Re: High interrupt count on OpenBSD 4.3/amd64 with driver azalia
On Thu, 28 Aug 2008 10:49:48 +0200 Gabriel Linder [EMAIL PROTECTED] wrote: Hi, I use a desktop system powered by OpenBSD 4.3-stable with GENERIC.MP kernel (amd64, up to date as of now). I listen music with mplayer while I work, and sometime my system feel very slow. A top show that CPU0 is spending 80% time in interrupts, and leaving mplayer calm the system down. Is there anything I can do to avoid that, or any information I can provide to help fix it ? Just tried with a GENERIC kernel, which froze the system after ten minutes of uptime. Dmesg extracted from /var/log/messages follows. I will try with -current as soon as I can. Sep 3 08:52:04 oblivion syslogd: start Sep 3 08:52:04 oblivion /bsd: OpenBSD 4.3-stable (bsd) #3: Tue Sep 2 14:19:19 CEST 2008 Sep 3 08:52:04 oblivion /bsd: [EMAIL PROTECTED]:/root/bsd Sep 3 08:52:04 oblivion /bsd: real mem = 2111426560 (2013MB) Sep 3 08:52:04 oblivion /bsd: avail mem = 2038685696 (1944MB) Sep 3 08:52:04 oblivion /bsd: RTC BIOS diagnostic error 11memory_size Sep 3 08:52:04 oblivion /bsd: mainbus0 at root Sep 3 08:52:04 oblivion /bsd: bios0 at mainbus0: SMBIOS rev. 2.5 @ 0xf0450 (80 entries) Sep 3 08:52:04 oblivion /bsd: bios0: vendor Dell Inc. version A09 date 03/11/2008 Sep 3 08:52:04 oblivion /bsd: bios0: Dell Inc. OptiPlex 755 Sep 3 08:52:04 oblivion /bsd: acpi0 at bios0: rev 2 Sep 3 08:52:04 oblivion /bsd: acpi0: tables DSDT FACP SSDT APIC BOOT ASF! MCFG HPET TCPA SLIC SSDT SSDT SSDT Sep 3 08:52:04 oblivion /bsd: acpi0: wakeup devices VBTN(S4) PCI0(S5) PCI4(S5) PCI2(S5) PCI3(S5) PCI1(S5) PCI5(S5) PCI6(S5) MOU_(S3) USB0(S3) USB1(S3) USB2(S3) USB3(S3) USB4(S3) USB5(S3) Sep 3 08:52:04 oblivion /bsd: acpitimer0 at acpi0: 3579545 Hz, 24 bits Sep 3 08:52:04 oblivion /bsd: acpihpet0 at acpi0: 14318179 Hz Sep 3 08:52:04 oblivion /bsd: acpiprt0 at acpi0: bus 3 (PCI4) Sep 3 08:52:04 oblivion /bsd: acpiprt1 at acpi0: bus 2 (PCI2) Sep 3 08:52:04 oblivion /bsd: acpiprt2 at acpi0: bus -1 (PCI3) Sep 3 08:52:04 oblivion /bsd: acpiprt3 at acpi0: bus 1 (PCI1) Sep 3 08:52:04 oblivion /bsd: acpiprt4 at acpi0: bus -1 (PCI5) Sep 3 08:52:04 oblivion /bsd: acpiprt5 at acpi0: bus -1 (PCI6) Sep 3 08:52:04 oblivion /bsd: acpiprt6 at acpi0: bus 0 (PCI0) Sep 3 08:52:04 oblivion /bsd: acpicpu0 at acpi0: FVS, 2667, 2333, 2000 MHz Sep 3 08:52:04 oblivion /bsd: acpibtn0 at acpi0: VBTN Sep 3 08:52:04 oblivion /bsd: cpu0 at mainbus0: (uniprocessor) Sep 3 08:52:04 oblivion /bsd: cpu0: Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz, 2660.33 MHz Sep 3 08:52:04 oblivion /bsd: cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR,NXE,LONG Sep 3 08:52:04 oblivion /bsd: cpu0: 6MB 64b/line 16-way L2 cache Sep 3 08:52:04 oblivion /bsd: pci0 at mainbus0 bus 0: configuration mode 1 Sep 3 08:52:04 oblivion /bsd: pchb0 at pci0 dev 0 function 0 Intel 82Q35 Host rev 0x02 Sep 3 08:52:04 oblivion /bsd: ppb0 at pci0 dev 1 function 0 Intel 82Q35 PCIE rev 0x02: irq 11 Sep 3 08:52:04 oblivion /bsd: pci1 at ppb0 bus 1 Sep 3 08:52:04 oblivion /bsd: vga1 at pci1 dev 0 function 0 ATI Radeon HD 2400 XT rev 0x00 Sep 3 08:52:04 oblivion /bsd: wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) Sep 3 08:52:04 oblivion /bsd: wsdisplay0: screen 1-5 added (80x25, vt100 emulation) Sep 3 08:52:04 oblivion /bsd: Intel 82Q35 HECI rev 0x02 at pci0 dev 3 function 0 not configured Sep 3 08:52:04 oblivion /bsd: pciide0 at pci0 dev 3 function 2 Intel 82Q35 PT IDER rev 0x02: DMA (unsupported), channel 0 wired to native-PCI, channel 1 wired to native-PCI Sep 3 08:52:04 oblivion /bsd: pciide0: using irq 9 for native-PCI interrupt Sep 3 08:52:04 oblivion /bsd: pciide0: channel 0 ignored (not responding; disabled or no drives?) Sep 3 08:52:04 oblivion /bsd: pciide0: channel 1 ignored (not responding; disabled or no drives?) Sep 3 08:52:04 oblivion /bsd: Intel 82Q35 KT rev 0x02 at pci0 dev 3 function 3 not configured Sep 3 08:52:04 oblivion /bsd: em0 at pci0 dev 25 function 0 Intel ICH9 IGP AMT rev 0x02: irq 4, address 00:1e:4f:c5:11:9f Sep 3 08:52:04 oblivion /bsd: uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x02: irq 11 Sep 3 08:52:04 oblivion /bsd: uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x02: irq 5 Sep 3 08:52:04 oblivion /bsd: ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x02: irq 5 Sep 3 08:52:04 oblivion /bsd: usb0 at ehci0: USB revision 2.0 Sep 3 08:52:04 oblivion /bsd: uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 Sep 3 08:52:04 oblivion /bsd: azalia0 at pci0 dev 27 function 0 Intel 82801I HD Audio rev 0x02: irq 11 Sep 3 08:52:04 oblivion /bsd: azalia0: RIRB time out Sep 3 08:52:04 oblivion /bsd: azalia0: RIRB time out Sep 3 08:52:04 oblivion /bsd: azalia0: codec[s]: Analog Devices AD1984 Sep 3 08:52:04 oblivion /bsd: audio0 at azalia0 Sep 3 08:52:04 oblivion /bsd: ppb1 at pci0 dev 28
Re: question on nat behaviour ....
Hello Giancarlo, Argh - rtfm - I tried to search on this topic but only in the OpenBSD FAQ. Thanks for pointig me to the right direction. Kind regards, Stefan -Original Message- From: Giancarlo Razzolini [mailto:[EMAIL PROTECTED] On Behalf Of Giancarlo Razzolini Sent: Tuesday, September 02, 2008 7:24 PM To: Stefan Sczekalla Cc: misc@openbsd.org Subject: Re: question on nat behaviour Stefan Sczekalla escreveu: I'm somewhat uncertain on how NAT behaves especially on nearly concurrent rules. e.g. assumption: ( ext_if has two addresse e.g. 82.100.200.1 and and ALIAS 82.100.200.2 ) nat pass on $ext_if form $internal_networks to 192.168.47.11 - 82.100.200.1 nat pass on $ext_if form $internal_networks to any - ( $ext_if ) ( how ) Can I bee sure that 192.168.47.11 will always be conncted from 82.100.200.1 ? will PF behave differently when the oder of the rules is vice-versa ? Kind regards, Stefan The pf.conf man page states this, when talking about the evalution of translation rules: Evaluation order of the translation rules is dependent on the type of the translation rules and of the direction of a packet. binat rules are always evaluated first. Then either the rdr rules are evaluated on an inbound packet or the nat rules on an outbound packet. Rules of the same type are evaluated in the same order in which they appear in the ruleset. *The first matching rule decides what action is taken.* Also, you are using the *pass* modifier. This means that, if a packet match the rule, it will not be processed further by filter rules. You must keep in mind that *every* packet that match a translation rule, will create an implicit state. If you take a look at the pf states with pfctl -ss -vvv, you can see the states and also to which ip address they translated to. This way you can ensure your rules are working correctly. But i don't recommend the use of the *pass* modifier unless you know exactly what you're doing. My regards, -- Giancarlo Razzolini http://lock.razzolini.adm.br Linux User 172199 Red Hat Certified Engineer no:804006389722501 Verify:https://www.redhat.com/certification/rhce/current/ Moleque Sem Conteudo Numero #002 OpenBSD Stable Ubuntu 8.04 Hardy Heron 4386 2A6F FFD4 4D5F 5842 6EA0 7ABE BBAB 9C0E 6B85
Using snapshots - not sure with upgrade process - BFU :-)
Hi all, I still read FAQ and some man pages again and again (useful and very readable info),but I'm still not sure or my english is terrible :-) If I have 4.3 -release and make Upgrade with install44.iso snapshot (say from 28.8.),do I need all the changes pointed here http://www.openbsd.org/faq/current.html or only changes after 28.8. or make changes only for things I was using or all changes are in snapshot? I tried apply patches or follow -stable couple of times and everyting was ok - FAQ is clear for me.But here I'm not so sure. I'm trying this in Qemu so mistakes are not so terrible. During Upgrade there is an info to apply manually necessary changes in /etc ,but which changes?I have config only for pf(4),I have this system for learn base (utilities and so on). Could someone point me to right direction (what to read about snapshots,man page) ?
Re: Can't start Apache... MaxCPUPerChild is invalid??
Hi, On Tue, 02.09.2008 at 22:20:26 +1000, Sunnz [EMAIL PROTECTED] wrote: [Tue Sep 2 22:14:29 2008] [notice] child pid 29398 exit signal Segmentation fault (11) ... some more clipped try to have a compiler run. SEGVs are often the sign of bad RAM. So you may want to swap at least disks and memory in your box. Kind regards, --Toni++
Re: High interrupt count on OpenBSD 4.3/amd64 with driver azalia
On Wed, Sep 03, 2008 at 09:42:06AM +0200, Gabriel Linder wrote: On Thu, 28 Aug 2008 10:49:48 +0200 Gabriel Linder [EMAIL PROTECTED] wrote: I use a desktop system powered by OpenBSD 4.3-stable with GENERIC.MP kernel (amd64, up to date as of now). I listen music with mplayer while I work, and sometime my system feel very slow. A top show that CPU0 is spending 80% time in interrupts, and leaving mplayer calm the system down. Is there anything I can do to avoid that, or any information I can provide to help fix it ? Just tried with a GENERIC kernel, which froze the system after ten minutes of uptime. Dmesg extracted from /var/log/messages follows. I will try with -current as soon as I can. I think the interrupt load with a -current or -snapshot will be better. I can confirm your high interrupt load (my opteron has an interrupt load hovering between 70% and 80% in GENERIC.MP). Ariane
Re: macbook / azalia(4) / amd64 / -current / nosound?
jared r r spiegel schrieb: i cannot get sound output to happen on this thing; i see indication that others with macbooks (pro and regular) have had sound since sometime in 4.2-current land. azalia(4) says 'Known supported devices are Intel 82801FB/GB/HB/IB', and per my dmesg i have an '82801H', so maybe this is the problem? dmesg doesn't say 'not supported' or similar tho. it is somewhat working for me with headphones in mic input. have tried headphones and internal speaker; have done 'echo ABCD /dev/speaker'; midiplay -x; xmms to play an .mp3 after installing the xmms-mp3 subpkg; catting an .au greater than /dev/audio: $ file doorbell.au doorbell.au: Sun/NeXT audio data: 8-bit ISDN mu-law, mono, 8000 Hz no sound ever. doesn't even pick up the phone, really... mixerctl(1) output on this thing is mammoth and complex (and seems width-truncated); i'm not using an /etc/mixerctl.conf. dmesg is in my other poor unanswered post (i probably took too long to actually state the problem/question because i was trying too hard to make a not-shitty post): http://marc.info/?l=openbsd-miscm=121987292718762w=2 i'm on the aug 29 snapshots now instead of aug 12, but quite literally the only thing that changed in the dmesg output other than the header was the avail mem went down a wee tad. tried unplugging all the USB peripherals i have (uberry(4) and a keyboard/mouse dongle and sometimes an external HD), and the external monitor dongle, no change. searching archives for 'macbook audio' or 'azalia' or similar, all i see is ppl happy since the 4.2-current work deanna@ did and everyone with one of these things i guess has working sound and is loving life; i would like to hop onto that boat too. here is audioctl -a and mixerctl -a: $ audioctl -a name=HD-Audio version=1.0 config=azalia0 encodings=slinear_le:16,slinear_le:16 properties=full_duplex,independent full_duplex=0 fullduplex=0 blocksize=9600 hiwat=6 lowat=1 output_muted=0 monitor_gain=0 mode= play.rate=48000 play.channels=2 play.precision=16 play.encoding=slinear_le play.gain=127 play.balance=32 play.port=0x0 play.avail_ports=0x0 play.seek=9600 play.samples=7992 play.eof=0 play.pause=0 play.error=1 play.waiting=0 play.open=0 play.active=0 play.buffer_size=65536 play.block_size=9600 play.errors=402 record.rate=48000 record.channels=2 record.precision=16 record.encoding=slinear_le record.gain=127 record.balance=32 record.port=0x0 record.avail_ports=0x0 record.seek=0 record.samples=0 record.eof=0 record.pause=0 record.error=0 record.waiting=0 record.open=0 record.active=0 record.buffer_size=65536 record.block_size=9600 record.errors=0 $ mixerctl -a record.adc.mute=off record.adc=125,125 record.adc2.mute=off record.adc2=125,125 record.adc3.mute=off record.adc3=125,125 inputs.mix.mic.mute=off inputs.mix.line2.mute=off inputs.mix.line3.mute=off inputs.mix.line4.mute=off inputs.mix.line5.mute=off inputs.mix.line6.mute=off inputs.mix.speaker.mut=off inputs.mix.headphones.=off inputs.mix.speaker2.mu=off inputs.mix.line.mute=off inputs.mix.mic=120,120 inputs.mix.line2=120,120 inputs.mix.line3=120,120 inputs.mix.line4=120,120 inputs.mix.line5=120,120 inputs.mix.line6=120 inputs.mix.speaker=120,120 inputs.mix.headphones=120,120 inputs.mix.speaker2=120,120 inputs.mix.line=120,120 outputs.mix2=126,126 inputs.mix2.dac.mute=off inputs.mix2.mix.mute=off outputs.mix3=126,126 inputs.mix3.dac2.mute=off inputs.mix3.mix.mute=off outputs.mix4=126,126 inputs.mix4.dac3.mute=off inputs.mix4.mix.mute=off outputs.mix5=126,126 inputs.mix5.dac4.mute=off inputs.mix5.mix.mute=off outputs.speaker.source=mix2 outputs.speaker.mute=off inputs.speaker=85,85 outputs.speaker.dir=output outputs.speaker.boost=off outputs.headphones.sour=mix3 outputs.headphones.mute=off inputs.headphones=85,85 outputs.headphones.dir=output outputs.headphones.boos=off outputs.speaker2.source=mix4 outputs.speaker2.mute=off inputs.speaker2=85,85 outputs.speaker2.dir=output outputs.speaker2.boost=off outputs.line.source=mix5 outputs.line.mute=off inputs.line=85,85 outputs.line.dir=output outputs.line.boost=off outputs.mic.source=mix2 outputs.mic.mute=off inputs.mic=85,85 outputs.mic.dir=output outputs.mic.boost=off outputs.line2.source=mix2 outputs.line2.mute=off inputs.line2=85,85 outputs.line2.dir=output outputs.line2.boost=off outputs.line3.source=mix2 outputs.line3.mute=off inputs.line3=85,85 outputs.line3.dir=output outputs.line3.boost=off outputs.line4.source=mix2 outputs.line4.mute=off inputs.line4=85,85 outputs.line4.dir=output outputs.line4.boost=off inputs.mix6.mic.mute=off inputs.mix6.line2.mute=off inputs.mix6.line3.mute=off inputs.mix6.line4.mute=off inputs.mix6.line5.mute=off inputs.mix6.line6.mute=off inputs.mix6.speaker.mu=off inputs.mix6.headphones=off inputs.mix6.speaker2.m=off inputs.mix6.line.mute=off inputs.mix6.mix.mute=off inputs.mix7.mic.mute=off inputs.mix7.line2.mute=off inputs.mix7.line3.mute=off inputs.mix7.line4.mute=off
Re: Accessing raid health status on HP DL360 G5, P400i Smart Array with OpenBSD 4.3?
2008/9/2 Stuart Henderson [EMAIL PROTECTED] On 2008-09-02, Markus Hennecke [EMAIL PROTECTED] wrote: Stuart Henderson schrieb: On 2008-09-02, Paul Wright [EMAIL PROTECTED] wrote: I want to monitor the raid as it will be deployed in a remote location. Is there something I've missed or a different command I should try? bioctl isn't supported for ciss(4) (or mpi(4), for that matter). bioctl is supported for ciss, but not for all models AFAIR. ah, you're right - sorry. revision 1.30 date: 2008/04/24 09:04:14; author: jakob; state: Exp; lines: +25 -12 some ciss(4) firmwares use different physical drive addressing, resulting in bioctl(8) functions not available; pr#5682. code from mickey. tested by several people. ok dlg@ krw@ so Paul, try a snapshot. I've tried the August 31st snapshot and that does work just how I'd want it to, thanks. I'm guessing if I want this functionality I either have to wait for the 4.4 release or run -current? Paul. # bioctl ciss0 Volume Status Size Device ciss0 0 Online 146778685440 sd0 RAID1 0 Online 146815737856 0:0.0 noencl HP DG146BAAJB 1 Online 146815737856 0:4.0 noencl HP DG146BAAJB # sysctl hw.sensors hw.sensors.acpitz0.temp0=8.35 degC (zone temperature) hw.sensors.cpu0.temp0=45.00 degC hw.sensors.ciss0.drive0=online (sd0), OK dmesg from 31/08/2008 snapshot: OpenBSD 4.4-current (GENERIC.MP) #859: Sun Aug 31 11:22:24 MDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Xeon(R) CPU E5405 @ 2.00GHz (GenuineIntel 686-class) 2.01 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,TM2,CX16,xTPR real mem = 2145308672 (2045MB) avail mem = 2065940480 (1970MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 12/31/99, BIOS32 rev. 0 @ 0xf, SMBIOS rev. 2.4 @ 0xee000 (68 entries) bios0: vendor HP version P58 date 01/24/2008 bios0: HP ProLiant DL360 G5 acpi0 at bios0: rev 2 acpi0: tables DSDT FACP SPCR MCFG HPET SPMI ERST APIC BERT HEST acpi0: wakeup devices acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 333MHz cpu1 at mainbus0: apid 2 (application processor) cpu1: Intel(R) Xeon(R) CPU E5405 @ 2.00GHz (GenuineIntel 686-class) 2.01 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,TM2,CX16,xTPR cpu2 at mainbus0: apid 1 (application processor) cpu2: Intel(R) Xeon(R) CPU E5405 @ 2.00GHz (GenuineIntel 686-class) 2.01 GHz cpu2: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,TM2,CX16,xTPR cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Xeon(R) CPU E5405 @ 2.00GHz (GenuineIntel 686-class) 2.01 GHz cpu3: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,TM2,CX16,xTPR ioapic0 at mainbus0: apid 8 pa 0xfec0, version 20, 24 pins ioapic1 at mainbus0: apid 9 pa 0xfec8, version 20, 24 pins acpiprt0 at acpi0: bus 1 (IP2P) acpiprt1 at acpi0: bus 11 (IPE1) acpiprt2 at acpi0: bus 10 (IPE4) acpiprt3 at acpi0: bus 16 (P2P2) acpiprt4 at acpi0: bus 9 (PT02) acpiprt5 at acpi0: bus 6 (PT03) acpiprt6 at acpi0: bus 19 (PT04) acpiprt7 at acpi0: bus 3 (NB01) acpiprt8 at acpi0: bus 5 (NB02) acpiprt9 at acpi0: bus 0 (PCI0) acpicpu0 at acpi0 acpicpu1 at acpi0 acpicpu2 at acpi0 acpicpu3 at acpi0 acpitz0 at acpi0: critical temperature 31 degC bios0: ROM list: 0xc/0xb000 0xcc400/0x4000! 0xd0400/0x1800 0xe6000/0x2000! ipmi at mainbus0 not configured pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 5000P Host rev 0xb1 ppb0 at pci0 dev 2 function 0 Intel 5000 PCIE rev 0xb1 pci1 at ppb0 bus 9 ppb1 at pci1 dev 0 function 0 Intel 6321ESB PCIE rev 0x01 pci2 at ppb1 bus 10 ppb2 at pci2 dev 0 function 0 Intel 6321ESB PCIE rev 0x01 pci3 at ppb2 bus 11 ppb3 at pci2 dev 1 function 0 Intel 6321ESB PCIE rev 0x01 pci4 at ppb3 bus 14 ppb4 at pci2 dev 2 function 0 Intel 6321ESB PCIE rev 0x01 pci5 at ppb4 bus 15 ppb5 at pci1 dev 0 function 3 Intel 6321ESB PCIE-PCIX rev 0x01 pci6 at ppb5 bus 16 ppb6 at pci0 dev 3 function 0 Intel 5000 PCIE rev 0xb1 pci7 at ppb6 bus 6 ciss0 at pci7 dev 0 function 0 Hewlett-Packard Smart Array rev 0x03: apic 8 int 16 (irq 5) ciss0: 1 LD, HW rev 3, FW 5.20/5.20 scsibus0 at ciss0: 1 targets, initiator 1 sd0 at scsibus0 targ 0 lun 0: HP, LOGICAL VOLUME, 5.20 SCSI3 0/direct fixed sd0: 139979MB, 512 bytes/sec, 286677120 sec total ppb7 at pci0 dev 4 function 0 Intel 5000 PCIE x8 rev 0xb1 pci8 at ppb7
Re: Using snapshots - not sure with upgrade process - BFU :-)
Tomas Bodzar schrieb: Hi all, I still read FAQ and some man pages again and again (useful and very readable info),but I'm still not sure or my english is terrible :-) If I have 4.3 -release and make Upgrade with install44.iso snapshot (say from 28.8.),do I need all the changes pointed here http://www.openbsd.org/faq/current.html or only changes after 28.8. or make changes only for things I was using or all changes are in snapshot? I tried apply patches or follow -stable couple of times and everyting was ok - FAQ is clear for me.But here I'm not so sure. I'm trying this in Qemu so mistakes are not so terrible. During Upgrade there is an info to apply manually necessary changes in /etc ,but which changes?I have config only for pf(4),I have this system for learn base (utilities and so on). Could someone point me to right direction (what to read about snapshots,man page) ? It's my understanding that anything changed is contained in the snapshot, except it doesn't change your configuration during an upgrade. You can use sysmerge (see plus.html for that) nowadays with etc44.tgz to merge configuration changes.
Re: Using snapshots - not sure with upgrade process - BFU :-)
Great, sysmerge(8) is what I'm looking for.Thanks a lot! I can see this in some misc@ article,that old tool changed to sysmerge(8),but I was not using it before so I just run out this message and don't take a look at this tool. -Original Message- From: Dorian BCttner [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 03, 2008 9:06 AM To: Tomas Bodzar Cc: misc@openbsd.org Subject: Re: Using snapshots - not sure with upgrade process - BFU :-) Tomas Bodzar schrieb: Hi all, I still read FAQ and some man pages again and again (useful and very readable info),but I'm still not sure or my english is terrible :-) If I have 4.3 -release and make Upgrade with install44.iso snapshot (say from 28.8.),do I need all the changes pointed here http://www.openbsd.org/faq/current.html or only changes after 28.8. or make changes only for things I was using or all changes are in snapshot? I tried apply patches or follow -stable couple of times and everyting was ok - FAQ is clear for me.But here I'm not so sure. I'm trying this in Qemu so mistakes are not so terrible. During Upgrade there is an info to apply manually necessary changes in /etc ,but which changes?I have config only for pf(4),I have this system for learn base (utilities and so on). Could someone point me to right direction (what to read about snapshots,man page) ? It's my understanding that anything changed is contained in the snapshot, except it doesn't change your configuration during an upgrade. You can use sysmerge (see plus.html for that) nowadays with etc44.tgz to merge configuration changes.
OpenLDAP
Hi, is there any chance the next openbsd release holds an unbroken OpenLDAP? Thanks in advance.
Re: Can't start Apache... MaxCPUPerChild is invalid??
2008/9/3 Toni Mueller [EMAIL PROTECTED]: Hi, On Tue, 02.09.2008 at 22:20:26 +1000, Sunnz [EMAIL PROTECTED] wrote: [Tue Sep 2 22:14:29 2008] [notice] child pid 29398 exit signal Segmentation fault (11) ... some more clipped try to have a compiler run. SEGVs are often the sign of bad RAM. So you may want to swap at least disks and memory in your box. Ohh it is that bad? I did swap the offending disk but not the RAM... So what do you mean by have a compiler run? To compile something? What's SEGV?
vi(1) and tab-completion
For those using vi from base and using ESC as filec and cedit, or whatever, because TAB doesn't seem to work: set cedit=Control-VControl-VControl-VTab -- [EMAIL PROTECTED] SDF Public Access UNIX System - http://sdf.lonestar.org
Re: Can't start Apache... MaxCPUPerChild is invalid??
Sunnz wrote: 2008/9/3 Toni Mueller [EMAIL PROTECTED]: Hi, On Tue, 02.09.2008 at 22:20:26 +1000, Sunnz [EMAIL PROTECTED] wrote: [Tue Sep 2 22:14:29 2008] [notice] child pid 29398 exit signal Segmentation fault (11) ... some more clipped try to have a compiler run. SEGVs are often the sign of bad RAM. So you may want to swap at least disks and memory in your box. Ohh it is that bad? I did swap the offending disk but not the RAM... So what do you mean by have a compiler run? To compile something? Building the userland binaries is considered quite a decent stress test on a system, including I/O, CPU and memory. If your hardware is bad it is possible that a large build run is able to detect that (i.e. crash). What's SEGV? It's what's described at the first page of the google search you should have performed: http://www.google.com/search?q=segv /Alexander
Re: Can't start Apache... MaxCPUPerChild is invalid??
Ahh I see, so how does memtest to compare to something like building the userland? From above post it seem like should there be any problem then building the userland may crash the machine... so I'd get some backup plan going just in case something does break. So there was a SEGV in the child threads... I did notice a binary file, httpd.core, that would have been created by the httpd process, right?
Re: Can't start Apache... MaxCPUPerChild is invalid??
On Wed, Sep 3, 2008 at 2:11 PM, Sunnz [EMAIL PROTECTED] wrote: 2008/9/3 Toni Mueller [EMAIL PROTECTED]: Ohh it is that bad? I did swap the offending disk but not the RAM... So what do you mean by have a compiler run? To compile something? What's SEGV? SIGSEGV (SEGV) means segmentation violation (see signal(3)) Run memtest on that system. -- Marius
Re: Can't start Apache... MaxCPUPerChild is invalid??
Sunnz wrote: Ahh I see, so how does memtest to compare to something like building the userland? memtest is targeted specifically at extensively testing your machine's memory, where building the userland will place load on not only the memory, but also the hard drive, testing both. The fact that building the userland requires the disk to make many seeks, reads and writes makes it an even better test than just copying big files around. If you find that the build test fails, and then find that memtest succeeds, then you can deduce that the problem lies with your hard drive, whereas if memtest also fails, you are likely to have RAM issues. That doesn't address the possibility of motherboard/cpu/IDE controller issues, but its a good start. Dave W
Re: OpenLDAP
* John Nietzsche [EMAIL PROTECTED] [2008-09-03 13:22]: is there any chance the next openbsd release holds an unbroken OpenLDAP? I'd say the chance of ever having an unbroken OpenLDAP release on any OS is pretty damn low. that said, openldap works as well on openbsd as it does on other oses. the only thing that does not work in 4.4 is the bdb backend. but then, the bdb backend has almost ever been terrible, so you are better off using another one anyway. i recommend ldbm. you will have to use slapcat and slapadd to convert your database. -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: OpenLDAP
On Wed, Sep 3, 2008 at 7:15 AM, John Nietzsche [EMAIL PROTECTED] wrote: Hi, is there any chance the next openbsd release holds an unbroken OpenLDAP? Thanks in advance. And how is it broken exactly? I was able to install it just a month ago and I didn't see anything obviously wrong. -Nick p.s. passive aggression gets you nowhere here. I learned that the hard way.
Re: question on nat behaviour ....
Stefan Sczekalla escreveu: Hello Giancarlo, Argh - rtfm - I tried to search on this topic but only in the OpenBSD FAQ. Thanks for pointig me to the right direction. Kind regards, Stefan -Original Message- From: Giancarlo Razzolini [mailto:[EMAIL PROTECTED] On Behalf Of Giancarlo Razzolini Sent: Tuesday, September 02, 2008 7:24 PM To: Stefan Sczekalla Cc: misc@openbsd.org Subject: Re: question on nat behaviour Stefan Sczekalla escreveu: I'm somewhat uncertain on how NAT behaves especially on nearly concurrent rules. e.g. assumption: ( ext_if has two addresse e.g. 82.100.200.1 and and ALIAS 82.100.200.2 ) nat pass on $ext_if form $internal_networks to 192.168.47.11 - 82.100.200.1 nat pass on $ext_if form $internal_networks to any - ( $ext_if ) ( how ) Can I bee sure that 192.168.47.11 will always be conncted from 82.100.200.1 ? will PF behave differently when the oder of the rules is vice-versa ? Kind regards, Stefan Some months ago i would just say: RTFM. But I'm reviewing my concepts. Better someone who is pointed in the right direction, than someone not pointed at all, and unhappy with the system. My regards, -- Giancarlo Razzolini http://lock.razzolini.adm.br Linux User 172199 Red Hat Certified Engineer no:804006389722501 Verify:https://www.redhat.com/certification/rhce/current/ Moleque Sem Conteudo Numero #002 OpenBSD Stable Ubuntu 8.04 Hardy Heron 4386 2A6F FFD4 4D5F 5842 6EA0 7ABE BBAB 9C0E 6B85
Re: Can't start Apache... MaxCPUPerChild is invalid??
On Wednesday 03 September 2008 09:04:01 am Dave Wilson wrote: If you find that the build test fails, and then find that memtest succeeds, then you can deduce that the problem lies with your hard drive Only if memtest is infallible. I may be mistaken but I've long held the opinion that while a memtest failure almost certainly means defective memory, a memtest pass does not carry quite the same weight. Chris
Re: OpenLDAP
I am in need for performance. Is replacing bdb with ldbm a good ideia? Thanks once more. On Wed, Sep 3, 2008 at 10:28 AM, Henning Brauer [EMAIL PROTECTED] wrote: * John Nietzsche [EMAIL PROTECTED] [2008-09-03 13:22]: is there any chance the next openbsd release holds an unbroken OpenLDAP? I'd say the chance of ever having an unbroken OpenLDAP release on any OS is pretty damn low. that said, openldap works as well on openbsd as it does on other oses. the only thing that does not work in 4.4 is the bdb backend. but then, the bdb backend has almost ever been terrible, so you are better off using another one anyway. i recommend ldbm. you will have to use slapcat and slapadd to convert your database. -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: OpenLDAP
On Wed, Sep 3, 2008 at 9:28 AM, Nick Guenther [EMAIL PROTECTED] wrote: On Wed, Sep 3, 2008 at 7:15 AM, John Nietzsche [EMAIL PROTECTED] wrote: Hi, is there any chance the next openbsd release holds an unbroken OpenLDAP? Since openbsd doesn't include ldap, I would guess that any (future) ldap software that openbsd may write would be unbroken. Thanks in advance. p.s. passive aggression gets you nowhere here. I learned that the hard way. But it's so much fun to watch on the side! :) -- http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk This officer's men seem to follow him merely out of idle curiosity. -- Sandhurst officer cadet evaluation. Securing an environment of Windows platforms from abuse - external or internal - is akin to trying to install sprinklers in a fireworks factory where smoking on the job is permitted. -- Gene Spafford learn french: http://www.youtube.com/watch?v=j1G-3laJJP0feature=related
Re: Can't start Apache... MaxCPUPerChild is invalid??
On 9/3/08, Chris Smith [EMAIL PROTECTED] wrote: On Wednesday 03 September 2008 09:04:01 am Dave Wilson wrote: If you find that the build test fails, and then find that memtest succeeds, then you can deduce that the problem lies with your hard drive Only if memtest is infallible. I may be mistaken but I've long held the opinion that while a memtest failure almost certainly means defective memory, a memtest pass does not carry quite the same weight. I had a computer with bad ECC that would pass memtest. It did make little notes in the BIOS log, but memtest itself issed no complaints. Attempting to compile something though would cause all sorts of mystery errors. memtest is hardly representative of real world usage patterns.
Re: OpenLDAP
On 9/3/08, John Nietzsche [EMAIL PROTECTED] wrote: I am in need for performance. Is replacing bdb with ldbm a good ideia? Is working faster than not working?
Re: Pre-Order 4.4
Hi Do you know if the raid logic has being corrected in this new release. By corrected, I means following answer: http://marc.info/?l=openbsd-miscm=120855938821758w=2 This is currently broken (deliberately) as changes are made to the logic concerning mounting the root disk. There are some more changes that need to be made before a fix to raidframe can be committed. Ken Regards -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de Francisco Valladolid Hdez. Envoyi : mardi 2 septembre 2008 02:48 @ : Jim Razmus; misc@openbsd.org Objet : Re: Pre-Order 4.4 --- Jim Razmus [EMAIL PROTECTED] wrote: * Paul de Weerd [EMAIL PROTECTED] [080901 12:57]: On Mon, Sep 01, 2008 at 10:43:26AM -0600, Theo de Raadt wrote: | When can 4.4 be pre-ordered? | I think that misc@ will be the first in announce the news. Please be patient.! Regards | Soon. \o/ Sleepless nights watching [EMAIL PROTECTED] start now... for the coveted title First 4.4 CD Set Purchaser. Might be cool to have Theo sign it. Jim --- Therefore, if anyone is in Christ, he is a new creation; the old has gone, the new has come! - 2 Corinthians 5:17 (NIV) --- Francisco Valladolid Hdez. http://blog.bsdguy.net - http://flickr.com/photos/sigueme/
strange sound playback problem on Thinkpad X300
Hi all, 1. recent i386 snapshot, bsd.mp on Thinkpad X300 2. gnome desktop 3. opera + flash plugin Problem: No sound when playing back flash movies (youtube) via opera flashplugin. Under generic bsd no sound at all. Workaround: Pressing Ctrl+End allows sound to play. If anyone knows what knobs I must tweak to get the sound working, I'd be greateful. Dmesg + mixerctl output below. (generic bsd.mp has DRI enabled, that's the only change) Maxim # dmesg OpenBSD 4.4-current (GENERIC.MP) #860: Mon Sep 1 13:55:06 MDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Core(TM)2 Duo CPU L7100 @ 1.20GHz (GenuineIntel 686-class) 1.20 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR real mem = 3211087872 (3062MB) avail mem = 3111063552 (2966MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 06/06/08, BIOS32 rev. 0 @ 0xfdca0, SMBIOS rev. 2.4 @ 0xe0010 (67 entries) bios0: vendor LENOVO version 7TET31WW (1.05 ) date 06/06/2008 bios0: LENOVO 6477W3W acpi0 at bios0: rev 2 acpi0: tables DSDT FACP SSDT ECDT TCPA APIC MCFG HPET SLIC BOOT ASF! SSDT SSDT SSDT SSDT acpi0: wakeup devices LID_(S3) SLPB(S3) IGBE(S4) EXP0(S4) EXP1(S4) EXP2(S4) PCI1(S4) USB0(S3) USB1(S3) USB2(S3) USB3(S3) USB4(S3) EHC0(S3) EHC1(S3) HDEF(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 199MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 Duo CPU L7100 @ 1.20GHz (GenuineIntel 686-class) 1.20 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: duplicate apic id, remapped to apid 2 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (AGP_) acpiprt2 at acpi0: bus 2 (EXP0) acpiprt3 at acpi0: bus 3 (EXP1) acpiprt4 at acpi0: bus 4 (EXP2) acpiprt5 at acpi0: bus 13 (PCI1) acpiec0 at acpi0 acpicpu0 at acpi0: C3, C2 acpicpu1 at acpi0: C3, C2 acpitz0 at acpi0: critical temperature 127 degC acpitz1 at acpi0: critical temperature 100 degC acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: SLPB acpibat0 at acpi0: BAT0 model 42T4522 serial 212 type LION oem SANYO acpibat1 at acpi0: BAT1 not present acpiac0 at acpi0: AC unit online acpithinkpad0 at acpi0 acpivideo at acpi0 not configured acpivideo at acpi0 not configured bios0: ROM list: 0xc/0x1! 0xd/0x1000 0xd1000/0x1000 0xe/0x1! cpu0: unknown Enhanced SpeedStep CPU, msr 0x0619072206000722 cpu0: using only highest and lowest power states cpu0: Enhanced SpeedStep 1400 MHz (1244 mV): speeds: 1400, 1200 MHz pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel GM965 Host rev 0x0c vga1 at pci0 dev 2 function 0 Intel GM965 Video rev 0x0c wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) agp0 at vga1: aperture at 0xe000, size 0x1000 inteldrm0 at vga1 Intel i965GM(0), 1.6.0 20080312 Intel GM965 Video rev 0x0c at pci0 dev 2 function 1 not configured em0 at pci0 dev 25 function 0 Intel ICH8 IGP M AMT rev 0x03: apic 2 int 20 (irq 11), address 00:1c:25:b6:81:c8 uhci0 at pci0 dev 26 function 0 Intel 82801H USB rev 0x03: apic 2 int 20 (irq 11) uhci1 at pci0 dev 26 function 1 Intel 82801H USB rev 0x03: apic 2 int 21 (irq 11) ehci0 at pci0 dev 26 function 7 Intel 82801H USB rev 0x03: apic 2 int 22 (irq 11) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 azalia0 at pci0 dev 27 function 0 Intel 82801H HD Audio rev 0x03: apic 2 int 17 (irq 11) azalia0: codec[s]: Analog Devices/0x194a audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801H PCIE rev 0x03: apic 2 int 20 (irq 11) pci1 at ppb0 bus 2 ppb1 at pci0 dev 28 function 1 Intel 82801H PCIE rev 0x03: apic 2 int 21 (irq 11) pci2 at ppb1 bus 3 iwn0 at pci2 dev 0 function 0 Intel Wireless WiFi Link 4965AGN rev 0x61: apic 2 int 17 (irq 11), MoW2, address 00:1f:3b:ad:fb:45 ppb2 at pci0 dev 28 function 2 Intel 82801H PCIE rev 0x03: apic 2 int 22 (irq 11) pci3 at ppb2 bus 4 uhci2 at pci0 dev 29 function 0 Intel 82801H USB rev 0x03: apic 2 int 16 (irq 10) uhci3 at pci0 dev 29 function 1 Intel 82801H USB rev 0x03: apic 2 int 17 (irq 11) uhci4 at pci0 dev 29 function 2 Intel 82801H USB rev 0x03: apic 2 int 18 (irq 11) ehci1 at pci0 dev 29 function 7 Intel 82801H USB rev 0x03: apic 2 int 19 (irq 11) usb1 at ehci1: USB revision 2.0 uhub1 at usb1 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xf3 pci4 at ppb3 bus 13 pcib0 at pci0 dev 31 function 0 Intel 82801HEM LPC rev 0x03 pciide0 at pci0 dev 31 function 1 Intel 82801HBM IDE rev 0x03: DMA,
Re: High interrupt count on OpenBSD 4.3/amd64 with driver azalia
On Wed, 3 Sep 2008 10:37:28 +0200 Ariane van der Steldt [EMAIL PROTECTED] wrote: I think the interrupt load with a -current or -snapshot will be better. I can confirm your high interrupt load (my opteron has an interrupt load hovering between 70% and 80% in GENERIC.MP). Thanks for your feedback. I am running -current for five hours now, and azalia has a normal interrupt count. OpenBSD oblivion.jeuxvideo.com 4.4 GENERIC.MP#1827 amd64
Re: Pre-Order 4.4
On Wed, 3 Sep 2008 16:55:27 +0200, Christophe Rioux wrote Hi Do you know if the raid logic has being corrected in this new release... Yes. See: http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/raidframe/rf_openbsdkintf.c
Re: Pre-Order 4.4
On 9/3/08, Christophe Rioux [EMAIL PROTECTED] wrote: Do you know if the raid logic has being corrected in this new release. By corrected, I means following answer: http://marc.info/?l=openbsd-miscm=120855938821758w=2 This is currently broken (deliberately) as changes are made to the logic concerning mounting the root disk. There are some more changes that need to be made before a fix to raidframe can be committed. http://marc.info/?l=openbsd-cvsm=121150396015435w=2
Re: OpenLDAP
John Nietzsche schrieb: I am in need for performance. Is replacing bdb with ldbm a good ideia? Thanks once more. On Wed, Sep 3, 2008 at 10:28 AM, Henning Brauer [EMAIL PROTECTED] wrote: * John Nietzsche [EMAIL PROTECTED] [2008-09-03 13:22]: is there any chance the next openbsd release holds an unbroken OpenLDAP? I'd say the chance of ever having an unbroken OpenLDAP release on any OS is pretty damn low. that said, openldap works as well on openbsd as it does on other oses. the only thing that does not work in 4.4 is the bdb backend. but then, the bdb backend has almost ever been terrible, so you are better off using another one anyway. i recommend ldbm. you will have to use slapcat and slapadd to convert your database. -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam slapd.conf(5) has a section dedicated to backends - actually, regarding bdb and ldbm, the opposite is true but you may want to check the other options like sql (however, I don't know if that info is appropriate). For example, man slapd-sql. Or something like 'apropos slapd' will also yield some hints.
httpd slowdown issues
I have a development web server set up for httpd, mysql5 and php5 that has all of a sudden started randomly pausing. After some testing (removing PHP modules, httpd conf settings, etc) it seems that simply loading PHP is what is causing the issue. If I remove it from httpd then serving static HTML is fine. With PHP enabled I get issues with slow rendering of PHP content, slow CLI scripts (another sign it is just PHP itself), and when I do a 'apachectl stop' the box will hang for up to 60 seconds before responding again. I updated to the newest 4.3-stable last week to see if that would help but to no avail. I have loaded everything from Packages and there is nothing from Ports or hand compiled on the box. My 4.1-stable box has not encountered any issues such as this though it is slated to be updated to 4.3 as soon as some new hardware comes in. Any other info that is needed, just let me know. [EMAIL PROTECTED] pkg_info apr-1.2.11p1Apache Portable Runtime apr-util-1.2.10p0 companion library to APR autoconf-2.61p1 automatically configure source code on many Un*x platforms curl-7.17.1 get files from FTP, Gopher, HTTP or HTTPS servers db-4.6.21 Berkeley DB package, revision 4 femail-0.97p0 simple SMTP client gettext-0.16.1 GNU gettext jpeg-6bp3 IJG's JPEG compression utilities libiconv-1.9.2p5character set conversion library libidn-1.1 internationalized string handling libltdl-1.5.22p3GNU libtool system independent dlopen wrapper libmcrypt-2.5.7p1 interface to access block/stream encryption algorithms libxml-2.6.30 XML parsing library mhash-0.9.1p1 strong hash library mod_dav-1.0.3p5 class 1 and 2 DAV server for the Apache webserver monit-4.10.1p0 monitoring and managing daemons utility mysql-client-5.0.51a multithreaded SQL database (client) mysql-server-5.0.51a multithreaded SQL database (server) nano-2.0.7 Pico editor clone with enhancements neon-0.26.2 HTTP and WebDAV client library, with C interface p5-DBD-mysql-4.005 MySQL drivers for the Perl DBI p5-DBI-1.59 unified perl interface for database access p5-Net-Daemon-0.43 extension for portable daemons p5-PlRPC-0.2018p0 module for writing rpc servers and clients pear-1.5.0p1base classes for common PHP tasks pear-utils-1.5.0p0 utilities for managing pear extensions pecl-APC-3.0.15 Alternative PHP Cache php5-core-5.2.5p2 server-side HTML-embedded scripting language php5-curl-5.2.5 curl URL library extensions for php5 php5-extensions-5.2.5 informational package about PHP5 extensions php5-gd-5.2.5-no_x11 image manipulation extensions for php5 php5-mbstring-5.2.5 multibyte characters extensions for php5 php5-mcrypt-5.2.5 mcrypt encryption/decryption extensions for php5 php5-mysql-5.2.5mysql database access extensions for php5 php5-mysqli-5.2.5 mysql database access extensions for php5 png-1.2.22 library for manipulating PNG images python-2.5.2interpreted object-oriented programming language rsync-2.6.9 mirroring/synchronization over low bandwidth links screen-4.0.3p1 multi-screen window manager subversion-1.4.4subversion revision control system t1lib-5.1.0p1 Type 1 rasterizer library for UNIX/X11 vim-7.1.244p0-no_x11 vi clone, many additional features wget-1.10.2p1 retrieve files from the web via HTTP, HTTPS and FTP Chris
Re: Pre-Order 4.4
Just to be clear - this is/should be fixed in 4.4. Ken - Original Message From: Ted Unangst [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: misc@openbsd.org Sent: Wednesday, September 3, 2008 11:31:15 AM Subject: Re: Pre-Order 4.4 On 9/3/08, Christophe Rioux [EMAIL PROTECTED] wrote: Do you know if the raid logic has being corrected in this new release. By corrected, I means following answer: http://marc.info/?l=openbsd-miscm=120855938821758w=2 This is currently broken (deliberately) as changes are made to the logic concerning mounting the root disk. There are some more changes that need to be made before a fix to raidframe can be committed. http://marc.info/?l=openbsd-cvsm=121150396015435w=2
Re: Can't start Apache... MaxCPUPerChild is invalid??
On 3 September 2008, Ted Unangst [EMAIL PROTECTED] wrote: On 9/3/08, Chris Smith [EMAIL PROTECTED] wrote: On Wednesday 03 September 2008 09:04:01 am Dave Wilson wrote: If you find that the build test fails, and then find that memtest succeeds, then you can deduce that the problem lies with your hard drive Only if memtest is infallible. I may be mistaken but I've long held the opinion that while a memtest failure almost certainly means defective memory, a memtest pass does not carry quite the same weight. I had a computer with bad ECC that would pass memtest. It did make little notes in the BIOS log, but memtest itself issed no complaints. Attempting to compile something though would cause all sorts of mystery errors. memtest is hardly representative of real world usage patterns. Yes. FWIW, according to a friend who is a hardware designer and cuts open memory chips for a living, you simply can't test memories in software. That is, you can prove them broken, but you can't reliably prove them fine. You need some really expensive hardware for that. Also, just like disks, there is no such thing as a perfect error-free memory. So the answer to any conceivable test will be a statistic, not a definitive true / false. The difference between memtest and a hardware tester is how accurate this statistic really is... Regards, Liviu Daia -- Dr. Liviu Daia http://www.imar.ro/~daia
Re: OpenLDAP
On Wed, Sep 3, 2008 at 4:15 AM, John Nietzsche [EMAIL PROTECTED] wrote: is there any chance the next openbsd release holds an unbroken OpenLDAP? I presume you're referring to the port/packages version. The answer depends on whose definition of unbroken you prefer. The last word I heard from the OpenLDAP maintainers was that the ldbm backend was considered unsuitable for (their definition of) production use. Indeed, it's not supported in OpenLDAP 2.4. It's not robust if slapd or the machine crash at an inopportune time during a database change and has performance issues during writes: there's just one big reader/writer lock for the database, so any write blocks all readers. As a result, using it in a deployment where writes frequently occur seems unwise. The OpenLDAP people will certainly give you little sympathy if/when a problem occurs there. For a read-only, or write-rarely situation, it would seem to be okay, in which case the port/package should serve you. If you're building a write-often setup, then you would seem to need the bdb or hdb backend. For that, the current port/package will not serve you. I'm not a ports maintainer, but upgrading the port from OpenLDAP 2.3.x to 2.4.x in time for 4.4 seems extremely unlikely. For all I know, the deadline for such a change may have passed months ago. So, if you need the bdb backend, you would need to build OpenLDAP 2.4.x yourself. In my experience, of compiling OpenLDAP, it basically works, but keep your eyes open: support for what you build will need to be more dependent on yourself and the openldap mailing lists and less on the openbsd lists (and not at all on the ports list, of course, though they would probably be interested in your experiences). OpenLDAP has a test suite: run it and pay attention to the results. Subscribe to the OpenLDAP lists and pay attention to discussions of issues that may affect your setup. Someone else mentioned the sql backend. The OpenLDAP people apparently consider it only appropriate for gatewaying from existing SQL databases where the SQL interface is the primary use, and not as a primary backend for storing your main LDAP data, as SQL is a poor match for storing LDAP data. You should consult the OpenLDAP lists for further details if seriously considering that route. Note that this situation, where the packages that are provided by or associated with the OS have a limited applicability, is not limited to OpenBSD. The OpenLDAP people have few good words to say about the RedHat openldap server package; they often recommend that people experiencing problems with them to ditch that rpm and install the rpm created by one of the OpenLDAP maintainers. Philip Guenther
spamd: smtp clients from the outside
Dear List, i'd like to use spamd to create a gerylisting layer, but i have a few smtp clients on the internet with dynamic IPs. Is there a better way to let them through besides 2 sending attempts or authpf? Thanks!
Re: Can't start Apache... MaxCPUPerChild is invalid??
2008/9/3 Ted Unangst [EMAIL PROTECTED]: I had a computer with bad ECC that would pass memtest. Was that with an 24h+ burn-in test? Personally, I've so far never encountered faulty RAM that a 24h memtest burn-in test didn't pick up. I have however seen faulty RAM that memtest said was fine for the first few passes before eventually indicating errors. Of course that's just my personal experience and YMMV. regards, --ropers PS: Relevancy link: http://en.wikipedia.org/wiki/Memtest86%2B
Re: httpd slowdown issues
On Wed, Sep 3, 2008 at 1:05 PM, Ben Calvert [EMAIL PROTECTED] wrote: [SNIP] Don't waste everyone's time with a hopelessly incomplete question. No one other than you has the information needed to resolve your problem, it is better to provide more information than needed than one detail too little. Any question should include at least the version of OpenBSD (i.e., 3.2-stable, 3.3-current as of July 20, 2003). Any hardware related 4.3-stable, like I had said in my original. OpenBSD 4.3-stable (GENERIC) to be exact. questions should mention the platform (i.e., sparc, alpha, etc.), and provide a fulldmesg(8). Hardware model numbers, unfortunately, don't indicate much about the actual content of a particular machine or accessory, and are useless to anyone who doesn't have that exact machine sitting where they can easily recognize it. The dmesg(8) tells us exactly what is IN your machine, not what stickers are on the outside. Since this was localized to a software issue I appended what installed software was on the machine. The httpd.conf is stock except for uncommenting mod_rewrite and an include directive to pull in conf files for each VHost. php.ini is untouched. If a dmesg would help, here it is: OpenBSD 4.3-stable (GENERIC) #1: Thu Aug 28 08:33:01 EDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Xeon(TM) CPU 3.40GHz (GenuineIntel 686-class) 3.40 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,SSE3,DS-CPL real mem = 536375296 (511MB) avail mem = 510599168 (486MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/06/07, BIOS32 rev. 0 @ 0xfd880, SMBIOS rev. 2.31 @ 0xe0010 (45 entries) bios0: vendor Phoenix Technologies LTD version 6.00 date 09/06/2007 bios0: VMware, Inc. VMware Virtual Platform apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown acpi at bios0 function 0x0 not configured pcibios0 at bios0: rev 2.1 @ 0xfd880/0x780 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf30/176 (9 entries) pcibios0: PCI Interrupt Router at 000:07:0 (Intel 82371FB ISA rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0x8000 0xc8000/0x1e00! 0xca000/0x1000 0xdc000/0x4000! 0xe/0x4000! cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x01 ppb0 at pci0 dev 1 function 0 Intel 82443BX AGP rev 0x01 pci1 at ppb0 bus 1 piixpcib0 at pci0 dev 7 function 0 Intel 82371AB PIIX4 ISA rev 0x08 pciide0 at pci0 dev 7 function 1 Intel 82371AB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: NECVMWar, VMware IDE CDR00, 1.00 SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) piixpm0 at pci0 dev 7 function 3 Intel 82371AB Power rev 0x08: SMBus disabled vga1 at pci0 dev 15 function 0 VMware Virtual SVGA II rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) mpi0 at pci0 dev 16 function 0 Symbios Logic 53c1030 rev 0x01: irq 9 scsibus1 at mpi0: 16 targets sd0 at scsibus1 targ 0 lun 0: VMware, Virtual disk, 1.0 SCSI2 0/direct fixed sd0: 20480MB, 2610 cyl, 255 head, 63 sec, 512 bytes/sec, 41943040 sec total mpi0: target 0 Sync at 160MHz width 16bit offset 127 QAS 1 DT 1 IU 1 vic0 at pci0 dev 17 function 0 AMD 79c970 PCnet-PCI rev 0x10: irq 11, address 00:0c:29:a1:82:64 isa0 at piixpcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pmsi0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pmsi0 mux 0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec biomask e765 netmask ef65 ttymask ffe7 mtrr: Pentium Pro MTRR support softraid0 at root root on sd0a swap on sd0b dump on sd0b syncing disks... done rebooting... OpenBSD 4.3-stable (GENERIC) #1: Thu Aug 28 08:33:01 EDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Xeon(TM) CPU 3.40GHz (GenuineIntel 686-class) 3.40 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,SSE3,DS-CPL real mem = 536375296 (511MB) avail mem = 510599168 (486MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/06/07, BIOS32 rev. 0 @ 0xfd880, SMBIOS rev. 2.31 @ 0xe0010 (45 entries) bios0: vendor Phoenix Technologies LTD version 6.00 date 09/06/2007
Re: spamd: smtp clients from the outside
Gabri Mati wrote: Dear List, i'd like to use spamd to create a gerylisting layer, but i have a few smtp clients on the internet with dynamic IPs. Is there a better way to let them through besides 2 sending attempts or authpf? Tell them to use MSA instead of SMTP? Many ISPs block port 25 anyway.
Re: spamd: smtp clients from the outside
GC!bri MC!tC) [EMAIL PROTECTED] writes: i'd like to use spamd to create a gerylisting layer, but i have a few smtp clients on the internet with dynamic IPs. Is there a better way to let them through besides 2 sending attempts or authpf? With a 'random enough' IP address selection whitelisting reliably will be tough. One way to make the initial delay after IP address as short as possible is to decrease the passtime value to one or two minutes, ie one of my spamds has spamd_flags=-v -G 2:8:864 -w 1 most reports say low passtime doesn't noticeably hurt your greylisting efficiency. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ Remember to set the evil bit on all malicious network traffic delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: spamd: smtp clients from the outside
Steve Shockley schrieb: Gabri Mati wrote: Dear List, i'd like to use spamd to create a gerylisting layer, but i have a few smtp clients on the internet with dynamic IPs. Is there a better way to let them through besides 2 sending attempts or authpf? Tell them to use MSA instead of SMTP? Many ISPs block port 25 anyway. Sounds like UUCP ( w/ ssh ) is back in the ring... ^^ cya, telsh -- Es ist sinnlos zu sagen: Wir tun unser Bestes. Es mu_ dir gelingen, das zu tun, was erforderlich ist. -- Winston Churchill
Re: Can't start Apache... MaxCPUPerChild is invalid??
On 9/3/08, ropers [EMAIL PROTECTED] wrote: 2008/9/3 Ted Unangst [EMAIL PROTECTED]: I had a computer with bad ECC that would pass memtest. Was that with an 24h+ burn-in test? Personally, I've so far never encountered faulty RAM that a 24h memtest burn-in test didn't pick up. I have however seen faulty RAM that memtest said was fine for the first few passes before eventually indicating errors. No, I don't have the patience to run a test that long when I already know what the problem is. :) It's been a while, but I probably didn't leave it running for more than 30 minutes.
Re: firefox3 weird rendering
I can confirm this on -current with both intel and radeon with and without drm enabled. -- Everything is simple, we're stupid. gopher://sdf.lonestar.org/1/users/bulibuta
Info about DRI support and setup
Hi all, will be there some info about DRI in FAQ,current.html or plus.html ? I can't find useful tips on Google,OpenBSD,Undeadly and so on :-/ Just old informations and even in man pages xorg.conf,ati,radeon,... is nothing about it. Thx
Re: Can't start Apache... MaxCPUPerChild is invalid??
On Wed, 03.09.2008 at 15:43:05 -0400, Ted Unangst [EMAIL PROTECTED] wrote: No, I don't have the patience to run a test that long when I already know what the problem is. :) It's been a while, but I probably didn't leave it running for more than 30 minutes. It does say run at least 24 hours in one go if you want to be sure in the manual, though. ;) But of course, if you have problems, suspect the memory, and maybe even have other chips to swap in, I'd also not wait that long to get confirmation. Kind regards, --Toni++
Re: firefox3 weird rendering
I can confirm this with Nvidia Quadro also. On Wed, Sep 3, 2008 at 15:16, Paul Irofti [EMAIL PROTECTED] wrote: I can confirm this on -current with both intel and radeon with and without drm enabled. -- Everything is simple, we're stupid. gopher://sdf.lonestar.org/1/users/bulibuta
Re: altq on inbound traffic
Hi, although being unable to implement this, I think that it would be nice to have. But I don't agree with all ideas you presented. On Wed, 05.09.2007 at 00:01:09 -0600, Anthony Roberts [EMAIL PROTECTED] wrote: I've been tuning some networks for VoIP recently, and to get really good results I've found it's been necessary to do altq in both directions. This should imho be possible to look at what kind of traffic goes out of one interface, then write appropriate altq rules. For a router, which seems to be what you're talking about, (almost) all traffic that enters the router on one side, leaves it on some other side. That way, each packet needs to traverse one interface in the outgoing direction. -Hosts cannot be prevented from sending me packets, so the potential exists for inbound bandwidth to be exausted no matter what I do. Right, but for TCP at least, you could, in theory, employ window scaling, delaying ACKs, and ECN to make the other side send their packets at a slower rate. This should work unless the other side is broken, or simply a rogue site. I don't know how much overhead such a mechanism will introduce, though. Kind regards, --Toni++
Re: firefox3 weird rendering
On 9/3/08, Paul Irofti [EMAIL PROTECTED] wrote: I can confirm this on -current with both intel and radeon with and without drm enabled. And I can confirm the power is on. What are you talking about?
Re: httpd slowdown issues
Quoting Chris Tankersley [EMAIL PROTECTED]: I have a development web server set up for httpd, mysql5 and php5 that has all of a sudden started randomly pausing. After some testing (removing PHP modules, httpd conf settings, etc) it seems that simply loading PHP is what is causing the issue. If I remove it from httpd then serving static HTML is fine. With PHP enabled I get issues with slow rendering of PHP content, slow CLI scripts (another sign it is just PHP itself), and when I do a 'apachectl stop' the box will hang for up to 60 seconds before responding again. I updated to the newest 4.3-stable last week to see if that would help but to no avail. I have loaded everything from Packages and there is nothing from Ports or hand compiled on the box. My 4.1-stable box has not encountered any issues such as this though it is slated to be updated to 4.3 as soon as some new hardware comes in. Any other info that is needed, just let me know. Hi, Chris. Does *any* PHP script - even just ?php phpinfo(); ? show the problem? I think you are saying so above, but just to confirm. Trying to narrow it down to the smallest problem script. [EMAIL PROTECTED] pkg_info apr-1.2.11p1 Apache Portable Runtime apr-util-1.2.10p0 companion library to APR autoconf-2.61p1 automatically configure source code on many Un*x platforms curl-7.17.1 get files from FTP, Gopher, HTTP or HTTPS servers db-4.6.21 Berkeley DB package, revision 4 femail-0.97p0 simple SMTP client gettext-0.16.1 GNU gettext jpeg-6bp3 IJG's JPEG compression utilities libiconv-1.9.2p5 character set conversion library libidn-1.1 internationalized string handling libltdl-1.5.22p3 GNU libtool system independent dlopen wrapper libmcrypt-2.5.7p1 interface to access block/stream encryption algorithms libxml-2.6.30 XML parsing library mhash-0.9.1p1 strong hash library mod_dav-1.0.3p5 class 1 and 2 DAV server for the Apache webserver monit-4.10.1p0 monitoring and managing daemons utility mysql-client-5.0.51a multithreaded SQL database (client) mysql-server-5.0.51a multithreaded SQL database (server) nano-2.0.7 Pico editor clone with enhancements neon-0.26.2 HTTP and WebDAV client library, with C interface p5-DBD-mysql-4.005 MySQL drivers for the Perl DBI p5-DBI-1.59 unified perl interface for database access p5-Net-Daemon-0.43 extension for portable daemons p5-PlRPC-0.2018p0 module for writing rpc servers and clients pear-1.5.0p1 base classes for common PHP tasks pear-utils-1.5.0p0 utilities for managing pear extensions pecl-APC-3.0.15 Alternative PHP Cache php5-core-5.2.5p2 server-side HTML-embedded scripting language php5-curl-5.2.5 curl URL library extensions for php5 php5-extensions-5.2.5 informational package about PHP5 extensions php5-gd-5.2.5-no_x11 image manipulation extensions for php5 php5-mbstring-5.2.5 multibyte characters extensions for php5 php5-mcrypt-5.2.5 mcrypt encryption/decryption extensions for php5 php5-mysql-5.2.5 mysql database access extensions for php5 php5-mysqli-5.2.5 mysql database access extensions for php5 png-1.2.22 library for manipulating PNG images python-2.5.2 interpreted object-oriented programming language rsync-2.6.9 mirroring/synchronization over low bandwidth links screen-4.0.3p1 multi-screen window manager subversion-1.4.4 subversion revision control system t1lib-5.1.0p1 Type 1 rasterizer library for UNIX/X11 vim-7.1.244p0-no_x11 vi clone, many additional features wget-1.10.2p1 retrieve files from the web via HTTP, HTTPS and FTP Chris
Re: apache proxy balancer for 1.3?
At 03:11 PM 9/3/2008 -0700, Aaron Glenn wrote: On Tue, Sep 2, 2008 at 3:50 PM, L. V. Lammert [EMAIL PROTECTED] wrote: Has anyone seen something like the 2.1 proxy_balancer we could use with 1.3? Lee skimming the proxy_balancer description, I would have to say relayd should fit the bill...? Interesting, .. looks like it might also handle the SSL connection - thanks!! Lee
Re: apache proxy balancer for 1.3?
On Tue, Sep 2, 2008 at 3:50 PM, L. V. Lammert [EMAIL PROTECTED] wrote: Has anyone seen something like the 2.1 proxy_balancer we could use with 1.3? Lee skimming the proxy_balancer description, I would have to say relayd should fit the bill...?
Re: Altq number of queues
You need to modify just one line on: /usr/src/sys/altq/altq_cbq.h Around line 104 #define CBQ_MAX_CLASSES 512 And/Or /usr/src/sys/altq/altq_hfsc.h Aound line 53 #define HFSC_MAX_CLASSES256 and compile the kernel with the directions: http://cvs.openbsd.org/faq/faq5.html#Options That is everything I have done. Fabio Almeida
Successful Remote Install of OpenBSD to ServerBeach Box using yaifo
We're in the process of moving our small farm of servers from a managed provider to unmanaged-provider ServerBeach.com. The difference in price between the two in terms of monthly costs was huge! My biggest concern was whether I would be able to remotely build an OpenBSD load-balancing firewall given they don't have remote-hands technology or support connecting com0 to one of the other servers we ordered. Fortunately, ServerBeach offer their RapidRescue technology for remote install of unsupported OSs. RapidRescue is essentially a Linux, ram-disk based environment similar to what's found in stock bsd.rd, except with sshd enabled.[1] To remote install OpenBSD I knew we would have to use a custom bsd.rd that included sshd enabled by default. A quick search on http://marc.info/?l=openbsd-miscr=1w=2 returned yaifo (I'd forgotten the name of the utility) and I was on my way. I pulled down the latest source from http://sourceforge.net/projects/yaifo/ and reviewed the README. Everything looked pretty simple until I read about configuring the interfaces in the config file. The new servers have two interfaces. One with a public IP and the other connected to a private net. I knew I would have to get my config right to connect to the server.[2] Reviewing ifconfig on the server and dmesg showed me the server had a two built-in em(4) interfaces, eth0 having the public IP. I edited the config file assuming em0 under an OpenBSD kernel would also be the public NIC. I copied the information I found in the default CentOS 5 install to yaifo config. Taking a step back, I first followed the README's advice to test a build of yaifo on a local box just to make sure I knew what I was doing. Good advice that. My first go at configuring an interface failed. Once I proved to myself I could build yaifo.rd and log in remotely (in a vm) and could specify the IP (no dhcp in my production environment), it was time to build an image for the soon-to-be production server. I rebooted the server into RapidRescue and scp'd yaifo.fs up to the new box. A quick `dd if=yaifo.js of=/dev/sda` and the disk was ready. Moment of truth time. I typed reboot. About 30 seconds later I was able to connect to the box and was greeted with an OpenSSH login screen. Since I had added my authorized_keys to the yaifo image and had ssh-agent running, in moments I was logged in an presented with the familiar bsd.rd (I)nstall, (U)pgrade or (S)hell? prompt. I followed the normal install steps, noting that since I had entered hard-coded values for the interface config yaifo took care of that part of the install for me. I added bsd.mp to the default setup and let the installer go. 15 minutes later I finished the config and was pleased to see that yaifo gave me the opportunity to move my ssh keys to the new server. When done, the yaifo-based install helpfully reminded me to type `reboot` rather than `halt -p`. Another 30 seconds later and my spiffy new OpenBSD server was up and running. All told I probably spent 2 hours reading the instructions and prepping a vm to test with and another hour or so building and testing yaifo before I was ready. Of course the actual server install followed the normal OpenBSD quick process. With the ease of installation and my concerns about remote install put to rest, I'm ready to start looking at moving the rest of our remote servers to OpenBSD. I would be glad to be move from RedHat/CentOS to OpenBSD across the board. Thanks to all the OpenBSD developers for making installations quick and easy and special thanks to merdely@ for taking yaifo under his wing and keeping it up-to-date and easy to use. --Aaron [1] http://www.serverbeach.com/products/rapid_rescue.php [2] If I wanted to connect the first time. RapidRescue makes it easy to load image after image on the disks so there was no risk of borking the server.
Re: httpd slowdown issues
On Wed, Sep 3, 2008 at 6:08 PM, [EMAIL PROTECTED] wrote: Quoting Chris Tankersley [EMAIL PROTECTED]: I have a development web server set up for httpd, mysql5 and php5 that has all of a sudden started randomly pausing. After some testing (removing PHP modules, httpd conf settings, etc) it seems that simply loading PHP is what is causing the issue. If I remove it from httpd then serving static HTML is fine. With PHP enabled I get issues with slow rendering of PHP content, slow CLI scripts (another sign it is just PHP itself), and when I do a 'apachectl stop' the box will hang for up to 60 seconds before responding again. I updated to the newest 4.3-stable last week to see if that would help but to no avail. I have loaded everything from Packages and there is nothing from Ports or hand compiled on the box. My 4.1-stable box has not encountered any issues such as this though it is slated to be updated to 4.3 as soon as some new hardware comes in. Any other info that is needed, just let me know. Hi, Chris. Does *any* PHP script - even just ?php phpinfo(); ? show the problem? I think you are saying so above, but just to confirm. Trying to narrow it down to the smallest problem script. Yes, even going down to something as little as ?php echo 'Hello World'; ? has a 5-10 second response time. [EMAIL PROTECTED] pkg_info apr-1.2.11p1 Apache Portable Runtime apr-util-1.2.10p0 companion library to APR autoconf-2.61p1 automatically configure source code on many Un*x platforms curl-7.17.1 get files from FTP, Gopher, HTTP or HTTPS servers db-4.6.21 Berkeley DB package, revision 4 femail-0.97p0 simple SMTP client gettext-0.16.1 GNU gettext jpeg-6bp3 IJG's JPEG compression utilities libiconv-1.9.2p5 character set conversion library libidn-1.1 internationalized string handling libltdl-1.5.22p3 GNU libtool system independent dlopen wrapper libmcrypt-2.5.7p1 interface to access block/stream encryption algorithms libxml-2.6.30 XML parsing library mhash-0.9.1p1 strong hash library mod_dav-1.0.3p5 class 1 and 2 DAV server for the Apache webserver monit-4.10.1p0 monitoring and managing daemons utility mysql-client-5.0.51a multithreaded SQL database (client) mysql-server-5.0.51a multithreaded SQL database (server) nano-2.0.7 Pico editor clone with enhancements neon-0.26.2 HTTP and WebDAV client library, with C interface p5-DBD-mysql-4.005 MySQL drivers for the Perl DBI p5-DBI-1.59 unified perl interface for database access p5-Net-Daemon-0.43 extension for portable daemons p5-PlRPC-0.2018p0 module for writing rpc servers and clients pear-1.5.0p1 base classes for common PHP tasks pear-utils-1.5.0p0 utilities for managing pear extensions pecl-APC-3.0.15 Alternative PHP Cache php5-core-5.2.5p2 server-side HTML-embedded scripting language php5-curl-5.2.5 curl URL library extensions for php5 php5-extensions-5.2.5 informational package about PHP5 extensions php5-gd-5.2.5-no_x11 image manipulation extensions for php5 php5-mbstring-5.2.5 multibyte characters extensions for php5 php5-mcrypt-5.2.5 mcrypt encryption/decryption extensions for php5 php5-mysql-5.2.5 mysql database access extensions for php5 php5-mysqli-5.2.5 mysql database access extensions for php5 png-1.2.22 library for manipulating PNG images python-2.5.2 interpreted object-oriented programming language rsync-2.6.9 mirroring/synchronization over low bandwidth links screen-4.0.3p1 multi-screen window manager subversion-1.4.4 subversion revision control system t1lib-5.1.0p1 Type 1 rasterizer library for UNIX/X11 vim-7.1.244p0-no_x11 vi clone, many additional features wget-1.10.2p1 retrieve files from the web via HTTP, HTTPS and FTP Chris Chris
Re: altq on inbound traffic
On 2008-09-03, Toni Mueller [EMAIL PROTECTED] wrote: On Wed, 05.09.2007 at 00:01:09 -0600, Anthony Roberts [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] :-) I've been tuning some networks for VoIP recently, and to get really good results I've found it's been necessary to do altq in both directions. This should imho be possible to look at what kind of traffic goes out of one interface, then write appropriate altq rules. For a router, which seems to be what you're talking about, (almost) all traffic that enters the router on one side, leaves it on some other side. That way, each packet needs to traverse one interface in the outgoing direction. for simple cases yes, but you missed quoting this bit: For example, if there is more than one internal network, one can't create a single altq instance that covers them all. You can divide bandwidth between them, but you can't borrow between the different queues in this case. -Hosts cannot be prevented from sending me packets, so the potential exists for inbound bandwidth to be exausted no matter what I do. Right, but for TCP at least, you could, in theory, employ window scaling, delaying ACKs, and ECN to make the other side send their packets at a slower rate. This should work unless the other side is broken, or simply a rogue site. I don't know how much overhead such a mechanism will introduce, though. Queuing on outbound means the destination sees the packet later, so ACKs _are_ delayed, which is the reason this does actually slow down the sending rate (for TCP, anyway).
Re: httpd slowdown issues
On 2008-09-03, Chris Tankersley [EMAIL PROTECTED] wrote: Yes, even going down to something as little as ?php echo 'Hello World'; ? has a 5-10 second response time. as a starting point, I'd run that as a CLI script under ktrace and see if kdump output gives clues.
Re: httpd slowdown issues
Quoting Chris Tankersley [EMAIL PROTECTED]: [cut] I have a development web server set up for httpd, mysql5 and php5 that has all of a sudden started randomly pausing. After some testing (removing PHP modules, httpd conf settings, etc) it seems that simply loading PHP is what is causing the issue. [cut] Yes, even going down to something as little as ?php echo 'Hello World'; ? has a 5-10 second response time. [cut] So ... 1. anything in the httpd error log (/var/www/logs/error_log?) 2. if you run the test script above from the command line, same problem (that is, is it a problem with PHP, or PHP within Apache?) 3. does php -i on the command line show anything useful or the same slowdown? 4. seems strange that it was all working until recently - *anything* changed recently on the box, however unrelated it might seem? Any network changes (DNS?), patches applied? Disk space OK? Anything unhappy in the logs? I'm running on a similar-ish set-up and have no slow-down issues: # pkg_info gettext-0.16.1 GNU gettext libiconv-1.9.2p5character set conversion library libxml-2.6.30 XML parsing library mysql-client-5.0.51a multithreaded SQL database (client) mysql-server-5.0.51a multithreaded SQL database (server) p5-DBD-mysql-4.005 MySQL drivers for the Perl DBI p5-DBI-1.59 unified perl interface for database access p5-Net-Daemon-0.43 extension for portable daemons p5-PlRPC-0.2018p0 module for writing rpc servers and clients php5-core-5.2.5p2 server-side HTML-embedded scripting language php5-mysql-5.2.5mysql database access extensions for php5 popt-1.7p0 getopt(3)-like library with a number of enhancements samba-3.0.28SMB and CIFS client and server for UNIX unzip-5.52 extract, list test files in a ZIP archive vim-7.1.244p0-no_x11 vi clone, many additional features # uname -a OpenBSD blah.blah.blah 4.3 GENERIC#698 i386
Re: httpd slowdown issues
Starting on line 2198 I start getting these kinds of output: 23747 php CALL fcntl(0x5,0x3,0) 23747 php RET fcntl -1 errno 9 Bad file descriptor 23747 php CALL fcntl(0x6,0x3,0) 23747 php RET fcntl -1 errno 9 Bad file descriptor 23747 php CALL fcntl(0x7,0x3,0) and this continues for 245 lines. This is before the conf file is loaded (that happens about 1000 lines later). My script is read in on line 11121 and then actually wrote out on line 11305 before it exits with line 12414. This script took 12 seconds to run before I ran it through ktrace. Other than the above errors I didn't see anything explicitly with errors though this is the first time I've looked at a trace. On Wed, Sep 3, 2008 at 6:55 PM, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008-09-03, Chris Tankersley [EMAIL PROTECTED] wrote: Yes, even going down to something as little as ?php echo 'Hello World'; ? has a 5-10 second response time. as a starting point, I'd run that as a CLI script under ktrace and see if kdump output gives clues.
Re: httpd slowdown issues
On 2008/09/03 19:35, Chris Tankersley wrote: Starting on line 2198 I start getting these kinds of output: 23747 php CALL fcntl(0x5,0x3,0) 23747 php RET fcntl -1 errno 9 Bad file descriptor 23747 php CALL fcntl(0x6,0x3,0) 23747 php RET fcntl -1 errno 9 Bad file descriptor 23747 php CALL fcntl(0x7,0x3,0) and this continues for 245 lines. This is before the conf file is loaded (that happens about 1000 lines later). My script is read in on line 11121 and then actually wrote out on line 11305 before it exits with line 12414. This script took 12 seconds to run before I ran it through ktrace. Other than the above errors I didn't see anything explicitly with errors though this is the first time I've looked at a trace. Display timestamps with the relevant option to kdump, and try and work out what's happening where you see the delays.
OT: Disappointment: New browser - *sigh*
So, by now everyone should have heard about the new browser. I just test drove it a little, and it works great on the sites I go to normally. So, why am I disappointed? For a group of people, who took the time to draw a bunch of cartoons to explain that they view security as something very very important, to fumble so badly, is really... sad. No, I'm not talking about the eula, or the old webkit that has a security problem. I'm talking about: about:plugins ActiveX Plug-in File name: activex-shimActiveX Plug-in provides a shim to support ActiveX controls*sigh* Good intentions and all that, I guess. -- http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk This officer's men seem to follow him merely out of idle curiosity. -- Sandhurst officer cadet evaluation. Securing an environment of Windows platforms from abuse - external or internal - is akin to trying to install sprinklers in a fireworks factory where smoking on the job is permitted. -- Gene Spafford learn french: http://www.youtube.com/watch?v=j1G-3laJJP0feature=related
Re: macbook / azalia(4) / amd64 / -current / nosound?
On Wed, Sep 03, 2008 at 10:32:42AM +0200, Tim Saueressig, thepixelz.com wrote: jared r r spiegel schrieb: i cannot get sound output to happen on this thing; i see indication that others with macbooks (pro and regular) have had sound since sometime in 4.2-current land. azalia(4) says 'Known supported devices are Intel 82801FB/GB/HB/IB', and per my dmesg i have an '82801H', so maybe this is the problem? dmesg doesn't say 'not supported' or similar tho. it is somewhat working for me with headphones in mic input. so i tried that today and i am actually able to hear audio out of it. from spending some time on it, it really really appears that what mixerctl calls 'line3' corresponds to the reality of a headphones being plugged into the line-input jack. i have spent some more time trying to map out the permutations of the azalia 'widgets'; have done some looking thru the intel pdf; have recompiled with AZALIA_DEBUG; have even tried to arrow/box everything out with dia(1). but unfortunately i cannot make sound happen in any way other than the default of it appearing to come out of the 'line3' widget which corresponds afaict to headphones in the line-in jack. i guess my midiplay test is bunk because actually i have no midi(4) attached to azalia in any way i can find; and also the cat/aucat is also bunk because the codec itself supports sample rates only down to (*cough cough cough*) 44100 (that's bullshit; thanks realtek or apple or whoever). it would still be nice to know if the reason i can't get sound in any case other than headphones in the linein jack is because i suck at mixerctl, or because of something a bit more extenuating than that. here's the azalia stuff from dmesg after AZALIA_DEBUG -- the device names as enumerated seem to usually correspond to mixerctl variables, but don't quite always correspond super well (which of course may be the nature of the beast and not the fault of the driver or mixerctl); so i am only guessing at what corresponds to 'line3' or also trying to figure out what line in jack without headphones plugged in, regular internal speaker, output jack with headphones plugged on and output jack without headphones plugged in would likely be called: azalia0 at pci0 dev 27 function 0 Intel 82801H HD Audio rev 0x03: apic 1 int 20 (irq 10) azalia0: host: High Definition Audio rev. 1.0 azalia0: host: 4 output, 4 input, and 0 bidi streams azalia_attach: resetting azalia_attach: reset counter = 4999 azalia_attach: reset counter = 4985 azalia0: found a codec at #0 azalia_init_corb: CORB allocation succeeded. azalia_init_corb: CORBWP=0; size=256 azalia_init_rirb: RIRB allocation succeeded. azalia_init_rirb: RIRBRP=0, size=256 azalia0: codec[0] vid 0x10ec0885, subid 0x00a1106b, rev. 1.3, HDA version 1.0 azalia_codec_init: nidstart=1 #functions=1 azalia_codec_init: FTYPE result = 0x0101 azalia_codec_init: There are 37 widgets in the audio function. encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz inamp: mute=0 size=0 steps=0 offset=0 outamp: mute=0 size=0 steps=0 offset=0 gpio: wake=0 unsol=1 gpis=0 gpos=0 gpios=2 azalia0: dac02 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac03 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac04 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac05 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac06 wcap=211DIGITAL,FORMATOV,STEREO encodings=1PCM PCM formats=1e05e032bit,24bit,20bit,16bit,192kHz,96kHz,88.2kHz,48kHz,44.1kHz azalia0: adc07 wcap=10011bCONNLIST,FORMATOV,AMPOV,INAMP,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz inamp: mute=1 size=3 steps=46 offset=16 connections=0x24; selected=0x24 azalia0: adc08 wcap=10011bCONNLIST,FORMATOV,AMPOV,INAMP,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz inamp: mute=1 size=3 steps=46 offset=16 connections=0x23; selected=0x23 azalia0: adc09 wcap=10011bCONNLIST,FORMATOV,AMPOV,INAMP,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz inamp: mute=1 size=3 steps=46 offset=16 connections=0x22; selected=0x22 azalia0: adc0a wcap=100391DIGITAL,CONNLIST,UNSOL,FORMATOV,STEREO encodings=1PCM PCM formats=1e056032bit,24bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz connections=0x1f; selected=0x1f azalia0: mix0b wcap=20010bCONNLIST,AMPOV,INAMP,STEREO inamp: mute=1 size=5 steps=31 offset=23
Re: 2200 MHz on a 2.00GHz
Both the T7250 and T5670 appear on Wikipedia's list (take with grains of salt). http://en.wikipedia.org/wiki/List_of_Intel_Core_2_Duo_microprocessors#.22Merom-2M.22_.28standard-voltage.2C_65_nm.29
relayd different ports
Trying to configure relayd to proxy for three local mongrel instances, ..
something like:
table project_hosts { 127.0.0.1:8000, 127.0.0.1:8001, 127.0.0.1:8002 }
However, both the examples I have found:
forward to web_hosts port $web_port
and the docs:
forward to phphosts port 8080
seem to indicate that relay must use the same port for each forwarded
hosts. Is this correct, or have I missed something? What would be the
proper way to indicate separate ports for each individual host in the
table?
TIA,
Lee
Re: 2200 MHz on a 2.00GHz
I heard some of these processors can selectively turn off one core and increase the speed of the other core, above the rated speed of the processor. Could that be what is going on here? I forget what CPUs have this feature and I can't find a reference right now.
Re: httpd slowdown issues
Chris Tankersley wrote: Starting on line 2198 I start getting these kinds of output: 23747 php CALL fcntl(0x5,0x3,0) 23747 php RET fcntl -1 errno 9 Bad file descriptor 23747 php CALL fcntl(0x6,0x3,0) 23747 php RET fcntl -1 errno 9 Bad file descriptor 23747 php CALL fcntl(0x7,0x3,0) http://dev.mysql.com/doc/refman/5.0/en/not-enough-file-handles.html
Spamd - whitelisting round robin mail servers?
So I just set up a nice spamd for a client, and then watched Google's Postini try to resend a single email message from just about every IP they own. There are some whitelists for commercial servers available, mainly one at http://projects.puremagic.com/greylisting/, but from what I can see they are all out of date, and the link to the cvs list is broken. Anyone know of any uptodate compilations? -- Jeff Simmons [EMAIL PROTECTED] Simmons Consulting - Network Engineering, Administration, Security You guys, I don't hear any noise. Are you sure you're doing it right? -- My Life With The Thrill Kill Kult
Re: Spamd - whitelisting round robin mail servers?
Jeff Simmons writes: all out of date, and the link to the cvs list is broken. Anyone know of any uptodate compilations? $ host -ttxt google.com google.com descriptive text v=spf1 include:_netblocks.google.com ~all $ host -ttxt _netblocks.google.com _netblocks.google.com descriptive text v=spf1 ip4:216.239.32.0/19 ip4:64.233.160.0/19 ip4:66.249.80.0/20 ip4:72.14.192.0/18 ip4:209.85.128.0/17 ip4:66.102.0.0/20 ip4:74.125.0.0/16 ip4:64.18.0.0/20 ip4:207.126.144.0/20 ?all That should cover google, no? // marc
Re: Spamd - whitelisting round robin mail servers?
Jeff Simmons wrote: So I just set up a nice spamd for a client, and then watched Google's Postini try to resend a single email message from just about every IP they own. For google, why not get it from the source itself? Example: # dig txt _spf.google.com | grep spf ; DiG 9.3.4 txt _spf.google.com ;_spf.google.com. IN TXT _spf.google.com.187 IN TXT v=spf1 ip4:216.239.32.0/19 ip4:64.233.160.0/19 ip4:66.249.80.0/20 ip4:72.14.192.0/18 ip4:209.85.128.0/17 ip4:66.102.0.0/20 ip4:74.125.0.0/16 ip4:64.18.0.0/20 ip4:207.126.144.0/20 ?all
Re: Spamd - whitelisting round robin mail servers?
On Wed, Sep 03, 2008 at 08:26:25PM -0700, Jeff Simmons wrote: So I just set up a nice spamd for a client, and then watched Google's Postini try to resend a single email message from just about every IP they own. There are some whitelists for commercial servers available, mainly one at http://projects.puremagic.com/greylisting/, but from what I can see they are all out of date, and the link to the cvs list is broken. Anyone know of any uptodate compilations? i think one such list (as well as some other alternative methods) was mentioned in the longish thread here just super recently ago that shows up if you search archives for 'google spamd' -- jared
Re: Spamd - whitelisting round robin mail servers?
Jeff Simmons wrote: So I just set up a nice spamd for a client, and then watched Google's Postini try to resend a single email message from just about every IP they own. And for postini, get it there too: # dig txt spf.postini.com | grep spf ; DiG 9.3.4 txt spf.postini.com ;spf.postini.com. IN TXT spf.postini.com.14400 IN TXT v=spf1 ip4:64.18.0.0/20 ip4:207.126.144.0/20 ip4:204.14.232.0/22 ip4:63.146.199.13/32 ip4:63.146.199.14/32 ip4:68.123.185.46/32 ip4:67.114.133.222/32 ip4:63.71.11.123/32 ip4:63.71.11.124/32 ip4:208.111.151.5/32 ip4:208.74.204.5/32 -all
Re: Spamd - whitelisting round robin mail servers?
On Wed, 3 Sep 2008 20:26:25 -0700, Jeff Simmons wrote: So I just set up a nice spamd for a client, and then watched Google's Postini try to resend a single email message from just about every IP they own. There are some whitelists for commercial servers available, mainly one at http://projects.puremagic.com/greylisting/, but from what I can see they are all out of date, and the link to the cvs list is broken. Anyone know of any uptodate compilations? There are 17 /24s and a /20 for postini listed in dnswl.org's list. STFA (very recent) for a thread subject= odd greyscanner behaviour I sent a message dated 31/8 refining a script posted by another Jeff to use that list to whitelist various levels of dnswl. I only use the two most reliable levels and that suits my purpose. Other's MMV. R/ (Reply on-list or to the reply-to:, others to sender: are tarpitted) Rod/ A consultant is someone who's called in when someone has painted himself into a corner. He's expected to levitate his client out of that corner. -The Sayings of Chairman Morrow. 1984.
Re: Spamd - whitelisting round robin mail servers?
Jeff Simmons wrote: So I just set up a nice spamd for a client, and then watched Google's Postini try to resend a single email message from just about every IP they own. Here is a little script that would help you to create your own lists. I use it and run it in cronjob once a month. Then it plug right into pf and update my table for spf records. Just modify it for your own needs and add new spf source as you see fit. I used this script that I found long ago and it works very well for this purpose. Best, Daniel #!/bin/sh FILE=spamd-spf.txt rm -f $FILE touch $FILE for domain in \ aol.com \ apple.com \ amazon.com \ gmx.net \ _spf.google.com \ spf-a.hotmail.com \ spf-b.hotmail.com \ spf-c.hotmail.com \ spf-d.hotmail.com \ _spf-a.microsoft.com \ _spf-b.microsoft.com \ _spf-c.microsoft.com \ mynethost.com \ spf.postini.com do echo \#$domain $FILE; dig $domain TXT +short | tr \ \n | grep ^ip4: | cut -d: -f2 $FILE; done
Re: Can OpenBSD run in 24 MB of RAM?
On Wed, Sep 3, 2008 at 11:00 PM, [EMAIL PROTECTED] wrote: I've searched the FAQ and the Web for any guidance on what the minimum RAM is for OpenBSD, with and without X. It's the smallest amount of RAM that lets you get your work done.
Re: Spamd - whitelisting round robin mail servers?
Yeah, that covers Google, all right. And then somebody called Websitewelcome.com gives me major grief. Is the only way to do this to wait for someone to complain that mail isn't going through? I know how to query for netblocks and such. What I don't know is how many fraking commercial mail servers are doing this, and who they all are. There's spam blacklists all over the place, and a lot of people are doing greylisting nowadays. Isn't anybody collating these guys? On Wednesday 03 September 2008 20:57, Marco S Hyman wrote: Jeff Simmons writes: all out of date, and the link to the cvs list is broken. Anyone know of any uptodate compilations? $ host -ttxt google.com google.com descriptive text v=spf1 include:_netblocks.google.com ~all $ host -ttxt _netblocks.google.com _netblocks.google.com descriptive text v=spf1 ip4:216.239.32.0/19 ip4:64.233.160.0/19 ip4:66.249.80.0/20 ip4:72.14.192.0/18 ip4:209.85.128.0/17 ip4:66.102.0.0/20 ip4:74.125.0.0/16 ip4:64.18.0.0/20 ip4:207.126.144.0/20 ?all That should cover google, no? // marc -- Jeff Simmons [EMAIL PROTECTED] Simmons Consulting - Network Engineering, Administration, Security You guys, I don't hear any noise. Are you sure you're doing it right? -- My Life With The Thrill Kill Kult
Re: Info about DRI support and setup
Super,but why isn't this important info on some known place? If I use Google,than there is nothing on first 5 pages,similiar for OpenBSD webpage or Undeadly. I thought,that this is big change in OpenBSD dev and can be pointed somewhere,maybe in FAQ 11 Ofcourse,that this is easy for most of you,but what about people like me? :-) I was looking in boot -c before,but thought that I can do it by change vga - my fault Again thanks a lot for tip In gmane.os.openbsd.misc, you wrote: will be there some info about DRI in FAQ,current.html or plus.html ? I can't find useful tips on Google,OpenBSD,Undeadly and so on :-/ Just old informations and even in man pages xorg.conf,ati,radeon,... is nothing about it. boot -c enable radeondrm / enable inteldrm / .. quit it won't help your X problems, though.
Re: Spamd - whitelisting round robin mail servers?
Daniel Ouellet wrote:
Jeff Simmons wrote:
So I just set up a nice spamd for a client, and then watched Google's
Postini try to resend a single email message from just about every IP
they own.
For google, why not get it from the source itself?
Example:
# dig txt _spf.google.com | grep spf
; DiG 9.3.4 txt _spf.google.com
;_spf.google.com. IN TXT
_spf.google.com.187 IN TXT v=spf1
ip4:216.239.32.0/19 ip4:64.233.160.0/19 ip4:66.249.80.0/20
ip4:72.14.192.0/18 ip4:209.85.128.0/17 ip4:66.102.0.0/20
ip4:74.125.0.0/16 ip4:64.18.0.0/20 ip4:207.126.144.0/20 ?all
Here's a script I use. It handles includes by using recursion, which is
a bit dangerous if there's an endless loop of includes out in the world,
but it's worked for me so far. It will also do DNS lookups for hosts
that are specified by name instead of an IP address and handles sites
that don't put in a FQDN in for the hostname. The output can be fed to
pfctl such as:
pfctl -t local-white -T replace -f /etc/spamd/whitelist.txt
The output from my script for google is: (I actually have a list of
# ./extract_spf spf_hosts.txt
# google.com
# Additional spf: include:_netblocks.google.com
# ==
# Recursing for additional spf records
# ==
# _netblocks.google.com
216.239.32.0/19
64.233.160.0/19
66.249.80.0/20
72.14.192.0/18
209.85.128.0/17
66.102.0.0/20
74.125.0.0/16
64.18.0.0/20
207.126.144.0/20
For Hotmail...
# ./extract_spf spf_hosts.txt /tmp/x
vi # vi /tmp/x
# cat /tmp/x
# microsoft.com
# Additional spf: include:_spf-a.microsoft.com
# Additional spf: include:_spf-b.microsoft.com
# Additional spf: include:_spf-c.microsoft.com
# Additional spf: include:_spf-ssg-a.microsoft.com
# ==
# Recursing for additional spf records
# ==
# _spf-a.microsoft.com
216.99.5.67
216.99.5.68
202.177.148.100
203.122.32.250
202.177.148.110
213.199.128.139
213.199.128.145
207.46.50.72
207.46.50.82
# dns lookup delivery.pens.microsoft.com
# dns lookup mh.microsoft.m0.net
# _spf-b.microsoft.com
# dns lookup delivery2.pens.microsoft.com
# dns lookup delivery.smtp.microsoft.com
131.107.65.22
131.107.65.131
131.107.1.101
131.107.1.102
217.77.141.52
217.77.141.59
# _spf-c.microsoft.com
203.32.4.25
213.199.138.181
213.199.138.191
207.46.52.71
207.46.52.79
131.107.1.18
131.107.1.19
131.107.1.20
131.107.70.12
131.107.70.16
86.61.88.25
# _spf-ssg-a.microsoft.com
207.68.169.173/30
207.68.176.1/26
207.46.132.129/27
207.68.176.97/27
65.55.238.129/26
207.46.222.193/26
207.46.116.135/29
65.55.178.129/27
213.199.161.129/27
65.55.33.70/28
# =
# DNS Lookups
# =
# delivery.pens.microsoft.com
207.46.248.68
207.46.248.69
207.46.248.64
207.46.248.65
207.46.248.66
207.46.248.67
# mh.microsoft.m0.net
209.11.164.116
# delivery2.pens.microsoft.com
207.46.248.41
207.46.248.42
207.46.248.43
207.46.248.40
# delivery.smtp.microsoft.com
207.46.22.98
207.46.22.101
207.46.248.70
207.46.248.71
#!/bin/sh
if [ $# -ne 1 ]; then
echo Usage: `basename $0` hostlist_file
exit 1
fi
if [ ! -f $1 ]; then
echo Unable to locate: $1
exit 1
fi
/tmp/spf_lookup.$$
/tmp/more_spf.$$
cat $1 | while read host; do
echo # $host
dig $host TXT +short | sed 's///g' | \
awk '$1 == v=spf1 {
num=split($0,stuff, )
for (i=1;i=num;i++){
if (substr(stuff[i],1,4)==ip4:) {
print substr(stuff[i],5)
} else {
if (substr(stuff[i],1,2)==a:) {
_tmp=substr(stuff[i],3)
_octet=split(_tmp,_tmpsplit,.)
if (_octet==1) {
printf(%s.%s\n, substr(stuff[i],3), host) lookup
printf(# dns lookup %s.%s\n, substr(stuff[i],3), host )
} else {
print substr(stuff[i],3) lookup
printf(# dns lookup %s\n, substr(stuff[i],3) )
}
} else {
if (substr(stuff[i],1,8)==include:) {
printf(# Additional spf: %s\n, stuff[i],0)
print substr(stuff[i],9) spf
}
}
}
}
}' host=$host lookup=/tmp/spf_lookup.$$ spf=/tmp/more_spf.$$
done
if [ -s /tmp/spf_lookup.$$ ]; then
echo # =
echo # DNS Lookups
echo # =
while read host; do
echo # $host
dig $host A +short | grep -v '^;;'
done /tmp/spf_lookup.$$
fi
if [ -s /tmp/more_spf.$$ ]; then
echo # ==
echo # Recursing for additional spf records
echo # ==
$0 /tmp/more_spf.$$
fi
rm -f /tmp/spf_lookup.$$ /tmp/more_spf.$$
exit 0
Re: macbook / azalia(4) / amd64 / -current / nosound?
On Wed, Sep 03, 2008 at 09:12:54PM -0401, jared r r spiegel wrote: On Wed, Sep 03, 2008 at 10:32:42AM +0200, Tim Saueressig, thepixelz.com wrote: jared r r spiegel schrieb: i cannot get sound output to happen on this thing; i see indication that others with macbooks (pro and regular) have had sound since sometime in 4.2-current land. azalia(4) says 'Known supported devices are Intel 82801FB/GB/HB/IB', and per my dmesg i have an '82801H', so maybe this is the problem? dmesg doesn't say 'not supported' or similar tho. it is somewhat working for me with headphones in mic input. so i tried that today and i am actually able to hear audio out of it. from spending some time on it, it really really appears that what mixerctl calls 'line3' corresponds to the reality of a headphones being plugged into the line-input jack. i have spent some more time trying to map out the permutations of the azalia 'widgets'; have done some looking thru the intel pdf; have recompiled with AZALIA_DEBUG; have even tried to arrow/box everything out with dia(1). but unfortunately i cannot make sound happen in any way other than the default of it appearing to come out of the 'line3' widget which corresponds afaict to headphones in the line-in jack. curious, what makes you think it's line3? if you do: $ mixerctl outputs.mix2=200 $ mixerctl outputs.headphones.source=mix2 $ mixerctl outputs.line.source=mix2 then can you hear audio on the line-out or headphones jack? I suggest this because your mixerctl is showing outputs.line3.source=mix2, and you say line3 is giving you output. this says to me that mix2 is giving output. sorta corresponds to my realtek 882 as well. i guess my midiplay test is bunk because actually i have no midi(4) attached to azalia in any way i can find; yes, azalia(4) doesn't attach any midi(4). and also the cat/aucat is also bunk because the codec itself supports sample rates only down to (*cough cough cough*) 44100 (that's bullshit; thanks realtek or apple or whoever). aucat(1) can resample. check the manual on -current. it would still be nice to know if the reason i can't get sound in any case other than headphones in the linein jack is because i suck at mixerctl, or because of something a bit more extenuating than that. azalia devices such as yours are more complex than what you may be used to. in particular, it supports i/o routing and jack sensing. I suppose there could also be a bug or quirk somewhere. maybe also try twiddling outputs.[line|headphones].[boost|mute] in mixerctl??? here's the azalia stuff from dmesg after AZALIA_DEBUG -- the device names as enumerated seem to usually correspond to mixerctl variables, but don't quite always correspond super well (which of course may be the nature of the beast and not the fault of the driver or mixerctl); so i am only guessing at what corresponds to 'line3' or also trying to figure out what line in jack without headphones plugged in, regular internal speaker, output jack with headphones plugged on and output jack without headphones plugged in would likely be called: azalia0 at pci0 dev 27 function 0 Intel 82801H HD Audio rev 0x03: apic 1 int 20 (irq 10) azalia0: host: High Definition Audio rev. 1.0 azalia0: host: 4 output, 4 input, and 0 bidi streams azalia_attach: resetting azalia_attach: reset counter = 4999 azalia_attach: reset counter = 4985 azalia0: found a codec at #0 azalia_init_corb: CORB allocation succeeded. azalia_init_corb: CORBWP=0; size=256 azalia_init_rirb: RIRB allocation succeeded. azalia_init_rirb: RIRBRP=0, size=256 azalia0: codec[0] vid 0x10ec0885, subid 0x00a1106b, rev. 1.3, HDA version 1.0 azalia_codec_init: nidstart=1 #functions=1 azalia_codec_init: FTYPE result = 0x0101 azalia_codec_init: There are 37 widgets in the audio function. encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz inamp: mute=0 size=0 steps=0 offset=0 outamp: mute=0 size=0 steps=0 offset=0 gpio: wake=0 unsol=1 gpis=0 gpos=0 gpios=2 azalia0: dac02 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac03 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac04 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac05 wcap=11FORMATOV,STEREO encodings=1PCM PCM formats=e056024bit,20bit,16bit,192kHz,96kHz,48kHz,44.1kHz azalia0: dac06 wcap=211DIGITAL,FORMATOV,STEREO encodings=1PCM PCM formats=1e05e032bit,24bit,20bit,16bit,192kHz,96kHz,88.2kHz,48kHz,44.1kHz azalia0: adc07 wcap=10011bCONNLIST,FORMATOV,AMPOV,INAMP,STEREO encodings=1PCM PCM
