Re: Upgraded to Xorg 6.8.1 and some icons broke in Window Maker 0.91.0
Tabor Kelly wrote: Dave Horsfall wrote: On Sun, 2 Jan 2005, Tabor Kelly wrote: Of note: I have an Intel i810 video chipset and Xorg 6.8.1 "broke" the driver for it, but I set NoAccel in my xorg.conf file and that was supposed to take care of it (now X at least starts). Does anyone think this could be related to my specific hardware? Could be; grab the latest Xorg from CVS, as a fix to the 810 driver (6.8.1_1) was committed yesterday. Apparently the bug is in libtiff 3.7.1, but I will upgrade xorg because it is very slow with NoAccel. Thanks everyone. I upgraded to libtiff 3.7.1_2 today, and it fixed the problem. -- Tabor Kelly [EMAIL PROTECTED] http://tabor.taborandtashell.net ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Hosts.allow and netatalk/cups
To my knowledge, the effects in /etc/hosts.allow are immediate as soon as you save the modified file. And I have been using it that way for many years. No need to killall -HUP inetd, no need to reboot. If after a change the service is still not available: - you did not allow the right thing - the servcie would not be working even without tcp wrapper Try to add ALL : ALL : allow at the top of /etc/hosts/allow. Does the service work? Then you made a mistake when trying to open tcp wrapper for that specific service. Else the problem is not with tcp wrapper / hosts.allow. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Hosts.allow and netatalk/cups
Three questions: How do I cause changes in the hosts.allow file to take effect without rebooting? Everything I've seen says to restart inetd, but I'm not using inetd. How do I compile netatalk without CUPS? I don't see any obvious switches, but there has to be something that tells Make to use CUPS, because it gives a message saying that it's checking if CUPS can be included. How do I get netatalk to use the dbd cnid scheme? It ignores the path name cnidscheme:dbd setting in AppleVolumes.default and the - -cnidserver localhost:4700 setting in afpd.conf. Regardless of what the cnidscheme setting is, it announces that's there's no cnid scheme selected and uses the default. Bob Hall ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Blacklisting IPs
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Jez Hancock > Sent: Monday, January 10, 2005 11:42 AM > To: freebsd-questions@freebsd.org > Subject: Re: Blacklisting IPs > > > Another fairly simple option though is to just change the port that > sshd listens on since the attacks presume that sshd is listening on > port 22. Not always practical though if you have lots of users. > If I'm going to attack you I'm going to use nessus to scan all ports on your machine. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: support
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Jens Holmqvist > Sent: Monday, January 10, 2005 4:41 PM > To: Anil Gaddam > Cc: freebsd-questions@freebsd.org > Subject: Re: support > > > there is already a #freebsd on the freenode network and it is > everything you want > And nothing that I want, I cannot imagine a more unproductive use of computer time than IRC. I can read faster than most people type and I really am not interested in watching you correct your misspellings as you type nor deciphering the plethora of alphabet soup like TTYL, IMHO, etc. etc. that IRC people seem to feel is a requirement. But, if it floats your boat, have fun. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Blacklisting IPs
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Chris > Sent: Monday, January 10, 2005 4:07 PM > To: artware > Cc: freebsd-questions@freebsd.org > Subject: Re: Blacklisting IPs > > > artware wrote: > > Hello again, > > > > My 5.3R system has only been up a little over a week, and > I've already > > had a few breakin attempts -- they show up as Illegal user tests in > > the /var/log/auth.log... It looks like they're trying common login > > names (probably with the login name used as passwd). It takes them > > hours to try a dozen names, but I'd rather not have any traffic from > > these folks. Is there any way to blacklist IPs at the system > level, or > > do I have to hack something together for each daemon? > > > > - ben > > ___ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > > > > > > Here's what I do - > > as root: route -nq add -host xxx.xxx.xxx.xxx 127.0.0.1 -blackhole > > To the attacker, it looks as if you dropped off the net. > > This actually isn't the best advice since the incoming packets from the attacker are still using up your bandwidth. It's best to report them and it's not hard to do it. There are automated tools that will do it. As the CTO of an ISP let me tell you that we get about 1 of those reports every few months - that is how few people are reporting them - and we look closely at every one of them. This isn't a situation where the abuse departments of most ISP's are overflowing with so many network abuse notifications that they aren't interested in getting more of them. Now spam notifications - that's a different issue - few people reporting spam know how to do it properly nor how to figure out where to correctly report them, with the unfortunate result that they are quickly becoming useless. Only about 1 in 400 spam notifications I get a week nowadays are even indicating spam coming from our IP range, let alone indicating bona-fied spam. Going after wannabes that are using our service to try breaking into other computers is one of the enjoyable parts of my job, to be honest. It's a lot more fun then sending out form e-mails to spam reports saying some polite variation of "look at the source IP number that spam orginated from not the domain name, dumbass" Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
Thanks for the input, everyone! Port-knocking is overkill at this point, but I did do the following things to sshd_config: Set port to non-default PermitRootLogin no LoginGraceTime 45s AllowUsers lists only one user -- me. :) I also did route -nq add -host xxx.xxx.xxx.xxx 127.0.0.1 -blackhole... I think telnet was disabled by default in the base 5.3 install... I know this attack was probably random, but the whole reason I took over as sysadmin and switched to FreeBSD is that our RHE box was being broken into almost nightly -- so I'm sensitive to security concerns. Is there anything else I should consider doing to the stock FreeBSD to fortify it? It already feels about 100 times more secure than RH... - ben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: HP Netserver 60 will not boot
Yesterday I wrote: > I installed 4.10 RELEASE on an IDE disk on a HP Netserver 60. > > This isa fresh/default install. > > Installing was no problem, but whe I try to boot, the machine freeze > after the line: > > > pcic0: on motherboard > pci0: on pcib0 > agp0: mem 0-0xfff at device > 0.0 on pci0 I was suggested to remove agp device from the kernel. As I could not find a way to do that on the target machine, I installed the hard disk in another machine and build the new kernel there. Then I installed the hard disk back on the HP netserver and it booted OK. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
SOLVED! Dial-in PPP FreeBSD 5.3 (was Re: m'gettying closer! (was Re: modem not responding to mgetty)
With many thanks to the folks who helped, I am happy to announce that I write this message from my own dialup connection to my own FreeBSD machine! Here the relevant configuration items. I'm using a standard 5.3 GENERIC kernel and my modem (an external serial port modem) is on sio0: Most of the rest of this was taken/adapted from http://packet.node.to/hacks/ppp-how-to.html http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ppp- troubleshoot.html http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/userppp.html with an important note that FreeBSD5 doesn't have MAKEDEV but "devfs" handles it automagically. $ dmesg | grep "^sio" sio0: <16550A-compatible COM port> port 0x3e8-0x3ef irq 4 flags 0x10 on acpi0 sio0: type 16550A sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled $ cat /etc/ppp/ppp-pap-dialup #!/bin/sh ##echo "$0: exec /usr/sbin/ppp -direct pap$IDENT at `date`" >> /tmp/ppp.pap.dialup.log # # # uncomment the previous line to log the action. Mine looked like this (without the ##) # ## /etc/ppp/ppp-pap-dialup: exec /usr/sbin/ppp -direct pap at Mon Jan 10 23:44:13 EST 2005 exec /usr/sbin/ppp -direct pap$IDENT # EOF $ fgrep mgetty /etc/ttys ttyd0 "/usr/local/sbin/mgetty -s 115200" dialup on secure # NOTE /etc/ppp/ppp.conf: # indentation is important # I'm still not sure about the 'set ifaddr' lines are correct but they work # Our network uses 192.168.1.x $ cat /etc/ppp/ppp.conf default: set device /dev/cuaa0 set log Phase Chat LCP IPCP CCP tun command enable passwdauth set speed 115200 set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" AT OK-AT-OK ATE1Q0 OK \\dATDT\\TTIMEOUT 40 CONNECT" set timeout 120 set ifaddr 192.168.1.1/0 192.168.1.2/0 255.255.255.0 0.0.0.0 add default HISADDR cuaa0: set ifaddr 192.168.1.3 192.168.1.4-192.168.1.9 enable passwdauth allow users ppp accept dns set dns 67.36.13.26 66.73.20.40 enable proxy pap: enable pap set ifaddr 192.168.1.3 192.168.1.4-192.168.1.9 enable proxy enable passwdauth $ fgrep ppp /etc/passwd ppp:*:1003:1003:ppp:/home/ppp:/etc/ppp/ppp-dialup $ cat /usr/local/etc/mgetty+sendfax/mgetty.config # NOTE: Comment lines do NOT appear in the original file port cuaa0 # this will depend on where your modem is hooked up debug 4 fax-id 00 00 00 speed 115200 direct NO blocking NO port-owner uucp port-group uucp port-mode 0660 toggle-dtr YES toggle-dtr-waittime 500 data-only YES fax-only NO modem-type auto init-chat "" AT OK # ^^^ There are more elaborate init-chat strings, I went for simple modem-check-time 3600 rings 1 # ^^^ answers after 1 ring, assumes dedicated line answer-chat "" ATA CONNECT \c \r answer-chat-timeout 30 autobauding NO ringback NO ringback-time 30 ignore-carrier false issue-file /etc/issue prompt-waittime 500 login-prompt @!login: login-time 240 diskspace 1024 notify faxadmin fax-owner uucp fax-group modem fax-mode 0660 # mgetty setup on FreeBSD will ask you for most of these, and I chose the default for almost all of them LOG FILES: When diagnosing problems, check /var/log for ppp.log and mgetty.ttyd0 # What it looked like when I connected # # NOTE: this command was run on the CLIENT machine $ ifconfig ppp0 ppp0: flags=8051 mtu 1500 inet6 fe80::20d:93ff:fead:26c8 prefixlen 64 scopeid 0x7 inet 192.168.1.7 --> 192.168.1.3 netmask 0xff00 If anyone has questions, I'll be glad to (try to) answer them TjL ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Virus Found in message "Re: Delivery Protection"
Dear MSCS Candidate, Thank you for your application to our Computer Professionals Program. In the next few weeks we will be reviewing your application. When this initial review is completed we will inform you of your status for further processing. Once you have submitted your application, we ask that you wait until you hear from us before contacting us again. Inquiries as to application status will not be answered due to the high volume of applications we are receiving. Also, please do not resubmit your application form. Receipt of this email serves as notification to you that we have received your application. We look forward to reviewing your credentials and will notify you of your status as soon we have completed this first step. Best Wishes, Office of Admissions Computer Professionals Program ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: High levels of breakin attempts
Murray Taylor wrote: I havent checked forsure but could sysutils/ipa help. it can 'open/close' firewalls upon certain limit conditions... The closest thing I have seen is portsentry. However, portsentry is a different beast. I don't think it "knows" about attempts to log in via ssh. In other words ... I don't think portsentry can say "Hey!! Wait a sec. There are no users such as those. In fact, this server doesn't allow logins from ANYONE except X Y and Z via ssh keys Okay, time to block this bonehead ." ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: High levels of breakin attempts
> Gene wrote: > > > Over the past few months there have been a remarkably high > level of > > brute force attacks logged by sshd. I was wondering, is there a way > > that sshd (or some other package) can monitor login attempts and if > > more than say 5 or 6 attempts are made to login from a > particular ip > > address, temporarily block that address (perhaps at the firewall)? > > It'd be real satisfying to just dump the attackers' packets > to the bit > > bucket and slow 'em down a bit. > > > yeah, I have experienced exactly the same thing. I think I > may write a > simple daemon perl script that watches the tail of auth.log > for some of > this crap and installs firewalls ad-hoc. > > Here's a (very, very small) dump from /var/log/auth.og > > Jan 8 06:11:22 fusion sshd[43967]: Failed password for root from > 64.246.44.130 port 54213 ssh2 > Jan 8 06:11:22 fusion sshd[43969]: Failed password for root from > 64.246.44.130 port 54219 ssh2 > Jan 8 06:11:22 fusion sshd[43971]: Illegal user webmaster from > 64.246.44.130 > Jan 8 06:11:22 fusion sshd[43973]: Illegal user data from > 64.246.44.130 > Jan 8 06:11:23 fusion sshd[43975]: Illegal user user from > 64.246.44.130 > Jan 8 06:11:23 fusion sshd[43977]: Illegal user user from > 64.246.44.130 > Jan 8 06:11:23 fusion sshd[43979]: Illegal user user from > 64.246.44.130 > Jan 8 06:11:23 fusion sshd[43981]: Illegal user web from > 64.246.44.130 > Jan 8 06:11:24 fusion sshd[43983]: Illegal user web from > 64.246.44.130 > Jan 8 06:11:24 fusion sshd[43985]: Illegal user oracle from > 64.246.44.130 > Jan 8 06:11:24 fusion sshd[43987]: Illegal user sybase from > 64.246.44.130 > Jan 8 06:11:24 fusion sshd[43989]: Illegal user master from > 64.246.44.130 > Jan 8 06:11:25 fusion sshd[43991]: Illegal user account from > 64.246.44.130 > Jan 8 06:11:25 fusion sshd[43993]: Illegal user backup from > 64.246.44.130 > Jan 8 06:11:25 fusion sshd[43995]: Illegal user server from > 64.246.44.130 > Jan 8 06:11:25 fusion sshd[43998]: Illegal user adam from > 64.246.44.130 > Jan 8 06:11:26 fusion sshd[44000]: Illegal user alan from > 64.246.44.130 > Jan 8 06:11:26 fusion sshd[44002]: Illegal user frank from > 64.246.44.130 > Jan 8 06:11:26 fusion sshd[44004]: Illegal user george from > 64.246.44.130 > Jan 8 06:11:26 fusion sshd[44006]: Illegal user henry from > 64.246.44.130 > Jan 8 06:11:26 fusion sshd[44008]: Failed password for john from > 64.246.44.130 port 54348 ssh2 > > Interestingly, 64.246.44.130 is within the IP range of ev1servers.net > which is where my BSD machine is located. > > . FUCKERS. > I havent checked forsure but could sysutils/ipa help. it can 'open/close' firewalls upon certain limit conditions... from the pkg_descr --- ipa(8) allows to make IP accounting (network accounting) based on FreeBSD IPv4/v6 Firewall (including IPFW2), OpenBSD Packet Filter and IP Filter accounting rules on FreeBSD, NetBSD and OpenBSD. It supports limits for accounting rules and limits events as "limit is reached", "reached limit is expired", etc. It understands time intervals like "end of day", "end of week", "end of month", etc. ipastat(8) is a viewer for IP accounting database made by ipa(8). - maybe something that registers and shuts out the ungodly anf ipa then can follow along and reopen things later 0.02c maybe mjt --- The information transmitted in this e-mail is for the exclusive use of the intended addressee and may contain confidential and/or privileged material. Any review, re-transmission, dissemination or other use of it, or the taking of any action in reliance upon this information by persons and/or entities other than the intended recipient is prohibited. If you received this in error, please inform the sender and/or addressee immediately and delete the material. E-mails may not be secure, may contain computer viruses and may be corrupted in transmission. Please carefully check this e-mail (and any attachment) accordingly. No warranties are given and no liability is accepted for any loss or damage caused by such matters. --- ***This Email has been scanned for Viruses by MailMarshal.*** ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: High levels of breakin attempts
Gene wrote: Over the past few months there have been a remarkably high level of brute force attacks logged by sshd. I was wondering, is there a way that sshd (or some other package) can monitor login attempts and if more than say 5 or 6 attempts are made to login from a particular ip address, temporarily block that address (perhaps at the firewall)? It'd be real satisfying to just dump the attackers' packets to the bit bucket and slow 'em down a bit. yeah, I have experienced exactly the same thing. I think I may write a simple daemon perl script that watches the tail of auth.log for some of this crap and installs firewalls ad-hoc. Here's a (very, very small) dump from /var/log/auth.og Jan 8 06:11:22 fusion sshd[43967]: Failed password for root from 64.246.44.130 port 54213 ssh2 Jan 8 06:11:22 fusion sshd[43969]: Failed password for root from 64.246.44.130 port 54219 ssh2 Jan 8 06:11:22 fusion sshd[43971]: Illegal user webmaster from 64.246.44.130 Jan 8 06:11:22 fusion sshd[43973]: Illegal user data from 64.246.44.130 Jan 8 06:11:23 fusion sshd[43975]: Illegal user user from 64.246.44.130 Jan 8 06:11:23 fusion sshd[43977]: Illegal user user from 64.246.44.130 Jan 8 06:11:23 fusion sshd[43979]: Illegal user user from 64.246.44.130 Jan 8 06:11:23 fusion sshd[43981]: Illegal user web from 64.246.44.130 Jan 8 06:11:24 fusion sshd[43983]: Illegal user web from 64.246.44.130 Jan 8 06:11:24 fusion sshd[43985]: Illegal user oracle from 64.246.44.130 Jan 8 06:11:24 fusion sshd[43987]: Illegal user sybase from 64.246.44.130 Jan 8 06:11:24 fusion sshd[43989]: Illegal user master from 64.246.44.130 Jan 8 06:11:25 fusion sshd[43991]: Illegal user account from 64.246.44.130 Jan 8 06:11:25 fusion sshd[43993]: Illegal user backup from 64.246.44.130 Jan 8 06:11:25 fusion sshd[43995]: Illegal user server from 64.246.44.130 Jan 8 06:11:25 fusion sshd[43998]: Illegal user adam from 64.246.44.130 Jan 8 06:11:26 fusion sshd[44000]: Illegal user alan from 64.246.44.130 Jan 8 06:11:26 fusion sshd[44002]: Illegal user frank from 64.246.44.130 Jan 8 06:11:26 fusion sshd[44004]: Illegal user george from 64.246.44.130 Jan 8 06:11:26 fusion sshd[44006]: Illegal user henry from 64.246.44.130 Jan 8 06:11:26 fusion sshd[44008]: Failed password for john from 64.246.44.130 port 54348 ssh2 Interestingly, 64.246.44.130 is within the IP range of ev1servers.net which is where my BSD machine is located. . FUCKERS. :( ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
High levels of breakin attempts
Over the past few months there have been a remarkably high level of brute force attacks logged by sshd. I was wondering, is there a way that sshd (or some other package) can monitor login attempts and if more than say 5 or 6 attempts are made to login from a particular ip address, temporarily block that address (perhaps at the firewall)? It'd be real satisfying to just dump the attackers' packets to the bit bucket and slow 'em down a bit. Thanx - Gene ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
New install won't boot
Hello, I just installed a new 5.3 system that doesn't seem to want to boot. Here is the process I followed: 1. Install onto two disks ad0 and ad1 (20GB and 80GB, respectively) 2. Slice each to maximum size using 165 (FreeBSD) type 3. Partition with /, swap, /var, /tmp, /usr on ad0 and /home on /ad1 each given ample space 4. Install minimal system from mini-CD 5. Configure network, configure as a gateway, enable SSH 6. Add user account, set root password 7. Reboot At this point I'm given a series of error messages as the machine looks for a system to boot to: Invalid partition No /boot/loader FreeBSD/i386 boot Default: 0:ad(0,a)/kernel boot: Invalid partition No /kernel FreeBSD/i386 boot Default: 0:ad(0,a)/kernel boot: And it just kind of hangs at that point. The motherboard is an IWILL and I've set it up to boot in this order: CD-ROM HDD1 HDD2 Is there anything I can try to debug this? It seems pretty mysterious. Thanks for any help, -Dan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
daniel quinn wrote:
On January 10, 2005 05:17 pm, Michael C. Shultz wrote:
If the port is allready installed try:
pkg_create -b {name of installed port as listed under /var/db/pkg}
cool, thanks
and what if i don't want it installed on this machine? if i just want to
build it here for use elsewhere?
You could set up a jail and chroot into that before building the port, if you
really want to keep your base system untouched. The pointyhat cluster used to
build packages for the FTP servers does roughly this in order to provide a
clean environment for testing.
I suppose you could also just do a "make" on the build machine, then scp -r or
rsync the work subdirectory of the port to the machine you want to install on,
and then finish by doing the "make install" on that target machine. So long
as all of the dependencies are up-to-date, anyway...
--
-Chuck
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: netatalk, NFS, OS X and backup
Personally I use a combination of applescript and cli. With applescript you create a script that mounts the remote afp volume. Eg in script editor On run try mount volume "afp://server/sharepoint" as user name "name" with password "crypt" on error -- end try End run Personally I put the mount command inside the try block to prevent error dialogs coming up - that is why the -- (a comment line) is after on error - it tricks the script into doing nothing on error. As you might guess this is plain text - for security when you save it you can save as application and tick the run only box - this prevents the file being opened in the script editor and read - you can open and run it but not see the source. This will mount the specific share point - it shows up in /volumes/sharepoint - which can then be copied to/from I then use the cli to compress/copy files - personally I use stuffit deluxe for compression as the deluxe version includes the cli tools and handles resource forks / meta data etc. #! /bin/sh /usr/local/bin/stuff -f sitx -n /pathto/backupfile /pathto/filestobackup cp /pathto/backupfile /volumes/sharepoint/backupfile Of course you put the date/numbers into the filename as you prefer. One gotcha to look out for is if the sharepoint doesn't mount for whatever reason the cp step will create a folder in /volumes and will copy locally instead of to the server. There is also the option of using scp to get the files to the server. There is a cli - mount_afp - when I tried it some time ago I had some problem(can't remember what now) so I used the applescript instead. You then setup cron to run the applescript and the shell script when you want. With the applescript it is a gui app so in cron you need /usr/bin/open /pathto/applescript.app Remember the .app is not shown in the finder but is needed for the cli, easy to miss. On 11/1/05 2:15 AM, "Martin Hepworth" <[EMAIL PROTECTED]> wrote: > have you looked at amanda? Uses it's daemons to transfer the data, and > you can select where to comress (on client or server). > > works well when used with hfstar on MacOS X ... > > restores are normally done by the admin and currently its a cli...no > plans AFAIK to make this a gui. > > --- > Martin > > > On Fri, 7 Jan 2005 11:29:59 -0500, Alan Curtis <[EMAIL PROTECTED]> wrote: >> I need some advice about integrating my FreeBSD server with some Macs >> running OS X. >> >> I have a server running FreeBSD 5.3 with NFS and netatalk enabled, a >> Powerbook G4 running OS X 10.3.7 and they are connected through a >> wireless network. I used the Powerbook to administer the server using >> ssh, which works well. I would also like to use the server to backup >> files (for multiple users) from the Powerbook. I have played around >> with both NFS and netatalk (afpd) and both seem to be working, in that >> I can manually mount the shares on the Powerbook. I have got the NFS >> share to automount on the Powerbook but not the afp share. I can copy >> files to and from both the nfs and afp mounted shares, including >> resource forks. I have played with various backup utilities including >> rsync, psync and rdiff-backup with varying degrees of success. >> >> Some observations/questions >> >> 1. netatalk afp seems consistently and significantly faster than nfs. >> Is this to be expected or might I have a problem with nfs? If so how do >> I diagnose and fix it? >> >> 2. I would prefer to use nfs, because I can automount it on the >> Powerbook and run a cron (actually anacron) script to backup the >> multiple users. I haven't yet worked out how (or if) I can do this with >> afp (this is really a Mac question I know). >> >> 3. I would like to use a backup scheme which is automatic, invisible to >> the user, yet configured in a way that the archive can be navigated, >> and files appear in folders on the Mac finder in a consistent way (with >> resource forks set up correctly). >> >> All of this seems almost possible, yet I don't seem to have got it just >> right yet. Has anyone one any insight they can spread or experiences >> they can share of a similar set up? >> >> Alan >> >> ___ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to "[EMAIL PROTECTED]" >> > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > -- Shane Ambler Sales Department 007Marketing.com [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD 5.3-R, postfix smtp dying with sig11
On Mon, Jan 10, 2005 at 10:47:24PM -0500, Bryan Fullerton wrote: > So... what could cause this? Is the sig 11 causing the failure, or is > master killing off smtp as a result of some other issue? Anything I > can poke at? Usually hardware failure. Consult the mailing list archives or google for extensive discussion. Kris pgpk3mMCBVqwD.pgp Description: PGP signature
Re: Need Guidance in my Internet Connection Sharing configuration - SOLVED - Thank you
To All: Chuck Swiger <[EMAIL PROTECTED]> >> By the way, is my system clock wrong or yours? > Your clock seems to be off. In my Gnome Desktop my date and time are correct but anyways I will try to find out about this one... John <[EMAIL PROTECTED]> > If you are getting DHCP from your aDSL modem, it is very likely that > it is already doing NAT for you (and firewalling). Doing NAT upon > NAT is probably not productive. If you are getting an RFC1597 > private (non-routed) address, this is certainly the case. Otherwise, > try logging in to your aDSL (the provided documentation should > tell you how) and see if it doesn't have NAT settings. > If my suspicion is correct, then you simply need to connect a switch > or hub between your aDSL modem and your computers. Just be aware, > many aDSL modems come configured with a very small DHCP pool > (often just 2 or 4 addresses), so you may have to expand that > (again, by logging in to the administrative function of your > aDSL modem, hopefully through a web browser, though some require > an [often Windows-only] custom application). I tried this connection last year and found out that every time I try to connect to the Internet in either computer, the aDSL Modem just cuts-off and that was the time I thought that I should be using NAT but since I had to study on IPFW and NATD, I had to do some research and it took me some time to try what I am trying today or shall I say I tried since last week... Benjamin Sobotta <[EMAIL PROTECTED]> > To make sure I understand, you can reach the internet from your > router? So it is really a routing problem, right? > The interface connected to the modem is bge0? aue0 is connected to > your internal network?! Your internal machines can ping the router?? > If everything is so then try > natd_interface="bge0" > instead of what you have. Actually I'm not sure at all because I'm not > on my machine. Anyways, might be worth a shot. Ohh and don't forget to > reboot after you did the changes. If this doesn't work I would try > everything without all those firewall rules. Start out easy and when > it works you can still add rule after rule. Always try pinging IPs > because DNS might not work right away. I tried this one and it worked... Frank J. Laszlo <[EMAIL PROTECTED]> >> natd_interface="aue0" > this should be your external (ADSL) interface Yes, I tried this one and it worked... To all of you who responded, Thank you very very...much natd_interface="aue0" was what made my system enables my Internet Connection Sharing Once again, thank you to all of you and of course to the FreeBSD Documentation Team... Srot BULL P.S. Could not CC to all because I forgot how to send an Email with multiple CC addresses in...Hehehe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: m'gettying closer! (was Re: modem not responding to mgetty)
On Jan 10, 2005, at 11:46 AM, Jay Quinby wrote: On Fri, 7 Jan 2005, Timothy Luoma wrote: I am unsure about several things - should be using cuaa0 or ttyd0 (I am using mgetty)? If I recall correctly, cuaa0 is the device name for Serial 0, or the equivalent of /dev/ttyS0 on Linux. One way to test this would be to fire up something like minicom, and try to connect to it. You ought to be able to send some of the basic AT commands and get some responses (good ones are ATDT 1234 and ATH, which will dial 1234 and hang up the line). Double-checking my own doc (since my memory is hazy, you want to set the following, assuming your modem is at serial 0: /etc/ttys: ttyd0 should point to mgetty, with a line similar to this, allowing for the correct path to your mgetty: ttyd0 "/usr/local/sbin/mgetty -s 115200" dialup on secure $ fgrep ttyd0 /etc/ttys ttyd0 "/usr/local/sbin/mgetty -s 115200" dialup on secure [so that's OK] Your mgetty.conf should point to the correct port (cuaa0 for serial 0) port cuaa0 debug 4 fax-id 00 00 00 speed 115200 direct NO blocking NO $ head /usr/local/etc/mgetty+sendfax/mgetty.config port cuaa0 debug 4 fax-id 00 00 00 speed 115200 direct NO blocking NO - are the 'set ifaddr' lines right in ppp.conf? I'm using 192.168.1.x and have selected unused IP addresses in that range I'm still not clear about the "set ifaddr" lines. $ fgrep mgetty /etc/ttys|fgrep -v '#' ttyd0 "/usr/local/sbin/mgetty -s 115200" dialup on secure note: in ppp.conf, I'm not sure if I need ttyd0 or cuaa0. Your ppp.conf is going to contain only references to cuaa0 - the one in the doc is extra long, owing to the serial card we stuck in there. We had 4 modems hanging off the machine. Here's what it currently looks like: default: set device /dev/cuaa0 set debug log Phase Chat LCP IPCP CCP tun command set speed 115200 set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \"\" AT OK-AT-OK ATE1Q0 OK \\dATDT\\TTIMEOUT 40 CONNECT" set timeout 120 set ifaddr 192.168.1.1/0 192.168.1.2/0 255.255.255.0 0.0.0.0 add default HISADDR cuaa0: set ifaddr 192.168.1.3 192.168.1.4-192.168.1.9 enable passwdauth allow users FRED ppp accept dns set dns 67.36.13.26 enable proxy here is what I get on the *client end* when I try to dial my PPP server Fri Jan 7 21:12:06 2005 : Dialing XXX Fri Jan 7 21:12:06 2005 : CCLWrite : ATDTXXX\13 Fri Jan 7 21:12:37 2005 : CCLMatched : +ER: Fri Jan 7 21:12:37 2005 : CCLMatched : LAPM Fri Jan 7 21:12:37 2005 : Modem Reliable Link Established. Fri Jan 7 21:12:37 2005 : CCLMatched : +DR: Fri Jan 7 21:12:37 2005 : CCLMatched : V42B\13 Fri Jan 7 21:12:37 2005 : Modem Compression Established. Fri Jan 7 21:12:37 2005 : CCLMatched : CONNECT Fri Jan 7 21:12:37 2005 : CCLMatched : 26400 Fri Jan 7 21:12:40 2005 : Serial connection established. Fri Jan 7 21:12:40 2005 : using link 0 Fri Jan 7 21:12:40 2005 : Using interface ppp0 Fri Jan 7 21:12:40 2005 : Connect: ppp0 <--> /dev/cu.modem Fri Jan 7 21:12:41 2005 : sent [LCP ConfReq id=0x1 ] Fri Jan 7 21:12:41 2005 : Hangup (SIGHUP) Fri Jan 7 21:12:41 2005 : Modem hangup Fri Jan 7 21:12:41 2005 : Connection terminated. Looks pretty good up until it hangs up. And no real errors. Not sure. Is /dev/cu.modem a symlink to /dev/cuaa0? /dev/cu.modem doesn't exist at all! $ ls -ld /dev/cu.modem ls: /dev/cu.modem: No such file or directory I have no idea where /dev/cu.modem is coming from. It is not set in /etc/ppp/ppp.conf nor in any file in /usr/local/etc/mgetty+sendfax/ I suppose I could just make a symlink, but I'd much rather try and find out where it is set and correct it! Googling for "/dev/cu.modem site:.freebsd.org" gave zero results. I'm a little stumped. What happens if you run the ppp-login script by itself? It ought to start generating the line-noise-garbage on stdout. What's in /etc/ppp/ppp-pap-dialup? That script is running right before things hose up. $ [asroot] /etc/ppp/ppp-pap-dialup pap: Configuration label not found At this point i went back to the Handbook and found http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/userppp.html which suggested that I add pap: enable pap set ifaddr 192.168.1.3 192.168.1.4-192.168.1.9 enable proxy now that's userppp, so I don't know if it applies to dialin or not. HOWEVER, once I run it WITH that line: $ [as root] /etc/ppp/ppp-pap-dialup ~?}#?!}!}!} }<}(}"}'}"}"}&} } } } }!}$}%?}%}&(??}%}#}$?#?C~~?}#?!}!}!} }<}(}"}'}"}"}&} } } } }!}$}%?}%}&(??}%}#}$?#?C~~?}#?!}!}!} }<}(}"}'}"}"}&} } } So that looks promising. Unfortunately I'll have to wait until I am at home to see if it works. [I'm home how] Ok, so it's still failing, but I'm getting a little closer: Jan 10 22:41:14 freebsd ppp[23829]: Phase: Using interface: tun0 Jan 10 22:41:14 freebsd ppp[23829]: Phase: deflink: Created in closed state Jan 10 22:41:14 freebsd ppp[23829]: Warning: set debug: Invalid command Jan 10 22:41:14 freebsd ppp[23829]: Warning: set debug: Failed
Re: sendmail problem - Helo command rejected: Host not found
Giorgos Keramidas wrote: On 2005-01-10 19:38, Chuck Swiger <[EMAIL PROTECTED]> wrote: [ ... ] Go to /etc/mail. Edit freebsd.cf (look for SMART_HOST), point it at your ISP's mail server. Do "make stop; make install; make start". FWIW, the file edited should be `freebsd.mc', not `freebsd.cf' otherwise a subsequent "make install" will overwrite the edited `freebsd.cf' file with a fresh copy generated from `freebsd.mc'. Err, yes, that's right. (I knew which file I meant. :-) Note that you can even copy freebsd.mc to hostname.mc, and the system will find it for you so you don't have to change the default template file. The Makefile explains this better than I did. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Onboard sound problem - FBSD 5.2.1 - Epox 8kta3
Have you added this line to your kernel config? device pcm I think you need this line to enable sound. Gable Barber wrote: I recompiled kernel to include' options PNPBIOS ' ... per the Handbook. From the motherboard manual: Epox 8kta3 motherboard VIA kt133a built in AC97 (by vt82c686b) output of uname : bash-2.05b$ uname -a FreeBSD home.localdomain 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE #0: Sun Jan 9 09:07:26 CST 2005 [EMAIL PROTECTED] :/usr/src/sys/i386/compile/MYKERNEL i386 bash-2.05b$ output of dmesg : bash-2.05b$ dmesg Copyright (c) 1992-2004 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 5.2.1-RELEASE #0: Sun Jan 9 09:07:26 CST 2005 [EMAIL PROTECTED] :/usr/src/sys/i386/compile/MYKERNEL Preloaded elf kernel "/boot/kernel/kernel" at 0xc0a35000. Preloaded elf module "/boot/kernel/acpi.ko" at 0xc0a351f4. Timecounter "i8254" frequency 1193182 Hz quality 0 CPU: AMD Athlon(tm) processor (1403.19-MHz 686-class CPU) Origin = "AuthenticAMD" Id = 0x644 Stepping = 4 Features=0x183f9ff AMD Features=0xc044 real memory = 872349696 (831 MB) avail memory = 837726208 (798 MB) Pentium Pro MTRR support enabled npx0: [FAST] npx0: on motherboard npx0: INT 16 interface acpi0: on motherboard pcibios: BIOS version 2.10 Using $PIR table, 9 entries at 0xc00fde40 acpi0: Power Button (fixed) Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000 acpi_timer0: <24-bit timer at 3.579545MHz> port 0x4008-0x400b on acpi0 acpi_cpu0: on acpi0 acpi_button0: on acpi0 pcib0: port 0x6000-0x607f,0x5000-0x500f,0x4080-0x40ff,0x4000-0x407f,0xcf8-0xcff on acpi0 pci0: on pcib0 pcib0: slot 7 INTD is routed to irq 11 pcib0: slot 7 INTD is routed to irq 11 pcib0: slot 7 INTC is routed to irq 12 pcib0: slot 13 INTA is routed to irq 11 agp0: mem 0xd000-0xd7ff at device 0.0 on pci0 pcib1: at device 1.0 on pci0 pci1: on pcib1 pcib0: slot 1 INTA is routed to irq 10 pcib1: slot 0 INTA is routed to irq 10 pci1: at device 0.0 (no driver attached) isab0: at device 7.0 on pci0 isa0: on isab0 atapci0: port 0xd000-0xd00f at device 7.1 on pci0 atapci0: Correcting VIA config for southbridge data corruption bug ata0: at 0x1f0 irq 14 on atapci0 ata0: [MPSAFE] ata1: at 0x170 irq 15 on atapci0 ata1: [MPSAFE] uhci0: port 0xd400-0xd41f irq 11 at device 7.2 on pci0 usb0: on uhci0 usb0: USB revision 1.0 uhub0: VIA UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered ums0: Kensington Kensington USB/PS2 Wheel Mouse, rev 1.10/1.00, addr 2, iclass 3/1 ums0: 3 buttons and Z dir. uhub1: ORTEK ORTEK KH12 USB Hub, class 9/0, rev 1.10/3.00, addr 3 uhub1: 3 ports with 2 removable, bus powered ukbd0: ORTEK USB Hub/Keyboard, rev 1.10/3.00, addr 4, iclass 3/1 kbd0 at ukbd0 uhci1: port 0xd800-0xd81f irq 11 at device 7.3 on pci0 usb1: on uhci1 usb1: USB revision 1.0 uhub2: VIA UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered pci0: at device 7.4 (no driver attached) pci0: at device 7.5 (no driver attached) dc0: port 0xe800-0xe8ff mem 0xe900-0xe90003ff irq 11 at device 13.0 on pci0 dc0: Ethernet address: 00:04:5a:7d:96:c5 miibus0: on dc0 ukphy0: on miibus0 ukphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto fdc0: port 0x3f7,0x3f0-0x3f5 irq 6 drq 2 on acpi0 fdc0: FIFO enabled, 8 bytes threshold fd0: <1440-KB 3.5" drive> on fdc0 drive 0 sio0 port 0x3f8-0x3ff irq 4 on acpi0 sio0: type 16550A sio1 port 0x2f8-0x2ff irq 3 on acpi0 sio1: type 16550A ppc0 port 0x378-0x37f irq 7 on acpi0 ppc0: Generic chipset (EPP/NIBBLE) in COMPATIBLE mode ppbus0: on ppc0 plip0: on ppbus0 lpt0: on ppbus0 lpt0: Interrupt-driven port ppi0: on ppbus0 orm0: at iomem 0xc-0xc7fff on isa0 pmtimer0 on isa0 atkbdc0: at port 0x64,0x60 on isa0 sc0: at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> vga0: at port 0x3c0-0x3df iomem 0xa-0xb on isa0 Timecounter "TSC" frequency 1403191078 Hz quality 800 Timecounters tick every 10.000 msec acpi_cpu: throttling enabled, 2 steps (100% to 50.0%), currently 100.0% GEOM: create disk ad1 dp=0xc6520e60 ad1: 39266MB [79780/16/63] at ata0-slave UDMA100 acd0: CDROM at ata1-master PIO3 Mounting root from ufs:/dev/ad1s1a drm0: <3dfx Voodoo5> port 0xc000-0xc0ff mem 0xd800-0xdfff,0xe000-0xe3ff irq 10 at device 0.0 on pci1 info: [drm] Initialized tdfx 1.0.0 20010216 on minor 0 bash-2.05b$ Is this the important part...? pci0: at device 7.5 (no driver attached) Any help is greatly appreciated Thank you, Gable Barber ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebs
Re: WIFI USB
Kris Maglione wrote: http://www.freebsd.org/releases/5.3R/hardware-i386.html Kevin Downey wrote: Are any 802.11whatever USB adapters supported/working? Sorry for the plain url. For these types of questions, always check the hardware notes for your platform/release before asking. I have no real answer, but according to hardware notes for 5.3-RELEASE on i386, no. signature.asc Description: OpenPGP digital signature
FreeBSD 5.3-R, postfix smtp dying with sig11
Below is an email I sent about this to the postfix-users list last week, but there've been no replies so I'm forwarding it on to freebsd-questions. Thanks, Bryan -- Forwarded message -- From: Bryan Fullerton <[EMAIL PROTECTED]> Date: Wed, 5 Jan 2005 13:58:00 -0500 Subject: premature end-of-input on private/smtp socket To: [EMAIL PROTECTED] Howdy, I've just moved my Mailman lists from an older machine (P3/933, U160 SCSI, no RAID, ECC RAM, FreeBSD 5.2.1) to a newer machine (P4/2.8G w/HT, SATA on 3Ware 8006-2LP, RAID1, ECC RAM, FreeBSD 5.3). I'm occasionally seeing messages from postfix in the maillog that concern me. Specifically: Jan 5 12:56:43 lists postfix/qmgr[30760]: warning: premature end-of-input on private/smtp socket while reading input attribute name Jan 5 12:56:43 lists postfix/qmgr[30760]: warning: private/smtp socket: malformed response Jan 5 12:56:43 lists postfix/qmgr[30760]: warning: transport smtp failure -- see a previous warning/fatal/panic logfile record for the problem description Jan 5 12:56:43 lists postfix/master[30758]: warning: process /usr/local/libexec/postfix/smtp pid 30911 killed by signal 11 So far today: Jan 5 00:00:39 satori kernel: pid 98362 (smtp), uid 125: exited on signal 11 Jan 5 02:05:04 satori kernel: pid 2097 (smtp), uid 125: exited on signal 11 Jan 5 11:37:03 satori kernel: pid 20574 (smtp), uid 125: exited on signal 11 Jan 5 12:56:43 satori kernel: pid 30911 (smtp), uid 125: exited on signal 11 This isn't a mail loss issue, as the message will just be deferred and delivered next time the queue is run. But it doesn't look good, and I want to get to the bottom of the problem in case it's something serious. So... what could cause this? Is the sig 11 causing the failure, or is master killing off smtp as a result of some other issue? Anything I can poke at? Thanks, Bryan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Need Guidance in my Internet Connection Sharing configuration
On Tue, Jan 11, 2005 at 09:15:03AM +, Srot BULL wrote: >... If you are getting DHCP from your aDSL modem, it is very likely that it is already doing NAT for you (and firewalling). Doing NAT upon NAT is probably not productive. If you are getting an RFC1597 private (non-routed) address, this is certainly the case. Otherwise, try logging in to your aDSL (the provided documentation should tell you how) and see if it doesn't have NAT settings. If my suspicion is correct, then you simply need to connect a switch or hub between your aDSL modem and your computers. Just be aware, many aDSL modems come configured with a very small DHCP pool (often just 2 or 4 addresses), so you may have to expand that (again, by logging in to the administrative function of your aDSL modem, hopefully through a web browser, though some require an [often Windows-only] custom application). > Thank you for the immediate response > > On Mon, 2005-01-10 at 18:56 -0500, Chuck Swiger wrote: > > Srot BULL wrote: > > [ ... ] > > > By the way, since this is my first try in Internet Connection > > > Sharing...I am not that sure with my cable connections... > > > My internal LAN Card "bge0" is connected to my ADSL Modem while my other > > > externel USB LAN Card "aue0" is connected to my switching hub...and the > > > other PC that I have is also connected to the hub...Is this O.K.? > > > > Your aDSL provider may not be giving you direct IP connectivity, but > > instead > > require you to configure PPPoE access via a username/password. > My connection is simple, I just connect my ethernet cable to my aDSL > broadband modem and then dhcp-client gets the necessary information for > my system to connect to the internet...I think my username/password is > already in my aDSL modem... > Well, does this mean that I will not be able to share my internet > connection at home?...not a big problem though but it hurts!...I can > still just remove and insert the LAN cable to which PC I want to use and > get connected immediately...I only wanted to learn how to configure how > to share internet connection in LAN...and of course brag to my > girlfriend that my FreeBSD is simple and powerful than her MS > $...Hehehe... > Maybe I should be consulting my ISP for this one? Pay some bucks for > internet connection sharing? > By the way, is my system clock wrong or yours? > Once again thank you for the response and hope for other > assistance/information in the future... > > Srot BULL > > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" -- John Lind [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: WIFI USB
http://www.freebsd.org/releases/5.3R/hardware-i386.html Kevin Downey wrote: Are any 802.11whatever USB adapters supported/working? A cursory google search turned up a few people asking similar questions, but positive or negative responses. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" signature.asc Description: OpenPGP digital signature
Re: file roo large !!
On Mon, 10 Jan 2005 23:14:57 +1030 Malcolm Kay <[EMAIL PROTECTED]> wrote: > On Sun, 9 Jan 2005 07:37 pm, mess-mate wrote: > > On Sun, 9 Jan 2005 11:46:51 +1030 > > > > Malcolm Kay <[EMAIL PROTECTED]> wrote: > > > On Sun, 9 Jan 2005 01:07 am, mess-mate wrote: > > > > Hi list, > > > > this is not new I think, but it is for me. > > > > I've searching the net without concrete results. > > > > So, I've copied from an ext3fs a backup file ( home.tar.bz2) > > > > in my home dir. So long it's ok. > > > > But now I've to cp or mv this file to a new ext3fs partition. > > > > And I've an error message " File too large" and stops the > > > > transfer. This file is about 24GB and 21GB are copied before > > > > the stop. This data is very important for me. > > > > > > Are you sure you are posting to the correct mailing list. > > > Ext3fs is basically a linux file system, while this is a FreeBSD > > > list. > > > > > > Malcolm > > > > I do :) > > It's a FreeBSD problem. > > I've installed 5.3 and had to get data from a linux box. > > This data must be returned from the FBSD box. > > It really is not very clear what you are trying to do. > My impression is that you are trying to transfer a backup file from > a linux system to a FBSD system, but later want to return it to the > linux system. > > But why do you wish to store it under an ext3fs on FBSD rather than > a ufs or ufs2 system? > > Does your FBSD ext3fs partition have enough space? > Is it really possible to have a ext3fs mount under FBSD 5.3? I know > you can mount an ext2fs file system and an existing linux ext3fs > will probably mount successfully (without journaling) as an ext2fs; > but is this what are you trying to do? Unless I missed something resently, writing to ext3fs is not good. FreeBSD does not support the journaling on it, so it is only used as ext2fs. > How are you transfering the file from the linux box to the FBSD box? > > You provide very little information on what you are really trying to > do? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD 5.2 RELENG source fails to build
On Mon, Jan 10, 2005 at 06:23:10PM -0800, Joe wrote: > Hmm, now 5.2.1 is having problems with config.h missing. > > > > cd /usr/src > > rm -rf contrib gnu > > cat supfile > *default host=cvsup6.freebsd.org > *default base=/usr > *default prefix=/usr > *default release=cvs > *default delete use-rel-suffix > *default tag=RELENG_5_2 > *default compress > # this is all that is needed for the base system > src-all > ports-all tag=. > > > cvsup supfile > > cd /usr/src > > make buildworld > > ERROR as follows: > > ===> gnu/usr.bin/man/man > cc -O -pipe -mcpu=pentiumpro > -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 > -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX > -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -c > /usr/src/gnu/usr.bin/man/man/man.c > cc -O -pipe -mcpu=pentiumpro > -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 > -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX > -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -c > /usr/src/gnu/usr.bin/man/manpath/manpath.c > cc -O -pipe -mcpu=pentiumpro > -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 > -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX > -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -c > /usr/src/gnu/usr.bin/man/man/glob.c > cc -O -pipe -mcpu=pentiumpro > -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 > -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX > -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -o man man.o > manpath.o glob.o > /usr/obj/usr/src/gnu/usr.bin/man/man/../lib/libman.a -lz > echo Making man.1 from man.man > gzip -cn man.1 > man.1.gz > ===> gnu/usr.bin/man/manpath > make: don't know how to make > /usr/src/gnu/usr.bin/man/lib/config.h. Stop > *** Error code 2 I can't see how gnu/usr.bin/man/manpath/Makefile should be trying to build /usr/src/gnu/usr.bin/man/lib/config.h. Try cd /usr/src make cleandir make cleandir (yes, twice). Kris pgpoAIA4nkTl4.pgp Description: PGP signature
Re: Need Guidance in my Internet Connection Sharing configuration
Srot BULL wrote: Hello and Good Day to all, I have tried to configure my system for Internet Connection Sharing but I could not implement the configuration properly. I am afraid that this is all my mind can figure out. Please look through below and I would appreciate if you could point out the mistakes that I have done or point me to any links that would help me help solve this problem. uname -a FreeBSD r40e.point.ne.jp 5.3-STABLE FreeBSD 5.3-STABLE #1: Mon Jan 10 12:49:58 UTC 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/R40e i386 Kernel Configuration File: #===--- IPFIREWALL OPTIONS ---===# options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=5 options IPFIREWALL_DEFAULT_TO_ACCEPT #=- Enables NAT Functionality -=# options IPDIVERT /etc/rc.conf hostname="r40e.point.ne.jp" #** OutBound Interface **# ifconfig_bge0="DHCP" <...snip...> natd_interface="aue0" this should be your external (ADSL) interface -Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD 5.2 RELENG source fails to build
Hmm, now 5.2.1 is having problems with config.h missing. > cd /usr/src > rm -rf contrib gnu > cat supfile *default host=cvsup6.freebsd.org *default base=/usr *default prefix=/usr *default release=cvs *default delete use-rel-suffix *default tag=RELENG_5_2 *default compress # this is all that is needed for the base system src-all ports-all tag=. > cvsup supfile > cd /usr/src > make buildworld ERROR as follows: ===> gnu/usr.bin/man/man cc -O -pipe -mcpu=pentiumpro -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -c /usr/src/gnu/usr.bin/man/man/man.c cc -O -pipe -mcpu=pentiumpro -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -c /usr/src/gnu/usr.bin/man/manpath/manpath.c cc -O -pipe -mcpu=pentiumpro -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -c /usr/src/gnu/usr.bin/man/man/glob.c cc -O -pipe -mcpu=pentiumpro -I/usr/obj/usr/src/gnu/usr.bin/man/man/../lib -DHAVE_LIBZ=1 -I/usr/src/gnu/usr.bin/man/man/../lib -DSTDC_HEADERS -DPOSIX -DHAS_TROFF -DDO_COMPRESS -DCATMODE=0644 -o man man.o manpath.o glob.o /usr/obj/usr/src/gnu/usr.bin/man/man/../lib/libman.a -lz echo Making man.1 from man.man gzip -cn man.1 > man.1.gz ===> gnu/usr.bin/man/manpath make: don't know how to make /usr/src/gnu/usr.bin/man/lib/config.h. Stop *** Error code 2 Stop in /usr/src/gnu/usr.bin/man. *** Error code 1 Stop in /usr/src/gnu/usr.bin. *** Error code 1 Stop in /usr/src/gnu. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. any ideas? Joe --- Kris Kennaway <[EMAIL PROTECTED]> wrote: > On Sun, Jan 09, 2005 at 08:54:53PM -0800, Joe wrote: > > > Then my drive crashed and so I bought a new one and > > installed FreeBSD 5.2.1 as that was the latest at the time > of > > the crash. > > > > PRISTINE install of 5.2.1 using network install. > > > > Then I ran cvsup > > > > cvsup cvsup_file > > > > The cvsup file was just like the one below, but it said > 5_2 > > instead of 5_3. I was able to build the system with 5.2.1 > and > > uname -a showed patch 11. > > > > > make buildworld > > > cd /usr/src/sys/i386/conf > > > config MYKERNEL > > > cd ../compile/MYKERNEL > > > make && make install > > > reboot > > > > then > > > make installworld > > > > That's pretty much how I got from 5.2.1 install to 5.2.1 > > p11. Worked perfectly fine. > > > > > >Then changing the cvsup file below to be what is it, I > ran > > > > > cvsup cvsup_file > > > cd /usr/src > > > make clean > > > make buildworld > > > > The first error message was on that > > > > /usr/src/contrib/gperf/lib/getopt.h is missing. > > That file is not supposed to be there, so something else is > wrong. > > Post the *exact* output of 'make buildworld' showing context > of the > error. > > Kris > > > ATTACHMENT part 2 application/pgp-signature __ Do you Yahoo!? All your favorites on one personal page Try My Yahoo! http://my.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: BackupPC
dave wrote: Hello, Do you know if there's a port of BackupPC for FreeBSD? I'm looking for a backup solution for multiple platforms centering on a FreeBSD server. I've encountered BackupPC and Bacula, both look promising, primary backups are initially automated to disk then possibly later on to removable media such as DVD. Can I ask why a custom-written script (using rsync) in conjunction with mount_smbfs wouldn't be sufficient? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sendmail problem - Helo command rejected: Host not found
On 2005-01-10 19:38, Chuck Swiger <[EMAIL PROTECTED]> wrote: >Srot BULL wrote: >>> The simple answer is that the name your machine claims to be isn't >>> registered in the DNS, which is normal for dynamic connections. You >>> should either relay all email to the mailserver your ISP should have >>> available, or you should configure your MTA to masquerade as a valid >>> domain. The former is likely to better in terms of passing >>> spam-sensitive mailers. >> >> Can I configure my system's sendmail to the above suggestion that you >> wrote? Or am I stuck to using Evolution/Thunderbird with an SMTP >> setting and not sendmail as my smtp server? [...] > > Go to /etc/mail. Edit freebsd.cf (look for SMART_HOST), point it at your > ISP's mail server. Do "make stop; make install; make start". FWIW, the file edited should be `freebsd.mc', not `freebsd.cf' otherwise a subsequent "make install" will overwrite the edited `freebsd.cf' file with a fresh copy generated from `freebsd.mc'. To the original poster... The configuration process of Sendmail can be a bit tricky, but it has been discussed over and over again in this list. You may also find it useful to search the mailing list archives: http://lists.freebsd.org/pipermail/freebsd-questions/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Onboard sound problem - FBSD 5.2.1 - Epox 8kta3
I recompiled kernel to include' options PNPBIOS ' ... per the Handbook. >From the motherboard manual: Epox 8kta3 motherboard VIA kt133a built in AC97 (by vt82c686b) output of uname : bash-2.05b$ uname -a FreeBSD home.localdomain 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE #0: Sun Jan 9 09:07:26 CST 2005 [EMAIL PROTECTED] :/usr/src/sys/i386/compile/MYKERNEL i386 bash-2.05b$ output of dmesg : bash-2.05b$ dmesg Copyright (c) 1992-2004 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 5.2.1-RELEASE #0: Sun Jan 9 09:07:26 CST 2005 [EMAIL PROTECTED] :/usr/src/sys/i386/compile/MYKERNEL Preloaded elf kernel "/boot/kernel/kernel" at 0xc0a35000. Preloaded elf module "/boot/kernel/acpi.ko" at 0xc0a351f4. Timecounter "i8254" frequency 1193182 Hz quality 0 CPU: AMD Athlon(tm) processor (1403.19-MHz 686-class CPU) Origin = "AuthenticAMD" Id = 0x644 Stepping = 4 Features=0x183f9ff AMD Features=0xc044 real memory = 872349696 (831 MB) avail memory = 837726208 (798 MB) Pentium Pro MTRR support enabled npx0: [FAST] npx0: on motherboard npx0: INT 16 interface acpi0: on motherboard pcibios: BIOS version 2.10 Using $PIR table, 9 entries at 0xc00fde40 acpi0: Power Button (fixed) Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000 acpi_timer0: <24-bit timer at 3.579545MHz> port 0x4008-0x400b on acpi0 acpi_cpu0: on acpi0 acpi_button0: on acpi0 pcib0: port 0x6000-0x607f,0x5000-0x500f,0x4080-0x40ff,0x4000-0x407f,0xcf8-0xcff on acpi0 pci0: on pcib0 pcib0: slot 7 INTD is routed to irq 11 pcib0: slot 7 INTD is routed to irq 11 pcib0: slot 7 INTC is routed to irq 12 pcib0: slot 13 INTA is routed to irq 11 agp0: mem 0xd000-0xd7ff at device 0.0 on pci0 pcib1: at device 1.0 on pci0 pci1: on pcib1 pcib0: slot 1 INTA is routed to irq 10 pcib1: slot 0 INTA is routed to irq 10 pci1: at device 0.0 (no driver attached) isab0: at device 7.0 on pci0 isa0: on isab0 atapci0: port 0xd000-0xd00f at device 7.1 on pci0 atapci0: Correcting VIA config for southbridge data corruption bug ata0: at 0x1f0 irq 14 on atapci0 ata0: [MPSAFE] ata1: at 0x170 irq 15 on atapci0 ata1: [MPSAFE] uhci0: port 0xd400-0xd41f irq 11 at device 7.2 on pci0 usb0: on uhci0 usb0: USB revision 1.0 uhub0: VIA UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered ums0: Kensington Kensington USB/PS2 Wheel Mouse, rev 1.10/1.00, addr 2, iclass 3/1 ums0: 3 buttons and Z dir. uhub1: ORTEK ORTEK KH12 USB Hub, class 9/0, rev 1.10/3.00, addr 3 uhub1: 3 ports with 2 removable, bus powered ukbd0: ORTEK USB Hub/Keyboard, rev 1.10/3.00, addr 4, iclass 3/1 kbd0 at ukbd0 uhci1: port 0xd800-0xd81f irq 11 at device 7.3 on pci0 usb1: on uhci1 usb1: USB revision 1.0 uhub2: VIA UHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered pci0: at device 7.4 (no driver attached) pci0: at device 7.5 (no driver attached) dc0: port 0xe800-0xe8ff mem 0xe900-0xe90003ff irq 11 at device 13.0 on pci0 dc0: Ethernet address: 00:04:5a:7d:96:c5 miibus0: on dc0 ukphy0: on miibus0 ukphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto fdc0: port 0x3f7,0x3f0-0x3f5 irq 6 drq 2 on acpi0 fdc0: FIFO enabled, 8 bytes threshold fd0: <1440-KB 3.5" drive> on fdc0 drive 0 sio0 port 0x3f8-0x3ff irq 4 on acpi0 sio0: type 16550A sio1 port 0x2f8-0x2ff irq 3 on acpi0 sio1: type 16550A ppc0 port 0x378-0x37f irq 7 on acpi0 ppc0: Generic chipset (EPP/NIBBLE) in COMPATIBLE mode ppbus0: on ppc0 plip0: on ppbus0 lpt0: on ppbus0 lpt0: Interrupt-driven port ppi0: on ppbus0 orm0: at iomem 0xc-0xc7fff on isa0 pmtimer0 on isa0 atkbdc0: at port 0x64,0x60 on isa0 sc0: at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> vga0: at port 0x3c0-0x3df iomem 0xa-0xb on isa0 Timecounter "TSC" frequency 1403191078 Hz quality 800 Timecounters tick every 10.000 msec acpi_cpu: throttling enabled, 2 steps (100% to 50.0%), currently 100.0% GEOM: create disk ad1 dp=0xc6520e60 ad1: 39266MB [79780/16/63] at ata0-slave UDMA100 acd0: CDROM at ata1-master PIO3 Mounting root from ufs:/dev/ad1s1a drm0: <3dfx Voodoo5> port 0xc000-0xc0ff mem 0xd800-0xdfff,0xe000-0xe3ff irq 10 at device 0.0 on pci1 info: [drm] Initialized tdfx 1.0.0 20010216 on minor 0 bash-2.05b$ Is this the important part...? pci0: at device 7.5 (no driver attached) Any help is greatly appreciated Thank you, Gable Barber ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: hdparm for FreeBSD?
On Jan 10, 2005, at 7:33 PM, Kirk Strauser wrote: On Monday 10 January 2005 05:04 pm, Lowell Gilbert wrote: You mean like atacontrol(8)? Or maybe you mean something more like tunefs(8)? Nope. atacontrol returns information about a drive's capabilities, but offers no way to change the settings that affect them. Example: # atacontrol cap 2 0 [...] write cacheyes yes read ahead yes yes dma queued no no 0/0x00 SMART yes yes microcode download yes yes security yes no power management yes yes advanced power management no no 0/0x00 automatic acoustic management yes no 254/0xFE 128/0x80 shows that read ahead is available and enabled, but I don't have a way to turn it off. tunefs only affects a filesystem's attributes but not the underlying hardware. "man ata" lists the sysctl for controlling write caching: hw.ata.wc set to 1 to enable Write Caching, 0 to disable (default is enabled). WARNING: can cause data loss on power failures. I don't know of any tool for setting the wc preference on a per-ata-drive basis for FreeBSD. Camcontrol allows setting the mode page on SCSI devices, which is where this task is performed in SCSI. IIRC there was some discussion of support for S.M.A.R.T. coming to FreeBSD, which seems like it would be the logical place for manufacturers to provide a control interface to their drive hardware. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: hdparm for FreeBSD?
On Monday 10 January 2005 05:04 pm, Lowell Gilbert wrote: > You mean like atacontrol(8)? > Or maybe you mean something more like tunefs(8)? Nope. atacontrol returns information about a drive's capabilities, but offers no way to change the settings that affect them. Example: # atacontrol cap 2 0 [...] write cacheyes yes read ahead yes yes dma queued no no 0/0x00 SMART yes yes microcode download yes yes security yes no power management yes yes advanced power management no no 0/0x00 automatic acoustic management yes no 254/0xFE128/0x80 shows that read ahead is available and enabled, but I don't have a way to turn it off. tunefs only affects a filesystem's attributes but not the underlying hardware. -- Kirk Strauser pgpw52zm08NOf.pgp Description: PGP signature
perl bsdpan install Text::Aspell problem
I am using FreeBSD 4.10 stable with the perl 5.8 port and can't install Text:Aspell. I need some help because I don't know much about bsdpan perl stuff. What am I doing wrong? I did this: perl -MCPAN -e shell install Bundle::CPAN with no problems.but then I did this: cpan> install Text::Aspell CPAN: Storable loaded ok Going to read /root/.cpan/Metadata Database was generated on Mon, 10 Jan 2005 08:53:12 GMT Running install for module Text::Aspell Running make for H/HA/HANK/Text-Aspell-0.04.tar.gz LWP not available CPAN: Net::FTP loaded ok Fetching with Net::FTP: ftp://archive.progeny.com/CPAN/authors/id/H/HA/HANK/Text-Aspell-0.04.tar.gz CPAN: Digest::MD5 loaded ok LWP not available Fetching with Net::FTP: ftp://archive.progeny.com/CPAN/authors/id/H/HA/HANK/CHECKSUMS CPAN: Compress::Zlib loaded ok Checksum for /root/.cpan/sources/authors/id/H/HA/HANK/Text-Aspell-0.04.tar.gz ok Scanning cache /root/.cpan/build for sizes Text-Aspell-0.04/ Text-Aspell-0.04/t/ Text-Aspell-0.04/t/test.t Text-Aspell-0.04/MANIFEST Text-Aspell-0.04/typemap Text-Aspell-0.04/Aspell.xs Text-Aspell-0.04/META.yml Text-Aspell-0.04/Aspell.pm Text-Aspell-0.04/Changes Text-Aspell-0.04/Makefile.PL Text-Aspell-0.04/README CPAN.pm: Going to build H/HA/HANK/Text-Aspell-0.04.tar.gz Checking if your kit is complete... Looks good Writing Makefile for Text::Aspell cp Aspell.pm blib/lib/Text/Aspell.pm /usr/local/bin/perl /usr/local/lib/perl5/5.8.5/ExtUtils/xsubpp -noprototypes -typemap /usr/local/lib/perl5/5.8.5/ExtUtils/typemap -typemap typemap Aspell.xs > Aspell.xsc && mv Aspell.xsc Aspell.c cc -c-DAPPLLIB_EXP="/usr/local/lib/perl5/5.8.5/BSDPAN" -DHAS_FPSETMASK -DHAS_FLOATINGPOINT_H -fno-strict-aliasing -pipe -I/usr/local/include -O -pipe-DVERSION=\"0.04\" -DXS_VERSION=\"0.04\" -DPIC -fPIC "-I/usr/local/lib/perl5/5.8.5/mach/CORE" Aspell.c Aspell.c: In function `XS_Text__Aspell_DESTROY': Aspell.c:98: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_create_speller': Aspell.c:125: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_print_config': Aspell.c:158: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_set_option': Aspell.c:194: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_remove_option': Aspell.c:230: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_get_option': Aspell.c:266: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_get_option_as_list': Aspell.c:309: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_errstr': Aspell.c:353: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_errnum': Aspell.c:378: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_check': Aspell.c:404: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_suggest': Aspell.c:448: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_add_to_personal': Aspell.c:497: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_add_to_session': Aspell.c:536: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_store_replacement': Aspell.c:576: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_save_all_word_lists': Aspell.c:614: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_clear_session': Aspell.c:652: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_list_dictionaries': Aspell.c:696: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_dictionary_info': Aspell.c:753: warning: cast to pointer from integer of different size Aspell.c: In function `XS_Text__Aspell_fetch_option_keys': Aspell.c:813: warning: cast to pointer from integer of different size Running Mkbootstrap for Text::Aspell () chmod 644 Aspell.bs rm -f blib/arch/auto/Text/Aspell/Aspell.so LD_RUN_PATH="/usr/local/lib" cc -shared -L/usr/local/lib Aspell.o -o blib/arch/auto/Text/Aspell/Aspell.so -laspell chmod 755 blib/arch/auto/Text/Aspell/Aspell.so cp Aspell.bs blib/arch/auto/Text/Aspell/Aspell.bs chmod 644 blib/arch/auto/Text/Aspell/Aspell.bs Manifying blib/man3/Text::Aspell.3 /usr/bin/make -- OK Running make test PERL_DL_NONLAZY=1 /usr/local/bin/perl "-MExtUtils::Command::MM" "-e" "test_harness(0, 'blib/lib', 'blib/arch')" t/*.t t/testFAILED tests 16-17, 20 Failed 3/21 tests, 85.71% okay Failed Test Stat Wstat Total Fail Failed List of Failed --- t
Re: Need Guidance in my Internet Connection Sharing configuration
Hello To make sure I understand, you can reach the internet from your router? So it is really a routing problem, right? The interface connected to the modem is bge0? aue0 is connected to your internal network?! Your internal machines can ping the router?? If everything is so then try natd_interface="bge0" instead of what you have. Actually I'm not sure at all because I'm not on my machine. Anyways, might be worth a shot. Ohh and don't forget to reboot after you did the changes. If this doesn't work I would try everything without all those firewall rules. Start out easy and when it works you can still add rule after rule. Always try pinging IPs because DNS might not work right away. HTH, Ben On Tue, 2005-01-11 at 08:37 +, Srot BULL wrote: > Hello and Good Day to all, > > I have tried to configure my system for Internet Connection Sharing but > I could not implement the configuration properly. I am afraid that this > is all my mind can figure out. Please look through below and I would > appreciate if you could point out the mistakes that I have done or point > me to any links that would help me help solve this problem. > > > uname -a > FreeBSD r40e.point.ne.jp 5.3-STABLE FreeBSD 5.3-STABLE #1: Mon Jan 10 > 12:49:58 > UTC 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/R40e i386 > > Kernel Configuration File: > #===--- IPFIREWALL OPTIONS ---===# > options IPFIREWALL > options IPFIREWALL_VERBOSE > options IPFIREWALL_VERBOSE_LIMIT=5 > options IPFIREWALL_DEFAULT_TO_ACCEPT > #=- Enables NAT Functionality -=# > options IPDIVERT > > /etc/rc.conf > hostname="r40e.point.ne.jp" > #** OutBound Interface **# > ifconfig_bge0="DHCP" > #** Internal LAN Interface **# > ifconfig_aue0="inet 10.20.30.1 netmask 255.0.0.0" > gateway_enable="YES" > natd_enable="YES" > natd_interface="aue0" > natd_flags="-dynamic -m" > firewall_enable="YES" > firewall_script="/etc/ipfw.rulesets" > firewall_type="OPEN" > firewall_quiet="YES" > firewall_logging_enable="YES" > > This is my /etc/ipfw.rulesets: > -- > #!/bin/sh > > ipfw -q -f flush > CMD="ipfw -q add" > SKIP="skipto 00800" > KS="keep-state" > INIC="bge0" > > $CMD 5 allow all from any to any via aue0 > $CMD 00010 allow all from any to any via lo0 > $CMD 00014 divert natd ip from any to any in via $INIC > $CMD 00015 check-state > > $CMD 00020 $SKIP tcp from any to 192.168.0.1 53 out via $INIC setup $KS > $CMD 00021 $SKIP udp from any to 192.168.0.1 53 out via $INIC $KS > $CMD 00030 $SKIP udp from any to 192.168.0.1 67 out via $INIC $KS > $CMD 00040 $SKIP tcp from any to any 80 out via $INIC setup $KS > $CMD 00050 $SKIP tcp from any to any 443 out via $INIC setup $KS > $CMD 00060 $SKIP tcp from any to any 25 out via $INIC setup $KS > $CMD 00061 $SKIP tcp from any to any 110 out via $INIC setup $KS > $CMD 00070 $SKIP tcp from me to any out via $INIC setup $KS uid root > $CMD 00080 $SKIP icmp from any to any out via $INIC $KS > $CMD 00090 $SKIP tcp from any to any 37 out via $INIC setup $KS > $CMD 00100 $SKIP tcp from any to any 119 out via $INIC setup $KS > $CMD 00110 $SKIP tcp from any to any 22 out via $INIC setup $KS > $CMD 00120 $SKIP tcp from any to any 43 out via $INIC setup $KS > $CMD 00130 $SKIP udp from any to any 123 out via $INIC $KS > > $CMD 00300 deny all from 192.168.0.0/16 to any in via $INIC > $CMD 00301 deny all from 172.16.0.0/12 to any in via $INIC > $CMD 00302 deny all from 10.0.0.0/8 to any in via $INIC > $CMD 00303 deny all from 127.0.0.0/8 to any in via $INIC > $CMD 00304 deny all from 0.0.0.0/8 to any in via $INIC > $CMD 00305 deny all from 169.254.0.0/16 to any in via $INIC > $CMD 00306 deny all from 192.0.2.0/24 to any in via $INIC > $CMD 00307 deny all from 204.152.64.0/23 to any in via $INIC > $CMD 00308 deny all from 224.0.0.0/3 to any in via $INIC > #$CMD 00310 deny icmp from any to any in via $INIC > $CMD 00315 deny tcp from any to any 113 in via $INIC > $CMD 00320 deny tcp from any to any 137 in via $INIC > $CMD 00321 deny tcp from any to any 138 in via $INIC > $CMD 00322 deny tcp from any to any 139 in via $INIC > $CMD 00323 deny tcp from any to any 81 in via $INIC > $CMD 00330 deny all from any to any frag in via $INIC > $CMD 00332 deny tcp from any to any established in via $INIC > > $CMD 00360 allow udp from any to 192.168.0.1 67 in via $INIC $KS > #$CMD 00370 allow tcp from any to me 80 in via $INIC setup limit > src-addr 2 > #$CMD 00380 allow tcp from any to me 22 in via $INIC setup limit > src-addr 2 > #$CMD 00390 allow tcp from any to me 23 in via $INIC setup limit > src-addr 2 > $CMD 00400 deny log all from any to any in via $INIC > $CMD 00450 deny log all from any to any out via $INIC > $CMD 00800 divert natd ip from any to any out via $INIC > $CMD 00801 allow ip from any to any > $CMD 00999 deny log all from any to any > > > The pr
growisofs killing every other DVD+R
I'm new to this list and how to ask it for help, so please bear with me if I have omitted anything critical or have included too much or am in the wrong place entirely. I'm running: > sally# uname -a > FreeBSD sally.keebler.homeunix.net 4.10-RELEASE FreeBSD 4.10-RELEASE > #3: Mon Dec 27 18:45:53 EST 2004 > [EMAIL PROTECTED]:/usr/src/sys/compile/C3 i386 And I recently installed a DVD burnerso that I could do system backups: > sally# dmesg|grep cd1 > acd1: DVD-R at ata1-slave PIO4 > acd1: DVD-R at ata1-slave PIO4 > cd1 at ata1 bus 0 target 1 lun 0 > cd1: Removable CD-ROM SCSI-0 device > cd1: 16.000MB/s transfers > cd1: cd present [1 x 2048 byte records] I know there are "better" backup solutions, but this system is for home use and I just want to get backups going. Eventually (e.g. as soon as I figure out how) I will be doing proper dumps, but for now I'm pouring things off into cd9660 filesystems. I've been using growfs > sally# growisofs --version > * growisofs by <[EMAIL PROTECTED]>, version 5.19-1, > front-ending to mkisofs: mkisofs 2.0.3 (i386-unknown-freebsd4.10) to do all this, and for the first disk, it did just fine. The problem is the *second* disk: > sally# growisofs -dvd-compat -Z /dev/cd1c=farm5.iso > Executing 'builtin_dd if=farm5.iso of=/dev/pass1 obs=32k seek=0' > /dev/pass1: "Current Write Speed" is 8.2x1385KBps. > 0/3085238272 ( 0.0%) @0x, remaining ??:?? > 0/3085238272 ( 0.0%) @0x, remaining ??:?? > 0/3085238272 ( 0.0%) @0x, remaining ??:?? > :-? the LUN appears to be stuck writing LBA=10h, retry in 0ms > :-[ [EMAIL PROTECTED] failed with SK=2h/ASC=04h/ACQ=08h]: Resource > temporarily unavailable > :-( write failed: Resource temporarily unavailable > /dev/pass1: flushing cache > /dev/pass1: closing track > /dev/pass1: closing disc When I take the ruined disk out, I can see the physical evidence of a short write, but the disk isn't mountable. The best part of all is that once I replace the ruined media and rerun growisofs, the new disk burns flawlessly. Just to taunt me. I am getting this result every single time. I know very little about SCSI but my theory is that some sort of state is being set on the device but not cleared before the next disk is attempted. Any help would be greatly appreciated, and I will happily provide further information if you clue me on how to obtain it. Thanks. -- Carleton Vaughn College Park, Georgia, USA ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Looking for SCSI RAID controller advice Please
Hi I am looking for recommendations for a SCSI raid controller to use preferably with 5.3 instead of 4.X that can be monitored remotely. What do people use for their raid arrays so that they can verify that they are working ok without having to reboot a system? The only things I have found are the few Adaptec Cards with remote monitoring software that only work on 4.X. 10 Bonus points if it also works on AMD-64 Versions. Any help appreciatted. Thanks N. __ Do you Yahoo!? Yahoo! Mail - You care about security. So do we. http://promotions.yahoo.com/new_mail ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Firefox with "Spinlock" error
On Mon, Jan 10, 2005 at 06:26:43PM +, Ned Harrison wrote: > On Monday 10 January 2005 02:17 am, you wrote: > > On Sun, Jan 09, 2005 at 07:47:46PM +, Ned Harrison wrote: > > > I keep getting this error when I try to start Firefox: > > > > > > Fatal error 'Spinlock called when not threaded.' at line 83 in > > > file /usr/src/lib/libpthread/thread/thr_spinlock.c (errno = 0) > > > Abort trap (core dumped) > > > > > > I read from a November post that this was related to out of date files in > > > the ~/.mozilla directory. > > > > No. It's related to being linked to multiple thread libraries, see > > /usr/src/UPDATING. > > > > Kris > > Kris, are you sure you are not with obscurity.org? ;-) That's a mighty > vague > answer! At least to me. One tires of answering the question verbosely after around the 47214'th time ;-) Kris pgppdQOVvte0h.pgp Description: PGP signature
Re: support
there is already a #freebsd on the freenode network and it is everything you want On Mon, 10 Jan 2005 14:00:02 -0800 (PST), Anil Gaddam <[EMAIL PROTECTED]> wrote: > Dear FreeBSD team, > My name is Anil C. Gaddam. I am interested in starting > an official FreeBSD IRC channel. I will start the > channel on Freenode IRC network. Freenode thrives to > host many official supports channels for various > open-source projects. Currently Freenode is home to > Gentto, fedora, and debian. It is also home to widely > known projects such as phpbb. Given permission from > the appropriate authority, I can host a official > channel IRC support channel for Freebsd. This will > greatly benifit newbie users and others who are > experiencing problems and try to seek a "quick fix". > > About freenode: > freenode, a service of Peer-Directed Projects Center. > PDPC is an IRS 501(c)(3) not-for-profit, tax-exempt > corporation. > > He is how freenode describes it self: > > In 1998, the network had about 200 users and less than > 20 channels. We currently peak at over 20,000 users > and contain a wide variety of project channels. It's > hard to maintain a friendly IRC environment, and we > put a lot of effort into it. It requires social hacks > and software hacks. We continue to grow and we'll keep > working to ensure that the network remains a > productive and a useful place. > > = > Sincerely yours, > Anil Gaddam. > Proud supporter of U.N. AIDS FOUNDATION > > == > Today AIDS had created over 14 million orphan children world wide. > Thats number of all children under 5 in america with no one to look after. > For more information please visit http://www.apathyislethal.org > > __ > Do you Yahoo!? > The all-new My Yahoo! - What will yours do? > http://my.yahoo.com > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sendmail problem - Helo command rejected: Host not found
Srot BULL wrote: [ ... ] The simple answer is that the name your machine claims to be isn't registered in the DNS, which is normal for dynamic connections. You should either relay all email to the mailserver your ISP should have available, or you should configure your MTA to masquerade as a valid domain. The former is likely to better in terms of passing spam-sensitive mailers. Can I configure my system's sendmail to the above suggestion that you wrote? Or am I stuck to using Evolution/Thunderbird with an SMTP setting and not sendmail as my smtp server? [ ... ] Go to /etc/mail. Edit freebsd.cf (look for SMART_HOST), point it at your ISP's mail server. Do "make stop; make install; make start". You may have to twiddle some more, look at the Makefile there and: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mail.html In particular, if your ISP requires your mailer to authenticate, you will need to twiddle the things called an access map for SMTP AUTH. :-) -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Need Guidance in my Internet Connection Sharing configuration
Srot BULL wrote: Thank you for the immediate response No problem, you are welcome. [ ... ] Well, does this mean that I will not be able to share my internet connection at home?...not a big problem though but it hurts!...I can still just remove and insert the LAN cable to which PC I want to use and get connected immediately...I only wanted to learn how to configure how to share internet connection in LAN...and of course brag to my girlfriend that my FreeBSD is simple and powerful than her MS $...Hehehe... Maybe I should be consulting my ISP for this one? Pay some bucks for internet connection sharing? Your aDSL modem may cache the MAC address of the connected computer. You might be able to reset it by power-cycling it after connecting it to a different system, or your ISP may have hard-coded the MAC into it to discourage people from doing what you are doing. [ You may be able to work around such by using a broadband router which lets you configure the MAC address used for the WAN port to be the MAC of the system which works. ] By the way, is my system clock wrong or yours? Your clock seems to be off. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
switching key mappings on a laptop (function and ctrl)
I have a new laptop that has the FN (function) key in the very lower left, and the CTRL key one key to the right of it ... but I like the CTRL key to be in the far lower left ... Is it possible to switch the function of these two keys (not just in X, but in the console, virtual terminals, etc.) thanks. __ Do you Yahoo!? All your favorites on one personal page Try My Yahoo! http://my.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Firefox with "Spinlock" error
On Monday 10 January 2005 02:17 am, you wrote: > On Sun, Jan 09, 2005 at 07:47:46PM +, Ned Harrison wrote: > > I keep getting this error when I try to start Firefox: > > > > Fatal error 'Spinlock called when not threaded.' at line 83 in > > file /usr/src/lib/libpthread/thread/thr_spinlock.c (errno = 0) > > Abort trap (core dumped) > > > > I read from a November post that this was related to out of date files in > > the ~/.mozilla directory. > > No. It's related to being linked to multiple thread libraries, see > /usr/src/UPDATING. > > Kris Kris, are you sure you are not with obscurity.org? ;-) That's a mighty vague answer! At least to me. Your hint however was enough to get me to the right spot to get the problem fixed, though I had to cross referenced it with the November 10th erata note on the main FreeBSD web cite to be sure. Why I hadn't seen that erata note before now I don't know. Both the upgraded Mozilla and Firefox, PLUS my sound are now working. Now I just need to get my printer back on line. Then my upgrade to 5.3 will be complete. Thank you very much for the hint. I'm such a Newbie I didn't even know of the existance of the /usr/src/UPDATING file. I'll remember it now. Sincerely, Ned ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sendmail problem - Helo command rejected: Host not found
Again, thank you for the response, Haaa, I love FreeBSD! On Mon, 2005-01-10 at 18:50 -0500, Chuck Swiger wrote: > Srot BULL wrote: > [ ... ] > > If I am wrong, then can anyone...give me a simple explanation (simple > > please - I know that I am asking too much, but I can assure you that I > > have already bookmarked the sendmail Website and sendmail batbook is > > already in my list of books that I am planning to purchase...not yet > > though) > > The simple answer is that the name your machine claims to be isn't registered > in the DNS, which is normal for dynamic connections. You should either relay > all email to the mailserver your ISP should have available, or you should > configure your MTA to masquerade as a valid domain. > The former is likely to better in terms of passing spam-sensitive mailers. Can I configure my system's sendmail to the above suggestion that you wrote? Or am I stuck to using Evolution/Thunderbird with an SMTP setting and not sendmail as my smtp server? You know what, I once tried following an article from the BSD Hack book that I have but because of my poor knowledge in sendmail I could no longer received emails then...So, I had to reinstall my system again...that was months ago...Maybe I should try that one again and post it in the ML if I encounter problems (I know I will)... Again, is my system clock wrong or yours? I thought I have mine as correct... Once again thank you for the response and hoping for responses from you in the future... Srot BULL ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Need Guidance in my Internet Connection Sharing configuration
Thank you for the immediate response On Mon, 2005-01-10 at 18:56 -0500, Chuck Swiger wrote: > Srot BULL wrote: > [ ... ] > > By the way, since this is my first try in Internet Connection > > Sharing...I am not that sure with my cable connections... > > My internal LAN Card "bge0" is connected to my ADSL Modem while my other > > externel USB LAN Card "aue0" is connected to my switching hub...and the > > other PC that I have is also connected to the hub...Is this O.K.? > > Your aDSL provider may not be giving you direct IP connectivity, but instead > require you to configure PPPoE access via a username/password. My connection is simple, I just connect my ethernet cable to my aDSL broadband modem and then dhcp-client gets the necessary information for my system to connect to the internet...I think my username/password is already in my aDSL modem... Well, does this mean that I will not be able to share my internet connection at home?...not a big problem though but it hurts!...I can still just remove and insert the LAN cable to which PC I want to use and get connected immediately...I only wanted to learn how to configure how to share internet connection in LAN...and of course brag to my girlfriend that my FreeBSD is simple and powerful than her MS $...Hehehe... Maybe I should be consulting my ISP for this one? Pay some bucks for internet connection sharing? By the way, is my system clock wrong or yours? Once again thank you for the response and hope for other assistance/information in the future... Srot BULL ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Upgrade to Courier 4.0.1?
Scott Bye wrote: [ ...format recovered... ] > I actually found that new RC flag for the authdaemon about 2 minutes after > my last post, and that fixed my problems. I must confess I didn't notice the > change in the SSL ones though. > > Is there anywhere these kind of things are documented/displayed? Yes, /usr/ports/UPDATING and sometimes in a port's pkg-message file, if one exists. If the port has a maintainer, communicating any surprises to that person will hopefully result in better documentation. -- -Chuck Thanks, IMHO this kind of info should be in the pkg-message file, and I shall drop the maintainer a line tomorrow to suggest just that. Regards, Scott The information in this e-mail and any attachments is confidential and may be legally privileged. It is intended solely for the addressee or addressees. If you are not an intended recipient, please delete the message and any attachments and notify the sender of mis-delivery; any use or disclosure of the contents of either is un-authorised and may be unlawful. All liability for viruses is excluded to the fullest extent permitted by law. Any views expressed in this message are those of the individual sender, except where the sender states them, with requisite authority, to be those of Converged Services Ltd. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
artware wrote: Hello again, My 5.3R system has only been up a little over a week, and I've already had a few breakin attempts -- they show up as Illegal user tests in the /var/log/auth.log... It looks like they're trying common login names (probably with the login name used as passwd). It takes them hours to try a dozen names, but I'd rather not have any traffic from these folks. Is there any way to blacklist IPs at the system level, or do I have to hack something together for each daemon? - ben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" Here's what I do - as root: route -nq add -host xxx.xxx.xxx.xxx 127.0.0.1 -blackhole To the attacker, it looks as if you dropped off the net. -- Best regards, Chris To save disk space in your home directory, compress files you rarely use with "gzip filename". -- Dru <[EMAIL PROTECTED]> ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Upgrade to Courier 4.0.1?
Scott Bye wrote: [ ...format recovered... ] I actually found that new RC flag for the authdaemon about 2 minutes after my last post, and that fixed my problems. I must confess I didn't notice the change in the SSL ones though. Is there anywhere these kind of things are documented/displayed? Yes, /usr/ports/UPDATING and sometimes in a port's pkg-message file, if one exists. If the port has a maintainer, communicating any surprises to that person will hopefully result in better documentation. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Upgrade to Courier 4.0.1?
On 01/10/05 11:58 PM, Scott Bye sat at the `puter and typed: > Thanks :) > > I actually found that new RC flag for the authdaemon about 2 minutes after my > last post, and that fixed my problems. I must confess I didn't notice the > change in the SSL ones though. > > Is there anywhere these kind of things are documented/displayed? > Not that I noticed. The port should probably put it in a pkg-message file, since it's really a FreeBSD port change. I found it the hard way. Lou -- Louis LeBlanc [EMAIL PROTECTED] Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org ԿԬ Bug, n.: An aspect of a computer program which exists because the programmer was thinking about Jumbo Jacks or stock options when s/he wrote the program. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Upgrade to Courier 4.0.1?
Thanks :) I actually found that new RC flag for the authdaemon about 2 minutes after my last post, and that fixed my problems. I must confess I didn't notice the change in the SSL ones though. Is there anywhere these kind of things are documented/displayed? Regards, Scott -Original Message- From: [EMAIL PROTECTED] on behalf of Louis LeBlanc Sent: Mon 1/10/2005 8:35 PM To: freebsd-questions@freebsd.org Subject: Re: Upgrade to Courier 4.0.1? On 01/10/05 01:44 PM, Scott Bye sat at the `puter and typed: > I updated to this via ports, and the services appear to be running and > listening for connections. > > However, if I connect to them, I get disconnected immediately, and > nothing appears to be logged for any of the services. > > It's obviously affecting both POP3 and IMAP, leaving the mail services on my > server useless. > > I tried reinstalling the port for courier-imap, but it complained that > it couldn't find courierlogger. So I reinstalled courier-authlib from > ports, and reinstalled courier-imap and it no longer complained. > However, the services are still doing exactly the same! > > Any ideas what has happened?! > I just ran into the same kind of problems. I finally found that in addition to the courier_authdaemond_enable="YES" enabler in /etc/rc.conf, the imapd-ssl enable tag has changed. Where you used to need courier_imap_imapdssl_enable="YES" in your /etc/rc.conf, you now need courier_imap_imapd_ssl_enable="YES" I don't use pop or unencrypted imap, so you'd have to verify that those haven't changed if you use them. HTH Lou -- Louis LeBlanc [EMAIL PROTECTED] Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org ԿԬ "Here's something to think about: How come you never see a headline like `Psychic Wins Lottery'?" -- Jay Leno ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" The information in this e-mail and any attachments is confidential and may be legally privileged. It is intended solely for the addressee or addressees. If you are not an intended recipient, please delete the message and any attachments and notify the sender of mis-delivery; any use or disclosure of the contents of either is un-authorised and may be unlawful. All liability for viruses is excluded to the fullest extent permitted by law. Any views expressed in this message are those of the individual sender, except where the sender states them, with requisite authority, to be those of Converged Services Ltd. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Need Guidance in my Internet Connection Sharing configuration
Srot BULL wrote: [ ... ] By the way, since this is my first try in Internet Connection Sharing...I am not that sure with my cable connections... My internal LAN Card "bge0" is connected to my ADSL Modem while my other externel USB LAN Card "aue0" is connected to my switching hub...and the other PC that I have is also connected to the hub...Is this O.K.? Your aDSL provider may not be giving you direct IP connectivity, but instead require you to configure PPPoE access via a username/password. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: ip address behind router ?
On Mon, Jan 10, 2005 at 03:52:02PM -0600, Brian Davis wrote: > On Sun, 9 Jan 2005 14:38:56 +0100 > FreeBsdBeni <[EMAIL PROTECTED]> wrote: > > > Hi, > > > > How do I find what ip address I'm really having ? > > My adsl modem/firewall gives me a dynamic private address : > > 192.168.1.101, which is what I see with an ifconfig. But how do I find > > the real (dynamic) address given to my modem by my provider ? > > I'm using 5.3-rel-p4. > > -- > > Beni. > > > > Try the traceroute command. The first IP address will be the > address of your modem. If I traceroute my ISP this is the output. > The 1st line contains the IP address of my cable modem. That doesn't work well if you use NAT, because traceroute works only in one direction (forward). With NAT you will see something like 1. internal address of your nat box/router (say: 192.168.1.1) 2. address of your NAT box' peer (the ISP router at the other end of the ADSL link, not your external address) 3. other addresses. The problem is that between 1 and 2, you won't see the external address of your NAT box (the one it got e.g. via DHCP). If you want to see that address, you'll have to perform the traceroute 'backwards'. That's what RR-Records in the ICMP protocol are for. % ping -R www.freebsd.org PING www.freebsd.org (216.136.204.117): 56 data bytes 64 bytes from 216.136.204.117: icmp_seq=0 ttl=53 time=235.246 ms RR: natbox.yourdomain.tld (a.b.c.d) upstream.yourprovider.tld (e.f.g.h) ... more addresses here ... Your external address would be a.b.c.d in the example above. e.f.g.h would be the 'other side' of your peer (isp) router (looking to ITS upstream router and away from you). Essentially, RR records are being seen from the destination (here: www.freebsd.org) rather than from the source. That's the only way to see the external address (a.b.c.d) of your NAT box. Cheers, -cpghost. -- Cordula's Web. http://www.cordula.ws/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sendmail problem - Helo command rejected: Host not found
Srot BULL wrote:
[ ... ]
If I am wrong, then can anyone...give me a simple explanation (simple
please - I know that I am asking too much, but I can assure you that I
have already bookmarked the sendmail Website and sendmail batbook is
already in my list of books that I am planning to purchase...not yet
though)
The simple answer is that the name your machine claims to be isn't registered
in the DNS, which is normal for dynamic connections. You should either relay
all email to the mailserver your ISP should have available, or you should
configure your MTA to masquerade as a valid domain.
The former is likely to better in terms of passing spam-sensitive mailers.
[ ... ]
<<< 450 : Helo command rejected: Host not found
... Deferred: 450 :
Helo command rejected: Host not found
<<< 554 Error: no valid recipients
Warning: message still undelivered after 4 hours
Will keep trying until message is 5 days old
Yes, see the NXDOMAIN response ("no such domain"):
28-cube% dig r40e.point.ne.jp.
; <<>> DiG 9.2.2 <<>> r40e.point.ne.jp.
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59233
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
[ ... ]
--
-Chuck
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Need Guidance in my Internet Connection Sharing configuration
Hello and Good Day to all, I have tried to configure my system for Internet Connection Sharing but I could not implement the configuration properly. I am afraid that this is all my mind can figure out. Please look through below and I would appreciate if you could point out the mistakes that I have done or point me to any links that would help me help solve this problem. uname -a FreeBSD r40e.point.ne.jp 5.3-STABLE FreeBSD 5.3-STABLE #1: Mon Jan 10 12:49:58 UTC 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/R40e i386 Kernel Configuration File: #===--- IPFIREWALL OPTIONS ---===# options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_VERBOSE_LIMIT=5 options IPFIREWALL_DEFAULT_TO_ACCEPT #=- Enables NAT Functionality -=# options IPDIVERT /etc/rc.conf hostname="r40e.point.ne.jp" #** OutBound Interface **# ifconfig_bge0="DHCP" #** Internal LAN Interface **# ifconfig_aue0="inet 10.20.30.1 netmask 255.0.0.0" gateway_enable="YES" natd_enable="YES" natd_interface="aue0" natd_flags="-dynamic -m" firewall_enable="YES" firewall_script="/etc/ipfw.rulesets" firewall_type="OPEN" firewall_quiet="YES" firewall_logging_enable="YES" This is my /etc/ipfw.rulesets: -- #!/bin/sh ipfw -q -f flush CMD="ipfw -q add" SKIP="skipto 00800" KS="keep-state" INIC="bge0" $CMD 5 allow all from any to any via aue0 $CMD 00010 allow all from any to any via lo0 $CMD 00014 divert natd ip from any to any in via $INIC $CMD 00015 check-state $CMD 00020 $SKIP tcp from any to 192.168.0.1 53 out via $INIC setup $KS $CMD 00021 $SKIP udp from any to 192.168.0.1 53 out via $INIC $KS $CMD 00030 $SKIP udp from any to 192.168.0.1 67 out via $INIC $KS $CMD 00040 $SKIP tcp from any to any 80 out via $INIC setup $KS $CMD 00050 $SKIP tcp from any to any 443 out via $INIC setup $KS $CMD 00060 $SKIP tcp from any to any 25 out via $INIC setup $KS $CMD 00061 $SKIP tcp from any to any 110 out via $INIC setup $KS $CMD 00070 $SKIP tcp from me to any out via $INIC setup $KS uid root $CMD 00080 $SKIP icmp from any to any out via $INIC $KS $CMD 00090 $SKIP tcp from any to any 37 out via $INIC setup $KS $CMD 00100 $SKIP tcp from any to any 119 out via $INIC setup $KS $CMD 00110 $SKIP tcp from any to any 22 out via $INIC setup $KS $CMD 00120 $SKIP tcp from any to any 43 out via $INIC setup $KS $CMD 00130 $SKIP udp from any to any 123 out via $INIC $KS $CMD 00300 deny all from 192.168.0.0/16 to any in via $INIC $CMD 00301 deny all from 172.16.0.0/12 to any in via $INIC $CMD 00302 deny all from 10.0.0.0/8 to any in via $INIC $CMD 00303 deny all from 127.0.0.0/8 to any in via $INIC $CMD 00304 deny all from 0.0.0.0/8 to any in via $INIC $CMD 00305 deny all from 169.254.0.0/16 to any in via $INIC $CMD 00306 deny all from 192.0.2.0/24 to any in via $INIC $CMD 00307 deny all from 204.152.64.0/23 to any in via $INIC $CMD 00308 deny all from 224.0.0.0/3 to any in via $INIC #$CMD 00310 deny icmp from any to any in via $INIC $CMD 00315 deny tcp from any to any 113 in via $INIC $CMD 00320 deny tcp from any to any 137 in via $INIC $CMD 00321 deny tcp from any to any 138 in via $INIC $CMD 00322 deny tcp from any to any 139 in via $INIC $CMD 00323 deny tcp from any to any 81 in via $INIC $CMD 00330 deny all from any to any frag in via $INIC $CMD 00332 deny tcp from any to any established in via $INIC $CMD 00360 allow udp from any to 192.168.0.1 67 in via $INIC $KS #$CMD 00370 allow tcp from any to me 80 in via $INIC setup limit src-addr 2 #$CMD 00380 allow tcp from any to me 22 in via $INIC setup limit src-addr 2 #$CMD 00390 allow tcp from any to me 23 in via $INIC setup limit src-addr 2 $CMD 00400 deny log all from any to any in via $INIC $CMD 00450 deny log all from any to any out via $INIC $CMD 00800 divert natd ip from any to any out via $INIC $CMD 00801 allow ip from any to any $CMD 00999 deny log all from any to any The problem with the above configuration is I do not get connected to my ADSL Modem and no internet connection at all. "netstat -r" shows nothing... Are the configuration enough for me to configure my system for Internet Connection Sharing or do I have to tweak other settings? I would really appreciate any help, hints, or advices... Thank you in advance... By the way, since this is my first try in Internet Connection Sharing...I am not that sure with my cable connections... My internal LAN Card "bge0" is connected to my ADSL Modem while my other externel USB LAN Card "aue0" is connected to my switching hub...and the other PC that I have is also connected to the hub...Is this O.K.? Srot BULL ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
sendmail problem - Helo command rejected: Host not found
Hello and Good Day to all, I could not remember when this problem appeared but I have tried to post 2 to 3 emails to the FreeBSD ML (ACPI, questions...) some months ago...and every time I get the same messages from my sendmail (I think). But since I only use mutt for sending emails to the FreeBSD ML...I thought I should wait and maybe the same problem would come out from the list (maybe it did and I was just practicing mutt and somehow I deleted those emails)... But I do not have problems sending Emails to anywhere if I use Evolution or Thunderbird and using an SMTP Server settings (my ISP's) for sending mails... Now, that I have come to appreciate mutt...I would like to use it from time to time especially when posting Emails to the FreeBSD lists... But this warning messages only comes out when I send Emails to the lists... >From what I can understand since I am not an expert this is just a guess...The FreeBSD ML mail servers could not verify that the Emails that I sent are from a valid list subscriber (something like an anti-spam function) because I have not configured correctly my sendmail settings (guess)... Am I right? and if I am, can anyone show me or give me some advice on how to configure my sendmail that I can use mutt and sendmail to directly send Emails to the list...Please. If I am wrong, then can anyone...give me a simple explanation (simple please - I know that I am asking too much, but I can assure you that I have already bookmarked the sendmail Website and sendmail batbook is already in my list of books that I am planning to purchase...not yet though) I am using 5.3 Stable in my IBM Laptop and a newly assembled Desktop also 5.3 Stable...My Internet connection is to an ADSL Modem (dynamic IP but have not changed since a year and a half ago)... Below are the usual warning message that I get: >** >** THIS IS A WARNING MESSAGE ONLY ** >** YOU DO NOT NEED TO RESEND YOUR MESSAGE ** >** > >The original message was received at Mon, 10 Jan 2005 23:30:20 GMT >from localhost [127.0.0.1] > > - Transcript of session follows - >... while talking to mx1.freebsd.org.: DATA ><<< 450 : Helo command rejected: Host not found >... Deferred: 450 : >Helo command rejected: Host not found ><<< 554 Error: no valid recipients >Warning: message still undelivered after 4 hours >Will keep trying until message is 5 days old Thank you in advance and hoping for any response... Srot BULL ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Odd kernel error on an NFS server
I occasionally see this on an NFS server under heavy load ufs_rename: fvp == tvp (can't happen) Any idea what this means and where I should look to fix it? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: file roo large !!
Malcolm Kay wrote: Is it really possible to have a ext3fs mount under FBSD 5.3? I know you can mount an ext2fs file system and an existing linux ext3fs will probably mount successfully (without journaling) as an ext2fs; but is this what are you trying to do? I've last mounted ext2 on 5.2.1 (it was probably considered broken then since the module was excluded from the kernel build and had to be uncommented explicitly in the Makefile) and encountered a 2gb file size limit. Perhaps this problem isn't completely resolved yet? mkb. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: hdparm for FreeBSD?
Kirk Strauser <[EMAIL PROTECTED]> writes: > Linux users have a tool, hdparm, that lets them adjust all sorts of > drive characteristics (read look-ahead, 32-bit I/O, multi-sector > I/O, and so on) beyond the normal things seen in the hw.ata tree. > Is there an equivalent for FreeBSD? You mean like atacontrol(8)? Or maybe you mean something more like tunefs(8)? -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: openoffice 1.1.4
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Monday 10 January 2005 16:51, Osmany Guirola Cruz wrote: > i get this error trying to install openoffice-1.1-devel > > ./install: not found > > whereis it? http://lists.freebsd.org/pipermail/freebsd-openoffice/2005-January/001197.html Cheers, ch - -- Christian Hiris <[EMAIL PROTECTED]> | OpenPGP KeyID 0x3BCA53BE OpenPGP-Key at hkp://wwwkeys.eu.pgp.net and http://pgp.mit.edu -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFB4whH09WjGjvKU74RAqqVAJ4iAi3Ej8h9Rs2sJ7F++wzSgKxIPgCeLs45 D5fz1CZv5vBN9r5qQPris2c= =/LCK -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
daniel quinn <[EMAIL PROTECTED]> writes:
> On January 10, 2005 05:17 pm, Michael C. Shultz wrote:
> > If the port is allready installed try:
> >pkg_create -b {name of installed port as listed under /var/db/pkg}
>
> cool, thanks
> and what if i don't want it installed on this machine? if i just want to
> build it here for use elsewhere?
You could install to a different prefix (by setting PREFIX, I think)
and point to a different package database (by setting PKG_DBDIR). I'm
not sure if that would work, though; at the very worst, you could
do the package building in a jail like the ports cluster does...
--
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
Chuck Swiger wrote:
daniel quinn wrote:
On January 10, 2005 05:17 pm, Michael C. Shultz wrote:
If the port is allready installed try:
pkg_create -b {name of installed port as listed under /var/db/pkg}
cool, thanks
and what if i don't want it installed on this machine? if i just
want to build it here for use elsewhere?
You could set up a jail and chroot into that before building the port,
if you really want to keep your base system untouched. The pointyhat
cluster used to build packages for the FTP servers does roughly this
in order to provide a clean environment for testing.
I meant to send this before I left work, But here is a script I wrote
for doing just this.
http://www.franksworld.org/localuser_portinstall.html
Let me know if you have any questions regarding setup, This should suit
you nicely, as it will build most any port without root accessm within a
chroot type environment.
-Frank Laszlo
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: NFS export of evolution-SOLVED
On Mon, 2005-01-10 at 22:04 +0100, Erik Norgaard wrote: > Robert Marella wrote: > > On Mon, 2005-01-10 at 10:01 +0100, Erik Norgaard wrote: > > > >>Robert Marella wrote: > >> > >>>Hello > >>> > >>>I am not sure where this problem should go so I am posting to > >>>-questions. > >>> > >>>I have a SOHO set up with several computers running a mix of FreeBSD 5.3 > >>>Release and Stable. I have an NFS server set up so that data can be > >>>shared at all of the computers. > >>> > >>>I would like to have the ability to retrieve mail from any of the > >>>computers I happen to be logged into. I have tried various permutations > >>>of exporting /home, /home/reg-user, and /home/reg-user/.evolution and I > >>>always get the same error when trying to read mail. > >>> > >>>I am able to mount the directory(ies) on the client computers and am > >>>able to call up evolution and see the messages but when I try to read > >>>any message I get this error > >>> > >>>** > >>>Error while Retrieving message 1292 (this number varies of course) > >>> > >>>Failed to get lock using fcntl(2): Operation not supported. > >>>** > >>> > >>>I read the man page for fcntl but I didn't get any help out of it. It > >>>was way over my head. > >>> > >>>Here is the important bits from /etc/exports > >>> > >>>/home/reg-user/.evolution -alldirs notebook.my.local.lan > >>> > >>>I have also tried -maproot with out any luck. I would think this is > >>>possible but I guess I haven't set up the right conditions or options. > >>>Can anyone help me out? > >> > >>The error appears to be with filelocking not mounting. Filelocking is a > >>problem on NFS as many independent systems might try to get write access > >>to the same file at the same time. Do you have: > >> > >>rpc_lockd_enable="YES" # Run NFS rpc.lockd needed for client/server. > >>rpc_statd_enable="YES" # Run NFS rpc.statd needed for client/server. > >> > >>in your rc.conf? > > > > > > Eric, > > No I do not have that in my rc.conf. I tried adding it and got the same > > results. Should I try to change the values to ="NO" ?? > > No, default is "NO" (see /etc/defaults/rc.conf for further options). I > don't know if you have to enable it on both client and server, and you > also need rpcbind if it was not enabled. This is the solution. rpcbind, rpc_lockd, and rpc_statd have to be enabled on both the server and the client. I now can sit in the recliner with the laptop and read the maillists. Thanks Erik for pulling on my collar and popping my head out of my ass. Robert > > Note, these are rpc-services, so if you have a strict firewall (that is > any) your clients may not be able to access the lockd. Unfortunately > there is no way of predicting which port lockd will bind to. > > Btw I assume that after adding the above lines to your rc.conf you > succesfully started the services :-) (both statd and lockd are started > by /etc/rc.d/nfslocking start) you should be able to see to which ports > they bind using 'sockstat -4': > > daemon rpc.lockd 3329 3 udp4 *:648 *:* > root rpc.lockd 3328 3 udp4 *:648 *:* > root rpc.statd 3323 5 udp4 *:805 *:* > > if you don't see it check in /var/log/messages if it registred properly > with rpcbind. I just tried and found that lockd wouldn't start without > statd. > > I should add that I haven't really used statd/lockd, but from what I > know, it appears your solution is somewhere in that direction. I hope > this at least works as a pointer for you... :-) > > Cheers, Erik > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: How to save gif0?
Idar Tollefsen wrote: I created the gif0 device with ifconfig, but I can't seem to find a way to "save" it so that I don't have to recreate it at boot time. Any ideas? It's reasonable to put the right commands into an /etc/rc.local, or use /etc/rc.conf's mechanisms to put commands in a /etc/start_if.gif0. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Portupgrade - Ruby error
On Mon, Jan 10, 2005 at 03:25:20PM -0500, Haulmark, Chris wrote: > Having problems using Portupgrade utilities because of Ruby. > > > It started last Friday and I waited for the weekend just in case the > cvs tree will get updated with a possible fix. /usr/ports/UPDATING (and wrap your lines at 70 characters, please). Kris pgpCDPQMTqsSq.pgp Description: PGP signature
How to save gif0?
Hi, I recently added the gif pseudo device to my kernel to set up a VPN tunnel. I created the gif0 device with ifconfig, but I can't seem to find a way to "save" it so that I don't have to recreate it at boot time. Any ideas? - IT ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
On January 10, 2005 05:17 pm, Michael C. Shultz wrote:
> If the port is allready installed try:
>pkg_create -b {name of installed port as listed under /var/db/pkg}
cool, thanks
and what if i don't want it installed on this machine? if i just want to
build it here for use elsewhere?
--
Also, I can kill you with my brain.
- River, Firefly, "Trash"
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
On Monday 10 January 2005 02:10 pm, daniel quinn wrote:
> On January 10, 2005 05:02 pm, Frank Laszlo wrote:
> > daniel quinn wrote:
> > >is this even possible? a number of google results have informed
> > > me that it isn't, but i'm hoping there's a hack or a work around.
> > > essentially, i want to build the packages on one box, copy them
> > > to many boxes and run package_add there.
> > >
> > >suggestions/comments?
> >
> > FYI, this belongs on -ports.
>
> sorry 'bout that. i wasn't sure since it's both a question and
> something concerning ports ;-)
>
> > what is wrong with 'make package' ?
>
> from the ports manual:
>package Make a binary package for the port. The port will be
> installed if it has not already been. The package is a
> .tbz file that you can use to install the port on other
> machines with pkg_add(1). If the directory specified by
> PACKAGES does not exist, the package will be put into
> the current directory. See PKGREPOSITORY and PKGFILE.
>
> sounds encouraging, but here's what happens when i actually try it:
>
> # cd /usr/ports/shells/bash
> # make package
> ===> Installing for bash-3.0.16_1
> ===> bash-3.0.16_1 depends on shared library: intl - found
> ===> Generating temporary packing list
> ===> Checking if shells/bash already installed
> ===> bash-3.0.16_1 is already installed
> You may wish to ``make deinstall'' and install this port
> again by ``make reinstall'' to upgrade it properly.
> If you really wish to overwrite the old port of shells/bash
> without deleting it first, set the variable
> "FORCE_PKG_REGISTER" in your environment or the "make install"
> command line. *** Error code 1
>
> Stop in /usr/ports/shells/bash.
>
> there's nowhere for me to specify that i don't want bash installed on
> this machine.
If the port is allready installed try:
pkg_create -b {name of installed port as listed under /var/db/pkg}
-Mike
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
On January 10, 2005 05:02 pm, Frank Laszlo wrote: > daniel quinn wrote: > >is this even possible? a number of google results have informed me that > > it isn't, but i'm hoping there's a hack or a work around. essentially, i > > want to build the packages on one box, copy them to many boxes and run > > package_add there. > > > >suggestions/comments? > > FYI, this belongs on -ports. sorry 'bout that. i wasn't sure since it's both a question and something concerning ports ;-) > what is wrong with 'make package' ? from the ports manual: package Make a binary package for the port. The port will be installed if it has not already been. The package is a .tbz file that you can use to install the port on other machines with pkg_add(1). If the directory specified by PACKAGES does not exist, the package will be put into the current directory. See PKGREPOSITORY and PKGFILE. sounds encouraging, but here's what happens when i actually try it: # cd /usr/ports/shells/bash # make package ===> Installing for bash-3.0.16_1 ===> bash-3.0.16_1 depends on shared library: intl - found ===> Generating temporary packing list ===> Checking if shells/bash already installed ===> bash-3.0.16_1 is already installed You may wish to ``make deinstall'' and install this port again by ``make reinstall'' to upgrade it properly. If you really wish to overwrite the old port of shells/bash without deleting it first, set the variable "FORCE_PKG_REGISTER" in your environment or the "make install" command line. *** Error code 1 Stop in /usr/ports/shells/bash. there's nowhere for me to specify that i don't want bash installed on this machine. -- Now think real hard. You've been bird-dogging this township a while now. They wouldn't mind a corpse of you. Now you can luxuriate in a nice jail cell, but if your hand touches metal, I swear by my pretty floral bonnet, I will end you. - Mal, Firefly, "Our Mrs. Reynolds" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: nvidia driver problem
Louis LeBlanc wrote: (WW) `fonts.dir' not found (or not valid) in "/usr/X11R6/lib/X11/fonts/Speedo/". Entry deleted from font path. (Run 'mkfontdir' on "/usr/X11R6/lib/X11/fonts/Speedo/"). (WW) `fonts.dir' not found (or not valid) in "/usr/X11R6/lib/X11/fonts/CID/". Entry deleted from font path. (Run 'mkfontdir' on "/usr/X11R6/lib/X11/fonts/CID/"). These are worth fixing, though minor - the entries tell you how. corrected - thanks, i should have done that sooner. (--) NVIDIA(0): VideoRAM: 131072 kBytes (II) NVIDIA(0): Connected display device(s): CRT-1, DFP-0 (WW) NVIDIA(0): Multiple displays connected, but only one display allowed; (WW) NVIDIA(0): using first display (--) NVIDIA(0): Display device CRT-1: maximum pixel clock at 8 bpp: 350 MHz (--) NVIDIA(0): Display device CRT-1: maximum pixel clock at 16 bpp: 350 MHz (--) NVIDIA(0): Display device CRT-1: maximum pixel clock at 32 bpp: 350 MHz You have 2 monitors? If so, I recommend the TwinView config. It's tricky, but works well. no, i dont - i have a single samsung syncmaster 213t - but it has both analog and digital cables, as does the graphics cards. so i plugged them both in. winxp has no trouble switching between the two modes, and although i need to manually switch with freebsd - it still makes a reasonable difference. x is only visible on digital, while console looks terrible unless in analog. strange, but true. # Option "NoLogo" "True" # Option "RenderAccel" "True" You might want to uncomment RenderAccel - try it both ways once you get your color depth right. will try that. As mentioned by the other posters, put the default depth speck in your screen section. i hope this is the key - once the current bout of compiling is complete, i will exit x and try again. Looks like you've got the NVidia AGP working, can I ask whether you compiled it with Linux support? Did you get it from the ports or as a package from NVidia? yes, the agp does seem to be working fine. the nvidia package i downloaded direct from nvidia, and followed their instructions. was easy enough - except for the colour depth. i am not sure, however, if the nvidia driver was compiled with linux support. i did not do anything specific to make it so. i'm not sure if it helps, but my kernel is compiled with linux abi compatibility. and although the directory /compat/linux/usr/lib does exist, it is difficult to tell exactly which libraries nvidia are refering to in their documentation. i guess the tester will be running a gl app. i will test one of the screen savers when i switch over. And I assume you have Xorg installed from the ports? yes, installed from the ports. works like a dream. The AGP feature has been an issue for several people, and it's been tricky nailing down the tipping point that will make it work for some and not others. I've got it working (very nicely with two monitors) and it's bugging me that another person with the same card and FreeBSD version can't get it working. i'll help where i can - this is a very fresh install of 5.3, and onto an empty disk - so no upgrades or changes, just a straight install. and i can pretty much remember most of what i've done to get here - if it helps i can certainly note the steps. perhaps you could see something in the sequence? Lou thanks for your help, as well as jo and karel. -- [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: building a package without installing it
daniel quinn wrote: is this even possible? a number of google results have informed me that it isn't, but i'm hoping there's a hack or a work around. essentially, i want to build the packages on one box, copy them to many boxes and run package_add there. suggestions/comments? FYI, this belongs on -ports. what is wrong with 'make package' ? -Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
support
Dear FreeBSD team, My name is Anil C. Gaddam. I am interested in starting an official FreeBSD IRC channel. I will start the channel on Freenode IRC network. Freenode thrives to host many official supports channels for various open-source projects. Currently Freenode is home to Gentto, fedora, and debian. It is also home to widely known projects such as phpbb. Given permission from the appropriate authority, I can host a official channel IRC support channel for Freebsd. This will greatly benifit newbie users and others who are experiencing problems and try to seek a "quick fix". About freenode: freenode, a service of Peer-Directed Projects Center. PDPC is an IRS 501(c)(3) not-for-profit, tax-exempt corporation. He is how freenode describes it self: In 1998, the network had about 200 users and less than 20 channels. We currently peak at over 20,000 users and contain a wide variety of project channels. It's hard to maintain a friendly IRC environment, and we put a lot of effort into it. It requires social hacks and software hacks. We continue to grow and we'll keep working to ensure that the network remains a productive and a useful place. = Sincerely yours, Anil Gaddam. Proud supporter of U.N. AIDS FOUNDATION == Today AIDS had created over 14 million orphan children world wide. Thats number of all children under 5 in america with no one to look after. For more information please visit http://www.apathyislethal.org __ Do you Yahoo!? The all-new My Yahoo! - What will yours do? http://my.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: ip address behind router ?
Brian Davis wrote: > On Sun, 9 Jan 2005 14:38:56 +0100 > FreeBsdBeni <[EMAIL PROTECTED]> wrote: > >> Hi, >> >> How do I find what ip address I'm really having ? >> My adsl modem/firewall gives me a dynamic private address : >> 192.168.1.101, which is what I see with an ifconfig. But how do I >> find the real (dynamic) address given to my modem by my provider ? >> I'm using 5.3-rel-p4. >> -- >> Beni. >> > If you just need a simple solution to see your external IP address, just go to: http://www.ostrosoft.com/OIT/external_ip.asp It will show your outside IP address in red. Good luck, Tom ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: ip address behind router ?
On Sun, 9 Jan 2005 14:38:56 +0100 FreeBsdBeni <[EMAIL PROTECTED]> wrote: > Hi, > > How do I find what ip address I'm really having ? > My adsl modem/firewall gives me a dynamic private address : > 192.168.1.101, which is what I see with an ifconfig. But how do I find > the real (dynamic) address given to my modem by my provider ? > I'm using 5.3-rel-p4. > -- > Beni. > Try the traceroute command. The first IP address will be the address of your modem. If I traceroute my ISP this is the output. The 1st line contains the IP address of my cable modem. traceroute to cox.net (68.1.17.9), 64 hops max, 40 byte packets 1 ip68-102-20-166.ks.ok.cox.net (68.102.20.166) 1.942 ms 1.941 ms 1.861 ms 2 ip68-102-0-1.ks.ok.cox.net (68.102.0.1) 14.284 ms 18.493 ms15.513 ms 3 ip68-103-127-194.ks.ok.cox.net (68.103.127.194) 21.864 ms 14.744 ms 11.646 ms 4 ip68-103-255-237.ks.ok.cox.net (68.103.255.237) 14.404 ms 32.946 ms 13.704 ms 5 68.1.1.180 (68.1.1.180) 18.623 ms 13.751 ms 18.183 ms 6 68.1.1.175 (68.1.1.175) 24.568 ms 29.769 ms 19.844 ms 7 mtc3bbrc02-pos0100.rd.ok.cox.net (68.1.0.103) 41.478 ms 20.997 ms 28.005 ms 8 lkhnbbrc01-pos0200.rd.at.cox.net (68.1.0.113) 51.983 ms 57.733 ms 48.226 ms 9 lkhndsrc01-pos0901.rd.at.cox.net (68.1.0.5) 60.806 ms 85.053 ms 53.278 ms 10 lkhnsysc01-gic03.at.cox.net (68.1.15.242) 46.912 ms 49.078 ms 50.568 ms 11 lkhnsysl01-gex1.at.cox.net (68.1.16.53) 63.030 ms 57.538 ms 64.792 ms ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
BackupPC
Hello, Do you know if there's a port of BackupPC for FreeBSD? I'm looking for a backup solution for multiple platforms centering on a FreeBSD server. I've encountered BackupPC and Bacula, both look promising, primary backups are initially automated to disk then possibly later on to removable media such as DVD. Thanks. Dave. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
hdparm for FreeBSD?
Linux users have a tool, hdparm, that lets them adjust all sorts of drive characteristics (read look-ahead, 32-bit I/O, multi-sector I/O, and so on) beyond the normal things seen in the hw.ata tree. Is there an equivalent for FreeBSD? -- Kirk Strauser pgpvJocPy8Pcv.pgp Description: PGP signature
Re: FreeBSD 5.2.1 and CD9660_ROOT bootable cdroms
In FreeBSD 4.x I used parts of that to create a cdrom. In 5.x I now use parts of the freesbie port to create bootable cdroms. It uses cdboot. Joe --- "Greiman, John K (Mission Systems)" <[EMAIL PROTECTED]> wrote: > Using cdroot-1.2.5, I have successfuly created a bootable CD-R > which contains a full FreeBSD 5.2.1 installation (minimal: > base, crypto, and manpages). The bootable CD-R successfully > fdisk, disklabel, newfs, and installed on a test system. The > cdroot scripts required modifications, as there were issues > with the FreeBSD 4.X implementation and dependencies: > > 1. mkisofs > 2. mount_mfs > 3. MAKEDEV > 4. The diskless_mount entry in /etc/rc.conf > > John Greiman > __ Do you Yahoo!? Yahoo! Mail - now with 250MB free storage. Learn more. http://info.mail.yahoo.com/mail_250 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: NFS export of evolution
Andrew L. Gould wrote: I had a hard time sharing NFS directories that were not actual mount points. When I changed the shared directories in /etc/exports to actual mount points (not directories below them) with -alldirs, I was able to mount the specific subdirectories I wanted on the client side. Although /etc/exports allows me to limit access to my own user, the idea of sharing whole mount points makes me a little nervous, so I don't use NFS much. I'm sure I've done something wrong; but I found it easier to use the alternatives below than to hunt down the problem. OK, this appears to be a different problem, I understod Robert was able to mount. Anyway, the NFS documentation isn't completely clear but, you can export any directory, say /var/ftp/pub which I have on my /var partition. But you can only use the option -alldirs when exporting a partition. Exporting a partition with -alldirs allows you to mount any sub- directory. If you do not want to export all directories in the whole partition you have to list each directory you want to be mountable. Also, permisions are set on a per partition-host/net combination, so this is NOT ok: /var/ftp/pub -ro -network 172.16.0.0 -mask 255.255.0.0 /var/httpd -rw -network 172.16.0.0 -mask 255.255.0.0 however this would be ok: /var/ftp/pub -ro -network 172.16.0.0 -mask 255.255.0.0 /var/ftp/pub -rw -network 172.17.0.0 -mask 255.255.0.0 /home/httpd -rw -network 172.16.0.0 -mask 255.255.0.0 this is really anoying :-( due to the permissions, and the the restric- tion on -alldirs you have to partition your disk according to the per- missions you want to nfs export the different things. It might be worth creating a slice for nfs exports, it is easier to repartion as needed if the slice doesn't also host your OS. Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
On January 10, 2005 01:20 am, artware wrote: > My 5.3R system has only been up a little over a week, and I've already > had a few breakin attempts -- they show up as Illegal user tests in > the /var/log/auth.log... It looks like they're trying common login > names (probably with the login name used as passwd). It takes them > hours to try a dozen names, but I'd rather not have any traffic from > these folks. Is there any way to blacklist IPs at the system level, or > do I have to hack something together for each daemon? i have three suggestions for this: 1) edit sshd_config to set PermitRootLogin to "no". since root is the only user on your system that obviously exists elsewhere, this is a nice start 2) setup sshd to allow connections with keys only. then go buy yourself a usb key and keep your private key on there when you connect. 3) use a port-knocking daemon: http://www.portknocking.org/ http://www.zeroflux.org/knock/ -- those who say it cannot be done should not interrupt the person doing it - unknown ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
building a package without installing it
is this even possible? a number of google results have informed me that it isn't, but i'm hoping there's a hack or a work around. essentially, i want to build the packages on one box, copy them to many boxes and run package_add there. suggestions/comments? -- Simon: This may come as a surprise, but I'm not very good at talking to girls. Zoe: Why, is there someone you are good at talking to? - Simon and Zo, Firefly, "The Message" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
openoffice 1.1.4
i get this error trying to install openoffice-1.1-devel ./install: not found whereis it? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: NFS export of evolution
On Monday 10 January 2005 02:45 pm, Robert Marella wrote: > On Mon, 2005-01-10 at 10:01 +0100, Erik Norgaard wrote: > > Robert Marella wrote: > > > Hello > > > > > > I am not sure where this problem should go so I am posting to > > > -questions. > > > > > > I have a SOHO set up with several computers running a mix of > > > FreeBSD 5.3 Release and Stable. I have an NFS server set up so > > > that data can be shared at all of the computers. > > > > > > I would like to have the ability to retrieve mail from any of the > > > computers I happen to be logged into. I have tried various > > > permutations of exporting /home, /home/reg-user, and > > > /home/reg-user/.evolution and I always get the same error when > > > trying to read mail. > > > > > > I am able to mount the directory(ies) on the client computers and > > > am able to call up evolution and see the messages but when I try > > > to read any message I get this error > > > > > > * > > >* Error while Retrieving message 1292 (this number varies of > > > course) > > > > > > Failed to get lock using fcntl(2): Operation not supported. > > > * > > >* > > > > > > I read the man page for fcntl but I didn't get any help out of > > > it. It was way over my head. > > > > > > Here is the important bits from /etc/exports > > > > > > /home/reg-user/.evolution -alldirs notebook.my.local.lan > > > > > > I have also tried -maproot with out any luck. I would think this > > > is possible but I guess I haven't set up the right conditions or > > > options. Can anyone help me out? > > > > The error appears to be with filelocking not mounting. Filelocking > > is a problem on NFS as many independent systems might try to get > > write access to the same file at the same time. Do you have: > > > > rpc_lockd_enable="YES" # Run NFS rpc.lockd needed for > > client/server. rpc_statd_enable="YES" # Run NFS rpc.statd needed > > for client/server. > > > > in your rc.conf? > > Eric, > No I do not have that in my rc.conf. I tried adding it and got the > same results. Should I try to change the values to ="NO" ?? > > Thanks for responding. > > Robert > I had a hard time sharing NFS directories that were not actual mount points. When I changed the shared directories in /etc/exports to actual mount points (not directories below them) with -alldirs, I was able to mount the specific subdirectories I wanted on the client side. Although /etc/exports allows me to limit access to my own user, the idea of sharing whole mount points makes me a little nervous, so I don't use NFS much. I'm sure I've done something wrong; but I found it easier to use the alternatives below than to hunt down the problem. If you can't get NFS working, you might try: 1. Sharing files via webdav. This would be convenient if you're already running a web server and your clients browse using konqueror. I use webdav with ssl on Apache2. 2. Accessing remote email and PIM applications using tightvnc. Good luck, Andrew Gould ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: NFS export of evolution
Robert Marella wrote: On Mon, 2005-01-10 at 10:01 +0100, Erik Norgaard wrote: Robert Marella wrote: Hello I am not sure where this problem should go so I am posting to -questions. I have a SOHO set up with several computers running a mix of FreeBSD 5.3 Release and Stable. I have an NFS server set up so that data can be shared at all of the computers. I would like to have the ability to retrieve mail from any of the computers I happen to be logged into. I have tried various permutations of exporting /home, /home/reg-user, and /home/reg-user/.evolution and I always get the same error when trying to read mail. I am able to mount the directory(ies) on the client computers and am able to call up evolution and see the messages but when I try to read any message I get this error ** Error while Retrieving message 1292 (this number varies of course) Failed to get lock using fcntl(2): Operation not supported. ** I read the man page for fcntl but I didn't get any help out of it. It was way over my head. Here is the important bits from /etc/exports /home/reg-user/.evolution -alldirs notebook.my.local.lan I have also tried -maproot with out any luck. I would think this is possible but I guess I haven't set up the right conditions or options. Can anyone help me out? The error appears to be with filelocking not mounting. Filelocking is a problem on NFS as many independent systems might try to get write access to the same file at the same time. Do you have: rpc_lockd_enable="YES" # Run NFS rpc.lockd needed for client/server. rpc_statd_enable="YES" # Run NFS rpc.statd needed for client/server. in your rc.conf? Eric, No I do not have that in my rc.conf. I tried adding it and got the same results. Should I try to change the values to ="NO" ?? No, default is "NO" (see /etc/defaults/rc.conf for further options). I don't know if you have to enable it on both client and server, and you also need rpcbind if it was not enabled. Note, these are rpc-services, so if you have a strict firewall (that is any) your clients may not be able to access the lockd. Unfortunately there is no way of predicting which port lockd will bind to. Btw I assume that after adding the above lines to your rc.conf you succesfully started the services :-) (both statd and lockd are started by /etc/rc.d/nfslocking start) you should be able to see to which ports they bind using 'sockstat -4': daemon rpc.lockd 3329 3 udp4 *:648 *:* root rpc.lockd 3328 3 udp4 *:648 *:* root rpc.statd 3323 5 udp4 *:805 *:* if you don't see it check in /var/log/messages if it registred properly with rpcbind. I just tried and found that lockd wouldn't start without statd. I should add that I haven't really used statd/lockd, but from what I know, it appears your solution is somewhere in that direction. I hope this at least works as a pointer for you... :-) Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: NFS export of evolution
On Mon, 2005-01-10 at 10:01 +0100, Erik Norgaard wrote: > Robert Marella wrote: > > Hello > > > > I am not sure where this problem should go so I am posting to > > -questions. > > > > I have a SOHO set up with several computers running a mix of FreeBSD 5.3 > > Release and Stable. I have an NFS server set up so that data can be > > shared at all of the computers. > > > > I would like to have the ability to retrieve mail from any of the > > computers I happen to be logged into. I have tried various permutations > > of exporting /home, /home/reg-user, and /home/reg-user/.evolution and I > > always get the same error when trying to read mail. > > > > I am able to mount the directory(ies) on the client computers and am > > able to call up evolution and see the messages but when I try to read > > any message I get this error > > > > ** > > Error while Retrieving message 1292 (this number varies of course) > > > > Failed to get lock using fcntl(2): Operation not supported. > > ** > > > > I read the man page for fcntl but I didn't get any help out of it. It > > was way over my head. > > > > Here is the important bits from /etc/exports > > > > /home/reg-user/.evolution -alldirs notebook.my.local.lan > > > > I have also tried -maproot with out any luck. I would think this is > > possible but I guess I haven't set up the right conditions or options. > > Can anyone help me out? > > The error appears to be with filelocking not mounting. Filelocking is a > problem on NFS as many independent systems might try to get write access > to the same file at the same time. Do you have: > > rpc_lockd_enable="YES" # Run NFS rpc.lockd needed for client/server. > rpc_statd_enable="YES" # Run NFS rpc.statd needed for client/server. > > in your rc.conf? Eric, No I do not have that in my rc.conf. I tried adding it and got the same results. Should I try to change the values to ="NO" ?? Thanks for responding. Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Upgrade to Courier 4.0.1?
On 01/10/05 01:44 PM, Scott Bye sat at the `puter and typed: > I updated to this via ports, and the services appear to be running and > listening for connections. > > However, if I connect to them, I get disconnected immediately, and > nothing appears to be logged for any of the services. > > It's obviously affecting both POP3 and IMAP, leaving the mail services on my > server useless. > > I tried reinstalling the port for courier-imap, but it complained that > it couldn't find courierlogger. So I reinstalled courier-authlib from > ports, and reinstalled courier-imap and it no longer complained. > However, the services are still doing exactly the same! > > Any ideas what has happened?! > I just ran into the same kind of problems. I finally found that in addition to the courier_authdaemond_enable="YES" enabler in /etc/rc.conf, the imapd-ssl enable tag has changed. Where you used to need courier_imap_imapdssl_enable="YES" in your /etc/rc.conf, you now need courier_imap_imapd_ssl_enable="YES" I don't use pop or unencrypted imap, so you'd have to verify that those haven't changed if you use them. HTH Lou -- Louis LeBlanc [EMAIL PROTECTED] Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org ԿԬ "Here's something to think about: How come you never see a headline like `Psychic Wins Lottery'?" -- Jay Leno ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Portupgrade - Ruby error
Having problems using Portupgrade utilities because of Ruby. It started last Friday and I waited for the weekend just in case the cvs tree will get updated with a possible fix. Output of error is.. %portversion /usr/local/lib/ruby/site_ruby/1.6/dl/types.rb:172:in `encode_type': unknown type: const char *. (TypeError) from /usr/local/lib/ruby/site_ruby/1.6/dl/import.rb:138:in `import' from /usr/local/lib/ruby/site_ruby/1.6/dl/import.rb:65:in `extern' from /usr/local/lib/ruby/site_ruby/1.6/pkgmisc.rb:85 from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:5:in `require' from /usr/local/lib/ruby/site_ruby/1.6/pkgdb.rb:5 from /usr/local/lib/ruby/site_ruby/1.6/pkg.rb:3:in `require' from /usr/local/lib/ruby/site_ruby/1.6/pkg.rb:3 from /usr/local/lib/ruby/site_ruby/1.6/pkgtools.rb:24:in `require' from /usr/local/lib/ruby/site_ruby/1.6/pkgtools.rb:24 from /usr/local/sbin/portversion:35:in `require' from /usr/local/sbin/portversion:35 % It happens same for using portupgrade too. I tried to google this and discovered that it is possible a ruby developer problem. The cvs tree was updated just recently and I tried to reinstall just to be sure. I did this by deinstalling both ruby and portupgrade. After I deinstalled ruby, I deleted the directory, /usr/local/lib/ruby. I only installed portupgrade which installed ruby by "cd /usr/ports/sysutils/portupgrade/ ; make clean ; make install". I still have this ruby problem above. %pkg_info | grep portupgrade portupgrade-20041226_1 FreeBSD ports/packages administration and management tool s %pkg_info | grep ruby ruby-1.6.8.2004.07.28_1 An object-oriented interpreted scripting language ruby16-bdb1-0.2.2 Ruby interface to Berkeley DB revision 1.8x with full featu ruby16-shim-ruby18-1.8.1.p3 A set of Ruby modules to provide Ruby 1.8 functionalities %uname -a FreeBSD .org 4.10-STABLE FreeBSD 4.10-STABLE #0: Fri Sep 17 18:57:24 CDT 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/HAULMARK02 i386 % Any advices on how I can look into resolving this problem? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
WiFi PCMCIA or CardBus cards with Compaq Armada laptops?
When I upgraded from FreeBSD 4.9-STABLE (yeah - about a year old) to FreeBSD 5.2.1, my WiFi capability went away. I have tried my own LinkSys card and borrowed a friend's NETGEAR card with essentially the same problem (it's not 100% deterministic even with the same card, so it's hard to be 100% sure, but the big picture is sure the same). With either card, the system eventually locks up so hard that the only way to shut it down is to disconnect the battery - the power switch doesn't work. Sometimes I see a Fatal Trap 19 and panic: non-maskable interrupt in (while in kernel mode), and sometimes, it just locks up right after displaying the driver line - but it isn't useful in any case. I have reported this as a hardware bug through GNATS, but it seems like it would be something someone who have noticed between 5.2.1 and now, and I sure couldn't find any similar bug reports before turning in mine. I would really appreciate hearing from anyone who a) has a similar problem b) has a similar setup but does not have the problem. 802.11b cards are not expensive - I'd be quite willing to buy a new CardBus or PCMCIA card if I had a reasonable expectation of it not behaving in this way. Thanks! -- John Lind [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
Louis LeBlanc wrote: On 01/10/05 12:20 AM, artware sat at the `puter and typed: My 5.3R system has only been up a little over a week, and I've already had a few breakin attempts -- they show up as Illegal user tests in the /var/log/auth.log... It looks like they're trying common login names (probably with the login name used as passwd). It takes them hours to try a dozen names, but I'd rather not have any traffic from these folks. Is there any way to blacklist IPs at the system level, or do I have to hack something together for each daemon? I get this all the time too. I'm sure anyone with a *nix system on the net does. I have two boxes, one allows password authentication, and I also see these attempts. the other only accepts login with ssh-keys and I see no such activity. I'm sure after reading this, someone else will post another favorite password generation method, including the numerous ports available - I'd like to see one that checks the security of a password rather than just generating them. yeah, close your eyes, hit the keyboard with all 10 fingers and your nose and see what comes out: ac0e48 amæifljasc4å0w(V4 ok - I admit, I didn't hit the keyboard with my nose, but it's absolutely not a dictionary word :-) As for the firewall and the originating IP, I follow a plain process: Check the whois record of the offending IP If the IP is in Asia, Russia, or Nigeria, I drop the CIDR spec into my firewall table and never hear from anyone on the network again. The CIDER spec is part of the whois record If the IP is in Western Europe or North America, I notify the abuse address to inform them they either have a cracker or a cracked system. This practice has reduced these attempts considerably. Each time I see another, I add it to the blocked table (I use pf, not ipfw). If it's a problem, try to reverse your thinking, why are you allowing access from everywhere in the first place? It is far easier to list the ranges you know your users will be logging in from than try to block these occasional events that never happens from the same source. If you are serving a university campus it's likely not an option to block of specific countries or continents, but if it's your SOHO I see no reason you should leave the doors open from ranges you know can only be intruders. If interested, I have a script for picking out countries from the delegation lists: www.daemonsecurity.com/src/ip-rules.pl Go ahead and hack it to create the rules you need. Cheers, Erik -- Ph: +34.666334818 web: www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: dhclient: send_packet: Permission denied
On Sat, Jan 08, 2005 at 08:25:39PM -0500, Bob Hall wrote:
> I keep getting the message
> dhclient: send_packet: Permission denied
This stopped when I added
${fwcmd} add allow udp from ${router} bootps to ${bcast} bootpc
in via ${oif}
to my rule set.
My dhclient was broadcasting packets but the firewall wasn't letting the
broadcast responses from the router in. Once dhclient could read the
responses (which included the DHCP server address), it stopped trying to
send the packets that were being blocked.
I'm using a modified version of the SIMPLE rule set for IPFW. If the
DHCP rules are anywhere after the NAT divert rule, they are never
triggered. Something else is denying or allowing the DHCP packets. This
doesn't make any sense to me, but I moved the DHCP rules to the
beginning of the rule set and all is well.
For anyone who's interested, here's the rules I added to handle DHCP
packets. They allow direct traffic between my host (oip) and the DHCP
server (dhcps), and between oip and the subnet router (router). They
also allow broadcast packets from dhcps, router, and oip, provided they
come from and are directed to the correct bootp ports. These rules
should follow the "setup_loopback" call, unless you explicity assign
rule numbers.
In addition, dhcps sends an echo request to an address before assigning
it, to check if it's already in use. Since I don't honor echo requests,
I added two rules to to respond to dhcps's echo requests. A DHCP client
should should double check before accepting an IP address by sending an
ARP packet, but it's not required and doesn't always happen. My ISP
changed my IP address while I was testing this because I failed to
respond to the server's echo request and the client that got my old
address didn't check to see if it was in use.
## DHCP server IP address
#
search_text="dhcp-server-identifier"
file_path=`ls /var/db/dhclient.leases`
if [ -z `echo ${file_path} | grep 'No such file or directory'` ]
then
dhcps=`grep ${search_text} ${file_path} | sed 's/.* \([0-9.]*\);/\1/'`
fi
if [ -z "${dhcps}" ]
then
dhcps="any"
fi
## DHCP router IP address
#
if [ -z `echo ${file_path} | grep 'No such file or directory'` ]
then
# If > 1 router is listed, get the last one.
router=`grep "routers" ${file_path} | sed 's/.*[^0-9.]\([0-9.]*\);/\1/'`
fi
if [ -z "${router}" ]
then
router="any"
fi
## Broadcast address
bcast="255.255.255.255"
#
## DHCP section (Immediately following "setup_loopback")
##
${fwcmd} add allow udp from ${dhcps} bootps to ${oip} bootpc in via ${oif}
${fwcmd} add allow udp from ${oip} bootpc to ${dhcps} bootps out via ${oif}
${fwcmd} add allow udp from ${router} bootps to ${oip} bootpc in via ${oif}
${fwcmd} add allow udp from ${oip} bootpc to ${router} bootps out via ${oif}
${fwcmd} add allow udp from ${dhcps} bootps to ${bcast} bootpc in via ${oif}
${fwcmd} add allow udp from ${router} bootps to ${bcast} bootpc in via ${oif}
${fwcmd} add allow udp from ${oip} bootps to ${bcast} bootpc out via ${oif}
###
## ICMP section
##
...
${fwcmd} add pass log icmp from ${dhcps} to ${oip} icmptype 8 in via ${oif}
${fwcmd} add pass log icmp from ${oip} to ${dhcps} icmptype 0 out via ${oif}
Bob
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
On 01/10/05 07:42 PM, Jez Hancock sat at the `puter and typed: > On Mon, 10 Jan 2005 12:23:04 -0500, Louis LeBlanc > <[EMAIL PROTECTED]> wrote: > > On 01/10/05 12:20 AM, artware sat at the `puter and typed: > > > Hello again, > > > > > > My 5.3R system has only been up a little over a week, and I've already > > > had a few breakin attempts -- they show up as Illegal user tests in > > > the /var/log/auth.log... It looks like they're trying common login > > > names (probably with the login name used as passwd). It takes them > > > hours to try a dozen names, but I'd rather not have any traffic from > > > these folks. Is there any way to blacklist IPs at the system level, or > > > do I have to hack something together for each daemon? > > > > > > The best defense is a good firewall, good passwords, and restriction of > > user ids that may login remotely. > > I started blocking the addresses that attacked but the frequency of > the attacks made it impractical to add every attacking address to the > firewall ruleset. I came to the conclusion that as long as the items > you mention above are in place - especially good passwords - and the > attacks aren't saturating the connection, then there's little to worry > about - perhaps on a par with portscanning. You're right there, but I figure I'm going to get hundreds or thousands of IPs if I block the CIDR spec. It's a little heavy handed, but those networks will often beget dozens of attacks over a space of a couple weeks sometimes, and often no two come from the same IP. Whether it's the same system is anyones guess, but unless they get a new provider, they have no access to my system. > Another fairly simple option though is to just change the port that > sshd listens on since the attacks presume that sshd is listening on > port 22. Not always practical though if you have lots of users. I've seen this recommended here many times. I haven't done it because I work on too many systems that I don't have that kind of control over, and I don't need to confuse myself with nonstandard configs. I already have 2 or 3 dozen passwords to remember :| Lou -- Louis LeBlanc [EMAIL PROTECTED] Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org ԿԬ I have yet to see any problem, however complicated, which, when you looked at it in the right way, did not become still more complicated. -- Poul Anderson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
On Mon, 10 Jan 2005 12:23:04 -0500, Louis LeBlanc <[EMAIL PROTECTED]> wrote: > On 01/10/05 12:20 AM, artware sat at the `puter and typed: > > Hello again, > > > > My 5.3R system has only been up a little over a week, and I've already > > had a few breakin attempts -- they show up as Illegal user tests in > > the /var/log/auth.log... It looks like they're trying common login > > names (probably with the login name used as passwd). It takes them > > hours to try a dozen names, but I'd rather not have any traffic from > > these folks. Is there any way to blacklist IPs at the system level, or > > do I have to hack something together for each daemon? > > > The best defense is a good firewall, good passwords, and restriction of > user ids that may login remotely. I started blocking the addresses that attacked but the frequency of the attacks made it impractical to add every attacking address to the firewall ruleset. I came to the conclusion that as long as the items you mention above are in place - especially good passwords - and the attacks aren't saturating the connection, then there's little to worry about - perhaps on a par with portscanning. Another fairly simple option though is to just change the port that sshd listens on since the attacks presume that sshd is listening on port 22. Not always practical though if you have lots of users. -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://freebsd.munk.nu/ - A FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: firewall setup and whois for blacklisting IP's
On 01/10/05 01:34 PM, dave sat at the `puter and typed:
> Hello,
> For your setup of blacklisting IP's do you use any cron scripts for
> procedure automation?
> I'm assuming for your firewall block table that you store that in a
> separate file? Can you send that file my way? I've tried to come up with a
> perl script to get whois information out of a maillog, i'm gettin ssh
> atempts that corespond to mail relaying atempts so i thought that would be
> best, however there seems to be difference in the way certain servers
> return whois information, do you have any experience with this?
> When you email an abuse contact approximately what percentage of them
> write you back? I've emailed several providers comcast mostly in the US, but
> i have not heard anything back from the person. Is there some sort of
> standard email template you follow?
> Thanks.
> Dave.
Good questions. I don't use any automation, I just look at the auth
logs on a regular basis. The reason is that I don't want to block every
network that attempts my system. I haven't found any of the security
settings to include illegal user attempts in the security mailing -
though I'd think that would be there, and on by default. If it were
there, I'd use that as a more reliable alert.
Also, I don't typically do anything at all with Amsterdam IPs, mostly
because I haven't decided whether there's anything legitimate to be
expected. I know there's a lot of porn sites, and this could easily be
a starting point for a lot of these attempts, but it's a fairly open
society, and I don't know whether the ISPs would really care about them.
They may well care in those that I do block, but my experience has shown
that they typically won't make much effort. Giving the benefit of the
doubt, it's probably more of a language barrier than a lack of interest.
When I used ipfw, I did keep the blocked lists in a separate file,
/etc/rc.firewall.blocked contained a rule for each CIDR block I
rejected. Now I keep it in a table definition in /etc/pf.conf. So far,
in the last month, this is the full table definition for my pf firewall:
table { \
60.0.0.0/8, \
61.0.0.0/8, \
195.0.0.0/8, \
202.0.0.0/7, \
221.0.0.0/8, \
222.0.0.0/8 \
}
And at the appropriate place, I have a rule to block anything from those
blocks:
# Block Network Badlands (table )
block in quick on $ext_if inet from to any
I haven't figured out how to automagically include a separate file with
this table defined yet, but I haven't really tried either. Another
option I haven't tried is to simply pull the CIDR specs out of something
like blackholes.us, which I use to block mail from Asia, but I haven't
taken the time to do that.
It probably wouldn't be rocket science to automagically scan for the
table definition and add a CIDR spec at the top of the table if it
wasn't already there, but like I said, I haven't really been trying.
BTW, I'm copying this back to the list in case someone there *is* using
some kind of automation to alert them to illegal user attempts, or if
there is a switch I missed to include them in the security mailings.
That will give them an opportunity to give you some help.
That's usually a better option than getting me at the FreeBSD-at-
address, since it goes to a mailbox specifically for the list, and
unless the subject sets off any bells (like yours did in this case) I
won't always read it. Besides, I'm more of a novice with network
security/firewall setup, so you want some of the more knowledgeable
folks there to have an opportunity to correct me :) For *true offlist*
email, I can be reached more reliably at leblanc-at-
Good luck. I'll continue to follow this thread in case someone posts
something I can elaborate on to some useful end.
Lou
--
Louis LeBlanc [EMAIL PROTECTED]
Fully Funded Hobbyist, KeySlapper Extrordinaire :)
http://www.keyslapper.org ԿԬ
McGowan's Madison Avenue Axiom:
If an item is advertised as "under $50", you can bet it's not $19.95.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Router setup with FreeBSD 5.3
+++ Michael Madden [freebsd] [06-01-05 18:44 -0600]: | Does anyone have documentation and/or a | tutorial for setting a router with FreeBSD | 5.3? I want to share a broadband connection | with 5-10 Windows/Linux/FreeBSD boxes. I | assume I'll need to setup the two interfaces, | gatewaying, and some type of firewall... | | Thanks, | Mike pf is available on FreeBSD 5.3 check out /usr/share/examples/pf/ Regards, Shantanoo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
On 01/10/05 06:04 PM, John Conover sat at the `puter and typed:
> Louis LeBlanc writes:
> >
> > A practice one of my former co-workers liked was to pick a song and pull
> > letters out; take Fleetwood Mac: "Don't Stop Thinking About Tomorrow".
> > You could get "DSTAT", turn that into something else, like "dSt4T".
> > Pretty short, but definitely not a dictionary word. You could even take
> > more letters from the next line" "Don't Stop, It'll Soon Be Here" and get
> > "dSt4TDs1SbH", or any number of derivations. If you forget the actual
> > password, your song is an excellent hint.
> >
>
> I think that comes from RFC1244, (Site Security Handbook,) which is a
> pretty good security SOP for *_general_* 'Net users.
>
> The stuff 1244 suggests is not perfect, by any means, but is a
> relatively good compromise between security, usability, and
> operational costs.
>
> For example, to keep sysadmin phone calls on forgotten passwds to a
> minimum, 1244 suggests the words in a user's favorite song, ('cause
> folk's minds remember the words,) to seven letters-maybe with
> capitalization. For example, if the "Star Spangled Banner" is the
> 'fav, then a passwd would be "oH#saY#caN#".
>
> If logins must be updated periodically, then the user's next passwd
> would be, "yoU#See", and so on.
>
> Its certainly not perfect[1], but its cheap to administer, easy to
> use, etc., and realatively hard to crack by algorithmic means-at least
> without filling up the log files, giving the sysadm a "heads up" to
> type something beginning with "block ..."
>
> 1244 has a lot of cute little security things like that.
>
> John
>
> [1] Yea, I've tried a passwd policy of denied vowel-consonant
> relationships, (e.g., words.) Not only did I have a lot of phone calls
> on forgotten passwds, I gained credentials as an English teacher.
LOL. I understand completely.
BTW, a quick search yielded an update to 1244: 2196, which can be found
here: http://www.faqs.org/rfcs/rfc2196.html
Thanks.
Lou
--
Louis LeBlanc [EMAIL PROTECTED]
Fully Funded Hobbyist, KeySlapper Extrordinaire :)
http://www.keyslapper.org ԿԬ
The following statement is not true. The previous statement is true.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Free BSD
+++ K.T. [freebsd] [06-01-05 17:42 +0100]: | |I think, BSD is one with lot of unusable, needless systems. |You never get over Windows or Linux. |FreeBSD is stupid system, which only nobody will use. :-( | | -- *clap* *clap* Now sit in the corner and observe the posts on the list. period. Shantanoo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re[2]: Upgrade to Courier 4.0.1?
Hi Louis, Monday, January 10, 2005, 6:45:51 PM, you wrote the following: > On 01/10/05 11:40 AM, Tillman Hodgson sat at the `puter and typed: >> On Mon, Jan 10, 2005 at 11:19:26AM -0600, Tillman Hodgson wrote: >> > On Mon, Jan 10, 2005 at 01:44:57PM -, Scott Bye wrote: >> > > I updated to this via ports, and the services appear to be running and >> > > listening for connections. >> > > >> > > However, if I connect to them, I get disconnected immediately, and >> > > nothing appears to be logged for any of the services. >> > >> > I'm encountering the same thing: >> > >> > $ telnet athena 110 >> > Trying 192.168.23.3... >> > Connected to athena.seekingfire.prv (192.168.23.3). >> > Escape character is '^]'. >> > Connection closed by foreign host. >> > >> > $ telnet athena 143 >> > Trying 192.168.23.3... >> > Connected to athena.seekingfire.prv (192.168.23.3). >> > Escape character is '^]'. >> > Connection closed by foreign host. >> > >> > I've just started digging into it, I'll post again if I run across >> > anything interesting. >> >> In my case, it looks like >> /usr/local/etc/rc.d/courier-authdaemond.sh >> actually wants to see courier_authdaemond_enable="YES" in /etc/rc.conf >> now. Will wonders never cease :-) > Good to know. > I'm running 3.x, and hadn't paid enough attention to know that 4.x was > even out. Other than this hangup, what are your feelings about 4.x? > Thanks > Lou i didn't noticed any changes, maybe it is little bit faster... -- Best Regards, +--==/\/\==--+ (__) FreeBSD | DanGer <[EMAIL PROTECTED]> |\\\'',) The | [EMAIL PROTECTED] ICQ261701668 | \/ \ ^Power | http://danger.homeunix.org | .\._/_)To +--==\/\/==--+ Serve [ "I like to skate on the other side of the ice." -- Wright ] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re[2]: Upgrade to Courier 4.0.1?
Hi Louis, Monday, January 10, 2005, 6:45:51 PM, you wrote the following: > On 01/10/05 11:40 AM, Tillman Hodgson sat at the `puter and typed: >> On Mon, Jan 10, 2005 at 11:19:26AM -0600, Tillman Hodgson wrote: >> > On Mon, Jan 10, 2005 at 01:44:57PM -, Scott Bye wrote: >> > > I updated to this via ports, and the services appear to be running and >> > > listening for connections. >> > > >> > > However, if I connect to them, I get disconnected immediately, and >> > > nothing appears to be logged for any of the services. >> > >> > I'm encountering the same thing: >> > >> > $ telnet athena 110 >> > Trying 192.168.23.3... >> > Connected to athena.seekingfire.prv (192.168.23.3). >> > Escape character is '^]'. >> > Connection closed by foreign host. >> > >> > $ telnet athena 143 >> > Trying 192.168.23.3... >> > Connected to athena.seekingfire.prv (192.168.23.3). >> > Escape character is '^]'. >> > Connection closed by foreign host. >> > >> > I've just started digging into it, I'll post again if I run across >> > anything interesting. >> >> In my case, it looks like >> /usr/local/etc/rc.d/courier-authdaemond.sh >> actually wants to see courier_authdaemond_enable="YES" in /etc/rc.conf >> now. Will wonders never cease :-) > Good to know. > I'm running 3.x, and hadn't paid enough attention to know that 4.x was > even out. Other than this hangup, what are your feelings about 4.x? > Thanks > Lou i didn't noticed any changes, maybe it is little bit faster... -- Best Regards, +--==/\/\==--+ (__) FreeBSD | DanGer <[EMAIL PROTECTED]> |\\\'',) The | [EMAIL PROTECTED] ICQ261701668 | \/ \ ^Power | http://danger.homeunix.org | .\._/_)To +--==\/\/==--+ Serve [ "I like to skate on the other side of the ice." -- Wright ] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blacklisting IPs
Louis LeBlanc writes:
>
> A practice one of my former co-workers liked was to pick a song and pull
> letters out; take Fleetwood Mac: "Don't Stop Thinking About Tomorrow".
> You could get "DSTAT", turn that into something else, like "dSt4T".
> Pretty short, but definitely not a dictionary word. You could even take
> more letters from the next line" "Don't Stop, It'll Soon Be Here" and get
> "dSt4TDs1SbH", or any number of derivations. If you forget the actual
> password, your song is an excellent hint.
>
I think that comes from RFC1244, (Site Security Handbook,) which is a
pretty good security SOP for *_general_* 'Net users.
The stuff 1244 suggests is not perfect, by any means, but is a
relatively good compromise between security, usability, and
operational costs.
For example, to keep sysadmin phone calls on forgotten passwds to a
minimum, 1244 suggests the words in a user's favorite song, ('cause
folk's minds remember the words,) to seven letters-maybe with
capitalization. For example, if the "Star Spangled Banner" is the
'fav, then a passwd would be "oH#saY#caN#".
If logins must be updated periodically, then the user's next passwd
would be, "yoU#See", and so on.
Its certainly not perfect[1], but its cheap to administer, easy to
use, etc., and realatively hard to crack by algorithmic means-at least
without filling up the log files, giving the sysadm a "heads up" to
type something beginning with "block ..."
1244 has a lot of cute little security things like that.
John
[1] Yea, I've tried a passwd policy of denied vowel-consonant
relationships, (e.g., words.) Not only did I have a lot of phone calls
on forgotten passwds, I gained credentials as an English teacher.
--
John Conover, [EMAIL PROTECTED], http://www.johncon.com/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Lost my X11 config - what was the old tool to build it?
On Sun, Jan 09, 2005 at 11:04:52PM +0100, Daniel S. Haischt wrote: > Did you read: > > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-config.html > AWESOME! My bad - I assumed that the procedure that /stand/sysinstall lead me through would be what was documented in the handbook - boy, was I wrong! The clear, well-documented, relative short procedure in the handbook got me up and running very quickly. My entire kde environment from 4.9-STABLE was recovered. Well, almost. Now I just have to figure out why the xdm login is running in mono mode (though it switches to full color after I log in), and how I resolve the apparent conflicts between xorg and XFree86 for OpenOffice.org, which I dearly want to have back up and running. > John schrieb: > > Before Win98 destroyed my nice FreeBSD 4.9-STABLE installation on > > my Compaq Armada M700 laptop, I had a really good X configuration > > which, if I remember correctly, was generated almost entirely > > automatically somehow. (No, I didn't have a backup of that config > > file, and I've already kick myself many times.) Anyway, I am trying > > to get this back up and running with XFree86 4.3.0 and FreeBSD > > 5.2.1. > > > > I sure can't get anything that's useful now from the X86Config > > script - all it does is ask me questions that I don't really know > > the answer to - partly because it is a Laptop, and I can't just > > easily see what the built-in adapter is. Whatever configuration > > utility that I ran before, I sure can't find it now - it seemed > > to make VERY good recommendations, and I could sure use some! > > > > I've checked the XFree86 web site, and didn't find much useful there. > > > > I've done global web searches for XFree86 and this laptop, but > > they must be for versions that are too old, because they don't > > work for me, complaining of Drivers that don't exist, and so forth. > > > > I'd be tempted to just reload 4.9-RELEASE and re-do it from there, > > but I'm afraid I may run into a similar problem - where the config > > file there, even if I get it, won't work with the new stuff. > > > > Any pointers will be appreciated. > > -- > Mit freundlichen Gruessen / With kind regards > Daniel S. Haischt > > Wan't a complete signature??? Type at a shell prompt: > $ > finger -l [EMAIL PROTECTED] -- John Lind [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
