newsyslog problem on 3.8
i've installed openbsd 3.8 on a i386 box this week-end (to replace a 3.6) and all went smoothly except one thing. i get many mail from newsyslog like this = newsyslog: can't mv /var/cron/log to /var/cron/log.0: No such file or directory gzip: /var/cron/log.0.gz already has .gz suffix -- unchanged = newsyslog: can't mv /var/cron/log to /var/cron/log.0: No such file or directory newsyslog: can't mv /var/log/maillog to /var/log/maillog.0: No such file or directory = gzip: input: /var/cron/log.0: No such file or directory = newsyslog: can't chmod /var/cron/log.3.gz: No such file or directory newsyslog: can't chown /var/cron/log.3.gz: No such file or directory gzip: /var/cron/log.0.gz already has .gz suffix -- unchanged = i did not touch manually this files, except one time, when trying to clear a state like this in /var/cron log log.0.gz log.1 log.2.gz any ideas ? thanks Regards Julien
Re: Trunk(4) for 3.8
On Tue, Nov 01, 2005 at 04:51:10AM -0200, Gustavo Rios wrote: > I am in doubt reading the following paragraph: > > "The driver currently supports the trunk protocols roundrobin [default], > failover, and none for link aggregation and link failover." > > Does the part "... and none for link aggregation and link failover" > mean that if i want link aggregationa nd link failover i should use > "none" ? > no, you don't use none. > Thanks. reyk
Re: Trunk(4) for 3.8
On Tue, Nov 01, 2005 at 04:51:10AM -0200, Gustavo Rios wrote: > I am in doubt reading the following paragraph: > > "The driver currently supports the trunk protocols roundrobin [default], > failover, and none for link aggregation and link failover." > > Does the part "... and none for link aggregation and link failover" > mean that if i want link aggregationa nd link failover i should use > "none" ? > you have to keep reading ;) just below the text you quote, the different protocols are explained more fully. i will ask reyk to make that a little clearer though. jmc
Memory leak in openbgpd ?
Hi there... Seems I have found some memory leak inside bgpd... When I set route-collector no in bgpd.conf my bgpd processes seems to growing and growing (I had some process to grow using more than 1G of total memory) when running it several days. But When I just comment it : #route-collector no The bgpd system is working correctly without any problems... I have tested that on production system with 2 full view and 2 ibgp view... If you need some more informations and examples please drop me a email. (note this bug has been seen on 3.7 Release on sparc64 and on 3.8 beta on x86... I think it is on 3.8 release also but I didn't tested yet).. /xavier
Re: Memory leak in openbgpd ?
On Tue, Nov 01, 2005 at 10:23:59AM +0100, Xavier Beaudouin wrote: > Hi there... > > Seems I have found some memory leak inside bgpd... > > When I set route-collector no in bgpd.conf my bgpd processes seems to > growing and growing (I had some process to grow using more than 1G of > total memory) when running it several days. > > But > > When I just comment it : > > #route-collector no > > The bgpd system is working correctly without any problems... > Hmm. That does not make sense. #route-collector no and route-collector no result in the same action. As "route-collector no" is the default action. Will have a look at it. > I have tested that on production system with 2 full view and 2 ibgp view... > > If you need some more informations and examples please drop me a email. > > (note this bug has been seen on 3.7 Release on sparc64 and on 3.8 beta > on x86... I think it is on 3.8 release also but I didn't tested yet).. > Hmm. If possible the full config could be helpful. Any idea how fast it is leaking memory? -- :wq Claudio
Re: a truly openbsd day
On 31/10/05, Kevin <[EMAIL PROTECTED]> wrote: > >>As a desktop OS, it's unfortunately a bit difficult to setup with everything > >>needed by the average desktop user who doesn't care what their OS is. > >> > >>This makes me wonder - a desktop OpenBSD fork... > > > > Not forking in the strictest sense - pc-bsd is not exactly a fork of FreeBSD > > but more a preconfigured installation and some userland X tools to simplify > > package management. A nice X frontend for package installation and a modern > > window manager, together with some hardware config tools and we'll have a > > perfect "desktop OpenBSD" > > Alternately, a LiveCD distribution along the lines of "FreeSBIE", > to show off the usability and security of OpenBSD on the desktop. > > A starting point might be > http://www.onlamp.com/pub/a/bsd/2005/07/14/openbsd_live.html > > I'd love to see a bootable OpenBSD desktop CD with all applications > tightly wrapped by systrace, so I don't need to recreate and redistribute > the boot disk after each new Firefox, GAIM, etc exploit. > > Kevin I think it would be more useful with a m0n0wall-type distribution image. So far, I haven't seen one, but I haven't looked very hard either. -- Andreas Kahari
Re: Mac Mini as Firewall
Bruno S. Delbono wrote: - VPN Router (With X509/PSK) - Firewall with QoS - Squid Proxy - Mail Server - About 2000/mails a day and 5 account - Web Server - Dynamic content [ Mambo and gallery2 ]. - DNS/DHCP Server You will not have any problem running those. I'm running that kind of setup on much less powerfull hardware. You may want to have a look at the hard drive which is slow and might be a bottleneck... Can I use the in-built Airport Extreme card to serve as an AP with As far as I know, Airport Extreme is not and will never be supported (I hope I'll be wrong soon). Antoine
Re: in-kernel pppoe and fixed address
Can Erkin Acar wrote: It is probably a problem with your ISP. It wants to give you a (fixed) address. It does not allow you to specify an address, even if they are the same. Damn... this is exactly what I was afraid of. Well, I'll be changing ISP in a month or so, I'll check is this is happening again then. As a workaround, if you are using -current, you can use ifstated. In -current pppoe brings its link state 'up' when the IP layer is open (ie. has an address). Well, I will see that in 6 months then ;) Thanks ! Antoine
Re: 3.8 release, November 1 2005
On Mon, 31 Oct 2005 23:29:09 -0700, Theo de Raadt wrote: > Nov 1, 2005. > > We are pleased to announce the official release of OpenBSD 3.8. Thanks so much to everyone involved ! Now I am looking forward to some installs and upgrades, as usual, to get the latest of my preferred server-OS into action. Thanks again; and now I'm waiting for 3.9 ! Uwe
Re: a truly openbsd day
On Tue, 01 Nov 2005 11:39:25 +1100, Shane J Pearson wrote: > What is so difficult? Install a pkg or port, read the pkg_info for it, > do what it says. If you come across a problem: apropos, Google, MARC... > If you mean difficult as in "a little more effort" then ok, but it seems > like a small price to pay. Months ago a had to install Red Hat 9 on an > AMD XP 2800+ with 1GB RAM and a 7200RPM PATA disk, it took BLOODY AGES! > I felt like I was installing Windows XP on an old machine. OpenBSD takes > _minutes_, including getting X going. Then a little more to install the > packages I like. Seconded. I still keep thinking that an initial install isn't sooo difficult. Rather simple, that is. But when I look at our desktops (> 500), who'll ever do the upgrade once per 6 months (or a larger upgrade once per 12 months) ? This is why we rather roll out the 'apt-get update && apt-get upgrade'-systems for *nix. Let's be realistic, there is no way to ftp... patch... make... pkg_add -u... manually on a larger number of systems. *If* you talk about 'desktop', a fully scriptable version is indispensable before you start to think any further. The solution would rather be to have more developers so that all changes in /etc/ and ports can be done in a transparent manner. > Fork OpenBSD and you'll be > loosing them. That seems like a pretty extreme loss to me. Fork is no solution, as far as I can see. Just the opposite is needed. Uwe
Re: in-kernel pppoe and fixed address
Antoine Jacoutot wrote: > Jason McIntyre wrote: >> my hostname.pppoe0 file does this without problem. i guess the problem >> is you specify an exact ip, but a wildcard for your gateway. > > Sorry about that. I was not very clear. In fact, I also tried to set the > gateway to a fixed IP, but it does not change anything, I still can't > connect. pppoe allows setting of local and peer addresses, and will request/require these values when it negotiates the address. 0.0.0.0 and 0.0.0.1 are special in that they allow the addresses sent by the peer to be accepted. >> whether it will fix your problem (app binding in rc.local) i don't know. > > Actually I know it does since even when not connected yet, the pppoe0 > interface has already an IP assigned and the application can start > without a problem. > Anyway, this particular thing is not very important, I just want to know > if there's a way to set a fixed IP/gateway in hostname.pppoe0 and be > able to connect. It is probably a problem with your ISP. It wants to give you a (fixed) address. It does not allow you to specify an address, even if they are the same. As a workaround, if you are using -current, you can use ifstated. In -current pppoe brings its link state 'up' when the IP layer is open (ie. has an address). Can
Re: 3.8 release, November 1 2005
Christmas comes but twice a year! On 01/11/2005, at 5:29 PM, Theo de Raadt wrote: We are pleased to announce the official release of OpenBSD 3.8. Thank you very much Theo and... Aaron Campbell, Aleksander Piotrowski, Alex Feldman, Alexander Guy, Alexander von Gernler, Alexander Yurchenko, Alexandre Anriot, Andreas Gunnarsson, Angelos D. Keromytis, Anil Madhavapeddy, Artur Grabowski, Ben Lindstrom, Bernd Ahlers, Bjorn Sandell, Bob Beck, Brad Smith, Brandon Creighton, Brian Caswell, Brian Somers, Bruno Rohee, Camiel Dobbelaar, Can Erkin Acar, Cedric Berger, Chad Loder, Chris Cappuccio, Christian Weisgerber, Christopher Pascoe, Claudio Jeker, Constantine Sapuntzakis, Dale Rahn, Damien Bergamini, Damien Couderc, Damien Miller, Dan Harnett, Daniel Hartmeier, Darren Tucker, David B Terrell, David Gwynne, David Krause, David Lebel, David Leonard, Don Stewart, Dug Song, Eric Jackson, Esben Norby, Federico G. Schwindt, Fernando Gont, Greg Taleck, Grigoriy Orlov, Hakan Olsson, Hans Insulander, Hans-Joerg Hoexer, Heikki Korpela, Henning Brauer, Henric Jungheim, Hiroaki Etoh, Horacio Menezo Ganau, Hugh Graham, Ian Darwin, Jacob Meuser, Jakob Schlyter, Jan-Uwe Finck, Jared J. Yanovich, Jason Ish, Jason McIntyre, Jason Peel, Jason Wright, Jean-Baptiste Marchand, Jean-Francois Brousseau, Jean-Jacques Bernard-Gundol, Jim Rees, Joel Knight, Jolan Luff, Jonathan Gray, Jordan Hargrave, Joris Vink, Jose Nazario, Joshua Stein, Jun-ichiro itojun Hagino, Kenji Aoyama, Kenjiro Cho, Kenneth R Westerback, Kevin Lo, Kevin Steves, Kjell Wooding, Kurt Miller, Louis Bertrand, Magnus Holmberg, Marc Balmer, Marc Espie, Marc Matteo, Marco Peereboom, Marco Pfatschbacher, Marco S Hyman, Marcus Watts, Margarida Sequeira, Marius Eriksen, Mark Grimes, Mark Kettenis, Markus Friedl, Martin Reindl, Mathieu Sauve-Frankel, Mats O Jansson, Matt Behrens, Matt Smart, Matthew Jacob, Matthieu Herrb, Michael Coulter, Michael Shalayeff, Michael T. Stolarchuk, Mike Frantzen, Mike Pechkin, Miod Vallat, Moritz Jodeit, Nathan Binkert, Niall O'Higgins, Nick Holland, Niels Provos, Niklas Hallqvist, Nikolay Sturm, Nils Nordman, Oleg Safiullin, Otto Moerbeek, Paul Janzen, Pedro Martelletto, Peter Galbavy, Peter Stromberg, Peter Valchev, Philipp Buehler, Reinhard J. Sammer, Reyk Floeter, Rich Cannings, Robert Nagy, Ryan Thomas McBride, Saad Kadhi, Shell Hin-lik Hung, Stephen Kirkham, Steve Murphree, Ted Unangst, Theo de Raadt, Thierry Deval, Thomas Nordin, Thorsten Lockert, Tobias Weingartner, Todd C. Miller, Todd T. Fries, Tom Cosgrove, Uwe Stuehler, Vincent Labrecque, Wilbern Cobb, Wim Vandeputte, Xavier Santolaria. all you guys for your fantastic efforts and achievements! Shane J Pearson
Cisco Aironet 350 assistance
Hello,
I have a not-exactly-new Panasonic Toughbook CF-72. OpenBSD 3.8
installs well after disabling ahc* at the UKC prompt in the
second-stage boot.
But, my aironet card isn't configured, and I'm not sure what I need to
do to finish configuration.
"Aironet MPI-350 Wireless" rev 0x00 at pci2 dev 3 function 0 not configured
This puzzles me slightly. What do I need to do?
Full dmesg
OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Mobile Intel(R) Pentium(R) 4 - M CPU 1.80GHz ("GenuineIntel"
686-class) 1.20 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX
,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-ID
real mem = 804298752 (785448K)
avail mem = 726609920 (709580K)
using 4278 buffers containing 40316928 bytes (39372K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(10) BIOS, date 09/17/02, BIOS32 rev. 0 @ 0xfd870
apm0 at bios0: Power Management spec V1.2
apm0: battery life expectancy 99%
apm0: AC off, battery charge high
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xfd870/0x790
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf30/176 (9 entries)
pcibios0: PCI Interrupt Router at 000:31:0 ("Intel 82371FB ISA" rev 0x00)
pcibios0: PCI bus #4 is the last bus
bios0: ROM list: 0xc/0xe000 0xce000/0x1000 0xe/0x1!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel 82845 Host" rev 0x04
ppb0 at pci0 dev 1 function 0 "Intel 82845 AGP" rev 0x04
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 "ATI Radeon Mobility M7 LW" rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
uhci0 at pci0 dev 29 function 0 "Intel 82801CA/CAM USB" rev 0x02: irq 9
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
ppb1 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0x42
pci2 at ppb1 bus 2
cbb0 at pci2 dev 0 function 0 "Ricoh 5C476 CardBus" rev 0x80: irq 9
cbb1 at pci2 dev 0 function 1 "Ricoh 5C476 CardBus" rev 0x80: irq 9
"AT&T/Lucent LTMODEM" rev 0x02 at pci2 dev 1 function 0 not configured
rl0 at pci2 dev 2 function 0 "Realtek 8139" rev 0x10: irq 9 address
00:80:45:22:bf:fd
rlphy0 at rl0 phy 0: RTL internal phy
"Aironet MPI-350 Wireless" rev 0x00 at pci2 dev 3 function 0 not configured
cardslot0 at cbb0 slot 0 flags 0
cardbus0 at cardslot0: bus 3 device 0 cacheline 0x0, lattimer 0x40
pcmcia0 at cardslot0
cardslot1 at cbb1 slot 1 flags 0
cardbus1 at cardslot1: bus 4 device 0 cacheline 0x0, lattimer 0x40
pcmcia1 at cardslot1
ichpcib0 at pci0 dev 31 function 0 "Intel 82801CAM LPC" rev 0x02: SpeedStep
pciide0 at pci0 dev 31 function 1 "Intel 82801CAM IDE" rev 0x02: DMA,
channel 0 configur
ed to compatibility, channel 1 configured to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA48, 28615MB, 58605120 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: SCSI0
5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
"Intel 82801CA/CAM SMBus" rev 0x02 at pci0 dev 31 function 3 not configured
auich0 at pci0 dev 31 function 5 "Intel 82801CA/CAM AC97" rev 0x02:
irq 9, ICH3 AC97
ac97: codec id 0x83847656 (SigmaTel STAC9756/57)
ac97: codec features 18 bit DAC, 18 bit ADC, SigmaTel 3D
audio0 at auich0
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
sysbeep0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask ef6d netmask ef6d ttymask ffef
pctr: user-level cycle counter enabled
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
--
The only way to keep your health is to eat what you don't want, drink
what you don't like, and do what you'd rather not.
- Mark Twain
Re: a truly openbsd day
Hi Uwe, On 01/11/2005, at 10:36 PM, Uwe Dippel wrote: Seconded. I still keep thinking that an initial install isn't sooo difficult. Rather simple, that is. But when I look at our desktops (> 500), who'll ever do the upgrade once per 6 months (or a larger upgrade once per 12 months) ? Are a large chunk of those 500 mostly the same config but with different user data in /home? Let's be realistic, there is no way to ftp... patch... make... pkg_add -u... manually on a larger number of systems. If you have a large number of desktops which are identical in configuration, then would it not be possible to have a staging desktop machine(s) which you bring up to date with patches and then have its binaries served to the appropriate desktops as need be? Perhaps you could even spread the rollout to the desktops out with different machines checking for updates on different days of the week. So as to minimize load on the staging desktop and also minimize potential damage. Or am I missing something which makes this impractical or impossible? Fork is no solution, as far as I can see. Just the opposite is needed. Absolutely. Shane J Pearson
Re: Cisco Aironet 350 assistance
On Tue, Nov 01, 2005 at 06:36:17AM -0600, Jared Solomon wrote: > Hello, > > I have a not-exactly-new Panasonic Toughbook CF-72. OpenBSD 3.8 > installs well after disabling ahc* at the UKC prompt in the > second-stage boot. > > But, my aironet card isn't configured, and I'm not sure what I need to > do to finish configuration. > > "Aironet MPI-350 Wireless" rev 0x00 at pci2 dev 3 function 0 not configured > > This puzzles me slightly. What do I need to do? > > Full dmesg PCI Aironet cards were basically just PCMCIA cards with some extra glue, the MPI-350 Mini-PCI Aironet devices we don't yet support.
Windows & OpenBSD
Dear folks! I am in need for integrating a set of windows dektops with some openbsd servers. I have two openbsd boxes: one acting like an NFS server and another with NIS + Kerberos. The OpenBSD workstations are already working with authentication being provided by NIS+Kerberos and storage centrally managed by a NFS storage server. The problem comes when i think on about 50 desktops running Windows XP/2003. I would like those windows boxes to grab the users/groups information directly from my nis/krb server, as also performs SSO based on the user principal stored on that same nis/krb server. Another important aspect is about NFS. The home directories needs to be made shared accros windows boxes. I am not considering using SAMBA. But i do consider adding an extra layer for authentication (since it will be added for email/proxy auth): openldap server. The problem is how to integrate OpenLDAP/NIS/KRB/NFS with those WIN boxes. Services For Unix (by MS) provides a consistent support for NFS client, i believe! Could i use it? Is there anything i should be aware about, before trying it? Now another problem: How to make windows authentication directly by means of NIS/KRB or even from OpenLDAP? I was searching the web and found about "GINA" (Graphical Identification aNd Authorization): It the windows login interface, it can be replaced. I searched some in the town ad found: http://wwwthep.physik.uni-mainz.de/~frink/newgina_pre09/readme.html http://www.arch.usyd.edu.au/~doug/gina.html http://www.windowsitpro.com/Article/ArticleID/14433/14433.html I would really LOVE to see what you have to write on such matters. Thanks A LOT for your time and cooperation. best regards
Re: 3.8 release, November 1 2005
I second that thankyou On Tuesday 01 November 2005 12:18 pm, Shane J Pearson wrote: > Christmas comes but twice a year! > > On 01/11/2005, at 5:29 PM, Theo de Raadt wrote: > > We are pleased to announce the official release of OpenBSD 3.8. > > Thank you very much Theo and... > > > Aaron Campbell, Aleksander Piotrowski, Alex Feldman, Alexander > > Guy, > > Alexander von Gernler, Alexander Yurchenko, Alexandre Anriot, > > Andreas Gunnarsson, Angelos D. Keromytis, Anil Madhavapeddy, > > Artur Grabowski, Ben Lindstrom, Bernd Ahlers, Bjorn Sandell, > > Bob Beck, Brad Smith, Brandon Creighton, Brian Caswell, > > Brian Somers, Bruno Rohee, Camiel Dobbelaar, Can Erkin Acar, > > Cedric Berger, Chad Loder, Chris Cappuccio, Christian Weisgerber, > > Christopher Pascoe, Claudio Jeker, Constantine Sapuntzakis, > > Dale Rahn, Damien Bergamini, Damien Couderc, Damien Miller, > > Dan Harnett, Daniel Hartmeier, Darren Tucker, David B Terrell, > > David Gwynne, David Krause, David Lebel, David Leonard, Don > > Stewart, > > Dug Song, Eric Jackson, Esben Norby, Federico G. Schwindt, > > Fernando Gont, Greg Taleck, Grigoriy Orlov, Hakan Olsson, > > Hans Insulander, Hans-Joerg Hoexer, Heikki Korpela, Henning > > Brauer, > > Henric Jungheim, Hiroaki Etoh, Horacio Menezo Ganau, Hugh Graham, > > Ian Darwin, Jacob Meuser, Jakob Schlyter, Jan-Uwe Finck, > > Jared J. Yanovich, Jason Ish, Jason McIntyre, Jason Peel, > > Jason Wright, Jean-Baptiste Marchand, Jean-Francois Brousseau, > > Jean-Jacques Bernard-Gundol, Jim Rees, Joel Knight, Jolan Luff, > > Jonathan Gray, Jordan Hargrave, Joris Vink, Jose Nazario, > > Joshua Stein, Jun-ichiro itojun Hagino, Kenji Aoyama, Kenjiro Cho, > > Kenneth R Westerback, Kevin Lo, Kevin Steves, Kjell Wooding, > > Kurt Miller, Louis Bertrand, Magnus Holmberg, Marc Balmer, > > Marc Espie, Marc Matteo, Marco Peereboom, Marco Pfatschbacher, > > Marco S Hyman, Marcus Watts, Margarida Sequeira, Marius Eriksen, > > Mark Grimes, Mark Kettenis, Markus Friedl, Martin Reindl, > > Mathieu Sauve-Frankel, Mats O Jansson, Matt Behrens, Matt Smart, > > Matthew Jacob, Matthieu Herrb, Michael Coulter, Michael Shalayeff, > > Michael T. Stolarchuk, Mike Frantzen, Mike Pechkin, Miod Vallat, > > Moritz Jodeit, Nathan Binkert, Niall O'Higgins, Nick Holland, > > Niels Provos, Niklas Hallqvist, Nikolay Sturm, Nils Nordman, > > Oleg Safiullin, Otto Moerbeek, Paul Janzen, Pedro Martelletto, > > Peter Galbavy, Peter Stromberg, Peter Valchev, Philipp Buehler, > > Reinhard J. Sammer, Reyk Floeter, Rich Cannings, Robert Nagy, > > Ryan Thomas McBride, Saad Kadhi, Shell Hin-lik Hung, > > Stephen Kirkham, Steve Murphree, Ted Unangst, Theo de Raadt, > > Thierry Deval, Thomas Nordin, Thorsten Lockert, > > Tobias Weingartner, Todd C. Miller, Todd T. Fries, > > Tom Cosgrove, Uwe Stuehler, Vincent Labrecque, Wilbern Cobb, > > Wim Vandeputte, Xavier Santolaria. > > all you guys for your fantastic efforts and achievements! > > > > Shane J Pearson
Re: Windows & OpenBSD
--On 01 November 2005 11:42 -0200, Gustavo Rios wrote: Now another problem: How to make windows authentication directly by means of NIS/KRB or even from OpenLDAP? I was searching the web and found about "GINA" (Graphical Identification aNd Authorization): It the windows login interface, it can be replaced. I searched some in the town ad found: does pGina help?
Re: ddclient writes a cache file in /etc
Am Dienstag, 1. November 2005 14:47 schrieben Sie: > So is this cache file a "system information file describing various info > about the system since it was booted"? (; That depends. If you're running it on an dialup router it's likely that the information therein changes and all is well. If you update your ip address polling an appliance (DSL router eg.), then this information should be persistent between a reboot. I'd say /etc/ is fine. Regards, Stephan
Re: Windows & OpenBSD
That's the type of question i would like feedback about. 2005/11/1, Stuart Henderson <[EMAIL PROTECTED]>: > --On 01 November 2005 11:42 -0200, Gustavo Rios wrote: > > > Now another problem: How to make windows authentication directly by > > means of NIS/KRB or even from OpenLDAP? I was searching the web and > > found about "GINA" (Graphical Identification aNd Authorization): It > > the windows login interface, it can be replaced. I searched some in > > the town ad found: > > does pGina help?
Re: Mac Mini as Firewall
On Tue, Nov 01, 2005 at 11:32:32AM +0100, Antoine Jacoutot wrote: You may want to have a look at the hard drive which is slow and might be a bottleneck... The Mac Mini hard drive can easily be replaced by a 7200 RPM drive. Mine is running with a Hitachi 7K100 drive and it is way faster than the original drive. And replacing the hard drive does *not* void the warranty. Best regards, -- Frank - my stupid blog: http://00f.net L'annuaire des professionnels de la manucure et de la pedicure : http://www.manucure-pro.com
Re: Windows & OpenBSD
One thing i would like was support for NIS (for user/group/etc database) and SSO by means of Kerberos for authentication purposes. As far as i know, pGina does not support such scenario. 2005/11/1, Stuart Henderson <[EMAIL PROTECTED]>: > --On 01 November 2005 11:42 -0200, Gustavo Rios wrote: > > > Now another problem: How to make windows authentication directly by > > means of NIS/KRB or even from OpenLDAP? I was searching the web and > > found about "GINA" (Graphical Identification aNd Authorization): It > > the windows login interface, it can be replaced. I searched some in > > the town ad found: > > does pGina help?
Re: a truly openbsd day
On Tue, 01 Nov 2005 23:37:39 +1100, Shane J Pearson wrote: > > Are a large chunk of those 500 mostly the same config but with different > user data in /home? No, they are not. Or, better, they wouldn't be. Organisation, profit or non-profit: Firstly you have to keep a solution that your support staff can handle. Secondly, in a divers organisation, you need to keep and update individual desktops. Thirdly, for Aunt Tilly I will pass by and install, but then the system must be able to 'auto-upgrade'. And don't get me wrong; I am anything but whining; I simply try to address the topic 'desktop'. And I even didn't bring it up. Nothing else. And when you have one foot in the 'geek' filed and one in real life, you don't address your personal desktop when this topic comes up. One point is the great 'errata'. They are exactly as I like them for my production boxes. And most in here will feel similar. But for 'desktop' you need a script check for new errata if new errata download check if errata applied if ! applied apply now if need reboot inform user to reboot check cvs for changes in packages if changes apply changes transparently # start-stop, activation, HUP, etc. if need reboot, ask user now to reboot The first part is almost done: The patches contain all the information. The 'rebuild kernel' is probably a standard per machine / user. Once again, no flames please. I know that many in here despise this solution. Up to everyone and fine with me. But then, IMHO, don't say 'desktop' and 'deploy'. 2 sen, Uwe
local network mail help needed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I'd like to be able to use just mail instead of the system MUA for one user who doesn't have an email account setup with the ISP, but who just wants to be able send email messages to other users on the network. So far, the messages keep getting "MDeferred: Connection refused by ". I added the network name, and later, when that didn't work, the IP address also, to /etc/mail/access, along with OK for local but not relay, rebuilt database by "makemap hash /etc/mail/access < /etc/mail/access", but the mail messages are still refused. I can ssh/scp between all the computers on the network. Also no problems with NFS. Use it regularly from an XP box and and the other BSD computers on the network. I had just started running pf on the box that's refusing the messages, but disabled it and restarted, but it didn't help. I don't know if it's pertinent to the problem, but I'm running current, now on the 4th system build. Didn't put dmesg in this message for sake of brevity, and because there was nothing abnormal in it after the last cvsup and build. But, if it's needed, please advise, and I'll do it. According to /usr/ports/infrastructure/build/out-of-date, all ports are up to date, too. Thanks for any help on this. Denny White GnuPG key : 0x1644E79A | http://wwwkeys.nl.pgp.net Fingerprint: D0A9 AD44 1F10 E09E 0E67 EC25 CB44 F2E5 1644 E79A iD8DBQFDZ2hKy0Ty5RZE55oRAjTGAJ0TMSSrK7aSWnUAiknONUaG1T35EACfRpB4 X0ku+Hhmb8XTKhapjepsMzQ= =LsiP -END PGP SIGNATURE-
A great article ( found on the OpenBSD site)
Greets I certainly found it worth a read. http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 Bob D
Re: 3.8 release, November 1 2005
On Tue, 1 Nov 2005 23:18:42 +1100 Shane J Pearson <[EMAIL PROTECTED]> spake: > Christmas comes but twice a year! Three times if you count 2 OpenBSD releases a year + the-actual-eat-too-much- and-buy/get-useless-crap-you-don't-need-day. But thanks for OpenBSD 3.8!
Re: A great article ( found on the OpenBSD site)
On Tue, 1 Nov 2005, Bob DeBolt wrote: Greets I certainly found it worth a read. http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 Bob D This was already posted a week or two ago. -- Terry
perl interface to pf?
Is there a perl interface to pf?
fsvs & openbsd
has anyone try fsvs (http://fsvs.tigris.org/), on openbsd (3.8) ?
i try to compile it (need pkg: subversion, apr-util, pcre, gmake) but
there are still some missing points.
it seems src use struct stat64 from linux which doesn't exist in sys/stat.h
by replacing with struct stat and corresponding fstat/lstat (not really
clean, but.), i get:
[...]
cc -Wall -g -funsigned-char -D_GNU_SOURCE=1 -D_FILE_OFFSET_BITS=64
-D__USE_FILE_OFFSET64 -DDEBUG -idirafter /usr/local/include/subversion-1
-idirafter /usr/local/include/apr-1/ -I/usr/local/include -Os
'-DFSVS_VERSION="fsvs-1.0.2:31"' -D__BSD__ -c -o fsvs.o fsvs.c
fsvs.c: In function `_DEBUGP':
fsvs.c:79: warning: passing arg 1 of `localtime' from incompatible
pointer type
fsvs.c: In function `_STOP':
fsvs.c:124: warning: passing arg 1 of `localtime' from incompatible
pointer type
[...]
cc -Wall -g -funsigned-char -D_GNU_SOURCE=1 -D_FILE_OFFSET_BITS=64
-D__USE_FILE_OFFSET64 -DDEBUG -idirafter /usr/local/include/subversion-1
-idirafter /usr/local/include/apr-1/ -I/usr/local/include -Os
'-DFSVS_VERSION="fsvs-1.0.2:31"' -D__BSD__ -c -o commit.o commit.c
commit.c: In function `ac__ci_set_props':
commit.c:139: error: structure has no member named `st_mtim'
commit.c:139: error: structure has no member named `st_mtim'
so looking for corresponding struct, i change st_mtim from struct stat64
to st_mtime from struct stat and their component (tv_sec/tv_nsec ->
tv_secs/tv_usecs).
===
ccp=(char *)svn_time_to_cstring (
apr_time_make( sts->st.st_mtime.tv_secs,
sts->st.st_mtime.tv_usecs),
pool);
===
cc -Wall -g -funsigned-char -D_GNU_SOURCE=1 -D_FILE_OFFSET_BITS=64
-D__USE_FILE_OFFSET64 -DDEBUG -idirafter /usr/local/include/subversion-1
-idirafter /usr/local/include/apr-1/ -I/usr/local/include -Os
'-DFSVS_VERSION="fsvs-1.0.2:31"' -D__BSD__ -c -o commit.o commit.c
commit.c: In function `ac__ci_set_props':
commit.c:139: error: request for member `tv_secs' in something not a
structure or union
commit.c:139: error: request for member `tv_usecs' in something not a
structure or union
ideas ? or other tries ?
thanks
Regards
Julien
diff -urN src.orig/Makefile src/Makefile
--- src.orig/Makefile Mon Oct 10 12:26:10 2005
+++ src/MakefileTue Nov 1 16:56:23 2005
@@ -11,13 +11,13 @@
# using -I would result in the files being _non_ system include directories,
# ie. they'd clutter the dependency files.
-INCS := -idirafter /usr/include/subversion-1 -idirafter /usr/include/apr-0/
+INCS := -idirafter /usr/local/include/subversion-1 -idirafter
/usr/local/include/apr-1/ -I/usr/local/include
HEADURL:= "$URL:
http://fsvs.tigris.org/svn/fsvs/tags/fsvs-1.0.2/fsvs/src/Makefile $"
HEADREV:= "$Revision: 31 $"
VERSION= $(shell perl -e '($$r) = (q( $(HEADREV) ) =~ m:(\d+):); $$t=
q( $(HEADURL) ) =~ m:/tags/([^/]+): ? $$1 : "trunk"; print "$$t:$$r\n";' )
-CFLAGS := -Wall -g -funsigned-char -D_GNU_SOURCE=1 -D_FILE_OFFSET_BITS=64
-D__USE_FILE_OFFSET64 -DDEBUG $(INCS) -Os '-DFSVS_VERSION="$(VERSION)"'
+CFLAGS := -Wall -g -funsigned-char -D_GNU_SOURCE=1 -D_FILE_OFFSET_BITS=64
-D__USE_FILE_OFFSET64 -DDEBUG $(INCS) -Os '-DFSVS_VERSION="$(VERSION)"'
-D__BSD__
LDFLAGS:= -g -L/usr/local/lib -lsvn_subr-1 -lsvn_ra-1 -lsvn_client-1
-lpcre
C_FILES:= $(wildcard *.c)
diff -urN src.orig/commit.c src/commit.c
--- src.orig/commit.c Mon Oct 10 08:15:02 2005
+++ src/commit.cTue Nov 1 17:20:36 2005
@@ -17,10 +17,10 @@
* and do that in a second run.
* */
/* TODO: convert to UTF-8 before sending */
-#include
-#include
-#include
-#include
+#include
+#include
+#include
+#include
#include
#include
#include
@@ -136,7 +136,7 @@
/* mtime. Extra const char * needed. */
ccp=(char *)svn_time_to_cstring (
- apr_time_make( sts->st.st_mtim.tv_sec,
sts->st.st_mtim.tv_nsec/1000),
+ apr_time_make( sts->st.st_mtime.tv_secs,
sts->st.st_mtime.tv_usecs),
pool);
str=svn_string_create(ccp, pool);
STOPIF_SVNERR( function, (baton, propname_mtime, str, pool) );
@@ -367,7 +367,7 @@
* In case a directory had many changed files it's possible that
* the cache is no longer valid. */
STOPIF( ops__build_path(&filename, sts), NULL);
- STOPIF_CODE_ERR( lstat64(filename, &(sts->st)) == -1,
+ STOPIF_CODE_ERR( lstat(filename, &(sts->st)) == -1,
errno, "lstat(%s)", filename);
}
@@ -385,7 +385,7 @@
const svn_delta_editor_t *editor;
void *edit_baton, *edit_copy;
void *root_baton;
- struct stat64 st;
+ struct stat st;
status=0;
@@ -393,7 +393,7 @@
edit_baton=NULL;
if (opt_commitmsgfile)
{
- STOPIF_CODE_ERR( fstat64(commitmsg_fh, &st) == -1, errno,
+ STOPIF_CO
Re: Windows & OpenBSD
- Original Message - From: "Gustavo Rios" <[EMAIL PROTECTED]> I am in need for integrating a set of windows dektops with some openbsd servers. I have two openbsd boxes: one acting like an NFS server and another with NIS + Kerberos. The problem comes when i think on about 50 desktops running Windows XP/2003. I would like those windows boxes to grab the users/groups information directly from my nis/krb server, as also performs SSO based on the user principal stored on that same nis/krb server. You can use the Windows XP support tools to get your windows boxen authenticate directly with your KDC: http://www.dice.inf.ed.ac.uk/groups/user_support/windows/winxpauthmit.html
Re: A great article ( found on the OpenBSD site)
On 11/1/05, Bob DeBolt <[EMAIL PROTECTED]> wrote: > Greets > > I certainly found it worth a read. > > http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 > quote: "My experience is that if something has to be done, just do it - don't ask! They will thank you later," he said. hmm!! interesting... :) one question though - is this the same Mark Uemura from www.openbsd-support.com? thanks for pointing out the article!! -jf
Re: perl interface to pf?
This is the weirdest thing I have heard all week. On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote: > Is there a perl interface to pf?
Re: newsyslog problem on 3.8
> newsyslog: can't mv /var/cron/log to /var/cron/log.0: No such file or > directory > newsyslog: can't mv /var/log/maillog to /var/log/maillog.0: No such file > or directory > = > gzip: input: /var/cron/log.0: No such file or directory > = > newsyslog: can't chmod /var/cron/log.3.gz: No such file or directory > newsyslog: can't chown /var/cron/log.3.gz: No such file or directory > gzip: /var/cron/log.0.gz already has .gz suffix -- unchanged I had this exact saem thing once and it turned out that it was my fault...somehow. I managed to get 2 copies of cron running so newsyslog ran twice but one was always behind the other. A reboot fixed it. --Bryan
Returned mail: Data format error
ALERT! This e-mail, in its original form, contained one or more attached files that were infected with a virus, worm, or other type of security threat. This e-mail was sent from a Road Runner IP address. As part of our continuing initiative to stop the spread of malicious viruses, Road Runner scans all outbound e-mail attachments. If a virus, worm, or other security threat is found, Road Runner cleans or deletes the infected attachments as necessary, but continues to send the original message content to the recipient. Further information on this initiative can be found at http://help.rr.com/faqs/e_mgsp.html. Please be advised that Road Runner does not contact the original sender of the e-mail as part of the scanning process. Road Runner recommends that if the sender is known to you, you contact them directly and advise them of their issue. If you do not know the sender, we advise you to forward this message in its entirety (including full headers) to the Road Runner Abuse Department, at [EMAIL PROTECTED] Dear user of openbsd.org, We have found that your e-mail account was used to send a huge amount of unsolicited commercial email messages during this week. Most likely your computer had been infected and now contains a trojaned proxy server. We recommend that you follow our instruction in order to keep your computer safe. Have a nice day, openbsd.org user support team. file attachment: file.zip This e-mail in its original form contained one or more attached files that were infected with the [EMAIL PROTECTED] virus or worm. They have been removed. For more information on Road Runner's virus filtering initiative, visit our Help & Member Services pages at http://help.rr.com, or the virus filtering information page directly at http://help.rr.com/faqs/e_mgsp.html.
Re: A great article ( found on the OpenBSD site)
On Tue, 1 Nov 2005, Greg Thomas wrote: On 11/1/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: On Tue, 1 Nov 2005, Bob DeBolt wrote: Greets I certainly found it worth a read. http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 Bob D This was already posted a week or two ago. On Slashdot and other places but as far as I can see Bob was the first to post it on misc. Greg My bad. I saw it on openbsd-newbies. Sorry about that Bob. -- Terry
Re: perl interface to pf?
* Marco Peereboom <[EMAIL PROTECTED]> [2005-11-01 10:11]:
> This is the weirdest thing I have heard all week.
>
> On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote:
> > Is there a perl interface to pf?
>
8<
#!/usr/bin/perl
if ((not 0 && not 1) != (!0 && !1)) {
print "No, just exec pfctl from within perl.\n";
print "But feed it carefully, and know how perl works.\n";
} else {
print "Of course, that's a great idea! everyone groks perl!\n";
}
http://www.openbsd.org/errata.html Outdated...
I installed a OpenBSD 3.8 and did a CVS-Update of the SRC. After that I noticed that the Errata seams to be outdated. At least the SSL-Fix wich fixes an SSLv2 Bug should be noticed. Kind regards, Sebastian
ciss is slow and uses all the CPU
I installed a snapshot on an HP Proliant DL360, and everything seems
fine except that disk performance is terrible. Just running bonnie++
for a quick test it can only do 8MB/s write because its using 100% of
the CPU. Top shows its all being spent in system time. For contrast,
my slow laptop ATA drive does 14MB/s at 3% CPU usage.
Adam
OpenBSD 3.8-current (GENERIC) #169: Sun Oct 2 15:06:50 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Xeon(TM) CPU 3.06GHz ("GenuineIntel" 686-class) 3.07 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-
ID real mem = 2147041280 (2096720K) avail mem = 1953218560 (1907440K)
using 4278 buffers containing 107454464 bytes (104936K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(00) BIOS, date 12/31/99, BIOS32 rev. 0 @
0xf pcibios0 at bios0: rev 2.1 @ 0xf/0x2000
pcibios0: PCI BIOS has 7 Interrupt Routing table entries
pcibios0: PCI Interrupt Router at 000:15:0 ("ServerWorks CSB5
SouthBridge" rev 0x00) pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc/0x8000 0xc8000/0x4000 0xcc000/0x1800
0xee000/0x2000! cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "ServerWorks CNB20-HE" rev 0x31
pchb1 at pci0 dev 0 function 1 "ServerWorks CNB20-HE" rev 0x00
pchb2 at pci0 dev 0 function 2 "ServerWorks CNB20-HE" rev 0x00
pci1 at pchb2 bus 1
bge0 at pci1 dev 2 function 0 "Broadcom BCM5703X" rev 0x02, BCM5703 A2
(0x1002): irq 11 address 00:0b:cd:d1:2a:c7 brgphy0 at bge0 phy 1:
BCM5703 10/100/1000baseT PHY, rev. 2 vga1 at pci0 dev 3 function 0 "ATI
Rage XL" rev 0x27 wsdisplay0 at vga1 mux 1: console (80x25, vt100
emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
ciss0 at pci0 dev 4 function 0 "Compaq Smart Array 5i/532 rev.2" rev
0x01: irq 3 ciss0: 1 LD HW rev 1 FW 2.38/2.38
lmap 4000:0 scsibus0 at ciss0: 1 targets
sd0 at scsibus0 targ 0 lun 0: SCSI0 0/
direct fixed ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
sd0: 69459MB, 69459 cyl, 64 head, 32 sec, 512 bytes/sec, 142253280 sec
total vendor "Compaq", unknown product 0xb203 (class system subclass
miscellaneous, rev 0x01) at pci0 dev 5 function 0 not configured vendor
"Compaq", unknown product 0xb204 (class system subclass miscellaneous,
rev 0x01) at pci0 dev 5 function 2 not configured pcib0 at pci0 dev 15
function 0 "ServerWorks CSB5 SouthBridge" rev 0x93 pciide0 at pci0 dev
15 function 1 "ServerWorks CSB5 IDE" rev 0x93: DMA atapiscsi0 at
pciide0 channel 0 drive 0 scsibus1 at atapiscsi0: 2 targets cd0 at
scsibus1 targ 0 lun 0: SCSI0 5/cdrom
removable cd0(pciide0:0:0): using PIO mode 4, DMA mode 2 pchb3 at pci0
dev 15 function 3 "ServerWorks CSB5 PCI" rev 0x00 pchb4 at pci0 dev 17
function 0 "ServerWorks CIOBX2" rev 0x05 pchb5 at pci0 dev 17 function
2 "ServerWorks CIOBX2" rev 0x05 pci2 at pchb5 bus 4
bge1 at pci2 dev 2 function 0 "Broadcom BCM5703X" rev 0x02, BCM5703 A2
(0x1002): irq 10 address 00:0b:cd:d1:2a:c6 brgphy1 at bge1 phy 1:
BCM5703 10/100/1000baseT PHY, rev. 2 isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
sysbeep0 at pcppi0
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
biomask e3ed netmask efed ttymask ffef
pctr: user-level cycle counter enabled
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
dkcsum: sd0 matches BIOS drive 0x80
root on sd0a
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
rootdev=0x400 rrootdev=0xd00 rawdev=0xd02
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
ciss0: cmd_stat 2 scsi_stat 0x0
Re: A great article ( found on the OpenBSD site)
On 11/1/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > On Tue, 1 Nov 2005, Greg Thomas wrote: > > > On 11/1/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > >> > >> On Tue, 1 Nov 2005, Bob DeBolt wrote: > >> > >>> Greets > >>> > >>> I certainly found it worth a read. > >>> > >>> http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 > >>> > >>> > >>> Bob D > >> > >> This was already posted a week or two ago. > > > > On Slashdot and other places but as far as I can see Bob was the first > to > > post it on misc. > > Greg > > My bad. I saw it on openbsd-newbies. Sorry about that Bob. Anyway, it's a damn cool article. I keep slipping OpenBSD in at work but I haven't had a chance to initiate a sea change. We've got several firewall projects at work where OpenBSD and CARP would save us big bucks but our networking department is just too close-minded. Greg
what am I missing? -sparc64
I was excited to install the new 3.8 this morning and looking at all of the ftp servers I could log into, I did not find a sparc64 folder. Is there something I skipped over or do not understand? I see that this is on disc 3, but I am not in the position to buy this release today. -B
Re: local network mail help needed
On 11/1/05, Denny White <[EMAIL PROTECTED]> wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > > I'd like to be able to use just mail instead of the system > MUA for one user who doesn't have an email account setup with > the ISP, but who just wants to be able send email messages > to other users on the network. So far, the messages keep getting > "MDeferred: Connection refused by ". I added the network > name, and later, when that didn't work, the IP address also, to > /etc/mail/access, along with OK for local but not relay, rebuilt > database by "makemap hash /etc/mail/access < /etc/mail/access", > but the mail messages are still refused. I can ssh/scp between > all the computers on the network. Also no problems with NFS. Use > it regularly from an XP box and and the other BSD computers on > the network. I had just started running pf on the box that's > refusing the messages, but disabled it and restarted, but it > didn't help. I don't know if it's pertinent to the problem, > but I'm running current, now on the 4th system build. Didn't > put dmesg in this message for sake of brevity, and because there > was nothing abnormal in it after the last cvsup and build. But, > if it's needed, please advise, and I'll do it. According to > /usr/ports/infrastructure/build/out-of-date, all ports are up > to date, too. Thanks for any help on this. > Denny White Perhaps the sendmail section of the afterboot manpage is relevant? You're lacking quite a bit of info so we can only guess. Are the other users running OpenBSD? Sendmail? Default OpenBSD Sendmail config? Greg
Re: perl interface to pf?
On Tue, 1 Nov 2005, Bob Beck wrote:
> * Marco Peereboom <[EMAIL PROTECTED]> [2005-11-01 10:11]:
> > This is the weirdest thing I have heard all week.
> >
> > On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote:
> > > Is there a perl interface to pf?
> >
> 8<
> #!/usr/bin/perl
>
> if ((not 0 && not 1) != (!0 && !1)) {
> print "No, just exec pfctl from within perl.\n";
> print "But feed it carefully, and know how perl works.\n";
> } else {
> print "Of course, that's a great idea! everyone groks perl!\n";
> }
But, I need it in Ruby said the Whiney User.
Re: perl interface to pf?
On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote: > Is there a perl interface to pf? Perl is able to play with ioctl(2), maybe this fits your needs. If not go ahead, learn XS and write your own libs for that. But i hardly see any sense behind it :> Regards Simon
Re: Windows & OpenBSD
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Today Gustavo Rios contributed the following: Dear folks! I am in need for integrating a set of windows dektops with some openbsd servers. I have two openbsd boxes: one acting like an NFS server and another with NIS + Kerberos. The OpenBSD workstations are already working with authentication being provided by NIS+Kerberos and storage centrally managed by a NFS storage server. The problem comes when i think on about 50 desktops running Windows XP/2003. I would like those windows boxes to grab the users/groups information directly from my nis/krb server, as also performs SSO based on the user principal stored on that same nis/krb server. Another important aspect is about NFS. The home directories needs to be made shared accros windows boxes. I am not considering using SAMBA. But i do consider adding an extra layer for authentication (since it will be added for email/proxy auth): openldap server. The problem is how to integrate OpenLDAP/NIS/KRB/NFS with those WIN boxes. Services For Unix (by MS) provides a consistent support for NFS client, i believe! Could i use it? Is there anything i should be aware about, before trying it? Now another problem: How to make windows authentication directly by means of NIS/KRB or even from OpenLDAP? I was searching the web and found about "GINA" (Graphical Identification aNd Authorization): It the windows login interface, it can be replaced. I searched some in the town ad found: http://wwwthep.physik.uni-mainz.de/~frink/newgina_pre09/readme.html http://www.arch.usyd.edu.au/~doug/gina.html http://www.windowsitpro.com/Article/ArticleID/14433/14433.html I would really LOVE to see what you have to write on such matters. Thanks A LOT for your time and cooperation. best regards Services for Unix (by MS) works fine for me here on Windows XP, both with OpenBSD and FreeBSD. Little slow sometimes, but for the last 8 months, has been reliable. I've had no problems. Hope this helps some. Denny White GnuPG key : 0x1644E79A | http://wwwkeys.nl.pgp.net Fingerprint: D0A9 AD44 1F10 E09E 0E67 EC25 CB44 F2E5 1644 E79A iD8DBQFDZ4Ply0Ty5RZE55oRApK6AKCWPhaD/BC+9C+tYaaKfVrnKCxUKACeIJFe ahRMiJVZ9Xv/IIMcZTeb1oE= =EtaK -END PGP SIGNATURE-
Re: what am I missing? -sparc64
On Tue, Nov 01, 2005 at 12:44:55PM -0500, Bob Ababurko wrote: > I was excited to install the new 3.8 this morning and looking at all of > the ftp servers I could log into, I did not find a sparc64 folder. Is > there something I skipped over or do not understand? I see that this is > on disc 3, but I am not in the position to buy this release today. 3.8 is just released... check the mirrors close to you or wait until your current one is synched. Regards Simon
Re: what am I missing? -sparc64
OpenBSD is only available via the CD, you have to buy it. That is what supports the development of OpenBSD. This isn't Linux. And you should probably purchase a T-Shirt also http://www.openbsd.org/faq/faq3.html There are many good reasons to own an OpenBSD CD: CD sales support ongoing development of OpenBSD. Development of a multi-platform operating system requires constant investment in equipment. Your support in the form of a CD purchase has a real impact on future development. The CD contains binaries (and source) for all supported platforms. The CD is bootable on several platforms, and can be used to bootstrap a machine without a pre-existing installed operating system. The CD is useful for bootstrapping even if you choose to install a snapshot. Installing from CD is faster! Installing from CD preserves network connectivity resources. OpenBSD CDs always come with very nice stickers. Your system isn't fully complete without these. You can only get these stickers by buying a CD set or donating hardware. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bob Ababurko Sent: Tuesday, November 01, 2005 9:45 AM To: misc@openbsd.org Subject: what am I missing? -sparc64 I was excited to install the new 3.8 this morning and looking at all of the ftp servers I could log into, I did not find a sparc64 folder. Is there something I skipped over or do not understand? I see that this is on disc 3, but I am not in the position to buy this release today. -B
Re: perl interface to pf?
> But, I need it in Ruby said the Whiney User. > But I think Mauve has more RAM.
Re: what am I missing? -sparc64
It's there on the ones I look at. Try a different mirror, the one you are trying may not have it all yet. -Bob * Bob Ababurko <[EMAIL PROTECTED]> [2005-11-01 10:50]: > I was excited to install the new 3.8 this morning and looking at all of > the ftp servers I could log into, I did not find a sparc64 folder. Is > there something I skipped over or do not understand? I see that this is > on disc 3, but I am not in the position to buy this release today. > > -B
Re: A great article ( found on the OpenBSD site)
On Tuesday 01 November 2005 11:31, you wrote: > On 11/1/05, Bob DeBolt <[EMAIL PROTECTED]> wrote: > > Greets > > > > I certainly found it worth a read. > > > > http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 > > quote: > "My experience is that if something has to be done, just do it - don't > ask! They will thank you later," he said. > > hmm!! interesting... :) > > one question though - is this the same Mark Uemura from > www.openbsd-support.com? > > thanks for pointing out the article!! > > -jf what is the via based box they are using here http://www.openbsd-support.com/jp/en/htm/mgp/tokyopc05/mgp5.html
iwi freezes machine
Hi all
I'm trying to configure OBSD 3.8 on a compaq nx7010 laptop to use the
built-in Intel PRO/Wireless 2200BG (iwi driver). I've installed the
firmware from
http://damien.bergamini.free.fr/iwifw/OpenBSD/iwi-firmware-2.3.tgz. The
driver loads ok (at least that is my understanding from the attached
dmesg), but as soon as I try to attach the interface (ifconfig iwi0 up),
the box freezes for all practical purposes. The only thing left half
alive is the console that I issued the command from (which never returns
the prompt), but it's irresponsive and won't let me ctrl-c or ctrl-z the
hanging command.
I've asked Miss Google and some archives, but have not come across the
problem anywhere else. Has anybody seen this? Does anybody have a hint
for a clueless soul where to investigate? There's absolutely nothing in
the system log :-[
thx /markus
# ifconfig iwi0
iwi0: flags=8802 mtu 1500
lladdr 00:12:f0:b9:a1:86
media: IEEE802.11 autoselect
status: no network
ieee80211: nwid "" 100dBm
# dmesg
OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) M processor 1.80GHz ("GenuineIntel" 686-class)
1.80 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF,EST,TM2
cpu0: Enhanced SpeedStep 1800 MHz (1340 mV): speeds: 1800, 1600, 1400,
1200, 1000, 800, 600 MHz
real mem = 536256512 (523688K)
avail mem = 482410496 (471104K)
using 4278 buffers containing 26914816 bytes (26284K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(c3) BIOS, date 07/14/05, BIOS32 rev. 0 @ 0xf
apm0 at bios0: Power Management spec V1.2 (BIOS managing devices)
apm0: AC on, battery charge unknown
apm0: flags 130102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0x2000
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf0840/176 (9 entries)
pcibios0: bad IRQ table checksum
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf99f0/176 (9 entries)
pcibios0: PCI Exclusive IRQs: 5 10 11
pcibios0: no compatible PCI ICU found: ICU vendor 0x8086 product 0x24cc
pcibios0: PCI bus #3 is the last bus
bios0: ROM list: 0xc/0x1
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel 82855PE Hub" rev 0x03
ppb0 at pci0 dev 1 function 0 "Intel 82855PE AGP" rev 0x03
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 "ATI Radeon Mobility M9 Lf" rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
uhci0 at pci0 dev 29 function 0 "Intel 82801DB USB" rev 0x01: irq 10
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 "Intel 82801DB USB" rev 0x01: irq 5
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 "Intel 82801DB USB" rev 0x01: irq 5
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
ehci0 at pci0 dev 29 function 7 "Intel 82801DB USB" rev 0x01: irq 5
usb3 at ehci0: USB revision 2.0
uhub3 at usb3
uhub3: Intel EHCI root hub, rev 2.00/1.00, addr 1
uhub3: 6 ports with 6 removable, self powered
ppb1 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0x81
pci2 at ppb1 bus 2
"VIA VT6306 FireWire" rev 0x80 at pci2 dev 0 function 0 not configured
rl0 at pci2 dev 1 function 0 "Realtek 8139" rev 0x20: irq 10 address
00:0f:b0:6e:f5:48
rlphy0 at rl0 phy 0: RTL internal phy
iwi0 at pci2 dev 2 function 0 "Intel PRO/Wireless 2200BG" rev 0x05: irq
11, address 00:12:f0:b9:a1:86
cbb0 at pci2 dev 4 function 0 "ENE CB-1410 CardBus" rev 0x01: irq 5
cardslot0 at cbb0 slot 0 flags 0
cardbus0 at cardslot0: bus 3 device 0 cacheline 0x8, lattimer 0x20
pcmcia0 at cardslot0
ichpcib0 at pci0 dev 31 function 0 "Intel 82801DBM LPC" rev 0x01
pciide0 at pci0 dev 31 function 1 "Intel 82801DBM IDE" rev 0x01: DMA,
channel 0 configured to compatibility, channel 1 configured to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 57231MB, 117210240 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: <_NEC, DVD+-RW ND-6450A, 2.36> SCSI0
5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, DMA mode 2
"Intel 82801DB SMBus" rev 0x01 at pci0 dev 31 function 3 not configured
auich0 at pci0 dev 31 function 5 "Intel 82801DB AC97" rev 0x01: irq 10,
ICH4 AC97
ac97: codec id 0x41445374 (Analog Devices AD1981B)
ac97: codec features headphone, 20 bit DAC, No 3D Stereo
audio0 at auich0
"Intel 82801DB Modem" rev 0x01 at pci0 dev 31 function 6 not configured
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0
Re: newsyslog problem on 3.8
Bryan Irvine wrote on 01/11/2005 17:56: I had this exact saem thing once and it turned out that it was my fault...somehow. I managed to get 2 copies of cron running so newsyslog ran twice but one was always behind the other. exactly. two entries in crontab. seems i've restore config a bit two quick on this. thanks a lot Regards Julien
Re: what am I missing? -sparc64
On 11/1/05, John Brahy <[EMAIL PROTECTED]> wrote: > OpenBSD is only available via the CD, you have to buy it. That is what where do you people come up with this crap?
Re: Windows & OpenBSD
Dear folks! Thanks a lof for your time and cooperation. Many suggestions were really interesting. Anyhow, know i already know how to get Windows to auth into a unix kdc (The posted notes were about MIT, just hope it works for Heimdal, does anybody know?)! One thing i am confused is that i only want to add users to the NIS server and let them use the W2k/W3k/XP/etc... I don't want to have to add users to the each of the desktop. One requirement: using SAMBA or an ADC is out of question for now. NFS, i believe, could be handle with MS SFU package. Since, i respectfuly request someone (kindly enough) if it would be possible for me to exchange some experiences in this regards, privately, once this is particular to OBSD. Once more, thank you for your time and cooperation. Best regards. 2005/11/1, Stefan Olsson <[EMAIL PROTECTED]>: > - Original Message - > From: "Gustavo Rios" <[EMAIL PROTECTED]> > > I am in need for integrating a set of windows dektops with some > > openbsd servers. I have two openbsd boxes: one acting like an NFS > > server and another with NIS + Kerberos. > > The problem comes when i think on about 50 desktops running Windows > > XP/2003. > > > > I would like those windows boxes to grab the users/groups information > > directly from my nis/krb server, as also performs SSO based on the > > user principal stored on that same nis/krb server. > > You can use the Windows XP support tools to get your windows > boxen authenticate directly with your KDC: > http://www.dice.inf.ed.ac.uk/groups/user_support/windows/winxpauthmit.html
Re: what am I missing? -sparc64
John Brahy wrote: OpenBSD is only available via the CD, you have to buy it. That is what Liar. Buying it helps the project, but it is certainly not a requirement. Moritz
Re: A great article ( found on the OpenBSD site)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 > quote: > "My experience is that if something has to be done, just do it - don't > ask! They will thank you later," he said. Yeah, an interesting quote, all right. It's obvious that his corporate culture is very different from the one where i work. I did exactly that for a few years (not exclusively with OpenBSD, but with a mixture of what i consider good operating systems). I saved the company money and set up a stable, secure infrastructure. They found out and told me to replace all of it with new hardware and a single "standardized" operating system. They'll thank You later? Not a chance. -& - -- GPG key / Schl|ssel -- http://simultan.dyndns.org/~arjones/gpgkey.txt Encrypt everything. / Alles verschl|sseln. Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFDZ8DYoI7tqy5bNGMRA2laAJsEgfrZD1afsMxVYIGIusujtdsGdACfew5X q5iBIo1OMbsPVWVFF4/Sylk= =iwpq -END PGP SIGNATURE-
Re: what am I missing? -sparc64
Simon Dassow wrote: On Tue, Nov 01, 2005 at 12:44:55PM -0500, Bob Ababurko wrote: I was excited to install the new 3.8 this morning and looking at all of the ftp servers I could log into, I did not find a sparc64 folder. Is there something I skipped over or do not understand? I see that this is on disc 3, but I am not in the position to buy this release today. 3.8 is just released... check the mirrors close to you or wait until your current one is synched. Regards Simon I finally found the sparc64 boot image. I have to say that I love the no frills install of OpenBSD. quick and easysuper. peace, /bob
Re: perl interface to pf?
On Nov 1, 2005, at 1:02 PM, Simon Dassow wrote: On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote: Is there a perl interface to pf? Perl is able to play with ioctl(2), maybe this fits your needs. If not go ahead, learn XS and write your own libs for that. But i hardly see any sense behind it :> use PF::Filter; my $rule = PF::Filter->new( -interface => 'em0', -log => 1, -src_addr => '10.0.0.2', -dst_addr => '192.168.0.1', -dst_port => 80, -action => 'block' ); $rule->param( flags => 'S/SA' ); $rule->param( label => 'api\'s r0x0r!!!' ); $rule->activate; How can you not see the value in that? ;-) -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net
openbsd as secure accesspoint documentation/tutorial
Hello, I was wondering if there are users using openbsd wifi accesspoints in a multi windows os environment like: windows mobile 2003, windows mobile 5, xp. Do you know about tutorials or documentation on how to setup such a "secure" openbsd accesspoint? I must honestly admit that I don't know which secure technology to use to be able to connect with all different clients, especially windows mobile wifi clients. I would really appreciate any suggestions. P.S I would not like to use WEP! Many thx Didier
Re: perl interface to pf?
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Diana Eichert
> Sent: Tuesday, November 01, 2005 9:47 AM
> To: misc@openbsd.org
> Subject: Re: perl interface to pf?
>
> On Tue, 1 Nov 2005, Bob Beck wrote:
>
> > * Marco Peereboom <[EMAIL PROTECTED]> [2005-11-01 10:11]:
> > > This is the weirdest thing I have heard all week.
> > >
> > > On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote:
> > > > Is there a perl interface to pf?
> > >
> > 8<
> > #!/usr/bin/perl
> >
> > if ((not 0 && not 1) != (!0 && !1)) {
> > print "No, just exec pfctl from within perl.\n";
> > print "But feed it carefully, and know how perl works.\n";
> > } else {
> > print "Of course, that's a great idea! everyone groks perl!\n";
> > }
>
> But, I need it in Ruby said the Whiney User.
I can't believe all the stupid responses I received due to this email.
Re: iwi freezes machine
FWIW: If I turn the radio transmitter off, I get the message: ugen0: at uhub2 port 2 (addr 3) disconnected ugen0 detached When I turn it back on, there's: ugen0 at uhub2 port 2 ugen0: ACTIONTEC Bluetooth by hp, rev 1.10/8.02, addr 3 Which are a bit strange to me. USB? Bluetooth? Maybe some mixup? Or is the device internally connected to the usb bus? BTW, the card works if I boot the machine with a ubuntu linux live-cd. krgds /markus
Re: Enhanced Speed Step Technology
On 01/11/05, Ted Unangst <[EMAIL PROTECTED]> wrote: > On 10/31/05, Per-Olov Sjvholm <[EMAIL PROTECTED]> wrote: > > This is what Dell says in the server manuals about enabling this feature in > > bios: > > --snip-- > > NOTICE: Before enabling the Speed Step option, ensure that the operating > > system also supports Enhanced Speed Step Technology. Enabling the feature on > > operating systems that do not support it may cause unpredictable results. > > See > > the operating system's documentation for its supported features. > > --snip-- > > that seems strange to me, i can't imagine any problem enabling it. It's probably one of those Dell talks... Have you seen their catalogue? It's full of complete nonsense, I don't know where do they find the lamers to write it. ;) Sorry, couldn't resist. Constantine.
Unoffical OpenBSD 3.8 torrents available
There are some unoffical 3.8 torrents now available. Packages will be available as they finish rsyncing. http://openbsd.somedomain.net/index.php?version=latest+release As always, I recommend you check the MD5 or CKSUMs against the MD5 or CKSUM files you get from an official mirror http://www.openbsd.org/ftp.html There is also a perl script avalable that will keep the torrents up to date using the rss feed. http://openbsd.somedomain.net/files/ l8rZ, -- andrew - ICQ# 253198 - JID: [EMAIL PROTECTED] Proud member: http://www.mad-techies.org BOFH excuse of the day: NOTICE: alloc: /dev/null: filesystem full
Re: perl interface to pf?
On 11/1/05, John Brahy <[EMAIL PROTECTED]> wrote:
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
> Of
> Diana Eichert
> > Sent: Tuesday, November 01, 2005 9:47 AM
> > To: misc@openbsd.org
> > Subject: Re: perl interface to pf?
> >
> > On Tue, 1 Nov 2005, Bob Beck wrote:
> >
> > > * Marco Peereboom <[EMAIL PROTECTED]> [2005-11-01 10:11]:
> > > > This is the weirdest thing I have heard all week.
> > > >
> > > > On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote:
> > > > > Is there a perl interface to pf?
> > > >
> > > 8<
> > > #!/usr/bin/perl
> > >
> > > if ((not 0 && not 1) != (!0 && !1)) {
> > > print "No, just exec pfctl from within perl.\n";
> > > print "But feed it carefully, and know how perl works.\n";
> > > } else {
> > > print "Of course, that's a great idea! everyone groks perl!\n";
> > > }
> >
> > But, I need it in Ruby said the Whiney User.
>
> I can't believe all the stupid responses I received due to this email.
>
>
They were much smarter and better informed than your reply to Bob Ababurko.
Greg
Re: A great article ( found on the OpenBSD site)
On Tue, 1 Nov 2005 08:57:56 -0700 Bob DeBolt <[EMAIL PROTECTED]> wrote: > Greets > > I certainly found it worth a read. > > http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 > > > Bob D How about the first entry on this page: http://openbsd.org/press.html ;-) Jasper -- "Security is decided by quality" -- Theo de Raadt
Re: perl interface to pf?
You're totally correct and I replied to him and apologized.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Greg Thomas
Sent: Tuesday, November 01, 2005 1:09 PM
To: OpenBSD-Misc
Subject: Re: perl interface to pf?
On 11/1/05, John Brahy <[EMAIL PROTECTED]> wrote:
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
> Of
> Diana Eichert
> > Sent: Tuesday, November 01, 2005 9:47 AM
> > To: misc@openbsd.org
> > Subject: Re: perl interface to pf?
> >
> > On Tue, 1 Nov 2005, Bob Beck wrote:
> >
> > > * Marco Peereboom <[EMAIL PROTECTED]> [2005-11-01 10:11]:
> > > > This is the weirdest thing I have heard all week.
> > > >
> > > > On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote:
> > > > > Is there a perl interface to pf?
> > > >
> > > 8<
> > > #!/usr/bin/perl
> > >
> > > if ((not 0 && not 1) != (!0 && !1)) {
> > > print "No, just exec pfctl from within perl.\n";
> > > print "But feed it carefully, and know how perl works.\n";
> > > } else {
> > > print "Of course, that's a great idea! everyone groks perl!\n";
> > > }
> >
> > But, I need it in Ruby said the Whiney User.
>
> I can't believe all the stupid responses I received due to this email.
>
>
They were much smarter and better informed than your reply to Bob Ababurko.
Greg
quad ethernet on netra x1
Hi, i have some problems with my quad ethernet in a netra x1 firewall, this is not the first time i face this, some months ago i had the very same problem, i was able to fix it following this excelent instructions: http://marc.theaimsgroup.com/?l=openbsd-sparc&m=108890209508001&w=2 Howerver, after the upgrade from 3.5 to 3.7 (a full new install, format disks, etc), the problem is there again, these the dmseg log: hme0 at pci3 dev 0 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9a ukphy2 at hme0 phy 1: Generic IEEE 802.3u media interface ukphy2: OUI 0x00601d, model 0x000c, rev. 1 hme0: using ivec 3005 for interrupt "Sun PCIO Ebus2" rev 0x01 at pci3 dev 1 function 0 not configured hme1 at pci3 dev 1 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9b ukphy3 at hme1 phy 1: Generic IEEE 802.3u media interface ukphy3: OUI 0x00601d, model 0x000c, rev. 1 hme1: using ivec 3004 for interrupt "Sun PCIO Ebus2" rev 0x01 at pci3 dev 2 function 0 not configured hme2 at pci3 dev 2 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9c ukphy4 at hme2 phy 1: Generic IEEE 802.3u media interface ukphy4: OUI 0x00601d, model 0x000c, rev. 1 hme2: using ivec 3005 for interrupt "Sun PCIO Ebus2" rev 0x01 at pci3 dev 3 function 0 not configured hme3 at pci3 dev 3 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9d ukphy5 at hme3 phy 1: Generic IEEE 802.3u media interface ukphy5: OUI 0x00601d, model 0x000c, rev. 1 hme3: using ivec 3004 for interrupt pcons at mainbus0 not configured hme0 is using 3005 for interrupt, the same that hme2, hme1 is using 3004 for interrupt, the same that hme3, etc I havent changed anything, i only booted from the 3.7 cd and started from scratch. what can i do? thanks
Re: A great article ( found on the OpenBSD site)
--On 01 November 2005 13:18 -0500, marrandy wrote: http://www.openbsd-support.com/jp/en/htm/mgp/tokyopc05/mgp5.html looks like an le-564.
Re: A great article ( found on the OpenBSD site)
From: Greg Thomas [mailto:[EMAIL PROTECTED] > On 11/1/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > > > On Tue, 1 Nov 2005, Greg Thomas wrote: > > > > > On 11/1/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > >> > > >> On Tue, 1 Nov 2005, Bob DeBolt wrote: > > >> > > >>> Greets > > >>> > > >>> I certainly found it worth a read. > > >>> > > >>> > http://www.computerworld.com.au/index.php/id;1375194866;fp;16;fpid;0 > > >>> > > >>> > > >>> Bob D > > >> > > >> This was already posted a week or two ago. > > > > > > On Slashdot and other places but as far as I can see Bob > was the first > > to > > > post it on misc. > > > Greg > > > > My bad. I saw it on openbsd-newbies. Sorry about that Bob. > > Anyway, it's a damn cool article. I keep slipping OpenBSD in > at work but I > haven't had a chance to initiate a sea change. We've got > several firewall > projects at work where OpenBSD and CARP would save us big > bucks but our > networking department is just too close-minded. Don't forget the "rest of the story": http://www.undeadly.org/cgi?action=article&sid=20051024113247&pid=27&mode=ex panded DS
Re: OpenOffice.org 2.0 works on OpenBSD
Hi, First, thanks for quick howto at http://www.00f.net/php/show-article.php/openoffice_on_openbsd Iam running 3.8 stable and have a problem when I do as your page describes, cd /usr/ports/emulators/redhat/base make install clean distclean ends up with the lines bellow... >> Checksum OK for rpm/readline-4.3-3.i386.rpm. (sha1) >> Checksum OK for rpm/rpm-4.1-1.06.i386.rpm. (sha1) >> Checksum OK for rpm/sh-utils-2.0.12-3.i386.rpm. (sha1) >> Checksum OK for rpm/termcap-11.0.1-13.noarch.rpm. (sha1) >> Checksum OK for rpm/zlib-1.1.4-8.8x.i386.rpm. (sha1) Make sure the Makefile and checksum file (/usr/ports/emulators/redhat/base/distinfo) are up to date. If you want to fetch a good copy of this file from the OpenBSD main archive, type "make REFETCH=true [other args]". *** Error code 1 Stop in /usr/ports/emulators/redhat/base (line 1505 of /usr/ports/infrastructure/mk/bsd.port.mk). *** Error code 1 Stop in /usr/ports/emulators/redhat/base (line 1633 of /usr/ports/infrastructure/mk/bsd.port.mk). any ideas are welcome, /bkw On 10/20/05, Frank Denis (Jedi/Sector One) <[EMAIL PROTECTED]> wrote: > Hello, > > Just a little note to tell that the just-released OpenOffice.org 2.0 > perfectly works on OpenBSD with the Linux emulation (tested with > OpenBSD-current). > > Basic instructions: > http://www.00f.net/php/show-article.php/openoffice_on_openbsd > > Best regards, > > -- > Frank - my stupid blog: http://00f.net > L'annuaire des professionnels de la manucure et de la pedicure : > http://www.manucure-pro.com > > -- ## BKW - Bachman Kharazmi bahkha AT gmail DOT com uin: #24089491 SWEDEN ##
Re: quad ethernet on netra x1
Miguel wrote: Hi, i have some problems with my quad ethernet in a netra x1 firewall, this is not the first time i face this, some months ago i had the very same problem, i was able to fix it following this excelent instructions: http://marc.theaimsgroup.com/?l=openbsd-sparc&m=108890209508001&w=2 Howerver, after the upgrade from 3.5 to 3.7 (a full new install, format disks, etc), the problem is there again, these the dmseg log: hme0 at pci3 dev 0 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9a ukphy2 at hme0 phy 1: Generic IEEE 802.3u media interface ukphy2: OUI 0x00601d, model 0x000c, rev. 1 hme0: using ivec 3005 for interrupt "Sun PCIO Ebus2" rev 0x01 at pci3 dev 1 function 0 not configured hme1 at pci3 dev 1 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9b ukphy3 at hme1 phy 1: Generic IEEE 802.3u media interface ukphy3: OUI 0x00601d, model 0x000c, rev. 1 hme1: using ivec 3004 for interrupt "Sun PCIO Ebus2" rev 0x01 at pci3 dev 2 function 0 not configured hme2 at pci3 dev 2 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9c ukphy4 at hme2 phy 1: Generic IEEE 802.3u media interface ukphy4: OUI 0x00601d, model 0x000c, rev. 1 hme2: using ivec 3005 for interrupt "Sun PCIO Ebus2" rev 0x01 at pci3 dev 3 function 0 not configured hme3 at pci3 dev 3 function 1 "Sun HME" rev 0x01: address 00:03:ba:39:bf:9d ukphy5 at hme3 phy 1: Generic IEEE 802.3u media interface ukphy5: OUI 0x00601d, model 0x000c, rev. 1 hme3: using ivec 3004 for interrupt pcons at mainbus0 not configured hme0 is using 3005 for interrupt, the same that hme2, hme1 is using 3004 for interrupt, the same that hme3, etc I havent changed anything, i only booted from the 3.7 cd and started from scratch. what can i do? thanks Hi, guys, sorry, the machine is a sunfire v120 instead of netra x1, thanks
Re: A great article ( found on the OpenBSD site)
another article worth a mention??? Hard-as-nails OpenBSD releases v3.8 http://www.tectonic.co.za/view.php?id=680
Re: SanDisk ImageMate 12in1 reader/writer (SDDR-89-E-15)
#Can anyone tell me whether I could use this USB card-reader with a #current OpenBSD release, specifically for CompactFlash ?#Is anyone using it ?#I wouldn't mind the "insert the flash disk into the adapter first, then #plug the USB adapter into the USB port" issue.#Why this specific reader/writer ? Cause I am cheap and I like to avoid #paying shipping charges from online stores when I can just as well pick #up this item which is carried by numerous local stores. =)It works
Re: openbsd as secure accesspoint documentation/tutorial
On Tue, Nov 01, 2005 at 09:14:52PM +0100, Didier Wiroth wrote: > Hello, > I was wondering if there are users using openbsd wifi accesspoints in a multi > windows os environment like: > windows mobile 2003, windows mobile 5, xp. > > Do you know about tutorials or documentation on how to setup such a "secure" > openbsd accesspoint? > > I must honestly admit that I don't know which secure technology to use to be > able to connect with all different clients, especially windows mobile wifi > clients. > > I would really appreciate any suggestions. Authpf(8) is a common tool for wifi authentication -- I use it with W2K, WME, W98, and OBSD clients. The Windows platforms all run putty. Since wifi isn't secure -- you'll want to set up encrypted connections for your clients. I use ssh to tunnel everything, and to provide SOCKS proxy services as well. Your environment may need more than that, if so, you can use vpn(8) or the OpenVPN port.
Re: what am I missing? -sparc64
Theo de Raadt wrote: What mirror were you using? Date: Tue, 01 Nov 2005 12:44:55 -0500 From: Bob Ababurko <[EMAIL PROTECTED]> User-Agent: Mozilla Thunderbird 1.0.7 (Macintosh/20050923) X-Accept-Language: en-us, en MIME-Version: 1.0 To: misc@openbsd.org Subject: what am I missing? -sparc64 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Loop: misc@openbsd.org Precedence: list Sender: [EMAIL PROTECTED] I was excited to install the new 3.8 this morning and looking at all of the ftp servers I could log into, I did not find a sparc64 folder. Is there something I skipped over or do not understand? I see that this is on disc 3, but I am not in the position to buy this release today. -B ftp.cse.buffalo.edu but there were others just the same. -Bob
Re: local network mail help needed
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Today Greg Thomas contributed the following:
On 11/1/05, Denny White <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'd like to be able to use just mail instead of the system
MUA for one user who doesn't have an email account setup with
the ISP, but who just wants to be able send email messages
to other users on the network. So far, the messages keep getting
"MDeferred: Connection refused by ". I added the network
name, and later, when that didn't work, the IP address also, to
/etc/mail/access, along with OK for local but not relay, rebuilt
database by "makemap hash /etc/mail/access < /etc/mail/access",
but the mail messages are still refused. I can ssh/scp between
all the computers on the network. Also no problems with NFS. Use
it regularly from an XP box and and the other BSD computers on
the network. I had just started running pf on the box that's
refusing the messages, but disabled it and restarted, but it
didn't help. I don't know if it's pertinent to the problem,
but I'm running current, now on the 4th system build. Didn't
put dmesg in this message for sake of brevity, and because there
was nothing abnormal in it after the last cvsup and build. But,
if it's needed, please advise, and I'll do it. According to
/usr/ports/infrastructure/build/out-of-date, all ports are up
to date, too. Thanks for any help on this.
Denny White
Perhaps the sendmail section of the afterboot manpage is relevant? You're
lacking quite a bit of info so we can only guess. Are the other users
running OpenBSD? Sendmail? Default OpenBSD Sendmail config?
Greg
Okay, thanks for the advice. I've already checked the README and
must've missed the default accept policy part. Checked the other
reference and saw it immediately. I'll try to figure out how to
do it. I've fooled around with sendmail on a FreeBSD box when I
was installing a virus program for checking email. It is, in fact,
the box that's trying to send the messages to this one, which is
running OpenBSD current with the sendmail default install. Thanks
for the pointers. Putting dmesg below in case needed. And the
FreeBSD box is still using default sendmail install too.
Denny White
OpenBSD 3.8-current (GENERIC) #4: Mon Oct 31 01:54:48 CST 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium III ("GenuineIntel" 686-class) 601 MHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE
real mem = 267952128 (261672K)
avail mem = 237645824 (232076K)
using 3296 buffers containing 13500416 bytes (13184K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(a7) BIOS, date 01/31/02, BIOS32 rev. 0 @ 0xfb4f0
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 70102 dobusy 1 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0xb970
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdd90/144 (7 entries)
pcibios0: PCI Exclusive IRQs: 5 9 10 11
pcibios0: PCI Interrupt Router at 000:07:0 ("VIA VT82C596A ISA" rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0x8000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "VIA VT82C691 PCI" rev 0xc4
ppb0 at pci0 dev 1 function 0 "VIA VT82C598 AGP" rev 0x00
pci1 at ppb0 bus 1
pcib0 at pci0 dev 7 function 0 "VIA VT82C686 ISA" rev 0x22
pciide0 at pci0 dev 7 function 1 "VIA VT82C571 IDE" rev 0x10: ATA66, channel 0
configured to compatibility, channel 1 configured to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 28629MB, 58633344 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom
removable
atapiscsi1 at pciide0 channel 1 drive 1
scsibus1 at atapiscsi1: 2 targets
cd1 at scsibus1 targ 0 lun 0: SCSI0 5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, DMA mode 2
cd1(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2
uhci0 at pci0 dev 7 function 2 "VIA VT83C572 USB" rev 0x10: irq 9
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 7 function 3 "VIA VT83C572 USB" rev 0x10: irq 9
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: VIA UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
viaenv0 at pci0 dev 7 function 4 "VIA VT82C686 SMBus" rev 0x30
auvia0 at pci0 dev 7 function 5 "VIA VT82C686 AC97" rev 0x20: irq 5
ac97: codec id 0x83847644 (SigmaTel STAC9744/45)
ac97: codec features 18 bit DAC, 18 bit ADC, SigmaTel 3D
audio0 at auvia0
fxp0 at pci0 dev 13 function 0 "Intel 82557" rev 0x08, i82559: irq 11, address
00:d0:b7:ba:15:09
inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 4
vga1 at pci0 dev 15 function 0 "3DFX Interactive Voodoo3" rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: sc
Re: A great article ( found on the OpenBSD site)
On 11/1/05, Spruell, Darren-Perot <[EMAIL PROTECTED]> wrote: > > Don't forget the "rest of the story": > > > http://www.undeadly.org/cgi?action=article&sid=20051024113247&pid=27&mode=ex > panded Awesome. Thanks for pointing us to the follow up. Working in a similar environment to Mark I kind of assumed many of the things he clarified. Greg
Broadcom BCM5721 driver for OpenBSD 3.6
Hello misc, Do you have driver of Broadcom BCM5721 Gigabit Ethernet Controllers for openBSD 3.6 The card is not detected when installing. Best regards, Reeann Zhang [EMAIL PROTECTED] 2005-11-01
bgpd.conf md5sig, iBGP and redistributing routes to/from ospf
Hi all
[20051019 snap i386]
I've made a setup with two identical bgp routers. On each router there's
3 peers (BGP and eBGP), one failover (carp/iBGP/ospf) interconnecting
these routers and finally pipes backwards to the internal nets. Part of
bgpd.conf further down.
I'm replacing a single router (no ospf) fbsd/zebra setup.
Q: setting up iBGP I've used our own AS as 'remote-as' but can't find a
'no synchronization' option for this connection. Do I need it at all.
Been poking around in /usr/src/usr.sbin/bgpd without solving it, but
it's needed in zebra and Cisco IOS hence the question.
A: ?
Q: adding md5sig password, how can I activate these stepwise without
having to take bgpd down/up and affecting all connections - ospfctl does
not seem have it as an option. Would like to add md5sig one carrier at a
time on a "live" system.
A: ?
Q: running ospf with all peers + carp intfaces in area 0.0.0.0 and
internal intfaces in area 0.0.0.1 (and from ospfd.conf)
[...]
fib-update yes
redistribute connected
[...]
This is about redistributing routes - will the above let BGP and OSPF
"play along" in the same way a 'redistribute ospf' in Zebra/Cisco IOS
A: ?
Q: default gateway is added to the routing table after all interfaces
are configured. BGP is adding information into the routing table and so
does OSPF (updates). That's 3 times "redistributing" of routes between
different protocols and with 3 different administrative distances but
still in/from the same table. Since directly connected (0) or static (1)
connections are superior to e.g. eBGP (20) and OSPF (110) then should or
shouldn't /etc/mygate be removed from a BGP router before putting it
into production. Will it/can it mock the routing decision despite
'weight' in bgpd.conf due to the lower distance.
A: ?
Part of bgpd.conf:
[...]
neighbor $peer0 {
remote-as ABCD
descr "ebgp sucks"
set nexthop aaa.aaa.aaa.aab
multihop 10
local-address aaa.aaa.aaa.aaa
announce self
announce IPv6 none
enforce neighbor-as yes
set weight 100
#tcp md5sig password HotPotatoes
}
...
...
neighbor $carp {
remote-as
descr "internal"
local-address 172.16.0.1
depend on em5
announce all
announce IPv6 none
enforce neighbor-as no
set weight 200
#tcp md5sig password NoPotatoes
}
I have a:
deny from any prefix 172.16.0.0/12 prefixlen >= 12
but the carp interface uses a /8 i.e. should be safe :)
bgpd.conf md5sig, iBGP and redistributing routes to/from ospf [forgot to sign it]
Hi all
[20051019 snap i386]
I've made a setup with two identical bgp routers. On each router there's
3 peers (BGP and eBGP), one failover (carp/iBGP/ospf) interconnecting
these routers and finally pipes backwards to the internal nets. Part of
bgpd.conf further down.
I'm replacing a single router (no ospf) fbsd/zebra setup.
Q: setting up iBGP I've used our own AS as 'remote-as' but can't find a
'no synchronization' option for this connection. Do I need it at all.
Been poking around in /usr/src/usr.sbin/bgpd without solving it, but
it's needed in zebra and Cisco IOS hence the question.
A: ?
Q: adding md5sig password, how can I activate these stepwise without
having to take bgpd down/up and affecting all connections - ospfctl does
not seem have it as an option. Would like to add md5sig one carrier at a
time on a "live" system.
A: ?
Q: running ospf with all peers + carp intfaces in area 0.0.0.0 and
internal intfaces in area 0.0.0.1 (and from ospfd.conf)
[...]
fib-update yes
redistribute connected
[...]
This is about redistributing routes - will the above let BGP and OSPF
"play along" in the same way a 'redistribute ospf' in Zebra/Cisco IOS
A: ?
Q: default gateway is added to the routing table after all interfaces
are configured. BGP is adding information into the routing table and so
does OSPF (updates). That's 3 times "redistributing" of routes between
different protocols and with 3 different administrative distances but
still in/from the same table. Since directly connected (0) or static (1)
connections are superior to e.g. eBGP (20) and OSPF (110) then should or
shouldn't /etc/mygate be removed from a BGP router before putting it
into production. Will it/can it mock the routing decision despite
'weight' in bgpd.conf due to the lower distance.
A: ?
Part of bgpd.conf:
[...]
neighbor $peer0 {
remote-as ABCD
descr"ebgp sucks"
set nexthop aaa.aaa.aaa.aab
multihop 10
local-address aaa.aaa.aaa.aaa
announce self
announce IPv6 none
enforce neighbor-as yes
set weight 100
#tcp md5sig password HotPotatoes
}
...
...
neighbor $carp {
remote-as
descr"internal"
local-address 172.16.0.1
depend on em5
announce all
announce IPv6 none
enforce neighbor-as no
set weight 200
#tcp md5sig password NoPotatoes
}
I have a:
deny from any prefix 172.16.0.0/12 prefixlen >= 12
but the carp interface uses a /8 i.e. should be safe :)
/per
[EMAIL PROTECTED]
Re: perl interface to pf?
Maybe you should look at the question again.
On Nov 1, 2005, at 2:16 PM, John Brahy wrote:
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of
Diana Eichert
Sent: Tuesday, November 01, 2005 9:47 AM
To: misc@openbsd.org
Subject: Re: perl interface to pf?
On Tue, 1 Nov 2005, Bob Beck wrote:
* Marco Peereboom <[EMAIL PROTECTED]> [2005-11-01 10:11]:
This is the weirdest thing I have heard all week.
On Tue, Nov 01, 2005 at 08:36:59AM -0800, John N. Brahy wrote:
Is there a perl interface to pf?
8<
#!/usr/bin/perl
if ((not 0 && not 1) != (!0 && !1)) {
print "No, just exec pfctl from within perl.\n";
print "But feed it carefully, and know how perl works.\n";
} else {
print "Of course, that's a great idea! everyone groks perl!\n";
}
But, I need it in Ruby said the Whiney User.
I can't believe all the stupid responses I received due to this email.
Re: A great article ( found on the OpenBSD site)
Sounds like a bold and daring idea, but one should be aware that they might find themselves unemployed if they practice such a philosophy at most companies. PG > > > quote: > > "My experience is that if something has to be done, just do it - don't > > ask! They will thank you later," he said. > > Yeah, an interesting quote, all right. It's obvious that his corporate > culture is very different from the one where i work. I did exactly that > for a few years (not exclusively with OpenBSD, but with a mixture of > what i consider good operating systems). I saved the company money and > set up a stable, secure infrastructure. They found out and told me to > replace all of it with new hardware and a single "standardized" > operating system. They'll thank You later? Not a chance. > > -&
Re: openbsd as secure accesspoint documentation/tutorial
> Do you know about tutorials or documentation on how to setup such a "secure" > openbsd accesspoint? > I use OpenVPN on my OpenBSD accesspoint. OpenVPN is easy to set up and runs on Windows, OS X, *BSDs and, Linux. I documented it here http://blog.innerewut.de/articles/2005/07/04/openvpn-2-0-on-openbsd > Many thx > Didier > Jonathan -- Jonathan Weiss http://blog.innerewut.de
FAQ v3.8
I'd like to take a moment to bring a few new things in the FAQ to your attention: 1) upgrade38.html ( http://www.openbsd.org/faq/upgrade38.html ) In addition to the usual stuff you have been used to, note the upgrade38.patch file which is linked from this page. This patch file attempts to make the changes that took place between 3.7 and 3.8 to the files that you may have modified (i.e., the ones you can't just copy over from etc38.tgz). Note: It CAN NOT always work. And, it may really mess things up under some circumstances if used carelessly. Use with care (and backups and repair plans). If it works out well for people, I'll keep making them for the future. If it works out poorly, it may just vanish from the website... 2) Introducing, "FAQ 15 - The OpenBSD packages and ports system"! Steven Mestdagh (author of the also pretty new "FAQ 13 - Multimedia" has once again come through with a wonderful new page providing much greater documentation for the OpenBSD packages and ports system. Packages and ports have gone through some major evolutions in the last few releases, but the old faq8.html documentation had been lagging. Many thanks to Steven for his hard work on this! Nick.
Re: Problems installing 3.8 on SS5 (complete dmesg).
Matthew Weigel wrote: > Despite the lack of responses, I persevere... below is the complete > dmesg, if anyone was waiting for it. OpenBSD finds a total of 120 > unknown PHYs (ukphy) on my Quad Fast Ethernet 2.0 card, 30 per hme, and > 8 Lucent PHYs (luphy), 2 per hme. Now that you have a complete dmesg (or actually, I suspect, a console capture), you are in a good position to file a good Problem Report (PR). HOWEVER, one last thing to do: try -current, see if the problem is still there, or has already been fixed. Nick. > OpenBSD 3.8 (GENERIC) #428: Sat Sep 10 12:38:22 MDT 2005 > [EMAIL PROTECTED]:/usr/src/sys/arch/sparc/compile/GENERIC > real mem = 268058624 > avail mem = 241127424 > using 200 buffers containing 13107200 bytes of memory > bootpath: > /[EMAIL PROTECTED],1000/[EMAIL PROTECTED],10001000/[EMAIL > PROTECTED],840/[EMAIL PROTECTED],880/[EMAIL PROTECTED],0 > mainbus0 (root): SUNW,SPARCstation-5 > cpu0 at mainbus0: MB86904 @ 110 MHz, on-chip FPU > cpu0: 16K instruction (32 b/l), 8K data (16 b/l) cache enabled > obio0 at mainbus0 > clock0 at obio0 addr 0x7120: mk48t08 (eeprom) > timer0 at obio0 addr 0x71d0 delay constant 52 > zs0 at obio0 addr 0x7110 pri 12, softpri 6 > zstty0 at zs0 channel 0 (console i/o) > zstty1 at zs0 channel 1 > zs1 at obio0 addr 0x7100 pri 12, softpri 6 > zskbd0 at zs1 channel 0: no keyboard > zstty2 at zs1 channel 1: mouse > slavioconfig at obio0 addr 0x7180 not configured > auxreg0 at obio0 addr 0x7190 > power0 at obio0 addr 0x7191 > fdc0 at obio0 addr 0x7140 pri 11, softpri 4: chip 82077 > fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec > iommu0 at mainbus0 addr 0x1000: version 0x4/0x0, page-size 4096, > range 64MB > sbus0 at iommu0: clock = 22 MHz > dma0 at sbus0 slot 5 offset 0x840: rev 2 > esp0 at dma0 offset 0x880 pri 4: ESP200, 40MHz, SCSI ID 7 > scsibus0 at esp0: 8 targets > sd0 at scsibus0 targ 1 lun 0: SCSI2 > 0/direct fixed > sd0: 4094MB, 3882 cyl, 16 head, 135 sec, 512 bytes/sec, 8385121 sec total > sd1 at scsibus0 targ 3 lun 0: SCSI2 > 0/direct fixed > sd1: 4094MB, 3882 cyl, 16 head, 135 sec, 512 bytes/sec, 8385121 sec total > cd0 at scsibus0 targ 6 lun 0: SCSI2 > 5/cdrom removable > bpp0 at sbus0 slot 5 offset 0xc80: DMA2 > ledma0 at sbus0 slot 5 offset 0x8400010: rev 2 > le0 at ledma0 offset 0x8c0 pri 6: address 08:00:20:21:3f:1d > le0: 16 receive buffers, 4 transmit buffers > audiocs0 at sbus0 slot 4 offset 0xc00 pri 9 > audio0 at audiocs0 > power-management at sbus0 slot 4 offset 0xa00 not configured > cgsix0 at sbus0 slot 1 offset 0x0: SUNW,501-2325, 1152x900, rev 11 > wsdisplay0 at cgsix0 > wsdisplay0: screen 0 added (std, sun emulation) > hme0 at sbus0 slot 2 offset 0x8c0 pri 7: address 08:00:20:be:59:08 > rev 34 > luphy0 at hme0 phy 0: LU6612 10/100 PHY, rev. 1 > luphy1 at hme0 phy 1: LU6612 10/100 PHY, rev. 1 > ukphy0 at hme0 phy 2: Generic IEEE 802.3u media interface > ukphy0: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy1 at hme0 phy 3: Generic IEEE 802.3u media interface > ukphy1: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy2 at hme0 phy 4: Generic IEEE 802.3u media interface > ukphy2: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy3 at hme0 phy 5: Generic IEEE 802.3u media interface > ukphy3: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy4 at hme0 phy 6: Generic IEEE 802.3u media interface > ukphy4: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy5 at hme0 phy 7: Generic IEEE 802.3u media interface > ukphy5: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy6 at hme0 phy 8: Generic IEEE 802.3u media interface > ukphy6: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy7 at hme0 phy 9: Generic IEEE 802.3u media interface > ukphy7: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy8 at hme0 phy 10: Generic IEEE 802.3u media interface > ukphy8: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy9 at hme0 phy 11: Generic IEEE 802.3u media interface > ukphy9: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy10 at hme0 phy 12: Generic IEEE 802.3u media interface > ukphy10: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy11 at hme0 phy 13: Generic IEEE 802.3u media interface > ukphy11: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy12 at hme0 phy 14: Generic IEEE 802.3u media interface > ukphy12: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy13 at hme0 phy 15: Generic IEEE 802.3u media interface > ukphy13: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy14 at hme0 phy 16: Generic IEEE 802.3u media interface > ukphy14: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy15 at hme0 phy 17: Generic IEEE 802.3u media interface > ukphy15: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy16 at hme0 phy 18: Generic IEEE 802.3u media interface > ukphy16: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy17 at hme0 phy 19: Generic IEEE 802.3u media interface > ukphy17: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy18 at hme0 phy 20: Generic IEEE 802.3u media interface > ukphy18: OUI 0x3ffbff, model 0x003e, rev. 15 > ukphy19 at hme0 phy 21: Generic IEEE
Laptop boot problem with APM enabled
I recently got a new laptop and while it does work well with OpenBSD it only
does so if I disable APM.
Below is the dmesg's both from a failed boot with APM enabled and a working one
where APM is disabled.
The machine in question is a Neo Q-Note 350S, aka Clevo M350S.
= APM enabled =
OpenBSD 3.8-current (GENERIC) #224: Sat Oct 29 13:52:43 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Celeron(R) M processor 1.30GHz ("GenuineIntel" 686-class) 1.30
GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF
real mem = 232300544 (226856K)
avail mem = 205123584 (200316K)
using 2861 buffers containing 11718656 bytes (11444K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(1c) BIOS, date 07/26/05, BIOS32 rev. 0 @ 0xfd810
apm0 at bios0: Power Management spec V1.2
uvm_fault(0xd05c22e0, 0x4000, 0, 1) -> e
kernel: page fault trap, code=0
Stopped at trap+0x15f:movzbl 0(%edx),%eax
ddb> ps
PID PPIDPGRPUID S FLAGS WAITCOMMAND
* 0 -1 0 0 7 0x80204 swapper
ddb> trace
trap() at trap+0x15f
--- trap (number 4) ---
curpcb(9ce00040,1,530a,12387227) at 0x4a39
ddb>
= APM disabled =
OpenBSD 3.8-current (GENERIC) #224: Sat Oct 29 13:52:43 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Celeron(R) M processor 1.30GHz ("GenuineIntel" 686-class) 1.30
GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF
real mem = 232300544 (226856K)
avail mem = 205123584 (200316K)
using 2861 buffers containing 11718656 bytes (11444K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(1c) BIOS, date 07/26/05, BIOS32 rev. 0 @ 0xfd810
apm at bios0 function 0x15 not configured
pcibios0 at bios0: rev 2.1 @ 0xfd810/0x7f0
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf50/144 (7 entries)
pcibios0: PCI Interrupt Router at 000:02:0 ("SiS 85C503 System" rev 0x00)
pcibios0: PCI bus #2 is the last bus
bios0: ROM list: 0xc/0xc000 0xcc000/0xa000 0xdc000/0x4000!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "SiS 661 PCI" rev 0x11
ppb0 at pci0 dev 1 function 0 "SiS 648FX AGP" rev 0x00
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 "SiS 6330 VGA" rev 0x00: aperture at 0xe800,
size 0x40
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
pcib0 at pci0 dev 2 function 0 "SiS 85C503 System" rev 0x25
pciide0 at pci0 dev 2 function 5 "SiS 5513 EIDE" rev 0x00: 661: DMA, channel 0
configured to compatibility, channel 1 configured to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 38154MB, 78140160 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom
removable
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
"SiS 7013 Modem" rev 0xa0 at pci0 dev 2 function 6 not configured
auich0 at pci0 dev 2 function 7 "SiS 7012 AC97" rev 0xa0: irq 5, SiS7012 AC97
ac97: codec id 0x414c4740 (Avance Logic ALC202)
ac97: codec features headphone, 20 bit DAC, 18 bit ADC, Realtek 3D
audio0 at auich0
ohci0 at pci0 dev 3 function 0 "SiS 5597/5598 USB" rev 0x0f: irq 11, version
1.0, legacy support
usb0 at ohci0: USB revision 1.0
uhub0 at usb0
uhub0: SiS OHCI root hub, rev 1.00/1.00, addr 1
uhub0: 3 ports with 3 removable, self powered
ohci1 at pci0 dev 3 function 1 "SiS 5597/5598 USB" rev 0x0f: irq 9, version
1.0, legacy support
usb1 at ohci1: USB revision 1.0
uhub1 at usb1
uhub1: SiS OHCI root hub, rev 1.00/1.00, addr 1
uhub1: 3 ports with 3 removable, self powered
ehci0 at pci0 dev 3 function 3 "SiS 7002 USB" rev 0x00: irq 9
usb2 at ehci0: USB revision 2.0
uhub2 at usb2
uhub2: SiS EHCI root hub, rev 2.00/1.00, addr 1
uhub2: 6 ports with 6 removable, self powered
sis0 at pci0 dev 4 function 0 "SiS 900 10/100BaseTX" rev 0x91: irq 11, address
00:90:f5:47:6d:6a
rlphy0 at sis0 phy 1: RTL8201L 10/100 PHY, rev. 1
cbb0 at pci0 dev 14 function 0 "ENE CB-1410 CardBus" rev 0x01: irq 5
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
sysbeep0 at pcppi0
npx0 at isa0 port 0xf0/16: using exception 16
cardslot0 at cbb0 slot 0 flags 0
cardbus0 at cardslot0: bus 2 device 0 cacheline 0x0, lattimer 0x20
pcmcia0 at cardslot0
biomask effd netmask effd ttymask
pctr: 686-class user-level performance counters enabled
mtrr: Pentium Pro MTRR support
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
Lars Hansson
Re: A great article ( found on the OpenBSD site)
Ah, an American speaks. > Sounds like a bold and daring idea, but one should be aware that > they might find themselves unemployed if they practice such a > philosophy at most companies. > > > PG > > > > > > > > quote: > > > "My experience is that if something has to be done, just do it - don't > > > ask! They will thank you later," he said. > > > > Yeah, an interesting quote, all right. It's obvious that his corporate > > culture is very different from the one where i work. I did exactly that > > for a few years (not exclusively with OpenBSD, but with a mixture of > > what i consider good operating systems). I saved the company money and > > set up a stable, secure infrastructure. They found out and told me to > > replace all of it with new hardware and a single "standardized" > > operating system. They'll thank You later? Not a chance. > > > > -&
Re: Laptop boot problem with APM enabled
Hey could you try the latest snap on this box please?
On Wed, Nov 02, 2005 at 11:02:08AM +0800, Lars Hansson wrote:
> I recently got a new laptop and while it does work well with OpenBSD it only
> does so if I disable APM.
> Below is the dmesg's both from a failed boot with APM enabled and a working
> one
> where APM is disabled.
> The machine in question is a Neo Q-Note 350S, aka Clevo M350S.
>
> = APM enabled =
> OpenBSD 3.8-current (GENERIC) #224: Sat Oct 29 13:52:43 MDT 2005
> [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
> cpu0: Intel(R) Celeron(R) M processor 1.30GHz ("GenuineIntel" 686-class) 1.30
> GHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF
> real mem = 232300544 (226856K)
> avail mem = 205123584 (200316K)
> using 2861 buffers containing 11718656 bytes (11444K) of memory
> mainbus0 (root)
> bios0 at mainbus0: AT/286+(1c) BIOS, date 07/26/05, BIOS32 rev. 0 @ 0xfd810
> apm0 at bios0: Power Management spec V1.2
> uvm_fault(0xd05c22e0, 0x4000, 0, 1) -> e
> kernel: page fault trap, code=0
> Stopped at trap+0x15f:movzbl 0(%edx),%eax
> ddb> ps
> PID PPIDPGRPUID S FLAGS WAITCOMMAND
> * 0 -1 0 0 7 0x80204 swapper
> ddb> trace
> trap() at trap+0x15f
> --- trap (number 4) ---
> curpcb(9ce00040,1,530a,12387227) at 0x4a39
> ddb>
>
> = APM disabled =
> OpenBSD 3.8-current (GENERIC) #224: Sat Oct 29 13:52:43 MDT 2005
> [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
> cpu0: Intel(R) Celeron(R) M processor 1.30GHz ("GenuineIntel" 686-class) 1.30
> GHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF
> real mem = 232300544 (226856K)
> avail mem = 205123584 (200316K)
> using 2861 buffers containing 11718656 bytes (11444K) of memory
> mainbus0 (root)
> bios0 at mainbus0: AT/286+(1c) BIOS, date 07/26/05, BIOS32 rev. 0 @ 0xfd810
> apm at bios0 function 0x15 not configured
> pcibios0 at bios0: rev 2.1 @ 0xfd810/0x7f0
> pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf50/144 (7 entries)
> pcibios0: PCI Interrupt Router at 000:02:0 ("SiS 85C503 System" rev 0x00)
> pcibios0: PCI bus #2 is the last bus
> bios0: ROM list: 0xc/0xc000 0xcc000/0xa000 0xdc000/0x4000!
> cpu0 at mainbus0
> pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
> pchb0 at pci0 dev 0 function 0 "SiS 661 PCI" rev 0x11
> ppb0 at pci0 dev 1 function 0 "SiS 648FX AGP" rev 0x00
> pci1 at ppb0 bus 1
> vga1 at pci1 dev 0 function 0 "SiS 6330 VGA" rev 0x00: aperture at
> 0xe800, size 0x40
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> pcib0 at pci0 dev 2 function 0 "SiS 85C503 System" rev 0x25
> pciide0 at pci0 dev 2 function 5 "SiS 5513 EIDE" rev 0x00: 661: DMA, channel
> 0 configured to compatibility, channel 1 configured to compatibility
> wd0 at pciide0 channel 0 drive 0:
> wd0: 16-sector PIO, LBA, 38154MB, 78140160 sectors
> wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
> atapiscsi0 at pciide0 channel 1 drive 0
> scsibus0 at atapiscsi0: 2 targets
> cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom
> removable
> cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
> "SiS 7013 Modem" rev 0xa0 at pci0 dev 2 function 6 not configured
> auich0 at pci0 dev 2 function 7 "SiS 7012 AC97" rev 0xa0: irq 5, SiS7012 AC97
> ac97: codec id 0x414c4740 (Avance Logic ALC202)
> ac97: codec features headphone, 20 bit DAC, 18 bit ADC, Realtek 3D
> audio0 at auich0
> ohci0 at pci0 dev 3 function 0 "SiS 5597/5598 USB" rev 0x0f: irq 11, version
> 1.0, legacy support
> usb0 at ohci0: USB revision 1.0
> uhub0 at usb0
> uhub0: SiS OHCI root hub, rev 1.00/1.00, addr 1
> uhub0: 3 ports with 3 removable, self powered
> ohci1 at pci0 dev 3 function 1 "SiS 5597/5598 USB" rev 0x0f: irq 9, version
> 1.0, legacy support
> usb1 at ohci1: USB revision 1.0
> uhub1 at usb1
> uhub1: SiS OHCI root hub, rev 1.00/1.00, addr 1
> uhub1: 3 ports with 3 removable, self powered
> ehci0 at pci0 dev 3 function 3 "SiS 7002 USB" rev 0x00: irq 9
> usb2 at ehci0: USB revision 2.0
> uhub2 at usb2
> uhub2: SiS EHCI root hub, rev 2.00/1.00, addr 1
> uhub2: 6 ports with 6 removable, self powered
> sis0 at pci0 dev 4 function 0 "SiS 900 10/100BaseTX" rev 0x91: irq 11,
> address 00:90:f5:47:6d:6a
> rlphy0 at sis0 phy 1: RTL8201L 10/100 PHY, rev. 1
> cbb0 at pci0 dev 14 function 0 "ENE CB-1410 CardBus" rev 0x01: irq 5
> isa0 at pcib0
> isadma0 at isa0
> pckbc0 at isa0 port 0x60/5
> pckbd0 at pckbc0 (kbd slot)
> pckbc0: using irq 1 for kbd slot
> wskbd0 at pckbd0: console keyboard, using wsdisplay0
> pmsi0 at pckbc0 (aux slot)
> pckbc0: using irq 12 for aux slot
> wsmouse0 at pmsi0 mux 0
> pcppi0 at isa0 port 0x61
> midi0 at pcppi0:
> spkr0 at pcppi0
> sysbeep0 at pcppi0
> npx0 at isa0 port 0xf0/16: using exception 16
> cardslot0 at cbb0 slot 0 flag
amd64 port works on Intel EM64T?
After a search of the lists, it seems that the amd64 port will work on Intel EM64T hardware. Does the OpenBSD AMD64 port avoid the prefetch/prefetchx that Intel is supposed to have screwed up with their AMD64 clone? Thanks, James
Re: A great article ( found on the OpenBSD site)
On 11/2/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Sounds like a bold and daring idea, but one should be aware that they might > find >themselves unemployed if they practice such a philosophy at most > companies. > maybe, but sometimes its better that way. You could find a more sensible employer who would allow you to do the right things the right way when it obviously benefits the company :-) kind regards Siju
in-kernel pppoe and automatic reconnect
I'm new to OBSD, and configured in-kernel pppoe as my internet gateway. I found out that with userland pppoe automatic reconnect is posible, but with in-kernel pppoe everytime pppoe connection lost, I need to reboot the system. I don't know how to manually reconnect the connection. Any suggestions? Please help.
Re: amd64 port works on Intel EM64T?
> After a search of the lists, it seems that the amd64 port will work on > Intel EM64T hardware. Does the OpenBSD AMD64 port avoid the > prefetch/prefetchx that Intel is supposed to have screwed up with > their AMD64 clone? I don't think we use that functionality. There are other slight differences between these processors as well. A variety of instructions behave slightly differently (but then, they also did in the previous 32 bit generations). A real AMD64 machine can also run with more than 4GB of ram and do DMA without having to bounce buffering to PCI devices. We don't do software bounce buffering yet to cope with this deficiency in large-memory Intel AMD64-clones. (And besides that, the Intel ones being slower, and using a whole lot more power)
OpenBSD 3.8 pre-order shipping complete
The North American OpenBSD distribution centre is pleased to say virtually all OpenBSD pre-orders were shipped on or before release day, Nov. 1. We also pre-shipped a full supply to European distribution, before we took any for ourselves. So Europe should be close behind. The bin with the last 50 or 60 orders that came in over the weekend, will be dumped into the post office tomorrow morning, and aside from a handful of special cases, we are able to start regular new release order processing without any backlog -- which is a big change from past performance. Price increase: due to falling US$ value we had to increase the US$ price of some of the T-shirts today. We had held off a bit to enable pre-orders to take advantage of the older price. OpenBSD T-shirts are still quite a bit cheaper when translated into other currencies, than they were a few years ago, however. We are still encountering significant non-tariff barriers shipping T-shirts to the USA (read extreme paperwork). We have to bypass the faster shipping methods to avoid them. I'm going to discuss this in a future message. We hope everyone gets their 3.8 and associated gear and starts enjoying the new release soon. I know a lot have received theirs already. Please let us know of any damage in transit, or packing errors -- we'll be happy to fix up any such problems pronto. Enjoy! Austin Hook OpenBSD Shipping PS: Thanks to a couple of you who told me that the older OpenBSD 3.6 poster was not selecting properly on the order page. Anyone who wishes to catch up with Puffy the Kid, his "wanted" poster is available again.
SIIG Cyber 4S PCI (quad serial) -- chip change
Dear Misc,
I purchased a SIIG Cyber 4S PCI (quad serial). After installation
of the card and a -current kernel (2005-10-31) I find the chip is
not being configured. Looks like the classic chip change without a
product number change.
The dmesg lines which are problematic are:
vendor "Oxford", unknown product 0x9501 (class communications subclass serial, rev 0x00) at
pci0 dev 9 function 0 not configured
vendor "Oxford", unknown product 0x9510 (class bridge subclass miscellaneous, rev 0x00) at
pci0 dev 9 function 1 not configured
I personally lack a sufficiently clear understanding of what
needs to be added to the kernel to make this board work.
All help will be gratefully received.
Good night and good luck,
Ray
OpenBSD 3.8-current (GENERIC) #229: Mon Oct 31 14:20:14 MST 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium/MMX ("GenuineIntel" 586-class) 200 MHz
cpu0: FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,MMX
cpu0: F00F bug workaround installed
real mem = 133804032 (130668K)
avail mem = 115499008 (112792K)
using 1658 buffers containing 6791168 bytes (6632K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(6c) BIOS, date 07/08/98, BIOS32 rev. 0 @ 0xf0400
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0xa22
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf09b0/112 (5 entries)
pcibios0: PCI Interrupt Router at 000:07:0 ("Intel 82371FB ISA" rev 0x00)
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc/0x8000
ipmi at mainbus0 not configured
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82439HX" rev 0x03
pcib0 at pci0 dev 7 function 0 "Intel 82371SB ISA" rev 0x01
pciide0 at pci0 dev 7 function 1 "Intel 82371SB IDE" rev 0x00: DMA, channel 0 wired to
compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 9641MB, 19746720 sectors
atapiscsi0 at pciide0 channel 0 drive 1
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: SCSI0 5/cdrom
removable
wd0(pciide0:0:0): using PIO mode 4, DMA mode 2
cd0(pciide0:0:1): using PIO mode 4, DMA mode 2
atapiscsi1 at pciide0 channel 1 drive 0
scsibus1 at atapiscsi1: 2 targets
sd0 at scsibus1 targ 0 lun 0: SCSI0 0/direct removable
sd0: drive offline
sd0(pciide0:1:0): using PIO mode 0
vendor "Oxford", unknown product 0x9501 (class communications subclass serial, rev 0x00)
at pci0 dev 9 function 0 not configured
vendor "Oxford", unknown product 0x9510 (class bridge subclass miscellaneous, rev 0x00) at
pci0 dev 9 function 1 not configured
rl0 at pci0 dev 10 function 0 "D-Link Systems 530TX+" rev 0x10: irq 12, address
00:05:5d:d1:5f:fa
rlphy0 at rl0 phy 0: RTL internal phy
rl1 at pci0 dev 11 function 0 "D-Link Systems 530TX+" rev 0x10: irq 10, address
00:05:5d:36:39:4a
rlphy1 at rl1 phy 0: RTL internal phy
vga1 at pci0 dev 12 function 0 "ATI Mach64 GP" rev 0x5c
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
sysbeep0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom0: console
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
biomask eb65 netmask ff65 ttymask ffe7
pctr: 586-class performance counters and user-level cycle counter enabled
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
Re: ciss is slow and uses all the CPU
Adam,
Well thanks for backing up what I was talking about on Saturday (Oct 29
2005).
http://archives.neohapsis.com/archives/openbsd/2005-10/2350.html
I think its just the new hardware support doesn't have a perfect driver
yet. I am sure we will see optimization for this driver in future
releases.
I like yourself missed the boat on testing with the developers for this
release :-( (kicking self in head now)
Can any of the hackers comment on this subject? Is it just a hunk of crap
hardware or is the driver just really really new and has a few kinks to
work out? When I installed this weekend I was really wanted to play with
bioctl only to re-read Theo's original post saying "only AMI support
currently".
I could test any patches and have a server available to test on to a
developer if this would help. I know you guys would really like me to
ship one out so you can hack on it locally :-( I need two of them
for multicast video right now though - but I am more than happy to run
current on the third one for testing.
Jason Houx
-- Micro$oft Gives you Windows || Unix Gives you a Home --
> I installed a snapshot on an HP Proliant DL360, and everything seems
> fine except that disk performance is terrible. Just running bonnie++
> for a quick test it can only do 8MB/s write because its using 100% of
> the CPU. Top shows its all being spent in system time. For contrast,
> my slow laptop ATA drive does 14MB/s at 3% CPU usage.
>
> Adam
>
> OpenBSD 3.8-current (GENERIC) #169: Sun Oct 2 15:06:50 MDT 2005
> [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
> cpu0: Intel(R) Xeon(TM) CPU 3.06GHz ("GenuineIntel" 686-class) 3.07 GHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-
> ID real mem = 2147041280 (2096720K) avail mem = 1953218560 (1907440K)
> using 4278 buffers containing 107454464 bytes (104936K) of memory
> mainbus0 (root)
> bios0 at mainbus0: AT/286+(00) BIOS, date 12/31/99, BIOS32 rev. 0 @
> 0xf pcibios0 at bios0: rev 2.1 @ 0xf/0x2000
> pcibios0: PCI BIOS has 7 Interrupt Routing table entries
> pcibios0: PCI Interrupt Router at 000:15:0 ("ServerWorks CSB5
> SouthBridge" rev 0x00) pcibios0: PCI bus #0 is the last bus
> bios0: ROM list: 0xc/0x8000 0xc8000/0x4000 0xcc000/0x1800
> 0xee000/0x2000! cpu0 at mainbus0
> pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
> pchb0 at pci0 dev 0 function 0 "ServerWorks CNB20-HE" rev 0x31
> pchb1 at pci0 dev 0 function 1 "ServerWorks CNB20-HE" rev 0x00
> pchb2 at pci0 dev 0 function 2 "ServerWorks CNB20-HE" rev 0x00
> pci1 at pchb2 bus 1
> bge0 at pci1 dev 2 function 0 "Broadcom BCM5703X" rev 0x02, BCM5703 A2
> (0x1002): irq 11 address 00:0b:cd:d1:2a:c7 brgphy0 at bge0 phy 1:
> BCM5703 10/100/1000baseT PHY, rev. 2 vga1 at pci0 dev 3 function 0 "ATI
> Rage XL" rev 0x27 wsdisplay0 at vga1 mux 1: console (80x25, vt100
> emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> ciss0 at pci0 dev 4 function 0 "Compaq Smart Array 5i/532 rev.2" rev
> 0x01: irq 3 ciss0: 1 LD HW rev 1 FW 2.38/2.38
> lmap 4000:0 scsibus0 at ciss0: 1 targets
> sd0 at scsibus0 targ 0 lun 0: SCSI0 0/
> direct fixed ciss0: cmd_stat 2 scsi_stat 0x0
> ciss0: cmd_stat 2 scsi_stat 0x0
> sd0: 69459MB, 69459 cyl, 64 head, 32 sec, 512 bytes/sec, 142253280 sec
> total vendor "Compaq", unknown product 0xb203 (class system subclass
> miscellaneous, rev 0x01) at pci0 dev 5 function 0 not configured vendor
> "Compaq", unknown product 0xb204 (class system subclass miscellaneous,
> rev 0x01) at pci0 dev 5 function 2 not configured pcib0 at pci0 dev 15
> function 0 "ServerWorks CSB5 SouthBridge" rev 0x93 pciide0 at pci0 dev
> 15 function 1 "ServerWorks CSB5 IDE" rev 0x93: DMA atapiscsi0 at
> pciide0 channel 0 drive 0 scsibus1 at atapiscsi0: 2 targets cd0 at
> scsibus1 targ 0 lun 0: SCSI0 5/cdrom
> removable cd0(pciide0:0:0): using PIO mode 4, DMA mode 2 pchb3 at pci0
> dev 15 function 3 "ServerWorks CSB5 PCI" rev 0x00 pchb4 at pci0 dev 17
> function 0 "ServerWorks CIOBX2" rev 0x05 pchb5 at pci0 dev 17 function
> 2 "ServerWorks CIOBX2" rev 0x05 pci2 at pchb5 bus 4
> bge1 at pci2 dev 2 function 0 "Broadcom BCM5703X" rev 0x02, BCM5703 A2
> (0x1002): irq 10 address 00:0b:cd:d1:2a:c6 brgphy1 at bge1 phy 1:
> BCM5703 10/100/1000baseT PHY, rev. 2 isa0 at pcib0
> isadma0 at isa0
> pckbc0 at isa0 port 0x60/5
> pckbd0 at pckbc0 (kbd slot)
> pckbc0: using irq 1 for kbd slot
> wskbd0 at pckbd0: console keyboard, using wsdisplay0
> pmsi0 at pckbc0 (aux slot)
> pckbc0: using irq 12 for aux slot
> wsmouse0 at pmsi0 mux 0
> pcppi0 at isa0 port 0x61
> midi0 at pcppi0:
> spkr0 at pcppi0
> sysbeep0 at pcppi0
> npx0 at isa0 port 0xf0/16: using exception 16
> pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
> fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
> fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
> biomask e3ed netmask efed ttymask ffef
> pctr: user-level cycle counter enabled
> ciss0: cmd_
Re: local network mail help needed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 11/1/05, Denny White <[EMAIL PROTECTED]> wrote: I'd like to be able to use just mail instead of the system MUA for one user who doesn't have an email account setup with the ISP, but who just wants to be able send email messages to other users on the network. So far, the messages keep getting "MDeferred: Connection refused by ". I added the network name, and later, when that didn't work, the IP address also, to /etc/mail/access, along with OK for local but not relay, rebuilt database by "makemap hash /etc/mail/access < /etc/mail/access", but the mail messages are still refused. I can ssh/scp between all the computers on the network. Also no problems with NFS. Use it regularly from an XP box and and the other BSD computers on the network. I had just started running pf on the box that's refusing the messages, but disabled it and restarted, but it didn't help. I don't know if it's pertinent to the problem, but I'm running current, now on the 4th system build. Didn't put dmesg in this message for sake of brevity, and because there was nothing abnormal in it after the last cvsup and build. But, if it's needed, please advise, and I'll do it. According to /usr/ports/infrastructure/build/out-of-date, all ports are up to date, too. Thanks for any help on this. Denny White Today Greg Thomas contributed the following: Perhaps the sendmail section of the afterboot manpage is relevant? You're lacking quite a bit of info so we can only guess. Are the other users running OpenBSD? Sendmail? Default OpenBSD Sendmail config? Greg Read sendmail portion of afterboot, read quite a bit of the /usr/share/sendmail/README, studied the files in /etc/mail/, did some googling, & finally wound up removing the localhost.cf portion from the sendmail line in /etc/rc.conf, replaced it with sendmail.cf, & restarted sendmail. Now the user on the FreeBSD box can use `mail localuser-address` to send messages to this OpenBSD box, but still can't send messages back to the user by the same method. In all honesty, it was the googling that found the first part of the solution for me, not the reading of all the above mentioned, although hopefully, I know more now than before. So, any more forthcoming help will be greatly appreciated. I've never fooled around much with sendmail before, & am having a pretty hard time understanding it. For anyone following this thread, my dmesg was in my previous post. Denny White GnuPG key : 0x1644E79A | http://wwwkeys.nl.pgp.net Fingerprint: D0A9 AD44 1F10 E09E 0E67 EC25 CB44 F2E5 1644 E79A iD8DBQFDaExWy0Ty5RZE55oRAh74AKCnVxU/9lF8+VbIhW0ypdY6kzGd9wCgsIUc FgD6z7sIrVjNOqGVLQN0x6k= =gAfp -END PGP SIGNATURE-
Crypto card question
I'm setting up an OpenBSD 3.7 box as a VPN/SSH server. It will have a Broadcom 5805 installed to help offload some of the crypto processing. Our employees have laptops with XP loaded and Intel Pro 100/S cards installed. Will the crypto functionality on these cards work in conjunction with the Broadcom on the OBSD box? 3DES and maybe IPSEC seem to be the common elements of the two, thus the question. Steve
Re: A great article ( found on the OpenBSD site)
An American Speaks here: I work for a ISP *Routing/Switching/MPLS/Multicast/SS7/IP Video/VoIP* I managed to get my eye balls on OpenBSD about 5 years ago now. After spending about 8 months using Frankenstein hardware I finally got my Boss to let me start using OpenBSD firewalls in the network. Now we have a embedded system running on CF making the company all kinds of money. I also am using bgpd as a route reflector and testing ospfd in my lab of Cisco gear. I'm really looking forward to also seeing a PIM DM/SM capable router in the future running OpenBSD ;-) Put OpenBSD anywhere you can and play with it. It will prove itself even in the Trashiest Windows Infested American Enterprise. Jason Houx -- Mirco$oft Gives you Windows || Unix Gives you a Home -- > Ah, an American speaks. > >> Sounds like a bold and daring idea, but one should be aware that >> they might find themselves unemployed if they practice such a >> philosophy at most companies. >> >> >> PG >> >> >> >> > >> > > quote: >> > > "My experience is that if something has to be done, just do it - >> don't >> > > ask! They will thank you later," he said. >> > >> > Yeah, an interesting quote, all right. It's obvious that his corporate >> > culture is very different from the one where i work. I did exactly >> that >> > for a few years (not exclusively with OpenBSD, but with a mixture of >> > what i consider good operating systems). I saved the company money and >> > set up a stable, secure infrastructure. They found out and told me to >> > replace all of it with new hardware and a single "standardized" >> > operating system. They'll thank You later? Not a chance. >> > >> >-&
Re: Crypto card question
> I'm setting up an OpenBSD 3.7 box as a VPN/SSH server. It will have a > Broadcom 5805 installed to help offload some of the crypto processing. Our > employees have laptops with XP loaded and Intel Pro 100/S cards installed. > Will the crypto functionality on these cards work in conjunction with the > Broadcom on the OBSD box? 3DES and maybe IPSEC seem to be the common > elements of the two, thus the question. There is no documentation for the Intel Pro 100/S crypto functionality.
Re: Laptop boot problem with APM enabled
On Tue, 1 Nov 2005 21:40:32 -0600 Marco Peereboom <[EMAIL PROTECTED]> wrote: > Hey could you try the latest snap on this box please? Almost exactly the same thing happens with the November 1 snapshot. Only one line is different: uvm_fault(0xd05c23e0, 0x4000, 0, 1) -> e --- Lars Hansson
Re: Problems installing 3.8 on SS5 (complete dmesg).
Nick Holland wrote: Now that you have a complete dmesg (or actually, I suspect, a console capture), Just so. It just took a little bit to move consoles around... the Sparc 5 was *supposed* to be the console server, damn it! you are in a good position to file a good Problem Report (PR). HOWEVER, one last thing to do: try -current, see if the problem is still there, or has already been fixed. ^_^ Theo and Brad have already asked me to do so, but off-list; I hadn't had a chance to send an update to [EMAIL PROTECTED] Anyway, below is the dmesg; I downloaded just the bsd.rd, and booted using it. Different error messages, not significantly different result. if that will help - it looks like, at a minimum, bsd.rd doesn't havI can go ahead and install the snapshot and see what GENERIC has to say,e the magma driver compiled in. OpenBSD 3.8-current (RAMDISK) #227: Thu Oct 27 16:36:29 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/sparc/compile/RAMDISK real mem = 268058624 avail mem = 240922624 using 200 buffers containing 13107200 bytes of memory bootpath: /[EMAIL PROTECTED],1000/[EMAIL PROTECTED],10001000/[EMAIL PROTECTED],840/[EMAIL PROTECTED],880/[EMAIL PROTECTED],0 mainbus0 (root): SUNW,SPARCstation-5 cpu0 at mainbus0: MB86904 @ 110 MHz, on-chip FPU cpu0: 16K instruction (32 b/l), 8K data (16 b/l) cache enabled obio0 at mainbus0 clock0 at obio0 addr 0x7120: mk48t08 (eeprom) timer0 at obio0 addr 0x71d0 delay constant 52 zs0 at obio0 addr 0x7110 pri 12, softpri 6 zstty0 at zs0 channel 0 (console i/o) zstty1 at zs0 channel 1 zs1 at obio0 addr 0x7100 pri 12, softpri 6 zskbd0 at zs1 channel 0: no keyboard zstty2 at zs1 channel 1: mouse slavioconfig at obio0 addr 0x7180 not configured auxreg0 at obio0 addr 0x7190 power0 at obio0 addr 0x7191 fdc0 at obio0 addr 0x7140 pri 11, softpri 4: chip 82077 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec iommu0 at mainbus0 addr 0x1000: version 0x4/0x0, page-size 4096, range 64MB sbus0 at iommu0: clock = 22 MHz dma0 at sbus0 slot 5 offset 0x840: rev 2 esp0 at dma0 offset 0x880 pri 4: ESP200, 40MHz, SCSI ID 7 scsibus0 at esp0: 8 targets sd0 at scsibus0 targ 1 lun 0: SCSI2 0/direct fixed sd0: 4094MB, 3882 cyl, 16 head, 135 sec, 512 bytes/sec, 8385121 sec total sd1 at scsibus0 targ 3 lun 0: SCSI2 0/direct fixed sd1: 4094MB, 3882 cyl, 16 head, 135 sec, 512 bytes/sec, 8385121 sec total cd0 at scsibus0 targ 6 lun 0: SCSI2 5/cdrom removable SUNW,bpp at sbus0 slot 5 offset 0xc80 not configured ledma0 at sbus0 slot 5 offset 0x8400010: rev 2 le0 at ledma0 offset 0x8c0 pri 6: address 08:00:20:21:3f:1d le0: 16 receive buffers, 4 transmit buffers SUNW,CS4231 at sbus0 class serial slot 4 offset 0xc00 not configured power-management at sbus0 slot 4 offset 0xa00 not configured cgsix0 at sbus0 slot 1 offset 0x0: SUNW,501-2325, 1152x900, rev 11 wsdisplay0 at cgsix0 wsdisplay0: screen 0 added (std, sun emulation) hme0 at sbus0 slot 2 offset 0x8c0 pri 7: address 08:00:20:be:59:08 rev 34 luphy0 at hme0 phy 0: LU6612 10/100 PHY, rev. 1 luphy1 at hme0 phy 1: LU6612 10/100 PHY, rev. 1 OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 2 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 3 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 4 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 5 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 6 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 7 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 8 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 9 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 10 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 11 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 12 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 13 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 14 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 15 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 16 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 17 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 18 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 19 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 20 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 21 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 22 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 23 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 24 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 25 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 26 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 27 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 28 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 29 not configured OUI 0x3ffbff model 0x003e rev 15 at hme0 phy 30 not configured OUI 0x3ffbff mod
