Re: Jails and IP Aliasing

2008-07-08 Thread Matthew Seaman

Jason Morgan wrote:

On 2008.07.07 12:16:44, David Allen wrote:



# grep fxp0 /etc/rc.conf
ifconfig_fxp0=inet 10.0.1.2 netmask 0xff00
ifconfig_fxp0_alias0=10.0.1.3 netmask 0x
ifconfig_fxp0_alias1=10.0.1.4 netmask 0x
ifconfig_fxp0_alias2=10.0.1.5 netmask 0x

My understanding from the handbook is that the mask should be set to all
ones if the alias is for an address that's part of the same network.  For
a different segment, it's the first alias that should be set to the real
netmask, with any additional aliases using a netmask of all ones.

Granted, the broadcast addresses looks odd.  If I my programming skills
were better, I'd just read through the code and understand what's really
happening, but for now, I'm just taking the FreeBSD folks at their word at
following instructions.  That's a roundabout way of saying I think your
aliases are set up incorrectly.  ;-)


That it quite possible (I do notice the newer documentation calling
for netmask 0x). But I have never had any trouble over the
last three years so, you know how it is, if it ain't (too) broke ...


Using a /32 netmask for aliases in the same network as the primary
address used to be mandatory until sometime during the 6.x RELEASE
series.  It is still recommended in the various documentation, and
it does make it clear to the administrator which is the primary
address when looking at ifconfig output, when that distinction is
important[*].

Using the 'natural' netmask for the network the aliases are part of
has worked for several years: this seems to be what most new users
expect and it's familiar for users of other operating systems.  As
far as I know, there is no technical or performance reason to prefer
one style over the other -- just a matter of administrator preference.

Cheers,

Matthew

[*] ie. which is the source address used for connection /from/ the
server.  If all the aliases are used for jails, or all your software
is configured to bind to one or other of the addresses this doesn't
come into play.

--
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
 Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
 Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature


Re: Procmail error

2008-07-08 Thread Anders Troback
On Mon, 7 Jul 2008 22:05:04 -0700
Rem P Roberti [EMAIL PROTECTED] wrote:

 Probably the wrong forum for this, but since it's on a freebsd system:
 
 I have mutt installed on two other freebsd computers.  I fetch pop
 mail via getmail, and procmail puts things where they belong.  I just
 installed freebsd 7.0 on another computer with what I thought were the
 exact same settings for all of the mail programs involved.  When I try
 to retrieve mail I get this error message:
 
 Delivery error (command procmail 3695 error (127, exec of command
 procmail failed (refuse to invoke external commands as root or GID 0
 by default)))
 
 I'm a relative newbie here and would appreciate it if someone could
 give me a heads up on this.
 
 Rem

Are you running getmail as root?

-- 
Anders Trobäck
http://www.troback.com/

Windows: Where do you want to go today?
Linux: Where do you want to go tomorrow?
FreeBSD: Are you guys coming, or what?

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Procmail error

2008-07-08 Thread Rem P Roberti
 
  Probably the wrong forum for this, but since it's on a freebsd system:
  
  I have mutt installed on two other freebsd computers.  I fetch pop
  mail via getmail, and procmail puts things where they belong.  I just
  installed freebsd 7.0 on another computer with what I thought were the
  exact same settings for all of the mail programs involved.  When I try
  to retrieve mail I get this error message:
  
  Delivery error (command procmail 3695 error (127, exec of command
  procmail failed (refuse to invoke external commands as root or GID 0
  by default)))
  
  I'm a relative newbie here and would appreciate it if someone could
  give me a heads up on this.
  
  Rem
 
 Are you running getmail as root?

Boy, I hope not.  And I have this entry in my aliases file: 

root:   rem

so I'm not collecting mail as root.

Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: tape device not configured

2008-07-08 Thread Papp Tamas

Anders Trobäck wrote:

On Mon, 07 Jul 2008 23:21:15 +0200
Papp Tamas [EMAIL PROTECTED] wrote:

  

hi All,

I have a new Exabyte VXA-320, I show it in dmesg as sa0.
When I try to access it  for example by mt, it says, Device not
configured, and of cource is not working.

sa0 at ahd0 bus 0 target 2 lun 0
sa0: IBM VXA-3 320C Removable Sequential Access SCSI-3 device
sa0: 160.000MB/s transfers (80.000MHz DT, offset 126, 16bit)


What do I miss?

Thank you very much,

tamas



What is the exact command you are using?


  

mt -f /dev/sa0


Thanks,

tamas
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: tape device not configured

2008-07-08 Thread Papp Tamás
Papp Tamas wrote: 

mt -f /dev/sa0


I mean mt -f /dev/sa0 status

But actually I recogniozed, it was a cleaning tape.

I'm sorry:)

Thank you,

tamas
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: No serial console input in loader

2008-07-08 Thread Anselm Strauss

On Jun 28, 2008, at 13:15 , Anselm Strauss wrote:


Hi,

I have a small router that has no video output, it only supports a  
serial console. I configured the serial console in /boot/ 
boot.config, /boot/loader.conf and /etc/ttys. It's working in the  
BIOS, on the boot prompt before the loader starts, and when logging  
in on the getty. The only place where it's not working correctly is  
at the loader prompt. I can see the loader menu and the logo, but I  
can't choose the boot entry or interrupt the timeout. I can't make  
any input at all. What could this be?


Cheers,
Anselm


Don't know what this was, but now it works. I use Grub to directly  
load /boot/loader as kernel. I set the serial console in the BIOS to  
115200 Baud. In Grub's menu.lst I then use:


serial --unit=0 --speed=115200
terminal serial

and in /boot/loader.conf:

console=comconsole
comconsole_speed=115200

Seems like this is all that is needed.

Anselm
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: bsdlabel has no effect

2008-07-08 Thread Anselm Strauss

On Jun 28, 2008, at 13:25 , Anselm Strauss wrote:


Hi,

originally I had the following labels on my ad0 disk (no partitions,  
directly labeled /dev/ad0):


# /dev/ad0:
8 partitions:
#size   offsetfstype   [fsize bsize bps/cpg]
 a: 1048576 04.2BSD 1024  8192 46248
 c: 1048576 0unused0 0 # raw part,  
don't edit


Since this was written from a file image the my compact flash card,  
and the card has now 8GB instead of 512MB, I wanted to grow the  
labels after having booted the system, and that worked. So now it is:


# /dev/ad0:
8 partitions:
#size   offsetfstype   [fsize bsize bps/cpg]
 a: 1566230404.2BSD 1024  8192 46248
 c: 156623040unused0 0 # raw part,  
don't edit


But unfortunately, I also grew label 'a', although I did not grow  
the filesystem. What I actually wanted was to stay 'a' the size it  
is and add new labels. So I tried to shrink 'a' again, to finally  
have something like:


# /dev/ad0:
8 partitions:
#size   offsetfstype   [fsize bsize bps/cpg]
 a:  104857604.2BSD 1024  8192 46248
 c: 156623040unused0 0 # raw part,  
don't edit


before adding new labels. But somehow bsdlabel has no effect when  
shrinking 'a'. No error or verbose message, the labels are just the  
same before running it, whether I use the edit mode or restore mode.


Am I not supposed to shrink a label like that?

Cheers,
Anselm



Okay, this was of course since I tried to resize a partition that is  
mounted. I guess this will never work, even when the filesystem  
actually already has the size the partition should be shrunk to. I  
think there is no other way of resizing the root partition/filesystem  
without booting a different system than the one on this partition.


Anselm

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


how to mount USB drive on system startup

2008-07-08 Thread Zbigniew Szalbot

Dear all,

I am trying to make sure my USB hard drive will be available when system 
has finished booting. So:

$ grep usbd /etc/rc.conf
usbd_enable=YES

and
$ grep backup /etc/fstab
/dev/ad3s1d /backup ufs rw  2   2

But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains 
that it cannot mount /backup.


mount: /backup: No such file or directory
Mounting /etc/fstab filesystem failed. Startup aborted.

I am sure there is something very simple that I need to do, so I'll 
appreciate your suggestions! Thanks!


--
Zbigniew Szalbot
www.LCWords.com


smime.p7s
Description: S/MIME Cryptographic Signature


Re: Capturing ATA devices serial numbers

2008-07-08 Thread Gonzalo Nemmi
On Monday 07 July 2008 19:24:36 Wojciech Puchar wrote:
 atacontrol cap device

_Really_nice_ ...
Will add it to my repertoire :)
thanks for the hint Wojciech !

-- 
Blessings
Gonzalo Nemmi
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: how to mount USB drive on system startup

2008-07-08 Thread Odhiambo Washington
On Tue, Jul 8, 2008 at 10:45 AM, Zbigniew Szalbot
[EMAIL PROTECTED] wrote:
 Dear all,

 I am trying to make sure my USB hard drive will be available when system has
 finished booting. So:
 $ grep usbd /etc/rc.conf
 usbd_enable=YES

 and
 $ grep backup /etc/fstab
 /dev/ad3s1d /backup ufs rw  2   2

 But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it
 cannot mount /backup.

 mount: /backup: No such file or directory
 Mounting /etc/fstab filesystem failed. Startup aborted.

 I am sure there is something very simple that I need to do, so I'll
 appreciate your suggestions! Thanks!

mkdir /backup



-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

Oh My God! They killed init! You Bastards!
 --from a /. post
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


subversion build problem

2008-07-08 Thread Warren Liddell
===  Building package for apr-gdbm-db42-1.3.2
Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz
Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1.
Registering conflicts: apr-*.
Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz'

===   Returning to build of subversion-1.5.0_1
Error: shared library apr-1.2 does not exist
*** Error code 1


Any ideas/thoughts appreciated.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: how to mount USB drive on system startup

2008-07-08 Thread Zbigniew Szalbot

Hello,

Odhiambo Washington:

On Tue, Jul 8, 2008 at 10:45 AM, Zbigniew Szalbot
[EMAIL PROTECTED] wrote:

Dear all,

I am trying to make sure my USB hard drive will be available when system has
finished booting. So:
$ grep usbd /etc/rc.conf
usbd_enable=YES

and
$ grep backup /etc/fstab
/dev/ad3s1d /backup ufs rw  2   2

But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it
cannot mount /backup.

mount: /backup: No such file or directory
Mounting /etc/fstab filesystem failed. Startup aborted.

I am sure there is something very simple that I need to do, so I'll
appreciate your suggestions! Thanks!


mkdir /backup


[shaking my head in disbelief...] it should have been so easy! Shame on 
me :)


Many thanks!

--
Zbigniew Szalbot
www.LCWords.com


smime.p7s
Description: S/MIME Cryptographic Signature


Re: automount is not recognizing option longname

2008-07-08 Thread Mel
On Monday 07 July 2008 17:38:55 Stevan Tiefert wrote:
 Hello list,

 I have setup amd and it works fine. Only one special situation is making me
 crazy. When I want to use a USB-Stick without data on it, amd is mounting
 it with the 8.3-limitation. I've added the option longname in my map-file
 but it still ignores this option... Does somebody knows about this
 behavior?

 My amd.map:

 usb type:=pcfs;opts:=utimout=1,longname;dev:=/dev/da0s1


I'm taking a guess here, but if it has 'no data', could it be that it's 
formatted FAT, as in FAT-8, not 16 or 32, cause then longname support is 
rejected by the filesystem itself.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Ivailo Tanusheff
Hi,

I guess the problem is with your netmask and respectivly the broadcast 
adrresses for the jails.
It should be:

inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255
inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255

Regards,

Ivailo Tanusheff
Deputy Head of IT Department
ProCredit Bank (Bulgaria) AD




Jason Morgan [EMAIL PROTECTED] 
Sent by: [EMAIL PROTECTED]
07.07.2008 21:01

To
FreeBSD Questions freebsd-questions@freebsd.org
cc

Subject
Re: Jails and IP Aliasing






Hello,

On 2008.07.07 09:51:33, David Allen wrote:
 Unless I'm losing my mind, I'm encountering what seems to yet another
 gotcha with jails.  The following has been dumbed down for clarity and
 brevity.
 
 -
 # hostname
 jailhost.example.org
 
 # host jailhost
 jailhost.example.org has address 10.0.1.2
 
 # ifconfig fxp0
 fxp0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 
1500
 options=bRXCSUM,TXCSUM,VLAN_MTU
 ether 00:07:e9:c8:2e:32
 inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
 inet 10.0.1.3 netmask 0x broadcast 10.0.1.3
 inet 10.0.1.4 netmask 0x broadcast 10.0.1.4
 media: Ethernet autoselect (100baseTX full-duplex)
 status: active

This is the output for my jail interface. Notice that your jail
aliases are broadcasting on the jail's IP. I don't know if this is an
issue or not (my jails run on i386 FBSD 6.3), but it's something to
look at. How are you setting the aliases?

sk0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
 options=bRXCSUM,TXCSUM,VLAN_MTU
 inet 10.0.0.1 netmask 0xff00 broadcast 10.0.0.255
 inet 10.0.0.101 netmask 0xff00 broadcast 10.0.0.255
 inet 10.0.0.201 netmask 0xff00 broadcast 10.0.0.255
 ether xx:xx:xx:xx:xx:xx
 media: Ethernet autoselect (1000baseTX full-duplex,flag0,flag1)
 status: active

Cheers,
~Jason
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
[EMAIL PROTECTED]

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


How to disable that an user execute any command

2008-07-08 Thread DSA - JCR
Hi all

I use FreeBSD 6.2, and GELI

I want to make an user for the only task of remove/insert the usb copy disk.

I have made a new user (operator group), and a shell task that ask for the
GELI password and fsck and mount the USB disk. This work fine under root.

but I think that if he/she want to make CTRL-C to the shell task, he can
stop the task and then enter in the system and look whatever he wants (for
example, how the things are done).

How can I stop him from entering this CTRL-C (and others than could be) ?

I want this because there is intelectual propierty behind this.


Thanks in advance

Juan Coruña
Desarrollo de Software Atlantico




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Mel
On Monday 07 July 2008 18:51:33 David Allen wrote:

 Granted, everything is really happening over the loopback address, but a
 connection originating from the jailhost to a jail should appear to be
 using the jailhost's IP address, or so I'd like to think.  If it doesn't,
 then the scenario is awkward at best when trying to understand or debug
 issues.

To debug this, you need to 'add jail support to sockstat'. This sounds hard, 
and it is, but you can fake it, since sockstat gives you the PID. With a 
little creative scripting, you can call `ps -o state' for each PID in the 
list, look for the capital 'J' and if it is, add the 'J' to the line.

 The thought occurred to me, however, that I could add a new network card
 and reserve that for the IP aliases needed by the jails.  But I'm not sure
 whether that will work in telling me who's who, or whether I'll discover
 another gotcha.  ;-)

It will add more gotcha's, unless you put each network card in a different 
network. With the IP's given here, you tell the host that 10.0.1.0/24 is on 
fxp0, so it will never go to fxp1 for 10.0.1.4.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Mel
On Tuesday 08 July 2008 11:13:04 Ivailo Tanusheff wrote:
 Hi,

 I guess the problem is with your netmask and respectivly the broadcast
 adrresses for the jails.
 It should be:

 inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
 inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255
 inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255

You guess wrong. Aliases SHOULD (as in IETF RFC should) have 255.255.255.255 
netmask.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: automount is not recognizing option longname

2008-07-08 Thread Stevan Tiefert
Am Dienstag, 8. Juli 2008 10:57:39 schrieb Mel:
 On Monday 07 July 2008 17:38:55 Stevan Tiefert wrote:
  Hello list,
 
  I have setup amd and it works fine. Only one special situation is making
  me crazy. When I want to use a USB-Stick without data on it, amd is
  mounting it with the 8.3-limitation. I've added the option longname in my
  map-file but it still ignores this option... Does somebody knows about
  this behavior?
 
  My amd.map:
 
  usb type:=pcfs;opts:=utimout=1,longname;dev:=/dev/da0s1

 I'm taking a guess here, but if it has 'no data', could it be that it's
 formatted FAT, as in FAT-8, not 16 or 32, cause then longname support is
 rejected by the filesystem itself.

No it is not formatted as FAT16. When I use manually:
# mount -t msdosfs -o longnames /dev/da0s1 /mnt
and then copy files on the empty USB-Stick via:
# cp * /mnt
then the longnames are recognized... This problem is only appearing when I use 
amd!

But it was a good guess :-)

Maybe other ideas?
Stevan Tiefert

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Ivailo Tanusheff
No, I am right.
Try it yourself and you will see that solves the issue. I have several 
jails on different machines and this way the system works without any 
error or problem.
Try it and see it :)

Regards,

Ivailo Tanusheff




Mel [EMAIL PROTECTED] 
Sent by: [EMAIL PROTECTED]
08.07.2008 12:38

To
freebsd-questions@freebsd.org
cc

Subject
Re: Jails and IP Aliasing






On Tuesday 08 July 2008 11:13:04 Ivailo Tanusheff wrote:
 Hi,

 I guess the problem is with your netmask and respectivly the broadcast
 adrresses for the jails.
 It should be:

 inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
 inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255
 inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255

You guess wrong. Aliases SHOULD (as in IETF RFC should) have 
255.255.255.255 
netmask.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
[EMAIL PROTECTED]

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: How to disable that an user execute any command

2008-07-08 Thread Dez Accid

DSA - JCR wrote:

I want to make an user for the only task of remove/insert the usb copy disk.

I have made a new user (operator group), and a shell task that ask for the
GELI password and fsck and mount the USB disk. This work fine under root.

but I think that if he/she want to make CTRL-C to the shell task, he can
stop the task and then enter in the system and look whatever he wants (for
example, how the things are done).

How can I stop him from entering this CTRL-C (and others than could be) ?


If I understand your question correctly, you want to prevent an 
interactive user running a shell script from breaking out of it via 
CTRL-C and entering the shell directly.


In that case, you can achieve this functionality in your shell script 
with the use of trap command.


E.g. this line will print Ignoring CTRL-C on CTRL-C keypress which 
generates an INT (number 2) signal:


trap echo 'Ignoring INT signal' 2

This page http://www.shelldorado.com/goodcoding/tempfiles.html describes 
the shell signals quite well, you may want to give it a read.


Thanks!

--
Dez Accid

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: subversion build problem

2008-07-08 Thread Fraser Tweedale
On Tue, Jul 08, 2008 at 06:26:56PM +1000, Warren Liddell wrote:
 ===  Building package for apr-gdbm-db42-1.3.2
 Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz
 Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1.
 Registering conflicts: apr-*.
 Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz'
 
 ===   Returning to build of subversion-1.5.0_1
 Error: shared library apr-1.2 does not exist
 *** Error code 1
 
 
 Any ideas/thoughts appreciated.

There was an apr version bump.  The subversion port was updated
earlier to day in order to chase this change.  Update your ports
tree and you should find that it will then compile without
problems.

frase



pgpM9KdxJQlDC.pgp
Description: PGP signature


Re: subversion build problem

2008-07-08 Thread Giorgos Keramidas
On Tue, 8 Jul 2008 20:45:49 +1000, Fraser Tweedale [EMAIL PROTECTED] wrote:
 On Tue, Jul 08, 2008 at 06:26:56PM +1000, Warren Liddell wrote:
 ===  Building package for apr-gdbm-db42-1.3.2
 Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz
 Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1.
 Registering conflicts: apr-*.
 Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz'

 ===   Returning to build of subversion-1.5.0_1
 Error: shared library apr-1.2 does not exist
 *** Error code 1

 Any ideas/thoughts appreciated.

 There was an apr version bump.  The subversion port was updated
 earlier to day in order to chase this change.  Update your ports
 tree and you should find that it will then compile without
 problems.

ACK...

I was bitten by the apr-1.2 / apr-1.3 version bump, and I can verify
that the new port builds fine here too.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: difference between loading kernel module during boot and after boot manually?

2008-07-08 Thread Vincent Barus
On Sun, Jun 22, 2008 at 11:29 PM, Vincent Barus [EMAIL PROTECTED] wrote:
 Hi everybody,

 is there a difference between loading a kernel module during the boot process
 and loading a module manually after the login?
 I'm asking this on a general basis and because of pr: kern/123563.
 I don't know if it's a problem with if_re because I can't find someone
 out on the net
 having the same problem.
 The driver if_re works after laoding it manually after the login and I
 have no problems
 with it after this manual kldload if_re.

 Can you guys give me a hint how to get further with the troubleshooting 
 because
 I can't find any difference with pciconf or the boot -v messages.

 Pyun did a nice job with if_re and shame on me for making his driver 
 responsible
 at first but that's the only driver I can reproduce this problem with
 so I don't know
 if there's a hardware / driver / base issue.

 The facts about my configuration etc. is in
 http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/123563

 If you want more information please write me.

 Thanks and kind regards,

 Vincent


Hi all,

does anyone have an idea what's the difference or what _could_ be the
difference on loading a kernel module during boot or manually?

Regards,

Vincent
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread David Allen
On Mon, Jul 7, 2008 at 2:01 PM, George Hartzell [EMAIL PROTECTED] wrote:

 Did you take the necessary steps to restrict the IP addresses on which
 sendmail on the host and the jail listen?  The jail man page only
 says:

I don't think anyone would get too far with jails in general if the
jail host wasn't properly configured beforehand.  To answer your
question, sendmail on the jail host is listening to the loopback
address only.  And to the extent it's not redundant or meaningless,
within each jail, sendmail is configured to listen to the jail's IP
address only.

Regrettably, the problem isn't specific to sendmail or any other
service, as an ssh connection would exhibit identical behaviour.  Put
simply, all connections from the jail host to any jail are reported as
using that jail's IP address only.  Doesn't matter if your viewing the
state from the perspective of the jail host, or from within the jail
itself.   Both ends of the connection have the same IP address.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: How to disable that an user execute any command

2008-07-08 Thread Kirk Strauser
On Tuesday 08 July 2008, DSA - JCR wrote:

 but I think that if he/she want to make CTRL-C to the shell task, he can
 stop the task and then enter in the system and look whatever he wants
 (for example, how the things are done).

Use sudo to allow non-root users to run that script as root.  If they hit 
^C, they get dropped right back to their own account.

 I want this because there is intelectual propierty behind this.

Don't put trade secrets in shell scripts.
-- 
Kirk Strauser


signature.asc
Description: This is a digitally signed message part.


Re: difference between loading kernel module during boot and after boot manually?

2008-07-08 Thread David Gurvich
I don't know what the difference is, but there is one.  I have a system
that automatically reboots if nvidia is added to /boot/loader.conf on
FreeBSD7. If the module is loaded from the loader prompt the system
boots and xorg works.  I now use solaris on that system as FreeBSD had
all sorts of issues, but I recall adding a kldload statement to a
startup script.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: bsdlabel has no effect

2008-07-08 Thread Jerry McAllister
On Tue, Jul 08, 2008 at 09:19:09AM +0200, Anselm Strauss wrote:

 On Jun 28, 2008, at 13:25 , Anselm Strauss wrote:
 
 Hi,
 
 originally I had the following labels on my ad0 disk (no partitions,  
 directly labeled /dev/ad0):
 
 # /dev/ad0:
 8 partitions:
 #size   offsetfstype   [fsize bsize bps/cpg]
  a: 1048576 04.2BSD 1024  8192 46248
  c: 1048576 0unused0 0 # raw part,  
 don't edit
 
 Since this was written from a file image the my compact flash card,  
 and the card has now 8GB instead of 512MB, I wanted to grow the  
 labels after having booted the system, and that worked. So now it is:
 
 # /dev/ad0:
 8 partitions:
 #size   offsetfstype   [fsize bsize bps/cpg]
  a: 1566230404.2BSD 1024  8192 46248
  c: 156623040unused0 0 # raw part,  
 don't edit
 
 But unfortunately, I also grew label 'a', although I did not grow  
 the filesystem. What I actually wanted was to stay 'a' the size it  
 is and add new labels. So I tried to shrink 'a' again, to finally  
 have something like:
 
 # /dev/ad0:
 8 partitions:
 #size   offsetfstype   [fsize bsize bps/cpg]
  a:  104857604.2BSD 1024  8192 46248
  c: 156623040unused0 0 # raw part,  
 don't edit
 
 before adding new labels. But somehow bsdlabel has no effect when  
 shrinking 'a'. No error or verbose message, the labels are just the  
 same before running it, whether I use the edit mode or restore mode.
 
 Am I not supposed to shrink a label like that?
 
 Cheers,
 Anselm
 
 
 Okay, this was of course since I tried to resize a partition that is  
 mounted. I guess this will never work, even when the filesystem  
 actually already has the size the partition should be shrunk to. I  
 think there is no other way of resizing the root partition/filesystem  
 without booting a different system than the one on this partition.

Yes, you have to unmount the partition/filesystem before you can 
modify its configuration.

Just boot the install CD and bring up the fixit.  Then you
can work on it just fine.   Just remember that it may have 
different device addresses (not necessarily, but might) and
that you will need to make mount points if you need to mount
anything to muck with files in a partition.   Also, note that
on a fixit boot, those mount points (and root) are in a memory 
file system and will be gone after the next boot.

I hope you have a good backup of your 'a' partition because it may
now not be happy.

jerry
   
 
 Anselm
 
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: how to mount USB drive on system startup

2008-07-08 Thread Jerry McAllister
On Tue, Jul 08, 2008 at 09:45:55AM +0200, Zbigniew Szalbot wrote:

 Dear all,
 
 I am trying to make sure my USB hard drive will be available when system 
 has finished booting. So:
 $ grep usbd /etc/rc.conf
 usbd_enable=YES
 
 and
 $ grep backup /etc/fstab
 /dev/ad3s1d   /backup ufs rw  2   2
 
 But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains 
 that it cannot mount /backup.
 
 mount: /backup: No such file or directory
 Mounting /etc/fstab filesystem failed. Startup aborted.
 
 I am sure there is something very simple that I need to do, so I'll 
 appreciate your suggestions! Thanks!

Well, the first thing that comes to mind is, did you make
the /backup mountpoint   eg  'mkdir /backup'  at some time?
Is it really there?

Next question is, did you build a filesystem on the USB?  eg
 [fdisk] bsdlabel and newfs  

Check it by running fdisk and bsdlabel on it just to read what it 
thinks is there, as in:
   fdisk ad3
   bsdlabel ad3s1

I make all my USB stuff as 'noauto' in /etc/fstab and then manually
mount them later when needed and I have never had a problem - with
either ufs or msdos filesystem types.   I don't think you have to
do it that way, but check it out and see if it makes any difference.
eg change 'rw'  to  'rw,noauto'  in fstab, boot and then try to
do the mount.

If it makes a difference, then maybe there is something to file
a PR on, but it would take further investigation to nail it down.

jerry

 
 -- 
 Zbigniew Szalbot
 www.LCWords.com

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Procmail error

2008-07-08 Thread Frank Shute
On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote:

  
   Probably the wrong forum for this, but since it's on a freebsd system:
   
   I have mutt installed on two other freebsd computers.  I fetch pop
   mail via getmail, and procmail puts things where they belong.  I just
   installed freebsd 7.0 on another computer with what I thought were the
   exact same settings for all of the mail programs involved.  When I try
   to retrieve mail I get this error message:
   
   Delivery error (command procmail 3695 error (127, exec of command
   procmail failed (refuse to invoke external commands as root or GID 0
   by default)))
   
   I'm a relative newbie here and would appreciate it if someone could
   give me a heads up on this.
   
   Rem
  
  Are you running getmail as root?
 
 Boy, I hope not.  And I have this entry in my aliases file: 
 
 root: rem
 
 so I'm not collecting mail as root.
 

What does your getmailrc look like?

I've got this section in there. You should have similar:

[destination]
type = MDA_external
path = /usr/local/bin/procmail
user = frank


-- 

 Frank 


 Contact info: http://www.shute.org.uk/misc/contact.html 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Procmail error

2008-07-08 Thread Rem P Roberti
On 2008.07.08 16:46:18 +, Frank Shute wrote:
 On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote:
 
   
Probably the wrong forum for this, but since it's on a freebsd system:

I have mutt installed on two other freebsd computers.  I fetch pop
mail via getmail, and procmail puts things where they belong.  I just
installed freebsd 7.0 on another computer with what I thought were the
exact same settings for all of the mail programs involved.  When I try
to retrieve mail I get this error message:

Delivery error (command procmail 3695 error (127, exec of command
procmail failed (refuse to invoke external commands as root or GID 0
by default)))

I'm a relative newbie here and would appreciate it if someone could
give me a heads up on this.

Rem
   
   Are you running getmail as root?
  
  Boy, I hope not.  And I have this entry in my aliases file: 
  
  root:   rem
  
  so I'm not collecting mail as root.
  
 
 What does your getmailrc look like?
 
 I've got this section in there. You should have similar:
 
 [destination]
 type = MDA_external
 path = /usr/local/bin/procmail
 user = frank

Here is the entry I use:

[destination]
type = MDA_external
path = /usr/local/bin/procmail
unixfrom = True

This getmailrc file is the same one that I use on two other computers
with not problems.

Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread David Allen
On Tue, Jul 8, 2008 at 2:24 AM, Mel [EMAIL PROTECTED] wrote:
 On Monday 07 July 2008 18:51:33 David Allen wrote:

 Granted, everything is really happening over the loopback address, but a
 connection originating from the jailhost to a jail should appear to be
 using the jailhost's IP address, or so I'd like to think.  If it doesn't,
 then the scenario is awkward at best when trying to understand or debug
 issues.

 To debug this, you need to 'add jail support to sockstat'. This sounds hard,
 and it is, but you can fake it, since sockstat gives you the PID. With a
 little creative scripting, you can call `ps -o state' for each PID in the
 list, look for the capital 'J' and if it is, add the 'J' to the line.

Been there and done that.  When I first stated working with jails, I
discovered that most standard utilities didn't offer any support for
jails, and chaining commands got to be really old fast.   I ended up
writing a few Perl scripts and routinely use those instead.  IIRC,
there's a jail-related port that offers a collection of something
similar.

Still, we're talking about a very limited subset of tools and
functionality.  What about tcpdump?  Or firewall rules?  Or any other
network tool?

There was a post recently (Matthew Seaman's name comes to mind) that
suggested binding jails to addresses in the loopback range and then
using firewall rules to redirect the traffic accordingly.  There's a
possibility that may help in this case, but that layer of added
complexity isn't much of an improvement over seeing connections with
seemingly identical endpoints and interpreting the results in my head.

 The thought occurred to me, however, that I could add a new network card
 and reserve that for the IP aliases needed by the jails.  But I'm not sure
 whether that will work in telling me who's who, or whether I'll discover
 another gotcha.  ;-)

 It will add more gotcha's, unless you put each network card in a different
 network. With the IP's given here, you tell the host that 10.0.1.0/24 is on
 fxp0, so it will never go to fxp1 for 10.0.1.4.

You're probably right.  I'm wondering, though, if by moving the jails
into their own network space and adding routing into the mix, the end
result may be more satisfactory?

Setting aside the fun of mental gymnastics, the conclusion seems to be
don't run anything on the jail host that would initiate a connection
to a service running inside a jail.  Unless, of course, you don't mind
being confused (at least from a networking perspective) by WTF you're
seeing.  ;-)

Either way, thanks very much for the input.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Procmail error

2008-07-08 Thread Frank Shute
On Tue, Jul 08, 2008 at 08:52:33AM -0700, Rem P Roberti wrote:

 On 2008.07.08 16:46:18 +, Frank Shute wrote:
  On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote:
  

 Probably the wrong forum for this, but since it's on a freebsd system:
 
 I have mutt installed on two other freebsd computers.  I fetch pop
 mail via getmail, and procmail puts things where they belong.  I just
 installed freebsd 7.0 on another computer with what I thought were the
 exact same settings for all of the mail programs involved.  When I try
 to retrieve mail I get this error message:
 
 Delivery error (command procmail 3695 error (127, exec of command
 procmail failed (refuse to invoke external commands as root or GID 0
 by default)))
 
 I'm a relative newbie here and would appreciate it if someone could
 give me a heads up on this.
 
 Rem

Are you running getmail as root?
   
   Boy, I hope not.  And I have this entry in my aliases file: 
   
   root: rem
   
   so I'm not collecting mail as root.
   
  
  What does your getmailrc look like?
  
  I've got this section in there. You should have similar:
  
  [destination]
  type = MDA_external
  path = /usr/local/bin/procmail
  user = frank
 
 Here is the entry I use:
 
 [destination]
 type = MDA_external
 path = /usr/local/bin/procmail
 unixfrom = True
 
 This getmailrc file is the same one that I use on two other computers
 with not problems.
 

The problem is that you're invoking getmail as root on this machine
and not the others.

http://pyropus.ca/software/getmail/troubleshooting.html#error-messages

-- 

 Frank 


 Contact info: http://www.shute.org.uk/misc/contact.html 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


rblsmtpd/qmail-smtpd hung processes

2008-07-08 Thread Brad Mettee
I've run into a bit of a problem and if I don't solve it soon, I'm going to 
be without e-mail (and so will a lot of other people). This is a bit long, 
I'm trying to include anything that may help.


The problem is that qmail-smtpd and/or rblsmtpd get stuck and don't close. 
After a while the server just quits accepting smtp connections, or will 
connect/disconnect very quickly (connection closed by foreign host). Using 
kill on these processes just opens another instance of them (they're 
managed by /var/service). Since I'm not seeing any log activity that shows 
what's going on, I'm having a hard time figuring it out. I know the 
processes are supposed to be timing out and closing, but don't seem to be 
doing that


Has anyone seen this problem? I've tried searching for info on it, but 
can't find anything that looks similar. I currently have rblsmtpd disabled 
since it sits between the outside world and qmail-smtpd. The errors don't 
occur quickly, it seems to take multiple hours to occur so this is hard to 
debug because I can't create the problem on demand. Any ideas are welcome. 
(hopefully I'll be able to get mail from this address long enough to fix 
this - it's one of the ones that's been moved to this machine already)


uname -a
FreeBSD ns1.pchotshots.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun Feb 24 
10:35:36 UTC 
2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  amd64


Related ports in use:
ucspi-tcp-0.88_2
qmail-1.03_7
qmailadmin-1.2.10,1
vpopmail-5.4.26_1
dovecote-1.0.14

A quick bit of history:
Our email/dns provider is closing up shop in about a week (good friend of 
mine was a small ISP). I only had about 3 weeks notice on this and I've 
been configuring a pair of FreeBSD machines (I posted to the list a couple 
weeks ago, thanks everyone for good replies, ) to take over DNS and E-Mail 
for about a dozen sites. Basically I've been on a crash course of learning 
as I go.


Brad Mettee
PC HotShots, Inc.
Baltimore, MD
(410) 426-7617

 - Let us bring out the *Power* of your PCs. -
- Custom Business Software Solutions since 1991 -

visit http://www.pchotshots.com for information about our company.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Procmail error

2008-07-08 Thread Rem P Roberti
  What does your getmailrc look like?
  
  I've got this section in there. You should have similar:
  
  [destination]
  type = MDA_external
  path = /usr/local/bin/procmail
  user = frank
 
 Here is the entry I use:
 
 [destination]
 type = MDA_external
 path = /usr/local/bin/procmail
 unixfrom = True
 
 This getmailrc file is the same one that I use on two other computers
 with not problems.


Problem solved.  I added allow_root_commands = True to the
[destination] entries in the getmailrc and that fixed it.

Rem 
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Matthew Seaman

David Allen wrote:


There was a post recently (Matthew Seaman's name comes to mind) that
suggested binding jails to addresses in the loopback range and then
using firewall rules to redirect the traffic accordingly.  There's a
possibility that may help in this case, but that layer of added
complexity isn't much of an improvement over seeing connections with
seemingly identical endpoints and interpreting the results in my head.


Guilty as charged M'lud.

However what I recommended was a more-than-slightly hacky way to achieve 
three things:


  * Something like a loopback address inside the jail.  It may be
127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
to use it for loopback style things.

  * The ability to map several IPs onto the jailed system by use of
NAT and redirect within firewall rules

  * The ability to have a jail with /no/ external IP for when the
paranoia becomes unbearable[*].

Of course, all this will be immediately obsoleted by Marco Zec's work
on virtualizing the IP stack.  http://imunes.tel.fer.hr/virtnet/

Cheers,

Matthew

[*] Combine this with a Hardware Load Balancer that does Direct Server
Return and you can have a publicly accessible jailed server with /no 
external IP address/.  


--
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
 Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
 Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature


ports

2008-07-08 Thread kalin m

brand new install of freebsd 7. some httpd and named.
what are these?
udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*


thanks


# netstat -a
Active Internet connections (including servers)
Proto Recv-Q Send-Q  Local Address  Foreign Address(state)
tcp4   0  0  big.sshh-1-2-3-4.51366 ESTABLISHED
tcp4   0  0  big.sshh-74-1-12-15.wi.51362 
ESTABLISHED

tcp4   0  0  big.http   *.*LISTEN
tcp4   0  0  localhost.domain   *.*LISTEN
tcp4   0  0  big.domain *.*LISTEN
tcp4   0  0  localhost.smtp *.*LISTEN
tcp4   0  0  *.ssh  *.*LISTEN
tcp6   0  0  *.ssh  *.*LISTEN
udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*
udp4   0  0  localhost.domain   *.*
udp4   0  0  big.domain *.*
udp4   0  0  *.syslog   *.*
udp6   0  0  *.syslog   *.*
___

freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread Lowell Gilbert
kalin m [EMAIL PROTECTED] writes:

 brand new install of freebsd 7. some httpd and named.
 what are these?

Use sockstat(1) to find out?

 udp6   0  0  *.54168*.*
 udp4   0  0  *.54167*.*

 thanks


 # netstat -a
 Active Internet connections (including servers)
 Proto Recv-Q Send-Q  Local Address  Foreign Address(state)
 tcp4   0  0  big.sshh-1-2-3-4.51366 ESTABLISHED
 tcp4   0  0  big.sshh-74-1-12-15.wi.51362
 ESTABLISHED
 tcp4   0  0  big.http   *.*LISTEN
 tcp4   0  0  localhost.domain   *.*LISTEN
 tcp4   0  0  big.domain *.*LISTEN
 tcp4   0  0  localhost.smtp *.*LISTEN
 tcp4   0  0  *.ssh  *.*LISTEN
 tcp6   0  0  *.ssh  *.*LISTEN
 udp6   0  0  *.54168*.*
 udp4   0  0  *.54167*.*
 udp4   0  0  localhost.domain   *.*
 udp4   0  0  big.domain *.*
 udp4   0  0  *.syslog   *.*
 udp6   0  0  *.syslog   *.*
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]


-- 
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


RE: Capturing ATA devices serial numbers

2008-07-08 Thread Vaughn Clinton
Okay - I've tried this against two devices in the system.  The devices
queried are report as ad0 and ad2.  When using the following command against
either device I get the following response: 

usage: atacontrol command channel [args]

Now, it must be noted that I am using a ccd device that's has both these
devices configured as member of the ccd configuration.  I'm pretty sure that
this should not interfere with the query but, I thought I would let you
know.

Any further suggestions would be greatly appreciated.

Cheers,



-Original Message-
From: Wojciech Puchar [mailto:[EMAIL PROTECTED] 
Sent: Monday, July 07, 2008 4:25 PM
To: Vaughn Clinton
Cc: [EMAIL PROTECTED]
Subject: Re: Capturing ATA devices serial numbers

atacontrol cap device


On Mon, 7 Jul 2008, Vaughn Clinton wrote:

 All,



 I'm looking for a FreeBSD utility that will allow me to query a disk for
its
 serial number.  Can you point me to such a tool that'll allow me to do so?



 Regards,





 *

 Vaughn E. Clinton

 Systems Analyst

 Scientific Computing Resources

 HPC-3

 Los Alamos National Laboratory



 505-606-2103 - Voice

 505-664-7819 - Pager

 *



 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
[EMAIL PROTECTED]




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Daniel Gerzo

Hello,

* Something like a loopback address inside the jail.  It may be
  127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
  to use it for loopback style things.
 
* The ability to map several IPs onto the jailed system by use of
  NAT and redirect within firewall rules
 
* The ability to have a jail with /no/ external IP for when the
  paranoia becomes unbearable[*].

Most of this is actually implemented by [EMAIL PROTECTED] You can find some 
patches
at http://sources.zabbadoz.net/freebsd/jail.html 

-- 
Best regards,
  Daniel Gerzo

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


ipf question

2008-07-08 Thread ann kok
Hi all

I am using ipf associated with ippool.  When I need to change 
/etc/ipf/ippool.conf, say add a new member in a group, ippool -F  and ippool -f 
/etc/ipf/ippool.conf doesn't seem to work.  I also tried reloading the ipfilter 
rule by 'ipf -Fa -f /etc/ipf/ipf.conf', but ipf doesn't seem to re-read the 
ippool.conf

The only way that has worked is to 'ipf -D' and then 'ipf -E', manually reload 
ippool and then reload the ipf.conf .  But this is not ideal for me since 
restarting the ipf would flush the state table, thus disconnect existing 
connection.

Is there any way to make change to ippool without dropping connectivity?

Thank you


  
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread Matthew Seaman

Lowell Gilbert wrote:

kalin m [EMAIL PROTECTED] writes:


brand new install of freebsd 7. some httpd and named.
what are these?


Use sockstat(1) to find out?


udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*


Almost certainly named -- it appears to listen on a high numbered
UDP port, but all it is is the next /source/ port for an outgoing
UDP packet.  You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling) by:

   query-source   address 12.34.56.78 port 53;
   query-source-v6address 1999:::::1 port 53;
   transfer-source12.34.56.78 port 53;
   transfer-source-v6 1999:::::1 port 53;
   notify-source  12.34.56.78 port 53;
   notify-source-v6   1999:::::1 port 53;

Cheers,

Matthew

--
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
 Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
 Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature


Re: Jails and IP Aliasing

2008-07-08 Thread Chris St Denis

Daniel Gerzo wrote:

Hello,

  

   * Something like a loopback address inside the jail.  It may be
 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
 to use it for loopback style things.

   * The ability to map several IPs onto the jailed system by use of
 NAT and redirect within firewall rules

   * The ability to have a jail with /no/ external IP for when the
 paranoia becomes unbearable[*].



Most of this is actually implemented by [EMAIL PROTECTED] You can find some 
patches
at http://sources.zabbadoz.net/freebsd/jail.html 
  
These patches (in various forms) have been around since version 4.x. Why 
has none of this functionality ever been committed to head?

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread Yuri Pankov
On Tue, Jul 08, 2008 at 12:14:54PM -0400, kalin m wrote:
 brand new install of freebsd 7. some httpd and named.
 what are these?
 udp6   0  0  *.54168*.*udp4   
 0  0  *.54167*.*

 thanks

Try using sockstat(1) to find which app is listening there:
sockstat -6p54168
sockstat -4p54167


HTH,
Yuri
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread Mel
On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:

 You can configure named to always send packets using a
 fixed port number (which can be helpful for firewalling)

Purely outof interest, which (useful) firewall/nat rules cannot be made with 
dest port 53, that can be made with source port 53. Not talking syntax, 
but business logically.
-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: difference between loading kernel module during boot and after boot manually?

2008-07-08 Thread Mel
On Tuesday 08 July 2008 16:48:26 Vincent Barus wrote:

 does anyone have an idea what's the difference or what _could_ be the
 difference on loading a kernel module during boot or manually?

There's one major difference. File systems aren't mounted at loader stage, so 
any reference to modules/libraries that exist on a different partition, will 
fail.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: quota and sendmail accepts 10k mail size

2008-07-08 Thread Derek Ragona

At 08:14 PM 7/7/2008, lyd mc wrote:

Greetings,

I setup my mail server on freebsd7.0R and it is working great!

However, I have a problem on quota. It suppose to block any incoming 
message to specific user which is under quota. But sendmail can still send 
to the user under quota if the mail size is ~ less than 10k. Quota only 
works when the mail size is  greater than 13k.


Is there any way to correct this problem? Please help.


By the way, i disable the grace period via quota.h.

   #define MAX_IQ_TIME (0) /* seconds in 1 week */
   #define MAX_DQ_TIME (0) /* seconds in 1 week */


And my mail users authenticate via ldap.

Thank you and more power.


I don't fully understand what you are trying to limit, most sendmail size 
limits are set either globally, or by protocol.  The General setting is set 
in you .mc file with:


confMAX_MESSAGE_SIZEMaxMessageSize  [infinite] The maximum size of messages
that will be accepted (in bytes).

Otherwise read through the page on the options here and you can refine the 
size limit by the protcol/mta:


http://www.sendmail.org/documentation/configurationReadme

-Derek


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread kalin m

right named...

thanks


Matthew Seaman wrote:

Lowell Gilbert wrote:

kalin m [EMAIL PROTECTED] writes:


brand new install of freebsd 7. some httpd and named.
what are these?


Use sockstat(1) to find out?


udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*


Almost certainly named -- it appears to listen on a high numbered
UDP port, but all it is is the next /source/ port for an outgoing
UDP packet.  You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling) by:

   query-source   address 12.34.56.78 port 53;
   query-source-v6address 1999:::::1 port 53;
   transfer-source12.34.56.78 port 53;
   transfer-source-v6 1999:::::1 port 53;
   notify-source  12.34.56.78 port 53;
   notify-source-v6   1999:::::1 port 53;

Cheers,

Matthew


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: wpa, static ip only on specific networks

2008-07-08 Thread Mel
On Tuesday 08 July 2008 03:32:10 David Gurvich wrote:

 How does one configure a wireless connection using wpa and dhcp on some
 networks and wpa with a static ip on others?

Tough.
I'd probably configure the interface as WPA inet 127.0.0.2 netmask 255.0.0.0 
and then put a script in /usr/local/etc/rc.d that would read out the BSSID 
and make it's descision accordingly.
-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread Mel
On Tuesday 08 July 2008 11:24:33 Mel wrote:
 On Monday 07 July 2008 18:51:33 David Allen wrote:
  Granted, everything is really happening over the loopback address, but a
  connection originating from the jailhost to a jail should appear to be
  using the jailhost's IP address, or so I'd like to think.  If it doesn't,
  then the scenario is awkward at best when trying to understand or debug
  issues.

 To debug this, you need to 'add jail support to sockstat'. This sounds
 hard, and it is

It's actually not that hard, though it stretches the output width. Diff 
inlined below sig, for RELENG_7. 

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.

Index: sockstat.c
===
RCS file: /home/ncvs/src/usr.bin/sockstat/sockstat.c,v
retrieving revision 1.17
diff -u -r1.17 sockstat.c
--- sockstat.c  16 Jun 2007 20:24:55 -  1.17
+++ sockstat.c  8 Jul 2008 19:40:11 -
@@ -94,6 +94,11 @@
struct sock *next;
 };
 
+struct procinfo {
+   const char *procname;
+   int jid;
+};
+
 #define HASHSIZE 1009
 static struct sock *sockhash[HASHSIZE];
 
@@ -513,13 +518,16 @@
return xprintf(%s:%d, addrstr, port);
 }
 
-static const char *
-getprocname(pid_t pid)
+static int
+getprocinfo(pid_t pid, struct procinfo *pi_ptr)
 {
static struct kinfo_proc proc;
size_t len;
int mib[4];
 
+   if( pi_ptr == NULL )
+   return -1;
+
mib[0] = CTL_KERN;
mib[1] = KERN_PROC;
mib[2] = KERN_PROC_PID;
@@ -529,9 +537,12 @@
/* Do not warn if the process exits before we get its name. */
if (errno != ESRCH)
warn(sysctl());
-   return (??);
+   return -1;
}
-   return (proc.ki_comm);
+   pi_ptr-procname = proc.ki_comm;
+   pi_ptr-jid = proc.ki_jid;
+
+   return (0);
 }
 
 static int
@@ -564,11 +575,12 @@
struct passwd *pwd;
struct xfile *xf;
struct sock *s;
+   struct procinfo pi;
void *p;
int hash, n, pos;
 
-   printf(%-8s %-10s %-5s %-2s %-6s %-21s %-21s\n,
-   USER, COMMAND, PID, FD, PROTO,
+   printf(%-8s %-10s %-5s %-5s %-2s %-6s %-21s %-21s\n,
+   USER, COMMAND, PID, JID, FD, PROTO,
LOCAL ADDRESS, FOREIGN ADDRESS);
setpassent(1);
for (xf = xfiles, n = 0; n  nxfiles; ++n, ++xf) {
@@ -583,33 +595,41 @@
if (!check_ports(s))
continue;
pos = 0;
+   if( -1 == getprocinfo(xf-xf_pid, pi) )
+   {
+   pi.procname = ??;
+   pi.jid = -1;
+   }
if ((pwd = getpwuid(xf-xf_uid)) == NULL)
pos += xprintf(%lu, (u_long)xf-xf_uid);
else
pos += xprintf(%s, pwd-pw_name);
while (pos  9)
pos += xprintf( );
-   pos += xprintf(%.10s, getprocname(xf-xf_pid));
+   pos += xprintf(%.10s, pi.procname);
while (pos  20)
pos += xprintf( );
pos += xprintf(%lu, (u_long)xf-xf_pid);
while (pos  26)
pos += xprintf( );
+   pos += xprintf(%u, pi.jid);
+   while (pos  32)
+   pos += xprintf( );
pos += xprintf(%d, xf-xf_fd);
-   while (pos  29)
+   while (pos  35)
pos += xprintf( );
pos += xprintf(%s, s-protoname);
if (s-vflag  INP_IPV4)
pos += xprintf(4);
if (s-vflag  INP_IPV6)
pos += xprintf(6);
-   while (pos  36)
+   while (pos  42)
pos += xprintf( );
switch (s-family) {
case AF_INET:
case AF_INET6:
pos += printaddr(s-family, s-laddr);
-   while (pos  58)
+   while (pos  64)
pos += xprintf( );
pos += printaddr(s-family, s-faddr);
break;
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Jails and IP Aliasing

2008-07-08 Thread David Allen
On Tue, Jul 8, 2008 at 9:35 AM, Matthew Seaman
[EMAIL PROTECTED] wrote:
 David Allen wrote:

 There was a post recently (Matthew Seaman's name comes to mind) that
 suggested binding jails to addresses in the loopback range and then
 using firewall rules to redirect the traffic accordingly.  There's a
 possibility that may help in this case, but that layer of added
 complexity isn't much of an improvement over seeing connections with
 seemingly identical endpoints and interpreting the results in my head.

 Guilty as charged M'lud.

Stand up, fool, lest I be forced to lower my knee and acknowledge your presence
in a manner befitting a man as yourself.

 However what I recommended was a more-than-slightly hacky way to achieve
 three things:

  * Something like a loopback address inside the jail.  It may be
127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
to use it for loopback style things.

  * The ability to map several IPs onto the jailed system by use of
NAT and redirect within firewall rules

  * The ability to have a jail with /no/ external IP for when the
paranoia becomes unbearable[*].

It could be said that those three expand into more numerous
achievements.  I'm still debating the more-than-slightly hacky aspects
of such an arrangement, but undeniably it's interesting enough.

 Of course, all this will be immediately obsoleted by Marco Zec's work
 on virtualizing the IP stack.  http://imunes.tel.fer.hr/virtnet/

Promising, even exciting, but I'm having trouble deciding whether I
declare a victory for the  triumph of optimism over experience, or
offer the comment that the Real Soon Now schedule is a disappointment?
Seriously, though, jails can be seen as the greatest thing since slide bread,
but I have this nagging feeling I'm at work writing a small book that details
their niggly shortcomings, a book whose completion, I hope, will be cut
short by the addition of New and Improved features.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Load balance for POP3

2008-07-08 Thread scuba
Hi Vince,

On Mon, 30 Jun 2008, Vince Hoffman wrote:

| | I need to switch the users connections between two POP3 servers based 
on
| | login information.
| | Since the login is part of the pop3 handshake, I'm stuck on how to
| | transfer the connection and pass the info already sent.
| 
|would nginx (as described here
|http://highscalability.com/nginx-high-performance-smpt-pop-imap-proxy)
|be more what your after?

Yes, it seems thar Nginx has what I need. Do you have any working 
setup? Thank you,

- Marcelo Souza


- Marcelo

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread David Allen
On Tue, Jul 8, 2008 at 11:04 AM, Mel
[EMAIL PROTECTED] wrote:
 On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:

 You can configure named to always send packets using a
 fixed port number (which can be helpful for firewalling)

 Purely outof interest, which (useful) firewall/nat rules cannot be made with
 dest port 53, that can be made with source port 53. Not talking syntax,
 but business logically.

Fewer rules for those with a predisposition to being anal?

IIRC, pf offers a policy-based approch which I believe could make use of
such distinctions, but I think the advantages of managing the
source/destination
ports for querries, transfers, etc. are found more in traffic accounting than in
writing rulesets.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Sound on amd64

2008-07-08 Thread Frank Shute
On Mon, Jul 07, 2008 at 01:41:34PM -0700, Kurt Buff wrote:

 First, my apologies - I sent my last missive to Conrad, and not to the
 list. I'm replying to myself with an update. Details below.
 
 Kurt
 
 On Sun, Jul 6, 2008 at 2:51 PM, Kurt Buff [EMAIL PROTECTED] wrote:
  On Sun, Jul 6, 2008 at 2:24 PM, Conrad J. Sabatier [EMAIL PROTECTED] 
  wrote:
  On Sun, 06 Jul 2008 10:25:58 +0200
  Tore Lund [EMAIL PROTECTED] wrote:
 
  Kurt Buff wrote:
   On Sat, Jul 5, 2008 at 8:48 PM, Conrad J. Sabatier [EMAIL PROTECTED]
   wrote:
   On Sat, 5 Jul 2008 19:02:09 -0700
   Kurt Buff [EMAIL PROTECTED] wrote:
   ...
   Do you have both the generic sound support (sound) as well as the
   specific hardware driver enabled in your kernel config?
  
   Sigh. Always something new to learn.
 
  Just wondering, why do people modify the kernel when kernel loadable
  modules can handle the sound card?  Is it necessary on some types of
  hardware?
 
  Well, probably the main reason most people do it is to strip away any
  unneeded functionality.  The GENERIC kernel contains a whole slew of
  drivers and options that most people don't need, but are intended to
  support a wide range of hardware configurations out of the box.  You
  can greatly reduce the kernel's size by only including the features you
  really need.
 
  I tried a new kernel, but that didn't work, for whatever reason, but
  editing loader.conf did, sort of. I tried adding
 
  sound_load=YES
  snd_hda_load=YES
  hint.pcm.0.config=gpio0 gpio1 gpio2 gpio3 gpio4 gpio5 gpio6 gpio7
 
  but while the cd player now works, I'm not getting output from the
  built-in speakers - it just sounds like it's coming from a long way
  away - I can barely make it out. I suppose that means it's coming from
  the headphone setup, but I'm not sure of that.
 
  I've been googling, but haven't figured this out yet.
 
  Kurt
 
 More careful reading shows that the hint line goes in
 /boot/device.hints, but placing it there does not improve the
 situation, though the sound does seem to be emitting from the
 speakers. It's just that it's very soft, and I can't get it any
 louder, though using the slider control in gnome will silence it.
 
 This is a recent Thinkpad T61, and grepping dmesg reveals that the
 sound system is detected as an Intel 82801H, and the codec used seems
 to be the Analog Devices AD1984.
 
 I'm running 7-STABLE, updated on Saturday.
 
 Thoughts on how to improve this would be much appreciated.
 Kurt

Have you had a play with mixer(8)?

E.g:

$ mixer vol
Mixer vol  is currently set to  75:75
$ mixer vol 70:70
Setting the mixer vol from 75:75 to 70:70.

Obviously, you'd want to raise the volume rather than reduce it like I
just did.

Regards,

-- 

 Frank 


 Contact info: http://www.shute.org.uk/misc/contact.html 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: FreeBSD + ZFS on a production server?

2008-07-08 Thread Kris Kennaway

Wojciech Puchar wrote:


ZFS on FreeBSD is GEOM-ified. While I believe what Wojciech said about
needing a full disk is correct under Solaris, it's not the case in


i never said it requires full disk. but it will work very slow sharing a 
disk with non-ZFS things.


Well, of course if you are loading your disk with too many seeks it will 
be slow.  This has nothing to do with ZFS.



to say more: zfs set copies could be usable to selectively mirror given
data while not mirroring other (using unprotected storage for ZFS).
but it's broken. it writes N copies under write, but don't remake
copies in case of failure!


which make it almost unusable. in case of any failure you have to copy 
and delete every file to make it actually repaired.


Eh?  It happens automatically.

Kris
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: FreeBSD + ZFS on a production server?

2008-07-08 Thread Kris Kennaway

Wojciech Puchar wrote:

ZFS can be installed on partitions and share disks with other things, 
but the performance will be bad.


There is nothing ZFS-specific about this statement.

ZFS - contrary to every other filesystem that use FreeBSD disk I/O 
scheduler - does it's own I/O scheduling, so it assumes it's the only 
user of physical drive.


This is false.  ZFS uses GEOM along with everything else in FreeBSD, and 
GEOM is the thing that eventually talks to the disk driver to perform I/O.


Kris

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Fwd: Sound on amd64

2008-07-08 Thread Kurt Buff
On Tue, Jul 8, 2008 at 1:20 PM, Frank Shute [EMAIL PROTECTED] wrote:
 On Mon, Jul 07, 2008 at 01:41:34PM -0700, Kurt Buff wrote:

 First, my apologies - I sent my last missive to Conrad, and not to the
 list. I'm replying to myself with an update. Details below.

 Kurt

 On Sun, Jul 6, 2008 at 2:51 PM, Kurt Buff [EMAIL PROTECTED] wrote:
  On Sun, Jul 6, 2008 at 2:24 PM, Conrad J. Sabatier [EMAIL PROTECTED] 
  wrote:
  On Sun, 06 Jul 2008 10:25:58 +0200
  Tore Lund [EMAIL PROTECTED] wrote:
 
  Kurt Buff wrote:
   On Sat, Jul 5, 2008 at 8:48 PM, Conrad J. Sabatier [EMAIL PROTECTED]
   wrote:
   On Sat, 5 Jul 2008 19:02:09 -0700
   Kurt Buff [EMAIL PROTECTED] wrote:
   ...
   Do you have both the generic sound support (sound) as well as the
   specific hardware driver enabled in your kernel config?
  
   Sigh. Always something new to learn.
 
  Just wondering, why do people modify the kernel when kernel loadable
  modules can handle the sound card?  Is it necessary on some types of
  hardware?
 
  Well, probably the main reason most people do it is to strip away any
  unneeded functionality.  The GENERIC kernel contains a whole slew of
  drivers and options that most people don't need, but are intended to
  support a wide range of hardware configurations out of the box.  You
  can greatly reduce the kernel's size by only including the features you
  really need.
 
  I tried a new kernel, but that didn't work, for whatever reason, but
  editing loader.conf did, sort of. I tried adding
 
  sound_load=YES
  snd_hda_load=YES
  hint.pcm.0.config=gpio0 gpio1 gpio2 gpio3 gpio4 gpio5 gpio6 gpio7
 
  but while the cd player now works, I'm not getting output from the
  built-in speakers - it just sounds like it's coming from a long way
  away - I can barely make it out. I suppose that means it's coming from
  the headphone setup, but I'm not sure of that.
 
  I've been googling, but haven't figured this out yet.
 
  Kurt

 More careful reading shows that the hint line goes in
 /boot/device.hints, but placing it there does not improve the
 situation, though the sound does seem to be emitting from the
 speakers. It's just that it's very soft, and I can't get it any
 louder, though using the slider control in gnome will silence it.

 This is a recent Thinkpad T61, and grepping dmesg reveals that the
 sound system is detected as an Intel 82801H, and the codec used seems
 to be the Analog Devices AD1984.

 I'm running 7-STABLE, updated on Saturday.

 Thoughts on how to improve this would be much appreciated.
 Kurt

 Have you had a play with mixer(8)?

 E.g:

 $ mixer vol
 Mixer vol  is currently set to  75:75
 $ mixer vol 70:70
 Setting the mixer vol from 75:75 to 70:70.

 Obviously, you'd want to raise the volume rather than reduce it like I
 just did.

 Regards,

 --

  Frank

Well, whaddya know? :)

vol was set to 75:75, pcm to 75:75 and speaker to 81:81.

Cranked it up to 100 across the board, and I'm now rockin'!

ZZTop's greatest hits are now playing just fine...


Thanks!

Now, on to the touchpad/trackstick - but I'll research it first before
asking questions...

Kurt
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: New user with a possible ZFS problem

2008-07-08 Thread Kris Kennaway

Kevin Monceaux wrote:


On Wed, 2 Jul 2008, Kevin Monceaux wrote:

Saturday I finally found one of those round tuits and switched my 
home PC from Debian to FreeBSD.


I probably should have mentioned that the box in question is a slightly 
older hyperthreaded Intel Pentium 4 box, an HP m260n to be exact, with 
3GB of RAM.


You may be running out of memory.  Increase kmem_size until it goes 
away.  I use 1500M on my systems, which are stable.  Yes, ZFS is a 
memory hog.


Kris
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: ports

2008-07-08 Thread Chuck Swiger

On Jul 8, 2008, at 11:04 AM, Mel wrote:

On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:

You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling)


Purely outof interest, which (useful) firewall/nat rules cannot be  
made with
dest port 53, that can be made with source port 53. Not talking  
syntax,

but business logically.


Please note that using the same port for answering queries makes it  
vastly easier for somebody to spoof your DNS traffic.  Unless you are  
one of the handful using DNSSEC, that is.


--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


re: rblsmtpd/qmail-smtpd hung processes

2008-07-08 Thread Brad Mettee


I've run into a bit of a problem and if I don't solve it soon, I'm going 
to be without e-mail (and so will a lot of other people). This is a bit 
long, I'm trying to include anything that may help.


The problem is that qmail-smtpd and/or rblsmtpd get stuck and don't close. 
After a while the server just quits accepting smtp connections, or will 
connect/disconnect very quickly (connection closed by foreign host). Using 
kill on these processes just opens another instance of them (they're 
managed by /var/service). Since I'm not seeing any log activity that shows 
what's going on, I'm having a hard time figuring it out. I know the 
processes are supposed to be timing out and closing, but don't seem to be 
doing that


Has anyone seen this problem? I've tried searching for info on it, but 
can't find anything that looks similar. I currently have rblsmtpd disabled 
since it sits between the outside world and qmail-smtpd. The errors don't 
occur quickly, it seems to take multiple hours to occur so this is hard to 
debug because I can't create the problem on demand. Any ideas are welcome. 
(hopefully I'll be able to get mail from this address long enough to fix 
this - it's one of the ones that's been moved to this machine already)


uname -a
FreeBSD ns1.pchotshots.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun Feb 24 
10:35:36 UTC 
2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  amd64


Related ports in use:
ucspi-tcp-0.88_2
qmail-1.03_7
qmailadmin-1.2.10,1
vpopmail-5.4.26_1
dovecote-1.0.14

A quick bit of history:
Our email/dns provider is closing up shop in about a week (good friend of 
mine was a small ISP). I only had about 3 weeks notice on this and I've 
been configuring a pair of FreeBSD machines (I posted to the list a couple 
weeks ago, thanks everyone for good replies, ) to take over DNS and E-Mail 
for about a dozen sites. Basically I've been on a crash course of learning 
as I go.


I hate responding to my own message, but I think I've finally found the 
solution.


I'm using Matt Simerson's Mail Toaster package. The file toaster.conf 
file needs to be 644 so that when rotating logs, the programs can re-read 
the config. Apparently all of the hanging files were dying because they 
couldn't read the config and crashed. Once crashed the supervisor decided 
it needed to start a new copy, which would crash as soon as something 
connected to it, and so on. This also seems to have fixed a problem where 
some e-mails would get stuck in the queue and never leave. They've all been 
delivered/deleted like they should now.


I got lucky in finding this. I happened to spot the rotated log file 
staying empty within a few minutes of seeing the hung processes starting to 
stack up. It gave me a good starting point to googling for a solution.



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: New user with a possible ZFS problem

2008-07-08 Thread Kevin Monceaux

Kris,

On Tue, 8 Jul 2008, Kris Kennaway wrote:

You may be running out of memory.  Increase kmem_size until it goes 
away.  I use 1500M on my systems, which are stable.  Yes, ZFS is a 
memory hog.


Boy, ZFS sure does sound like it's earned the title of memory hog.  Oddly 
I'd been running for about a week without problems, and shuffled some 
large files around during that week, and right before I got your e-mail I 
had another hang.  I tried increasing the kmem_size setting and was 
rewarded with a panic on reboot.  I already had it set at 512M.  A little 
Googling tells me I'm going to have to compile a custom kernel to increase 
it beyond that.  Oh well, it's about time I learned how to do that anyway. 
I've compiled many a custom Linux kernel.  I started using Linux in the 
1.xx kernel days before there were loadable kernel modules so almost 
everything involved a kernel recompile.  I've read over the FreeBSD kernel 
compile docs quite a while back but will need to go over them again. 
Anyway, thanks for the tip.  I'll give it a try after a little research 
and a little, or a lot of, compiling.




Kevin
http://www.RawFedDogs.net
http://www.WacoAgilityGroup.org
Bruceville, TX

Si hoc legere scis nimium eruditionis habes.
Longum iter est per praecepta, breve et efficax per exempla!!!

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Firefox/epiphany/galeon all crash

2008-07-08 Thread Kurt Buff
As soon as I log into my gmail account, and several other sites.
Running 7-STABLE, amd64 - FF is 2.0.0.14, gecko is 20080628. I'm
writing this on my really old Windows laptop

Below are the last few lines from a representative set of output from
session launched from the commandline. Is it flash, or something else,
and is there anything I can do to fix this? Oddly enough, it's not
crashing on the OWA (Outlook Web Access) from my company's Exchange
server - but that's just a lot of javascript, AFAICT.

CSS Error (https://mail.google.com/mail/?ui=2view=bspver=1qygpcgurkovy
:0.16): Error in parsing value for property 'width'.  Declaration
dropped.
###!!! ASSERTION: bad width: 'metrics.width=0', file
nsLineLayout.cpp, line 1068
Break: at file nsLineLayout.cpp, line 1068
++DOMWINDOW == 17
WARNING: Moving XPConnect wrappedNative to new scope, but can't fixup
__proto__, file xpcwrappednative.cpp, line 1108
For application/x-shockwave-flash found plugin
/usr/local/lib/browser_plugins/libnpflash.so
LoadPlugin() /usr/local/lib/browser_plugins/libnpflash.so returned 29e4d60
NP_Initialize
New
nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0
nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584
About to create new ws_info...
About to create new xtbin of 100 X 100 from 0x192ccc0...
About to show xtbin(0x7b2e90)...
completed gtk_widget_show(0x7b2e90)
SetWindow
nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0
nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584
SetWindow
nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0
nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584
SetWindow
NewStream
WriteReady
Write
decoding...
The program 'gecko' received an X Window System error.
This probably reflects a bug in the program.
The error was 'BadImplementation (server does not implement operation)'.
  (Details: serial 36 error_code 17 request_code 146 minor_code 5)
  (Note to programmers: normally, X errors are reported asynchronously;
   that is, you will receive the error a while after causing it.
   To debug your program, run it with the --sync command line
   option to change this behavior. You can then get a meaningful
   backtrace from your debugger if you break on the gdk_x_error() function.)
nsStringStats
 = mAllocCount:  47580
 = mReallocCount: 7348
 = mFreeCount:   40084  --  LEAKED 7496 !!!
 = mShareCount:  29791
 = mAdoptCount:   4257
 = mAdoptFreeCount:   4072  --  LEAKED 185 !!!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Data loss after power out - fsck: bad inode number to nextinode

2008-07-08 Thread Polytropon
Hi,

since last week I'm in big trouble: After an power outage my main
system didn't boot up anymore, so I checked its hard disk (FreeBSD
5.4) in my new system (FreeBSD 7.0).

I booted the system in SUM and ran fsck on the partitions. / on
/dev/ad1s1a could be repaired, /var on 1d too, /usr on 1e lost
many directory entries (X11R6, for exmaple), but all files and
directory entry points got restored to lost+found. Okay, that's
as I know it should be. But it doesn't matter, because everything
there could be reinstalled.

Problems occured when checking /home on /dev/ad1s1f. After lot
of

1101472 DUP I=260035
UNEXPECTED SOFT UPDATE INCONSISTENCY

and

EXCESSIVE DUP BLKS I=260039
CONTINUE? yes

and

7310315658325879925 BAD I=260051
UNEXPECTED SOFT UPDATE INCONSISTENCY

fsck ended up this way:

INCORRECT BLOCK COUNT I=290557 (3104 should be 736)
CORRECT? yes

fsck_4.2bsd: bad inode number 306176 to nextinode

The result: The home directories of all other users where present,
but mine (!) - /home/adec - was missing. I may explain this a bit
more precise: When looking at the files using the Midnight Commander,
the name of my home directory was displayed, preceeded by ?, and
in red colour, with a strange date (the epoch?).

|?adec|  0|Jan  1  1970|

So I could not change into this directory and get my files out
of there.

In order not to damage the system more, I made a ddrescue dump
of the partition:

% ddrescue -d -r 3 -n /dev/ad1s1f home.ddrescue logfile

The data could be read without problems. The resulting file seemed
to be an 1:1 copy of the partition.

% file home.ddrescue
home.ddrescue: Unix Fast File system [v2] (little-endian) last mounted on /mnt,
last written at Wed Jul  2 18:51:06 2008,
clean flag 0,
readonly flag 0,
number of blocks 44322272,
number of data blocks 42925108,
number of cylinder groups 472,
block size 16384,
fragment size 2048,
average file size 16384,
average number of files in dir 64,
pending blocks to free 0,
pending inodes to free 0,
system-wide uuid 0,
minimum percentage of free blocks 8,
TIME optimization

When checking it with

% fsck -t ufs -yf /dev/md10

fsck gives the same error message as above.

Then I mounted the image:

% sudo mdconfig -a -t vnode -u 10 -f home.ddrescue
% mount -t ufs -o ro /dev/md10 mnt

And guess what? Same problem: Directory name shown, but directory
not changable.

But then, I noticed something interesting:

% df -h
Filesystem SizeUsed   Avail Capacity  Mounted on
/dev/md10   82G 75G716M99%
/export/home/adec/rescue/mnt

See the size differences? Something seems to be missing. I hope it
is the content of my home directory that's still on the disk. Some
checking:

% sudo du -sch mnt
du: mnt/adec: Bad file descriptor
du: mnt/archiv/cr/clips.w32/s01.wmv: Bad file descriptor
du: mnt/archiv/cr/clips.w32/s02.wmv: Bad file descriptor
 52Gmnt
 52Gtotal

This reveals that it seems to be possible that approx. 30 GB are
not marked as free.

% file mnt/adec
mnt/adec: cannot open `mnt/adec' (Bad file descriptor)

% cd mnt/adec
mnt/adec: Not a directory.

Before bothering anyone here at this list, I checked information on
the net and found that only one (!!!) person except me seemd to have
this problem. And he got no help. Do I? =^_^=

Of course I took the time to read about the FFS architecture. If I did
understand it correctly, fsck stops working, showing the informative
error message bad inode number 306176 to nextinode because it cannot
get the next inode from a concatenated list that represents the file
and directory hierarchy, so there must be a bad pointer. While the
names of the next things represented by inodes reside within a data
structure at level N, the corresponting data entries reside at level
N + 1 where a pointer should lead to. This may be an explaination why
the name adec is still in ad1s1f's root directory, but the data that
says I'm a directory, this is my content is not referenced anymore.
So fsck cannot continue. The missing inodes need to get reconnected.
In most cases, that's what lost+found usually contains: unreferenced
inodes that are not marked free: their names are gone (N), but their
content is still there (N + 1), and the new file name is # plus
their inode number.

What should I do?

Help is VERY welcome! If you have any ideas what to do, I'd be glad
to save the money I would have to spend when sending the disk to a
data recovery service - 1000 Euro and more are nothing I can afford.
And when you're low on money, adequate tape backup systems are too
expensive (allthoug such a device would be my first choice).

By the way, this must be the revenge of a 

Re: Data loss after power out - fsck: bad inode number to nextinode

2008-07-08 Thread Anish Mistry
On Tuesday 08 July 2008, Polytropon wrote:
 Hi,

 since last week I'm in big trouble: After an power outage my main
 system didn't boot up anymore, so I checked its hard disk (FreeBSD
 5.4) in my new system (FreeBSD 7.0).

 I booted the system in SUM and ran fsck on the partitions. / on
 /dev/ad1s1a could be repaired, /var on 1d too, /usr on 1e lost
 many directory entries (X11R6, for exmaple), but all files and
 directory entry points got restored to lost+found. Okay, that's
 as I know it should be. But it doesn't matter, because everything
 there could be reinstalled.

 Problems occured when checking /home on /dev/ad1s1f. After lot
 of

   1101472 DUP I=260035
   UNEXPECTED SOFT UPDATE INCONSISTENCY

 and

   EXCESSIVE DUP BLKS I=260039
   CONTINUE? yes

 and

   7310315658325879925 BAD I=260051
   UNEXPECTED SOFT UPDATE INCONSISTENCY

 fsck ended up this way:

   INCORRECT BLOCK COUNT I=290557 (3104 should be 736)
   CORRECT? yes

   fsck_4.2bsd: bad inode number 306176 to nextinode

 The result: The home directories of all other users where present,
 but mine (!) - /home/adec - was missing. I may explain this a bit
 more precise: When looking at the files using the Midnight
 Commander, the name of my home directory was displayed, preceeded
 by ?, and in red colour, with a strange date (the epoch?).

   |?adec|  0|Jan  1  1970|

 So I could not change into this directory and get my files out
 of there.

 In order not to damage the system more, I made a ddrescue dump
 of the partition:

   % ddrescue -d -r 3 -n /dev/ad1s1f home.ddrescue logfile

 The data could be read without problems. The resulting file seemed
 to be an 1:1 copy of the partition.

 % file home.ddrescue
 home.ddrescue: Unix Fast File system [v2] (little-endian) last
 mounted on /mnt, last written at Wed Jul  2 18:51:06 2008,
 clean flag 0,
 readonly flag 0,
 number of blocks 44322272,
 number of data blocks 42925108,
 number of cylinder groups 472,
 block size 16384,
 fragment size 2048,
 average file size 16384,
 average number of files in dir 64,
 pending blocks to free 0,
 pending inodes to free 0,
 system-wide uuid 0,
 minimum percentage of free blocks 8,
 TIME optimization

 When checking it with

   % fsck -t ufs -yf /dev/md10

 fsck gives the same error message as above.

 Then I mounted the image:

   % sudo mdconfig -a -t vnode -u 10 -f home.ddrescue
   % mount -t ufs -o ro /dev/md10 mnt

 And guess what? Same problem: Directory name shown, but directory
 not changable.

 But then, I noticed something interesting:

   % df -h
   Filesystem SizeUsed   Avail Capacity  Mounted on
   /dev/md10   82G 75G716M99%   
 /export/home/adec/rescue/mnt

 See the size differences? Something seems to be missing. I hope it
 is the content of my home directory that's still on the disk. Some
 checking:

   % sudo du -sch mnt
   du: mnt/adec: Bad file descriptor
   du: mnt/archiv/cr/clips.w32/s01.wmv: Bad file descriptor
   du: mnt/archiv/cr/clips.w32/s02.wmv: Bad file descriptor
52Gmnt
52Gtotal

 This reveals that it seems to be possible that approx. 30 GB are
 not marked as free.

   % file mnt/adec
   mnt/adec: cannot open `mnt/adec' (Bad file descriptor)

   % cd mnt/adec
   mnt/adec: Not a directory.

 Before bothering anyone here at this list, I checked information on
 the net and found that only one (!!!) person except me seemd to
 have this problem. And he got no help. Do I? =^_^=

 Of course I took the time to read about the FFS architecture. If I
 did understand it correctly, fsck stops working, showing the
 informative error message bad inode number 306176 to nextinode
 because it cannot get the next inode from a concatenated list that
 represents the file and directory hierarchy, so there must be a
 bad pointer. While the names of the next things represented by
 inodes reside within a data structure at level N, the corresponting
 data entries reside at level N + 1 where a pointer should lead to.
 This may be an explaination why the name adec is still in
 ad1s1f's root directory, but the data that says I'm a directory,
 this is my content is not referenced anymore. So fsck cannot
 continue. The missing inodes need to get reconnected. In most
 cases, that's what lost+found usually contains: unreferenced inodes
 that are not marked free: their names are gone (N), but their
 content is still there (N + 1), and the new file name is # plus
 their inode number.

 What should I do?

 Help is VERY welcome! If you have any ideas what to do, I'd be glad
 to save the money I would have to spend when sending the disk to a
 data recovery service - 1000 Euro and more are nothing I can
 afford. And when you're low on money, adequate tape backup systems
 are too expensive 

Re: AMD SB700 southbridge sata ahci supported?

2008-07-08 Thread Gobbledegeek
Thanks for responding. My problem is different.I think it is in boot
stage 2 possibly a problem with the loader. Hence my problem does not
resemble yours. I am able to run the install disk just fine nd
complete installation. Its the installed Os that I cannot boot.

Kind Regards


 On Sun, Jul 6, 2008 at 2:28 AM, Rhomel Chinsio [EMAIL PROTECTED] wrote:
 Try disabling USB in the BIOS:
 http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/122880

 On Fri, Jun 27, 2008 at 11:21 PM, Gobbledegeek [EMAIL PROTECTED]
 wrote:

 Hi

 I install freebsd 7 i386 twice, installed mbr, both times boot loader
 failed to load at 1st stage with cpu register values displayed on
 screen.
 Mobo - gigabyte GA-MA78GM-S2H, AMD 780G chipset with ATI Radeon3200
 IGP, cpu  amd BE-2350, 2GB transcend DR2800 ram, barracuda hdd with
 SATA in AHCI mode in bios.

 I could not find this in the i386 or amd64 platform list.

 Anyone has any ideas about support for this?

 Please copy me as I am not subscribed.

 --
 Kind Regards
 GobbleDeGeek
 [For everything Gobbledegook!!]
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 [EMAIL PROTECTED]





 --
 Kind Regards
 GobbleDeGeek
 [For everything Gobbledegook!!]




-- 
Kind Regards
GobbleDeGeek
[For everything Gobbledegook!!]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: Data loss after power out - fsck: bad inode number to nextinode

2008-07-08 Thread perryh
 What should I do?

In theory,

  clri {special-file} 306176

should wipe the inode containing the bad pointer and allow fsck to
continue, perhaps recovering the files pointed to by that directory
into lost+found.

Definitely try this on a copy first if at all possible.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]