make of Cyrus-sasl fails
I tried to make Cyrus-sasl, but I failed like this: (My system is FreeBSD 5.2.1 with MIT Kerberos) cc -Wall -W -O -pipe -mcpu=pentiumpro -L/usr/local/lib -L/usr/lib -rpath=/usr/lib:/usr/local/lib -L/usr/local/lib -L/usr/local/lib -L/usr/local/lib -o saslauthd saslauthd.o mechanisms.o auth_dce.o auth_getpwent.o auth_krb5.o auth_krb4.o auth_pam.o auth_rimap.o auth_shadow.o auth_sia.o -L/usr/local/lib -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lcrypt -lpam -Wl,--rpath -Wl,/usr/local/lib -Wl,--rpath -Wl,/usr/lib -Wl,--rpath -Wl,/usr/local/lib -Wl,--rpath -Wl,/usr/lib /usr/local/lib/libkrb5.so: warning: mktemp() possibly used unsafely; consider using mkstemp() auth_krb5.o: In function `k5support_verify_tgt': auth_krb5.o(.text+0xe6): undefined reference to `krb5_data_zero' *** Error code 1 Stop in /usr/ports/security/cyrus-sasl/work/cyrus-sasl-1.5.28/saslauthd. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl/work/cyrus-sasl-1.5.28. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl/work/cyrus-sasl-1.5.28. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl. Am I doing something wrong? -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
UW-Imap build question
I read that I can get uw-imap to work with Kerberos b compiling nlp with EXTRAAUTHENTICATORS=gss Can I still do this through the port, and how? 3.10 How do I configure Kerberos V5? imap-2002 supports client and server functionality on UNIX and 32-bit Windows. Kerberos V5 is supported by default in Windows 2000 builds: nmake -f makefile.w2k Other builds require that a third-party Kerberos package, e.g. MIT Kerberos, be installed on the system first. To build with Kerberos V5 on UNIX, include EXTRAAUTHENTICATORS=gss in the make command line, e.g. make lnp EXTRAAUTHENTICATORS=gss To build with Kerberos V5 on Windows 9x, Windows Millenium, and NT4, use the makefile.ntk file instead of makefile.nt: nmake -f makefile.ntk -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
make of Cyrus-sasl fails
I tried to make Cyrus-sasl, but I failed like this: (My system is FreeBSD 5.2.1 with MIT Kerberos) cc -Wall -W -O -pipe -mcpu=pentiumpro -L/usr/local/lib -L/usr/lib -rpath=/usr/lib:/usr/local/lib -L/usr/local/lib -L/usr/local/lib -L/usr/local/lib -o saslauthd saslauthd.o mechanisms.o auth_dce.o auth_getpwent.o auth_krb5.o auth_krb4.o auth_pam.o auth_rimap.o auth_shadow.o auth_sia.o -L/usr/local/lib -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lcrypt -lpam -Wl,--rpath -Wl,/usr/local/lib -Wl,--rpath -Wl,/usr/lib -Wl,--rpath -Wl,/usr/local/lib -Wl,--rpath -Wl,/usr/lib /usr/local/lib/libkrb5.so: warning: mktemp() possibly used unsafely; consider using mkstemp() auth_krb5.o: In function `k5support_verify_tgt': auth_krb5.o(.text+0xe6): undefined reference to `krb5_data_zero' *** Error code 1 Stop in /usr/ports/security/cyrus-sasl/work/cyrus-sasl-1.5.28/saslauthd. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl/work/cyrus-sasl-1.5.28. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl/work/cyrus-sasl-1.5.28. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl. *** Error code 1 Stop in /usr/ports/security/cyrus-sasl. Am I doing something wrong? -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
CUPS Kerberos
Is there any hack to get CUPS to authenticate to Kerberos? It seems to support either plain Unix authentication or it's own MD5 passwd file only :-( -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
UW-Imap build question
I read that I can get uw-imap to work with Kerberos b compiling nlp with EXTRAAUTHENTICATORS=gss Can I still do this through the port, and how? 3.10 How do I configure Kerberos V5? imap-2002 supports client and server functionality on UNIX and 32-bit Windows. Kerberos V5 is supported by default in Windows 2000 builds: nmake -f makefile.w2k Other builds require that a third-party Kerberos package, e.g. MIT Kerberos, be installed on the system first. To build with Kerberos V5 on UNIX, include EXTRAAUTHENTICATORS=gss in the make command line, e.g. make lnp EXTRAAUTHENTICATORS=gss To build with Kerberos V5 on Windows 9x, Windows Millenium, and NT4, use the makefile.ntk file instead of makefile.nt: nmake -f makefile.ntk -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: USB 2.0 harddisk performance
Hello Charles Thanks for your answer. I was googling for this, and I found out that you need some modules: firewire.c fwohci.c fwohci_pci.c Will the fwohci driver provide better perfomance then the USB one? On Mon, 2004-03-01 at 19:05, Charles Swiger wrote: On Mar 1, 2004, at 11:36 AM, Guy Van Sanden wrote: Is firewire fully supported on FreeBSD? Firewire support has been pretty good, at least for accessing mass storage devices. I haven't beaten on IP-over-Firewire or some of the other capabilities that one might also experiment with The disk does have a firewire link, I can buy an addon card for about 30 ¤, but I wanna make sure that it will work better. I was seeing about 35 MB/s read and about 20 MB/s using a Maxtor 5000DN external drive via Firewire; this drive also supports USB 2, but at the time I was testing OHCI USB was all that was available to me, not EHCI. (USB 1 was giving ~1.2 MB/s...) -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
USB 2.0 harddisk performance
I have a USB 2.0 harddisk (internally ATA-100) connected to a USB 2.0 port. Unfortunatly, data transfers are limited to 1 MB/second (reported by FreeBSD on detection, and confirmed using Bonnie). Any ideas? I'm running 5.2.1 -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: USB 2.0 harddisk performance
Thanks Dany Is firewire fully supported on FreeBSD? The disk does have a firewire link, I can buy an addon card for about 30 ¤, but I wanna make sure that it will work better. On Mon, 2004-03-01 at 17:11, Dany Nativel wrote: Have you enabled EHCI support ? Even with EHCI enabled the speed won't be that great. According to the man page, the code is still under development and therefore pretty buggy. Maybe you'll have better luck with Firewire. Dany Guy Van Sanden wrote: I have a USB 2.0 harddisk (internally ATA-100) connected to a USB 2.0 port. Unfortunatly, data transfers are limited to 1 MB/second (reported by FreeBSD on detection, and confirmed using Bonnie). Any ideas? I'm running 5.2.1 -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: USB 2.0 harddisk performance
Silly question Dany, how do I enable EHCI? On Mon, 2004-03-01 at 17:11, Dany Nativel wrote: Have you enabled EHCI support ? Even with EHCI enabled the speed won't be that great. According to the man page, the code is still under development and therefore pretty buggy. Maybe you'll have better luck with Firewire. Dany Guy Van Sanden wrote: I have a USB 2.0 harddisk (internally ATA-100) connected to a USB 2.0 port. Unfortunatly, data transfers are limited to 1 MB/second (reported by FreeBSD on detection, and confirmed using Bonnie). Any ideas? I'm running 5.2.1 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Firewire card support
Which firewire cards are currently supported on FreeBSD (I'm looking to buy one)? -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Docs on Kerberos with LDAP or NIS
Hello I have been looking for some documentation about setting up authentication using kerberos with LDAP or NIS, but I haven't found anything usefull yet. Does anyone have some links or a site that can help? Thanks Guy -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 5.x downgrade recommendation
I got some weird disklabel behavior, rpc.yppasswdd doesn't work and nfsd crashes on portscans/nessus-probes. That and a lot of system instability. I don't have to reboot daily, but the box has never passed 20 days uptime. Prior to yesterdays reboot, it was up 11 days, which seems to be about my average. I used to run FreeBSD 4.6 (before moving to 5), and it never showed a sign of instability, with uptimes going from 30 to 90 days (I rarely get more because my power grid becomes unstable during thunder or wind-stroms, so I shut down all machines during those). On Thu, 2003-11-27 at 23:51, JacobRhoden wrote: On Thu, 27 Nov 2003 08:18 pm, Guy Van Sanden wrote: I'm now considering if I will do the upgrade to 5.2-RELEASE, or reinstall the system with 4.9 or 4.10. The 5.x branch seems to remain rather unstable longer then I had anticipated. Are you actually having problems running 5.1-RELEASE? I would only bother if there is some bug which is causing problems. I run 5.1-RELEASE and it works fine and dandy with no particularly bad problems (: What would you guys recommend, wait out for 5.3 (which is supposed to be 4.x-like stable), or move back to 4.9 (or 4.10 soon). __ JacobRhoden -- http://rhoden.id.au/ -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
5.x DOS against NFS server
Hello everyone I found that the NFS server in the 5.x series (currently 5.1) crashes during portscans (because of the aborted connection to it). Running nmap or Nessus against the machines requires a manual restart of nfsd. Do others here also have this problem? I reproduced it on 5.0-RELEASE and 5.1-RELEASE. Kind regards Guy -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
5.x downgrade recommendation
I've moved to the 5.x branch since 5.0-RLEASE, currently, I'm running 5.1-RELEASE. I'm now considering if I will do the upgrade to 5.2-RELEASE, or reinstall the system with 4.9 or 4.10. The 5.x branch seems to remain rather unstable longer then I had anticipated. What would you guys recommend, wait out for 5.3 (which is supposed to be 4.x-like stable), or move back to 4.9 (or 4.10 soon). Will 5.2 be much better? I know I made the move too soon, but at that time, I was relatively new to FreeBSD (coming from linux) and I misjudged the readiness of 5.x and I hadn't forseen that my homeserver would become that important (It is a CVS repository for 4 websites now). Thanks for your advice Guy -- __ Guy Van Sanden [EMAIL PROTECTED] http://unixmafia.port5.com PGP KeyID: 28F16C35 http://users.pandora.be/guyness/gvs/gvs.asc Fingerprint: 7436 65AE 8B18 6995 9D63 ED2B D670 A283 28F1 6C35 Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
5.x downgrade recommendation
I've moved to the 5.x branch since 5.0-RLEASE, currently, I'm running 5.1-RELEASE. I'm now considering if I will do the upgrade to 5.2-RELEASE, or reinstall the system with 4.9 or 4.10. The 5.x branch seems to remain rather unstable longer then I had anticipated. What would you guys recommend, wait out for 5.3 (which is supposed to be 4.x-like stable), or move back to 4.9 (or 4.10 soon). Will 5.2 be much better? I know I made the move too soon, but at that time, I was relatively new to FreeBSD (coming from linux) and I misjudged the readiness of 5.x and I hadn't forseen that my homeserver would become that important (It is a CVS repository for 4 websites now). Thanks for your advice Guy -- __ Guy Van Sanden [EMAIL PROTECTED] http://unixmafia.port5.com PGP KeyID: 28F16C35 http://users.pandora.be/guyness/gvs/gvs.asc Fingerprint: 7436 65AE 8B18 6995 9D63 ED2B D670 A283 28F1 6C35 Registered Linux user #249404 - September 1997 __ -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 5.x DOS against NFS server
I just ran nmap host... Nessus has the same effect. Maybe this is fixed between 5.1 and 5.2. On Thu, 2003-11-27 at 16:30, Michael L. Squires wrote: I found that the NFS server in the 5.x series (currently 5.1) crashes during portscans (because of the aborted connection to it). Running nmap or Nessus against the machines requires a manual restart of nfsd. I just portscanned my 5.2-BETA box running NFS server, no problems. What parameters did you use? Mike Squires -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Persistent Cups process
I'm having trouble with cups... My printer's ink cartridge got completely empty, and I didn't have a replacement handy. So I killed of all print jobs. Unfortunately, one of the cups processes for the running job seems to be stuck. ...54562 0.0 0.4 2616 1140 ?? D 5:51PM 0:52.48 parallel:/dev/lpt0 198 ... I tried kill -9, but nothing helps. Shutting down cups doesn't do it either, and I don't want to reboot the box for it (reminds me too much of Windows). Any ideas how I can get rid of it? I'm on FreeBSD 5.1-RELEASE, Cups 1.1.19 with gimp-print. Kind regards Guy -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Overheating attributed to Freebsd --sysctl variablesnotavailable--
on pcib2 pcib2: slot 2 INTA is routed to irq 10 pcib2: slot 2 INTA is routed to irq 10 pcib2: slot 3 INTA is routed to irq 5 pcib2: slot 5 INTA is routed to irq 10 pcib2: slot 8 INTA is routed to irq 10 cbb0: TI1520 PCI-CardBus Bridge irq 10 at device 2.0 on pci2 cardbus0: CardBus bus on cbb0 cbb1: TI1520 PCI-CardBus Bridge irq 10 at device 2.1 on pci2 cardbus1: CardBus bus on cbb1 pcm0: ESS Technology Allegro-1 port 0x5000-0x50ff irq 5 at device 3.0 on pci2 pcm0: failed to enable memory mapping! pcm0: ESS Technology ES1988 AC97 Codec fwohci0: vendor=104c, dev=8026 fwohci0: 1394 Open Host Controller Interface mem 0xe820-0xe8203fff,0xe8207000-0xe82077ff irq 10 at device 5.0 on pci2 fwohci0: OHCI version 1.10 (ROM=1) fwohci0: No. of Isochronous channel is 4. fwohci0: EUI64 00:e0:b8:04:00:01:8d:16 fwohci0: Phy 1394a available S400, 1 ports. fwohci0: Link S400, max_rec 2048 bytes. firewire0: IEEE1394(FireWire) bus on fwohci0 fwohci0: Initiate bus reset fwohci0: BUS reset fwohci0: node_id=0xc000ffc0, gen=1, CYCLEMASTER mode firewire0: 1 nodes, maxhop = 0, cable IRM = 0 (me) firewire0: bus manager 0 (me) fxp0: Intel 82801CAM (ICH3) Pro/100 VE Ethernet port 0x5400-0x543f mem 0xe8206000-0xe8206fff irq 10 at device 8.0 on pci2 fxp0: Ethernet address 00:e0:b8:4b:52:c5 miibus0: MII bus on fxp0 inphy0: i82562ET 10/100 media interface on miibus0 inphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto isab0: PCI-ISA bridge at device 31.0 on pci0 isa0: ISA bus on isab0 atapci0: Intel ICH3 UDMA100 controller port 0x1860-0x186f,0x374-0x377,0x170-0x177,0x3f4-0x3f7,0x1f0-0x1f7 mem 0xe800-0xe80003ff at device 31.1 on pci0 ata0: at 0x1f0 irq 14 on atapci0 ata1: at 0x170 irq 15 on atapci0 ichsmb0: Intel 82801CA (ICH3) SMBus controller port 0x1880-0x189f irq 10 at device 31.3 on pci0 smbus0: System Management Bus on ichsmb0 smb0: SMBus generic I/O on smbus0 pci0: simple comms at device 31.6 (no driver attached) acpi_lid0: Control Method Lid Switch on acpi0 ACPI-1287: *** Error: Method execution failed [\\_SB_.LID_._PSW] (Node 0xc4037b20), AE_NOT_EXIST acpi_acad0: AC adapter on acpi0 acpi_cmbat0: Control method Battery on acpi0 acpi_cmbat1: Control method Battery on acpi0 acpi_button0: Sleep Button on acpi0 atkbdc0: Keyboard controller (i8042) port 0x64,0x60 irq 1 on acpi0 atkbd0: AT Keyboard flags 0x1 irq 1 on atkbdc0 kbd0 at atkbd0 psm0: PS/2 Mouse irq 12 on atkbdc0 psm0: model Generic PS/2 mouse, device ID 0 acpi_ec0: embedded controller port 0x66,0x62 on acpi0 ppc0 port 0x778-0x77f,0x378-0x37f irq 7 drq 3 on acpi0 ppc0: Generic chipset (ECP/PS2/NIBBLE) in COMPATIBLE mode ppc0: FIFO with 16/16/8 bytes threshold ppbus0: Parallel port bus on ppc0 lpt0: Printer on ppbus0 lpt0: Interrupt-driven port ppi0: Parallel I/O on ppbus0 sio0 port 0x3f8-0x3ff irq 4 on acpi0 sio0: type 16550A pmtimer0 on isa0 orm0: Option ROM at iomem 0xc-0xc on isa0 sc0: System console on isa0 sc0: VGA 16 virtual consoles, flags=0x200 vga0: Generic ISA VGA at port 0x3c0-0x3df iomem 0xa-0xb on isa0 sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled Timecounters tick every 10.000 msec IPsec: Initialized Security Association Processing. cbb0: Unsupported card type detected cbb1: Unsupported card type detected ata1-slave: timeout waiting for interrupt ata1-slave: ATAPI identify failed ad0: 28615MB IC25N030ATCS04-0 [58140/16/63] at ata0-master UDMA100 acd0: CD-RW UJDA730 DVD/CDRW at ata1-master UDMA33 Mounting root from ufs:/dev/ad0s2a cd0 at ata1 bus 0 target 0 lun 0 cd0: MATSHITA UJDA730 DVD/CDRW 1.02 Removable CD-ROM SCSI-0 device cd0: 33.000MB/s transfers cd0: Attempt to query device size failed: NOT READY, Medium not present - tray closed /var/run/dmesg.boot ___ -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
yppasswd fails
Yppasswd fails on my 5.1 box (has always worked on 4.5 to 5.0) with yppasswd: pam_chauthtok(): error in service module There's also a syslog message: Nov 4 22:54:54 *** yppasswd: in pam_sm_chauthtok(): yppasswd_local(): failed to connect to rpc.yppasswdd: ***: RPC: Program not registered Yet rpcinfo -p shows: 191 udp821 yppasswdd 191 tcp 1010 yppasswdd -- __ Guy Van Sanden http://unixmafia.port5.com Registered Linux user #249404 - September 1997 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Help: recover deleted file
Hello I accidently ran rm on some files I still need (as a user).. OK, that's what you get for running a terminal early on a sunday morning :-( The files were fairly recent, and are not on any of my backups yet (something I will need to fix). I tried to install ffsrecov, but it is broken on my system. I'm running FreeBSD 5.1-RELEASE. I deleted the files on a Linux box (Gentoo) over an NFS connection, they were stored on the FreeBSD system. Thanks for any help Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: RC1 ... PGP signing ...
On Fri, 2003-10-03 at 20:15, Robert G. Waycott wrote: My friend just notified me that rc1 is out. I have been working the past few days, so was not aware. Now, I wonder if I must reinstall the system with an rc1 .iso, or if a CVSup, portupgrade/make world will do? Second question: why do many users on the list PGP sign messages? Is there something nefarious out there about which I should worry? Is PGP-signing really providing a great deal of security? Although I don't sign my messages to mailing lists, PGP signatures are a good way to determine if a message really came from the person that the headers indicate. If you are really sure that a particular key belongs to someone, than you can rest assure that a message signed by that key came from the sender (unless he got his private key and passphrase stolen) *and* that the message arrived unchanged. You can do a lot of damage by either forging E-mails from someone, or modifying E-mails (I saw that kind of stuff in my college-days, some kids send offensive Emails to teachers from other kids addresses). No PGP signatures should solve this problem. One cautionary note, PGP/Mime signed mails are not displayed by Outlook at all (its MIME implementation is a complete mess). Esse quam videri, --Bob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: CUPS on SSL
Sorry for the late answer (I was away) I created the certs like I would for apache (there's a script for it somewhere). Yet I cannot connect to the https web interface... strange On Mon, 2003-09-29 at 19:03, Matthias Teege wrote: Guy Van Sanden [EMAIL PROTECTED] writes: Hello all I've recently set up my CUPS server with SSL protection (reconfigured the clients to have 'Encryption Required' in the client.conf file. Can you also connect to the admin interface with https://host:631? How do you create the server certificates. Bis dann Matthias ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NFS server redundancy/failover
Hello Does anyone know if and how it is possible to set up a redundant NFS server? What I want to do is this, I have a primary NFS server that serves home directories and data storage. I also have a second system with a lot of disk-capacity, I could set it up as a 'mirror' using rsync. Now, when the primary NFS goes down, clients should automaticly look for the backup one. My network is running both FreeBSD 5.0 (on the server) and Linux (Mandrake 9.1). Thanks for any suggestions. Kind regards Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
CUPS on SSL
Hello all I've recently set up my CUPS server with SSL protection (reconfigured the clients to have 'Encryption Required' in the client.conf file. How can I verify that SSL is really working on that connection? I am on a switched network, so sniffing from another machine is difficult. Kind regards Guy Van Sanden ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NFS server redundancy/failover
Hi Matthias Thank you for your answer. I think I'll do it that way, I was wondering if it would have been possible, Solaris supports giving multiple servers when mounting NFS shares, but I couldn't find something similar on FreeBSD and Linux. Kind regards Guy On Mon, 2003-09-29 at 14:30, Matthias Teege wrote: Guy Van Sanden [EMAIL PROTECTED] writes: Does anyone know if and how it is possible to set up a redundant NFS server? Somthing like that is expensive and mostly not needed. Rsync with a hot standby system is ok. If the mainserver fail, go to the second and reconfigure the ip interface. Bis dann Matthias ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sendmail vs. Postfix...
I'm sorry, it wasn't for me. I installed postfix from ports and stopped sendmail, postfix still didn't start though (it had port 25 open, but didn't respond to it). Eventually I reverted to sendmail. I'm on FreeBSD 5.0 BTW. I do have postfix running fine on Linux, I might add. On Wed, 2003-09-24 at 21:43, synrat wrote: what do you mean postfix is hard to setup ? It's fully functional after the installation, you can send e-mail right away and you only need a few changes to main.cf to accept e-mail. The file is very well commented, save the changes, and run 'postfix reload' as root. On Wed, 24 Sep 2003, Payne wrote: Hey, Quick question. How hard is it to set up Postfix. I am getting tried of Sendmail. Is it hard to set up Postfix to access passwords so that the only mail can be sent. Chuck ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Disklabe oddity
On Sat, 2003-09-20 at 16:38, Peder Blom wrote: On Sat, 20 Sep 2003 10:44:28 +0200 Guy Van Sanden [EMAIL PROTECTED] wrote: I get a strange message from disklabel: Warning, partition c doesn't start at 0! Warning, partition c doesn't cover the whole unit! Warning, An incorrect partition c may cause problems for standard system utilities What does this mean? You don't say what version of FreeBSD you are running. I recall that this problem has been discussed several times on freebsd-current though, so it might be better to check there. I'm running 5.0, so that can very well be. Thanks. I'm considering reinstalling the system with 5.2, reformatting the disk, but I don't know if this will clear the error. It will have a larger root though. It's a warning and not necessarily an error. IIRC it *might* be an issue with bsdlabel, but don't take my word for it, go and check current, or google mailing.freebsd.current. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Disklabe oddity
On Sun, 2003-09-21 at 02:46, Greg 'groggy' Lehey wrote: [Format recovered--see http://www.lemis.com/email/email-format.html] Still wrapped output. This is painful to recover, and I tend to lose interest when it continues. I looked at your page, and you make a good point. When I return later today, I'll look/google for a way to set Ximian Evolution up to do this correctly (if that is possible), otherwise, I'll file a bug-report with them. On Saturday, 20 September 2003 at 11:53:41 +0200, Guy Van Sanden wrote: Thanks you for your very complete answer Greg On Sat, 2003-09-20 at 10:59, Greg 'groggy' Lehey wrote: [Format recovered--see http://www.lemis.com/email/email-format.html] The disk was formatted by the FreeBSD install procedure. If you haven't changed anything here, it would be interesting to know in more detail just what you did. To judge by the surprising number of partitions, you didn't take the defaults. I just created seperate partitions for / /tmp /var /usr etc. The c partition was created by FreeBSD on its own. Could this be a BIOS problem, my system BIOS predates that size of disks by far? Barely possible. The system is an older Digital PC (3500) PII 333 Mhz. The disk is a 40 GB IDE drive (WD) BTW, I'm looking for a safe way to 'grow' my rootfs, I've looked arround before, but I'm still not clear on the right procedure for it. Take a look at growfs(8). To do it right, you need space directly behind the root file system. Even Vinum won't help here. You could move the swap space elsewhere, for example. I'm looking at that option, lucky that I have a second disk with rsynced mirrors of all partitions on the first one. I can just remove /home and /data and copy them back later. Well, yes, or you can completely reinstall. I was looking at a less intrusive way of doing it. Perhaps I can add the swap space to / and create a new swap further back on the disk. It's not a good idea to add swap space to a file system. It's better to have your own partition. Probably what you have is more than adequate, though. I wasn't planning to put the swap on the fs, I would create a swap partition further back on the disk, then delete the existing one and extend the root fs to include the that space. I'm only not sure if this would cause the slice letters to move (/ is slice a, swap is b - it I remove it, will it cascade the others down?) You can clear the error by running disklabel -e /dev/ad0s1a in single user mode, and changing the length and offset of partition c (offset 0, add 63 to the size). I wanted to try this on the mirror disk first, it also shows the offset at 63 using disklabel -r Yet doing disklabel -e on it shows the offset at 0 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 32768004.2BSD 2048 16384 20488 # (Cyl.0 - 325*) b: 1007984 327680 swap# (Cyl. 325*- 1325*) c: 804181770unused0 0 # (Cyl.0 - 79779*) d: 1007616 13356644.2BSD 2048 16384 62984 # (Cyl. 1325*- 2324*) e: 1024000 23432804.2BSD 2048 16384 64008 # (Cyl. 2324*- 3340*) f: 18120704 33672804.2BSD 2048 16384 28552 # (Cyl. 3340*- 21317*) g: 20971520 214879844.2BSD 2048 16384 28552 # (Cyl. 21317*- 42122*) h: 37958673 424595044.2BSD 2048 16384 28552 # (Cyl. 42122*- 79779*) It looks as if you have two different partition tables. This one doesn't match the other. Are you still getting the message? Strangely engough, yes Someone suggested that this might be a problem in -current, so I'll check those lists later today. Greg -- When replying to this message, please copy the original recipients. If you don't, I may ignore the reply or reply to the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address and phone numbers ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: USB storage dongles and umass driver
Hi Tom As far as I know, if the device is USB mass storage, it is generic. That protocol is just SCSI over USB, so should be as generic as SCSI once was. On Linux, all USB-mass storage devices (including digicams) are supported using only one driver, I guess it should be the same on FreeBSD. If you plug it in, try cdrecord -scanbus to see if it is connected. Good luck Guy On Mon, 2003-09-22 at 02:13, Tom Parquette wrote: Hi. I was looking at the Sunday ads and I found a LEXAR JumpDrive at a price that I could swallow. I looked at umass and it talks about supporting a couple of models of SanDisk dongles in flash mode. I do not know too much about these. If my terms are incorrect, please correct me. The question I have is, are these devices generic enough that other manufacturer's devices will work with the umass driver? Something like this would be nice for transporting a few things to and from work. e.g. Installing Lotus Notes under wine on my FreeBSD machine and using one of these USB devices for carrying my Notes ID file and personal address book. Comments/insights? Thanks. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
CVSUP upgrade 5.0 - 5.1
I've been contemplating upgrading my FreeBSD 5.0 to 5.1 using cvsup (mainly since there is no official security branch for 5.0 anymore) What I wanted to ask is if I might expect some ports to break after it. I'm running Bugzilla (on MySQL), apache, Big Brother (not from ports), NTP, Samba, tinydns, dnscache and some others. I want to be prepared to handle these befor attempting the upgrade. Thanks Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Disklabe oddity
I get a strange message from disklabel: Warning, partition c doesn't start at 0! Warning, partition c doesn't cover the whole unit! Warning, An incorrect partition c may cause problems for standard system utilities What does this mean? The disk was formatted by the FreeBSD install procedure. The system is an older Digital PC (3500) PII 333 Mhz. The disk is a 40 GB IDE drive (WD) BTW, I'm looking for a safe way to 'grow' my rootfs, I've looked arround before, but I'm still not clear on the right procedure for it. I'm considering reinstalling the system with 5.2, reformatting the disk, but I don't know if this will clear the error. It will have a larger root though. Thanks for any help/suggestions. # disklabel -r /dev/ad0s1c # /dev/ad0s1c: type: ESDI disk: ad0s1 label: flags: bytes/sector: 512 sectors/track: 63 tracks/cylinder: 255 sectors/cylinder: 16065 cylinders: 4865 sectors/unit: 78165360 rpm: 3600 interleave: 1 trackskew: 0 cylinderskew: 0 headswitch: 0 # milliseconds track-to-track seek: 0 # milliseconds drivedata: 0 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 327680 634.2BSD 2048 16384 20488 # (Cyl.0*- 20*) b: 1007984 327743 swap# (Cyl. 20*- 83*) c: 78156162 63unused0 0 # (Cyl.0*- 4864*) d: 1007616 13357274.2BSD 2048 16384 62984 # (Cyl. 83*- 145*) e: 1024000 23433434.2BSD 2048 16384 64008 # (Cyl. 145*- 209*) f: 18120704 33673434.2BSD 2048 16384 28552 # (Cyl. 209*- 1337*) g: 20971520 214880474.2BSD 2048 16384 28552 # (Cyl. 1337*- 2642*) h: 35696658 424595674.2BSD 2048 16384 28512 # (Cyl. 2642*- 4864*) Warning, partition c doesn't start at 0! Warning, partition c doesn't cover the whole unit! Warning, An incorrect partition c may cause problems for standard system utilities ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Disklabe oddity
Thanks you for your very complete answer Greg On Sat, 2003-09-20 at 10:59, Greg 'groggy' Lehey wrote: [Format recovered--see http://www.lemis.com/email/email-format.html] Output wrapped. On Saturday, 20 September 2003 at 10:44:28 +0200, Guy Van Sanden wrote: I get a strange message from disklabel: snip What does this mean? Well, as it says, your c partition doesn't start at 0, so it also can't cover the whole unit: # size offsetfstype [fsize bsize bps/cpg] c: 78156162 63unused0 0 # (Cyl.0*-4864*) What part of that don't you understand? I don't understand how this happened, as I used the sysinstall menus to lay-out the disk The disk was formatted by the FreeBSD install procedure. If you haven't changed anything here, it would be interesting to know in more detail just what you did. To judge by the surprising number of partitions, you didn't take the defaults. I just created seperate partitions for / /tmp /var /usr etc. The c partition was created by FreeBSD on its own. Could this be a BIOS problem, my system BIOS predates that size of disks by far? The system is an older Digital PC (3500) PII 333 Mhz. The disk is a 40 GB IDE drive (WD) BTW, I'm looking for a safe way to 'grow' my rootfs, I've looked arround before, but I'm still not clear on the right procedure for it. Take a look at growfs(8). To do it right, you need space directly behind the root file system. Even Vinum won't help here. You could move the swap space elsewhere, for example. I'm looking at that option, lucky that I have a second disk with rsynced mirrors of all partitions on the first one. I can just remove /home and /data and copy them back later. Perhaps I can add the swap space to / and create a new swap further back on the disk. I'm considering reinstalling the system with 5.2, reformatting the disk, There's seldom a reason either to reinstall or to reformat. If you don't want anything of the current installation, reinstallation may be faster, however. but I don't know if this will clear the error. You can clear the error by running disklabel -e /dev/ad0s1a in single user mode, and changing the length and offset of partition c (offset 0, add 63 to the size). I wanted to try this on the mirror disk first, it also shows the offset at 63 using disklabel -r Yet doing disklabel -e on it shows the offset at 0 8 partitions: #size offsetfstype [fsize bsize bps/cpg] a: 32768004.2BSD 2048 16384 20488 # (Cyl.0 - 325*) b: 1007984 327680 swap# (Cyl. 325*- 1325*) c: 804181770unused0 0 # (Cyl.0 - 79779*) d: 1007616 13356644.2BSD 2048 16384 62984 # (Cyl. 1325*- 2324*) e: 1024000 23432804.2BSD 2048 16384 64008 # (Cyl. 2324*- 3340*) f: 18120704 33672804.2BSD 2048 16384 28552 # (Cyl. 3340*- 21317*) g: 20971520 214879844.2BSD 2048 16384 28552 # (Cyl. 21317*- 42122*) h: 37958673 424595044.2BSD 2048 16384 28552 # (Cyl. 42122*- 79779*) Greg -- When replying to this message, please copy the original recipients. If you don't, I may ignore the reply or reply to the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address and phone numbers ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Postfix problems
I tried to install postfix on my system (FreeBSD 5.0). It compiles and installs fine (from ports), but it does not seem to work. nc host 25 gives a connection, but nothing else Sending mail completely fails. Am I missing something? Is there a sendmail to postfix migration howto or something? Googling did not provide me mucht helpful information. Thanks Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Postfix problems
I forgot to mention this, I did that first, than ran /bin/sh /etc/rc.sendmail stop Postfix appears to run, yet does not repsond... On Sat, 2003-09-20 at 16:34, fbsd_user wrote: You missed the most obvious point. The basic FBSD install is delivered with sendmail active. To get postfix to be the active mail server you have to disable sendmail and reboot FBSD. ADD this statement to your rc.conf file sendmail_enable=NONE # Totally disable sendmail, allowing Postfix # to become the primary MTA. # (Mail transport agent) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Guy Van Sanden Sent: Saturday, September 20, 2003 10:08 AM To: [EMAIL PROTECTED] Subject: Postfix problems I tried to install postfix on my system (FreeBSD 5.0). It compiles and installs fine (from ports), but it does not seem to work. nc host 25 gives a connection, but nothing else Sending mail completely fails. Am I missing something? Is there a sendmail to postfix migration howto or something? Googling did not provide me mucht helpful information. Thanks Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
CVS tag blocks repository access
Help I 'accidently' created a numeric tag in CVS by using: cvs commit -r2.0 file This would, according to the man page, set my revision to 2.0, but it also created a sticky tag with that name. Now I cannot check in anything any more. Removing the tag with cvs tag -d or cvs rtag -d fails: tag `2.0' must start with a letter Does anyone know a clean way out of this? Thanks very much Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: nis security (DES passwords)
I was looking arround for this, and I found that Kerberos uses DES encryption, John (on my sytem) reports it rather weak: Benchmarking: Standard DES [24/32 4K]... DONE Many salts: 151603 c/s real, 169200 c/s virtual Only one salt: 152806 c/s real, 155607 c/s virtual Benchmarking: BSDI DES (x725) [24/32 4K]... DONE Many salts: 5750 c/s real, 5940 c/s virtual Only one salt: 5630 c/s real, 5721 c/s virtual Benchmarking: FreeBSD MD5 [32/32]... DONE Raw:3092 c/s real, 3752 c/s virtual Benchmarking: OpenBSD Blowfish (x32) [32/32]... DONE Raw:222 c/s real, 227 c/s virtual Benchmarking: Kerberos AFS DES [24/32 4K]... DONE Short: 143462 c/s real, 153271 c/s virtual Long: 377600 c/s real, 394979 c/s virtual Benchmarking: NT LM DES [24/32 4K]... DONE Raw:1080115 c/s real, 1125120 c/s virtual I'm now using MD5 passwords in NIS. Yet it seems the consensus that Kerberos is secure, am I missing something? On Fri, 2003-09-12 at 15:00, Tillman Hodgson wrote: On Fri, Sep 12, 2003 at 11:35:16AM +0200, Guy Van Sanden wrote: On Tue, 2003-09-09 at 02:15, Tillman Hodgson wrote: The rough instructions are fairly simple: * Set up Kerberos and ensure you have a working realm * Set up NIS, but set all the passwd fields to something that doesn't map to a real password (I like 'krb5', others like '*') That's about it. It works because authentication in a Kerberized world doesn't check the password field in the NIS maps anyway (or the /etc/master.passwd file for that matter). Your non-Kerberos app's will break for users that aren't local, but I consider the incentive to replace them a benefit :-) Do you have some links to websites or so that you used to set this up? Not really. Kerberos and NIS are both in the Handbook, and as I mentioned above I just changed the /var/yp/master.passwd that NIS was working off of to have 'krb5' in the password field. A quick bit of Google spelunking dug up some references but no HowTos. The RedHat Security Guide mentions it explicitly in the NIS section, for example. I'm very interested in this setup, with the added complication that the clients are Linux (and Windows using SAMBA), yet the server is FreeBSD (5.0). Normally NIS is a pain between different Unix implementations (due to the different passwd designs such as DES vs. MD5). When using Kerberos to handle the authentication, those problems go away. On the other handle, you get to learn how to install NIS and Kerberos on multiple operating systems :-) -T ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re:
We'll try to keep it a secret :-) On Fri, 2003-09-12 at 11:00, Paul Cocker wrote: PLEASE NOTE: ~~~ This e-mail message is confidential and privileged. It is intended solely for the use of the individual or entity to whom it is addressed. If you are not the intended recipient, please accept our apologies; do not disclose, copy or distribute information in this e-mail or take any action on reliance of its content. To do so is strictly prohibited and may be unlawful. Please inform us that the message has been sent to you in error before deleting it. Thank you for your co-operation. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: nis security
On Tue, 2003-09-09 at 02:15, Tillman Hodgson wrote: On Mon, Sep 08, 2003 at 07:02:06PM -0500, Bruce Pea wrote: xnip I'm a bit biased, however: I use NIS with Kerberos and think it's the cats pajamas :-) Hey Tilman, s/l/ll/ :-) This sounds exactly like what we are looking for. Can you point us to any docs explaining how you do this?? The rough instructions are fairly simple: * Set up Kerberos and ensure you have a working realm * Set up NIS, but set all the passwd fields to something that doesn't map to a real password (I like 'krb5', others like '*') That's about it. It works because authentication in a Kerberized world doesn't check the password field in the NIS maps anyway (or the /etc/master.passwd file for that matter). Your non-Kerberos app's will break for users that aren't local, but I consider the incentive to replace them a benefit :-) Do you have some links to websites or so that you used to set this up? I'm very interested in this setup, with the added complication that the clients are Linux (and Windows using SAMBA), yet the server is FreeBSD (5.0). Thanks! You can get fancy and make a nice little Makefile to do all kinds of maintenance tasks for you (I'm just about finished tying in Mailman into the central auth for the rospa.ca domain). You can try some of the neater features of NIS (netgroups, etc) or fiddle with the config of Kerberos (I like longer ticket lifetimes), but the basic get it working stuff isn't complicated. -T ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: rsync problem
Thank you Malcolm I'll try this one... On Tue, 2003-09-02 at 17:59, Malcolm Kay wrote: On Tue, 2 Sep 2003 23:27, Guy Van Sanden wrote: Hello I'm using rsync to sort of mirror two 40GB disks (once a day). All partitions work as expected, but root is weird (and as you can see below, I sort of made it too small). I use this command: /usr/local/bin/rsync -ax --delete / /mirror/rootfs But this is what I'm getting: df -m Filesystem 1M-blocks Used Avail Capacity Mounted on /dev/ad0s1a 154 717051%/ /dev/ad1s1a 154 138 497%/mirror/rootfs So, there's a 67 MB difference between both. I started out wite a cleanly formatted mirror (UFS2) My system is FreeBSD 5.0 RELEASE-p11 Thanks for any help Guy I expect rsync does not recognise hard linked files as such and makes separate images of each directory link. Looking through /stand on my 4.8 system I see that this would create about 60Mb extra. You might do better with dump and restore: # cd /miiror/rootfs # dump -0 -a -f - / | restore -r -f - Malcolm ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrade 5.0 to 5.1
Hi Kent Thanks for your answers! I have one more question, the manual says to drop to single user mode before doing buildworld, do you do this. If I could avoid this, I could run buildworld during the night, and do installworld when it suits me during the daytime. Thank you very much Guy On Sat, 2003-08-30 at 22:00, Kent Stewart wrote: On Saturday 30 August 2003 11:44 am, Guy Van Sanden wrote: Ah, I indeed forgot the system information. It is a P II 333 MHZ with 256 of RAM and an UDMA 33 HD (40 GB). Judging from your timings, this is going to take a while... Yes, on a machine with that speed, it will be several hours. Does buildworld and installworld always take equally long, even say only 10 files changed? Buildworld always takes about the same time. The installworld on my machine runs 4 minutes. Running mergemaster the first time on an upgrade can take a while. You need to look at /usr/src/UPDATING for when you need to run it and the options. The installs are always fast and only the builds take much time. Are there any pitfalls I should be aware of (seeing that this would be the first time I attempt such a thing). That you have done a full src-all on your cvsup. There are also some options that help in your /etc/make.conf. From what I saw a little while ago, the default make.conf is now in the examples directory. Don't let mergemaster replace your hosts entries and your user entries in master.passwd and groups. I edit the password entries manually with vipw and groups with vi. If you have a special /etc/printcap, it will try to replace it. Just pay attention is all that is required. You can save trouble if you back up /etc before you do the installs. Kent On Sat, 2003-08-30 at 18:34, Kent Stewart wrote: On Saturday 30 August 2003 08:58 am, Guy Van Sanden wrote: How would I best upgrade my 5.0 installation to 5.1? I have done binary (CD-ROM) updates on 4.x in the past, but I was thinking this could be done using cvsup. Can anyone briefly say wheter this procedure would be right: - change default release=cvs tag=RELENG_5_0 to RELENG_5_1 - cvsup the new sources - follow instructions to buildworld+installworld in Chapter 21 of the handbook. Any ideas how long this would take ? It is totally a function of your computer. Since, you didn't provide that information, we can only provide information on our personal systems. I follow current, since I don't think 5.x is up to 4.x release quality at this point. I don't think it is far off, just not quite there. A buildworld, which is the longest part of an upgrade, requires 50+ minutes on my AMD 1600+ with 512 MB of DDR-266 memory and 3 ATA-100 HDs. Having less memory won't affect the build time unless you produce swaping. Having both /usr/src and /usr/obj on the same HD will also increase compile times. The buildkernel probably takes on the order of 10 minutes since it is long enough that I won't sit there to watch and I haven't timed my build script. The installs probably take less than 5 minutes. Kent ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrade 5.0 to 5.1
Thanks, I hoped it would be so. Chapter 21 of the handbook is not entirely clear about this, it does seem to recommend dropping to single user mode before building... I'll try it without anyway :-) On Sun, 2003-08-31 at 10:50, Erik Trulsson wrote: On Sun, Aug 31, 2003 at 10:20:12AM +0200, Guy Van Sanden wrote: Hi Kent Thanks for your answers! I have one more question, the manual says to drop to single user mode before doing buildworld, do you do this. If I could avoid this, I could run buildworld during the night, and do installworld when it suits me during the daytime. There is absolutely no need to go to single user mode before a buildworld/buildkernel. Never has been necessary either, AFAIK. Read the manual a bit more carefully and I think you will find out that it agrees with me. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Upgrade 5.0 to 5.1
How would I best upgrade my 5.0 installation to 5.1? I have done binary (CD-ROM) updates on 4.x in the past, but I was thinking this could be done using cvsup. Can anyone briefly say wheter this procedure would be right: - change default release=cvs tag=RELENG_5_0 to RELENG_5_1 - cvsup the new sources - follow instructions to buildworld+installworld in Chapter 21 of the handbook. Any ideas how long this would take ? Thanks in advance Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrade 5.0 to 5.1
Ah, I indeed forgot the system information. It is a P II 333 MHZ with 256 of RAM and an UDMA 33 HD (40 GB). Judging from your timings, this is going to take a while... Does buildworld and installworld always take equally long, even say only 10 files changed? Are there any pitfalls I should be aware of (seeing that this would be the first time I attempt such a thing). On Sat, 2003-08-30 at 18:34, Kent Stewart wrote: On Saturday 30 August 2003 08:58 am, Guy Van Sanden wrote: How would I best upgrade my 5.0 installation to 5.1? I have done binary (CD-ROM) updates on 4.x in the past, but I was thinking this could be done using cvsup. Can anyone briefly say wheter this procedure would be right: - change default release=cvs tag=RELENG_5_0 to RELENG_5_1 - cvsup the new sources - follow instructions to buildworld+installworld in Chapter 21 of the handbook. Any ideas how long this would take ? It is totally a function of your computer. Since, you didn't provide that information, we can only provide information on our personal systems. I follow current, since I don't think 5.x is up to 4.x release quality at this point. I don't think it is far off, just not quite there. A buildworld, which is the longest part of an upgrade, requires 50+ minutes on my AMD 1600+ with 512 MB of DDR-266 memory and 3 ATA-100 HDs. Having less memory won't affect the build time unless you produce swaping. Having both /usr/src and /usr/obj on the same HD will also increase compile times. The buildkernel probably takes on the order of 10 minutes since it is long enough that I won't sit there to watch and I haven't timed my build script. The installs probably take less than 5 minutes. Kent ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Patching procedures
Hello Matthew Thank you for your very complete answer. I'm going to be experimenting with this for a while, and I'll do a lot of reading. Kind regards Guy On Thu, 2003-08-28 at 13:29, Matthew Seaman wrote: On Thu, Aug 28, 2003 at 10:09:35AM +0200, Guy Van Sanden wrote: ** message didn't make it to the list - sending again ** I'm still relatively new to FreeBSD, and I was wondering what most of you use as a patching procedure for FreeBSD (not the ports) Up to now, I have always folowed the instructions in '2) To patch your present system:'. Yet somehow this seems like the long way to do it. Therefor, I'm wondering how most of you keep your systems up to date. For the moment, I'm only managing my home server (which is still critical), but I would also like to know how to manage this in a professional deployment (I used to manage Solaris networks, and we had these patch-clusters which were rahter nice). Unlike Solaris, FreeBSD generally operates by supplying patches to the system source code. Colin Percival has a binary patch system under development, but it's not an official FreeBSD thing yet -- see http://www.daemonology.org/ for details. The standard way to keep a system up to date is to maintain an up to date copy of the system sources -- either which ever one of the release branches you've chosen, or 4-STABLE or 5-CURRENT -- and compile and install from there. For the release branches you can achieve that by starting with the sources as distributed on the CD Roms, and applying the patches as shown in any security advisories -- any changes to a release branche will be accompanied by an advisory notice, which is almost always a security advisory. Technically it may be possible for a really crucial but not security related patch to be applied to a release branch, but it doesn't seem to happen much in practice. The non-release branches (4-STABLE, 5-CURRENT) are under continuous development, so there's not going to be any specific points at which everyone will update, other than when large chunks of particularly awaited new functionality or big bugfixes go into the tree. Or when (like now) a new release is in the offing. Most private users tracking STABLE or CURRENT will just update every week or month or so, or when they get around to it. Whatever the release branch you've chosen, and particularly if you're running 4-STABLE of 5-CURRENT, it's much more convenient to use cvsup(1) to keep your sources up to date, rather than by applying patches. There are a few other mechanisms around -- see Appendix A of the handbook -- http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mirrors.html but cvsup(1) is what the vast majority of the users use. If you're using FreeBSD in a commercial setting, then you should certainly be tracking one of the release branches and be implementing a testing regime on a spare server before pushing out updates to your production servers. Whilst the FreeBSD project generally does extremely well at keeping 4-STABLE and the RELEASE branches stable, they do rely on bug reports from users and developers rather than having the sort of comprehensive QC test cycles that Sun performs. The test box function can be combined quite neatly with being a build server -- you can either make your own releases and cut them to CD-ROM for installation on your production machines, or just NFS mount the /usr/obj and /usr/src trees from the build box in order to install the upgrade. With practice you can get an installkernel - reboot to single user - installworld - mergemaster - reboot cycle down to under 15mins downtime, which is a lot quicker than it takes to install some Solaris patches. One other major difference between Solaris patches and FreeBSD updates is that FreeBSD doesn't offer you a specific mechanism to back out any changes you make. Always make sure you have good backups from immediately before you start an upgrade cycle. Cheers, Matthew ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is CIFS available already on FreeBSD?
Hello Anand The protocol you are inquiring about is called SMB/CIFS. Server Message Block/Common Internet File System. The name in itself is very misleading, CIFS is not an Internet FS in any way, but part of M$ file/print sharing implementation. To answer your question, Samba is a fully functional SMB/CIFS server and client. The client is provided as utilities like smbclient, smbmount. On some systems you even get the option to use smbfs in fstab. Kind regards Guy -- __ Guy Van Sanden [EMAIL PROTECTED] PGP KeyID: 28F16C35 http://users.pandora.be/guyness/gvs/gvs.asc Fingerprint: 7436 65AE 8B18 6995 9D63 ED2B D670 A283 28F1 6C35 __ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Patching procedures
I'm still relatively new to FreeBSD, and I was wondering what most of you use as a patching procedure for FreeBSD (not the ports) Up to now, I have always folowed the instructions in '2) To patch your present system:'. Yet somehow this seems like the long way to do it. Therefor, I'm wondering how most of you keep your systems up to date. For the moment, I'm only managing my home server (which is still critical), but I would also like to know how to manage this in a professional deployment (I used to manage Solaris networks, and we had these patch-clusters which were rahter nice). Thanks in advance Guy ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Post about BSD's alleged demise on /.
Hi I saw this post on /. today, under the announcement about a FreeBSD 5.1 review. Is there much truth is this? How many FreeBSD servers are out there? And is there number declining? I really hope that BSD will be arround for a long time to come... Kind regards Guy http://slashdot.org/comments.pl?sid=70502cid=6404771 It is now official - Netcraft has confirmed: *BSD is dying Yet another crippling bombshell hit the beleaguered *BSD community when recently IDC confirmed that *BSD accounts for less than a fraction of 1 percent of all servers. Coming on the heels of the latest Netcraft survey which plainly states that *BSD has lost more market share, this news serves to reinforce what we've known all along. *BSD is collapsing in complete disarray, as fittingly exemplified by failing dead last [samag.com] in the recent Sys Admin comprehensive networking test. You don't need to be a Kreskin [amazingkreskin.com] to predict *BSD's future. The hand writing is on the wall: *BSD faces a bleak future. In fact there won't be any future at all for *BSD because *BSD is dying. Things are looking very bad for *BSD. As many of us are already aware, *BSD continues to lose market share. Red ink flows like a river of blood. FreeBSD is the most endangered of them all, having lost 93% of its core developers. Let's keep to the facts and look at the numbers. OpenBSD leader Theo states that there are 7000 users of OpenBSD. How many users of NetBSD are there? Let's see. The number of OpenBSD versus NetBSD posts on Usenet is roughly in ratio of 5 to 1. Therefore there are about 7000/5 = 1400 NetBSD users. BSD/OS posts on Usenet are about half of the volume of NetBSD posts. Therefore there are about 700 users of BSD/OS. A recent article put FreeBSD at about 80 percent of the *BSD market. Therefore there are (7000+1400+700)*4 = 36400 FreeBSD users. This is consistent with the number of FreeBSD Usenet posts. Due to the troubles of Walnut Creek, abysmal sales and so on, FreeBSD went out of business and was taken over by BSDI who sell another troubled OS. Now BSDI is also dead, its corpse turned over to yet another charnel house. All major surveys show that *BSD has steadily declined in market share. *BSD is very sick and its long term survival prospects are very dim. If *BSD is to survive at all it will be among OS hobbyist dabblers. *BSD continues to decay. Nothing short of a miracle could save it at this point in time. For all practical purposes, *BSD is dead. Fact: *BSD is dead ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]