Re: Upgrading FreeBSD 3.5
On Wed, Mar 10, 2004 at 02:33:34AM -0500, Crucial Servers wrote: Hi, I need some advice on steps for upgrading a very valueble machine. This machine has an uptime of 393 days. I need to install a secure version of curl this is our main focus right now. FreeBSD 3.5 ports collection is very b0rked and nothing works, I tried downloading the cvsup source and installing it, but now it cant find m3build. Secured version of curl? I don't know what you mean by that, but on a networked 3.5 system an insecure ftp/www client is the least of your security worries! My main focus is getting this OS to 4.9-STABLE the SAFE way and Yes its a contracted machine so its remote. I know there is going to be tons of b0rked programs when I'm all said and done. Can someone please explain how to tackle this animal slowly, I was thinking 4.0 then 4.5 then 4.9. Do you have a serial console installed? If so, you can just do a binary upgrade install instead of messing around trying to compile the sources. Make sure you do a complete system backup before you begin, of course. Kris pgp0.pgp Description: PGP signature
Re: rc script timing issues?
Shaun T. Erickson wrote: On 5.2.1-RELEASE-p1, in /usr/local/etc/rc.d, I have scripts that start my MySQL database, and that start my Courier-IMAP daemons. When the scripts for courier run, one of the first things they do is start authdaemond, which should fire up several authdaemond.mysql processes and then they start the imap daemons. On reboot, the imap daemons are running, but the authdaemond.mysql processes aren't. If I stop the imap script, and re-run it, everything starts up just fine. I suspect that the database isn't getting started before the imap scripts are run. So, I moved the database startup script to /etc/rc.d, but on reboot, the database wasn't started. I had hoped moving it to /etc/rc.d might start it earlier in the boot process. Suggestions? TIA. From man 8 rc.d: The scripts within each directory are executed in lexicographical order. If a specific order is required, numbers may be used as a prefix to the existing filenames, so for example 100.foo would be executed before 200.bar; without the numeric prefixes the opposite would be true. You might be able to see this if you've installed, say, mysql-client which uses a script in /usr/local/etc/rc.d called 000.mysql-client.sh - the 000. forces an early startup. So I suggest you're better off moving the scripts back to /usr/local/etc/rc.d and prefixing them with numerals to get the startup order correct. PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cron job without emailing errors to root?
On Tue, 2004-03-09 at 21:25 -0600, [EMAIL PROTECTED] wrote: What I am wondering is, is if there is a way to still have the entries in me /etc/crontab to run MRTG at 5 minute intervals without having any output emailed out. can i make it come out to concole instead? anything to get it from emailing would be great as I am seeing ~2000 messages a day :/ By default output is emailed, else it is piped to wherever you want it to go. Pipe it to /dev/null eg. @hourly /bin/dontcare.sh /dev/null @hourly /bin/arrgh.sh | mail -subject Server is down user1 @hourly /bin/msg.sh | sendsms -phone 016 333 signature.asc Description: This is a digitally signed message part
Re: Upgrading FreeBSD 3.5
On Wed, 10 Mar 2004 02:33:34 -0500 Crucial Servers [EMAIL PROTECTED] wrote: Hi, I need some advice on steps for upgrading a very valueble machine. This machine has an uptime of 393 days. I need to install a secure version of curl this is our main focus right now. FreeBSD 3.5 ports collection is very b0rked and nothing works, I tried downloading the cvsup source and installing it, but now it cant find m3build. My main focus is getting this OS to 4.9-STABLE the SAFE way and Yes its a contracted machine so its remote. I know there is going to be tons of b0rked programs when I'm all said and done. Can someone please explain how to tackle this animal slowly, I was thinking 4.0 then 4.5 then 4.9. If I can avoid this all together and install a secured version of curl it would be appreaciated. I really cant find the source anywhere. No clue what it would take to cvsup that... but what I would do is throw together a 4stable install together on another similar box and take care of all the tweakings, data importing, and ect. Then when that machines scheduled downtime/maintance/whatever arrivces swap out either the drive or the entire machine. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: USB Driver Questions
I figured it out. To dynamically load/unload the driver it has to be excluded from the kernel config. Only then will the kld* tools allow to manipulate the module. Chris On Tue, 9 Mar 2004 [EMAIL PROTECTED] wrote: How does one force the use of a particular driver for a USB device without removing the preferred driver from the kernel conf? For example, I have an HID compliant device that is handled by the uhid driver, however I wish to use the ugen driver temporarily for some testing. I created the appropriate entry in /etc/usbd.conf with : devname ugen[0-9]+ But uhid0 continues to be used after restarting usbd. I also tried to unload the uhid kernel module with kldunload, but I received an error that the module could not be found even though it showed up under kldstat. Recompiling the kernel without uhid support caused the desired effect, but I'd rather not have to reboot everytime I want to switch drivers. Thanks in advance, Chris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: rc script timing issues?
Peter Risdon wrote: Shaun T. Erickson wrote: On 5.2.1-RELEASE-p1, in /usr/local/etc/rc.d, I have scripts that start my MySQL database, and that start my Courier-IMAP daemons. When the scripts for courier run, one of the first things they do is start authdaemond, which should fire up several authdaemond.mysql processes and then they start the imap daemons. On reboot, the imap daemons are running, but the authdaemond.mysql processes aren't. If I stop the imap script, and re-run it, everything starts up just fine. I suspect that the database isn't getting started before the imap scripts are run. So, I moved the database startup script to /etc/rc.d, but on reboot, the database wasn't started. I had hoped moving it to /etc/rc.d might start it earlier in the boot process. Suggestions? TIA. From man 8 rc.d: The scripts within each directory are executed in lexicographical order. If a specific order is required, numbers may be used as a prefix to the existing filenames, so for example 100.foo would be executed before 200.bar; without the numeric prefixes the opposite would be true. You might be able to see this if you've installed, say, mysql-client which uses a script in /usr/local/etc/rc.d called 000.mysql-client.sh - the 000. forces an early startup. So I suggest you're better off moving the scripts back to /usr/local/etc/rc.d and prefixing them with numerals to get the startup order correct. One small note - the startup script for mysql-client is prefixed with 000. but the one for mysql-server is not prefixed by a numeral. The mysql client has to start before the server. You'll need to prefix mysql-server.sh with a numeral but it must be 000. PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upgrade kde
Take a look at http://freebsd.kde.org There you'll find all information you need. Frank thank´s a lot, but this takes to long, or not? is there another way without a clean install? thank´s michael Chuck McManis schrieb: I found the easiest way was to start with a clean install, then install cvsup, then cvsup ports, then install portupgrade and then build kde from the ports tree. Took about 32 hours start to finish on a 2.2Ghz Celeron. I wasted about a week trying to do it without re-installing and was unsuccessful. --Chuck At 11:34 PM 3/9/2004, Michael Hollmann wrote: how can i easy upgrade the kde version? my actually version is 3.1.x and would like to upgrade to 3.2 should i use portupgrade? is there a howto for it? thank´s for your help regards michael ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upgrade kde
thank´s, portupgrade -P kde that´s all what i need? is there anything else to do? regards michael Frank Mueller schrieb: Take a look at http://freebsd.kde.org There you'll find all information you need. Frank thank´s a lot, but this takes to long, or not? is there another way without a clean install? thank´s michael Chuck McManis schrieb: I found the easiest way was to start with a clean install, then install cvsup, then cvsup ports, then install portupgrade and then build kde from the ports tree. Took about 32 hours start to finish on a 2.2Ghz Celeron. I wasted about a week trying to do it without re-installing and was unsuccessful. --Chuck At 11:34 PM 3/9/2004, Michael Hollmann wrote: how can i easy upgrade the kde version? my actually version is 3.1.x and would like to upgrade to 3.2 should i use portupgrade? is there a howto for it? thank´s for your help regards michael ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Per-User QUOTA's vs blocksize
On Tue, Mar 09, 2004 at 02:05:54PM +, Matthew Seaman wrote: On Mon, Mar 08, 2004 at 06:48:51PM +, Stacey Roberts wrote: You may limit allocations based on disk space (block quotas) What exactly is the size of a block? As the quota system uses the term, a block is 512b -- this unit is also called a sector in some situations, but it's basically the same thing. It reflects the size of the underlying sector structures within the filesystem. True, but the term is used inappropriately by the quota tools and their documentation - these appear to work exclusively in KB units for their (ahem) 'block' quotas, at least on recent versions on FreeBSD. See, for example, rev. 1.18 of edquota.c and the associated PR: http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/edquota/edquota.c?rev=1.18content-type=text/x-cvsweb-markup http://www.freebsd.org/cgi/query-pr.cgi?pr=41936 There's a lot of explicit [some number of bytes]/1024 calculations in the various quota tools. I have empirical evidence of this too - I set up 'block' quotas for my users many moons ago, assuming 512 byte blocks. I was then quite surprised to run out of disk space last weekend, with du(1) showing several users massively over quota, but repquota(8) saying all was well. Halving all the quota settings keeps everything in agreement. The documentation is certainly misleading on this point. I'll file a PR, unless anyone cares to beat me to it... Scott -- === Scott Mitchell | PGP Key ID | Eagles may soar, but weasels Cambridge, England | 0x54B171B9 | don't get sucked into jet engines scott at fishballoon.org | 0xAA775B8B | -- Anon ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: accessing FreeBSD FS from NT or Windows
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 VMWare. Quintin C. Kukulies wrote: | Anyone knowing a way to access a FreeBSD partition/FS from a booted | NT or other Windows system? | | -- | Chris Christoph P. U. Kukulies kuku_at_physik.rwth-aachen.de | ___ | [EMAIL PROTECTED] mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to [EMAIL PROTECTED] | | | -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFATjyVkt6kXuDr+LcRAnrKAJ90fu96TTNKfw+3WLv/jDgTyqSs4QCgv+Qu SNgG85kf5mz1htRuHusUfvI= =egJE -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cron job without emailing errors to root?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 See documentation for crontab. ``MAILTO='' should do what you want, or send all output from command to /dev/null, i.e. command /dev/null Quintin [EMAIL PROTECTED] wrote: | A quick question-- | I run MRTG for many boxes on my network at five minute intervals, and I am | seeing massive amounts of email filling up roots inbox due to boxes that | are currently offline for the night or something. | | What I am wondering is, is if there is a way to still have the entries in | me /etc/crontab to run MRTG at 5 minute intervals without having any | output emailed out. can i make it come out to concole instead? anything to | get it from emailing would be great as I am seeing ~2000 messages a day :/ | | Many thanks | | ___ | [EMAIL PROTECTED] mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to [EMAIL PROTECTED] | | | -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFATtU/kt6kXuDr+LcRAi80AJwIsnuyb+qjXcyvVBHig1KKtV9SzACgvB8w etEVNGDLyg2vfNWPhCD7Axw= =s/nF -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Howto for
Hi, Try searchin google, mgetty+sendfax howto gave some hits (3700) Perhaps there is something usefull for you between those. Have a look Cheers :) -- Kind regards, Remko Lodder Elvandar.org/DSINet.org www.mostly-harmless.nl Dutch community for helping newcomers on the hackerscene -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Stephen Liu Verzonden: woensdag 10 maart 2004 18:01 Aan: [EMAIL PROTECTED] Onderwerp: Howto for Hi folks, Where can I find a Howto for mgetty+sendfax other than follow; http://www.leo.org/~doering/mgetty/mgetty_toc.html TIA B.R. Stephen Liu ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Recycled cd's
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello there! I can send you 2.2.6 release 4CD box, if you wish =) - -- My PGP public key is avaible at: http://www.divo.ru/~lesha/4A2620A5.key -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQFATu6/kePr2UomIKURAsfjAJ9zCW51mQMfJPWo8rjaTZnY614x6gCeJK0R bUXIGQnGyZQkG5anULffh8Q= =QjPn -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ntpd question
On Tue, Mar 09, 2004 at 10:49:53PM -0500, Shaun T. Erickson wrote: I run ntpd to keep my server's time in sync with a remote server. In my netstat -a output, I see: Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) udp4 0 0 localhost.ntp *.* udp4 0 0 peter.ntp *.* udp4 0 0 *.ntp *.* I'm not running an ntp server, and would like these entries to go away. I've looked at the ntpd man page and haven't been able to find any option to tell it not to attach to ports. How can I do this? TIA. Unfortuately if you're going to run ntpd, you can't get rid of these: ntpd(8) will automatically bind to all interfaces on the system, and there are no controls within ntpd to control that. It's not so bad though -- ntpd isn't generally known as a gaping security hole, and the worst problem you'll probably have to deal with is people taking a time service without asking. There are some things you can do: i) Set up the access controls within ntp.conf carefully. The best strategy is to set up a default 'deny all access' entry, and then just open up sufficient access to the servers you want to use and to your local network: restrict default ignore # Ignore everything (i) restrict 127.0.0.1# Completely unrestrict localhost restrict 192.168.0.0 mask 255.255.255.0 # and local network server 12.34.56.78 restrict 12.34.56.78 nomodify nopeer # Let server supply timeservice (ii) Unfortunately this approach requires that you know the IP numbers of all servers you will be using, which doesn't really fit with using the pool.ntp.org servers. In that case, you can relax the default restriction (i) to: restrict default nomodify nopeer noserve # Mostly igore everything (i) and the per server lines like (ii) are no-longer necessary. The ntp.conf(5) man page has more details. ii) Use firewall rulesets to prevent any external parties accessing the NTP port on your network interface. If you're using ipfw(8), a good way to do that is setup a stateful rule that only allows incoming NTP packets in response to stuff we've sent out: add 999 allow udp from me 123 to any 123 keep-state out xmit fxp0 (change 'me' to your external public IP address, if you have a fixed one). Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
Compiling Packages
A few days ago, I posted that packages are not as current as ports are on FreeBSD. When I made that statement, someone, I forget whom, claimed that they need more machines to compile the code and wanted to know if I wanted to donate, or words to that affect. In any case, would that refer to donating an actual computer, or simply donating computer time? I have three computers, only one running FreeBSD at this time. I certainly am not going to give away any of my computers, but I would be willing to share time on one of them if that would help. Would or could anyone tell me who to contact to offer my services? Thanks! Gerard E. Seibert [EMAIL PROTECTED] If you lend someone $20, and never see that person again, it was probably worth it. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compiling Packages
On Wed, Mar 10, 2004 at 05:44:14AM -0500, Gerard Seibert wrote: A few days ago, I posted that packages are not as current as ports are on FreeBSD. When I made that statement, someone, I forget whom, claimed that they need more machines to compile the code and wanted to know if I wanted to donate, or words to that affect. In any case, would that refer to donating an actual computer, or simply donating computer time? I have three computers, only one running FreeBSD at this time. I certainly am not going to give away any of my computers, but I would be willing to share time on one of them if that would help. What would be useful is multiple (e.g. at least half a dozen) fast machines with good network connectivity. Individual machines aren't much help, I'm afraid. Thanks for the offer though. kris pgp0.pgp Description: PGP signature
(Marty Landman) We do not process mail for spammers - using FROM ADDRESS
Hi all, Today I recieved another mail with the subject: Delivery Notification: Delivery has failed. It seems that there a number of ppl on this list who think that they can look at the from address and see if someone is a spammer or not. I thougth that everybody on his list should know better than that. I am not a spammer!! I use this mail address only on FreeBSD list. Spammers can and do harvest it from the web because the contence of the lists are published on to the web. Original-recipient: rfc822;[EMAIL PROTECTED] Final-recipient: rfc822;[EMAIL PROTECTED] Action: failed Status: 5.0.0 (Server rejected MAIL FROM address.) Remote-MTA: dns;mail.face2interface.com (TCP|195.121.6.37|51553|216.157.5.252|25) (www6.web2010.com ESMTP Sendmail 8.12.10/8.9.0; Tue, 9 Mar 2004 18:38:18 -0500 [EST]) Diagnostic-code: smtp;550 5.7.1 [EMAIL PROTECTED]... We do not process mail for spammers dds.nl If you want to block mail from spammers please use spammassassin or a IP based system, but don't go on the FROM address. That is so easy to fake. -- Alex ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compiling Packages
Kris Kennaway [EMAIL PROTECTED] writes: On Wed, Mar 10, 2004 at 05:44:14AM -0500, Gerard Seibert wrote: A few days ago, I posted that packages are not as current as ports are on FreeBSD. When I made that statement, someone, I forget whom, claimed that they need more machines to compile the code and wanted to know if I wanted to donate, or words to that affect. In any case, would that refer to donating an actual computer, or simply donating computer time? I have three computers, only one running FreeBSD at this time. I certainly am not going to give away any of my computers, but I would be willing to share time on one of them if that would help. What would be useful is multiple (e.g. at least half a dozen) fast machines with good network connectivity. Individual machines aren't much help, I'm afraid. Thanks for the offer though. Just a thought - a distcc based system should be able to take advantage of such offers. (No, I'm not volunteering to set one up). -- Dan Pelleg ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compiling Packages
Kris Kennaway wrote: On Wed, Mar 10, 2004 at 05:44:14AM -0500, Gerard Seibert wrote: A few days ago, I posted that packages are not as current as ports are on FreeBSD. When I made that statement, someone, I forget whom, claimed that they need more machines to compile the code and wanted to know if I wanted to donate, or words to that affect. In any case, would that refer to donating an actual computer, or simply donating computer time? I have three computers, only one running FreeBSD at this time. I certainly am not going to give away any of my computers, but I would be willing to share time on one of them if that would help. What would be useful is multiple (e.g. at least half a dozen) fast machines with good network connectivity. Out of interest, how fast, how big a connection, how much disk space? And can building be scheduled for off-peak times? PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Recycled cd's
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 That has to be worth millions! Are you giving these away for free? :) Quintin Alexei Khalimov wrote: | | Hello there! | | I can send you 2.2.6 release 4CD box, if you wish =) | ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFATwROkt6kXuDr+LcRAvZzAKC1c4rpzaN3JtoPIDA80/kILi5DPwCgkPG5 l4pPbQ/LmTzoIzChV2mgxYU= =9Gay -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Remote access in 5.1
On Tue, 2004-03-09 at 23:41, Kris Kennaway wrote: On Tue, Mar 09, 2004 at 11:13:21PM -0500, Mike Jeays wrote: Since upgrading from 4.7 to 5.1, I can no longer open an xterm from another machine by setting the DISPLAY variable to point to the 5.1 machine. Is there some setting that is now disabled by default for security? Other connectivity works fine. XFree86 no longer defaults to use the -listen_tcp option; see the startx manpage. Kris Thanks very much - that does the trick. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Remote access in 5.1
On Tue, Mar 09, 2004 at 11:13:21PM -0500, Mike Jeays wrote: Since upgrading from 4.7 to 5.1, I can no longer open an xterm from another machine by setting the DISPLAY variable to point to the 5.1 machine. Is there some setting that is now disabled by default for security? Other connectivity works fine. XFree86 no longer defaults to use the -listen_tcp option; see the startx manpage. You may prefer to use ssh's X11Forwarding with 'ssh -X remotehost', and avoid -listen_tcp for security reasons. Make sure that X11Forwarding is set to yes in /etc/ssh/sshd_config. -- Cordula's Web. http://www.cordula.ws/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upgrade kde
On Wednesday 10 March 2004 01:13 am, Michael Hollmann wrote: thank´s, portupgrade -P kde that´s all what i need? Probably not because I think you will need -PR kde for a first guess. In addition, that is a big jump going from 3.1 to 3.2. Whether you should pkg_delete kde-3.1 and add 3.2 from scratch is something I can't answer. is there anything else to do? You will also probably want to download the packages from http://rabarber.fruitsalad.org/. I have always downloaded the files before I start because I want everything I need on my system before I begin. Now, if you updated your ports lately, You system may not want to install 3.2.0 but 3.2.1 and fruitsalad only has packages for 3.2.0. You might wait until the 3.2.1 packages are on fruitsalad. FWIW, I am typing this from kmail in 3.2.1 and I used 2 - AMD 2400+ XPs to build 3.2.1 in 7 hours elapsed time. I probably could have built 3.2.1 faster using portupgrade -R kde but I had some problems and ended building each module individually and moved packages between the 2 machines. I built each module once by sharing the packages. There wasn't a lot of time between building each module but you never seem to be there just when they finish. Kent regards michael Frank Mueller schrieb: Take a look at http://freebsd.kde.org There you'll find all information you need. Frank thank´s a lot, but this takes to long, or not? is there another way without a clean install? thank´s michael Chuck McManis schrieb: I found the easiest way was to start with a clean install, then install cvsup, then cvsup ports, then install portupgrade and then build kde from the ports tree. Took about 32 hours start to finish on a 2.2Ghz Celeron. I wasted about a week trying to do it without re-installing and was unsuccessful. --Chuck At 11:34 PM 3/9/2004, Michael Hollmann wrote: how can i easy upgrade the kde version? my actually version is 3.1.x and would like to upgrade to 3.2 should i use portupgrade? is there a howto for it? thank´s for your help regards michael ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Recycled cd's
Quintin Riis wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 That has to be worth millions! If that's the case then I can retire as I've got boxed sets of 2.0.5, 2.2.5, 2.2.7, 2.2.8, and 3.1 here :-) I've also still got two sheets of FreeBSD stickers that Walnut Creek used to send with the CD sets. Are you giving these away for free? :) Not if they're worth millions ;-) Regards, Mark Quintin Alexei Khalimov wrote: | | Hello there! | | I can send you 2.2.6 release 4CD box, if you wish =) | ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFATwROkt6kXuDr+LcRAvZzAKC1c4rpzaN3JtoPIDA80/kILi5DPwCgkPG5 l4pPbQ/LmTzoIzChV2mgxYU= =9Gay -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] . ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Strange cvsup problem
Hi, all folks: I use FreeBSD 4.7, and I have setup cvsup for updating my src-all, ports-all and doc-all, it worked fine before as I have used it for upgrading from 4.7 release to 4.7 stable. But after I changed supfile to force it update to 4.9 release, the cvsup stoped working and deleted all source under /usr/src. Here is the portion of non-comment of changed supfile: *default host=cvsup4.uk.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=RELENG_4_9 *default delete use-rel-suffix *default compress src-all ports-all tag=. doc-all tag=. It seems that cvsup do get the updated files, but it refuse to put them into the place. Here is the first fragment of checkout file /usr/sup/src-all/checkouts.cvs:RELENG_4_9: F 5 1078885727 D src c src/COPYRIGHT,v RELENG_4_9 . 2#871#110#10427097864#88033#444 c src/CVS-INFO,v RELENG_4_9 . 2#871#19#8562516724#55803#444 c src/HW.TROUBLE,v RELENG_4_9 . 2#871#19#8203481294#30043#444 c src/MAINTAINERS,v RELENG_4_9 . 2#871#110#10427097865#171633#444 c src/Makefile,v RELENG_4_9 . 2#871#110#10427097866#2558123#444 c src/Makefile.alpha,v RELENG_4_9 . 2#871#19#9033105495#346543#444 c src/Makefile.inc0,v RELENG_4_9 . 2#871#19#9615035415#143273#444 c src/Makefile.inc1,v RELENG_4_9 . 2#871#110#10427097866#2838243#444 c src/Makefile.upgrade,v RELENG_4_9 . 2#871#110#10427097865#285703#444 c src/README,v RELENG_4_9 . 2#871#110#10427097865#259503#444 c src/TODO,v RELENG_4_9 . 2#871#19#9365291215#122913#444 c src/UPDATING,v RELENG_4_9 . 2#871#110#10427900676#2555643#444 D src/bin c src/bin/Makefile,v RELENG_4_9 . 2#871#110#10430853845#111233#444 Could anyone kindly help me sort out where goes wrong and advise me how to fix this problem? Thanks in advance! Da _ Do You Yahoo!? 60 http://cn.rd.yahoo.com/mail_cn/tag/?http://cn.mail.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Strange cvsup problem
Hi, all folks: I use FreeBSD 4.7, and I have setup cvsup for updating my src-all, ports-all and doc-all, it worked fine before as I have used it for upgrading from 4.7 release to 4.7 stable. But after I changed supfile to force it update to 4.9 release, the cvsup stoped working and deleted all source under /usr/src. Here is the portion of non-comment of changed supfile: *default host=cvsup4.uk.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=RELENG_4_9 *default delete use-rel-suffix *default compress src-all ports-all tag=. doc-all tag=. It seems that cvsup do get the updated files, but it refuse to put them into the place. Here is the first fragment of checkout file /usr/sup/src-all/checkouts.cvs:RELENG_4_9: F 5 1078885727 D src c src/COPYRIGHT,v RELENG_4_9 . 2#871#110#10427097864#88033#444 c src/CVS-INFO,v RELENG_4_9 . 2#871#19#8562516724#55803#444 c src/HW.TROUBLE,v RELENG_4_9 . 2#871#19#8203481294#30043#444 c src/MAINTAINERS,v RELENG_4_9 . 2#871#110#10427097865#171633#444 c src/Makefile,v RELENG_4_9 . 2#871#110#10427097866#2558123#444 c src/Makefile.alpha,v RELENG_4_9 . 2#871#19#9033105495#346543#444 c src/Makefile.inc0,v RELENG_4_9 . 2#871#19#9615035415#143273#444 c src/Makefile.inc1,v RELENG_4_9 . 2#871#110#10427097866#2838243#444 c src/Makefile.upgrade,v RELENG_4_9 . 2#871#110#10427097865#285703#444 c src/README,v RELENG_4_9 . 2#871#110#10427097865#259503#444 c src/TODO,v RELENG_4_9 . 2#871#19#9365291215#122913#444 c src/UPDATING,v RELENG_4_9 . 2#871#110#10427900676#2555643#444 D src/bin c src/bin/Makefile,v RELENG_4_9 . 2#871#110#10430853845#111233#444 Could anyone kindly help me sort out where goes wrong and advise me how to fix this problem? Thanks in advance! Da _ Do You Yahoo!? 60 http://cn.rd.yahoo.com/mail_cn/tag/?http://cn.mail.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using int 13 while BSD is running
On Tue, 9 Mar 2004 22:12:31 -0800 Jason Dictos [EMAIL PROTECTED] probably wrote: Aren't the nodes /dev/ad[0-9] (ide) or /dev/da[0-9] (scsi/usb) created by their device drivers, i.e. protected mode device drives? That would mean that I would have to make sure that the hardware is supported by a device driver, whereas if I had raw int 13 access I would be garanteed access to the drive the system booted from, and any other bios addressable device, without having to load any driver for the hardware. -Jason Argh, I didn't get your point first. I thought your hardware wasn't supported by int 13h, and you were trying to get FreeBSD drivers to work for you in real mode... Any real HDD's out there not supported by FreeBSD but supported by BIOS'en? Somewere around then Dan Nelson [EMAIL PROTECTED] probably replied: I guess it's possible, since you have to use the bios to make VESA video calls, and they work. /sys/i386/isa/vesa.c has most of the stuff you would need. Also see the i386_vm86() userland function; you may not even need to mess around inside the kernel. That's v86 mode, not real mode. Sometimes it makes a difference. It depends on how that particular BIOS was written. To Jason: take care not to *write* anything to the disk via int 13h. I still don't think I understand why you are using FreeBSD for this specific purpose. Why if you just spend time escaping from the OS? -- DoubleF All I ask is a chance to prove that money can't make me happy. pgp0.pgp Description: PGP signature
RE: Firewall DSL performance
Well, last night I changed the ipf.rules file to be: pass in all keep state pass out all keep state to completely open my firewall to test my performance. Well, it didn't make a lick of difference. Still got 700K. If I open the firewall like I did, shouldn't performance be a non issue ? thanks, Darryl -Original Message- From: Mike Jackson [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 09, 2004 11:55 AM To: Darryl Hoar Subject: Re: Firewall DSL performance Darryl Hoar ([EMAIL PROTECTED]) wrote: Problem: Recently, our ISP upgraded (at no charge) our connection from 512K to 1.5Mb. When testing from a computer on my Lan, I was only seeing about 700K. Testing at the box on the side of my house yielded 1.5Mb. Testing at the jack inside also yielded 1.5Mb. So, my firewall seems to be slowing things down. Run `top' and watch the memory and processor usage when downloading an iso from some internet site. Open another terminal and run `iostat -odICTw 2 -c 9', to watch your io performance. Open another terminal and run `vmstat -w 5', to watch virtual memory statistics. Finally, a slow processor just might be the bottleneck. For example, if you put a gigabit ethernet card in a P4 and one in a P2, you will most likely not get full speed - especially if there is kernel level packet interception going, e.g. ipsec, nat, or firewall filters. HTH, -- Mike Jackson ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Strange cvsup problem
Perhaps you should remove this: *default delete use-rel-suffix from your supfile. What i always do in case of troubles, mv /usr/src /usr/src.orig cvsup -g -L 2 $supfile so i always have a valid backup in case things go totally wrong :) Hope this helps you a bit, Cheers -- Kind regards, Remko Lodder Elvandar.org/DSINet.org www.mostly-harmless.nl Dutch community for helping newcomers on the hackerscene -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Da Shen Verzonden: woensdag 10 maart 2004 5:15 Aan: [EMAIL PROTECTED] Onderwerp: Strange cvsup problem Hi, all folks: I use FreeBSD 4.7, and I have setup cvsup for updating my src-all, ports-all and doc-all, it worked fine before as I have used it for upgrading from 4.7 release to 4.7 stable. But after I changed supfile to force it update to 4.9 release, the cvsup stoped working and deleted all source under /usr/src. Here is the portion of non-comment of changed supfile: *default host=cvsup4.uk.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=RELENG_4_9 *default delete use-rel-suffix *default compress src-all ports-all tag=. doc-all tag=. It seems that cvsup do get the updated files, but it refuse to put them into the place. Here is the first fragment of checkout file /usr/sup/src-all/checkouts.cvs:RELENG_4_9: F 5 1078885727 D src c src/COPYRIGHT,v RELENG_4_9 . 2#871#110#10427097864#88033#444 c src/CVS-INFO,v RELENG_4_9 . 2#871#19#8562516724#55803#444 c src/HW.TROUBLE,v RELENG_4_9 . 2#871#19#8203481294#30043#444 c src/MAINTAINERS,v RELENG_4_9 . 2#871#110#10427097865#171633#444 c src/Makefile,v RELENG_4_9 . 2#871#110#10427097866#2558123#444 c src/Makefile.alpha,v RELENG_4_9 . 2#871#19#9033105495#346543#444 c src/Makefile.inc0,v RELENG_4_9 . 2#871#19#9615035415#143273#444 c src/Makefile.inc1,v RELENG_4_9 . 2#871#110#10427097866#2838243#444 c src/Makefile.upgrade,v RELENG_4_9 . 2#871#110#10427097865#285703#444 c src/README,v RELENG_4_9 . 2#871#110#10427097865#259503#444 c src/TODO,v RELENG_4_9 . 2#871#19#9365291215#122913#444 c src/UPDATING,v RELENG_4_9 . 2#871#110#10427900676#2555643#444 D src/bin c src/bin/Makefile,v RELENG_4_9 . 2#871#110#10430853845#111233#444 Could anyone kindly help me sort out where goes wrong and advise me how to fix this problem? Thanks in advance! Da _ Do You Yahoo!? 60 http://cn.rd.yahoo.com/mail_cn/tag/?http://cn.mail.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and SSL..
use SSL for several sites. With SSL we have to define one IP per site. Jails only have one IP. Is there a way around this other than just having one jail per SSL site? (I'd rather not do that!) Something I think I'm going to end up doing is running two jails: one for http, one for https. You can bind jails to local addresses (say, 127.0.0.3), and then use either natd or ipfw to forward different ports to the appropriate jail. Is this possible though? I wonder if I can get Apache to listen and RESPOND FOR several SSL sites on one IP, even though externally I'm mapping several public IP's to that one IP used by the jail/Apache. I plan on trying this later this week. Has anyone already tried this though? If so, what was your experience. It's a great idea if it works! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: rc script timing issues?
I thought that under /usr/local/etc/rc.d every starts alphabetically (weird word :P) so you could try and start the mysql package as a_mysql.sh or something so that it is processed earlier on, i have exactly the same issue, my webservers etc all come up {using SQL, but SQL is started later on, even the ldconfig hasn't been done yet at that stage, so he cant find the libraries and so on, causing my mailserver to fail as well } So, you could try that {did not check it yet myself} Cheers -- Kind regards, Remko Lodder Elvandar.org/DSINet.org www.mostly-harmless.nl Dutch community for helping newcomers on the hackerscene -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Shaun T. Erickson Verzonden: woensdag 10 maart 2004 5:26 Aan: [EMAIL PROTECTED] Onderwerp: rc script timing issues? On 5.2.1-RELEASE-p1, in /usr/local/etc/rc.d, I have scripts that start my MySQL database, and that start my Courier-IMAP daemons. When the scripts for courier run, one of the first things they do is start authdaemond, which should fire up several authdaemond.mysql processes and then they start the imap daemons. On reboot, the imap daemons are running, but the authdaemond.mysql processes aren't. If I stop the imap script, and re-run it, everything starts up just fine. I suspect that the database isn't getting started before the imap scripts are run. So, I moved the database startup script to /etc/rc.d, but on reboot, the database wasn't started. I had hoped moving it to /etc/rc.d might start it earlier in the boot process. Suggestions? TIA. -ste ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: web based configuration as root or equivalent
This is a bit belated, but I have been thinking along similar lines and hope this might be of assistance... Bjorn Eikeland wrote: På Thu, 26 Feb 2004 16:27:21 -0600, skrev Kevin D. Kinsey, DaleCo, S.P. [EMAIL PROTECTED]: Bjorn Eikeland wrote: I'm wanting to make a web based configuration tool for my wireless routers (setting up freebsd boxes to make a outdoor wlan) - ofcourse I can use ssh and webmin, but the configuration should be made even easier for less technical users. I've read the how to use Webmin with apache, didnt quite folllow the procedure, but bear with me.. chown scripts to root (chown -R root:root /var/www/cp) chmod w/suid (chmod -R 755 /var/www/cp) add -U flag to perl line, what does this do? It lets perl run in Unsafe mode... man 1 perlrun says: -U allows Perl to do unsafe operations. Currently the only unsafe operations are the unlinking of directories while running as supe- ruser, and running setuid programs with fatal taint checks turned into warnings. Note that the -w switch (or the $^W variable) must be used along with this option to actually generate the taint-check warnings. I assume the relevant part of this with webmin is the bit about running setuid programs. is there a php knob like this? Some people argue that php is pretty unsafe anyway. There is, as a consequence, the option of running php in safe mode, but I think this would prevent you from doing what you want to do here. Although some early holes have been closed, it might be the wrong language to use if you need to build a secure middleware application. Of running php scripts with root privileges, the php manual says: A frequent security mistake made at this point is to allow apache root permissions, or to escalate apache's abilitites in some other way. Escalating the Apache user's permissions to root is extremely dangerous and may compromise the entire system, so sudo'ing, chroot'ing, or otherwise running as root should not be considered by those who are not security professionals. (http://www.php.net/manual/en/security.apache.php) I like php for web page generation, but am unhappy about giving a php script root privileges. My own solution is to write a script in perl (or even shell) that runs with root privileges and does the system reconfiguration, keep it well away from webspace, then have the php script execute it when appropriate. This is not a perfect solution, but at least it adds another layer. Where possible, I use php to set some configuration info and a flag either in a database or flat file, then cron the perl script, so updates are not immediate but the php script makes no direct call on anything that is setuid root. I also like to run this type of php script as cgi as opposed to mod_php so that: 1. It's in the (less accessible) cgi-bin and not the web document root. 2. It can run suexec (I normally work in multi-homed contexts and this way I can use ownership and permissions to hide it from all other users and to prevent them from executing it). If anyone wants to suggest any other security measures, I'd be all eyes. So an answer to your situation is that you could use php, and don't need to use an equivalent of perl's -U switch, but security issues need to be considered very carefully. PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Firewall DSL performance
I didn't mean to imply that ipfilter itself had a performance problem, just that my configuration/hardware exhibited a performance problem once my DSL was boosted to 1.5Mb. There is a box on the side of my house that the fiber is connected to. It has a network port for testing. The tech connected his notebook to this port and saw 1.5Mb performance. There is a cat 5 run from this external box to my office in my basement. There is a jack on the end of this run. The tech connected to this jack and saw roughly 1.48Mb performance. Since both cards in the firewall are 3com 10Mb cards, they won't show 100Mb. When I did an ifconfig -a I see them represented as 10Mb/UTP. I did not see any reference to the duplex mode (half or full). I will examine this to see if it is somehow running in half duplex mode when plugged into my DSL link. From the command line on my firewall, if I ftp down a file, how do I figure the Mbps ? thanks, Darryl -Original Message- From: JJB [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 10, 2004 8:46 AM To: [EMAIL PROTECTED] Subject: RE: Firewall DSL performance If the ipfilter firewall had an performance problem, I am sure many people other that you would have been complaining about it. I use ipfilter and have no performance problem. You have to look else where for your problem. Check all the Nic and switches or hubs in the path the test packets flow through to verify they are all operating in full duplex/100 mode. Then start with the gateway box and run native FTP to your public FTP site and see what the through put is there. If it bad then you have isolated the problem to the nic card that connects you to the DSL modem. Greater details about how you test from the lan is needed to help you. Also an detailed description of just what you mean by your statements Testing at the box on the side of my house yielded 1.5Mb. Testing at the jack inside also yielded 1.5Mb. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Darryl Hoar Sent: Wednesday, March 10, 2004 9:10 AM To: 'Mike Jackson' Cc: [EMAIL PROTECTED] Subject: RE: Firewall DSL performance Well, last night I changed the ipf.rules file to be: pass in all keep state pass out all keep state to completely open my firewall to test my performance. Well, it didn't make a lick of difference. Still got 700K. If I open the firewall like I did, shouldn't performance be a non issue ? thanks, Darryl -Original Message- From: Mike Jackson [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 09, 2004 11:55 AM To: Darryl Hoar Subject: Re: Firewall DSL performance Darryl Hoar ([EMAIL PROTECTED]) wrote: Problem: Recently, our ISP upgraded (at no charge) our connection from 512K to 1.5Mb. When testing from a computer on my Lan, I was only seeing about 700K. Testing at the box on the side of my house yielded 1.5Mb. Testing at the jack inside also yielded 1.5Mb. So, my firewall seems to be slowing things down. Run `top' and watch the memory and processor usage when downloading an iso from some internet site. Open another terminal and run `iostat -odICTw 2 -c 9', to watch your io performance. Open another terminal and run `vmstat -w 5', to watch virtual memory statistics. Finally, a slow processor just might be the bottleneck. For example, if you put a gigabit ethernet card in a P4 and one in a P2, you will most likely not get full speed - especially if there is kernel level packet interception going, e.g. ipsec, nat, or firewall filters. HTH, -- Mike Jackson ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Enabling quotas
I am running 5.2.1 and trying to enable quotas, I see that I need to build and install my own custom kernel to support this? I read the Chapter 9 in the Handbook, but don't quite understand one thing. I can't seem to locate what changes I need to make to the new kernel configuration before building it in order to enable quotas. Can someone clarify this for me? -- Robert ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Restore command line options
How about I post this again, without the typo's :-O Hi all, I recently had the opertunity to restore a clients mysql db as he had removed a bunch of needed data from his shopping cart. While the restore command worked OK I was wondering if there is a way to command line it a bit so as not to have to answer yes when asked about the file privledges and have to specify a '1' when asked what volume to use. (I am used to working with tar and doing everything in a single command). The full backup and incremental backup files I used were in a /home/backup. The target files were of course in /usr/local/mysql/var/DBNAME Here is the command I used: restore -x -f /home/backup/usr.level-1_dump local/mysql/var/DBDIRNAMEHERE Have I missed some command line options here to avoide having to answer the perms and volume questions? -Grant ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Enabling quotas
On Wed, Mar 10, 2004 at 10:00:50AM -0500, Robert Fitzpatrick wrote: I am running 5.2.1 and trying to enable quotas, I see that I need to build and install my own custom kernel to support this? I read the Chapter 9 in the Handbook, but don't quite understand one thing. I can't seem to locate what changes I need to make to the new kernel configuration before building it in order to enable quotas. Can someone clarify this for me? -- Robert I couldn't describe that better than chapter 9.3 - where exactly do you struggle? Or is it 12.13 you need help with? You only have to add one single line to your kernel config: options QUOTA -- Robert Barten ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Restore command line options
How about I post this again, without the typo's :-O Hi all, I recently had the opertunity to restore a clients mysql db as he had removed a bunch of needed data from his shopping cart. While the restore command worked OK I was wondering if there is a way to command line it a bit so as not to have to answer yes when asked about the file privledges and have to specify a '1' when asked what volume to use. (I am used to working with tar and doing everything in a single command). The full backup and incremental backup files I used were in a /home/backup. The target files were of course in /usr/local/mysql/var/DBNAME Here is the command I used: restore -x -f /home/backup/usr.level-1_dump local/mysql/var/DBDIRNAMEHERE Have I missed some command line options here to avoide having to answer the perms and volume questions? I don't think you have missed anything. It is one of the little annoyances with dump/restore - which still do not add up to enough to overweigh the value of using them. You could write a wrapper script that would feed the 1 and yes(or no that you may really want to give). jerry -Grant ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: rc script timing issues?
Peter Risdon wrote: From man 8 rc.d: The scripts within each directory are executed in lexicographical order. If a specific order is required, numbers may be used as a prefix to the existing filenames, so for example 100.foo would be executed before 200.bar; without the numeric prefixes the opposite would be true. You might be able to see this if you've installed, say, mysql-client which uses a script in /usr/local/etc/rc.d called 000.mysql-client.sh - the 000. forces an early startup. So I suggest you're better off moving the scripts back to /usr/local/etc/rc.d and prefixing them with numerals to get the startup order correct. This was exactly the solution I needed and, per your later email, I also made sure the client script runs first. -ste ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
natd + ipfw - very slow internet for LAN users
Hi, i'm sharing internet to my local area network (LAN) users with my router. Everything would be fine, but internet is very slow. I tried to ping my ISP. Ping reply is ~50ms. It means, that internet for LAN users should be good enough, but it isn't. Ping reply in IRC is ~15 seconds. Then I try to open some internet pages, there is very big lag. Something is wrong with nating i think, can u tell me what? FreeBSD4.9-STABLE ipfw + natd Kernel configuration: # ... Some other stuff goes here options IPFIREWALL options IPFIREWALL_FORWARD options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=10 options IPFIREWALL_DEFAULT_TO_ACCEPT # Firewall is accepting all packets by default options IPDIVERT # ... Some other stuff goes here rc.conf: defaultrouter=213.190.42.1 # ISP gateway hostname=panemune.net ifconfig_ed0=inet 192.168.0.1 netmask 255.255.255.0 # Network (LAN) interface ifconfig_ed1=inet 213.190.42.48 netmask 255.255.255.0 # Internet (outside) interface # ... here goes some other stuff, like sshd_enable=YES, etc gateway_enable=YES firewall_enable=YES firewall_script=/usr/local/etc/rc.firewall firewall_quiet=YES firewall_logging=YES natd_enable=YES natd_interface=ed1 natd_flags=-f /usr/local/etc/natd.conf # cat /usr/local/etc/natd.conf same_ports yes use_sockets yes unregistered_only yes # cat /usr/local/etc/rc.firewall ipfw add 100 divert natd all from any to any via ed1 # ipfw show 00100 469 26801 divert 8668 ip from any to any via ed1 65535 1072 60182 allow ip from any to any # cat /etc/services | grep natd natd8668/divert # Network Address Translation Btw, when I used ipf + ipnat, internet for LAN users was good enough, but now it's horrible with natd + ipfw. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ntpd question
Matthew Seaman wrote: Unfortuately if you're going to run ntpd, you can't get rid of these: ntpd(8) will automatically bind to all interfaces on the system, and there are no controls within ntpd to control that. Darn. Thanks for the suggestions! I was already controlling access to the port with my ipfilter firewall, and will continue to do so. I just believe in not letting anything bind to a port, that isn't required to. -ste ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Firewall DSL performance
On Wed, Mar 10, 2004 at 08:10:05AM -0600, Darryl Hoar wrote: Well, last night I changed the ipf.rules file to be: pass in all keep state pass out all keep state to completely open my firewall to test my performance. Well, it didn't make a lick of difference. Still got 700K. If I open the firewall like I did, shouldn't performance be a non issue ? thanks, Darryl I wouldn't rule out the inside network card. I recently noticed something similar here and it turned out that, though a particular network card worked on the whole, it's performace was inexplicable miserable. We swapped out the cheap SiS card with a good 3Com card and the problem was solved. Is there any way that you could get ahold of another NIC to test? Nathan -- gpg --keyserver pgp.mit.edu --recv-keys D8527E49 pgp0.pgp Description: PGP signature
Re: ntpd question
On Tue, Mar 09, 2004 at 10:49:53PM -0500, Shaun T. Erickson wrote: I run ntpd to keep my server's time in sync with a remote server. In my netstat -a output, I see: Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) udp4 0 0 localhost.ntp *.* udp4 0 0 peter.ntp *.* udp4 0 0 *.ntp *.* I'm not running an ntp server, and would like these entries to go away. I've looked at the ntpd man page and haven't been able to find any option to tell it not to attach to ports. How can I do this? TIA. -ste You could run ntpd with the -q option, which should cause ntpd to run, update the clock and then exit. The ports will still be open during the time in which ntpd is running, which will likely only be a minute or two. This doesn't necessarily solve your issue, but it will allow for you to update your clock regularly and not have the ports open full time. I run ntpd through a cron job that is set to run once a day, at a time when Internet traffic is likely to be low. Nathan -- gpg --keyserver pgp.mit.edu --recv-keys D8527E49 pgp0.pgp Description: PGP signature
kernel arp errors
I am running 5.2.1 with two NIC's, both connected to a Cisco switch with a Cisco router also connected to the switch for Internet connectivity. There are 5 eth ports on the router, one of them with an address assigned of 66.129.101.193/28 and another with 66.129.101.217/29, the other eth ports are the ISP connection and other one other subnet. One port not used. On the FreeBSD host, the two NIC's are assigned with em0 as 66.129.101.198/28 and em1 as 66.129.101.219/29. These are the messages I am getting over and over, note the IP's are those of the router: Mar 10 10:35:49 esmtp kernel: arp: 66.129.101.193 is on em0 but got reply from 00:30:94:32:94:30 on em1 Mar 10 10:35:51 esmtp kernel: arp: 66.129.101.217 is on em1 but got reply from 00:30:94:32:94:32 on em0 I know I can do some config on the router to isolate subnet traffic to ports, but haven't done this, yet. Is this my problem or can someone help me understand what is going on? -- Robert ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Recycled cd's
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Aww! If I had more disposable income, I would purchase some. Nifty thing to have. Quintin Mark Ovens wrote: | Quintin Riis wrote: | | -BEGIN PGP SIGNED MESSAGE- | Hash: SHA1 | | That has to be worth millions! | | | | If that's the case then I can retire as I've got boxed sets of 2.0.5, | 2.2.5, 2.2.7, 2.2.8, and 3.1 here :-) | | I've also still got two sheets of FreeBSD stickers that Walnut Creek | used to send with the CD sets. | | Are you giving these away for free? :) | | | Not if they're worth millions ;-) | | Regards, | | Mark | | Quintin | | Alexei Khalimov wrote: | | | | | Hello there! | | | | I can send you 2.2.6 release 4CD box, if you wish =) | | | | ___ | [EMAIL PROTECTED] mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to | [EMAIL PROTECTED] | | | | -BEGIN PGP SIGNATURE- | Version: GnuPG v1.2.4 (MingW32) | Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org | | iD8DBQFATwROkt6kXuDr+LcRAvZzAKC1c4rpzaN3JtoPIDA80/kILi5DPwCgkPG5 | l4pPbQ/LmTzoIzChV2mgxYU= | =9Gay | -END PGP SIGNATURE- | | ___ | [EMAIL PROTECTED] mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to | [EMAIL PROTECTED] | | . | | | | ___ | [EMAIL PROTECTED] mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to | [EMAIL PROTECTED] | | | -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFATz4Rkt6kXuDr+LcRAqtgAKCdylC4F1NmKgN0YnSe1gszPi6v+QCdGBln LY1EeYhW2QABDltfix5i6VI= =YlqH -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using int 13 while BSD is running
--Signature=_Wed__10_Mar_2004_08_12_00_+0300_m3U9Vu7vS=cMcNXd Content-Type: text/plain; charset=US-ASCII Content-Disposition: inline Content-Transfer-Encoding: 7bit On Tue, 9 Mar 2004 14:03:34 -0800 Jason Dictos [EMAIL PROTECTED] probably wrote: The situation is this, currently we licenses Caldera DOS for a program we wrote which uses the int13 extensions to manipulate the systems hard drive (i.e. to recover partition tables and what not). This forces our application to be written in 16 bit mode, but it does allows us to not have to worry about loading any driver which would be hardware specific to access the hard drive. Through the /dev/ad[0-9] (ide) or /dev/da[0-9] (scsi/usb) you can get access to any byte in you harddrive. They `look like' ordinary files to most programs. Just seek the appropriate number of bytes and read what you want (0-512 is the mbr, for example). You don't even need to write a line in assembly for that, just plain C (or even shell-script, if you prefer that). Gee whiz, just let dd(1) do it for you. It can seek to any position and read any number of bytes of a disk.If it gets ornery, set the block size to 1 byte - a little slow and efficient, but then it won't have trouble with other block arrangements. jerry Is there any way to write a driver for BSD which would put the processor into real mode, therefore allowing us to use the int 13 api of the bios to read and write hard drives? Putting the cpu back into real mode is kind of perversion. And I don't think FreeBSD provides any real mode interface. Whatever you would see in real mode, you can bet it isn't a FreeBSD driver for your harddrive. -- DoubleF Romeo wasn't bilked in a day. -- Walt Kelly, Ten Ever-Lovin' Blue-Eyed Years With Pogo --Signature=_Wed__10_Mar_2004_08_12_00_+0300_m3U9Vu7vS=cMcNXd Content-Type: application/pgp-signature -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFATqOrwo7hT/9lVdwRAinPAJ9rsC9Tzum5970w88Ze0o+skKwbTgCbBE0S 6bUkIwtlJePcYTsq1Ja/0gU= =F4fi -END PGP SIGNATURE- --Signature=_Wed__10_Mar_2004_08_12_00_+0300_m3U9Vu7vS=cMcNXd-- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Recycled cd's
On Wednesday 10 March 2004 10:10 am, Quintin Riis wrote: Aww! If I had more disposable income, I would purchase some. Nifty thing to have. Quintin Mark Ovens wrote: | Quintin Riis wrote: | -BEGIN PGP SIGNED MESSAGE- | Hash: SHA1 | | That has to be worth millions! | | If that's the case then I can retire as I've got boxed sets of 2.0.5, | 2.2.5, 2.2.7, 2.2.8, and 3.1 here :-) | My CD sets include: 2.2.6, 2.2.8, 3.2, 3.3, 3.4, 4.1, 4.2, 4.3, 4.6, 4.7, 4.8, 4.9, 5.0 and 5.1 Toolkits include: Sept. 1999, June 2000, Feb. 2001 Burned sets include: 1.1, 5.2, 5.2.1 -- Best regards, Chris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
formail recipe
Hope I'm not imposing too much on this group.. but since this group has a collection of the best, brightest, and generous.. I wonder if someone might have a formail recipe that would randomly select N messages from a mailbox of M messages? I have a spam corpus thats well over 1 and need to trim it down. -- David Bear phone: 480-965-8257 fax:480-965-9189 College of Public Programs/ASU Wilson Hall 232 Tempe, AZ 85287-0803 Beware the IP portfolio, everyone will be suspect of trespassing ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IOCTL(SIOCIPFL6): Invalid Argument
Looking for some assistance, please: Working with FSBD 5.1. On reboot I see the following comment: ... Enabling ipfilter ioctl(SIOCIPFL6): Invalid Argument ... Google is mute on the subject except for listing where this item is used as a preprocessor directive. I have modified /etc/rc.d/ipfilter to remove the -E startup flag from 3 locations (which cleared up the ipfilter already initialized comments), but this problem was happening before I made that modification. I only mention it because the two issues (the Invalid Argument and the Ipfilter already initialized comments) may be related. I have tried turning off ipnat and ipmon in the rc.conf file, but this persists, leading me to believe the problem is in fact with the ipfilter command (or setup). Following is the rc.conf, ip.rules, and modified kernel file I am using: == /etc/rc.conf: defaultrouter=192.168.1.10 hostname=whatever.something.com ifconfig_xl0=inet 192.168.1.1 netmask 255.255.255.0 kern_securelevel_enable=YES kern_securelevel=1 inetd_enable=NO ipfilter_enable=YES ipfilter_rules=/etc/ipf.rules ipnat_enable=YES ipnat_rules=/etc/ipnat.rules ipmon_enable=YES ipmon_flags=-Dvn /var/log/firewall.log sendmail_enable=NONE sshd_enable=YES usbd_enable=YES nfs_server_enable=NO nfs_client_enable=NO portmap_enable=NO syslogd_enable=YES syslogd_flags=-ss log_in_vain=YES accounting_enable=NO clear_tmp_enable=YES update_motd=NO tcp_drop_synfin=YES icmp_drop_redirect=YES icmp_log_redirect=YES tcp_extensions=NO tcp_keepalive=YES icmp_bmcastecho=NO icmp_bandlim=YES == /etc/ip.rules: # Outbound rules pass out quick on xl0 proto tcp from any to any port = 80 flags S keep frags keep state pass out quick on xl0 proto tcp from any to any port = 22 flags S keep frags keep state pass out quick on xl0 proto tcp from any to any port = 5999 flags S keep state pass out quick on xl0 proto tcp from any to any port = 53 keep state keep frags block out quick on xl0 proto igmp all block out quick on xl0 proto icmp from any to any keep state block out quick on xl0 from !192.168.1.0/24 to any block out quick on xl0 from any to 2.0.0.0/8 block out quick on xl0 from any to 5.0.0.0/8 block out quick on xl0 from any to 10.0.0.0/8 block out quick on xl0 from any to 23.0.0.0/8 block out quick on xl0 from any to 27.0.0.0/8 block out quick on xl0 from any to 31.0.0.0/8 block out quick on xl0 from any to 69.0.0.0/8 block out quick on xl0 from any to 70.0.0.0/7 block out quick on xl0 from any to 72.0.0.0/5 block out quick on xl0 from any to 82.0.0.0/7 block out quick on xl0 from any to 84.0.0.0/6 block out quick on xl0 from any to 88.0.0.0/5 block out quick on xl0 from any to 96.0.0.0/3 block out quick on xl0 from any to 127.0.0.0/8 block out quick on xl0 from any to 128.0.0.0/16 block out quick on xl0 from any to 128.66.0.0/16 block out quick on xl0 from any to 169.254.0.0/16 block out quick on xl0 from any to 172.16.0.0/12 block out quick on xl0 from any to 191.255.0.0/16 block out quick on xl0 from any to 192.0.0.0/19 block out quick on xl0 from any to 192.0.48.0/20 block out quick on xl0 from any to 192.0.64.0/18 block out quick on xl0 from any to 192.0.128.0/17 block out quick on xl0 from any to 192.168.0.0/16 block out quick on xl0 from any to 197.0.0.0/8 block out quick on xl0 from any to 201.0.0.0/8 block out quick on xl0 from any to 204.152.64.0/23 block out quick on xl0 from any to 206.112.0.0/16 block out quick on xl0 from any to 224.0.0.0/3 block out on xl0 all # Inbound Packet Rules pass in quick on xl0 proto tcp from 192.168.1.36 to 192.168.1.227 port = 22 flags S keep frags keep state block in quick on xl0 proto tcp from any to any port = 10024 keep state block in quick on xl0 proto icmp from any to any keep state block in quick on xl0 proto igmp all block in quick on xl0 all with ipopts block in quick on xl0 all with frag block in quick on xl0 all with short block return-rst in quick on xl0 proto tcp all flags FUP block return-rst in quick on xl0 proto tcp from any to any block return-icmp-as-dest(port-unr) in quick on xl0 proto udp from any to any block in log quick on xl0 all with opt lsrr block in log quick on xl0 all with opt ssrr block in quick on xl0 from 0.0.0.0/7 to any block in quick on xl0 from 2.0.0.0/8 to any block in quick on xl0 from 5.0.0.0/8 to any block in quick on xl0 from 10.0.0.0/8 to any block in quick on xl0 from 23.0.0.0/8 to any block in quick on xl0 from 27.0.0.0/8 to any block in quick on xl0 from 31.0.0.0/8 to any block in quick on xl0 from 69.0.0.0/8 to any block in quick on xl0 from 70.0.0.0/7 to any block in quick on xl0 from 72.0.0.0/5 to any block in quick on xl0 from 82.0.0.0/7 to any block in quick on xl0 from 84.0.0.0/6 to any block in quick on xl0 from 88.0.0.0/5 to any block in quick on xl0 from 96.0.0.0/3 to any block in quick on xl0 from 127.0.0.0/8 to any block in quick on xl0 from 128.0.0.0/16 to any block in quick on xl0 from 128.66.0.0/16 to any block in
Re: Restore command line options
Grant Peel [EMAIL PROTECTED] writes: Have I missed some command line options here to avoide having to answer the perms and volume questions? I don't know, but the lang/expect port has one solution to running interactive programs non-interactively. See http://expect.nist.gov;. I think you can buy a paper book about expect. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Using int 13 while BSD is running
The goal here is simply this: To be able to write to a systems hard drive with just bios support. I dont' want to have to deal with bundling every known ide/scsi/raid adapter driver in a bsd kernel. Here's something that I found though that may be exactly what I have been looking for: http://sourceforge.net/projects/lrmi/ I'll be doing some tests with this to see how it works out. Thanks, -Jason -Original Message- From: Sergey 'DoubleF' Zaharchenko [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 10, 2004 5:51 AM To: Jason Dictos Cc: Dan Nelson; ''[EMAIL PROTECTED]' ' Subject: Re: Using int 13 while BSD is running On Tue, 9 Mar 2004 22:12:31 -0800 Jason Dictos [EMAIL PROTECTED] probably wrote: Aren't the nodes /dev/ad[0-9] (ide) or /dev/da[0-9] (scsi/usb) created by their device drivers, i.e. protected mode device drives? That would mean that I would have to make sure that the hardware is supported by a device driver, whereas if I had raw int 13 access I would be garanteed access to the drive the system booted from, and any other bios addressable device, without having to load any driver for the hardware. -Jason Argh, I didn't get your point first. I thought your hardware wasn't supported by int 13h, and you were trying to get FreeBSD drivers to work for you in real mode... Any real HDD's out there not supported by FreeBSD but supported by BIOS'en? Somewere around then Dan Nelson [EMAIL PROTECTED] probably replied: I guess it's possible, since you have to use the bios to make VESA video calls, and they work. /sys/i386/isa/vesa.c has most of the stuff you would need. Also see the i386_vm86() userland function; you may not even need to mess around inside the kernel. That's v86 mode, not real mode. Sometimes it makes a difference. It depends on how that particular BIOS was written. To Jason: take care not to *write* anything to the disk via int 13h. I still don't think I understand why you are using FreeBSD for this specific purpose. Why if you just spend time escaping from the OS? -- DoubleF All I ask is a chance to prove that money can't make me happy. __ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Using int 13 while BSD is running
DD's great and all, but I'm not talking about which method to use, I'm talking about a guaranteed way to access a device without having to rely on any device drivers. Take a look at this: http://sourceforge.net/projects/lrmi/ This provides a dpmi style interface for linux and bsd, thats exactly what I was looking for. Thanks, -Jason -Original Message- From: Jerry McAllister [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 10, 2004 8:14 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: Using int 13 while BSD is running --Signature=_Wed__10_Mar_2004_08_12_00_+0300_m3U9Vu7vS=cMcNXd Content-Type: text/plain; charset=US-ASCII Content-Disposition: inline Content-Transfer-Encoding: 7bit On Tue, 9 Mar 2004 14:03:34 -0800 Jason Dictos [EMAIL PROTECTED] probably wrote: The situation is this, currently we licenses Caldera DOS for a program we wrote which uses the int13 extensions to manipulate the systems hard drive (i.e. to recover partition tables and what not). This forces our application to be written in 16 bit mode, but it does allows us to not have to worry about loading any driver which would be hardware specific to access the hard drive. Through the /dev/ad[0-9] (ide) or /dev/da[0-9] (scsi/usb) you can get access to any byte in you harddrive. They `look like' ordinary files to most programs. Just seek the appropriate number of bytes and read what you want (0-512 is the mbr, for example). You don't even need to write a line in assembly for that, just plain C (or even shell-script, if you prefer that). Gee whiz, just let dd(1) do it for you. It can seek to any position and read any number of bytes of a disk.If it gets ornery, set the block size to 1 byte - a little slow and efficient, but then it won't have trouble with other block arrangements. jerry Is there any way to write a driver for BSD which would put the processor into real mode, therefore allowing us to use the int 13 api of the bios to read and write hard drives? Putting the cpu back into real mode is kind of perversion. And I don't think FreeBSD provides any real mode interface. Whatever you would see in real mode, you can bet it isn't a FreeBSD driver for your harddrive. -- DoubleF Romeo wasn't bilked in a day. -- Walt Kelly, Ten Ever-Lovin' Blue-Eyed Years With Pogo --Signature=_Wed__10_Mar_2004_08_12_00_+0300_m3U9Vu7vS=cMcNXd Content-Type: application/pgp-signature -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFATqOrwo7hT/9lVdwRAinPAJ9rsC9Tzum5970w88Ze0o+skKwbTgCbBE0S 6bUkIwtlJePcYTsq1Ja/0gU= =F4fi -END PGP SIGNATURE- --Signature=_Wed__10_Mar_2004_08_12_00_+0300_m3U9Vu7vS=cMcNXd-- __ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email __ __ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Using int 13 while BSD is running
To Jason: take care not to *write* anything to the disk via int 13h. I still don't think I understand why you are using FreeBSD for this specific purpose. Why if you just spend time escaping from the OS? We actually _like_ protected mode, it allows us to be more flexible and our code doesn't have to be bastardized with 16 dos compilers ;). However in dos we have garanteed hard drive support via int13 (Well almost garanteed, but if an os can boot of the computer, we can access the disk), and I'm looking for the same sorta garantee in BSD. People will be using this with raid controllers, scsi hard disks, and ide drives (Server recovery), so there will be many times when the hardware running the hd requires specific support, which BSD may or may not have, point is we dont' want to manage that. Make sense? -Jason -Original Message- From: Sergey 'DoubleF' Zaharchenko [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 10, 2004 5:51 AM To: Jason Dictos Cc: Dan Nelson; ''[EMAIL PROTECTED]' ' Subject: Re: Using int 13 while BSD is running On Tue, 9 Mar 2004 22:12:31 -0800 Jason Dictos [EMAIL PROTECTED] probably wrote: Aren't the nodes /dev/ad[0-9] (ide) or /dev/da[0-9] (scsi/usb) created by their device drivers, i.e. protected mode device drives? That would mean that I would have to make sure that the hardware is supported by a device driver, whereas if I had raw int 13 access I would be garanteed access to the drive the system booted from, and any other bios addressable device, without having to load any driver for the hardware. -Jason Argh, I didn't get your point first. I thought your hardware wasn't supported by int 13h, and you were trying to get FreeBSD drivers to work for you in real mode... Any real HDD's out there not supported by FreeBSD but supported by BIOS'en? Somewere around then Dan Nelson [EMAIL PROTECTED] probably replied: I guess it's possible, since you have to use the bios to make VESA video calls, and they work. /sys/i386/isa/vesa.c has most of the stuff you would need. Also see the i386_vm86() userland function; you may not even need to mess around inside the kernel. That's v86 mode, not real mode. Sometimes it makes a difference. It depends on how that particular BIOS was written. To Jason: take care not to *write* anything to the disk via int 13h. I still don't think I understand why you are using FreeBSD for this specific purpose. Why if you just spend time escaping from the OS? -- DoubleF All I ask is a chance to prove that money can't make me happy. __ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: formail recipe
I know what you mean. Mine's over 6700, and that's just since 1/1/04. I have no doubt whatsoever there are a good number of people here that have that beat several times over in the same period of time. What I do to trim mine down is just take the oldest messages out. Naturally, this can be tricky since the Date: header is often bogus, but it's a place to start. Come the end of the quarter, I'll be blocking off this archive folder and starting a new one. At that time, I'll be rebuilding my SA bayes db to make sure I have a 'correct' base. The next quarters worth (which I'd like to delude myself to believe will be smaller) will be feed in on a regular basis to keep the bayes db on track. The reason I suggest removing the oldest messages is that spammers seem to evolve their methods, and the bayes db will be most accurate with a more complete picture of CURRENT practices, with those methods no longer being used not affecting the current db. Over the last month, I've seen their evolving methods start sneaking in under the SA radar, and have slowly but surely dropped my threshold down to 1.0 rather than the default 5.0. So far, no FNs, and the FPs have gone away (for now). There will be lots of arguments to the contrary of at least some of what I've said here, but the great thing about all this is you get to decide what approach you have more confidence in. This is the approach I have more confidence in - though I'm open to any method of tweaking that method. Good luck. Lou On 03/10/04 09:27 AM, David Bear sat at the `puter and typed: Hope I'm not imposing too much on this group.. but since this group has a collection of the best, brightest, and generous.. I wonder if someone might have a formail recipe that would randomly select N messages from a mailbox of M messages? I have a spam corpus thats well over 1 and need to trim it down. -- David Bear phone:480-965-8257 fax: 480-965-9189 College of Public Programs/ASU Wilson Hall 232 Tempe, AZ 85287-0803 Beware the IP portfolio, everyone will be suspect of trespassing ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Louis LeBlanc [EMAIL PROTECTED] Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org ԿԬ An age is called Dark not because the light fails to shine, but because people refuse to see it. -- James Michener, Space ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using int 13 while BSD is running
On Wed, Mar 10, 2004 at 08:49:17AM -0800, Jason Dictos wrote: To Jason: take care not to *write* anything to the disk via int 13h. I still don't think I understand why you are using FreeBSD for this specific purpose. Why if you just spend time escaping from the OS? We actually _like_ protected mode, it allows us to be more flexible and our code doesn't have to be bastardized with 16 dos compilers ;). However in dos we have garanteed hard drive support via int13 (Well almost garanteed, but if an os can boot of the computer, we can access the disk), and I'm looking for the same sorta garantee in BSD. People will be using this with raid controllers, scsi hard disks, and ide drives (Server recovery), so there will be many times when the hardware running the hd requires specific support, which BSD may or may not have, point is we dont' want to manage that. Make sense? Just because you can boot from the disk does not mean that the BIOS can read the whole disk. As an example I have an old computer running FreeBSD with a 1GB disk. The BIOS in this computer cannot handle disks larger than 512MB (which was a quite common limitation in older BIOSs). I can however boot from this disk since all the files needed for booting reside below the 512MB mark. Once I have booted FreeBSD I can access the whole disk precisely because FreeBSD does *not* use the BIOS, but use its own routines. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
corrupted boot loader
my boot loader is corrupted during improper shutdown, is there anyway i can fix it w/o having local access to the machine? thx ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Using int 13 while BSD is running
Point well taken. -Jason -Original Message- From: Erik Trulsson [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 10, 2004 9:24 AM To: Jason Dictos Cc: 'Sergey 'DoubleF' Zaharchenko'; Dan Nelson; ''[EMAIL PROTECTED]' ' Subject: Re: Using int 13 while BSD is running On Wed, Mar 10, 2004 at 08:49:17AM -0800, Jason Dictos wrote: To Jason: take care not to *write* anything to the disk via int 13h. I still don't think I understand why you are using FreeBSD for this specific purpose. Why if you just spend time escaping from the OS? We actually _like_ protected mode, it allows us to be more flexible and our code doesn't have to be bastardized with 16 dos compilers ;). However in dos we have garanteed hard drive support via int13 (Well almost garanteed, but if an os can boot of the computer, we can access the disk), and I'm looking for the same sorta garantee in BSD. People will be using this with raid controllers, scsi hard disks, and ide drives (Server recovery), so there will be many times when the hardware running the hd requires specific support, which BSD may or may not have, point is we dont' want to manage that. Make sense? Just because you can boot from the disk does not mean that the BIOS can read the whole disk. As an example I have an old computer running FreeBSD with a 1GB disk. The BIOS in this computer cannot handle disks larger than 512MB (which was a quite common limitation in older BIOSs). I can however boot from this disk since all the files needed for booting reside below the 512MB mark. Once I have booted FreeBSD I can access the whole disk precisely because FreeBSD does *not* use the BIOS, but use its own routines. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] __ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email __ __ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: natd + ipfw - very slow internet for LAN users
Ping to an ip address does not use DNS. What is response time when you use ping domain name? It's ~250ms for google.com and other domains (good enough too). I see you have forced ip address for your nic card connected to the public internet by using rc.conf statement. This looks wrong to me. What's wrong with it? Can u give me other solutions? But anyway, with ipf + ipnat the internet speed is OK. Explain in detail how you connection to your ISP and the layout of your private network. Our ISP gave us ip and gateway, thats how we connect to internet (over dsl modem threw lan card). Some computers are connected in LAN via SWITCH. My router is connected to that switch too. Lan users have configured their OS, that gateway is 192.168.0.1 (my router's LAN ip address). -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Prodigy Sent: Wednesday, March 10, 2004 10:18 AM To: freebsd-questions Subject: natd + ipfw - very slow internet for LAN users Hi, i'm sharing internet to my local area network (LAN) users with my router. Everything would be fine, but internet is very slow. I tried to ping my ISP. Ping reply is ~50ms. It means, that internet for LAN users should be good enough, but it isn't. Ping reply in IRC is ~15 seconds. Then I try to open some internet pages, there is very big lag. Something is wrong with nating i think, can u tell me what? FreeBSD4.9-STABLE ipfw + natd Kernel configuration: # ... Some other stuff goes here options IPFIREWALL options IPFIREWALL_FORWARD options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=10 options IPFIREWALL_DEFAULT_TO_ACCEPT # Firewall is accepting all packets by default options IPDIVERT # ... Some other stuff goes here rc.conf: defaultrouter=213.190.42.1 # ISP gateway hostname=panemune.net ifconfig_ed0=inet 192.168.0.1 netmask 255.255.255.0 # Network (LAN) interface ifconfig_ed1=inet 213.190.42.48 netmask 255.255.255.0 # Internet (outside) interface # ... here goes some other stuff, like sshd_enable=YES, etc gateway_enable=YES firewall_enable=YES firewall_script=/usr/local/etc/rc.firewall firewall_quiet=YES firewall_logging=YES natd_enable=YES natd_interface=ed1 natd_flags=-f /usr/local/etc/natd.conf # cat /usr/local/etc/natd.conf same_ports yes use_sockets yes unregistered_only yes # cat /usr/local/etc/rc.firewall ipfw add 100 divert natd all from any to any via ed1 # ipfw show 00100 469 26801 divert 8668 ip from any to any via ed1 65535 1072 60182 allow ip from any to any # cat /etc/services | grep natd natd8668/divert # Network Address Translation Btw, when I used ipf + ipnat, internet for LAN users was good enough, but now it's horrible with natd + ipfw. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NIC-independent watchdog timeout on 5.2.1-R
Hey all, I'm trying to put 5.2.1-Release on my desktop at home, and I'm experiencing a couple of errors that have me confused. First, I get a number of module_register: module ???/??? already exists!\nModule ???/??? falied to register: 17 errors on startup (I'm including the dmesg output which includes these errors), and I also get a watchdog timeout for all of the 4 different network cards I've used in the machine. I've used: 2x Linksys LNE100TX v4 (dc driver) 1x Generic Belkin card (rl driver) 1x Intel Pro/100 (fxp driver) My guess is that these two problems are probably related, but since I've no idea how to resolve the first problem, I started troubleshooting the second: here's what I've found so far: I've read enough of the man pages to know that this is supposedly caused by the driver not getting a response that a packet was put on the wire successfully. But I am certain that the cards are good (I've pulled all but the 1st Linksys out of working machines to test this), and the cabling and connections are all good, too. I've used the same cards successfully in WinXP with no problems whatsoever on the same machine. I am experiencing this error with the install floppies, install CD, liveCD, and even after installation via CD with the generic kernel. Disabling ACPI has had no effect in this case. I've pulled all other cards (save my video card [GeForce FX5600]) out of the machine and tried each of the above cards, but still no luck. The motherboard for the machine in question is an Asus A7A266, running BIOS revision 1011. I'm attaching the verbose ACPI-enabled dmesg output from the liveCD in case it helps. At this point I don't know what to do. I've checked the archives, FAQ, bsdforums.org, etc, and I haven't found any situations that seem to apply for me. I'm guessing that it is something about my specific hardware combination or possibly a BIOS setting, but I thought I'd check here to see if anyone had any thoughts on either a solution or a workaround. I'd appreciate any help that can be given on this situation, because I'd love to move away from running WinXP on my desktop! ;-) -- Alan Gerber 0 11 12 slot 5 0 13B 0x01 3 4 5 7 9 10 11 12 slot 5 0 13C 0x02 3 4 5 7 9 10 11 12 slot 5 0 13D 0x03 3 4 5 7 9 10 11 12 embedded06A 0x05 3 4 5 7 9 10 11 12 embedded06D 0x01 3 4 5 7 9 10 11 12 embedded02A 0x59 3 4 5 7 9 10 11 12 embedded02D 0x01 3 4 5 7 9 10 11 12 slot 6 10A 0x01 3 4 5 7 9 10 11 12 slot 6 10B 0x02 3 4 5 7 9 10 11 12 slot 6 10D 0x01 3 4 5 7 9 10 11 12 acpi_bus_number: root bus has no _BBN, assuming 0 AcpiOsDerivePciId: bus 0 dev 7 func 0 acpi_bus_number: root bus has no _BBN, assuming 0 AcpiOsDerivePciId: bus 0 dev 7 func 0 acpi0: Power Button (fixed) ACPI timer looks BAD min = 2, max = 5, width = 3 ACPI timer looks BAD min = 2, max = 5, width = 3 ACPI timer looks GOOD min = 2, max = 4, width = 2 ACPI timer looks BAD min = 2, max = 5, width = 3 ACPI timer looks BAD min = 2, max = 5, width = 3 ACPI timer looks BAD min = 2, max = 5, width = 3 ACPI timer looks GOOD min = 2, max = 4, width = 2 ACPI timer looks GOOD min = 2, max = 4, width = 2 ACPI timer looks GOOD min = 2, max = 4, width = 2 ACPI timer looks GOOD min = 2, max = 4, width = 2 Timecounter ACPI-safe frequency 3579545 Hz quality 1000 acpi_timer0: 24-bit timer at 3.579545MHz port 0xe408-0xe40b on acpi0 acpi_cpu0: CPU on acpi0 acpi_button0: Power Button on acpi0 pcib0: ACPI Host-PCI bridge port 0xcf8-0xcff on acpi0 initial configuration \\_SB_.LNKF irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.5.0 \\_SB_.LNKA irq 11: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.5.3 \\_SB_.LNKH irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.3.0 \\_SB_.LNKA irq 11: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.3.3 \\_SB_.LNKG irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.8.0 \\_SB_.LNKA irq 11: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.8.3 \\_SB_.LNKA irq 11: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.12.0 \\_SB_.LNKB irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.12.1 \\_SB_.LNKC irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.12.2 \\_SB_.LNKD irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.12.3 \\_SB_.LNKB irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.11.0 \\_SB_.LNKC irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.11.1 \\_SB_.LNKD irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.11.2 \\_SB_.LNKF irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.11.3 \\_SB_.LNKC irq 0: [ 3 4 5 6 7 9 10 11 12 14 15] low,level,sharable 0.10.0 \\_SB_.LNKD irq 0: [ 3 4 5 6 7 9 10 11 12 14 15]
Re: Compiling Packages
On Wed, Mar 10, 2004 at 06:35:48AM -0500, Dan Pelleg wrote: What would be useful is multiple (e.g. at least half a dozen) fast machines with good network connectivity. Individual machines aren't much help, I'm afraid. Thanks for the offer though. Just a thought - a distcc based system should be able to take advantage of such offers. (No, I'm not volunteering to set one up). Many packages cannot be built with distcc (I tried), and network latency would be a big handicap for using remote machines. Then there are the security concerns, etc. Kris pgp0.pgp Description: PGP signature
Newbie install goes well until...
I am installing FreeBSD 5.2.1 on an AMD 64 3000+, w/ 512Meg RAM. Booting from CDROM with the Boot CD (pulled from the FTP site as an ISO image, burned in Win XP). All the necessary hardware is detected without errors, I am able to get as far as partioning my drives (setup root, swap, /var, /usr) and choose to install All from the Choose Distribution screen. The installation starts -- but the Boot CD returns an error Unable to find a /dist/cdrom.inf file, and indicates that it is unable to continue with the install. The Mini-install has the /dist/cdrom.inf file, but shortly after install starts I receive a Either this is not a Free-BSD disc, there is a problem with the CDROM driver or something is wrong with the hardware. Please fix this problem (check the console logs on VTY2) and try again. I am unable to access/eject the CD drive once these errors occur (CDROM drive goes dead). My CDROM is a Creative 52x CD5220 (occording to the Bios) and is correctly recognized by the installer. How do I check the console logs on VTY2? (or have I obtained a bad iso set?) stewy _ MSN Premium with Virus Guard and Firewall* from McAfee® Security : 2 months FREE* http://join.msn.com/?pgmarket=en-capage=byoa/premxAPID=1994DI=1034SU=http://hotmail.com/encaHL=Market_MSNIS_Taglines ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Per-User QUOTA's vs blocksize
Hello, - Original Message - From: Scott Mitchell [EMAIL PROTECTED] To: To Matthew Seaman Date: Wed, 10 Mar, 2004 09:56 GMT Subject: Re: Per-User QUOTA's vs blocksize On Tue, Mar 09, 2004 at 02:05:54PM +, Matthew Seaman wrote: On Mon, Mar 08, 2004 at 06:48:51PM +, Stacey Roberts wrote: You may limit allocations based on disk space (block quotas) What exactly is the size of a block? As the quota system uses the term, a block is 512b -- this unit is also called a sector in some situations, but it's basically the same thing. It reflects the size of the underlying sector structures within the filesystem. True, but the term is used inappropriately by the quota tools and their documentation - these appear to work exclusively in KB units for their (ahem) 'block' quotas, at least on recent versions on FreeBSD. See, for example, rev. 1.18 of edquota.c and the associated PR: http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/edquota/edquota.c?rev=1.18content-type=text/x-cvsweb-markup http://www.freebsd.org/cgi/query-pr.cgi?pr=41936 This is crazy.., there's not one iota on attempting to clarify this in the online HandBook. There's a lot of explicit [some number of bytes]/1024 calculations in the various quota tools. I have empirical evidence of this too - I set up 'block' quotas for my users many moons ago, assuming 512 byte blocks. I was then quite surprised to run out of disk space last weekend, with du(1) showing several users massively over quota, but repquota(8) saying all was well. Halving all the quota settings keeps everything in agreement. The documentation is certainly misleading on this point. I'll file a PR, unless anyone cares to beat me to it... I'll submit a PR now.., Thanks for this. Regards, Stacey Scott -- === Scott Mitchell | PGP Key ID | Eagles may soar, but weasels Cambridge, England | 0x54B171B9 | don't get sucked into jet engines scott at fishballoon.org | 0xAA775B8B | -- Anon ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Stacey Roberts B. Sc (HONS) Computer Science Web: www.vickiandstacey.com pgp0.pgp Description: PGP signature
IPFW question
Hi! I'm using my own ip firewall (firewall_type=/etc/ipfw.conf) on my FreeBSD 5.2 system. My problem is, how can I reload the whole thing? The ipfw command is for creating and deleting individual rules. What I would like to do is to create profiles (different config files) and reload the whole firewall configuration anytime. Is there a command for this? What I do now is that I reboot my box every time I change firewall configuration. But of course this is clumsy and very bad. I may start services on the server which will not allow me to reboot daily. Thanks in advance. Laci 2.0 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Server access using Samba from out side LAN.
Hey guys, I have a FreeBSD server and windows XP workstations in our LAN network.I use samba to access server files from XP machines. Very soon, I will be having a windows XP system outside our LAN that needs access to our FreeBSD server. Is there any way i can access the server data from that XP system the same way as i do from my workstations in our LAN. As far as i know, samba only works with the computers in same LAN, please correct me if I am wrong. Thanks in advance. Naveen - Do you Yahoo!? Yahoo! Search - Find what youre looking for faster. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compiling Packages
Kris Kennaway wrote: On Wed, Mar 10, 2004 at 05:44:14AM -0500, Gerard Seibert wrote: A few days ago, I posted that packages are not as current as ports are on FreeBSD. When I made that statement, someone, I forget whom, claimed that they need more machines to compile the code and wanted to know if I wanted to donate, or words to that affect. In any case, would that refer to donating an actual computer, or simply donating computer time? I have three computers, only one running FreeBSD at this time. I certainly am not going to give away any of my computers, but I would be willing to share time on one of them if that would help. What would be useful is multiple (e.g. at least half a dozen) fast machines with good network connectivity. Individual machines aren't much help, I'm afraid. Thanks for the offer though. kris Sorry to jump in both uninvited, and late...and, to boot, with just so much theoretical hogwash; I thought it might be of interest to the discussion at hand. I've been getting more interested in clustering. With all the hoopla (as it were) about BSD clusters, would one fast cluster do this task? (i.e., could you build packages over MPI?) Not that I have 'em, but my server farm is growing faster than my hosting business... and I'm hoping to get situated with a faster connection soon. Heh, if it can work that way, maybe we should beg from Matt or Brooks? :-D Kevin Kinsey DaleCo, S.P. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Server access using Samba from out side LAN.
On Wed, Mar 10, 2004, samy lancher wrote: Hey guys, I have a FreeBSD server and windows XP workstations in our LAN network.I use samba to access server files from XP machines. Very soon, I will be having a windows XP system outside our LAN that needs access to our FreeBSD server. Is there any way i can access the server data from that XP system the same way as i do from my workstations in our LAN. As far as i know, samba only works with the computers in same LAN, please correct me if I am wrong. You can configure Samba to server on different LANs, but I would strongly suggest that you do this only over a VPN connection. The Microsoft networking ports are frequent vectors for worms that infect the Microsoft virus, Windows, and many responsible ISPs block them at their border routers. These blocks go back about ten years to the WinNuke attacks which hit the netbios ports 137-139. We have customers doing this with the LinkSys VPN boxes (part number BEFVP41), on cable and DSL connections with excellent results. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 http://www.celestial.com/ You need only reflect that one of the best ways to get yourself a reputation as a dangerous citizen these days is to go about repeating the very phrases which our founding fathers used in the struggle for independence. -- Charles A. Beard ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Server access using Samba from out side LAN.
Thanks for the reply. The XP system outside our LAN is not in another LAN. It is just an individual system. So does it work the same for this system. Could you please refer any good manual to achieve my goal. Thanks. Bill Campbell [EMAIL PROTECTED] wrote: On Wed, Mar 10, 2004, samy lancher wrote: Hey guys, I have a FreeBSD server and windows XP workstations in our LAN network.I use samba to access server files from XP machines. Very soon, I will be having a windows XP system outside our LAN that needs access to our FreeBSD server. Is there any way i can access the server data from that XP system the same way as i do from my workstations in our LAN. As far as i know, samba only works with the computers in same LAN, please correct me if I am wrong. You can configure Samba to server on different LANs, but I would strongly suggest that you do this only over a VPN connection. The Microsoft networking ports are frequent vectors for worms that infect the Microsoft virus, Windows, and many responsible ISPs block them at their border routers. These blocks go back about ten years to the WinNuke attacks which hit the netbios ports 137-139. We have customers doing this with the LinkSys VPN boxes (part number BEFVP41), on cable and DSL connections with excellent results. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 http://www.celestial.com/ You need only reflect that one of the best ways to get yourself a reputation as a dangerous citizen these days is to go about repeating the very phrases which our founding fathers used in the struggle for independence. -- Charles A. Beard ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] - Do you Yahoo!? Yahoo! Search - Find what youre looking for faster. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW question
On Mar 10, 2004, at 1:52 PM, Nagy László Zsolt wrote: I'm using my own ip firewall (firewall_type=/etc/ipfw.conf) on my FreeBSD 5.2 system. My problem is, how can I reload the whole thing? Try sh /etc/rc.firewall, or ipfw -p /bin/cat /etc/ipfw.conf. If you are not on the console of the machine, it might be advisable to use nohup or an to background the command while running -- -Chuck ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW question
Hi ipfw flush # deletes all ipfw /etc/ipfw.conf # loads all regards Thomas Nagy Lszl Zsolt wrote: Hi! I'm using my own ip firewall (firewall_type=/etc/ipfw.conf) on my FreeBSD 5.2 system. My problem is, how can I reload the whole thing? The ipfw command is for creating and deleting individual rules. What I would like to do is to create profiles (different config files) and reload the whole firewall configuration anytime. Is there a command for this? What I do now is that I reboot my box every time I change firewall configuration. But of course this is clumsy and very bad. I may start services on the server which will not allow me to reboot daily. Thanks in advance. Laci 2.0 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
usb-serial adapter doesnt work
Hello, Ive got laptop Toshiba Satellite A20-s103. There are no comms port, but 3 USBs. I need get to console to some server, so i purchased an USB-RS232 adapter. My system recognized it, but i cant `cu` or `tip` to any machine... :( Could somebody help me make it work? Part of `dmesg`: ugen0: Prolific Technology PL2303 Serial adapter (ATEN/IOGEAR UC232A), rev 1.10/ 2.02, addr 2 ohci0: NEC uPD 9210 USB controller mem 0xf7efc000-0xf7efcfff irq 11 at device 12.0 on pci0 usb0: OHCI version 1.0 usb0: SMM does not respond, resetting usb0: NEC uPD 9210 USB controller on ohci0 usb0: USB revision 1.0 uhub0: NEC OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 3 ports with 3 removable, self powered ugen0: Prolific Technology PL2303 Serial adapter (ATEN/IOGEAR UC232A), rev 1.10/2.02, addr 2 ###AN_ADAPTER ohci1: NEC uPD 9210 USB controller mem 0xf7efb000-0xf7efbfff irq 11 at device 12.1 on pci0 usb1: OHCI version 1.0 usb1: NEC uPD 9210 USB controller on ohci1 usb1: USB revision 1.0 uhub1: NEC OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered root# ls /dev/ugen0* /dev/ugen0 /dev/ugen0.12 /dev/ugen0.2/dev/ugen0.6 /dev/ugen0.1/dev/ugen0.13 /dev/ugen0.3/dev/ugen0.7 /dev/ugen0.10 /dev/ugen0.14 /dev/ugen0.4/dev/ugen0.8 /dev/ugen0.11 /dev/ugen0.15 /dev/ugen0.5/dev/ugen0.9 On a hardware notes ive read, that it needs a 'uplcom' driver, so i loaded it to kernel: root# kldstat Id Refs AddressSize Name 16 0xc010 3516a0 kernel 21 0xc1e4a000 7000 linprocfs.ko 31 0xc1ec 3000 daemon_saver.ko 41 0xc1ec3000 15000linux.ko 51 0xc204c000 3000 uplcom.ko 61 0xc205 4000 ucom.ko And tried to connect... : root# ls /dev/ucom0 /dev/ucom0 root# cu -l /dev/ucom0 cu: open (/dev/ucom0): Device not configured cu: /dev/ucom0: Line in use Tried to connect thru 'ugen' too... As you can see-no help. root# cu -l /dev/ugen0 Connected. cu: Got hangup signal Disconnected. root# cu -l /dev/ugen0.1 cu: open (/dev/ugen0.1): Device not configured cu: /dev/ugen0.1: Line in use root# cu -l /dev/ugen0.2 cu: open (/dev/ugen0.2): Device not configured cu: /dev/ugen0.2: Line in use root# cu -l /dev/ugen0.3 cu: open (/dev/ugen0.3): Device not configured cu: /dev/ugen0.3: Line in use Pls help. Thanks, Maciek ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW question
On Wed, Mar 10, 2004 at 07:52:06PM +0100, Nagy László Zsolt wrote: FreeBSD 5.2 system. My problem is, how can I reload the whole thing? The /sbin/ipfw -q /path/to/your/custom/rulesetfile No RTFM intended - there are further options, plese have a look at the ipfw(8) man page. Regards, Martin -- ,,Oh, there's a lot of opportunities, if you're knowing to take them, you know, there's a lot of opportunities, if there aren't you can make them, make or break them!'' (Tennant/Lowe) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Server access using Samba from out side LAN.
On Wed, Mar 10, 2004, samy lancher wrote: Thanks for the reply. The XP system outside our LAN is not in another LAN. It is just an individual system. So does it work the same for this system. Could you please refer any good manual to achieve my goal. There are IPSec clients that run on XP that will connect to the LinkSys and similar VPN boxes from Netgear and others. As a general rule, no Windows box should ever be connected directly to the Internet as there are far too many ways for worms to access the Microsoft virus, Windows with a direct connection. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ Those who profess to favor freedom, and yet depreciate agitation, are men who want rain without thunder and lightning. They want the ocean without the roar of its many waters. -- Frederick Douglass ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IPFW question
Since I reload the firewall rules remotely, I need the -q option on the ipfw command, e.g.: ipfw -q /etc/ipfw.conf otherwise I lose my ssh connection to the box. See man ipfw(8) for details on -q On 3/10/2004 at 8:27 PM Thomas Vogt wrote: |Hi | |ipfw flush # deletes all |ipfw /etc/ipfw.conf # loads all | |regards |Thomas | |Nagy Lszl Zsolt wrote: | | Hi! | | I'm using my own ip firewall (firewall_type=/etc/ipfw.conf) on my | FreeBSD 5.2 system. My problem is, how can I reload the whole thing? The | ipfw command is for creating and deleting individual rules. What I would | like to do is to create profiles (different config files) and reload the | whole firewall configuration anytime. Is there a command for this? What | I do now is that I reboot my box every time I change firewall | configuration. But of course this is clumsy and very bad. I may start | services on the server which will not allow me to reboot daily. Thanks | in advance. | | Laci 2.0 | | ___ | [EMAIL PROTECTED] mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to | [EMAIL PROTECTED] | | | |___ |[EMAIL PROTECTED] mailing list |http://lists.freebsd.org/mailman/listinfo/freebsd-questions |To unsubscribe, send any mail to |[EMAIL PROTECTED] = ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[5.2.1] trouble with an USB key
On a FreeBSD 5.2.1, I have an *OLD* USB disk which works: [ ... ] kernel: vendor 0x0c45 USB Mass Storage Device, rev 1.10/1.00, addr 2 [ ... ] [ ... ] kernel: da2: 31MB (64000 512 byte sectors: 64H 32S/T 31C) Another one fails: [ ... ] umass0: Kingston DataTraveler2.0, rev 2.00/2.00, addr 2 No da2 appears... Is it because this second USB disk is USB2? Is there any way to use it? Thanks, -- Jacques Beigbeder| [EMAIL PROTECTED] Service de Prestations Informatiques | http://www.spi.ens.fr Ecole normale supérieure | 45 rue d'Ulm |Tel : (+33 1)1 44 32 37 96 F75230 Paris cedex 05|Fax : (+33 1)1 44 32 20 75 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: XEmacs woes...
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Gary W. Swearingen wrote: | Henrik W Lund [EMAIL PROTECTED] writes: | | right after it has loaded view-less.el. I tried looking through | view-less.el, but to no avail. | | | You might try putting this in your .emacs file: | | (setq debug-on-error t) | | (Or before you read the file that started the problem, pull down | the Options/Troubleshooting menu and set the Debug on Error | button.) | | I think it will then stop on your error, leaving a stack track in | a lower window and I forget what in an upper window (maybe | view-less.el). | | Good luck, and don't fail to try Gnus (after considerable reading | of it's info). Well, it generated output allright. Nothing that makes sense (unless I sit down and learn an entire programming language, which seems huge and cryptic, by the way), though. Here it is: Signaling: (invalid-regexp Invalid syntax designator) ~ signal(invalid-regexp (invalid syntax designator)) ~ byte-code(... [kill-buffer buf signal data] 3) ~ find-file-noselect(/usr/home/henrik/devel/sdl/lesson1/tutorial1.cpp) ~ find-file(/usr/home/henrik/devel/sdl/lesson1/tutorial1.cpp nil) ~ call-interactively(find-file) ~ #compiled-function nil ...(4) [call-interactively toolbar-open-function] 2 call-interactively(toolbar-open) ~ release-and-activate-toolbar-button(#buttonup-event button1up) ~ call-interactively(release-and-activate-toolbar-button) And I thought C code was cryptic... Anyway, thanks for your help so far. - -Henrik W Lund -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFAT3WznzC5lcw9P3IRAmcUAJ0esJKk0pB1sZcZRPS8zAsVynv+cACfXzXq 9AudrzCUfYpB476hwwyaNZ8= =7CLx -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading FreeBSD 3.5
I wish this was an option for me but the contracted machine is in CW's network operation center, not mine. I have no access to there machine besides remote root. James - Original Message - From: Vulpes Velox [EMAIL PROTECTED] To: Crucial Servers [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, March 10, 2004 1:37 AM Subject: Re: Upgrading FreeBSD 3.5 On Wed, 10 Mar 2004 02:33:34 -0500 Crucial Servers [EMAIL PROTECTED] wrote: Hi, I need some advice on steps for upgrading a very valueble machine. This machine has an uptime of 393 days. I need to install a secure version of curl this is our main focus right now. FreeBSD 3.5 ports collection is very b0rked and nothing works, I tried downloading the cvsup source and installing it, but now it cant find m3build. My main focus is getting this OS to 4.9-STABLE the SAFE way and Yes its a contracted machine so its remote. I know there is going to be tons of b0rked programs when I'm all said and done. Can someone please explain how to tackle this animal slowly, I was thinking 4.0 then 4.5 then 4.9. If I can avoid this all together and install a secured version of curl it would be appreaciated. I really cant find the source anywhere. No clue what it would take to cvsup that... but what I would do is throw together a 4stable install together on another similar box and take care of all the tweakings, data importing, and ect. Then when that machines scheduled downtime/maintance/whatever arrivces swap out either the drive or the entire machine. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
re: SOLVED :-) Re: Wierd time changes
Hi Mark! Gee, who would have thought that it was the keyboard. Thanks for your ideas. I recompiled the kernel (Compaq SP700 dual PII-450) following the NOTES guidelines and your email, with these enabled: # To make an SMP kernel, the next two are needed options SMP # Symmetric MultiProcessor Kernel device apic# I/O APIC options NO_MIXED_MODE options BROKEN_KEYBOARD_RESET options EISA_SLOTS=12 and in /boot/loader.conf kern.timecounter.method=1 I still got the broken time (10 second test lasts 22 seconds). The server also hung upon the 'reboot' command while releasing the CPU1. Since it is a production server, I switched back to my single CPU kernel. If you have any other suggestions, I'd appreciate the input. Thanks, Denis I've solved it and I bet you can't guess what it was - it was the fscking keyboard!!! After spending the last 8 hours building kernels (about 20) with unnecessary stuff removed and trying various options documented in /sys/i386/conf/NOTES I finally nailed it down. What made me wonder was a kernel option BROKEN_KEYBOARD_RESET skip ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
tty-level buffer overflows
I've been searching for an answer to this for a while now. My freebsd box (4.9-RELEASE + Custom Kernel) runs ppp just fine (ppp -ddial from rc.conf) and I have no problems connecting. The problem I have is that after a while my connection will hang, but not disconnect, and I have a ton of sio4: ### tty-level buffer overflow messages in dmesg.today and dmesg.yesterday. my modem (3com pci faxmodem) is found to be on sio0 at boot and is moved to sio4: sio0: 3COM PCI FaxModem port 0xfff0-0xfff7 irq 9 at device 15.0 on pci0 sio0: moving to sio4 sio4: type 16550A sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 16550A sio1 at port 0x2f8-0x2ff irq 3 on isa0 sio1: type 16550A The modem is a hardware modem, thats the only reason I bought a pci modem in the first place (that and it was much cheaper than my normal isa pick). Anyhow, I have a feeling that the overflows are directly related to the hangup and viceversa but I still haven't found out how to fix it. I get no errors in the ppp.log, I have no trouble doing much of anything, though if I use an ftp client to download/upload something I will get my connection to hang much faster than if I was just doing the normal web/irc/email thing (and sometimes downloading from the web causes it to hang, sometimes it doesn't). One of the few things that I found and thought would work was from 1997, and it didn't apply to my current install (I tried, the kernel complained), I've seen plenty of things about people changing gettytab and ttys and ttyd0 and cuaia0, but those mainly applied to actual userppp problems. Help? http://www.lik-sang.com/default.php?lsaid=166534 - Video Games Accessories ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sendmail config query
Hiya, I am running FreeBSD 5.1-RELEASE-p10 and want to configure SMTP-AUTH/TLS. A friend gave me some instructions on how to do it and they talk about editing $SRC/devtools/Site/site.config.m4 $SRC being the sendmail source of course. My friend is not a FreeBSD user so I can't ask him for help. I just have a standard install of sendmail on a normal system build. Can someone point me in the right direction as to where this file should be? I have searched for it and it does not exist in the current system - Is there a directory somewhere that I can add it to so it will be included in a sendmail build? Thank you for reading and hopefully responding. Cheers, Chris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
VPN Suggestions Please
Evening All, I am looking for the best way to connect the following machines together with a VPN. wk2 --FreebsdNT4 Server We have users with wk2 at home. We have a FreeBSD machine sitting on both internal and external network. They want to be able to get files off the NT server. Look forward to your comments or suggestions. Thanks Zen ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD, SSH and Enter Authentication Response
To quote Ringo Starr ala The Simpsons, Please forgive the lateness of my reply. Matthew: Your suggestion worked beautifully. Changing /etc/ssh/sshd_config solved my confirmation login problem quite nicely. Just to confirm, I am running the version of SSH that comes standard with FreeBSD 5.1-RELEASE. -- Rishi Chopra http://www.ocf.berkeley.edu/~rchopra Matthew Seaman wrote: On Tue, Jan 13, 2004 at 01:30:15PM -0800, Rishi Chopra wrote: I've included copies of my /etc/ssh/ssh_config file and /etc/pam.d/ssh - I'm running a default minimal installation of FreeBSD 5.2: etc/ssh/ssh_config: Um... /etc/ssh/sshd_config is more to the point -- ssh_config is for the client side, ssh*d*_config is for the server side. However if you've just installed the system then chances are the sshd_config is unmodified from the default settings. Try turning off the challenge-response stuff as I suggested in my earlier e-mail. ie. make it so that sshd_config contains: ChallengeResponseAuthentication no /etc/pam.d/ssh That looks fine. Hmmm... This does look like a peculiar interaction of your particular SSH client software and the OpenSSH server code on FreeBSD. Normally I'd suggest running the client side connection with debugging turned up high, eg: % ssh -v -v -v host.example.com but I don't know what the equivalent of that is for the client software you're using. A very good diagnostic test though is to run the server side with the debugging turned up. A good trick is to run it on an alternative port so you can run it in parallel with your regular sshd. eg: # sshd -d -d -d -p 24 You can then connect to the alternate port by: % ssh host.example.com:24 This will produce quite a lot of output, and exit after the ssh session. By comparing this output to the equivalent output from a machine where you don't have the problem you should be able to tell what the FreeBSD box is doing differently, and maybe work out how to fix it. Be aware that the full debug output from sshd should not be published as it can contain privileged information. Cheers, Matthew ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
3com modem
Have a 3com pci internal vioce modem installed in my 4.9 stable system but don't seem to be able to activate it sould this not happen automagically? I do not see it in the dmesg logs at all i am pretty sure that comm ports are compiled into the kernel. How do i go about ckecking it or troubleshooting something that does not appear to be there i need somewhere to start please help. kernel conf # Serial (COM) ports device sio0at isa? port IO_COM1 flags 0x10 irq 4 device sio1at isa? port IO_COM2 irq 3 device sio2at isa? disable port IO_COM3 irq 5 device sio3at isa? disable port IO_COM4 irq 9 dmesg log mabey the first line has something to do with my modem not sure. pci0: unknown card (vendor=0x12b9, dev=0x1008) at 15.0 irq 15 sio0: configured irq 4 not in bitmap of probed irqs 0 sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 8250 sio1: configured irq 3 not in bitmap of probed irqs 0 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Server access using Samba from out side LAN.
Ok, here is what i understood. I need to set up VPN server on my FreeBSD server giving permission to the outside XP system to access the server. On the outside XP system, I need to connect VPN box (eg. LinkSys part number BEFVP41) to the system and this one does not require any additional VPN client because the builtin IPSec client in XP machine will create a tunnel between the client and server. Please correct me if I am wrong. Thanks, naveen. Bill Campbell [EMAIL PROTECTED] wrote:On Wed, Mar 10, 2004, samy lancher wrote: Thanks for the reply. The XP system outside our LAN is not in another LAN. It is just an individual system. So does it work the same for this system. Could you please refer any good manual to achieve my goal. There are IPSec clients that run on XP that will connect to the LinkSys and similar VPN boxes from Netgear and others. As a general rule, no Windows box should ever be connected directly to the Internet as there are far too many ways for worms to access the Microsoft virus, Windows with a direct connection. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ Those who profess to favor freedom, and yet depreciate agitation, are men who want rain without thunder and lightning. They want the ocean without the roar of its many waters. -- Frederick Douglass ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] - Do you Yahoo!? Yahoo! Search - Find what youre looking for faster. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SOLVED :-) Re: Wierd time changes
Denis R. wrote: Hi Mark! Gee, who would have thought that it was the keyboard. Thanks for your ideas. I recompiled the kernel (Compaq SP700 dual PII-450) following the NOTES guidelines and your email, with these enabled: # To make an SMP kernel, the next two are needed options SMP # Symmetric MultiProcessor Kernel device apic# I/O APIC options NO_MIXED_MODE options BROKEN_KEYBOARD_RESET options EISA_SLOTS=12 and in /boot/loader.conf kern.timecounter.method=1 I still got the broken time (10 second test lasts 22 seconds). The server also hung upon the 'reboot' command while releasing the CPU1. Since it is I had that (hanging) at one point; IIRC it was NO_MIXED_MODE that caused it. a production server, I switched back to my single CPU kernel. If you have any other suggestions, I'd appreciate the input. Only to try with different value for kern.timecounter.method, but that's just a guess. Does the output from ''sysctl -a kern.timecounter'' yield any clues? Apart from that I really can't be of any help. I take it you've done the obvious and searched the mailing list and Google? Regards, Mark Thanks, Denis I've solved it and I bet you can't guess what it was - it was the fscking keyboard!!! After spending the last 8 hours building kernels (about 20) with unnecessary stuff removed and trying various options documented in /sys/i386/conf/NOTES I finally nailed it down. What made me wonder was a kernel option BROKEN_KEYBOARD_RESET skip ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IDE cd-burner, Can it be done???
I have a IDE cd-burner in my FreeBSD 5.1 box. I have installed cdrecord from the ports but this looks like it needs a SCSI drive. Is there a CMD line cd-record package that works with a IDE cd-burner. Here is a line from dmesg: acd0: CD-RW MEMOREX CD-RW4224 at ata1-master PIO4 uname -a: 5.1-RELEASE FreeBSD 5.1-RELEASE #0: Thu Jun 5 02:55:42 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IDE cd-burner, Can it be done???
I have a IDE cd-burner in my FreeBSD 5.1 box. I have installed cdrecord from the ports but this looks like it needs a SCSI drive. Is there a CMD line cd-record package that works with a IDE cd-burner. Here is a line from dmesg: /usr/sbin/burncd -- Cordula's Web. http://www.cordula.ws/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Java installation: pdmu not found
Well after a lot of steps i've had succes in doing portupgrade -ra Strangely kde wasn't updateddo I have to change some settings? But my real problem is Java. The port has been installed (it was very quick...I've read about some hours??) . But when I try to start java I get the message: Error ID: 4F533F4C494E55580E43505001C9 Heap at VM abort Heap The process also can't be stopped anymore. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading FreeBSD 3.5
On Wed, Mar 10, 2004 at 03:06:19PM -0500, Crucial Servers wrote: I wish this was an option for me but the contracted machine is in CW's network operation center, not mine. I have no access to there machine besides remote root. It's going to be pretty dangerous to update, then. You need some kind of fallback option when things go wrong - a remote serial console would be best. At the very least, set up an identical system locally that you can practise on. Kris pgp0.pgp Description: PGP signature
Re: SOLVED :-) Re: Wierd time changes
Mark, No clue from sysctl -a. Yes, I've looked through archives and google. Since I don't see a lot of performance improvement from using the second CPU, I will leave this issue alone for now. Hopefully, someone will post a sweet solution to this bugging issue. Thanks for your help, Denis Only to try with different value for kern.timecounter.method, but that's just a guess. Does the output from ''sysctl -a kern.timecounter'' yield any clues? Apart from that I really can't be of any help. I take it you've done the obvious and searched the mailing list and Google? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: IDE cd-burner, Can it be done???
[EMAIL PROTECTED] wrote: I have a IDE cd-burner in my FreeBSD 5.1 box. I have installed cdrecord from the ports but this looks like it needs a SCSI drive. Is there a CMD line cd-record package that works with a IDE cd-burner. Here is a line from dmesg: acd0: CD-RW MEMOREX CD-RW4224 at ata1-master PIO4 uname -a: 5.1-RELEASE FreeBSD 5.1-RELEASE #0: Thu Jun 5 02:55:42 short answer - maybe. there currently is a cam layer for atapi devices (ATAPICAM). take a look at NOTES. I know it has(had)? some problems on some machines. I don't use it, so i'm not sure. ~j -- Jonathan T. Sage Theatrical Lighting / Set Designer Professional Web Design [HTTP://www.JTSage.com] [EMAIL PROTECTED] [See Headers for Contact Info] signature.asc Description: OpenPGP digital signature
GCC 3.3 seg faulting
I've recently installed FreeBSD 5.2.1 on an old system, mainly since I need bluetooth support. After trying to install a couple of ports, I've found that the default gcc compiler version 3.3.3-20031106 keeps segment faulting at different times. If I keep restarting the port install, it will eventually complete, but slowly. I can't seem to find and reports about this, but I'd like to try and fix it by installing a newer gcc from the ports collection. Since gcc is also part of the core system, that means I'll end up with too version of gcc, will this be a problem and is there an easy way to make sure that the right version of gcc is executed? -- I sense much NT in you. NT leads to Bluescreen. Bluescreen leads to downtime. Downtime leads to suffering. NT is the path to the darkside. Powerful Unix is. Public Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C pgp0.pgp Description: PGP signature
Re: GCC 3.3 seg faulting
On Wed, Mar 10, 2004 at 03:02:47PM -0800, Loren M. Lang wrote: I've recently installed FreeBSD 5.2.1 on an old system, mainly since I need bluetooth support. After trying to install a couple of ports, I've found that the default gcc compiler version 3.3.3-20031106 keeps segment faulting at different times. If I keep restarting the port install, it will eventually complete, but slowly. This is a fundamental sign of hardware problems. Kris pgp0.pgp Description: PGP signature
Re: Server access using Samba from out side LAN.
On Wed, Mar 10, 2004, samy lancher wrote: Ok, here is what i understood. I need to set up VPN server on my FreeBSD server giving permission to the outside XP system to access the server. On the outside XP system, I need to connect VPN box (eg. LinkSys part number BEFVP41) to the system and this one does not require any additional VPN client because the builtin IPSec client in XP machine will create a tunnel between the client and server. Please correct me if I am wrong. There's no need to set up anything on the FreeBSD box as far as the VPN is concerned. It just wants to route through the LinkSys box which knows about the VPN tunnels. You do need to configure Samba to broadcast to the remote machine in the global section (swat is your friend here as it has excellent on-line help for the Samba configuration). Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ That rifle on the wall of the labourer's cottage or working class flat is the symbol of democracy. It is our job to see that it stays there. --GEORGE ORWELL ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
libfreetype.a: Bad address when installing XFree86-4
Hi everyone, May I request some assistance from you all. Ive recently installed FreeBSD 4.9 on my lappy. Ive recompiled my kernel and cvsupped my ports tree. I have gone to install XFree86-4 and get the following error snip installing in lib/font/Speedo... installing in lib/font/Speedo/module... /usr/bin/install -c -m 0444 libspeedo.a /usr/X11R6/lib/modules/fonts install in lib/font/Speedo/module done installing in lib/font/Type1... installing in lib/font/Type1/module... /usr/bin/install -c -m 0444 libtype1.a /usr/X11R6/lib/modules/fonts install in lib/font/Type1/module done installing in lib/font/FreeType... installing in lib/font/FreeType/module... /usr/bin/install -c -m 0444 libfreetype.a /usr/X11R6/lib/modules/fonts install: /usr/X11R6/lib/modules/fonts/libfreetype.a: Bad address *** Error code 71 Stop in /usr/ports/x11-servers/XFree86-4-Server/work/xc/lib/font/FreeType/module. *** Error code 1 Stop in /usr/ports/x11-servers/XFree86-4-Server/work/xc/lib/font/FreeType. *** Error code 1 Stop in /usr/ports/x11-servers/XFree86-4-Server/work/xc/lib/font. *** Error code 1 Stop in /usr/ports/x11-servers/XFree86-4-Server. *** Error code 1 Stop in /usr/ports/x11/XFree86-4. /snip Ive tried looking for libfreetype.a and it does exist in /usr/ports/x11-servers/XFree86-4-Server/work/xc/lib/font/FreeType/module. -rw-r--r-- 1 root wheel 281366 Mar 10 23:22 libfreetype.a I have also tried to install it manually /usr/bin/install -c -m 0444 /usr/ports/x11-servers/XFree86-4-Server/work/xc/lib/font/FreeType/module/libfreetype.a /usr/X11R6/lib/modules/fonts and i get the same error install: /usr/X11R6/lib/modules/fonts/libfreetype.a: Bad address Can anyone help me? I'm not too sure what Bad address really means. Thanks in advance for all your help Find local movie times and trailers on Yahoo! Movies. http://au.movies.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 3com modem
Mike Maltese wrote: Have a 3com pci internal vioce modem installed in my 4.9 stable system but don't seem to be able to activate it sould this not happen automagically? I do not see it in the dmesg logs at all i am pretty sure that comm ports are compiled into the kernel. How do i go about ckecking it or troubleshooting something that does not appear to be there i need somewhere to start please help. This is more than likely a winmodem, i.e. it only runs under Windows with drivers. If you want to use a modem with FreeBSD, get an external unit. It is not a win modem it is a hardware modem and was the best one my supplier had, it cost me $120.00. Thanks for your rely but it does not help me with my problem i have had it working on several other machines just not this one yet. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Samba problems...v2.2.8a
Hi again, I've got a problem with Samba this time. I can't seem to get it to allow me to map drives, on a normal basis. I seem to be able to get things working - but...once my workstation reboots, I get errors about password or username is invalid. There is nothing in the log file(s), and nothing seems to work. Once I synch my password to my windows password, everything is fine again (smbpasswd feature). I'm trying to make my Samba server either (a) independent of my Windows box, or (b) completely tied into my Windows Active Directory auth scheme...which I'd like to get away from. Can someone help me out? Pasting my smb.conf file below for reference, in case it makes sense to anyone. For what it's worth - I'm trying to completely migrate the entire server infrastructure AWAY from Windows...to a totally FreeBSD/Samba/etc network. smb.conf file [global] workgroup = Bounds netbios name = Server1 server string = Server1 log file = /var/log/log.%m max log size = 50 security = user unix password sync = no ; lanman auth = no ; lm announce = no log file = /var/log/samba.log log level = 9 change notify timeout = 300 deadtime = 15 encrypt passwords = yes oplocks = yes socket options = TCP_NODELAY [C$] comment = C$ path= /stor1/WinEmulate valid users = backup read only = Yes browseable = No create mask = 0770 [Shared] comment = Shared path= /stor1/shared valid users = ralph read only = No browseable = Yes create mask = 0750 -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + Ralph | Internet Systems Security + + Boundariez.com | -Specializing in Paranoia- + -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + ralph[!at]boundariez[dot!]com | Never understimate the power + +AIM: SekurityWizard | stupid people + +ICQ: 2206039|in large groups+ -+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: nVidia drivers on FreeBSD 5.2.1 (Dell Inspiron 8100 laptop)
Tried /usr/ports/x11/nvidia-driver and doing make install...worked great and gave some instructions about doing a make setup which doesn't exist. After thatstill getting this when I try to get X running. I've included my XF86Config snip at the bottom just for giggles. ERROR SNIP (WW) NVIDIA: Chipset GeForce2 Go in Device section NVIDIA GeForce 2 isn't valid for this driver. (EE) No devices detected Fatal server error: No screens found /ERROR SNIP My XF86Config file snip Section Device Identifier NVIDIA GeForce 2 VendorName NVIDIA BoardName GeForce2 Go Driver nvidia BoardName GeForce2 Go ChipSetGeForce2 Go BusID PCI:1:0:0 EndSection Section Screen Identifier Screen0 Device NVIDIA GeForce 2 MonitorMonitor0 ... ... EndSection /My XF86Config file snip ARG Ralph ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 3com modem
It is not a win modem it is a hardware modem and was the best one my supplier had, it cost me $120.00. Thanks for your rely but it does not help me with my problem i have had it working on several other machines just not this one yet. Maybe you should have mentioned that. When someone posts that their internal PCI modem isn't working, 99 times out of 100 it is a winmodem. Are you saying that you had it working on a FreeBSD machine? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SOLVED: RE: nVidia drivers on FreeBSD 5.2.1 (Dell Inspiron 8100 laptop)
OK - I resolve to the fact that I just can't read error messages. I commented out the chipset portion...and voila...everything works like a CHARM. Sorry to waste everyone's time with a completely stupid mistake. -Original Message- From: Ralph M. Los Sent: Wednesday, March 10, 2004 6:48 PM To: [EMAIL PROTECTED] Cc: Frank Knobbe Subject: RE: nVidia drivers on FreeBSD 5.2.1 (Dell Inspiron 8100 laptop) Tried /usr/ports/x11/nvidia-driver and doing make install...worked great and gave some instructions about doing a make setup which doesn't exist. After thatstill getting this when I try to get X running. I've included my XF86Config snip at the bottom just for giggles. ERROR SNIP (WW) NVIDIA: Chipset GeForce2 Go in Device section NVIDIA GeForce 2 isn't valid for this driver. (EE) No devices detected Fatal server error: No screens found /ERROR SNIP My XF86Config file snip Section Device Identifier NVIDIA GeForce 2 VendorName NVIDIA BoardName GeForce2 Go Driver nvidia BoardName GeForce2 Go ChipSetGeForce2 Go BusID PCI:1:0:0 EndSection Section Screen Identifier Screen0 Device NVIDIA GeForce 2 MonitorMonitor0 ... ... EndSection /My XF86Config file snip ARG Ralph ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 3com modem
Mike Maltese wrote: It is not a win modem it is a hardware modem and was the best one my supplier had, it cost me $120.00. Thanks for your rely but it does not help me with my problem i have had it working on several other machines just not this one yet. Maybe you should have mentioned that. When someone posts that their internal PCI modem isn't working, 99 times out of 100 it is a winmodem. Are you saying that you had it working on a FreeBSD machine? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] yes had it working on a freebsd machine about a month ago didnt do anything spacial it was just there. Now on this machine i do not see in my dmesg as i posted earlier ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 3com modem
Mike Maltese wrote: It is not a win modem it is a hardware modem and was the best one my supplier had, it cost me $120.00. Thanks for your rely but it does not help me with my problem i have had it working on several other machines just not this one yet. Maybe you should have mentioned that. When someone posts that their internal PCI modem isn't working, 99 times out of 100 it is a winmodem. Are you saying that you had it working on a FreeBSD machine? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] mabey this will help you help me usrobotics model number 0727 sn 23rkg1hbp7vl pn 3cp2976-oem ps THANK YOU ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]