Re: esd + mpd

[Jacob Meuser]

On Mon, Sep 29, 2008 at 11:34:52PM -0400, Nick Guenther wrote:
> On Mon, Sep 29, 2008 at 5:57 PM, Jacob Meuser <[EMAIL PROTECTED]> wrote:
> > On Sun, Sep 28, 2008 at 02:14:04AM -0400, Nick Guenther wrote:
> >> On Sat, Sep 27, 2008 at 7:37 PM, Nick Guenther <[EMAIL PROTECTED]> wrote:
> >> > On Wed, Oct 31, 2007 at 9:17 AM, Samuel Proulx <[EMAIL PROTECTED]> wrote:
> >> >> Hello,
> >> >>
> >> >> I have been using obsd as my primary desktop for a while now and i have 
> >> >> a question about the sound system , is there a way to play
> >> >> two sounds at the same time ? Example watching youtube videos with 
> >> >> opera and playing some music in the background with mpd or xmms .
> >> >> thank you for your time  ; )
> >> >>
> >> >>
> >> >
> >> >
> >> > Hey Samuel,
> >> >
> >> > Somehow I missed seeing this message of yours:
> >> > http://kerneltrap.org/mailarchive/openbsd-misc/2007/10/31/374006
> >> > that's disappointing to me because I relly want to get mpd to
> >> > route through esd, but if I change my config file from
> >> >
> >> > audio_output {
> >> >   type"ao"
> >> >   name"Libao Audio Device"
> >> > }
> >> >
> >> > to
> >> > audio_output {
> >> >type"ao"
> >> >driver "esd"
> >> >name"esd"
> >> > }
> >> >
> >> > I get `"esd" is not a valid ao driver at line 112`
> >> >
> >> > I also tried
> >> > $ cat /etc/libao.conf
> >> > default_driver=esd
> >> >
> >> > but it doesn't run esd. So did you get it working? And if so: how?
> >> >
> >>
> >> I just noticed that there is a libao-esd package. I installed that and
> >> now mpd does indeed try to spawn an esd instance. However, there are
> >> problems:
> >> -since mpd seems to chroot itself into /var/empty it needs write
> >> access there to put a .esd_auth file (but /var/empty has to be 755
> >> root:wheel or sshd won't let me log in). I temporarily switched the
> >> permissions and then back; once it had created the .esd_auth file it
> >> ran fine until I rebooted.
> >> -even once esd is running, it doesn't allow other applications through
> >> it at the same time (thus negating the point of having a sound server)
> >>
> >> Sooo I'm just wondering how you went about this.
> >
> > $ head -5 /usr/local/share/examples/esound/esd.conf
> >
> 
> Thanks, but I was using exactly that file as my esd.conf and it still
> doesn't work.

which version of esound?

> $ sudo tail /var/log/mpd/mpd.error
> esd: Esound sound daemon unable to create unix domain socket:
> /var/empty/.esd/socket
> The socket is not accessible by esd.
> Exiting...
> Sep 29 22:26 : problems opening audio device while playing
> "@Indie/Deerhoof/Deerhoof - [2002] Reveille/04 - Punch Buggy
> Valves.mp3"
> 
> 
> 
> I could probably hack around with where mpd is running from or twist
> permissions to get it to talk to esd's socket in /var/empty, but that
> seems wrong.. and anyway, every other program that would want to talk
> to esd would need similar hacks.
> 
> 
> If I change esd.conf to use -tcp or start esd with -tcp by hand then
> this is all that mpd reports when I try to play a file (gathered with
> mpd --verbose):
> 
> interface 0: process command "status"
> interface 0: command returned 0
> interface 0: process command "status"
> interface 0: command returned 0
> interface 0: process command "playid "0""
> playlist: play 0:"@Electronica/@Psytrance/Transwave - [1996]
> Helium/04-Trashish.mp3"
> copyMpdTagToOB: !acceptMetadata || !tag
> copyMpdTagToOB: !acceptMetadata || !tag
> interface 0: command returned 0
> interface 0: process command "status"
> interface 0: command returned 0
> problems opening audio device while playing
> "@Electronica/@Psytrance/Transwave - [1996] Helium/04-Trashish.mp3"
> playlist: stop
> interface 0: process command "status"
> interface 0: command returned 0
> interface 0: closed
> 
> Also, in case it matters:
> drwxr-xr-x  4 root  wheel  512 Sep 29 23:20 /var/empty/
> 
> Jacob, do *you* have it working? I really just need a working
> configuration to compare against. I had mpd routing through an
> auto-spawning esd at one point, but now I've done *something* to my
> system and it won't even do that anymore.

first, autospawning does not work in esound-0.2.38.  I don't know if
that's the version you are using, but that could be part of the problem.
I'm pretty sure I had mpd playing through esd at one point.

let's see.  add a group, _esd.  add myself and _mpd to that
group.  start esd as myself, chgrp _esd ~/.esd_auth, chmod g+rw
~/.esd_auth.  echo "default_driver=esd" > /etc/libao.conf.
sudo mpd.  starts fine, but oh, no workie.

ok, make /var/esd. make that _mpd's home, and link from there an
.esd_auth to my .esd_auth.  that seems to work.

-- 
[EMAIL PROTECTED]
SDF Public Access UNIX System - http://sdf.lonestar.org

Re: Bad MD5 on snapshot i386 install.iso

[Steve Shockley]

On 9/29/2008 12:36 PM, Giancarlo Razzolini wrote:

tcpdump on your if and see if you're getting bad tcp checksum's. Most
likely it's a problem with you network if, or switch, or router,
corrupting  packets.


If you're used to seeing bad TCP checksums in tcpdump, you probably have 
a NIC that does TCP checksum offload.

Re: esd + mpd

[Nick Guenther]

On Mon, Sep 29, 2008 at 5:57 PM, Jacob Meuser <[EMAIL PROTECTED]> wrote:
> On Sun, Sep 28, 2008 at 02:14:04AM -0400, Nick Guenther wrote:
>> On Sat, Sep 27, 2008 at 7:37 PM, Nick Guenther <[EMAIL PROTECTED]> wrote:
>> > On Wed, Oct 31, 2007 at 9:17 AM, Samuel Proulx <[EMAIL PROTECTED]> wrote:
>> >> Hello,
>> >>
>> >> I have been using obsd as my primary desktop for a while now and i have a 
>> >> question about the sound system , is there a way to play
>> >> two sounds at the same time ? Example watching youtube videos with opera 
>> >> and playing some music in the background with mpd or xmms .
>> >> thank you for your time  ; )
>> >>
>> >>
>> >
>> >
>> > Hey Samuel,
>> >
>> > Somehow I missed seeing this message of yours:
>> > http://kerneltrap.org/mailarchive/openbsd-misc/2007/10/31/374006
>> > that's disappointing to me because I relly want to get mpd to
>> > route through esd, but if I change my config file from
>> >
>> > audio_output {
>> >   type"ao"
>> >   name"Libao Audio Device"
>> > }
>> >
>> > to
>> > audio_output {
>> >type"ao"
>> >driver "esd"
>> >name"esd"
>> > }
>> >
>> > I get `"esd" is not a valid ao driver at line 112`
>> >
>> > I also tried
>> > $ cat /etc/libao.conf
>> > default_driver=esd
>> >
>> > but it doesn't run esd. So did you get it working? And if so: how?
>> >
>>
>> I just noticed that there is a libao-esd package. I installed that and
>> now mpd does indeed try to spawn an esd instance. However, there are
>> problems:
>> -since mpd seems to chroot itself into /var/empty it needs write
>> access there to put a .esd_auth file (but /var/empty has to be 755
>> root:wheel or sshd won't let me log in). I temporarily switched the
>> permissions and then back; once it had created the .esd_auth file it
>> ran fine until I rebooted.
>> -even once esd is running, it doesn't allow other applications through
>> it at the same time (thus negating the point of having a sound server)
>>
>> Sooo I'm just wondering how you went about this.
>
> $ head -5 /usr/local/share/examples/esound/esd.conf
>

Thanks, but I was using exactly that file as my esd.conf and it still
doesn't work.

$ sudo tail /var/log/mpd/mpd.error
esd: Esound sound daemon unable to create unix domain socket:
/var/empty/.esd/socket
The socket is not accessible by esd.
Exiting...
Sep 29 22:26 : problems opening audio device while playing
"@Indie/Deerhoof/Deerhoof - [2002] Reveille/04 - Punch Buggy
Valves.mp3"



I could probably hack around with where mpd is running from or twist
permissions to get it to talk to esd's socket in /var/empty, but that
seems wrong.. and anyway, every other program that would want to talk
to esd would need similar hacks.


If I change esd.conf to use -tcp or start esd with -tcp by hand then
this is all that mpd reports when I try to play a file (gathered with
mpd --verbose):

interface 0: process command "status"
interface 0: command returned 0
interface 0: process command "status"
interface 0: command returned 0
interface 0: process command "playid "0""
playlist: play 0:"@Electronica/@Psytrance/Transwave - [1996]
Helium/04-Trashish.mp3"
copyMpdTagToOB: !acceptMetadata || !tag
copyMpdTagToOB: !acceptMetadata || !tag
interface 0: command returned 0
interface 0: process command "status"
interface 0: command returned 0
problems opening audio device while playing
"@Electronica/@Psytrance/Transwave - [1996] Helium/04-Trashish.mp3"
playlist: stop
interface 0: process command "status"
interface 0: command returned 0
interface 0: closed

Also, in case it matters:
drwxr-xr-x  4 root  wheel  512 Sep 29 23:20 /var/empty/

Jacob, do *you* have it working? I really just need a working
configuration to compare against. I had mpd routing through an
auto-spawning esd at one point, but now I've done *something* to my
system and it won't even do that anymore.

-Nick

Re: Mac mini support

[Tasmanian Devil]

>> - They need a resistor either in a dongle or build-in to make them
>> start without a monitor attached.
>>
>
> ... do you (or anyone else) by any chance know if this also applies to
> the Mac Minis with PowerPC CPU? I'm considering buying one as web and
> mail server but this could be a bit disturbing.

AFAIK it's the EFI (Intel Macs) which needs the resistor (as
replacement for a monitor) to switch to the legacy BIOS mode (or so)
and boot with a DOS partition. The native EFI boot with a HFS+
partition and Mac OS X doesn't need that. Open Firmware (PPC Macs)
doesn't have such problems either.

Tas.

DHCP failing to find interface after 20 Interfaces

[Carl Horne]

Hi,

Sorry but I run into another block.  This time it's dhcpd that is having the
issue.  I hope Stuart can find an answer as fast as he did last time.  This is
the issue.  If I have 20 or less interfaces configured then dhcpd starts up as
expected.  Dhcpd listens to the carp interface carp1:.  The startup command is
"/usr/sbin/dhcpd carp1".  If I have 20 interfaces the dhcpd finds the carp1
interface and it starts up.  If I add an interface so there is 21 interfaces
the dhcpd will not startup because it can not find carp1.  If I do ifconfig -a
it lists the interfaces in some kind of order.  It seems that it uses this
order and it can only see the first 20 in the list.  The carp interfaces are
always at the bottom of the list.

Thanks,
  Carl

Dhcpd:
I build this from source because I needed USE_SOCKETS enabled.  It's version
3.0.7.  It is running in using dhcp-failover between to servers.

# uname -a
OpenBSD xxx.xxx.xxx 4.1 GENERIC.MP#1152 amd64

# ifconfig -a
lo0: flags=8049 mtu 33192
groups: lo
inet 127.0.0.1 netmask 0xff00
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7
bge0: flags=8943 mtu 1500
lladdr 00:09:3d:11:99:02
groups: egress
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 65.44.125.14 netmask 0xff00 broadcast 65.44.125.255
inet6 fe80::209:3dff:fe11:9902%bge0 prefixlen 64 scopeid 0x1
bge1: flags=8943 mtu 1500
lladdr 00:09:3d:11:99:03
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 159.212.73.14 netmask 0xff80 broadcast 159.212.73.127
inet6 fe80::209:3dff:fe11:9903%bge1 prefixlen 64 scopeid 0x2
em0: flags=8843 mtu 1500
lladdr 00:04:23:ae:1a:14
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 192.168.63.56 netmask 0xff00 broadcast 192.168.63.255
inet6 fe80::204:23ff:feae:1a14%em0 prefixlen 64 scopeid 0x3
em1: flags=8802 mtu 1500
lladdr 00:04:23:ae:1a:15
media: Ethernet autoselect (none)
status: no carrier
pflog0: flags=141 mtu 33192
enc0: flags=0<> mtu 1536
pfsync0: flags=0<> mtu 1460
pfsync: syncdev: em0 syncpeer: 192.168.63.57 maxupd: 128
groups: carp pfsync
gre1: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 159.212.48.152
inet6 fe80::209:3dff:fe11:9902%gre1 ->  prefixlen 64 scopeid 0xb
inet 192.168.0.1 --> 192.168.1.1 netmask 0x
gre126: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 159.212.48.111
inet6 fe80::209:3dff:fe11:9902%gre126 ->  prefixlen 64 scopeid 0xc
inet 192.168.0.126 --> 192.168.1.126 netmask 0x
gre132: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.140.253.251
inet6 fe80::209:3dff:fe11:9902%gre132 ->  prefixlen 64 scopeid 0xf
inet 192.168.0.132 --> 192.168.1.132 netmask 0x
gre146: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 159.212.187.7
inet6 fe80::209:3dff:fe11:9902%gre146 ->  prefixlen 64 scopeid 0x10
inet 192.168.0.146 --> 192.168.1.146 netmask 0x
gre112: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.192.15.15
inet6 fe80::209:3dff:fe11:9902%gre112 ->  prefixlen 64 scopeid 0x11
inet 192.168.0.112 --> 192.168.1.112 netmask 0x
gre110: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.108.8.7
inet6 fe80::209:3dff:fe11:9902%gre110 ->  prefixlen 64 scopeid 0x12
inet 192.168.0.110 --> 192.168.1.110 netmask 0x
gre114: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.108.16.60
inet6 fe80::209:3dff:fe11:9902%gre114 ->  prefixlen 64 scopeid 0x13
inet 192.168.0.114 --> 192.168.1.114 netmask 0x
gre118: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.108.24.45
inet6 fe80::209:3dff:fe11:9902%gre118 ->  prefixlen 64 scopeid 0x14
inet 192.168.0.118 --> 192.168.1.118 netmask 0x
gre140: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.108.32.61
inet6 fe80::209:3dff:fe11:9902%gre140 ->  prefixlen 64 scopeid 0x15
inet 192.168.0.140 --> 192.168.1.140 netmask 0x
gre142: flags=b011 mtu 1476
groups: gre
physical address inet 159.212.73.16 --> 10.108.40.10
inet6 fe80::209:3dff:fe11:9902%gre142 ->  prefixlen 64 scopeid 0x16
inet 192.168.0.142 --> 192.168.1.142 netmask 0x
carp1: flags=8843 mtu 1500
lladdr 00:00:5e:00:01:01
carp: MASTER carpdev bge0 vhid 1 advbase 1 advskew 20
groups: carp
inet6 fe80::200:5eff:fe00:101%carp1 prefixlen 64 sc

Re: The correct way to use bsd.rd

[Nigel J. Taylor]

The RAMDISK_CD kernel bsd in
/usr/src/sys/arch/`machine`/compile/RAMDISK_CD is not the same as bsd.rd
as you have found out it has an empty ramdisk, it the initial stage, to
get a bsd.rd you need to build a release after building the userland.
Details for building a release are in the FAQ's and man pages.

Building the release will use the RAMDISK_CD to build the kernel in bsd,
reserving space for the ramdisk, and then the make release process adds
the ramdisk (miniroot) into this creating the bsd.rd. You will find what
the build release does under

/usr/src/distrib/ramdisk

The install / update shells are in

/usr/src/distrib/miniroot

The resulting bsd.rd created by the release is placed into
$DESTDIR/snapshot, and then into the release directory $RELEASEDIR.

The RAMDISK - is for the floppynn.fs, RAMDISKB, RAMDISKC for
floppynnB.fs, and floppynnC.fs.

It all works for building a release, but as pointed out never needed for
following current. I build a release so I have an install with all the
patches for stable, I can use on a number of machines which use stable,
rather than applying the patches on each.

If what your are asking is can you just build bsd.rd without building
the full release - possibly, maybe setting DESTDIR, RELEASEDIR and a
make in /usr/src/distrib/ramdisk might work, really your on your own if
your trying to do that.

Regards

Nigel Taylor


Jordi Beltran Creix wrote:
> I am NOT trying to boot my root partition using bsd.rd. Although I see
> that I can using the -a option. I was trying to get a bsd.rd image
> like the one from the CDs, with the Install Upgrade and Shell options.
> I followed the instructions from release(8) closely but the generated
> binary is the same - it tells me it tries to boot from the ramdisk
> device and that it has size 0 and reboots. I don't intend it to use as
> a way to upgrade, it is easier to download the newer snapshots, I was
> just testing the functionality. I am obviously missing something and
> this is why I asked.
> I've just downloaded the one from the snapshots and see it is
> RAMDISK_CD. Do I need to build the RAMDISK_CD kernel instead of
> RAMDISK and it will work?
> 
> Thank you
> 
> 2008/9/28 Stijn <[EMAIL PROTECTED]>:
>> Jordi Beltran Creix wrote:
>>> I am using a virtual machine to try and follow -CURRENT.I have
>>> installed a snapshot, downloaded the cvs source, built it and run to
>>> see if it worked, up to there everything is okay.
>>> Reading the FAQ I found out that the "official" way to follow current
>>> more or less closely is to build a ramdisk image(or download a bsd.rd
>>> image from the servers) and boot from that. However, when I place my
>>> newly generated image in / and boot from it, it tells me that it lacks
>>> a root filesystem. Obviously it is lacking a ramdisk, but I don't know
>>> where to get that from and I have been unable to find the appropriate
>>> manpage or piece of documentation. Could you please point it out to
>>> me?
>>> Thank you
>>>
>>>
>>>
>>>
>> From the FAQ:
>> http://openbsd.org/faq/faq4.html#bsd.rd
>>
>> bsd.rd is used to install, upgrade or doing system maintenance. It's not
>> used to boot of your machine for normal usage.
>>
>> HTH,
>> Stijn

Re: relayd http-https-redirects with sticky-address

[Stuart Henderson]

On 2008-09-29, Leon Dippenaar <[EMAIL PROTECTED]> wrote:
> I can relate to that, having load balancers fix"ing" backend services.
>
> If you have the time, you will probably find "pound reverse proxy" 
> http://www.apsis.ch/pound/ to be a nice alternative to try out in your lab.
> I have pound on openbsd for several years and can recommend it for http 
> -> https redirects, SSL termination and back-end load balancing with 
> health checks (not to mention the dynamic scaling ) and and weighted 
> priority between backend nodes.

relayd with PF handling the redirection is lower overhead for simple
load-balancing (no kernel/userland/kernel path for the packets), and
the SSL termination can be a lot smarter (e.g. presenting the backend
web server with the client's original IP address via transparent
proxying) thanks to the integration with the rest of the OS..

Re: esd + mpd

[Jacob Meuser]

On Sun, Sep 28, 2008 at 02:14:04AM -0400, Nick Guenther wrote:
> On Sat, Sep 27, 2008 at 7:37 PM, Nick Guenther <[EMAIL PROTECTED]> wrote:
> > On Wed, Oct 31, 2007 at 9:17 AM, Samuel Proulx <[EMAIL PROTECTED]> wrote:
> >> Hello,
> >>
> >> I have been using obsd as my primary desktop for a while now and i have a 
> >> question about the sound system , is there a way to play
> >> two sounds at the same time ? Example watching youtube videos with opera 
> >> and playing some music in the background with mpd or xmms .
> >> thank you for your time  ; )
> >>
> >>
> >
> >
> > Hey Samuel,
> >
> > Somehow I missed seeing this message of yours:
> > http://kerneltrap.org/mailarchive/openbsd-misc/2007/10/31/374006
> > that's disappointing to me because I relly want to get mpd to
> > route through esd, but if I change my config file from
> >
> > audio_output {
> >   type"ao"
> >   name"Libao Audio Device"
> > }
> >
> > to
> > audio_output {
> >type"ao"
> >driver "esd"
> >name"esd"
> > }
> >
> > I get `"esd" is not a valid ao driver at line 112`
> >
> > I also tried
> > $ cat /etc/libao.conf
> > default_driver=esd
> >
> > but it doesn't run esd. So did you get it working? And if so: how?
> >
> 
> I just noticed that there is a libao-esd package. I installed that and
> now mpd does indeed try to spawn an esd instance. However, there are
> problems:
> -since mpd seems to chroot itself into /var/empty it needs write
> access there to put a .esd_auth file (but /var/empty has to be 755
> root:wheel or sshd won't let me log in). I temporarily switched the
> permissions and then back; once it had created the .esd_auth file it
> ran fine until I rebooted.
> -even once esd is running, it doesn't allow other applications through
> it at the same time (thus negating the point of having a sound server)
> 
> Sooo I'm just wondering how you went about this.

$ head -5 /usr/local/share/examples/esound/esd.conf

-- 
[EMAIL PROTECTED]
SDF Public Access UNIX System - http://sdf.lonestar.org

Re: Bad MD5 on snapshot i386 install.iso

[Ted Unangst]

On Mon, Sep 29, 2008 at 12:36 PM, Giancarlo Razzolini
<[EMAIL PROTECTED]> wrote:
> Joe Gidi escreveu:
>> I've downloaded the 9/24/08 i386 install.iso from both rt.fm and
>> ftp3.usa.openbsd.org and got bad MD5s on both files.
>>
>> MD5 from both downloads was:
>> 53238ca6a3212db65dadd9bef1ef1f3d
>>
>> while the ftp MD5 file says it should be:
>> f87b839db833380f41f02bd7fffb2d27
>>
>> Haven't checked the master fanout site because I got repeated "too many
>> users" errors.
>>
>>
> tcpdump on your if and see if you're getting bad tcp checksum's. Most
> likely it's a problem with you network if, or switch, or router,
> corrupting  packets.

Most likely it's not.  The whole point of tcp checksums is to prevent
data corruption.  You don't think it's unusual that a locally
"corrupted" file download from two sources would have the same
checksum?

Re: relayd: does timeout-directive limits time for SSL-handshake?

[Reyk Floeter]

Hi!

On Sat, Sep 27, 2008 at 02:01:09AM +0200, Till Neudecker wrote:
> I have a pretty normal loadbalancing setup (2 relayd-loadbalancer, 2 backend
> hosts). The loadbalancer accepts ssl-encrypted sessions and forwards them
> unencrypted to the backend-hosts. Because all the hosts are on the same LAN
> I set the global timeout-directive to 200ms. 
> 

200ms is a really brave timeout even for host checks in a LAN.  I
almost always increase it in my configurations, but I think pyr@ liked
the really short timeout ;).  But we should probably bump up the
default to prevent failures in common configurations.

> When now connecting from a slow internet-connection to my service, I often
> receive a "SSL accept timeout". After changing the global timeout to 2000ms
> the problem disappears. The man-pages only says timeout limits the time for
> the checks of the backend-hosts but nothing about the SSL-handshake from
> clients. 
> 
> Can someone agree or disgree to my guess that timeout also limits the time
> for the SSL-handshake?
> 

Yes, this is right.  The global timeout is a "connection timeout"
which is used by the health checks but also by the initial
connect/accept of the relays in TCP and SSL mode.  This means that
this timeout will be used for the time to establish the stateful TCP
or SSL connection.  The established connection will switch to the
per-relay "session timeout" which defaults to 600s (10min) for idle
TCP/SSL sessions.

Thanks for your hint, I will think about adding another timeout and/or
improving the manpage here.

Reyk

Re: Intel Atom and D945GCLF2

[Louis V. Lambrecht]

Andres Genovez wrote:

2008/9/26 Steve B <[EMAIL PROTECTED]>

  

Is anyone running OpenBSD on one of these boards? The supported platform
page does not list either the chipset or the CPU so I'm guesing it is not
supported at this time.

Steve

Hi, I got an Acer One that is the same chipset, I will try on thursday to


install lastest snapshot.


--
Atentamente

Andris Genovez Tobar / Departamento Tecnico
COMERCIAL SALVADOR PACHECO MORA S.A. / DESDE 1945
SPM TECNOLOGIAS
Cuenca, Luis Cordero 9-70 y Gran Colombia
Av. 27 de Febrero y Jacinto Flores
Telifono. 593-7-2842388 ext 103
Fax. 593-7-2842388 ext 120
Celular 593-97670874
  593-96816996 Alegro
Mail: [EMAIL PROTECTED]
Viaje: [EMAIL PROTECTED]
www.cspmsa.com
www.crice.org


  

The Intel motherboard support page lists the Atom for Vista and WinXP only.
While other boards are or not listed to be compatible with other OSes.

I actually have two such boards, two different assemblies:
AA E270402-304 and ...-305.
The ...-305 installed 4.4/amd64 and ran it for a while (couple of days) 
till it hung.
On both systems, booting bsd.rd and installing 4.4/i386 seemed OK until 
reboot.

Old BIOS message: no valid system.
When using GRUB or GAG, systems boot until the mtrr message,
before detecting the mouse.

Sorry, no dmesg but tons of \M^?

I only got ArchLinux64 and WinXP working.
Not spending too much time on this as neither Intel, nor OpenBSD amd64
qualifies this system.

Re: Mac mini support

[Bryan Vyhmeister]

On Sep 29, 2008, at 1:25 PM, Dominik Meister wrote:


Sorry to interrupt this thread with this question, but ...

Tasmanian Devil [Mon, Sep 29, 2008 at 07:49:45PM +0200]:

- They need a resistor either in a dongle or build-in to make them
start without a monitor attached.



... do you (or anyone else) by any chance know if this also applies to
the Mac Minis with PowerPC CPU? I'm considering buying one as web and
mail server but this could be a bit disturbing.


I have two Mac mini G4's running OpenBSD at the moment and all they  
need is to put the DVI to VGA adapter that the machine comes with on  
the DVI port and everything works just fine.


Bryan

Re: Mac mini support

[Stuart Henderson]

On 2008-09-29, Dominik Meister <[EMAIL PROTECTED]> wrote:
>> - They need a resistor either in a dongle or build-in to make them
>> start without a monitor attached.
>>
>
> ... do you (or anyone else) by any chance know if this also applies to
> the Mac Minis with PowerPC CPU? I'm considering buying one as web and
> mail server but this could be a bit disturbing.

They do not.

Re: Hardware recommendation request

[Johan Ström]

On Sep 29, 2008, at 7:22 PM, bofh wrote:

On Sun, Sep 28, 2008 at 11:28 PM, nuffnough <[EMAIL PROTECTED]>  
wrote:



Can anyone recommend a mobo that does?

Or recommend dual port nics that I can use instead of my current  
intel

nics?



Intel dual and quad port nics work (though, there were some issues  
with the
latest ones, having to do with firmware switches or something).  Get  
pci-x

or better yet, pci-e, and you're done.  Unless you're doing something
extremely funky, any motherboard that works with openbsd will work.


Hm... I'm about to get two boxes with HPs NC364T (quad), using two  
Intel 82571EB controllers.

Any idea if these are among the ones with problems?
My quick googling didn't reveal too much, any pointers to what it was  
about?


Thanks

--
Johan

Re: Mac mini support

[Dominik Meister]

Bryan Vyhmeister [Mon, Sep 29, 2008 at 02:15:38PM -0700]:
> I have two Mac mini G4's running OpenBSD at the moment and all they
> need is to put the DVI to VGA adapter that the machine comes with on
> the DVI port and everything works just fine.

Thanks, Brian. I'm very glad to hear that.

br,
Dominik

--
Dominik Meister
My public GnuPG key is available at http://www.meisternet.ch/gpg.txt

[demime 1.01d removed an attachment of type application/pgp-signature]

Re: audio player

[Don Hiatt]

How about MythTV (http://www.mythtv.org/) along with MythMusic
(http://www.mythtv.org/wiki/index.php/MythMusic)? You'll need a
DAAP client if you want to share iTunes playlists. I haven't tried
MythTV in a while and I'm not sure how good its OpenBSD support is, but
it would make a fun project.

Cheers,

don



> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of Mark B.
> Sent: Sunday, September 28, 2008 9:25 AM
> To: misc@openbsd.org
> Subject: audio player
>
> Hi,
>
> I'm curious if anyone here has cobbled together a box that:
>
>   - plugs into ethernet
>
>   - plugs into stereo
>
>   - plays music on stereo from iTunes library on home subnet
>
>   - has gui that you can read from 15 feet away, allows you to
> navigate the iTunes library, and that you can control with an
> infrared remote (an old TV remote?)
>
> I've got an old Toshiba laptop with a IDE-to-CF drive, an IR port,
enough
> CPU and RAM, and a sound card that I hope is good enough.
>
> How hard would this be to pull together on OpenBSD?  Has anybody
> done something similar?
>
> Thanks,
>
> m
>
> P.S. Even more fun: uvideo + motion detection software, and control
the volume
> by swinging your arms.  ;)  Kids would love it until the speakers blew
out.

pf - queue filter directive sticky?

[(private) HKS]

If the following two rules apply to a given packet in the order shown,
will the packet be queued?

pass in on $int_if from 10.0.0.1 queue tens
pass in on $int_if

I've not been able to find a clear answer in pf.conf(5) or the online
PF documentation. If I overlooked it, please let me know. Thanks in
advance for the help.

-HKS

Space bag 7 na popustu - još samo 2 dana

[Top Shop]

Poštovani,

Ostalo je još samo 2 dana da po promotivnoj ceni obezbedite svoj komplet
Space Bag 7 vreća za vakumiranje garderobe i posteljine.

Ukoliko požurite Space Bag 7 možete poručiti uz uštedu od 400,00 RSD -
odnosno po ceni od 2.290,00 RSD koja je na snazi samo do 1. oktobra!

Iskoristite ovu super ponudu i poručite Space Bag 7 odmah - kliknite ovde!

Vaš,
E-Topshop

Ovu elektronsku poštu primate, ukoliko ste svojevoljno ostavili svoju
e-mail adresu, učestvovali u posebnim akcijama ili poklon igri na sajtu
www.e-topshop.tv

Ponuda data u ovom e-mailu važi isključivo za porudžbine upućene putem
Interneta ili broja telefona 021 489 26 60.

Ukoliko ne želite više da primate naše elektronske poruke, za
odjavljivanje sa naše e-mailing liste, kliknite ovde.

Studio Moderna d.o.o., Vojvode Stepe 30, 21000 Novi Sad, Tel: 021 489 26
60, Fax: 021 489 26 08, E-mail: [EMAIL PROTECTED]

[IMAGE]If you would no longer like to receive our emails please
unsubscribe by clicking here.

Re: Mac mini support

[Dominik Meister]

Sorry to interrupt this thread with this question, but ...

Tasmanian Devil [Mon, Sep 29, 2008 at 07:49:45PM +0200]:
> - They need a resistor either in a dongle or build-in to make them
> start without a monitor attached.
>

... do you (or anyone else) by any chance know if this also applies to
the Mac Minis with PowerPC CPU? I'm considering buying one as web and
mail server but this could be a bit disturbing.

Thanks,
Dominik

--
Dominik Meister
My public GnuPG key is available at http://www.meisternet.ch/gpg.txt

[demime 1.01d removed an attachment of type application/pgp-signature]

Re: Mac mini support

[Tasmanian Devil]

> I look for a quiet, small, energy saving and well cooled machine to
> make a webserver. I need i386 or amd64. I thought about an apple mac
> mini (i know...apple...). How the latest models (core 2 duo) are
> supported under openbsd (integrated nic, bsd.mp...) ?

Mac minis run OpenBSD just fine. Mine are running for two years
permanently now without any problems. Just a few things:

- Only one sensor under OpenBSD (CPU temperature), that's more than
enough though, as they only get too hot if the fan breaks, and the
sensor can detect that just fine
- You need a little tweak in /etc/rc.securelevel to make them start
automagically after a power failture:
http://marc.info/?l=openbsd-misc&m=120631459418290&w=2
- They need a resistor either in a dongle or build-in to make them
start without a monitor attached.

Otherwise, see yourself:

OpenBSD 4.4-current (GENERIC.MP) #879: Wed Sep 24 12:03:25 MDT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Genuine Intel(R) CPU 1400 @ 1.83GHz ("GenuineIntel" 686-class) 1.84 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,VMX,EST,TM2,xTPR
real mem  = 2114367488 (2016MB)
avail mem = 2035945472 (1941MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 07/29/05, SMBIOS rev. 2.4 @
0xe73f0 (39 entries)
bios0: vendor Apple Computer, Inc. version
"MM11.88Z.0055.B08.0610121326" date 10/12/06
bios0: Apple Computer, Inc. Macmini1,1
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP HPET APIC MCFG ASF! SBST ECDT SSDT SSDT SSDT
acpi0: wakeup devices PXS1(S4) PXS2(S4) USB1(S3) USB2(S3) USB3(S3)
USB4(S3) USB7(S3)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 166MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Genuine Intel(R) CPU 1400 @ 1.83GHz ("GenuineIntel" 686-class) 1.84 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,VMX,EST,TM2,xTPR
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
ioapic0: duplicate apic id, remapped to apid 2
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (RP01)
acpiprt2 at acpi0: bus 2 (RP02)
acpiprt3 at acpi0: bus 3 (PCIB)
acpiec0 at acpi0: Failed to register address space
acpicpu0 at acpi0: C3, C2
acpicpu1 at acpi0: C3, C2
acpibtn0 at acpi0: PWRB
acpivideo at acpi0 not configured
bios0: ROM list: 0xc/0xe600!
cpu0: unknown Enhanced SpeedStep CPU, msr 0x06130b2c06000b2c
cpu0: using only highest and lowest power states
cpu0: Enhanced SpeedStep 1833 MHz (1404 mV): speeds: 1833, 1000 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel 82945GM Host" rev 0x03
vga1 at pci0 dev 2 function 0 "Intel 82945GM Video" rev 0x03
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
agp0 at vga1: aperture at 0x8000, size 0x1000
vendor "Intel", unknown product 0x27a3 (class DASP subclass Time and
Frequency, rev 0x03) at pci0 dev 7 function 0 not configured
azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x02:
apic 2 int 22 (irq 11)
azalia0: codec[s]: Sigmatel STAC9221
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x02: apic 2
int 17 (irq 11)
pci1 at ppb0 bus 1
mskc0 at pci1 dev 0 function 0 "Marvell Yukon 88E8053" rev 0x22,
Yukon-2 EC rev. A3 (0x2): apic 2 int 16 (irq 11)
msk0 at mskc0 port A: address 00:16:cb:a7:46:69
eephy0 at msk0 phy 0: Marvell 88E Gigabit PHY, rev. 2
ppb1 at pci0 dev 28 function 1 "Intel 82801GB PCIE" rev 0x02: apic 2
int 16 (irq 10)
pci2 at ppb1 bus 2
ath0 at pci2 dev 0 function 0 "Atheros AR5424" rev 0x01: apic 2 int 17 (irq 11)
ath0: AR5424 10.3 phy 6.1 rf 10.2, WORAW, address 00:17:f2:4d:19:ee
uhci0 at pci0 dev 29 function 0 "Intel 82801GB USB" rev 0x02: apic 2
int 21 (irq 11)
uhci1 at pci0 dev 29 function 1 "Intel 82801GB USB" rev 0x02: apic 2
int 19 (irq 11)
uhci2 at pci0 dev 29 function 2 "Intel 82801GB USB" rev 0x02: apic 2
int 18 (irq 11)
uhci3 at pci0 dev 29 function 3 "Intel 82801GB USB" rev 0x02: apic 2
int 16 (irq 10)
ehci0 at pci0 dev 29 function 7 "Intel 82801GB USB" rev 0x02: apic 2
int 21 (irq 11)
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb2 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0xe2
pci3 at ppb2 bus 3
"AT&T/Lucent FW322 1394" rev 0x61 at pci3 dev 3 function 0 not configured
ichpcib0 at pci0 dev 31 function 0 "Intel 82801GBM LPC" rev 0x02: PM disabled
pciide0 at pci0 dev 31 function 1 "Intel 82801GB IDE" rev 0x02: DMA,
channel 0 configured to compatibility, channel 1 configured to
compatibility
atapiscsi0 at pciide0 channel 0 drive 0
scsibus0 at atapiscsi0: 2 targets, initiator 7
cd0 at scsibus0 targ 0 lun 0:  ATAPI
5/cdrom removable
cd0(

Re: relayd http-https-redirects with sticky-address

[Leon Dippenaar]

I can relate to that, having load balancers fix"ing" backend services.

If you have the time, you will probably find "pound reverse proxy" 
http://www.apsis.ch/pound/ to be a nice alternative to try out in your lab.
I have pound on openbsd for several years and can recommend it for http 
-> https redirects, SSL termination and back-end load balancing with 
health checks (not to mention the dynamic scaling ) and and weighted 
priority between backend nodes.


Check it out

Reyk Floeter wrote:

On Wed, Sep 17, 2008 at 10:19:11PM +0200, Michiel van Baak wrote:
  

redirect web {
listen on $ext_ip1 port 80:443
sticky-address
forward to  port http check script "/usr/local/sbin/chksrvs"
}

note that this will match any traffic in the 80 - 443 port range, make
sure that you add additional pf rules to filter any other ports except
80 and 443.  but it works with Source Tracking and should allow your
clients to move between http and https on the same server.  another
limitation is that it only runs checks on one of the ports.
  

ugh, this looks ugly ;)
Instead of going this route I would say: find the source of why the
visitor should access the same host, and solve that.




no, it is not ugly.  it is a reasonable solution for a very common
case.  you can easilly block other incoming connections with
restrictive pf rules.  but please face reality - not everyone is in
control of their backend web servers since it is VERY common that the
loadbalancers (networking group) are handled by a different group than
the backend webservers (servers group).  and it is also very common
that you run your fancy nice openbsd box in front of some other
"stuff".  indeed, it is very common for loadbalancers and firewalls to
"fix" arbitrary systems attached to the network.

  

We use relayd in front of 6 servers, doing http and https.
It doesn't matter what backend box the user go. Hell, they can even go
to another box on a reload.
This of course means we are storing sessions etc on shared storage (NFS
in our case, and the new sharedance port looks like an alternative for
that)




of course this is a better solution if you're in control of the
backend servers.  some people also use solutions like a clustered
database backend (eg. mysql), proprietary solutions like zend cache,
...

reyk

  

--

Michiel van Baak
[EMAIL PROTECTED]
http://michiel.vanbaak.eu
GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x71C946BD

"Why is it drug addicts and computer aficionados are both called users?"

Re: esd + mpd

[Nick Guenther]

On Sat, Sep 27, 2008 at 7:37 PM, Nick Guenther <[EMAIL PROTECTED]> wrote:
> On Wed, Oct 31, 2007 at 9:17 AM, Samuel Proulx <[EMAIL PROTECTED]> wrote:
>> Hello,
>>
>> I have been using obsd as my primary desktop for a while now and i have a 
>> question about the sound system , is there a way to play
>> two sounds at the same time ? Example watching youtube videos with opera and 
>> playing some music in the background with mpd or xmms .
>> thank you for your time  ; )
>>
>>
>
>
> Hey Samuel,
>
> Somehow I missed seeing this message of yours:
> http://kerneltrap.org/mailarchive/openbsd-misc/2007/10/31/374006
> that's disappointing to me because I relly want to get mpd to
> route through esd, but if I change my config file from
>
> audio_output {
>   type"ao"
>   name"Libao Audio Device"
> }
>
> to
> audio_output {
>type"ao"
>driver "esd"
>name"esd"
> }
>
> I get `"esd" is not a valid ao driver at line 112`
>
> I also tried
> $ cat /etc/libao.conf
> default_driver=esd
>
> but it doesn't run esd. So did you get it working? And if so: how?
>

I just noticed that there is a libao-esd package. I installed that and
now mpd does indeed try to spawn an esd instance. However, there are
problems:
-since mpd seems to chroot itself into /var/empty it needs write
access there to put a .esd_auth file (but /var/empty has to be 755
root:wheel or sshd won't let me log in). I temporarily switched the
permissions and then back; once it had created the .esd_auth file it
ran fine until I rebooted.
-even once esd is running, it doesn't allow other applications through
it at the same time (thus negating the point of having a sound server)

Sooo I'm just wondering how you went about this.

-Nick

Re: Bad MD5 on snapshot i386 install.iso

[Giancarlo Razzolini]

Joe Gidi escreveu:
> I've downloaded the 9/24/08 i386 install.iso from both rt.fm and
> ftp3.usa.openbsd.org and got bad MD5s on both files.
>
> MD5 from both downloads was:
> 53238ca6a3212db65dadd9bef1ef1f3d
>
> while the ftp MD5 file says it should be:
> f87b839db833380f41f02bd7fffb2d27
>
> Haven't checked the master fanout site because I got repeated "too many
> users" errors.
>
>   
tcpdump on your if and see if you're getting bad tcp checksum's. Most
likely it's a problem with you network if, or switch, or router,
corrupting  packets.

-- 
Giancarlo Razzolini
http://lock.razzolini.adm.br
Linux User 172199
Red Hat Certified Engineer no:804006389722501
Verify:https://www.redhat.com/certification/rhce/current/
Moleque Sem Conteudo Numero #002
OpenBSD Stable
Ubuntu 8.04 Hardy Heron
4386 2A6F FFD4 4D5F 5842  6EA0 7ABE BBAB 9C0E 6B85

Re: Hardware recommendation request

[bofh]

On Sun, Sep 28, 2008 at 11:28 PM, nuffnough <[EMAIL PROTECTED]> wrote:

> Can anyone recommend a mobo that does?
>
> Or recommend dual port nics that I can use instead of my current intel
> nics?
>

Intel dual and quad port nics work (though, there were some issues with the
latest ones, having to do with firmware switches or something).  Get pci-x
or better yet, pci-e, and you're done.  Unless you're doing something
extremely funky, any motherboard that works with openbsd will work.


-- 
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
"This officer's men seem to follow him merely out of idle curiosity."  --
Sandhurst officer cadet evaluation.
"Securing an environment of Windows platforms from abuse - external or
internal - is akin to trying to install sprinklers in a fireworks factory
where smoking on the job is permitted."  -- Gene Spafford
learn french:  http://www.youtube.com/watch?v=j1G-3laJJP0&feature=related

Re: : making man(1) to open a file

[Bryan Irvine]

>
> Another way is:
>
> $ man -f disklabel
> disklabel (5) - disk pack label
> disklabel (8) - read and write disk pack label
> disklabel, readdisklabel, writedisklabel, setdisklabel, 
> bounds_check_with_label (9) - disk label management routines
>
> $ man 8 disklabel
> :

The OP's question though was related to the fact that he had net-snmp
installed which results in 2 man pages for snmpd in the same section:

$ man -k snmpd
snmpd (8) - Simple Network Management Protocol Daemon
snmpd (8) - daemon to respond to SNMP request packets.


Man's default behavior is to stop at the first page it finds in the
path, which would be OpenBSD's snmpd.  man -a (among various other
posted methods) allows you to get access to the the rest of them.

-B

audio player

[Mark B.]

Hi,

I'm curious if anyone here has cobbled together a box that:

  - plugs into ethernet

  - plugs into stereo

  - plays music on stereo from iTunes library on home subnet

  - has gui that you can read from 15 feet away, allows you to
navigate the iTunes library, and that you can control with an
infrared remote (an old TV remote?)

I've got an old Toshiba laptop with a IDE-to-CF drive, an IR port, enough
CPU and RAM, and a sound card that I hope is good enough.

How hard would this be to pull together on OpenBSD?  Has anybody
done something similar?

Thanks,

m

P.S. Even more fun: uvideo + motion detection software, and control the volume
by swinging your arms.  ;)  Kids would love it until the speakers blew out.

Re: relayd: does timeout-directive limits time for SSL-handshake?

[Bryan Vyhmeister]

On Sep 26, 2008, at 5:01 PM, Till Neudecker wrote:

I have a pretty normal loadbalancing setup (2 relayd-loadbalancer, 2  
backend
hosts). The loadbalancer accepts ssl-encrypted sessions and forwards  
them
unencrypted to the backend-hosts. Because all the hosts are on the  
same LAN

I set the global timeout-directive to 200ms.

When now connecting from a slow internet-connection to my service, I  
often
receive a "SSL accept timeout". After changing the global timeout to  
2000ms
the problem disappears. The man-pages only says timeout limits the  
time for
the checks of the backend-hosts but nothing about the SSL-handshake  
from

clients.

Can someone agree or disgree to my guess that timeout also limits  
the time

for the SSL-handshake?


I have had this exact same experience this past week. I'm sure others  
can give you the specific details but my conclusion was that the  
timeout for relayd takes in the whole connection. This means that  
first the client connects to relayd which then does the SSL  
handshaking and so forth and then after this is successful relayd  
connects to the internal host. I think this process just takes too  
long when using SSL. I also made note that when I used relayd to add  
SSL to a service running on the same server as relayd, there were no  
issues.


Bryan

Re: The correct way to use bsd.rd

[Jan Stary]

On Sep 28 09:40:54, Jordi Beltran Creix wrote:
> I am NOT trying to boot my root partition using bsd.rd. Although I see
> that I can using the -a option. I was trying to get a bsd.rd image
> like the one from the CDs, with the Install Upgrade and Shell options.

Is still don't get it. You already have one in /bsd.rd on your machine.
If you want a newer one (for some reason), then you can "get" it from
ftp://ftp.openbsd.org/pub/OpenBSD/snapshots/i386/bsd.rd
Why do you need it? What do you want do do with it?

> I followed the instructions from release(8) closely but the generated
> binary is the same - it tells me it tries to boot from the ramdisk
> device and that it has size 0 and reboots. I don't intend it to use as
> a way to upgrade, it is easier to download the newer snapshots, I was
> just testing the functionality.

What functionality?

> I am obviously missing something and this is why I asked.

I am obviously missing any clue what you are trying to actually do.

> >> I am using a virtual machine to try and follow -CURRENT.I have
> >> installed a snapshot,
> >> downloaded the cvs source, built it and run to
> >> see if it worked, up to there everything is okay.

You do have -current then.

> > http://openbsd.org/faq/faq4.html#bsd.rd
> > bsd.rd is used to install, upgrade or doing system maintenance. It's not
> > used to boot of your machine for normal usage.

Jan

Adjusting PF dynamically in response to network congestion

[Lars Noodén]

What kind of recommendations are there for automatically polling network
capacity and adjusting PF's AltQ accordingly?

At work, MSFters have gotten into the routers and have even made a nest
in the cellar.  How much gopher gas is needed to clear out the nest and
what can be done to keep them from moving back in?  The space is about
40m^2 with standard ceilings and there seems to be about a half dozen.

Due to various managerial and technical problems on some of the networks
one of my labs must currently cross, throughput seems to vary between
2Kb/s and 4Mb/s.

A workaround, while figuring out how to deal with the nest, is to use
AltQ.  AltQ on PF works absolutely great so long as the limits placed by
AltQ match the actual network conditions.

However, I get poor performance if my cap is higher than what the other
networks can deal with.  And, obviously, if I throttle unnecessarily,
then that's not optimal either.

For example if the capacity is 3Mb/s then throttling at 3Mb/s seems to
give good performance.  But if the capacity is 2Mb/s, then throttling at
3Mb/s appears like it might be making slowness worse.

bw_ext="3Mb"# max external capacity
. . .
altq on $ext_if cbq bandwidth $bw_ext \
queue { main, ftp, ssh, sewage }
. . .

The nest seems to be interfering with regular ping and probably soon
with traceroute.  What are good ways to poll the network's capacity and
adjust PF?


Regards
-Lars

Re: Hardware recommendation request

[Leon Dippenaar]

I have successfully used the below Nic's on 4.3 and 4.4 -current setups 
(especially the 4 port version)


http://h18004.www1.hp.com/products/servers/networking/index-nic.html

They go well with the HP DL range in my experience.

Example the HP DL385 will give you 4 PCI express lanes i.e 16 
+2(onboard) 18 total 1000TX ports per firewall

Enjoy

nuffnough wrote:

Hi,

I read the thread that popped up a few months back, and the consensus
was to buy a Dell or buy a switch and make VLANs,  but neither of
these options are suitable for my requirements.

I presently have a pair of Intel Servers with 6 pci NICs plus one on
board running as a clustered firewall.   These are getting old, and I
want to replace them.  Only thing is,  I am finding it impossible to
find anyone who makes mobos with enough pci slots.

Can anyone recommend a mobo that does?

Or recommend dual port nics that I can use instead of my current intel nics?

I am happy with getting individual components and putting something
together,  just need to know what components.

TIA

nuffi

Re: The correct way to use bsd.rd

[jared r r spiegel]

On Sat, Sep 27, 2008 at 11:02:24PM +0900, Jordi Beltran Creix wrote:

> However, when I place my
> newly generated image in / and boot from it

  yeah, it's way easier to not generate them but just do

> Reading the FAQ I found out that the "official" way to follow current

> is to

> download a bsd.rd image from the servers and boot from that.

  yeah yeah ^^ that :) :)

  otherwise (b/c you didn't mention it), if you don't know about
  release(8), check it out.

  other than that, i don't recall having run into your issue and
  it's been a long time since doing make build, so i don't have
  anything more helpful :(

-- 

  jared

esd + mpd

[Nick Guenther]

On Wed, Oct 31, 2007 at 9:17 AM, Samuel Proulx <[EMAIL PROTECTED]> wrote:
> Hello,
>
> I have been using obsd as my primary desktop for a while now and i have a 
> question about the sound system , is there a way to play
> two sounds at the same time ? Example watching youtube videos with opera and 
> playing some music in the background with mpd or xmms .
> thank you for your time  ; )
>
>


Hey Samuel,

Somehow I missed seeing this message of yours:
http://kerneltrap.org/mailarchive/openbsd-misc/2007/10/31/374006
that's disappointing to me because I relly want to get mpd to
route through esd, but if I change my config file from

audio_output {
   type"ao"
   name"Libao Audio Device"
}

to
audio_output {
type"ao"
driver "esd"
name"esd"
}

I get `"esd" is not a valid ao driver at line 112`

I also tried
$ cat /etc/libao.conf
default_driver=esd

but it doesn't run esd. So did you get it working? And if so: how?

-Nick

Re: Asus WK500G

[Karl Sjodahl - dunceor]

On Mon, Sep 29, 2008 at 6:11 AM, Thor <[EMAIL PROTECTED]> wrote:
> Is my memory playing up or did I really see a message some time back about 
> somebody
> porting OpenBSD to one of the Asus or Linksys router platforms?
>
> Thankyou,
> Thor.
>
>

http://www.openbsd.org/papers/mips32-openbsd.pdf

Re: Hardware recommendation request

[Henning Brauer]

* nuffnough <[EMAIL PROTECTED]> [2008-09-29 19:06]:
> I presently have a pair of Intel Servers with 6 pci NICs plus one on
> board running as a clustered firewall.   These are getting old, and I
> want to replace them.  Only thing is,  I am finding it impossible to
> find anyone who makes mobos with enough pci slots.

supermicro has a 1U system that has 4 onboard GE and room for one
pci-e and one pci-x card, 4port cards fit. gives 12 GE in 1U.

-- 
Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg & Amsterdam

VIRUS (HTML.Phishing.Bank-573) in mail TO YOU from <[EMAIL PROTECTED]>

[Content-filter at ruby.drumlink.com]

VIRUS ALERT

Our content checker found
virus: HTML.Phishing.Bank-573

in an email to you from unknown sender:
  [EMAIL PROTECTED]
claiming to be: <[EMAIL PROTECTED]>

Our internal reference code for your message is 02191-06/W692Amy5yFef

First upstream SMTP client IP address: [71.170.119.34]
  static-71-170-119-34.dllstx.fios.verizon.net
According to a 'Received:' trace, the message originated at: [71.170.119.34],
  localhost.com (static-71-170-119-34.dllstx.fios.verizon.net [71.170.119.34])

Return-Path: <[EMAIL PROTECTED]>
Message-ID: <[EMAIL PROTECTED]>
Subject: Resolution Center (Your case ID for this reason is PP-023-525-002.)
The message has been quarantined as: virus-W692Amy5yFef

Please contact your system administrator for details.

Re: Dell SC440 hangs

[Steve Shockley]

On 9/27/2008 12:16 AM, Steve Shockley wrote:

I'm running -current from September 9 on a Dell SC440.  When I try to
do a bulk ports build using dpb, it runs for a couple of hours and
hangs. The console screen is blank and doesn't respond to keyboard,
but I can still ping the machine. If I try to ssh in, I get a
connection but no logon prompt.


Thanks for the replies, it looks like a newer snapshot solved the problem.

Re: : making man(1) to open a file

[Raimo Niskanen]

On Fri, Sep 26, 2008 at 11:59:49PM +0200, Frangois Chambaud wrote:
> Cezary Morga <[EMAIL PROTECTED]> writes:
> 
> > Dnia czwartek, 25 wrze6nia 2008, Bryan Irvine napisa3:
> > > > Next to the useful suggestions you've received so far, you can try
> > > >
> > > >groff -man -Tascii /path/to/manpage.X | less
> > >
> > > man -a is easier though.
> > >
> > > -B
> > 
> > -a Display all of the manual pages for a specified section and name
> > combination.  Normally, only the first manual page found is dis-
> > played.
> > 
> > You're sure that's the one?
> > 
> > --
> > Cezary Morga
> > "A real administrator is always logged in as root - it's CRAP
> > administrators that aren't!" (BOFH @theregister.co.uk)
> > 
> > 
> > 
> 
> If the PAGER variable is set to "less", you can examine the next manual
> page with ":n", the previous manual page with ":p" and the first manual
> page again with ":x".
> 
> Tested with "man -a disklabel":
> 
> /usr/share/man/cat8/disklabel.0 (file 1 of 3) (END) - Next: 
> /usr/share/man/cat5/disklabel.0
> /usr/share/man/cat5/disklabel.0 (file 2 of 3) (END) - Next: 
> /usr/share/man/cat9/disklabel.0
> /usr/share/man/cat9/disklabel.0 (file 3 of 3) (END)

Another way is:

$ man -f disklabel
disklabel (5) - disk pack label
disklabel (8) - read and write disk pack label
disklabel, readdisklabel, writedisklabel, setdisklabel, bounds_check_with_label 
(9) - disk label management routines

$ man 8 disklabel
:
:

> 
> $ uname -srm
> OpenBSD 4.3 i386
> 
> -- 
> Francois Chambaud
> http://www.chambaud.org

-- 

/ Raimo Niskanen, Erlang/OTP, Ericsson AB

Re: Hardware recommendation request

[jmc]

--- nuffnough [Mon, Sep 29, 2008 at 01:28:46PM +1000]: --- 
> Or recommend dual port nics that I can use instead of my current intel nics?

http://www.intel.com/products/server/adapters/pro1000mt-dualport/pro1000mt-dualport-overview.htm

Re: relayd http-https-redirects with sticky-address

[Reyk Floeter]

On Wed, Sep 17, 2008 at 10:19:11PM +0200, Michiel van Baak wrote:
> > redirect web {
> > listen on $ext_ip1 port 80:443
> > sticky-address
> > forward to  port http check script "/usr/local/sbin/chksrvs"
> > }
> > 
> > note that this will match any traffic in the 80 - 443 port range, make
> > sure that you add additional pf rules to filter any other ports except
> > 80 and 443.  but it works with Source Tracking and should allow your
> > clients to move between http and https on the same server.  another
> > limitation is that it only runs checks on one of the ports.
> 
> ugh, this looks ugly ;)
> Instead of going this route I would say: find the source of why the
> visitor should access the same host, and solve that.
> 

no, it is not ugly.  it is a reasonable solution for a very common
case.  you can easilly block other incoming connections with
restrictive pf rules.  but please face reality - not everyone is in
control of their backend web servers since it is VERY common that the
loadbalancers (networking group) are handled by a different group than
the backend webservers (servers group).  and it is also very common
that you run your fancy nice openbsd box in front of some other
"stuff".  indeed, it is very common for loadbalancers and firewalls to
"fix" arbitrary systems attached to the network.

> We use relayd in front of 6 servers, doing http and https.
> It doesn't matter what backend box the user go. Hell, they can even go
> to another box on a reload.
> This of course means we are storing sessions etc on shared storage (NFS
> in our case, and the new sharedance port looks like an alternative for
> that)
> 

of course this is a better solution if you're in control of the
backend servers.  some people also use solutions like a clustered
database backend (eg. mysql), proprietary solutions like zend cache,
...

reyk

> -- 
> 
> Michiel van Baak
> [EMAIL PROTECTED]
> http://michiel.vanbaak.eu
> GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x71C946BD
> 
> "Why is it drug addicts and computer aficionados are both called users?"

Re: The correct way to use bsd.rd

[Edd Barrett]

Hi,

On Sat, Sep 27, 2008 at 3:02 PM, Jordi Beltran Creix
<[EMAIL PROTECTED]> wrote:
> I am using a virtual machine to try and follow -CURRENT.I have
> installed a snapshot, downloaded the cvs source, built it and run to
> see if it worked, up to there everything is okay.
> Reading the FAQ I found out that the "official" way to follow current
> more or less closely is to build a ramdisk image(or download a bsd.rd
> image from the servers) and boot from that. However, when I place my
> newly generated image in / and boot from it, it tells me that it lacks
> a root filesystem. Obviously it is lacking a ramdisk, but I don't know
> where to get that from and I have been unable to find the appropriate
> manpage or piece of documentation. Could you please point it out to
> me?
> Thank you
>
>

If you just want to follow -current, you just install either a release
or a snapshots and then build the -current source. Thats it, you are
-current, you only need bsd.rd if thats your initial install method,
and you certainly dont need to make your own.

Also note that you can just use binary snapshots and not ever build
any source, *but* strictly speaking that is not -current, as extra
experimental patches go into snaps.

Hope this helps.


-- 

Best Regards

Edd

http://students.dec.bournemouth.ac.uk/ebarrett

notebooks y gps a precio gremio

[HS electronica]

NOTEBOOKS  A PRECIO DE GREMIO!! consulte stock.

TOSHIBA
A205-S5871 CD1.86, 2GB, 160GB, DVDRW, 15.4", 802.11, WEB, VHP U$S 990
A305D-S6848 TUR2.0, 3GB, 200GB, DVDRW, 15.4", 802.11, WEB, VHP U$S 1045
L305-S5884 C2D2.0, 3GB, 250GB, DVDRW, 15.4", WEB, 802.11, VHP U$S 1280
U305-S7449 C2D1.5, 2GB, 160GB, DVDRW, 13.3", WEB, 802.11, VHP U$S 1450

HP
HP COMPAQ 6710B C2D2.0, 1GB, 160GB, DVDRW, 15.4", 802.11, VHB, LINEA
BUSINESS U$S 1390
HP COMPAQ 6510B C2D2.0, 2GB, 120GB, DVDRW, 14.1", 802.11, VHB..LINEA
BUSINESS U$S 1600
HP COMPAQ NC4400 CD2.0, 512MB, 60GB, 12.1", 802.11, XP  LINEA BUSINESS
U$S 1050
DV2415NR, TUR1.8, 1GB, 160GB, DVDRW, 14.1", 802.11, WEB, VHP U$S 960
DV6839CL, C2D1.83, 4GB, 250GB, DVDRW, 15.4", 802.11, WEB,VHP U$S 1185

SONY VAIO
VGN N365E/B  CD 2.0, 1GB, 120GB, DVDRW, 15.4", 802.11, VHP U$S 920
VGN-SR129E/B  C2D 2.26, 2GB, 250GB, DVDRW, 13.3", BT, 802.11, WEB, VHP,
BLK U$S 2045

GPS
GARMIN NUVI 200 U$S 230
GARMIN NUVI 200W U$S 252

VARIOS  
MEMORIAS DIGITALES
PEN DRIVE KINGSTON 8GB U$S 35
MICRO SD KINGSTON 2GB C/ 2 ADAPTADORES U$S 16

* Las Notebooks vienen con Bolso de REGALO!  
* Las Notebooks vienen con Windows Vista Home Pro instalado de fabrica.

* Forma de pago: contado efectivo.
* Envios al interior del pais previo deposito bancario.
* Garantia 12 meses por defectos de fabrica.

Servicios adicionales:
*Adicion de memoria RAM consulte precio.
* Reemplazo de Sistema Operativo por WindowsXP consulte costo servicio
(solo cap y gbsas).

CONTACTO
ALEJANDRO // (011) 6091 9979 / (011) 4407 9465

o consulte via e-mail a:   [EMAIL PROTECTED]

=
Solicite darse de baja en el caso que no sea de su interes este mail.
Disculpe las molestias.

The correct way to use bsd.rd

[Jordi Beltran Creix]

I am NOT trying to boot my root partition using bsd.rd. Although I see
that I can using the -a option. I was trying to get a bsd.rd image
like the one from the CDs, with the Install Upgrade and Shell options.
I followed the instructions from release(8) closely but the generated
binary is the same - it tells me it tries to boot from the ramdisk
device and that it has size 0 and reboots. I don't intend it to use as
a way to upgrade, it is easier to download the newer snapshots, I was
just testing the functionality. I am obviously missing something and
this is why I asked.
I've just downloaded the one from the snapshots and see it is
RAMDISK_CD. Do I need to build the RAMDISK_CD kernel instead of
RAMDISK and it will work?

Thank you

2008/9/28 Stijn <[EMAIL PROTECTED]>:
> Jordi Beltran Creix wrote:
>>
>> I am using a virtual machine to try and follow -CURRENT.I have
>> installed a snapshot, downloaded the cvs source, built it and run to
>> see if it worked, up to there everything is okay.
>> Reading the FAQ I found out that the "official" way to follow current
>> more or less closely is to build a ramdisk image(or download a bsd.rd
>> image from the servers) and boot from that. However, when I place my
>> newly generated image in / and boot from it, it tells me that it lacks
>> a root filesystem. Obviously it is lacking a ramdisk, but I don't know
>> where to get that from and I have been unable to find the appropriate
>> manpage or piece of documentation. Could you please point it out to
>> me?
>> Thank you
>>
>>
>>
>>
>
> From the FAQ:
> http://openbsd.org/faq/faq4.html#bsd.rd
>
> bsd.rd is used to install, upgrade or doing system maintenance. It's not
> used to boot of your machine for normal usage.
>
> HTH,
> Stijn

Re: Intel Atom and D945GCLF2

[Andres Genovez]

2008/9/26 Steve B <[EMAIL PROTECTED]>

> Is anyone running OpenBSD on one of these boards? The supported platform
> page does not list either the chipset or the CPU so I'm guesing it is not
> supported at this time.
>
> Steve
>
> Hi, I got an Acer One that is the same chipset, I will try on thursday to
install lastest snapshot.


--
Atentamente

Andris Genovez Tobar / Departamento Tecnico
COMERCIAL SALVADOR PACHECO MORA S.A. / DESDE 1945
SPM TECNOLOGIAS
Cuenca, Luis Cordero 9-70 y Gran Colombia
Av. 27 de Febrero y Jacinto Flores
Telifono. 593-7-2842388 ext 103
Fax. 593-7-2842388 ext 120
Celular 593-97670874
  593-96816996 Alegro
Mail: [EMAIL PROTECTED]
Viaje: [EMAIL PROTECTED]
www.cspmsa.com
www.crice.org

Hardware recommendation request

[nuffnough]

Hi,

I read the thread that popped up a few months back, and the consensus
was to buy a Dell or buy a switch and make VLANs,  but neither of
these options are suitable for my requirements.

I presently have a pair of Intel Servers with 6 pci NICs plus one on
board running as a clustered firewall.   These are getting old, and I
want to replace them.  Only thing is,  I am finding it impossible to
find anyone who makes mobos with enough pci slots.

Can anyone recommend a mobo that does?

Or recommend dual port nics that I can use instead of my current intel nics?

I am happy with getting individual components and putting something
together,  just need to know what components.

TIA

nuffi

Mac mini support

[Cedric Brisseau]

Hi,

I look for a quiet, small, energy saving and well cooled machine to
make a webserver. I need i386 or amd64. I thought about an apple mac
mini (i know...apple...). How the latest models (core 2 duo) are
supported under openbsd (integrated nic, bsd.mp...) ?

Cheers,
Cedric

Perl script to copy perl into a chroot-environment, for example for apache

[Robert Urban]

Hi Folks,

I have written a Perl script to copy Perl + libs + dependencies into a
chroot-environment, for example /var/www.  It can be found at:

http://www.unix-wissen.de/chroot/

comments welcome.

cheers,

Robert Urban

FYI: Release of Atheros 802.11abg HAL under the ISC

[Justin Smith]

http://www.ussg.iu.edu/hypermail/linux/kernel/0809.3/1415.html

"As part of our commitment to help support all of our Atheros devices
under Linux we'd like to announce the release of our Atheros HAL for
our 802.11abg chipsets under the ISC license.

You can find it here:

http://www.kernel.org/pub/linux/kernel/people/mcgrof/legacy-hal.tar.bz2";

-- 
JS

Asus WK500G

[Thor]

Is my memory playing up or did I really see a message some time back about 
somebody 
porting OpenBSD to one of the Asus or Linksys router platforms?

Thankyou,
Thor.

Re: The correct way to use bsd.rd

[Josh Grosse]

On Sat, Sep 27, 2008 at 11:02:24PM +0900, Jordi Beltran Creix wrote:
> I am using a virtual machine to try and follow -CURRENT.I have
> installed a snapshot, downloaded the cvs source, built it and run to
> see if it worked, up to there everything is okay.
> Reading the FAQ I found out that the "official" way to follow current
> more or less closely is to build a ramdisk image(or download a bsd.rd
> image from the servers) and boot from that. 

I believe you have misread the FAQ.  The bsd.rd kernels are used for:

   initial binary installations
   binary upgrades
   rescue

If you are running -current, you have two choices:

   install (or upgrade to) a snapshot, and build -current from the source
   upgrade from snapshot to snapshot, never building -current yourself.

It appears you chose the first.  If you have built and installed your
kernel, booted it, then did a "make build" of userland, you are already
running -current.  

> However, when I place my
> newly generated image in / and boot from it, it tells me that it lacks
> a root filesystem...

I'm not sure *what* you are trying to do.  Perhaps you're trying to copy
your -current system to your production environment?  

Please forgive this level-set: 

To boot the OS requires boot blocks be installed, to get to a point where 
the bootloader is run and a kernel selected.  How you do that varies by 
architecture.  For i368/amd64, you need an MBR program installed, via 
fdisk(8) typically, and a PBR installed via installboot(8).  The PBR has 
the specific sectors where the bootloader program (/usr/mdec/boot, usually
copied into /boot) is stored.

When the kernel is booted, it will look for a root partition.  By default, 
it will look in the disklabel for the "a" partition. You can override this
with "boot -a".  If the kernel cannot find (or be directed to) a root parition,
the boot will fail.

As I stated above, if you have built the kernel and userland (and optionally,
xenocara) from the -current sources, you are running -current.  *IF* you
wish to copy this OS to another platform, you must build a release and do
a binary install or binary upgrade.  Instructions for making releases are
in FAQ 5 and, for additional detail, in the release(8) man page.

macppc xv output pbm

[Antoine Jacoutot]

<<< No Message Collected >>>

Bad MD5 on snapshot i386 install.iso

[Joe Gidi]

I've downloaded the 9/24/08 i386 install.iso from both rt.fm and
ftp3.usa.openbsd.org and got bad MD5s on both files.

MD5 from both downloads was:
53238ca6a3212db65dadd9bef1ef1f3d

while the ftp MD5 file says it should be:
f87b839db833380f41f02bd7fffb2d27

Haven't checked the master fanout site because I got repeated "too many
users" errors.

-- 
Joe Gidi
[EMAIL PROTECTED]