The FreeBSD Diary: 2006-09-17 - 2006-10-07
The FreeBSD Diary contains a large number of practical examples and how-to guides. This message is posted weekly to freebsd-questions@freebsd.org with the aim of letting people know what's available on the website. Before you post a question here it might be a good idea to first search the mailing list archives http://www.freebsd.org/search/search.html#mailinglists and/or The FreeBSD Diary http://www.freebsddiary.org/. -- Dan Langille BSDCan - http://www.BSDCan.org/ - BSD Conference ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD Bonding Support.
Hi people. Hey, exist some future project in freebsd for bonding support or we already have something like the Linux bonding driver..? Greetings!!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
is this apache or some file on the system ?
X-No-Archive: true .. or can it be my router ? I don't think so, as I've forwarded port 80 to the same port on the FreeBSD box. Last week, I was busy trying to get PhP and roundcubemail working. I was getting the PhP source, which was a pain, but at least I was getting something! Friday evening, I head home, and this morning, I try to connect (I'm outwith the LAN). Error 404. Strange. I connect to the machine via ssh and I can telnet to port 80. It works. I then ssh out to a friend's machine in Australia, and try to telnet to port 80 of my server, i.e. going in the opposite direction. 'connexion refused' is the message. I vaguely remember, years ago, manipulating /etc/hosts.allow, but I've checked this on my machine, and it hasn't been changed. Could apache be doing this? Is it a router problem? Thanks in advance. D. - Découvrez un nouveau moyen de poser toutes vos questions quel que soit le sujet ! Yahoo! Questions/Réponses pour partager vos connaissances, vos opinions et vos expériences. Cliquez ici. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: stop ata drive rotation after umount
is it impossible ? Michel Le Cocq a écrit : Hello, I want to stop the rotation of my ata drive after umounting them and restore it back juste before the mount process. I try to do this on some backup disk which are normaly not mount and only for restore and backup process. If I can stop the rotation of these disk, I can obtain a reduce of the temperature and noise inside my box :-) thanks for your help ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Confirmation Requested
[logo_62sq.gif] Dear customer, As part of our security measures, we regularly screen activity in the WellsFargo system. We recently contacted you after noticing an issue on your account.We request informations from you for the following reason: We need to verify your account integrity , after some frauds made on our network of electronic money transfer and as a part of our inquiry we need to maintain a solid data base with our cutomers information , to do that please visit our main page and [1]confirm to us your personal information that you used to register. [2]https://online.wellsfargo.com/signon?ZXJyb3IudXNlcm5hbWVJbnZhbGlkRm 9ybWF0 Be sure to log in securely by clicking on URL listed above. Once you log in, your account will be verifyed and you will also need to re-login in order to complete the verification. We appreciate your understanding as we work to ensure account safety. In accordance with WellsFargo's User Agreement, your account access will remain limited until the issue has been resolved. Unfortunately, if access to your account remains limited for an extended period of time, it may result in further limitations or eventual account closure. We encourage you to log in to your wellsfargo account as soon as possible to help avoid this. We thank you for your prompt attention to this matter. Please understand that this is a security measure intended to help protect you and your account. We apologize for any inconvenience. Sincerely, WellsFargo Account Review Department WellsFargo Limited is authorized and regulated by the Financial Services Authority as an electronic money institution. References 1. http://www.continentalfreight.com.au/~michael/wells/ 2. http://www.continentalfreight.com.au/~michael/wells/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Ntop + SNMP
You don't. If you wish to use SNMP to monitor traffic voumes, etc., you'll need to use something like mrtg, cacti or nagios. ntop doesn't know or care about SNMP, any more than does, say, tcpdump or WireShark. Kurt Then why does it have support//plugin for SNMP if it wont/cant monitor it to ask the obvious ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
cvsup and portupgrade
Hello, I am relatively new to FreeBSD. I use FreeBSD 6.1 stable release. I have enabled portaudit and as a result now get reports about known vulnarabilities. The problem I have encountered is this. I am trying to update php and python and do it by first refreshing the ports tree by using cvsup and then I cd to the appropriate port and issue portupgarde. However, in both cases (php and python) I get an error. example pasted below: $ sudo portupgrade --- Upgrading 'python-2.4.3' to 'python-2.4.3_1' (lang/python) --- Building '/usr/ports/lang/python' === Cleaning for python-2.4.3_1 === python-2.4.3_1 has known vulnerabilities: = python -- buffer overrun in repr() for unicode strings. Reference: http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/python. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade.95983.0 env PORT_UPGRADE=yes make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/python (python-2.4.3)(unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed And this is my distinfo file from the /usr/ports/lang/python directory: MD5 (python/Python-2.1.1.tgz) = eb34371c49b271abc74b42572883e1b4 MD5 (python/Python-2.1.2.tgz) = 4af22bded23a55f907365ed7610de8c9 MD5 (python/Python-2.1.3.tgz) = a8b04cdc822a6fc833ed9b99c7fba589 MD5 (python/Python-2.1.tgz) = 2ba2baeccd6100a4be80e6368a975054 MD5 (python/Python-2.2.1.tgz) = e7012d611602b62e36073c2fd02396a3 MD5 (python/Python-2.2.2.tgz) = 1c1067396e5aa0299978486eb5bd1a5c MD5 (python/Python-2.2.3.tgz) = 169f89f318e252dac0c54dd1b165d229 MD5 (python/Python-2.2.tgz) = 87febf0780c8e18454022d34b2ca70a0 MD5 (python/Python-2.3.1.tgz) = a3dcbe1c7f173c8e3c7cce28495016ae MD5 (python/Python-2.3.2.tgz) = f54d7a529d444994b4b33429bbb45479 MD5 (python/Python-2.3.3.tgz) = 4d16732b1cfccc0ed250956d41463c61 MD5 (python/Python-2.3.4.tgz) = b6cf0b19226861a38689d2fabd0931b3 MD5 (python/Python-2.3.5.tgz) = 7a1ecc1196c5c0e9d4eef90ba684c4e9 MD5 (python/Python-2.3.tgz) = 595620a4769073a812e353597585c4e8 MD5 (python/Python-2.4.1.tgz) = 7bb2416a4f421c3452d306694d3efbba MD5 (python/Python-2.4.2.tgz) = 07cfc759546f6723bb367be5b1ce9875 MD5 (python/Python-2.4.3.tgz) = edf994473a8c1a963aaa71e442b285b7 MD5 (python/Python-2.4.tgz) = 149ad508f936eccf669d52682cf8e606 MD5 (python/Python-2.5c2.tgz) = 32b56940c90844eba605d5d2dad683d2 SHA256 (python/Python-2.1.1.tgz) = 6a5455b2ab72642feffc060a04e8ea543de2d0671a3f9 c335b52f2e1e41edc5f SHA256 (python/Python-2.1.2.tgz) = 389c7badc61f9bdc50788b54dd3ffeaa4b559baf6a4de 1425bf90b9c6b4ac66e I would really appreciate if someone told me where I go wrong and what I should do to upgrade both software pieces. I understand that the problem is somewhere around not really getting the python version I should, but what can I do to fix it? Warm regards, -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Error building php5-pcre
Running FreeBSD6.2-PRERELEASE and im trying to build cacti with php5-pcre being a dependancy. Below is the last few lines or so that error. === == cc -DEXPORT= -DNEWLINE=10 -DSUPPORT_UTF8 -DSUPPORT_UCP -DLINK_SIZE=2 -DPOSIX_MALLOC_THRESHOLD=10 -DMATCH_LIMIT=1000 -DMATCH_LIMIT_RECURSION=1000 -I/usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/pcrelib -I. -I/usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre -DPHP_ATOM_INC -I/usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/include -I/usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/main -I/usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre -I/usr/local/include/php -I/usr/local/include/php/main -I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend -I/usr/local/include/php/ext -DHAVE_CONFIG_H -O2 -fno-strict-aliasing -pipe -c /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c -fPIC -DPIC -o .libs/php_pcre.o /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1630: error: `fifth_arg_force_ref' undeclared here (not in a function) /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1630: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1630: error: (near initialization for `pcre_functions[2].arg_info') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1630: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1630: error: (near initialization for `pcre_functions[2]') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1631: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1631: error: (near initialization for `pcre_functions[3].arg_info') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1631: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1631: error: (near initialization for `pcre_functions[3]') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1632: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1632: error: (near initialization for `pcre_functions[4]') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1633: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1633: error: (near initialization for `pcre_functions[5]') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1634: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1634: error: (near initialization for `pcre_functions[6]') /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1635: error: initializer element is not constant /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre/php_pcre.c:1635: error: (near initialization for `pcre_functions[7]') *** Error code 1 Stop in /usr/ports/devel/php5-pcre/work/php-5.1.6/ext/pcre. *** Error code 1 Stop in /usr/ports/devel/php5-pcre. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Zbigniew Szalbot wrote: I am relatively new to FreeBSD. I use FreeBSD 6.1 stable release. I have enabled portaudit and as a result now get reports about known vulnarabilities. The problem I have encountered is this. I am trying to update php and python and do it by first refreshing the ports tree by using cvsup and then I cd to the appropriate port and issue portupgarde. However, in both cases (php and python) I get an error. example pasted below: $ sudo portupgrade --- Upgrading 'python-2.4.3' to 'python-2.4.3_1' (lang/python) --- Building '/usr/ports/lang/python' === Cleaning for python-2.4.3_1 === python-2.4.3_1 has known vulnerabilities: = python -- buffer overrun in repr() for unicode strings. Reference: http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/python. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade.95983.0 env PORT_UPGRADE=yes make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/python (python-2.4.3)(unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed I would really appreciate if someone told me where I go wrong and what I should do to upgrade both software pieces. I understand that the problem is somewhere around not really getting the python version I should, but what can I do to fix it? I just csup'ed my ports tree and ran make on python without any problem. portupgrade is a convenient tool but sometimes it fail for whatever reason, no idea in your case. You can always upgrade manually with: # make make deinstall make install clean I always run make before deinstalling, it's quite inconvenient to deinstall if you then have problems building the new version. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Hello, On Sun, 8 Oct 2006, Erik Norgaard wrote: I just csup'ed my ports tree and ran make on python without any problem. portupgrade is a convenient tool but sometimes it fail for whatever reason, no idea in your case. I tried make as you suggest and: $ sudo make === python-2.4.3_1 has known vulnerabilities: = python -- buffer overrun in repr() for unicode strings. Reference: http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/python. But thanks for your suggestion! Warm regards, -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Zbigniew Szalbot wrote: Hello, On Sun, 8 Oct 2006, Erik Norgaard wrote: I just csup'ed my ports tree and ran make on python without any problem. portupgrade is a convenient tool but sometimes it fail for whatever reason, no idea in your case. I tried make as you suggest and: $ sudo make === python-2.4.3_1 has known vulnerabilities: = python -- buffer overrun in repr() for unicode strings. Reference: http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 run portaudit -F it will update your database. btw. just a sidenote - if you have not done it - after a cvsup of the portstree you should also update your index (dependencies etc) by running make index (takes long) or make fetchindex (fast) in /usr/ports. -- Armin Pirkovitsch [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
On Sunday 08 October 2006 22:21, Zbigniew Szalbot wrote: Hello, On Sun, 8 Oct 2006, Erik Norgaard wrote: I just csup'ed my ports tree and ran make on python without any problem. portupgrade is a convenient tool but sometimes it fail for whatever reason, no idea in your case. I tried make as you suggest and: $ sudo make === python-2.4.3_1 has known vulnerabilities: = python -- buffer overrun in repr() for unicode strings. Reference: http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-a5ae-00508d6a62d f.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/python. What does your cvsup file look like ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Zbigniew Szalbot wrote: Hello, On Sun, 8 Oct 2006, Erik Norgaard wrote: I just csup'ed my ports tree and ran make on python without any problem. portupgrade is a convenient tool but sometimes it fail for whatever reason, no idea in your case. I tried make as you suggest and: $ sudo make === python-2.4.3_1 has known vulnerabilities: = python -- buffer overrun in repr() for unicode strings. Reference: http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/python. But thanks for your suggestion! Then it sound like something didn't get updated correctly when you updated your ports tree. Try refreshing it again. If you look in the port's Makefile there might be a variable set BROKEN or something like that. btw: if you upgrade with make as I suggested then the package database must be rebuilt: # pkgdb -aF The reason is that ports keep track of both way dependencies and the one way is lost on the deinstall, but since the other way is still there it can be resolved. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD Bonding Support.
perikillo [EMAIL PROTECTED] writes: Hey, exist some future project in freebsd for bonding support or we already have something like the Linux bonding driver..? ng_one2many(4) may be what you want. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Hello, On Sun, 8 Oct 2006, Armin Pirkovitsch wrote: run portaudit -F it will update your database. btw. just a sidenote - if you have not done it - after a cvsup of the portstree you should also update your index (dependencies etc) by running make index (takes long) or make fetchindex (fast) in /usr/ports. That was it! Thank you! It did help with python. However, I still have a problem with php. I am now trying to cvsup again and then upgrade php. Thanks! -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: stop ata drive rotation after umount
Michel Le Cocq [EMAIL PROTECTED] writes: is it impossible ? Impossible? Probably not. Look at the ports collection; a quick search suggested ataidle and smartmontools, but there are probably others... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
unable to find makeobjops.pl
Hello all, I was reading about kernel objects in the FreeBSD Architecture Handbook and noticed that there is no src/sys/kern/makeobjops.pl in my src tree. The section I was looking at is 3.3.5 . Anyone knows where it went? How often is the Architecture book updated? -- Antoine W. Solomon Jr. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Zbigniew Szalbot wrote: Hello, On Sun, 8 Oct 2006, Armin Pirkovitsch wrote: run portaudit -F it will update your database. btw. just a sidenote - if you have not done it - after a cvsup of the portstree you should also update your index (dependencies etc) by running make index (takes long) or make fetchindex (fast) in /usr/ports. That was it! Thank you! It did help with python. However, I still have a problem with php. I am now trying to cvsup again and then upgrade php. Well another cvsup won't solve the problem since php hasn't been patched yet. However if you're really sure you need and want this kind of port installed just set the environment variable DISABLE_VULNERABILITIES. However - you should be aware that you'd install a program with a security hole. -- Armin Pirkovitsch [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: stop ata drive rotation after umount
Thanks I will try, i think it's that Lowell Gilbert a écrit : Michel Le Cocq [EMAIL PROTECTED] writes: is it impossible ? Impossible? Probably not. Look at the ports collection; a quick search suggested ataidle and smartmontools, but there are probably others... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Hello, On Sun, 8 Oct 2006, Armin Pirkovitsch wrote: Well another cvsup won't solve the problem since php hasn't been patched yet. However if you're really sure you need and want this kind of port installed just set the environment variable DISABLE_VULNERABILITIES. However - you should be aware that you'd install a program with a security hole. You are right - it did not help. I do not so much want to install php with a security hole as much as I want to patch the hole. From the portaudit report I understood that I need to update immediately. And hence I am trying to do just that. But as a newbie, I guess I am making lots of mistakes on the way. I would prefer to use portupgrade, since I have pkgtools.conf configured so that php is kept with certain flags like CLI, etc. Here's the log: $ sudo portupgrade [Updating the portsdb format:bdb1_hash in /usr/ports ... - 15863 port entries found .1000.2000.3000.4000.5000.6000.7000.8000.9000.1.11000.12000.13000.14000.15000 . done] --- Upgrading 'php5-5.1.6' to 'php5-5.1.6_1' (lang/php5) --- Building '/usr/ports/lang/php5' with make flags: WITH_CLI=1 WITH_CGI=1 WITH_APACHE=1 WITH_MULTIBYTE=1 WITH_IPV6=1 WITH_REDIRECT=1 WITH_DISCARD=1 WITH_FASTCGI=1 WITH_PATHINFO=1 WITH_OPENSSL=1 WITH_GETTEXT=1 === Cleaning for apache-2.0.59 === Cleaning for autoconf-2.59_2 === Cleaning for pkg-config-0.21 === Cleaning for libxml2-2.6.26 === Cleaning for perl-5.8.8 === Cleaning for libtool-1.5.22_2 === Cleaning for expat-2.0.0_1 === Cleaning for libiconv-1.9.2_2 === Cleaning for m4-1.4.4 === Cleaning for help2man-1.36.4_1 === Cleaning for gmake-3.81_1 === Cleaning for p5-gettext-1.05_1 === Cleaning for gettext-0.14.5_2 === Cleaning for php5-5.1.6_1 === php5-5.1.6_1 has known vulnerabilities: = php -- open_basedir Race Condition Vulnerability. Reference: http://www.FreeBSD.org/ports/portaudit/edabe438-542f-11db-a5ae-00508d6a62df.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/php5. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade.16956.0 env PORT_UPGRADE=yes make WITH_CLI=1 WITH_CGI=1 WITH_APACHE=1 WITH_MULTIBYTE=1 WITH_IPV6=1 WITH_REDIRECT=1 WITH_DISCARD=1 WITH_FASTCGI=1 WITH_PATHINFO=1 WITH_OPENSSL=1 WITH_GETTEXT=1 ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/php5 (php5-5.1.6)(unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed Someone else asked what my cvsup file looked like. Well, the most important settings are these: *default host=cvsup9.FreeBSD.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all Many, many thanks for such prompt replies and helpful advice to you all! -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Periodic 'security' output errors
borrowing from a similar (though probably not related) thread Ever since updating (build(kernel+world), install(kernel+world), mergemaster) a -CURRENT machine a while back I get this in my daily security log: Checking setuid files and devices: find: /usr/obj/usr/src/sbin/mount_msdosfs/mount_msdosfs.o: No such file or directory find: /usr/obj/usr/src/sbin/mount_msdosfs/getmntopts.o: No such file or directory find: /usr/obj/usr/src/sbin/mount_msdosfs/mount_msdosfs: No such file or directory find: /usr/obj/usr/src/sbin/mount_msdosfs/mount_msdosfs.8.gz: No such file or directory etc.. Checking things out: huff@ dir /usr/obj/usr/src/sbin/mount_msdosfs/mount_msdosfs.o -rw-r--r-- 1 root wheel 15704 Oct 8 04:19 /usr/obj/usr/src/sbin/mount_msdosf s/mount_msdosfs.o It seems harmless, but I'd like to figure out why and fix it. My first guess is there's a file somewhere I need to delete or empty. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Zbigniew Szalbot wrote: Hello, On Sun, 8 Oct 2006, Armin Pirkovitsch wrote: Well another cvsup won't solve the problem since php hasn't been patched yet. However if you're really sure you need and want this kind of port installed just set the environment variable DISABLE_VULNERABILITIES. However - you should be aware that you'd install a program with a security hole. You are right - it did not help. I do not so much want to install php with a security hole as much as I want to patch the hole. From the portaudit report I understood that I need to update immediately. And hence I am trying to do just that. But as a newbie, I guess I am making lots of mistakes on the way. I would prefer to use portupgrade, since I have pkgtools.conf configured so that php is kept with certain flags like CLI, etc. Reference: http://www.FreeBSD.org/ports/portaudit/edabe438-542f-11db-a5ae-00508d6a62df.html Many, many thanks for such prompt replies and helpful advice to you all! Just have a look at the reference - to be exactly at the Affects: list. It concerns all versions ( 0 ) which means there is no patch yet. So best thing to do is to watch that page and update as soon as there is a patch. -- Armin Pirkovitsch [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Ntop + SNMP
In the last episode (Oct 08), Warren Liddell said: You don't. If you wish to use SNMP to monitor traffic voumes, etc., you'll need to use something like mrtg, cacti or nagios. ntop doesn't know or care about SNMP, any more than does, say, tcpdump or WireShark. Kurt Then why does it have support//plugin for SNMP if it wont/cant monitor it to ask the obvious ? I think it's more for allowing ntop to provide status via SNMP (i.e. as an agent) than using snmp to collect info from remote machines. There's really no way to use SNMP to gather the info ntop needs. All you can get from snmp is network utilization, where ntop wants to see raw packets (or at minimum, ip+port+size data per flow). -- Dan Nelson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: cvsup and portupgrade
Zbigniew Szalbot wrote: On Sun, 8 Oct 2006, Armin Pirkovitsch wrote: Well another cvsup won't solve the problem since php hasn't been patched yet. However if you're really sure you need and want this kind of port installed just set the environment variable DISABLE_VULNERABILITIES. However - you should be aware that you'd install a program with a security hole. You are right - it did not help. I do not so much want to install php with a security hole as much as I want to patch the hole. From the portaudit report I understood that I need to update immediately. And hence I am trying to do just that. But as a newbie, I guess I am making lots of mistakes on the way. Portaudit produces alarmist messages for any and every security bug, and the advice it gives to immediately de-install ports is frequently over-the-top and often unachievable. Follow the links you get from portaudit to read up about the specific vulnerabilities to see how they might affect you and the machines you run. Many vulnerabilities only occur in very specific circumstances or with very particular option combinations or methods of use. Your usage of any particular application may never go near the security hole. If there are security holes you are worried about, then cvsup regularly and keep an eye out for you package having an upgrade (portversion -L= and look for ). Or just look regularly for your port in http://www.freebsd.org/ports/index.html and see when the version number changes. --Alex ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD OpenSSL broken
Hi, I have been seeing scp xfers failing mysteriously with a Corrupted MAC on input error. This occurred more or less sporadically but for huge files it was sure to occur. I suspected the ethernet card and got it changed. Next, I suspected RAM since I used to get failed compiles saying internal compiler error and sefault. This had nothing to do with the other problems since if I issue compile again it used to go thro'. And the md5 and sha1 commands never worked. They always used to give corrupted results. Then I just gave up and moved on. I tried installing gentoo on that machine and did a memtest and it went fine. Anyway coming to the point, I am running 6.0 FreeBSD. I have come across the following cases. a) A person in Sweden had trouble with HTTPS and I solved it by reinstalling OpenSSL (check the archives, I think it was more than two months ago) b) Recently two persons had severe trouble with OpenSSH At last I tried the same medicine I have been prescribing to others and with God's grace :-) , my MD5 and SHA1 started matching... I have other machines in LAN running OpenBSD and Debian. I try matching the checksums with those boxes. And the only common factor and culprit is ... yes, OpenSSL. I urge all of you to make life simpler with this. # cd /usr/ports/security/openssl #make deinstall (it may fail, no problem :-) #make reinstall Enjoy guys! :-) I might fix the real problem if I get time. Or one of u can too. What makes me wonder is how come this problem has gone unnoticed for so long... regards, Girish ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 6.1-PRERELEASE : rm swapfile after swapoff can't release the disk space
On Wed, Oct 04, 2006 at 01:55:36PM +, Honest Qiao wrote: Environment: FreeBSD www141.igogo8.com 6.1-PRERELEASE FreeBSD 6.1-PRERELEASE #0: Fri May 12 12:12:17 CST 2006 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/iGOGO8-PAE i386 Description: Several months ago , I read the follow article, and add a 12G swapfile. The article url is http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/adding-swap-space.html The swapfile is /usr/swap0 , and I have a swap mount which size is 2G. top show: Swap: 14G Total, 14G Free Today , I use swapoff /usr/swap0 to disable swapfile , and then rm /usr/swap0. /usr/swap0 was deleted, but its disk space can't release. Now, top show: Swap: 2048M Total, 2048M Free www141# df -hi Filesystem Size Used Avail Capacity iused ifree %iused Mounted on /dev/amrd0s1a 248M 41M 187M 18% 1609 31413 5% / devfs 1.0K 1.0K 0B 100% 0 0 100% /dev /dev/amrd0s1f 19G 965M 17G 5% 1737 2636085 0% /db /dev/amrd0s1g 19G 12G 5.6G 69% 769803 1868019 29% /home /dev/amrd0s1d 248M 43M 185M 19% 585 32437 2% /tmp /dev/amrd0s1h 25G 19G 3.4G 85% 354372 3013562 11% /usr /dev/amrd0s1e 248M 65M 163M 29% 6430 26592 19% /var How long did you wait? softupdates could introduce a short delay in the statistics above updating. Failing that, you will need to remove the device with mdconfig. Use geom md list to try to identify the correct md device, then remove it. Ceri -- That must be wonderful! I don't understand it at all. -- Moliere pgpI542kTXsh9.pgp Description: PGP signature
Highpoint rr232x driver with rr2300 card?
Does anyone know if the rr232x driver can be used for the Highpoint RR2300 PCIe card? The drivers available on Highpoint's website is for up to 6.0 only and I don't see any AMD64 version of it there. If rr232x don't work, can 6.0 drivers for i386 be used with FreeBSD 6.1/6.2-AMD64? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD OpenSSL broken
Girish Venkatachalam wrote: Hi, I have been seeing scp xfers failing mysteriously with a Corrupted MAC on input error. This occurred more or less sporadically but for huge files it was sure to occur. I suspected the ethernet card and got it changed. Next, I suspected RAM since I used to get failed compiles saying internal compiler error and sefault. This had nothing to do with the other problems since if I issue compile again it used to go thro'. And the md5 and sha1 commands never worked. They always used to give corrupted results. Then I just gave up and moved on. I tried installing gentoo on that machine and did a memtest and it went fine. Anyway coming to the point, I am running 6.0 FreeBSD. I have come across the following cases. a) A person in Sweden had trouble with HTTPS and I solved it by reinstalling OpenSSL (check the archives, I think it was more than two months ago) b) Recently two persons had severe trouble with OpenSSH At last I tried the same medicine I have been prescribing to others and with God's grace :-) , my MD5 and SHA1 started matching... I have other machines in LAN running OpenBSD and Debian. I try matching the checksums with those boxes. And the only common factor and culprit is ... yes, OpenSSL. I urge all of you to make life simpler with this. # cd /usr/ports/security/openssl #make deinstall (it may fail, no problem :-) #make reinstall Enjoy guys! :-) I might fix the real problem if I get time. Or one of u can too. What makes me wonder is how come this problem has gone unnoticed for so long... Two weeks ago a security advisory regarding FBSD/OpenSSL was announced, two days later FBSD/OpenSSH. I don't know if this is related to the problem you describe. The advisory for OpenSSL is to update your source and build/install world. Then you must rebuilt all applications that link against OpenSSL in base. For OpenSSH you only need to rebuild that, but this will be done in the step above. If you use OpenSSL/SSH from ports then these may or may not have been patched, but the result is the same with respect to rebuilding applications linking against a broken OpenSSL. Anyway, if you use OpenSSL/SSH from ports then it is NOT FreeBSD OpenSSL that is broken, it's the port that may be, and then the problem may be an entirely different one. Try first switching to OpenSSL/SSH in base, I have no problem with those. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sendmail + spamassassin
What is the best way to integrate spamassasin with sendmail? MIMEDefang? -- dick -- http://nagual.nl/ -- PGP/GnuPG key: F86289CE ++ Running FreeBSD 6.1 +++ Solaris 10 6/06 ++ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Expunging IMAP mailbox via cronjob : possible?
I know this isn't really a FreeBSD question, but I was wondering if there was a means available where I can expunge my email automatically from my IMAP inboxes / folders (I have a wide variety of custom folders). I just find it tedious logging in via SSH to each host with pine and expunging the contents of the folder one-by-one, and there's no way in hell I'm going to use an M$ based mailclient (Outlook Express, Outlook) to do the same. Thanks, -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Expunging IMAP mailbox via cronjob : possible?
Garrett Cooper wrote: I know this isn't really a FreeBSD question, but I was wondering if there was a means available where I can expunge my email automatically from my IMAP inboxes / folders (I have a wide variety of custom folders). I just find it tedious logging in via SSH to each host with pine and expunging the contents of the folder one-by-one, and there's no way in hell I'm going to use an M$ based mailclient (Outlook Express, Outlook) to do the same. Thanks, -Garrett Nevermind--I think I found out how to do this with Perl: http://search.cpan.org/~cwest/Net-IMAP-Simple-0.95/lib/Net/IMAP/Simple.pm. -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sendmail + spamassassin
dick hoogendijk writes: What is the best way to integrate spamassasin with sendmail? MIMEDefang? Short answer: mail/spamass-milter? Real answer: depends on the rest of your mail set-up, and what your goals and constraints are. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sendmail + spamassassin
On Sunday 08 October 2006 15:52, dick hoogendijk wrote: What is the best way to integrate spamassasin with sendmail? MIMEDefang? i do this: add this to /etc/make.conf: SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2 SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2 cd /usr/ports/security/cyrus-sasl2-saslauthd; make install clean cd /usr/src/lib/libsm; make clean; make obj; make depend; make cd /usr/src/lib/libsmutil; make clean; make obj; make depend; make cd /usr/src/usr.sbin/sendmail; make clean; make obj; make depend; make; make install cd /usr/ports/mail/dovecot; make install clean cd /usr/ports/mail/spamass-milter; make install clean the last part there, will install spamassassin as well as spamass-milter. along with settings things to be able to start in /etc/rc.conf (and configuring other .conf files as necessary), this will get you everything you need for a mail service (of course, if you already have a favorite pop3/imap solution in place, omit the dovecot sugesstion). if you do end up interested in seeing how i set my server up, line by line, i have a document here that you might like: http://dfwlpiki.dfwlp.org/index.php/Deploying_a_FreeBSD_Server#Configuring_Mail_Services cheers, jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Make buildworld fail due to sendmail/sasl installation.
Ever since I installed the package sendmail+tls+sasl2-8.13.8 I haven't been able to make buildworld on my system. I get file not found errors for some sasl header files. I'll attach the pertinent portion of the failure below. Seems simple enough, however, I haven't been able to get around it. It calls for the sasl files in the correct directory ns1:/usr/local/include/sasl# ls hmac-md5.h md5global.h sasl.h saslutil.h md5.h prop.h saslplug.h The files are there. Still nothing. I've tried copying them to various places to get around it to no avail /usr/src/contrib/sendmail/src /usr/src/contrib/sendmail/src/sasl /usr/src/contrib/sendmail/libmilter /usr/src/contrib/sendmail/libmilter/sasl /usr/local/include Not sure what to do with this, seems to me it would probably make things easier on a lot of folks if sendmail was treated similar to how perl is on freebsd these days, where it isn't integral. Not using the integral sendmail has been a bit of a nightmare. Thanks so much for any help Jesse mkdep -f .depend -a-I/usr/src/lib/libmilter/../../contrib/sendmail/src -I/usr/src/lib/libmilter/../../contrib/sendmail/include -I. -DNOT_SENDMAIL -Dsm_snprintf=snprintf -D_THREAD_SAFE -DNETINET6 -I/usr/local/include/sasl -DSASL=2 /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/main.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/engine.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/listener.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/handler.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/comm.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/smfi.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/signal.c /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/sm_gethost.c /usr/src/lib/libmilter/../../contrib/sendmail/libsm/errstring.c /usr/src/lib/libmilter/../../contrib/sendmail/libsm/strl.c In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/main.c:15: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/engine.c:14: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/listener.c:18: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/handler.c:14: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/comm.c:14: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/smfi.c:14: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/libmilter.h:31, from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/signal.c:14: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:135:29: sasl/saslutil.h: No such file or directory In file included from /usr/src/lib/libmilter/../../contrib/sendmail/libmilter/sm_gethost.c:14: /usr/src/lib/libmilter/../../contrib/sendmail/src/sendmail.h:134:25: sasl/sasl.h: No such file or directory
Re: sendmail + spamassassin
From: dick hoogendijk [EMAIL PROTECTED] What is the best way to integrate spamassasin with sendmail? MIMEDefang? Best is horridly subjective. I use procmail here with considerable success. However, what works for me is not necessarily ideal for you. Maybe a better description of the intended use would help. {^_^} Joanne, who is getting scared - I almost understand procmail syntax. That must mean I am going insane. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: RE : Re: cheapskate webmail interface
On 10/8/06, jan gestre [EMAIL PROTECTED] wrote: On 10/6/06, Desmond Coughlan [EMAIL PROTECTED] wrote: you may want to try roundcube http://www.roundcube.net although it's still on beta the interface's rocks, nothing you ever experienced before, certainly cooler than squirrelmail with AJAX like interface. Interesting... OK, I've got roundcube installed, the tables are created, postgreSQL is running, apache is recompiled for PhP4 (which is installed also) ... oh, and I've installed IMAP4. Now what ? My question, I suppose, is .. what is the address used to access the web interface? you need to configure main.inc.php and db.inc.php, usually just your username will do but if you can't, try [EMAIL PROTECTED] look for this part in roundcubemail/config/main.inc.php : // Automatically add this domain to user names for login // Only for IMAP servers that require full e-mail addresses for login // Specify an array with 'host' = 'domain' values to support multiple hosts $rcmail_config['username_domain'] = ''; // This domain will be used to form e-mail addresses of new users // Specify an array with 'host' = 'domain' values to support multiple hosts $rcmail_config['mail_domain'] = 'sample.org'; just replace sample.org with your fqdn and your done! username: user1 password: * HTH ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]