Re: Jails and IP Aliasing
Jason Morgan wrote: On 2008.07.07 12:16:44, David Allen wrote: # grep fxp0 /etc/rc.conf ifconfig_fxp0=inet 10.0.1.2 netmask 0xff00 ifconfig_fxp0_alias0=10.0.1.3 netmask 0x ifconfig_fxp0_alias1=10.0.1.4 netmask 0x ifconfig_fxp0_alias2=10.0.1.5 netmask 0x My understanding from the handbook is that the mask should be set to all ones if the alias is for an address that's part of the same network. For a different segment, it's the first alias that should be set to the real netmask, with any additional aliases using a netmask of all ones. Granted, the broadcast addresses looks odd. If I my programming skills were better, I'd just read through the code and understand what's really happening, but for now, I'm just taking the FreeBSD folks at their word at following instructions. That's a roundabout way of saying I think your aliases are set up incorrectly. ;-) That it quite possible (I do notice the newer documentation calling for netmask 0x). But I have never had any trouble over the last three years so, you know how it is, if it ain't (too) broke ... Using a /32 netmask for aliases in the same network as the primary address used to be mandatory until sometime during the 6.x RELEASE series. It is still recommended in the various documentation, and it does make it clear to the administrator which is the primary address when looking at ifconfig output, when that distinction is important[*]. Using the 'natural' netmask for the network the aliases are part of has worked for several years: this seems to be what most new users expect and it's familiar for users of other operating systems. As far as I know, there is no technical or performance reason to prefer one style over the other -- just a matter of administrator preference. Cheers, Matthew [*] ie. which is the source address used for connection /from/ the server. If all the aliases are used for jails, or all your software is configured to bind to one or other of the addresses this doesn't come into play. -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: Procmail error
On Mon, 7 Jul 2008 22:05:04 -0700 Rem P Roberti [EMAIL PROTECTED] wrote: Probably the wrong forum for this, but since it's on a freebsd system: I have mutt installed on two other freebsd computers. I fetch pop mail via getmail, and procmail puts things where they belong. I just installed freebsd 7.0 on another computer with what I thought were the exact same settings for all of the mail programs involved. When I try to retrieve mail I get this error message: Delivery error (command procmail 3695 error (127, exec of command procmail failed (refuse to invoke external commands as root or GID 0 by default))) I'm a relative newbie here and would appreciate it if someone could give me a heads up on this. Rem Are you running getmail as root? -- Anders Trobäck http://www.troback.com/ Windows: Where do you want to go today? Linux: Where do you want to go tomorrow? FreeBSD: Are you guys coming, or what? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Procmail error
Probably the wrong forum for this, but since it's on a freebsd system: I have mutt installed on two other freebsd computers. I fetch pop mail via getmail, and procmail puts things where they belong. I just installed freebsd 7.0 on another computer with what I thought were the exact same settings for all of the mail programs involved. When I try to retrieve mail I get this error message: Delivery error (command procmail 3695 error (127, exec of command procmail failed (refuse to invoke external commands as root or GID 0 by default))) I'm a relative newbie here and would appreciate it if someone could give me a heads up on this. Rem Are you running getmail as root? Boy, I hope not. And I have this entry in my aliases file: root: rem so I'm not collecting mail as root. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: tape device not configured
Anders Trobäck wrote: On Mon, 07 Jul 2008 23:21:15 +0200 Papp Tamas [EMAIL PROTECTED] wrote: hi All, I have a new Exabyte VXA-320, I show it in dmesg as sa0. When I try to access it for example by mt, it says, Device not configured, and of cource is not working. sa0 at ahd0 bus 0 target 2 lun 0 sa0: IBM VXA-3 320C Removable Sequential Access SCSI-3 device sa0: 160.000MB/s transfers (80.000MHz DT, offset 126, 16bit) What do I miss? Thank you very much, tamas What is the exact command you are using? mt -f /dev/sa0 Thanks, tamas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: tape device not configured
Papp Tamas wrote: mt -f /dev/sa0 I mean mt -f /dev/sa0 status But actually I recogniozed, it was a cleaning tape. I'm sorry:) Thank you, tamas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: No serial console input in loader
On Jun 28, 2008, at 13:15 , Anselm Strauss wrote: Hi, I have a small router that has no video output, it only supports a serial console. I configured the serial console in /boot/ boot.config, /boot/loader.conf and /etc/ttys. It's working in the BIOS, on the boot prompt before the loader starts, and when logging in on the getty. The only place where it's not working correctly is at the loader prompt. I can see the loader menu and the logo, but I can't choose the boot entry or interrupt the timeout. I can't make any input at all. What could this be? Cheers, Anselm Don't know what this was, but now it works. I use Grub to directly load /boot/loader as kernel. I set the serial console in the BIOS to 115200 Baud. In Grub's menu.lst I then use: serial --unit=0 --speed=115200 terminal serial and in /boot/loader.conf: console=comconsole comconsole_speed=115200 Seems like this is all that is needed. Anselm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: bsdlabel has no effect
On Jun 28, 2008, at 13:25 , Anselm Strauss wrote: Hi, originally I had the following labels on my ad0 disk (no partitions, directly labeled /dev/ad0): # /dev/ad0: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 1048576 04.2BSD 1024 8192 46248 c: 1048576 0unused0 0 # raw part, don't edit Since this was written from a file image the my compact flash card, and the card has now 8GB instead of 512MB, I wanted to grow the labels after having booted the system, and that worked. So now it is: # /dev/ad0: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 1566230404.2BSD 1024 8192 46248 c: 156623040unused0 0 # raw part, don't edit But unfortunately, I also grew label 'a', although I did not grow the filesystem. What I actually wanted was to stay 'a' the size it is and add new labels. So I tried to shrink 'a' again, to finally have something like: # /dev/ad0: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 104857604.2BSD 1024 8192 46248 c: 156623040unused0 0 # raw part, don't edit before adding new labels. But somehow bsdlabel has no effect when shrinking 'a'. No error or verbose message, the labels are just the same before running it, whether I use the edit mode or restore mode. Am I not supposed to shrink a label like that? Cheers, Anselm Okay, this was of course since I tried to resize a partition that is mounted. I guess this will never work, even when the filesystem actually already has the size the partition should be shrunk to. I think there is no other way of resizing the root partition/filesystem without booting a different system than the one on this partition. Anselm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
how to mount USB drive on system startup
Dear all, I am trying to make sure my USB hard drive will be available when system has finished booting. So: $ grep usbd /etc/rc.conf usbd_enable=YES and $ grep backup /etc/fstab /dev/ad3s1d /backup ufs rw 2 2 But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it cannot mount /backup. mount: /backup: No such file or directory Mounting /etc/fstab filesystem failed. Startup aborted. I am sure there is something very simple that I need to do, so I'll appreciate your suggestions! Thanks! -- Zbigniew Szalbot www.LCWords.com smime.p7s Description: S/MIME Cryptographic Signature
Re: Capturing ATA devices serial numbers
On Monday 07 July 2008 19:24:36 Wojciech Puchar wrote: atacontrol cap device _Really_nice_ ... Will add it to my repertoire :) thanks for the hint Wojciech ! -- Blessings Gonzalo Nemmi ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to mount USB drive on system startup
On Tue, Jul 8, 2008 at 10:45 AM, Zbigniew Szalbot [EMAIL PROTECTED] wrote: Dear all, I am trying to make sure my USB hard drive will be available when system has finished booting. So: $ grep usbd /etc/rc.conf usbd_enable=YES and $ grep backup /etc/fstab /dev/ad3s1d /backup ufs rw 2 2 But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it cannot mount /backup. mount: /backup: No such file or directory Mounting /etc/fstab filesystem failed. Startup aborted. I am sure there is something very simple that I need to do, so I'll appreciate your suggestions! Thanks! mkdir /backup -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Oh My God! They killed init! You Bastards! --from a /. post ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
subversion build problem
=== Building package for apr-gdbm-db42-1.3.2 Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1. Registering conflicts: apr-*. Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz' === Returning to build of subversion-1.5.0_1 Error: shared library apr-1.2 does not exist *** Error code 1 Any ideas/thoughts appreciated. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to mount USB drive on system startup
Hello, Odhiambo Washington: On Tue, Jul 8, 2008 at 10:45 AM, Zbigniew Szalbot [EMAIL PROTECTED] wrote: Dear all, I am trying to make sure my USB hard drive will be available when system has finished booting. So: $ grep usbd /etc/rc.conf usbd_enable=YES and $ grep backup /etc/fstab /dev/ad3s1d /backup ufs rw 2 2 But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it cannot mount /backup. mount: /backup: No such file or directory Mounting /etc/fstab filesystem failed. Startup aborted. I am sure there is something very simple that I need to do, so I'll appreciate your suggestions! Thanks! mkdir /backup [shaking my head in disbelief...] it should have been so easy! Shame on me :) Many thanks! -- Zbigniew Szalbot www.LCWords.com smime.p7s Description: S/MIME Cryptographic Signature
Re: automount is not recognizing option longname
On Monday 07 July 2008 17:38:55 Stevan Tiefert wrote: Hello list, I have setup amd and it works fine. Only one special situation is making me crazy. When I want to use a USB-Stick without data on it, amd is mounting it with the 8.3-limitation. I've added the option longname in my map-file but it still ignores this option... Does somebody knows about this behavior? My amd.map: usb type:=pcfs;opts:=utimout=1,longname;dev:=/dev/da0s1 I'm taking a guess here, but if it has 'no data', could it be that it's formatted FAT, as in FAT-8, not 16 or 32, cause then longname support is rejected by the filesystem itself. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
Hi, I guess the problem is with your netmask and respectivly the broadcast adrresses for the jails. It should be: inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255 Regards, Ivailo Tanusheff Deputy Head of IT Department ProCredit Bank (Bulgaria) AD Jason Morgan [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 07.07.2008 21:01 To FreeBSD Questions freebsd-questions@freebsd.org cc Subject Re: Jails and IP Aliasing Hello, On 2008.07.07 09:51:33, David Allen wrote: Unless I'm losing my mind, I'm encountering what seems to yet another gotcha with jails. The following has been dumbed down for clarity and brevity. - # hostname jailhost.example.org # host jailhost jailhost.example.org has address 10.0.1.2 # ifconfig fxp0 fxp0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 options=bRXCSUM,TXCSUM,VLAN_MTU ether 00:07:e9:c8:2e:32 inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.3 netmask 0x broadcast 10.0.1.3 inet 10.0.1.4 netmask 0x broadcast 10.0.1.4 media: Ethernet autoselect (100baseTX full-duplex) status: active This is the output for my jail interface. Notice that your jail aliases are broadcasting on the jail's IP. I don't know if this is an issue or not (my jails run on i386 FBSD 6.3), but it's something to look at. How are you setting the aliases? sk0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 options=bRXCSUM,TXCSUM,VLAN_MTU inet 10.0.0.1 netmask 0xff00 broadcast 10.0.0.255 inet 10.0.0.101 netmask 0xff00 broadcast 10.0.0.255 inet 10.0.0.201 netmask 0xff00 broadcast 10.0.0.255 ether xx:xx:xx:xx:xx:xx media: Ethernet autoselect (1000baseTX full-duplex,flag0,flag1) status: active Cheers, ~Jason ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to disable that an user execute any command
Hi all I use FreeBSD 6.2, and GELI I want to make an user for the only task of remove/insert the usb copy disk. I have made a new user (operator group), and a shell task that ask for the GELI password and fsck and mount the USB disk. This work fine under root. but I think that if he/she want to make CTRL-C to the shell task, he can stop the task and then enter in the system and look whatever he wants (for example, how the things are done). How can I stop him from entering this CTRL-C (and others than could be) ? I want this because there is intelectual propierty behind this. Thanks in advance Juan Coruña Desarrollo de Software Atlantico ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
On Monday 07 July 2008 18:51:33 David Allen wrote: Granted, everything is really happening over the loopback address, but a connection originating from the jailhost to a jail should appear to be using the jailhost's IP address, or so I'd like to think. If it doesn't, then the scenario is awkward at best when trying to understand or debug issues. To debug this, you need to 'add jail support to sockstat'. This sounds hard, and it is, but you can fake it, since sockstat gives you the PID. With a little creative scripting, you can call `ps -o state' for each PID in the list, look for the capital 'J' and if it is, add the 'J' to the line. The thought occurred to me, however, that I could add a new network card and reserve that for the IP aliases needed by the jails. But I'm not sure whether that will work in telling me who's who, or whether I'll discover another gotcha. ;-) It will add more gotcha's, unless you put each network card in a different network. With the IP's given here, you tell the host that 10.0.1.0/24 is on fxp0, so it will never go to fxp1 for 10.0.1.4. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
On Tuesday 08 July 2008 11:13:04 Ivailo Tanusheff wrote: Hi, I guess the problem is with your netmask and respectivly the broadcast adrresses for the jails. It should be: inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255 You guess wrong. Aliases SHOULD (as in IETF RFC should) have 255.255.255.255 netmask. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: automount is not recognizing option longname
Am Dienstag, 8. Juli 2008 10:57:39 schrieb Mel: On Monday 07 July 2008 17:38:55 Stevan Tiefert wrote: Hello list, I have setup amd and it works fine. Only one special situation is making me crazy. When I want to use a USB-Stick without data on it, amd is mounting it with the 8.3-limitation. I've added the option longname in my map-file but it still ignores this option... Does somebody knows about this behavior? My amd.map: usb type:=pcfs;opts:=utimout=1,longname;dev:=/dev/da0s1 I'm taking a guess here, but if it has 'no data', could it be that it's formatted FAT, as in FAT-8, not 16 or 32, cause then longname support is rejected by the filesystem itself. No it is not formatted as FAT16. When I use manually: # mount -t msdosfs -o longnames /dev/da0s1 /mnt and then copy files on the empty USB-Stick via: # cp * /mnt then the longnames are recognized... This problem is only appearing when I use amd! But it was a good guess :-) Maybe other ideas? Stevan Tiefert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
No, I am right. Try it yourself and you will see that solves the issue. I have several jails on different machines and this way the system works without any error or problem. Try it and see it :) Regards, Ivailo Tanusheff Mel [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 08.07.2008 12:38 To freebsd-questions@freebsd.org cc Subject Re: Jails and IP Aliasing On Tuesday 08 July 2008 11:13:04 Ivailo Tanusheff wrote: Hi, I guess the problem is with your netmask and respectivly the broadcast adrresses for the jails. It should be: inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255 inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255 You guess wrong. Aliases SHOULD (as in IETF RFC should) have 255.255.255.255 netmask. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to disable that an user execute any command
DSA - JCR wrote: I want to make an user for the only task of remove/insert the usb copy disk. I have made a new user (operator group), and a shell task that ask for the GELI password and fsck and mount the USB disk. This work fine under root. but I think that if he/she want to make CTRL-C to the shell task, he can stop the task and then enter in the system and look whatever he wants (for example, how the things are done). How can I stop him from entering this CTRL-C (and others than could be) ? If I understand your question correctly, you want to prevent an interactive user running a shell script from breaking out of it via CTRL-C and entering the shell directly. In that case, you can achieve this functionality in your shell script with the use of trap command. E.g. this line will print Ignoring CTRL-C on CTRL-C keypress which generates an INT (number 2) signal: trap echo 'Ignoring INT signal' 2 This page http://www.shelldorado.com/goodcoding/tempfiles.html describes the shell signals quite well, you may want to give it a read. Thanks! -- Dez Accid ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: subversion build problem
On Tue, Jul 08, 2008 at 06:26:56PM +1000, Warren Liddell wrote: === Building package for apr-gdbm-db42-1.3.2 Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1. Registering conflicts: apr-*. Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz' === Returning to build of subversion-1.5.0_1 Error: shared library apr-1.2 does not exist *** Error code 1 Any ideas/thoughts appreciated. There was an apr version bump. The subversion port was updated earlier to day in order to chase this change. Update your ports tree and you should find that it will then compile without problems. frase pgpM9KdxJQlDC.pgp Description: PGP signature
Re: subversion build problem
On Tue, 8 Jul 2008 20:45:49 +1000, Fraser Tweedale [EMAIL PROTECTED] wrote: On Tue, Jul 08, 2008 at 06:26:56PM +1000, Warren Liddell wrote: === Building package for apr-gdbm-db42-1.3.2 Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1. Registering conflicts: apr-*. Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz' === Returning to build of subversion-1.5.0_1 Error: shared library apr-1.2 does not exist *** Error code 1 Any ideas/thoughts appreciated. There was an apr version bump. The subversion port was updated earlier to day in order to chase this change. Update your ports tree and you should find that it will then compile without problems. ACK... I was bitten by the apr-1.2 / apr-1.3 version bump, and I can verify that the new port builds fine here too. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: difference between loading kernel module during boot and after boot manually?
On Sun, Jun 22, 2008 at 11:29 PM, Vincent Barus [EMAIL PROTECTED] wrote: Hi everybody, is there a difference between loading a kernel module during the boot process and loading a module manually after the login? I'm asking this on a general basis and because of pr: kern/123563. I don't know if it's a problem with if_re because I can't find someone out on the net having the same problem. The driver if_re works after laoding it manually after the login and I have no problems with it after this manual kldload if_re. Can you guys give me a hint how to get further with the troubleshooting because I can't find any difference with pciconf or the boot -v messages. Pyun did a nice job with if_re and shame on me for making his driver responsible at first but that's the only driver I can reproduce this problem with so I don't know if there's a hardware / driver / base issue. The facts about my configuration etc. is in http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/123563 If you want more information please write me. Thanks and kind regards, Vincent Hi all, does anyone have an idea what's the difference or what _could_ be the difference on loading a kernel module during boot or manually? Regards, Vincent ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
On Mon, Jul 7, 2008 at 2:01 PM, George Hartzell [EMAIL PROTECTED] wrote: Did you take the necessary steps to restrict the IP addresses on which sendmail on the host and the jail listen? The jail man page only says: I don't think anyone would get too far with jails in general if the jail host wasn't properly configured beforehand. To answer your question, sendmail on the jail host is listening to the loopback address only. And to the extent it's not redundant or meaningless, within each jail, sendmail is configured to listen to the jail's IP address only. Regrettably, the problem isn't specific to sendmail or any other service, as an ssh connection would exhibit identical behaviour. Put simply, all connections from the jail host to any jail are reported as using that jail's IP address only. Doesn't matter if your viewing the state from the perspective of the jail host, or from within the jail itself. Both ends of the connection have the same IP address. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to disable that an user execute any command
On Tuesday 08 July 2008, DSA - JCR wrote: but I think that if he/she want to make CTRL-C to the shell task, he can stop the task and then enter in the system and look whatever he wants (for example, how the things are done). Use sudo to allow non-root users to run that script as root. If they hit ^C, they get dropped right back to their own account. I want this because there is intelectual propierty behind this. Don't put trade secrets in shell scripts. -- Kirk Strauser signature.asc Description: This is a digitally signed message part.
Re: difference between loading kernel module during boot and after boot manually?
I don't know what the difference is, but there is one. I have a system that automatically reboots if nvidia is added to /boot/loader.conf on FreeBSD7. If the module is loaded from the loader prompt the system boots and xorg works. I now use solaris on that system as FreeBSD had all sorts of issues, but I recall adding a kldload statement to a startup script. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: bsdlabel has no effect
On Tue, Jul 08, 2008 at 09:19:09AM +0200, Anselm Strauss wrote: On Jun 28, 2008, at 13:25 , Anselm Strauss wrote: Hi, originally I had the following labels on my ad0 disk (no partitions, directly labeled /dev/ad0): # /dev/ad0: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 1048576 04.2BSD 1024 8192 46248 c: 1048576 0unused0 0 # raw part, don't edit Since this was written from a file image the my compact flash card, and the card has now 8GB instead of 512MB, I wanted to grow the labels after having booted the system, and that worked. So now it is: # /dev/ad0: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 1566230404.2BSD 1024 8192 46248 c: 156623040unused0 0 # raw part, don't edit But unfortunately, I also grew label 'a', although I did not grow the filesystem. What I actually wanted was to stay 'a' the size it is and add new labels. So I tried to shrink 'a' again, to finally have something like: # /dev/ad0: 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 104857604.2BSD 1024 8192 46248 c: 156623040unused0 0 # raw part, don't edit before adding new labels. But somehow bsdlabel has no effect when shrinking 'a'. No error or verbose message, the labels are just the same before running it, whether I use the edit mode or restore mode. Am I not supposed to shrink a label like that? Cheers, Anselm Okay, this was of course since I tried to resize a partition that is mounted. I guess this will never work, even when the filesystem actually already has the size the partition should be shrunk to. I think there is no other way of resizing the root partition/filesystem without booting a different system than the one on this partition. Yes, you have to unmount the partition/filesystem before you can modify its configuration. Just boot the install CD and bring up the fixit. Then you can work on it just fine. Just remember that it may have different device addresses (not necessarily, but might) and that you will need to make mount points if you need to mount anything to muck with files in a partition. Also, note that on a fixit boot, those mount points (and root) are in a memory file system and will be gone after the next boot. I hope you have a good backup of your 'a' partition because it may now not be happy. jerry Anselm ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to mount USB drive on system startup
On Tue, Jul 08, 2008 at 09:45:55AM +0200, Zbigniew Szalbot wrote: Dear all, I am trying to make sure my USB hard drive will be available when system has finished booting. So: $ grep usbd /etc/rc.conf usbd_enable=YES and $ grep backup /etc/fstab /dev/ad3s1d /backup ufs rw 2 2 But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it cannot mount /backup. mount: /backup: No such file or directory Mounting /etc/fstab filesystem failed. Startup aborted. I am sure there is something very simple that I need to do, so I'll appreciate your suggestions! Thanks! Well, the first thing that comes to mind is, did you make the /backup mountpoint eg 'mkdir /backup' at some time? Is it really there? Next question is, did you build a filesystem on the USB? eg [fdisk] bsdlabel and newfs Check it by running fdisk and bsdlabel on it just to read what it thinks is there, as in: fdisk ad3 bsdlabel ad3s1 I make all my USB stuff as 'noauto' in /etc/fstab and then manually mount them later when needed and I have never had a problem - with either ufs or msdos filesystem types. I don't think you have to do it that way, but check it out and see if it makes any difference. eg change 'rw' to 'rw,noauto' in fstab, boot and then try to do the mount. If it makes a difference, then maybe there is something to file a PR on, but it would take further investigation to nail it down. jerry -- Zbigniew Szalbot www.LCWords.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Procmail error
On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote: Probably the wrong forum for this, but since it's on a freebsd system: I have mutt installed on two other freebsd computers. I fetch pop mail via getmail, and procmail puts things where they belong. I just installed freebsd 7.0 on another computer with what I thought were the exact same settings for all of the mail programs involved. When I try to retrieve mail I get this error message: Delivery error (command procmail 3695 error (127, exec of command procmail failed (refuse to invoke external commands as root or GID 0 by default))) I'm a relative newbie here and would appreciate it if someone could give me a heads up on this. Rem Are you running getmail as root? Boy, I hope not. And I have this entry in my aliases file: root: rem so I'm not collecting mail as root. What does your getmailrc look like? I've got this section in there. You should have similar: [destination] type = MDA_external path = /usr/local/bin/procmail user = frank -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Procmail error
On 2008.07.08 16:46:18 +, Frank Shute wrote: On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote: Probably the wrong forum for this, but since it's on a freebsd system: I have mutt installed on two other freebsd computers. I fetch pop mail via getmail, and procmail puts things where they belong. I just installed freebsd 7.0 on another computer with what I thought were the exact same settings for all of the mail programs involved. When I try to retrieve mail I get this error message: Delivery error (command procmail 3695 error (127, exec of command procmail failed (refuse to invoke external commands as root or GID 0 by default))) I'm a relative newbie here and would appreciate it if someone could give me a heads up on this. Rem Are you running getmail as root? Boy, I hope not. And I have this entry in my aliases file: root: rem so I'm not collecting mail as root. What does your getmailrc look like? I've got this section in there. You should have similar: [destination] type = MDA_external path = /usr/local/bin/procmail user = frank Here is the entry I use: [destination] type = MDA_external path = /usr/local/bin/procmail unixfrom = True This getmailrc file is the same one that I use on two other computers with not problems. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
On Tue, Jul 8, 2008 at 2:24 AM, Mel [EMAIL PROTECTED] wrote: On Monday 07 July 2008 18:51:33 David Allen wrote: Granted, everything is really happening over the loopback address, but a connection originating from the jailhost to a jail should appear to be using the jailhost's IP address, or so I'd like to think. If it doesn't, then the scenario is awkward at best when trying to understand or debug issues. To debug this, you need to 'add jail support to sockstat'. This sounds hard, and it is, but you can fake it, since sockstat gives you the PID. With a little creative scripting, you can call `ps -o state' for each PID in the list, look for the capital 'J' and if it is, add the 'J' to the line. Been there and done that. When I first stated working with jails, I discovered that most standard utilities didn't offer any support for jails, and chaining commands got to be really old fast. I ended up writing a few Perl scripts and routinely use those instead. IIRC, there's a jail-related port that offers a collection of something similar. Still, we're talking about a very limited subset of tools and functionality. What about tcpdump? Or firewall rules? Or any other network tool? There was a post recently (Matthew Seaman's name comes to mind) that suggested binding jails to addresses in the loopback range and then using firewall rules to redirect the traffic accordingly. There's a possibility that may help in this case, but that layer of added complexity isn't much of an improvement over seeing connections with seemingly identical endpoints and interpreting the results in my head. The thought occurred to me, however, that I could add a new network card and reserve that for the IP aliases needed by the jails. But I'm not sure whether that will work in telling me who's who, or whether I'll discover another gotcha. ;-) It will add more gotcha's, unless you put each network card in a different network. With the IP's given here, you tell the host that 10.0.1.0/24 is on fxp0, so it will never go to fxp1 for 10.0.1.4. You're probably right. I'm wondering, though, if by moving the jails into their own network space and adding routing into the mix, the end result may be more satisfactory? Setting aside the fun of mental gymnastics, the conclusion seems to be don't run anything on the jail host that would initiate a connection to a service running inside a jail. Unless, of course, you don't mind being confused (at least from a networking perspective) by WTF you're seeing. ;-) Either way, thanks very much for the input. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Procmail error
On Tue, Jul 08, 2008 at 08:52:33AM -0700, Rem P Roberti wrote: On 2008.07.08 16:46:18 +, Frank Shute wrote: On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote: Probably the wrong forum for this, but since it's on a freebsd system: I have mutt installed on two other freebsd computers. I fetch pop mail via getmail, and procmail puts things where they belong. I just installed freebsd 7.0 on another computer with what I thought were the exact same settings for all of the mail programs involved. When I try to retrieve mail I get this error message: Delivery error (command procmail 3695 error (127, exec of command procmail failed (refuse to invoke external commands as root or GID 0 by default))) I'm a relative newbie here and would appreciate it if someone could give me a heads up on this. Rem Are you running getmail as root? Boy, I hope not. And I have this entry in my aliases file: root: rem so I'm not collecting mail as root. What does your getmailrc look like? I've got this section in there. You should have similar: [destination] type = MDA_external path = /usr/local/bin/procmail user = frank Here is the entry I use: [destination] type = MDA_external path = /usr/local/bin/procmail unixfrom = True This getmailrc file is the same one that I use on two other computers with not problems. The problem is that you're invoking getmail as root on this machine and not the others. http://pyropus.ca/software/getmail/troubleshooting.html#error-messages -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
rblsmtpd/qmail-smtpd hung processes
I've run into a bit of a problem and if I don't solve it soon, I'm going to be without e-mail (and so will a lot of other people). This is a bit long, I'm trying to include anything that may help. The problem is that qmail-smtpd and/or rblsmtpd get stuck and don't close. After a while the server just quits accepting smtp connections, or will connect/disconnect very quickly (connection closed by foreign host). Using kill on these processes just opens another instance of them (they're managed by /var/service). Since I'm not seeing any log activity that shows what's going on, I'm having a hard time figuring it out. I know the processes are supposed to be timing out and closing, but don't seem to be doing that Has anyone seen this problem? I've tried searching for info on it, but can't find anything that looks similar. I currently have rblsmtpd disabled since it sits between the outside world and qmail-smtpd. The errors don't occur quickly, it seems to take multiple hours to occur so this is hard to debug because I can't create the problem on demand. Any ideas are welcome. (hopefully I'll be able to get mail from this address long enough to fix this - it's one of the ones that's been moved to this machine already) uname -a FreeBSD ns1.pchotshots.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun Feb 24 10:35:36 UTC 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC amd64 Related ports in use: ucspi-tcp-0.88_2 qmail-1.03_7 qmailadmin-1.2.10,1 vpopmail-5.4.26_1 dovecote-1.0.14 A quick bit of history: Our email/dns provider is closing up shop in about a week (good friend of mine was a small ISP). I only had about 3 weeks notice on this and I've been configuring a pair of FreeBSD machines (I posted to the list a couple weeks ago, thanks everyone for good replies, ) to take over DNS and E-Mail for about a dozen sites. Basically I've been on a crash course of learning as I go. Brad Mettee PC HotShots, Inc. Baltimore, MD (410) 426-7617 - Let us bring out the *Power* of your PCs. - - Custom Business Software Solutions since 1991 - visit http://www.pchotshots.com for information about our company. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Procmail error
What does your getmailrc look like? I've got this section in there. You should have similar: [destination] type = MDA_external path = /usr/local/bin/procmail user = frank Here is the entry I use: [destination] type = MDA_external path = /usr/local/bin/procmail unixfrom = True This getmailrc file is the same one that I use on two other computers with not problems. Problem solved. I added allow_root_commands = True to the [destination] entries in the getmailrc and that fixed it. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
David Allen wrote: There was a post recently (Matthew Seaman's name comes to mind) that suggested binding jails to addresses in the loopback range and then using firewall rules to redirect the traffic accordingly. There's a possibility that may help in this case, but that layer of added complexity isn't much of an improvement over seeing connections with seemingly identical endpoints and interpreting the results in my head. Guilty as charged M'lud. However what I recommended was a more-than-slightly hacky way to achieve three things: * Something like a loopback address inside the jail. It may be 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded to use it for loopback style things. * The ability to map several IPs onto the jailed system by use of NAT and redirect within firewall rules * The ability to have a jail with /no/ external IP for when the paranoia becomes unbearable[*]. Of course, all this will be immediately obsoleted by Marco Zec's work on virtualizing the IP stack. http://imunes.tel.fer.hr/virtnet/ Cheers, Matthew [*] Combine this with a Hardware Load Balancer that does Direct Server Return and you can have a publicly accessible jailed server with /no external IP address/. -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
ports
brand new install of freebsd 7. some httpd and named. what are these? udp6 0 0 *.54168*.* udp4 0 0 *.54167*.* thanks # netstat -a Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) tcp4 0 0 big.sshh-1-2-3-4.51366 ESTABLISHED tcp4 0 0 big.sshh-74-1-12-15.wi.51362 ESTABLISHED tcp4 0 0 big.http *.*LISTEN tcp4 0 0 localhost.domain *.*LISTEN tcp4 0 0 big.domain *.*LISTEN tcp4 0 0 localhost.smtp *.*LISTEN tcp4 0 0 *.ssh *.*LISTEN tcp6 0 0 *.ssh *.*LISTEN udp6 0 0 *.54168*.* udp4 0 0 *.54167*.* udp4 0 0 localhost.domain *.* udp4 0 0 big.domain *.* udp4 0 0 *.syslog *.* udp6 0 0 *.syslog *.* ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
kalin m [EMAIL PROTECTED] writes: brand new install of freebsd 7. some httpd and named. what are these? Use sockstat(1) to find out? udp6 0 0 *.54168*.* udp4 0 0 *.54167*.* thanks # netstat -a Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) tcp4 0 0 big.sshh-1-2-3-4.51366 ESTABLISHED tcp4 0 0 big.sshh-74-1-12-15.wi.51362 ESTABLISHED tcp4 0 0 big.http *.*LISTEN tcp4 0 0 localhost.domain *.*LISTEN tcp4 0 0 big.domain *.*LISTEN tcp4 0 0 localhost.smtp *.*LISTEN tcp4 0 0 *.ssh *.*LISTEN tcp6 0 0 *.ssh *.*LISTEN udp6 0 0 *.54168*.* udp4 0 0 *.54167*.* udp4 0 0 localhost.domain *.* udp4 0 0 big.domain *.* udp4 0 0 *.syslog *.* udp6 0 0 *.syslog *.* ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Capturing ATA devices serial numbers
Okay - I've tried this against two devices in the system. The devices queried are report as ad0 and ad2. When using the following command against either device I get the following response: usage: atacontrol command channel [args] Now, it must be noted that I am using a ccd device that's has both these devices configured as member of the ccd configuration. I'm pretty sure that this should not interfere with the query but, I thought I would let you know. Any further suggestions would be greatly appreciated. Cheers, -Original Message- From: Wojciech Puchar [mailto:[EMAIL PROTECTED] Sent: Monday, July 07, 2008 4:25 PM To: Vaughn Clinton Cc: [EMAIL PROTECTED] Subject: Re: Capturing ATA devices serial numbers atacontrol cap device On Mon, 7 Jul 2008, Vaughn Clinton wrote: All, I'm looking for a FreeBSD utility that will allow me to query a disk for its serial number. Can you point me to such a tool that'll allow me to do so? Regards, * Vaughn E. Clinton Systems Analyst Scientific Computing Resources HPC-3 Los Alamos National Laboratory 505-606-2103 - Voice 505-664-7819 - Pager * ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
Hello, * Something like a loopback address inside the jail. It may be 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded to use it for loopback style things. * The ability to map several IPs onto the jailed system by use of NAT and redirect within firewall rules * The ability to have a jail with /no/ external IP for when the paranoia becomes unbearable[*]. Most of this is actually implemented by [EMAIL PROTECTED] You can find some patches at http://sources.zabbadoz.net/freebsd/jail.html -- Best regards, Daniel Gerzo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ipf question
Hi all I am using ipf associated with ippool. When I need to change /etc/ipf/ippool.conf, say add a new member in a group, ippool -F and ippool -f /etc/ipf/ippool.conf doesn't seem to work. I also tried reloading the ipfilter rule by 'ipf -Fa -f /etc/ipf/ipf.conf', but ipf doesn't seem to re-read the ippool.conf The only way that has worked is to 'ipf -D' and then 'ipf -E', manually reload ippool and then reload the ipf.conf . But this is not ideal for me since restarting the ipf would flush the state table, thus disconnect existing connection. Is there any way to make change to ippool without dropping connectivity? Thank you ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
Lowell Gilbert wrote: kalin m [EMAIL PROTECTED] writes: brand new install of freebsd 7. some httpd and named. what are these? Use sockstat(1) to find out? udp6 0 0 *.54168*.* udp4 0 0 *.54167*.* Almost certainly named -- it appears to listen on a high numbered UDP port, but all it is is the next /source/ port for an outgoing UDP packet. You can configure named to always send packets using a fixed port number (which can be helpful for firewalling) by: query-source address 12.34.56.78 port 53; query-source-v6address 1999:::::1 port 53; transfer-source12.34.56.78 port 53; transfer-source-v6 1999:::::1 port 53; notify-source 12.34.56.78 port 53; notify-source-v6 1999:::::1 port 53; Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: Jails and IP Aliasing
Daniel Gerzo wrote: Hello, * Something like a loopback address inside the jail. It may be 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded to use it for loopback style things. * The ability to map several IPs onto the jailed system by use of NAT and redirect within firewall rules * The ability to have a jail with /no/ external IP for when the paranoia becomes unbearable[*]. Most of this is actually implemented by [EMAIL PROTECTED] You can find some patches at http://sources.zabbadoz.net/freebsd/jail.html These patches (in various forms) have been around since version 4.x. Why has none of this functionality ever been committed to head? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
On Tue, Jul 08, 2008 at 12:14:54PM -0400, kalin m wrote: brand new install of freebsd 7. some httpd and named. what are these? udp6 0 0 *.54168*.*udp4 0 0 *.54167*.* thanks Try using sockstat(1) to find which app is listening there: sockstat -6p54168 sockstat -4p54167 HTH, Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote: You can configure named to always send packets using a fixed port number (which can be helpful for firewalling) Purely outof interest, which (useful) firewall/nat rules cannot be made with dest port 53, that can be made with source port 53. Not talking syntax, but business logically. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: difference between loading kernel module during boot and after boot manually?
On Tuesday 08 July 2008 16:48:26 Vincent Barus wrote: does anyone have an idea what's the difference or what _could_ be the difference on loading a kernel module during boot or manually? There's one major difference. File systems aren't mounted at loader stage, so any reference to modules/libraries that exist on a different partition, will fail. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: quota and sendmail accepts 10k mail size
At 08:14 PM 7/7/2008, lyd mc wrote: Greetings, I setup my mail server on freebsd7.0R and it is working great! However, I have a problem on quota. It suppose to block any incoming message to specific user which is under quota. But sendmail can still send to the user under quota if the mail size is ~ less than 10k. Quota only works when the mail size is greater than 13k. Is there any way to correct this problem? Please help. By the way, i disable the grace period via quota.h. #define MAX_IQ_TIME (0) /* seconds in 1 week */ #define MAX_DQ_TIME (0) /* seconds in 1 week */ And my mail users authenticate via ldap. Thank you and more power. I don't fully understand what you are trying to limit, most sendmail size limits are set either globally, or by protocol. The General setting is set in you .mc file with: confMAX_MESSAGE_SIZEMaxMessageSize [infinite] The maximum size of messages that will be accepted (in bytes). Otherwise read through the page on the options here and you can refine the size limit by the protcol/mta: http://www.sendmail.org/documentation/configurationReadme -Derek -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
right named... thanks Matthew Seaman wrote: Lowell Gilbert wrote: kalin m [EMAIL PROTECTED] writes: brand new install of freebsd 7. some httpd and named. what are these? Use sockstat(1) to find out? udp6 0 0 *.54168*.* udp4 0 0 *.54167*.* Almost certainly named -- it appears to listen on a high numbered UDP port, but all it is is the next /source/ port for an outgoing UDP packet. You can configure named to always send packets using a fixed port number (which can be helpful for firewalling) by: query-source address 12.34.56.78 port 53; query-source-v6address 1999:::::1 port 53; transfer-source12.34.56.78 port 53; transfer-source-v6 1999:::::1 port 53; notify-source 12.34.56.78 port 53; notify-source-v6 1999:::::1 port 53; Cheers, Matthew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: wpa, static ip only on specific networks
On Tuesday 08 July 2008 03:32:10 David Gurvich wrote: How does one configure a wireless connection using wpa and dhcp on some networks and wpa with a static ip on others? Tough. I'd probably configure the interface as WPA inet 127.0.0.2 netmask 255.0.0.0 and then put a script in /usr/local/etc/rc.d that would read out the BSSID and make it's descision accordingly. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
On Tuesday 08 July 2008 11:24:33 Mel wrote:
On Monday 07 July 2008 18:51:33 David Allen wrote:
Granted, everything is really happening over the loopback address, but a
connection originating from the jailhost to a jail should appear to be
using the jailhost's IP address, or so I'd like to think. If it doesn't,
then the scenario is awkward at best when trying to understand or debug
issues.
To debug this, you need to 'add jail support to sockstat'. This sounds
hard, and it is
It's actually not that hard, though it stretches the output width. Diff
inlined below sig, for RELENG_7.
--
Mel
Problem with today's modular software: they start with the modules
and never get to the software part.
Index: sockstat.c
===
RCS file: /home/ncvs/src/usr.bin/sockstat/sockstat.c,v
retrieving revision 1.17
diff -u -r1.17 sockstat.c
--- sockstat.c 16 Jun 2007 20:24:55 - 1.17
+++ sockstat.c 8 Jul 2008 19:40:11 -
@@ -94,6 +94,11 @@
struct sock *next;
};
+struct procinfo {
+ const char *procname;
+ int jid;
+};
+
#define HASHSIZE 1009
static struct sock *sockhash[HASHSIZE];
@@ -513,13 +518,16 @@
return xprintf(%s:%d, addrstr, port);
}
-static const char *
-getprocname(pid_t pid)
+static int
+getprocinfo(pid_t pid, struct procinfo *pi_ptr)
{
static struct kinfo_proc proc;
size_t len;
int mib[4];
+ if( pi_ptr == NULL )
+ return -1;
+
mib[0] = CTL_KERN;
mib[1] = KERN_PROC;
mib[2] = KERN_PROC_PID;
@@ -529,9 +537,12 @@
/* Do not warn if the process exits before we get its name. */
if (errno != ESRCH)
warn(sysctl());
- return (??);
+ return -1;
}
- return (proc.ki_comm);
+ pi_ptr-procname = proc.ki_comm;
+ pi_ptr-jid = proc.ki_jid;
+
+ return (0);
}
static int
@@ -564,11 +575,12 @@
struct passwd *pwd;
struct xfile *xf;
struct sock *s;
+ struct procinfo pi;
void *p;
int hash, n, pos;
- printf(%-8s %-10s %-5s %-2s %-6s %-21s %-21s\n,
- USER, COMMAND, PID, FD, PROTO,
+ printf(%-8s %-10s %-5s %-5s %-2s %-6s %-21s %-21s\n,
+ USER, COMMAND, PID, JID, FD, PROTO,
LOCAL ADDRESS, FOREIGN ADDRESS);
setpassent(1);
for (xf = xfiles, n = 0; n nxfiles; ++n, ++xf) {
@@ -583,33 +595,41 @@
if (!check_ports(s))
continue;
pos = 0;
+ if( -1 == getprocinfo(xf-xf_pid, pi) )
+ {
+ pi.procname = ??;
+ pi.jid = -1;
+ }
if ((pwd = getpwuid(xf-xf_uid)) == NULL)
pos += xprintf(%lu, (u_long)xf-xf_uid);
else
pos += xprintf(%s, pwd-pw_name);
while (pos 9)
pos += xprintf( );
- pos += xprintf(%.10s, getprocname(xf-xf_pid));
+ pos += xprintf(%.10s, pi.procname);
while (pos 20)
pos += xprintf( );
pos += xprintf(%lu, (u_long)xf-xf_pid);
while (pos 26)
pos += xprintf( );
+ pos += xprintf(%u, pi.jid);
+ while (pos 32)
+ pos += xprintf( );
pos += xprintf(%d, xf-xf_fd);
- while (pos 29)
+ while (pos 35)
pos += xprintf( );
pos += xprintf(%s, s-protoname);
if (s-vflag INP_IPV4)
pos += xprintf(4);
if (s-vflag INP_IPV6)
pos += xprintf(6);
- while (pos 36)
+ while (pos 42)
pos += xprintf( );
switch (s-family) {
case AF_INET:
case AF_INET6:
pos += printaddr(s-family, s-laddr);
- while (pos 58)
+ while (pos 64)
pos += xprintf( );
pos += printaddr(s-family, s-faddr);
break;
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jails and IP Aliasing
On Tue, Jul 8, 2008 at 9:35 AM, Matthew Seaman [EMAIL PROTECTED] wrote: David Allen wrote: There was a post recently (Matthew Seaman's name comes to mind) that suggested binding jails to addresses in the loopback range and then using firewall rules to redirect the traffic accordingly. There's a possibility that may help in this case, but that layer of added complexity isn't much of an improvement over seeing connections with seemingly identical endpoints and interpreting the results in my head. Guilty as charged M'lud. Stand up, fool, lest I be forced to lower my knee and acknowledge your presence in a manner befitting a man as yourself. However what I recommended was a more-than-slightly hacky way to achieve three things: * Something like a loopback address inside the jail. It may be 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded to use it for loopback style things. * The ability to map several IPs onto the jailed system by use of NAT and redirect within firewall rules * The ability to have a jail with /no/ external IP for when the paranoia becomes unbearable[*]. It could be said that those three expand into more numerous achievements. I'm still debating the more-than-slightly hacky aspects of such an arrangement, but undeniably it's interesting enough. Of course, all this will be immediately obsoleted by Marco Zec's work on virtualizing the IP stack. http://imunes.tel.fer.hr/virtnet/ Promising, even exciting, but I'm having trouble deciding whether I declare a victory for the triumph of optimism over experience, or offer the comment that the Real Soon Now schedule is a disappointment? Seriously, though, jails can be seen as the greatest thing since slide bread, but I have this nagging feeling I'm at work writing a small book that details their niggly shortcomings, a book whose completion, I hope, will be cut short by the addition of New and Improved features. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Load balance for POP3
Hi Vince, On Mon, 30 Jun 2008, Vince Hoffman wrote: | | I need to switch the users connections between two POP3 servers based on | | login information. | | Since the login is part of the pop3 handshake, I'm stuck on how to | | transfer the connection and pass the info already sent. | |would nginx (as described here |http://highscalability.com/nginx-high-performance-smpt-pop-imap-proxy) |be more what your after? Yes, it seems thar Nginx has what I need. Do you have any working setup? Thank you, - Marcelo Souza - Marcelo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
On Tue, Jul 8, 2008 at 11:04 AM, Mel [EMAIL PROTECTED] wrote: On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote: You can configure named to always send packets using a fixed port number (which can be helpful for firewalling) Purely outof interest, which (useful) firewall/nat rules cannot be made with dest port 53, that can be made with source port 53. Not talking syntax, but business logically. Fewer rules for those with a predisposition to being anal? IIRC, pf offers a policy-based approch which I believe could make use of such distinctions, but I think the advantages of managing the source/destination ports for querries, transfers, etc. are found more in traffic accounting than in writing rulesets. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sound on amd64
On Mon, Jul 07, 2008 at 01:41:34PM -0700, Kurt Buff wrote: First, my apologies - I sent my last missive to Conrad, and not to the list. I'm replying to myself with an update. Details below. Kurt On Sun, Jul 6, 2008 at 2:51 PM, Kurt Buff [EMAIL PROTECTED] wrote: On Sun, Jul 6, 2008 at 2:24 PM, Conrad J. Sabatier [EMAIL PROTECTED] wrote: On Sun, 06 Jul 2008 10:25:58 +0200 Tore Lund [EMAIL PROTECTED] wrote: Kurt Buff wrote: On Sat, Jul 5, 2008 at 8:48 PM, Conrad J. Sabatier [EMAIL PROTECTED] wrote: On Sat, 5 Jul 2008 19:02:09 -0700 Kurt Buff [EMAIL PROTECTED] wrote: ... Do you have both the generic sound support (sound) as well as the specific hardware driver enabled in your kernel config? Sigh. Always something new to learn. Just wondering, why do people modify the kernel when kernel loadable modules can handle the sound card? Is it necessary on some types of hardware? Well, probably the main reason most people do it is to strip away any unneeded functionality. The GENERIC kernel contains a whole slew of drivers and options that most people don't need, but are intended to support a wide range of hardware configurations out of the box. You can greatly reduce the kernel's size by only including the features you really need. I tried a new kernel, but that didn't work, for whatever reason, but editing loader.conf did, sort of. I tried adding sound_load=YES snd_hda_load=YES hint.pcm.0.config=gpio0 gpio1 gpio2 gpio3 gpio4 gpio5 gpio6 gpio7 but while the cd player now works, I'm not getting output from the built-in speakers - it just sounds like it's coming from a long way away - I can barely make it out. I suppose that means it's coming from the headphone setup, but I'm not sure of that. I've been googling, but haven't figured this out yet. Kurt More careful reading shows that the hint line goes in /boot/device.hints, but placing it there does not improve the situation, though the sound does seem to be emitting from the speakers. It's just that it's very soft, and I can't get it any louder, though using the slider control in gnome will silence it. This is a recent Thinkpad T61, and grepping dmesg reveals that the sound system is detected as an Intel 82801H, and the codec used seems to be the Analog Devices AD1984. I'm running 7-STABLE, updated on Saturday. Thoughts on how to improve this would be much appreciated. Kurt Have you had a play with mixer(8)? E.g: $ mixer vol Mixer vol is currently set to 75:75 $ mixer vol 70:70 Setting the mixer vol from 75:75 to 70:70. Obviously, you'd want to raise the volume rather than reduce it like I just did. Regards, -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD + ZFS on a production server?
Wojciech Puchar wrote: ZFS on FreeBSD is GEOM-ified. While I believe what Wojciech said about needing a full disk is correct under Solaris, it's not the case in i never said it requires full disk. but it will work very slow sharing a disk with non-ZFS things. Well, of course if you are loading your disk with too many seeks it will be slow. This has nothing to do with ZFS. to say more: zfs set copies could be usable to selectively mirror given data while not mirroring other (using unprotected storage for ZFS). but it's broken. it writes N copies under write, but don't remake copies in case of failure! which make it almost unusable. in case of any failure you have to copy and delete every file to make it actually repaired. Eh? It happens automatically. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD + ZFS on a production server?
Wojciech Puchar wrote: ZFS can be installed on partitions and share disks with other things, but the performance will be bad. There is nothing ZFS-specific about this statement. ZFS - contrary to every other filesystem that use FreeBSD disk I/O scheduler - does it's own I/O scheduling, so it assumes it's the only user of physical drive. This is false. ZFS uses GEOM along with everything else in FreeBSD, and GEOM is the thing that eventually talks to the disk driver to perform I/O. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Fwd: Sound on amd64
On Tue, Jul 8, 2008 at 1:20 PM, Frank Shute [EMAIL PROTECTED] wrote: On Mon, Jul 07, 2008 at 01:41:34PM -0700, Kurt Buff wrote: First, my apologies - I sent my last missive to Conrad, and not to the list. I'm replying to myself with an update. Details below. Kurt On Sun, Jul 6, 2008 at 2:51 PM, Kurt Buff [EMAIL PROTECTED] wrote: On Sun, Jul 6, 2008 at 2:24 PM, Conrad J. Sabatier [EMAIL PROTECTED] wrote: On Sun, 06 Jul 2008 10:25:58 +0200 Tore Lund [EMAIL PROTECTED] wrote: Kurt Buff wrote: On Sat, Jul 5, 2008 at 8:48 PM, Conrad J. Sabatier [EMAIL PROTECTED] wrote: On Sat, 5 Jul 2008 19:02:09 -0700 Kurt Buff [EMAIL PROTECTED] wrote: ... Do you have both the generic sound support (sound) as well as the specific hardware driver enabled in your kernel config? Sigh. Always something new to learn. Just wondering, why do people modify the kernel when kernel loadable modules can handle the sound card? Is it necessary on some types of hardware? Well, probably the main reason most people do it is to strip away any unneeded functionality. The GENERIC kernel contains a whole slew of drivers and options that most people don't need, but are intended to support a wide range of hardware configurations out of the box. You can greatly reduce the kernel's size by only including the features you really need. I tried a new kernel, but that didn't work, for whatever reason, but editing loader.conf did, sort of. I tried adding sound_load=YES snd_hda_load=YES hint.pcm.0.config=gpio0 gpio1 gpio2 gpio3 gpio4 gpio5 gpio6 gpio7 but while the cd player now works, I'm not getting output from the built-in speakers - it just sounds like it's coming from a long way away - I can barely make it out. I suppose that means it's coming from the headphone setup, but I'm not sure of that. I've been googling, but haven't figured this out yet. Kurt More careful reading shows that the hint line goes in /boot/device.hints, but placing it there does not improve the situation, though the sound does seem to be emitting from the speakers. It's just that it's very soft, and I can't get it any louder, though using the slider control in gnome will silence it. This is a recent Thinkpad T61, and grepping dmesg reveals that the sound system is detected as an Intel 82801H, and the codec used seems to be the Analog Devices AD1984. I'm running 7-STABLE, updated on Saturday. Thoughts on how to improve this would be much appreciated. Kurt Have you had a play with mixer(8)? E.g: $ mixer vol Mixer vol is currently set to 75:75 $ mixer vol 70:70 Setting the mixer vol from 75:75 to 70:70. Obviously, you'd want to raise the volume rather than reduce it like I just did. Regards, -- Frank Well, whaddya know? :) vol was set to 75:75, pcm to 75:75 and speaker to 81:81. Cranked it up to 100 across the board, and I'm now rockin'! ZZTop's greatest hits are now playing just fine... Thanks! Now, on to the touchpad/trackstick - but I'll research it first before asking questions... Kurt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: New user with a possible ZFS problem
Kevin Monceaux wrote: On Wed, 2 Jul 2008, Kevin Monceaux wrote: Saturday I finally found one of those round tuits and switched my home PC from Debian to FreeBSD. I probably should have mentioned that the box in question is a slightly older hyperthreaded Intel Pentium 4 box, an HP m260n to be exact, with 3GB of RAM. You may be running out of memory. Increase kmem_size until it goes away. I use 1500M on my systems, which are stable. Yes, ZFS is a memory hog. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports
On Jul 8, 2008, at 11:04 AM, Mel wrote: On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote: You can configure named to always send packets using a fixed port number (which can be helpful for firewalling) Purely outof interest, which (useful) firewall/nat rules cannot be made with dest port 53, that can be made with source port 53. Not talking syntax, but business logically. Please note that using the same port for answering queries makes it vastly easier for somebody to spoof your DNS traffic. Unless you are one of the handful using DNSSEC, that is. -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
re: rblsmtpd/qmail-smtpd hung processes
I've run into a bit of a problem and if I don't solve it soon, I'm going to be without e-mail (and so will a lot of other people). This is a bit long, I'm trying to include anything that may help. The problem is that qmail-smtpd and/or rblsmtpd get stuck and don't close. After a while the server just quits accepting smtp connections, or will connect/disconnect very quickly (connection closed by foreign host). Using kill on these processes just opens another instance of them (they're managed by /var/service). Since I'm not seeing any log activity that shows what's going on, I'm having a hard time figuring it out. I know the processes are supposed to be timing out and closing, but don't seem to be doing that Has anyone seen this problem? I've tried searching for info on it, but can't find anything that looks similar. I currently have rblsmtpd disabled since it sits between the outside world and qmail-smtpd. The errors don't occur quickly, it seems to take multiple hours to occur so this is hard to debug because I can't create the problem on demand. Any ideas are welcome. (hopefully I'll be able to get mail from this address long enough to fix this - it's one of the ones that's been moved to this machine already) uname -a FreeBSD ns1.pchotshots.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun Feb 24 10:35:36 UTC 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC amd64 Related ports in use: ucspi-tcp-0.88_2 qmail-1.03_7 qmailadmin-1.2.10,1 vpopmail-5.4.26_1 dovecote-1.0.14 A quick bit of history: Our email/dns provider is closing up shop in about a week (good friend of mine was a small ISP). I only had about 3 weeks notice on this and I've been configuring a pair of FreeBSD machines (I posted to the list a couple weeks ago, thanks everyone for good replies, ) to take over DNS and E-Mail for about a dozen sites. Basically I've been on a crash course of learning as I go. I hate responding to my own message, but I think I've finally found the solution. I'm using Matt Simerson's Mail Toaster package. The file toaster.conf file needs to be 644 so that when rotating logs, the programs can re-read the config. Apparently all of the hanging files were dying because they couldn't read the config and crashed. Once crashed the supervisor decided it needed to start a new copy, which would crash as soon as something connected to it, and so on. This also seems to have fixed a problem where some e-mails would get stuck in the queue and never leave. They've all been delivered/deleted like they should now. I got lucky in finding this. I happened to spot the rotated log file staying empty within a few minutes of seeing the hung processes starting to stack up. It gave me a good starting point to googling for a solution. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: New user with a possible ZFS problem
Kris, On Tue, 8 Jul 2008, Kris Kennaway wrote: You may be running out of memory. Increase kmem_size until it goes away. I use 1500M on my systems, which are stable. Yes, ZFS is a memory hog. Boy, ZFS sure does sound like it's earned the title of memory hog. Oddly I'd been running for about a week without problems, and shuffled some large files around during that week, and right before I got your e-mail I had another hang. I tried increasing the kmem_size setting and was rewarded with a panic on reboot. I already had it set at 512M. A little Googling tells me I'm going to have to compile a custom kernel to increase it beyond that. Oh well, it's about time I learned how to do that anyway. I've compiled many a custom Linux kernel. I started using Linux in the 1.xx kernel days before there were loadable kernel modules so almost everything involved a kernel recompile. I've read over the FreeBSD kernel compile docs quite a while back but will need to go over them again. Anyway, thanks for the tip. I'll give it a try after a little research and a little, or a lot of, compiling. Kevin http://www.RawFedDogs.net http://www.WacoAgilityGroup.org Bruceville, TX Si hoc legere scis nimium eruditionis habes. Longum iter est per praecepta, breve et efficax per exempla!!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Firefox/epiphany/galeon all crash
As soon as I log into my gmail account, and several other sites. Running 7-STABLE, amd64 - FF is 2.0.0.14, gecko is 20080628. I'm writing this on my really old Windows laptop Below are the last few lines from a representative set of output from session launched from the commandline. Is it flash, or something else, and is there anything I can do to fix this? Oddly enough, it's not crashing on the OWA (Outlook Web Access) from my company's Exchange server - but that's just a lot of javascript, AFAICT. CSS Error (https://mail.google.com/mail/?ui=2view=bspver=1qygpcgurkovy :0.16): Error in parsing value for property 'width'. Declaration dropped. ###!!! ASSERTION: bad width: 'metrics.width=0', file nsLineLayout.cpp, line 1068 Break: at file nsLineLayout.cpp, line 1068 ++DOMWINDOW == 17 WARNING: Moving XPConnect wrappedNative to new scope, but can't fixup __proto__, file xpcwrappednative.cpp, line 1108 For application/x-shockwave-flash found plugin /usr/local/lib/browser_plugins/libnpflash.so LoadPlugin() /usr/local/lib/browser_plugins/libnpflash.so returned 29e4d60 NP_Initialize New nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0 nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584 About to create new ws_info... About to create new xtbin of 100 X 100 from 0x192ccc0... About to show xtbin(0x7b2e90)... completed gtk_widget_show(0x7b2e90) SetWindow nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0 nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584 SetWindow nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0 nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584 SetWindow NewStream WriteReady Write decoding... The program 'gecko' received an X Window System error. This probably reflects a bug in the program. The error was 'BadImplementation (server does not implement operation)'. (Details: serial 36 error_code 17 request_code 146 minor_code 5) (Note to programmers: normally, X errors are reported asynchronously; that is, you will receive the error a while after causing it. To debug your program, run it with the --sync command line option to change this behavior. You can then get a meaningful backtrace from your debugger if you break on the gdk_x_error() function.) nsStringStats = mAllocCount: 47580 = mReallocCount: 7348 = mFreeCount: 40084 -- LEAKED 7496 !!! = mShareCount: 29791 = mAdoptCount: 4257 = mAdoptFreeCount: 4072 -- LEAKED 185 !!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Data loss after power out - fsck: bad inode number to nextinode
Hi, since last week I'm in big trouble: After an power outage my main system didn't boot up anymore, so I checked its hard disk (FreeBSD 5.4) in my new system (FreeBSD 7.0). I booted the system in SUM and ran fsck on the partitions. / on /dev/ad1s1a could be repaired, /var on 1d too, /usr on 1e lost many directory entries (X11R6, for exmaple), but all files and directory entry points got restored to lost+found. Okay, that's as I know it should be. But it doesn't matter, because everything there could be reinstalled. Problems occured when checking /home on /dev/ad1s1f. After lot of 1101472 DUP I=260035 UNEXPECTED SOFT UPDATE INCONSISTENCY and EXCESSIVE DUP BLKS I=260039 CONTINUE? yes and 7310315658325879925 BAD I=260051 UNEXPECTED SOFT UPDATE INCONSISTENCY fsck ended up this way: INCORRECT BLOCK COUNT I=290557 (3104 should be 736) CORRECT? yes fsck_4.2bsd: bad inode number 306176 to nextinode The result: The home directories of all other users where present, but mine (!) - /home/adec - was missing. I may explain this a bit more precise: When looking at the files using the Midnight Commander, the name of my home directory was displayed, preceeded by ?, and in red colour, with a strange date (the epoch?). |?adec| 0|Jan 1 1970| So I could not change into this directory and get my files out of there. In order not to damage the system more, I made a ddrescue dump of the partition: % ddrescue -d -r 3 -n /dev/ad1s1f home.ddrescue logfile The data could be read without problems. The resulting file seemed to be an 1:1 copy of the partition. % file home.ddrescue home.ddrescue: Unix Fast File system [v2] (little-endian) last mounted on /mnt, last written at Wed Jul 2 18:51:06 2008, clean flag 0, readonly flag 0, number of blocks 44322272, number of data blocks 42925108, number of cylinder groups 472, block size 16384, fragment size 2048, average file size 16384, average number of files in dir 64, pending blocks to free 0, pending inodes to free 0, system-wide uuid 0, minimum percentage of free blocks 8, TIME optimization When checking it with % fsck -t ufs -yf /dev/md10 fsck gives the same error message as above. Then I mounted the image: % sudo mdconfig -a -t vnode -u 10 -f home.ddrescue % mount -t ufs -o ro /dev/md10 mnt And guess what? Same problem: Directory name shown, but directory not changable. But then, I noticed something interesting: % df -h Filesystem SizeUsed Avail Capacity Mounted on /dev/md10 82G 75G716M99% /export/home/adec/rescue/mnt See the size differences? Something seems to be missing. I hope it is the content of my home directory that's still on the disk. Some checking: % sudo du -sch mnt du: mnt/adec: Bad file descriptor du: mnt/archiv/cr/clips.w32/s01.wmv: Bad file descriptor du: mnt/archiv/cr/clips.w32/s02.wmv: Bad file descriptor 52Gmnt 52Gtotal This reveals that it seems to be possible that approx. 30 GB are not marked as free. % file mnt/adec mnt/adec: cannot open `mnt/adec' (Bad file descriptor) % cd mnt/adec mnt/adec: Not a directory. Before bothering anyone here at this list, I checked information on the net and found that only one (!!!) person except me seemd to have this problem. And he got no help. Do I? =^_^= Of course I took the time to read about the FFS architecture. If I did understand it correctly, fsck stops working, showing the informative error message bad inode number 306176 to nextinode because it cannot get the next inode from a concatenated list that represents the file and directory hierarchy, so there must be a bad pointer. While the names of the next things represented by inodes reside within a data structure at level N, the corresponting data entries reside at level N + 1 where a pointer should lead to. This may be an explaination why the name adec is still in ad1s1f's root directory, but the data that says I'm a directory, this is my content is not referenced anymore. So fsck cannot continue. The missing inodes need to get reconnected. In most cases, that's what lost+found usually contains: unreferenced inodes that are not marked free: their names are gone (N), but their content is still there (N + 1), and the new file name is # plus their inode number. What should I do? Help is VERY welcome! If you have any ideas what to do, I'd be glad to save the money I would have to spend when sending the disk to a data recovery service - 1000 Euro and more are nothing I can afford. And when you're low on money, adequate tape backup systems are too expensive (allthoug such a device would be my first choice). By the way, this must be the revenge of a
Re: Data loss after power out - fsck: bad inode number to nextinode
On Tuesday 08 July 2008, Polytropon wrote: Hi, since last week I'm in big trouble: After an power outage my main system didn't boot up anymore, so I checked its hard disk (FreeBSD 5.4) in my new system (FreeBSD 7.0). I booted the system in SUM and ran fsck on the partitions. / on /dev/ad1s1a could be repaired, /var on 1d too, /usr on 1e lost many directory entries (X11R6, for exmaple), but all files and directory entry points got restored to lost+found. Okay, that's as I know it should be. But it doesn't matter, because everything there could be reinstalled. Problems occured when checking /home on /dev/ad1s1f. After lot of 1101472 DUP I=260035 UNEXPECTED SOFT UPDATE INCONSISTENCY and EXCESSIVE DUP BLKS I=260039 CONTINUE? yes and 7310315658325879925 BAD I=260051 UNEXPECTED SOFT UPDATE INCONSISTENCY fsck ended up this way: INCORRECT BLOCK COUNT I=290557 (3104 should be 736) CORRECT? yes fsck_4.2bsd: bad inode number 306176 to nextinode The result: The home directories of all other users where present, but mine (!) - /home/adec - was missing. I may explain this a bit more precise: When looking at the files using the Midnight Commander, the name of my home directory was displayed, preceeded by ?, and in red colour, with a strange date (the epoch?). |?adec| 0|Jan 1 1970| So I could not change into this directory and get my files out of there. In order not to damage the system more, I made a ddrescue dump of the partition: % ddrescue -d -r 3 -n /dev/ad1s1f home.ddrescue logfile The data could be read without problems. The resulting file seemed to be an 1:1 copy of the partition. % file home.ddrescue home.ddrescue: Unix Fast File system [v2] (little-endian) last mounted on /mnt, last written at Wed Jul 2 18:51:06 2008, clean flag 0, readonly flag 0, number of blocks 44322272, number of data blocks 42925108, number of cylinder groups 472, block size 16384, fragment size 2048, average file size 16384, average number of files in dir 64, pending blocks to free 0, pending inodes to free 0, system-wide uuid 0, minimum percentage of free blocks 8, TIME optimization When checking it with % fsck -t ufs -yf /dev/md10 fsck gives the same error message as above. Then I mounted the image: % sudo mdconfig -a -t vnode -u 10 -f home.ddrescue % mount -t ufs -o ro /dev/md10 mnt And guess what? Same problem: Directory name shown, but directory not changable. But then, I noticed something interesting: % df -h Filesystem SizeUsed Avail Capacity Mounted on /dev/md10 82G 75G716M99% /export/home/adec/rescue/mnt See the size differences? Something seems to be missing. I hope it is the content of my home directory that's still on the disk. Some checking: % sudo du -sch mnt du: mnt/adec: Bad file descriptor du: mnt/archiv/cr/clips.w32/s01.wmv: Bad file descriptor du: mnt/archiv/cr/clips.w32/s02.wmv: Bad file descriptor 52Gmnt 52Gtotal This reveals that it seems to be possible that approx. 30 GB are not marked as free. % file mnt/adec mnt/adec: cannot open `mnt/adec' (Bad file descriptor) % cd mnt/adec mnt/adec: Not a directory. Before bothering anyone here at this list, I checked information on the net and found that only one (!!!) person except me seemd to have this problem. And he got no help. Do I? =^_^= Of course I took the time to read about the FFS architecture. If I did understand it correctly, fsck stops working, showing the informative error message bad inode number 306176 to nextinode because it cannot get the next inode from a concatenated list that represents the file and directory hierarchy, so there must be a bad pointer. While the names of the next things represented by inodes reside within a data structure at level N, the corresponting data entries reside at level N + 1 where a pointer should lead to. This may be an explaination why the name adec is still in ad1s1f's root directory, but the data that says I'm a directory, this is my content is not referenced anymore. So fsck cannot continue. The missing inodes need to get reconnected. In most cases, that's what lost+found usually contains: unreferenced inodes that are not marked free: their names are gone (N), but their content is still there (N + 1), and the new file name is # plus their inode number. What should I do? Help is VERY welcome! If you have any ideas what to do, I'd be glad to save the money I would have to spend when sending the disk to a data recovery service - 1000 Euro and more are nothing I can afford. And when you're low on money, adequate tape backup systems are too expensive
Re: AMD SB700 southbridge sata ahci supported?
Thanks for responding. My problem is different.I think it is in boot stage 2 possibly a problem with the loader. Hence my problem does not resemble yours. I am able to run the install disk just fine nd complete installation. Its the installed Os that I cannot boot. Kind Regards On Sun, Jul 6, 2008 at 2:28 AM, Rhomel Chinsio [EMAIL PROTECTED] wrote: Try disabling USB in the BIOS: http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/122880 On Fri, Jun 27, 2008 at 11:21 PM, Gobbledegeek [EMAIL PROTECTED] wrote: Hi I install freebsd 7 i386 twice, installed mbr, both times boot loader failed to load at 1st stage with cpu register values displayed on screen. Mobo - gigabyte GA-MA78GM-S2H, AMD 780G chipset with ATI Radeon3200 IGP, cpu amd BE-2350, 2GB transcend DR2800 ram, barracuda hdd with SATA in AHCI mode in bios. I could not find this in the i386 or amd64 platform list. Anyone has any ideas about support for this? Please copy me as I am not subscribed. -- Kind Regards GobbleDeGeek [For everything Gobbledegook!!] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Kind Regards GobbleDeGeek [For everything Gobbledegook!!] -- Kind Regards GobbleDeGeek [For everything Gobbledegook!!] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Data loss after power out - fsck: bad inode number to nextinode
What should I do?
In theory,
clri {special-file} 306176
should wipe the inode containing the bad pointer and allow fsck to
continue, perhaps recovering the files pointed to by that directory
into lost+found.
Definitely try this on a copy first if at all possible.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
