Re: suspend command - curious of function
On Fri, Sep 19, 2008 at 11:51:45PM +, ropers wrote: | 2008/9/20 Ingo Schwarze [EMAIL PROTECTED]: | In OpenBSD, most shell builtins and shell command aliases do not have | their own man page or man page symlink. Such symlinks should not be | added: Many shells have similar builtins, so which shell's man page | would you link? | | Would it be useful to have man pages for built-ins, but make those man | pages disambiguation pages that explain that the command in question | is a shell built-in command, and how to find the relevant info on the | respective shell's main man page? | | Another idea would be to make man look at $SHELL and serve up a | relevant man page on that basis. This would require adding that logic | to man though. I think it's an education / experience issue. If you know a command to be an alias or a builtin, you should know not to go look for a manpage for that command. Of course, the question then arrises .. how do you know wether a command is an alias or builtin ? The fact that a manpage is missing for a certain command should be a big hint (in OpenBSD base, that is), but for certainty there's still which(1) and type (an alias to a builtin, at least in ksh(1)). After learning a command is builtin, the user can then read the shells manpage and search for the command in the manpage text. Users unfamiliar with the above are probably somewhat new to the environment and should therefore consult a book on UNIX systems. Cheers, Paul 'WEiRD' de Weerd -- [++-]+++.+++[---].+++[+ +++-].++[-]+.--.[-] http://www.weirdnet.nl/
Re: dhcpd and bootp
On 2008-09-19, Lars Kotthoff [EMAIL PROTECTED] wrote: To clarify, dhcp works perfectly as long as there isn't any bootp involved, i.e. clients which are configured to use dhcp get IP address, domain name, etc work fine. Is this taken care of? There must be at least one host statement for every BOOTP client that is to be served. If I run dhcp in the foreground there's no output whatsoever when clients try bootp. Same thing for the system log files. Tcpdump tells me that the client tries to connect to port 67, but nothing is listening there and the client fails. Lsof and netstat confirm that nothing is listening on port 67. It uses BPF, it won't show up in fstat/netstat/lsof.
Re: dhcpd and bootp
Is this taken care of? There must be at least one host statement for every BOOTP client that is to be served. Yes. I actually copied the configuration from a a Linux server I was using before for DHCP/BOOTP where everything was working fine. It uses BPF, it won't show up in fstat/netstat/lsof. It doesn't seem to react to any bootp requests sent to that port though... Is there any way to tell whether it's listening properly? Lars
AMD64 large memory support (4+GB RAM) status?
Hello everybody, I would like to know what's the current status of large memory support in OpenBSD is. I tried contacting developers and even wrote a mail to tech@ because I noticed the related patches where nuked for the 4.4 release but they where not reactivated afterwards. I can life without kQemu (even that hurts a lot) but related to large memory it would make OpenBSD far more usefull as Test-Box for a lot qemu-VMs. I would test patches to improve the situation and would report back anything wich is needed for the developers (as detailed a spossible) in case of a error. But I did not found any real informations about the status related to large memory support. So in case a developer reads this or somebody who knows more then I do please give me a little feedback about the status and if it's possible to test anything to may enable large memory support in OpenBSD-amd64 4.5. Kind regards, Sebastian
Help with CARP
Hi Any ideas with this one please? I have 2 openBSD boxes running as pair of firewalls using CARP + PF. This set up is already working for 12 months. Last week I was troubleshooting network problems reported by my clients and I noticed that several CARP interfaces had failed over. I checked that there were no more problems with the Primary firewall and I set the interfaces on the backup firewall back to BACKUP and made sure that the the primary firewall interfaces were all set to MASTER. However I had intermittent timeout problems for the next 24hrs. Eventually I enabled loud debugging on PF and I saw that traffic was coming through both firewalls evenn though the backup firewall has all its CARP interfaces set back to BACKUP. I tried several basic TCP debugging techniques but in the end I set all of the CARP interfaces on the backup firewall to down. This is where I am at the moment. Can anyone point me in the direction of how I can investigate this further. I want to bring up the backup firewall interfaces as soon as possible so that I have my redundant set up but at the moment I am at a loss to think of what could be wrong. The only thing I can think off is that I have accidentally enabled load balancing - but I have checked the basics from the CARP documentation and , on the surface it does not look like it. I am running 4.1 GENERIC#874 amd64 Regards Jonathan
Re: obsd43 building opera
Hi, I am posting this to misc because the problem (see appended emails bottom) is not from the port, as I thought, but from the laptop. If you want to see the long file with messages, please look to recent posts in ports. Nikolay, yes, I have started to think it's a hw problem... I just made a fresh install of everything and I am getting similar problems I was installing tuxpaint for my child and... see messages Now I am testing the laptop with one of those linux live CDs; the boot has the option memtest86 It's completed 50% of the tests and everything is looking fine... I may also give a try to smartctl later. Jonathan, as you can see (if you're reading this), eventually not selling you my old ibm is going to turn out to have been a positive thing... Pau sdl-1.2.13p0: complete sdl-image-1.2.4p3: complete sdl-mixer-1.2.6p6:libmikmod-3.1.10p4: complete sdl-mixer-1.2.6p6:libogg-1.1.3: complete sdl-mixer-1.2.6p6:libvorbis-1.2.0: complete sdl-mixer-1.2.6p6:smpeg-0.4.4p5: complete sdl-mixer-1.2.6p6: complete sdl-ttf-2.0.8p3: complete netpbm-10.26.46:jasper-1.900.1: complete netpbm-10.26.46:jbigkit-1.6p1: complete netpbm-10.26.46: complete libutf8-0.8p0: complete libpaper-1.1.21: complete Segmentation fault (core dumped) | 100% tuxpaint-0.9.17: complete tuxpaint-stamps-20070701: complete 2008/9/20 Nikolay Sturm [EMAIL PROTECTED]: * Pau [2008-09-20]: cd /usr/ports/www/opera make install clean=depends distclean It breaks. I have built it in the past on the same laptop but with obsd42. I attach in the bottom the make messages. Either your system is totally messed up or your hardware is broken. Nikolay
broken disk?
Hi, I recently posted in ports some problems I am having with an i386 laptop http://marc.info/?l=openbsd-portsm=122191620826430w=2 and especially http://marc.info/?l=openbsd-portsm=122189105726930w=2 Nikolay suggested it could be a hardware problem. To be sure, I made a clean install of the system and the problems (not same, but similar) were still there. Therefore I booted into memtest86 from a linux live CD. The test went fine; then I tried smartcl (messages attached to this message below). It seems that it runs fine but I don't get output from the long test... Any hint? I have tried /dev/rwd0c too... but same result. How can I check my problem?? Thanks, Pau andromina# smartctl -i /dev/wd0c zsh: command not found: smartctl andromina# /usr/local/sbin/smartctl -i /dev/wd0c smartctl version 5.37 [i386-unknown-openbsd4.3] Copyright (C) 2002-6 Bruce Allen Home page is http://smartmontools.sourceforge.net/ === START OF INFORMATION SECTION === Model Family: Fujitsu MHT series Device Model: FUJITSU MHT2080AT Serial Number:NN7CT4A15HPM Firmware Version: 0022 User Capacity:80,026,361,856 bytes Device is:In smartctl database [for details use: -P show] ATA Version is: 6 ATA Standard is: ATA/ATAPI-6 T13 1410D revision 3a Local Time is:Sat Sep 20 15:18:00 2008 CEST SMART support is: Available - device has SMART capability. SMART support is: Enabled andromina# /usr/local/sbin/smartctl -s on -d ata /dev/wd0c smartctl version 5.37 [i386-unknown-openbsd4.3] Copyright (C) 2002-6 Bruce Allen Home page is http://smartmontools.sourceforge.net/ === START OF ENABLE/DISABLE COMMANDS SECTION === SMART Enabled. andromina# /usr/local/sbin/smartctl -d ata -a /dev/wd0c smartctl version 5.37 [i386-unknown-openbsd4.3] Copyright (C) 2002-6 Bruce Allen Home page is http://smartmontools.sourceforge.net/ === START OF INFORMATION SECTION === Model Family: Fujitsu MHT series Device Model: FUJITSU MHT2080AT Serial Number:NN7CT4A15HPM Firmware Version: 0022 User Capacity:80,026,361,856 bytes Device is:In smartctl database [for details use: -P show] ATA Version is: 6 ATA Standard is: ATA/ATAPI-6 T13 1410D revision 3a Local Time is:Sat Sep 20 15:18:41 2008 CEST SMART support is: Available - device has SMART capability. SMART support is: Enabled === START OF READ SMART DATA SECTION === SMART overall-health self-assessment test result: PASSED General SMART Values: Offline data collection status: (0x00) Offline data collection activity was never started. Auto Offline Data Collection: Disabled. Self-test execution status: ( 0) The previous self-test routine completed without error or no self-test has ever been run. Total time to complete Offline data collection: ( 587) seconds. Offline data collection capabilities:(0x7b) SMART execute Offline immediate. Auto Offline data collection on/off support. Suspend Offline collection upon new command. Offline surface scan supported. Self-test supported. Conveyance Self-test supported. Selective Self-test supported. SMART capabilities:(0x0003) Saves SMART data before entering power-saving mode. Supports SMART auto save timer. Error logging capability:(0x01) Error logging supported. No General Purpose Logging support. Short self-test routine recommended polling time:( 2) minutes. Extended self-test routine recommended polling time:( 80) minutes. Conveyance self-test routine recommended polling time:( 2) minutes. SMART Attributes Data Structure revision number: 16 Vendor Specific SMART Attributes with Thresholds: ID# ATTRIBUTE_NAME FLAG VALUE WORST THRESH TYPE UPDATED WHEN_FAILED RAW_VALUE 1 Raw_Read_Error_Rate 0x000f 100 100 046Pre-fail Always - 41054 2 Throughput_Performance 0x0005 100 100 030Pre-fail Offline - 31064064 3 Spin_Up_Time0x0003 100 100 025Pre-fail Always - 1 4 Start_Stop_Count0x0032 098 098 000Old_age Always - 7953 5 Reallocated_Sector_Ct 0x0033 100 100 024Pre-fail Always - 8589934592000 7 Seek_Error_Rate 0x000f 100 100 047Pre-fail Always - 3090 8 Seek_Time_Performance 0x0005 100 100 019Pre-fail Offline - 0 9 Power_On_Seconds0x0032 085 085 000
Re: broken disk?
SMART Self-test log structure revision number 1 No self-tests have been logged. [To run self-tests, use: smartctl -t] You need to explicitely run the self test, e.g. smartctl -t long /dev/wd0c and wait until it finished -- the above section of smartctl -a /dev/wd0c will tell you. Also see smartctl(8). Lars
route label vs pftable
Hi Misc@, Right now I'm using bgpd to labeled my internet routes, so I can use it with pf to split bandwidth allocation on single interface to two distinct network, the internet and regional exchange, and using this way I only forward/allow routeable IP addresses supplied from bgpd. Other than labeling the prefixes learn from bgpd, I also put this prefixes to pftable(s) in order to see the counters, and maybe parse them for network monitoring purposes. I have also use pftable to do this kind of thing, but my curiosity is simple, which is faster on filtering rules, using route labels or pftables. I mostly prefer to use pftable since I can see the rule in pftop/systat screen. I'd love to hear if anyone here had any experiences comparing this two. Thanks, -- insandotpraja(at)gmaildotcom
PPP / demand-dial / failing first outbound connection
Hi all! I have the -current snapshot from Sep. 10 on my ALIX board, and have configured pppd for demand-dialing on a UMTS modem. # cat /etc/ppp/peers/umts cuaU0 7372800 debug noauth nocrtscts :10.11.12.13 ipcp-accept-local defaultroute demand user none persist idle 600 holdoff 300 connect /usr/sbin/chat -v -f /etc/ppp/tmobile-chat The first outbound connection causes pppd to successfully pull up the connection. However, the connecting client runs into a TCP timeout and needs to be started again. On subsequent dials (after the line was pulled down due to idle), the behaviour is the same and the initiating connection times out. I recall that this was a very common problem many years ago when I used to dial into ISDN with my Linux boxes, but I can't quite recall how we used to get rid of this back then. How do I fix this little problem? Your suggestions are greatly appreciated. Thanks for your time, -martin -- Martin Schmitt / Schmitt Systemberatung / www.scsy.de -- http://www.pug.org/index.php/Benutzer:Martin --
Re: Help with CARP
I had similar problems with a couple of little Soekris boxes. I solved it by increasing advskew. I think they can't handle the interrupt load at peak times. I'm in the process of replacing them. HTH, Jose. Jonathan Carter wrote: Hi Any ideas with this one please? I have 2 openBSD boxes running as pair of firewalls using CARP + PF. This set up is already working for 12 months. Last week I was troubleshooting network problems reported by my clients and I noticed that several CARP interfaces had failed over. I checked that there were no more problems with the Primary firewall and I set the interfaces on the backup firewall back to BACKUP and made sure that the the primary firewall interfaces were all set to MASTER. However I had intermittent timeout problems for the next 24hrs. Eventually I enabled loud debugging on PF and I saw that traffic was coming through both firewalls evenn though the backup firewall has all its CARP interfaces set back to BACKUP. I tried several basic TCP debugging techniques but in the end I set all of the CARP interfaces on the backup firewall to down. This is where I am at the moment. Can anyone point me in the direction of how I can investigate this further. I want to bring up the backup firewall interfaces as soon as possible so that I have my redundant set up but at the moment I am at a loss to think of what could be wrong. The only thing I can think off is that I have accidentally enabled load balancing - but I have checked the basics from the CARP documentation and , on the surface it does not look like it. I am running 4.1 GENERIC#874 amd64 Regards Jonathan
isakmpd question (isakmpd.conf - ipsec.conf)
Hi, in my VPN setup, I want to authenticate sites to each other using X.509 certificates. In my classic isakmpd.conf, I have this: [IPSEC-mobile-clients] Phase= 2 Configuration= mobile-quick-mode Local-ID= default-route Remote-ID= dummy-remote [default-route] ID-type=IPV4_ADDR_SUBNET Network=0.0.0.0 Netmask=0.0.0.0 [dummy-remote] ID-type=IPV4_ADDR Address=0.0.0.0 In my isakmpd.policy, I delegate to the individual certs. This works ok for my few dozen clients, but they have to have all the same configuration (ie, the least common denominator wins). Since people recommend using ipsec.conf, I wanted to transform this setup to using ipsec.conf. In my ipsec.conf, I have: myip=1.2.3.4 ike passive esp tunnel from $myip to any \ main auth hmac-sha1 enc aes-256 group modp1536 \ quick auth hmac-sha1 enc aes-256 group modp1536 \ srcid $myip dstid [EMAIL PROTECTED] This keeps isakmpd looking in /etc/isakmpd/pubkeys//ufqdn/[EMAIL PROTECTED] for a public key that I presumably have to create using keynote (right)? In any case, I have the certificates in place that I want to use instead, but they don't get touched, ever. I'm testing this with 4.3 and a snapshot from August 25th on one (gateway) side, and Linux+isakmpd on the other side, configured as a road warrior, but in production, this would also have to work with existing counterparts of all kinds, most of them Windows boxen. Any help is very much appreciated! Kind regards, --Toni++
Re: dhcpd and bootp
On 2008-09-20, Lars Kotthoff [EMAIL PROTECTED] wrote: Is this taken care of? There must be at least one host statement for every BOOTP client that is to be served. Yes. I actually copied the configuration from a a Linux server I was using before for DHCP/BOOTP where everything was working fine. you can't assume that working on your Linux system means you have the correct config format for OpenBSD. It's a different dhcpd. It uses BPF, it won't show up in fstat/netstat/lsof. It doesn't seem to react to any bootp requests sent to that port though... Is there any way to tell whether it's listening properly? if it responds to DHCP requests, it's listening properly, same port for both protocols.
Re: broken disk?
On 2008-09-20, Pau [EMAIL PROTECTED] wrote: Therefore I booted into memtest86 from a linux live CD. The test went fine this does not necessarily mean the RAM is good; just that memtest didn't find a problem.
Re: Help with CARP
I have it set to (1) on the promary and (100) on the backup. How high did you set yours? Jonathan -Original Message- From: Jose Quinteiro [mailto:[EMAIL PROTECTED] Sent: 20 September 2008 20:45 To: Jonathan Carter Cc: misc@openbsd.org Subject: Re: Help with CARP I had similar problems with a couple of little Soekris boxes. I solved it by increasing advskew. I think they can't handle the interrupt load at peak times. I'm in the process of replacing them. HTH, Jose. Jonathan Carter wrote: Hi Any ideas with this one please? I have 2 openBSD boxes running as pair of firewalls using CARP + PF. This set up is already working for 12 months. Last week I was troubleshooting network problems reported by my clients and I noticed that several CARP interfaces had failed over. I checked that there were no more problems with the Primary firewall and I set the interfaces on the backup firewall back to BACKUP and made sure that the the primary firewall interfaces were all set to MASTER. However I had intermittent timeout problems for the next 24hrs. Eventually I enabled loud debugging on PF and I saw that traffic was coming through both firewalls evenn though the backup firewall has all its CARP interfaces set back to BACKUP. I tried several basic TCP debugging techniques but in the end I set all of the CARP interfaces on the backup firewall to down. This is where I am at the moment. Can anyone point me in the direction of how I can investigate this further. I want to bring up the backup firewall interfaces as soon as possible so that I have my redundant set up but at the moment I am at a loss to think of what could be wrong. The only thing I can think off is that I have accidentally enabled load balancing - but I have checked the basics from the CARP documentation and , on the surface it does not look like it. I am running 4.1 GENERIC#874 amd64 Regards Jonathan
Re: dhcpd and bootp
you can't assume that working on your Linux system means you have the correct config format for OpenBSD. It's a different dhcpd. Yes, I adapted the format; the host declaration is the same though. if it responds to DHCP requests, it's listening properly, same port for both protocols. That's exactly what I don't understand -- it doesn't react to BOOTP requests at all :( Lars
UFS on OpenBSD
Hi guys, Just wanted to ask if it's possible to format a drive on OpenBSD and tagged it as a UFS (makes it readable on a mac). I've been reading the newfs manpage but with no luck... anyone care to point me to some helpful links. any help will be awesomely appreciated. -b
Re: UFS on OpenBSD
On Sat, Sep 20, 2008 at 6:16 PM, Beavis [EMAIL PROTECTED] wrote: Just wanted to ask if it's possible to format a drive on OpenBSD and tagged it as a UFS (makes it readable on a mac). I've been reading the newfs manpage but with no luck... anyone care to point me to some helpful links. The Mac UFS format is slightly different from the one used by OpenBSD, so not possible with the current tools.
Re: suspend command - curious of function
I agree entirely. While man(1) is great, which(1) is also an essential tool. Learn to love it. paul On 20/09/2008, at 7:27 PM, Paul de Weerd wrote: On Fri, Sep 19, 2008 at 11:51:45PM +, ropers wrote: | 2008/9/20 Ingo Schwarze [EMAIL PROTECTED]: | In OpenBSD, most shell builtins and shell command aliases do not have | their own man page or man page symlink. Such symlinks should not be | added: Many shells have similar builtins, so which shell's man page | would you link? | | Would it be useful to have man pages for built-ins, but make those man | pages disambiguation pages that explain that the command in question | is a shell built-in command, and how to find the relevant info on the | respective shell's main man page? | | Another idea would be to make man look at $SHELL and serve up a | relevant man page on that basis. This would require adding that logic | to man though. I think it's an education / experience issue. If you know a command to be an alias or a builtin, you should know not to go look for a manpage for that command. Of course, the question then arrises .. how do you know wether a command is an alias or builtin ? The fact that a manpage is missing for a certain command should be a big hint (in OpenBSD base, that is), but for certainty there's still which(1) and type (an alias to a builtin, at least in ksh(1)). After learning a command is builtin, the user can then read the shells manpage and search for the command in the manpage text. Users unfamiliar with the above are probably somewhat new to the environment and should therefore consult a book on UNIX systems. Cheers, Paul 'WEiRD' de Weerd -- [++-]+++.+++[---].+++[+ +++-].++[-]+.--.[-] http://www.weirdnet.nl/
Re: UFS on OpenBSD
thanks for the reply ted... i guess even if i try to forman the drive on HFS I won't be able to mount it on openbsd. i guess only way still is msdos_fs thanks again... :-) On Sat, Sep 20, 2008 at 4:30 PM, Ted Unangst [EMAIL PROTECTED] wrote: On Sat, Sep 20, 2008 at 6:16 PM, Beavis [EMAIL PROTECTED] wrote: Just wanted to ask if it's possible to format a drive on OpenBSD and tagged it as a UFS (makes it readable on a mac). I've been reading the newfs manpage but with no luck... anyone care to point me to some helpful links. The Mac UFS format is slightly different from the one used by OpenBSD, so not possible with the current tools.
Re: suspend command - curious of function
On Sat, Sep 20, 2008 at 6:27 PM, Paul M [EMAIL PROTECTED] wrote: I agree entirely. While man(1) is great, which(1) is also an essential tool. Learn to love it. ...if you are a csh user. Otherwise type is better than which.
Re: NSA Resources For Rapid Targeting and Routing Analysis
On Fri, 19.09.2008 at 11:06:20 -0700, Bryan Irvine [EMAIL PROTECTED] wrote: The government is out to get us all. Put on your tinfoil hat and prepare for the revolution! However laughable you may find it: I actually _had_ (verified) VPN breakage which I could avoid by not routing my traffic through Hurricane Electric. Ie, non-IPSEC traffic went through, but IPSEC traffic was blocked. Kind regards, --Toni++
alix help
Hi, I got an alix2c2 which I'm hoping to install openbsd on. Is there a way to upgrade it's bios and install openbsd on it from openbsd? I see instructions for upgrading the bios using freedos, so I got a CF card reader and used instructions to install freedos from windows xp, but when I boot the alix it complains invalid system disk. If I were able to upgrade the bios, I don't know how I will actually install openbsd on the disk. Aside from transfering files using Xmodem, what is the procedure for actually installing an image onto the CF card? Kendall
Re: alix help
On 2008-09-20, Kendall Shaw [EMAIL PROTECTED] wrote: I got an alix2c2 which I'm hoping to install openbsd on. Is there a way to upgrade it's bios and install openbsd on it from openbsd? someone mentioned working on it, but nothing further.. I see instructions for upgrading the bios using freedos, so I got a CF card reader and used instructions to install freedos from windows xp, but when I boot the alix it complains invalid system disk. the LBA image on http://www.pcengines.ch/freedos.htm usually works ok. If I were able to upgrade the bios, I don't know how I will actually install openbsd on the disk. man pxeboot Aside from transfering files using Xmodem you wouldn't be able to do that anyway.
perl/CGI getting SIGSEGV *occasionally*, called by apache in chrooted env
Hi folks, OS Env: OBSD4.3 running on a dual-PIII (ProLiant 380). I've got a perl/CGI script doing a bunch of stuff (talking to PostgreSQL, writing files, etc) which is dying with SIGSEGV, but only occasionally. I'm unable to reproduce the death outside of the chrooted env manually. I did, however, manage to get a ktrace of a good and a bad run. (see below). I set up the chroot environment by copying all relevent files for perl to /var/www. The SIGSEGV's started after I made some minor changes to the script, and if I make yet other changes, such as adding debugging code, the nasty behaviour stops. I doubt the script (and modules it uses) are relevent, but someone thinks they might shed some light on the problem, I can make them available. Naturally, I can make the complete ktrace/kdump files available as well, if anybody wants to see them. Access to the machine is also no problem. Is there any hope of tracking down this kind of error? thanks, Rob Urban --- The bad looks like this: snip 29904 perl CALL mprotect(0x29ef7000,0x1000,0x3) 29904 perl RET mprotect 0 29904 perl CALL mprotect(0x29ef7000,0x1000,0x1) 29904 perl RET mprotect 0 29904 perl CALL sigprocmask(0x3,0) 29904 perl RET sigprocmask -65793/0xfffefeff 29904 perl CALL stat(0x87e53280,0x27dcf680) 29904 perl NAMI /vhosts/urban/www.unix-beratung.de/html//absence/img/legend.png 29904 perl RET stat 0 29904 perl CALL mmap(0,0x1000,0x3,0x1002,0x,0,0,0) 29904 perl RET mmap -1950830592/0x8bb8b000 29904 perl PSIG SIGSEGV SIG_DFL code 1 addr=0x82ddb000 trapno=1 29904 perl NAMI perl.core END-OF-KDUMP and the good like this: snip 28237 perl CALL sigprocmask(0x1,0x) 28237 perl RET sigprocmask 0 28237 perl CALL mprotect(0x2572,0x1000,0x3) 28237 perl RET mprotect 0 28237 perl CALL mprotect(0x2572,0x1000,0x1) 28237 perl RET mprotect 0 28237 perl CALL sigprocmask(0x3,0) 28237 perl RET sigprocmask -65793/0xfffefeff 28237 perl CALL stat(0x82529200,0x2e854680) 28237 perl NAMI /vhosts/urban/www.unix-beratung.de/html//absence/img/lege nd.png 28237 perl RET stat 0 28237 perl CALL mmap(0,0x1000,0x3,0x1002,0x,0,0,0) 28237 perl RET mmap -1953615872/0x8b8e3000 28237 perl CALL sigaction(0xd,0xcfbf2500,0xcfbf24f0) 28237 perl RET sigaction 0 28237 perl CALL sendto(0x11,0x8bfd5000,0x45,0,0,0) 28237 perl GIO fd 17 wrote 69 bytes Q\0\0\0D SELECT * FROM c_config WHERE name = 'type-modification-time';\ \0 28237 perl RET sendto 69/0x45 28237 perl CALL sigaction(0xd,0xcfbf2500,0xcfbf24f0) 28237 perl RET sigaction 0 28237 perl CALL poll(0xcfbf2658,0x1,0x) snip
Limit number of login sessions
Hi I'm looking for a way to configure a limit for the maximum number of simultaneous login sessions for a user. I want to do this for preventing users to create multiple ssh sessions. I think something similar can be done trough pf, but that's not the approach I'm looking for.
Can one dd to /dev/rwd0c?
OK I am trying to completely erase the data of a hard disk so I though I can just do `dd if=/dev/arandom of=/dev/rwd0c` as to my understanding that is the entire hard disk (slice c) of wd0 in 'raw' mode? But that dd refuse to do it. So now I am doing the same thing but to wd0c instead. Is this any worse? This is the character device right? Does that mean dd won't write random bits as low as going to the raw device? This is running off a OpenBSD 4.3 CD, there are no intention to actually destroy the hard disk in any way, just erasing the data off the hard disk so that it can be reused, re-sold, whatever. The data are not some military top secret, but it is interesting to know of what can be done in a home/small office environment when it comes to erasing the hard drive. Thanks. -- This e-mail may be confidential. You may not copy, forward, distribute, or, use any part of it. Note, like all disclaimers on the net, there are no effective legal binding on your part and disclaimers can be ignored. For more information about disclaimers, please see: http://www.goldmark.org/jeff/stupid-disclaimers/
Re: Can one dd to /dev/rwd0c?
On Sun, Sep 21, 2008 at 06:02:37AM +0100, Sunnz wrote: OK I am trying to completely erase the data of a hard disk so I though I can just do `dd if=/dev/arandom of=/dev/rwd0c` as to my understanding that is the entire hard disk (slice c) of wd0 in 'raw' mode? But that dd refuse to do it. security(7): Once you have set the security level to 1, write access to raw devices will be denied So now I am doing the same thing but to wd0c instead. Is this any worse? This is the character device right? Does that mean dd won't write random bits as low as going to the raw device? This is running off a OpenBSD 4.3 CD, there are no intention to actually destroy the hard disk in any way, just erasing the data off the hard disk so that it can be reused, re-sold, whatever. The data are not some military top secret, but it is interesting to know of what can be done in a home/small office environment when it comes to erasing the hard drive. Thanks. -- This e-mail may be confidential. You may not copy, forward, distribute, or, use any part of it. Note, like all disclaimers on the net, there are no effective legal binding on your part and disclaimers can be ignored. For more information about disclaimers, please see: http://www.goldmark.org/jeff/stupid-disclaimers/