buildworld is broken on the system without 'crypto' distribution

2002-07-09 Thread Andrew L. Neporada

It seems that libcrypto.so.2 is requied to complete buildworld.

I got following errors on 4.6-RELEASE system with only 'bin' distribution 
installed while trying to build recent -stable (it builds ok on another 
box with 'crypto' installed):

=== secure/usr.bin/scp
cc -O -pipe  -I/data/FreeBSD/src/secure/usr.bin/scp/../../../crypto/openssh -DNO_IDEA  
  -c /data/FreeBSD/src/secure/usr.bin/scp/../../../crypto/openssh/scp.c
gzip -cn /data/FreeBSD/src/secure/usr.bin/scp/../../../crypto/openssh/scp.1  scp.1.gz
cc -O -pipe  -I/data/FreeBSD/src/secure/usr.bin/scp/../../../crypto/openssh -DNO_IDEA  
   -o scp scp.o  -lssh
/usr/obj/data/FreeBSD/src/i386/usr/libexec/elf/ld: warning: libcrypto.so.2, needed by 
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so, not found (try using -rpath or 
-rpath-link)
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_DigestInit'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `EVP_enc_null'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_CIPHER_CTX_init'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_rand'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`RSA_generate_key'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`PEM_read_PrivateKey'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_DigestFinal'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_bin2bn'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_CTX_new'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_value_one'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_bn2bin'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `DSA_do_sign'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_sub'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `OBJ_nid2sn'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`PEM_write_DSAPrivateKey'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `HMAC_Final'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `EVP_md5'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `EVP_rc4'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`DSA_generate_key'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `RSA_sign'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`DH_generate_key'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `DH_size'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_hex2bn'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_num_bits'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `DSA_new'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `DH_new'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `SSLeay'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`DH_compute_key'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `EVP_sha1'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`RSA_private_decrypt'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `DSA_free'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_CipherInit'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `RSA_new'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `CRYPTO_free'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_bn2dec'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_ripemd160'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`DSA_do_verify'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_PKEY_get1_DSA'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `MD5_Init'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`EVP_CIPHER_CTX_cleanup'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `RAND_status'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_dec2bn'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`RSA_public_encrypt'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`ERR_error_string'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `MD5_Final'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to `BN_mod'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: undefined reference to 
`BN_is_bit_set'
/usr/obj/data/FreeBSD/src/i386/usr/lib/libssh.so: 

Plain text posting

2002-07-09 Thread vizion communication

Hi

I have noticed an increased tendency of a few people to post
to plain text lists using attachments.

Quite apart from minor irritations such as increased
bandwidth and the necessity to open attachments some people
seem to have the mistaken impression that the practise of
sending messages via a PGP signed attachments somehow adds
to general recipient security rather than diminish it by
encouraging careless attachment usage.

It may be important to remember the general principle that
the customary opening of attachments is inherently more
risky than a plain text message for the recipent even when
PGP signed. The less secure the operating system of the
immediate recipent the more risky the practice. Viruses,
which may not be able to infect a primary recipient often
reach their targets by being forwared from a primary to a
secondary recipent on a more vulnerable platform.

PGP only tells us that the message has not changed in
transit. A malformed/abusive/virus laden attachment is still
malformed/abusive/virus laden even if PGP signed.

Can we please stick to plain text UNLESS the material cannot
reasonably be transmitted without being in attachment form.
There is no benefit to be gained from attachments otherwise.

Thanks

David


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: Hang problem with spamass-milter...

2002-07-09 Thread Joe Talbott

On Mon, Jul 08, 2002 at 05:20:04PM -0500, Dan Nelson wrote:
 In the last episode (Jul 08), Joe Talbott said:
  
  To repeat:
  
  for i in `jot 10 1`; do
  echo test $i | mail -s test $i [EMAIL PROTECTED]
  done
 
 Works for me.  I changed `jot 10 1` to `jot 100 1` and after some
 chugging, got all 100 messages.  With patch 349 applied, the milter
 uses a select() loop in the part of the code where it needs to both
 read and write from spamc, so I can't see where it would deadlock.

After applying the updated 349 to a fresh CVS update I received all 10 
of my test messages.  I have always gotten the messages.  Before my 
latest build the headers were not being added.  After the update
all 10 messages were correctly processed.  However I have 4 spamc processes
hanging around and 4 spamd processes hanging around.  I sent you this 
in a private email along with -d2 level logs.

 It's possible you're seeing some sort of threading bug on -stable;  I
 have only tested on -current.

That's possible.  I haven't had much time to dig into this.

  
  I also applied patch 372 which didn't solve the problem. 
 
 372 just sets all the sockets to non-blocking, which will cause
 buzz-loops, and adds some other bugs that make it not 8-bit clean for
 incoming messages.

So you're saying I maybe should remove this patch from my builds?

Thanks for your help,
Joe

-- 
Laziness is nothing more than the habit of resting before you get tired.
   Jules Renard

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: system immutable files make mergemaster look funny

2002-07-09 Thread Eugene Grosbein

On Tue, Jul 09, 2002 at 02:15:00PM +0200, Erik Trulsson wrote:

  Do you wish to delete what is left of /var/tmp/temproot? [no] yes
  rm: /var/tmp/temproot/var/empty: Operation not permitted
  rm: /var/tmp/temproot/var: Directory not empty
  rm: /var/tmp/temproot: Directory not empty
   *** /var/tmp/temproot has been deleted
  Obviously, last sentence isn't true :-)
 Obviously??  It is actually true: /var/tmp/temproot actually is deleted
 afterwards (at least for a recent -stable).

Hmm, you are right. Now using fresh -STABLE I see that it cleans all right.

Eugene

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



intel etherexpress pro and fxp status??

2002-07-09 Thread Ken Gunderson

Greets All:

during the 4.6rc era i recall there were issues with intel ether
pro and fxp drivers, particularly with smp boxes.  Searching
pr's i note there are numerous open issues as well.  in the past
the fbsd nic mantra has always been intel ether express.  Is
such still the case with the 82559 based nics (e.g. pila 8460), 
or should I be looking elsewhere? Note that one of my boxes is a
dual pii 450 on a bx board.


Please cc, as I am no longer subscribed to the list (thanks to
the phb's) 


-- 

Regards,

Ken Gunderson (non-HP)
HP-UX Systems Administrator
HP NAOD Front-line System Management
Boise Server Support Team


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: No root crontab in 4.6-RELEASE?

2002-07-09 Thread Thomas Seck

* Jason Andresen ([EMAIL PROTECTED]):

[/etc/crontab vs. crontab -u root]

 ??? More visible?  New people to the system can never find that file.  
 Heck, I'm always forgetting where it is.  It wouldn't be so bad if
 it just weren't so inconsistent.

See cron(8), second paragraph.

-- 
Thomas Seck

This message was sent to a mailinglist I am subscribed to. Please send
your replies to the list - and do *not* CC me. Thank you.

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: No root crontab in 4.6-RELEASE?

2002-07-09 Thread Matthew Dillon


:* Jason Andresen ([EMAIL PROTECTED]):
:
:[/etc/crontab vs. crontab -u root]
:
: ??? More visible?  New people to the system can never find that file.  
: Heck, I'm always forgetting where it is.  It wouldn't be so bad if
: it just weren't so inconsistent.
:
:See cron(8), second paragraph.
:
:-- 
:Thomas Seck
:

/etc/crontab should probably not be touched, nor should /etc/periodic,
or upgrading the system will be nightmware.  If you want to use the 
periodic mechanisms you can create your own periodic directory 
hierarchy ala /usr/local/etc/periodic, and if you just want to mess
with your own root crontab you should use 'crontab -e' as root.  If
you want to override the system default /etc/periodic you can create
your own /etc/periodic.conf (else the system uses the default
/etc/defaults/periodic.conf).

It's simple.  See man periodic.conf.

-Matt
Matthew Dillon 
[EMAIL PROTECTED]

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: No root crontab in 4.6-RELEASE?

2002-07-09 Thread Kevin Oberman

 Date: Tue, 9 Jul 2002 09:51:03 -0700 (PDT)
 From: Matthew Dillon [EMAIL PROTECTED]
 Sender: [EMAIL PROTECTED]
 
 
 :* Jason Andresen ([EMAIL PROTECTED]):
 :
 :[/etc/crontab vs. crontab -u root]
 :
 : ??? More visible?  New people to the system can never find that file.  
 : Heck, I'm always forgetting where it is.  It wouldn't be so bad if
 : it just weren't so inconsistent.
 :
 :See cron(8), second paragraph.
 :
 :-- 
 :Thomas Seck
 :
 
 /etc/crontab should probably not be touched, nor should /etc/periodic,
 or upgrading the system will be nightmware.  If you want to use the 
 periodic mechanisms you can create your own periodic directory 
 hierarchy ala /usr/local/etc/periodic, and if you just want to mess
 with your own root crontab you should use 'crontab -e' as root.  If
 you want to override the system default /etc/periodic you can create
 your own /etc/periodic.conf (else the system uses the default
 /etc/defaults/periodic.conf).
 
 It's simple.  See man periodic.conf.

Also, as far as I know, the use of local periodic(8) scripts via
periodic.conf(5) entries in 999.local is supported. mergemaster(8)
should catch changes in periodic.conf(5).

R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: [EMAIL PROTECTED]  Phone: +1 510 486-8634


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: Plain text posting

2002-07-09 Thread Robin . Melville

At 7:48 am -0700 9/7/02, vizion communication wrote:
Hi
[...snip...]
Can we please stick to plain text UNLESS the material cannot
reasonably be transmitted without being in attachment form.
There is no benefit to be gained from attachments otherwise.

I heartily concur. An additional problem is in message digests where 
the relationship between the attachment and the original message is 
lost. One finds onself scrolling through reams of base64.

Robin.


-- 
Robin Melville, Information manager
Addiction  Forensic Information Service
Nottingham Healthcare NHS Tust
Tel:  +44 (0)115 952 9478   Fax:  +44 (0)115 952 9421
email: [EMAIL PROTECTED]
Pages: http://www.nadt.org.uk/

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: ssh to remote machines problem after cvsup

2002-07-09 Thread Doug Barton

Jay Sachs wrote:

 There are those of us who consider the protocol switch a good change,

So you are free to do that on your systems. The problem is, whether you
think it's a good idea or not, it's already catching people by surprise,
and locking them out of their systems. The change should be reverted.

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



system immutable files make mergemaster look funny

2002-07-09 Thread Eugene Grosbein

That's what you get now after completing mergemaster:

*** Comparison complete

Do you wish to delete what is left of /var/tmp/temproot? [no] yes
rm: /var/tmp/temproot/var/empty: Operation not permitted
rm: /var/tmp/temproot/var: Directory not empty
rm: /var/tmp/temproot: Directory not empty
 *** /var/tmp/temproot has been deleted


Obviously, last sentence isn't true :-)

Eugene


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: ssh to remote machines problem after cvsup

2002-07-09 Thread Kevin Oberman

 Date: Tue, 09 Jul 2002 10:09:29 -0700
 From: Doug Barton [EMAIL PROTECTED]
 Sender: [EMAIL PROTECTED]
 
 Jay Sachs wrote:
 
  There are those of us who consider the protocol switch a good change,
 
 So you are free to do that on your systems. The problem is, whether you
 think it's a good idea or not, it's already catching people by surprise,
 and locking them out of their systems. The change should be reverted.

Doug,

This was discussed on stable (admittedly a bit late in the game) and
every comment I saw favored making the change in Stable. An entry was
made in UPDATING to warn people of the change.

From a security standpoint alone the change is justified as protocol
V1.5 has long required kludges to work around its problems while V2
was much more carefully crafted from the ground up and has no known
problems. I am only talking about the protocol and no particular
implementation.

People should really be using V2 protocols in all cases except where
remote systems still don't support it. (And, do you REALLY want to
connect to those systems?)

I will admit that I had pretty much converted everything of mine to
use V2 long before this came up, so this really didn't have an
impact on me.

R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: [EMAIL PROTECTED]  Phone: +1 510 486-8634

To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: Linux Java 1.4 was: linux_base-7.1 problem

2002-07-09 Thread Alexey Zelkin

hi,

On Mon, Jul 08, 2002 at 11:52:01AM -0700, Shannon -jj Behrens wrote:

  DWC On Wed, Jul 03, 2002 at 11:35:41AM -0600, Jason Porter wrote:
   glibc-2.1.2-11.  It finally exists with an Error code 1 and stops the 
   install.  Anyone else have this problem?
  
  DWC This happens sometimes when there are leftovers in /compat/linux from 
  DWC linux_base-6, if you can rm -fr /compat/linux/* and reinstall linux 
  
  My experience is that linux_base-7.1 fails miserably with the
  acroread4 and acroread5 ports (fails to install them for lack of
  strip program), and then core dumps when you run acroread.
  
  Personally, I just went with linux_base6-6.1 and it works flawlessly.
 
 I noticed that linux_base-7 makes linux-sun-jdk14 crash, whereas linux_base-6 
 doesn't.  This was from a completely clean /compat.  Should I submit a PR, or
 is this known behavior.  What was really surprising is that linux-sun-jdk14
 will try to install linux_base-7 if linux_base-6 isn't installed, but this 
 default results in a broken configuration.

I hit to this problem also. I think root of problem is that official
Linux release supported by jdk1.4 is RH 6.1 (as jdk building docs declare).
And there're some fatal binary incompatibilities between RH 6.1 and 7.1 :-(


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message



Re: cvs commit: ports/www/apache2 Makefile ports/www/apache2/files patch-modules:ht (fwd)

2002-07-09 Thread Brett Glass

Thank you for pointing this out! It may indeed be what's wedging
Apache 2.x.

I may still downgrade to 1.3.26, though. The process size is
smaller, and the only truly major difference between 1.3.x and
2.x is the new threading model, which FreeBSD can't use because
pthreads are still a kludge.

--Brett

At 07:52 AM 7/9/2002, Cy Schubert - CITS Open Systems Group wrote:
  
Brett, this is probably what you've been looking for .


--
Cheers,  Phone:  250-387-8437
Cy SchubertFax:  250-387-5766
Team Leader, Sun/Alpha Team  Email:  [EMAIL PROTECTED]
Open Systems Group, CITS
Ministry of Management Services
Province of BC
FreeBSD UNIX:  [EMAIL PROTECTED]


--- Forwarded Message

Date:Tue, 09 Jul 2002 04:22:19 -0700
From:Hye-Shik Chang [EMAIL PROTECTED]
To:  [EMAIL PROTECTED], [EMAIL PROTECTED]
Subject: cvs commit: ports/www/apache2 Makefile ports/www/apache2/files 
patch-m
  odules:http:http_request.c

perky   2002/07/09 04:22:19 PDT

  Modified files:
www/apache2  Makefile 
  Added files:
www/apache2/filespatch-modules:http:http_request.c 
  Log:
  - Add a patch for a bug on infinite loop in HTTP_IN
filter that allows DoS attack.
  - Bump PORTREVISION
  - Change maintainer address
  
  Obtained from: Apache Group CVS (rev 1.150-1.151)
  
  Revision  ChangesPath
  1.125 +2 -2  ports/www/apache2/Makefile
  1.1   +10 -0 ports/www/apache2/files/patch-modules:http:http_r
equest.
c (new)

--- End of Forwarded Message


To Unsubscribe: send mail to [EMAIL PROTECTED]
with unsubscribe freebsd-stable in the body of the message