Re: A new package fetching utility, pkg_get
At 26/09/99, you wrote: The second script is called "pkg_rm"; it can be used to delete packages like pkg_delete, but you can use arguments in the same way as for pkg_ls above (i.e. "pkg_rm lynx"). Think of it like pkg_info | grep | pkg_delete. It might more sense to implement these features in pkg_info and pkg_delete, resprectively, but I don't have the time to do that (and these scripts work fine, so I have no incentive to bother with the C sources of pkg_{info,delete}). What about to extend the pkg_delete to use a syntax like : pkg_delete /var/db/pkg/netscape-communicator-4.61/ it can help so much everyone that can automagically complete file/path names with the shell :-) Best Regards, Gianmarco Giovannelli , "Unix expert since yesterday" http://www.giovannelli.it/~gmarco http://www2.masternet.it To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: wormcontrol write speed
It seems Christopher Masto wrote: On Wed, Sep 22, 1999 at 09:27:37AM +0200, Soren Schmidt wrote: Anyhow, I have some changes to the worm stuff, it needs to be dealt with to handle modern HW, and to deal with all the possible block formats thats possible on a CD nowadays. It will probably mean the death of the worm stuff as is now, but I'm the last user anyways so Any chance of getting a passthrough or "SCSI emulation" so that cdrecord could be used instead? (Then you won't have to worry about different CD-R quirks) If somebody writes it there is a chance. I dont have this on my TODO list. I could maybe be talked into providing a generic ATAPI interface that would give you a method of injecting ATAPI commands directly into the systemi, cdrecord etc could use that then. I have an Acer CRW 6202A which doesn't seem to work with FreeBSD (current as of five minutes ago, including the rev 1.19 of atapi-cd.c). "wormcontrol blank" (with a CD-RW of course) runs for a little while, then aborts with an I/O error. Also, all IDE devices are completely locked up while it's running. What I/O error ?? its impossible to diagnose on no data... The dd also sort of works for a while, then gets an I/O error. Same with fixate (which also locks up the IDE busses). What I/O error ?? its impossible to diagnose on no data... I'm currently recompiling with ATAPI_DEBUG and ACD_DEBUG in the hopes that I'll be able to produce a better bug report. Any suggestions? Provide data, the system spits out lots of sensekey things and the like on errors, those are invaluable data to diagnose this... -Søren To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
Erm, I must admit, I've never actually tried it or Debian Linux. It merely seemed reasonable humor-fodder. :) - Jordan On Fri, Sep 24, 1999 at 12:54:32PM -0700, Jordan K. Hubbard wrote: Most of what you've shown can be accomplished with 'pkg_add -r' and some enviromental variables. In its current incarnation, that's pretty much true. However, we also intend to throw feature upon feature request onto his pile until Jaakko ends up reproducing the Debian package manager for us! :-) ^^ Have you actually used that? If so, and you want to reproduce it, I question your sanity. -Chris -- :Chris Piazza : Abbotsford, BC: :[EMAIL PROTECTED] :[EMAIL PROTECTED]: : : : To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Corrupt File System
On Sun, 26 Sep 1999 [EMAIL PROTECTED] wrote: Isn't you partition table corrupted? What does it mean ``No bootmanager sees it''? If BootEasy doesn't display FBSD partition in its menu, the partition table in MBR is bad. If BootEasy can see it, but refuses to load the system, the problem is with the FreeBSD partition itself, probably. Jan. Hi, I have an 8GB IDE HD with FreeBSD on the last (4th) partition. I tried to install Rhapsody (MacOS X) DR2 the other day and now I cant find FreeBSD (No bootmanager sees it)...If I boot FReeBSD from a seperate HD and try and mount the partions I get: incorrect super block I have tried the dd and vnconfig trick posted to the list a while ago. I get outputs like: snip fs at block # 526784 last mounted on /usr f-fs_ncyl=1840 (1 4096 4096 = 7536640) fs at block # 526800 last mounted on f-fs_ncyl=1840 (1 4096 4096 = 7536640) fs at block # 592336 last mounted on f-fs_ncyl=1840 (1 4096 4096 = 7536640) snip I then type: dd if=/dev/rwd2s4 of=usr.raw bs=512 skip=526783 count=7536640 vnconfig /dev/vn0c usr.raw skip is one less than the number given in the output to make sure the first block is included. When I try to fsck /dev/rvn0c I get: ** /dev/rvn0 BAD SUPER BLOCK: VALUES IN SUPER BLOCK DISAGREE WITH THOSE IN FIRST ALTERNATE ioctl (GCINFO): Inappropriate ioctl for device fsck: /dev/rvn0: can't read disk label Trying to mount /dev/vn0 Produces a file /mnt (not a directory) Any suggestions? Thanks, Andrew To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message -- Jan PECHANEC (mailto:[EMAIL PROTECTED]) Computing Center CTU (Zikova 4, Praha 6, 166 35, Czech Republic) http://www.civ.cvut.cz, tel: +420 2 2435 2969, http://pechy.civ.cvut.cz To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: wormcontrol write speed
And, oh while you are at it, why not create a CAM SIM that makes IDE available through CAM. That would save me a lot of work :-) Nick On Sun, 26 Sep 1999, Soren Schmidt wrote: It seems Christopher Masto wrote: On Wed, Sep 22, 1999 at 09:27:37AM +0200, Soren Schmidt wrote: Anyhow, I have some changes to the worm stuff, it needs to be dealt with to handle modern HW, and to deal with all the possible block formats thats possible on a CD nowadays. It will probably mean the death of the worm stuff as is now, but I'm the last user anyways so Any chance of getting a passthrough or "SCSI emulation" so that cdrecord could be used instead? (Then you won't have to worry about different CD-R quirks) If somebody writes it there is a chance. I dont have this on my TODO list. I could maybe be talked into providing a generic ATAPI interface that would give you a method of injecting ATAPI commands directly into the systemi, cdrecord etc could use that then. I have an Acer CRW 6202A which doesn't seem to work with FreeBSD (current as of five minutes ago, including the rev 1.19 of atapi-cd.c). "wormcontrol blank" (with a CD-RW of course) runs for a little while, then aborts with an I/O error. Also, all IDE devices are completely locked up while it's running. What I/O error ?? its impossible to diagnose on no data... The dd also sort of works for a while, then gets an I/O error. Same with fixate (which also locks up the IDE busses). What I/O error ?? its impossible to diagnose on no data... I'm currently recompiling with ATAPI_DEBUG and ACD_DEBUG in the hopes that I'll be able to produce a better bug report. Any suggestions? Provide data, the system spits out lots of sensekey things and the like on errors, those are invaluable data to diagnose this... -Søren To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message -- e-Mail: [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: updating packages automatically...
On Sun, Sep 26, 1999 at 01:11:32AM +0200, Christian Carstensen wrote: On Sat, 25 Sep 1999, Chris Costello wrote: Aah! No! I tried that with GNOME once and it drove me insane for about two weeks. Auto-upgrades on ports would be _very_ _very_ bad, especially for those using apache from ports! that's right. i thought about having some kind of exclude list for ports that shall never be upgraded automatically. anyway, the script will just generate a shell script output. it should not replace packages without manual intervention. If you're interested, I've got patches for sysutils/pkg_version that support a '-c' flag (for 'commands') that show you the commands you should run to update any out of date ports. I cron this and mail the output out once a week. You could have it automatically create and execute a shell script if you wanted. Sample output from one of my boxes is: # # ORBit # needs updating (index has 0.4.93) # cd /usr/ports/devel/ORBit make clean all pkg_delete -f ORBit-0.4.3 make install # # docbook-xml # needs updating (index has 3.1.5) # cd /usr/ports/textproc/docbook-xml make clean all pkg_delete -f docbook-xml-3.1.4 make install # # fetchmail # needs updating (index has 5.0.8) # cd /usr/ports/mail/fetchmail make clean all pkg_delete -f fetchmail-5.0.3 make install # # less # needs updating (index has 340) # cd /usr/ports/misc/less make clean all pkg_delete -f less-337 make install [...] I sent these to the maintainer/author a while back, but they were never integrated. N -- [intentional self-reference] can be easily accommodated using a blessed, non-self-referential dummy head-node whose own object destructor severs the links. -- Tom Christiansen in [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: wormcontrol write speed
It seems Nick Hibma wrote: And, oh while you are at it, why not create a CAM SIM that makes IDE available through CAM. That would save me a lot of work :-) Its not on my current TODO list, I want all the lowlevel things done first. If somebody writes the support I'll consider putting it in, but no promises... -Søren To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Corrupt File System
On Sun, 26 Sep 1999, Jan Pechanec wrote: On Sun, 26 Sep 1999 [EMAIL PROTECTED] wrote: Isn't you partition table corrupted? That may well be...I'm not really sure...the data is still there as I can dd parts of the disk to a file then use beav to view it...I can read ascii text but it would be an extremely ling job to try and extart it that way. What does it mean ``No bootmanager sees it''? If BootEasy doesn't display FBSD partition in its menu, the partition table in MBR is bad. This is whats happened then although in my attempts to reserect it I have probably done more harm than good... Thanks, Andrew To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: about jail
Alexander Bezroutchko wrote: And /proc/PID/status must show this value. It already does. ... vm1# cat /proc/$$/status zsh 480 479 479 440 5,2 ctty 938282449,544330 0,55195 0,55194 pause 0 0 0,0,0,2,3,4,5,20,31 vm1 vm1# hostname qwerty ^^ vm1# cat /proc/$$/status zsh 480 479 479 440 5,2 ctty 938282449,544330 0,72515 0,56401 pause 0 0 0,0,0,2,3,4,5,20,31 qwerty ^^^ vm1# uname -a FreeBSD qwerty 4.0-19990918-CURRENT FreeBSD 4.0-19990918-CURRENT #0: Sat Sep 25 18:18:50 MSD 1999 vm1# And your point is? Do the base system or another jail show qwerty too? -- Daniel C. Sobral(8-DCS) [EMAIL PROTECTED] [EMAIL PROTECTED] Rule 69: Do unto other's code as you'd have it do unto yours To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
"Daniel C. Sobral" wrote: That's because you are not a loser. Losers want plug-and-play. This pkg_get is plug and play, pkg_add isn't. It doesn't, for instance, automatically retrives a list of the packages available fromt he net and show them to you. I meant luser, of course. With this, and one sig11 message I answer, I'm now sure I must have passive-smoked something... -- Daniel C. Sobral(8-DCS) [EMAIL PROTECTED] [EMAIL PROTECTED] Rule 69: Do unto other's code as you'd have it do unto yours To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: updating packages automatically...
| If you're interested, I've got patches for sysutils/pkg_version | that support a '-c' flag (for 'commands') that show you the commands | you should run to update any out of date ports. I cron this and mail | the output out once a week. | | You could have it automatically create and execute a shell script if | you wanted. Sample output from one of my boxes is: [snip] I think this is a great idea, and certainly one of the things (the only thing?) I actually liked debian. I would much rather see this integrated somewhere in /etc/periodic/weekly, and have it output a shell script that can be run manually. -- Dan Moschuk ([EMAIL PROTECTED]) "Try not. Do, or do not. There is no try." -- Yoda To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: about jail
And your point is? Do the base system or another jail show qwerty too? I think we are talking about slightly different things. I know that jailed process can not change base system's hostname. But it can change it's own. Sometimes it is necessary to obtain the list of processes which belongs to some jail. How will you obtain it ? You can not rely on last field in /proc/PID/status file because it is writable for jailed process. How can you identify a jail the process belongs to ? -- Daniel C. Sobral (8-DCS) [EMAIL PROTECTED] [EMAIL PROTECTED] Rule 69: Do unto other's code as you'd have it do unto yours -- Alexander Bezroutchko, Systems Administrator, Zenon N.S.P. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
On Sun, Sep 26, 1999 at 09:05:20AM +0200, Gianmarco Giovannelli wrote: What about to extend the pkg_delete to use a syntax like : pkg_delete /var/db/pkg/netscape-communicator-4.61/ it can help so much everyone that can automagically complete file/path names with the shell :-) zsh users can do this already: zsh# compctl -g '/var/db/pkg/*(/:t)' pkg_delete pkg_info -- Jos Backus _/ _/_/_/ "Reliability means never _/ _/ _/ having to say you're sorry." _/ _/_/_/ -- D. J. Bernstein _/ _/ _/_/ [EMAIL PROTECTED] _/_/ _/_/_/ use Std::Disclaimer; To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
FTP directory listing with ftpio(3) and fetch(3)
Hey, how am I supposed to fetch directory listing with ftpio(3) or fecth(3)? ftpio doesn't seem to contain necessary functions for it, and fetch's ones aren't implemented. % ./test test: fetchListFTP(): not implemented And all other listing functions seem to be front-ends for this one. They seem to be good for fetching files pointed by urls, but how about this sort of functionality? May you live long and prosper. Jaakko Salomaa To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Corrupt File System
[EMAIL PROTECTED] wrote: Trying to mount /dev/vn0 Produces a file /mnt (not a directory) I do believe you want the directory to exist before you attempt to mount to it. (mkdir /mnt) -- Kris Kirby [EMAIL PROTECTED] --- TGIFreeBSD... 'Nuff said. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
Wes Peters wrote: "Jordan K. Hubbard" wrote: Boy, we're having fun asking you to rewrite your program. It's good training for you, though, this is what it's like to be a programmer in "The Real World". ;^) You bet! And we haven't even gotten to the topic of the interactive package selection menu yet! :-) Let alone the Java-based GUI. Of course, somebody needs to do a market survey and write the Product Requirements Document first. Wait a minute, aren't YOU the "Product Manager" for FreeBSD? Hah! Now YOU'RE trapped, too! Sinister laugh fading into the distance... Wes, you've walked away and forgot to logout again. I suspect Dogbert has been seen around your home/office lately. -- Kris Kirby [EMAIL PROTECTED] --- TGIFreeBSD... 'Nuff said. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
On Sun, Sep 26, 1999 at 09:05:20AM +0200, Gianmarco Giovannelli wrote: What about to extend the pkg_delete to use a syntax like : pkg_delete /var/db/pkg/netscape-communicator-4.61/ it can help so much everyone that can automagically complete file/path names with the shell :-) If you use zsh, use this: #pkg_delete completion (according to the manpage) compctl -g '/var/db/pkg/*(:t)' -x \ 's[-]' -k (v D n f p) - \ 'c[-1,-p]' -g '*(D-/)' -- \ pkg_delete CU, Sec -- Win16, Win32s, Win32c, Win32 - Which API do you want to go today? To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: updating packages automatically...
On Sun, 26 Sep 1999, Nik Clayton wrote: If you're interested, I've got patches for sysutils/pkg_version that support a '-c' flag (for 'commands') that show you the commands you should run to update any out of date ports. I cron this and mail the output out once a week. Nick, in deed, i am very interested in it. having your patches, do you think, there's any need for a tool in perl? i'm recently testing my version and it seems to work as expected. could you possibly send me your patches? -- christian To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: updating packages automatically...
On Sun, Sep 26, 1999 at 08:53:32PM +0200, Christian Carstensen wrote: On Sun, 26 Sep 1999, Nik Clayton wrote: If you're interested, I've got patches for sysutils/pkg_version that support a '-c' flag (for 'commands') that show you the commands you should run to update any out of date ports. I cron this and mail the output out once a week. in deed, i am very interested in it. having your patches, do you think, there's any need for a tool in perl? i'm recently testing my version and it seems to work as expected. could you possibly send me your patches? Various people have asked for these. http://www.freebsd.org/~nik/pkg_version.diff pkg_version.1.diff N -- [intentional self-reference] can be easily accommodated using a blessed, non-self-referential dummy head-node whose own object destructor severs the links. -- Tom Christiansen in [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
Tony Finch [EMAIL PROTECTED] writes: Rajappa Iyer [EMAIL PROTECTED] wrote: 1. It does a terrible job at tracking dependencies, IMHO. If you install packages A, B and C at the same time and A depends on C, it's not smart enough to install C first. pkg_order | tsort should do the job, one would presume. 2. It does an even more terrible job at fetching dependencies. Try installing a complex set of programs and files (e.g. gnome) and see how many individual components you have to fetch. Contrast with "cd /usr/ports/x11/gnome; make install". Both of those are handled by the apt-get program, and were in the past handled by dselect (but dselect is horrid for a whole load of other reasons). apt-get does a better job at collections, true, but in my experience still does not do a proper package ordering before installation. And if component packages have inconsistent dependencies, apt-get puts your system in a state that is hard to recover from. I've had both of these things happen to me while installing gnome. Now one can argue that this reflects a problem with the individual package rather than the infrastructure, but I feel that if a package manager deals with a bundle in a manner similar to a package, it should deal with consistency issues of the component packages. Don't get me wrong. I think that the problem that Debian package manager is trying to solve is not an easy one to solve in a completely bulletproof manner and I don't have a solution to offer offhand, either. apt-get is undoubtedly an improvement on dselect, but I think it builds on a fundamentally shaky infrastructure, IMHO. My gut feeling is that one would be better off building a super-duper package management system on top of the ports mechanism and extending the existing pkg_* tools. Regards, Rajappa -- [EMAIL PROTECTED] a.k.a. Rajappa Iyer.New York, New York. We're too busy mopping the floor to turn off the faucet. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
Gianmarco Giovannelli wrote: At 26/09/99, you wrote: The second script is called "pkg_rm"; it can be used to delete packages like pkg_delete, but you can use arguments in the same way as for pkg_ls above (i.e. "pkg_rm lynx"). Think of it like pkg_info | grep | pkg_delete. It might more sense to implement these features in pkg_info and pkg_delete, resprectively, but I don't have the time to do that (and these scripts work fine, so I have no incentive to bother with the C sources of pkg_{info,delete}). What about to extend the pkg_delete to use a syntax like : pkg_delete /var/db/pkg/netscape-communicator-4.61/ A hearty "Me too" for this option. It's something I've often wished for. I can 'cd /var/db/pkg' a lot easier than I can reprogram zsh, but it'd still be nice to have this option. Thanks, Doug -- "Stop it, I'm gettin' misty." - Mel Gibson as Porter, "Payback" To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
XFCom_SiS for Xfree86
Xfree86/Linux emulation question. I have a SIS 6326 AGP based motherboard and undstand that it is supported by XFCom_SiS located at ftp://ftp.suse.com/pub/SuSE-Linux/suse_update/X/XFCom/xsis/glibc2/xsis.tgz Has anyone gotten this to work under FreeBSD? Thanks in advance Richard Puga [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
mrtg,FreeBSD, asus p2b temperature
Does anybody have any tips for using the above combination for graphing temperatures? Leif To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: mrtg,FreeBSD, asus p2b temperature
Specifically, what 'tips' are you looking for? -marc --- Marc Nicholas netSTOR Technologies, Inc. http://www.netstor.com "Fast, Expandable and Affordable Internet Caching Products" 1.877.464.4776 416.979.9000x11 fax: 416.979.8223 cell: 416.346.9255 On Mon, 27 Sep 1999, Leif Neland wrote: Does anybody have any tips for using the above combination for graphing temperatures? Leif To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
chroot could chdir? (was Re: about jail)
Alexander Bezroutchko wrote: it is possible to escape from jail Following program escapes from jail (tested under 4.0-19990918-CURRENT): [snip program code that chroot's but doesn't then chdir inside the new area] As we all know, the chroot can be escaped because the sample program doesn't change the current working directory, and it's still pointing outside the chrooted area. What if chroot itself chdir'ed to it's new root directory? Would this break existing programs? I'd expect that well-behaved programs would chdir someplace useful before continuing anyway. At the very end of chroot(), could it just vrele(fdp-fd_cdir); fdp-fd_cdir = nd.ni_vp; before it returns, setting the current dir to the same place it just chrooted to? Carol -- Carol Deihl - principal, Shrier and Deihl - mailto:[EMAIL PROTECTED] Remote Unix Network Admin, Security, Internet Software Development Tinker Internet Services - Superior FreeBSD-based Web Hosting http://www.tinker.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: chroot could chdir? (was Re: about jail)
Ummm sorry but i think you have goten this backwards it is more secure to chdir, then chrrot, not chroot then chdir I believe what you have here is backwards As we all know, the chroot can be escaped because the sample program doesn't change the current working directory, and it's still pointing outside the chrooted area. What if chroot itself chdir'ed to it's new root directory? Would this break existing programs? I'd expect that well-behaved programs would chdir someplace useful before continuing anyway. At the very end of chroot(), could it just vrele(fdp-fd_cdir); fdp-fd_cdir = nd.ni_vp; before it returns, setting the current dir to the same place it just chrooted to? Carol -- Carol Deihl - principal, Shrier and Deihl - mailto:[EMAIL PROTECTED] Remote Unix Network Admin, Security, Internet Software Development Tinker Internet Services - Superior FreeBSD-based Web Hosting http://www.tinker.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: chroot could chdir? (was Re: about jail)
Umm I think you have gotten this backwards, it is more secure to chdir first then chroot I think you have this backwards. in my virtual environment i chdir working dir, then chroot... ive not been able to escape my chrooted jail setup yet. nor have i seen any code that will As we all know, the chroot can be escaped because the sample program doesn't change the current working directory, and it's still pointing outside the chrooted area. What if chroot itself chdir'ed to it's new root directory? Would this break existing programs? I'd expect that well-behaved programs would chdir someplace useful before continuing anyway. At the very end of chroot(), could it just vrele(fdp-fd_cdir); fdp-fd_cdir = nd.ni_vp; before it returns, setting the current dir to the same place it just chrooted to? Carol -- Carol Deihl - principal, Shrier and Deihl - mailto:[EMAIL PROTECTED] Remote Unix Network Admin, Security, Internet Software Development Tinker Internet Services - Superior FreeBSD-based Web Hosting http://www.tinker.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: chroot could chdir? (was Re: about jail)
I actually currently use -SNIP - EDITED FOR SECURITY - syslog (LOG_NOTICE,"Changing directory/root to %s",path if (chdir (path) || chroot (path)) return 1; }else{ syslog (LOG_NOTICE,"No ("EDITED FOR SECURITY" ) directory for %s: using main" } } execv (argv[0],argv+1); return 1; } ---END - SNIP -- At the very end of chroot(), could it just vrele(fdp-fd_cdir); fdp-fd_cdir = nd.ni_vp; before it returns, setting the current dir to the same place it just chrooted to? To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: chroot could chdir? (was Re: about jail)
You have to examine ALL fd's in case one has a directory open that is outside the chroot.. (see man fchdir(2)) julian On Sun, 26 Sep 1999, Carol Deihl wrote: Alexander Bezroutchko wrote: it is possible to escape from jail Following program escapes from jail (tested under 4.0-19990918-CURRENT): [snip program code that chroot's but doesn't then chdir inside the new area] As we all know, the chroot can be escaped because the sample program doesn't change the current working directory, and it's still pointing outside the chrooted area. What if chroot itself chdir'ed to it's new root directory? Would this break existing programs? I'd expect that well-behaved programs would chdir someplace useful before continuing anyway. At the very end of chroot(), could it just vrele(fdp-fd_cdir); fdp-fd_cdir = nd.ni_vp; before it returns, setting the current dir to the same place it just chrooted to? Carol -- Carol Deihl - principal, Shrier and Deihl - mailto:[EMAIL PROTECTED] Remote Unix Network Admin, Security, Internet Software Development Tinker Internet Services - Superior FreeBSD-based Web Hosting http://www.tinker.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: A new package fetching utility, pkg_get
On Sun, Sep 26, 1999 at 01:52:36AM +0200, Oliver Fromme wrote: While we're talking about making package handling easier for newbies, I'd like to present two simple shell scripts that I wrote quite some time ago. Yeah, I know I could send-pr this, but I'm not sure if they're really worth it (if someone thinks they are, then I'll send-pr them). Here's a bit of me-too-erism, and (I hope) some food for thought and discussion: I've longed for a mechanism to keep the ports that I use as up-to-date as the rest of my FreeBSD system. Unfortunately, some ports I don't use very often, and so forget that they're there. Unfortunately (again), the port name-version_number identifier isn't _quite_ unique enough to use as a key for tracking ports. For example: ssh and docbook have multiple versions for the same base name installed concurrently. What I'd like is a little weekly crontab script that runs after my weekly ports cvsup, and tells me which of the ports that I "subscribe to" has changed, so that I can think about rebuilding it. This is the closest I've come, so far. Comments and suggestions welcome, of course: pkg_info -a -q -I tags pkg_info -a -I | awk '{print $1}' | paste -d\| - tags | sort -t\| -k 2 alist sort -t\| -k 4 /usr/ports/INDEX |\ join -t\| -o1.1,2.1 -1 2 -2 4 alist - |\ awk -F\| '{if ($1 != $2) print $1 "--" $2}' This throws up some obvious candidates, like: mutt-1.0b1--mutt-1.0b2 But also some dubious ones: bzip2-0.9.0c--bzip-0.21 bzip2-0.9.0c--bzip2-0.9.5c And some that seem to have different pkg_* names from the values in the INDEX file: squid-2.2--squid-2.0 squid-2.2--squid-2.1 This probably also loses for any ports where the comment field has changed... I've thought about parsing the "updated ports" list that gets posted to usenet every (?) month or so, but that seems hard too. -- Andrew To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: 3.3-R on Dell w/ DPT RAID
I've pored over -question, to no avail, so here goes. We are trying to install FreeBSD 3.3-RELEASE on a Dell PowerEdge 6300. Said beast has a DPT SmartRAID IV controller, and 2G of memory. We've told this machine via it's BIOS to pretend it only has 256M. When we try an install from the floppies, the mfsroot floppies panics with an 'pmap_enter: invalid page directory, pdir=0x601063, va=0xc240'. I have no idea what this error message means. It suggests that you have memory problems; have you tried physically extracting most of the memory from the system? -- \\ The mind's the standard \\ Mike Smith \\ of the man. \\ [EMAIL PROTECTED] \\-- Joseph Merrick \\ [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Out of swap handling and X lockups in 3.2R
: :Matthew Dillon wrote: : : What it all comes down to is a juxtaposition of what people believe : is appropriate verses what people are actually willing to code up. : I'm willing to code up my importance mechanism idea. The question is : whether it's a good enough idea to throw into the tree. : :I think it's a good idea. It lets the admin introduce bias in the :system to protect people/processes who are more likely to use huge :amount of memory. Alas, taking the swap space into account in :addition to RSS seems more important to me. But then, I'm happy with :the way things are right now. : :-- :Daniel C. Sobral (8-DCS) I'm going to implement and commit this idea into -CURRENT unless someone screams. I think it would be an excellent base on top of which future sohpistication can be added. -Matt To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: mrtg,FreeBSD, asus p2b temperature
| Does anybody have any tips for using the above combination for graphing temperatures? | | Leif As far as I know, MRTG is only able to fetch data from SNMP MIBs. Which, in order to get the information you're looking for, two things have to happen. You need to first have the kernel fetch that information from the motherboard, and then some userland program to return it in the form of an SNMP response. So, unless you are prepared to dust off that C compiler, you're out of luck. -- Dan Moschuk ([EMAIL PROTECTED]) "Try not. Do, or do not. There is no try." -- Yoda To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: mrtg,FreeBSD, asus p2b temperature
MRTG is capable of graphing anything that can be expressed as a number. For an example look at the contributed example that graphs estimated bandwidth. I modified this to run with nttcp and use it to track the capability of all my circuits. Someone has a method of monitoring temperatures via a probe at a reasonable cost and inputting it to the computer but I don't remember where I saw it. Jim Flowers [EMAIL PROTECTED] #4 ISP on C|NET, #1 in Ohio On Mon, 27 Sep 1999, Dan Moschuk wrote: | Does anybody have any tips for using the above combination for graphing temperatures? | | Leif As far as I know, MRTG is only able to fetch data from SNMP MIBs. Which, in order to get the information you're looking for, two things have to happen. You need to first have the kernel fetch that information from the motherboard, and then some userland program to return it in the form of an SNMP response. So, unless you are prepared to dust off that C compiler, you're out of luck. To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: chroot could chdir? (was Re: about jail)
In message [EMAIL PROTECTED], Julian Elischer writes: You have to examine ALL fd's in case one has a directory open that is outside the chroot.. (see man fchdir(2)) We do. See source. -- Poul-Henning Kamp FreeBSD coreteam member [EMAIL PROTECTED] "Real hackers run -current on their laptop." FreeBSD -- It will take a long time before progress goes too far! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: mrtg,FreeBSD, asus p2b temperature
Jim Flowers wrote in list.freebsd-hackers: MRTG is capable of graphing anything that can be expressed as a number. For an example look at the contributed example that graphs estimated bandwidth. I modified this to run with nttcp and use it to track the capability of all my circuits. Someone has a method of monitoring temperatures via a probe at a reasonable cost and inputting it to the computer but I don't remember where I saw it. Not necessary. The mainboards of the ASUS P2B series have everything onboard that you need. We have it working with the intpm0 driver and a tool called "lm" that I donwloaded from somewhere in Japan (forgot the URL, sorry). However, the problem is, it only works with 3.0-current from around January. It doesn't work with any recent -stable or -current. I suspected it was because of newbus, so I tried to port it, but without success. :-( Regards Oliver -- Oliver Fromme, Leibnizstr. 18/61, 38678 Clausthal, Germany (Info: finger userinfo:[EMAIL PROTECTED]) "In jedem Stück Kohle wartet ein Diamant auf seine Geburt" (Terry Pratchett) To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message