Re: Wireless net Card
On Thursday 07 August 2008 14:21:41 David Gurvich wrote: > FreeBSD and Linux are different operating systems. There is no > compatibility between them. FreeBSD has an emulation layer which works > for a limited subset of Linux binary programs. These are not kernel > drivers. Your best bet on FreeBSD is to check the status for your > chipset in CURRENT or to try ndiswrapper. Welp i tried the nidswrapper and made rtl8185_sys.ko, sadly when i used kldload it forced ma system to reboot, so im at a loss .. If i stuck the card in a windows machine would i be able to determine what chipset the wireles belkin card is using ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: High Availability FreeBSD www cluster
Thank you all for your input. Carp looks like it needs some investigation Thanks Michael Peter Ross wrote: Hi, Michael Christie wrote: I want to cluster some freeBSD servers, The purpose of this is to learn. I would like to run some basic services like www and mail on a test network. I would like to set up the servers so if one server falls over the other will take over the services automatically, load balanceing would be good as well. I have googled, I could be looking in the wrong place , there seems not to be much in regard to seting up freebsd in a cluster, lots on linux. I have looked at the High Availability Linux project , I see on the front page that it will run on freebsd. So I am a bit lost and i am wanting to learn how to cluster freebsd web and mail servers, I have looked at Beowulf clusters, which seem to give computers more grunt, Can some on on the list please advise me on what clustering softwhere i need to get started and if the High Availability Linux project softwhere will do the job. pound (/usr/ports/www/pound) can be used on HTTP(S) level. >From pkg-descr: The Pound program is a reverse proxy, load balancer and HTTPS front-end for Web server(s). Pound was developed to enable distributing load among several Web-servers, and to allow for a convenient SSL wrapper for those Web servers that do not offer it natively. Pound is distributed under the GPL - no warranty, it's free to use, copy and give away. WWW: http://www.apsis.ch/pound/ - Anders Nordby <[EMAIL PROTECTED]> Regards Peter ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-cluster To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Remote host replies to SYN+FIN
hi all... after setting up a pf rule set on one of newly installed freebsd 7 i did a scan with nessus 3 on that machine the result i got was like this one: http://www.nessus.org/plugins/index.php?view=single&id=11618 how do 'fix' it using pf?... thanks... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Wireless net Card
FreeBSD and Linux are different operating systems. There is no compatibility between them. FreeBSD has an emulation layer which works for a limited subset of Linux binary programs. These are not kernel drivers. Your best bet on FreeBSD is to check the status for your chipset in CURRENT or to try ndiswrapper. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
请激活你的帐号,完成注册
亲爱的嗷嗷: 欢迎加入豆瓣! 请点击下面的链接完成注册: http://www.douban.com/register?confirmation=eabc8208463268a0 如果以上链接无法点击,请将上面的地址复制到你的浏览器(如IE)的地址栏进入豆瓣。 - 豆瓣网 (这是一封自动产生的email,请勿回复。) -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: rtorrent under pf
That should be: '$rt keep state' not '$rt_tcp keep state' and '$rt_udp keep state' Mark Picone wrote: Hi, Have you done these things? 1. Setup ~/.rtorrent.rc properly 2. Change default ports for rtorrent. eg: 'port_range = 22145-22245' 3. Ensure pf is setup correctly. eg: net_if = "rl0" rt = "{ 22145-22245 }" pass in on $net_if proto tcp from any to any port $rt_tcp keep state pass in on $net_if proto udp from any to any port $rt_udp keep state This works fine for me. Thanks, Mark Picone, Trainee Unix Administrator Information Technology Services Division Phone: 03 5227 8602 International: +61 3 5227 0806 Fax: 03 5227 8799 International: +61 3 5227 8799 Email: [EMAIL PROTECTED] Website: http://www.deakin.edu.au luizbcampos wrote: After I had setup .rtorrent.rc on FBSD-7.0 amd64, I type "rtorrent" the tracker connects to server and nothing more happens, the screen seems to be frozen about dowloading. What to do? I've enabled ports 6890-6999 at /etc/pf.conf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" signature.asc Description: OpenPGP digital signature
Re: rtorrent under pf
Hi, Have you done these things? 1. Setup ~/.rtorrent.rc properly 2. Change default ports for rtorrent. eg: 'port_range = 22145-22245' 3. Ensure pf is setup correctly. eg: net_if = "rl0" rt = "{ 22145-22245 }" pass in on $net_if proto tcp from any to any port $rt_tcp keep state pass in on $net_if proto udp from any to any port $rt_udp keep state This works fine for me. Thanks, Mark Picone, Trainee Unix Administrator Information Technology Services Division Phone: 03 5227 8602 International: +61 3 5227 0806 Fax: 03 5227 8799 International: +61 3 5227 8799 Email: [EMAIL PROTECTED] Website: http://www.deakin.edu.au luizbcampos wrote: After I had setup .rtorrent.rc on FBSD-7.0 amd64, I type "rtorrent" the tracker connects to server and nothing more happens, the screen seems to be frozen about dowloading. What to do? I've enabled ports 6890-6999 at /etc/pf.conf ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" signature.asc Description: OpenPGP digital signature
Re: High Availability FreeBSD www cluster
Hi, Michael Christie wrote: > I want to cluster some freeBSD servers, The purpose of this is to learn. > I would like to run some basic services like www and mail on a test > network. I would like to set up the servers so if one server falls over > the other will take over the services automatically, load balanceing would > be good as well. I have googled, I could be looking in the wrong place , > there seems not to be much in regard to seting up freebsd in a cluster, > lots on linux. I have looked at the High Availability Linux project , I > see on the front page that it will run on freebsd. > > So I am a bit lost and i am wanting to learn how to cluster freebsd web > and mail servers, I have looked at Beowulf clusters, which seem to give > computers more grunt, Can some on on the list please advise me on what > clustering softwhere i need to get started and if the High Availability > Linux project softwhere will do the job. pound (/usr/ports/www/pound) can be used on HTTP(S) level. >From pkg-descr: The Pound program is a reverse proxy, load balancer and HTTPS front-end for Web server(s). Pound was developed to enable distributing load among several Web-servers, and to allow for a convenient SSL wrapper for those Web servers that do not offer it natively. Pound is distributed under the GPL - no warranty, it's free to use, copy and give away. WWW: http://www.apsis.ch/pound/ - Anders Nordby <[EMAIL PROTECTED]> Regards Peter ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Teco Industry is in the business of corn, wheat, paddy, and
vegetable dr Sender: "TECO DRYER" <[EMAIL PROTECTED]> Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit Date: Thu, 7 Aug 2008 00:12:27 +0300 Message-ID: <[EMAIL PROTECTED]> X-Priority: 3 (Normal) Importance: Normal Teco Industry is in the business of corn, wheat, paddy, and vegetable drying machines and the production and marketing of silo & steel construction. Related to the machines that our company produce; Teco Industry has the representatives in Bulgaria, Albania, Ukraine, Tatarstan, Kazakhstan, Russia, Angola and Indonesia. Our partners in these countries are accepted as the leaders in the steel industry. The quality of produced machines is approved by international standards. Teco is guaranteed by CE and ISO 9001-2000 certificates. Teco also contributes to the national economy by creating jobs in designing, project, production, import and export. Teco materializes R&D activities with its professional staff. Quality results are presented to the customers during the production, import and export. Our company takes the leadership of producing and marketing nationally and internationally. For Grain, Oily Seeds, and Pulses: Silos Corn and Soybean Drying Machines Handling Systems like Bucket Elevator, Chain Conveyor and Helix Prop Towers and Catwalks for Handling Systems Unloading Truck Lifts Industrial Foundations, Steel Construction With the expert staff; we take an important target like Customer Satisfaction and Service Quality and perform service and counseling duties successfully. Contact Us , Teco Dryer Company is ready for a long partnership with you. Sales Engineer Erkan AYMAN [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: High Availability FreeBSD www cluster
Paul Procacci wrote: Michael Christie wrote: Hi all , I want to cluster some freeBSD servers, The purpose of this is to learn. I would like to run some basic services like www and mail on a test network. I would like to set up the servers so if one server falls over the other will take over the services automatically, load balanceing would be good as well. I have googled, I could be looking in the wrong place , there seems not to be much in regard to seting up freebsd in a cluster, lots on linux. I have looked at the High Availability Linux project , I see on the front page that it will run on freebsd. So I am a bit lost and i am wanting to learn how to cluster freebsd web and mail servers, I have looked at Beowulf clusters, which seem to give computers more grunt, Can some on on the list please advise me on what clustering softwhere i need to get started and if the High Availability Linux project softwhere will do the job. web links any thing to help me get started would be good. No I do not want to change over to linux. Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" I've used freevrrpd (/usr/ports/net/freevrrpd) for some clients with success. Additionally doing some googling revealed "SG Cluster" (http://www.freebsd.org.hk/html/sgcluster/) though I'm not sure how active this is and/or really if it's what your looking for. ~Paul ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" Also see "man carp" -- Chris St Denis Programmer SmarttNet (www.smartt.com) Ph: 604-473-9700 Ext. 200 --- "Smart Internet Solutions For Businesses" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Wireless net Card
On Wednesday 06 August 2008 23:00:50 David Gurvich wrote: > I thought you were asking about a FreeBSD driver. If you are using > Linux then the driver may work. I am using FreeBSD, but was wondering if the Linux driver may be backwards comnpat to suit the needs im wanting ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: identd on jail with multiple IPs
On Wed, 6 Aug 2008, Redd Vinylene wrote: I cannot seem to make identd work on a jail with multiple IPs (Bjoern Zeeb's patch): So do you have any kind of error message? packet traces or anything to further isolate the problem rather than "does not work"? -- Bjoern A. Zeeb Stop bit received. Insert coin for new game. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Controlling read access
| Hi Greg, | | I tried your sequence, but it didn't seem to work. Or, perhaps it worked | and the PRIVSEP option doesn't do what I expect it to. Logging in as a | normal user gives that user root privileges. | | This seems pretty scary to me. Not so bad, since the user is locked into | his own directory, but enough power to hurt themselves, which is too | much power, IMHO. My users aren't experts. I can definitely see them | clicking the delete key by accident. | | Back to digging for info... | | Thanks: John | Hi John, After logging into pure-ftpd, even if I type "cd /", I cannot break out of my home directory. Because of the way UNIX permissions work, if root ~ (or any other user) owns a file in my home directory, I can still delete it. If you want to prevent that, you'll have to also use the chflags command to protect file that you don't want to be removed by anyone. Wow... I learn something new in this job every day, but usually not as new as that. This completely revises what I thought I knew about permissions. If you had asked me this morning if I could delete a file owned by root with permissions set to 400 from my own directory, I would have said absolutely not. How wrong I would have been... I guess I can do this because I own the directory that the foreign file is in, and I should have control over that directory... Yes... If I create a directory within my own home directory and change the ownership of that directory to root:nobody, then I cannot delete any file in that directory. Okay, this is starting to make sense. I guess I just never noticed this small detail of Unix file permissions. Very interesting! I skimmed through the chflags section of "Absolute FreeBSD" on my first read through... It rang a bell when you mentioned it, but I'd completely forgotten about it. I'm going to read it much more carefully this time :-) Anyway, thanks to everyone who has helped me out with my week-long struggle with 'simple' old FTP. "Challenge your assumptions." That's the lesson of *this* week! Brgds: John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
rtorrent under pf
After I had setup .rtorrent.rc on FBSD-7.0 amd64, I type "rtorrent" the tracker connects to server and nothing more happens, the screen seems to be frozen about dowloading. What to do? I've enabled ports 6890-6999 at /etc/pf.conf pf.conf Description: Binary data ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: High Availability FreeBSD www cluster
Roger Olofsson a écrit : Michael Christie skrev: Hi all , I want to cluster some freeBSD servers, The purpose of this is to learn. I would like to run some basic services like www and mail on a test network. I would like to set up the servers so if one server falls over the other will take over the services automatically, load balanceing would be good as well. I have googled, I could be looking in the wrong place , there seems not to be much in regard to seting up freebsd in a cluster, lots on linux. I have looked at the High Availability Linux project , I see on the front page that it will run on freebsd. So I am a bit lost and i am wanting to learn how to cluster freebsd web and mail servers, I have looked at Beowulf clusters, which seem to give computers more grunt, Can some on on the list please advise me on what clustering softwhere i need to get started and if the High Availability Linux project softwhere will do the job. web links any thing to help me get started would be good. No I do not want to change over to linux. Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.138 / Virus Database: 270.5.12/1595 - Release Date: 2008-08-06 08:23 Hello, I have been running freevrrpd and pen (http://siag.nu/pen/ or in ports) for HA web services. My setup was a firewall/gateway consisting of more than 1 machine using freevrrpd thus enabling failover for the firewall/gateway. I write firewall and not firewalls since freevrrpd creates a virtual ip that is failover'ed between the machines. On the firewall/gateway pen were running and pointed towards the web servers. Pen can point at as many web servers as you like and balances the load between them in a very simple way. If the web servers are identical in setup they become redundant. DNS loadbalancing is very similar. Good luck! /Roger I don't have any experience yet with it but I'm planning on using CARP with PF to do redondant gateways. You can do round-robin RDR with PF to distribute the load. You can even put the same server IP more than one time in the list to forward more traffic to this server! I tested it but I didn't tried CARP yet. I read I couple of articles on CARP with BSD, I'm a little bit surprised that nobody made reference to it yet. Now it's done ;) Martin ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Switching to IPv6?
FreeBSD Questions wrote: I've been considering switching my home network to IPv6. I have a computer acting as a firewall sitting between my ISP and my three LANs at home. Of course, my DSL provider gives me an IPv4 address, and everything I want to access on the Internet is on an IPv4 network. The whole point is to learn to set up IPv6, to play with IPv6, and to become familiar with it, so when the day comes that the world actually uses IPv6 (ha ha) I'm ready, armed with knowledge. Have you considered going dual-stack, v4 and v6, and then getting a v6 tunnel free from one of the tunnel brokers? I'm doing that to ease myself into the v6 world, with, I suspect, considerably less pain than would be involved with v6 only. But the whole idea will go to pot if my firewall can't let my IPv6 networks access my IPv4 Internet connection. Does FreeBSD 7 provide such facilities as to allow access to an IPv4 network from an IPv6 network? What will my Vista, XP, and FreeBSD clients do if they only have an IPv6 address and I try to go to google.com or freebsd.org which are on IPv4 networks? There have reportedly been problems with people turning on v6 on their stacks when their ISPs don't support it and then getting upset when they can no longer get to anything that has an record as well as an A. (Some browsers try v6 first and, at best, have to time out before they try v4.) That's probably the reason you have to use ipv6.google.com However, last I checked, www.freebsd.org worked just fine on the v6 Internet. Sobad examples. :-) However, unless you're making use of translation between v4 and v6, if you go v6 only you won't be talking to the v4 Internet at all. Those A records just won't be of any use to your software. See something like http://en.wikipedia.org/wiki/IPv6_translation_mechanisms for more. --Jon Radel smime.p7s Description: S/MIME Cryptographic Signature
Re: memory allocation with malloc
At 01:16 AM 8/5/2008, Shyamal Shukla wrote: Hi All, I am trying to validate my understanding of how malloc works by means of the below C program which tries to corrupt essential information maintained by malloc for free() operation. The program allocates 4, 12 byte blocks (internally 16 bytes are allocated for each 12 byte block). Hence the total allocated space was 48 bytes. As malloc maintains the (length of allocated block + 1), 4 bytes before the returned pointer (from malloc), I have manipulated this length for the first block and set it to 49 with the goal that a single free shall release all these 4 blocks and a subsequent malloc of 15 bytes shall be from the address of first block. However, this does not happen. Can someone please correct my understanding and provide me with a reference to the working of malloc() and free()? #include int main(void) { char * ptr,* ptr1, *ptr2, * ptr3, * ptr4; int * i; int n,q,p; int loop = 0; ptr1 = (char *)malloc(12); i = (int *)(ptr1 - 4); printf("\n ptr1 = %p,%d \n",ptr1,*i); printf("\n %d:%d:%d:%d\n",ptr1[-4],ptr1[-3],ptr1[-2],ptr1[-1]); printf("\n %d:%d:%d:%d\n",ptr1[0],ptr1[1],ptr1[2],ptr1[3]); printf("\n %d:%d:%d:%d\n",ptr1[4],ptr1[5],ptr1[6],ptr1[7]); printf("\n %d:%d:%d:%d\n",ptr1[8],ptr1[9],ptr1[10],ptr1[11]); *i = 49; ptr2 = (char *)malloc(12); i = (int *)(ptr2 - 4); printf("\n ptr2 = %p,%d \n",ptr2,*i); printf("\n %d:%d:%d:%d\n",ptr2[-4],ptr2[-3],ptr2[-2],ptr2[-1]); ptr3 = (char *)malloc(12); i = (int *)(ptr3 - 4); printf("\n ptr3 = %p,%d \n",ptr3,*i); printf("\n %d:%d:%d:%d\n",ptr3[-4],ptr3[-3],ptr3[-2],ptr3[-1]); ptr4 = (char *)malloc(12); i = (int *)(ptr4 - 4); printf("\n ptr4 = %p,%d \n",ptr4,*i); printf("\n %d:%d:%d:%d\n",ptr4[-4],ptr4[-3],ptr4[-2],ptr4[-1]); free(ptr1); printf("\n ANALYZE-\n"); printf("\n %d:%d:%d:%d\n",ptr1[-4],ptr1[-3],ptr1[-2],ptr1[-1]); printf("\n %d:%d:%d:%d\n",ptr1[0],ptr1[1],ptr1[2],ptr1[3]); printf("\n %d:%d:%d:%d\n",ptr1[4],ptr1[5],ptr1[6],ptr1[7]); printf("\n %d:%d:%d:%d\n",ptr1[8],ptr1[9],ptr1[10],ptr1[11]); ptr = (char *)malloc(15); i = (int *)(ptr - 4); printf("\n ptr = %p,%d \n",ptr,*i); return; } Thanks and Regards, Shyamal I'm not quite sure what it is you want to accomplish with this program. However, malloc and free work on the program's given data area. This data area can be increased should there be a need for more memory. You should NEVER assume that memory blocks are contiguous. There are many reasons why they would not be contiguous among them compiler optimizations. If you really want to delve into how a program is executed, have the compiler output the assembler code and look at that. The assembler code will show exactly how and where the variables are allocated. With such small amount of data used in your program, it is possible the variables are all just on the stack. You may want to check out the brk and sbrk man pages as they will give you some information into how memory management was originally done as these functions are lower-level than malloc and free. -Derek -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Controlling read access
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 John Almberg wrote: |> | Now I have just one major league problem: when I logged in as one of |> the |> | users, to test the connections, I discovered that I had SUPER POWERS. I |> | was able to delete any file that I could see, including ones that were |> | owned by root. Digging uncovered the fact that pure-ftpd runs with root |> | privileges... not so good for my situation. |> | |> | My guess is I need to compile with the --with-privsep switch turned |> on... |> | |> | So, finally I have a real FreeBSD question! |> | |> | What is the proper way, in ports, to set a configuration flag? The only |> | way I could figure out was to add it to the Makefile. |> | PRIVSEP "Enable privilege separation" on \ |> | |> | If this is the correct way to turn this compile switch on, it doesn't |> | seem to work. After running: |> | |> | make deinstall |> | make config # checking the privilage separation box |> | make reinstall |> | |> | The logged in user can still delete any file, regardless of permissions |> | or ownership. This is clearly a problem... I don't want my users to be |> | able to blow away their own websites while they are uploading some |> | images. I am still digging for info on this problem. Any thoughts, much |> | appreciated! |> | |> | -- John |> | |> |> Hi John, |> |> Try this sequence instead, and you should be all set: |> |> |> make deinstall |> make clean |> make config (skip this if you've already chosen the options you want) |> make install |> |> The clean target will make sure that your environment is reset back to a |> known state. The install target will then perform a fresh build and |> install with the privsep option enabled. If you already had binaries in |> your port directory, then the reinstall target installs them without |> rebuilding, as far as I can tell from reading /usr/ports/Mk/bsd.port.mk. |> | | Hi Greg, | | I tried your sequence, but it didn't seem to work. Or, perhaps it worked | and the PRIVSEP option doesn't do what I expect it to. Logging in as a | normal user gives that user root privileges. | | This seems pretty scary to me. Not so bad, since the user is locked into | his own directory, but enough power to hurt themselves, which is too | much power, IMHO. My users aren't experts. I can definitely see them | clicking the delete key by accident. | | Back to digging for info... | | Thanks: John | Hi John, After logging into pure-ftpd, even if I type "cd /", I cannot break out of my home directory. Because of the way UNIX permissions work, if root ~ (or any other user) owns a file in my home directory, I can still delete it. If you want to prevent that, you'll have to also use the chflags command to protect file that you don't want to be removed by anyone. On the server (as root): fbsd70# pwd /usr/home/glarkin fbsd70# touch testfile fbsd70# ls -l testfile - -rw-r--r-- 1 root glarkin 0 Aug 6 13:12 testfile fbsd70# ls -lo testfile - -rw-r--r-- 1 root glarkin - 0 Aug 6 13:12 testfile fbsd70# chflags uchg testfile fbsd70# ls -lo testfile - -rw-r--r-- 1 root glarkin uchg 0 Aug 6 13:12 testfile fbsd70# Logged in to FTP as glarkin: ftp> dir testfile 200 PORT command successful 150 Connecting to port 5003 - -rw-r--r--1 0glarkin 0 Aug 6 13:12 testfile 226-Options: -a -l 226 1 matches total ftp> del testfile 550 Could not delete testfile: Operation not permitted ftp> Hope that helps, Greg - -- Greg Larkin http://www.sourcehosting.net/ http://www.FreeBSD.org/ - The Power To Serve -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFImd1O0sRouByUApARAhznAJ9/Wy8oued949Z+Zwyhh0n50kFkRACeIlFy suubRJy34OswwZslB4MPPjM= =v+no -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: IBM eServer x225 - LSI 1030 SCSI - BTX Halted / infinite loop
At 04:56 AM 8/6/2008, underligast wrote: On Tue, Aug 5, 2008 at 10:15 PM, Derek Ragona wrote: > Obviously it is the SCSI card or drives. Have you tried changing the > BIOS settings on the SCSI? You might want to try changing the SCSI BUS > speed. You may also want to try turning off hyperthreading. > > -Derek > Disabling Hyperthreading didn't do anything, and i cannot find many options for the SCSI. I'll try lowering the speed and i will also try another drive if i can find one. I also tried 8.0-current bootcd and that lists the dvd-rom and the floppy but none of the disks. There's another four x225:s at work but they all have lsi-controllers. I was really looking forward to using the hotswap.. Thank you for your replies, i hope you can help me fix this eventually It sounds like your controller either it isn't recognized or supported. You can try a different SCSI card or see if your SCSI has a firmware that is update-able and try different firmware version. -Derek -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Switching to IPv6?
I've been considering switching my home network to IPv6. I have a computer acting as a firewall sitting between my ISP and my three LANs at home. Of course, my DSL provider gives me an IPv4 address, and everything I want to access on the Internet is on an IPv4 network. The whole point is to learn to set up IPv6, to play with IPv6, and to become familiar with it, so when the day comes that the world actually uses IPv6 (ha ha) I'm ready, armed with knowledge. But the whole idea will go to pot if my firewall can't let my IPv6 networks access my IPv4 Internet connection. Does FreeBSD 7 provide such facilities as to allow access to an IPv4 network from an IPv6 network? What will my Vista, XP, and FreeBSD clients do if they only have an IPv6 address and I try to go to google.com or freebsd.org which are on IPv4 networks? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Controlling read access
| Now I have just one major league problem: when I logged in as one of the | users, to test the connections, I discovered that I had SUPER POWERS. I | was able to delete any file that I could see, including ones that were | owned by root. Digging uncovered the fact that pure-ftpd runs with root | privileges... not so good for my situation. | | My guess is I need to compile with the --with-privsep switch turned on... | | So, finally I have a real FreeBSD question! | | What is the proper way, in ports, to set a configuration flag? The only | way I could figure out was to add it to the Makefile. | PRIVSEP "Enable privilege separation" on \ | | If this is the correct way to turn this compile switch on, it doesn't | seem to work. After running: | | make deinstall | make config # checking the privilage separation box | make reinstall | | The logged in user can still delete any file, regardless of permissions | or ownership. This is clearly a problem... I don't want my users to be | able to blow away their own websites while they are uploading some | images. I am still digging for info on this problem. Any thoughts, much | appreciated! | | -- John | Hi John, Try this sequence instead, and you should be all set: make deinstall make clean make config (skip this if you've already chosen the options you want) make install The clean target will make sure that your environment is reset back to a known state. The install target will then perform a fresh build and install with the privsep option enabled. If you already had binaries in your port directory, then the reinstall target installs them without rebuilding, as far as I can tell from reading /usr/ports/Mk/ bsd.port.mk. Hi Greg, I tried your sequence, but it didn't seem to work. Or, perhaps it worked and the PRIVSEP option doesn't do what I expect it to. Logging in as a normal user gives that user root privileges. This seems pretty scary to me. Not so bad, since the user is locked into his own directory, but enough power to hurt themselves, which is too much power, IMHO. My users aren't experts. I can definitely see them clicking the delete key by accident. Back to digging for info... Thanks: John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
identd on jail with multiple IPs
Greetings! I cannot seem to make identd work on a jail with multiple IPs (Bjoern Zeeb's patch): jail # cat /etc/inetd.conf auth stream tcp nowait root internal auth -r -f -n -o UNKNOWN -t 30 - jail # grep inetd /etc/rc.conf inetd_enable="YES" - host # grep jail /etc/rc.conf jail_enable="YES" jail_list="box" jail_box_ip="80.252.2.4,80.252.2.5,80.252.2.6,80.252.2.7,80.252.2.8,80.252.2.9,80.252.2.10,80.252.2.11,80.252.2.12,80.252.2.13,80.252.2.14,80.252.2.15,80.252.2.16,80.252.2.17,80.252.2.18,80.252.2.19,80.252.2.20,80.252.2.21,80.252.2.22,80.252.2.23,80.252.2.24,80.252.2.25,80.252.2.26,80.252.2.27,80.252.2.28,80.252.2.29,80.252.2.30,80.252.2.31,80.252.2.32,80.252.2.33,80.252.2.34,80.252.2.35,80.252.2.36,80.252.2.37,80.252.2.38,80.252.2.39,80.252.2.40,80.252.2.41,80.252.2.42,80.252.2.43,80.252.2.44,80.252.2.45,80.252.2.46,80.252.2.47,80.252.2.48,80.252.2.49,80.252.2.50,80.252.2.51,80.252.2.52,80.252.2.53,80.252.2.54,80.252.2.55,80.252.2.56,80.252.2.57,80.252.2.58,80.252.2.59,80.252.2.60,80.252.2.61,80.252.2.62,80.252.2.63,80.252.2.64,80.252.2.65,80.252.2.80,80.252.2.67,80.252.2.68,80.252.2.69,80.252.2.70,80.252.2.71,80.252.2.72,80.252.2.73,80.252.2.74,80.252.2.75,80.252.2.76,80.252.2.77,80.252.2.78,80.252.2.79,80.252.2.80,80.252.2.81,80.252.2.82,80.252.2.83,80.252.2.84,80.252.2.85,80.252.2.86,80.252.2.87,80.252.2.88,80.252.2.89,80.252.2.90,80.252.2.91,80.252.2.92,80.252.2.93,80.252.2.94,80.252.2.95,80.252.2.96,80.252.2.97,80.252.2.98,80.252.2.99,80.252.2.100,80.252.2.101,80.252.2.102,80.252.2.103,80.252.2.104,80.252.2.105,80.252.2.106,80.252.2.107,80.252.2.108,80.252.2.109,80.252.2.110,80.252.2.111,80.252.2.112,80.252.2.113,80.252.2.114,80.252.2.115,80.252.2.116,80.252.2.117,80.252.2.118,80.252.2.119,80.252.2.120,80.252.2.121,80.252.2.122,80.252.2.123,80.252.2.124,80.252.2.125,80.252.2.126,80.252.2.127" jail_box_rootdir="/usr/jail/box" jail_box_hostname="box.fox-host.net" jail_box_devfs_enable="YES" jail_box_devfs_ruleset="devfsrules_jail" - It worked when I had just one IP in jail_box_ip. Is there a way to make auth listen to all my IPs, or should I switch to oidentd or pidentd? Many thanks! -- http://www.home.no/reddvinylene ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Controlling read access
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 John Almberg wrote: |> Hello John, |> |> There are some things that you can try. |> |> What if you connect from localhost and transfer files, is it still very |> slow? |> Try to disable TLS/SSL and see if this improve performance. |> Increase debug level and check the log for any errors. | | Well, I am learning lots about FTP :-) | | I didn't realize that FTP uses extra ports for data channels (yes, I am | a newbie). I use the PF firewall, which of course was blocking the | needed ports. Once I opened them, the connections worked perfectly. | | I also moved the control port from 21 to a higher port, and disabled | insecure FTP connections, requiring TLS/SSL for login. | | I also added pureftpd-enable="YES" to rc.conf, so I can start it up with | /usr/local/etc/rc.d/pure-ftpd restart. | | So far, so good (newbie pats himself on back.) :-) | | Now I have just one major league problem: when I logged in as one of the | users, to test the connections, I discovered that I had SUPER POWERS. I | was able to delete any file that I could see, including ones that were | owned by root. Digging uncovered the fact that pure-ftpd runs with root | privileges... not so good for my situation. | | My guess is I need to compile with the --with-privsep switch turned on... | | So, finally I have a real FreeBSD question! | | What is the proper way, in ports, to set a configuration flag? The only | way I could figure out was to add it to the Makefile. | PRIVSEP "Enable privilege separation" on \ | | If this is the correct way to turn this compile switch on, it doesn't | seem to work. After running: | | make deinstall | make config # checking the privilage separation box | make reinstall | | The logged in user can still delete any file, regardless of permissions | or ownership. This is clearly a problem... I don't want my users to be | able to blow away their own websites while they are uploading some | images. I am still digging for info on this problem. Any thoughts, much | appreciated! | | -- John | Hi John, Try this sequence instead, and you should be all set: make deinstall make clean make config (skip this if you've already chosen the options you want) make install The clean target will make sure that your environment is reset back to a known state. The install target will then perform a fresh build and install with the privsep option enabled. If you already had binaries in your port directory, then the reinstall target installs them without rebuilding, as far as I can tell from reading /usr/ports/Mk/bsd.port.mk. Hope that helps, Greg - -- Greg Larkin http://www.sourcehosting.net/ http://www.FreeBSD.org/ - The Power To Serve -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFImc6p0sRouByUApARAl9JAJ0ZN+B0Zwku8rxRNU8+fC9fCApofgCeKcC1 OgqUbzksT17KJzkA41ZvHVk= =j9zs -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: All files on NFS4 mount are owned by 4294967294:4294967294
I changed the NFS back to v3, set it to use TCP rather than UDP in fstab, and everything is happy now. Kris Kennaway-3 wrote: > > mikeco wrote: >> Where is it specified whether to use UDP or TCP for NFS clients? I never >> explicitly set it to one or the other. > > See the manpage. It defaults to UDP in 7.0 and older, although the > default will soon change to TCP mounts since UDP mounts are no longer > appropriate in most cases. > > Kris > > -- View this message in context: http://www.nabble.com/All-files-on-NFS4-mount-are-owned-by-4294967294%3A4294967294-tp18852544p18854355.html Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: All files on NFS4 mount are owned by 4294967294:4294967294
mikeco wrote: Where is it specified whether to use UDP or TCP for NFS clients? I never explicitly set it to one or the other. See the manpage. It defaults to UDP in 7.0 and older, although the default will soon change to TCP mounts since UDP mounts are no longer appropriate in most cases. Kris Kris Kennaway-3 wrote: You could try TCP mounts in case they are less broken on the server side. They are recommended anyway. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: High Availability FreeBSD www cluster
Michael Christie skrev: Hi all , I want to cluster some freeBSD servers, The purpose of this is to learn. I would like to run some basic services like www and mail on a test network. I would like to set up the servers so if one server falls over the other will take over the services automatically, load balanceing would be good as well. I have googled, I could be looking in the wrong place , there seems not to be much in regard to seting up freebsd in a cluster, lots on linux. I have looked at the High Availability Linux project , I see on the front page that it will run on freebsd. So I am a bit lost and i am wanting to learn how to cluster freebsd web and mail servers, I have looked at Beowulf clusters, which seem to give computers more grunt, Can some on on the list please advise me on what clustering softwhere i need to get started and if the High Availability Linux project softwhere will do the job. web links any thing to help me get started would be good. No I do not want to change over to linux. Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.138 / Virus Database: 270.5.12/1595 - Release Date: 2008-08-06 08:23 Hello, I have been running freevrrpd and pen (http://siag.nu/pen/ or in ports) for HA web services. My setup was a firewall/gateway consisting of more than 1 machine using freevrrpd thus enabling failover for the firewall/gateway. I write firewall and not firewalls since freevrrpd creates a virtual ip that is failover'ed between the machines. On the firewall/gateway pen were running and pointed towards the web servers. Pen can point at as many web servers as you like and balances the load between them in a very simple way. If the web servers are identical in setup they become redundant. DNS loadbalancing is very similar. Good luck! /Roger ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Controlling read access
Hello John, There are some things that you can try. What if you connect from localhost and transfer files, is it still very slow? Try to disable TLS/SSL and see if this improve performance. Increase debug level and check the log for any errors. Well, I am learning lots about FTP :-) I didn't realize that FTP uses extra ports for data channels (yes, I am a newbie). I use the PF firewall, which of course was blocking the needed ports. Once I opened them, the connections worked perfectly. I also moved the control port from 21 to a higher port, and disabled insecure FTP connections, requiring TLS/SSL for login. I also added pureftpd-enable="YES" to rc.conf, so I can start it up with /usr/local/etc/rc.d/pure-ftpd restart. So far, so good (newbie pats himself on back.) :-) Now I have just one major league problem: when I logged in as one of the users, to test the connections, I discovered that I had SUPER POWERS. I was able to delete any file that I could see, including ones that were owned by root. Digging uncovered the fact that pure- ftpd runs with root privileges... not so good for my situation. My guess is I need to compile with the --with-privsep switch turned on... So, finally I have a real FreeBSD question! What is the proper way, in ports, to set a configuration flag? The only way I could figure out was to add it to the Makefile. PRIVSEP "Enable privilege separation" on \ If this is the correct way to turn this compile switch on, it doesn't seem to work. After running: make deinstall make config # checking the privilage separation box make reinstall The logged in user can still delete any file, regardless of permissions or ownership. This is clearly a problem... I don't want my users to be able to blow away their own websites while they are uploading some images. I am still digging for info on this problem. Any thoughts, much appreciated! -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: All files on NFS4 mount are owned by 4294967294:4294967294
Where is it specified whether to use UDP or TCP for NFS clients? I never explicitly set it to one or the other. Kris Kennaway-3 wrote: > > You could try TCP mounts in case they are less broken on the > server side. They are recommended anyway. > -- View this message in context: http://www.nabble.com/All-files-on-NFS4-mount-are-owned-by-4294967294%3A4294967294-tp18852544p18853603.html Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: All files on NFS4 mount are owned by 4294967294:4294967294
mikeco wrote: I've tried mounting it as nfs rather than nfs4, but it just scrolls an error until I send a break: mount -t nfs cnfs:/export /nfs [udp] cnfs:/export: NFSPROC_NULL: RPC: Timed out That says the server is failing to respond to the client's mount request. You could try TCP mounts in case they are less broken on the server side. They are recommended anyway. Kris An rpcinfo of the NFS server shows that it should support versions 2-4: $ rpcinfo -p cnfs | grep nfs 132 udp 2049 nfs 133 udp 2049 nfs 1002272 udp 2049 nfs_acl 1002273 udp 2049 nfs_acl 132 tcp 2049 nfs 133 tcp 2049 nfs 134 tcp 2049 nfs 1002272 tcp 2049 nfs_acl 1002273 tcp 2049 nfs_acl I don't mind what version of NFS I end up using, so long as users are able to access the share properly. I'll also take a look at fs. -Mike Kris Kennaway-3 wrote: mikeco wrote: I have mounted an NFS4 filesystem shared by a Solaris 10 cluster environment and am able to browse all of the files, but I cannot touch anything on the filesystem because of all of the user and group permissions being off. Here's my fstab entry: cnfs:/export /nfsnfs4 rw When I first umount and mount the filesystem, permissions seem to be working properly. Users in our NIS environment have their home directories on /nfs and, for example, are able to create files in their homes. Once I try to touch a file in a directory other than my home, I get a "Permission denied" error and I am no longer able to even touch files in my own home directory. Is there a way that I can get permissions to show up correctly? Thank you, -Mike (trimmed)try NFSv3 or the new implementation recently posted to fs@ Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: All files on NFS4 mount are owned by 4294967294:4294967294
I've tried mounting it as nfs rather than nfs4, but it just scrolls an error until I send a break: mount -t nfs cnfs:/export /nfs [udp] cnfs:/export: NFSPROC_NULL: RPC: Timed out An rpcinfo of the NFS server shows that it should support versions 2-4: $ rpcinfo -p cnfs | grep nfs 132 udp 2049 nfs 133 udp 2049 nfs 1002272 udp 2049 nfs_acl 1002273 udp 2049 nfs_acl 132 tcp 2049 nfs 133 tcp 2049 nfs 134 tcp 2049 nfs 1002272 tcp 2049 nfs_acl 1002273 tcp 2049 nfs_acl I don't mind what version of NFS I end up using, so long as users are able to access the share properly. I'll also take a look at fs. -Mike Kris Kennaway-3 wrote: > > mikeco wrote: >> I have mounted an NFS4 filesystem shared by a Solaris 10 cluster >> environment >> and am able to browse all of the files, but I cannot touch anything on >> the >> filesystem because of all of the user and group permissions being off. >> Here's my fstab entry: >> >> cnfs:/export /nfsnfs4 rw >> >> When I first umount and mount the filesystem, permissions seem to be >> working >> properly. Users in our NIS environment have their home directories on >> /nfs >> and, for example, are able to create files in their homes. Once I try to >> touch a file in a directory other than my home, I get a "Permission >> denied" >> error and I am no longer able to even touch files in my own home >> directory. >> >> Is there a way that I can get permissions to show up correctly? >> >> Thank you, >> -Mike > > (trimmed)try NFSv3 or the new implementation recently posted to fs@ > > Kris > > -- View this message in context: http://www.nabble.com/All-files-on-NFS4-mount-are-owned-by-4294967294%3A4294967294-tp18852544p18853160.html Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: qt4-moc-4.4.1 not compiling (compiler/system not supported)
Bugzilla from [EMAIL PROTECTED] wrote: > > please force update qmake4 and qt4-corelib ports: > > # portmaster devel/qmake4 devel/qt4-corelib > # portupgrade -f devel/qmake4 devel/qt4-corelib > I have forced packages one by one today. Thanks for help and updating UPDATING file. -- View this message in context: http://www.nabble.com/qt4-moc-4.4.1-not-compiling-%28compiler-system-not-supported%29-tp18829459p18853066.html Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: All files on NFS4 mount are owned by 4294967294:4294967294
mikeco wrote: I have mounted an NFS4 filesystem shared by a Solaris 10 cluster environment and am able to browse all of the files, but I cannot touch anything on the filesystem because of all of the user and group permissions being off. Here's my fstab entry: cnfs:/export /nfsnfs4 rw When I first umount and mount the filesystem, permissions seem to be working properly. Users in our NIS environment have their home directories on /nfs and, for example, are able to create files in their homes. Once I try to touch a file in a directory other than my home, I get a "Permission denied" error and I am no longer able to even touch files in my own home directory. Is there a way that I can get permissions to show up correctly? Thank you, -Mike The NFSv4 client currently in FreeBSD is old and unmaintained. If you can't find an answer to this, try NFSv3 or the new implementation recently posted to fs@ Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
All files on NFS4 mount are owned by 4294967294:4294967294
I have mounted an NFS4 filesystem shared by a Solaris 10 cluster environment and am able to browse all of the files, but I cannot touch anything on the filesystem because of all of the user and group permissions being off. Here's my fstab entry: cnfs:/export /nfsnfs4 rw When I first umount and mount the filesystem, permissions seem to be working properly. Users in our NIS environment have their home directories on /nfs and, for example, are able to create files in their homes. Once I try to touch a file in a directory other than my home, I get a "Permission denied" error and I am no longer able to even touch files in my own home directory. Is there a way that I can get permissions to show up correctly? Thank you, -Mike -- View this message in context: http://www.nabble.com/All-files-on-NFS4-mount-are-owned-by-4294967294%3A4294967294-tp18852544p18852544.html Sent from the freebsd-questions mailing list archive at Nabble.com. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Long mbuf chains
Hi All I'm working on an Ethernet driver for FreeBSD 7.0. Taking network performance numbers I encountered very long mbuf chains on the sender side. The symptom is constant, always during iperf/netperf TCP stream tests with message sizes of 128 bytes (>200 mbufs per chain), 1024 bytes (30-60 mbufs per chain) and 2048 bytes. My problem is that long chains require some kind of defragmentation/cutting before it can be properly DMAd. This is pretty a expansive operation. 1. Is there a way of tuning the OS for sending limited length mbuf chains? I thought setting "net.inet.ip.maxfragsperpacket" would do it but it doesn't. 2. Is there a better way of handling this issue? Thanks, Yony ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Freebsd auto locking users
Khachatur Shahinyan wrote: Dear FreeBsd gurus, I have a problem concerning users password and authentication policies. The goal is 1)make freebsd to lock users after 3 unsuccessful login attempts, 2)force users to change their passwords every 90 days I've done such changes in Linux distros, with various PAM modules.But in Freebsd it seems that i need to use login.conf file. I think you want PAM in FreeBSD also. Check http://www.freebsd.org/doc/en/articles/pam/index.html Here I made necessary changes in that file: >> default:\ . . . :login-retries=1:\ :passwordtime=90d:\ :warnpassword=7d:\ :warnexpire=7d:\ >>> Then I made the cap_mkdb /etc/login.conf , and everything went normal, no error messages, but after adding a test user I see no changes in the master.passwd file. The fields which are reserved for password aging parameters are 0:0 test:$1$F9yf.PuK$xqIsGEgK3MexpPZ4UBav0.:1001:1001::0:0:User &:/home/test:/bin/sh And the locking point does not work either, e.g. no matter how many times I input wrong password, I'm still able to login. :( I cannot understand what I'm doing wrong, and what should be done solve this issues? I'm not an expert Freebsd administration, so any comments and suggestions are welcome. Kevin Kinsey -- //GO.SYSIN DD *, DOODAH, DOODAH ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Wireless net Card
I thought you were asking about a FreeBSD driver. If you are using Linux then the driver may work. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: needs drivers for the gadgets in freebsd
On Wed, 6 Aug 2008 15:31:44 +0545 "Prakash Poudyal" <[EMAIL PROTECTED]> wrote: >Here I want to install some gadgets like webcam wireless ethernet USB >card and also Wireless PC card in laptop contents freebsd OS. But >when I join these gadgets in the notebook it does not show any sign of >connected in the Notebook. I do have driver for windows version. But >I donot use windows as my OS. So here I have a probelm any body give >me the suggestion I am not sure if this is what you are looking for or not. http://www.freebsd.org/cgi/man.cgi?query=ndisgen&sektion=8 -- Gerard [EMAIL PROTECTED] The great nations have always acted like gangsters and the small nations like prostitutes. Stanley Kubrick signature.asc Description: PGP signature
RE: Upgrading from 6.x to 7.x
> Warren Liddell > I have read a lot of ways an issues with upgrading to 7.x from 6.x ... the > main place that seemd ot have someewhat simple guidelines was > http://people.freebsd.org/~rse/upgrade/freebsd-upgrade-6x-7x.txt .. however > i wanted to know if that is the most simplest an efficent way to go about the > process ? > > The reason i ask as this machine is a production system and cant afford for > any down time or in theory anything to break to cause down time in the > system. > > Any thoughts etc are always welcomed. We have upgraded quite a few FreeBSD 6.2 and 6.3 servers to 7.0 and the only problems we've had have been caused by admin-input :-) !!!ACHTUNG DANGER!!! !!!GEWAAR !!! INKOZI Any upgrade or patching can potentially lead to a non-functioning server. The best way to do an upgrade is pre-test the upgrade on similar hardware, same software and also the same FreeBSD version. So load up a FreeBSD 6.2 server, install all the apps you use on your production server and then go through the upgrade steps and make sure that everything is working before you go ahead with the live update. This also gives you good practice. Backups are also essential in case the sever dies and you need to get it back in a hurry. Now back to updating: The doc by Ralf looks very comprehensive but also very complicated; it also differs slightly from the FreeBSD handbook. (http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.htm l) The easiest way to do the upgrade (if you are using a GENERIC kernel) is to use Freebsd-update (http://www.daemonology.net/freebsd-update/) It's a pretty powerful tool which allows you to do binary updates for FreeBSD. To upgrade between major versions you would want to check out this page: http://www.daemonology.net/blog/2007-11-11-freebsd-major-version-upgrade .html. The second more difficult method which is recommended by the FreeBSD handbook and slightly tweaked by me is as follows: 1) Get the latest source # cp /usr/share/examples/cvsup/stable-supfile /usr/local/etc/ 2) Edit the supfile, replace CHANGE_THIS.FreeBSD.org with your closet mirror (http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html#CV SUP-MIRRORS) #csup /usr/local/etc/stable-supfile 3) less /usr/src/UPDATING and check for any warnings, notes, letters to the editor etc. 4) Perform Update: # cd /usr/src # make buildworld # make buildkernel # make installkernel # reboot # cd /usr/src # mergemaster -p # make installworld # mergemaster - (all files except those that have been manually edited) # reboot !done! If you have a custom kernel you would change Step #4 to the following: # cd /usr/src # make -j10 buildworld # make buildkernel KERNCONF=kernelname # make installkernel KERNCONF=kernelname # reboot # cd /usr/src # mergemaster -p # make installworld # mergemaster - all files except /etc/hosts, /etc/motd, /etc/passwd, # reboot !!done!! Rudi ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
firefox3 on sparc64?
I'm trying to build firefox3 from ports on FBSD Alpha. The build fails with the error following warning: "cast increases required alignment of target type". Following a quick search, I believe this casting should also fail on FBSD sparc64. Anybody tried building firefox3 on sparc64? anton *** The error: gmake[5]: Entering directory `/usr/ports/www/firefox3/work/mozilla/netwerk/cookie/src' nsCookieService.cpp c++ -o nsCookieService.o -c -DMOZILLA_INTERNAL_API -D_IMPL_NS_COM -DEXPORT_XPT_API -DEXPORT_XPTC_API -D_IMPL_NS_COM_OBSOLETE -D_IMPL_NS_GFX -D_IMPL_NS_WIDGET -DIMPL_XREAPI -DIMPL_NS_NET -DIMPL_THEBES -DOSTYPE=\"FreeBSD6\" -DOSARCH=FreeBSD -DIMPL_NS_NET -I. -I. -I../../../dist/include/xpcom -I../../../dist/include/string -I../../../dist/include/pref -I../../../dist/include/storage -I../../../dist/include -I../../../dist/include/necko -I/usr/local/include/nspr -I/usr/include -I../../../dist/sdk/include -I/usr/local/include -fPIC -I/usr/local/include -I/usr/local/include -fno-rtti -fno-exceptions -Wall -Wconversion -Wpointer-arith -Woverloaded-virtual -Wsynth -Wno-ctor-dtor-privacy -Wno-non-virtual-dtor -Wcast-align -Wno-long-long -O -pipe -mcpu=ev6 -mieee -O2 -fno-strict-aliasing -fno-strict-aliasing -fshort-wchar -pipe -DNDEBUG -DTRIMMED -O -Werror -I/usr/local/include -I/usr/local/include -DMOZILLA_CLIENT -include ../../../mozilla-config.h nsCookieService.cpp ../../../dist/include/xpcom/nsTHashtable.h: In static member function `static PRBool nsTHashtable::s_MatchEntry(PLDHashTable*, const PLDHashEntryHdr*, const void*) [with EntryType = nsCookieEntry]': ../../../dist/include/xpcom/nsTHashtable.h:335: instantiated from `PRBool nsTHashtable::Init(PRUint32) [with EntryType = nsCookieEntry]' nsCookieService.cpp:418: instantiated from here ../../../dist/include/xpcom/nsTHashtable.h:368: warning: cast from `const PLDHashEntryHdr*' to `const nsCookieEntry*' increases required alignment of target type gmake[5]: *** [nsCookieService.o] Error 1 -- Anton Shterenlikht Room 2.6, Queen's Building Mech Eng Dept Bristol University University Walk, Bristol BS8 1TR, UK Tel: +44 (0)117 928 8233 Fax: +44 (0)117 929 4423 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: IBM eServer x225 - LSI 1030 SCSI - BTX Halted / infinite loop
underligast wrote: On Tue, Aug 5, 2008 at 10:15 PM, Derek Ragona wrote: Obviously it is the SCSI card or drives. Have you tried changing the BIOS settings on the SCSI? You might want to try changing the SCSI BUS speed. You may also want to try turning off hyperthreading. -Derek Disabling Hyperthreading didn't do anything, and i cannot find many options for the SCSI. I'll try lowering the speed and i will also try another drive if i can find one. I also tried 8.0-current bootcd and that lists the dvd-rom and the floppy but none of the disks. There's another four x225:s at work but they all have lsi-controllers. I was really looking forward to using the hotswap.. Thank you for your replies, i hope you can help me fix this eventually Ok, so 8-CURRENT boots? There have been modifications to the boot loader, I think they will be present in 7.1. The controller is a different problem - apparently the driver doesn't recognize it. There are a few things you can try but all of them depend on that you can compile and boot a different kernel on the machine (i.e. different from what's on the official CDs). If you can do this (for example, by installing a test system on a drive on a different, supported controller, or possibly on a USB drive), ask on hardware@ mailing list for further instructions. signature.asc Description: OpenPGP digital signature
Re: [Off Topic] Clients still not connecting to the FreeBSD mail server
Hi Andrew, Nice name :) Andrew Falanga wrote: Hi, --snip-- I've verified the same timeout behavior with Outlook Express and Thunderbird. Using Thunderbird, I was able to check different settings too. The settings should be to use authentication on the smtp server using SSL. Someone, please educate me, does this mean that the authentication takes place over port 465 and the regular smtp still takes place over 25, or do both take place over 25? I ask because KMail (my setup at home that works) says to use SSL, not TLS which uses port 465. At the server, I use sockstat and see that on IPv4 sendmail has an open port on 465. Depending on the mailserver and its setup it should be able to support SSL/TLS and unencrypted session on port 25. On port 465 Only SSL/TLS sessions are supported. There is also port 587 (again depending on the server and setup) that uses port 587 just for the submission of email using unencrypted/SSL/TLS sessions. Depending on the mailserver it should also be able to support authentication on any of the 3 above ports. I hope that helps. Cheers cya Andrew Thanks, Andy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: IBM eServer x225 - LSI 1030 SCSI - BTX Halted / infinite loop
On Tue, Aug 5, 2008 at 10:15 PM, Derek Ragona wrote: > Obviously it is the SCSI card or drives. Have you tried changing the > BIOS settings on the SCSI? You might want to try changing the SCSI BUS > speed. You may also want to try turning off hyperthreading. > > -Derek > Disabling Hyperthreading didn't do anything, and i cannot find many options for the SCSI. I'll try lowering the speed and i will also try another drive if i can find one. I also tried 8.0-current bootcd and that lists the dvd-rom and the floppy but none of the disks. There's another four x225:s at work but they all have lsi-controllers. I was really looking forward to using the hotswap.. Thank you for your replies, i hope you can help me fix this eventually ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: general questions about 7.0 and computer efficiency......
Gary Kline wrote: I kep track on the load on my main server, and it is rarely above 0.20. If the load is a poor metric of power use, what is better? (My new `Watt-o-Meter' is checking the power right now, but I would like to know what drink the most juice: disk,RAM, processor, OpSys? Number of hit/hours? I want my upgrades to be as cost-effective as possible, in other words. Generally, the faster anything runs the more power it consumes. It takes more energy to switch on-off (ie generate a digital pulse) the faster you try and do it. Similar considerations apply to disks -- the faster the platters spin and the faster you need to move the heads about, the more energy it takes. Actually, for disks the physical size of the disk has quite an effect there too: small form-factor disks as commonly used in laptops and various HP servers are more efficient GB for GB than the equivalent 5.25" standard drives. There are exceptions to this rule -- for instance early model Xeon processors ran really hot, meaning they were power pigs. Current AMD and Core2 processors use lower voltages internally and consequently are a lot more thermodynamically efficient. If you want to save energy, there are two pretty useful strategies for the home user: * use eg. laptops -- these are carefully designed to be power efficient in order to give the maximum battery life. They also effectively have a built-in UPS. Similarly you can use low power appliances built around specialist chipsets like the VIA Eden range. * take advantage of the massive computational power of modern high-end kit, and consolidate a number of old machines as virtual hosts on one physical server. There are several freely available host systems you can use -- Xen is an interesting choice, but AFAIK it doesn't support FreeBSD as the *host* -- it's fine for *guests* though. VMWare ESX is apparently available at zero cost as well. Unfortunately even though the running costs will be lower, the up-front costs for either of these strategies will be higher than simply carrying on as before. There's also a significant 'all the eggs in one basket' problem with virtualization. Cheers, Matthew PS. If you happen to be running a whole machine room, then there's a lot of energy efficiency to be recovered by looking carefully at power conversion. A typical large scale UPS will run at about 85% efficiency. An individual computer power supply will usually be less efficient than that. So even before you've got to the 5 and 12V buses on your mother board, 28% or more of your input electrical power has been dispersed as heat. Then consider how a high-end UPS works. It takes in incoming 240V 50HZ AC power and internally converts it into 12 or 24V DC. Some of this power goes towards charging its battery units, but the rest is /converted back to 240V 50Hz AC/ for supply to the computer PSU, which then /converts it back to 5 and 12V DC again/. Converting back and forth so many times is insane. Better for the UPS to provide low voltage DC electrical power -- for historical reasons it's usual to provide 48V DC (the higher voltage means there's less transmission loss due to resistance in cabling, plus with this sort of set-up minimizing the length of cable runs is good practice too). Unfortunately, trying to find a commodity PCs (even server class machines) with 48V DC PSUs is next to impossible and damnably expensive even so. -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
needs drivers for the gadgets in freebsd
Hello Everybody, Here I want to install some gadgets like webcam wireless ethernet USB card and also Wireless PC card in laptop contents freebsd OS. But when I join these gadgets in the notebook it does not show any sign of connected in the Notebook. I do have driver for windows version. But I donot use windows as my OS. So here I have a probelm any body give me the suggestion Prakash ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Controlling read access
Original Message- From: John Almberg [mailto:[EMAIL PROTECTED] Sent: Tuesday, August 05, 2008 10:55 PM To: Catalin Miclaus Cc: freebsd-questions@freebsd.org Subject: Re: Controlling read access On Jul 31, 2008, at 5:40 PM, Catalin Miclaus wrote: > Hello John, > > If you are providing only FTP services for those users, perhaps you > want > to go for an FTP server that handles virtual users. > I'm using pure-ftpd and it works great. > Google will help you find some nice howto's for same. > Hi Catalin... I installed pure--ftpd with TLS/SSL support and am having some problems with it... 1. VERY slow to list files the first time. I thought this was a DNS problem, so tried the -H flag, but no joy. Still slow. 2. When I try to connect with TLS/SSL, I get a connection, but the file list takes so long that the connection times out. Any ideas? I Googled for this problem, but the only hint I came up with was the -H flag... Thanks: John Hello John, There are some things that you can try. What if you connect from localhost and transfer files, is it still very slow? Try to disable TLS/SSL and see if this improve performance. Increase debug level and check the log for any errors. Best Regards Catalin Miclaus Network/Security ISP-Data Starcomms Ltd. DISCLAIMER: The information contained in this message (including any attachments) is confidential and may be privileged. If you have received it by mistake please notify the sender by return e-mail and permanently delete this message and any attachments from your system. Any form of dissemination, use, review, distribution, printing or copying of this message in whole or in part is strictly prohibited if you are not the intended recipient of this e-mail. Please note that e-mails are susceptible to change. STARCOMMS PLC shall not be liable for the improper or incomplete transmission of the information contained in this communication nor for any delay in its receipt or damage to your system. STARCOMMS PLC does not guarantee that the integrity of this communication has been maintained or that this communication is free of viruses, interceptions or interferences. STARCOMMS PLC reserves the right to monitor all e-mail communications, whether related to the business of STARCOMMS or not, through its internal or external networks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: general questions about 7.0 and computer efficiency......
On Tuesday 05 August 2008, Gary Kline wrote: > but what is your > best guuess about my old 1998 HP's (400MHz) compared to a > newer, generic 1.8GHz processor? IIRC, my AMD 2.8GHz uproc sucks up > around 75watts; the Intel was maybe 35w. If energy is an issue consider some of the newer low "energy efficient" CPUs like AMD 4850e, 2.5 GHz dual core 45 watts. -- Mike Clarke ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Upgrading from 6.x to 7.x
I have read a lot of ways an issues with upgrading to 7.x from 6.x ... the main place that seemd ot have someewhat simple guidelines was http://people.freebsd.org/~rse/upgrade/freebsd-upgrade-6x-7x.txt .. however i wanted to know if that is the most simplest an efficent way to go about the process ? The reason i ask as this machine is a production system and cant afford for any down time or in theory anything to break to cause down time in the system. Any thoughts etc are always welcomed. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Wireless net Card
On Wednesday 06 August 2008 06:52:51 David Gurvich wrote: > I believe that card uses the Realtek 8185L chipset. You may be able to > get ndis driver to work with it. Download the winxp driver from > http://www.realtek.com.tw/downloads/downloadsView.aspx?Langid=1&PNid=24&PFi >d=1&Level=6&Conn=5&DownTypeID=3&GetDown=false&Downloads=true I don't know if > there is native support. Checking out the realtek page, there is a Linux Driver for the RTL8185L .. would that be able to be used more over then using NDIS with the windows driver ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"