Is there a non-X11 version of Prolog available?
I've just been trying to install the SWI-Prolog port and it seems like it needs X11 installed to run. Is there a command line version of Prolog floating around at all? Or do I need to compile and install my own copy? Cheers for any help. Simon. I disapprove of what you say, but I'll defend to the death your right to say it. - Voltaire
Re: Is there a non-X11 version of Prolog available?
On Fri, Aug 29, 2008 at 8:15 AM, Simon Connah [EMAIL PROTECTED] wrote: I've just been trying to install the SWI-Prolog port and it seems like it needs X11 installed to run. Is there a command line version of Prolog floating around at all? Or do I need to compile and install my own copy? Cheers for any help. Simon. I disapprove of what you say, but I'll defend to the death your right to say it. - Voltaire I used gprolog a few years back and it's non-gui. Check it out: http://openports.se/lang/gprolog BR dunceor
Re: Any Ideas ? isakmpd loggs: exchange_setup_p1: unknown exchange type QUICK_MODE
Solution: Due to a kind of Typo in isakmpd.conf the local keying deamon tried to use the phase2 definitions for negociating an incoming p1 request. Thanks to anyone who put some thoughts on the question. Kinde regards, Stefan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Stefan Sczekalla Sent: Friday, August 22, 2008 5:40 PM To: misc@openbsd.org Subject: Any Ideas ? isakmpd loggs: exchange_setup_p1: unknown exchange type QUICK_MODE ... and send no answer back to xxx.yyy.zzz.uuu My Host is an OpenBSD 3.8, the other - remote ( xxx.yyy.zzz.uuu ) is a securepoint using strongswan. 17:11:22.476524 xxx.yyy.zzz.uuu.500 aaa.bbb.ccc.ddd.500: [udp sum ok] isakmp v1.0 exchange ID_PROT cookie: 26e5b1720844a0fa- msgid: len: 212 payload: SA len: 52 DOI: 1(IPSEC) situation: IDENTITY_ONLY payload: PROPOSAL len: 40 proposal: 0 proto: ISAKMP spisz: 0 xforms: 1 payload: TRANSFORM len: 32 transform: 0 ID: ISAKMP attribute LIFE_TYPE = SECONDS attribute LIFE_DURATION = 3600 attribute ENCRYPTION_ALGORITHM = 3DES_CBC attribute HASH_ALGORITHM = MD5 attribute AUTHENTICATION_METHOD = PRE_SHARED attribute GROUP_DESCRIPTION = MODP_1024 payload: VENDOR len: 20 payload: VENDOR len: 12 payload: VENDOR len: 20 (supports DPD v1.0) payload: VENDOR len: 20 (supports NAT-T, RFC 3947) payload: VENDOR len: 20 (supports v3 NAT-T, draft-ietf-ipsec-nat-t-ike-03) payload: VENDOR len: 20 (supports v2 NAT-T, draft-ietf-ipsec-nat-t-ike-02\n) payload: VENDOR len: 20 (supports v1 NAT-T, draft-ietf-ipsec-nat-t-ike-00) [ttl 0] (id 1, len 240) Any Ideas why this packet ist not answered by my Openbsd-BOX ? I double-checked my configs twice and have two additional well running tunnels. Kind regards, Stefan
Re: pf visualization
On Thu, 2008-08-28 at 11:52 -0400, Jason Dixon wrote: Thanks for any ideas beyond pftop, tcpdump, hatched, darkstat and ntop ;) If I ever get off my lazy ass and finish/package it up, maybe this? http://www.netflowdashboard.com/demo/ http://www.netflowdashboard.com/download/ is down ;) P.S. I just noticed it's actually somewhat useful in lynx as well. Go figure. :) Looks nice. I guess you'd need pfflowd on the firewall and have the dashboard somewhere else?
Re: pf visualization
On Thu, 2008-08-28 at 16:03 +, Stuart Henderson wrote: Thanks for any ideas beyond pftop, tcpdump, hatched, darkstat and ntop ;) the nfdump/nfprofile tools (also in ports) are interesting too, there's a web interface NfSen which is yet to be ported but can be manually installed without huge trouble. they need to work with a collector; our low-overhead one (pfflowd) needs mending to work with the changes to PF (hmm, now where did I put canacar's diff for that...) but there is also pcap-based softflowd which should be ok (I haven't tried it on the pflog interface, but if it works, that's probably the best way to use it, and if it doesn't work like that, it's relatively easy to add). Thanks, I'll have a look into it. Maybe you could send me canacar's diff, so I can test it while I'm on it. I'd definitely prefer pfflowd over softflowd.
Re: Howto connect to several wireless network ?
Hi, On Thu, Aug 28, 2008 at 5:35 PM, Nick Guenther [EMAIL PROTECTED] wrote: something like this script: #!/bin/sh #net.sh #change name as desired IF=ath0 ln -sf /etc/wifi/$1 /etc/hostname.${IF} sudo sh /etc/netstart and call it as $net home I have a similar approach, but its not great. Perhaps some form of daemon would be good to have to perform this task on the user's behalf. Solaris has a similar thing called nwamd. I still have problems switching between wireless networks and switch from wireless to wired etc with iwi. This area confuses me a lot and I have now started just rebooting if I need to switch from wifi to cable. Sometimes switch from 1 wifi net to another can be done if you take the interface down, followed by a scan, then try connecting. Sometimes i just get 'link down...'. -- Best Regards Edd http://students.dec.bournemouth.ac.uk/ebarrett
NFS writing, v2 vs v3
Hi. Something has been buging my about NFS for like... ever. From time to time I asked here and there about the following issue without getting any definitive answer. I guess I must be one of the latest folks using amd to mount nfs shares but why is that NFSv2 is so slow at writing compared to NFSv3? I get the similar behavior on any kind of machines (I can provide dmesg and all but since it happens everywhere) and this is not a new issue. Is this discrepancy between v2 and v3 an expected behavior? OpenBSD 4.4-current (GENERIC) #1572: Tue Aug 26 20:29:55 MDT 2008 # grep -v ^# /etc/exports /var/tmp -maproot=0 localhost # du -h install44.iso 216Minstall44.iso # mount_nfs -3 localhost:/var/tmp /mnt/nfs # time cp install44.iso /mnt/nfs/v3 0m48.18s real 0m0.02s user 0m0.71s system # umount /mnt/nfs/ mount_nfs -2 localhost:/var/tmp /mnt/nfs # time cp install44.iso /mnt/nfs/v2 1m21.54s real 0m0.00s user 0m0.80s system Thanks. -- Antoine
Re: Daily script leaving processes
On Wed, Aug 27, 2008 at 09:42:40PM -0401, jared r r spiegel wrote: On Mon, Aug 04, 2008 at 02:38:15PM +0200, Ivo van der Sangen wrote: When I tried to kill these processes I noticed that I culdn't kill the find processes that are apparently stuck in the kernel having WAIT status nfsrcvl. The obvious issue here is the nfs mount, but why does this cause the security script to block? The entry in fstab looks like this: 10.0.0.3:/home/ivo/music /mnt/music nfs ro,nodev,nosuid 0 0 Any ideas? perhaps add ',-i' to the mountops without -i, i believe nfs is quite happy to block if nfs is not meeting its expectations i fancy -b also because if i have reason enough to think the nfs will go away such that i want -i, i also find that i enjoy what -b provides, tho it might not be up your alley -- jared The problem was in the NFS server configuration. It didn't restart automatically after a reboot, because of an error in rc.conf.local. Regards, Ivo van der Sangen
Re: Howto connect to several wireless network ?
On Thu, 28 Aug 2008, Francisco Valladolid Hdez. wrote: From: Francisco Valladolid Hdez. [EMAIL PROTECTED] To: misc@openbsd.org Date: Thu, 28 Aug 2008 07:20:48 -0700 (PDT) Subject: Howto connect to several wireless network ? frequently i have the necessity to connect to several networks (my home, office and another public network ) How can perform it task ? NetBSD has a ifwatchd daemon which can help in this situations detected the up/down and monitor dynamic interfaces. Any help on it, can be really appreciated. See: http://undeadly.org/cgi?action=articlesid=20071224164233 for an OpenBSD journal article on a similar subject. There was also some discussion on this topic last year on this list. One reader posted details of the script he uses to probe for wireless networks. It'll be in the various mail list archives. For example: http://www.mail-archive.com/misc@openbsd.org/msg52116.html Usual disclaimer applies: I've not used either of the above, but they might be useful and/or a useful starting point for your own ideas. -- Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK [EMAIL PROTECTED] Phone: +44 1225 386101
Re: NFS writing, v2 vs v3
On Aug 29 12:42:52, Antoine Jacoutot wrote: I guess I must be one of the latest folks using amd to mount nfs shares but why is that NFSv2 is so slow at writing compared to NFSv3? I get the similar behavior on any kind of machines (I can provide dmesg and all but since it happens everywhere) and this is not a new issue. Is this discrepancy between v2 and v3 an expected behavior? Yes, this is to be expected NFSv3 is faster then v2. NFSv3 can do READDIRPLUS amnog other things, which NFSv2 cannot. Nobody uses v2 anymore. Jan
Re: NFS writing, v2 vs v3
On Fri, 29 Aug 2008, Jan Stary wrote: Yes, this is to be expected NFSv3 is faster then v2. NFSv3 can do READDIRPLUS amnog other things, which NFSv2 cannot. Nobody uses v2 anymore. Ok, being called nobody really hurts :( -- Antoine
Re: NFS writing, v2 vs v3
On Fri, Aug 29, 2008 at 02:49:11PM +0200, Antoine Jacoutot wrote: On Fri, 29 Aug 2008, Jan Stary wrote: Yes, this is to be expected NFSv3 is faster then v2. NFSv3 can do READDIRPLUS amnog other things, which NFSv2 cannot. Nobody uses v2 anymore. Ok, being called nobody really hurts :( don't be sad, nogroup ;-) -- Gilles Chehade http://www.poolp.org/~gilles/ Please, contribute to my happiness ;) http://www.amazon.com/gp/registry/wishlist/2O09ACKR1A8HD/
cdio(1)'s cdrip - why WAV?
Hi all, first of all, thanks to the authors of cdio(1), which (as I just found) can even do ripping and cddb queries. Regarding the cdrip feature, I have the following question: why was WAV chosen as the format of the ripped tracks (as opposed to raw CDR's whose format is known in advance) ? Thanks Jan Stary
Re: Howto connect to several wireless network ?
On 11:13, Fri 29 Aug 08, Edd Barrett wrote: I still have problems switching between wireless networks and switch from wireless to wired etc with iwi. This area confuses me a lot and I have now started just rebooting if I need to switch from wifi to cable. You can use trunk(4) for that Sometimes switch from 1 wifi net to another can be done if you take the interface down, followed by a scan, then try connecting. Sometimes i just get 'link down...'. -- Michiel van Baak [EMAIL PROTECTED] http://michiel.vanbaak.eu GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0x71C946BD Why is it drug addicts and computer aficionados are both called users?
Formating errors on XkbBell man page [from [EMAIL PROTECTED]
renaming the files is probably not a great option, so unless someone hacks in the support to man(1), it will probably stay that way. Why so ? I mean : why isn't renaming files a suitable option ? Apologies for such a candid question if it turns out to be labelled as ``stupid''. Right now, man(1) looks at the file name and decides what its fate will be according to a series of rules given in man.conf(5). This at least is what comes first after having read both manpages. I've not read the code. Making man(1) support X conventions would require 1/ a change in man.conf(5) format - a new keyword would be needed-and 2/ man(1) to look *into* the file. A sh(1) script could handle it automatically. The one that follows targets an existing setup, it just stands as a proof of concept : ### #!/bin/sh for file in $(find .) ; do if test ! -d $file ; then if test $(head -1 $file | \ sed -e 's//\/' -e s/\'/\\\'/) = \'\\\ t ; then # name-chaging code here fi fi done exit 0 ### I'd be interested in working on that if others consider it a reliable solution. Hyjial _ Envoyez avec Yahoo! Mail. Une boite mail plus intelligente http://mail.yahoo.fr
Re: Formating errors on XkbBell man page [from [EMAIL PROTECTED]
On Fri, Aug 29, 2008 at 02:24:42PM +, hyjial wrote: renaming the files is probably not a great option, so unless someone hacks in the support to man(1), it will probably stay that way. Why so ? I mean : why isn't renaming files a suitable option ? Apologies for such a candid question if it turns out to be labelled as ``stupid''. because then the people that look after dealing with X have more work on their plate when importing the source. Right now, man(1) looks at the file name and decides what its fate will be according to a series of rules given in man.conf(5). This at least is what comes first after having read both manpages. I've not read the code. Making man(1) support X conventions would require 1/ a change in man.conf(5) format - a new keyword would be needed-and 2/ man(1) to look *into* the file. man.conf can;t handle anything like that just now. man(1) would have to look into the file, as you say. and, as i said, that means someone has to volunteer their time to get it working. jmc
Re: Is there a non-X11 version of Prolog available?
On 29 Aug 2008, at 08:56, Karl Sjodahl - dunceor wrote: On Fri, Aug 29, 2008 at 8:15 AM, Simon Connah [EMAIL PROTECTED] wrote: I've just been trying to install the SWI-Prolog port and it seems like it needs X11 installed to run. Is there a command line version of Prolog floating around at all? Or do I need to compile and install my own copy? Cheers for any help. Simon. I disapprove of what you say, but I'll defend to the death your right to say it. - Voltaire I used gprolog a few years back and it's non-gui. Check it out: http://openports.se/lang/gprolog BR dunceor Thanks for the tip. I'm just a bit concerned about the broken part on that site apparently caused by randomised mmap(). Any idea if this is a major concern or just something that can be safely ignored? Simon. I disapprove of what you say, but I'll defend to the death your right to say it. - Voltaire
Re: Howto connect to several wireless network ?
--- johan beisser [EMAIL PROTECTED] wrote: On Aug 28, 2008, at 12:48 PM, Vadim Zhukov wrote: ifstated(8) + ifconfig(8) (see -M option of ifconfig)? Interestingly, I had a script that would use ifconfig -M to figure out which AP it should use, sorted by rank (first match) and avoiding using generic or brand names. No match, and it would go to the strongest signal (default wifi behavior). I kind of wonder if that script is still around now. Cool the -M switch is very fine to do a complete script for doing it, aditionally using the form found in the Undeadly post. Regards. --- Therefore, if anyone is in Christ, he is a new creation; the old has gone, the new has come! - 2 Corinthians 5:17 (NIV) --- Francisco Valladolid Hdez. http://blog.bsdguy.net - http://flickr.com/photos/sigueme/
Re: Is there a non-X11 version of Prolog available?
On Fri, Aug 29, 2008 at 4:48 PM, Simon Connah [EMAIL PROTECTED] wrote: On 29 Aug 2008, at 08:56, Karl Sjodahl - dunceor wrote: On Fri, Aug 29, 2008 at 8:15 AM, Simon Connah [EMAIL PROTECTED] wrote: I've just been trying to install the SWI-Prolog port and it seems like it needs X11 installed to run. Is there a command line version of Prolog floating around at all? Or do I need to compile and install my own copy? Cheers for any help. Simon. I disapprove of what you say, but I'll defend to the death your right to say it. - Voltaire I used gprolog a few years back and it's non-gui. Check it out: http://openports.se/lang/gprolog BR dunceor Thanks for the tip. I'm just a bit concerned about the broken part on that site apparently caused by randomised mmap(). Any idea if this is a major concern or just something that can be safely ignored? Simon. I disapprove of what you say, but I'll defend to the death your right to say it. - Voltaire Might wanna check out B-Prolog also: http://www.cad.mse.kyutech.ac.jp/people/zhou/bprolog.html Don't know if it runs on OpenBSD but it seems to run on FreeBSD. br dunceor
Changing password in kerberized environment is not working.
Hi folks, i have configured my openbsd kerberos server. It is serving two other computer in my home network. One of this client is running openbsd the other is Windows XP. I am able to login into any of these 2 client and authentication goes through kerberos 100% successful. I can log in to the server 100% ok. After logged in any given machine, i can reach another through obtaining a service ticket, what gives me a SSO enviroment. The problem is that i cannot change password from any of those machine, i got the following: [EMAIL PROTECTED] passwd -K [EMAIL PROTECTED]'s Password: New password: Verifying password - New password: Reply from server: Authentication failed [EMAIL PROTECTED] [EMAIL PROTECTED] passwd -K [EMAIL PROTECTED]'s Password: New password: Verifying password - New password: Reply from server: Authentication failed [EMAIL PROTECTED] And on windows i get a screen witht he following: 1326: Logon failure: unknow user or bad password. What i cannot understand is why i can login on any of the machine, but cannot change password. What am i doing wrong? OpenBSD machine is 4.3 stable and the other, Windows XP. Kerberos(heimdal) is the standard that comes with OpenBSD 4.3
Re : Formating errors on XkbBell man page [from [EMAIL PROTECTED]
Fine. I am surely blind to most bits of effort developers have to put in. I will have a go at it. _ Envoyez avec Yahoo! Mail. Une boite mail plus intelligente http://mail.yahoo.fr
odd greyscanner behaviour
Hi, I am running OpenBSD 4.4, spamd and greyscanner41 in a box. Looking at the log entries from the greyscanner, I found this entry and others which I find a bit strange: Aug 28 12:55:44 wall greytrapper[25604]: Trapped 209.85.132.241: Mailed from sender gmail.com with no MX or A Now, this IP address has an A record and it is from google. So my guess is that due to some temporary network instability, the reverse lookup is failing. But should the greyscanner script not be able to identify this and disregard instead of trapping the IP address? Thanks in advance. Regards, Jose -- Nothing says Labor Day like 500hp of American muscle Visit OnCars.com today.
sl-c1000 progress
Hi all Im just wondering what the progress on the Sl-C1000 version of the sharp zaurus is? I've come across a couple for sale, and would love to get one to run openbsd on. If the port is in a usable state, I'll pick them up and try and further the effort. Thanks for your time. jones SDF Public Access UNIX System - http://sdf.lonestar.org
Re: sl-c1000 progress
On Fri, Aug 29, 2008 at 05:43:09PM +, Tom Jones wrote: Hi all Im just wondering what the progress on the Sl-C1000 version of the sharp zaurus is? I've come across a couple for sale, and would love to get one to run openbsd on. If the port is in a usable state, I'll pick them up and try and further the effort. It is uncertain if OpenBSD will run on the SL-C1000. I suspect that the hardware is nearly identical to the SL-C3200 , which OpenBSD supports just fine. Of course without the HD. The missing HD might cause configuration issues or not. There is a reasonably good chance that with just a few tweaks OpenBSD would run just fine on CF media in the removable bay, in fact it may work without any tweaks. To my knowledge, no OpenBSD developer has ever had or had access to a SL-C1000. Dale Rahn [EMAIL PROTECTED]
Snapshot for i386 from 28.8. problem with X and pkg_add
Hi all, I was installed snapshot for i386 from 28.8. (install44.iso on anga.funkfeuer.at) for test,if problem with resolution on my LCD is solved on new X server.First of all,I have two new 'Not configured' in dmesg.Before was only one for my TV card,which is not supported under OpenBSD.Full dmesg is bellow email. So about X and resolutin.Now I need only use startx for X system.I have resolution [EMAIL PROTECTED] on 75Hz is ok throw xrandr.No more need move screen to left by OSD.BUT in default I have blinking scrollbars in xterm under root,after change rate to 75Hz by xrandr it's ok.When I start X by normal user,I have blinking scrollbars even after switch to 75Hz. DRI is not running.I thought,that it's enabled default in snaphosts as was write on undeadly for next release and testing. drmOpenDevice: node name is /dev/drm0 drmOpenDevice: open result is -1, (Device not configured) drmOpenDevice: Open failed [drm] failed to load kernel module radeon (EE) RADEON(0): [dri] RADEONDRIGetVersion failed to open the DRM [dri] Disabling DRI. And now about pkg_add.When I try $sudo pkg_add -v firefox-i18n-cs-2.0.0.16.tgz in xterm,I get Can not resolve and Fatal error.No other details.When I try the same in CLI - it's OK and everything installed. PKG_PATH=ftp://anga.funkfeuer.at/pub/OpenBSD/snapshots/packages/i386/ I hope,that it will be useful.If some need some other info I will give maximum what I can do with my little knowledge. Thx OpenBSD 4.4-current (GENERIC) #1034: Wed Aug 27 13:10:27 MDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD Sempron(tm) Processor 2600+ (AuthenticAMD 686-class, 128KB L2 cache) 1.61 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,MMX,FXSR,SSE,SSE2 cpu0: AMD erratum 89 present, BIOS upgrade may be required real mem = 1340895232 (1278MB) avail mem = 1286574080 (1226MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 11/30/04, BIOS32 rev. 0 @ 0xf0010, SMBIOS rev. 2.3 @ 0xf0520 (61 entries) bios0: vendor American Megatrends Inc. version 1006.005 date 11/30/2004 bios0: ASUSTeK Computer Inc. K8V-X apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown acpi at bios0 function 0x0 not configured pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf5cd0/192 (10 entries) pcibios0: PCI Interrupt Router at 000:17:0 (VIA VT8237 ISA rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0xd000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 VIA K8HTB Host rev 0x01 ppb0 at pci0 dev 1 function 0 VIA K8HTB AGP rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Radeon 9200 PRO rev 0x01 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) agp0 at vga1: v3, aperture at 0xf800, size 0xf00 ATI Radeon 9200 PRO Sec rev 0x01 at pci1 dev 0 function 1 not configured skc0 at pci0 dev 10 function 0 Marvell Yukon 88E8001/8003/8010 rev 0x13, Yukon Lite rev. A3 (0x7): irq 10 sk0 at skc0 port A: address 00:11:d8:4d:aa:d8 eephy0 at sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 5 Philips SAA7134 TV rev 0x01 at pci0 dev 14 function 0 not configured pciide0 at pci0 dev 15 function 0 VIA VT6420 SATA rev 0x80: DMA pciide0: using irq 10 for native-PCI interrupt pciide1 at pci0 dev 15 function 1 VIA VT82C571 IDE rev 0x06: ATA133, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide1 channel 0 drive 0: WDC WD800BB-00JHC0 wd0: 16-sector PIO, LBA, 76319MB, 156301488 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide1 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets, initiator 7 cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, DVDRAM GSA-4163B, A103 ATAPI 5/cdrom removable cd0(pciide1:1:0): using PIO mode 4, Ultra-DMA mode 2 uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x81: irq 11 uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x81: irq 11 uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x81: irq 10 uhci3 at pci0 dev 16 function 3 VIA VT83C572 USB rev 0x81: irq 10 ehci0 at pci0 dev 16 function 4 VIA VT6202 USB rev 0x86: irq 5 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 VIA EHCI root hub rev 2.00/1.00 addr 1 viapm0 at pci0 dev 17 function 0 VIA VT8237 ISA rev 0x00 iic0 at viapm0 iic0: addr 0x4a 00=3f 01=03 02=7f 03=07 05=30 06=c0 07=90 08=3f 09=03 0a=7f 0b=07 0d=30 0e=c0 0f=90 10=3f 11=03 12=7f 13=07 15=30 16=c0 17=90 18=3f 19=03 1a=7f 1b=07 1d=30 1e=c0 1f=90 20=3f 21=03 22=7f 23=07 25=30 26=c0 27=90 28=3f 29=03 2a=7f 2b=07 2d=30 2e=c0 2f=90 30=3f 31=03 32=7f 33=07 35=30 36=c0 37=90 38=3f 39=03 3a=7f 3b=07 3d=30 3e=c0 3f=90 40=3f 41=03 42=7f 43=07 45=30 46=c0 47=90 48=3f 49=03 4a=7f 4b=07 4d=30 4e=c0 4f=90 50=3f 51=03 52=7f 53=07 55=30 56=c0 57=90 58=3f 59=03 5a=7f 5b=07 5d=30 5e=c0 5f=90 60=3f 61=03 62=7f 63=07 65=30 66=c0 67=90 68=3f 69=03 6a=7f 6b=07 6d=30
Re: cdio(1)'s cdrip - why WAV?
On Fri, Aug 29, 2008 at 03:13:09PM +0200, Jan Stary wrote: Hi all, first of all, thanks to the authors of cdio(1), which (as I just found) can even do ripping and cddb queries. Regarding the cdrip feature, I have the following question: why was WAV chosen as the format of the ripped tracks (as opposed to raw CDR's whose format is known in advance) ? I did not write the code, but a) WAV is a well known format. probably all audio players/converters support WAV format. b) aucat(1) (previously and in now legacy mode) treats raw streams as mono mulaw @ 8kHz, so playing a raw stream with aucat(1) (previously or now in legacy mode) would not work correctly. c) the WAV header is the first 44 bytes of the stream. it's quite simple to turn a WAV into a raw stream, if a raw stream is preferred. -- [EMAIL PROTECTED] SDF Public Access UNIX System - http://sdf.lonestar.org
Re: cdio(1)'s cdrip - why WAV?
Jacob Meuser wrote: I did not write the code, but a) WAV is a well known format. probably all audio players/converters support WAV format. b) aucat(1) (previously and in now legacy mode) treats raw streams as mono mulaw @ 8kHz, so playing a raw stream with aucat(1) (previously or now in legacy mode) would not work correctly. c) the WAV header is the first 44 bytes of the stream. it's quite simple to turn a WAV into a raw stream, if a raw stream is preferred. Isn't point c) a slightly dangerous assumption? As far as I know a WAV file can contain multiple data chunks ... just skipping 44 bytes would be a bad idea in this case.
Re: pf visualization
On 2008-08-29, Stephan A. Rickauer [EMAIL PROTECTED] wrote: Thanks, I'll have a look into it. Maybe you could send me canacar's diff, so I can test it while I'm on it. I'd definitely prefer pfflowd over softflowd. here you go; it's needed for kernels from after the network hackathon. Index: Makefile === RCS file: /cvs/ports/net/pfflowd/Makefile,v retrieving revision 1.8 diff -u -p -r1.8 Makefile --- Makefile28 Jun 2008 08:30:00 - 1.8 +++ Makefile25 Jul 2008 14:29:14 - @@ -1,10 +1,9 @@ # $OpenBSD: Makefile,v 1.8 2008/06/28 08:30:00 ajacoutot Exp $ -BROKEN=needs to cope with recent network changes - COMMENT= PF to NetFlow converter DISTNAME= pfflowd-0.7 +PKGNAME= ${DISTNAME}p0 CATEGORIES=net MASTER_SITES= http://www.mindrot.org/files/pfflowd/ Index: patches/patch-pfflowd_c === RCS file: patches/patch-pfflowd_c diff -N patches/patch-pfflowd_c --- /dev/null 1 Jan 1970 00:00:00 - +++ patches/patch-pfflowd_c 25 Jul 2008 14:29:14 - @@ -0,0 +1,182 @@ +$OpenBSD$ +--- pfflowd.c.orig Fri Jun 13 02:40:21 2008 pfflowd.c Fri Jun 13 02:56:30 2008 +@@ -210,14 +210,14 @@ connsock(struct sockaddr *addr, socklen_t len) + } + + static void +-format_pf_host(char *buf, size_t n, struct pf_state_host *h, sa_family_t af) ++format_pf_addr(char *buf, size_t n, const struct pf_addr *h, sa_family_t af) + { + const char *err = NULL; + + switch (af) { + case AF_INET: + case AF_INET6: +- if (inet_ntop(af, h-addr, buf, n) == NULL) ++ if (inet_ntop(af, h, buf, n) == NULL) + err = strerror(errno); + break; + default: +@@ -253,7 +253,8 @@ send_netflow_v1(const struct pfsync_state *st, u_int n + + hdr = (struct NF1_HEADER *)packet; + for(num_packets = offset = j = i = 0; i n; i++) { +- struct pf_state_host src, dst; ++ const struct pf_addr *src, *dst; ++ u_int16_t src_port, dst_port; + u_int32_t bytes_in, bytes_out; + u_int32_t packets_in, packets_out; + char src_s[64], dst_s[64], rt_s[64], pbuf[16], creation_s[64]; +@@ -300,19 +301,23 @@ send_netflow_v1(const struct pfsync_state *st, u_int n + creation = uptime_ms; /* Avoid u_int wrap */ + + if (st[i].direction == PF_OUT) { +- memcpy(src, st[i].lan, sizeof(src)); +- memcpy(dst, st[i].ext, sizeof(dst)); ++ src = st[i].key[PF_SK_WIRE].addr[1]; ++ dst = st[i].key[PF_SK_WIRE].addr[0]; ++ src_port = st[i].key[PF_SK_WIRE].port[1]; ++ dst_port = st[i].key[PF_SK_WIRE].port[0]; + } else { +- memcpy(src, st[i].ext, sizeof(src)); +- memcpy(dst, st[i].lan, sizeof(dst)); ++ src = st[i].key[PF_SK_STACK].addr[0]; ++ dst = st[i].key[PF_SK_STACK].addr[1]; ++ src_port = st[i].key[PF_SK_STACK].port[0]; ++ dst_port = st[i].key[PF_SK_STACK].port[1]; + } + + flw = (struct NF1_FLOW *)(packet + offset); + if (netflow_socket != -1 st[i].packets[0][0] != 0) { +- flw-src_ip = src.addr.v4.s_addr; +- flw-dest_ip = dst.addr.v4.s_addr; +- flw-src_port = src.port; +- flw-dest_port = dst.port; ++ flw-src_ip = src-v4.s_addr; ++ flw-dest_ip = dst-v4.s_addr; ++ flw-src_port = src_port; ++ flw-dest_port = dst_port; + flw-flow_packets = st[i].packets[0][0]; + flw-flow_octets = st[i].bytes[0][0]; + flw-flow_start = htonl(uptime_ms - creation); +@@ -325,10 +330,10 @@ send_netflow_v1(const struct pfsync_state *st, u_int n + } + flw = (struct NF1_FLOW *)(packet + offset); + if (netflow_socket != -1 st[i].packets[1][0] != 0) { +- flw-src_ip = dst.addr.v4.s_addr; +- flw-dest_ip = src.addr.v4.s_addr; +- flw-src_port = dst.port; +- flw-dest_port = src.port; ++ flw-src_ip = dst-v4.s_addr; ++ flw-dest_ip = src-v4.s_addr; ++ flw-src_port = dst_port; ++ flw-dest_port = src_port; + flw-flow_packets = st[i].packets[1][0]; + flw-flow_octets = st[i].bytes[1][0]; + flw-flow_start = htonl(uptime_ms - creation); +@@ -352,17 +357,17 @@ send_netflow_v1(const struct pfsync_state *st, u_int n +
sl-c1000 progress
Ive come across a few for sale, if i can get hold of them for reasonable prices I'll try and get one to donate to the project. If anyone else is interest there are several for sale on the oesf.org forums, they seem to be within an sensible price range none of this 600 USD/GBP nonesense jones@ SDF Public Access UNIX System - http://sdf.lonestar.org
Re: Snapshot for i386 from 28.8. problem with X and pkg_add
On 2008-08-29, Tomas Bodzar [EMAIL PROTECTED] wrote: So about X and resolutin.Now I need only use startx for X system.I have resolution [EMAIL PROTECTED] on 75Hz is ok throw xrandr.No more need move screen to left by OSD. ah, good. BUT in default I have blinking scrollbars in xterm under root,after change rate to 75Hz by xrandr it's ok.When I start X by normal user,I have blinking scrollbars even after switch to 75Hz. I don't know about this.. DRI is not running.I thought,that it's enabled default in snaphosts as was write on undeadly for next release and testing. it's in GENERIC, but disabled. you can enable it from boot -c. Before you had to compile a custom kernel. And now about pkg_add.When I try $sudo pkg_add -v firefox-i18n-cs-2.0.0.16.tgz in xterm,I get Can not resolve and Fatal error.No other details.When I try the same in CLI - it's OK and everything installed. PKG_PATH=ftp://anga.funkfeuer.at/pub/OpenBSD/snapshots/packages/i386/ your xterm is not running a login shell so it doesn't source .profile where you presumably define PKG_PATH. I use XTerm*loginShell: true in ~/.Xresources (and my .xsession is copied and edited from the system Xsession file in /etc/X11/xdm, which merges it using xrdb).
Re: cdio(1)'s cdrip - why WAV?
On Fri, Aug 29, 2008 at 11:44:56PM +0200, Thomas Pfaff wrote: Jacob Meuser wrote: I did not write the code, but a) WAV is a well known format. probably all audio players/converters support WAV format. b) aucat(1) (previously and in now legacy mode) treats raw streams as mono mulaw @ 8kHz, so playing a raw stream with aucat(1) (previously or now in legacy mode) would not work correctly. c) the WAV header is the first 44 bytes of the stream. it's quite simple to turn a WAV into a raw stream, if a raw stream is preferred. Isn't point c) a slightly dangerous assumption? As far as I know a WAV file can contain multiple data chunks ... just skipping 44 bytes would be a bad idea in this case. for a random WAV file, yes, but the WAV's cdio produces don't have multiple data chunks. -- [EMAIL PROTECTED] SDF Public Access UNIX System - http://sdf.lonestar.org
isakmpd from XX to any; possible to offer choice of algorithm?
I've got a number of VPN clients using X.509 certs to access a central site configured by ipsec.conf like this. ike passive esp \ from {$SOMENET, 192.168.40.0/21} to any \ main auth hmac-sha1 enc aes group grp2 \ quick auth hmac-sha1 enc aes group grp2 \ tag ipsec-$id Now someone would like to add a device which (like some other devices connecting to this machine) is not on a fixed address so it needs to use the to any rule. Though it supports AES in phase 2, only DES or 3DES are permitted in phase 1 (which of course is already set to AES on other devices). Does anyone know of a way, either using ipsec.conf or isakmpd.conf, to permit use of _either_ AES _or_ 3DES in phase 1? Or do I need to go to all the other endpoints and reconfigure them to a common algorithm (i.e. 3DES)? (it's not especially useful information, but central site is running May 2 2008 code, clients are mixed cheap CPE routers - draytek/zyxel etc. hence the problem. :)
Re: isakmpd from XX to any; possible to offer choice of algorithm?
On Fri, Aug 29, 2008 at 11:02:18PM +, Stuart Henderson wrote: Does anyone know of a way, either using ipsec.conf or isakmpd.conf, to permit use of _either_ AES _or_ 3DES in phase 1? Or do I need to go to all the other endpoints and reconfigure them to a common algorithm (i.e. 3DES)? when i was doing certs, i was identifying hosts based on USER_FQDN, iirc. i believe this works in phaseI ID. if so, perhaps it is possible to either omit main mode from ipsec.conf, or just do this particular client entirely in isakmpd.conf. but anyway, within the ISAKMP-peer section for that one host, iirc you can define what its phase 1 config is, and in there you can bring the 3DES into play. if the cert the peer has is only FQDN, and its the same FQDN as other peers have, then i think you're pretty much screwed wrt being able to one-off this guy real super easy, but USER_FQDN can provide this granularity. i *do* remember having a lot of trouble with the Default-phase-1-ID for some reason somewhere... dunno if it'd be relevant.. it's been a while. -- jared
Re: isakmpd from XX to any; possible to offer choice of algorithm?
On Fri, Aug 29, 2008 at 11:02:18PM +, Stuart Henderson wrote: Now someone would like to add a device which (like some other devices connecting to this machine) is not on a fixed address so it needs to use the to any rule. Though it supports AES in phase 2, only DES or 3DES are permitted in phase 1 (which of course is already set to AES on other devices). just checked isakmpd.conf(5), it says you can have a list of proposed transforms (instead of just one). but i do recall for certain that i NEVER got that to work. any list of anything, i never got to work; transform lists, the thing where you're supposed to be able to specify a range of time/byte durations, etcetc :/ -- jared
Promise SATA 300 TX4 strangeness
Howdy List? I have a Promise SATA 300 TX4 which I've tested with 3 different mobos using 4.3 and 4.4. Two of the mobos, all of which operate with obsd cleanly when using on-board disk io, fail to finish booting, locking tight at the mtrr: Pentium Pro MTRR support line when booting the cd and at the softraid0 at root line when booting from a SATA disk attached to the TX4. AMD Sempron(tm) Processor 3000+ (1808.33-MHz 686-class CPU) AMD Sempron(tm) Processor 2600+ (AuthenticAMD 686-class, 128KB L2 cache) 1.61 GHz On an Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz board (Gigabyte), however, I have no problems booting and running with the Promise in, either from CD or from disk attached to the Promise. Any ideas as to what is happening would be appreciated. Thanks, Dhu
bgpctl communities bug?
Seems like given this RIB entry: % ./bgpctl show rib detail 10.0.0.0 BGP routing table entry for 10.0.0.0/24 1.0 Nexthop 192.168.219.19 (via 192.168.219.19) from test (192.168.0.1) Origin IGP, metric 0, localpref 100, external, valid, best Last update: 03:20:38 ago Communities: 7:7 NO_ADVERTISE it should be possible to do this: % ./bgpctl show rib community no_advertise Invalid community unknown argument: no_advertise valid commands/args: community There is some code in parse_community() that sets the value of as to COMMUNITY_WELLKNOWN, which is also the value of USHRT_MAX, which guarantees that the test will fail: done: if (as == 0 || as == USHRT_MAX) { fprintf(stderr, Invalid community\n); return (0); } if (as == COMMUNITY_WELLKNOWN) switch (type) { case COMMUNITY_NO_EXPORT: case COMMUNITY_NO_ADVERTISE: case COMMUNITY_NO_EXPSUBCONFED: /* valid */ break; default: /* unknown */ fprintf(stderr, Invalid well-known community\n); return (0); }