Re: Virtual hosts and PHP downloads: php5 and apache22 on FreeBSD6.1-STABLE
Just an update on this: as you might expect, after deinstalling apache22, reinstalling apache13, de/reinstalling PHP5, and adding the old manual updates to httpd.conf, my server is back up and running. A fitting conclusion to 1.5 days of self-induced stress. Thanks to Mikhail, Kevin, fbsd, and Rob for their help and thoughts. ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Virtual hosts and PHP downloads: php5 and apache22 on FreeBSD 6.1-STABLE
I upgraded my system from 5.4-RELEASE to 6.1-STABLE last week, and my web server immediately stopped serving PHP pages, where I had no problem doing so before. Instead of processing the PHP code on the server and displaying the result in a browser, browsing to any page containing PHP code resulted in a prompt to download the PHP page as a file. /usr/ports/UPGRADING mentions that PHP has been streamlined and must be recompiled to work with Apache and other packages. After deinstalling, configuring (where applicable), and reinstalling PHP5, php5-extensions, and apache2 to the latest versions, not only were PHP files not being served, but my web server was toast: Forbidden You don't have permission to access / on this server. I edited the new apache config file (now located in /usr/local/etc/apache22/httpd.conf) with my system information, including a DocumentRoot path. But when I started apache, I got some very peculiar errors: Warning: DocumentRoot [/www/docs/dummy-host.example.com] does not exist Warning: DocumentRoot [/www/docs/dummy-host2.example.com] does not exist Not only did I confirm beforehand that I had set the DocumentRoot path, and that apache was using the correct config file... but these dummy paths didn't exist in the config file! I learned eventually that a new apache directive splits out virtual host directives to a new include file (/usr/local/etc/apache22/extra/httpd-vhosts.conf). Then I learned after getting a server warning (NameVirtualHost *:80 has no VirtualHosts) that the syntax has been slightly modified, so that the IP/port value of each VirtualHost specification must match that of the NameVirtualHost directive (i.e., NameVirtualHost *:80 and VirtualHost *:80). Still having trouble though: my main site loads properly, but the other virtual hosts aren't. Browsing to any virtual host address other than the default results in either the wrong content or an error. Here's what my httpd-vhosts.conf looks like: NameVirtualHost *:80 VirtualHost *:80 ServerName www.SiteA.com ServerAlias SiteA.com *.SiteA.com DocumentRoot /usr/www ErrorLog /var/log/httpd-SiteA-error.log CustomLog /var/log/httpd-SiteA-access.log combined /VirtualHost VirtualHost *:80 ServerName www.SiteB.com ServerAlias SiteB.com *.SiteB.com DocumentRoot /usr/www2 ErrorLog /var/log/httpd-SiteB-error.log CustomLog /var/log/httpd-SiteB-access.log combined /VirtualHost So, what's happening is that SiteA works as expected, but browsing to SiteB brings you to SiteA, or doesn't load at all (403 error). In addition, I'm back to my original problem, where PHP files are not loading, and browsing to a PHP page prompts the user to download the page as a file. Any help on either the virtual hosts or the PHP download issue would be greatly appreciated. Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virtual hosts and PHP downloads: php5 and apache22 on FreeBSD6.1-STABLE
First and foremost, thanks for the reply. On 6/6/06, fbsd [EMAIL PROTECTED] wrote: The php5 port is broken in 6.1. It no longer defaults to activating the php/apache module. Thanks for that. I do appreciate it. This has been covered in great detail on this list in the past 6 weeks which you would have found out if you reviewed the list archives before posting this question. I may have missed a week or two, but the only responses I've seen personally have been see /usr/ports/UPDATING, which I did. I'm not thrilled with the stock RTFM post, but I guess that's par for the course. After downloading the 6.1 version php5 port config files you have to do make config and select the apache module. The make install will automatically make the correct changes to your httpd-config file for serving up php pages correctly. php5-extensions is not normally needed. I did that. That's pointed out in /usr/ports/UPDATING. Unfortunately, it didn't automatically fix the issue for me. Your other httpd-config problems are due to you using apache22 instead of apache13 which is the rock hard production version of Apache web server. Apache22 is generally considered as the developmental version. I was running 1.3 before my BSD upgrade to 6.1-STABLE. There were security issues with 1.3 that were not resolved at the time of my upgrade. And I assumed with the package changes to PHP5 in 6.1 that going with an updated version of apache as well would be the best method. If you're saying I should revert back to 1.3, should I also revert to an earlier version of PHP5, or is the latest and greatest still best compatible with apache13? Thank you, ~John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of John DeStefano Sent: Tuesday, June 06, 2006 3:46 PM To: freebsd-questions@freebsd.org Subject: Virtual hosts and PHP downloads: php5 and apache22 on FreeBSD6.1-STABLE I upgraded my system from 5.4-RELEASE to 6.1-STABLE last week, and my web server immediately stopped serving PHP pages, where I had no problem doing so before. Instead of processing the PHP code on the server and displaying the result in a browser, browsing to any page containing PHP code resulted in a prompt to download the PHP page as a file. /usr/ports/UPGRADING mentions that PHP has been streamlined and must be recompiled to work with Apache and other packages. After deinstalling, configuring (where applicable), and reinstalling PHP5, php5-extensions, and apache2 to the latest versions, not only were PHP files not being served, but my web server was toast: Forbidden You don't have permission to access / on this server. I edited the new apache config file (now located in /usr/local/etc/apache22/httpd.conf) with my system information, including a DocumentRoot path. But when I started apache, I got some very peculiar errors: Warning: DocumentRoot [/www/docs/dummy-host.example.com] does not exist Warning: DocumentRoot [/www/docs/dummy-host2.example.com] does not exist Not only did I confirm beforehand that I had set the DocumentRoot path, and that apache was using the correct config file... but these dummy paths didn't exist in the config file! I learned eventually that a new apache directive splits out virtual host directives to a new include file (/usr/local/etc/apache22/extra/httpd-vhosts.conf). Then I learned after getting a server warning (NameVirtualHost *:80 has no VirtualHosts) that the syntax has been slightly modified, so that the IP/port value of each VirtualHost specification must match that of the NameVirtualHost directive (i.e., NameVirtualHost *:80 and VirtualHost *:80). Still having trouble though: my main site loads properly, but the other virtual hosts aren't. Browsing to any virtual host address other than the default results in either the wrong content or an error. Here's what my httpd-vhosts.conf looks like: NameVirtualHost *:80 VirtualHost *:80 ServerName www.SiteA.com ServerAlias SiteA.com *.SiteA.com DocumentRoot /usr/www ErrorLog /var/log/httpd-SiteA-error.log CustomLog /var/log/httpd-SiteA-access.log combined /VirtualHost VirtualHost *:80 ServerName www.SiteB.com ServerAlias SiteB.com *.SiteB.com DocumentRoot /usr/www2 ErrorLog /var/log/httpd-SiteB-error.log CustomLog /var/log/httpd-SiteB-access.log combined /VirtualHost So, what's happening is that SiteA works as expected, but browsing to SiteB brings you to SiteA, or doesn't load at all (403 error). In addition, I'm back to my original problem, where PHP files are not loading, and browsing to a PHP page prompts the user to download the page as a file. Any help on either the virtual hosts or the PHP download issue would be greatly appreciated. Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virtual hosts and PHP downloads: php5 and apache22 on FreeBSD 6.1-STABLE
On 6/6/06, Kevin Kinsey [EMAIL PROTECTED] wrote: John DeStefano wrote: I upgraded my system from 5.4-RELEASE to 6.1-STABLE last week, and my web server immediately stopped serving PHP pages, where I had no problem doing so before. Instead of processing the PHP code on the server and displaying the result in a browser, browsing to any page containing PHP code resulted in a prompt to download the PHP page as a file. As you are probably already painfully aware, this is *usually* due to the absence of the necessary lines in the httpd.conf file; specifically, AddModule and LoadModule (pointing to the PHP shared object) and AddType (referring to the MIME type for PHP files). Hi Kevin. Yes: painfully aware at this point. /usr/ports/UPGRADING mentions that PHP has been streamlined and must be recompiled to work with Apache and other packages. After deinstalling, configuring (where applicable), and reinstalling PHP5, php5-extensions, and apache2 to the latest versions, not only were PHP files not being served, but my web server was toast: Forbidden You don't have permission to access / on this server. Not toast, exactly. Another configuration error, most likely. httpd.conf tells the server which file(s) is/are acceptable as INDEX files. If all your index files were index.php, for example, and the httpd.conf file (which is new, apparently?) says that only index.html files are allowed as INDEX files, you'll get this error every time. Yup... and with apache22, one of the benefits is that the PHP file handler lines are automatically filled in when compiling PHP (although I assume that would be the case with any version of apache as well). I edited the new apache config file (now located in /usr/local/etc/apache22/httpd.conf) with my system information, including a DocumentRoot path. But when I started apache, I got some very peculiar errors: Warning: DocumentRoot [/www/docs/dummy-host.example.com] does not exist Warning: DocumentRoot [/www/docs/dummy-host2.example.com] does not exist Not only did I confirm beforehand that I had set the DocumentRoot path, and that apache was using the correct config file... but these dummy paths didn't exist in the config file! I learned eventually that a new apache directive splits out virtual host directives to a new include file (/usr/local/etc/apache22/extra/httpd-vhosts.conf). Then I learned after getting a server warning (NameVirtualHost *:80 has no VirtualHosts) that the syntax has been slightly modified, so that the IP/port value of each VirtualHost specification must match that of the NameVirtualHost directive (i.e., NameVirtualHost *:80 and VirtualHost *:80). Still having trouble though: my main site loads properly, but the other virtual hosts aren't. Browsing to any virtual host address other than the default results in either the wrong content or an error. Here's what my httpd-vhosts.conf looks like: NameVirtualHost *:80 VirtualHost *:80 ServerName www.SiteA.com ServerAlias SiteA.com *.SiteA.com DocumentRoot /usr/www ErrorLog /var/log/httpd-SiteA-error.log CustomLog /var/log/httpd-SiteA-access.log combined /VirtualHost VirtualHost *:80 ServerName www.SiteB.com ServerAlias SiteB.com *.SiteB.com DocumentRoot /usr/www2 ErrorLog /var/log/httpd-SiteB-error.log CustomLog /var/log/httpd-SiteB-access.log combined /VirtualHost IANAE here, but that's not like my httpd.conf, in which the ports aren't specified. I also don't use ServerAlias directives. Like I said, no expert. Right: that's not from the httpd.conf file itself any longer; it's the httpd-vhosts.conf file, which is called on as an include in the 2.2 version of httpd.conf. In earlier versions, the VirtualHost directives have been moved from the main config file to that include file. And the IP/port specification for each VirtualHost entry must now match that of the NameVirtualHost entry (as shown above). So, what's happening is that SiteA works as expected, but browsing to SiteB brings you to SiteA, or doesn't load at all (403 error). In addition, I'm back to my original problem, where PHP files are not loading, and browsing to a PHP page prompts the user to download the page as a file. Any help on either the virtual hosts or the PHP download issue would be greatly appreciated. You said you did this already, but I'd again make **sure** I was editing the correct httpd.conf. Get the right syntax, and it'll be there. Watch out for IF syntax, also. I triple-checked the config to make sure apache is loading the correct config file. In fact, I've finally gotten the config to the point where none of the apache self-tests report any syntax or configuration errors at all. Unfortunately, that doesn't mean it works as I'd expected; just means there are no syntax errors. Can you post the relevant lines (AddModule, LoadModule, AddType) and whether or not they are contained in an IF ?? Please find my httpd.conf and httpd-vhosts.conf
Re: FreeBSD 6 - Do i need both CD1 and CD2 ?
From: FlashWebHost.com [EMAIL PROTECTED]: There is 5.4 to 6 upgrade also at http://www.daemonology.net/freebsd-upgrade-5.4-to-6.0/ This would be a great resource, if it were sure to work. I am not anxious to go from 5.4-STABLE to 6.0 (not until it goes stable), but I tried to run through the preparatory steps as outlined on that page. I ran into a few concerns with steps 2 and 4: freebsd-update -v IDS | tail +8 | grep . /root/base-modified This resulted in an empty file for me... but perhaps that is as expected. When the suggested step is to generate a list of files from the base system which have been locally modified, are we talking about a list of only binaries, or of _all_ locally modified files? While I've edited many configuration parameters, I certainly haven't modified any binary files. cut -f 1 -d '$' /usr/local/freebsd-update/work/md5all | uniq | while read X; do if [ -f $X ]; then echo $X; fi; done | sort /root/base-old First, after installing freebsd-update according to the first step, I don't have a work directory (nor anything at all in that directory, for that matter). Should something exist in this path after installing the freebsd-update port? And second, how would one correctly execute this command string in bash? I got errors from both cut and while: cut: [-cf] list: illegal list value while: Expression Syntax. Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 6 - Do i need both CD1 and CD2 ?
On 1/3/06, Jerry McAllister [EMAIL PROTECTED] wrote: Just a question here -- What do you mean until it goes stable? FreeBSD 6.0 is already at RELEASE which is beyond stable. So you have the terminology mangled or just the typing? You're right: per the FreeBSD world, I've botched the two terms. But if we're talking pure semantics, wouldn't you be more likely to entrust something labelled STABLE over a similar thing labelled RELEASE? ;) And of course, I'm now much more interested that procedure than I was a few minutes ago! Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/29/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/29/05, John DeStefano [EMAIL PROTECTED] wrote: Needless to say, this process wasn't much fun. What can I do to keep this from happening again? What can/can't I safely include in cron to automate database and index maintenance? cvsup or portsnap, then portsdb -uUF. Work under any circumstances, leave you with updated ports tree and indexes. If I were to continue to use portsnap, which arguments can I safely add to /etc/crontab? I know portsnap cron should be safe, but if I want to completely automate the update process (not for installing packages, but for keeping the ports tree, database, and indexes current), should I also add an entry for portsnap update and portsdb -uUF? You can also try portupgrade -aF (prefetches needed files to speed up manual upgrade at a later time) and portsclean -DP (removes sources and packages which become outdated due to ports tree updates). Would you also recommend cron entries for these two commands? I used to use a cron job to run cvsup, and I'd like to implement a better, more complete automated solution, so I don't tangle up my system's packages and dependencies again. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/30/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/31/05, John DeStefano [EMAIL PROTECTED] wrote: On 10/29/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/29/05, John DeStefano [EMAIL PROTECTED] wrote: Needless to say, this process wasn't much fun. What can I do to keep this from happening again? What can/can't I safely include in cron to automate database and index maintenance? cvsup or portsnap, then portsdb -uUF. Work under any circumstances, leave you with updated ports tree and indexes. If I were to continue to use portsnap, which arguments can I safely add to /etc/crontab? I know portsnap cron should be safe, but if I want to completely automate the update process (not for installing packages, but for keeping the ports tree, database, and indexes current), should I also add an entry for portsnap update and portsdb -uUF? You can also try portupgrade -aF (prefetches needed files to speed up manual upgrade at a later time) and portsclean -DP (removes sources and packages which become outdated due to ports tree updates). Would you also recommend cron entries for these two commands? I used to use a cron job to run cvsup, and I'd like to implement a better, more complete automated solution, so I don't tangle up my system's packages and dependencies again. I think the best way is to create a shell script, like this: #!/bin/sh /usr/local/sbin/portsnap cron \ /usr/local/sbin/portsnap update \ /usr/local/sbin/portsdb -uUF \ /usr/local/sbin/portupgrade -aF \ /usr/local/sbin/portsclean -DP Perfect... I had everything but the conditionals... thanks! and run it at an hour, when you're most unlikely to perform any kind of port upgrading. As portsnap manpage warns, if both portsnap (in the process of update) and portupgrade ever happen to access the same directory at once, it might ruin your ports tree. You'll have to do portsnap extract after that. You can leave out portsclean and run it manually, because it can create some load (which is not desirable on a production server). I run this script daily at 8-9 in the morning (I usually start messing with servers after 11). It never failed, and it always keeps everything up-to-date. My server is not production, as it's just my personal web/database server; I'm the only one who would be running any updates. So I should be okay with this procedure, and I'll manually update any ports of note. Just one problem I saw thus far, with portsclean I think... Cleaning out /usr/ports/packages... cd: can't cd to /usr/ports/packages/All find: /usr/ports/packages: No such file or directory Would this be related to one of the advanced topics you mentioned earlier about pkgtools.conf? ;) Do I need to define some variables? I would guess the directory error to have been caused by a combination of the variables PORTSDIR (which looks okay at /usr/ports) and PACKAGES (which seems to need a /packages dir beneath PORTSDIR ?). Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
reusing existing mysql permissions/dbs/tables after update
mysql was among the many ports I just upgraded, and (of course) I can now no longer connect using mysql or mysqladmin. I've tried just about every method I've found including starting the daemon with the --skip-grant-tables option to reset the password (which has worked in the past), and most every other suggestion listed in section 5.7.8 of the MySQL reference manual. It seems like running the mysql_install_db script might do the trick... but if I understand correctly, running this script will re-initialize the grant tables... correct? Is there another way of regaining access to mysql, without losing the current relationships between dBs/tables and their users? Or, how can I get to the current grant information (in human-readable format), so that I can restore it later? Thank you, ~John # uname -a FreeBSD zurg.thedestefanos.com 5.4-STABLE FreeBSD 5.4-STABLE #0: Mon Oct 24 22:27:33 EDT 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/MYKERNEL i386 # pkg_info | grep mysql mysql-client-5.0.15 Multithreaded SQL database (client) mysql-server-5.0.15 Multithreaded SQL database (server) php5-mysql-5.0.5_1 The mysql shared extension for php ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/27/05, Michael C. Shultz [EMAIL PROTECTED] wrote: On Thursday 27 October 2005 18:49, Eric F Crist wrote: On Oct 27, 2005, at 8:32 PM, John DeStefano wrote: On 10/27/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/27/05, John DeStefano [EMAIL PROTECTED] wrote: After clearing out the ports, updating ports (with portsnap) and source, and rebuilding the system and kernel... it seemed the ultimate problem was actually a dependency of the package to apache1.3. After I ran 'pkgdb -F' and fixed this dependency to point to apache2.1, but I still had trouble installing ports. At this point, what usually works for me is to: #cd /usr rm -rf ./ports #mkdir ./ports cvsup /root/ports-supfile The above will delete your ENTIRE ports tree, provided it's kept in / usr/ports and as long as you use cvsup (and your ports supfile is / root/ports-supfile as mine is). When a whole bunch of ports stop working, I find this is the easiest thing to do. The other thing I do is run a cron job every week that updates, via cvsup, the ports tree. About once a year I perform the above, mostly to clean out the crap. Re-downloading your entire ports tree will be quicker if you don't use the ports-all tag and actually define which port segments you are interested in. For example, there's no real reason to download all the x11/kde/gnome crap if you're doing this on a headless server that isn't going to serve X. HTH Replacing /usr/ports won't fix his problems, they reside in /var/db/pkg. I may be a bit biased but I reaaly think John D. should try running portmanager -u (ports/sysutils/portmanager). Stale dependencies is a non issue for portmanager. -Mike Biased indeed. ;) I tried it, and it did work for some ports, but not all. Here's the report output of a second run-through: status report finished percentDone-=16 = 100 - ( 100 * ( QTY_outOfDatePortsDb-=10 / TOTAL_outOfDatePortsDb-=12 ) ) checkForOldDepencies 0.3.0_0 skip: apsfilter-7.2.6 has a dependency acroread-5.08 that needs to be updated first upgrade 0.3.0_0 info: ignoring scrollkeeper-0.3.12_1,1, reason: failed during (2) make upgrade 0.3.0_0 info: ignoring cups-pstoraster-7.07, reason: failed during (2) make checkForOldDepencies 0.3.0_0 skip: eog2-2.2.1 has a dependency scrollkeeper-0.3.12_1,1 that needs to be updated first checkForOldDepencies 0.3.0_0 skip: apsfilter-7.2.6 has a dependency acroread-5.08 that needs to be updated first upgrade 0.3.0_0 info: ignoring emacs-21.3, reason: failed during (2) make upgrade 0.3.0_0 info: ignoring gconf-editor-2.4.0,1, reason: performed (6) emergancy restore upgrade 0.3.0_0 info: ignoring apache-2.0.48, reason: failed during (2) make checkForOldDepencies 0.3.0_0 skip: gnomeuserdocs2-2.0.6_1 has a dependency scrollkeeper-0.3.12_1,1 that needs to be updated first upgrade 0.3.0_0 info: ignoring acroread-5.08, reason: marked FORBIDDEN update of ports collection complete with either some errors, ignored ports or both ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/28/05, Michael C. Shultz [EMAIL PROTECTED] wrote: On Friday 28 October 2005 05:53, John DeStefano wrote: On 10/27/05, Michael C. Shultz [EMAIL PROTECTED] wrote: On Thursday 27 October 2005 18:49, Eric F Crist wrote: On Oct 27, 2005, at 8:32 PM, John DeStefano wrote: On 10/27/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/27/05, John DeStefano [EMAIL PROTECTED] wrote: After clearing out the ports, updating ports (with portsnap) and source, and rebuilding the system and kernel... it seemed the ultimate problem was actually a dependency of the package to apache1.3. After I ran 'pkgdb -F' and fixed this dependency to point to apache2.1, but I still had trouble installing ports. At this point, what usually works for me is to: #cd /usr rm -rf ./ports #mkdir ./ports cvsup /root/ports-supfile The above will delete your ENTIRE ports tree, provided it's kept in / usr/ports and as long as you use cvsup (and your ports supfile is / root/ports-supfile as mine is). When a whole bunch of ports stop working, I find this is the easiest thing to do. The other thing I do is run a cron job every week that updates, via cvsup, the ports tree. About once a year I perform the above, mostly to clean out the crap. Re-downloading your entire ports tree will be quicker if you don't use the ports-all tag and actually define which port segments you are interested in. For example, there's no real reason to download all the x11/kde/gnome crap if you're doing this on a headless server that isn't going to serve X. HTH Replacing /usr/ports won't fix his problems, they reside in /var/db/pkg. I may be a bit biased but I reaaly think John D. should try running portmanager -u (ports/sysutils/portmanager). Stale dependencies is a non issue for portmanager. -Mike Biased indeed. ;) I tried it, and it did work for some ports, but not all. Here's the report output of a second run-through: status report finished percentDone-=16 = 100 - ( 100 * ( QTY_outOfDatePortsDb-=10 / TOTAL_outOfDatePortsDb-=12 ) ) checkForOldDepencies 0.3.0_0 skip: apsfilter-7.2.6 has a dependency acroread-5.08 that needs to be updated first upgrade 0.3.0_0 info: ignoring scrollkeeper-0.3.12_1,1, reason: failed during (2) make upgrade 0.3.0_0 info: ignoring cups-pstoraster-7.07, reason: failed during (2) make checkForOldDepencies 0.3.0_0 skip: eog2-2.2.1 has a dependency scrollkeeper-0.3.12_1,1 that needs to be updated first checkForOldDepencies 0.3.0_0 skip: apsfilter-7.2.6 has a dependency acroread-5.08 that needs to be updated first upgrade 0.3.0_0 info: ignoring emacs-21.3, reason: failed during (2) make upgrade 0.3.0_0 info: ignoring gconf-editor-2.4.0,1, reason: performed (6) emergancy restore upgrade 0.3.0_0 info: ignoring apache-2.0.48, reason: failed during (2) make checkForOldDepencies 0.3.0_0 skip: gnomeuserdocs2-2.0.6_1 has a dependency scrollkeeper-0.3.12_1,1 that needs to be updated first upgrade 0.3.0_0 info: ignoring acroread-5.08, reason: marked FORBIDDEN update of ports collection complete with either some errors, ignored ports or both A few suggestions: If you want to update acroread-5.08 you should do that one manually because it is FORBIDDEN, there is probably an overide switch, I don't know what it is. You can also just comment out the FORBIDDEN line in acroread-5.08's Makefile. Note ports are marked FORBIDDEN because they have security problems I'm not sure about cups-pstoraster-7.07 builds but scrollkeeper-0.3.14_1,1 builds on my system, try pkg_delete -f scrollkeeper-0.3.12_1,1 then rerun portmanager -u and hopefully you will be down to just cups-pstoraster-7.07 failing. You'll have to figure out its problem on your own or contact the maintainer for help. -Mike After tons of manual deinstalling, upgrading, tinkering, etc. (I wanted to script everything I did, but at this point the audit trail would have been about a GB in size), I am down to a single outdated port: status report finished percentDone-=0 = 100 - ( 100 * ( QTY_outOfDatePortsDb-=1 / TOTAL_outOfDatePortsDb-=1 ) ) upgrade 0.3.0_0 info: ignoring apache-2.0.48, reason: failed during (2) make update of ports collection complete with either some errors, ignored ports or both Unfortunately, this is the most crucial of all, and ironically the one about which I've been asking since the beginning. As I mentioned earlier, upgrading this port bails consistently with a C callout to PEM_F_DEF_CALLBACK. I'd really like to get this port updated, not only
Re: portupgrade stale dependencies
On 10/28/05, Eric F Crist [EMAIL PROTECTED] wrote: status report finished == == percentDone-=0 = 100 - ( 100 * ( QTY_outOfDatePortsDb-=1 / TOTAL_outOfDatePortsDb-=1 ) ) upgrade 0.3.0_0 info: ignoring apache-2.0.48, reason: failed during (2) make -- -- update of ports collection complete with either some errors, ignored ports or both Unfortunately, this is the most crucial of all, and ironically the one about which I've been asking since the beginning. As I mentioned earlier, upgrading this port bails consistently with a C callout to PEM_F_DEF_CALLBACK. I'd really like to get this port updated, not only to finally complete this insane goose chase of updating, but because I know that apache-2.0.48 is chock full of vulerabilities. cd /usr/ports/www/apache20 make deinstall make clean make reinstall See what happens. Talk about strange: # cd /usr/ports/www/apache20/ # make deinstall === Deinstalling for www/apache20 === apache not installed, skipping # make -V PKGNAME apache-2.0.55 # pkg_info | grep apache apache-2.0.48 Version 2 of the extremely popular Apache http server # apachectl -v Server version: Apache/2.0.48 Server built: Nov 19 2003 22:44:21 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/28/05, Michael C. Shultz [EMAIL PROTECTED] wrote: On Friday 28 October 2005 17:31, John DeStefano wrote: On 10/28/05, Eric F Crist [EMAIL PROTECTED] wrote: status report finished == == percentDone-=0 = 100 - ( 100 * ( QTY_outOfDatePortsDb-=1 / TOTAL_outOfDatePortsDb-=1 ) ) upgrade 0.3.0_0 info: ignoring apache-2.0.48, reason: failed during (2) make -- -- update of ports collection complete with either some errors, ignored ports or both Unfortunately, this is the most crucial of all, and ironically the one about which I've been asking since the beginning. As I mentioned earlier, upgrading this port bails consistently with a C callout to PEM_F_DEF_CALLBACK. I'd really like to get this port updated, not only to finally complete this insane goose chase of updating, but because I know that apache-2.0.48 is chock full of vulerabilities. cd /usr/ports/www/apache20 make deinstall make clean make reinstall See what happens. Talk about strange: # cd /usr/ports/www/apache20/ # make deinstall === Deinstalling for www/apache20 === apache not installed, skipping # make -V PKGNAME apache-2.0.55 # pkg_info | grep apache apache-2.0.48 Version 2 of the extremely popular Apache http server # apachectl -v Server version: Apache/2.0.48 Server built: Nov 19 2003 22:44:21 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Try ls /var/db/pkg/a* any apache versions in there? -Mike Yep: it was 2.0.48 I ended up deinstalling that apache installation (which I was not keen on doing), and installing the apache20 port (which was the same version (2.0.55) as the apache2 port ?), and, thankfully, it's working fine. I'm also now able to run both 'pkgdb -F'and 'portsdb -Uu' without ANY errors (except for a few 'Duplicate INDEX entry' warnings). Needless to say, this process wasn't much fun. What can I do to keep this from happening again? What can/can't I safely include in cron to automate database and index maintenance? Thanks to all. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/27/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/27/05, John DeStefano [EMAIL PROTECTED] wrote: After clearing out the ports, updating ports (with portsnap) and source, and rebuilding the system and kernel... it seemed the ultimate problem was actually a dependency of the package to apache1.3. After I ran 'pkgdb -F' and fixed this dependency to point to apache2.1, but I still had trouble installing ports. 'portsdb -Uu' would not run, so I ran 'make fetchindex' and 'portupdate -a'. From what I've read, this _should_ create an index and update all out-of-date ports and their dependencies, but it never has worked for me. I just tried this combination again, and it (again) punts during portupdate. This time, 38 ports were skipped and 7 failed, the first failure being a strange compiler error in updating from apache-2.0.48. I've been fighting with ports for long enough now to have become a bit frustrated with them. If you have any thoughts or suggestions on how to troubleshoot them, please pass them on. Thanks, ~John Do not fix dependencies if you're not sure that they are really broken. Don't use apache21 unless 2.0 is absolutely inappropriate. The proper way to change dependencies from apache1 to apache2 is to add WITH_APACHE2=true to /etc/make.conf (or to /usr/local/etc/pkgtools.conf, but that's an advanced topic). I wasn't really looking to upgrade to apache21, just to update my version (2.0.48) to any more current port, since other ports keep barking about it being out-of-date. I added the WITH_APACHE2=true parameter, but when I try to upgrade my apache port, it seems to still be looking to the wrong version: ...Upgrading 'apache-2.0.48' to 'apache-2.1.4' (www/apache21) This process attempts to build and then consistently fails with the same error, which seems to my untrained eye like a C function error in httpd: ssl_engine_pphrase.c: In function `ssl_pphrase_Handle_CB': ssl_engine_pphrase.c:684: error: `PEM_F_DEF_CALLBACK' undeclared (first use in this function) ssl_engine_pphrase.c:684: error: (Each undeclared identifier is reported only once ssl_engine_pphrase.c:684: error: for each function it appears in.) *** Error code 1 Stop in /usr/ports/www/apache21/work/httpd-2.1.4-alpha/modules/ssl. *** Error code 1 Stop in /usr/ports/www/apache21/work/httpd-2.1.4-alpha/modules/ssl. *** Error code 1 Stop in /usr/ports/www/apache21/work/httpd-2.1.4-alpha/modules. *** Error code 1 Stop in /usr/ports/www/apache21/work/httpd-2.1.4-alpha. *** Error code 1 Stop in /usr/ports/www/apache21/work/httpd-2.1.4-alpha. *** Error code 1 Stop in /usr/ports/www/apache21. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade38050.3 make ** Fix the problem and try again. Apparently, this is an OpenSSL-related bug, and there's a patch availavble for it somewhere ? Is there a way to fix this without applying a patch? If you have portsdb utility, don't use make fetchindex, just add -F to portsdb: portsdb -uUF will work fine. portsdb -uU wasn't working for me for a while, but I finally got it going last night. Kris maintained that I should use make fetchindex instead of portsdb -uU before running portupgrade -a, at least until my package installation dependencies were in better condition, at which time I could resume using portsdb -uU. Problem is, portupgrade -a still isn't working to update all installed packages (most, but not all), regardless of whether it is preceded by portsdb -uU or portupgrade -a. You cann add -k to portupgrade, so that it doesn't skip ports (but it won't fix the failed ones). John, you'll have to spend a few hours reading ports documentation before you find them really great (which they really are). I have no problem with reading as much documentation as I can find. Aside from the handbook (Chapter 4, which is a nice overview) and man pages (which are great for quick and complete reference), what else would you recommend for gaining a more detailed understanding? And I do already agree that the port system is great, even with all the trouble I'm having. Thanks. ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: updating in single-user mode
On 10/24/05, Beecher Rintoul [EMAIL PROTECTED] wrote: On Monday 24 October 2005 02:24 pm, John DeStefano wrote: When updating world, section 20.4.5 of the handbook calls for dropping to single user mode. The reasons given for this make sense. But this is a problem for me: my BSD server does not have a local K/V/M setup connected directly to it; it sits on my network and I connect to it via PuTTy for administration. Is there a way to achieve single-user mode while still being able to connect remotely (via LAN)? (I know that's something of an oximoron, but I needed to ask) And if not, am I losing any serious features/functionality of the update process by _not_ dropping into single user? Thanks, ~John I don't reccommend doing installworld or kernel in multiuser, but I have never had any problems doing it on a lightly loaded machine. With that said what could bite you is your new kernel not booting or something broken in userland. You will then need console access (serial or local) to fix it. I would set up your machine with serial console access and use a laptop or another machine when you reboot. Beech -- Thank you. Because I'm impatient and obtuse, and because I was already in the midst of the procedure when I received your replies, I decided to proceed with the build world process from my LAN connection. Believe it or not, it went (or seemed to go) without a hitch, including the updated kernel installation. In your opinion, where/how would I check the new system to verify that there were no breaks during the build and install processes, and that the system is indeed fully updated? Thanks, ~John %uname -a FreeBSD zurg.thedestefanos.com 5.4-STABLE FreeBSD 5.4-STABLE #0: Mon Oct 24 22:27:33 EDT 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/MYKERNEL i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Error message while running 'portsdb -Uu'
On Tuesday, October 25, 2005 2:59:24 PM, Kris Kennaway kris at obsecurity.org Wrote these words of wisdom: On Tue, Oct 25, 2005 at 02:35:54PM -0400, Gerard Seibert wrote: On Tuesday, October 25, 2005 2:03:43 PM, Kris Kennaway kris at obsecurity.org Subject: Re: Error message while running 'portsdb -Uu' Wrote these words of wisdom: On Mon, Oct 24, 2005 at 08:27:21PM -0400, Gerard Seibert wrote: I just updated my ports using cvsup and then proceeded to run 'portsdb -Uu' to generate the index file. Upon completion, it produced this error message: Updating the ports index ... Generating INDEX.tmp - please wait..jot: infinite sequences cannot be bounded Makefile, line 19: warning: /usr/bin/jot -s -w 6.4.%03d 0 1 0 returned non-zero status jot: infinite sequences cannot be bounded /usr/ports/editors/vim-lite/../vim/Makefile, line 19: warning: /usr/bin/jot -s -w 6.4.%03d 0 1 0 returned non-zero status jot: infinite sequences cannot be bounded /usr/ports/editors/vim6+ruby/../vim/Makefile, line 19: warning: /usr/bin/jot -s -w 6.4.%03d 0 1 0 returned non-zero status Warning: Duplicate INDEX entry: freeciv-gtk2-2.0.6 Warning: Duplicate INDEX entry: mod_frontpage2-5.0.2.2635 Warning: Duplicate INDEX entry: mod_jk2-apache2-2.0.4 Warning: Duplicate INDEX entry: mod_rpaf-ap2-0.5 Done. I have never seen that one before. What does it mean, and what should I do to correct it, it anything? cvsup again, and in general, read discussion on ports@ before sending duplicate reports :) Kris I updated today with portsnap, and I'm seeing a different problem-- at least, it appears to me to be of a much different nature: # portsdb -uU Updating the ports index ... Generating INDEX.tmp - please wait.. Makefile, line 30: warning: String comparison operator should be either == or != Makefile, line 30: Malformed conditional (defined(PHP_VERS) ${PHP_VERS} 436) Makefile, line 30: Need an operator Makefile, line 32: if-less endif Makefile, line 32: Need an operator make: fatal errors encountered -- cannot continue === net/pear-Net_DNSBL failed *** Error code 1 1 error I haven't seen anything on -questions or -ports recently reporting these errors. Is this related? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
aclocal: not found
Per Andrew P.'s suggestions, I've changed my ports updating scheme from cvsup to portsnap in order to address some problems I was having with interdependencies. Unfortunately, I'm still running into trouble: no matter how I try to install mbstring (pkg_add, making/installing in the ports tree), it still fails. Here are the results after I resorted to a portinstall -rRk php5-mbstring: ... === PHPizing for php5-mbstring-5.0.5_1 aclocal: not found *** Error code 1 Stop in /usr/ports/converters/php5-mbstring. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portinstall97852.15 make ** Fix the problem and try again. [Updating the pkgdb format:bdb1_btree in /var/db/pkg ... - 409 packages found (-0 +1) . done] ** Listing the failed packages (*:skipped / !:failed) ! lang/php5 (php5-5.0.0.a3_2) (install error) ! converters/php5-mbstring (unknown build error) --- Packages processed: 0 done, 14 ignored, 0 skipped and 2 failed automake and autoconf are both installed. Not sure what else to do about aclocal, or if that's truly the problem. Any ideas on the problem or a possible solution? I didn't reap much info from Google or the list archives. Thank you, ~John %uname -a FreeBSD zurg.thedestefanos.com 5.3-RELEASE-p5 FreeBSD 5.3-RELEASE-p5 #0: Sun Mar 20 13:34:04 EST 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
updating in single-user mode
When updating world, section 20.4.5 of the handbook calls for dropping to single user mode. The reasons given for this make sense. But this is a problem for me: my BSD server does not have a local K/V/M setup connected directly to it; it sits on my network and I connect to it via PuTTy for administration. Is there a way to achieve single-user mode while still being able to connect remotely (via LAN)? (I know that's something of an oximoron, but I needed to ask) And if not, am I losing any serious features/functionality of the update process by _not_ dropping into single user? Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portupgrade stale dependencies
On 10/15/05, Andrew P. [EMAIL PROTECTED] wrote: On 10/16/05, John DeStefano [EMAIL PROTECTED] wrote: I'm trying to use portupgrade to update my installed ports. I ran into trouble with dependencies with ImageMagick and xorg-libraries, and I then followed the suggestion in UPDATING to delete XFree86 the imake-4 packages, and install the full xorg port. After all that, I got more dependency errors: 'Stale dependency: aalib-1.4.r5_1 -- imake-4.3.0_1 -- manually run 'pkgdb -F' to fix, or specify -O to force.' 'pkgdb -O' returned an invalid option error, and 'pkgdb -o aalib-1.4.r5_1' returned 'graphics/aalib'. I then ran 'pkgdb -F' to try and fix this (and many, many other) stale dependencies, but the error I got when trying to run portupgrade afterward simply changed the stale dependency error to ' aalib-1.4.r5_1 -- XFree86-libraries-4.3.0_6'. How does one get around these dependency errors without destroying a system? Any good resources on dealing with this? I keep reading that I should just run 'pkgdb -F' but that only gets one so far. Thanks, ~John ___ If you don't have a whole free week, consider deinstalling every port on your system (with pkg_deinstall preferably), installing cvsup, updating your ports tree, installing portupgrade, and portinstalling all the ports you really need. That should only take a couple of days :-) You're not kidding... between fixing these dependencies, trying to upgrade the ports, fixing more dependencies, upgrading ports, etc. ad nausem, I'm literally on my 9th straight day (obviously I don't mean 24/7... I have a day job and something of a life) of trying to get through this process. And all this just because I wanted to install mbstring (so phpMyadmin would stop barking about it), and I needed to perform some simple updates first... Any pointers, alternatives, etc., would be appreciated. BTW, I can no longer automatically update my ports list (I mean with 'portsdb -Uu' instead of fetching a premade index) due to a chinese/acroread-chsfont failed error. I see via Google that this port was removed due to a security vulnerability, but I don't know how to remove it from my system, and UPDATING doesn't seem to mention it. Help? Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
portupgrade stale dependencies
I'm trying to use portupgrade to update my installed ports. I ran into trouble with dependencies with ImageMagick and xorg-libraries, and I then followed the suggestion in UPDATING to delete XFree86 the imake-4 packages, and install the full xorg port. After all that, I got more dependency errors: 'Stale dependency: aalib-1.4.r5_1 -- imake-4.3.0_1 -- manually run 'pkgdb -F' to fix, or specify -O to force.' 'pkgdb -O' returned an invalid option error, and 'pkgdb -o aalib-1.4.r5_1' returned 'graphics/aalib'. I then ran 'pkgdb -F' to try and fix this (and many, many other) stale dependencies, but the error I got when trying to run portupgrade afterward simply changed the stale dependency error to ' aalib-1.4.r5_1 -- XFree86-libraries-4.3.0_6'. How does one get around these dependency errors without destroying a system? Any good resources on dealing with this? I keep reading that I should just run 'pkgdb -F' but that only gets one so far. Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
securing SSH, FBSD systems
I have broached this subject before, also searched the archives web for a solution, but no real, clear answer for those who are not already gurus in the subject. I've had light-to-moderate records of attempted SSH break-ins to my system in the past. Over the past week, I have had daily security records ranging in size from 10kb-120kb in size (the average for a clean record with no break-in activity is 2kb), with different IPs and ranges bein used, which leads me to believe multiple kiddies (or perhaps more sophisticated attackers) are somehow sniffing out my system and honing in for repeasted attacks. Would someone mind briefly talking about securing FBSD systems from such attacks, at least in a manner that's a bit more extensive and detailed than just saying use Snort? I'm not a newbie to FBSD, but I'm not a *NIX guru either. I'd really appreciate your help. Thanks, John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd-questions Digest, Vol 92, Issue 30
From: Tomas Quintero [EMAIL PROTECTED] To: [EMAIL PROTECTED] [EMAIL PROTECTED] Date: Fri, 25 Mar 2005 17:41:08 -0500 Subject: Re: A Riddle I'm glad this has to deal with FreeBSD related question. Thank you for expanding the minds of those subscribed to this mailing list with your intricate question outlining in the most detail the problem you're having with your specific task. I've noticed quite a bit of this crap on -questions lately, and the worst part about it is that a lot of legitimate FreeBSD questions are going unanwered/unnoticed in favor of inane discussions that have no place on this list (religion vs. product logos and the like), and that could be avoided if the valued and long-standing citizens of this list community would steer clear of the bait being swung in front of them by a few trolls. It's almost as if we've been watching the demise of a very helpful, useful community, and it's quite disappointing. To address the specific passage above: exactly how is your sarcastic response any more appropriate to the list than that of the OP? You're either a dumbass, or a 12 year old. Touche. If there's anything worse than feeding the trolls, it's remarks like this. Regardless of what was said before, if this person is a 12 year old, how does using the word dumbass in a message make you any better than him or her? Many Thanks, Tomas No, thank you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mount_smbfs variable error
On Wed, 23 Mar 2005 23:39:58 -0500, jason henson [EMAIL PROTECTED] wrote: John DeStefano wrote: I get the following error when I try to mount_smbfs a LAN file share as root with 5.3-RELEASE and a GENERIC kernel, both cvsup-ed and compiled this past weekend: /usr/libexec/ld-elf.so.1: mount_smbfs: Undefined symbol vfsisloadable I can't find a whole lot of information about this error. But apparently, vfsisloadable is an outdated parameter that should no longer be referenced in the source. The only other reference I found to this error was a kernel that was missing the proper support, but it seemed that a GENERIC kernel would take care of that. Any ideas on how to verify that my system has got whatever mount_smbfs may need to operate properly, or how to remedy the error? Thank you, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] http://unix.derkeiler.com/Mailing-Lists/FreeBSD/current/2004-04/0699.html Did you do a kldstat to see if smbfs.ko is there? It is no longer in GENERIC. Hi Jason, I too found that link, which is where I got the idea that vfsisloadable was an outdated parameter, but I saw that loading the smb_fs module generated an error for that user, so I didn't follow up on that information. I'm glad you pointed this out though, as loading the kernel module works for me. But without your response, how would I ever have known this? It's certainly not mentioned in UPDATING, and the error output was not helpful. Where would I have found this information? Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mount_smbfs variable error
On Thu, 24 Mar 2005 09:47:44 -0500, John DeStefano [EMAIL PROTECTED] wrote: On Wed, 23 Mar 2005 23:39:58 -0500, jason henson [EMAIL PROTECTED] wrote: John DeStefano wrote: I get the following error when I try to mount_smbfs a LAN file share as root with 5.3-RELEASE and a GENERIC kernel, both cvsup-ed and compiled this past weekend: /usr/libexec/ld-elf.so.1: mount_smbfs: Undefined symbol vfsisloadable I can't find a whole lot of information about this error. But apparently, vfsisloadable is an outdated parameter that should no longer be referenced in the source. The only other reference I found to this error was a kernel that was missing the proper support, but it seemed that a GENERIC kernel would take care of that. Any ideas on how to verify that my system has got whatever mount_smbfs may need to operate properly, or how to remedy the error? Thank you, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] http://unix.derkeiler.com/Mailing-Lists/FreeBSD/current/2004-04/0699.html Did you do a kldstat to see if smbfs.ko is there? It is no longer in GENERIC. Hi Jason, I too found that link, which is where I got the idea that vfsisloadable was an outdated parameter, but I saw that loading the smb_fs module generated an error for that user, so I didn't follow up on that information. I'm glad you pointed this out though, as loading the kernel module works for me. But without your response, how would I ever have known this? It's certainly not mentioned in UPDATING, and the error output was not helpful. Where would I have found this information? Thanks, ~John Could someone please direct me to where I can read about when and why the smbfs module was removed from the GENERIC kernel? I can't find it, and it's not in UPDATING or the release notes. Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mount_smbfs variable error
I get the following error when I try to mount_smbfs a LAN file share as root with 5.3-RELEASE and a GENERIC kernel, both cvsup-ed and compiled this past weekend: /usr/libexec/ld-elf.so.1: mount_smbfs: Undefined symbol vfsisloadable I can't find a whole lot of information about this error. But apparently, vfsisloadable is an outdated parameter that should no longer be referenced in the source. The only other reference I found to this error was a kernel that was missing the proper support, but it seemed that a GENERIC kernel would take care of that. Any ideas on how to verify that my system has got whatever mount_smbfs may need to operate properly, or how to remedy the error? Thank you, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sshd configuration after mergemaster
I've just completed a successful transition from 5.3-BETA7 to 5.3-RELEASE via the usual makeworld procedures. Thanks to spending some time with mergemaster -p, all of my configuration seems to have carried over and is working perfectly, with the exception of ssh. The only difference between the original and temporary versions of sshd_config was a single line I had entered in order to prevent root from logging in via ssh as root. Everything else, with the obvious exception of the config file signature, was the same. Yet I'm now getting errors when I try to ssh from any location (remote, LAN, even testing on the same terminal). If I don't do -v, the terminal window just disappears or shows no feedback. -v shows no more authentication methods to try. I then found a passage in a SSHD book that says to copy sshd.pam from the OpenSSH contrib folder in src to /etc/pam.d/ssh, and change the owner to root and permissions to 664. This certainly did something, as -v now shows quite a different message: invalid facility 'sshd' (ignored) fatal: PAM: initialisation failed I have not used PAM before. Is it now a requirement in order to use ssh? or am I going overboard to solve a simple problem? Thanks, John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sshd configuration after mergemaster
On Mon, 21 Mar 2005 21:08:50 +0100, Christian Hiris [EMAIL PROTECTED] wrote: On Monday 21 March 2005 18:55:18, John DeStefano wrote: I've just completed a successful transition from 5.3-BETA7 to 5.3-RELEASE via the usual makeworld procedures. Thanks to spending some time with mergemaster -p, all of my configuration seems to have carried over and is working perfectly, with the exception of ssh. The only difference between the original and temporary versions of sshd_config was a single line I had entered in order to prevent root from logging in via ssh as root. Everything else, with the obvious exception of the config file signature, was the same. Yet I'm now getting errors when I try to ssh from any location (remote, LAN, even testing on the same terminal). If I don't do -v, the terminal window just disappears or shows no feedback. -v shows no more authentication methods to try. This points to commitment of rev. 1.35 for me: http://www.freebsd.org/cgi/cvsweb.cgi/src/crypto/openssh/sshd_config.diff?r1=1.34r2=1.35f=h Thanks ch. Yikes... should I have known this on my own? Cheers ch ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kern.maxpipekva exceeded, please see tuning(7)
On Sat, 19 Mar 2005 14:17:33 -0500, John DeStefano [EMAIL PROTECTED] wrote: From: Jason Henson [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Date: Mon, 14 Mar 2005 02:00:48 + Subject: Re: kern.maxpipekva exceeded, please see tuning(7) On 03/13/05 15:44:32, John DeStefano wrote: I have seen a mention or two of this error on the lists before, including this link to the current list I pulled up from Google: http://lists.freebsd.org/pipermail/freebsd-current/2004-January/019150.html In my case, the errors began after my exploratory two-year-old found the shiny 'reset' button and could not resist its powers. I'm also getting HDD error messages on boot, 'fsck -y' shows all the file systems as read-only and returns errors on one of them, and I can no longer SSH into my system (due to, I assume, too many open file handles), or even get a command in on my console without an error popping in.. The solution does not seem clear cut to me, and it seems the error message itself does not provide valid (or, at least, sufficient) information. Could someone please help, or point me in the right direction? Thanks, as always, John ___ FreeBSD is very robust with power failures, but that was a reset button. Do you have acpi on? When I hit my power button every once in a while my system shuts down properly. Try booting into single user mode and do a manual mount and fsck. And just to help you out: $ sysctl -ad | grep pipekva kern.ipc.maxpipekva: Pipe KVA limit kern.ipc.pipekva: Pipe KVA usage $ sysctl -a | grep pipekva kern.ipc.maxpipekva: 8634368 kern.ipc.pipekva: 344064 Thanks to Jason's instructions, I was able to boot into -s mode, manually mount and fsck the slices, and add the two kernel paramenters to /boot/loader.conf, using his maxpipekva and pipekva parameters and values ver batim; and this seemed to get me back up and running. Howver, whenever I now try to perform any intensive operations, such as cvsup or makeworld, the errors come right back and do not desist unless I reboot the machine. Is there a recommended value for these parameters if I've got a total of 340MB RAM, or another way of solving this problem? Thank you, ~John Hi again folks, In addition to the above, cron is now dumping signal 11 cores on me every two minutes. I had one suggestion to check the value of openfiles in /etc/login.conf, but that's already set to unlimited. Any and all ideas would be appreciated. Thanks. ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kern.maxpipekva exceeded, please see tuning(7)
From: Jason Henson [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Date: Mon, 14 Mar 2005 02:00:48 + Subject: Re: kern.maxpipekva exceeded, please see tuning(7) On 03/13/05 15:44:32, John DeStefano wrote: I have seen a mention or two of this error on the lists before, including this link to the current list I pulled up from Google: http://lists.freebsd.org/pipermail/freebsd-current/2004-January/019150.html In my case, the errors began after my exploratory two-year-old found the shiny 'reset' button and could not resist its powers. I'm also getting HDD error messages on boot, 'fsck -y' shows all the file systems as read-only and returns errors on one of them, and I can no longer SSH into my system (due to, I assume, too many open file handles), or even get a command in on my console without an error popping in.. The solution does not seem clear cut to me, and it seems the error message itself does not provide valid (or, at least, sufficient) information. Could someone please help, or point me in the right direction? Thanks, as always, John ___ FreeBSD is very robust with power failures, but that was a reset button. Do you have acpi on? When I hit my power button every once in a while my system shuts down properly. Try booting into single user mode and do a manual mount and fsck. And just to help you out: $ sysctl -ad | grep pipekva kern.ipc.maxpipekva: Pipe KVA limit kern.ipc.pipekva: Pipe KVA usage $ sysctl -a | grep pipekva kern.ipc.maxpipekva: 8634368 kern.ipc.pipekva: 344064 Thanks to Jason's instructions, I was able to boot into -s mode, manually mount and fsck the slices, and add the two kernel paramenters to /boot/loader.conf, using his maxpipekva and pipekva parameters and values ver batim; and this seemed to get me back up and running. Howver, whenever I now try to perform any intensive operations, such as cvsup or makeworld, the errors come right back and do not desist unless I reboot the machine. Is there a recommended value for these parameters if I've got a total of 340MB RAM, or another way of solving this problem? Thank you, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd-questions Digest, Vol 91, Issue 29
From: Jason Henson [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Date: Mon, 14 Mar 2005 02:00:48 + Subject: Re: kern.maxpipekva exceeded, please see tuning(7) On 03/13/05 15:44:32, John DeStefano wrote: I have seen a mention or two of this error on the lists before, including this link to the current list I pulled up from Google: http://lists.freebsd.org/pipermail/freebsd-current/2004-January/019150.html In my case, the errors began after my exploratory two-year-old found the shiny 'reset' button and could not resist its powers. I'm also getting HDD error messages on boot, 'fsck -y' shows all the file systems as read-only and returns errors on one of them, and I can no longer SSH into my system (due to, I assume, too many open file handles), or even get a command in on my console without an error popping in.. The solution does not seem clear cut to me, and it seems the error message itself does not provide valid (or, at least, sufficient) information. Could someone please help, or point me in the right direction? Thanks, as always, John ___ FreeBSD is very robust with power failures, but that was a reset button. Do you have acpi on? When I hit my power button every once in a while my system shuts down properly. Try booting into single user mode and do a manual mount and fsck. And just to help you out: $ sysctl -ad | grep pipekva kern.ipc.maxpipekva: Pipe KVA limit kern.ipc.pipekva: Pipe KVA usage $ sysctl -a | grep pipekva kern.ipc.maxpipekva: 8634368 kern.ipc.pipekva: 344064 Thank you Jason. I do have ACPI on. I believe booting into -s mode, manually mounting and fsck-ing the slices, and adding the two kernel paramenters to /boot/loader.conf as you suggsted has sorted me (or, at least, alleviated the system of kernel errors). I used your parameters ver batim; I will need to understand how the values relate to physical memory (only 320MB) before I tinker with them. Thanks again, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kern.maxpipekva exceeded, please see tuning(7)
On Mon, 14 Mar 2005 17:38:54 +, Kris Kennaway [EMAIL PROTECTED] wrote: On Sun, Mar 13, 2005 at 03:44:32PM -0500, John DeStefano wrote: I have seen a mention or two of this error on the lists before, including this link to the current list I pulled up from Google: http://lists.freebsd.org/pipermail/freebsd-current/2004-January/019150.html In my case, the errors began after my exploratory two-year-old found the shiny 'reset' button and could not resist its powers. I'm also getting HDD error messages on boot, 'fsck -y' shows all the file systems as read-only and returns errors on one of them, and I can no longer SSH into my system (due to, I assume, too many open file handles), or even get a command in on my console without an error popping in.. The solution does not seem clear cut to me, and it seems the error message itself does not provide valid (or, at least, sufficient) information. Could someone please help, or point me in the right direction? Did you read the tuning(7) manpage, as instructed? Kris Hi Kris, Yes, and it contained quite a bit of informaiton. But it does not seem to contain this error directly, nor any procedural information on how to alleviate the error. I also read here: http://lists.freebsd.org/pipermail/freebsd-current/2004-January/019150.html the error message is incorrect. and This value is loader tunable only. And here: http://www.linuxquestions.org/questions/archive/17/2004/11/3/255979 Unfortunately the man page for tunining doesn't seem to have anything specifically about increasing the value of kern.ipc.maxpipekva. I have the box working as a dumb terminal, and I'm no longer able to SSH in. Apparently, I can set the values of the kernel parameters I need to change either at boot time, or in loader.conf. I will try that, once I attach a montitor and keys and figure out how to do it, along with which parameters I need to change, and what the values should be for my system. By the way: thank you for responding to me, and copying the list, as I thought was the best-practice protocol for the list; it seems to have become a forgotten art. Thanks, ~John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
kern.maxpipekva exceeded, please see tuning(7)
I have seen a mention or two of this error on the lists before, including this link to the current list I pulled up from Google: http://lists.freebsd.org/pipermail/freebsd-current/2004-January/019150.html In my case, the errors began after my exploratory two-year-old found the shiny 'reset' button and could not resist its powers. I'm also getting HDD error messages on boot, 'fsck -y' shows all the file systems as read-only and returns errors on one of them, and I can no longer SSH into my system (due to, I assume, too many open file handles), or even get a command in on my console without an error popping in.. The solution does not seem clear cut to me, and it seems the error message itself does not provide valid (or, at least, sufficient) information. Could someone please help, or point me in the right direction? Thanks, as always, John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mysql connect problems
On Sat, 11 Dec 2004 09:23:52 +, Peter Risdon [EMAIL PROTECTED] wrote: When I specify a value for MySQL server and for DB root password on the MediaWiki 1.3.8 installation page, I get Couldn't connect to database with a script note MySQL error 1250: Client does not support authentication protocol requested by server; consider upgrading MySQL client. When I omit the root password value, so it can connect with the user wikiuser, it says Check name/pass or enter root password below, with notes # MySQL error 1045: Access denied for user: 'root'@'localhost' (Using password: NO) and Trying regular user... need password. OK, but is this a mysql problem? It's certainly beginning to seem _not_ to be, isn't it. Can you connect as the relevant users from the command line? Yes. Which would seem to affirm your suspicion above. And I've tried every possible combination of information on the MediaWiki install page, but nothing works. If there are no more suggestions on how to fix this, how about recommendations for a different wiki package? Preferably, one that won't be quite as much of a bear to set up Thanks. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mysql connect problems
On Fri, 10 Dec 2004 18:08:48 +0100, Jorn Argelo [EMAIL PROTECTED] wrote: select user, password, host from user; on 'mysql' returned 3 'root' entries using 2 different passwords (localhost, %, and the actual host name), 2 anon entries (localhost and host name), 2 'mtuser' entries (one on localhost w/o pw, one on '%'), and one 'wikiuser' entry (localhost w/o pw). I changed the root passwords so they all use the same one, and changed the 'mtuser' entry that didn't have a password so its password matches that of the other entry. Have you issued the command similair like GRANT ALL PRIVILEGES ON *.* TO '[EMAIL PROTECTED]'; Yes: I ran both of these commands as root: GRANT ALL ON wikidb.* TO wikiuser; GRANT ALL ON mtdb.* TO mtuser; FLUSH PRIVILEGES; It still didn't work in either case. However, I logged off as I had to leave for a bit, later opened a new SSH session, and now can log in to mysql as both users, AND Mobile Type is now working! I have no idea what changed. And MediaWiki is still saying Couldn't connect to database. Running show databases; as 'wikiuser' shows the proper database (plus the 'test' database). I'm stuck. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mysql connect problems
On Fri, 10 Dec 2004 00:15:10 +0100, Jorn Argelo [EMAIL PROTECTED] wrote: On Thu, 9 Dec 2004 17:18:38 -0500, John DeStefano wrote [snip] At a prompt, if I try to connect to mysql using the '-p' option like this: # mysql -u root -p ... I can connect. Which makes sense. Because the -p option is for entering a password. And I don't think you'll have an empty root password ;) I assumed p meant password in some respect, but didn't realize until you pointed it out that it actually meant _prompt_ for password, and that no password must inherently be assumed (which doesn't sound very secure). But if I try to connect without '-p' like this: # mysql -u root ... I get an error: mysqladmin: connect to server at 'localhost' failed error: 'Access denied for user: 'root'@'localhost' (Using password: NO)' What you're trying to do now is connecting with an empty password, and thus it refuses to connect. You always have to imply the -p option unless the password of your user is empty, but you DON'T want that. But this seems to work only for root: when I try the same command specifying one of the users I created: # mysql -u wikiuser -p Enter password: ...it doesn't work: ERROR 1045 (28000): Access denied for user: 'mtuser'@'localhost' (Using password: YES) From what I can gather, this has to do with setting passwords for different aliases or incarnations of the host for a single user (root). I've tried every solution I've found for adding additional connection settings for root (including more than one method for changing the root password). When I log into mysql as root, use the mysql database, and run 'select user, password, host from user;' I see multiple entries for root for different 'host' values ('localhost', the actual host name, and '%'). Well, I have checked it as well, and I have just the root user on localhost (with a different password then the one on the system though) and two anonymous users (so no username and no password) for localhost and the FQDM without any permissions. So I'm not really sure if the % is good or not. Perhaps you're running a different version then I am (I use 4.1.7). Yes: I'm running 5.0.0-alpha (at least that's what I get back from mysqladmin -u root -p version). So, do you recommend I try to remove those extra root entries? Also, how do I get these Web-based clients to connect to the accounts and databases they require? I have created a database for each application, and a user and password for each, and tried to grant permissions for each to connect to the respective database. But it's not working: both Web clients return can't connect errors. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mysql connect problems
On Fri, 10 Dec 2004 16:09:20 +0100, Jorn Argelo [EMAIL PROTECTED] wrote: You have to make sure that the user has access to login. Unless you are using this database on an important machine, you can always change the root password like this: set password = password(yournewpassword); Like that, you won't have problems with permissions and such, but people who put security at a top priority will not like this method. I logged into mysql as root over a PuTTy/SSH connection and performed this command, specifying a new password. But the result was Query OK, 0 rows affected (0.01 sec). I believe this is because there are multiple 'root' entries in the user table with different 'host' values. I was able to change these values when I specified which entry I wanted to change: mysql UPDATE user SET password=PASSWORD(''new_password') - WHERE user='root' and host='host_entry'; Yes: I'm running 5.0.0-alpha (at least that's what I get back from mysqladmin -u root -p version). So, do you recommend I try to remove those extra root entries? It's probably the best thing not to touch anything regarding the MySQL configuration unless you're sure what you're doing. Are these extra root user entries in the mysql database, which I believe I've entered myself while trying different solutions, considered part of the MySQL configuration? select user, password, host from user; on 'mysql' returned 3 'root' entries using 2 different passwords (localhost, %, and the actual host name), 2 anon entries (localhost and host name), 2 'mtuser' entries (one on localhost w/o pw, one on '%'), and one 'wikiuser' entry (localhost w/o pw). I changed the root passwords so they all use the same one, and changed the 'mtuser' entry that didn't have a password so its password matches that of the other entry. 'mtuser' can not log in to mysql locally: # mysql -u mtuser -p Enter password: ERROR 1045 (28000): Access denied for user: 'mtuser'@'localhost' (Using password: YES) A similar error is returned by the Movable Type System Loader page (which is to be expected, since he/she can't log in locally): Access denied for user: 'mtuser'@'%' to database 'mtdb' at /usr/www/mt-static/mt-load.cgi line 195. 'wikiuser' can log in to mysql locally, but the MediaWiki 1.3.8 installation page reports it Couldn't connect to database, no mater whether I specify localhost, the actual host name, or leave the 'MySQL server' field blank. If you want more information regarding the MySQL console, I would suggest you try the MySQL documentation located on their website. It's just as great as the FreeBSD handbook is ;) I agree: the MySQL docs are comprehensive, extensive, and very well-organized. But for an inexperienced user like me, browsing through the troubleshooting sections to find an answer is like... well, trying to install Mobile Type. ;) ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mysql connect problems
On Fri, 10 Dec 2004 21:43:19 +, Peter Risdon [EMAIL PROTECTED] wrote: AFAIK you must type '[EMAIL PROTECTED]' (including the quotes). If that doesn't work, then I don't know it either. Perhaps somebody else on the list has an idea? I have found it's best to connect to the database you want to grant the privileges on before issuing the GRANT command. This doesn't seem to be the way it's documented, but it works for me. You might also consider using passwords... mysql\u wikidb mysqlGRANT ALL on wikidb.* to [EMAIL PROTECTED] IDENTIFIED BY 'password'; mysql\u mtdb mysqlGRANT ALL on mtdb.* to [EMAIL PROTECTED] IDENTIFIED BY 'password'; Thank you both. Certainly makes sense, but it didn't work (If it _had_ worked, I'd be suspicious as to why I needed to do this for MediaWiki, and not for Mobile Type (which works now).). When I specify a value for MySQL server and for DB root password on the MediaWiki 1.3.8 installation page, I get Couldn't connect to database with a script note MySQL error 1250: Client does not support authentication protocol requested by server; consider upgrading MySQL client. When I omit the root password value, so it can connect with the user wikiuser, it says Check name/pass or enter root password below, with notes # MySQL error 1045: Access denied for user: 'root'@'localhost' (Using password: NO) and Trying regular user... need password. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mysql connect problems
I wanted to give a try at enhancing my knowledge and improving my Web server/sites by adding blog (Mobile Type) and wiki (MediaWIki) applications. If you've ever tried to install/configure either of these two apps on FreeBSD, perhaps you already know the frustration I've met over the past 24 hours: multiple dependencies, modules, untold configurations, etc., especially in the case of Mobile Type. In fact, if you've got a better suggestion in either case, I wouldn't be adverse to scrapping one or both packages and starting from scratch with something else. Anyway, after much Googling and tinkering, I made some advances but seem to have come up against a problem in the vein of a very common theme: MySQL connections in FreeBSD. Not that I'm blaming the operating system; I'm quite aware this is more an 'operator error' than anything else. Just appears that a lot of FBSD users just starting out with MySQL or MySQL-dependent packages run into this. Neither of the two above-mentioned applications can connect to my MySQL services (access denied in both cases). I have created databases and appropriate users for each, and I've tried to grant the appropriate permissions. All that seemed to work, but I still can't connect properly. At a prompt, if I try to connect to mysql using the '-p' option like this: # mysql -u root -p ... I can connect. But if I try to connect without '-p' like this: # mysql -u root ... I get an error: mysqladmin: connect to server at 'localhost' failed error: 'Access denied for user: 'root'@'localhost' (Using password: NO)' From what I can gather, this has to do with setting passwords for different aliases or incarnations of the host for a single user (root). I've tried every solution I've found for adding additional connection settings for root (including more than one method for changing the root password). When I log into mysql as root, use the mysql database, and run 'select user, password, host from user;' I see multiple entries for root for different 'host' values ('localhost', the actual host name, and '%'). I'd appreciate any help at all with this. Thanks very much. ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
configuring sendmail for relaying mail form data
I'm trying to use a PHP form mail script (http://www.leveltendesign.com/L10Apps/Fm/) to process data submitted by a Web mail form. The installation test completed successfully, and I moved the PHP file into my Web site. Now, when I click the submit button, I'm brought to the 'success' page, but an email is never received. This was also the case during the initial test, but I was brought to the default success page. The mail queue is holding these messages with the fillowing error: Deferred: 450 www@host.domain.com: Sender address rejected: Domain not found The FreeBSD guide's Troubleshooting section points to the Sendmail FAQ for more information. The Sendmail FAQ on this topic contains a cycle of links, but I get the idea that I need to configure sendmail to route messages via my ISP's SMTP gateway, and that I need to define a smart host. The most relevent FAQ entries I could find were: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mail-trouble.html#Q22.5.4. http://www.sendmail.org/faq/section3.html#3.22 So I added the following to /etc/mail/freebsd.mc: FEATURE(`accept_unresolvable_domains')dnl FEATURE(`accept_unqualified_senders')dnl I also created /etc/mail/relay-domains and inserted every possible variation of domains I could think of. I then restarted sendmail ('cd /etc/mail make restart') and tried the form again, but mailq showed the same 450 error. I added the following to /etc/mail/freebsd.mc: define('SMART_HOST', `smtp-server.rochester.rr.com')dnl After a restart, mailq gave the same error. Any thoughts on how to resolve this, or what I'm doing wrong? Thanks. ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ssh, daemon, and system errors
Greetings FBSD-Q listers, Some may recall that I (and a few other folks) reported a massive outburst of ssh connection hammerings on my FBSD 5.0-RELEASE machine a few months ago. The conection attempts are still occurring, usually about 5-10 attempts per day, but occassionally I get a log of someone from a single IP address hammering 50-100 times, and trying to use such accounts as nobody, www, operator, and ftp. There is no record of success by any of these attempts, but I am aware that a well-educated intruder could easily have erased their tracks. Responses from the list included checking 'last' (mine was clean) and using PermitRootLogin no in sshd_config. I'm sure more suggestions would include invoking a jalied environment, but I've got no experience in this aside from RTFM. I still don't feel comfortable that this machine, won't be broken into, if it hasn't been already, so I'm open to suggestions on how to tighten things up. In addition to this, I'm beginning to experience some other problems on the machine--maybe related, maybe not, but it seems an odd coincidence that this stuff would begin to break now after about 2 years of near-flawless server performance. Many of these could surely be network-related, but I'm not seeing network problems with other client machines on this network: cvsup still works perfectly; I run it once a week via crontab entry to update everything. ddclient (my ISP assigns dynamic IP addresses) worked fine until about a week ago; since then, I get sporatic socket errors about bad host names and not being able to connect. sshd has always been rock solid until the last few days. Since then, I'm getting timeouts when trying to connect (remotely and from the local network), no matter if I try to connect via a hostaname, domain name, or IP address, but not _all_ of the time. It seems like I can connect about 1/3 of the time, but even then my sessions time out when I'm idle for a very short time, or sometimes while I'm actually typing (which is in fact what happened to me just now). httpd performance has been just as sporatic as sshd, which is a very bad thing. I haven't changed my httpd.config in a year. bind has never worked properly, but I am certain that issue is related only to my inexperience. samba has been screwy. I run a local script to connect to mount_smbfs shares on the network and offer shared directories on this machine. Lately, the shares either don't get connected, or show up in my daily logs as being connected twice. I don't run an ftp on this machine, and that's just about every network daemon I run that can think of (without being able to connect to the machine to check). Finally, I've not been able to update the source on this machine; I keep getting 'error code 1' exit messages, and although I am able to update the index with 'make fetchindex', 'make index' thereafter gives a similar error. I realize none of these are addressible directly without more information and evidence. I wanted to get opinions first before flooding the list with log and config data, but I would be glad to provide the contents of any files, or any other info, on request. This machine has never been this screwed up, so I'm thinking of trying a reinstall or upgrade, but I didn't take good notes while setting this thing up a while ago and I'm nervous about losing settings, or even worse, data. I'm also worried that I won't be able to get everything back up and running the way it was. But I suppose the alternative is to leave it as-is, and that's not working very well. Looking forward to your thoughts. Thanks, ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Official wallpapers
On Wed, 22 Sep 2004 07:39:34 -0400 Louis LeBlanc said: The flame detail around the daemon (can't remember his name . . .) is excellent. IIRC, that's Beastie. ;) Good work. Lou Ditto; very cool. ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ATI Radeon 9000 64mb AGP on 5.3beta2
I'm trying to get my ATI Radeon 9000 64mb AGP video card to oplay nice with with Xorg on FreeBSD5.3beta2. Since I've already asked for help, I won't pollute the list yet again with details, as they can be found at the BSD Forums: http://www.freebsdforums.org/forums/showthread.php?s=threadid=24984 In a nutshell, no matter what config tool I use, or what settings I come up with, when I startx I get a blue and green garbled screen out from which I can't exit. I've been fighting with this for weeks now and I'm at the end of my rope. A few people have had some ideas, which I've tried with little result. As I'm on the cusp of deciding to reformat the whole $#@% thing and start over after a multitude of struggling (with other components as well), I'm open to any and all ideas. Thanks. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ATI Radeon 9000 64mb AGP on 5.3beta2
Ed Budd said: John DeStefano wrote: I'm trying to get my ATI Radeon 9000 64mb AGP video card to play nice with with Xorg on FreeBSD5.3beta2. Since I've already asked for help, I won't pollute the list yet again with details, as they can be found at the BSD Forums: http://www.freebsdforums.org/forums/showthread.php?s=threadid=24984 In a nutshell, no matter what config tool I use, or what settings I come up with, when I startx I get a blue and green garbled screen out from which I can't exit. I've been fighting with this for weeks now and I'm at the end of my rope. A few people have had some ideas, which I've tried with little result. As I'm on the cusp of deciding to reformat the whole $#@% thing and start over after a multitude of struggling (with other components as well), I'm open to any and all ideas. Have you tried it without dri and glx? I had a similar problem with my laptop integrated intel video and xorg running Gentoo Linux. It turns out that my particular card is very poorly supported by the latest xorg (6.8.0) but worked with 6.7.0. Now it still works but only if I don't allow those two modules to load, even though 'X -configure' detected the capability. By commenting out dri and glx from xorg.conf I've been able to use it, albeit without 3d acceleration. In any event, pretty simple thing to try. Post back whether it works or not. I ran Xorg -configure and edited the fresh conf file it generated. One thing I noticed was that there were no screen modes at all added to the file; Depth and Viewport were filled in, but no Modes. So, in addition to commenting out dri and glx, the only change I made was to add four resolution modes to the Depth 24 section. I then ran X -config on this new config file, and voila! I got that great, grey screen! Pressiong ctl+alt+plus|minus had no effect at all, but ctl+alt+back exited out of the X server. The one (WW) warning I saw back on the console was (WW) RADEON: No matching Device section for instance (BusID PCI:3:0:1) found. The only thing I can relate this error to is the fact that Windows XP auto-detects this card as two devices somehow as well, as it shows two cards in Device Manager when I only have one, and a second Display too, both called Secondary. I then tried startx for the real test... and it failed. It brought me back to my favorite green and blue garbled screen, out from which I could not exit. Any idea why? Cheers, EB Thanks, ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ATI AGP card and Xorg
Robert Storey said: Sorry John, I apologize for not reading all the to the bottom of your post. No problem; I appreciate your reply as well as any help I can get. Just mentioned that the information was already in the post so I didn't have to type it out again. ;) But please don't forget to include the poster as a CC: when you reply, if at all possible. The only other thing I'd suggest is playing with xvidtune. I had to do this to get my screen to center properly. The frustrating thing with xvidtune is that it doesn't automatically save the adjustments you make - you have to manually edit xorg.conf - but at least it makes it relatively easy to find the right settings. In my experience thus far, it seems you always need to tweak xorg.conf after its creation anyway, regardless of what tool is used to create it. Unfortunately, I've not once yet run an X-config tool and been able to use that config file as-is on any system. BTW, perhaps this is a dumb question, but in skimming the xvidtune man pages, I saw it mentioned that it's a client interface to XFree86... is this because the man page was written pre-Xorg and hasn't been updated, or will it work only with XFree86? I will say that FreeBSD really could use a better configuration utility for X, though I realize that the developers have their hands full just trying to get 5.3 out the door. Amen. IMHO, this would be a huge step toward the perception of usability for people like me who aren't afraid to get their hands a bit dirty yet aren't quite gurus. regards, Robert On Thu, 16 Sep 2004 21:12:48 -0400 John DeStefano [EMAIL PROTECTED] wrote: Thanks Robert... but I did try 'vesa' before posting (2nd 3rd paras from bottom of my post below). I'm sure either 'raden' or 'ati' are the way to go, I just can't seem to get either one to work. I also read through the entire README.ati, and found it a bit of a frustrating read when trying to look for answers on 'radeon' drivers for my card... not much relevent info there for the end-user. Thanks, ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: increasing failed sshd logins/clearing breadcrumb trails
Date: Wed, 15 Sep 2004 12:21:29 +0930 From: Tim Aslat [EMAIL PROTECTED] Subject: Re: increasing failed sshd logins/clearing breadcrumb trails To: [EMAIL PROTECTED] Message-ID: [EMAIL PROTECTED] Content-Type: text/plain; charset=US-ASCII Tim Aslat [EMAIL PROTECTED] once said: In the immortal words of Glenn Sieb [EMAIL PROTECTED]... I've been getting this for weeks. They're all under APNIC, and emails to [EMAIL PROTECTED] involved networks has gone unanswered. I've been getting these as well, but from a multitude of address spaces. Not just APNIC. The easiest way to protect this is to check your sshd_config and set: PermitRootLogin no Interestingly, this option did not exist in my config file (I added it), but all other options were commented out. Is this the default? Is it wise to leave it this way? Agreed. However if you 'Absolutely' require something to be done remotely as root, make it a pub/priv key sequence and limit the command using the keys. ie: change sshd_config to PermitRootLogin without-password and set up command=/usr/local/bin/rsync --server --daemon . ssh-dss snip actual key in the authorized_keys file. This limits the abilities of the remoe login to just running the rsync command with the specified switches. Anything else just doesn't work. Which, if you're exposed to the 'Net would be a sane practice--force people to log in as themselves and su (or sudo or sudoscript) to root. Very sane practice Indeed. Admittedly, I am not sure about the rest of your posting. When I run last, (on 4.10-STABLE) it shows logins back to the 1st of September. It is possible that the box was compromised and the utmp/wtmp log removed/edited/etc, and I would start looking immediately for other traces of a possible intrusion. My current wtmp log, which dates from today back to Aug 30, is quite small and shows only two logins... I've logged in twice since reporting this incident to the list. There exists no utmp file in /var/log/. I'm really starting to feel as if the machine were compromised, or at least perused, and my utter lack of security knowledge has become glaringly apparent. What other traces could I look for; what other files might give me a clue? And where would I begin looking for files that might have been planted on the machine (scripts, server threads)? Cheers good luck Thanks, but it doesn't seem any luck I've got at this point would be good Tim ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ATI AGP card and Xorg
Trying to take my mind off my server exploit issue... I'm trying to configure an ATI Radeon 9000 64mb AGP video card with Xorg on a FreeBSD5.3beta2 workstation. No matter which config option I choose ('Xorg -configure', 'xorgcfg -textmode', xorgconfig), when I test the generated .conf file, the screen locks up with a bunch of colors and horizontal lines (green on top, blue everywhere else). The mouse cursor moves, but none of the Ctrl+Alt key combos work, and I can't escape the X session or access another virtual console. The Device section generated from 'Xorg -configure' is: Section Device Identifier Card0 Driver ati VendorName ATI Technologies Inc BoardName Radeon RV250 If [Radeon 9000] BusID PCI:3:0:0 Here's any related output I can think of from 'pciconf -lv': [EMAIL PROTECTED]:0:0: class=0x06 card=0x chip=0x01e010de rev=0xa2 hdr=0x00 vendor = 'NVIDIA Corporation' device = 'nForce2 AGP Controller' class = bridge subclass = HOST-PCI . . . [EMAIL PROTECTED]:0:0: class=0x03 card=0x20021002 chip=0x49661002 rev=0x01 hdr=0x00 vendor = 'ATI Technologies Inc.' device = 'RV250 Radeon 9000/9000 Pro' class = display subclass = VGA [EMAIL PROTECTED]:0:1: class=0x038000 card=0x20031002 chip=0x496e1002 rev=0x01 hdr=0x00 vendor = 'ATI Technologies Inc.' device = 'RV250 Radeon 9000/9000 Pro - Secondary' class = display I thought it might be an AGP/kernel issue, but when I try 'kldload agp' I get back File exists, and when I do 'kldstat -n agp' or 'kldunload' I get No such file. I tried someone else's bare-bones radeon conf file, and I got the same problem as always on test: blue/green garbled screen, mouse moves, can't escape out of locked-up X. I then replaced the radeon Driver entry with vesa in the config. When I tested this, it showed a different garbled screen (grey this time) for a few seconds, then clicked to a normal X-Windows screen, but with a black hourglass outline on the sides. I was able to Ctl+Alt+Backspace out of this as normal, and the console didn't report any warnings or errors. I then moved this config file to /etc/X11/xorg.conf and ran 'startx'. It started fine and looked as described above, with an hourglass outline. When I exited X, there were some errors on the console that were probably just from exiting out of X, and this one: xauth: (argv):1: bad display name my.hostname.com:0 in remove command Any ideas on how to get this card working properly? BTW: I began using FreeBSD5.3beta2 on this machine for its NDIS support for my onboard NIC. Thanks, ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ATI AGP card and Xorg
Robert Storey wrote: One thing you could try is editing /etc/X11/xorg.conf and substituting vesa for ati. It's not an ideal solution, but the vesa driver often works when nothing else will. You might want to take a look at /usr/X11R6/lib/X11/doc/README.ati, and list all video drivers in /usr/X11R6/lib/modules/drivers/. regards, Robert Thanks Robert... but I did try 'vesa' before posting (2nd 3rd paras from bottom of my post below). I'm sure either 'raden' or 'ati' are the way to go, I just can't seem to get either one to work. I also read through the entire README.ati, and found it a bit of a frustrating read when trying to look for answers on 'radeon' drivers for my card... not much relevent info there for the end-user. On Thu, 16 Sep 2004 11:10:44 -0400 John DeStefano [EMAIL PROTECTED] wrote: Trying to take my mind off my server exploit issue... I'm trying to configure an ATI Radeon 9000 64mb AGP video card with Xorg on a FreeBSD5.3beta2 workstation. No matter which config option I choose ('Xorg -configure', 'xorgcfg -textmode', xorgconfig), when I test the generated .conf file, the screen locks up with a bunch of colors and horizontal lines (green on top, blue everywhere else). The mouse cursor moves, but none of the Ctrl+Alt key combos work, and I can't escape the X session or access another virtual console. The Device section generated from 'Xorg -configure' is: Section Device Identifier Card0 Driver ati VendorName ATI Technologies Inc BoardName Radeon RV250 If [Radeon 9000] BusID PCI:3:0:0 Here's any related output I can think of from 'pciconf -lv': [EMAIL PROTECTED]:0:0: class=0x06 card=0x chip=0x01e010de rev=0xa2 hdr=0x00 vendor = 'NVIDIA Corporation' device = 'nForce2 AGP Controller' class = bridge subclass = HOST-PCI . . . [EMAIL PROTECTED]:0:0: class=0x03 card=0x20021002 chip=0x49661002 rev=0x01 hdr=0x00 vendor = 'ATI Technologies Inc.' device = 'RV250 Radeon 9000/9000 Pro' class = display subclass = VGA [EMAIL PROTECTED]:0:1: class=0x038000 card=0x20031002 chip=0x496e1002 rev=0x01 hdr=0x00 vendor = 'ATI Technologies Inc.' device = 'RV250 Radeon 9000/9000 Pro - Secondary' class = display I thought it might be an AGP/kernel issue, but when I try 'kldload agp' I get back File exists, and when I do 'kldstat -n agp' or 'kldunload' I get No such file. I tried someone else's bare-bones radeon conf file, and I got the same problem as always on test: blue/green garbled screen, mouse moves, can't escape out of locked-up X. I then replaced the radeon Driver entry with vesa in the config. When I tested this, it showed a different garbled screen (grey this time) for a few seconds, then clicked to a normal X-Windows screen, but with a black hourglass outline on the sides. I was able to Ctl+Alt+Backspace out of this as normal, and the console didn't report any warnings or errors. I then moved this config file to /etc/X11/xorg.conf and ran 'startx'. It started fine and looked as described above, with an hourglass outline. When I exited X, there were some errors on the console that were probably just from exiting out of X, and this one: xauth: (argv):1: bad display name my.hostname.com:0 in remove command Any ideas on how to get this card working properly? BTW: I began using FreeBSD5.3beta2 on this machine for its NDIS support for my onboard NIC. Thanks, ~John Please carbon copy the OP when replying to the list. Thanks, ~John ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
increasing failed sshd logins/clearing breadcrumb trails
I've noticed a few posts over the past week or so regarding users' servers being probed by remote ssh attempts. Coincidentally (or perhaps not so), around that time, I began getting quite a few records of such attempts to my server, at the rate of about 3 tries per IP, and about three IPs per night. Unfortunately, last night (Mon Sep 13), this attack was much more concentrated and persistent: someone from (or spoofing from) one IP (211.250.185.100) hammered my server with login attempts over a 20-minute period. The last report I got was a final, failed root password at 20:22:13 Eastern Time (GMT-5:00). I just read this record and logged into my server, and ran last, which gave me a blank record, saying only: wtmp begins Tue Sep 14 22:01:55 EDT 2004 ...which happened to be the exact time I just logged into my server. I'm wondering if it is a normal clean-up occurrance for the 'last' log to turn over at a certain time/date, or if this ssh-er finally got into my system and cleaned up his/her tracks? I realize the power of one who has root privelages, but what logs would they have wiped out to remain invisible, and what others might I have a possible chance of looking at to determine what happened? ___ Do you Yahoo!? Declare Yourself - Register online to vote today! http://vote.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: booting beta3 on A7N8X
On Sunday 12 September 2004 02:56 pm, Lee Harr [EMAIL PROTECTED] wrote: On 2004-09-12, Joshua Tinnin [EMAIL PROTECTED] wrote: Well, I'm not entirely sure, either, but in any event I don't think you'll need to go that far. However, I think you'll probably have to stick with 5.x so that your hardware will be supported. Thanks for your help. Once I disabled firewire in the BIOS, the 5.3-beta3 booted and installed just fine. :o) That's funny ... you know, come to think of it I might have done this a long time ago, as I tend to configure the BIOS to just enable what I need or might use. Also, dmesg doesn't seem to indicate firewire is there, but there are a few unknowns that might be firewire. I primarily bought this board because of the AGP slot, Althon support and general reviews by overclockers and gamers, though I've read of some trouble with RAID and firewire on some OSes but haven't tried it myself. I figured if I really want to go with RAID I'll invest in a separate controller with a good reputation. Anyhoot, for general use these boards seem to work fine, and it sounds like it's not a big deal for you to not have firewire support, so there ya go. Have fun! :) - jt You might also try disabling ACPI; I have the same board and this worked for me. Of course, getting the other onboard stuff to work properly has been a whole different challenge ~John ___ Do you Yahoo!? Shop for Back-to-School deals on Yahoo! Shopping. http://shopping.yahoo.com/backtoschool ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't install ndiswrapper
--- Radek Kozlowski [EMAIL PROTECTED] wrote: On Wed, Sep 01, 2004 at 06:10:29PM -0700, John DeStefano wrote: I'm trying to install the ndiswrapper package to enable support for my NIC (onboard or wireless). Ndiswrapper is a linux project. The thing you're probably looking for is called NDISulator aka Project Evil, written by Bill Paul. NDISulator is available on -CURRENT and 5.3-BETA, but after some tweaking can also be installed on 5.2.1-RELEASE. Check ndis(4) and ndiscvt(8) for more info. Yes; thanks, that's where this all started... problem for me is I don't have a /sys/modules/ndis directory (or even sys/compat/ndis), even though I have installed 5.2.1-RELEASE. That's why I was trying to get this Linux package to work. I'll gladly take any further help I can get. -Radek Thanks Radek, ~John __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't install ndiswrapper
--- Radek Kozlowski [EMAIL PROTECTED] wrote: On Wed, Sep 01, 2004 at 07:04:36PM -0700, John DeStefano wrote: Yes; thanks, that's where this all started... problem for me is I don't have a /sys/modules/ndis directory (or even sys/compat/ndis), even though I have installed 5.2.1-RELEASE. That's why I was trying to get this Linux package to work. I'll gladly take any further help I can get. See here http://www.freebsddiary.org/ibm-thinkpad-t41.php, the Project Evil - the wireless card part. Thanks Radek. For some reason, my original reply didn't make it into my copy of the list's digest. I've also gotten a recommendation to try installing CURRENT, as the implementation for NDIS apparently wasn't ready in time for RELEASE. Sounds like one of the very few times using CURRENT would be the correct thing to do... I'll give CURRENT a try, and if it fails, I'll go with the suggestions in the Diary (which are basically to grab the relevent source bits from 5.2-CURRENT (probably better to use 5.3 at this point) and install from there). I can report the results to anyone interested. Good luck. Again, thanks Radek. -Radek ~John __ Do you Yahoo!? New and Improved Yahoo! Mail - 100MB free storage! http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't install ndiswrapper
--- Jorge Mario G. [EMAIL PROTECTED] wrote: Hi there guys Hi Jorge! look this links has a great how to http://www.freebsddiary.org/ibm-thinkpad-t41.php Yup, I found that and have been trying to hack my way through that procedure, as well as another, similar one that Radek suggested. The main trouble seems to be that NDIS works only with kernel versions LATER than 5.2.1, which is what I have installed. It has been suggested that I try and upgrade to 5.3-BETA (as much as I'm wary of betas, I may have no choice in order to get this working). also instead of fetching the you could retrive the sources using cvsup just get usr-sys and usr-sbin Good suggestion, but how can I cvsup if I don't have a working 'Net interface? ;) Seriously, I could download and burn these directories to a CD on another machine, but I think I'm going to go with burning the 5.3beta2 mini-install CD instead (since I need to burn a CD anyway). Jorge Thanks again Jorge. I'm certainly grateful there is ANY support for this hardware, but this hasn't been easy so far, and information has been hard to come by. ~John __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hardware for onboard/WiFi NICs and chipset
For those interested: I cured the system of its boot problem by disabling ACPI. There are two ways to do this: by appending the following text to /boot/device.hints: hint.acpi.0.disabled=1 ...or by selecting Boot with ACPI disabled (choice 2) from the FBSD boot menu. Note that when you do this while booting on install, the script recognizes your selection and prompts you to choose whether you'd like to disable ACPI permanently. Regarding the onboard and wireless NICs: the solution seems to be an implementation of NDIS by Bill Paul that interprets Windows .INF and .SYS driver files. The documentation I've found for this module points to the locations /sys/modules/ndis or /usr/src/sys/compat/ndis/ . These locations do not exist on my installed system, and I can't reach beyond the scope of the system to cvsup or grab them from a remote location. I just Googled and found that NDIS has its own SF project, so I'll throw what I can find on a floppy and go from there. If anyone has experience with implementing this package or tips to pass on, please do. I also noted two other errors during install/boot on I hope someone can shed some light: During initial boot: MProbe table : MP table has bad sig : : During all source install, particularly during XFree86 install (multiple sequential occurances): acd0: failure - READ_BIG status=51READY, DISC, ERROR sensekey=medium error ERROR = 0 I see that the second error has been posted before, but I don't see a solution/resultion. Thanks for your help. ~John --- John DeStefano [EMAIL PROTECTED] wrote: I remember part of this topic being addressed somewhat about a year ago, and I'm wondering if it's reached a resolution by now (doesn't seem so from recent list discussion, but it can't hurt to ask). I have a Chaintech Zenith motherboard: http://www.chaintechusa.com/tw/eng/product_spec.asp?MPSNo=13PISNo=196 I've always had a bit of trouble installing FreeBSD on this machine; now, unfortunately, it's the only one I have to work with. I've just tried installing both 4.10 and 5.2.1, and both give unpleasantly similar results: they get through most of the initial install boot sequence but freeze as it tries to mount. However, if I install by booting into safe mode, I can get through the install process with a few hiccups, one of them (the entire XFree86 library) being fairly crucial. Even when I do this, I still can't boot BSD afterward in its default mode, only using safe mode. In addition, I can't configure the onboard NIC, which is the ongoing problem I mentioned earlier. I asked about a year ago, and the basic response was that support hasn't been added because the chipset MFR doesn't want to help in developing a solution or offering source code for the drivers. I'm hopeful (but somewhat cynical) this has changed. In any case, the chipset is: NVIDIA nForce2 SPP + MCP-T. The on-board LAN controller: - Fast Ethernet Controller with MII Interface - Support 10/100Mb Fast Ethernet with External PHY The alternative I have is a wireless-G NIC card from TrendNET: http://www.trendnet.com/products/TEW-403PI.htm I have this card configured for Windows XP (not flawlessly, but it works after some tinkering). I haven't been able to find drivers for BSD, and the MFR support wasn't warm to my plea for a non-Windows solution. I've seen a few threads on wireless use, but nothing reporting the results or what works/what doesn't work, and nothing specific to 802.11g support. A side note: as you may surmise, I wouldn't recommend TrendNET products to my worst enemy. The product was absolutely painful to configure (after about a year, they just came out with a driver that actually works for XP, and then promptly discontinued the product) and their customer service was equally painful to endure. Any help you could offer to get this thing running BSD and back on the network would be greatly appreciated. Thanks, ~John __ Do you Yahoo!? New and Improved Yahoo! Mail - 100MB free storage! http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
can't install ndiswrapper
I'm trying to install the ndiswrapper package to enable support for my NIC (onboard or wireless). The tarball I got from SF.net was not a TGZ, so I couldn't use pkg_add (I tried to create my own TGZ file for this purpose, but pkg_add failed with an invalid TOC). I decompressed the archive, and when I run make install, it fails with a fatal error (Makefile, line 1: Need an operator). Line 1 of the makefile is simply -include version. The package includes a version file, which reads: NDISWRAPPER_VERSION=0.10 EXTRA_VERSION= Can someone please point me to the problem, or tell me what I'm doing wrong? Thanks. __ Do you Yahoo!? Yahoo! Mail - 50x more storage than other providers! http://promotions.yahoo.com/new_mail ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't install ndiswrapper
--- Radek Kozlowski [EMAIL PROTECTED] wrote: On Wed, Sep 01, 2004 at 06:10:29PM -0700, John DeStefano wrote: I'm trying to install the ndiswrapper package to enable support for my NIC (onboard or wireless). Ndiswrapper is a linux project. The thing you're probably looking for is called NDISulator aka Project Evil, written by Bill Paul. NDISulator is available on -CURRENT and 5.3-BETA, but after some tweaking can also be installed on 5.2.1-RELEASE. Check ndis(4) and ndiscvt(8) for more info. Yes; thanks, that's where this all started... problem for me is I don't have a /sys/modules/ndis directory (or even sys/compat/ndis), even though I have installed 5.2.1-RELEASE. That's why I was trying to get this Linux package to work. I'll gladly take any further help I can get. -Radek Thanks Radek, ~John __ Do you Yahoo!? Y! Messenger - Communicate in real time. Download now. http://messenger.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
reboot record information
I was interested to find from a system mail this morning that my system had been rebooted three days ago. As far as I was aware, the last reboot was about two months ago. The following lines in /var/log/messages give me a clue that the reboot happened after Feb 10 02:51:52: Feb 10 02:51:52 zurg inetd[608]: netbios-ns/udp: bind: Address already in use [note: the netbios-ns/udp line is a system message that I get every 10 minutes... haven't been able to figure that one out either] Feb 10 03:02:37 zurg syslogd: kernel boot file is /boot/kernel/kernel Feb 10 03:02:37 zurg kernel: Copyright (c) 1992-2003 The FreeBSD Project But there's no sign of what happened to cause the reboot, or how it was done. Is there another log file that would store this information? I am mostly concerned because I'm fairly certain this reboot was not performed at the console: it was either a system reaction to a problem, or somebody poking around where they shouldn't be... Thanks, ~John - Do you Yahoo!? Yahoo! Finance: Get your refund fast by filing online ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: reboot record information
JJB [EMAIL PROTECTED] wrote: All reboot messages go to /var/log/messages. The message file is archived, so just go the /var/log directory and look at your message files and look for msgs before the boot msgs of that date. That's what I thought too. However, according to my system status message this morning: Local system status: 3:13AM up 3 days, 11 mins, 0 users, load averages: 0.00, 0.00, 0.00 My /var/log/messages still contains messages older than 3 days ago; it's from where I pulled the log lines from my original post. As you can see, there's no sign of a cause for reboot there. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of John DeStefano Sent: Friday, February 13, 2004 10:17 AM To: [EMAIL PROTECTED] Subject: reboot record information I was interested to find from a system mail this morning that my system had been rebooted three days ago. As far as I was aware, the last reboot was about two months ago. The following lines in /var/log/messages give me a clue that the reboot happened after Feb 10 02:51:52: Feb 10 02:51:52 zurg inetd[608]: netbios-ns/udp: bind: Address already in use [note: the netbios-ns/udp line is a system message that I get every 10 minutes... haven't been able to figure that one out either] Feb 10 03:02:37 zurg syslogd: kernel boot file is /boot/kernel/kernel Feb 10 03:02:37 zurg kernel: Copyright (c) 1992-2003 The FreeBSD Project But there's no sign of what happened to cause the reboot, or how it was done. Is there another log file that would store this information? I am mostly concerned because I'm fairly certain this reboot was not performed at the console: it was either a system reaction to a problem, or somebody poking around where they shouldn't be... Thanks, ~John - Do you Yahoo!? Yahoo! Finance: Get your refund fast by filing online ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] __ Do you Yahoo!? Yahoo! Finance: Get your refund fast by filing online. http://taxes.yahoo.com/filing.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: reboot record information
--- JJB [EMAIL PROTECTED] wrote: When an FBSD system crooks, and It reboots it's self, very seldom does any of issued problem messages have time to be posted completely before the rug is pulled out from under the log write process by the reboot occurring. All you can find out from the logs is yes indeed it did reboot. You are SOL, just like the rest of us when this happens to us. That's unfortunate and hard to believe, but I have little choice but to believe it. I was hoping for a better mechanism of tracing what happened. But as you say, once a reboot is called for and the processes are stopped, I suppose there's nothing left running to write to a log. Thanks, ~John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of John DeStefano Sent: Friday, February 13, 2004 10:57 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: reboot record information JJB [EMAIL PROTECTED] wrote: All reboot messages go to /var/log/messages. The message file is archived, so just go the /var/log directory and look at your message files and look for msgs before the boot msgs of that date. That's what I thought too. However, according to my system status message this morning: Local system status: 3:13AM up 3 days, 11 mins, 0 users, load averages: 0.00, 0.00, 0.00 My /var/log/messages still contains messages older than 3 days ago; it's from where I pulled the log lines from my original post. As you can see, there's no sign of a cause for reboot there. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of John DeStefano Sent: Friday, February 13, 2004 10:17 AM To: [EMAIL PROTECTED] Subject: reboot record information I was interested to find from a system mail this morning that my system had been rebooted three days ago. As far as I was aware, the last reboot was about two months ago. The following lines in /var/log/messages give me a clue that the reboot happened after Feb 10 02:51:52: Feb 10 02:51:52 zurg inetd[608]: netbios-ns/udp: bind: Address already in use [note: the netbios-ns/udp line is a system message that I get every 10 minutes... haven't been able to figure that one out either] Feb 10 03:02:37 zurg syslogd: kernel boot file is /boot/kernel/kernel Feb 10 03:02:37 zurg kernel: Copyright (c) 1992-2003 The FreeBSD Project But there's no sign of what happened to cause the reboot, or how it was done. Is there another log file that would store this information? I am mostly concerned because I'm fairly certain this reboot was not performed at the console: it was either a system reaction to a problem, or somebody poking around where they shouldn't be... Thanks, ~John __ Do you Yahoo!? Yahoo! Finance: Get your refund fast by filing online. http://taxes.yahoo.com/filing.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Recommendations for wireless networking and FreeBSD
I've just moved into an apartment in which drilling and running wires is taboo. Has anyone delved successfully into the realms of wireless networking their FreeBSD groups? My main server is running 4.8-STABLE, and I have a client machine running 5.1-RELEASE (which has been suspect to a lack of driver support for its onboard NIC in FBSD anyway), but I am not married to any of these releases and would up/downgrade if a solution was available. I'd also prefer a Wireless-G access point and adapter solution if possible, as opposed to the much slower B solutions available. Thanks ~John - Do you Yahoo!? Exclusive Video Premiere - Britney Spears ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: nforce2 (for the zillionth time, I should imagine)
On Wednesday 10 September 2003 06:25 pm, Lewis Thompson wrote: Hi, I've just purchased a new machine (a micro-ATX machine) with an nforce2 board. After a little searching on Google/Groups it looks to still be pretty much unsupported. Can anybody give a run-down of the how each aspect is? The board I have has onboard GeForce4 MX (which I know will work with the new drivers), onboard sound, onboard network card, etc. Any details would be appreciated. Thanks very much, -lewiz. You could read the chapter in the FreeBSD Handbook for X Window System: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x11.html Or you could get the driver from nVidia for FreeBSD, which can be found here: http://www.nvidia.com/object/freebsd_1.0-4365.html The list of supported cards is in the Linux README file, here: ftp://download.nvidia.com/XFree86/Linux-x86/1.0-4496/README.txt Best of luck, Andrew Gould I've been looking for an answer for the nForce2 chipset for months in various arenas, including on this list and on -net. Nobody seems to have an answer; in fact, one person's reply on this list was good luck. The drivers to which Andrew refers above are for Linux, not UNIX/BSD, and Linux emulation does not seem to do the trick. You may be able to get away with something on enabling some peripheral drivers such as audio, but enabling the on-board NIC, which has been my main concern, does not seem likely unless someone at nVidia works with a BSD developer to port over the proper drivers. I'd greatly welcome some updated information on these drivers as well, if any is available. ~John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
nVidia nForce2 chipset and on-board ethernet
Over the past few months, there have been a handful of posts on freebsd-net regarding the lack of support in FreeBSD for on-board ethernet interfaces using the nVidia nForce2 chipset. I have currently a network-impared machine with an Asus A7N8X motherboard, which uses this chipset, with FBSD 5.1-RELEASE installed. In one exchange on freebsd-net, Mr. Bill Paul requested information from other users (which I was glad to provide) that he could pool together in order to justify a demand for related drivers. He indicated that the response was great, but I've not since noticed any further report of results and was wondering if it had gotten anywhere (http://lists.freebsd.org/pipermail/freebsd-net/2003-July/001016.html) . I've posted my question on freebsd-net without gaining a response. Asus support is basically useless when it comes to BSD, and nVidia offers FreeBSD drivers only for graphic chipsets, although they _do_ offer a unified driver for Linux. I wonder if anyone has acheived any success with this unified driver, either in porting it or with Linux emulation. I'd love to get this box on the network and on the 'Net with FreeBSD, without adding another NIC interface, which would affect the other OSes I have multi-booting on this particular box (and which support this interface without trouble). Any updates on drivers, patches, or work-arounds would be most welcome. Thanks, ~John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ISPs blocking SMTP connections from dynamic IP address
Sorry for catching this late; found it while combing through a -questions digest email: A *typical* American way of thinking. Hey guys, you're not gods. The world is larger than just the US. I think it's fair to label this an unfair statement, let alone one inapropriate for this list, regardless of the context. If you have to talk $#!7 like this, please take it elsewhere. Thanks. ~John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: samba authentication problems
Hi Tim and lewiz~ Thanks for these ideas. They definitely helped, and have alleviated some of the problem. I can now do 'smbpasswd' without an error. But I'm still getting a non-LDAP auth. error; see below: = [gandalf] ~# smbpasswd -a linuxbox New SMB password: Retype new SMB password: Password changed for user linuxbox. [gandalf] ~# smbclient -L gandalf -U linuxbox added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0 can't determine netmask for 192.168.1.1 Password: session setup failed: NT_STATUS_LOGON_FAILURE = As you can see, something is wacky with the IP interface. 192.168.1.1 is the IP of my router/gateway (Linksys router) The FBSD box (gandalf) is 192.168.1.102. When I try to connect to the IP itself instead of the hostname, it times out: = [gandalf] ~# smbclient -L 192.18.1.102 -U linuxbox added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0 can't determine netmask for 192.168.1.1 ... delay ... timeout connecting to 192.18.1.102:139 Error connecting to 192.18.1.102 (Operation already in progress) Connection to 192.18.1.102 failed = Yet the box is (I think) properly connected to the Internet; in fact, I'm performing these commands from work via ssh. Here's what ifconfig says: = [gandalf] ~# ifconfig -a dc0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 inet6 fe80::800:aff:fe00:a00%dc0 prefixlen 64 scopeid 0x1 inet 192.168.1.102 netmask 0xff00 broadcast 192.168.1.255 ether 0a:00:0a:00:0a:00 media: Ethernet autoselect (100baseTX full-duplex) status: active lp0: flags=8810POINTOPOINT,SIMPLEX,MULTICAST mtu 1500 lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 16384 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 inet 127.0.0.1 netmask 0xff00 = Any ideas??? Thanks very much, ~John --- T Kellers [EMAIL PROTECTED] wrote: Did you do a make clean before the make re-install? If not, it's reading the original config. try: # make deinstall make clean make build install Just a thought, just in case Tim Kellers CPE/NJIT On Thursday 07 August 2003 02:11 pm, John DeStefano wrote: Lewis Thompson [EMAIL PROTECTED] wrote:On Thu, Aug 07, 2003 at 06:49:49AM -0700, John DeStefano wrote: AFAIK, I have not enabled ldap authentication. But how do I confirm? Well. If it's 2.2.8a then it's defined at compile time (i.e., you specify you want it, or it autodetects if openldap is installed). Otoh, if it's samba-devel (3.0.0b2) then you can modify the behaviour with the passdb backend smb.conf setting. I'm using 2.2.8a. I've now done a 'make install' after 'make deinstall' twice, with the same results both times, so I can only assume the installation is autodetecting openldap, as you suspected above. Chances are it's 2.2.8a and you'll need to recompile, unless you /want/ to use LDAP. Searched the handbook and FAQ, but nothing helpful there on ldap, let alone ldap and samba. Google produced a slew of unanswered mail archive questions. I don't care one way or the other whether to use ldap or not; I just want samba to work! Any recommendations? Best wishes, -lewiz. Thanks, ~John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports-supfile file problem
Lowell Gilbert [EMAIL PROTECTED] wrote: John DeStefano [EMAIL PROTECTED] writes: Thanks Lowell. Well, your suggestions made sense and at the very least have showed me that the host name in the file was wrong... I've now changed it to an actual cvsup mirror (cvsup3.FreeBSD.org), and also tested the file with and without adding tag=. after ports-all. But I'm still getting the same error (Release not specified for collection host=cvsup3.FreeBSD.org). Here's the file excluding commented-out lines: = host=cvsup3.FreeBSD.org There's your problem. This line shouldn't be there. It doesn't start with *default, so cvsup tries to interpret it (the whole thing) as a collection name. ...yup, that was part of the problem base=/usr prefix=/usr Remove these too. ...and that was the other part. Commenting-out these three lines in total sorted me. Thanks! *default host=cvsup3.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix *default compress ports-all tag=. == These are the times when I feel like doing rm -rf /!! :( It could be worse: user-friendly software gives *fewer* indications of the source of a problem... :-) Yes, but sometimes ignorance truly is bliss! Not in this case, of course, but sometimes! __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports-supfile file problem
--- Lowell Gilbert [EMAIL PROTECTED] wrote: John DeStefano [EMAIL PROTECTED] writes: I'm trying to update my ports tree to address some possible solutions posted here to another problem. The command I'm running is: # cvsup -g -L 2 /usr/local/etc/cvsup/sup/ports-supfile Here's the result: Parsing supfile /usr/local/etc/cvsup/sup/ports-supfile Release not specified for collection host=ftp3.FreeBSD.org And here's the relevent portion of the file: *default host=ftp3.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix I've also tried simply cvsup -g -L 2 ports-supfile and cvsup ports-supfile, which both return the same error. I assume this is in relation to the line *default release=cvs tag=., but I'm following the handbook and the sample file by leaving tag=.. I also tried changing . to the correct cvs tag (RELENG_5_0) and got the same results. What am I doing wrong? You need a collection name in the file. Meaning, ports-all, or un-commenting a selection of port types? I've got that. I included above only the portion of the file I thought was relevent to the 'release' problem I'm having. Thanks, John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports-supfile file problem
--- Lowell Gilbert [EMAIL PROTECTED] wrote: John DeStefano [EMAIL PROTECTED] writes: --- Lowell Gilbert [EMAIL PROTECTED] wrote: John DeStefano [EMAIL PROTECTED] writes: I'm trying to update my ports tree to address some possible solutions posted here to another problem. The command I'm running is: # cvsup -g -L 2 /usr/local/etc/cvsup/sup/ports-supfile Here's the result: Parsing supfile /usr/local/etc/cvsup/sup/ports-supfile Release not specified for collection host=ftp3.FreeBSD.org And here's the relevent portion of the file: *default host=ftp3.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix I've also tried simply cvsup -g -L 2 ports-supfile and cvsup ports-supfile, which both return the same error. I assume this is in relation to the line *default release=cvs tag=., but I'm following the handbook and the sample file by leaving tag=.. I also tried changing . to the correct cvs tag (RELENG_5_0) and got the same results. What am I doing wrong? You need a collection name in the file. Meaning, ports-all, or un-commenting a selection of port types? I've got that. I included above only the portion of the file I thought was relevent to the 'release' problem I'm having. Meaning either one; sorry, I didn't know the bits that you didn't put in your message. Are you sure that ftp3.freebsd.org is a full cvsup server? That DNS name doesn't guarantee cvsup service, although many of the servers handle both in parallel. As far as it goes, your supfile looks okay. In case there's a weird parsing error, maybe you could add a tag=. to the line with the collection on it, and see if it gives you any other hints. With a raised verbosity level, even. Failing that, perhaps you should post your *whole* supfile, and/or contact the cvsup author for help. Thanks Lowell. Well, your suggestions made sense and at the very least have showed me that the host name in the file was wrong... I've now changed it to an actual cvsup mirror (cvsup3.FreeBSD.org), and also tested the file with and without adding tag=. after ports-all. But I'm still getting the same error (Release not specified for collection host=cvsup3.FreeBSD.org). Here's the file excluding commented-out lines: = host=cvsup3.FreeBSD.org base=/usr prefix=/usr *default host=cvsup3.FreeBSD.org *default base=/usr *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix *default compress ports-all tag=. == These are the times when I feel like doing rm -rf /!! :( Thanks, ~John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
samba authentication problems
I'm trying to get my FBSD and XP boxes speaking the same samba language. I compiled samba with only make install and no options. I've configured my smb.conf but when I try to add a user with smbpasswd I'm getting ldap errors. # smbpasswd -a userName New SMB password: Retype new SMB password: LDAPS option set...! fetch_ldap_pw: no ldap secret retrieved! ldap_connect_system: Failed to retrieve password for from secrets.tdb LDAPS option set...! fetch_ldap_pw: no ldap secret retrieved! ldap_connect_system: Failed to retrieve password for from secrets.tdb Failed to add entry for user linuxbox. Failed to modify password entry for user linuxbox = AFAIK, I have not enabled ldap authentication. But how do I confirm? Also, if it is enabled, should I disable? Does this seem to be a smaba-only aspect, or does it affect my entire FreeBSD environment? Thanks, ~John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: samba authentication problems
Lewis Thompson [EMAIL PROTECTED] wrote:On Thu, Aug 07, 2003 at 06:49:49AM -0700, John DeStefano wrote: AFAIK, I have not enabled ldap authentication. But how do I confirm? Well. If it's 2.2.8a then it's defined at compile time (i.e., you specify you want it, or it autodetects if openldap is installed). Otoh, if it's samba-devel (3.0.0b2) then you can modify the behaviour with the passdb backend smb.conf setting. I'm using 2.2.8a. I've now done a 'make install' after 'make deinstall' twice, with the same results both times, so I can only assume the installation is autodetecting openldap, as you suspected above. Chances are it's 2.2.8a and you'll need to recompile, unless you /want/ to use LDAP. Searched the handbook and FAQ, but nothing helpful there on ldap, let alone ldap and samba. Google produced a slew of unanswered mail archive questions. I don't care one way or the other whether to use ldap or not; I just want samba to work! Any recommendations? Best wishes, -lewiz. Thanks, ~John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dual booting FreeBSD and Windows XP - PROBLEM
James A. Coulter [EMAIL PROTECTED] wrote: - Original Message - From: John DeStefano To: Sent: Thursday, July 31, 2003 11:17 AM Subject: Re: Dual booting FreeBSD and Windows XP Jud wrote: On Wed, 30 Jul 2003 17:55:25 -0400 (EDT), Jerry McAllister said: Hello, I have a computer with Windows XP installed on it. I want to dual boot it with FreeBSD. My question is: does FreeBSD's boot loader support loading XP? Because I've heard XP doesn't like it's MBR being overwritten. Is this true? I believe both statements are true. Anyway, you can boot XP with FreeBSD's MBR and that's the important one. jerry I see most of the usual suspects have weighed in - may as well complete the list. :-) Jerry's right and so's Adam. I happen to be using GAG right now, because it's pretty automagic and I have a slightly complicated setup. I'd recommend that even if you decide to use the FreeBSD bootloader or GAG that you also have a look at the online FAQ and Google this list. These resources as well as the man pages and the online Handbook will stand you in good stead as you continue with FreeBSD. Jud And yet another vote for GAG, this time from a newbie! ;) I have a FreeBSD/Windows 98/Windows XP system, and although I once had it booting from a FBSD loader, GAG was so easy to install and configure that I've switched over. It works very well, and it's very easy to use. Just copy the program to a floppy and boot with it. Use the setup menu to add your OS selections, add a descriptive name for each (and even a different icon to distinguish them!), install your choices to the hard drive from the menu, and off you go. ~John GAG worked great on my Dell Inspirion 2650 FreeBSD - XP/setup, but when I installed it on an old Gateway with Win98 - FreeBSD, it did something funky. I get the GAG boot screen and regardless of whether I choose Win98 or FreeBSD the system states it is starting Windows 98 and then, after attempting to access the floppy drive, asks Type the name of the Command Interpreter (e.g., C:\WINDOWS\COMMAND.COM) and finishes with the A prompt. Entering C:\WINDOWS\COMMAND.COM is not recoginized by the system (it repeats the request for the command interpreter) and inserting a floppy with COMMAND.COM results in the system freezing. I tried booting from floppy, worked fine, but system will not recoginize the c: drive. Uninstalling GAG only removes the GAG start-up screen, system still asks for the command interpreter. Read the GAG instructions and FAQ - no luck. Anyone had a problem like this? Any suggestions on how to restore my hard drive without losing any data? Thanks, Jim I'm no guru, but this could be as simple as re-installing GAG, removing all file systems from the menu, and starting from scratch to re-add your OS selections (which will take all of a minute's time). This worked for me once when I had a problem booting; something had changed on the disk and GAG just needed to adjust to the change. Give it a try. Failing that... I don't know whether 98 has a 'repair install' option like XP does, but if so, that might be a solution. Also might work to let BSD write its boot menu to the MBR. Maybe someone else can chime in with more info. ~John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dual booting FreeBSD and Windows XP
Jud [EMAIL PROTECTED] wrote: On Wed, 30 Jul 2003 17:55:25 -0400 (EDT), Jerry McAllister [EMAIL PROTECTED] said: Hello, I have a computer with Windows XP installed on it. I want to dual boot it with FreeBSD. My question is: does FreeBSD's boot loader support loading XP? Because I've heard XP doesn't like it's MBR being overwritten. Is this true? I believe both statements are true. Anyway, you can boot XP with FreeBSD's MBR and that's the important one. jerry I see most of the usual suspects have weighed in - may as well complete the list. :-) Jerry's right and so's Adam. I happen to be using GAG right now, because it's pretty automagic and I have a slightly complicated setup. I'd recommend that even if you decide to use the FreeBSD bootloader or GAG that you also have a look at the online FAQ and Google this list. These resources as well as the man pages and the online Handbook will stand you in good stead as you continue with FreeBSD. Jud And yet another vote for GAG, this time from a newbie! ;) I have a FreeBSD/Windows 98/Windows XP system, and although I once had it booting from a FBSD loader, GAG was so easy to install and configure that I've switched over. It works very well, and it's very easy to use. Just copy the program to a floppy and boot with it. Use the setup menu to add your OS selections, add a descriptive name for each (and even a different icon to distinguish them!), install your choices to the hard drive from the menu, and off you go. ~John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Crash after power failure
I have a FreeBSD 5.0-RELEASE machine that was running 24/7 for about a month, hosting my web server. Unfortunately, yesterday our area experiences a series of power outages, one apparently long enough to have drained my UPS, and the BSD machine crashed as a result. When trying to bring the machine back up, it complained about slices on the primary slave hard drive (which the BIOS detected just fine) being unavailable or not existing. I booted and logged in as root using the default shell, and 'mount -a' and 'fsck' both complained in the same manner about the drive. I then rebooted and was presented with the same problems (prompted for default shell, same hard drive unavailable). What do I need to do in order to recover from the crash? Thanks, John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
No network connection 5.1-RELEASE/Chaintech MB
I'm tri-booting 98/XP/BSD with a Chaintech Zenith 7NJS motherboard (btw: the GAG bootloader works great!). 98 and XP detect my on-board NIC without much effort, but FreeBSD 5.1-RELEASE doesn't seem to like it. It keeps wanting to use my firewire card as a NIC. The BIOS has been updated to the latest version. 'dmesg' shows on entry for pci0 for a network device (among other devices) that comes up as 'no driver'. The chipset is NVIDIA nForce2 Ultra 400+ MCP-T, and Chaintech calls the NIC interface On-board LAN controller: Fast Ethernet Controller with MII Interface; Support 10/100Mb Fast Ethernet with External PHY. nVIDIA has a link to download a Linux driver for the entire chipset, but I'm not sure this would help, as the rest of the board seems to be supported by the OS, and, of course, because BSD is not Linux. The FBSD Handbook's Supported Hardware page does not list out specific motherboards, saying only that Motherboards using the ISA, VLB, EISA, AGP, and PCI expansion busses are well-supported. It does list specific LAN interfaces that are supported, but I can't get the specifics on my on-board LAN interface from my motherboard packaging or manual, or the Chaintech website. Thanks, John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: configure ftpd port range
Lowell Gilbert [EMAIL PROTECTED] wrote: Thanks for your response, Lowell, as always. John DeStefano writes: Due to ISP restrictions, I must change the default port on which ftpd runs in order to enable ftp access to and from my machine. That would violate the FTP spec, and isn't supported (IIRC) by the standard FreeBSD ftpd. Obviously, I'm not looking to 'violate' any specs, or to have any RFCs changed in order to accomodate my personal server. I'm just looking for a viable solution to a problem that I'm sure others have come across. I had to do the same for my httpd server, but that information was a bit more accessible. Reading material has been sparse, but I've read that adding a port number/range to the ftpd entry /etc/services and /etc/inetd.conf might do the trick. Is this an acceptible way of going about changing the ftp ports? It won't work. Why not? If you were to specify a new port number both in 'services' and 'inetd.conf', and the proper firewall holes were punched, why would it fail? If this box is sitting behind a hardware firewall (Linksys router), what range would you recommend I open in the firewall for a maximum of 5 ftp users? Same question for security on the FBSD box itself? This is going to be a royal pain anyway. The FTP protocol is tricky to get through firewalls, and *very* tricky to get through NAT. If you can use, e.g., scp(1) to move your files around, you'll be in much better shape -- FTP passes cleartext passwords. However, if you're really stuck on FTP (and I am not encouraging you to violate your contract with your ISP, but just giving the advice for informational purposes), there are other FTP daemons that can change the base ports. You'll need to punch holes for the data ports, though. Strangely enough, it sounds like moving away from the stock ftpd, and using a 3PP daemon to configure the new ports, is the way to go. Any suggestions on ports and methods? Quick sidebar: DNS is setting my domainname to my ISP's domain, not my local domain, which is causing some problems. man domainname tells me The super-user can set the domain name by supplying an argument, which I assume means domainname . But this setting does not stick on reboot. Is there an easy fix? According to the FreeBSD Handbook, the FreeBSD FAQ, and the rc.conf(5) manual, setting hostname in /etc/rc.conf is what you're looking for. The handbook merely specifies to use the format: hostname=foo.example.com in rc.conf; it doesn't say what to do when the system automatically changes the hostname on you on boot/reboot, presumably due to DHCP communications. I could be mistaken, but I don't see this topic in the FAQ (which currently covers up to 4.X) at all. 'man' says: If dhclient(8) is used to set the hostname via DHCP, this variable should be set to an empty string. However, I believe that's what's happening now and may be the reason why 'hostname' is getting reset incorrectly; see below: # cat /etc/rc.conf |grep hostname #hostname=gandalf.istari hostname=gandalf hostname=gandalf.Optonline.net My manual entry has been commented out, and new entries made. How would one keep this from getting changed automatically? Thanks, John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
re: redirect_port
Derrick Ryalls [EMAIL PROTECTED] wrote: Hi there, =20 Using nat on my gateway to forward traffic on many ports the same=20 internal machine, what is the correct syntax? =20 redirect_port x.x.x.x zz zz redirect_port x.x.x.x yy yy redirect_port x x x x nn nn =20 Copied from my natd.conf redirect_port tcp 192.168.0.20:22 5520 redirect_port udp 192.168.0.20:22 5520 The 5520 is the outside port number This could be the solution I was seeking... If I have opened, say, port 5 for incoming ftp traffic, would it be as simple as: redirect_port tcp 192.168.0.20:21 5 redirect_port udp 192.168.0.20:21 5 If so, what do I do allow outgoing ftp traffic/packets? Thanks! ~John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: configure ftpd port range
Lowell Gilbert [EMAIL PROTECTED] wrote: Thanks for your response, Lowell, as always. John DeStefano writes: Due to ISP restrictions, I must change the default port on which ftpd runs in order to enable ftp access to and from my machine. That would violate the FTP spec, and isn't supported (IIRC) by the standard FreeBSD ftpd. Obviously, I'm not looking to 'violate' any specs, or to have any RFCs changed in order to accomodate my personal server. I'm just looking for a viable solution to a problem that I'm sure others have come across. I had to do the same for my httpd server, but that information was a bit more accessible. Reading material has been sparse, but I've read that adding a port number/range to the ftpd entry /etc/services and /etc/inetd.conf might do the trick. Is this an acceptible way of going about changing the ftp ports? It won't work. Why not? If you were to specify a new port number both in 'services' and 'inetd.conf', and the proper firewall holes were punched, why would it fail? If this box is sitting behind a hardware firewall (Linksys router), what range would you recommend I open in the firewall for a maximum of 5 ftp users? Same question for security on the FBSD box itself? This is going to be a royal pain anyway. The FTP protocol is tricky to get through firewalls, and *very* tricky to get through NAT. If you can use, e.g., scp(1) to move your files around, you'll be in much better shape -- FTP passes cleartext passwords. However, if you're really stuck on FTP (and I am not encouraging you to violate your contract with your ISP, but just giving the advice for informational purposes), there are other FTP daemons that can change the base ports. You'll need to punch holes for the data ports, though. Strangely enough, it sounds like moving away from the stock ftpd, and using a 3PP daemon to configure the new ports, is the way to go. Any suggestions on ports and methods? Quick sidebar: DNS is setting my domainname to my ISP's domain, not my local domain, which is causing some problems. man domainname tells me The super-user can set the domain name by supplying an argument, which I assume means domainname . But this setting does not stick on reboot. Is there an easy fix? According to the FreeBSD Handbook, the FreeBSD FAQ, and the rc.conf(5) manual, setting hostname in /etc/rc.conf is what you're looking for. The handbook merely specifies to use the format: hostname=foo.example.com in rc.conf; it doesn't say what to do when the system automatically changes the hostname on you on boot/reboot, presumably due to DHCP communications. I could be mistaken, but I don't see this topic in the FAQ (which currently covers up to 4.X) at all. 'man' says: If dhclient(8) is used to set the hostname via DHCP, this variable should be set to an empty string. However, I believe that's what's happening now and may be the reason why 'hostname' is getting reset incorrectly; see below: # cat /etc/rc.conf |grep hostname #hostname=gandalf.istari hostname=gandalf hostname=gandalf.Optonline.net My manual entry has been commented out, and new entries made. How would one keep this from getting changed automatically? Thanks, John - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: configure ftpd port range
--- Lowell Gilbert [EMAIL PROTECTED] wrote: John DeStefano [EMAIL PROTECTED] writes: Due to ISP restrictions, I must change the default port on which ftpd runs in order to enable ftp access to and from my machine. That would violate the FTP spec, and isn't supported (IIRC) by the standard FreeBSD ftpd. I had to do the same for my httpd server, but that information was a bit more accessible. Reading material has been sparse, but I've read that adding a port number/range to the ftpd entry /etc/services and /etc/inetd.conf might do the trick. Is this an acceptible way of going about changing the ftp ports? It won't work. If this box is sitting behind a hardware firewall (Linksys router), what range would you recommend I open in the firewall for a maximum of 5 ftp users? Same question for security on the FBSD box itself? This is going to be a royal pain anyway. The FTP protocol is tricky to get through firewalls, and *very* tricky to get through NAT. If you can use, e.g., scp(1) to move your files around, you'll be in much better shape -- FTP passes cleartext passwords. However, if you're really stuck on FTP (and I am not encouraging you to violate your contract with your ISP, but just giving the advice for informational purposes), there are other FTP daemons that can change the base ports. You'll need to punch holes for the data ports, though. SO, strangely enough, it sounds like moving away from the stock ftpd, and using a 3PP daemon to configure the new ports, is the way to go. Any suggestions? Quick sidebar: DNS is setting my domainname to my ISP's domain, not my local domain, which is causing some problems. man domainname tells me The super-user can set the domain name by supplying an argument, which I assume means domainname domain. But this setting does not stick on reboot. Is there an easy fix? According to the FreeBSD Handbook, the FreeBSD FAQ, and the rc.conf(5) manual, setting hostname in /etc/rc.conf is what you're looking for. Yes, thanks for reminding me. I'd seen that solution and implemented it. Unfortunately, something has changed my setting: # cat /etc/rc.conf |grep hostname #hostname=gandalf.istari hostname=gandalf hostname=gandalf.Optonline.net How to keep this from getting changed automatically? Thanks, John __ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
configure ftpd port range
Due to ISP restrictions, I must change the default port on which ftpd runs in order to enable ftp access to and from my machine. I had to do the same for my httpd server, but that information was a bit more accessible. Reading material has been sparse, but I've read that adding a port number/range to the ftpd entry /etc/services and /etc/inetd.conf might do the trick. Is this an acceptible way of going about changing the ftp ports? If this box is sitting behind a hardware firewall (Linksys router), what range would you recommend I open in the firewall for a maximum of 5 ftp users? Same question for security on the FBSD box itself? Quick sidebar: DNS is setting my domainname to my ISP's domain, not my local domain, which is causing some problems. man domainname tells me The super-user can set the domain name by supplying an argument, which I assume means domainname domain. But this setting does not stick on reboot. Is there an easy fix? Thanks and regards, John $ uname -a FreeBSD gandalf.Optonline.net 5.0-RELEASE FreeBSD 5.0-RELEASE #0: Thu Jan 16 22:16:53 GMT 2003 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
no /usr/src/etc/
I was trying a 'mergemaster' as seen here but kept getting the following error: cp: /usr/src/etc/master.passwd: No such file or directory *** FATAL ERROR: Cannot copy files to the temproot environment I verified that this file indeed does not exist, then realized something else when trying to 'cd' to /usr/src/etc/: the entire /usr/src/etc/ directory doesn't exist! The only subdirectory of /usr/src/ is sys/conf/ . Have I broken something??? 'man' tells me all about 'master.passwd' but not how to regenerate it if it's missing (including encrypted info). Is the proper method as simple as the following: # cp /etc/master.passwd /usr/src/etc/master.passwd ...or should I instead do this recursively: # cp /etc/ /usr/src/etc/ Thanks, ~John # uname -a FreeBSD gandalf.istari 5.0-RELEASE FreeBSD 5.0-RELEASE #0: Thu Jan 16 22:16:53 GMT 2003 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mask IP:port with Domain Name
Chuck Swiger wrote: There's no way to avoid the port number in the URL, then. Consider switching to a provider that lets you host local services... Does that then nullify your previous recommendations? Can you recommend any such providers? By hosting local services, do you mean DNS? Thanks. ~John - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mask IP:port with Domain Name
Han Hwei Woo [EMAIL PROTECTED] wrote: I believe the ServerName directive in Apache is what you're looking for; it's what people's browser address field will show once they connect to your site. Thanks, but as I mentioned when Chuck brought this up yesterday, my ServerName directive is set properly in the format: ServerName www.mydomain.com in httpd.conf. This does not seem to make any difference at all. As far as your security concerns go, you can not run a website without exposing the IP address of the webserver machine, with or without masking. If a client machine didn't know your IP address, it would not know where to retrieve your web pages from. Agreed (though not entirely true; you can use a web redirect service to successfully cloak a true IP address; I've done this successfully), but that's not really what I'm after. I just don't want my IP address and port number combination glaring in a web browser's address bar when a user visits my web site. I realize that if someone really wanted to resolve my IP, they could, but I'm also thinking of people who don't know what an IP address is, and are asking me questions like What happened to the web site? I typed in the words you told me to, and it turned into a bunch of numbers! - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Mask IP:port with Domain Name
In order to solve some IP/port resolution issues, I registered a domain at godaddy.com on the advice of a few people on this list. Seems like a nice interface, decent service, and a great price. My question is on what I assume to be IP masking. When someone punches in my domain name to reach the web site running on FBSD, their browser's address field (well, actually it's the DNS doing it) instantly translates the domain name into my actual IP address and port number. This is alarming for security reasons, as well as relatives who know nothing about technology asking inane questions about the disappearing web site name. I have searched the handbook, archives, even apache docs, but I can't find any information regarding how to get this to happen on my FBSD (assuming I'm searching on the correct terms?). Of course, godaddy.com offers a masking service for an additional fee, but then what was once a bargain wouldn't be much of a bargain any longer. Thanks, John - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mask IP:port with Domain Name
Chuck Swiger [EMAIL PROTECTED] wrote: [ ...hitting return every 76 characters would be nice... ] Interesting... I just double-checked my Yahoo! outbound message settings, and confirmed message width is fixed at 72 chars. Never had a complaint before. If you've any ideas PLMK. Regardless, I apologize for the on-screen abuse. Um. I consulted my magic eight ball, and it translated your question as: Was it that obscure? If so, sorry again. ] I'm trying to host a web site on a FreeBSD machine. My registrar, godaddy, ] offers a redirect service which sends requests from www.mydomain.com to your ] FreeBSD machine, which possibly has a dynamic IP? Yes. I have registered a domain name at godaddy.com, and linked it to the dynamic IP address that my ISP has assigned to me. On my internal network, behind a router, I have a FBSD machine, on which I'm running apache. In order to make all this work with a non-well-known web server port, I had to use godaddy.com's Domain forwarding feature to point to the IP:port combination. If so, have you set the hostname of the server via this section in your httpd.conf file: ServerName www.mydomain.com Yes; my ServerName variable is set in exactly this fashion. Also, are you running apache on port 80, or is that being blocked by your ISP? My ISP blocks and monitors well-known server ports such as 80 and 21. I'm running well out of the well-known range at 10101. -Chuck Thanks. ~John - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: network settings auto-config
Thanks Lowell; but a solution be to change something in /etc/rc.conf instead? Pete pointed me toward /etc/rc.conf, which contains the following line: ifconfig_dc0=DHCP Seeing this made me remember something: someone once told me that commenting this line out would keep DHCP from running. While that is somewhat true, it also killed my whole NIC interface! So the solution must be not to comment it out, but to change the variable value DHCP to something else. I've been searching for proper values but haven't seen them anywhere yet, but I did see the following in man rc.conf: pccard_ifconfig (str) List of arguments to be passed to ifconfig(8) at boot time or on insertion of the card (e.g. ``inet 192.168.1.1 netmask 255.255.255.0'' for a fixed address or ``DHCP'' for a DHCP client). ... It is possible to bring up an interface with DHCP by setting the ifconfig_interface variable to ``DHCP''. For instance, to initialize the ed0 device via DHCP, it is possible to use something like: ifconfig_ed0=DHCP So the line in my config file matches the man page, but the man page doesn't say what other variables are available that won't break the interface. Any ideas? Thanks, ~John Lowell Gilbert [EMAIL PROTECTED] wrote: John DeStefano writes: Is there another file/setting that's being consulted somewhere at boot time? Gary mentioned it may be due to a smbd, netbios-ssn, or DCHP setting, but he's unfamiliar with those services. Add some overrides to the dhclient.conf(5) file to put in your preferred DNS server. I use the prepend modifier, but you might want supersede instead. - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mounting Win with spaces via samba in fstab
I'm afraid you may be right, Matt. I found the following in man fstab 5: If a program needs the character special file name, the pro- gram must create it by appending a ``r'' after the last ``/'' in the spe- cial file name. ...but that didn't seem to help. The mount_smbfs command seems to work fine with the \ sequence, but this isn't the case with fstab. Perhaps if I were instead to include mount_smbfs commands in a script to be run at boot time: #!/bin/sh mount_smbfs //[EMAIL PROTECTED]/Win\ Partition /mountpoint Is this the proper syntax for a script? And if so, where would I put such a file? Thank you, ~John Matthew Emmerton [EMAIL PROTECTED] wrote: I'm trying to mount a remote Windows directory, which happens to have a space in its name; mount -a returns the following error: fstab: /etc/fstab:14: Inappropriate file type or format I have tried both of the following formats: //[EMAIL PROTECTED]/Win\ Partition /mountpoint smbfs rw 0 0 //[EMAIL PROTECTED]/Win Partition /mountpoint smbfs rw 0 0 I pulled this format directly from man mount_smbfs 8: //[EMAIL PROTECTED]/public /smb/public smbfs rw,noauto 0 0 I searched the archives, and it seems this question had been asked once before, but no conclusion was reached: http://groups.google.com/groups?hl=enlr=lang_enie=UTF-8threadm=1042037002.72844.6.camel%40d80h149.public.uconn.edu.lucky.freebsd.questionsrnum=1prev=/groups%3Fq%3D%2522fstab:%2B/etc/fstab%2522%2B%2522Inappropriate%2Bfile%2Btype%2Bor%2Bformat%2522%2Bsmbfs%26hl%3Den%26lr%3Dlang_en%26ie%3DUTF-8%26selm%3D1042037002.72844.6.camel%2540d80h149.public.uconn.edu.lucky.freebsd.questions%26rnum%3D1 I think the problem is that the fstab(5) file format treats spaces as field delimiters, and the routines used to parse fstab (/usr/src/lib/libc/gen/fstab.c, fstabscan() in particular) do not know how to handle escaped spaces nor quoted fields. -- Matt Emmerton - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
network settings auto-config
As Gary suggested below, I have commented out, clear as day, # enable dns in my /etc/ppp/ppp.conf file, but my network settings keep getting hosed each time I reboot! My domain keeps gettting erased from my /etc/resolv.conf, and my /var/log/messages is now being filled with series of messages like this:Jun 11 08:19:33 gandalf inetd[580]: netbios-ssn/tcp: bind: Address already in use Jun 11 08:23:23 gandalf dhclient: New Network Number: 192.168.1.0 Jun 11 08:23:23 gandalf dhclient: New Broadcast Address: 192.168.1.255 Is there another file/setting that's being consulted somewhere at boot time? Gary mentioned it may be due to a smbd, netbios-ssn, or DCHP setting, but he's unfamiliar with those services. Thanks. ~John Gary Jennejohn [EMAIL PROTECTED] wrote: John DeStefano writes: I check the file, this line disappears. I noticed also that something seems to be auto-resolving my ISP's DNS servers and adding their entries to resolv.conf, which would be fine if it didn't keep erasing my entries! If you're using ppp and have this: `` enable dns'' in your ppp.conf then ppp will overwrite /etc/resolv.conf every time you connect to your ISP. Don't use that option. - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Mount command...again
::bump:: Has anyone got a suggestion for this? I've also tried to do this in the same manner (a la Linux) and been equally as frustrated. man mount describes lots of options for the command, but it does not go into all of the -o options, which are (apparently) what we're looking for here. Thanks. Jon Reynolds wrote: Ok, here is what I am trying to do. I am trying to mount a samba served directory on a remote system onto my local system. Both servers are running freebsd4.8. I want to mount the remote directory with the priveliges of the remote owner of the directory onto my local system. In Linux I can do it this way: mount -t smbfs -o username=,password=, uid=jonr,gid=jonr //sambaserver/ /path/to/mount/point This will send my username and password then mount the share with the remote users uid and gid. Is there a way to do this on FreeBSD? I have been reading the man pages for mount and mount_smbfs and can't find out how to do this. -- Jon Reynolds - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dot.bashrc, where is it?
Chuck Swiger [EMAIL PROTECTED] wrote: PPS: Anyone read this far? More? :-) Sure! Keep 'em coming! ;) ~John - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: how to stop resolv.conf from being updated
I am using DHCP on a cable modem and my providers nameserver really sucks but changing my resolv.conf repairs the lookups for a little while then it gets set back to them upon bootup. how do i make it stay the way i set it. Maybe this info from man dhclient.conf will be helpful? The do-forward-updates statement do-forward-updates [ flag ] ; If you want to do DNS updates in the DHCP client script (see dhclient- script(8)) rather than having the DHCP client do the update directly (for example, if you want to use SIG(0) authentication, which is not supported directly by the DHCP client, you can instruct the client not to do the update using the do-forward-updates statement. Flag should be true if you want the DHCP client to do the update, and false if you don't want the DHCP client to do the update.By default, the DHCP client will do the DNS update. ~John - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
rotating motd
A trivial question, but a question nonetheless! My FreeBSD /etc/motd is a static and rather boring file. I recall that when I used to login to my Slackware machine, it spruced things up a bit by offering some sort of rotating motd, which would spit out a random quote or joke instead of the same ol' static message. Is there a way to simulate this in FreeBSD? Unfortunately, 'man motd' does little more than state the obvious, and describe a method by which to surpress the motd altogether. This, of course, occurs to me as I ssh into my home machine from work! Thanks, ~John - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Apache error
I had some trouble getting Apache2 to run properly on my machine, so I uninstalled the port and started over with a new port installation. It seemed to work fine out of the box with very few changes to the httpd.conf file. I'm able to 'lynx http://localhost' with no trouble, and last I checked I was able to view the page from another browser on my local LAN using my external IP address after 'poking a hole' in my router firewall to allow traffic for port 80 through to the server. However, I've run into a bit of a problem now: I haven't changed anything since yesterday, and I can't browse the site from an external computer (at work). Also, I get the following, strange error when checking the status of the daemon: # apachectl --status (48)Address already in use: make_sock: could not bind to address [::]:80 no listening sockets available, shutting down Unable to open logs Despite all this, the server is still running (or running again?) and I can still 'lynx' to it when I ssh to my server, even from work; I just can't access it via the Web. The server thread looks like it's okay, even though it's somehow now serving bothIP4 and IP6; last night it showed only 'tcp6' and I haven't changed any config settings: # netstat -nat | grep 80 tcp46 0 0 *.80 *.*LISTEN Do I need to open a hole somewhere I haven't yet? Also, I'll eventually need to change port 80 to another, unused port, as my ISP does not allow web hosting. I once tried to fix this by changing the port number in two places in httpd.conf: 'Listen' and 'ServerName'. This seemed to change the port of the thread, as 'netstat' showed the new port, but nothing else worked. Where else must the port number be changed? - Do you Yahoo!? Free online calendar with sync to Outlook(TM). ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]