date:20080115

Re: ssmtp configuration for server authorization

2008-01-15 Thread perrin

>
> This is my ssmtp.conf:

(yadda yadda)

I probably should have included a tail of my /var/log/maillog file:

  Jan 16 00:08:00 laptop sSMTP[6976]: Unable to connect to \
"mail.domain.org" port 25.
  Jan 16 00:08:00 laptop sSMTP[6976]: Cannot open mail.domain.org:25

As with the previous message, the server name and local hostname have been
sanitized thus:

"laptop" is the local machine using ssmtp
"domain" is the domain of the email address and SMTP server

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

RE: Greylisting and Yahoo Mailinglists

2008-01-15 Thread Ted Mittelstaedt



> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of Heiko Wundram
> (Beenic)
> Sent: Tuesday, January 15, 2008 1:13 AM
> To: freebsd-questions@freebsd.org
> Subject: OT: Greylisting and Yahoo Mailinglists
> 
> 
> Hey all!
> 
> A colleague of mine tracks a Yahoo mailing list, but always gets 
> mails from 
> them with a large delay (or not at all) due to our mailserver doing 
> greylisting.
> 
> This comes from the fact that the triplet that represents a 
> message sent from 
> a Yahoo mailing list changes with every message (because the 
> envelope-sender 
> _always_ contains a unique ID to do bounce detection).
> 
> Additionally, I can't seem to make out a set of "subnets" from which the 
> messages arrive; I've so far identified at least five subnets 
> that Yahoo uses 
> to send messages out (and I'm hesitant to add five subnets to the 
> whitelist, 
> especially when they're not closely related in any way as Yahoos 
> subnets seem 
> to be: 66.94.237, 66.163.168, 66.163.169, 69.147.103 and 
> 209.131.38 is what 
> I've seen so far from old messages at a quick glance).
> 
> Anybody here have the same problem, and has rules for whitelisting Yahoo 
> mailing lists properly?
> 

whois -h whois.arin.net xx.xx.xx.xx  will tell you who the subnet
is assigned to.  If it is Yahoo then whitelist them, that's what
the whitelist mechanism is there for.

Yahoo has lots of subnets.  You will have to find and add to your
whitelist based on where the attempts come from.  It is easy to write
a simple awk/grep script that will give you those numbers all formatted
up and ready to paste into your whitelist.

Ted
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: OT: Greylisting and Yahoo Mailinglists

2008-01-15 Thread Heiko Wundram (Beenic)

Am Dienstag, 15. Januar 2008 19:08:39 schrieb Chuck Swiger:
> You didn't mention which mailserver or greylist software you are
> using, but the postgrey implementation (for use with Postfix) has this
> in postgrey_whitelist_clients:
>
> # greylisting.org: Yahoo Groups servers (no retry)
> scd.yahoo.com
>
> ...and you could choose to whitelist all of yahoo.com just as easily.

I am using Postfix, but not postgrey, rather postfix-policyd, which does 
whitelisting of hosts based on IPs of the connecter. postfix-policyd comes 
with three blocks of IPs for the Yahoo Groups mailservers in the default 
whitelist, but none of the IPs I mentioned in my original mail falls into 
those groups.

Sorry for underspecifying my requirements, but that's the reason I was asking 
specifically. I knew about the postgrey whitelist entry you mentioned.

Thanks!

-- 
Heiko Wundram
Product & Application Development
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

ssmtp configuration for server authorization

2008-01-15 Thread perrin

I seem to be having some authorization problems with an SMTP server using
ssmtp.  I want to make sure the configuration is correct before I blame the
problem on something else (like the company that runs the server).

In the following ssmtp.conf file contents, assume these values for anything
to the right of an equals sign:

"user" is the mail account name
"domain" is the domain for the SMTP server
"password" is my password for the "user" mail account
"laptop" is the hostname of my laptop, where I'm running ssmtp
"local" is the local network name
"mail" is the hostname of the SMTP server (and mail.domain.org is the FQDN)

This is my ssmtp.conf:

  [EMAIL PROTECTED]

  mailhub=mail.domain.org

  [EMAIL PROTECTED]
  AuthPass=password

  rewriteDomain=domain.org

  hostname=laptop.local

  FromLineOverride=YES

Is something missing or mis-specified?  Did I misunderstand the purpose of
one of those variables?  Are some of those unusable with the FreeBSD version
of ssmtp?  Is there something else I should be doing for authorization on
the SMTP server?  Is something in the wrong order?

Note that on the SMTP server the complete login name for that mail account
is "[EMAIL PROTECTED]", not just "user", according to the people managing the
server.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Anyone out there using SSL-Explorer?

2008-01-15 Thread Kurt Buff

I've been trying to install it on a box I've thrown together (FreeBSD
it-kbuff-fbsd1.mycompany.com 6.3-PRERELEASE FreeBSD 6.3-PRERELEASE #0)
and have followed the directions as best I could in the following
documents:

/usr/src/sslexplorer/README (from the src install package at
http://internap.dl.sourceforge.net/sourceforge/sslexplorer/sslexplorer-1.0.0_RC13-src.zip)

http://n3ncy.com/UNIX/FreeBSD/SSLExplorer.htm (which seems not to be
for the source install, and with which I had no luck)

and

http://3sp.com/kb/idx/21/088/article/How_do_I_install_the_source_code.html
(the PDF they link to is so obscured by a huge DRAFT stamp that it's
pretty much unusable.)

I've installed Java and apache-ant, and execute '# ant install', which
churns and produces lots of output - It's supposed to launch an
install wizard, which I never see, then it finally states

 install:
  [java] Java Result: 1

 BUILD SUCCESSFUL
 Total time: 1 minute 10 seconds

then I execute '# ant run', which produces lots of similar output, but
then it exits with

 console:
  [echo]
  [echo]
Service wrapper not currently supported on this platform (FreeBSD), so
falling back to
  [echo]
generic method. You will not have restart ability from the user
interface and
  [echo]
beware of using CTRL+C, it may leave processes running
  [echo]

 console-using-java:
  [java] Java Result: 1

 BUILD SUCCESSFUL
 Total time: 54 seconds

and nothing is running that I would expect to see.

If anyone on this list has experience with it, I'd appreciate a bit of advice.

Thanks,

Kurt
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No spam???

2008-01-15 Thread Olivier Nicole

Hi,

> 2008-01-14 09:30:37.074087500 rblsmtpd: 123.20.89.67 pid 72121: 451  
> http://www.spamhaus.org/query/bl?ip=123.20.89.67

Just one comment, in my installation of SpamAssassin, it reports in
syslog as spamd, not at rblsmtpd. This looks like logs from the
rblsmtpd program that is not SpamAssasin.

As some one mentionned, one way to prevent false positive and too
agressive black lists is to use them through SpamAssassin only, where
the black list score is only part of the spaminess. The draw back is
that it puts more load the server and SpamAssassin that has to
scrutinize every email, while dropping at the SMTP level is fast and
uses very low resources.

Bests,

Olivier
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Que 2008 seja de paz e harmonia ( me liga felicidades)

2008-01-15 Thread mensagem


   Que 2008 seja de paz e harmonia ( me liga felicidades)

   [tit_grupo_video_download.gif]   

  [logo_claro.jpg]


Voc recebeu um Claro Vdeo Download!
 Claro Vdeo Download enviado do nmero 0XX 92645433



 [1]Visualizar Claro Vdeo Download
  (90kb / tempo estimado: 0:50seg)



   Importante: Claro Vdeo Download ficar disponvel na Web durante 7 dias.
  Claro. A vida na sua mo.



  [2]Site da Claro | [3]Termos de uso | [4]Poltica de Privacidade
Copyright Claro 2006
   

References

   1. http://216.133.246.52/clarovideomensagem/video.scr
   2. 
http://www.claroideias.com.br/portal/site/CIdeias/menuitem.7df34df2cc1d8a7933d1593b22dc10a0/&idlocal=56
   3. 
http://www.claroideias.com.br/portal/site/CIdeias/menuitem.7df34df2cc1d8a7933d1593b22dc10a0/&idlocal=56
   4. 
http://www.claroideias.com.br/portal/site/CIdeias/menuitem.7df34df2cc1d8a7933d1593b22dc10a0/&idlocal=56
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Trouble compiling php5-xml

2008-01-15 Thread Nick Rout

I am trying to compile php5-xml (as a dependency to rtgui).

I get this error:

 cc -I. -I/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml
-DPHP_ATOM_INC -I/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/include
-I/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/main
-I/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml
-I/usr/local/include/php -I/usr/local/include/php/main
-I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend
-I/usr/local/include/php/ext -I/usr/local/include/libxml2
-I/usr/local/include -DHAVE_CONFIG_H -O2 -fno-strict-aliasing -pipe -c
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c  -fPIC -DPIC
-o .libs/xml.o
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:74: warning:
parameter names (without types) in function declaration
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:160: error:
`xml' undeclared here (not in a function)
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:160: error:
initializer element is not constant
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:160: error:
(near initialization for `xml_module_entry.post_deactivate_func')
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:161: error:
initializer element is not constant
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:161: error:
(near initialization for `xml_module_entry.globals_id')
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:162:
warning: initialization makes integer from pointer without a cast
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:163:
warning: initialization makes integer from pointer without a cast
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:164:
warning: excess elements in struct initializer
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:164:
warning: (near initialization for `xml_module_entry')
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:164:
warning: excess elements in struct initializer
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:164:
warning: (near initialization for `xml_module_entry')
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:165:
warning: excess elements in struct initializer
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:165:
warning: (near initialization for `xml_module_entry')
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c: In function
`PHP_GINIT_FUNCTION':
/usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml/xml.c:187: error:
invalid type argument of `->'
*** Error code 1

Stop in /usr/ports/textproc/php5-xml/work/php-5.2.5/ext/xml.
*** Error code 1

Stop in /usr/ports/textproc/php5-xml.
*** Error code 1

Stop in /usr/ports/net/php5-xmlrpc.
*** Error code 1

Stop in /usr/ports/net-p2p/rtgui.
*** Error code 1

Stop in /usr/ports/net-p2p/rtgui.


Can anyone help me in sorting this out?

Cheers (new to the list by the way :-)  )

Nick.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Limit on number of groups a user can join

2008-01-15 Thread Chuck Swiger


On Jan 15, 2008, at 3:01 PM, Andrea Venturoli wrote:
I made some tries removing him from other groups and I got to the  
conclusion that it works as long as he is in no more than 15 groups,  
but breaks when he join the 16th.  Is this an hard limit? Can it be  
extended? Why this?


This limit is somewhat historical but cannot easily be changed because  
this max # is hard-coded into the NFS protocol, which needs to  
describe which groups a user belongs to.  If you're not using NFS, you  
might try changing the declaration of KI_NGROUPS in /usr/src/sys/ 
user.h and build a new kernel, I believe


--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Limit on number of groups a user can join

2008-01-15 Thread Andrea Venturoli

Today I added an user to a new group and suddenly he reported he could 
not use this server anymore: he could not login via ssh or access Samba 
shares.

I tried (as root) "su username" and it failed.
I removed it from that group and everything worked fine again.
I made some tries removing him from other groups and I got to the 
conclusion that it works as long as he is in no more than 15 groups, but 
breaks when he join the 16th.

Is this an hard limit? Can it be extended? Why this?

 bye & Thanks
av.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Relayd (former hoststated) status for freebsd 7.0RC1

2008-01-15 Thread Alexandre Vieira

On Jan 15, 2008 8:29 PM, Brad <[EMAIL PROTECTED]> wrote:

> On Tuesday 15 January 2008 15:24:52 Bruce M. Simpson wrote:
> > Alexandre Vieira wrote:
> > > Hello all,
> > >
> > > I remember that there was a port (net/hoststated) where I could
> install
> > > hoststated to use with PF. Anyone can shed a light on what is the
> status of
> > > this software implementation on 7.0?
> > >
> >
> > Perhaps ports/net/ifstated is the answer?
> >
> > BMS
>
> ifstated and relayd (used to be hoststated) are for totally different
> purposes.
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.
>
> ___
> [EMAIL PROTECTED] mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
>

Hi, I meant hostated aka hoststated aka relayd. It's in Obsd base system and
had there was a port for freebsd not long ago.

I've found the old port structure:
http://people.freebsd.org/~flz/local/ports/hoststated/ which stands for
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/local-distfiles/flz/hoststated/hoststated-20070131.tgz.

Many changes were commited since 07/01/31:
http://kho.bonghongxanh.vn/pub/.disk0/ftp.openbsd.org/pub/OpenBSD/cvs/src/usr.sbin/relayd/Makefile,v

Added flz@ to the loop.
TIA for any effort to get this working.

Kind Regards


-- 
Alexandre Vieira - [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Downloading ports tree again

2008-01-15 Thread Trey Sizemore

On Tue Jan 15, 2008 03:39PM, Manolis Kiagias wrote:
> Trey Sizemore wrote:
>> I have used portsnap to download the ports tree.  Recently, I've removed
>> /usr/ports/* and now need to download the ports tree again.
>>
>> However, running portnap fetch results in:
>> "Ports tree hasn't changed since last snapshot
>> No updates needed"
>>
>> How can I 'reset' portsnap and get the ports tree again?
>>
>> Thanks!
>>   
> I would first try a "portsnap extract" and see if this extracts the  
> whole ports tree again (from what I understand from the man page, it 
> will)
>
> Otherwise, portsnap saves its state in /var/db/portsnap. You could try  
> deleting the files in there.
>

Thanks, using "portsnap extract" did it.

-- 
Cheers,
Trey

 
Do not seek death; death will find you.
But seek the road which makes death a fulfillment.
 --Dag Hammarskjold
 
Linux valkyrie 2.6.22.13-0.3-bigsmp i686 GNU/Linux
  4:51pm  up   9:34,  5 users,  load average: 0.33, 0.88, 1.00


pgpKxoJcjQigp.pgp
Description: PGP signature

Re: Relayd (former hoststated) status for freebsd 7.0RC1

2008-01-15 Thread Bruce M. Simpson


Alexandre Vieira wrote:

Hello all,

I remember that there was a port (net/hoststated) where I could install
hoststated to use with PF. Anyone can shed a light on what is the status of
this software implementation on 7.0?
  


Perhaps ports/net/ifstated is the answer?

BMS
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Relayd (former hoststated) status for freebsd 7.0RC1

2008-01-15 Thread Brad

On Tuesday 15 January 2008 15:24:52 Bruce M. Simpson wrote:
> Alexandre Vieira wrote:
> > Hello all,
> >
> > I remember that there was a port (net/hoststated) where I could install
> > hoststated to use with PF. Anyone can shed a light on what is the status of
> > this software implementation on 7.0?
> >   
> 
> Perhaps ports/net/ifstated is the answer?
> 
> BMS

ifstated and relayd (used to be hoststated) are for totally different purposes.

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No spam???

2008-01-15 Thread Warren Block


On Tue, 15 Jan 2008, cpghost wrote:

On Tue, Jan 15, 2008 at 08:48:32AM -0500, John Almberg wrote:


So raises the same point that Oliver makes: how trustworthy are these
blacklists?


YMMV, of course!

I'm using spamhaus.org's blacklists for quite some time (many years)
to block spam in postfix and they've been VERY trustworthy so far.

But I can't say the same for the others, which seem occasionally a
little bit too eager/aggressive and accumulate way too many false
positives.


"Trustworthy" is entirely subjective in this case.  I've seen people 
complain about high false positives with a DNSBL that has been extremely 
trustworthy for me, and then turn around and recommend one that had a 
very high false positive rate.


In general, people should check a DNSBL's blocking criteria and 
reputation before using it.  They should also realize that's it's not an 
exact science, and be willing to manually whitelist and otherwise adjust 
things from time to time.


-Warren Block * Rapid City, South Dakota USA
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Relayd (former hoststated) status for freebsd 7.0RC1

2008-01-15 Thread Alexandre Vieira

Hello all,

I remember that there was a port (net/hoststated) where I could install
hoststated to use with PF. Anyone can shed a light on what is the status of
this software implementation on 7.0?

TIA
-- 
Alexandre Vieira - [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: sysinstall and bsdlabel/boot

2008-01-15 Thread Nerius Landys

> > Yes, I figured using  `bsdlabel' would install /boot/boot to the
> > beginning of the slice.  However, I cannot [easily] run `bsdlabel'
> > without being booted into the FreeBSD OS.  I can't run the OS
> > without /boot/boot being installed to the beginning of the FreeBSD
> > slice.  Chicken and egg problem. Actually, I could probably run
> > `bsdlabel' from the live disc, but a newbie [like myself] would
> > probably have a hard time figuring this out.
>
> Yes, you can run in from live CD...
>
>
Let's assume that my theory is correct (I could verify this by installing
again, but I don't want to clobber over again).

Theory: When I install 7.0 FreeBSD, and I choose to leave the MBR alone
(when I am presented with the three choices about what to do with the MBR).
then no boot code is installed to any FreeBSD slice (much of the time there
will be just one FreeBSD slice).

Now, imagine I'm a new user who doesn't have a clue.  If I choose not to
install MBR code, then there will be no obvious way to boot into FreeBSD.
The installation will be unusable to the inexperienced user.  I suggest
adding some menu option or something during install to allow a user
installing FreeBSD to write boot code to the beginning of the FreeBSD slice
that has the kernel.  Or maybe even do this automatically under certain
circumstances.

I would be able to verify my theory only after I get my test computer set
up, which won't be in a few days.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: FreeBSD 6.1 php5 cli core dumped

2008-01-15 Thread Chuck Swiger


On Jan 15, 2008, at 10:33 AM, Dominik Zalewski wrote:

I disabled php_mapscript.so extension and PHP CLI doesn't seem to core
dump anymore. Problem is that I really need mapscript.

I tried to recompile mapserver but it didn't help.

Any ideas?


Yes, change the order that particular module is listed in your  
extensions.ini file.  Try moving it to the last position, for  
example


--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: FreeBSD 6.1 php5 cli core dumped

2008-01-15 Thread Dominik Zalewski

I disabled php_mapscript.so extension and PHP CLI doesn't seem to core
dump anymore. Problem is that I really need mapscript.

I tried to recompile mapserver but it didn't help.

Any ideas?


On Tue, 2008-01-15 at 13:37 +0200, Dominik Zalewski wrote:
> Dear All,
> 
> I'm using FreeBSD 6.1 i386 and I'm having problem with php5-cli .
> 
> When I try to run php myscript.php I'm getting: Segmentation fault: 11
> (core dumped)
> 
> Script runs fine under a web browser. The problem is only when running
> php from command line.
> 
> Some people suggested that I should change module order in
> extensions.ini . I played a bit but it didn't help.
> 
> Here is my extensions.ini :
> 
>extension=session.so
>extension=json.so
>extension=php_mapscript.so
>extension=ctype.so
>extension=ldap.so
>extension=curl.so
>extension=ftp.so
>extension=gd.so
>extension=iconv.so
>extension=mbstring.so
>extension=mysql.so
>extension=pcre.so
>extension=simplexml.so
>extension=tokenizer.so
>extension=xml.so
>extension=zlib.so
> 
> Installed php5 ports:
> 
> php5-5.2.5  PHP Scripting Language
> php5-ctype-5.2.5The ctype shared extension for php
> php5-curl-5.2.5 The curl shared extension for php
> php5-ftp-5.2.5  The ftp shared extension for php
> php5-gd-5.2.5   The gd shared extension for php
> php5-iconv-5.2.5The iconv shared extension for php
> php5-ldap-5.2.5 The ldap shared extension for php
> php5-mbstring-5.2.5 The mbstring shared extension for php
> php5-mysql-5.2.5The mysql shared extension for php
> php5-pcre-5.2.5 The pcre shared extension for php
> php5-session-5.2.5  The session shared extension for php
> php5-simplexml-5.2.5 The simplexml shared extension for php
> php5-tokenizer-5.2.5 The tokenizer shared extension for php
> php5-xml-5.2.5  The xml shared extension for php
> php5-zlib-5.2.5 The zlib shared extension for php
> 
> Regards,
> 
> Dominik
> 
> 
> 
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

RE: newest security patch and custom kernel

2008-01-15 Thread Norman Maurer

Well it depends ... If you know it only change the version string i
whould say no on a production server.

bye
Norman

Am Dienstag, den 15.01.2008, 16:57 + schrieb John Clement:
> > The -p10 includes no kernel updates so restarting is not neccesarry.
> 
> Would it not be advisable to reboot after installing a new kernel
> anyway, to make sure it restarts ok... better that than finding out it
> doesn't boot next time to reboot...
> 
> 
> > bye
> > Norman
> > 
> > Am Dienstag, den 15.01.2008, 08:52 +0100 schrieb zbigniew szalbot:
> > > Hello again,
> > >
> > > Norman Maurer pisze:
> > > > It should be enough to just building and installing the kernel.
> The
> > > > freebsd-update should have patched the kernel src files anyway.
> > > >
> > > Thank you for very helpful advice. One last question, is it
> necessary
> > > to restart the machine? Or can I keep it online after building and
> > > installing the kernel? I don't care about uname -a details not being
> > > updated unless the machine needs restarting to include the updates.
> > >
> > > Thank you!
> > >
> > > Zbigniew Szalbot
> > > > bye
> > > > Norman
> > > >
> > > >
> > > > Am Dienstag, den 15.01.2008, 07:24 +0100 schrieb zbigniew szalbot:
> > > > > Hello,
> > > > >
> > > > >
> > > > > Norman Maurer pisze:
> > > > > > Hi,
> > > > > >
> > > > > > the /usr/src/sys* stuff should be patched anyway. But you need
> > to build
> > > > > > your kernel again and install it to reflect the changes. Even
> > if i think
> > > > > > it only update the -p10 label in the case of -p10 patch set.
> > > > > >
> > > > > OK. So this page applies to me now?
> > > > > http://www.freebsd.org/doc/en_US.ISO8859-
> > 1/books/handbook/kernelconfig-building.html
> > > > >
> > > > >1.
> > > > >
> > > > >   Change to the /usr/src directory:
> > > > >
> > > > >   # cd /usr/src
> > > > >
> > > > >
> > > > >2.
> > > > >
> > > > >   Compile the kernel:
> > > > >
> > > > >   # make buildkernel KERNCONF=/MYKERNEL/
> > > > >
> > > > >
> > > > >3.
> > > > >
> > > > >   Install the new kernel:
> > > > >
> > > > >   # make installkernel KERNCONF=/MYKERNEL/
> > > > >
> > > > >
> > > > > *Note:* It is required to have full FreeBSD source tree to
> > build the
> > > > > kernel.
> > > > >
> > > > >
> > > > > I am interested if I need to download latest FBSD sources then?
> I
> > have
> > > > > not touched them since I built a custom kernel.
> > > > >
> > > > > Thank you!
> > > > >
> > > > > Zbigniew Szalbot
> > > > >
> > > > > > cheers
> > > > > > Norman
> > > > > >
> > > > > >
> > > > > > Am Dienstag, den 15.01.2008, 07:03 +0100 schrieb zbigniew
> > szalbot:
> > > > > > > Hello,
> > > > > > >
> > > > > > > Using freebsd-update I applied the latest security patches
> > which were
> > > > > > > announced yesterday. However, I then notice this message:
> > > > > > >
> > > > > > > The following files will be updated as part of updating to
> > 6.2-RELEASE-p10:
> > > > > > > /boot/GENERIC/kernel
> > > > > > >
> > > > > > > My question is whether my update missed the point because I
> > have a
> > > > > > > custom kernel? If so, do I need to apply it manually as
> > described in the
> > > > > > > security advisory? If I still want to go down the binary
> > road, how can I
> > > > > > > make sure my custom kernel gets patched, too?
> > > > > > >
> > > > > > > Thank you very much!
> > > > > > >
> > > > > > > Zbigniew Szalbot
> > > > > > > ___
> > > > > > > freebsd-questions@freebsd.org mailing list
> > > > > > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > > > > > > To unsubscribe, send any mail to "freebsd-questions-
> > [EMAIL PROTECTED]"
> > > > > >
> > > > > >
> > > >
> > > >
> > 
> > ___
> > freebsd-questions@freebsd.org mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to "freebsd-questions-
> > [EMAIL PROTECTED]"

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: sysinstall and bsdlabel/boot

2008-01-15 Thread Chuck Swiger


On Jan 15, 2008, at 10:08 AM, Nikola Lečić wrote:

P.S.  I hope I'm doing the quoting thing ``properly'', not
"incorrectly".


IMHO there is neither FreeBSD- nor Linux-specific mails, and there
shouldn't be such thing. These mails are written in English, so it
seems that neither of us is right: quotes should be “like this”,  
not

"like this" or ``like this''.


While I would agree with the above, Unix shells make a distinction  
between different types of quote characters, and if you are talking  
about command-line programming or scripts, there is an advantage to  
quoting things in a fashion that the shell will be happy with.


Double-quotes (") permit variable, history, and alias expansion of the  
quoted terms, whereas single forward quotes (') give you a string  
literal and disable expansion.  Backquotes (`) are used to perform  
command substitution and are a synonym for "$(command)" syntax;  
something like "echo `ls`" would be a simple example.


Regards,
--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

trouble with authpf

2008-01-15 Thread David Benfell

Hello all,

I had authpf working successfully with a much simpler pf setup.  But
with a hardware failure, I had to collapse the services I run onto a
single system.  And I haven't successfully gotten authpf running on
this.

Attached is my pf.conf in all its ugliness.  I don't really know what
I'm doing there and this has undoubtedly accumulated some cruft over
the several years I've been using it (originally on OpenBSD before it
was really working on FreeBSD).

authpf itself seems to think it is working.  When I ssh into that
account, it prints the message of the day and the message I expect
about how I'm authenticated from some IP address.  And it sits there
waiting for me to decide I'm going elsewhere -- all entirely what
I've come to expect.

What I haven't come to expect is that the access I'm attempting is
being blocked.  And I'm certain the problem is with my pf setup since
a tcpdump of pflog shows the packets being blocked.

So I haven't got this right.

Any help would be much appreciated.

-- 
David Benfell, LCP
[EMAIL PROTECTED]
---
Resume available at http://www.parts-unknown.org/
NOTE: I sign all messages with GnuPG (0DD1D1E3).
#   $OpenBSD: pf.conf,v 1.19 2003/03/24 01:47:28 ian Exp $
#
# See pf.conf(5) and /usr/share/pf for syntax and examples.
# Required order: options, normalization, queueing, translation, filtering.
# Macros and tables may be defined and used anywhere.
# Note that translation rules are first match while filter rules are last match.

# Macros: define common values, so they can be referenced and changed easily.
#ext_if="ext0"  # replace with actual external interface name i.e., dc0
ext_if="sf0"
#int_if="int0"  # replace with actual internal interface name i.e., dc1
int_if="sf1"
voip_cfg_if="vr0"
pub_if="sf3"
local_if="lo0"
#lupin_if="sf1"
#internal_net="10.1.1.1/8"
internal_net="192.168.18.1/24"
external_addr="66.93.170.242"
internal_addr="192.168.18.1"
routable_subnet="66.93.170.241/28"
voip_cfg="192.168.102.1"
voip_local="192.168.102.2"
mta_ad = "192.168.19.242"
mta_pt = "25"
dhcp_net="192.168.20.0/24"
#lupin_net="192.168.100.0/24"
public_admin_net="192.168.17.0/24"
starshine="216.240.40.160/27"
#allowed_nets="{ $starshine, $internal_net }"
trusted_external="{ 12.22.55.0/24 64.0.0.0/4 134.154.0.0/16 216.240.40.161/27 
70.7.71.0/24 }"
#   DoubletreeLocal  CSU Haywardstarshine.org   
Sprint
earth_ext="66.93.170.243"
earth_int="192.168.18.43"
dnscache="192.168.19.4"
kindling_ext="66.93.170.244"
kindling_int="192.168.19.244"
home_ext="66.93.170.245"
home_int="192.168.18.44"
raven_ext="66.93.170.246"
raven_int="192.168.18.45"
lair_ext="66.93.170.247"
lair_int="192.168.18.46"
thunder_ext="66.93.170.248"
thunder_int="192.168.18.47"
voip_ext="66.93.170.254"
#lupin_ext="66.93.170.254"
non_routable="{ 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 }"
macintoshes="{ $lair_ext, $lair_int, $thunder_ext, $thunder_int }"
linux_pcs="{ $dnscache, $kindling_ext, $kindling_int, $home_ext, $home_int, 
$raven_ext, $raven_int }"
auth_local="{ $lair_ext, $lair_int, $thunder_ext, $thunder_int \
$earth_ext, $dnscache, $kindling_ext, $kindling_int, $home_ext, 
$home_int, $raven_ext, $raven_int }"
#lupin_router="192.168.100.1"
#lupin_net="192.168.100.0/24"
tcp_udp="proto { tcp, udp }"
in_out="{ in, out }"

# Tables: similar to macros, but more flexible for many addresses.
#table  { 10.0.0.0/8, !10.1.0.0/16, 192.168.0.0/24, 192.168.1.18 }
table  persist
table  persist
table  persist { 201.6.117.62, 125.88.102.22, 200.225.217.114, 
67.64.167.243, 212.203.9.64, 202.111.157.144, 217.64.100.162, 217.64.100.162, 
217.64.100.162 }

# Options: tune the behavior of pf, default values are given.
#set timeout { interval 30, frag 10 }
#set timeout { tcp.first 120, tcp.opening 30, tcp.established 86400 }
#set timeout { tcp.closing 900, tcp.finwait 45, tcp.closed 90 }
#set timeout { udp.first 60, udp.single 30, udp.multiple 60 }
#set timeout { icmp.first 20, icmp.error 10 }
#set timeout { other.first 60, other.single 30, other.multiple 60 }
#set limit { states 1, frags 5000 }
#set loginterface none
#set optimization normal
set block-policy drop
#set block-policy return
#set require-order yes

# Normalization: reassemble fragments and resolve or reduce traffic ambiguities.
#scrub in from any to any
scrub in all

# Queueing: rule-based bandwidth control.
#altq on $ext_if bandwidth 2Mb cbq queue { dflt, developers, marketing }
#altq on $ext_if bandwidth 1.5Mb cbq queue { dflt, tor }
#queue dflt bandwidth 5% cbq(default)
#queue developers bandwidth 80%
#queue marketing  bandwidth 15%
#queue dflt bandwidth 85% cbq(default) priority 3
#queue tor bandwidth 15% priority 1

# Translation: specify how addresses are to be mapped or redirected.
# nat: packets going out through $ext_if with source address $internal_net will
# get translated as coming from the address of $ext_if, a state is created for
# such packets, and incoming packets will be redirected to the inte

Re: sysinstall and bsdlabel/boot

2008-01-15 Thread Nikola Lečić

On Tue, 15 Jan 2008 08:52:26 -0800
"Nerius Landys" <[EMAIL PROTECTED]> wrote:
 
> I have Grub installed at the beginning of /dev/hda1, and Lilo [when I
> had it installed before changing it to `boot0'] passed control to
> Grub just fine when booting ``Ubuntu''.  You can see that the logic
> for ``FreeBSD'' is identical except for the slice it uses.  When
> choosing ``FreeBSD'' from the boot menu, nothing happened.  This led
> me to conclude that /boot/boot as not installed at the beginning
> of /dev/hda2.

I'd try adding loader=/boot/chain.b as well, just for the case...

> Yes, I figured using  `bsdlabel' would install /boot/boot to the
> beginning of the slice.  However, I cannot [easily] run `bsdlabel'
> without being booted into the FreeBSD OS.  I can't run the OS
> without /boot/boot being installed to the beginning of the FreeBSD
> slice.  Chicken and egg problem. Actually, I could probably run
> `bsdlabel' from the live disc, but a newbie [like myself] would
> probably have a hard time figuring this out.

Yes, you can run in from live CD...

> P.S.  I hope I'm doing the quoting thing ``properly'', not
> "incorrectly".

IMHO there is neither FreeBSD- nor Linux-specific mails, and there
shouldn't be such thing. These mails are written in English, so it
seems that neither of us is right: quotes should be “like this”, not
"like this" or ``like this''.

Best regards.
-- 
Nikola Lečić :: Никола Лечић
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: OT: Greylisting and Yahoo Mailinglists

2008-01-15 Thread Chuck Swiger


On Jan 15, 2008, at 1:13 AM, Heiko Wundram (Beenic) wrote:
Additionally, I can't seem to make out a set of "subnets" from which  
the
messages arrive; I've so far identified at least five subnets that  
Yahoo uses
to send messages out (and I'm hesitant to add five subnets to the  
whitelist,
especially when they're not closely related in any way as Yahoos  
subnets seem
to be: 66.94.237, 66.163.168, 66.163.169, 69.147.103 and 209.131.38  
is what

I've seen so far from old messages at a quick glance).

Anybody here have the same problem, and has rules for whitelisting  
Yahoo

mailing lists properly?


You didn't mention which mailserver or greylist software you are  
using, but the postgrey implementation (for use with Postfix) has this  
in postgrey_whitelist_clients:


# greylisting.org: Yahoo Groups servers (no retry)
scd.yahoo.com

...and you could choose to whitelist all of yahoo.com just as easily.

--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: 7.0 RC1 snd_hda headset sound only

2008-01-15 Thread Oleksandr Rudyk

I added

hint.pcm.0.config="gpio0 gpio1 gpio2 gpio3 gpio4"

to /boot/device.hints and sound work with internal speakers.
But now plugin headset doesnt mute speakers, but this is
another problem and I already found how to fix it


2008/1/14, lveax <[EMAIL PROTECTED]>:
>
> On Jan 15, 2008 3:10 AM, Oleksandr Rudyk <[EMAIL PROTECTED]> wrote:
> > Hi all
> >
> > I have installed 7.0 RC1 on my Dell XPS m1330 with Sigmatel HDA sound.
> > snd_hda driver was patched with this
> > http://people.freebsd.org/~ariff/README
> instructions.
> >
> > But still have audio only in headset and no sound on internal speakers.
> >
> > Any suggestions
> >
> try to add
> hint.pcm.0.config="gpio0"
>
> to your /boot/loader.conf
>
> that w
>
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: sysinstall and bsdlabel/boot

2008-01-15 Thread Nerius Landys

>
> > I was trying to install 7.0RC1 (hope it's OK to post this here,
> > because I believe that older versions of FreeBSD have this same
> > limitation) and came across a gotcha.  I had an MBR on disk that I
> > wanted to keep.  It was Lilo and all it did was boot a selected
> > slice, it was configured to function the same as FreeBSD's `boot0'.
> > So, the install of FreeBSD came to the area where it asks what to do
> > with the MBR.  There are three choices: 1) boot manager, 2) simple
> > MBR, and 3) do nothing.  I chose to do nothing because I wanted to
> > keep Lilo in the MBR.  But, by choosing this option, I expected
> > sysinstall to install the /boot/boot code to the beginning of the
> > FreeBSD slice.  Well, no such boot code was installed, apparently,
> > unless I totally missed something.  Basically, after the install,
> > when I delegated Lilo to boot the chosen [FreeBSD] slice, it did not
> > find any boot code on that slice.
>
> Have you configured lilo properly? In the past, I used to use something
> like this:
>
> other=/dev/hda2
>table=/dev/hda
>loader=/boot/chain.b
>label=FreeBSD
>

My complete lilo.conf was this:

=
 boot=/dev/hda
prompt
timeout=50

other=/dev/hda1
table=/dev/hda
label=Ubuntu

other=/dev/hda2
table=/dev/hda
label=FreeBSD
=

I have Grub installed at the beginning of /dev/hda1, and Lilo [when I had it
installed before changing it to `boot0'] passed control to Grub just fine
when booting ``Ubuntu''.  You can see that the logic for ``FreeBSD'' is
identical except for the slice it uses.  When choosing ``FreeBSD'' from the
boot menu, nothing happened.  This led me to conclude that /boot/boot as not
installed at the beginning of /dev/hda2.

>
> (Actually, you can delete "loader=/boot/chain.b" since FreeBSD and
> Linux share the same disk in your case -- and I assume you use lilo to
> dual-boot Linux and FreeBSD.)
>
> > My workaround for this was to choose option 1) boot manager.  I ended
> > up using boot0 (the boot manager) which I feel is superior to Lilo
> > because it is more modular, simpler.  However, some users may not
> > want this.  I didn't find any option in sysinstall to install just
> > the /boot/boot code to the beginning of the FreeBSD slice.  Am I
> > missing something?
>
> You don't have to go through sysinstall. Just for the case, reinstall
> bootstrap code of your FreeBSD slice (say, ad0s1):
>
>  # bsdlabel -B /dev/ad0s1
>
> (the code will come from /boot/boot by default), and then reinstall
> lilo from Linux, with the aforementioned configuration.
>

Yes, I figured using  `bsdlabel' would install /boot/boot to the beginning
of the slice.  However, I cannot [easily] run `bsdlabel' without being
booted into the FreeBSD OS.  I can't run the OS without /boot/boot being
installed to the beginning of the FreeBSD slice.  Chicken and egg problem.
Actually, I could probably run `bsdlabel' from the live disc, but a newbie
[like myself] would probably have a hard time figuring this out.

P.S.  I hope I'm doing the quoting thing ``properly'', not "incorrectly".
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Shrinking a partition

2008-01-15 Thread Christian Walther

Quoting myself:
[...]
> AFAIK UFS (as well as other Unix FS) don't simply start writing at the
[...]
Sorry, I ment FFS of course. But in fact matters are the same on both
filesystems.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Shrinking a partition

2008-01-15 Thread Christian Walther

On 15/01/2008, James Harrison <[EMAIL PROTECTED]> wrote:
> On Tue, 2008-01-15 at 07:45 -0500, Aryeh Friedman wrote:
> > After installing FreeBSD and Vista (463 GB and 30 GB respectivally) I
> > found out I don't have enough free space on my 500 GB drive on the
> > vista partition.   How do I determine how much I can shrink the
> > FreeBSD partition by safely (by just moving the end sector in
> > fdisk(1))?
>
> I'd imagine that you could use the output of df -h to see how much
> you're using on the /usr partition and then shrink appropriately.
>
AFAIK UFS (as well as other Unix FS) don't simply start writing at the
beginning of a filesystem and continue until the end is reached. It's
possible that data is written near the end of a filesystem nearly
instantly after the first mount.
To make sure that you don't loose any data I'd dump the FS to a save
place and restore it afterwards using a LiveCD.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No spam???

2008-01-15 Thread Lowell Gilbert

cpghost <[EMAIL PROTECTED]> writes:

> On Tue, Jan 15, 2008 at 08:48:32AM -0500, John Almberg wrote:
>> I've been doing some more digging since my last post, and have figured out 
>> that the spam is not being blocked by pf, as I suspected (since it wasn't 
>> showing up in my spam folder), but by spamassassin blacklists.
>> 
>> The smtp log file has lots of entries like:
>> 
>> 2008-01-14 09:30:37.074087500 rblsmtpd: 123.20.89.67 pid 72121: 451 
>> http://www.spamhaus.org/query/bl?ip=123.20.89.67
>> 2008-01-14 09:31:05.271514500 rblsmtpd: 58.227.241.97 pid 72122: 451 
>> Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml?58.227.241.97
>> 2008-01-14 09:31:17.404943500 rblsmtpd: 41.196.155.56 pid 72123: 451 
>> http://www.spamhaus.org/query/bl?ip=41.196.155.56
>> 2008-01-14 09:31:18.304682500 rblsmtpd: 123.20.89.67 pid 72124: 451 
>> http://www.spamhaus.org/query/bl?ip=123.20.89.67
>> 
>> So raises the same point that Oliver makes: how trustworthy are these 
>> blacklists?
>
> YMMV, of course!
>
> I'm using spamhaus.org's blacklists for quite some time (many years)
> to block spam in postfix and they've been VERY trustworthy so far.
>
> But I can't say the same for the others, which seem occasionally a
> little bit too eager/aggressive and accumulate way too many false
> positives.

The OP was using spamassassin, which can score a mail as more likely
to be spam based on an RBL. This makes even an untrustworthy RBL
useful while still protecting yourself against its mistakes.

For example, I use spamhaus blacklists in postfix myself, but I let
messages come in from SORBS-blacklisted sites.  Then the messages will
get a point or two (of 4 or 5 needed to be marked as spam) as a result
of the SORBS blacklist.

At least, I think I've got the list names correct; I haven't touched
my configurations for either postfix or spamassassin in quite a while.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No spam???

2008-01-15 Thread cpghost

On Tue, Jan 15, 2008 at 08:48:32AM -0500, John Almberg wrote:
> I've been doing some more digging since my last post, and have figured out 
> that the spam is not being blocked by pf, as I suspected (since it wasn't 
> showing up in my spam folder), but by spamassassin blacklists.
> 
> The smtp log file has lots of entries like:
> 
> 2008-01-14 09:30:37.074087500 rblsmtpd: 123.20.89.67 pid 72121: 451 
> http://www.spamhaus.org/query/bl?ip=123.20.89.67
> 2008-01-14 09:31:05.271514500 rblsmtpd: 58.227.241.97 pid 72122: 451 
> Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml?58.227.241.97
> 2008-01-14 09:31:17.404943500 rblsmtpd: 41.196.155.56 pid 72123: 451 
> http://www.spamhaus.org/query/bl?ip=41.196.155.56
> 2008-01-14 09:31:18.304682500 rblsmtpd: 123.20.89.67 pid 72124: 451 
> http://www.spamhaus.org/query/bl?ip=123.20.89.67
> 
> So raises the same point that Oliver makes: how trustworthy are these 
> blacklists?

YMMV, of course!

I'm using spamhaus.org's blacklists for quite some time (many years)
to block spam in postfix and they've been VERY trustworthy so far.

But I can't say the same for the others, which seem occasionally a
little bit too eager/aggressive and accumulate way too many false
positives.

-cpghost.

-- 
Cordula's Web. http://www.cordula.ws/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Trendnet TEG-PCITXR hw rev 3.0 & re driver

2008-01-15 Thread Shawn Barnhart


NetOpsCenter wrote:
I have 5 of the nic cards TEG PCI TXR running on Various  versions of  
7. *  and 8.* of FreeBSD.
There was somebody on the weekind also having trouble with version 6.* 
Same as your problem.

Try switch to 7.*
Now I see why -- the code looks way overhauled recently (like hours ago) 
and the RELENG_6 version doesn't have any of these fixes.


Anyone know if or when they will be MFC'd?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Shrinking a partition

2008-01-15 Thread James Harrison

On Tue, 2008-01-15 at 07:45 -0500, Aryeh Friedman wrote:
> After installing FreeBSD and Vista (463 GB and 30 GB respectivally) I
> found out I don't have enough free space on my 500 GB drive on the
> vista partition.   How do I determine how much I can shrink the
> FreeBSD partition by safely (by just moving the end sector in
> fdisk(1))?
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"


I'd imagine that you could use the output of df -h to see how much
you're using on the /usr partition and then shrink appropriately.

Best

James

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No spam???

2008-01-15 Thread Nikola Lečić

On Tue, 15 Jan 2008 08:48:32 -0500
John Almberg <[EMAIL PROTECTED]> wrote:
 
> The smtp log file has lots of entries like:
> 
> 2008-01-14 09:30:37.074087500 rblsmtpd: 123.20.89.67 pid 72121: 451  
> http://www.spamhaus.org/query/bl?ip=123.20.89.67
> 2008-01-14 09:31:05.271514500 rblsmtpd: 58.227.241.97 pid 72122: 451  
> Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml? 
> 58.227.241.97
> 2008-01-14 09:31:17.404943500 rblsmtpd: 41.196.155.56 pid 72123: 451  
> http://www.spamhaus.org/query/bl?ip=41.196.155.56
> 2008-01-14 09:31:18.304682500 rblsmtpd: 123.20.89.67 pid 72124: 451  
> http://www.spamhaus.org/query/bl?ip=123.20.89.67
> 
> So raises the same point that Oliver makes: how trustworthy are
> these blacklists?

Search this lists' archives, you'll find that FreeBSD mail servers used
to be blacklisted by Sorbs on several occasions in the past... In
May 2007, after intervention, Sorbs man eventually admitted that they
blacklisted FreeBSD server "by accident":

  http://lists.freebsd.org/pipermail/freebsd-ports/2007-May/041520.html

Very trustworthy. :-)

-- 
Nikola Lečić :: Никола Лечић
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Upgrading Bind9 safely using portupgrade

2008-01-15 Thread Rafael Barrera Oro

Which is the best way to upgrade bind9 using portupgrade without setting
anything on fire?

I have two FreeBSDs which act as master and slave DNS (not installed by me),
should i upgrade both bind's before they can work again?

should i kill bind before upgrading?

I'm sorry if any of my questions has an obvoius answer but i really don't
know the first thing about FreeBSD and really want to get to know it better.

Thanks in advance

Rafael
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No spam???

2008-01-15 Thread John Almberg

I've been doing some more digging since my last post, and have  
figured out that the spam is not being blocked by pf, as I suspected  
(since it wasn't showing up in my spam folder), but by spamassassin  
blacklists.


The smtp log file has lots of entries like:

2008-01-14 09:30:37.074087500 rblsmtpd: 123.20.89.67 pid 72121: 451  
http://www.spamhaus.org/query/bl?ip=123.20.89.67
2008-01-14 09:31:05.271514500 rblsmtpd: 58.227.241.97 pid 72122: 451  
Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml? 
58.227.241.97
2008-01-14 09:31:17.404943500 rblsmtpd: 41.196.155.56 pid 72123: 451  
http://www.spamhaus.org/query/bl?ip=41.196.155.56
2008-01-14 09:31:18.304682500 rblsmtpd: 123.20.89.67 pid 72124: 451  
http://www.spamhaus.org/query/bl?ip=123.20.89.67


So raises the same point that Oliver makes: how trustworthy are these  
blacklists?


-- John

On Jan 14, 2008, at 9:37 PM, Olivier Nicole wrote:


I know this is an odd thing to worry about, but is this normal? Since
the spam doesn't even seem to be reaching spamd, I'm guessing that
the real hero is pf, which must be blocking 99.99% of spam at the
packet level.


I don't know how you configured pf, but since I use the black list
fromhttp://www.sa-blacklist.stearns.org/sa-blacklist/sa- 
blacklist.current.sendmail-access,

I reduced drastically the spam that reaches SpamAssassin.

The key point with such black list is that you must trust the list, as
there is no place for false positive.

Bests,

Olivier
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions- 
[EMAIL PROTECTED]"



Websites for On-line Collectible Dealers

Identry, LLC
John Almberg
(631) 546-5079
[EMAIL PROTECTED]
www.identry.com



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: sysinstall and bsdlabel/boot

2008-01-15 Thread Nikola Lečić

On Mon, 14 Jan 2008 21:57:49 -0800
"Nerius Landys" <[EMAIL PROTECTED]> wrote:
 
> I was trying to install 7.0RC1 (hope it's OK to post this here,
> because I believe that older versions of FreeBSD have this same
> limitation) and came across a gotcha.  I had an MBR on disk that I
> wanted to keep.  It was Lilo and all it did was boot a selected
> slice, it was configured to function the same as FreeBSD's `boot0'.
> So, the install of FreeBSD came to the area where it asks what to do
> with the MBR.  There are three choices: 1) boot manager, 2) simple
> MBR, and 3) do nothing.  I chose to do nothing because I wanted to
> keep Lilo in the MBR.  But, by choosing this option, I expected
> sysinstall to install the /boot/boot code to the beginning of the
> FreeBSD slice.  Well, no such boot code was installed, apparently,
> unless I totally missed something.  Basically, after the install,
> when I delegated Lilo to boot the chosen [FreeBSD] slice, it did not
> find any boot code on that slice.

Have you configured lilo properly? In the past, I used to use something
like this:

other=/dev/hda2
table=/dev/hda
loader=/boot/chain.b
label=FreeBSD

(Actually, you can delete "loader=/boot/chain.b" since FreeBSD and
Linux share the same disk in your case -- and I assume you use lilo to
dual-boot Linux and FreeBSD.)

> My workaround for this was to choose option 1) boot manager.  I ended
> up using boot0 (the boot manager) which I feel is superior to Lilo
> because it is more modular, simpler.  However, some users may not
> want this.  I didn't find any option in sysinstall to install just
> the /boot/boot code to the beginning of the FreeBSD slice.  Am I
> missing something?

You don't have to go through sysinstall. Just for the case, reinstall
bootstrap code of your FreeBSD slice (say, ad0s1):

  # bsdlabel -B /dev/ad0s1

(the code will come from /boot/boot by default), and then reinstall
lilo from Linux, with the aforementioned configuration.

Best regards.
-- 
Nikola Lečić :: Никола Лечић
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Downloading ports tree again

2008-01-15 Thread Manolis Kiagias


Trey Sizemore wrote:

I have used portsnap to download the ports tree.  Recently, I've removed
/usr/ports/* and now need to download the ports tree again.

However, running portnap fetch results in:
"Ports tree hasn't changed since last snapshot
No updates needed"

How can I 'reset' portsnap and get the ports tree again?

Thanks!
  
I would first try a "portsnap extract" and see if this extracts the 
whole ports tree again (from what I understand from the man page, it will)


Otherwise, portsnap saves its state in /var/db/portsnap. You could try 
deleting the files in there.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Downloading ports tree again

2008-01-15 Thread Trey Sizemore

I have used portsnap to download the ports tree.  Recently, I've removed
/usr/ports/* and now need to download the ports tree again.

However, running portnap fetch results in:
"Ports tree hasn't changed since last snapshot
No updates needed"

How can I 'reset' portsnap and get the ports tree again?

Thanks!
-- 
  Trey Sizemore
  [EMAIL PROTECTED]

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Shrinking a partition

2008-01-15 Thread Aryeh Friedman

After installing FreeBSD and Vista (463 GB and 30 GB respectivally) I
found out I don't have enough free space on my 500 GB drive on the
vista partition.   How do I determine how much I can shrink the
FreeBSD partition by safely (by just moving the end sector in
fdisk(1))?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Trendnet TEG-PCITXR hw rev 3.0 & re driver

2008-01-15 Thread Shawn Barnhart


NetOpsCenter wrote:
I have 5 of the nic cards TEG PCI TXR running on Various  versions of  
7. *  and 8.* of FreeBSD.
There was somebody on the weekind also having trouble with version 6.* 
Same as your problem.

Try switch to 7.*
At this point, switching to 7.* isn't really an option and its loads 
easier to just switch to a better NIC.


Out of curiosity, what does the 7.* driver do that the 6.* doesn't and 
why hasn't it been backported?


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

My local time seems to be out of sync

2008-01-15 Thread Peter Boosten


Anyone seen this (the date...)?

/usr/ports/UPDATING:

20080118:   p10 FreeBSD-SA-08:01.pty, FreeBSD-SA-08:02.libc
Fix issues which allow snooping on ptys. [08:01]
Fix an off-by-one error in inet_network(3). [08:02]

Peter
--
http://www.boosten.org
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

FreeBSD 6.1 php5 cli core dumped

2008-01-15 Thread Dominik Zalewski

Dear All,

I'm using FreeBSD 6.1 i386 and I'm having problem with php5-cli .

When I try to run php myscript.php I'm getting: Segmentation fault: 11
(core dumped)

Script runs fine under a web browser. The problem is only when running
php from command line.

Some people suggested that I should change module order in
extensions.ini . I played a bit but it didn't help.

Here is my extensions.ini :

   extension=session.so
   extension=json.so
   extension=php_mapscript.so
   extension=ctype.so
   extension=ldap.so
   extension=curl.so
   extension=ftp.so
   extension=gd.so
   extension=iconv.so
   extension=mbstring.so
   extension=mysql.so
   extension=pcre.so
   extension=simplexml.so
   extension=tokenizer.so
   extension=xml.so
   extension=zlib.so

Installed php5 ports:

php5-5.2.5  PHP Scripting Language
php5-ctype-5.2.5The ctype shared extension for php
php5-curl-5.2.5 The curl shared extension for php
php5-ftp-5.2.5  The ftp shared extension for php
php5-gd-5.2.5   The gd shared extension for php
php5-iconv-5.2.5The iconv shared extension for php
php5-ldap-5.2.5 The ldap shared extension for php
php5-mbstring-5.2.5 The mbstring shared extension for php
php5-mysql-5.2.5The mysql shared extension for php
php5-pcre-5.2.5 The pcre shared extension for php
php5-session-5.2.5  The session shared extension for php
php5-simplexml-5.2.5 The simplexml shared extension for php
php5-tokenizer-5.2.5 The tokenizer shared extension for php
php5-xml-5.2.5  The xml shared extension for php
php5-zlib-5.2.5 The zlib shared extension for php

Regards,

Dominik



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Very bad performances with wpi driver and 7.0-RC1

2008-01-15 Thread Pietro Cerutti

Michael Neumann wrote:
> 
> I had similar problems. *Very* slow and unstable connection using wpi0.
> And WPA never worked. I tried it with NetBSD 4.0 (just out of curiosity)
> and it was working very stable and fast (even WPA)!
> 
> I was running FreeBSD-7.0 RC3 and now -CURRENT. In both cases no
> success, so that I don't use wpi0 at all right now.

I also had problems with WPA using the -CURRENT and -STABLE versions.

Try out the 20071102 perforce snapshot, available from [1]. It works
fine here (including WPA).

[1] http://people.freebsd.org/~benjsc/downloads/wpi/

> 
> Regards,
> 
>   Michael

-- 
Pietro Cerutti

PGP Public Key:
http://gahr.ch/pgp



signature.asc
Description: OpenPGP digital signature

Re: Very bad performances with wpi driver and 7.0-RC1

2008-01-15 Thread Michael Neumann


Nicolas Letellier wrote:

Hello,

I use FreeBSD 7.0-RC1 with my laptop (Asustek A6000 Series).
Performances with wpi are very very bad: in my LAN, I download a file at 
4 k/s. In Internet, I would believe I use a 56 k connection :-)


In this laptop, I have a NIC (chipset re), and I don't have any problem 
with. The connection is very very stable. The problem is juste with wpi 
and my Wireless NIC.


I test OpenBSD-current, and I didn't have any problem with wpi. The 
problem is juste with FreeBSD 7.0-RC1. I have any firewalls, nothing. 
All is perfect with my NIC re.


I test with GENERIC, and I build my own kernel (with wpi support build 
into kernel). The problem is the same.


See more informations here:

numenor# cat /boot/loader.conf nvidia_load="YES"
wpifw_load="YES"
legal.intel_wpi.license_ack=1

numenor# cat /etc/rc.conf defaultrouter="192.168.1.249"
hostname="numenor."
ifconfig_wpi0="inet 192.168.1.4 ssid Nicoelro_Wifi"
numenor# ifconfig wpi0
wpi0: flags=8843 metric 0 mtu 1500
   ether 00:13:02:dd:05:5f
   inet 192.168.1.4 netmask 0xff00 broadcast 192.168.1.255
   media: IEEE 802.11 Wireless Ethernet autoselect (OFDM/36Mbps)
   status: associated
   ssid Nicoelro_Wifi channel 10 (2457 Mhz 11g) bssid 00:0f:b5:b9:9f:cc
   authmode OPEN privacy OFF txpower 50 bmiss 7 scanvalid 60
   protmode CTS


Sometimes, I see this message:
  wpi0: discard frame w/o packet header

numenor# sysctl -a | grep wpi
net.wlan.0.%parent: wpi0
debug.wpi: 0
dev.wpi.0.%desc: Intel(R) PRO/Wireless 3945ABG
dev.wpi.0.%driver: wpi
dev.wpi.0.%location: slot=0 function=0 handle=\_SB_.PCI0.P0P7.WLAN
dev.wpi.0.%pnpinfo: vendor=0x8086 device=0x4222 subvendor=0x8086 
subdevice=0x1001 class=0x028000

dev.wpi.0.%parent: pci3


numenor# dmesg
*Copyright (c) 1992-2008 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
  The Regents of the University of California. All rights reserved.
FreeBSD is a registered trademark of The FreeBSD Foundation.
FreeBSD 7.0-RC1 #1: Mon Jan 14 18:12:58 CET 2008
  [EMAIL PROTECTED]:/usr/obj/usr/src/sys/NUMENOR
Timecounter "i8254" frequency 1193182 Hz quality 0
CPU: Genuine Intel(R) CPU   T2300  @ 1.66GHz (1662.52-MHz 
686-class CPU)

Origin = "GenuineIntel"  Id = 0x6e8  Stepping = 8

Features=0xbfe9fbff 


Features2=0xc189
AMD Features=0x10
Cores per package: 2
real memory  = 1073545216 (1023 MB)
avail memory = 1032773632 (984 MB)
ACPI APIC Table: 
FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs
cpu0 (BSP): APIC ID:  0
cpu1 (AP): APIC ID:  1
ioapic0  irqs 0-23 on motherboard
kbd1 at kbdmux0
hptrr: HPT RocketRAID controller driver v1.1 (Jan 14 2008 18:12:38)
acpi0:  on motherboard
acpi0: [ITHREAD]
acpi0: Power Button (fixed)
acpi0: reservation of 0, a (3) failed
acpi0: reservation of 10, 3ff0 (3) failed
Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000
acpi_timer0: <24-bit timer at 3.579545MHz> port 0x808-0x80b on acpi0
acpi_ec0:  port 0x62,0x66 on acpi0
cpu0:  on acpi0
est0:  on cpu0
est: CPU supports Enhanced Speedstep, but is not recognized.
est: cpu_vendor GenuineIntel, msr 6130a2c06000613
device_attach: est0 attach returned 6
p4tcc0:  on cpu0
cpu1:  on acpi0
ACPI Warning (tbutils-0243): Incorrect checksum in table [SSDT] -  D6, 
should be 9C [20070320]

est1:  on cpu1
p4tcc1:  on cpu1
pcib0:  port 0xcf8-0xcff on acpi0
pci0:  on pcib0
pcib1:  irq 16 at device 1.0 on pci0
pci1:  on pcib1
nvidia0:  mem 
0xfd00-0xfdff,0xc000-0xcfff,0xfc00-0xfcff irq 16 
at device 0.0 on pci1

nvidia0: [GIANT-LOCKED]
nvidia0: [ITHREAD]
pcm0:  mem 
0xfebfc000-0xfebf irq 21 at device 27.0 on pci0

pcm0: [ITHREAD]
pcib2:  irq 16 at device 28.0 on pci0
pci2:  on pcib2
re0:  port 0xc800-0xc8ff mem 
0xfe0ff000-0xfe0f irq 16 at device 0.0 on pci2

re0: Using 2 MSI messages
miibus0:  on re0
rgephy0:  PHY 1 on miibus0
rgephy0:  10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, 1000baseT, 
1000baseT-FDX, auto

re0: Ethernet address: 00:18:f3:5b:f6:31
re0: [FILTER]
re0: [FILTER]
pcib3:  irq 19 at device 28.3 on pci0
pci3:  on pcib3
wpi0:  mem 0xfe1ff000-0xfe1f irq 19 
at device 0.0 on pci3

bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align mem

Re: mail from: field question

2008-01-15 Thread Jim Bow

Ian Smith wrote:

paqi# alias um
tty;id -p;who am i
paqi# um
/dev/ttyp3
login   smithi
uid root
groups  wheel operator network
root ttyp3Jan 11 14:09

Note 'id -p' showing 'login smithi'; see id(1) .. I gather that sendmail
must also use getlogin(2) - which value does not appear in `env` - when
sending mail from an su'd session, as opposed to an original root login,

Yes, I think you've hit the nail on the head there.

 > The actual thing Im trying to do is to email something from a script 
 > that runs as root from devd, but I run into the same problem of the 
 > email arriving from somebody other than root, hence trying this manually 
 > on the command line.

Is 'somebody other than root' consistent, and someone who's logged in,
perhaps before su'ing and then starting the session that invokes devd?

'somebody other than root' is the same user each time. They are not 
logged in at the time the script runs, but do own some active processes 
(most notably screen).

 > There is definitely something that I am overlooking, but what is it? I'm 
 > extremely curious to work-out why I'm seeing such behavior as its 
 > defeating all my expectations so far.

I noticed later that Paul gets a different result .. maybe postfix as
mentioned

Postfix doesn't seem to be affected by the same issue and works as one 
would expect when run from command line and devd. I've also tried using 
nullmailer and that works ok too.

Seems that sendmail's workings were responsible for the confusion. I'm 
going to be replacing it with nullmailer on all machines.

Thanks for all your help,

Jim Bow
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Very bad performances with wpi driver and 7.0-RC1

2008-01-15 Thread Nicolas Letellier


Hello,

I use FreeBSD 7.0-RC1 with my laptop (Asustek A6000 Series).
Performances with wpi are very very bad: in my LAN, I download a file at 
4 k/s. In Internet, I would believe I use a 56 k connection :-)


In this laptop, I have a NIC (chipset re), and I don't have any problem 
with. The connection is very very stable. The problem is juste with wpi 
and my Wireless NIC.


I test OpenBSD-current, and I didn't have any problem with wpi. The 
problem is juste with FreeBSD 7.0-RC1. I have any firewalls, nothing. 
All is perfect with my NIC re.


I test with GENERIC, and I build my own kernel (with wpi support build 
into kernel). The problem is the same.


See more informations here:

numenor# cat /boot/loader.conf nvidia_load="YES"
wpifw_load="YES"
legal.intel_wpi.license_ack=1

numenor# cat /etc/rc.conf defaultrouter="192.168.1.249"
hostname="numenor."
ifconfig_wpi0="inet 192.168.1.4 ssid Nicoelro_Wifi"
numenor# ifconfig wpi0
wpi0: flags=8843 metric 0 mtu 1500
   ether 00:13:02:dd:05:5f
   inet 192.168.1.4 netmask 0xff00 broadcast 192.168.1.255
   media: IEEE 802.11 Wireless Ethernet autoselect (OFDM/36Mbps)
   status: associated
   ssid Nicoelro_Wifi channel 10 (2457 Mhz 11g) bssid 00:0f:b5:b9:9f:cc
   authmode OPEN privacy OFF txpower 50 bmiss 7 scanvalid 60
   protmode CTS


Sometimes, I see this message:
  wpi0: discard frame w/o packet header

numenor# sysctl -a | grep wpi
net.wlan.0.%parent: wpi0
debug.wpi: 0
dev.wpi.0.%desc: Intel(R) PRO/Wireless 3945ABG
dev.wpi.0.%driver: wpi
dev.wpi.0.%location: slot=0 function=0 handle=\_SB_.PCI0.P0P7.WLAN
dev.wpi.0.%pnpinfo: vendor=0x8086 device=0x4222 subvendor=0x8086 
subdevice=0x1001 class=0x028000

dev.wpi.0.%parent: pci3


numenor# dmesg
*Copyright (c) 1992-2008 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
  The Regents of the University of California. All rights reserved.
FreeBSD is a registered trademark of The FreeBSD Foundation.
FreeBSD 7.0-RC1 #1: Mon Jan 14 18:12:58 CET 2008
  [EMAIL PROTECTED]:/usr/obj/usr/src/sys/NUMENOR
Timecounter "i8254" frequency 1193182 Hz quality 0
CPU: Genuine Intel(R) CPU   T2300  @ 1.66GHz (1662.52-MHz 
686-class CPU)

Origin = "GenuineIntel"  Id = 0x6e8  Stepping = 8

Features=0xbfe9fbff 


Features2=0xc189
AMD Features=0x10
Cores per package: 2
real memory  = 1073545216 (1023 MB)
avail memory = 1032773632 (984 MB)
ACPI APIC Table: 
FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs
cpu0 (BSP): APIC ID:  0
cpu1 (AP): APIC ID:  1
ioapic0  irqs 0-23 on motherboard
kbd1 at kbdmux0
hptrr: HPT RocketRAID controller driver v1.1 (Jan 14 2008 18:12:38)
acpi0:  on motherboard
acpi0: [ITHREAD]
acpi0: Power Button (fixed)
acpi0: reservation of 0, a (3) failed
acpi0: reservation of 10, 3ff0 (3) failed
Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000
acpi_timer0: <24-bit timer at 3.579545MHz> port 0x808-0x80b on acpi0
acpi_ec0:  port 0x62,0x66 on acpi0
cpu0:  on acpi0
est0:  on cpu0
est: CPU supports Enhanced Speedstep, but is not recognized.
est: cpu_vendor GenuineIntel, msr 6130a2c06000613
device_attach: est0 attach returned 6
p4tcc0:  on cpu0
cpu1:  on acpi0
ACPI Warning (tbutils-0243): Incorrect checksum in table [SSDT] -  D6, 
should be 9C [20070320]

est1:  on cpu1
p4tcc1:  on cpu1
pcib0:  port 0xcf8-0xcff on acpi0
pci0:  on pcib0
pcib1:  irq 16 at device 1.0 on pci0
pci1:  on pcib1
nvidia0:  mem 
0xfd00-0xfdff,0xc000-0xcfff,0xfc00-0xfcff irq 16 
at device 0.0 on pci1

nvidia0: [GIANT-LOCKED]
nvidia0: [ITHREAD]
pcm0:  mem 
0xfebfc000-0xfebf irq 21 at device 27.0 on pci0

pcm0: [ITHREAD]
pcib2:  irq 16 at device 28.0 on pci0
pci2:  on pcib2
re0:  port 0xc800-0xc8ff mem 
0xfe0ff000-0xfe0f irq 16 at device 0.0 on pci2

re0: Using 2 MSI messages
miibus0:  on re0
rgephy0:  PHY 1 on miibus0
rgephy0:  10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, 1000baseT, 
1000baseT-FDX, auto

re0: Ethernet address: 00:18:f3:5b:f6:31
re0: [FILTER]
re0: [FILTER]
pcib3:  irq 19 at device 28.3 on pci0
pci3:  on pcib3
wpi0:  mem 0xfe1ff000-0xfe1f irq 19 
at device 0.0 on pci3

bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_alloc failed to align memory properly.
bus_dmamem_a

OT: Greylisting and Yahoo Mailinglists

2008-01-15 Thread Heiko Wundram (Beenic)

Hey all!

A colleague of mine tracks a Yahoo mailing list, but always gets mails from 
them with a large delay (or not at all) due to our mailserver doing 
greylisting.

This comes from the fact that the triplet that represents a message sent from 
a Yahoo mailing list changes with every message (because the envelope-sender 
_always_ contains a unique ID to do bounce detection).

Additionally, I can't seem to make out a set of "subnets" from which the 
messages arrive; I've so far identified at least five subnets that Yahoo uses 
to send messages out (and I'm hesitant to add five subnets to the whitelist, 
especially when they're not closely related in any way as Yahoos subnets seem 
to be: 66.94.237, 66.163.168, 66.163.169, 69.147.103 and 209.131.38 is what 
I've seen so far from old messages at a quick glance).

Anybody here have the same problem, and has rules for whitelisting Yahoo 
mailing lists properly?

Thanks!

-- 
Heiko Wundram
Product & Application Development
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: newest security patch and custom kernel

2008-01-15 Thread Norman Maurer

The -p10 includes no kernel updates so restarting is not neccesarry.

bye
Norman

Am Dienstag, den 15.01.2008, 08:52 +0100 schrieb zbigniew szalbot:
> Hello again,
> 
> Norman Maurer pisze: 
> > It should be enough to just building and installing the kernel. The
> > freebsd-update should have patched the kernel src files anyway.
> >   
> Thank you for very helpful advice. One last question, is it necessary
> to restart the machine? Or can I keep it online after building and
> installing the kernel? I don't care about uname -a details not being
> updated unless the machine needs restarting to include the updates.
> 
> Thank you!
> 
> Zbigniew Szalbot
> > bye
> > Norman
> > 
> > 
> > Am Dienstag, den 15.01.2008, 07:24 +0100 schrieb zbigniew szalbot:
> > > Hello,
> > > 
> > > 
> > > Norman Maurer pisze:
> > > > Hi,
> > > >
> > > > the /usr/src/sys* stuff should be patched anyway. But you need to build
> > > > your kernel again and install it to reflect the changes. Even if i think
> > > > it only update the -p10 label in the case of -p10 patch set.
> > > >   
> > > OK. So this page applies to me now?
> > > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-building.html
> > > 
> > >1.
> > > 
> > >   Change to the /usr/src directory:
> > > 
> > >   # cd /usr/src
> > >   
> > > 
> > >2.
> > > 
> > >   Compile the kernel:
> > > 
> > >   # make buildkernel KERNCONF=/MYKERNEL/
> > >   
> > > 
> > >3.
> > > 
> > >   Install the new kernel:
> > > 
> > >   # make installkernel KERNCONF=/MYKERNEL/
> > >   
> > > 
> > > *Note:* It is required to have full FreeBSD source tree to build the
> > > kernel.
> > > 
> > > 
> > > I am interested if I need to download latest FBSD sources then? I have 
> > > not touched them since I built a custom kernel.
> > > 
> > > Thank you!
> > > 
> > > Zbigniew Szalbot
> > > 
> > > > cheers
> > > > Norman
> > > >
> > > >
> > > > Am Dienstag, den 15.01.2008, 07:03 +0100 schrieb zbigniew szalbot:
> > > > > Hello,
> > > > > 
> > > > > Using freebsd-update I applied the latest security patches which were 
> > > > > announced yesterday. However, I then notice this message:
> > > > > 
> > > > > The following files will be updated as part of updating to 
> > > > > 6.2-RELEASE-p10:
> > > > > /boot/GENERIC/kernel
> > > > > 
> > > > > My question is whether my update missed the point because I have a 
> > > > > custom kernel? If so, do I need to apply it manually as described in 
> > > > > the 
> > > > > security advisory? If I still want to go down the binary road, how 
> > > > > can I 
> > > > > make sure my custom kernel gets patched, too?
> > > > > 
> > > > > Thank you very much!
> > > > > 
> > > > > Zbigniew Szalbot
> > > > > ___
> > > > > freebsd-questions@freebsd.org mailing list
> > > > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > > > > To unsubscribe, send any mail to "[EMAIL PROTECTED]"
> > > >
> > > >   
> > 
> >   

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

48 matches

Mail list logo