Re: Need help recovering from major mistake
Using my FreeBSD CD-ROMs, I've been able to go into fixit mode and mount the root filesystem of the drive, but I'm not sure where to go from there. How can I figure out what my old disklabel was? Is there some way I can search the raw disk for the locations of the file systems? Any help will be GREATLY appreciated. Please email me directly with your responses as I'm not subscribed to the FreeBSD mailing lists. I had NT kindly overwrite my disklable once, I got arround the problem by scanning the disk for the magic numbers that signifies the start of a FreeBSD sub-partition. You then have to do some math based on the raw block numbers to figure out the start and lenght. you are lucky in that FreeBSD will tell you if you get the lenght wrong (you need to get the start correct); it tells you the correct length. After you have that information go into 'disklabel -e disk' and re-enter the values. I no longer have the program, but the magic values to look for are easily gotten by examining the the first block or 2 from a subpartition. 'dd bs=512 if=/dev/rdsk count=2 | less' did the trick for me. -- David Cross | email: cro...@cs.rpi.edu Systems Administrator/Research Programmer | Web: http://www.cs.rpi.edu/~crossd Rensselaer Polytechnic Institute, | Ph: 518.276.2860 Department of Computer Science| Fax: 518.276.4033 I speak only for myself. | WinNT:Linux::Linux:FreeBSD To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
[Q] disklabel magic number
Hi! Just out of curiosity, is there any hidden meaning of #define DISKMAGIC ((u_int32_t)0x82564557) /* The disk magic number */ Or is it just a random number? -- Ruslan Ermilov Sysadmin and DBA of the r...@ucb.crimea.ua United Commercial Bank +380.652.247.647Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
security: what does OpenBSD have, that FreeBSD doesn't have...
Hi ! Am currently discussing FreeBSD vs. OpenBSD in private e-mail. What make OpenBSD so secure ? Or can this kind of security be reproduced with FreeBSD ports ? I think of tools like: bjorb - secure TCP relay software, http://www.hitachi-ms.co.jp/bjorb/ bro - Bro is a system for detecting Network Intruders in real-time by the guys that brought you tcpdump, libpcap, and flex cfs - This is CFS, Matt Blaze's Cryptographic File System. It provides transparent encryption and decryption of selected directory trees. It is implemented as a user-level NFS server and thus does not require any kernel modifications. Under FreeBSD, the mount command for the CFS tree must include -o port=3049,nfsv2. fwtk- The TIS Firewall Toolkit is a set of programs and configuration practices designed to facilitate the building of network firewalls. skip- IP-Level Cryptography, Secure every application with one protocol. http://skip.incog.com stunnel - The stunnel program is designed to work as SSL encryption wrapper between remote client and local (inetd-startable) or remote server. stunnel can be used to add SSL functionality to commonly used inetd daemons like POP-2, POP-3 and IMAP servers without any changes in the programs' code. tcp_wrapper - With this package you can monitor and filter incoming requests for the SYSTAT, FINGER, FTP, TELNET, RLOGIN, RSH, EXEC, TFTP, TALK, and other network services. vscan - McAfee's evaluation VirusScan for FreeBSD, provides immediate scanning of MS-DOS files hosted on FreeBSD Unix systems. Could somebody please explain ? -- Andreas Klemm http://www.FreeBSD.ORG/~andreas http://www.freebsd.org/~fsmp/SMP/SMP.html powered by Symmetric MultiProcessor FreeBSD To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
RE: security: what does OpenBSD have, that FreeBSD doesn't have.
Hi Andreas =) On 23-May-99 Andreas Klemm wrote: Am currently discussing FreeBSD vs. OpenBSD in private e-mail. What make OpenBSD so secure ? Or can this kind of security be reproduced with FreeBSD ports ? I think of tools like: Ye missed one of the most important things: auditing of the sourcecode. The OpenBSD team does a lot wrt auditing of the complete sourcetree, but then the question is: is this valid concern or is this pure paranoia. OpenBSD does a lot of valid changes but borders (and sometimes crosses thta border) on paranoia, wrt code. A lot of the security tools can be get from the ports, but the true security of a system lies in the eye of the admin. I have known admins whom I would never trust mission critical security systems to. HTH, --- Jeroen Ruigrok van der Wervenasmodai(at)wxs.nl The FreeBSD Programmer's Documentation Project Network/Security Specialist http://home.wxs.nl/~asmodai *BSD: Accept no limitations... To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
RE: IPv6 and -current?
On 23-May-99 Alex Zepeda wrote: Out of a perhaps morbid curiosity, I'm somewhat interested in setting up an IPv6 stack on my computer. From what I can tell there are two well supported stacks. Kame and Inria, and both support 2.2.8, Kame also supports 3.x. Has anyone tried to port either to -current? I tried playing around with the Kame release for 3.0, and it generated quite a few rejects... I am currently merging KAME with CURRENT and it's a lovely adventure to embark on... One can best port 3.x to CURRENT since the internal changes from 2.2.x to 3.x are great and would merely duplicate work... If yer interested Alex, we could work together on this and prepare a CURRENT-KAME solution since I believe the time has come to start work in CURRENT on IPv6. I already mailed Itojun-san about the status of the KAME/Inria merger and hope to hear from him soon. HTH, --- Jeroen Ruigrok van der Wervenasmodai(at)wxs.nl The FreeBSD Programmer's Documentation Project Network/Security Specialist http://home.wxs.nl/~asmodai *BSD: Accept no limitations... To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
RE: security: what does OpenBSD have, that FreeBSD doesn't have.
The OpenBSD team does a lot wrt auditing of the complete sourcetree, but then the question is: is this valid concern or is this pure paranoia. OpenBSD does a lot of valid changes but borders (and sometimes crosses thta border) on paranoia, wrt code. Given the number of postings to BUGTRAQ about array overflows and stack smashing, I think it's relevant to ask whether it possible to be *too* paranoid here. Personally, I think what the OpenBSD folks are doing is very important. A lot of the security tools can be get from the ports, but the true security of a system lies in the eye of the admin. I have known admins whom I would never trust mission critical security systems to. The true security of a system depends on the operating system itself, the applications, *and* the admin. You can be a very good and security conscious admin - but it won't help you much if the operating system is Windows 98. Steinar Haug, Nethelp consulting, sth...@nethelp.no To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
RE: security: what does OpenBSD have, that FreeBSD doesn't have.
On 23-May-99 sth...@nethelp.no wrote: The OpenBSD team does a lot wrt auditing of the complete sourcetree, but then the question is: is this valid concern or is this pure paranoia. OpenBSD does a lot of valid changes but borders (and sometimes crosses that border) on paranoia, wrt code. Given the number of postings to BUGTRAQ about array overflows and stack smashing, I think it's relevant to ask whether it possible to be *too* paranoid here. Personally, I think what the OpenBSD folks are doing is very important. Paranoia/security and freedom of use are opposites on the balance of use. If you make so much security restrictions to a system it's bound to make it less enjoyable where it concerns freedom. A lot of the security tools can be get from the ports, but the true security of a system lies in the eye of the admin. I have known admins whom I would never trust mission critical security systems to. The true security of a system depends on the operating system itself, the applications, *and* the admin. You can be a very good and security conscious admin - but it won't help you much if the operating system is Windows 98. Correct there Steinaur, I left those other two out. But then the admin most certainly knows that he has to replace that Win98 box with FreeBSD ;) --- Jeroen Ruigrok van der Wervenasmodai(at)wxs.nl The FreeBSD Programmer's Documentation Project Network/Security Specialist http://home.wxs.nl/~asmodai *BSD: Accept no limitations... To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
RE: FreeBSD/USENIX Ocean Cruise
Hi All Has this idea sunk ? Keith On 15-May-99 Randall Hopper wrote: http://www.geekcruises.com/ What a cool idea. Maybe we'll see a FreeBSD/USENIX conference on-deck someday. Randall To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message The box said 'Requires Windows 95, NT, or better,' so I installed FreeBSD. ** The thing I like most about Windows 98 is... ** You can download FreeBSD with it! -- E-Mail: Keith Anderson ke...@apcs.com.au Australia Power Control Systems Pty. Limited. Date: 23-May-99 Time: 19:18:19 Satelite Service 64K to 2Meg This message was sent by XFMail -- What's the similarity between an air conditioner and a computer? They both stop working when you open windows. -- To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: Suggestion...
I plan on doing some work on it and the dgm driver. They're almost the same and should be merged. They both violate style(9) in almost every way too :-[ I know of only one person with an Xem card (dgm driver), but he's promised to send me the specs by snail mail. Once I get them, I'll start the work. Let's leave the `alpha' there for a little longer :-) What are you planning on doing with it? Other than DDB support I can't imagine what could be *added* to the driver; it is one of those just works things right now. Why not merge the two into a *new* driver? Once it's running at an acceptable level, drop support for the two old drivers. That way if something breaks, the current users still have the one that works. Yes, this makes most sense. Vince. -- == Vince Vielhaber -- KA8CSH email: v...@michvhf.com flame-mail: /dev/null # include std/disclaimers.h TEAM-OS2 Online Campground Directoryhttp://www.camping-usa.com Online Giftshop Superstorehttp://www.cloudninegifts.com == -- Brian br...@awfulhak.orgbr...@freebsd.org http://www.Awfulhak.org br...@openbsd.org Don't _EVER_ lose your sense of humour ! br...@uk.freebsd.org To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
UFS parameter survey: HELP WANTED!
---BeginMessage--- I recently made a 15GB filesystem and ended up with almost 500 cylinder groups. That is unlikely to be optimal. I talked to Kirk about the right parameters for UFS on modern disks some years back, and he said that no more than maybe a hundred cylinder groups made any sense. I think the fact that disks have gotten 25 times larger since the newfs paramters were last tweaked means that it is time to do so again. Unfortunately determining the parameters are not simple, so I would like to solicit help from as many as possible in determining if we should retune the newfs defaults. What I'm looking for is hard and soft data on the difference it makes for various sets of parameters, for various workloads and programs. So if you have time and facilities, lend me a hand. Basically, we can only sensibly compare data from the same hardware with the same workload, otherwise there are too many things to compare. Not all things can be measured precisely, but try to provide as much data as you can, and as good data as you can, ie: don't change controllers move partitions change BIOS settings without noting that you did so. The newfs parameters I would like to map out are: -a -b -c -e -f -i -m -t -u I'm generally interested in all impacts of this, but in particular if you can measure one or more of these specific parameters: read performance write performance create performance fsck time space wastage other I have no particular wishes for what program/application is used to excercise the system, but I would always prefer real-world over synthetic benchmarks. If somebody could measure news-server and web-server performance for instance it would be great. If anybody feels like making a structured benchmark script which just takes a device name as arg and runs some standardized tests that would be great too! Please report all results to fs-d...@phk.freebsd.dk using this form. Put the information instead of the ___, but leave the line number intact please. You don't need to return the lines starting with # I will post news and updates about this project on: http://phk.freebsd.dk/ufs If there is sufficient interest we will make a mailing list too. Thank you for your participation! Poul-Henning *BEGIN UFSTUNE FORM* # Your email address. This will be used only to catalogue and # request further details from you. It will not be published # or distributed. # Example: # 1 p...@freebsd.org 1 ___ # Identity of the system you used. This is just to keep all measurements # straight. It is used with your email as a unique index. This # should identify one particular combination of hardware, excluding # the disk you had the filesystems on. If you have the disk on # different controllers in the same system, that will count as two # systems. Use names/numbers/whatever helps you keep track of things. # Please use the same thing for all measurements made on the same # system. # Example: # 2 rover using NCR controller 2 ___ # Identity of the disk/device you had the filesystem on, please # cutpaste the ... piece from /var/run/dmesg.boot: # Example: # 3 Quantum XP34300W 81HB 3 ___ # Describe the nature of the test in one-line form. # Example: # 4 Time to fsck filesystem with all four 3.2 CD's loaded 4 ___ # Describe the nature and conditions of the test in # sufficient detail that somebody else can repeat it. # Example: # 5 Filesystem is newfs'ed and mounted. The four CDs from the FreeBSD # 5 3.2 release were copied in using find . -print | cpio -dump XXX # 5 where XXX is mountpoint/cd[1234]. Filesystem unmounted and run # 5 /usr/bin/time -l fsck /dev/rsd0c 5 ___ # You must repeat the rest of the form for each experiment. # document the newfs commandline used. Include a -s option here. # Example: # 6 newfs -f 2048 -s 3072 6 ___ # document any mount options, kernel features or softupdates. # Example: # 7 softupdates 7 ___ # note any other detailes pertaining to this experiment (multiline) # Example: # 8 BIOS set to 5 MHz/narrow 8 ___ # document the result of the experiment, for instance the output from # time(1) or similar (multiline) # Example: # 9 2.91 real 0.03 user 0.05 sys 9 ___ *END UFSTUNE FORM* -- Poul-Henning Kamp FreeBSD coreteam member p...@freebsd.org Real hackers run -current on their laptop. FreeBSD -- It will take a long time before progress goes too far! ---End Message---
RE: security: what does OpenBSD have, that FreeBSD doesn't have.
On Sun, 23 May 1999 sth...@nethelp.no wrote: The OpenBSD team does a lot wrt auditing of the complete sourcetree, but then the question is: is this valid concern or is this pure paranoia. OpenBSD does a lot of valid changes but borders (and sometimes crosses thta border) on paranoia, wrt code. Given the number of postings to BUGTRAQ about array overflows and stack smashing, I think it's relevant to ask whether it possible to be *too* paranoid here. Personally, I think what the OpenBSD folks are doing is very important. One of my plans is to merge all of these changes into our tree (along with all the other minor changes/manpage corrections, etc). Longer term, I'd like to work on porting some of their kernel code like randomized sin_port selection and TCP initial sequence numbering, probably hidden behind sysctl knobs (defaulting to off to keep people happy). Kris - That suit's sharper than a page of Oscar Wilde witticisms that's been rolled up into a point, sprinkled with lemon juice and jabbed into someone's eye Wow, that's sharp! - Ace Rimmer and the Cat, _Red Dwarf_ To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
[johnathan.f.mee...@bankerstrust.com: FreeBSD Configuration]
- Forwarded message from johnathan.f.mee...@bankerstrust.com - From: johnathan.f.mee...@bankerstrust.com To: w...@freebsd.org Message-Id: 8525677a.003d42ac...@nysmtp4000.svc.btco.com Date: Sun, 23 May 1999 12:08:50 +0100 Subject: FreeBSD Configuration Hi, I currently run FreeBSD 3.1 at home, and recently recommended it to a few friends at work as my preference for a non-commercial flavour of UNIX. This opened up an avenue for development that I would like to volunteer to make happen - configuration tools. Being Windows people, they found FreeBSD intimidating - configuring a sound card, adding a new device, or setting up userPPP were things they were used to having done for them. These people now run Linux, as they fell into the UNIX is too difficult for me trap, and liked the comfort of easy configuration. Your documentation is great, but some people need to be started more slowly. Even after following your documentation, a user may not think of creating a symlink /dev/modem to their device node (which is needed, for example, by Minicom). I like the idea of easy configuration as an /option/ to those who would like it - particularly newcomers to UNIX. With this in mind, I searched my install set for such utilities but couldn't find them, nor see them on the wanted projects list. Would you be interested in such tools being developed for FreeBSD, and could I organise such a development team? I don't want to duplicate somebody else's work, so please point me in the right direction if such work has been undertaken. Your comments on this subject wold be appreciated, but please reply to jmee...@easynet.co.uk , as the return address for this mail is my workplace. Regards, Johnathan Meehan jmee...@easynet.co.uk - End forwarded message - -- Wolfram Schneider wo...@freebsd.org http://wolfram.schneider.org To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: Logging promiscuous mode disabled
On Sat, 22 May 1999 17:24:32 +0200, Jeroen Ruigrok/Asmodai wrote: Would make intrusion detection easier, etc etc =) Hi Jeroen, I don't know about that. I'd hate for anyone to think that this improves security. I see it as a convenience option, and wanted feedback on any negative side-effects that folks more familiar with the code might spot. Ciao, Sheldon. To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: security: what does OpenBSD have, that FreeBSD doesn't have.
| One of my plans is to merge all of these changes into our tree (along with all | the other minor changes/manpage corrections, etc). | | Longer term, I'd like to work on porting some of their kernel code like | randomized sin_port selection and TCP initial sequence numbering, probably | hidden behind sysctl knobs (defaulting to off to keep people happy). I think that would be a great idea. I'd be willing spare a few hours on a weekend to help out with this. -Dan To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: [ALERT] a.out support is broken in 3.2-STABLE and 4.0-CURRENT
On Sat, 22 May 1999, David O'Brien wrote: And would it be possible to MFC this stuff After it is tested in -CURRENT first. and add an 3.2-ERRATA entry... Why? The compat22 distribution on the FTP site has ld.so in it, as wil the CDROM. Did you install 3.2 on the very first day? Just about. Did a make release for local internal use. Is there a slightly newer CVS tag other than RELENG_3_2_0_RELEASE that gets us all we need to build completely functional COMPATxx's? I only care becuase of the few binaries I have that are not open source, binary only and not ELF. thanks, Adrian -- [ adr...@ubergeeks.com -- Ubergeeks Consulting -- http://www.ubergeeks.com/ ] To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
converting Multia riser card into a generic NCR810
People interested in converting a riser card of a DEC Multia into a generic NCR810 card please refer to: http://www.tcja.nl/~wilko/ncr_hack.html | / o / / _ Arnhem, The Netherlands- Powered by FreeBSD - |/|/ / / /( (_) BulteWWW : http://www.tcja.nl http://www.freebsd.org To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: security: what does OpenBSD have, that FreeBSD doesn't have.
In message pine.osf.4.10.9905232037320.11148-100...@mercury.physics.adelaide.edu.au Kris Kennaway writes: : One of my plans is to merge all of these changes into our tree : (along with all the other minor changes/manpage corrections, etc). Which ones are currently missing? Also, beware. Most of the patches will not come into the FreeBSD tree w/o some tweaking to pass the bruce filter. Warner To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: [ALERT] a.out support is broken in 3.2-STABLE and 4.0-CURRENT
Why? The compat22 distribution on the FTP site has ld.so in it, as wil the CDROM. Did you install 3.2 on the very first day? Just about. Did a make release for local internal use. Is there a slightly newer CVS tag other than RELENG_3_2_0_RELEASE that gets us all we need to build completely functional COMPATxx's? I'm not sure if the RELENG_3_2_0_RELEASE was slid forward for my fix. Since doing so would allow someone to build what was on the 3.2-RELEASE CDROM, maybe we should ask Jordan if the tag shouldn't be slid forward for src/lib/compat/compat22/Makefile. -- -- David(obr...@nuxi.com -or- obr...@freebsd.org) To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
[Q] LKM linking
Hi All, 1. Is this possible to produce an LKM device driver that would export functions to another LKM driver? 2. If the 1. is possible, will it be possible to load the another LKM driver without loading the exporting driver? Which references would you suggest me to look into? Maybe some known combination of existing drivers? Thank you, Stan To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: freebsd-hackers-digest V4 #466
unsubscribe freebsd-hackers To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
getopt.c in gnu/*/*
Is there any reason to have getopt.c replicated in so many different programs: cvs, grep, gzip, patch, ptx, sort, tar and maybe a few others that I missed... Warner To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: security: what does OpenBSD have, that FreeBSD doesn't have.
On Sun, 23 May 1999, Warner Losh wrote: In message pine.osf.4.10.9905232037320.11148-100...@mercury.physics.adelaide.edu.au Kris Kennaway writes: : One of my plans is to merge all of these changes into our tree : (along with all the other minor changes/manpage corrections, etc). Which ones are currently missing? I'm not sure..I've been wandering through the openbsd source tree and merging useful diffs from binaries, but I haven't been too organised about it so far, and haven't encountered much in the way of important fixes. I'm sure there are some, though. Also, beware. Most of the patches will not come into the FreeBSD tree w/o some tweaking to pass the bruce filter. I'm expecting that, but I'm willing to clean up what I bring across. Kris Warner - That suit's sharper than a page of Oscar Wilde witticisms that's been rolled up into a point, sprinkled with lemon juice and jabbed into someone's eye Wow, that's sharp! - Ace Rimmer and the Cat, _Red Dwarf_ To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
RE: IPv6 and -current?
On Sun, 23 May 1999, Jeroen Ruigrok/Asmodai wrote: I already mailed Itojun-san about the status of the KAME/Inria merger and hope to hear from him soon. Well, I finally got the userland shit working! This would make an awesome port, it compiles out of the box, and works with bpf to do ipv6 in ipv4 tunneling :) - alex To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message
Re: [johnathan.f.mee...@bankerstrust.com: FreeBSD Configuration]
Wolfram Schneider wrote: I like the idea of easy configuration as an /option/ to those who would like it - particularly newcomers to UNIX. With this in mind, I searched my install set for such utilities but couldn't find them, nor see them on the wanted projects list. Your best bet would be to take a look at http://www.webmin.com/. What you're talking about would best be included as a module for their framework. For what it's worth, I think it's an excellent idea. Doug -- *** Chief Operations Officer, DALnet IRC network *** Nominated for quote of the year is the statement made by Representative Dick Armey (Texas), who when asked if he were in the President's place, would he resign, responded: If I were in the President's place I would not get a chance to resign. I would be lying in a pool of my own blood hearing Mrs. Armey standing over me saying, 'How do I reload this damn thing?' To Unsubscribe: send mail to majord...@freebsd.org with unsubscribe freebsd-hackers in the body of the message