Re: Why tzdata2013b has not be merged to stable/8 ?
On 3/04/13 20:12 , Claude Buisson wrote: On March 15, tzdata2013b has been merged to head (r248307), to stable/6 (r248308), to stable/7 (r248309) and to stable/9 (r248310). But not to stable/8. I did not see it going wrong, but I assume it was because stable/8 is in a freeze right now. I'll drop an email to re@ to get approval. Edwin ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to freebsd-stable-unsubscr...@freebsd.org
Re: 7-STABLE: mergemaster tzsetup question
On 04/12/2011, at 11:12 , Doug Barton wrote: On 12/3/2011 8:14 AM, Max Khon wrote: Christian, On Sat, Dec 3, 2011 at 10:24 PM, Christian Weisgerber na...@mips.inka.de wrote: Every time I run mergemaster(8) on 7.4-STABLE, I'm now presented with *** There is no /var/db/zoneinfo file to update /etc/localtime. You should run tzsetup Running tzsetup(8) does however not create /var/db/zoneinfo, so mergemaster will prompt the next time, too. I guess I can just ignore it, but it seems weird that mergemaster would keep nagging about this. Where is /var/db/zoneinfo supposed to come from? I also notice that mergemaster can issue tzsetup arguments -C and -r, but tzsetup doesn't support those. tzsetup in FreeBSD 8 and later creates /var/db/zoneinfo. It seems that mergemaster was merged to RELENG_7 but appropiate version of tzsetup was not. Well that's embarrassing. :) Edwin, what are the chances that you could MFC your changes to tzsetup? If you still have a machine running 7.x (which I don't have anymore), then go for it and do your damage :-) Edwin___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to freebsd-stable-unsubscr...@freebsd.org
gmirror refused to connect second disk after a reboot
For two years I've had a happy gmirror RAID1 system. And a week or three ago I was found a degraded system due to a broken disk. I tried to replace the disk, first with one three sectors too small which didn't want to be entered in the array (as excepted), then with a same brand/type one which I added without a problem. Rebuilding, everything okay. [~] ed...@k7sudo fdisk -s /dev/ad1 /dev/ad1: 1938021 cyl 16 hd 63 sec PartStartSize Type Flags 1: 63 1953520002 0xa5 0x00 [~] ed...@k7sudo fdisk -s /dev/ad3 /dev/ad3: 1938021 cyl 16 hd 63 sec PartStartSize Type Flags 1: 63 1953520002 0xa5 0x80 [~] ed...@k7gmirror status NameStatus Components mirror/gm0 COMPLETE ad1 ad3 Until after a reboot, then GEOM complains about: GEOM: ad3s1: geometry does not match label (255h,63s != 16h,63s). GEOM_MIRROR: Force device gm0 start due to timeout. GEOM_MIRROR: Device mirror/gm0 launched (1/2). [~] ed...@k7gmirror status NameStatus Components mirror/gm0 DEGRADED ad1 Forgetting and re-inserting the ad3 does attach it again and rebuild everything, until the next reboot. Booting from ad3 instead of from ad1 results in the same result. This device is running 8.0-STABLE r204385. Who has any idea what is going wrong here and which smart commands I can to overcome this silly issues or are any clues which commands I should run next to get more information? Thanks heaps, Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ ed...@mavetju.org Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to freebsd-stable-unsubscr...@freebsd.org
Re: A more secure approach of jail establishment. It could be included in jail chapter of fbsd handbook
On Wed, Feb 10, 2010 at 01:10:32PM +, Igor Mozolevsky wrote: I see people are still installing a full blown OS inside their jails? You do know that it is possible to have a jail with a single program inside and not much else, as if it were chroot()ed? There are two different kind of purposes for jails: First one is the isolation of single processes, the other one is the isolation of environments. For the first one you are right on the ball on, for the second one you still need the whole userland. Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ ed...@mavetju.org Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to freebsd-stable-unsubscr...@freebsd.org
Re: Hacked - FreeBSD 7.1-Release
On Tue, Dec 29, 2009 at 08:10:42AM -0800, Brian W. wrote: On 12/29/2009 3:45 AM, Edwin Groothuis wrote: mpt to pass a Turing test or something. On all systems which need to be accessible from the public Internet: Run sshd on port 22 and port 8022. Block incoming traffic on port 22 on your firewall. Everybody coming from the outside world needs to know it is running on port 8022. Everybody coming from the inside world has access as normal. Edwin I seem to recall on one of the openbsd lists someone speaking of risks of running sshd or other services on high numbered ports, presumably because a non root user cannot bind ports up to 1024. More than happy to suggest 222 next time :-) Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ ed...@mavetju.org Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to freebsd-stable-unsubscr...@freebsd.org
Re: Hacked - FreeBSD 7.1-Release
On Mon, Dec 28, 2009 at 10:44:41AM -0500, Andresen, Jason R. wrote: The point is, if your machine is on the internet, then bots are going to try password attacks on any open port they can find. It's just the sad fact of life on the current internet. Unfortunately, this activity will also make it much more difficult to determine when you are under attack from an actual person, which was my point earlier. It's one that is not going to be easy to solve either, unless you're willing to rewrite SSH to require every connection attempt to pass a Turing test or something. On all systems which need to be accessible from the public Internet: Run sshd on port 22 and port 8022. Block incoming traffic on port 22 on your firewall. Everybody coming from the outside world needs to know it is running on port 8022. Everybody coming from the inside world has access as normal. Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ ed...@mavetju.org Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to freebsd-stable-unsubscr...@freebsd.org
Re: can't see non-root writes to /dev/console
On Sun, Oct 12, 2008 at 10:23:53PM -0700, Jeremy Chadwick wrote: The ioctl call fails (EPERM) because only superuser can use TIOCCONS, regardless the ownership of the device. Using xterm with the -C argument works because xterm is installed with the setuid flag bit on. So the solution is chmod +us xconsole. Can someone security audit this program before blindly setuid-root'ing it? Isn't xconsole not just the same values as /var/log/messages ? So information-leaking-wise it isn't a huge deal. Only the program itself is now the unknown. Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ [EMAIL PROTECTED] Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't see non-root writes to /dev/console
On Mon, Oct 13, 2008 at 06:23:01PM -0300, Carlos A. M. dos Santos wrote: The OpenBSD folks solved the permission issue along time ago(*) by means of a privilege separation feature. Take a look at http://www.openbsd.org/cgi-bin/cvsweb/xenocara/app/xconsole/ I will see if is possible to update the xconsole port in order to do the same. Is there any standard privilege separation framework on FreeBSD? I haven't heard of it, but is it a framework on OpenBSD or is it an approach? Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ [EMAIL PROTECTED] Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Mon, Sep 29, 2008 at 01:04:41PM +0100, Thomas Hurst wrote: * Edwin Groothuis ([EMAIL PROTECTED]) wrote: I have made an update for the top(1) utility in the FreeBSD base system to get it from the 3.5b12 version to the 3.8b1 version. Looks good, thanks! IO mode seems to have changed a bit, giving different values to 3.5, it seems while 3.5 gives you the count for the sample period, 3.8 always gives you a per-second rate, e.g. top -mio -s 20: 3.8: 44181 freaky 240 0240 0 0240 99.74% cat 3.5: 44181 freaky 4664 5 4667 0 0 4667 100.00% cat This might be confusing, since it means values from two different top -mio's are no longer directly comparable. I will make it back to per-period because that is the one which actually makes sense (IMHO). 3.8 also seems to be lacking IO sorting options; o vcsw etc are missing. Will they be returning? They will be back. Also, the [number] argument given to -m io has no effect: top -m io 10 Setting it after loading with n 10enter causes top to exit. That's a good one to catch, thanks! Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Sun, Sep 28, 2008 at 11:20:00PM -0700, Alfred Perlstein wrote: * Edwin Groothuis [EMAIL PROTECTED] [080927 23:04] wrote: I have made an update for the top(1) utility in the FreeBSD base system to get it from the 3.5b12 version to the 3.8b1 version. Hey Edwin, any chance you have the time to add to top(1) a flag that will restrict top(1) to only view a certain pid or list of pids? This would be really helpful in the threaded view to watch a single process. The out-of-the-box option I can give you is to use the c command and to type the name of the command to filter that one out. And then press H. But it's not possible from the commandline yet. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Request for testing - top 3.8b1 in the base system
I have made an update for the top(1) utility in the FreeBSD base system to get it from the 3.5b12 version to the 3.8b1 version. I have tried them on the amd64 architecture on FreeBSD -current and FreeBSD 7.0 and on the i386 architecture on FreeBSD 7.0. The big new features are a line upper part with kernel statistics (context-switches, traps, interrupts, faults etc) and the FLG table (if you window is big enough) Some features specific to FreeBSD (dual display (press m)), threaded processes, and jails have been ported to 3.8b1. The biggest fix (AFAICT) is the TIME and CPU table for threaded processes, which are now calculated properly. The new code can be found on http://www.mavetju.org/~edwin/freebsd-top-3.8b1-A.tar.gz Go to 3.8b1/usr.sbin/top and run make there to produce the binary, then run it via ./top. Please report any issues with it (compile time, run time) and a way to reproduce it (if possible). Thanks for your help! Edwin -- Edwin Groothuis [EMAIL PROTECTED] http://www.mavetju.org ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Sun, Sep 28, 2008 at 11:33:57AM +0200, Stefan `Sec` Zehl wrote: Hi, On Sun, Sep 28, 2008 at 15:46 +1000, Edwin Groothuis wrote: The new code can be found on http://www.mavetju.org/~edwin/freebsd-top-3.8b1-A.tar.gz Go to 3.8b1/usr.sbin/top and run make there to produce the binary, then run it via ./top. compiles and runs fine on my box: FreeBSD ice 7.1-PRERELEASE FreeBSD 7.1-PRERELEASE #17: Wed Sep 3 23:59:58 CEST 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/ICE amd64 Please report any issues with it (compile time, run time) and a way to reproduce it (if possible). Thanks for your help! The number of sleeping processes is much lower than system top: oldtop: 480 processes: 3 running, 450 sleeping, 2 stopped, 7 zombie, 18 waiting newtop: 190 processes: 3 running, 160 sleeping, 2 stopped, 7 zombie, 18 waiting Oh yes, I forgot about that: The old top(1) and new top(1) counts the processes different: - ps xauw | wc gives 265 - ps xauwH | wc gives 295 (expand threads) - old top gives 240 processes. - old top + S (system processes) gives 292 processes. - old top + H (threads) gives 240 processes - old top + S (system processes) + H (threads) gives 292 processes - new top gives 260 processes - new top + S (system processes) gives 260 processes - new top + H (threads) gives 292 *threads* - new top + S (system processes) + H (threads) gives 292 *threads* This is only for the summary menu, not for the process list. Thanks for your feedback, it is surely something which needs to be written down in the official announcement. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Sun, Sep 28, 2008 at 02:09:00AM -0700, Garrett Cooper wrote: On Sun, Sep 28, 2008 at 1:14 AM, Alex Keda [EMAIL PROTECTED] wrote: Some strange. Count running processes not match with system top That has been explained in an email before. I'm not sure I'm finding an issue, but I do find it interesting that... 1. It takes a reasonably long amount of time for top to plateau the WCPU field (approximately 8-10 iterations), whereas ps registering the WCPU percentage value is almost instantaneous. With ps it takes 10 2 second steps to get the WCPU from 0 to 100, with the new top (which doesn't have WCPU (See Changes file, and the m_freebsd.c file, I don't know of the real reason behind it) anymore) goes from 0 to 100 in 2 2 second steps. 2. top appears to be doing some interesting rounding that ps isn't doing (ps registers anywhere between 88.4 and 97% via ps vs 100% via top for a simple operation like `while [ 1 ] ; do cat /dev/urandom /dev/null; done'). On my machine it is ps which rounds it up to 100% and top somewhere between 98.0% and 99.9%. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Sun, Sep 28, 2008 at 11:53:51AM +0200, [EMAIL PROTECTED] wrote: The big new features are a line upper part with kernel statistics (context-switches, traps, interrupts, faults etc) and the FLG table (if you window is big enough) Would it be possible to document the values in the FLG field? The meaning wasn't obvious to me... I will take care of it. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Sun, Sep 28, 2008 at 11:35:06AM +0200, V??clav Haisman wrote: to reproduce it (if possible). Thanks for your help! Is this 7.0+ only? I run 6.3 and I see the following when I start it: last pid: -1077944144; loa 0.52, 0.28, 0.26; up 11+15:31:33 11:33:05 0 processes: CPU: 0.1% user, 0.6% nice, -0.7% system, -0.6% interrupt, -0.4% idle Kernel: 1 intr Mem:235M Active, 458M Inact, 219M Wired, 42M Cache, 111M Buf, 39M Free Swap: 3000M Total, 181M Used, 2819M Free, 6% Inuse sysctlnametomib: No such file or directory And no processes. I didn't expect it not to work on 6.x, I will play around with it tomorrow to see if it makes sense. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Request for testing - top 3.8b1 in the base system
On Sun, Sep 28, 2008 at 10:15:32PM +0100, Bruce Cran wrote: On Sun, 28 Sep 2008 15:46:20 +1000 Edwin Groothuis [EMAIL PROTECTED] wrote: I have made an update for the top(1) utility in the FreeBSD base system to get it from the 3.5b12 version to the 3.8b1 version. [...] Please report any issues with it (compile time, run time) and a way to reproduce it (if possible). Thanks for your help! There are some new warnings generated during compilation with WARNS=1 due to the use of -DSIGWINCH on the command line (since it has already been defined in signal.h). Though of course it doesn't have any effect on the functionality. I have renamed it to TOPSIGWINCH to overcome this, but that's only a silly patch to make it quiet :-) Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Regression 7.0R - 7-stable?
On Thu, Aug 07, 2008 at 01:29:47PM +0200, Gerrit K?hn wrote: Hi folks, I have a rather new FujitsuSiemens Esprimo here with an AMD Phenom X3 processor (triple core is somehow strange :-) and a lot of NVidia stuff onboard. I installed 7.0-R, which ran quite well except for the bge driver and snd_hda which both complained. After putting in an extra networking card I was able to install some more software and all appeared to be nice. Then I cvsupped to the recent 7-stable as of today. My hope was that maybe the bge or the sound card would improve from this. However, the new kernel I compiled does not run at all. It boots up to CPU#1 and CPU#2 lauchned messages and then sits there and does nothing anymore. I have verified this behaviour with amd64 snapshot images from July and August to make sure I did not compile a bad kernel. Both show the same behaviour. Are there any ideas what has changed from 7.0-R to recent 7.0-stable that could cause this? What can I do to debug/fix this? Make sure you have this in your /etc/sysctl.conf: [~] [EMAIL PROTECTED]grep hyper /etc/sysctl.conf machdep.hyperthreading_allowed=1 Then with top you can see the CPUs in use --v PID USERNAMETHR PRI NICE SIZERES STATE C TIME WCPU COMMAND 69200 edwin 9 440 236M 130M ucond 0 33:37 5.76% seamonkey-b 3317 edwin 1 710 38404K 33572K select 1 3:51 0.10% mutt 3015 edwin 1 450 403M 81672K select 0 101:52 0.00% Xorg Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Regression 7.0R - 7-stable?
On Thu, Aug 07, 2008 at 05:19:40AM -0700, Jeremy Chadwick wrote: On Thu, Aug 07, 2008 at 09:47:06PM +1000, Edwin Groothuis wrote: On Thu, Aug 07, 2008 at 01:29:47PM +0200, Gerrit K?hn wrote: Hi folks, I have a rather new FujitsuSiemens Esprimo here with an AMD Phenom X3 processor (triple core is somehow strange :-) and a lot of NVidia stuff onboard. I installed 7.0-R, which ran quite well except for the bge driver and snd_hda which both complained. After putting in an extra networking card I was able to install some more software and all appeared to be nice. Then I cvsupped to the recent 7-stable as of today. My hope was that maybe the bge or the sound card would improve from this. However, the new kernel I compiled does not run at all. It boots up to CPU#1 and CPU#2 lauchned messages and then sits there and does nothing anymore. I have verified this behaviour with amd64 snapshot images from July and August to make sure I did not compile a bad kernel. Both show the same behaviour. Are there any ideas what has changed from 7.0-R to recent 7.0-stable that could cause this? What can I do to debug/fix this? Make sure you have this in your /etc/sysctl.conf: [~] [EMAIL PROTECTED]grep hyper /etc/sysctl.conf machdep.hyperthreading_allowed=1 Then with top you can see the CPUs in use --v PID USERNAMETHR PRI NICE SIZERES STATE C TIME WCPU COMMAND 69200 edwin 9 440 236M 130M ucond 0 33:37 5.76% seamonkey-b 3317 edwin 1 710 38404K 33572K select 1 3:51 0.10% mutt 3015 edwin 1 450 403M 81672K select 0 101:52 0.00% Xorg I think you misread what he was saying. :-) He's saying that his system locks up hard after the kernel prints the SMP: AP CPU #x Launched! messages. It's indeed a different interpretation of what I originally read. Sorry for the noise! Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 7.1 and BIND exploit
On Sat, Jul 19, 2008 at 09:36:38PM -0600, Brett Glass wrote: At 09:28 PM 7/19/2008, Subhro wrote: You need to understand the release engineering process of FreeeBSD. I've been watching it (and testing release candidates) since 2.x, so I think I may possibly have some understanding of it by now. ;-) The release edition is essential created from the stabe edition. 7.1R would not be something new which is *not* present on 7-STABLE today. Mostly true. But the new release would undergo extensive testing, and changes which were not ready for prime time would be rolled back or made solid. I've had enough trouble with some recent snapshots of -STABLE that I'd rather install a release that's been thoroughly tested... preferably with the latest ports. That's why I'm asking about the likely actual release date of 7.1. The best thing a looking glass can come up with is: http://www.freebsd.org/releng/#schedule But that unless an announcement that as much worth as the lifetime of the electrons hitting the back of your eyes. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: BIND update?
On Thu, Jul 10, 2008 at 12:25:33PM +0200, Oliver Brandmueller wrote: OK, thanx for clarification. I totally overlooked the updated bind port; anyhow, I use base system bind and didn't plan to change that (although it might me a good idea, as this situation clearly shows). You can always use the WITH_REPLACE_BASE option in the port to overwrite the base system named, or use the differences in the extracted tarball of 9.5.0 vs 9.5.0-P1 to update the source of the base one yourself. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: BIND update?
On Thu, Jul 10, 2008 at 12:29:55PM +0200, Oliver Brandmueller wrote: Hi, On Thu, Jul 10, 2008 at 03:17:26AM -0700, Xin LI wrote: Speaking as my own: Base system needs more conservative QA process, e.g. we want to minimize the change, we need to analyst the impact (FWIW the security fix would negatively affect heavy traffic sites) and document it (i.e. the security advisory), and we want to make the change a one-time one (for instance, shall we patch libc's resolver as well?), so rushing into a presumably patched state would not be a very good solution. I understand the reasons and that surely needs to be taken into account. Does that imply that the FreeBSD project got the information later than f.e. M$ or Debian, who are usually not really known for coming up too fast with such fixes? According to http://www.kb.cert.org/vuls/id/800113, FreeBSD was tested, but it doesn't say if it was informed. Microsoft knew about it earlier than yesterday, because they are a DNS software provider. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Does system change affected portsnap?
On Mon, Jun 16, 2008 at 02:28:37PM +0800, Yi Wang wrote: Today I found the system time is incorrect. After changing it, about 5 hours skipped. My question is: Will portsnap update the changes of ports in these 5 hours? It shouldn't be a problem. If you want to be sure, just reboot the box (or restart *all* processes and all will be fine. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: challenge: end of life for 6.2 is premature with buggy 6.3
On Wed, Jun 04, 2008 at 10:43:27AM -1000, Clifton Royston wrote: On Wed, Jun 04, 2008 at 11:00:41AM -0700, Doug Barton wrote: Jo Rhett wrote: ... But given that 6.3 is still experiencing bugs with things that are working fine and stable in 6.2, this is a pretty hard case to make. I admit to not having been following 6.x too closely, but are these things that have been reported, or problems you're having personally? Speaking just for myself, I'd love to get a general response from people who have run servers on both as to whether 6.3 is on average more stable than 6.2. I really haven't gotten any clear impression as to this, either from posts on -hackers or -stable, and I believe I asked a couple times. I've seen comments that 6.3 should be considerably more stable than 6.2, but also complaints about bugs such as Jo is commenting on, and I have not seen much committed in the way of errata fixes for 6.3 since its release. We have about 40 servers which were running 6.1 and 6.2 and the seven busy ones (application servers which do mail and proxying, and the database servers) hung *dead* every week. One per day. Luckely they were all redundant etc and remotely rebootable, but it was a nightmare for half a year. A handfull of patches (mutex-based) helped a lot, but still it was too much for my liking. The upgrade to 6.3 fixed *everything*, these seven servers now have uptimes of (since february) again. (The updates were scheduled in November as xmas-break updates, so imagine me getting more and more nervous when things got dragged out). So 6.3 saved my sanity :-) Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: challenge: end of life for 6.2 is premature with buggy 6.3
On Wed, Jun 04, 2008 at 05:24:42PM -0700, Jo Rhett wrote: On Jun 4, 2008, at 5:17 PM, Steven Hartland wrote: I wouldn't be surprised if these are not new bugs, just something that others have noticed later than 6.2 and I'd suggest you actually try 6.3 to see if they are in fact an issue for you. I don't have the resources to load up the systems enough to find these problems sitting on my desk. And I can't risk production resources for problems known and reported on the *EXACT* same hardware. oh but it won't happen to me isn't a useful methodology in a production environment. I mean, seriously, I know the majority of you are happy rebooting your systems 5x daily to run the latest. I'll do that with my home system, no problem. But I can't do this in a production environment. Use the eat-your-own-food approach (while not knowing what the 500 systems do): Make sure you use the same hardware and software as what is in production. Upgrade it first, run it for two weeks. If it doesn't, fallback and see where it went wrong. If it all works fine after two weeks, roll it out. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: HP ProLiant DL360 G5 success stories?
On Wed, Mar 12, 2008 at 11:52:44AM +0100, Johan Str?m wrote: Im looking into getting a new server box to replace a Supermicro box, which unfortunately have a bunch of problems with heat, random hangups, crappy IPMI/remote admin capabilities etc.. Try the -proliant mailinglist at [EMAIL PROTECTED] For what it is worth, we have a nice batch of DL380s here in the racks, all running 6.3 now and that is a nice improvement over the 6.3 ones. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: HP ProLiant DL360 G5 success stories?
On Wed, Mar 12, 2008 at 04:20:42AM -0700, Jeremy Chadwick wrote: On Wed, Mar 12, 2008 at 10:16:48PM +1100, Edwin Groothuis wrote: On Wed, Mar 12, 2008 at 11:52:44AM +0100, Johan Str?m wrote: Im looking into getting a new server box to replace a Supermicro box, which unfortunately have a bunch of problems with heat, random hangups, crappy IPMI/remote admin capabilities etc.. Try the -proliant mailinglist at [EMAIL PROTECTED] For what it is worth, we have a nice batch of DL380s here in the racks, all running 6.3 now and that is a nice improvement over the 6.3 ones. I'm curious -- do these machines behave similarly to Sun and others, where you're forced to use disks that come directly from HP rather than being able to buy your own and use them? Honest answer: we buy everything from HP for them. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: What's new on the 127.0.0/24 block in 7?
On Mon, Mar 03, 2008 at 07:23:59PM -0800, Chris H. wrote: Quoting Andy Dills [EMAIL PROTECTED]: On Mon, 3 Mar 2008, Chris H. wrote: Greetings, I'm having some difficulty working with anything past 127.0.0.1. It seems impossible to use (create) any addresses on the loopback past 127.0.0.1. More specifically; I installed rbldnsd from ports, and it worked quite well on a 6.x install. However, attempting the same config/install on a 7-RC3 install yields the inability to bind/create 127.0.0.2, or 127.0.0.3 for rbldnsd to answer on - all queries are refused. The same pinging/digging, etc. The 2 servers have /exactly/ the same net setups, and DNS/rbldnsd configs. Yet no joy on the RELENG_7 box. So it /appears/ something in this area has changed since 6. But I'm unable to discover any info on it. Thank you for all your time and consideration. What subnet mask did you use when creating the 127.0.0.2 (etc) interfaces on lo0? On 7.0-R, I just ifconfig'ed 127.0.0.2 as an alias to lo0 with a subnet mask of 255.255.255.255, and I was able to bind/listen/accept on it with no problem. Indeed. I have several /24's to manage, and alias the bulk of them to the NIC on the server(s). But, having /identical/ configurations/setups of FreeBSD, and rbldnsd on two different servers; the recent RELENG_6 server desires/requires no alias on lo0, and happily provides a 127.0.0/24 While the same setup on a 7-RC3 will only provide 127.0.0.1. Which brings me to my original question; What's different on 7 regarding the 127.0.0/24 block? Are you sure it's a /24 you are talking about? My 7.0 disks install 127.0.0.1/8 here. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: What's new on the 127.0.0/24 block in 7?
On Mon, Mar 03, 2008 at 07:39:44PM -0800, Chris H. wrote: Quoting Edwin Groothuis [EMAIL PROTECTED]: On Mon, Mar 03, 2008 at 07:23:59PM -0800, Chris H. wrote: Quoting Andy Dills [EMAIL PROTECTED]: On Mon, 3 Mar 2008, Chris H. wrote: Greetings, I'm having some difficulty working with anything past 127.0.0.1. It seems impossible to use (create) any addresses on the loopback past 127.0.0.1. More specifically; I installed rbldnsd from ports, and it worked quite well on a 6.x install. However, attempting the same config/install on a 7-RC3 install yields the inability to bind/create 127.0.0.2, or 127.0.0.3 for rbldnsd to answer on - all queries are refused. The same pinging/digging, etc. The 2 servers have /exactly/ the same net setups, and DNS/rbldnsd configs. Yet no joy on the RELENG_7 box. So it /appears/ something in this area has changed since 6. But I'm unable to discover any info on it. Thank you for all your time and consideration. What subnet mask did you use when creating the 127.0.0.2 (etc) interfaces on lo0? On 7.0-R, I just ifconfig'ed 127.0.0.2 as an alias to lo0 with a subnet mask of 255.255.255.255, and I was able to bind/listen/accept on it with no problem. Indeed. I have several /24's to manage, and alias the bulk of them to the NIC on the server(s). But, having /identical/ configurations/setups of FreeBSD, and rbldnsd on two different servers; the recent RELENG_6 server desires/requires no alias on lo0, and happily provides a 127.0.0/24 While the same setup on a 7-RC3 will only provide 127.0.0.1. Which brings me to my original question; What's different on 7 regarding the 127.0.0/24 block? Are you sure it's a /24 you are talking about? My 7.0 disks install 127.0.0.1/8 here. Really? Where did you get the install disc? Mine clearly doesn't. :( All I am provided is 127.0.0.1 - not 127.0.0.2,3... By default it will only generate 127.0.0.1. Reading through the thread (which only caught my eye because of the /24 there) showed a lot of confusion. Could you to take this confusion away tell again why you (think you) need the other ones? Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrade to 6.3R failed (with freebsd-update.sh)
On Thu, Feb 28, 2008 at 09:24:43AM +0100, Thomas Krause wrote: Dear list, as described in http://www.freebsd.org/releases/6.3R/announce.html I tried a binary upgrade to 6.3R. But the command # sh freebsd-update.sh -f freebsd-update.conf -r 6.3-RELEASE upgrade failed with 102520253025402550256025702580259026002610262026302640... done. Applying patches... done. Fetching 1587 files... failed. Is this reproducable or is this fetch problem an one time issue? Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrade to 6.3R failed (with freebsd-update.sh)
On Thu, Feb 28, 2008 at 01:19:43AM -0800, Jeremy Chadwick wrote: On Thu, Feb 28, 2008 at 09:24:43AM +0100, Thomas Krause wrote: Dear list, as described in http://www.freebsd.org/releases/6.3R/announce.html I tried a binary upgrade to 6.3R. But the command # sh freebsd-update.sh -f freebsd-update.conf -r 6.3-RELEASE upgrade failed with 102520253025402550256025702580259026002610262026302640... done. Applying patches... done. Fetching 1587 files... failed. Any ideas how to perform the upgrade? Does freebsd-update use ftp://ftp.freebsd.org at all? If so, I'm willing to bet the failure is caused by the FTP server being overloaded. With the announcement of 7.0-RELEASE, people are hammering the server; the few times I've tried to FTP to it, it's been returning maximum number of connections exceeded or something along those lines. It is not using ftp.freebsd.org, but a quick chat to cperciva@ showed that his servers were upgrading about one machine per minute, so that is quite an amount of HTTP requests he is getting. I would either keep trying (use a caching proxy to keep your results) or try again later. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading to 7.0 - stupid requirements
On Fri, Feb 29, 2008 at 12:08:22AM +0100, Marko Lerota wrote: In http://www.freebsd.org/releases/7.0R/announce.html says Updating Existing Systems An upgrade of any existing system to FreeBSD 7.0-RELEASE constitutes a major version upgrade, so no matter which method you use to update an older system you should reinstall any ports you have installed on Should, not must. Use misc/compat6x if you don't want to do this, but that doesn't work for things which look in the kernel (sysutils/lsof for example) Also, it doesn't say that you don't need to upgrade your ports, you need to reinstall them. Problem resolved by carefully reading. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading to 7.0 - stupid requirements
On Fri, Feb 29, 2008 at 01:03:31AM +0100, Kris Kennaway wrote: Edwin Groothuis wrote: On Fri, Feb 29, 2008 at 12:08:22AM +0100, Marko Lerota wrote: In http://www.freebsd.org/releases/7.0R/announce.html says Updating Existing Systems An upgrade of any existing system to FreeBSD 7.0-RELEASE constitutes a major version upgrade, so no matter which method you use to update an older system you should reinstall any ports you have installed on Should, not must. Use misc/compat6x if you don't want to do this, but that doesn't work for things which look in the kernel (sysutils/lsof for example) No: must, not should. If you don't do this, then when you update e.g. only some of the gnome libraries without recompiling all of gnome, then your gnome binaries will have libraries linked to libc.so.6 and libc.so.7, and to libkse.so.2 as well as libthr.so.3, and this is a guaranteed runtime crash because these are mutually inconsistent sets of libraries. He wanted independance of the base OS and the installed software. He didn't want to upgrade his software because of software version incompatibilies. That was the scenario where this advice was given on. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD tar errors on valid empty tar.gz
On Thu, Jan 10, 2008 at 11:55:52PM -, Steven Hartland wrote: A totally empty file is not valid try the following test:- touch empty tar cvzf test.tar.gz --files-from empty tar tvzf test.tar.gz tar: Unrecognized archive format: Inappropriate file type or format tar --version bsdtar 1.2.53 - libarchive 1.2.53 gtar tvzf test.tar.gz gtar --version tar (GNU tar) 1.15.1 Tested on: FreeBSD 6.2-RELEASE-p9 Please send-pr this so tkientzle@ can take action on it. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: I just broke out of a FreeBSD jail.. Known bug??
On Fri, Dec 28, 2007 at 01:15:38PM +0100, Johan Str?m wrote: Thats my home dir on core!.. That should very much not be visible there! I have full access now (from the wrong jail!) Known bug or did I just stumble upon something pretty bad?? You didn't really break out of it, the person who managed the machine did something he shouldn't have done: Moving the directories while the jail(s) were running. It should be mentioned in the BUGS section of the jail(8) command. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NZ Daylight Savings changes.
On Wed, Aug 22, 2007 at 10:30:57AM +1000, Mark Andrews wrote: On Wed, Aug 22, 2007 at 11:38:21AM +1200, Jonathan Chen wrote: Would it be possible for a committer to take a look at: http://www.freebsd.org/cgi/query-pr.cgi?pr=115697 There's only about a month or so before the new daylight savings rule becomes effective, and it would be nice if -STABLE had the changes committed before then. The port misc/zoneinfo has been updated with the 2007g version of the zoneinfo files, I'm going to see if I can get approval of re@ to commit this. Which really needs to be properly integrated into the base system with a NO_something to prevent the database being clobbered when the system is rebuilt. This was just MFCed last night. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NZ Daylight Savings changes.
On Wed, Aug 22, 2007 at 10:30:57AM +1000, Mark Andrews wrote: On Wed, Aug 22, 2007 at 11:38:21AM +1200, Jonathan Chen wrote: Would it be possible for a committer to take a look at: http://www.freebsd.org/cgi/query-pr.cgi?pr=115697 There's only about a month or so before the new daylight savings rule becomes effective, and it would be nice if -STABLE had the changes committed before then. The port misc/zoneinfo has been updated with the 2007g version of the zoneinfo files, I'm going to see if I can get approval of re@ to commit this. Which really needs to be properly integrated into the base system with a NO_something to prevent the database being clobbered when the system is rebuilt. http://www.freebsd.org/cgi/query-pr.cgi?pr=bin/104713 I've poked remko@ in this email to ask him the status about the MFC. He said he didn't want me to do the MFC, so it's on his plate. I saw at http://www.freebsd.org/cgi/cvsweb.cgi/src/share/zoneinfo/australasia that the 2007f is also not MFCed. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NZ Daylight Savings changes.
On Wed, Aug 22, 2007 at 12:30:59PM +0200, Remko Lodder wrote: Edwin Groothuis wrote: On Wed, Aug 22, 2007 at 10:30:57AM +1000, Mark Andrews wrote: On Wed, Aug 22, 2007 at 11:38:21AM +1200, Jonathan Chen wrote: Would it be possible for a committer to take a look at: http://www.freebsd.org/cgi/query-pr.cgi?pr=115697 There's only about a month or so before the new daylight savings rule becomes effective, and it would be nice if -STABLE had the changes committed before then. The port misc/zoneinfo has been updated with the 2007g version of the zoneinfo files, I'm going to see if I can get approval of re@ to commit this. Which really needs to be properly integrated into the base system with a NO_something to prevent the database being clobbered when the system is rebuilt. http://www.freebsd.org/cgi/query-pr.cgi?pr=bin/104713 I've poked remko@ in this email to ask him the status about the MFC. He said he didn't want me to do the MFC, so it's on his plate. I saw at http://www.freebsd.org/cgi/cvsweb.cgi/src/share/zoneinfo/australasia that the 2007f is also not MFCed. Edwin Indeed, I want to do my own MFC's, the implementation in -current is different for older branches because the new logic is not in place for older versions. That said with or without the NO/WITHOUT_ZONEINFO stuff in the tree, you can update the zoneinfo part so do not point at me for that. It might be different between -current and the older branches, but it fits in with the code used in the patch given by Mark which you had to modify two months ago to fit in with the new logic. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NZ Daylight Savings changes.
On Wed, Aug 22, 2007 at 11:38:21AM +1200, Jonathan Chen wrote: Would it be possible for a committer to take a look at: http://www.freebsd.org/cgi/query-pr.cgi?pr=115697 There's only about a month or so before the new daylight savings rule becomes effective, and it would be nice if -STABLE had the changes committed before then. The port misc/zoneinfo has been updated with the 2007g version of the zoneinfo files, I'm going to see if I can get approval of re@ to commit this. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: named.conf restored to hint zone for the root by default
On Thu, Aug 02, 2007 at 06:34:59AM -0400, Skip Ford wrote: Doug Barton wrote: In an effort to find some kind of balance (I won't even try to say consensus) between those who hate the idea of slaving the root zones, those who like the idea but don't want it to be the default, and those who like the idea, I've made the following change: 1. Change the default behavior back to using a hint zone for the root. 2. Leave the root slave zone config as a commented out example. 3. Remove the B and F root servers from the example at the request of their operators. I hope that we can now dial down the volume on the meta-issue of how the change was done, and focus on the operational issues of whether it's a good idea or not. Thanks. I'm afraid the consensus has to come from the operators, not from FreeBSD folks. If the operators were required to support it, I think everyone should slave the roots, not just those running busy servers. Just like I'd think everyone should sync with stratum-1 servers if those operators supported everyone doing that. pool.root-servers.net sounds like a good idea :-) Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://www.mavetju.org/weblog/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: jails and multple interfaces
On Wed, Jan 31, 2007 at 11:19:47AM +0100, Milan Obuch wrote: Why are you doing this? Are your addresses from the same network segment? I am binding my jail addresses to loopback interface and route them - this way Same here. Together with net/quagga on the host, and a smart router talking to it I move my jails between buildings when required, without having to worry about IP addresses. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chkrootkit finds 94 process hidden for readdir
On Sat, Dec 23, 2006 at 03:57:35PM -0500, Matthew Herzog wrote: I run FreeBSD 6.1-RELEASE-p7 on an UltraSparc 5 machine. I ran chkrootkit yesterday and saw this: Checking `lkm'... You have94 process hidden for readdir command chkproc: Warning: Possible LKM Trojan installed I thought this was related to the time difference in ps and the processing of the /proc directory. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem with 16-in-1 card reader
On Sun, Mar 12, 2006 at 01:32:01AM +0100, Alex Dupre wrote: Robert Marella wrote: This problem has been discussed many times on the lists. In order to update devfs you can use: cat /dev/null /dev/daX I seem to remember another method using dd. I hope this helps. The 'cat' way works, thanks. Perhaps we should add this info somewhere in a man page. Hmm... doesn't seem to do the trick with my Samsung SGH-D600 phone: Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): READ CAPACITY. CDB: 25 0 0 0 0 0 0 0 0 0 Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): CAM Status: SCSI Status Error Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): SCSI Status: Check Condition Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): NOT READY asc:3a,0 Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): Medium not present Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): Unretryable error Mar 13 08:31:56 k7 kernel: Opened disk da0 - 6 [/home/edwin] [EMAIL PROTECTED]cat /dev/null /dev/da0 su: /dev/da0: Device not configured I blame the phone at this momment :-) Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem with 16-in-1 card reader
On Mon, Mar 13, 2006 at 08:33:31AM +1100, Edwin Groothuis wrote: On Sun, Mar 12, 2006 at 01:32:01AM +0100, Alex Dupre wrote: Robert Marella wrote: This problem has been discussed many times on the lists. In order to update devfs you can use: cat /dev/null /dev/daX I seem to remember another method using dd. I hope this helps. The 'cat' way works, thanks. Perhaps we should add this info somewhere in a man page. Hmm... doesn't seem to do the trick with my Samsung SGH-D600 phone: Don't forget these lines: Mar 13 08:30:42 k7 kernel: umass0: Samsung SAMSUNG Mobile USB Modem, rev 2.00/1.00, addr 2 Mar 13 08:30:43 k7 kernel: da0 at umass-sim0 bus 0 target 0 lun 0 Mar 13 08:30:43 k7 kernel: da0:Removable Direct Access SCSI-0 device Mar 13 08:30:43 k7 kernel: da0: 1.000MB/s transfers Mar 13 08:30:43 k7 kernel: da0: Attempt to query device size failed: NOT READY, Medium not present Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): READ CAPACITY. CDB: 25 0 0 0 0 0 0 0 0 0 Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): CAM Status: SCSI Status Error Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): SCSI Status: Check Condition Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): NOT READY asc:3a,0 Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): Medium not present Mar 13 08:31:56 k7 kernel: (da0:umass-sim0:0:0:0): Unretryable error Mar 13 08:31:56 k7 kernel: Opened disk da0 - 6 [/home/edwin] [EMAIL PROTECTED]cat /dev/null /dev/da0 su: /dev/da0: Device not configured Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Help For upgrading Releng4.11 stable to 6.0 stable
On Thu, Dec 29, 2005 at 09:53:36AM +0700, Yudhi Yuniadhi wrote: I have Machine 4.11 Stable. Now, I want upgrade to 6.0. # uname -srm FreeBSD 4.11-STABLE i386 How step for ugrade form 4.11 stable to 6.0 stable Upgrade to 5.x first, then to 6.0. Personally I've done a binary upgrade for all these situations and a full rebuild of the ports collection after that was done. Long live redundant services! Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Easy way to kill a 5.x/6.x box as a basic user.
On Fri, Oct 28, 2005 at 10:12:26AM +1000, Carl Makin wrote: I've been playing with some GIS software and 32Mb TIFF images. Running ImageMagick's convert utility under my normal user login to convert the image to gif or jpeg blows away the system every time. No panic seen on the console and no core dump found, the system just quietly reboots. Upon reboot /var is full and corrupt and takes ages for the background fsck to fix it so I normally boot into single user mode and do it myself. http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/67919 Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: RSS feeds for UPDATINGs
On Thu, Jun 23, 2005 at 01:57:32PM +0400, Alex Kapranoff wrote: I once searched (in vain) for a way not to miss important thnigs in UPDATING files. If anyone is interested, he(she) can now use my home-grown rss 2.0 feeds. They are synced to CVS once a day. This one for the Ports: http://kapranoff.ru/~kappa/files/ports.UPDATING.rss20.xml And this for RELENG_5 branch: http://kapranoff.ru/~kappa/files/src.UPDATING.rss20.xml Talk to dvl@ about getting this on FreshPorts. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Adaptec 1210 weird behaviour
The Adaptec 1210 is a serial ATA RAID0/1 controller. When the two disks are configured as RAID1, FreeBSD still sees two harddisks instead of one. This is with 5.3. Scary :-) Will try this weekend with 5.4 -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Adaptec 1210 weird behaviour
On Tue, Apr 12, 2005 at 10:21:27AM -0600, Scott Long wrote: Edwin Groothuis wrote: The Adaptec 1210 is a serial ATA RAID0/1 controller. When the two disks are configured as RAID1, FreeBSD still sees two harddisks instead of one. This is with 5.3. Scary :-) Will try this weekend with 5.4 The 1210 is not a real RAID controller, it's a SATA controller with an Adaptec BIOS that does RAID 0 and 1 during boot. It's up to the OS to do the RAID operations after that. The new ATA driver in 6-current Euhm. Oh. Software RAID? A la WinModems? But then I don't understand that it gets away with advertising it as a RAID0/1 controller... Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [HEADS UP] perl symlinks in /usr/bin will be gone
On Sun, Jan 30, 2005 at 11:53:23AM +0100, Kirill Ponomarew wrote: On Sun, Jan 30, 2005 at 11:47:32AM +0100, Holger Kipp wrote: I'm fine with this plan for 6-CURRENT. For 5-STABLE, it's a major user-visible change, and that is something that we promised to avoid with stable branches. It violates POLA on 5-STABLE, and it will violate POLA on 6-CURRENT, especially as most perl programmers assume /usr/bin/perl to be the correct path. If it's linux tradition to put perl in this path, perl programmers should assume another path on FreeBSD, so it isn't an argument for the proposed change. Long before I ever saw FreeBSD or Linux, there were symlinks on the AIX, SunOS and Solaris machines from /usr/bin/perl pointing to the right executables. It's not a Linux-ism, it's like what somebody already pointed out, best practice for Perl. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [HEADS UP] perl symlinks in /usr/bin will be gone
On Sat, Jan 29, 2005 at 10:17:47PM +0100, Anton Berezin wrote: On Sat, Jan 29, 2005 at 10:09:05PM +0100, Oliver Lehmann wrote: Anton Berezin wrote: In practical terms this will mean a one-time sweep of your scripts in order to convert them, in a typical case, from #! /usr/bin/perl to #! /usr/local/bin/perl. Wouldn't that break most of the 3rd party scripts out in the world? Yes, hence the HEADS UP with a possibility to back off if people really sure it is a bad idea. With the removal of perl from the base-system, they put something in place to make sure that the installed version from the ports collection would be a drop-in replacement and that no functionality would be removed. It all worked like a charm. Be pragmatic, a little bit pollution (a handfull of symlinks only, not even real files) gives you the flexibility to run whatever Perl version you want. Please don't break it now. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [HEADS UP] perl symlinks in /usr/bin will be gone
On Sat, Jan 29, 2005 at 11:51:36PM -0500, Chuck Swiger wrote: Andrew McNaughton wrote: #!/usr/bin/env PERL5OPT='-w' perl #!/usr/bin/perl -w sounds much easier. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [Fwd: Cannot find libraries in /usr/local/lib even though they are in hints files]
On Thu, Dec 16, 2004 at 02:13:18AM -0500, Don L. Belcher wrote: Cannot find libraries in /usr/local/lib even thought they are in the hints file. Is there something else I need to do? Use the -L option for gcc (and other utilities) to specify the location to search for libraries to be linked. ldconfig is for run-time linking, not for compile-time linking. -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Beastie
On Tue, Nov 30, 2004 at 11:08:15PM +, David O'Brien wrote: On Mon, Nov 29, 2004 at 12:25:59PM +1100, Edwin Groothuis wrote: On Sun, Nov 28, 2004 at 05:23:40PM -0800, Kris Kennaway wrote: On Sun, Nov 28, 2004 at 07:16:12PM -0600, Stephen Montgomery-Smith wrote: It is with a little intrepidation that I ask this question, because I sense that what I am about to ask might push some buttons, or perhaps bring back some unpleasant memories of those who have asked what I am going to ask in a less tactful manner. I find that the beastie that appears at boot time with FreeBSD 5.3 mildly bothers me. It is possible for me to edit boot/beastie.4th, but this gets put back each time I do make installworld. Would it be possible to add a variable show_beastie to be put in /boot/loader.conf, which would default to YES, but users could add in show_beastie=NO if they didn't want it, but only want the menu. That option is already there, you didn't look hard enough. It's not really the easiest option to find kris... beastie_disable=YES What do you suggest to make it easier? I already knew it has to do with the loader.conf, so I checked it man page of it. I checked the DEFAULT SETTINGS section (because it's an often asked question), and would put it in there: beastie_disable (``NO'') If set to ``YES'', it will not show the ASCII Beastie in the boot menu. -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: slow mouse in X11
On Mon, Nov 29, 2004 at 03:39:12PM +0100, alex bustamante wrote: How come that when i run X11 under FreeBSD my Intellimouse is a lot slower than in X11 under Linux? I use Option Protocol auto under FreeBSD and Option Protocol ImPS/2 under linux. Somehow it feels like the mouse's resolution is different in FreeBSD. I've tried with Option Resolution from 100-2000 without any luck. Try xset m 10 -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Huge slapd?
On Sun, Nov 28, 2004 at 07:38:06PM -0500, Chuck Swiger wrote: Ivan Voras wrote: After a few days of mostly test load, top reports that the slapd process (OpenLDAP server) is huge: 439 ldap 200 149M 6128K kserel 0:07 0.00% 0.00% slapd I know that the actually used memory size is the 6MB figure above, but why does it allocate almost 150MB? Is it normal? This sounds like a classic example of a memory leak. Had the same before I moved to openldap 2.2 Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Beastie
On Sun, Nov 28, 2004 at 05:23:40PM -0800, Kris Kennaway wrote: On Sun, Nov 28, 2004 at 07:16:12PM -0600, Stephen Montgomery-Smith wrote: It is with a little intrepidation that I ask this question, because I sense that what I am about to ask might push some buttons, or perhaps bring back some unpleasant memories of those who have asked what I am going to ask in a less tactful manner. I find that the beastie that appears at boot time with FreeBSD 5.3 mildly bothers me. It is possible for me to edit boot/beastie.4th, but this gets put back each time I do make installworld. Would it be possible to add a variable show_beastie to be put in /boot/loader.conf, which would default to YES, but users could add in show_beastie=NO if they didn't want it, but only want the menu. That option is already there, you didn't look hard enough. It's not really the easiest option to find kris... beastie_disable=YES -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bug in xterm?
On Fri, Nov 26, 2004 at 02:07:51PM +, Brian Candler wrote: I can cause xterm to hang reliably with the following command: perl -mDigest::MD5 -e 'print pack(H*,Digest::MD5::md5(test))' A control-middlebutton-Do Full Reset is needed to get out of this state. It's not a bug in xterm on itself. If you cat a binary file you might end up in the same situation. [~] [EMAIL PROTECTED]perl -mDigest::MD5 -e 'print pack(H*,Digest::MD5::md5(test))' | hexdump -C 9f 4d f1 3c ae 73 67 46 |.M..sgF| This shows that it outputs some high-ascii data, which causes the xterm to stop output. If you do echo hi /tmp/aaa while in this state (be alert for typos), you see that it still accepts commands, but doesn't show them anymore. In other words, don't worry too much about it but make sure you redirect binary output to files or pipes and not the console. Edwin -- Edwin Groothuis |Personal website: http://www.mavetju.org [EMAIL PROTECTED]| Weblog: http://weblog.barnet.com.au/edwin/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: xargs broken
On Mon, Jul 01, 2002 at 01:37:03AM +0200, Cyrille Lefevre wrote: Hi, xargs seems to be broken right now... could someone reproduce the following sequence ? # uname -a FreeBSD gits 4.6-STABLE FreeBSD 4.6-STABLE #15: Sun Jun 23 06:31:23 CEST 2002 root@gits:/disk2/freebsd/src/sys/compile/CUSTOM i386 # ident /usr/bin/xargs /usr/bin/xargs: $FreeBSD: src/usr.bin/xargs/xargs.c,v 1.9.2.3 2002/06/17 04:44:46 jmallett Exp $ $FreeBSD: src/usr.bin/xargs/strnsubst.c,v 1.5.2.1 2002/06/17 04:44:46 jmallett Exp $ # cd /home/ncvs # find ports -type d | grep -v Attic | sort -u /tmp/p # cd /usr # xargs ls -d /tmp/p xargs: ls: Argument list too long You mean the warning Argument list too long ? It's coming from your shell. Edwin -- Edwin Groothuis | Personal website: http://www.MavEtJu.org [EMAIL PROTECTED]|Interested in MUDs? Visit Fatal Dimensions: bash$ :(){ :|:};: |http://www.FatalDimensions.org/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-stable in the body of the message
Re: [Freenet6] Does Apache-2 listen for IPv6 on a 6to4 network?
On Fri, Apr 19, 2002 at 06:08:29PM +1000, Robert wrote: Thanks Edwin... Well, at least someone can see it :-) It's set to answer only IPv6 enquiries at the moment. and does IE understand IPV6? good question ? It's version 6, on W2K - but that doesn't mean a lot. Is there a browser that does ? Mozilla does, so Galeon will do too :-) But for the rest I have no idea if Netscape Navigator does these days, or if Opera supports it. After all, it's a chicken and egg problem :-/ Edwin -- Edwin Groothuis | Personal website: http://www.MavEtJu.org [EMAIL PROTECTED]|Interested in MUDs? Visit Fatal Dimensions: bash$ :(){ :|:};: |http://www.FatalDimensions.org/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-stable in the body of the message