Re: Question about entry in auth.log

[Wojciech Puchar]

Nov 12 15:44:29 mail sshd[30160]: Accepted keyboard-interactive/pam for 
michael from 89.123.165.3 po

rt 55185 ssh2

There is a user michael on the system, but whoever was doing this was not 
him.


I am assuming someone tried to break in using a valid username (michael) but 
with an incorrect password.


it was VALID password. he successfully logged


change password now, look what the intruder messed and tell michael to be 
care more about his password next time.


if intruder wasn't very smart, he may not deleted .history, look what 
he/she did.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Question about entry in auth.log

[Wojciech Puchar]

Very odd. Sigh, Michael is not vacationing in Romania. Doubt he's ever been 
there. I got rid of the michael account (it wasn't used anyway), and 
downloaded a new copy of chkrootkit, installed it and ran it along with 
chklastlog and chkwtmp. Nothing was found. Pehaps this was a harmless enough 
prank? Anything else I ought to look at? Fortunately the michael account did 
not have te ability to su to root.

it doesn't matter if he/she had, if he/she don't know root password.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Question about entry in auth.log

[Valentin Bud]

Hello,
 I personally use key authentication along with DenyUsers and
AllowUsers directives
from sshd. One more thing i do regarding ssh brute force is to make
use of the max-src-conn and
max-src-conn-rate from pf firewall.

My auth logs look like:
Nov 14 11:15:36 xxx sshd[3570]: User root from 211.55.48.179 not
allowed because not listed in AllowUsers
Nov 14 11:15:38 xxx sshd[3572]: Invalid user admin from 211.55.48.179
Nov 14 11:15:41 xxx sshd[3574]: Invalid user test from 211.55.48.179
Nov 14 11:15:44 xxx sshd[3576]: User root from 211.55.48.179 not
allowed because not listed in AllowUsers
Nov 14 11:15:46 xxx sshd[3578]: Invalid user ghost from 211.55.48.179

Five tries from the above ip and if unsuccessful it gets overloaded in
a table and
all the states originating from that ip are killed.

All the servers i have are web/mail ones, none of them is used for
users, so i don't know if this is a good approach
but i wrote it to help make an idea about it.

a great day,
v

On Sat, Nov 15, 2008 at 5:00 AM, Lisa Casey <[EMAIL PROTECTED]> wrote:
>
>
> On Fri, 14 Nov 2008, Tom Marchand wrote:
>
>> Or michael is vacationing in Romania.
>
> Very odd. Sigh, Michael is not vacationing in Romania. Doubt he's ever been
> there. I got rid of the michael account (it wasn't used anyway), and
> downloaded a new copy of chkrootkit, installed it and ran it along with
> chklastlog and chkwtmp. Nothing was found. Pehaps this was a harmless enough
> prank? Anything else I ought to look at? Fortunately the michael account did
> not have te ability to su to root.
>
> Lisa
>
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
>
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Question about entry in auth.log

[Jeremy Chadwick]

On Fri, Nov 14, 2008 at 11:37:15PM -0800, Jeremy Chadwick wrote:
> On Fri, Nov 14, 2008 at 10:00:13PM -0500, Lisa Casey wrote:
> > Very odd. Sigh, Michael is not vacationing in Romania. Doubt he's ever  
> > been there. I got rid of the michael account (it wasn't used anyway), and 
> > downloaded a new copy of chkrootkit, installed it and ran it along with  
> > chklastlog and chkwtmp. Nothing was found. Pehaps this was a harmless  
> > enough prank? Anything else I ought to look at? Fortunately the michael  
> > account did not have te ability to su to root.
> 
> The individual in Romania *was not* able to log in as michael.  The

Correction: the individual **WAS** able to log in as michael.  I missed
the part of the message that said "Accepted" at the front.  Sorry for
confusing you, I've had a very rough week and my brain is not
functioning.

What Wojciech said is correct -- change the password on the account.

Also keep in mind that the user may not have actually logged in and
gotten a shell; the message you see can also happen if the individual
simply scp'd something (e.g. no shell spawned).

-- 
| Jeremy Chadwickjdc at parodius.com |
| Parodius Networking   http://www.parodius.com/ |
| UNIX Systems Administrator  Mountain View, CA, USA |
| Making life hard for others since 1977.  PGP: 4BD6C0CB |

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Question about entry in auth.log

[Wojciech Puchar]

Also keep in mind that the user may not have actually logged in and
gotten a shell; the message you see can also happen if the individual
simply scp'd something (e.g. no shell spawned).


but this case there are other messages about scp, not sure if in auth.log 
or others. i use single file for logs /var/log/messages.




--
| Jeremy Chadwickjdc at parodius.com |
| Parodius Networking   http://www.parodius.com/ |
| UNIX Systems Administrator  Mountain View, CA, USA |
| Making life hard for others since 1977.  PGP: 4BD6C0CB |

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

"High Noonn" DVD??

[Gary Kline]

Do any of you guys know why the DVD version of HIGH NOON won't play on 
my
computers?  I've tried everything I can think of.  Zero.   I watched the
*original* in the theater (I think); then have watched the tape in '98,
and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
just wondering my none of my players won't play it.

thanks,

gary



-- 
 Gary Kline  [EMAIL PROTECTED]  http://www.thought.org  Public Service Unix
http://jottings.thought.org   http://transfinite.thought.org


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: re changing from vista

[Yeef CN]

Windows XP is an alternative

On Sat, Nov 15, 2008 at 8:50 AM, Steven Susbauer <
[EMAIL PROTECTED]> wrote:

> Wojciech Puchar wrote:
> >>
> >> 
> >> But why are we interested in "converting" people?  That borders on
> >> religious, which an operating system should not be.
> >
> > exactly.
> >
> > it's a good idea to tell people about trying FreeBSD if they are already
> > using some flavor of unix.
> >
> > One can be "converted" from Solaris to FreeBSD, from NetBSD to OpenBSD,
> > and (sometimes) from linux to FreeBSD.
> >
> > But not from Windows.
> >
> I disagree strongly. If someone has the interest and ability (if only to
> read docs), they could certainly change from Windows to FreeBSD. The
> point from your quoted post appears to be that it is not a religion to
> be converted to from anything, rather a tool that some will use if they
> want to, or won't. There's nothing wrong with that.
>
> Depending on what someone is hoping to accomplish, I would certainly
> suggest FreeBSD as a suitable tool. It is no sweat off my back if they
> use something different though.
>
>
> To the OP if you're still reading; read through the handbook beforehand.
> At least, see if it's really what you want to get into. There are
> BSD-based desktop systems that may suit you better if you're looking for
> a more familiar experience. There are also many "newbie-friendly" Linux
> distributions that could suit you also.
>
>


-- 
new city  new thoughts  new men
please choose the freesoftware
to:[EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Steven Susbauer]

Gary Kline wrote:
>   Do any of you guys know why the DVD version of HIGH NOON won't play on 
> my
>   computers?  I've tried everything I can think of.  Zero.   I watched the
>   *original* in the theater (I think); then have watched the tape in '98,
>   and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
>   just wondering my none of my players won't play it.
> 
>   thanks,
> 
>   gary
> 
> 
I would wager it has something to do with a copy protection mechanism.
Are you able to play other copy-protected DVDs fine?

   Steve



signature.asc
Description: OpenPGP digital signature

Re: Problems with Xfce & console

[Fbsd1]

Bernt Hansson wrote:

Hello list

When exiting xfce to return to my console, xfce put my graphicscard in
an unusable state i.e no picture and my monitors led blinks slowly as if
it where in powersave/suspend mode. This do not happen with fluxbox,
windowmaker or twm. Commenting out the "Virtual" directive helps but
then I have to set the reolution every time xfce is started.

The other WM's get really strange resolutions if "Virtual" is commented
out, like 2880x1400 and such.

Is it a driver or xfce issue?

%uname -a
FreeBSD testbox 7.0-RELEASE-p3 FreeBSD 7.0-RELEASE-p3 #0: Thu Aug 28
14:13:44 CEST 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  amd64

xorg.conf

Section "Device"
Identifier  "his radeon 3870"
Driver  "radeon"
#   BusID   "PCI:1:0:0"
Option "DDCMode" "1"Driver specific option
Option "PanelSize" "1280x1024"  Driver specific option
EndSection


Section "Screen"
Identifier  "Screen 1"
Device  "his radeon 3870"
Monitor "Hitachi CM752ET"
DefaultDepth 24

Subsection "Display"
Depth   24
Modes  "640x480" "800x600" "1024x768" "1280x1024" "1600x1200"
Virtual 1280 1024
   ViewPort0 0
EndSubsection
EndSection

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"





Did you try ctrl-Alt-backspace on the blank screen to return to the 
command line. I think what you are seeing is the xorg screen. Try while 
in xfce ctrl-alt-f1 to switch from desktop to virtual console. and then 
alt f9 to return to desktop?



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

puc(4) not attaching to NM9845-based serial card in 6.3-p5

[Darren Pilgrim]

I have the following PCI, 4-port serial card:

[EMAIL PROTECTED]:2:0: class=0x070002 card=0x00041000 chip=0x98459710 rev=0x01 
hdr=0x00

vendor = 'MosChip Semiconductors (Was: Netmos Technology)'
device = 'Nm9845 Parallel/Serial Port Adapter'
class  = simple comms
subclass   = UART

This is supposedly supported by puc(4); however, I'm unable to get the 
driver to attach to the card.  I tried both uart+puc and sio+puc.  In 
all both case, the uart/sio drivers attach to only the serial port on 
the motherboard.  There are a number of hits on the mailing list 
archives that discuss puc(4) not attaching to this device, but none 
provide any conclusive answers.


--
Darren Pilgrim
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: php5 Only IE Users can View Pages.

[Ivan Voras]

Martin McCormick wrote:
>   I inherited a mrtg application thatnow is running on a
> FreeBSD6.3 system. Clients report that one can see the php pages
> when using Internet Explorer but not other browsers that should
> display the pages. Those customers see raw code.
> 
>   Any suggestion as to what I should be looking for?
> 
>   One of the browsers for sure that isn't working is
> firefox.
> 
>   Many thanks.

Looks like you didn't configure PHP to properly interact with the web
server.



signature.asc
Description: OpenPGP digital signature

Re: re changing from vista

[Wojciech Puchar]

Windows XP is an alternative


excellent for windows vista alternative. it is much faster (while still 
slow of course), and there are fixes available that allows to use any new drivers 
from vista under XP.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Multiple sound cards snd_hda

[Wojciech Puchar]

do you make sound studio or just connecting lots of gsm phones to asterisk 
PBX using chan_celliax? ;)


no idea if it supports. as every driver - it should, but simply check the 
sources.



On Fri, 14 Nov 2008, Sam Fourman Jr. wrote:


hello,

can anyone verify that the new snd_hda driver in -current supports
multiple sound cards?
I am looking to put 3 of Encore ENM232-8VIA into a FreeBSD 8 PC

any help would be appreciated

Sam Fourman Jr.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Gary Kline]

On Sat, Nov 15, 2008 at 03:55:42AM -0600, Steven Susbauer wrote:
> Gary Kline wrote:
> > Do any of you guys know why the DVD version of HIGH NOON won't play on 
> > my
> > computers?  I've tried everything I can think of.  Zero.   I watched the
> > *original* in the theater (I think); then have watched the tape in '98,
> > and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> > just wondering my none of my players won't play it.
> > 
> > thanks,
> > 
> > gary
> > 
> > 
> I would wager it has something to do with a copy protection mechanism.
> Are you able to play other copy-protected DVDs fine?
> 
>Steve


All the time with every one I've tried in recent years.  Since this is
from 1952, perhaps the trouble is that it lacks the copy-protection.
anyway, this is so ancient, it would be a waste to copy! 

gary


> 



-- 
 Gary Kline  [EMAIL PROTECTED]  http://www.thought.org  Public Service Unix
http://jottings.thought.org   http://transfinite.thought.org


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Multiple sound cards snd_hda

[Sam Fourman Jr.]

On Sat, Nov 15, 2008 at 4:30 AM, Wojciech Puchar
<[EMAIL PROTECTED]> wrote:
> do you make sound studio or just connecting lots of gsm phones to asterisk
> PBX using chan_celliax? ;)

I am attempting to setup a multi room(zone) home audio(mp3) system
it would be ideal to have 9 zones so I am "thinking" that with the new
hda driver in current
I can use all 6 connections on the Encore ENM232-8VIA, as separate outputs

using the following text from the snd_hda man page as a basis, I hope to
set up 3 stereo 2.0 devices per physical sound card. Maybe I could get
6 per sound card I will have to try it out.

 Example 4
 Setting the device.hints(5) options

 hint.hdac.0.cad0.nid20.config="as=1 seq=0"
 hint.hdac.0.cad0.nid24.config="as=1 seq=1 device=Line-out"
 hint.hdac.0.cad0.nid26.config="as=1 seq=2 device=Line-out"
 hint.hdac.0.cad0.nid21.config="as=2 seq=0"

 will give 2 devices: pcm0 for 5.1 playback via 3 rear connectors (line-
 out and retasked mic and line-in) and headset (headphones and mic) at
 front connectors.  pcm1 for internal speaker playback.  On headphones
 connection rear connectors will be muted.



I am hoping to find a way to have several separate copies of amarok
running at once
to feed the separate output channels.

any input from anyone would be appreciated.

Sam Fourman Jr.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Roland Smith]

On Sat, Nov 15, 2008 at 12:46:03AM -0800, Gary Kline wrote:
> 
>   Do any of you guys know why the DVD version of HIGH NOON won't play on 
> my
>   computers?  I've tried everything I can think of.  Zero.   I watched the
>   *original* in the theater (I think); then have watched the tape in '98,
>   and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
>   just wondering my none of my players won't play it.

Different region? Most players are locked to a certain region, and won't
play disks from other regions. Although it is possible to install
upgraded or modified firmware that removes the region encoding, that
usually needs a windows program. And it can brick your player when done
incorrectly.

Roland
-- 
R.F.Smith   http://www.xs4all.nl/~rsmith/
[plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated]
pgp: 1A2B 477F 9970 BA3C 2914  B7CE 1277 EFB0 C321 A725 (KeyID: C321A725)


pgph6UXsoWxhe.pgp
Description: PGP signature

Fwd: Help with coova-chilli

[Odhiambo Washington]

Hi list,

Sorry for the cross-posting. I am sure I can get help from this list.

I am trying to compile coova-chilli on FreeBSD 6.x or 7.x using an
unofficial port that I stumbled upon from http://www.geeklan.co.uk/?p=106
One has to extract the port into ports/net-mgmt and build from there.

Now I am trying to install it on FreeBSD 7.1-PRE and the build fails with
the following:

email# pwd
/usr/ports/net-mgmt/coova-chilli
email# make
===>  Vulnerability check disabled, database not found
=> coova-chilli-1.0.12.tar.gz doesn't seem to exist in
/usr/ports/distfiles/.
=> Attempting to fetch from http://ap.coova.org/chilli/.
coova-chilli-1.0.12.tar.gz100% of  539 kB 9328  Bps
00m00s
===>  Extracting for coova-chilli-1.0.12
=> MD5 Checksum OK for coova-chilli-1.0.12.tar.gz.
=> SHA256 Checksum OK for coova-chilli-1.0.12.tar.gz.
===>  Patching for coova-chilli-1.0.12
===>  Applying FreeBSD patches for coova-chilli-1.0.12
===>  Configuring for coova-chilli-1.0.12
checking for a BSD-compatible install... /usr/bin/install -c -o root -g
wheel
checking whether build environment is sane... yes
checking for gawk... gawk
checking whether make sets $(MAKE)... yes
checking for gcc... cc
checking for C compiler default output file name... a.out
checking whether the C compiler works... yes
checking whether we are cross compiling... no
checking for suffix of executables...
checking for suffix of object files... o
checking whether we are using the GNU C compiler... yes
checking whether cc accepts -g... yes
checking for cc option to accept ANSI C... none needed
checking for style of include used by make... GNU
checking dependency style of cc... gcc3
checking build system type... configure: error: /bin/sh ./config.sub
-build=i386-portbld-freebsd7.1 failed
===>  Script "configure" failed unexpectedly.
Please report the problem to [EMAIL PROTECTED] [maintainer] and attach
the "/usr/ports/net-mgmt/coova-chilli/work/coova-chilli-1.0.12/config.log"
including the output of the failure of your make command. Also, it might be
a good idea to provide an overview of all packages installed on your system
(e.g. an `ls /var/db/pkg`).
*** Error code 1

Stop in /usr/ports/net-mgmt/coova-chilli.


The config.log is available here:
http://email.suavegroup.com/~wash/config.log.txt

Will really appreciate your help in resolving the cause of the failure.


-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
"Oh My God! They killed init! You Bastards!"
   --from a /. post



-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
"Oh My God! They killed init! You Bastards!"
   --from a /. post
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Fabian Keil]

On Sat, 15 Nov 2008 13:37:26 +0100, Roland Smith <[EMAIL PROTECTED]> wrote:

> On Sat, Nov 15, 2008 at 12:46:03AM -0800, Gary Kline wrote:
> > 
> > Do any of you guys know why the DVD version of HIGH NOON won't play on 
> > my
> > computers?  I've tried everything I can think of.  Zero.   I watched the
> > *original* in the theater (I think); then have watched the tape in '98,
> > and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> > just wondering my none of my players won't play it.
> 
> Different region? Most players are locked to a certain region, and won't
> play disks from other regions. Although it is possible to install
> upgraded or modified firmware that removes the region encoding, that
> usually needs a windows program. And it can brick your player when done
> incorrectly.

IIRC respecting the region is only necessary for players with a
licensed CSS implementation. If the player cracks CSS anyway,
it usually ignores the region as well so messing with the firmware
shouldn't be necessary.

Fabian


signature.asc
Description: PGP signature

Re: Problems with Xfce & console

[Glen Barber]

On Sat, Nov 15, 2008 at 2:19 AM, Bernt Hansson <[EMAIL PROTECTED]> wrote:
> Hello list
>
> When exiting xfce to return to my console, xfce put my graphicscard in
> an unusable state i.e no picture and my monitors led blinks slowly as if
> it where in powersave/suspend mode. This do not happen with fluxbox,
> windowmaker or twm. Commenting out the "Virtual" directive helps but
> then I have to set the reolution every time xfce is started.
>
> The other WM's get really strange resolutions if "Virtual" is commented
> out, like 2880x1400 and such.
>
> Is it a driver or xfce issue?
>
> %uname -a
> FreeBSD testbox 7.0-RELEASE-p3 FreeBSD 7.0-RELEASE-p3 #0: Thu Aug 28
> 14:13:44 CEST 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  amd64
>
> xorg.conf
>
> Section "Device"
>Identifier  "his radeon 3870"
>Driver  "radeon"
> #   BusID   "PCI:1:0:0"
>Option "DDCMode" "1"Driver specific option
>Option "PanelSize" "1280x1024"  Driver specific option
> EndSection
>
>
> Section "Screen"
>Identifier  "Screen 1"
>Device  "his radeon 3870"
>Monitor "Hitachi CM752ET"
>DefaultDepth 24
>
>Subsection "Display"
>Depth   24
>Modes  "640x480" "800x600" "1024x768" "1280x1024" "1600x1200"
>Virtual 1280 1024
>   ViewPort0 0
>EndSubsection
> EndSection
>

Are you using the proper driver?  Is the driver up to date?

I have posted several times on this list regarding this issue.  I have
had the same problem with my nVidia card (when I don't have the driver
installed).

Did you install the driver from ports, pkg_add? (Or at all?)

-- 
Glen Barber


"If you have any trouble sounding condescending, find a Unix user to
show you how it's done."
 --Scott Adams
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: IPsec's use of processors

[Patrick Lamaizière]

Le Fri, 14 Nov 2008 13:37:58 +0200,
"Riaan Kruger" <[EMAIL PROTECTED]> a écrit :

> I would like to know how IPsec makes use of a multi processor machine?
> 
> I have gateway (FreeBSD 7.0) with four SAs configured. When testing
> throughput through the configured SAs, I see (with systat) that only
> one cpu works really hard (+-10% idle min), two others work a bit
> (+-70% idle min) and the fourth CPU does pretty much nothing.
> 
> Is this normal, shouldn't at least the two cpus work hard because of
> the high throughput?

I guess that's because the cryptographic requests are dispatched
and done by two kernel threads. The thread 'crypto' dispatches and
processes the requests, the thread 'crypto-returns' returns the results.

You can see these kernel threads with top S H

Regards.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Michael Powell]

Gary Kline wrote:

> 
> Do any of you guys know why the DVD version of HIGH NOON won't play on my
> computers?  I've tried everything I can think of.  Zero.   I watched the
> *original* in the theater (I think); then have watched the tape in '98,
> and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> just wondering my none of my players won't play it.
> 
> thanks,
> 
> gary
> 
> 
> 
 Missing libdvdcss?

-Mike


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Roland Smith]

On Sat, Nov 15, 2008 at 01:47:14PM +0100, Fabian Keil wrote:
> On Sat, 15 Nov 2008 13:37:26 +0100, Roland Smith <[EMAIL PROTECTED]> wrote:
> 
> > On Sat, Nov 15, 2008 at 12:46:03AM -0800, Gary Kline wrote:
> > > 
> > >   Do any of you guys know why the DVD version of HIGH NOON won't play on 
> > > my
> > >   computers?  I've tried everything I can think of.  Zero.   I watched the
> > >   *original* in the theater (I think); then have watched the tape in '98,
> > >   and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> > >   just wondering my none of my players won't play it.
> > 
> > Different region? Most players are locked to a certain region, and won't
> > play disks from other regions. Although it is possible to install
> > upgraded or modified firmware that removes the region encoding, that
> > usually needs a windows program. And it can brick your player when done
> > incorrectly.
> 
> IIRC respecting the region is only necessary for players with a
> licensed CSS implementation. If the player cracks CSS anyway,
> it usually ignores the region as well so messing with the firmware
> shouldn't be necessary.

OK, that's nice to know. All the DVDs that I have play fine with
mplayer, but they're probably all region 2 disks. So I should be able to
play region 1 disks with mplayer?

There seem to be other benefits to updating the firmware, like allowing
faster burns with selected media. There is a firmware update utility for
NEC / Optiarc burners that also works under linux. It's called binflash
[http://binflash.cdfreaks.com/]. There is no source code available, though.

Roland
-- 
R.F.Smith   http://www.xs4all.nl/~rsmith/
[plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated]
pgp: 1A2B 477F 9970 BA3C 2914  B7CE 1277 EFB0 C321 A725 (KeyID: C321A725)


pgpHDP1KPV2Y4.pgp
Description: PGP signature

Re: Problems with Xfce & console

[Glen Barber]

On Sat, Nov 15, 2008 at 9:50 AM, Bernt Hansson <[EMAIL PROTECTED]> wrote:
> Glen Barber skrev:
>>
>> I have posted several times on this list regarding this issue.  I have
>> had the same problem with my nVidia card (when I don't have the driver
>> installed).
>
> Does that affect ANY windowmanager or just xfce?
>

I was using TWM, XFCE, KDE and ION when I had these problems.  I'd
double check your driver config (in ports) and rebuild it, at least to
double check.


-- 
Glen Barber


"If you have any trouble sounding condescending, find a Unix user to
show you how it's done."
 --Scott Adams
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

switching root-fs

[Yury Michurin]

Hello,

I want to create a system, that will minimal boot, start only sshd, then I
connect via ssh, verify system integrity and mount an encrypted
partition(s).

What I have so far:
FreeBSD-7.1-BETA2
I've created one (1gb) a parition that mirrored over 3 drives, swap b
partition on the 3 drives, and another d partition that encrypted with geli,
on top of it there's a ZFS with the copy of
a partition, i can't make ZFS mount as / so i just made tank/usr mount as
/usr etc.

I hope you will provide me some information regarding:
1. So far i haven't noticed that the system became unstable, I guess it's
due the fact the proccess started before the new mount points are able to
access the "boot" filesystem,
but should i expect any problems with init proccess?
2. How can I still access the "boot" filesystem i used the boot after I
create the new filesystems? Lets say i want to re-build world and I want to
sync the boot partition with the new system.
3. Is there any simplier method of creating a full disk encryption with the
abilty of providing the keys remotly over ssh/ssl?

Thank you for your time and assitence,
Yury.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: make doesn't know how to make KERNCONF

[Lowell Gilbert]

Chris St Denis <[EMAIL PROTECTED]> writes:

> Gerardo Paredes wrote:
>> Hello, i have a problem compiling a custom kernel on a AMD 850 MHZ 
>> Processor, however on the last stage  it fails with the following message:
>>
>>
>> make doesn't know how to make KERNCONF
>>
>>
>> the command i run is:
>>
>> cd /usr/src
>> make buildkernel KERNCONF=MIO
>>
>> where MIO is my kernel configuration file, living at /usr/src/sys/i386/conf
>>
>> why it is failing with that error??
>>
>>
>> Regards,
>> Gerardo Paredes

> What shell are you using? That syntax should be fine for csh, but if
> you are using something like bash you may need to change the syntax.

No, the shell isn't interpreting anything in that command line (the
variable assignment is interpreted by make itself), so the command is
fine.  Maybe the sources aren't completely installed?  If I were trying
to exercise my psychic technical support powers, I might guess that the
system makefiles weren't installed.

-- 
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: make doesn't know how to make KERNCONF

[Lowell Gilbert]

[Oops; I sent an earlier version of this message before I had finished it.]

Chris St Denis <[EMAIL PROTECTED]> writes:

> Gerardo Paredes wrote:
>> Hello, i have a problem compiling a custom kernel on a AMD 850 MHZ 
>> Processor, however on the last stage  it fails with the following message:
>>
>>
>> make doesn't know how to make KERNCONF
>>
>>
>> the command i run is:
>>
>> cd /usr/src
>> make buildkernel KERNCONF=MIO
>>
>> where MIO is my kernel configuration file, living at /usr/src/sys/i386/conf
>>
>> why it is failing with that error??
>>
>>
>> Regards,
>> Gerardo Paredes

> What shell are you using? That syntax should be fine for csh, but if
> you are using something like bash you may need to change the syntax.

No, the shell isn't interpreting anything in that command line (the
variable assignment is interpreted by make itself), so the command is
fine.  Maybe the sources aren't completely installed?  If I were trying
to exercise my psychic technical support powers, I might guess that the
system makefiles weren't installed.

Question to the original poster: how did you install the sources?

-- 
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: mdconfig(8) with offset? Or: resizing a NTFS qemu image

[cpghost]

On Sat, Nov 15, 2008 at 01:46:43AM +0100, cpghost wrote:
> Hello,
> 
> I'm trying to extend a ntfs filesystem in a qemu raw image, by
> following the instructions here:
> 
> http://qemu-forum.ipi.fi/viewtopic.php?p=12362
> 
> Of course, this requires sysutils/ntfsprogs and the equivalent of
> losetup. Of course, mdconfig is our losetup.
> 
> Now, how is it possible to mdconfig a file, but starting from a
> specific offset?
> 
> (Of course, taking the image file apart, mdconfig one of its fragments,
> then putting it back together could be a hackish work-around (?), but
> it would be nice if mdconfig were able to map a partial file directly.)

Just one more data point: if I mdconfig the qemu raw image, I do
get both a /dev/md0 and /dev/md0s1 device, so I can fdisk /dev/md0s1
directly.

mdconfig to another offset in the raw image file is therefore not
strictly needed in this special case; but it would still be a
nice-to-have feature.

Regards,
-cpghost.

-- 
Cordula's Web. http://www.cordula.ws/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Problems with Xfce & console

[Nikola Lečić]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

On Sat, 15 Nov 2008 16:43:06 +0100
Bernt Hansson <[EMAIL PROTECTED]> wrote:
 
> For me it's just xfce with option "Virtual".
> if I omit "Virtual" xfce works fine but not any other WM.
> Strange.

Can you try x11-drivers/xf86-video-radeonhd (Driver "radeonhd")?

- -- 
Nikola Lečić = Никола Лечић
fingerprint : FEF3 66AF C90E EDC3 D878  7CDC 956D F4AB A377 1C9B

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.9 (FreeBSD)

iJwEAQEDAAYFAkke9UoACgkQ/MM/0rYIoZgqEgP/Yci3kiuxqChwxX0EwMQHt2HN
ReAVFCAaE+TcKdwqUh195V56Kj33TCEK1ut/AnOt8/8hjt5OYrPvynJ5gY/PtLbX
3e2i7bG3B7zeRhUM3MoblhWn4vaDQh7GN2fi5PWbNanHZCzB369wyoHc4zjoiHGb
FkuXYSYCs93EbFJP4l8=
=9DE8
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Nikola Lečić]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

On Sat, 15 Nov 2008 14:46:00 +0100
Roland Smith <[EMAIL PROTECTED]> wrote:

> OK, that's nice to know. All the DVDs that I have play fine with
> mplayer, but they're probably all region 2 disks. So I should be able
> to play region 1 disks with mplayer?

That's exactly what I am trying to do at this moment, with no success.
I'm in the region 2 and I set my DVD drive accordingly (with a small C
programme). Now I got some region 1 DVDs and libdvdcss is not sufficient
as such. Of course, I can change DVD drive region setting temporarily,
but the drive allows just 4 or 5 such changes. Does anyone know how to
avoid this counting?

- -- 
Nikola Lečić = Никола Лечић
fingerprint : FEF3 66AF C90E EDC3 D878  7CDC 956D F4AB A377 1C9B

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.9 (FreeBSD)

iJwEAQEDAAYFAkke938ACgkQ/MM/0rYIoZgQeQQAly3K3sfJ2/bI3GgaMA7Hpm0x
jPggeF/HTJ+ayrF6Sb7ishEk2I10W2Kt/+N7vYLHXRrddTz8ITrYH/pfNqIAsOjP
cLhIFlH0yHo8fVOa+RF12FaBA6cFbr1HvY/bvwW1WxCFu5Q4LEVlUjuZkcvakawM
FGByZjnfZCHiJkNGBhM=
=rCQe
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Jeremy Chadwick]

On Sat, Nov 15, 2008 at 05:23:23PM +0100, Nikola Le??i?? wrote:
> On Sat, 15 Nov 2008 14:46:00 +0100
> Roland Smith <[EMAIL PROTECTED]> wrote:
> 
> > OK, that's nice to know. All the DVDs that I have play fine with
> > mplayer, but they're probably all region 2 disks. So I should be able
> > to play region 1 disks with mplayer?
> 
> That's exactly what I am trying to do at this moment, with no success.
> I'm in the region 2 and I set my DVD drive accordingly (with a small C
> programme). Now I got some region 1 DVDs and libdvdcss is not sufficient
> as such. Of course, I can change DVD drive region setting temporarily,
> but the drive allows just 4 or 5 such changes. Does anyone know how to
> avoid this counting?

Changing the region encoding setting on your DVD drive involves setting
a bit or code somewhere in the flash/EEPROM inside of the DVD drive.
The limit of 4-5 changes is purely a DVD drive firmware thing; there's
no technical limit, instead it's a limit imposed by the firmware.

There are websites nowadays which offer "hacked" firmwares which remove
region encoding altogether (or remove the 4-5 set limit).  However,
they're only available for very specific models of DVD drives.  If this
is important to you, you should considering purchasing a drive that can
be flashed with a "hacked" firmware.

-- 
| Jeremy Chadwickjdc at parodius.com |
| Parodius Networking   http://www.parodius.com/ |
| UNIX Systems Administrator  Mountain View, CA, USA |
| Making life hard for others since 1977.  PGP: 4BD6C0CB |

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: make doesn't know how to make KERNCONF

[Polytropon]

On Sat, 15 Nov 2008 10:23:50 -0500, Lowell Gilbert <[EMAIL PROTECTED]> wrote:
> No, the shell isn't interpreting anything in that command line (the
> variable assignment is interpreted by make itself), so the command is
> fine.  Maybe the sources aren't completely installed?  If I were trying
> to exercise my psychic technical support powers, I might guess that the
> system makefiles weren't installed.

Check /usr/src/Makefile, /usr/src/Makefile.inc1 and
/usr/src/release/Makefile. These files should be up to
date when doing a correct update (or at least they should
get installed by installing the "src" distribution).


-- 
Polytropon
>From Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[cpghost]

On Sat, Nov 15, 2008 at 08:41:21AM -0800, Jeremy Chadwick wrote:
> On Sat, Nov 15, 2008 at 05:23:23PM +0100, Nikola Le??i?? wrote:
> > On Sat, 15 Nov 2008 14:46:00 +0100
> > Roland Smith <[EMAIL PROTECTED]> wrote:
> > 
> > > OK, that's nice to know. All the DVDs that I have play fine with
> > > mplayer, but they're probably all region 2 disks. So I should be able
> > > to play region 1 disks with mplayer?
> > 
> > That's exactly what I am trying to do at this moment, with no success.
> > I'm in the region 2 and I set my DVD drive accordingly (with a small C
> > programme). Now I got some region 1 DVDs and libdvdcss is not sufficient
> > as such. Of course, I can change DVD drive region setting temporarily,
> > but the drive allows just 4 or 5 such changes. Does anyone know how to
> > avoid this counting?
> 
> Changing the region encoding setting on your DVD drive involves setting
> a bit or code somewhere in the flash/EEPROM inside of the DVD drive.
> The limit of 4-5 changes is purely a DVD drive firmware thing; there's
> no technical limit, instead it's a limit imposed by the firmware.
> 
> There are websites nowadays which offer "hacked" firmwares which remove
> region encoding altogether (or remove the 4-5 set limit).  However,
> they're only available for very specific models of DVD drives.  If this
> is important to you, you should considering purchasing a drive that can
> be flashed with a "hacked" firmware.

Check out for RPC1 modded firmwares.

http://forum.rpc1.org/portal.php

Of course, you'll void your drive's warranty, if something goes wrong.
In some jurisdictions, it may also be illegal to circumvent DRM, even
if it is merely this silly region encoding firmware check.

-cpghost.

-- 
Cordula's Web. http://www.cordula.ws/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Port forwarding behind two routers

[Jakub T]

Good day people,

I'm trying to get wireless Internet access for my laptop and to use this
wireless router as a switch  for my FreeBSD box at the same time. This
wireless router has one Internet plug and for Ethernet plugs for wired
boxes. Now I have this situation:

INTERNET
|
telephone/adsl-wire
|
|
ADSL router
 wan : xx.xx.xx.xx  FreeBSD box (wired)
 lan : 192.168.1.1  ip: 192.168.0.102
| laptopgateway: 192.168.0.1
| (wireless)|
   [internet plug]ip: 192.168.0.101 |
  Wireless router gateway: 192.168.0.1  |
  lan : 192.168.0.1  . . . . . :|
   [ethernet plug]  |
|   |
+---+


The wireless router software configured the router like this:

Destination LAN IP Subnet   Mask GatewayInterface
0.0.0.0 0.0.0.0 192.168.1.1 WAN (Internet)
192.168.0.0 255.255.255.0 192.168.0.1 LAN & Wireless
192.168.1.0 255.255.255.0 192.168.1.2 WAN (Internet)

... so it works as a switch for two boxes and as a router at the same time.

The FreeBSD box is configured like this:

ifconfig_XXX0="inet 192.168.0.102 netmask 255.255.255.0"
defaultrouter="192.168.0.1"

Now I have Internet connection on both computers. However, I can't get aMule
and other apps that need port forwarding working on FreeBSD box.

First, I tried to configure ADSL router (192.168.1.1) just to forward 4662
port to 192.168.0.102, doesn't work.

Then, I tried this:
192.168.1.1 router: forward 4662 to 192.168.0.1
192.168.0.1 router: forward 4662 to 192.168.0.102

not working again.

I have a feeling that I'm missing something very simple, but can't figure
out what.

(A note: before I acquired a wireless router, forwarding with one router was
just working, with FreeBSD box configured as 192.168.1.101, so that side of
things is ok. And, no, it's not possible to use just wireless router because
I can't plug telephone wire in it.)

Can anyone help me? Should I post more details? TIA,
Jakub
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Question about entry in auth.log

[mdh]

--- On Sat, 11/15/08, Jeremy Chadwick <[EMAIL PROTECTED]> wrote:
> From: Jeremy Chadwick <[EMAIL PROTECTED]>
> Subject: Re: Question about entry in auth.log
> To: "Lisa Casey" <[EMAIL PROTECTED]>
> Cc: freebsd-questions@freebsd.org
> Date: Saturday, November 15, 2008, 2:37 AM
> On Fri, Nov 14, 2008 at 10:00:13PM -0500, Lisa Casey wrote:
> 
> The individual in Romania *was not* able to log in as
> michael.  The
> message you saw was sshd saying "Someone's trying
> to SSH in as user
> michael; SSH key negotiation failed, and now I'm asking
> them to type in
> their password manually".
> 
> It's not a prank.  Shady online individuals have
> written scripts/tools
> that repetitively beat on sshd, trying to find an account
> they can log
> in as.  They're simply scanning for valid accounts, and
> they also often
> try many passwords over and over (common things, such as
> the username as
> a password).
> 
> Welcome to the Internet circa 2008.  :(
> 
> "So how do I solve this problem?"
> 
> The easiest way: change sshd to listen on a port *other*
> than 22.  Many
> people pick .  This relieves 99% of the pain, but
> requires you to
> tell your users/co-workers/peers "My box listens on
> port  for ssh,
> not 22".
> 
> A secondary way: programs which monitor logs and add
> firewall block
> rules when they see too many brute force attempts coming
> from an IP
> address:
> 
> ports/security/blocksshd
> ports/security/sshblock
> ports/security/sshguard
> (I think I forgot one more, but those are the main three)

I've considered writing an sshd patch for OpenSSH to add bad-authentication 
throttling to it, such that where X number of invalid attempts featuring at 
least Y different usernames in Z seconds from the same IP causes sshd to ignore 
that IP outright for a given time.  This would prevent syslog spam and not 
require any third-party applications.  I've written a socket abstraction 
library that supports throttling of this sort internally, and it's actually 
very easy to implement on its own.  Implementing it in OpenSSH may be more or 
less difficult depending on whether there's any central function that is called 
*every* time an authentication attempt fails.  

If a few folks respond saying "I'd sure like that patch!", I would likely 
become more motivated to do so sooner.  

- mdh



  
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Port forwarding behind two routers

[Luke Dean]

On Sat, 15 Nov 2008, Jakub T wrote:


Good day people,

I'm trying to get wireless Internet access for my laptop and to use this
wireless router as a switch  for my FreeBSD box at the same time. This
wireless router has one Internet plug and for Ethernet plugs for wired
boxes. Now I have this situation:

   INTERNET
   |
telephone/adsl-wire
   |
   |
   ADSL router
wan : xx.xx.xx.xx  FreeBSD box (wired)
lan : 192.168.1.1  ip: 192.168.0.102
   | laptopgateway: 192.168.0.1
   | (wireless)|
  [internet plug]ip: 192.168.0.101 |
 Wireless router gateway: 192.168.0.1  |
 lan : 192.168.0.1  . . . . . :|
  [ethernet plug]  |
   |   |
   +---+


The wireless router software configured the router like this:

Destination LAN IP Subnet   Mask GatewayInterface
0.0.0.0 0.0.0.0 192.168.1.1 WAN (Internet)
192.168.0.0 255.255.255.0 192.168.0.1 LAN & Wireless
192.168.1.0 255.255.255.0 192.168.1.2 WAN (Internet)

... so it works as a switch for two boxes and as a router at the same time.

The FreeBSD box is configured like this:

ifconfig_XXX0="inet 192.168.0.102 netmask 255.255.255.0"
defaultrouter="192.168.0.1"

Now I have Internet connection on both computers. However, I can't get aMule
and other apps that need port forwarding working on FreeBSD box.

First, I tried to configure ADSL router (192.168.1.1) just to forward 4662
port to 192.168.0.102, doesn't work.

Then, I tried this:
192.168.1.1 router: forward 4662 to 192.168.0.1
192.168.0.1 router: forward 4662 to 192.168.0.102

not working again.

I have a feeling that I'm missing something very simple, but can't figure
out what.

(A note: before I acquired a wireless router, forwarding with one router was
just working, with FreeBSD box configured as 192.168.1.101, so that side of
things is ok. And, no, it's not possible to use just wireless router because
I can't plug telephone wire in it.)

Can anyone help me? Should I post more details? TIA,
Jakub


Port-forwarding through two NATs is something I've never had any success 
with.  I have a few suggestions that have worked for me and my 
friends with this setup.


A) Disable NAT on the ADSL router.  I think the term is "bridged mode". 
Turn it into a dumb box and shift all the NAT/firewall/routing 
responsibilities over to your wireless router.  Depending on your ISP, the 
hardware, and the protocols involved, this may not be an option for you.


B) Disable NAT on the wireless router.  This allows it to be a simple 
switch and wireless access point.  The price is that you're probably 
relying on the DHCP server in the wireless router for your wireless 
devices and you'll have to disable the DHCP when you disable NAT.  This 
creates new problems to be solved.


C) Plug the FreeBSD box into the ADSL router, skipping the wireless 
router.  Your wireless devices will still be double-NATted, but if you're 
not running servers on them, you might be able to live with that.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Port forwarding behind two routers

[Wojciech Puchar]

B) Disable NAT on the wireless router.  This allows it to be a simple switch 
and wireless access point.  The price is that you're probably relying on the 
DHCP server in the wireless router for your wireless devices and you'll have 
to disable the DHCP when you disable NAT.  This creates new problems to be 
solved.


no problem. ADSL router can do DHCP for everything.



C) Plug the FreeBSD box into the ADSL router, skipping the wireless router. 
Your wireless devices will still be double-NATted, but if you're not running 
servers on them, you might be able to live with that.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

some ipfw filter does not function under Release 6.3

[Jin Guojun[VFF]]

Below is set of ipfw rules, but it seems that not all rules are 
functioning properly.
From rule 361 to first two of rule 567 are not blocking any traffic and 
not measuring any traffic.
Is this bacuse tcp rule )330) can overwrite the ip rule? or this is a 
known issue in R-6.3?


The second and third rules in rule set 567 seem working well.

-Jin

 ipfw rule sets -
00330 3108378 2700826874 allow tcp from any to any established
00361   0  0 deny ip from 203.83.248.93 to any
00361   0  0 deny ip from 72.30.142.215 to any
00567   0  0 deny ip from 193.200.241.171 to any
00567   0  0 deny ip from 221.192.199.36 to any
00567   3180 deny ip from 118.153.18.186 to any
00567   3180 deny ip from 203.78.214.180 to any
00567   0  0 deny ip from 118.219.232.123 to any
65500 220  20043 allow udp from any to any
65535   2120 deny ip from any to any

-- traffic captured by tcpdump behind ipfw machine -

04:12:20.940095 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200229998:200229998(0) win 8192
04:12:21.204430 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
20022:20022(0) win 0
04:31:16.262402 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200233658:200233658(0) win 8192
04:31:16.541868 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
200233659:200233659(0) win 0
05:27:04.031434 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200244634:200244634(0) win 8192
05:27:04.303262 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
200244635:200244635(0) win 0
05:28:18.099443 IP 221.192.199.36.3362 > 192.168.2.14.80: S 
2422872529:2422872529(0) win 65535 
05:28:18.352083 IP 221.192.199.36.3362 > 192.168.2.14.80: . ack 
3968474717 win 65535
05:28:18.367745 IP 221.192.199.36.3362 > 192.168.2.14.80: P 0:205(205) 
ack 1 win 65535
05:28:18.621538 IP 221.192.199.36.3362 > 192.168.2.14.80: R 205:205(0) 
ack 473 win 0


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Creating network interface in VM?

[Jesse Sheidlower]

I'm running FreeBSD 7.1-BETA2 in a virtual machine in
VirtualBox, running on a Linux (Debian) host. I was able to
set up everything quite easily, and originally set up
networking over NAT. But after some questions on the VB
mailing list about accessing the guest from the host (so I can
use the FreeBSD VM as a test server from my host), I decided
to set up Host Interface Networking (without bridging, as I
only want the VM visible to the host, not the rest of the
network).

The instructions I was following were pretty straightforward,
though they were for a Linux guest:

---
auto vbox0
iface vbox0 inet static
address 192.168.5.1
netmask 255.255.255.0
---

is the setup for the Linux host, and the guest is supposed to
be the same thing with a different IP address. Using this alone,
I was already able to reach the Linux host from my FreeBSD VM.

I tried to set this up on the FreeBSD side, but I am unable to
even create the vbox0 interface:

---
# ifconfig vbox0 create
ifconfig: SIOCIFCREATE2: Invalid argument
---

Googling hasn't been much help. How do I get this done?

Thanks.

Jesse Sheidlower
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: some ipfw filter does not function under Release 6.3

[Erik Trulsson]

On Sat, Nov 15, 2008 at 01:38:02PM -0800, Jin Guojun[VFF] wrote:
> Below is set of ipfw rules, but it seems that not all rules are 
> functioning properly.
>  From rule 361 to first two of rule 567 are not blocking any traffic and 
> not measuring any traffic.
> Is this bacuse tcp rule )330) can overwrite the ip rule? or this is a 
> known issue in R-6.3?

In general the first matching rule is the one that is applied.
In your case this means that if a packet matches  your rule 330 then 
it will be allowed through, and the rules further down the list will
not be considered.


> 
> The second and third rules in rule set 567 seem working well.
> 
> -Jin
> 
>  ipfw rule sets -
> 00330 3108378 2700826874 allow tcp from any to any established
> 00361   0  0 deny ip from 203.83.248.93 to any
> 00361   0  0 deny ip from 72.30.142.215 to any
> 00567   0  0 deny ip from 193.200.241.171 to any
> 00567   0  0 deny ip from 221.192.199.36 to any
> 00567   3180 deny ip from 118.153.18.186 to any
> 00567   3180 deny ip from 203.78.214.180 to any
> 00567   0  0 deny ip from 118.219.232.123 to any
> 65500 220  20043 allow udp from any to any
> 65535   2120 deny ip from any to any
> 
> -- traffic captured by tcpdump behind ipfw machine -
> 
> 04:12:20.940095 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
> 200229998:200229998(0) win 8192
> 04:12:21.204430 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
> 20022:20022(0) win 0
> 04:31:16.262402 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
> 200233658:200233658(0) win 8192
> 04:31:16.541868 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
> 200233659:200233659(0) win 0
> 05:27:04.031434 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
> 200244634:200244634(0) win 8192
> 05:27:04.303262 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
> 200244635:200244635(0) win 0
> 05:28:18.099443 IP 221.192.199.36.3362 > 192.168.2.14.80: S 
> 2422872529:2422872529(0) win 65535 
> 05:28:18.352083 IP 221.192.199.36.3362 > 192.168.2.14.80: . ack 
> 3968474717 win 65535
> 05:28:18.367745 IP 221.192.199.36.3362 > 192.168.2.14.80: P 0:205(205) 
> ack 1 win 65535
> 05:28:18.621538 IP 221.192.199.36.3362 > 192.168.2.14.80: R 205:205(0) 
> ack 473 win 0
> 


-- 

Erik Trulsson
[EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

*BUMP* trouble building postgresql-client

[Ghirai]

Hello list,

I haven't been able to upgrade PostgreSQL from 8.3.3 to 8.3.5.

I'm running 7.0-RELEASE-p5, amd64.

# pkg_version -vL =
postgresql-client-8.3.3 <   needs updating (port has 8.3.5)
postgresql-server-8.3.3 <   needs updating (port has 8.3.5)
# 

After that i used portupgrade -a.
Output is below.

...
cc -O2 -fno-strict-aliasing -pipe  -O3 -funroll-loops -Wall
-Wmissing-prototypes -Wpointer-arith -Winline
-Wdeclaration-after-statement -Wendif-labels -fno-strict-aliasing
-fwrapv -D_REENTRANT -D_THREAD_SAFE -D_POSIX_PTHREAD_SEMANTICS -fPIC
-DPIC -shared -Wl,-x,-soname,libpq.so.5  fe-auth.o fe-connect.o
fe-exec.o fe-misc.o fe-print.o fe-lobj.o fe-protocol2.o fe-protocol3.o
pqexpbuffer.o pqsignal.o fe-secure.o md5.o ip.o wchar.o encnames.o
noblock.o pgstrcasecmp.o thread.o   -L../../../src/port
-L/usr/local/lib -lintl -lssl -lcrypto -lcrypt -pthread
-Wl,-R'/usr/local/lib' -o libpq.so.5 /usr/bin/ld: /usr/lib/libpthread.a
(thr_syscalls.o): relocation R_X86_64_32S can not be used when making a
shared object; recompile with -fPIC /usr/lib/libpthread.a: could not
read symbols: Bad value gmake[1]: *** [libpq.so.5] Error 1 gmake[1]:
Leaving directory
`/usr/ports/databases/postgresql83-client/work/postgresql-8.3.5/src/interfaces/libpq'
gmake: *** [all] Error 2 *** Error code 2

Stop in /usr/ports/databases/postgresql83-client.
*** Error code 1

Stop in /usr/ports/databases/postgresql83-client.
** Command failed [exit code 1]: /usr/bin/script
-qa /tmp/portupgrade.62208.0 env UPGRADE_TOOL=portupgrade
UPGRADE_PORT=postgresql-client-8.3.3 UPGRADE_PORT_VER=8.3.3 make ** Fix
the problem and try again.
--->  Skipping
'databases/postgresql83-server' (postgresql-server-8.3.3) because a
requisite package
'postgresql-client-8.3.3' (databases/postgresql83-client) failed
(specify -k to force) ** Listing the failed packages (-:ignored /
*:skipped / !:failed) ! databases/postgresql83-client
(postgresql-client-8.3.3)   (unknown build error)
* databases/postgresql83-server (postgresql-server-8.3.3)


However, on a roughly similar machine, the process went fine.

Any ideas?

-- 
Regards,
Ghirai.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: some ipfw filter does not function under Release 6.3

[Jin Guojun[VFF]]

   But the rule 330 should only allow established TCP pass through. In
   other words, Sync should NOT
   allowed by rule 330, or I missed something for this rule?
   Erik Trulsson wrote:

On Sat, Nov 15, 2008 at 01:38:02PM -0800, Jin Guojun[VFF] wrote:
  

Below is set of ipfw rules, but it seems that not all rules are 
functioning properly.
 From rule 361 to first two of rule 567 are not blocking any traffic and 
not measuring any traffic.
Is this bacuse tcp rule )330) can overwrite the ip rule? or this is a 
known issue in R-6.3?


In general the first matching rule is the one that is applied.
In your case this means that if a packet matches  your rule 330 then 
it will be allowed through, and the rules further down the list will
not be considered.


  

The second and third rules in rule set 567 seem working well.

-Jin

 ipfw rule sets -
00330 3108378 2700826874 allow tcp from any to any established
00361   0  0 deny ip from 203.83.248.93 to any
00361   0  0 deny ip from 72.30.142.215 to any
00567   0  0 deny ip from 193.200.241.171 to any
00567   0  0 deny ip from 221.192.199.36 to any
00567   3180 deny ip from 118.153.18.186 to any
00567   3180 deny ip from 203.78.214.180 to any
00567   0  0 deny ip from 118.219.232.123 to any
65500 220  20043 allow udp from any to any
65535   2120 deny ip from any to any

-- traffic captured by tcpdump behind ipfw machine -

04:12:20.940095 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200229998:200229998(0) win 8192
04:12:21.204430 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
20022:20022(0) win 0
04:31:16.262402 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200233658:200233658(0) win 8192
04:31:16.541868 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
200233659:200233659(0) win 0
05:27:04.031434 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200244634:200244634(0) win 8192
05:27:04.303262 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
200244635:200244635(0) win 0
05:28:18.099443 IP 221.192.199.36.3362 > 192.168.2.14.80: S 
2422872529:2422872529(0) win 65535 
05:28:18.352083 IP 221.192.199.36.3362 > 192.168.2.14.80: . ack 
3968474717 win 65535
05:28:18.367745 IP 221.192.199.36.3362 > 192.168.2.14.80: P 0:205(205) 
ack 1 win 65535
05:28:18.621538 IP 221.192.199.36.3362 > 192.168.2.14.80: R 205:205(0) 
ack 473 win 0




  
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Nikola Lečić]

-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160

On Sat, 15 Nov 2008 18:23:05 +0100
cpghost <[EMAIL PROTECTED]> wrote:
 
> On Sat, Nov 15, 2008 at 08:41:21AM -0800, Jeremy Chadwick wrote:
> > On Sat, Nov 15, 2008 at 05:23:23PM +0100, Nikola Le??i?? wrote:
> > > On Sat, 15 Nov 2008 14:46:00 +0100
> > > Roland Smith <[EMAIL PROTECTED]> wrote:
> > > 
> > > > OK, that's nice to know. All the DVDs that I have play fine with
> > > > mplayer, but they're probably all region 2 disks. So I should
> > > > be able to play region 1 disks with mplayer?
> > > 
> > > That's exactly what I am trying to do at this moment, with no
> > > success. I'm in the region 2 and I set my DVD drive accordingly
> > > (with a small C programme). Now I got some region 1 DVDs and
> > > libdvdcss is not sufficient as such. Of course, I can change DVD
> > > drive region setting temporarily, but the drive allows just 4 or
> > > 5 such changes. Does anyone know how to avoid this counting?
> > 
> > Changing the region encoding setting on your DVD drive involves
> > setting a bit or code somewhere in the flash/EEPROM inside of the
> > DVD drive. The limit of 4-5 changes is purely a DVD drive firmware
> > thing; there's no technical limit, instead it's a limit imposed by
> > the firmware.
> > 
> > There are websites nowadays which offer "hacked" firmwares which
> > remove region encoding altogether (or remove the 4-5 set limit).
> > However, they're only available for very specific models of DVD
> > drives.  If this is important to you, you should considering
> > purchasing a drive that can be flashed with a "hacked" firmware.
> 
> Check out for RPC1 modded firmwares.
> 
> http://forum.rpc1.org/portal.php

Thanks! The DVD drive is

  cd0:  Removable CD-ROM SCSI-0 device

and it seems to be there:

  
http://forum.rpc1.org/viewtopic.php?f=26&t=42777&p=205896&hilit=LH+20A1S#p205896

... so it means I can do something, I think. Btw, what, in the light of
all this, means the following statement from libdvdcss/pkg-descr?

  """
   - Just better. Unlike most similar projects, libdvdcss doesn't
 require the region of your drive to be set.
  """

- -- 
Nikola Lečić = Никола Лечић
fingerprint : FEF3 66AF C90E EDC3 D878  7CDC 956D F4AB A377 1C9B

-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.9 (FreeBSD)

iJwEAQEDAAYFAkkfYQ0ACgkQ/MM/0rYIoZhWRwP/dn8a7Kt2EyM9+D28+DWV+pHa
amPqGkzh17f2WRzgugiGI/KF+8gDmOUfGYl6LABqYjHk6341BvvQ5pYLw5RVa7ZV
9eDjO+P8vMyCn9AcYwiagNF8kuCBut73F5E2YZjt4wEwKciqe24YTpqiAGXy+e5A
C58UVE97XgQcZUm/N9Y=
=QsfQ
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: some ipfw filter does not function under Release 6.3

[Jin Guojun[VFF]]

   I think this is a bug in ipfw because after change the rule order, the
   problem persists:
   0056626 3090 deny ip from 221.192.199.36 to any
   65330  2018   983473 allow tcp from any to any established
   65535 00 deny ip from any to any
   15:47:21.238720 IP 221.192.199.36.4469 > 192.168.2.14.80: S
   3191960249:3191960249(0) win 65535 
   15:47:21.238768 IP 192.168.2.14.80 > 221.192.199.36.4469: S
   2102254306:2102254306(0) ack 3191960250 win 65535 
   15:47:21.483754 IP 221.192.199.36.4469 > 192.168.2.14.80: . ack 1 win
   65535
   15:47:21.499489 IP 221.192.199.36.4469 > 192.168.2.14.80: P 1:206(205)
   ack 1 win 65535
   15:47:24.238570 IP 192.168.2.14.80 > 221.192.199.36.4469: S
   2102254306:2102254306(0) ack 3191960250 win 65535 
   15:47:24.482113 IP 221.192.199.36.4469 > 192.168.2.14.80: . ack 1 win
   65535
   15:47:24.498613 IP 221.192.199.36.4469 > 192.168.2.14.80: P 1:206(205)
   ack 1 win 65535
   15:47:30.238574 IP 192.168.2.14.80 > 221.192.199.36.4469: S
   2102254306:2102254306(0) ack 3191960250 win 65535 
   15:47:30.482746 IP 221.192.199.36.4469 > 192.168.2.14.80: . ack 1 win
   65535
   15:47:30.513193 IP 221.192.199.36.4469 > 192.168.2.14.80: P 1:206(205)
   ack 1 win 65535
   15:47:42.238577 IP 192.168.2.14.80 > 221.192.199.36.4469: S
   2102254306:2102254306(0) ack 3191960250 win 65535 
   15:47:42.435040 IP 221.192.199.36.4469 > 192.168.2.14.80: P 1:206(205)
   ack 1 win 65535
   15:47:42.466055 IP 221.192.199.36.4469 > 192.168.2.14.80: . ack 1 win
   65535
   15:47:54.466599 IP 221.192.199.36.4469 > 192.168.2.14.80: P 1:206(205)
   ack 1 win 65535
   15:47:59.703272 IP 221.192.199.36.4469 > 192.168.2.14.80: R 206:206(0)
   ack 1 win 0
   Jin Guojun[VFF] wrote:

   But the rule 330 should only allow established TCP pass through. In
   other words, Sync should NOT
   allowed by rule 330, or I missed something for this rule?
   Erik Trulsson wrote:

On Sat, Nov 15, 2008 at 01:38:02PM -0800, Jin Guojun[VFF] wrote:
  

Below is set of ipfw rules, but it seems that not all rules are 
functioning properly.
 From rule 361 to first two of rule 567 are not blocking any traffic and 
not measuring any traffic.
Is this bacuse tcp rule )330) can overwrite the ip rule? or this is a 
known issue in R-6.3?


In general the first matching rule is the one that is applied.
In your case this means that if a packet matches  your rule 330 then 
it will be allowed through, and the rules further down the list will
not be considered.


  

The second and third rules in rule set 567 seem working well.

-Jin

 ipfw rule sets -
00330 3108378 2700826874 allow tcp from any to any established
00361   0  0 deny ip from 203.83.248.93 to any
00361   0  0 deny ip from 72.30.142.215 to any
00567   0  0 deny ip from 193.200.241.171 to any
00567   0  0 deny ip from 221.192.199.36 to any
00567   3180 deny ip from 118.153.18.186 to any
00567   3180 deny ip from 203.78.214.180 to any
00567   0  0 deny ip from 118.219.232.123 to any
65500 220  20043 allow udp from any to any
65535   2120 deny ip from any to any

-- traffic captured by tcpdump behind ipfw machine -

04:12:20.940095 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200229998:200229998(0) win 8192
04:12:21.204430 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
20022:20022(0) win 0
04:31:16.262402 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200233658:200233658(0) win 8192
04:31:16.541868 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
200233659:200233659(0) win 0
05:27:04.031434 IP 221.192.199.36.12200 > 192.168.2.14.80: S 
200244634:200244634(0) win 8192
05:27:04.303262 IP 221.192.199.36.12200 > 192.168.2.14.80: R 
200244635:200244635(0) win 0
05:28:18.099443 IP 221.192.199.36.3362 > 192.168.2.14.80: S 
2422872529:2422872529(0) win 65535 
05:28:18.352083 IP 221.192.199.36.3362 > 192.168.2.14.80: . ack 
3968474717 win 65535
05:28:18.367745 IP 221.192.199.36.3362 > 192.168.2.14.80: P 0:205(205) 
ack 1 win 65535
05:28:18.621538 IP 221.192.199.36.3362 > 192.168.2.14.80: R 205:205(0) 
ack 473 win 0




  
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

The FreeBSD Diary: 2008-10-26 - 2008-11-15

[Dan Langille]

The FreeBSD Diary contains a large number of practical 
examples and how-to guides.  This message is posted weekly
to freebsd-questions@freebsd.org with the aim of letting people
know what's available on the website.  Before you post a question
here it might be a good idea to first search the mailing list 
archives  
and/or The FreeBSD Diary . 


-- 
Dan Langille
BSDCan - http://www.BSDCan.org/ - BSD Conference

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Creating network interface in VM?

[Polytropon]

On Sat, 15 Nov 2008 17:17:25 -0500, Jesse Sheidlower <[EMAIL PROTECTED]> wrote:
> I'm running FreeBSD 7.1-BETA2 in a virtual machine in
> VirtualBox, running on a Linux (Debian) host.
> [...]
> I tried to set this up on the FreeBSD side, but I am unable to
> even create the vbox0 interface:
> 
> ---
> # ifconfig vbox0 create
> ifconfig: SIOCIFCREATE2: Invalid argument
> ---
> 

I'm not sure, but I think what you're searching for would be to
have VB "create" a NIC substitute for the FreeBSD guest OS. When
you said, you could reach network from out of the FreeBSD VB,
a virtual network adapter. Which interface did you use from
within FreeBSD?

As far as I know, there's no vbox (pseudo)interface driver in
FreeBSD, that's why the ifconfig create command returned an error.



-- 
Polytropon
>From Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Gary Kline]

On Sat, Nov 15, 2008 at 01:37:26PM +0100, Roland Smith wrote:
> On Sat, Nov 15, 2008 at 12:46:03AM -0800, Gary Kline wrote:
> > 
> > Do any of you guys know why the DVD version of HIGH NOON won't play on 
> > my
> > computers?  I've tried everything I can think of.  Zero.   I watched the
> > *original* in the theater (I think); then have watched the tape in '98,
> > and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> > just wondering my none of my players won't play it.
> 
> Different region? Most players are locked to a certain region, and won't
> play disks from other regions. Although it is possible to install
> upgraded or modified firmware that removes the region encoding, that
> usually needs a windows program. And it can brick your player when done
> incorrectly.
> 
> Roland


I just realized that last night the DVD jumped right into the Start of
the film.  No FBI threats of extraordinary rendition to those who would
copy, no pre-list of places to jump to.  The extra features were at the
end, only.  So it's probably a bad disc.  

Also, the few time I tried different players--vlc first, the player
locked up and the DVD tray was wegded.  Doing a shutdown I was the
console spitting out "DMA error" type strings.  So ... while *usually*
our players are fault tolerant, not in this case.  Since it's awhile
until
2013, I'm not going to bother asking the library for another copy.

thanks, gents,

gary

PS: I just tried of of the few DVD's i have [thank-you, PBS], "Keltic
Woman"; works flawlessly.  {mm-BAR}, :-)

> -- 
> R.F.Smith   http://www.xs4all.nl/~rsmith/
> [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated]
> pgp: 1A2B 477F 9970 BA3C 2914  B7CE 1277 EFB0 C321 A725 (KeyID: C321A725)



-- 
 Gary Kline  [EMAIL PROTECTED]  http://www.thought.org  Public Service Unix
http://jottings.thought.org   http://transfinite.thought.org


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: root /etc/csh

[Polytropon]

On Sat, 15 Nov 2008 01:19:57 -0500, [EMAIL PROTECTED] wrote:
> Why doesn't FreeBSD ship bash and other shells besides
> the `sh' linked statically is beyond me. It wouldn't break ports, would
> it?

I can't speak for FreeBSD's developers, but I think it's a primary
philosophy to provide only a set of basic means by the base system,
instead of a more or less complete collection of shells, just for
the case that someone might want it. Well, bash, zsh or ksh are very
powerful tools, but those who want them will surely install them
right after the base system. Furthermore, there are those users
who are not interested in those shells at all (maybe because they're
using GUI stuff only, or maybe because they're completely happy
with sh for scriting and csh for dialog mode). For UNIX compati-
bility, /bin/sh is sufficient, and csh, configured properly, is
an excellent dialog shell.

FreeBSD isn't a shell collection, it's an operating system. :-)

Just as a sidenote, when you put this into /etc/csh.cshrc, your
csh will behave (except scripting constructs, of course) somewhat
like bash:

set promptchars = "%#"
set prompt = "[EMAIL PROTECTED]:%~%# "
set autolist

or

set promptchars = ">#"
set prompt = "[EMAIL PROTECTED] %~ %# "
set autolist


-- 
Polytropon
>From Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Gary Kline]

On Sat, Nov 15, 2008 at 08:19:28AM -0500, Michael Powell wrote:
> Gary Kline wrote:
> 
> > 
> > Do any of you guys know why the DVD version of HIGH NOON won't play on my
> > computers?  I've tried everything I can think of.  Zero.   I watched the
> > *original* in the theater (I think); then have watched the tape in '98,
> > and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> > just wondering my none of my players won't play it.
> > 
> > thanks,
> > 
> > gary
> > 
> > 
> > 
>  Missing libdvdcss?
> 
> -Mike


No, I've got 1.2.9.  More likely a just-barely usable disc.

gary


> 
> 
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"

-- 
 Gary Kline  [EMAIL PROTECTED]  http://www.thought.org  Public Service Unix
http://jottings.thought.org   http://transfinite.thought.org


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Creating network interface in VM?

[Steven Susbauer]

Polytropon wrote:
> On Sat, 15 Nov 2008 17:17:25 -0500, Jesse Sheidlower <[EMAIL PROTECTED]> 
> wrote:
>> I'm running FreeBSD 7.1-BETA2 in a virtual machine in
>> VirtualBox, running on a Linux (Debian) host.
>> [...]
>> I tried to set this up on the FreeBSD side, but I am unable to
>> even create the vbox0 interface:
>>
>> ---
>> # ifconfig vbox0 create
>> ifconfig: SIOCIFCREATE2: Invalid argument
>> ---
>>
> 
> I'm not sure, but I think what you're searching for would be to
> have VB "create" a NIC substitute for the FreeBSD guest OS. When
> you said, you could reach network from out of the FreeBSD VB,
> a virtual network adapter. Which interface did you use from
> within FreeBSD?
> 
> As far as I know, there's no vbox (pseudo)interface driver in
> FreeBSD, that's why the ifconfig create command returned an error.
> 
> 
> 
The guest machine is always going to use the virtual driver provided by
virtualbox, which is configured through the virtualbox gui control
before you start the machine. I suggest trying to configure that
interface, not vbox0. vbox0 is an interface on the host OS.

This howto from Ubuntu may help you out; notice that everything is
configured on the host machine, the guest machine has no real
differences: https://help.ubuntu.com/community/VirtualBox#Networking



signature.asc
Description: OpenPGP digital signature

Re: re changing from vista

[Jerry McAllister]

On Sat, Nov 15, 2008 at 01:22:00AM +0100, Wojciech Puchar wrote:

> >The OP asked advice on an OS alternative to Vista and asked about
> >FreeBSD. Telling him that FreeBSD is a good choice is not making
> >a religious statement.  It is just answering his question in an
> >honest manner.
> 
> no - because it's not alternative for Windows Vista.

He is trying to get out of Vista, not trying to be Vista with another name.

jerry


> 
> Windows XP is an alternative.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: re changing from vista

[Jerry McAllister]

On Sat, Nov 15, 2008 at 01:21:04AM +0100, Wojciech Puchar wrote:

> >
> >
> >But why are we interested in "converting" people?  That borders on
> >religious, which an operating system should not be.
> 
> exactly.
> 
> it's a good idea to tell people about trying FreeBSD if they are already 
> using some flavor of unix.
> 
> One can be "converted" from Solaris to FreeBSD, from NetBSD to OpenBSD, 
> and (sometimes) from linux to FreeBSD.
> 
> But not from Windows.

Come on, lose your thickness and let the guy be free from Vista.
Tha is his purpose - not a religious conversion.
He wants to use the computer, but not be stuck with certain Northwest
USA environments.So, let him learn a meaningful server environment.

Quit niggling about things not part of the situation just because you
have some prejudices.

jerry

> 
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: re changing from vista

[Jerry McAllister]

On Sat, Nov 15, 2008 at 01:18:07AM +0100, Wojciech Puchar wrote:

> >
> >FreeBSD is a very powerful and stable system, but that said it is also
> >very hands on - the opposite extreme of vista which is all hands off.
> >This means that you will have a very steep learning curve.
> 
> 
> simply reading FreeBSD handbook will be the best move for the beginning.
> 
> But it is NOT windoze replacement.

It is if you put it on the system instead of MS-Win stuff.
It will totally replace it if you use fdisk to create a FreeBSD slice
and then partition that slice and install FreeBSD.   Win will be totally 
gone and the user will be merrily using something better.

Of course, if the user had said he wanted something like Vista to
run on his machine, then it wouldn't fit that category.  But that is
not what he said.

jerry

> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Creating network interface in VM?

[Jesse Sheidlower]

On Sat, Nov 15, 2008 at 07:52:18PM -0600, Steven Susbauer wrote:
> Polytropon wrote:
> > On Sat, 15 Nov 2008 17:17:25 -0500, Jesse Sheidlower <[EMAIL PROTECTED]> 
> > wrote:
> >> I'm running FreeBSD 7.1-BETA2 in a virtual machine in
> >> VirtualBox, running on a Linux (Debian) host.
> >> [...]
> >> I tried to set this up on the FreeBSD side, but I am unable to
> >> even create the vbox0 interface:
> >>
> >> ---
> >> # ifconfig vbox0 create
> >> ifconfig: SIOCIFCREATE2: Invalid argument
> >> ---
> >>
> > 
> > I'm not sure, but I think what you're searching for would be to
> > have VB "create" a NIC substitute for the FreeBSD guest OS. When
> > you said, you could reach network from out of the FreeBSD VB,
> > a virtual network adapter. Which interface did you use from
> > within FreeBSD?
> > 
> > As far as I know, there's no vbox (pseudo)interface driver in
> > FreeBSD, that's why the ifconfig create command returned an error.
> > 
> > 
> > 
> The guest machine is always going to use the virtual driver provided by
> virtualbox, which is configured through the virtualbox gui control
> before you start the machine. I suggest trying to configure that
> interface, not vbox0. vbox0 is an interface on the host OS.

Ah, of course. That makes total sense, sorry I didn't grok this
before.

One of the virtual network cards worked fine, using the le0
driver, so I set up the le0 driver to use NAT to reach the
outside, and then configured VB to use the same kind of
virtual network card to run HIF networking, and set up the le1
driver in my FreeBSD machine at the appropriate addresses.
Now everything works: I can reach the outside via the le0
driver and I can reach to and from my host with the le1
driver.

Thanks!

Jesse Sheidlower
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "High Noonn" DVD??

[Jerry McAllister]

On Sat, Nov 15, 2008 at 03:40:06AM -0800, Gary Kline wrote:

> On Sat, Nov 15, 2008 at 03:55:42AM -0600, Steven Susbauer wrote:
> > Gary Kline wrote:
> > >   Do any of you guys know why the DVD version of HIGH NOON won't play on 
> > > my
> > >   computers?  I've tried everything I can think of.  Zero.   I watched the
> > >   *original* in the theater (I think); then have watched the tape in '98,
> > >   and the DVD just now.  I'm not that nutty to waste a DVD-R on it; I'm
> > >   just wondering my none of my players won't play it.
> > > 
> > >   thanks,
> > > 
> > >   gary
> > > 
> > > 
> > I would wager it has something to do with a copy protection mechanism.
> > Are you able to play other copy-protected DVDs fine?
> > 
> >Steve
> 
> 
>   All the time with every one I've tried in recent years.  Since this is
>   from 1952, perhaps the trouble is that it lacks the copy-protection.
>   anyway, this is so ancient, it would be a waste to copy! 
>   gary

I don't remember anyone making DVDs in 1952.   
Given that, I doubt there is any copy protection from then either.

DVD copy protection is a DVD era thing, not built in to the movie.

jerry


> 
> -- 
>  Gary Kline  [EMAIL PROTECTED]  http://www.thought.org  Public Service Unix
> http://jottings.thought.org   http://transfinite.thought.org
> 
> 
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: root /etc/csh

[Jeremy Chadwick]

On Sat, Nov 15, 2008 at 01:19:57AM -0500, [EMAIL PROTECTED] wrote:
> > isn't the "main reason" because other shells may reside on a filesystem
> > which isn't necessarily mounted in maintenance/single user mode? Or, 
> > libraries
> > for the same?
> > -- 
> > Jim Pazarena  [EMAIL PROTECTED]
> 
> Just link the shell of your choice statically and put it somewhere in /.
> Problem solved. Why doesn't FreeBSD ship bash and other shells besides
> the `sh' linked statically is beyond me. It wouldn't break ports, would
> it?

It does break ports.  Very, very badly.  I know because I've personally
attempted replacing /bin/sh with bash as a "I have a weekend to spare"
project.

The topic of bringing bash into BSD as /bin/sh has been discussed in the
past many, many times.  It's always a heated discussion.  We went
through the same thing discussing bringing tcsh in (remember, /bin/csh
is tcsh).

-- 
| Jeremy Chadwickjdc at parodius.com |
| Parodius Networking   http://www.parodius.com/ |
| UNIX Systems Administrator  Mountain View, CA, USA |
| Making life hard for others since 1977.  PGP: 4BD6C0CB |

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Desktop image of Beastie

[Fbsd1]

I picked up this jpg of Beastie over 10 years ago. Tried using
it for a gdm logon screen background, but it's really light.

  http://www.a1poweruser.com/beastie.JPG

Does any one know where i can get a darker version of this image?
I tried to use gimp to make the image darker, but had no luck due to my 
  lack of understanding of what I was doing.


I sure appreciate you help. Thanks




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: root /etc/csh

[Dan]

Jeremy Chadwick([EMAIL PROTECTED])@2008.11.15 18:32:39 -0800:
> > Problem solved. Why doesn't FreeBSD ship bash and other shells besides
> > the `sh' linked statically is beyond me. It wouldn't break ports, would
> > it?
> 
> It does break ports.  Very, very badly.  I know because I've personally
> attempted replacing /bin/sh with bash as a "I have a weekend to spare"
> project.

You misunderstand. I do not suggest replacing the standard shell with
bash, I suggest that the shells available in FreeBSD, even through ports
to be linked statically so they can be used for rescue and recovery.
If the default make instructions told to compile statically, it wouldn't
break the ports.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Desktop image of Beastie

[perryh]

> I picked up this jpg of Beastie over 10 years ago. Tried using
> it for a gdm logon screen background, but it's really light.
>
>http://www.a1poweruser.com/beastie.JPG
>
> Does any one know where i can get a darker version of this image?

You're right, that's extremely faint, more like a watermark than an
attraction in its own right.  How about this one?

http://www.freebsd.org/layout/images/beastie.png
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: root /etc/csh

[Jeremy Chadwick]

On Sat, Nov 15, 2008 at 10:36:24PM -0500, Dan wrote:
> Jeremy Chadwick([EMAIL PROTECTED])@2008.11.15 18:32:39 -0800:
> > > Problem solved. Why doesn't FreeBSD ship bash and other shells besides
> > > the `sh' linked statically is beyond me. It wouldn't break ports, would
> > > it?
> > 
> > It does break ports.  Very, very badly.  I know because I've personally
> > attempted replacing /bin/sh with bash as a "I have a weekend to spare"
> > project.
> 
> You misunderstand. I do not suggest replacing the standard shell with
> bash, I suggest that the shells available in FreeBSD, even through ports
> to be linked statically so they can be used for rescue and recovery.
> If the default make instructions told to compile statically, it wouldn't
> break the ports.

You're right -- I'm still not understanding.  So let me cover the bases
here:

1) The entire ports and FreeBSD build system (see: world) rely heavily
on /bin/sh-isms and do not work with bash.  bash being compiled
statically will not solve these problems.

2) Changing the root users' shell is not recommended.  There are a lot
of reasons for this, but as mentioned, the main one is single-user
scenarios (where /usr hasn't been mounted yet, thus /usr/local/bin/bash
is not available -- and if it's installed as /bin/bash, the libraries
/bin/bash link to are not available).

3) You can build bash statically; make WITH_STATIC_BASH=true.  I do
not know the true reason why the port is not built statically by
default, but I can give you a damn good reason why it shouldn't be:
complete and total wasted memory.

Take into consideration environments where there are hundreds (or at
my place of work, thousands) of users logged into a machine at once.
Many of those are going to have /usr/local/bin/bash as their shell.
A statically-linked version of bash would waste significant amounts
of memory, while a dynamically-linked/shared version would ease that
pain.  The same applies for any static vs. dynamic program.

-- 
| Jeremy Chadwickjdc at parodius.com |
| Parodius Networking   http://www.parodius.com/ |
| UNIX Systems Administrator  Mountain View, CA, USA |
| Making life hard for others since 1977.  PGP: 4BD6C0CB |

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Problems with Xfce & console

[Bernt Hansson]

Nikola Lečić said the following on 2008-11-15 17:13:

On Sat, 15 Nov 2008 16:43:06 +0100
Bernt Hansson <[EMAIL PROTECTED]> wrote:
 

For me it's just xfce with option "Virtual".
if I omit "Virtual" xfce works fine but not any other WM.
Strange.


Can you try x11-drivers/xf86-video-radeonhd (Driver "radeonhd")?


Yes I was thinking about that one but was not sure if it was another 
driver or just a rename. I test it when I get back to work.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"