw-r--r--1 00 3512600 Sep 23 17:07 postfix-2.3.2.tgz lftp 192.168.3.11 /OpenBSD/4.0/packages > mget postfix-2.3.2.tgz 3512600 bytes transferred Thanks for any pointers. PM
Re: PKG_PATH pain
Le Mercredi 7 Mars 2007 09:39, Nick ! a icrit : > On 3/7/07, Peter <[EMAIL PROTECTED]> wrote: > > Hi everyone. > > > > I have a local FTP server that contains many packages. When doing an > > install I want my pc to first check this server before going onto the > > net. I have set up the following in a shell script on the pc being > > installed: > > > > LAN_FTP=192.168.3.11 > > OS_V0=$(uname -r) > > PKG_PATH=ftp://$LAN_FTP/OpenBSD/$OS_V0/packages/:ftp://ftp.openbsd.org/pu > >b/OpenBSD/$OS_V0/packages/i386/ > > > > export PKG_PATH > > pkg_add -v postfix > > > > The thing is that pkg_add wants to go directly to the internet site > > instead of the local one: > > > > Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.0/packages/i386/: > > Unknown command. > > Ambiguous: postfix could be postfix-2.3.2 postfix-2.3.2-ldap > > postfix-2.3.2-mysql postfix-2.3.2-sasl2 postfix-2.4.20060727 > > postfix-2.4.20060727-ldap postfix-2.4.20060727-mysql > > postfix-2.4.20060727-sasl2 > > Hmm, odd. Try making it just > PKG_PATH=ftp://$LAN_FTP/OpenBSD/$OS_V0/packages/ and report what > happens. Yes, that works. Except that I get the situation that I want to avoid: missing dependencies. That's why I want that 2nd FTP site in my PKG_PATH: parsing postfix-2.3.2 Dependencies for postfix-2.3.2 resolve to: pcre-6.4p1 (todo: pcre-6.4p1) Error from ftp://192.168.3.11/OpenBSD/4.0/packages/: 550 Failed to open file. postfix-2.3.2:Can't find pcre-6.4p1 /usr/sbin/pkg_add: pcre-6.4p1:Fatal error Thanks for any help. PM
Re: PKG_PATH pain
Le Mercredi 7 Mars 2007 16:34, Ingo Schwarze a icrit : > Hi Peter, > > > I have a local FTP server that contains many packages. > > When doing an install I want my pc to first check this server > > before going onto the net. > > Why would you want to do that? > This might be a bad idea in the first place. > > Suppose you got some package from a public mirror, and after that, > a security hole was found in the package, so it was updated on the > mirror. In that case, you might end up installing the vulnerable > local copy, not even noticing there's an update. > > > I have set up the following in a shell script on the pc being installed: > > > > LAN_FTP=192.168.3.11 > > OS_V0=$(uname -r) > > PKG_PATH=ftp://$LAN_FTP/OpenBSD/$OS_V0/packages/: > > ftp://ftp.openbsd.org/pub/OpenBSD/$OS_V0/packages/i386/ > > export PKG_PATH > > pkg_add -v postfix > > According to my understanding, pkg_add will always check all paths > given in PKG_PATH. In order to choose the right package, it will > inspect the package itself, not its position in PKG_PATH. > > What i'm currently doing is the following: > On my reference machine, i use the settings > PKG_PATH=ftp://openbsd.ftp.fu-berlin.de/snapshots/packages/i386/: > /srv/ftp/OpenBSD/current/packages/i386/all/ > PKG_CACHE=/srv/ftp/OpenBSD/current/packages/i386/all/ > On that machine, i do > pkg_add -ui > whenever some update is required. Whenever i need to use some > new software, i first install and test it on that machine. > Thus, i always have up-to-date versions of all locally required > packages on that box. > > In case i need to compile a package from ports or from ports/mystuff, > i put the home-made package there, too. Should an official package > be released later, i will very probably notice at once. > > On all other machines, i point PKG_PATH to the (local) ftp server > on that reference machine *only*, thus neither creating external > network load nor retrieving untested packages when installing or > updating production servers. That's a very nice setup. I think I will try it. Thank you. PM
pkg_add with a) dubious packages and b) multiple packages
On my 4.0 STABLE box I am trying to use pkg_add to install multiple packages with one command: pkg_add -vi cabextract \ colortail \ db \ expiretable \ gnupg \ gtar \ ncftp \ p0f \ unzip \ wget \ zap but I have found that if a package is dubiously named (such as "db") then it hangs with: "Ambiguous: db could be db-3.1.17p6 db-4.2.52p8" If I go: pkg_add -vi db then I get: Ambiguous: db could be db-3.1.17p6 db-4.2.52p8 Choose one package 0: 1: db-3.1.17p6 2: db-4.2.52p8 Your choice: Any ideas? Pedro
Re: pkg_add with a) dubious packages and b) multiple packages
Le Vendredi 9 Mars 2007 03:31, Sebastian Benoit a icrit : > Peter([EMAIL PROTECTED]) on 2007.03.09 02:56:07 +: > > but I have found that if a package is dubiously named (such as "db") then > > it hangs with: > > > > "Ambiguous: db could be db-3.1.17p6 db-4.2.52p8" > > There is nothing dubious about it. There are simply two versions of "db" > available. pkg_add simply does not guess what you want it to do. I'm sorry. I mistyped. That should have been "ambiguous" instead of "dubious". > You found out whats discribed in the manpage: > > In case of ambiguities, for instance: pkg_add screen (matches > screen-4.02 and screen-4.02-static), pkg_add will error out, unless it > is invoked in interactive mode (option -i). But I did use interactive mode. Later I discovered that when it hangs (like it does) I just need to hit Enter and it continues on as expected. Pedro
updating installed ports
On 4.0, besides uninstalling ports, updating the ports tree, and re-installing is there any other way to do this? What is standard practice? Also, is there any global way to change the default destination (/usr/ports/packages//all) of the eventual binary package that is created when a port is installed? Pedro
Re: updating installed ports
Le Vendredi 9 Mars 2007 18:24, Joachim Schipper a icrit : > On Fri, Mar 09, 2007 at 06:05:58PM -0500, Peter wrote: > > On 4.0, besides uninstalling ports, updating the ports tree, and > > re-installing is there any other way to do this? What is standard > > practice? > > # pkg_add -ui Are you serious? I thought that was only for straight packages. It actually fetches code from third party repositories? The pkg_add man page could be clearer but I see it now in ports(7). > > Also, is there any global way to change the default destination > > (/usr/ports/packages//all) of the eventual binary package that is > > created when a port is installed? > > Yes, there certainly is. In such cases, first review ports(7), which > doesn't contain the answer IIRC, and then bsd.port.mk(5), which does. Ok, got it. Thank you very much. Pedro
Re: updating installed ports
Le Samedi 10 Mars 2007 03:43, Lars Hansson a icrit : > Peter wrote: > > Are you serious? I thought that was only for straight packages. It > > actually fetches code from third party repositories? > > What 3rd party repositories? What are "straight" packages? AFAIK, In this context, a 3rd party repository is a place that dishes out code that is independent of OpenBSD. I just installed the unarj port and I remember it downloading stuff from some weird Russian site. I guess that's one example. A "straight" package is a binary kit that is put together by the OpenBSD team. Not one that is subsequently built by the port system. Pedro
Re: updating installed ports
Le Samedi 10 Mars 2007 04:55, Joachim Schipper a icrit : > On Fri, Mar 09, 2007 at 11:08:30PM -0500, Peter wrote: > > Le Vendredi 9 Mars 2007 18:24, Joachim Schipper a ?crit?: > > > On Fri, Mar 09, 2007 at 06:05:58PM -0500, Peter wrote: > > > > On 4.0, besides uninstalling ports, updating the ports tree, and > > > > re-installing is there any other way to do this? What is standard > > > > practice? > > > > > > # pkg_add -ui > > > > Are you serious? I thought that was only for straight packages. It > > actually fetches code from third party repositories? The pkg_add man > > page could be clearer but I see it now in ports(7). > > It appears we don't really understand each other. The standard way of > updating installed packages is something like > > # export PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/snapshots/4.0/i386 > # pkg_add -ui > > but you are right that this only updates packages. Yes, it does fetch > stuff from third-party repositories if told to, so you could change > PKG_PATH to point to one of your own machines (listing this machine > first, and then the rest, doesn't work as one would like to, though). > > Of course, this covers only packages. Almost all ports produce packages > that may be redistributed, but this is not always the case; So when I apply 'pkg_add -u' to a package that was installed through a port I am not getting and compiling source code (what happened when I made the original install) but an actual updated binary? Or am I still missing something? > if not, the > standard procedure is more along the lines of > > # cd /usr/ports/archivers/freeze > # make update > > or > > # cd /usr/ports/archivers/freeze > # make package > # pkg_add -ri /usr/ports/packages/i386/all/freeze-2.5.tgz Ok. What I am messing with here is the clamav package. Very common indeed. Now clamav depends on unarj which does not exist as a package. So I install it via ports. I am trying to figure out how to make an eventual update of clamav and hence of unarj. From what I understand, 'pkg_add -u' will not work on this particular port due to licensing so, from your post, I update archivers/unarj via, say, cvsup, and then 'make update'? Pedro
spamlogd (how to specify port?)
On OpenBSD 4.0, how do I specify what port spamlogd should consider SMTP? My MTA is running on a non-standard port. Pedro
Re: spamlogd (how to specify port?)
Le Dimanche 18 Mars 2007 16:50, Darren Spruell a icrit : > On 3/18/07, Peter <[EMAIL PROTECTED]> wrote: > > On OpenBSD 4.0, how do I specify what port spamlogd should consider SMTP? > > My MTA is running on a non-standard port. > > spamd sees your inbound SMTP traffic by virtue of the PF rdr rules > that direct connections to it. Refer to those rules and adjust ports > as needed. I'm talking about spamlogd not spamd. Pedro
Re: spamlogd (how to specify port?)
Le Lundi 19 Mars 2007 05:09, Joachim Schipper a icrit : > On Sun, Mar 18, 2007 at 05:56:04PM -0600, Bob Beck wrote: > > * Joachim Schipper <[EMAIL PROTECTED]> [2007-03-18 16:16]: > > > On Sun, Mar 18, 2007 at 08:57:32PM +, Stuart Henderson wrote: > > > > On 2007/03/18 16:35, Peter wrote: > > > > > On OpenBSD 4.0, how do I specify what port spamlogd should consider > > > > > SMTP? My MTA is running on a non-standard port. > > > > > > > > edit /usr/src/libexec/spamlogd/spamlogd.c and recompile - > > > > it's hardcoded "ip and port 25 ..." > > > > > > Would something like the following not do the trick? > > > > > > > > > > Sorry, Absolutely not. I am not putting in a knob for this > > > > If you're crazy enough to run an MTA on a non-standard port > > you know enough to recompile. > > Hmmm... yes, you are right. Oh well, I suppose the OP can now try > either. Thank you. I compiled and it seems to be working. But I, for one, would like that extra knob. ;) Pedro
mailman problems: group mismatch error and aliases
On 4.0 I have installed mailman (flavour postfix): $ pkg_info | grep mailman mailman-2.1.8p3-postfix mailing list manager with web interface But I still get the infamous group mismatch error: Group mismatch error. Mailman expected the mail wrapper script to be executed as group "_mailman", but the system's mail server executed the mail script as group "nobody". Try tweaking the mail server to run the script as group "_mailman", or re-run configure, providing the command line option `--with-mail-gid=nobody'. ) I have read that this has been fixed since 3.8. Also, where does the OpenBSD mailman package store its list management aliases? I tried /var/spool/mailman/data/aliases. I can't seem to get mailman to generate aliases automatically. This is what I have put in mm_cfg.py: add_virtualhost( 'mailman.domain.com' ) MTA = 'Postfix' POSTFIX_ALIAS_CMD = '/usr/local/sbin/postalias' POSTFIX_MAP_CMD = '/usr/local/sbin/postmap' Once I edited this file I received an error when trying to create a list ("We're sorry, we hit a bug!"). Thanks for any help, Pedro
Postfix flavour for PostgreSQL ?
I see there is a postfix flavour for mysql but not for postgresql. Is this combination used much? I already have a PGSQL server and I want to plug postfix into it for virtual mailbox domains. Thanks for any advice. Peter
Re: Postfix flavour for PostgreSQL ?
Le Samedi 24 Mars 2007 01:13, Ted Unangst a icrit : > On 3/23/07, Peter <[EMAIL PROTECTED]> wrote: > > I see there is a postfix flavour for mysql but not for postgresql. Is > > this combination used much? I already have a PGSQL server and I want to > > plug postfix into it for virtual mailbox domains. > > uh, what do you think the pgsql flavor is? And where do you find that?
Re: micro atx motherboard recommendations?
hi, On Mon, Mar 26, 2007 at 09:02:56AM +0200, Nico Meijer wrote: > > Just looking for a recommendation on a good/cheap (but not necessarily > > fast) microatx motherboard. Or possibly, one of those via > > motherboards, but needs to fit in an atx case. > You might also look into the Jetway J7F4 series mini-itx boards. Dual > onboard re nics. i got me one of those. works like a charm. i'm still having a weird issue with the nics not properly initializing somehow after a powerdown though. maybe it needs a bios-upgrade, but as i don't usually powerdown (reboot is ok) i haven't really investigated it. -- CUL8R, Peter.
ntpd not synching
hi, i'm trying to keep my local clock synched through ntpd. i used to do that with ntpdate, but since ntpd is available in a standard install i thought i'd try that. i start ntpd at boot, with added -s to synch the clock right away. however, after that it starts moving the clock backwards. restarting ntpd just makes it repeat the process : [old ntpd, started at boot] Mar 27 08:46:58 ntpd[20919]: adjusting local clock by 9642.320276s Mar 27 08:49:06 ntpd[20919]: adjusting local clock by 2143.405987s Mar 27 08:50:07 ntpd[20919]: adjusting local clock by 2142.248606s Mar 27 08:51:42 ntpd[20919]: adjusting local clock by 9644.027785s Mar 27 08:54:45 ntpd[1871]: ntp_dispatch_imsg in ntp engine: pipe closed Mar 27 08:54:45 ntpd[1871]: ntp engine exiting [restart] Mar 27 08:55:02 ntpd[2426]: ntp engine ready Mar 27 11:35:52 ntpd[16439]: set local clock to Tue Mar 27 11:35:52 CEST 2007 (offset 9649.641093s) Mar 27 11:36:09 ntpd[2426]: peer 194.146.227.112 now valid [some more peers snipped] Mar 27 11:37:33 ntpd[6515]: adjusting local clock by 1.288053s Mar 27 11:40:10 ntpd[6515]: adjusting local clock by 6.464148s Mar 27 11:40:10 ntpd[2426]: clock is now synced Mar 27 11:44:23 ntpd[6515]: adjusting local clock by 10.656797s Mar 27 11:46:36 ntpd[6515]: adjusting local clock by 13.004900s Mar 27 11:46:36 ntpd[2426]: clock is now unsynced Mar 27 11:49:17 ntpd[6515]: adjusting local clock by 11.683026s Mar 27 11:53:39 ntpd[6515]: adjusting local clock by 15.193740s (if left alone, this adjustment will increase perpetually). timezone is set correctly : $ ls -la /etc/localtime lrwxr-xr-x 1 root wheel 36 Dec 2 00:38 /etc/localtime -> /usr/share/zoneinfo/Europe/Amsterdam $ date Tue Mar 27 12:25:30 CEST 2007 any ideas ? it _has_ managed to keep the clock synched once, but after a reboot it went completely bonkers. i tried removing the drift-file and restarting it as well, to no avail. i'm running 4.0-release, and the provided ntpd. -- CUL8R, Peter.
Re: micro atx motherboard recommendations?
hi, On Mon, Mar 26, 2007 at 11:21:42AM +0200, Nico Meijer wrote: > I've had that issue, but have hardcoded the media options in hostname.re > and my problems have disappeared. See hostname.if(5). > I'm interested to see if that helps you aswell... Nico i'm gonna try this tonight and make sur to report back. thanks for the tip ! -- CUL8R, Peter.
Re: micro atx motherboard recommendations?
hi, On Mon, Mar 26, 2007 at 11:21:42AM +0200, Nico Meijer wrote: > > i'm still having a weird > > issue with the nics not properly initializing somehow after a powerdown > > though. maybe it needs a bios-upgrade, but as i don't usually powerdown > > (reboot is ok) i haven't really investigated it. > I've had that issue, but have hardcoded the media options in hostname.re > and my problems have disappeared. See hostname.if(5). i tried, but it didn't help. i've fscked my disk enough for now... when the symptoms occur, it hangs on 'Starting network', and nothing happens. no link-lights on the nics, no way to interact with the machine but the reset-switch. one of the three times i tried, re0 came up, but it hung on re1, same thing. weird. i also noticed that the link-lights are on during POST, and go off when the kernel inits the nics. then they just never come on again. the same thing happens with a 'normal' boot (one that does succeed), with the important difference that the link-lights come on when 'Starting network' is displayed... to be complete : /etc/hostname.re0 : dhcp NONE NONE NONE media 100baseTX mediaopt full-duplex /etc/hostname.re1 : inet 192.168.1.3 255.255.255.0 NONE media 100baseTX mediaopt full-duplex -- CUL8R, Peter.
Re: ntpd not synching
0 "VIA VT8377 AGP" rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "VIA S3 Unichrome PRO IGP" rev 0x01: aperture at 0xf400, size 0x1000 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) re0 at pci0 dev 9 function 0 "Realtek 8169SC" rev 0x10: irq 10, address 00:30:18:b0:26:ef rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 2 re1 at pci0 dev 11 function 0 "Realtek 8169SC" rev 0x10: irq 11, address 00:30:18:b0:26:f0 rgephy1 at re1 phy 7: RTL8169S/8110S PHY, rev. 2 pciide0 at pci0 dev 15 function 0 "VIA VT6420 SATA" rev 0x80: DMA pciide0: using irq 15 for native-PCI interrupt wd0 at pciide0 channel 0 drive 0: wd0: 16-sector PIO, LBA48, 305245MB, 625142448 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1 at pciide0 channel 1 drive 0: wd1: 16-sector PIO, LBA48, 305245MB, 625142448 sectors wd1(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 5 viapm0 at pci0 dev 17 function 0 "VIA VT8237 ISA" rev 0x00 iic0 at viapm0 "unknown" at iic0 addr 0x18 not configured auvia0 at pci0 dev 17 function 5 "VIA VT8233 AC97" rev 0x60: irq 10 ac97: codec id 0x414c4760 (Avance Logic ALC655 rev 0) audio0 at auvia0 isa0 at mainbus0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: spkr0 at pcppi0 npx0 at isa0 port 0xf0/16: using exception 16 biomask f3fd netmask fffd ttymask pctr: user-level cycle counter enabled dkcsum: wd0 matches BIOS drive 0x80 dkcsum: wd1 matches BIOS drive 0x81 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302 -- CUL8R, Peter.
wireless ethernet adapters (seeking recommendations)
I'm looking to build on OpenBSD 4.0 (4.1?) a wireless access point for a small network. I would like to hear what cards have proven to be the most effective in this arena. I am very interested in small form factor machines with possible onboard wireless adapters. The client systems will be running Ubuntu Linux (Feisty). Thank you very much. Pedro
dynamic addresses and ipsec.conf
In separate locations I am running two OBSD 4.0 gateways which receive dynamic IP addresses (cable, dsl). I have looked at the man page for ipsec.conf and there appears to be a provision for dynamic addresses: 'ike dynamic esp' What I don't understand is that it appears I nonetheless need to supply an IP address for each gateway: 'ike dynamic esp ' What am I missing here? PM p.s. Is the packet filter mailing list still alive? I noticed its archives do not enter into December.
Re: pf rule question
Le Vendredi 9 Fivrier 2007 13:55, Rafa3 Brodewicz a icrit : > Hello. > > While trying to configure pf to pass dhcp requests I've build a > simple rule: > > block log all > pass in log on $inf_if proto udp from { $int_if:network 0.0.0.0 } \ > port 68 to 255.255.255.255 port 67 > > But it seems that above rule pass out udp to port 68 (like it was > having keep state added), but it shouldn't, right? > Why and how is that possible? Well I know that current uses keep state by default. What are you running? PM
3.9 clamav package broken?
I have a 3.9 system running clamav and freshclam chroot and I wanted to update clamav from 0.88.4 to 0.88.7. So I... i) stopped the clamd and freshclam daemons ii) removed clamav package with pkg_delete iii) installed the newer clamav with pkg_add I then used ldd to locate what I need to put in my $CHROOT for clamd. I was missing libclamav.so.2.0 so I copied it into $CHROOT. I started clamd fine after using ldconfig. But I encountered trouble when doing the same for freshclam: $ ldd /usr/local/bin/freshclam /usr/local/bin/freshclam: StartEnd Type Open Ref GrpRef Name exe 10 0 /usr/local/bin/freshclam 065c4000 265d9000 rlib 01 0 /usr/local/lib/libclamav.so.2.0 <<=== 03e08000 23e12000 rlib 02 0 /usr/local/lib/libcurl.so.3.3 09ee5000 29eed000 rlib 03 0 /usr/lib/libz.so.4.1 0e0d8000 2e106000 rlib 03 0 /usr/lib/libcrypto.so.12.0 07fe 27feb000 rlib 03 0 /usr/lib/libssl.so.10.0 06782000 26788000 rlib 02 0 /usr/local/lib/libgmp.so.6.3 09e54000 29e58000 rlib 02 0 /usr/local/lib/libbz2.so.10.3 0a49b000 2a4a4000 rlib 01 0 /usr/lib/libpthread.so.6.2 0fd6a000 2fd9b000 rlib 01 0 /usr/lib/libc.so.39.0 0cc84000 0cc84000 rtld 01 0 /usr/libexec/ld.so When starting freshclam outside $CHROOT it works but it does not when starting it inside. It asks for an outdated version of libclamav.so (1.9): $ /usr/local/bin/freshclam -u root ClamAV update process started at Thu Feb 15 17:52:28 2007 WARNING: Your ClamAV installation is OUTDATED! WARNING: Local version: 0.88.7 Recommended version: 0.90 DON'T PANIC! Read http://www.clamav.net/faq.html main.cvd is up to date (version: 42, sigs: 83951, f-level: 10, builder: tkojm) daily.cvd is up to date (version: 2578, sigs: 7844, f-level: 13, builder: sven) WARNING: Your ClamAV installation is OUTDATED! WARNING: Current functionality level = 10, recommended = 13 DON'T PANIC! Read http://www.clamav.net/faq.html # chroot -u amavisd /var/amavisd /usr/local/bin/freshclam -d /usr/local/bin/freshclam: can't load library 'libclamav.so.1.19' I used the same procedure on a 4.0 system with no such problem. PM
FuzzyOCR on OpenBSD?
I'm looking for guidance in installing the FuzzyOCR SA plugin on OpenBSD 4.0. Has anyone done this? Thanks in advance, PM
Re: Choices for Soekris "disk drives"
--- Gustavo Rios <[EMAIL PROTECTED]> wrote: > Which seagate momentus are you using? > > Thanks in advance. > > On 7/15/05, Frank Denis (Jedi/Sector One) <[EMAIL PROTECTED]> > wrote: > > On Fri, Jul 15, 2005 at 07:55:59PM +0530, Mayuresh Kathe wrote: > > >*AVOID* 2.5" IDE Laptop drives. > > >I've had pretty bad experience with them, > > >1. They heat up a lot > > >2. Are slow > > >3. Fail quite often (this could be due to the heat) > > >(face problems with Toshiba and IBM) > > > > I have the opposite experience. My Net4801 is running 24/7 for > one year with > > a Momentus drive (5400 RPMs) and it is neither slow nor hot. > > > > Hitachi also produces drives that are designed to run 24/7 > (Eudurastar, > > now obsoleted by E7K60 and E7K100 drives). My Mac Mini is running > with a > > 7K100 (80 Gb, 7200 RPM, 8 Mb cache) drive and it is as fast as any > 3,5" > > drive. It seems to heat up more than the Momentus since the fan > often wakes > > up, but it works reliably. I am intending on putting a WD Scorpio in my 4801 unit. I'll let you know how it goes. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
hearing complaints regarding pre-orders
I have seen on two sites a guy complaining about the CD ordering system. Apparently there is no mention of the amount you will actually be paying unless you provide your CC info. This may detract some potential buyers. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: hearing complaints regarding pre-orders
--- Diana Eichert <[EMAIL PROTECTED]> wrote: > On Thu, 21 Sep 2006, Theo de Raadt wrote: > SNIP > > > > $30 USD shipping to anywhere in the world. > > > > That's what lots of internet retailers do. But no, we don't do > that. > > > > We instead ask you to trust us that it is in our interest to ship > to > > you using the best shipment method, which is a combination of low > cost > > and reliability. The text right there on the order page says so. > > > > You trust us for all sorts of other things, so please trust us for > this, > > too. > > I have an alternate method. Just setup a mechanism so that all calls > to the openssl lib gets matched against "credit" and log credit card > info > to weownyourcreditinfo.openbsd.org. For all I know that might > already be > in OpenBSD, but wait I trust them not to do anything malicious. > > Oh, well, I hope my sarcasm isn't lost on the original poster. As is common, the thread has degenerated after being massaged by the fanboys with all sorts of witty and knee-slapping phrases. My post was to alert those in charge of the ordering system that the system in its current state may be causing some potential buyers to retreat from their initial desire to make a purchase. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
High availability software for OpenBSD?
I am looking for something comparable to Ultra Monkey (Linux) that runs on OpenBSD. Anyone? Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
stopping command issued from shell script
I have a bourne shell script with a menu. One menu entry is for running an executable to produce output (non-stop logging on a busy server) on the screen. How can I stop this program and get kicked back to my script (menu) when I have seen enough? So far all I can do is Ctrl-C which kicks me back to my command prompt with no more output coming through (something that happens if I merely start it in the background)? I am using the bash shell on OpenBSD 3.9. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
RAIDframe question
I am running 3.8-stable with RAIDframe RAID-1 and two IDE disks (wd0 and wd1). Everything thing seems to work (parity is good) but when I boot up I get two messages that worry me: raid0: Device already configured! "ioctl (RAIDFRAME_CONFIGURE) failed" Can anyone lend a hand in this important matter? There are some more seemingly good raid related messages after that but the machine is now at a remote location and I do not see any messages in the output of dmesg (the first line above is the last line from dmesg). The tail end of dmesg output is: Kernelized RAIDframe activated cd0(atapiscsi0:0:0): Check Condition (error 0x70) on opcode 0x0 SENSE KEY: Not Ready ASC/ASCQ: Medium Not Present raid0 (root): (RAID Level 1) total number of sectors is 48234752 (23552 MB) as root dkcsum: wd0 matches BIOS drive 0x80 dkcsum: wd1 matches BIOS drive 0x81 rootdev=0x1300 rrootdev=0x3600 rawdev=0x3602 raid0: Device already configured! -- Peter
Re: RAIDframe question
--- Ho?=kan Olsson <[EMAIL PROTECTED]> wrote: > On 1 feb 2006, at 08.38, Jurjen Oskam wrote: > > > On Wed, Feb 01, 2006 at 01:19:58AM -0500, Peter wrote: > > > >> raid0: Device already configured! > >> "ioctl (RAIDFRAME_CONFIGURE) failed" > >> > >> Can anyone lend a hand in this important matter? > > > > Let me guess (since you didn't post any configuration): you > > enabled RAID-autoconfiguration by the kernel *and* you > > configure the same RAID-device during the boot sequence using > > raidctl? > > /etc/rc includes commands to configure the raid devices, and if > they've been setup to use autoconfiguration then this is indeed what > happens. Expected and nothing to worry about, although noisy. For my > raidframe devices, I just removed the autoconfigure flag. Oh that's a relief. Yes, now I see in /etc/rc the raid commands. So I should leave everything as is? Side question: I tried unsuccessfully using the same procedure to set up two disks (sd0 and sd1) attached to a QLogic FibreChannel controller (isp driver). I probably don't have the correct terminology but upon startup the boot code could not be found (would not get beyond the point where the kernel usually kicks in). I'm wondering whether RAIDframe has limitations with this hardware.
Re: need help with pf tcpdump
--- David Benfell <[EMAIL PROTECTED]> wrote: > Hello all, > > I'm trying to debug my packet filtering rules. The problem is that > messages sent from my internal network are not getting through to the > SMTP host on my OpenBSD 3.8-CURRENT system. A common debugging approach is to log on all block rules and then identify which rule is blocking the traffic. So add the log keyword to your block rules, reload your set, activate the pflog0 interface, and then tcpdump: # ifconfig pflog0 up # tcpdump -i pflog0 -qtne host
Re: vpn problem
--- plz? yeah plz <[EMAIL PROTECTED]> wrote: > Hello all, > > Currently my brother and I try to set up a vpn using isakmpd between two > OBSD 3.8 boxes. We had a similar vpn working before. We both changed > ADSL providers and thought it is time for an upgrade. However... I did notice some redundancy under [Default-quick-mode]. What about the other file?
Re: QUESTION ABOUT PPP.LINKUP AND PF
--- Brian Shackelford <[EMAIL PROTECTED]> wrote: > Hello - > > > > I am currently at the end of my understanding. We have PF working > between two Ethernet cards perfectly - we have absolutely no problems > with it coming up properly and running as needed. What I am having a > problem with is when we use PPP to establish a connection to an ISP via > a dialup modem. In some cases we do need to do that as the locations do > not have high speed access. > > > > We have a line for the dialup config in our ppp.conf file called > elinkod: This connects up to earthlink manually, with the -ddial or the > -auto modes no problem and we can get around on the internet with no > problems. > > > > We have /etc/ppp/ppp.linkup and in that is a section like this: > > > > elinkod: > > ! sh -c "pfctl -e -f /etc/pf.conf" > > > > Now from what I understand this should allow the connection to establish > and the enable pf with the ruleset contained in pf.conf. It doesn't > seem to ever work. We even tried putting the commands to kick off in a > separate script file and kick that file off like so: > > > > elinkod: > > !bg /etc/ppp/ppp.linkup.elinkod > > > > Again that also did not work. We have the set log options set in the > ppp.conf file under the elinkod section and the relevant sections setup > in syslog.conf to allow for logging of ppp information to > /var/log/ppp.log - but nothing is appearing in the log files either. > > > > Just wondering if anyone has any suggestions as to what to do next? I > am sure it is something I am missing, but I read and re-read the man > pages and really couldn't find what I was doing wrong - of course > information starts to run together late at night and I might have > misread or confused something else. You have to put a space before the exclamation mark.
Re: syslogd question
--- [EMAIL PROTECTED] wrote: > On Fri, 10 Feb 2006, eric wrote: > > > On Fri, 2006-02-10 at 10:46:02 -0600, [EMAIL PROTECTED] > proclaimed... > > > > > I am setting up an openbsd box to be the catcher for a couple of AIX > boxes > > > to pitch their log files to. Using the standard syslogd, I am > wondering > > > if I can set it up so that each of the AIX boxes gets its own log > file on > > > the openbsd box. Something like /var/log/aix1.log and > /var/log/aix2.log. > > > > Sure, check out the man page for syslogd.conf(5). > > > > Um, maybe I am missing something but on my box, and the openbsd site > there is no syslogd.conf man page. There is a man 5 syslog.conf page > and I have read it. Didn't see anything that would apply to this > question at all. I also read man 8 syslogd and looked at the -a flag, > wondering if that is where I want to be. Is a logging socket the same > as a log file? And even if it is, I don't know how I would name the > file -- unless it is like snort and uses the ip address. Sounds like you want to set up a remote logging server. The OpenBSD man page is surprisingly incomplete in this area so I'm redirecting you over to the FreeBSD site. http://www.freebsd.org/cgi/man.cgi?query=syslog.conf&apropos=0&sektion=0&manpath=FreeBSD+5.4-RELEASE&format=html Look for the '+' and '@' signs. But you could have googled yourself.
ssh remote execution: PATH
Hi, I on 3.8 invoke ssh in order to run a command on a remote host: $ ssh [EMAIL PROTECTED] command The annoyance is that I must specify the absolute path: $ ssh [EMAIL PROTECTED] /usr/local/sbin/command The PATH of the user (given in ~/.profile) contains /usr/local/sbin but evidently this file remains unread. Is there any way to not have to supply the entire path short of recompiling ssh? -- Peter
Re: ssh remote execution: PATH
--- Damien Miller <[EMAIL PROTECTED]> wrote: > On Mon, 13 Feb 2006, Peter wrote: > > > $ ssh [EMAIL PROTECTED] /usr/local/sbin/command > > > > The PATH of the user (given in ~/.profile) contains /usr/local/sbin > but > > evidently this file remains unread. > > .profile is only used for interactive sessions. Try .kshrc Ok, so you're saying the user should change shells (from bash) to ksh?
Re: Problem with freshclam
--- Gabriel George POPA <[EMAIL PROTECTED]> wrote: > Hello all, > >I have the following problem when running freshclam: > # freshclam > ClamAV update process started at Fri Feb 24 17:58:29 2006 > ERROR: Can't get information about db.ro.clamav.net: Host not found > Connection with db.ro.clamav.net (IP: ???) failed. > Trying again in 5 secs... > ClamAV update process started at Fri Feb 24 17:58:34 2006 > ERROR: Can't get information about db.ro.clamav.net: Host not found > Connection with db.ro.clamav.net (IP: ???) failed. > Trying again in 5 secs... > Or even better: > # freshclam > ClamAV update process started at Fri Feb 24 17:59:02 2006 > ERROR: Can't get information about database.clamav.net: Host not found > Connection with database.clamav.net (IP: ???) failed. > Trying again in 5 secs... > BUT: > > # ping database.clamav.net > PING db.northeu.clamav.net (83.148.101.196): 56 data bytes > 64 bytes from 83.148.101.196: icmp_seq=0 ttl=47 time=115.432 ms > --- db.northeu.clamav.net ping statistics --- > 1 packets transmitted, 1 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev = 115.432/115.432/115.432/0.000 ms > > AND: > # ping db.ro.clamav.net > PING db.ro.clamav.net (192.129.4.120): 56 data bytes > 64 bytes from 192.129.4.120: icmp_seq=0 ttl=60 time=81.649 ms > --- db.ro.clamav.net ping statistics --- > 1 packets transmitted, 1 packets received, 0.0% packet loss > round-trip min/avg/max/std-dev = 81.649/81.649/81.649/0.000 ms > > (I am from Romania, obviously) > > > I really don't know what's wrong. Could someone tell me? Oh, and it > would be very nice to find out from you if there is a > tutorial treating clamav, freshclam, clamd and clamsmtpd with Sendmail > on a usual mail server (with POP3 and IMAP enabled). Are you running freshclam in a chroot jail?
Re: tcpdump, rulenum, and pflog
--- [EMAIL PROTECTED] wrote: > I'm trying to use tcpdump capture traffic on the external interface > of > my NAT/firewall/web/mail/etc. system in a quasi-private way, > specifically by excluding any traffic that comes from or is > ultimately > destined to NAT'ed boxes. Since packets which go from or to > 192.168.2.0/24 are NAT'ed before (and probably after) tcpdump sees > them, I don't believe I can accomplish this with a simple "not net > 192.168.2.0/24" filter on tcpdump; thus, I've turned to the "rulenum" > > or "rdr" feature of tcpdump's filter criteria, which works on packets > > logged by pf(4). > > I know that if I simply enable logging on all of the packets I want > to > see, using pf-based tcpdump filter criteria works like a charm. The > problem I have is that doing so will make for a rather gigantic > /var/log/pflog very quickly, a situation I'd like to avoid if > possible > (for disk space and possible performance issues). Thus, my question > is: > is it possible to enable pf logging without writing to > /var/log/pflog, > while still preserving tcpdump's ability to see packets on the pflog0 > > interface? Alternately, is there a better/simpler way to accomplish > my > tcpdump objective of not logging packets coming from or destined to > NAT'ed boxes? You want to log packets to standard output but not to disk? Is that it? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
hardening openbsd firewall
Hi. I've set up several firewalls with OpenBSD but I have yet to go to any extremes regarding "hardening". So far I have updated the source (stable), recompiled the system & kernel, removed the source code, turned off inetd, and set up a tight pf.conf. I have been reading up on an interesting strategy of removing tons of executables, storing them on a cd, and setting up symlinks to the cd mount point so they can be accessed when needed. My firewall will be providing internet access (NAT) to a small office lan (not mine). What strategies are others using in this area? -- Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: hardening openbsd firewall
Thanks to the responders for their insights. I have a lot to consider here. Honestly, I did not feel comfortable removing a ton of executables. I'll probably put back the source I removed as well. -- Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Small office with BSD blueprint
--- Joachim Schipper <[EMAIL PROTECTED]> wrote: [snip] > > Do you usually assign static IPs? > > Yes, on a small LAN such as this - why not? It cuts out one bad idea > (DHCP), and does not have any disadvantages I can see. Except maybe > that > you need to update the DNS server(s) on all the Windows boxes if it > changes. And yes, that's happened to me... Why is DHCP a bad idea? -- Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
no internet with cable provider (videotron.ca)
Hi everyone. I am troubleshooting a client (running OpenBSD 3.8) who cannot connect to a Canadian cable provider (videotron.ca) with dhclient. dhclient cannot find a dhcp server. Is there anything special one needs to do besides 'dhclient '? The connection is made instantly when win2k box is connected directly to the modem. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Recommendations for an OpenBSD-based Backup Solution
--- "Donald J. Ankney" <[EMAIL PROTECTED]> wrote: > I threw together a Perl script that uses tar and external firewire > drives. Tar has flags that will let it backup over SMB (for the > windows > boxes) and one can always do use scp (via certificates) piped through > > tar for remote linux/BSD boxes. I've been using this solution across > several platforms (all servers) for a year now, and it has worked > well. > > > Obi Okeke wrote: > > An appeal to the Gods of OpenBSD! Let me write up > > front that I am most grateful for all that the OpenBSD > > project has done. > > > > Some friends of mine need a backup solution that can > > easily handle regular, automated backups from some M$ > > Win 2k and Linux workstations as well as an OpenBSD > > 3.8 based Samba file server that I had set up for them > > a while ago. > > > > I've used FreeBSD 5x running Bacula at another site, > > but I am looking for an all OpenBSD solution so I > > don't have to install another box running > > FreeBSD/Bacula on their site since they already have 2 > > OBSD boxes up and running (perfectly thanks to OBSD) - > > one for firewall/router/nat/squid and one for the > > Samba fileserver. I would like to add the backup > > solution to the file server box since its not heavily > > loaded at all. Any recommendations would be greatly > > appreciated. Thanks in advance. > > Tired of spam? Yahoo! Mail has the best spam protection around > > http://mail.yahoo.com > > I am using rsync. It also works well. I wrote small scripts (windows side) for users to back up at their discretion. Since they are actually synchronizing it doesn't take long at all (akin to saving work in Word or whatever whenever you want). Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: no internet with cable provider (videotron.ca)
--- Damian Gerow <[EMAIL PROTECTED]> wrote: > Thus spake Peter ([EMAIL PROTECTED]) [21/03/06 00:56]: > : Hi everyone. I am troubleshooting a client (running OpenBSD 3.8) > who > : cannot connect to a Canadian cable provider (videotron.ca) with > : dhclient. dhclient cannot find a dhcp server. Is there anything > : special one needs to do besides 'dhclient '? The connection > is > : made instantly when win2k box is connected directly to the modem. > > Was the Win2k box connected first? Many (most?) Canadian cable > providers > cache the MAC address of the connected machine, and generally > speaking, > unplugging the cable modem for five minutes should re-set the cached > address > on their side. > > Otherwise... logs? I did hear of the caching feature so I unplugged the power but only for about 10 seconds. Five minutes you say? I don't see any logs being generated except for it not being able to find a dhcp server. On one occasion only did I see something to the effect "accepted blah length not same as blah length." Like what it received was not the length of what is was supposed to receive. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: no internet with cable provider (videotron.ca)
--- Damian Gerow <[EMAIL PROTECTED]> wrote: > Thus spake Peter ([EMAIL PROTECTED]) [21/03/06 01:46]: > : > Was the Win2k box connected first? Many (most?) Canadian cable > : > providers > : > cache the MAC address of the connected machine, and generally > : > speaking, > : > unplugging the cable modem for five minutes should re-set the > cached > : > address > : > on their side. > : > > : > Otherwise... logs? > : > : I did hear of the caching feature so I unplugged the power but only > for > : about 10 seconds. Five minutes you say? > > Yeah, give it five minutes. That /should/ clear it out. (You may > want to > unplug power as well -- I've heard conflicting reports about that.) > > : I don't see any logs being generated except for it not being able > to > : find a dhcp server. On one occasion only did I see something to > the > : effect "accepted blah length not same as blah length." Like what > it > : received was not the length of what is was supposed to receive. > > Strange. My guess is the caching -- it really is as simple as > running > 'dhclient '. > > You could also try calling them up to see if they cache the MAC or > not, for > how long if they do, and what it takes to flush the cache. > Well I unplugged for a good five minutes and still nothing. Indeed, I first heard of this caching from one of their technicians and I was instructed to simply unplug the power cable; he did not specify a timeout. The device is a telephony modem (the users have opted for the videotron "trio": cable-telephone, cable-tv, and cable-internet). It is an Arris TM502G. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Recommendations for an OpenBSD-based Backup Solution
--- "L. V. Lammert" <[EMAIL PROTECTED]> wrote: > At 12:53 AM 3/21/2006 -0500, Peter wrote: > > >I am using rsync. It also works well. I wrote small scripts > (windows > >side) for users to back up at their discretion. > > Quick question - I have tried Cygwin rsync on more than one occasion > for > such an application, .. and it refuses to talk to the OBSD version. > Which > version(s) you were using? I am using cwrsync (very light) on the windows clients and the rsync port for FreeBSD 5.4 and 6.0. I don't see why it would not work with OpenBSD. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
[SOLVED] Re: no internet with cable provider (videotron.ca)
Ok folks. This *was* a MAC caching issue. I was able to reset this particular modem by inserting a pin into the reset orifice. I presume I could have achieved this by unplugging the power cable AND removing the battery. So dhclient on OpenBSD 3.8 *does work* although I continue to receive a bad length type of message. Here is the session: # dhclient sis1 DHCPDISCOVER on sis1 to 255.255.255.255 port 67 interval 8 DHCPDISCOVER on sis1 to 255.255.255.255 port 67 interval 14 ip length 348 disagrees with bytes received 352. accepting packet with data after udp payload. DHCPOFFER from 10.206.182.1 DHCPREQUEST on sis1 to 255.255.255.255 port 67 ip length 348 disagrees with bytes received 352. accepting packet with data after udp payload. DHCPACK from 10.206.182.1 bound to 70.81.175.3 -- renewal in 1800 seconds. I will try to use the '-u' switch and see if that will get rid of the warning message. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: soekris
--- Gustavo Rios <[EMAIL PROTECTED]> wrote: > Does anybody have a soekris box and would like to give a shell > account > for some testing? > I am considering to buy one for me, but i would like, previously, to > be able to feel what it is like. What sort of testing? About feelings, it depends on what is installed and how it is installed. You can use, for instance, a compact flash card, a 3.5" (laptop) hard drive, or a combination of these (I think). I am running on only a 128 MB CF card so it is difficult to have a full install (I don't have full functionality but today's affordable large capacity CF cards make full installs possible). Flash allows me to unplug the unit any time and not worry about disk problems. Typically the Soekris is used for some kind of gateway but you cannot expect it to handle a large network since it has resource limitations (cpu, ram). So these are some examples of the differences you may encounter. Other than that, my system performs very well on a small lan and I am very happy. Here is my df: Filesystem SizeUsed Avail Capacity Mounted on /dev/wd0a 118M 21.7M 90.0M19%/ mfs:30147 7.8M100K7.3M 1%/tmp Notice I am using a memory/RAM filesystem for any writing it needs to do. Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: soekris
--- marrandy <[EMAIL PROTECTED]> wrote: > On Thursday 23 March 2006 13:08, you wrote: > > > > > Other than that, my system performs very well on a small lan and I > am > > very happy. Here is my df: > > > > Filesystem SizeUsed Avail Capacity Mounted on > > /dev/wd0a 118M 21.7M 90.0M19%/ > > mfs:30147 7.8M100K7.3M 1%/tmp > > > > Notice I am using a memory/RAM filesystem for any writing it needs > to do. > > > Why isn't /var listed in MFS ? > > Logs etc # ls -lh /var lrwxr-xr-x 1 root wheel 8B Dec 16 21:28 /var -> /tmp/var Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: soekris
--- marrandy <[EMAIL PROTECTED]> wrote: > On Thursday 23 March 2006 15:41, you wrote: > > > > Why isn't /var listed in MFS ? > > > > > > Logs etc > > > > # ls -lh /var > > lrwxr-xr-x 1 root wheel 8B Dec 16 21:28 /var -> /tmp/var > > I was wondering if you had done something like that. > > Hows it holding up with only 7.8MB for both /tmp and /var ? > > Any crashes or anything ? Nope. It's very stable. Currently, as my first post showed, I'm only using 100 kB of my MFS. All logs are sent to a remote station. Honestly I cannot find anything wrong with the Soekris. I realize it has its power/load limitations (which I have yet to challenge on my lan). Peter Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Is it possible to add pppoe to a bridge?
Even if a bridge is empty it seems impossible to add pppoe to it. This doesn't change if the first bridge member has an MTU identical to that of the pppoe interface (thank you to Martin Reindl for a patch enabling mtu changes on Sun quad ethernet). For my own, and anyone else's reference, the bridge's own MTU is hardcoded to ETHERMTU (1500). Now, I can go through the source to if_bridge.c and find the definitive answer, but I thought I'd ask here in case anyone had an immediate answer, even if delving into the depths of OpenBSD is new knowledge for me. The bridge and brconfig man pages aren't illuminating in this regard. Alternatively, it would be good to know if I'm doing something foolish, if I find a way to get the source to accept pppoe interfaces - could there be a hidden side effect? PK
Re: Is it possible to add pppoe to a bridge? Yes after hacking, but....
Peter wrote: Even if a bridge is empty it seems impossible to add pppoe to it. This doesn't change if the first bridge member has an MTU identical to that of the pppoe interface (thank you to Martin Reindl for a patch enabling mtu changes on Sun quad ethernet). For my own, and anyone else's reference, the bridge's own MTU is hardcoded to ETHERMTU (1500). Now, I can go through the source to if_bridge.c and find the definitive answer, but I thought I'd ask here in case anyone had an immediate answer, even if delving into the depths of OpenBSD is new knowledge for me. The bridge and brconfig man pages aren't illuminating in this regard. Alternatively, it would be good to know if I'm doing something foolish, if I find a way to get the source to accept pppoe interfaces - could there be a hidden side effect? To answer my own question. No, it's not possible as the source seems to prohibit this. It's trivial to change the source to force it to accept PPPoE interfaces, and I now have a bridge with PPPoE on it. Unfortunately I'm not sure if it's actually working as a bridge, which is a minor disadvantage.. Hopefully it's easy to make this work PK
Kernel debugging setup - pccom vs com and failed mappings?
I'm trying to set up a virtualised qemu OpenBSD kernel debug environment, with a reasonable amount of success, but am running into the following problem on bootup : com1: at isa0 port 0x2f8/8 irq 3panic: com_isa_attach: mapping failed The operating system has halted Presumably because the kernel debugger is already using it (it attaches fine after the initial boot -d). I note that in a non debug kernel it's referring to pccom instead of straight com... I imagine I'm doing something wrong? My kernel config file is : include "arch/i386/conf/GENERIC" rmoption DDB makeoptions DEBUG="-g" option KGDB option "KGDB_DEVNAME=\"com\"",KGDBADDR=0x2f8,KGDBRATE=19200 /etc/ttys has tty01 "/usr/libexec/getty std.19200" unknown off local (but it's not getting that far, is it?). Do I need to rebuild the kernel with option "KGDB_DEVNAME=\"pccom\"",KGDBADDR=0x2fs,KGDBRATE=19200 Perhaps? Or is this a virtualisation issue? I'm using qemu 0.91 under Vista x64 with redirected serial ports (-serial tcp:address>:,server,nowait) Thanks! PK
Re: Dual-head OpenBSD 4.5 and NVIDIA GeForce 7300 GT
This is my xorg.conf which works on the 4.4 snapshot I was running. Unfortunately I can't get three screens going, and the 4.5 snapshot I tried to upgrade to on Friday is currently crashing on startup, so I can't tell if it's any better yet. This may well be a factor, as my xorg.conf is pretty straightforward : Section "ServerLayout" Identifier "X.org Configured" Screen 0 "Screen0" 0 0 Screen 1 "Screen1" RightOf "Screen0" Screen 2 "Screen2" LeftOf "Screen0" InputDevice"Mouse0" "CorePointer" InputDevice"Keyboard0" "CoreKeyboard" EndSection Section "Files" ModulePath "/usr/X11R6/lib/modules" FontPath "/usr/X11R6/lib/X11/fonts/misc/" FontPath "/usr/X11R6/lib/X11/fonts/TTF/" FontPath "/usr/X11R6/lib/X11/fonts/OTF" FontPath "/usr/X11R6/lib/X11/fonts/Type1/" FontPath "/usr/X11R6/lib/X11/fonts/100dpi/" FontPath "/usr/X11R6/lib/X11/fonts/75dpi/" EndSection Section "Module" Load "dbe" Load "dri" Load "extmod" Load "glx" Load "freetype" EndSection Section "InputDevice" Identifier "Keyboard0" Driver "kbd" EndSection Section "InputDevice" Identifier "Mouse0" Driver "mouse" Option"Protocol" "wsmouse" Option"Device" "/dev/wsmouse" Option"ZAxisMapping" "4 5 6 7" EndSection Section "Monitor" Identifier "Monitor0" VendorName "Monitor Vendor" ModelName"Monitor Model" EndSection Section "Monitor" Identifier "Monitor1" VendorName "Monitor Vendor" ModelName"Monitor Model" EndSection Section "Monitor" Identifier "Monitor2" VendorName "Monitor Vendor" ModelName"Monitor Model" EndSection section "Device" ### Available Driver options are:- ### Values: : integer, : float, : "True"/"False", ### : "String", : " Hz/kHz/MHz" ### [arg]: arg optional #Option "SWcursor" # [] #Option "HWcursor" # [] #Option "NoAccel"# [] #Option "ShadowFB" # [] #Option "UseFBDev" # [] #Option "Rotate" # [] #Option "VideoKey" # #Option "FlatPanel" # [] #Option "FPDither" # [] #Option "CrtcNumber" # #Option "FPScale"# [] #Option "FPTweak"# #Option "DualHead" # [] Identifier "Card0" Driver "nv" VendorName "Unknown Vendor" BoardName "Unknown Board" BusID "PCI:1:0:0" Option "DualHead" EndSection Section "Device" ### Available Driver options are:- ### Values: : integer, : float, : "True"/"False", ### : "String", : " Hz/kHz/MHz" ### [arg]: arg optional #Option "SWcursor" # [] #Option "HWcursor" # [] #Option "NoAccel"# [] #Option "ShadowFB" # [] #Option "UseFBDev" # [] #Option "Rotate" # [] #Option "VideoKey" # #Option "FlatPanel" # [] #Option "FPDither" # [] #Option "CrtcNumber" # #Option "FPScale"# [] #Option "FPTweak"# #Option "DualHead" # [] Identifier "Card1" Driver "nv" VendorName "Unknown Vendor" BoardName "Unknown Board" BusID "PCI:2:0:0" Option "FlatPanel" Option "DualHead" EndSection Section "Screen" Identifier "Screen0" Device "Card0" Monitor"Monitor0" SubSection "Display" Viewport 0 0 Depth 1 EndSubSection SubSection "Display" Viewport 0 0 Depth 4 EndSubSection SubSection "Display" Viewport 0 0 Depth 8 EndSubSection SubSection "Display" Viewport 0 0 Depth 15 EndSubSection SubSection "Display" Viewport 0 0 Depth 16 EndSubSection SubSection "Display" Viewport 0 0 Depth 24 EndSubSection EndSection Section "Screen" Identifier "Screen1" Device "Card0" Monitor"Monitor1" SubSection "Display" Viewport 0 0 Depth 1 EndSubSection SubSection "Display" Viewport 0 0 Depth 4 EndSubSection SubSection "Display" Viewport 0 0 Depth 8 EndSubSection SubSection "Display" Viewport 0 0 Depth 15 EndSubSection SubSection "Display" Viewport 0 0 Depth 16 EndSubSection SubSection "Display" Viewport 0 0 Depth 24 EndSubSection EndSection Section "Screen" Identifier "Screen2"
Non-functional battery stuck at 55% on ThinkPad T420 upgrade since 5.6-stable upgrade
Hello all, Since upgrading to 5.6-stable my ThinkPad T20 battery doesn't work. The OS recognizes the battery but it's stuck at 55% and won't recharge. It won't boot without AC power. I'm running apmd(8) without modifications. Did I forget some option when I reinstalled? Any help would be greatly appreciated. Thanks, Peter $ apm Battery state: high, 55% remaining, unknown life estimate A/C adapter state: connected Performance adjustment mode: manual (2492 MHz) $ sudo dmesg OpenBSD 5.6-stable (GENERIC.MP) #2: Mon Nov 3 19:26:09 EST 2014 r...@laptop.my.domain:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 6190374912 (5903MB) avail mem = 6016802816 (5738MB) mpath0 at root scsibus0 at mpath0: 256 targets mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.6 @ 0xdae9c000 (63 entries) bios0: vendor LENOVO version "83ET76WW (1.46 )" date 07/05/2013 bios0: LENOVO 423662U acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP SLIC SSDT SSDT SSDT HPET APIC MCFG ECDT ASF! TCPA SSDT SSDT UEFI UEFI UEFI acpi0: wakeup devices LID_(S3) SLPB(S3) IGBE(S4) EXP4(S4) EHC1(S3) EHC2(S3) HDEF(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz, 2492.29 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu0: 256KB 64b/line 8-way L2 cache cpu0: smt 0, core 0, package 0 mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges cpu0: apic clock running at 99MHz cpu0: mwait min=64, max=64, C-substates=0.2.1.1.2, IBE cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz, 2491.91 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu1: 256KB 64b/line 8-way L2 cache cpu1: smt 1, core 0, package 0 cpu2 at mainbus0: apid 2 (application processor) cpu2: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz, 2491.91 MHz cpu2: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu2: 256KB 64b/line 8-way L2 cache cpu2: smt 0, core 1, package 0 cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz, 2491.91 MHz cpu3: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC cpu3: 256KB 64b/line 8-way L2 cache cpu3: smt 1, core 1, package 0 ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins acpimcfg0 at acpi0 addr 0xf800, bus 0-63 acpiec0 at acpi0 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (PEG_) acpiprt2 at acpi0: bus 2 (EXP1) acpiprt3 at acpi0: bus 3 (EXP2) acpiprt4 at acpi0: bus 5 (EXP4) acpiprt5 at acpi0: bus 13 (EXP5) acpicpu0 at acpi0: C3, C1, PSS acpicpu1 at acpi0: C3, C1, PSS acpicpu2 at acpi0: C3, C1, PSS acpicpu3 at acpi0: C3, C1, PSS acpipwrres0 at acpi0: PUBS, resource for EHC1, EHC2 acpitz0 at acpi0: critical temperature is 98 degC acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: SLPB acpibat0 at acpi0: BAT0 model "45N1007" serial 974 type LION oem "SANYO" acpibat1 at acpi0: BAT1 not present acpiac0 at acpi0: AC unit online acpithinkpad0 at acpi0 cpu0: Enhanced SpeedStep 2492 MHz: speeds: 2501, 2500, 2200, 2000, 1800, 1600, 1400, 1200, 1000, 800 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel Core 2G Host" rev 0x09 vga1 at pci0 dev 2 function 0 "Intel HD Graphics 3000" rev 0x09 intagp at vga1 not configured inteldrm0 at vga1 drm0 at inteldrm0 drm: Memory usable by graphics device = 2048M inteldrm0: 1366x768 wsdisplay0 at vga1 mux 1: console (std, vt100 emulation) wsdisplay0: screen 1-5 added (std, vt100 emulation) "Intel 6 Series MEI" rev 0x04 at pci0 dev 22 function 0 not configured puc0 at pci0 dev 22 function 3 "Intel 6 Series KT" rev 0x04: ports: 1 com com4 at puc0 port 0 apic 2 int 19: ns16550a, 16 byte fifo com4: probed fifo depth: 0 bytes em0 at pci0 dev 25 function 0 "Intel 82579LM" rev 0x04: msi, address 00:21:cc:b4:73:ec ehci0 at pci0 dev 26 function 0 "Intel 6 Series USB" rev 0x04: apic 2 int 16 usb0 at ehci0: USB revision 2.0
Re: autonet - simple automatic wifi chooser
Hi, please see the program "wireless" for some ideas. https://github.com/overrider/wireless Peter
Re: Shutdown with the power button
hi, On Thu, Oct 16, 2008 at 11:30:02PM +1100, Mikel Lindsaar wrote: > Hmm... here is the dmesg then any ideas? looks like you're missing an acpibtn (man acpibtn). -- CUL8R, Peter.
4.4 release freezes
hi, i've been running 4.4 release since the cd's arrived, and have experienced 3 freezes/crashes since then. first time was when i was enabling wpa2psk on the ral0 interface, second time when simply running a vnc session, and the third directly after te reboot following the second freeze. symptoms : 2 times i had no response at all in any way. not through network, not through console (keyboard didn't even respond). once, it was still routing packets and responding to icmp, but the console froze after logging in. in all cases there were no entries in any log after rebooting. 4.3 ran fine, the ral0 card is a recent addition (and hence suspect). any pointers on how to debug this ? i'm gonna runs memtest over the weekend, and i might disable the ral-interface for a while, but that probably won't get me much... dmesg attached below... OpenBSD 4.4 (GENERIC) #1021: Tue Aug 12 17:16:55 MDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: VIA Esther processor 1500MHz ("CentaurHauls" 686-class) 1.51 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,APIC,SEP,MTRR,PGE,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,TM,SBF,SSE3 cpu0: RNG AES AES-CTR SHA1 SHA256 RSA real mem = 468152320 (446MB) avail mem = 444112896 (423MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/15/06, BIOS32 rev. 0 @ 0xfa960, SMBIOS rev. 2.3 @ 0xf (33 entries) bios0: vendor Phoenix Technologies, LTD version "6.00 PG" date 09/15/2006 apm0 at bios0: Power Management spec V1.2 (slowidle) apm0: AC on, battery charge unknown acpi at bios0 function 0x0 not configured pcibios0 at bios0: rev 2.1 @ 0xf/0xcce4 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfcc20/192 (10 entries) pcibios0: bad IRQ table checksum pcibios0: PCI BIOS has 10 Interrupt Routing table entries pcibios0: PCI Exclusive IRQs: 5 10 11 15 pcibios0: PCI Interrupt Router at 000:17:0 ("VIA VT8237 ISA" rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0xfc00 0xd/0x1000 0xd1000/0x1000 0xd2000/0x5000! cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 "VIA CN700 Host" rev 0x00 pchb1 at pci0 dev 0 function 1 "VIA CN700 Host" rev 0x00 pchb2 at pci0 dev 0 function 2 "VIA CN700 Host" rev 0x00 pchb3 at pci0 dev 0 function 3 "VIA PT890 Host" rev 0x00 pchb4 at pci0 dev 0 function 4 "VIA CN700 Host" rev 0x00 pchb5 at pci0 dev 0 function 7 "VIA CN700 Host" rev 0x00 ppb0 at pci0 dev 1 function 0 "VIA VT8377 AGP" rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "VIA S3 Unichrome PRO IGP" rev 0x01 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) agp0 at vga1: v3, aperture at 0xe800, size 0x1000 drm at vga1 unsupported ral0 at pci0 dev 8 function 0 "Ralink RT2860" rev 0x00: irq 15, address 00:0e:2e:ed:17:b2 ral0: MAC/BBP RT2860 (rev 0x0101), RF RT2820 (2T3R) re0 at pci0 dev 9 function 0 "Realtek 8169SC" rev 0x10: RTL8169/8110SCd (0x1800), irq 10, address 00:30:18:b0:26:ef rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 2 re1 at pci0 dev 11 function 0 "Realtek 8169SC" rev 0x10: RTL8169/8110SCd (0x1800), irq 11, address 00:30:18:b0:26:f0 rgephy1 at re1 phy 7: RTL8169S/8110S PHY, rev. 2 pciide0 at pci0 dev 15 function 0 "VIA VT6420 SATA" rev 0x80: DMA pciide0: using irq 15 for native-PCI interrupt wd0 at pciide0 channel 0 drive 0: wd0: 16-sector PIO, LBA48, 953869MB, 1953525168 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1 at pciide0 channel 1 drive 0: wd1: 16-sector PIO, LBA48, 953869MB, 1953525168 sectors wd1(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 5 viapm0 at pci0 dev 17 function 0 "VIA VT8237 ISA" rev 0x00 iic0 at viapm0 spdmem0 at iic0 addr 0x50: 512MB DDR2 SDRAM non-parity PC2-4200CL3 auvia0 at pci0 dev 17 function 5 "VIA VT8233 AC97" rev 0x60: irq 10 ac97: codec id 0x414c4760 (Avance Logic ALC655 rev 0) audio0 at auvia0 isa0 at mainbus0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: spkr0 at pcppi0 fins0 at isa0 port 0x4e/2 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 biomask f3fd netmask fffd ttymask softraid0 at root root on wd0a swap on wd0b dump on wd0b WARNING: / was not properly unmounted -- CUL8R, Peter.
Re: Testing in a virtual environment
Daniel A. Ramaley wrote: Hello. I have what is hopefully a quick question. Has anyone successfully run OpenBSD 4.4 in a virtualized environment? Yes. VMWare Server, VirtualPC and Qemu all run OpenBSD fine including X. In addition VMWare Server and Qemu definitely allow virtualised kernel debugging using virtual com ports. PK
Re: Port ZFS to OpenBSD
Mike Swanson wrote: Jason Dixon wrote: > As marco already stated, it could be a kernel module. But it won't. > Why? Because nobody will write it. Who is nobody anyway? I see he has an account on quite a lot of [] Where does nobody live? I'd love to buy him a beer! I refer you to http://www.sing365.com/music/lyric.nsf/Nowhere-Man-lyrics-The-Beatles/A47D370E54FB65B348256BC200138D54 and http://uk.youtube.com/watch?v=dHLjYBsl2zA Anyway, we've already had a fairly conclusive ZFS answer. It can't be integrated into base OpenBSD because the license is incompatible. The license is unlikely to change. Implementing it from the specifications has licence issues, is hard and bug prone. A kernel module can use the code - all it needs is someone to volunteer (sorry, not me : not interested). There's then nothing stopping someone creating a minor OpenBSD fork with the integrated module ZFS support, if they need it from installation time that badly. PK
Testing bigmem properly on amd64?
I know bigmem is still in a state of flux and can be enabled by editing machdep.c and compiling a custom kernel. I also realise that it may or may not work on OpenBSD AMD64 due to the absence of an iommu on non VT-d capable Intel systems, aside from the AGP/PCI-e GART. What's the best way to test and report this? (GNATS etc?) Is booting up sufficient, or does it require extensive testing of memory transfers from each device to above the 4GB line? FWIW, with the latest kernel UHCI and AHC (specifically an Adaptec 29160 running in a 32 bit PCI slot) don't work on a 975X/Core2Quad system. Once that's fixed the system boots. (iic also needs to be disabled, but that's an issue specific to the D975XBX2 motherboard, not to bigmem). OpenBSD 4.7-current (GENERIC.MP) #0: Thu Apr 15 01:15:12 BST 2010 r...@gladstone.syllopsium.com:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 8585592832 (8187MB) avail mem = 8359256064 (7972MB) User Kernel Config UKC> disable iic 318 iic* disabled UKC> disable ahc 61 ahc* disabled UKC> disable uhci 132 uhci* disabled 133 uhci* disabled UKC> exit Continuing... RTC BIOS diagnostic error 80 mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xe42e0 (39 entries) bios0: vendor Intel Corp. version "BX97520J.86A.2836.2008.0728.1946" date 07/28/2008 bios0: Intel Corporation D975XBX2 acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC WDDT MCFG ASF! SSDT SSDT SSDT SSDT SSDT acpi0: wakeup devices SLPB(S4) P32_(S4) UAR1(S4) PEX0(S4) PEX1(S4) PEX2(S4) PEX3(S4) PEX4(S4) PEX5(S4) UHC1(S3) UHC2(S3) UHC3(S3) UHC4(S3) EHCI(S3) AC9M(S4) AZAL(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM)2 Quad CPU Q6700 @ 2.66GHz, 2667.10 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG cpu0: 4MB 64b/line 16-way L2 cache cpu0: apic clock running at 266MHz cpu1 at mainbus0: apid 2 (application processor) cpu1: Intel(R) Core(TM)2 Quad CPU Q6700 @ 2.66GHz, 2666.76 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG cpu1: 4MB 64b/line 16-way L2 cache cpu2 at mainbus0: apid 1 (application processor) cpu2: Intel(R) Core(TM)2 Quad CPU Q6700 @ 2.66GHz, 2666.76 MHz cpu2: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG cpu2: 4MB 64b/line 16-way L2 cache cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Core(TM)2 Quad CPU Q6700 @ 2.66GHz, 2666.76 MHz cpu3: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG cpu3: 4MB 64b/line 16-way L2 cache ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 2 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 4 (P32_) acpiprt2 at acpi0: bus 2 (PEX0) acpiprt3 at acpi0: bus -1 (PEX1) acpiprt4 at acpi0: bus -1 (PEX2) acpiprt5 at acpi0: bus -1 (PEX3) acpiprt6 at acpi0: bus -1 (PEX4) acpiprt7 at acpi0: bus 3 (PEX5) acpicpu0 at acpi0: PSS acpicpu1 at acpi0: PSS acpicpu2 at acpi0: PSS acpicpu3 at acpi0: PSS acpibtn0 at acpi0: SLPB cpu0: Enhanced SpeedStep 2666 MHz: speeds: 2660, 2128, 1596 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel 82975X Host" rev 0x00 ppb0 at pci0 dev 1 function 0 "Intel 82975X PCIE" rev 0x00: apic 2 int 16 (irq 255) pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "NVIDIA GeForce 8800 GTX" rev 0xa2 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x01: apic 2 int 22 (irq 9) azalia0: codecs: Sigmatel STAC9274D audio0 at azalia0 ppb1 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x01: apic 2 int 17 (irq 255) pci2 at ppb1 bus 2 "NVIDIA GeForce 7600 GT" rev 0xa1 at pci2 dev 0 function 0 not configured ppb2 at pci0 dev 28 function 5 "Intel 82801G PCIE" rev 0x01: apic 2 int 16 (irq 255) pci3 at ppb2 bus 3 em0 at pci3 dev 0 function 0 "Intel PRO/1000MT (82573L)" rev 0x00: apic 2 int 17 (irq 10), address 00:19:d1:39:64:ed "Intel 82801GB USB" rev 0x01 at pci0 dev 29 function 0 not configured "Intel 82801GB USB" rev 0x01 at pci0 dev 29 function 1 not configured "Intel 82801GB USB" rev 0x01 at pci0 dev 29 function 2 not configured "Intel 82801GB USB" rev 0x01 at pci0 dev 29 function 3 not configured ehci0 at pci0 dev 29 function 7 "Intel 82801GB USB" rev 0x01: apic 2 int 23 (irq 11) ehci0: run timeout ehci0: init failed, error=13 ppb3 at pci0 dev 30 function 0 "Intel 8280
Re: VHS transfer on OpenBSD
Jan Stary wrote: On Aug 17 16:06:05, Peter Kay - Syllopsium wrote: I wouldn't even consider converting something that is readily available in digital form. The analog VHS material is not available elsewhere, and is slowly deteriorating on these tapes. Otherwise : 1) Find decent hardware (not TV cards) that can capture compressed video in real time (2nd hand ebay may help). You mean UNcompressed, right? No, I mean compressed. The tape is analogue, it's then captured to a compressed digital format with the capture card offloading the task from the CPU. It's entirely possible to work directly with compressed video and it'll be much lighter on CPU and I/O than capturing in raw format. Ideally you want hardware that can capture in your chosen format, so that lengthy transcoding time is not required and (if you're fussy - doesn't really apply in the case of VHS) there's no quality loss in the final product. n particular, my (limited) experience is that video capture on TV cards is A Bit Shit, and capturing uncompressed video is not fun, even if modern hardware is probably adequate to handle it. After consulting other video people, I will use a digital video camera that can take analog input from a VCR and save it. Sounds wise. Inputing via firewire should be a lot easier than faffing around with analogue capture PK
Re: thanks for 4.6!
Marco Peereboom wrote: dvorak is make belief benefit. It's debatable whether the Dvorak layout is any faster, but what is not in doubt is the reduction in key travel. Not only are the frequently used keys closer together but the keyboard is also arranged so that alternate hands are used to type subsequent letters. The only disadvantages are if you're left handed (in the standard layout more emphasis is placed on the right hand), and that even official Dvorak keyboards and layouts within operating systems do not use Dvorak's original number layout. I started with software remapping of a standard keyboard and now use a hard wired 'Dvorak UK' buckling spring keyboard from Unicomp. It's a lovely piece of kit, albeit lighter than the IBM Model M and not exactly cheap on shipping. I can't say whether the Dvorak number layout is an improvement because I never bothered learning that part (neither can I properly touchtype on the number pad on QWERTY), but the standard keyboard layout is lovely to use and feels much better in operation, never mind the likely reduction in RSI. It's a bit of a pain in the arse in vi or Wordstar/joe, though.. PK
Re: thanks for 4.6!
Matthias Kilian wrote: On Thu, Oct 22, 2009 at 11:37:31PM +0100, Peter wrote: It's debatable whether the Dvorak layout is any faster, but what is not in doubt is the reduction in key travel. you're not a pianist OK. Finger travel, not key travel. Happy? PK
Re: Hardware/System Question
>On 2012-06-22, MichaĆ Markowski wrote: >> I can recommend this one: >> http://www.parkytowers.me.uk/thin/hp/t5135/index.shtml >> Other HP thin clients should be ok as well. > >They don't appear to be cheap enough to counteract the fact that >performance/spec is probably best described as "optimized for running >as a terminal service client", looks like something a bit newer like >an eee box is only a little more expensive (and comes with a hard drive..) EeePCs and EeeBoxes have an ExpressGate/Splashtop remote BIOS. Not that other BIOSes are necessarily cleaner but this one's a stinker for sure. -- p
Re: OS book
On Sun, May 01, 2005 at 03:26:46PM -0300, kroty wrote: > I'm going to buy a book about Operating Systems. I've seen two titles > "Modern Operating Systems" (Tanenbaum) and "Operating Systems Concepts" > (Silberschatz). I don't know wich one would be better for a newbie > in OSs like me. Any suggestion would be appreciated. Thanks! > > I own both, and I would suggest MOS. OSC is written in a very dense style and it also uses Jave for the examples. I have nothing against Java as a language but it is the wrong thing for what hey are using it for. MOS is a easier read, covers much the same material, and is written in a better style. HTH Pete
Re: CVS - Lock File
> Have you looked at subversion? A colleague of mine is fanatical about it, > athough we don't use it here. You mean the one that has 23 build dependencies, and only compiles on i386? Hah.
Re: OS book
Artur Grabowski wrote: I recommend /usr/src/sys Why read books about someone elses adventures when you can get your backpack and travel yourself. Usually 'cause the maps and roadsigns are in a foreign language. Peter
Re: OS book
Artur Grabowski wrote: The country might not want tourists. And permanent residents should learn the language. LOL. I think that is the best metaphor for OpenBSD I have ever read... Peter
(UK Supply?) Re: LSI MegaRAID 150-4 (a.k.a. LSI/Symbios 523)
Anyone know a reliable, consistent *and* cheap supplier in the UK ? Peter
Re: Will different CPU and RAM matter?
As long as they are the same arch (i386 to i386), and the target machine has enough memory (32 is a safe bet for minimum, but make sure you have plenty of swap at that point), you'll be hunky dory. On Thu, May 05, 2005 at 11:15:35AM -0700, Gary Clemans-Gibbon wrote: :Hi All, : :I have a co-located 3.4 web/mail box at a remote location with a P3 :1.2Ghz and :1Gb RAM (on-board LAN and video). At home I have another copy of the exact :same motherboard but with a Celeron 1.1Ghz and 512 Gb RAM. : :The question is, can I install 3.7 on the box at home and then simply :take out the HDD :and swap it into the co-lo server? Will it care that it was installed on :a different CPU with less :RAM? : :TIA. :
Re: Dell Precision 370 Workstation
I am using it as my workstation at work. I am running -current, and its just fine for me. Dmesg is attached On Fri, May 06, 2005 at 07:06:08PM -0300, Gustavo Rios wrote: :Does anybody have such a hardware? :What is your experience with it and OBSD? I mean: stability, performance, etc. : OpenBSD 3.7-beta (GENERIC) #4: Mon Mar 14 08:51:39 PST 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) 4 CPU 2.80GHz ("GenuineIntel" 686-class) 2.80 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,PNI,MWAIT,CNXT-ID real mem = 1071796224 (1046676K) avail mem = 971501568 (948732K) using 4278 buffers containing 53694464 bytes (52436K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(00) BIOS, date 08/23/04, BIOS32 rev. 0 @ 0xffe90 apm0 at bios0: Power Management spec V1.2 apm0: APM get power status: unknown error code? (83) pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfeb00/224 (12 entries) pcibios0: no compatible PCI ICU found: ICU vendor 0x8086 product 0x2640 pcibios0: Warning, unable to fix up PCI interrupt routing pcibios0: PCI bus #4 is the last bus bios0: ROM list: 0xc/0xc000 0xcc000/0x1800! 0xcd800/0x2800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 "Intel 925X MCH Host" rev 0x04 ppb0 at pci0 dev 1 function 0 "Intel 925X PCIE" rev 0x04 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "Nvidia Quadro FX 330" rev 0xa2 wsdisplay0 at vga1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ppb1 at pci0 dev 28 function 0 "Intel 82801FB PCIE" rev 0x03 pci2 at ppb1 bus 2 bge0 at pci2 dev 0 function 0 "Broadcom BCM5751" rev 0x01, BCM5750 A1 (0x4001): irq 11 address 00:11:11:4d:58:c3 brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 ppb2 at pci0 dev 28 function 1 "Intel 82801FB PCIE" rev 0x03 pci3 at ppb2 bus 3 uhci0 at pci0 dev 29 function 0 "Intel 82801FB USB" rev 0x03: irq 9 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 "Intel 82801FB USB" rev 0x03: irq 5 usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 "Intel 82801FB USB" rev 0x03: irq 3 usb2 at uhci2: USB revision 1.0 uhub2 at usb2 uhub2: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered uhci3 at pci0 dev 29 function 3 "Intel 82801FB USB" rev 0x03: irq 10 usb3 at uhci3: USB revision 1.0 uhub3 at usb3 uhub3: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub3: 2 ports with 2 removable, self powered ehci0 at pci0 dev 29 function 7 "Intel 82801FB USB" rev 0x03: irq 9 ehci0: EHCI version 1.0 ehci0: companion controllers, 2 ports each: uhci0 uhci1 uhci2 uhci3 usb4 at ehci0: USB revision 2.0 uhub4 at usb4 uhub4: Intel EHCI root hub, class 9/0, rev 2.00/1.00, addr 1 uhub4: single transaction translator uhub4: 8 ports with 8 removable, self powered ppb3 at pci0 dev 30 function 0 "Intel 82801BA AGP" rev 0xd3 pci4 at ppb3 bus 4 "Intel 82801FB AC97" rev 0x03 at pci0 dev 30 function 2 not configured pcib0 at pci0 dev 31 function 0 "Intel 82801FB LPC" rev 0x03 pciide0 at pci0 dev 31 function 1 "Intel 82801FB IDE" rev 0x03: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) pciide1 at pci0 dev 31 function 2 "Intel 82801FR SATA" rev 0x03: DMA, channel 0 wired to native-PCI, channel 1 wired to compatibility pciide1: using irq 5 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: wd0: 16-sector PIO, LBA, 76293MB, 15625 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 "Intel 82801FB SMBus" rev 0x03 at pci0 dev 31 function 3 not configured isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0 (mux 1 ignored for console): console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: sysbeep0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec biomask f76d netmask ff6d ttymask ffef pctr: user-level cycle counter enabled dkcsum: wd0 matched BIOS disk 80 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302
Re: stat(1) first appeared in openBSD 3.8?
How is it wrong? Is it in 3.7 or earlier? On Mon, May 09, 2005 at 03:05:40PM -0700, Brian wrote: :I think the HISTORY section is wrong. But I do not know what it supposed to :read. : :http://www.openbsd.org/cgi-bin/man.cgi?query=stat&apropos=0&sektion=0&manpath=OpenBSD+Current&arch=i386&format=html : :Cheers, : :Brian :Take Yahoo! Mail with you! Check email on your mobile phone. :http://mobile.yahoo.com/learn/mail :
Re: 3.7 : HP Pavilion Celeron Custom Kernel "pid killed due to lack of floating point support"
Custom Kernels are *NOT* supported. You commented out required stuff. Just run GENERIC. Don't try to figure out what you commented out wrongly, just use GENERIC. http://openbsd.org/faq/faq5.html#Why On Mon, May 09, 2005 at 07:18:45PM -0600, Jack J. Woehr wrote: :I'm trying to build a 3.7 kernel for an old HP Pavilion (P6 466) :but each kernel I build has problems with processes (like sshd) which :it declares are "killed due to lack of floating point support". : :I'm not sure what the problem is, since GENERIC works okay without :the option GPL_MATH_EMULATE ... was it the commenting out of :586 support for this allegedly 686-class box?
General IPsec configuration vunerabilities (links)
FYI; This is not specific, but should be interesting to misc@ readers. http://www.theregister.co.uk/2005/05/12/ipsec_crypto_alert/ which point to: http://www.niscc.gov.uk/niscc/docs/al-20050509-00386.html?lang=en "Three attacks that apply to certain configurations of IPsec have been identified. These configurations use Encapsulating Security Payload (ESP) in tunnel mode with confidentiality only, or with integrity protection being provided by a higher layer protocol. Some configurations using AH to provide integrity protection are also vulnerable." Peter
Re: 3.7 AMD64 Install
Country Joe wrote: reboot and : boot -c . disable pciide .. continuing .. (no wd* in dmesg) . (Try -current) See wd(4) and try "change wd" ... flags => 0x0ffc - i.e. no UDMA or DMA. This will get you installed, but wasting CPU on PIO. Then, depending on your chipset, you may need to hack at pciide.c to try to add your chip revision to a DMA capable table - this is what I tend to do with "new" SIS chipsets. Peter
Re: Network performance
I have had nothing but problems with xl cards. E.g. I was trying to do NFS on my home network, all 100baseT equipment. xl cards got 600k/sec at their fastest, while dc cards got 6000k/sec. On Sat, 21 May 2005 11:21:44 +0200 Antonios Anastasiadis <[EMAIL PROTECTED]> wrote: : I don't remember where I got it, but I always had the impression that : at least some of the 3coms where good cards, like those with the : 3c905B chip. Am I wrong here? Are all the xl-based cards crap without : exceptions? : : > xl is crap. : -- Laughter is the closest distance between two people. -- Victor Borge
Squid error
When I start squid I get errorTryLoadText: '/usr/local/share/squid/errors/English/ERR_READ_TIMEOUT' Had world read permissions, owned by root:wheel, changed to _squid:_squid did not make any difference. I had this in a previous version, and can't remember the solution. OpenBSD 3.7 installed from ports flavor=TRANSPARENT, any help would be appreciated. Peter -- It was not an "Intelligence Failure", it was "Intelligence Fabrication"
Re: Problems with CPU/ARCH specific compilation!?
On Mon, 30 May 2005 23:21:50 +0200 Markus Kolb <[EMAIL PROTECTED]> wrote: : Joel Dinel wrote on Mon, May 30, 2005 at 14:51:04 -0400: : > http://www.openbsd.org/faq/faq5.html#Why : : Lol. I knew that this FAQ link will be posted, but it is no : informative answer, only lost bandwidth. : : I want to know why OpenBSD can be succesful compiled with arch i386 : and not with i486. Because gcc generates broken code for -march=i486. The above link *is* an informative answer, just not what you were looking for. What problem are you trying to solve with -march=i386 vs -march=i386? Here's a hint: it doesn't matter. -- Common sense is the collection of prejudices acquired by age eighteen. -- Albert Einstein
Re: Sun ELC?
Gordon Grieder wrote: Before I start following sparc@ (if I go ahead with this): I recently "inherited" a Sun ELC. It's an ancient all-in-one thing that looks kinda neat. Ah, wow. Old old history. I used to have one of those (and the earlier SLC) as my desktop back in about 1992/3. It was a neat box at the time, as was the IPC/IPX. Now ? Might work as a non caching nameserver - memory is rather limited, while CPU is OK-ish. This was the kind of hardware that the esp(4) driver was fixed by me on, with prodding by Theo, back when he was doing NetBSD/sparc work. Happy days. :) Peter
Re: lladdr in ipconfig - what's the story?
lladdr was added after 3.7. It will exist in 3.8 and later. On Tue, Jun 07, 2005 at 10:11:35AM +1000, Steffen Kluge wrote: :Hi all, :I'd like some clarification on the support or non-support of the lladdr :option in ipconfig. I'm getting conflicting evidence from various :sources: on-line man page (+), man page of my brand new 3.7 install (-), :various forums (mix of + and -). It looks as if the ipconfig that comes :with 3.7 doesn't understand lladdr. : :Is this a temporary issue? Will the option be added back in? Or does it :depend on the ethernet card driver in use (fxp in my case)? : :Cheers :Steffen. :
Re: file and mp3s?
> I noticed that "file" can identify OGG-Files but if I try to use "file" > for e.g. an MP3 it reports just "data" even it reports a lot informations > for OGGs. > > Is there any reason (exclude things like "nobody provided a patch"...) why > file can't identify MP3s? > I thought mp3-headers are "unique" (enought) so I wonder why file can't > detect mp3s. :-/ it detects and reports it just fine for proper mp3s (with ID3 headers), the mp3s you tried it with lack that. eg: $ file ~/foo.mp3 /home/pvalchev/foo.mp3: MP3, 128 kBits, 44.1 kHz, Stereo