Re: RES: Migration from IPTABLES to PF
I think,that in case of pf is good start point this site http://home.nuug.no/~peter/pf/ and then FAQ parts 2009/5/5 William Chivers : > Hello Ricardo, > > This is not a beginners' mailing list, people here expect questions to > 1. be very specific, and > 2. demonstrate that you have spent a lot of time trying to solve the problem yourself, reading the documentation etc. > > Start with http://www.openbsd.org/faq/pf/index.html > If you still need help, there are several books on pf, for example "The Book of PF" (http://nostarch.com/pf.htm). > > Look back through the misc mailing list to see how specific questions about pf are. When you have a specific question, the best help available is right here. > > Bill > > - > William J. Chivers > Lecturer in Information Technology > School of DCIT > Faculty of Science and Information Technology > University of Newcastle---Ourimbah Campus > PO Box 127, Ourimbah, NSW 2259 > Australia > CRICOS Provider Number: 00109J > > phone: B +61 2 4349 4473 > fax: B B +61 2 4349 4565 > email: B william.chiv...@newcastle.edu.au > - Ricardo Augusto de Souza 05/06/09 5:08 AM >>> > Thanks for this 'polite' reply. > As I Said i spent some years away from Unix/Linux world, > I worked with business intelligence this years. > Now i AM back to network administration and B i got this Project to B do. > I used openbsd before version 3. I do like B it. > > This is my current senario. > - B 2 firewalls with 2 carp+pfsync that B Will handle 2 internet connections, B 1 > mpls connection, 1 lan to handle around 60 bus company that transport 2 > million users per Day, each user has your own myfair card. Each bus has a > system that store this data in a file. This files Will be imported to Oracle > later. After this import, there are a lot of specific applications that uses > this informations. > - behind this 2 firewalls B we have around 30 servers: ( most Windows) iis, > file transfer servers,ws, and some other servers like some red hat enterprise > running Oracle 10g. > - at the beginning the firewalls Will do Nat B + filter B + gateway + mpd5+squid > ( the fucking operators Who need Access to the Windows servers were surfing on > web from there. ) > - our applications has around 5,000 users per Day, but we have a lot of web > services and some etl process ( i dont have statistics about volume yet) > > So that B is it. > > > -Mensagem original- > De: William Chivers [mailto:william.chiv...@newcastle.edu.au] > Enviada em: segunda-feira, 4 de maio de 2009 22:46 > Para: Ricardo Augusto de Souza; misc@openbsd.org > Assunto: Re: Migration from IPTABLES to PF > > This is a great advertisement for OpenBSD, PF, and keeping things simple in > general, mind if I use it Ricardo? > > As for your original question, I wouldn't even try to convert your iptables, > especially using some magic tool to do it. Decide what you want your firewall > to do and start from scratch with PF. That way you will know it is working and > you will be able to maintain it reliably. > > Cheers, Bill > > > - > William J. Chivers > Lecturer in Information Technology > School of DCIT > Faculty of Science and Information Technology > University of Newcastle---Ourimbah Campus > PO Box 127, Ourimbah, NSW 2259 > Australia > CRICOS Provider Number: 00109J > > phone: B +61 2 4349 4473 > fax: B B +61 2 4349 4565 > email: B william.chiv...@newcastle.edu.au > - Ricardo Augusto de Souza 05/05/09 3:17 AM > Hi, > > I have a firewall running on a Fedora Core 4 (STentz) with iptables. The Guy > Who installed it left our company some months ago. > I spent some years far from iptables, now i have to migrate this firewall to > PF. > THere are some 'special' features on this firewall, B i need some > documentation > or help about implementing this features at new firewall ( PF ). > > This is the iptables scripts: > > #!/bin/bash > FW=/sbin/iptables > LOAD=/sbin/modprobe > #__ > > # Carregando Modulo do IPTABLES > . /etc/rc.d/init.d/prodata/fw_modulos > > # Carregando Variaveis > . /etc/rc.d/init.d/prodata/fw_variaveis > > if [ $KERNEL = "sim" ] > B then . /etc/rc.d/init.d/prodata/fw_kernel > fi > > #___ > # Cria politicas de LOGs > #___ > > if [ $LOGS = "sim" ] > B then . /etc/rc.d/init.d/prodata/fw_politicas > fi > > Normal rules here > EOF > > > > /etc/rc.d/init.d/prodata/fw_modulos > #$LOAD nfnetlink > > $LOAD ip_conntrack > $LOAD ip_conntrack_ftp > #$LOAD ip_conntrack_pptp ## > #$LOAD ip_conntrack_netlink ## > #$LOAD ip_conntrack_tftp ## > > #$LOAD ip_nat > $LOA
Re: [dera...@cvs.openbsd.org: Re: I would like to send this to misc@ and security-announce@, from me.]
2009/5/5 Mischa Diehm : > On Mon, May 04, 2009 at 01:38:16PM -0600, Bob Beck wrote: >> Look dude, that ftp site made something available before any of the >> second level mirrors were even opened up to other sites to retreive >> it. Deliberate action was taken to release something early without >> mirroring it from a credible source. Judging by the contents, not all >> of it was exactly 4.5. This is cause for concern to anyone using the >> mirror. > > How many unofficial ftp servers are there on this dangerous > internet which are or might or could be having wrong packages? This is > what ftp.html is all about right? Why is there a list of official > mirrors anyway? This was a special case though, since kd85.com was previously listed as hosting a second level mirror. Surely it deserves special mention, since so many people would have developed a lot of trust in that mirror.
A new toy for programmers who uses VIM on OpenBSD
Hi guys, I wrote a toy which builds communications between VIM and debuggers. The tool's main function is tracing the instruction pointer in VIM while we debugging the program. That should be similar to Emacs's Gud, I suppose. :) Here it is: http://lrc.sf.net/bride-0.1.1.tar.gz And some screen shots: http://lrc.sf.net/shot1.jpg http://lrc.sf.net/shot2.jpg "make && make install" will do all the jobs for you. For more info, see ":h Bride" in VIM. As the development just begins, it currently only supports two debuggers: 'gdb' and 'pdb' (python's debugger), and was only tested on OpenBSD. Any comments are appreciated. I'm not on misc@, please Cc me, thanks. -- Dasn
Re: Installboot to usb drive?
L. V. Lammert wrote: > Trying to build a replacement HD, I did an installboot to the drive when > it was connected via USB adapter. > > That DNW, however, .. but I'm not sure if was an issue installing to a > USAB drive or something lse happened. > >> Is there any issue with changing the drive ID after running installboot > (i.e. sd0 -> hd0)? nope. You aren't doing that, anyway. "hd0" is the first bootable HD, according to the BIOS. "sd0" is the first scsi-like HD according to hardware connection. You are (probably) changing from sd0 to wd0, but that only messes up your /etc/fstab file. >> If not, any suggestions as to what might have choked? I mounted the new > HD on a USB adapter, then did installboot from the *old* system to the > new drive on sd0, then failed when booting the new drive in another > system. let's see your command line...and the what happens... The error message will tell us lots about what happened and what didn't happen. Usual error is to forget that "boot" specified on the installboot command line is not the one in the installboot directory or your current root partition, but rather the /boot that exists on the root partition of the target drive (i.e., the "boot" you WILL use, not the one that you already used). Nick.
iwi(Intel pro/wireless 2200BG wireless nic) on asus A6 laptop
Hello, This is my first post, so forgive me if I inadvertently commit a "gaffe". I am looking for advice regarding the setting-up of my wireless network card with wpa. I have installed the current release OpenBSD 4.5 on my asus A6 laptop. So far as I can tell, everything works perfectly except for the Intel pro/wireless 2200BG wireless nic (driver iwi, device iwi0) that I have been unable to put to work. As per man page instructions, I have installed into "/etc/firmware" the files from "iwi-firmware-3.0p0.tgz". I have created the "/etc/hostname.iwi0" file with contents: dhcp NONE NONE NONE nwid my_essid wpa \ wpapsk $(wpa-psk my_essid my_passphrase) At boot-time, when comes the time to initialize the network, the following message is printed: iwi0: no link . sleeping I have also tried to activate the card with the instruction: ifconfig iwi0 -bssid chan 6 nwid WirelessFromTVCabo\ -nwkey txpower 20 wpa wpaakms psk wpagroupcipher ccmp\ wpaprotos wpa2 wpapsk $(wpa-psk my_essid my_passphrase) dhclient iwi0 with the same results. The previous commands closely reproduce the setup on a debian installed on another partition. The output of "dmesg" is: OpenBSD 4.5 (GENERIC) #1749: Sat Feb 28 14:51:18 MST 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) M processor 1.60GHz ("GenuineIntel" 686-class) 1.61 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI, MMX,FXSR,SSE,SSE2,SS,TM,SBF,EST,TM2 real mem = 535654400 (510MB) avail mem = 509669376 (486MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 03/17/05, SMBIOS rev. 2.3 @ 0xf5b40 (35 entries) bios0: vendor American Megatrends Inc. version "0204" date 03/17/2005 bios0: ASUSTeK Computer Inc. A6G apm0 at bios0: Power Management spec V1.2 apm0: AC on, no battery acpi at bios0 function 0x0 not configured pcibios at bios0 function 0x1a not configured bios0: ROM list: 0xc/0x1 cpu0 at mainbus0: (uniprocessor) cpu0: Enhanced SpeedStep 1600 MHz (1340 mV): speeds: 1600, 1400, 1200, 1000, 800, 600 MHz pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 "Intel 82855GM Host" rev 0x02 intelagp0 at pchb0 agp0 at intelagp0: aperture at 0xe000, size 0xc40 "Intel 82855GM Memory" rev 0x02 at pci0 dev 0 function 1 not configured "Intel 82855GM Config" rev 0x02 at pci0 dev 0 function 3 not configured ppb0 at pci0 dev 1 function 0 "Intel 82855GME AGP" rev 0x02 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "ATI Radeon Mobility M10" rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1: irq 5 drm0 at radeondrm0 uhci0 at pci0 dev 29 function 0 "Intel 82801DB USB" rev 0x03: irq 5 uhci1 at pci0 dev 29 function 1 "Intel 82801DB USB" rev 0x03: irq 5 uhci2 at pci0 dev 29 function 2 "Intel 82801DB USB" rev 0x03: irq 5 ehci0 at pci0 dev 29 function 7 "Intel 82801DB USB" rev 0x03: irq 4 ehci0: timed out waiting for BIOS usb0 at ehci0: USB revision 2.0 uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 ppb1 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0x83 pci2 at ppb1 bus 2 rl0 at pci2 dev 0 function 0 "Realtek 8139" rev 0x10: irq 5, address 00:11:d8:bf:2b:3d rlphy0 at rl0 phy 0: RTL internal PHY iwi0 at pci2 dev 4 function 0 "Intel PRO/Wireless 2200BG" rev 0x05: irq 5, address 00:12:f0:3c:7e:1b cbb0 at pci2 dev 5 function 0 "Ricoh 5C476 CardBus" rev 0xac: couldn't map interrupt cbb1 at pci2 dev 5 function 1 "Ricoh 5C476 CardBus" rev 0xac: couldn't map interrupt "Ricoh 5C552 Firewire" rev 0x04 at pci2 dev 5 function 2 not configured ichpcib0 at pci0 dev 31 function 0 "Intel 82801DBM LPC" rev 0x03: 24-bit timer at 3579545Hz pciide0 at pci0 dev 31 function 1 "Intel 82801DBM IDE" rev 0x03: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: wd0: 16-sector PIO, LBA48, 57231MB, 117210240 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: ATAPI 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 auich0 at pci0 dev 31 function 5 "Intel 82801DB AC97" rev 0x03"Intel 82801DB Modem" rev 0x03 at pci0 dev 31 function 6 not configured usb1 at uhci0: USB revision 1.0 uhub1 at usb1 "Intel UHCI root hub" rev 1.00/1.00 addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2 "Intel UHCI root hub" rev 1.00/1.00 addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3 "Intel UHCI root hub" rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 com1 at isa0 port 0x2f8/8 ir
fjnews02-2009
FUNJET ASSOCIAZIONE SPORTIVA FUNJET www.funjet.it i...@funjet.it FJNEWS 02/2009 Fano : esordio Funjet a "4 Stelle", grande risultato per i piloti del Team Funjet che conquistano ben 4 vittorie e 4 seconde posizioni. Vincono: Giogio Viscione nella categoria Runabout Stock 2T, Michele Napoli nella categoria Ski Stock, Valerio Calderoni nel Freestyle Pro e Gimmi Volta nel Freestyle Expert, secondo gradino del podio per Mirco Iattarelli nella Ski Stok, Fabio Dalmasso nella Ski Promo 2T, Alessio Schintu nella Runabout Stock 2T e Alfredo Massacesi nel Freestyle Expert. Ottime posizioni anche per Marco Trevisan 30 nella categoria Ski Promo 2T e Mirko Innocenzi 40 posizione nella Ski Stock. Due stupende giornate di sole primaverile a Fano ed un pubblico numeroso sono state la cornice ideale per la prima tappa del Campionato Italiano Moto D'Acqua Circuito e Freestyle 2009 che si h aperta con un grande numero di piloti, che hanno dato vita a gare spettacolari e molto conbattute. Funjet si conferma in questa prima uscita del 2009 il Team piy numeroso e vincente. Il prossimo appuntamento con il C.I. Circuito sar` il 16/17 Maggio a Rimini. michele_mirco_mirko_podio valerio_podio gimmi_alfredo_podio giorgio_alessio_podio funfacebook Continuate a seguirci su www.funjet.it ..news anticipazioni risultati agonistici gossip e la FUNJET TV funtube...e www.motodacqua.eu dove h possibile trovare e scaricare le foto di tutte le gare e gli show di Moto d'Acqua. Le news di Funjet.it.Notizie e info dal mondo delle moto d'acqua.Questa news letter viene spedita a circa 15000 mail ai piloti, gli sponsor, testate giornalistiche, aziende del settore, partners, uffici marketing, agenzie pubblicitarie, uffici stampa, televisioni e radio. Le informazioni contenute nella presente comunicazione e relativi allegati possono essere copiati e ritrasmessi con qualsiasi mezzo di comunicazione purchi venga sempre citata la fonte. Per particolari esigenze e o collaborazioni contattare la redazione.
Re: internal vs. external microphone: very different signal levels
On Tue, May 05, 2009 at 09:17:52PM +0200, Jan Stary wrote: > On Apr 25 22:23:21, Jacob Meuser wrote: > > On Sat, Apr 25, 2009 at 01:15:33PM +0200, Jan Stary wrote: > > > Hi all, > > > > > > I am doing some trivial sound-recording on my Compaq Armada 110 laptop > > > (dmesg and mixerctl below). The sound device is > > > > > > auvia0 at pci0 dev 7 function 5 "VIA VT82C686 AC97" rev 0x20: irq 9 > > > audio0 at auvia0 > > > > for ac97 devices, the codec is also very important. although the > > AD1881A looks pretty standard. no jack sense or anything. > > > > > and it works without problems. > > > > > > Now, the laptop has an internal microphone - that tiny little hole > > > you have seen on some laptops. It records fine, set up as > > > > > > inputs.mic=255 > > > inputs.mic.mute=off > > > inputs.mic.preamp=on > > > inputs.mic.source=mic0 > > > record.source=mic > > > > > > The laptop also has an input for an external mike (the usual small jack, > > > just next to the headphones output). When you plug in an external mike, > > > the audio chip is smart enough to record from that one, and no longer > > > record from the internal mike. (I use Shure SM57 as the external mike, > > > which I believe is irrelevant.) Recording with the external mike plugged > > > in works fine too, EXCEPT the signal level from the external mike is > > > much weaker, and I wonder why. > > > > maybe there is a separate preamp on the internal mic pin? > > Well, both mikes do respond to setting > > inputs.mic.preamp=off/on > > so I suppose either each has its own preamp, > or there is just one mic preamp, pre-amping > the one mike (int/ext) that is currently in use. yes, there is one preamp on the mic pin in the codec. but, there could be *external to the codec* preamp circuitry between the built-in mic and the codec. the codec's datasheet explains how to do this. > > > Can it be that the (one) audio input the laptop has is meant as an > > > "universal" audio input for both mic and line-in, expecting a much > > > stronger signal? > > > > maybe ... what does inputs.line* affect? > > nothing, in neither case (int/ext). > > > or record.source=line? > > silence; only record.source=mic records something. then probably it's just a mic input, and the line-in pin is unconnected. > > > For the internal mike, having > > > > > > inputs.mic.preamp=off/on > > > > > > makes a difference of recording just fine vs. recording a dog barking > > > two blocks away. With the external mike, it makes a difference of > > > barely audible recording vs. fine recording. With headphones on, > > > you can hear the signal strength drop when you plug in the external > > > mike. > > > > does changing inputs.mic.source have any effect? > > inputs.mic.source=mic0 is set by default and behaves as described. > inputs.mic.source=mic1 is accepted and results in silence being recorded. then there is probably jack sense circuitry (again, external to the codec), that switches which mic is connected to the mic pin on the codec. inputs.mic.source can be used for this purpose, if the vendor connects the mics to the two mic pins instead of handling it themselves. > inputs.mic.source=line or line0 or line1 says 'bad enum value'. well, yeah. they are not valid choices for any ac97 device. -- jake...@sdf.lonestar.org SDF Public Access UNIX System - http://sdf.lonestar.org
Re: RES: Migration from IPTABLES to PF
Hello Ricardo, This is not a beginners' mailing list, people here expect questions to 1. be very specific, and 2. demonstrate that you have spent a lot of time trying to solve the problem yourself, reading the documentation etc. Start with http://www.openbsd.org/faq/pf/index.html If you still need help, there are several books on pf, for example "The Book of PF" (http://nostarch.com/pf.htm). Look back through the misc mailing list to see how specific questions about pf are. When you have a specific question, the best help available is right here. Bill - William J. Chivers Lecturer in Information Technology School of DCIT Faculty of Science and Information Technology University of Newcastle---Ourimbah Campus PO Box 127, Ourimbah, NSW 2259 Australia CRICOS Provider Number: 00109J phone: +61 2 4349 4473 fax: +61 2 4349 4565 email: william.chiv...@newcastle.edu.au - >>> Ricardo Augusto de Souza 05/06/09 5:08 AM >>> Thanks for this 'polite' reply. As I Said i spent some years away from Unix/Linux world, I worked with business intelligence this years. Now i AM back to network administration and i got this Project to do. I used openbsd before version 3. I do like it. This is my current senario. - 2 firewalls with 2 carp+pfsync that Will handle 2 internet connections, 1 mpls connection, 1 lan to handle around 60 bus company that transport 2 million users per Day, each user has your own myfair card. Each bus has a system that store this data in a file. This files Will be imported to Oracle later. After this import, there are a lot of specific applications that uses this informations. - behind this 2 firewalls we have around 30 servers: ( most Windows) iis, file transfer servers,ws, and some other servers like some red hat enterprise running Oracle 10g. - at the beginning the firewalls Will do Nat + filter + gateway + mpd5+squid ( the fucking operators Who need Access to the Windows servers were surfing on web from there. ) - our applications has around 5,000 users per Day, but we have a lot of web services and some etl process ( i dont have statistics about volume yet) So that is it. -Mensagem original- De: William Chivers [mailto:william.chiv...@newcastle.edu.au] Enviada em: segunda-feira, 4 de maio de 2009 22:46 Para: Ricardo Augusto de Souza; misc@openbsd.org Assunto: Re: Migration from IPTABLES to PF This is a great advertisement for OpenBSD, PF, and keeping things simple in general, mind if I use it Ricardo? As for your original question, I wouldn't even try to convert your iptables, especially using some magic tool to do it. Decide what you want your firewall to do and start from scratch with PF. That way you will know it is working and you will be able to maintain it reliably. Cheers, Bill - William J. Chivers Lecturer in Information Technology School of DCIT Faculty of Science and Information Technology University of Newcastle---Ourimbah Campus PO Box 127, Ourimbah, NSW 2259 Australia CRICOS Provider Number: 00109J phone: +61 2 4349 4473 fax: +61 2 4349 4565 email: william.chiv...@newcastle.edu.au - >>> Ricardo Augusto de Souza 05/05/09 3:17 AM >>> Hi, I have a firewall running on a Fedora Core 4 (STentz) with iptables. The Guy Who installed it left our company some months ago. I spent some years far from iptables, now i have to migrate this firewall to PF. THere are some 'special' features on this firewall, i need some documentation or help about implementing this features at new firewall ( PF ). This is the iptables scripts: #!/bin/bash FW=/sbin/iptables LOAD=/sbin/modprobe #__ # Carregando Modulo do IPTABLES . /etc/rc.d/init.d/prodata/fw_modulos # Carregando Variaveis . /etc/rc.d/init.d/prodata/fw_variaveis if [ $KERNEL = "sim" ] then . /etc/rc.d/init.d/prodata/fw_kernel fi #___ # Cria politicas de LOGs #___ if [ $LOGS = "sim" ] then . /etc/rc.d/init.d/prodata/fw_politicas fi Normal rules here EOF /etc/rc.d/init.d/prodata/fw_modulos #$LOAD nfnetlink $LOAD ip_conntrack $LOAD ip_conntrack_ftp #$LOAD ip_conntrack_pptp ## #$LOAD ip_conntrack_netlink ## #$LOAD ip_conntrack_tftp ## #$LOAD ip_nat $LOAD ip_nat_ftp $LOAD ip_gre #$LOAD ip_nat_pptp ## #$LOAD ip_nat_tftp ## $LOAD ip_queue ## $LOAD ip_tables $LOAD iptable_filter $LOAD iptable_nat $LOAD iptable_mangle $LOAD ipt_helper $LOAD ipt_LOG $LOAD ipt_limit $LOAD ipt_state #$LOAD ipt_layer7 ## $LOAD ipt_MASQUERADE $LOAD ipt_multiport #$LOAD ipt_string $LOAD ipt_tcpmss $LOAD ipt_TCPMSS
Installboot to usb drive?
Trying to build a replacement HD, I did an installboot to the drive when it was connected via USB adapter. That DNW, however, .. but I'm not sure if was an issue installing to a USAB drive or something lse happened. > Is there any issue with changing the drive ID after running installboot (i.e. sd0 -> hd0)? > If not, any suggestions as to what might have choked? I mounted the new HD on a USB adapter, then did installboot from the *old* system to the new drive on sd0, then failed when booting the new drive in another system. Lee
Re: configure: error: must build tcl with --enable-threads on openbsd 4.5 (i386)
On Tue, May 05, 2009 at 12:22:52PM -0700, Robert Gilaard wrote: > I installed OpenBSD 4.5 yesterday and installed the package tcl-8.5.6. > > Based > on http://www.openbsd.org/4.4_packages/i386/tcl-8.5.2p1.tgz-long.html I > concluded that the tcl package on OpenBSD was built with threads > support. No. There's only the non-threaded tcl available on FTP (I don't know wether there's a good reaon for it). > However, when I try to compile aolserver, the configure script exits with the > following error: > configure: error: must build tcl with --enable-threads > > It looks like it wasn't built with threads support. > > What am I doing wrong here? You need the threaded flavor of tcl, and since there's no package availabel, you've to build it yourself: $ cd /usr/ports/lang/tcl/8.5 $ FLAVOR=threaded make install Ciao, Kili
configure: error: must build tcl with --enable-threads on openbsd 4.5 (i386)
Hi mr Stuart Cassoff, I installed OpenBSD 4.5 yesterday and installed the package tcl-8.5.6. Based on http://www.openbsd.org/4.4_packages/i386/tcl-8.5.2p1.tgz-long.html I concluded that the tcl package on OpenBSD was built with threads support. However, when I try to compile aolserver, the configure script exits with the following error: configure: error: must build tcl with --enable-threads It looks like it wasn't built with threads support. What am I doing wrong here? Brgds Robert
Re: internal vs. external microphone: very different signal levels
On Apr 25 22:23:21, Jacob Meuser wrote: > On Sat, Apr 25, 2009 at 01:15:33PM +0200, Jan Stary wrote: > > Hi all, > > > > I am doing some trivial sound-recording on my Compaq Armada 110 laptop > > (dmesg and mixerctl below). The sound device is > > > > auvia0 at pci0 dev 7 function 5 "VIA VT82C686 AC97" rev 0x20: irq 9 > > audio0 at auvia0 > > for ac97 devices, the codec is also very important. although the > AD1881A looks pretty standard. no jack sense or anything. > > > and it works without problems. > > > > Now, the laptop has an internal microphone - that tiny little hole > > you have seen on some laptops. It records fine, set up as > > > > inputs.mic=255 > > inputs.mic.mute=off > > inputs.mic.preamp=on > > inputs.mic.source=mic0 > > record.source=mic > > > > The laptop also has an input for an external mike (the usual small jack, > > just next to the headphones output). When you plug in an external mike, > > the audio chip is smart enough to record from that one, and no longer > > record from the internal mike. (I use Shure SM57 as the external mike, > > which I believe is irrelevant.) Recording with the external mike plugged > > in works fine too, EXCEPT the signal level from the external mike is > > much weaker, and I wonder why. > > maybe there is a separate preamp on the internal mic pin? Well, both mikes do respond to setting inputs.mic.preamp=off/on so I suppose either each has its own preamp, or there is just one mic preamp, pre-amping the one mike (int/ext) that is currently in use. > > Can it be that the (one) audio input the laptop has is meant as an > > "universal" audio input for both mic and line-in, expecting a much > > stronger signal? > > maybe ... what does inputs.line* affect? nothing, in neither case (int/ext). > or record.source=line? silence; only record.source=mic records something. > > For the internal mike, having > > > > inputs.mic.preamp=off/on > > > > makes a difference of recording just fine vs. recording a dog barking > > two blocks away. With the external mike, it makes a difference of > > barely audible recording vs. fine recording. With headphones on, > > you can hear the signal strength drop when you plug in the external > > mike. > > does changing inputs.mic.source have any effect? inputs.mic.source=mic0 is set by default and behaves as described. inputs.mic.source=mic1 is accepted and results in silence being recorded. inputs.mic.source=line or line0 or line1 says 'bad enum value'. Jan > > OpenBSD 4.4-stable (GENERIC) #0: Sun Mar 8 18:49:45 CET 2009 > > r...@armada.stare.cz:/usr/src/sys/arch/i386/compile/GENERIC > > cpu0: Intel Pentium III ("GenuineIntel" 686-class, 128KB L2 cache) 847 MHz > > cpu0: > > FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE > > real mem = 259551232 (247MB) > > avail mem = 242520064 (231MB) > > User Kernel Config > > UKC> disable acpi > > 429 acpi0 disabled > > UKC> enable apm > > 330 apm0 enabled > > UKC> quit > > Continuing... > > mainbus0 at root > > bios0 at mainbus0: AT/286+ BIOS, date 08/20/01, BIOS32 rev. 0 @ 0xfd720, > > SMBIOS rev. 2.3 @ 0xe9f90 (17 entries) > > bios0: vendor Phoenix Technologies LTD version "0F08" date 08/20/2001 > > bios0: Compaq 110 series > > apm0 at bios0: Power Management spec V1.2 > > apm0: AC on, battery charge unknown > > acpi at bios0 function 0x0 not configured > > pcibios0 at bios0: rev 2.1 @ 0xfd720/0x8e0 > > pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf70/112 (5 entries) > > pcibios0: PCI Interrupt Router at 000:07:0 ("VIA VT82C596A ISA" rev 0x00) > > pcibios0: PCI bus #2 is the last bus > > bios0: ROM list: 0xc/0xc000 0xcc000/0x1800 > > cpu0 at mainbus0 > > pci0 at mainbus0 bus 0: configuration mode 1 (no bios) > > pchb0 at pci0 dev 0 function 0 "VIA VT8601 PCI" rev 0x05 > > ppb0 at pci0 dev 1 function 0 "VIA VT82C601 AGP" rev 0x00 > > pci1 at ppb0 bus 1 > > vga1 at pci1 dev 0 function 0 "Trident CyberBlade i1 AGP" rev 0x6a > > wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) > > wsdisplay0: screen 1-5 added (80x25, vt100 emulation) > > agp0 at vga1: v2, aperture at 0xf800, size 0x1000 > > drm at vga1 unsupported > > pcib0 at pci0 dev 7 function 0 "VIA VT82C686 ISA" rev 0x22 > > pciide0 at pci0 dev 7 function 1 "VIA VT82C571 IDE" rev 0x10: ATA66, > > channel 0 configured to compatibility, channel 1 configured to compatibility > > wd0 at pciide0 channel 0 drive 0: > > wd0: 16-sector PIO, LBA, 14403MB, 29498112 sectors > > wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4 > > atapiscsi0 at pciide0 channel 1 drive 0 > > scsibus0 at atapiscsi0: 2 targets, initiator 7 > > cd0 at scsibus0 targ 0 lun 0: ATAPI 5/cdrom > > removable > > cd0(pciide0:1:0): using PIO mode 4, DMA mode 2 > > uhci0 at pci0 dev 7 function 2 "VIA VT83C572 USB" rev 0x10: irq 11 > > viaenv0 at pci0 dev 7 function 4 "VIA VT82C686 SMBus" rev 0x30: HWM > > disabled: 24-bit timer at 3579545Hz > > auvia0 at pci0 dev
Re: Getting 4.5 from FTP
Why are you afraid?Iran is a nice country. Don't know how in Iran,but here in Czech Republic you don't need credit card to use PayPal.You just register at their site (I'm not sure if Iran is approved,but you know,idiots are everywhere,even in country of "Freedom" :-)) and you needn't to have your account verified and we can then send money trough our bank account to one bank in Czech Republic which then send money to PayPal on your account. In case you can't purchase physical materials you can still download logos,pictures,OpenBSD songs,write to email conferences or use and propagate OpenBSD around you. 2009/5/5 MANI : > Hi, > I just wanted to download OpenBSD 4.5 from one of FTP mirrors but according > to Date modified field of files, I assumed the files are not latest released > version of 4.5, for example at main ftp: ftp://ftp.openbsd.org/ > pub/OpenBSD/4.5/amd64/ install45.iso file last modified date is 2/28/09 > 7:12:00 PM. Do I missing something obvious here cause according to > announcement some FTP mirrors (including main ftp site) have latest version > of 4.5. > > > by the way I would happy to order OpenBSD CD,T-Shirts and support my beloved > operating system but I am afraid I am living in Iran (No Credit Card!), If > there is any other way to get OpenBSD CD's and T-Shirts please let me know! > > Thanks, > Mani Malekmohammadi > > -- http://www.openbsd.org/lyrics.html
RES: Migration from IPTABLES to PF
Thanks for this 'polite' reply. As I Said i spent some years away from Unix/Linux world, I worked with business intelligence this years. Now i AM back to network administration and i got this Project to do. I used openbsd before version 3. I do like it. This is my current senario. - 2 firewalls with 2 carp+pfsync that Will handle 2 internet connections, 1 mpls connection, 1 lan to handle around 60 bus company that transport 2 million users per Day, each user has your own myfair card. Each bus has a system that store this data in a file. This files Will be imported to Oracle later. After this import, there are a lot of specific applications that uses this informations. - behind this 2 firewalls we have around 30 servers: ( most Windows) iis, file transfer servers,ws, and some other servers like some red hat enterprise running Oracle 10g. - at the beginning the firewalls Will do Nat + filter + gateway + mpd5+squid ( the fucking operators Who need Access to the Windows servers were surfing on web from there. ) - our applications has around 5,000 users per Day, but we have a lot of web services and some etl process ( i dont have statistics about volume yet) So that is it. -Mensagem original- De: William Chivers [mailto:william.chiv...@newcastle.edu.au] Enviada em: segunda-feira, 4 de maio de 2009 22:46 Para: Ricardo Augusto de Souza; misc@openbsd.org Assunto: Re: Migration from IPTABLES to PF This is a great advertisement for OpenBSD, PF, and keeping things simple in general, mind if I use it Ricardo? As for your original question, I wouldn't even try to convert your iptables, especially using some magic tool to do it. Decide what you want your firewall to do and start from scratch with PF. That way you will know it is working and you will be able to maintain it reliably. Cheers, Bill - William J. Chivers Lecturer in Information Technology School of DCIT Faculty of Science and Information Technology University of Newcastle---Ourimbah Campus PO Box 127, Ourimbah, NSW 2259 Australia CRICOS Provider Number: 00109J phone: +61 2 4349 4473 fax: +61 2 4349 4565 email: william.chiv...@newcastle.edu.au - >>> Ricardo Augusto de Souza 05/05/09 3:17 AM >>> Hi, I have a firewall running on a Fedora Core 4 (STentz) with iptables. The Guy Who installed it left our company some months ago. I spent some years far from iptables, now i have to migrate this firewall to PF. THere are some 'special' features on this firewall, i need some documentation or help about implementing this features at new firewall ( PF ). This is the iptables scripts: #!/bin/bash FW=/sbin/iptables LOAD=/sbin/modprobe #__ # Carregando Modulo do IPTABLES . /etc/rc.d/init.d/prodata/fw_modulos # Carregando Variaveis . /etc/rc.d/init.d/prodata/fw_variaveis if [ $KERNEL = "sim" ] then . /etc/rc.d/init.d/prodata/fw_kernel fi #___ # Cria politicas de LOGs #___ if [ $LOGS = "sim" ] then . /etc/rc.d/init.d/prodata/fw_politicas fi Normal rules here EOF /etc/rc.d/init.d/prodata/fw_modulos #$LOAD nfnetlink $LOAD ip_conntrack $LOAD ip_conntrack_ftp #$LOAD ip_conntrack_pptp ## #$LOAD ip_conntrack_netlink ## #$LOAD ip_conntrack_tftp ## #$LOAD ip_nat $LOAD ip_nat_ftp $LOAD ip_gre #$LOAD ip_nat_pptp ## #$LOAD ip_nat_tftp ## $LOAD ip_queue ## $LOAD ip_tables $LOAD iptable_filter $LOAD iptable_nat $LOAD iptable_mangle $LOAD ipt_helper $LOAD ipt_LOG $LOAD ipt_limit $LOAD ipt_state #$LOAD ipt_layer7 ## $LOAD ipt_MASQUERADE $LOAD ipt_multiport #$LOAD ipt_string $LOAD ipt_tcpmss $LOAD ipt_TCPMSS # EOF /etc/rc.d/init.d/prodata/fw_kernel #___ # Protecao do KERNEL #___ #Enable forwarding in kernel echo 1 > /proc/sys/net/ipv4/ip_forward #Disabling IP Spoofing attacks. if [ $IPSEC = "sim" ] then for f in /proc/sys/net/ipv4/conf/*/rp_filter; do echo 0 > $f done else for f in /proc/sys/net/ipv4/conf/*/rp_filter; do echo 2 > $f done fi #Don't respond to broadcast pings (Smurf-Amplifier-Protection) echo "1" > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts #Block source routing echo 1 > /proc/sys/net/ipv4/conf/all/accept_source_route #Kill timestamps echo 0 > /proc/sys/net/ipv4/tcp_timestamps #Enable SYN Cookies #echo 1 > /proc/sys/net/ipv4/tcp_syncookies #Kill redirects echo 1 > /proc/sys/net/ipv4/conf/all/accept_redirects #Enable bad error message protection echo 1 > /proc/sys/net/ipv4/icmp_ignore_bogus_error_responses #Log martians (packets with
Re: No OpenBSD for Lenovo Thinkpad w500 4058CTO
This is correct solution for this laptop.One of my friends has same type and switching setup in BIOS help to see disks and then install OpenBSD 4.4 and 4.5 2009/5/5 Nick Guenther : > Your disks aren't showing up in dmesg. Try tweaking your BIOS > settings--i know that I had to change from IDE emulation to AHCI when > I upgraded to 4.5. > > On 05/05/2009, Bill Maas wrote: >> Hi, >> >> First, and just for the record: while trying to set up an FTP server on >> OpenBSD 4.2 I got this error message while trying to connect by any >> other address than 'localhost': >> >> 421 Service not available, remote server has closed connection. >> >> Reason, it turned out: a missing entry in /etc/hosts.allow. I had a hard >> time finding anything relevant out there, so now at least the relation >> between the error message and the missing entry is documented. >> >> >> The reason I needed an FTP server is that I'm trying to install OpenBSD >> 4.5 on a Lenovo Thinkpad W500 model 4058-CTO, with no success. With obsd >> 4.4 it never got past hardware initialization, with 4.5 at least I get >> the installer menu, but no for long: >> >> [...] >> Proceed with install? [n] y >> [...] >> >> No disks found >> # >> >> And no, I don't expect developers to _scramble to their laptops_ just >> because I as an OpenBSD user am _entitled to have this fixed ASAP_ and >> stuff like that. I was at least happy to see that the Fathers of OpenBSD >> in their infinite wisdom decided to use plain ftp for downloading >> packages, and not some custom-built single-purpose >> binary-installer-builtin, so I could at least get a dmesg off the box (I >> didn't manage to get a screen capture over USB). >> >> The output from the 'dmesg' command run from the shell commandline is >> listed below. I'm only an "index" list member, but feel free to contact >> me offlist if you need more info. I'll be happy to help testing any >> updates. And I'll be following any replies through the archives of >> course. >> >> An otherwise very happy OpenBSD user, >> >> >> Bill >> >> >> dmesg: >> -- >> OpenBSD 4.5 (RAMDISK_CD) #1112: Sat Feb 28 15:06:26 MST 2009 >> B B dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD >> cpu0: Intel(R) Core(TM)2 Duo CPU T9400 @ 2.53GHz ("GenuineIntel" >> 686-class) 2.53 GHz >> cpu0: >> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,C X16,xTPR >> real mem B = 3214176256 (3065MB) >> avail mem = 3115958272 (2971MB) >> mainbus0 at root >> bios0 at mainbus0: AT/286+ BIOS, date 09/24/08, BIOS32 rev. 0 @ 0xfdc80, >> SMBIOS rev. 2.4 @ 0xe0010 (74 entries) >> bios0: vendor LENOVO version "6FET46WW (1.16 )" date 09/24/2008 >> bios0: LENOVO 4058CTO >> acpi0 at bios0: rev 2 >> acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT >> SSDT SSDT SSDT SSDT >> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat >> cpu0 at mainbus0: apid 0 (boot processor) >> cpu0: apic clock running at 265MHz >> cpu at mainbus0: not configured >> ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins >> ioapic0: misconfigured as apic 2, remapped to apid 1 >> acpiprt0 at acpi0: bus 0 (PCI0) >> acpiprt1 at acpi0: bus 1 (AGP_) >> acpiprt2 at acpi0: bus 2 (EXP0) >> acpiprt3 at acpi0: bus 3 (EXP1) >> acpiprt4 at acpi0: bus -1 (EXP2) >> acpiprt5 at acpi0: bus 5 (EXP3) >> acpiprt6 at acpi0: bus 13 (EXP4) >> acpiprt7 at acpi0: bus 21 (PCI1) >> bios0: ROM list: 0xc/0xfc00 0xd/0x1000 0xd1000/0x1000 >> 0xd2000/0x1000 0xde000/0x1800! 0xe/0x1 >> pci0 at mainbus0 bus 0: configuration mode 1 (bios) >> pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07 >> ppb0 at pci0 dev 1 function 0 "Intel GM45 PCIE" rev 0x07: apic 1 int 16 >> (irq 11) >> pci1 at ppb0 bus 1 >> vga1 at pci1 dev 0 function 0 "ATI Mobility Radeon HD 3650" rev 0x00 >> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) >> "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured >> em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: apic 1 >> int 20 (irq 11), address 00:1c:25:97:34:61 >> uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int >> 20 (irq 11) >> uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int >> 21 (irq 11) >> uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int >> 22 (irq 11) >> ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int >> 23 (irq 11) >> usb0 at ehci0: USB revision 2.0 >> uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 >> "Intel 82801I HD Audio" rev 0x03 at pci0 dev 27 function 0 not >> configured >> ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x03: apic 1 int >> 20 (irq 11) >> pci2 at ppb1 bus 2 >> ppb2 at pci0 dev 28 function 1 "Intel 82801I PCIE" rev 0x03: apic 1 int >> 21 (irq 11) >> pci3 at ppb2 bus 3 >> iwn0 at pci3 dev 0 function 0 "In
Re: route(8) delete - need a little help
On Tue, May 05, 2009 at 01:27:21PM +0200, LEVAI Daniel wrote: > Hi! > > I have this in my route table: > 10/8 link#1 UC 50 - 4 em0 > 10/8 UGS0 1072 - 8 tun1 > > How can I delete only the first line, the route with the em0 device? > So far I can only execute this: > # route delete 10/8 > > But this is too ambigious. > > I thought of something like this: > # route delete 10/8 -dev em0 > but of course this will not gonna happen. > ifconfig em0 delete because this is a interface route and not deletable by route(8) unless you know the magic and the consequences. -- :wq Claudio
Re: Getting 4.5 from FTP
At 06:52 PM 5/5/2009 +0200, Hannah Schroeter wrote: Hi! Since when is the Iran a member of the EU? Kind regards, Hannah. Neither is Iran part of the US, .. service availability varies by country, so it's up to the 'sender' to locate an available service and mechant based on suggestions we provide [or not]. Lee
Re: vstr string library
If I knew enough on how to port stongSwan, I would - but I'm not a developer much less a C programmer. (make is like sominex to me) Andreas Steffen from strongSwan mentioned that support for printf hooks (%N, %H, etc.) is required, and since BSD doesn't do this - the vstr string library is required instead. Either way, the strongSwan team is busy porting strongSwan to *BSD. Rumour is that the current svn version could possibly work with FreeBSD but they are still trying to solve some problems with OpenBSD. Ciao, -Original Message- From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of Stuart Henderson Sent: Tuesday, May 05, 2009 3:45 AM To: misc@openbsd.org Subject: Re: vstr string library On 2009-05-05, Fortunato wrote: > Thanks. I tried to compile the strongSwan source and came to screeching halt > on this error message. > > checking for main in -lvstr... no configure: error: Vstr string library not > found > > Just as an FYI, this is to test some IKEv2 features. Looks like you can use glibc instead. Are you planning on porting it to work with our ipsec stack?
Re: Getting 4.5 from FTP
Hi, Hannah Schroeter schrieb: >> How about a Paypal? I believe there is another similar service in the EU? > > Since when is the Iran a member of the EU? Hmm...? http://www.bloodyhell.nl/images/map_of_american_isolationist_thinking.gif Btw, we also got Paypal here in the EU. Michael
Re: HD 'Analysis'
On Tuesday 05 May 2009 12:11:49 L. V. Lammert wrote: > At 05:45 PM 5/4/2009 -0500, Tony Abernethy wrote: > >There is, in the e2fsprogs package, something called badblocks. > >I have used it (on Linux) to "rescue" bad disks. > >(Windows laptops -- kinda redundant?) > > Interesting, .. it DNB on 4.0, however, .. and I'm unsure as to any issues > between utilities designed for ext2 and ffs??? > > >If you care about your data, follow Steve's advice. > > Right. How many disks should I throw away before trying to gather some > USEFUL data? Perhaps I didn't word my thoughts well enough, and appeared snarky to you? That wasn't my intent. Disks today are 1) VASTLY cheaper per meg of storage, 2) Faster, 3) less power comsumptive and noisy. But there is also 4) which is they aren't built as well. The MTBF figures are a mathmatical fantasy, and dangerously worthless. I have many older systems running "small" disks from 2G to about 20G that are still fine since 1996. In fact, looking at my log of disk disasters, I've had three disks blow up when being used by my users, when they were using those machines. In contrast, the 60G+ disk era has given me at least 12 problems in the last four to five years, and I'm not counting friends systems that I've helped out on. Probably more like 18 disasters+ if I count those. Because of this I've adopted a really careful attitude about disks in general. I'm not starting to treat them like airplane parts--replace them before they fail. This is especially true for laptop disks (I've had four disks start to go on various OpenBSD thinkpads I've had). When you have free time you can beat on a disk, and take weeks pounding on it. Look at iogen in the ports tree as another testing method. It is also the case that multiple make builds of userland is a good test. I'm hesitant to depend on the smart tools, because I've had laptop disks that failed hours after a check said things were fine, and I still have a 100G disk generates smart errors but which is absolutely good. Remember too that getting a disk replacement under warranty almost always results in a "recertified" disk, and I'm nervous about using them. Given the cost I get new ones. Hannah's comment that I should have used the raw device was quite correct; that was a tyop so it should have said dd if=/dev/rsd1c of=/dev/null bs=64k > > >Me, if I want to rely on a disk drive, I will run badblocks on it. > > Sounds like the best idea - do you run it from a Linux CD, or ?? > > Thanks! > > Lee --STeve Andre'
Re: HD 'Analysis'
First thing I do with a new hard drive is run a long self-test using smartctl. If it passes it gets added to the system. I have smartd set to do a daily short self-test and a weekly long self-test on every drive. Replace any drives that start to show errors. Saludos, Jose. L. V. Lammert wrote: At 03:36 PM 5/4/2009 -0700, Jose Quinteiro wrote: I use this http://smartmontools.sourceforge.net/ Saludos, Jose. Thanks! I have used smart tools in the past, .. but how do you use them for testing? Lee
Re: Getting 4.5 from FTP
Hi! On Tue, May 05, 2009 at 11:39:31AM -0500, L. V. Lammert wrote: >At 08:30 PM 5/5/2009 +0430, MANI wrote: >[...] >>by the way I would happy to order OpenBSD CD,T-Shirts and support my >>beloved >>operating system but I am afraid I am living in Iran (No Credit Card!), If >>there is any other way to get OpenBSD CD's and T-Shirts please let me know! >How about a Paypal? I believe there is another similar service in the EU? Since when is the Iran a member of the EU? Kind regards, Hannah.
Re: snapshots index.txt and SHA256
> > Also, SHA256 apparently replaced MD5 in snapshots. > > The old MD5 did not tell the md5 checksum of x*.tgz, > > but did provide the checksums of floppy*. With the new > > SHA256 it's the other way round. Why is that? > > Why is what? The floppies are in the list. Ech, excuse my tired eyes. Sorry. Jan
Re: Getting 4.5 from FTP
At 08:30 PM 5/5/2009 +0430, MANI wrote: Hi, I just wanted to download OpenBSD 4.5 from one of FTP mirrors but according to Date modified field of files, I assumed the files are not latest released version of 4.5, for example at main ftp: ftp://ftp.openbsd.org/ pub/OpenBSD/4.5/amd64/ install45.iso file last modified date is 2/28/09 7:12:00 PM. Do I missing something obvious here cause according to announcement some FTP mirrors (including main ftp site) have latest version of 4.5. 2/28 was the date the release was created, .. 5/1 is the official release date. by the way I would happy to order OpenBSD CD,T-Shirts and support my beloved operating system but I am afraid I am living in Iran (No Credit Card!), If there is any other way to get OpenBSD CD's and T-Shirts please let me know! How about a Paypal? I believe there is another similar service in the EU? Lee
Re: snapshots index.txt and SHA256
> apparently, the format of index.txt has changed: the > 'old' index, as shipped with 4.5, just lists the basenames, > while a current index.txt is a 'ls -l'. Is this just for snapshots, > or for future releases too? Is this temporary, or should my scripts > expect this format from now on? scripts should expect this format from now on. > Also, SHA256 apparently replaced MD5 in snapshots. > The old MD5 did not tell the md5 checksum of x*.tgz, > but did provide the checksums of floppy*. With the new > SHA256 it's the other way round. Why is that? Why is what? The floppies are in the list. You want X gone again? SHA256 (INSTALL.i386) = d1ba1d4c5172764fcf20de10ab527b448fd6e4211046e298307b1d6e1c289b35 SHA256 (INSTALL.linux) = a2c3f50602b04127f87efcf395370504a58ab132ca4e0201b0d65fca3157ff27 SHA256 (base45.tgz) = 5ef90fee6717f24baddd5666511ecb08b9d34ec1bdf7297e28c9a942ff7fc838 SHA256 (bsd) = 3e375b170ec80c25c9b1574c14450c2ed48e7f27121c930619dbbd4628e00c78 SHA256 (bsd.mp) = cdc2699ee368f16c0373c5114fc291a0aeeb4c3ca04e77dc8ff1ac66d4cc34f5 SHA256 (bsd.rd) = 348f17424df195736b74e67e99ba8266ce03d6f0556ee499aacb43c422e2b2b6 SHA256 (cd45.iso) = 5324a130f5cbc5e6598e5c281b50246043accb13d4c67a95812d55909796f3ad SHA256 (cdboot) = b14d8926e0d4fa5c3678566b39119d5693084dec05601b064ef133f57f01ad62 SHA256 (cdbr) = 5a9bdf07cb88c2591d9c1c28c31362e65ac4691305a2ebb9aa867e424e53f805 SHA256 (cdemu45.iso) = a2ae40e78119004c74815cdc6725918bb2c53b344c1daa9350e8802fc8100c41 SHA256 (comp45.tgz) = e4c2a63a0ef54fb74dc95a7280277986bb458c4e01b610a1a26d5dd65726c2f6 SHA256 (etc45.tgz) = 5a736260788c2532e3c3d4e2db2e386bf0021ebf47aab6c8ac6950bf72ee18c0 SHA256 (floppy45.fs) = 4e728a1697e228d4568e7e72203da9bdd12979ef83133d2032823fdecf71ecbb SHA256 (floppyB45.fs) = 869388e9353c24875f3598ee7daba9c0b44fd6c10ccaf0c920ee98e569e9a354 SHA256 (floppyC45.fs) = b6b76fba9894c4216c6da3814ca7193ad67f00edd675d74b95b0c8690e0c3f6d SHA256 (game45.tgz) = 3528c6acc74aa1ae8aa41daa291f10719ec8232160e9cb0d66dfef4e57ecfddc SHA256 (man45.tgz) = 4d636d8ef326dc91a24506ed6b34898e33df1a6148cef05575a145344b6366f1 SHA256 (misc45.tgz) = ced5f661ad017d4610a9f43a65a406d859a75f577f0c373c088cb5256bb1c969 SHA256 (pxeboot) = f46196ee4677141ed5b021495f1ddf83d8e9f15b06be2c7369993f3cabdcf663 SHA256 (install45.iso) = e72b16fd1e1c800da17de4fd37d8c147587840604c055568cd744fd3cb2944eb SHA256 (xbase45.tgz) = 8fe7d42eb7c13253c0b2f5daf63a2c18bb77e6970c6ae1902d6fb02fc97278ab SHA256 (xetc45.tgz) = ab8120fe985353af5d5686e4be25a6676c5214e694259c589f17adcf4a42fbb5 SHA256 (xfont45.tgz) = 72fc5d801db9f1e861e56aac4c644363db6134510cf87a272bfafb54fb343b71 SHA256 (xserv45.tgz) = 2cf0e2f84389f072667c73e44e6dd6002a57c2d921f4e6f45e59fb07ef82ab9d SHA256 (xshare45.tgz) = c0c5abe6ca0f5e8fb1581b40fe362d5679b0d81427ea37d7886dbbc69d066055
Re: HD 'Analysis'
At 03:36 PM 5/4/2009 -0700, Jose Quinteiro wrote: I use this http://smartmontools.sourceforge.net/ Saludos, Jose. Thanks! I have used smart tools in the past, .. but how do you use them for testing? Lee
Re: [dera...@cvs.openbsd.org: Re: I would like to send this to misc@ and security-announce@, from me.]
> On Mon, May 04, 2009 at 01:38:16PM -0600, Bob Beck wrote: > > Look dude, that ftp site made something available before any of the > > second level mirrors were even opened up to other sites to retreive > > it. Deliberate action was taken to release something early without > > mirroring it from a credible source. Judging by the contents, not all > > of it was exactly 4.5. This is cause for concern to anyone using the > > mirror. > > How many unofficial ftp servers are there on this dangerous > internet which are or might or could be having wrong packages? This is > what ftp.html is all about right? Why is there a list of official > mirrors anyway? We provide a service out of the goodness of our hearts. You accept how we do it, and you will shut up, or less service will be provided in the future. If you don't like it, run something else.
Re: HD 'Analysis'
At 05:45 PM 5/4/2009 -0500, Tony Abernethy wrote: There is, in the e2fsprogs package, something called badblocks. I have used it (on Linux) to "rescue" bad disks. (Windows laptops -- kinda redundant?) Interesting, .. it DNB on 4.0, however, .. and I'm unsure as to any issues between utilities designed for ext2 and ffs??? If you care about your data, follow Steve's advice. Right. How many disks should I throw away before trying to gather some USEFUL data? Me, if I want to rely on a disk drive, I will run badblocks on it. Sounds like the best idea - do you run it from a Linux CD, or ?? Thanks! Lee
Getting 4.5 from FTP
Hi, I just wanted to download OpenBSD 4.5 from one of FTP mirrors but according to Date modified field of files, I assumed the files are not latest released version of 4.5, for example at main ftp: ftp://ftp.openbsd.org/ pub/OpenBSD/4.5/amd64/ install45.iso file last modified date is 2/28/09 7:12:00 PM. Do I missing something obvious here cause according to announcement some FTP mirrors (including main ftp site) have latest version of 4.5. by the way I would happy to order OpenBSD CD,T-Shirts and support my beloved operating system but I am afraid I am living in Iran (No Credit Card!), If there is any other way to get OpenBSD CD's and T-Shirts please let me know! Thanks, Mani Malekmohammadi
Re: HD 'Analysis'
At 10:32 PM 5/4/2009 -0400, Steve Shockley wrote: On 5/4/2009 5:56 PM, L. V. Lammert wrote: What is the best way to do a surface analysis on a disk? badsect seems like a holdover from MB-sized disks, and it doesn't do any analysis. MHDD might do what you want: http://hddguru.com/content/en/software/2005.10.02-MHDD/ I haven't used it, but Victoria (http://hdd-911.com/) might be useful if you can read Russian. Gibson's Spinrite is okay to check a drive but he tries to imply that what he does is way more complicated than it really is. That, and the author is a weenie media whore. I rarely see a bad drive lock up the system on modern machines without timeout messages on the console, etc. Your controller or cable may be suspect if the drive passes all the tests you throw at it. Some good options, .. seems like all are DOS, however !! I guess that's no big deal if you're rebooting for the analysis, but it does not seem 'right'! Lee
iwi(4) + wpa works!
Just wanted to say "thank you" to anyone involved in bringing wpa support to the iwi(4) driver. The only reason I couldn't use OpenBSD as my daily desktop system is now gone. Signing off, getting back to polishing my X-es :) -- Janusz Gumkowski http://www.am.torun.pl/~ja
Re: route(8) delete - need a little help
On Tue, May 5, 2009 at 4:27 AM, LEVAI Daniel wrote: > I have this in my route table: > 10/8 link#1 UC 50 - 4 em0 > 10/8 UGS0 1072 - 8 tun1 > > How can I delete only the first line, the route with the em0 device? > So far I can only execute this: > # route delete 10/8 > > But this is too ambigious. > > I thought of something like this: > # route delete 10/8 -dev em0 > but of course this will not gonna happen. You've assigned an address on 10/8 to em0. Delete that address from the interface if you don't want to have that route. (If you're trying to have 10/8 on both ends of a tunnel then you need to back up and rethink what you're trying to do.) Philip Guenther
Re: No OpenBSD for Lenovo Thinkpad w500 4058CTO
Your disks aren't showing up in dmesg. Try tweaking your BIOS settings--i know that I had to change from IDE emulation to AHCI when I upgraded to 4.5. On 05/05/2009, Bill Maas wrote: > Hi, > > First, and just for the record: while trying to set up an FTP server on > OpenBSD 4.2 I got this error message while trying to connect by any > other address than 'localhost': > > 421 Service not available, remote server has closed connection. > > Reason, it turned out: a missing entry in /etc/hosts.allow. I had a hard > time finding anything relevant out there, so now at least the relation > between the error message and the missing entry is documented. > > > The reason I needed an FTP server is that I'm trying to install OpenBSD > 4.5 on a Lenovo Thinkpad W500 model 4058-CTO, with no success. With obsd > 4.4 it never got past hardware initialization, with 4.5 at least I get > the installer menu, but no for long: > > [...] > Proceed with install? [n] y > [...] > > No disks found > # > > And no, I don't expect developers to _scramble to their laptops_ just > because I as an OpenBSD user am _entitled to have this fixed ASAP_ and > stuff like that. I was at least happy to see that the Fathers of OpenBSD > in their infinite wisdom decided to use plain ftp for downloading > packages, and not some custom-built single-purpose > binary-installer-builtin, so I could at least get a dmesg off the box (I > didn't manage to get a screen capture over USB). > > The output from the 'dmesg' command run from the shell commandline is > listed below. I'm only an "index" list member, but feel free to contact > me offlist if you need more info. I'll be happy to help testing any > updates. And I'll be following any replies through the archives of > course. > > An otherwise very happy OpenBSD user, > > > Bill > > > dmesg: > -- > OpenBSD 4.5 (RAMDISK_CD) #1112: Sat Feb 28 15:06:26 MST 2009 > dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD > cpu0: Intel(R) Core(TM)2 Duo CPU T9400 @ 2.53GHz ("GenuineIntel" > 686-class) 2.53 GHz > cpu0: > FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR > real mem = 3214176256 (3065MB) > avail mem = 3115958272 (2971MB) > mainbus0 at root > bios0 at mainbus0: AT/286+ BIOS, date 09/24/08, BIOS32 rev. 0 @ 0xfdc80, > SMBIOS rev. 2.4 @ 0xe0010 (74 entries) > bios0: vendor LENOVO version "6FET46WW (1.16 )" date 09/24/2008 > bios0: LENOVO 4058CTO > acpi0 at bios0: rev 2 > acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT > SSDT SSDT SSDT SSDT > acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > cpu0 at mainbus0: apid 0 (boot processor) > cpu0: apic clock running at 265MHz > cpu at mainbus0: not configured > ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins > ioapic0: misconfigured as apic 2, remapped to apid 1 > acpiprt0 at acpi0: bus 0 (PCI0) > acpiprt1 at acpi0: bus 1 (AGP_) > acpiprt2 at acpi0: bus 2 (EXP0) > acpiprt3 at acpi0: bus 3 (EXP1) > acpiprt4 at acpi0: bus -1 (EXP2) > acpiprt5 at acpi0: bus 5 (EXP3) > acpiprt6 at acpi0: bus 13 (EXP4) > acpiprt7 at acpi0: bus 21 (PCI1) > bios0: ROM list: 0xc/0xfc00 0xd/0x1000 0xd1000/0x1000 > 0xd2000/0x1000 0xde000/0x1800! 0xe/0x1 > pci0 at mainbus0 bus 0: configuration mode 1 (bios) > pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07 > ppb0 at pci0 dev 1 function 0 "Intel GM45 PCIE" rev 0x07: apic 1 int 16 > (irq 11) > pci1 at ppb0 bus 1 > vga1 at pci1 dev 0 function 0 "ATI Mobility Radeon HD 3650" rev 0x00 > wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) > "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured > em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: apic 1 > int 20 (irq 11), address 00:1c:25:97:34:61 > uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int > 20 (irq 11) > uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int > 21 (irq 11) > uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int > 22 (irq 11) > ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int > 23 (irq 11) > usb0 at ehci0: USB revision 2.0 > uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 > "Intel 82801I HD Audio" rev 0x03 at pci0 dev 27 function 0 not > configured > ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x03: apic 1 int > 20 (irq 11) > pci2 at ppb1 bus 2 > ppb2 at pci0 dev 28 function 1 "Intel 82801I PCIE" rev 0x03: apic 1 int > 21 (irq 11) > pci3 at ppb2 bus 3 > iwn0 at pci3 dev 0 function 0 "Intel WiFi Link 5300AGN" rev 0x00: apic 1 > int 17 (irq 11), MIMO 3T3R, MoW, address 00:16:ea:a3:00:2c > ppb3 at pci0 dev 28 function 3 "Intel 82801I PCIE" rev 0x03: apic 1 int > 23 (irq 11) > pci4 at ppb3 bus 5 > ppb4 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x03: apic 1 int > 20 (irq 11) > pci5
Re: Recovering data from OpenBSD drive using OSX
How does it not boot? What's the error/symptoms? I know I had OpenBSD booting without a hitch in qemu under OS X. You can either install it from darwinports or there's a GUI wrapper called Q.app available somewhere. On 03/05/2009, jebyrnes wrote: > Indeed, that was my first impulse as well once I noticed that the drive > wouldn't mount under osx. Something is odd, however, with VirtualPC, and > though openbsd 4.4 installs just fine, it will not then boot. Even though > once I boot up the virtual machine using the CD, I can mount the newly > formatted and installed drives just fine. Hence, I was wondering if there > was something more direct. > > Hrm. > > -Jarrett > > > Jason Dixon wrote: >> >> On Fri, May 01, 2009 at 02:50:48PM -0700, jebyrnes wrote: >>> Hello, all. I have a question. A long time ago in college I ran an >>> openBSD >>> server. It was an old, cantankerous machine, and eventually something >>> happened to the motherboard, and it died. The drives, with all of their >>> data, are still fine. In fact, I'd like to recover the data. In my >>> current >>> situation, I don't have access to the equipment to put together a new box >>> with the old drives in it. I would like to get the data, off, however. >>> All >>> I have is a mac laptop. >>> >>> Will OSX be able to access these drives? Are their any utilities that >>> would >>> help in this? It's been a while since I hacked around at this level, so >>> would appreciate any advice you all could give. Thanks. >> >> Find an external USB enclosure. Toss them in. Connect it. Boot >> OpenBSD in a virtual machine. Mount drive. Read files. >> >> -- >> Jason Dixon >> DixonGroup Consulting >> http://www.dixongroup.net/ >> >> >> > > -- > View this message in context: > http://www.nabble.com/Recovering-data-from-OpenBSD-drive-using-OSX-tp23340252p23361918.html > Sent from the openbsd user - misc mailing list archive at Nabble.com.
Re: No OpenBSD for Lenovo Thinkpad w500 4058CTO
Your message confuses me: > The reason I needed an FTP server is that I'm trying to install OpenBSD > 4.5 on a Lenovo Thinkpad W500 model 4058-CTO, with no success. Why would you need to run your own FTP server just to install OpenBSD? > With obsd > 4.4 it never got past hardware initialization, with 4.5 at least I get > the installer menu, but no for long: > > [...] > Proceed with install? [n] y > [...] > > No disks found > # > > And no, I don't expect developers to _scramble to their laptops_ just > because I as an OpenBSD user am _entitled to have this fixed ASAP_ and > stuff like that. I was at least happy to see that the Fathers of OpenBSD > in their infinite wisdom decided to use plain ftp for downloading > packages, and not some custom-built single-purpose > binary-installer-builtin, so I could at least get a dmesg off the box (I > didn't manage to get a screen capture over USB). What does downloading packages have to do with getting a dmesg? Am I right at guessing that you used the ftp command of the semi-installed system to upload the dmesg output to some other machine? > OpenBSD 4.5 (RAMDISK_CD) #1112: Sat Feb 28 15:06:26 MST 2009 Is this really 4.5, as released on May 1st? > dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD > cpu0: Intel(R) Core(TM)2 Duo CPU T9400 @ 2.53GHz ("GenuineIntel" > 686-class) 2.53 GHz > cpu0: > FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR > real mem = 3214176256 (3065MB) > avail mem = 3115958272 (2971MB) > mainbus0 at root > bios0 at mainbus0: AT/286+ BIOS, date 09/24/08, BIOS32 rev. 0 @ 0xfdc80, > SMBIOS rev. 2.4 @ 0xe0010 (74 entries) > bios0: vendor LENOVO version "6FET46WW (1.16 )" date 09/24/2008 > bios0: LENOVO 4058CTO > acpi0 at bios0: rev 2 > acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT > SSDT SSDT SSDT SSDT > acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > cpu0 at mainbus0: apid 0 (boot processor) > cpu0: apic clock running at 265MHz > cpu at mainbus0: not configured > ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins > ioapic0: misconfigured as apic 2, remapped to apid 1 > acpiprt0 at acpi0: bus 0 (PCI0) > acpiprt1 at acpi0: bus 1 (AGP_) > acpiprt2 at acpi0: bus 2 (EXP0) > acpiprt3 at acpi0: bus 3 (EXP1) > acpiprt4 at acpi0: bus -1 (EXP2) > acpiprt5 at acpi0: bus 5 (EXP3) > acpiprt6 at acpi0: bus 13 (EXP4) > acpiprt7 at acpi0: bus 21 (PCI1) > bios0: ROM list: 0xc/0xfc00 0xd/0x1000 0xd1000/0x1000 > 0xd2000/0x1000 0xde000/0x1800! 0xe/0x1 > pci0 at mainbus0 bus 0: configuration mode 1 (bios) > pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07 > ppb0 at pci0 dev 1 function 0 "Intel GM45 PCIE" rev 0x07: apic 1 int 16 > (irq 11) > pci1 at ppb0 bus 1 > vga1 at pci1 dev 0 function 0 "ATI Mobility Radeon HD 3650" rev 0x00 > wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) > "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured > em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: apic 1 > int 20 (irq 11), address 00:1c:25:97:34:61 > uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int > 20 (irq 11) > uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int > 21 (irq 11) > uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int > 22 (irq 11) > ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int > 23 (irq 11) > usb0 at ehci0: USB revision 2.0 > uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 > "Intel 82801I HD Audio" rev 0x03 at pci0 dev 27 function 0 not > configured > ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x03: apic 1 int > 20 (irq 11) > pci2 at ppb1 bus 2 > ppb2 at pci0 dev 28 function 1 "Intel 82801I PCIE" rev 0x03: apic 1 int > 21 (irq 11) > pci3 at ppb2 bus 3 > iwn0 at pci3 dev 0 function 0 "Intel WiFi Link 5300AGN" rev 0x00: apic 1 > int 17 (irq 11), MIMO 3T3R, MoW, address 00:16:ea:a3:00:2c > ppb3 at pci0 dev 28 function 3 "Intel 82801I PCIE" rev 0x03: apic 1 int > 23 (irq 11) > pci4 at ppb3 bus 5 > ppb4 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x03: apic 1 int > 20 (irq 11) > pci5 at ppb4 bus 13 > uhci3 at pci0 dev 29 function 0 "Intel 82801I USB" rev 0x03: apic 1 int > 16 (irq 11) > uhci4 at pci0 dev 29 function 1 "Intel 82801I USB" rev 0x03: apic 1 int > 17 (irq 11) > uhci5 at pci0 dev 29 function 2 "Intel 82801I USB" rev 0x03: apic 1 int > 18 (irq 11) > ehci1 at pci0 dev 29 function 7 "Intel 82801I USB" rev 0x03: apic 1 int > 19 (irq 11) > usb1 at ehci1: USB revision 2.0 > uhub1 at usb1 "Intel EHCI root hub" rev 2.00/1.00 addr 1 > ppb5 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0x93 > pci6 at ppb5 bus 21 > cbb0 at pci6 dev 0 function 0 "Ricoh 5C476 CardBus" rev 0xba: apic 1 int > 16 (irq 11) > "Ricoh 5C832 Firewire" rev 0x04 at pci6 dev 0 function 1 not configured > "Ricoh 5C822 SD/MMC" rev 0x21 a
snapshots index.txt and SHA256
Hi all, apparently, the format of index.txt has changed: the 'old' index, as shipped with 4.5, just lists the basenames, while a current index.txt is a 'ls -l'. Is this just for snapshots, or for future releases too? Is this temporary, or should my scripts expect this format from now on? Also, SHA256 apparently replaced MD5 in snapshots. The old MD5 did not tell the md5 checksum of x*.tgz, but did provide the checksums of floppy*. With the new SHA256 it's the other way round. Why is that? Thanks Jan
No OpenBSD for Lenovo Thinkpad w500 4058CTO
Hi, First, and just for the record: while trying to set up an FTP server on OpenBSD 4.2 I got this error message while trying to connect by any other address than 'localhost': 421 Service not available, remote server has closed connection. Reason, it turned out: a missing entry in /etc/hosts.allow. I had a hard time finding anything relevant out there, so now at least the relation between the error message and the missing entry is documented. The reason I needed an FTP server is that I'm trying to install OpenBSD 4.5 on a Lenovo Thinkpad W500 model 4058-CTO, with no success. With obsd 4.4 it never got past hardware initialization, with 4.5 at least I get the installer menu, but no for long: [...] Proceed with install? [n] y [...] No disks found # And no, I don't expect developers to _scramble to their laptops_ just because I as an OpenBSD user am _entitled to have this fixed ASAP_ and stuff like that. I was at least happy to see that the Fathers of OpenBSD in their infinite wisdom decided to use plain ftp for downloading packages, and not some custom-built single-purpose binary-installer-builtin, so I could at least get a dmesg off the box (I didn't manage to get a screen capture over USB). The output from the 'dmesg' command run from the shell commandline is listed below. I'm only an "index" list member, but feel free to contact me offlist if you need more info. I'll be happy to help testing any updates. And I'll be following any replies through the archives of course. An otherwise very happy OpenBSD user, Bill dmesg: -- OpenBSD 4.5 (RAMDISK_CD) #1112: Sat Feb 28 15:06:26 MST 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD cpu0: Intel(R) Core(TM)2 Duo CPU T9400 @ 2.53GHz ("GenuineIntel" 686-class) 2.53 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR real mem = 3214176256 (3065MB) avail mem = 3115958272 (2971MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 09/24/08, BIOS32 rev. 0 @ 0xfdc80, SMBIOS rev. 2.4 @ 0xe0010 (74 entries) bios0: vendor LENOVO version "6FET46WW (1.16 )" date 09/24/2008 bios0: LENOVO 4058CTO acpi0 at bios0: rev 2 acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT SSDT SSDT SSDT SSDT acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 265MHz cpu at mainbus0: not configured ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 2, remapped to apid 1 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 1 (AGP_) acpiprt2 at acpi0: bus 2 (EXP0) acpiprt3 at acpi0: bus 3 (EXP1) acpiprt4 at acpi0: bus -1 (EXP2) acpiprt5 at acpi0: bus 5 (EXP3) acpiprt6 at acpi0: bus 13 (EXP4) acpiprt7 at acpi0: bus 21 (PCI1) bios0: ROM list: 0xc/0xfc00 0xd/0x1000 0xd1000/0x1000 0xd2000/0x1000 0xde000/0x1800! 0xe/0x1 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07 ppb0 at pci0 dev 1 function 0 "Intel GM45 PCIE" rev 0x07: apic 1 int 16 (irq 11) pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 "ATI Mobility Radeon HD 3650" rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: apic 1 int 20 (irq 11), address 00:1c:25:97:34:61 uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int 20 (irq 11) uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int 21 (irq 11) uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int 22 (irq 11) ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int 23 (irq 11) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 "Intel 82801I HD Audio" rev 0x03 at pci0 dev 27 function 0 not configured ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x03: apic 1 int 20 (irq 11) pci2 at ppb1 bus 2 ppb2 at pci0 dev 28 function 1 "Intel 82801I PCIE" rev 0x03: apic 1 int 21 (irq 11) pci3 at ppb2 bus 3 iwn0 at pci3 dev 0 function 0 "Intel WiFi Link 5300AGN" rev 0x00: apic 1 int 17 (irq 11), MIMO 3T3R, MoW, address 00:16:ea:a3:00:2c ppb3 at pci0 dev 28 function 3 "Intel 82801I PCIE" rev 0x03: apic 1 int 23 (irq 11) pci4 at ppb3 bus 5 ppb4 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x03: apic 1 int 20 (irq 11) pci5 at ppb4 bus 13 uhci3 at pci0 dev 29 function 0 "Intel 82801I USB" rev 0x03: apic 1 int 16 (irq 11) uhci4 at pci0 dev 29 function 1 "Intel 82801I USB" rev 0x03: apic 1 int 17 (irq 11) uhci5 at pci0 dev 29 function 2 "Intel 82801I USB" rev 0x03: apic 1 int 18 (irq 11) ehci1 at pci0 dev 29 function 7 "Intel 82801I USB" rev 0x03: apic 1 int 19 (irq 11) usb1 at ehci1: USB revision 2.0 uhub1 at usb1 "In
Re: [dera...@cvs.openbsd.org: Re: I would like to send this to misc@ and security-announce@, from me.]
On Mon, May 04, 2009 at 01:38:16PM -0600, Bob Beck wrote: > Look dude, that ftp site made something available before any of the > second level mirrors were even opened up to other sites to retreive > it. Deliberate action was taken to release something early without > mirroring it from a credible source. Judging by the contents, not all > of it was exactly 4.5. This is cause for concern to anyone using the > mirror. How many unofficial ftp servers are there on this dangerous internet which are or might or could be having wrong packages? This is what ftp.html is all about right? Why is there a list of official mirrors anyway? > It's not like the operator of the site could have done this > *accidentally* - This showed some kind of deliberate intent to release > "something" early, and they obviously didn't seem too concerned if it > was 100% correct. I don't know the reason, and I don't care to. All I know > is that when we see it, that says "danger". This is the german coast gard. We are thinking... That's ridiculous. > Mirroring is based upon trust. Whoever's running that site obviously > decided to go rogue and do something goofy. I don't care who mirrors > openbsd, but I expect them to actually mirror it through authorized > channels, not put something up early that is deceptive to the users > and potentially harmful. When we *SEE* evidence of this being done, not > telling the user community is simply irresponsible. great reasoning. Now I get it! The word I was missing is "trust". I almost forgot: In god we trust. Thanks for the reminder. > * Mike Belopuhov [2009-05-04 04:55]: > > C'mon, ftp.kd86.com was delisted from the ftp.html page on Mon Apr 6. > > Can you just stop bashing Wim? It doesn't make anyone happier (except > > Theo probably). Or maybe we should rush searching the whole fscking > > internet for the incorrect OpenBSD mirrors? Chill out, dudes. > > > > On Thu, Apr 30, 2009 at 11:21 -0600, Bob Beck wrote: > > > > > > Users are cautioned about rogue ftp sites claiming to have OpenBSD. > > > > > > The best place to get OpenBSD is from an official CD set, produced in > > > a secured location > > > > > > It has come to our attention that some ftp sites (ftp.kd85.com) which > > > are not official OpenBSD mirrors are purporting to serve OpenBSD 4.5 > > > at this time. We have noted that what is actually present in the 4.5 > > > directory is not 4.5, but rather a late development cycle snapshot which > > > they have moved into place claiming it is 4.5. > > > > > > While we have no problem with anyone mirroring OpenBSD for the good > > > of the user community, we do believe that people who offer up the wrong > > > thing are being deceptive and will hurt the userbase - particularly when > > > the packages being offered up are not the release versions. > > > > > > please ensure you look at http://www.openbsd.org/ftp.html when > > > choosing to do an ftp install, and don't be fooled by someone "phishing" > > > for your ftp traffic. > > > > -- > #!/usr/bin/perl > if ((not 0 && not 1) != (! 0 && ! 1)) { >print "Larry and Tom must smoke some really primo stuff...\n"; > } > -- "Eigentum verpflichtet. Sein Gebrauch soll zugleich dem Wohle der Allgemeinheit dienen." (Art. 14 II GG)
Re: no init scripts, what is the best way to start dnsmasq
On Tue, May 05, 2009 at 02:11:57PM +0200, Coert Waagmeester wrote: > I have installed dnsmasq on OpenBSD. > > What is the best way to start it? Should I start it > from /etc/rc.securelevel, or rc.local? > > And how do I call it? just 'dnsmasq' or exec dnsmasq? > > I have googled, but could not find a lot of info on this... > > > Is there a way to 'install' SysV init scripts on OpenBSD? It's best not to think of this in terms of SysV-style init scripts. In OpenBSD, shell commands in /etc/rc.local get run at boot time, so all you have to do is put some command in there to launch dnsmasq in any fashion that you see fit. So it would suffice to simply add a line with "/usr/local/sbin/dnsmasq"; however, for consistency with the way things are launched in /etc/rc, I generally do something like the following: ,--- /etc/rc.local --- if [ X"${dnsmasq_flags-NO}" != X"NO" -a -x /usr/local/sbin/dnsmasq ]; then echo -n ' dnsmasq'; /usr/local/sbin/dnsmasq ${dnsmasq_flags} fi `- ,--- /etc/rc.conf.local -- dnsmasq_flags= `- This way, if you want to temporarily disable dnsmasq, you can simply remove the line in rc.conf.local or change it to "dnsmasq_flags=NO". -- Mark Shroyer http://markshroyer.com/contact/
Re: apmd issues after upgrading to 4.5
Well I have good news foe anyone experiencing the same problems. After researching the interrupts a bit more I learned about acpiprt. I disabled acpiprt and acpimadt in the kernel and it works. X lagginess is also gone. On Tue, May 5, 2009 at 2:06 PM, The Wraith wrote: > Hey guys. > First of all it's nice to be here. I had some previous experience with > BSD's, I decided to give OpenBSD a go and I'm not one bit dissapointed. > I installed 4.4 a few days ago( had not known at the time that the next > will be released the second day ). > Was surprised to see that cpu scaling worked out of the box. That was not > the case with any Linux I ever used, or with FreeBSD. > Xorg -configure actually worked and I had a working window manager in 1 > minute. > > Problems: > 1. I set apmd_flags to "-C" in rc.conf, rebooted and automatic scaling > worked. then I decided to upgrade to 4.5. I copied all the sets off the 4.5 > cd to /sets, booted the 4.5 bsd.rd, started updating from disc, mounted > /sets...it all worked ok...or so it seemed. > Without any other change I booted to 4.5, just to see my cpu was at full > capacity when idling in the console (1.800 MHz). `sysctl hw` shows all the > scaling stuff, and I can use `sysctl hw.setperf=0` to get it to 800MHz > (minimum and cool), but apmd does not do it automatically. So for now I have > it with "-L" (manual mode) but I'd like apmd to do this automatically. > I should point out that I disabled apm in the kernel and left acpi enabled > (apm would crash on boot if enabled..this was a problem with everything I > used before..it's my laptop's fault). But I did the same for 4.4 too and it > worked...so something went wrong with the update. > After some advice, I just updated to the latest snapshot, which should > contain all the patches, including number 003 from the 4.5 erata which I was > told could have an impact on my problem. Well it didn't. I have the same > problem. > 2. X is rather slow (even when I go up to 1.800MHz). Used radeon and > radeonhd and same thing (radeonhd is a bit faster though...). Tried enabling > XXA, EXA, no xorg.conf at all, tried different things but same problems. Is > this a problem for everyone else? > > As I was writing this email, someone on #openbsd suggested I look at `top` > too see if apmd actually works, but system is under heavy load thus > upscales. He was correct. My cpu interrupt is at 82.9% (which he said is > really really bad). > If this is correct than it could explain both my problems (slowness and > apmd keeping cpu at full). What could be causing this? (I killed X and tried > top and it's still up so I'm guessing it's not X). > > Thanks for your time.
SOLVED: Re: no init scripts, what is the best way to start dnsmasq
On Tue, 2009-05-05 at 14:11 +0200, Coert Waagmeester wrote: > Hello all, > > > I have installed dnsmasq on OpenBSD. > > What is the best way to start it? Should I start it > from /etc/rc.securelevel, or rc.local? > > And how do I call it? just 'dnsmasq' or exec dnsmasq? > > I have googled, but could not find a lot of info on this... > > > Is there a way to 'install' SysV init scripts on OpenBSD? > > > Kind regards, > Coert > Sorry, I did not look around long enough. I found the answer: http://www.openbsd.org/faq/faq10.html#rc and in dnsmasq(8) Sorry about that, newbie
no init scripts, what is the best way to start dnsmasq
Hello all, I have installed dnsmasq on OpenBSD. What is the best way to start it? Should I start it from /etc/rc.securelevel, or rc.local? And how do I call it? just 'dnsmasq' or exec dnsmasq? I have googled, but could not find a lot of info on this... Is there a way to 'install' SysV init scripts on OpenBSD? Kind regards, Coert
Re: HD 'Analysis'
Hi! On Mon, May 04, 2009 at 06:34:07PM -0400, STeve Andre' wrote: >[...] >I have a pile of disks that I suspect. Looking at the drawer, I see 8 >of them. As I have time I test them, usually with dd: > dd if=/dev/sd1c of=/dev/null bs=64k ^r Do yourself a favor and use the raw device. >[...] Kind regards, Hannah.
route(8) delete - need a little help
Hi! I have this in my route table: 10/8 link#1 UC 50 - 4 em0 10/8 UGS0 1072 - 8 tun1 How can I delete only the first line, the route with the em0 device? So far I can only execute this: # route delete 10/8 But this is too ambigious. I thought of something like this: # route delete 10/8 -dev em0 but of course this will not gonna happen. Daniel -- LIVAI Daniel PGP key ID = 0x4AC0A4B1 Key fingerprint = D037 03B9 C12D D338 4412 2D83 1373 917A 4AC0 A4B1
Re: [dera...@cvs.openbsd.org: Re: I would like to send this to misc@ and security-announce@, from me.]
On 2009-05-05, Lars Nooden wrote: > Mike Belopuhov wrote: >> Or maybe we should rush searching the whole fscking >> internet for the incorrect OpenBSD mirrors? > > e.g. ftp://mirrors.nic.funet.fi/ftp.openbsd.org/pub/OpenBSD/ I'll make a bulk check of the mirrors that haven't got 4.5 yet sometime soon and remind them to update their rsync inclusion lists. I'll give it a bit longer because some are probably still trying to fetch the release.
apmd issues after upgrading to 4.5
Hey guys. First of all it's nice to be here. I had some previous experience with BSD's, I decided to give OpenBSD a go and I'm not one bit dissapointed. I installed 4.4 a few days ago( had not known at the time that the next will be released the second day ). Was surprised to see that cpu scaling worked out of the box. That was not the case with any Linux I ever used, or with FreeBSD. Xorg -configure actually worked and I had a working window manager in 1 minute. Problems: 1. I set apmd_flags to "-C" in rc.conf, rebooted and automatic scaling worked. then I decided to upgrade to 4.5. I copied all the sets off the 4.5 cd to /sets, booted the 4.5 bsd.rd, started updating from disc, mounted /sets...it all worked ok...or so it seemed. Without any other change I booted to 4.5, just to see my cpu was at full capacity when idling in the console (1.800 MHz). `sysctl hw` shows all the scaling stuff, and I can use `sysctl hw.setperf=0` to get it to 800MHz (minimum and cool), but apmd does not do it automatically. So for now I have it with "-L" (manual mode) but I'd like apmd to do this automatically. I should point out that I disabled apm in the kernel and left acpi enabled (apm would crash on boot if enabled..this was a problem with everything I used before..it's my laptop's fault). But I did the same for 4.4 too and it worked...so something went wrong with the update. After some advice, I just updated to the latest snapshot, which should contain all the patches, including number 003 from the 4.5 erata which I was told could have an impact on my problem. Well it didn't. I have the same problem. 2. X is rather slow (even when I go up to 1.800MHz). Used radeon and radeonhd and same thing (radeonhd is a bit faster though...). Tried enabling XXA, EXA, no xorg.conf at all, tried different things but same problems. Is this a problem for everyone else? As I was writing this email, someone on #openbsd suggested I look at `top` too see if apmd actually works, but system is under heavy load thus upscales. He was correct. My cpu interrupt is at 82.9% (which he said is really really bad). If this is correct than it could explain both my problems (slowness and apmd keeping cpu at full). What could be causing this? (I killed X and tried top and it's still up so I'm guessing it's not X). Thanks for your time.
You just recieved a E-Greeting.
Hallmark.comShop OnlineHallmark MagazineE-Cards & MoreAt Gold Crown You have received A Hallmark E-Card. Hello! You have received a Hallmark E-Card. To see it, click here, There's something special about that E-Card feeling. We invite you to make a friend's day and send one. Hope to see you soon, Your friends at Hallmark Your privacy is our priority. Click the "Privacy and Security" link at the bottom of this E-mail to view our policy. Hallmark.com | Privacy & Security | Customer Service | Store Locator
Re: vstr string library
On 2009-05-05, Fortunato wrote: > Thanks. I tried to compile the strongSwan source and came to screeching halt > on this error message. > > checking for main in -lvstr... no configure: error: Vstr string library not > found > > Just as an FYI, this is to test some IKEv2 features. Looks like you can use glibc instead. Are you planning on porting it to work with our ipsec stack?
Re: Samsung HD License Issue
On 04.05-08:17, Jochem Kossen wrote: [ ... ] > > today i bought a Samsung Laptop Drive, 160GB, Model Number is HM160HC. > > It came in a anti-static plastic bag together with a little leaflet. > > Usually i don't read those, but today i did, and came across the > > following paragraph: > > > > "Hybrid Disk Drive products are licensed for use only on devices that > > deploy the Windows VISTA Operating System as their principal operating > > System. If you or any other party install(s) an operating system on the > > computing device that is not Windows Vista, the use of this Hybrid Disk > > Drive may require an additional license from Microsoft. > > For further information, please contact Microsoft." [ ... ] > It appeared more people were confused by the text, and both Microsoft > and Samsung have explained that the terms mean, that if you use a > different operating system than Windows with this drive, you need to > get the appropriate license to use said different operating system. If > you want to use an operating system owned by Microsoft with it, you > have to get a license from them; if the operating system is not owned > by Microsoft, you don't need to get a license from Microsoft. this is a legal two-step and i recommend that you refuse to be satisfied with the "clarification" by Samsung and Microsoft and contact the appropriate consumer bodies within your duristictions to have this matter lodged with them (assuming the drive is sold under those terms within your country).
Re: [dera...@cvs.openbsd.org: Re: I would like to send this to misc@ and security-announce@, from me.]
Mike Belopuhov wrote: > C'mon, ftp.kd86.com was delisted from the ftp.html page on Mon Apr 6. > Can you just stop bashing Wim? It doesn't make anyone happier (except > Theo probably). +1 > Or maybe we should rush searching the whole fscking > internet for the incorrect OpenBSD mirrors? e.g. ftp://mirrors.nic.funet.fi/ftp.openbsd.org/pub/OpenBSD/ -Lars
Re: "makewhatis" not found after upgrade from 4.4 to 4.5
makewhatis is located in /usr/libexec -Otto On Tue, May 05, 2009 at 01:14:23PM +0530, Siju George wrote: > Hi, > > After the upgrade to 4.5 I was updating the packages and I found > messages to update man.conf. > After updating the "_whatdb" section of man.conf I tried to run "makewhatis". > > # makewhatis > ksh: makewhatis: not found > # which makewhatis > makewhatis: Command not found. > > The makewhatis(8) man page exists on the system. > > > # man makewhatis > MAKEWHATIS(8) OpenBSD System Manager's Manual MAKEWHATIS(8) > > NAME > makewhatis - create a whatis.db database > > Anybody any idea what happened? > > thanks > > Siju
"makewhatis" not found after upgrade from 4.4 to 4.5
Hi, After the upgrade to 4.5 I was updating the packages and I found messages to update man.conf. After updating the "_whatdb" section of man.conf I tried to run "makewhatis". # makewhatis ksh: makewhatis: not found # which makewhatis makewhatis: Command not found. The makewhatis(8) man page exists on the system. # man makewhatis MAKEWHATIS(8) OpenBSD System Manager's Manual MAKEWHATIS(8) NAME makewhatis - create a whatis.db database Anybody any idea what happened? thanks Siju
Re: [dera...@cvs.openbsd.org: Re: I would like to send this to misc@ and security-announce@, from me
rembrandt writes: > :words: Here's a nickel, kid. Buy yourself a better tinfoil hat. //art
Re: 4.5 - strange performance issue
Tobias Ulmer wrote: Try to enable EXA and play with Option "MigrationHeuristic" "greedy" Thanks, I will try that later today. -- With best regards, Gregory Edigarov
Re: 4.5 - strange performance issue
Gregory Edigarov wrote: Hello, Does anybody else notice strange X performance degradation? It takes forever for X to start, and after it start it takes forever for them to bring up firefox... and after all it is really slw Well I turned off the acpi completely, that seems to solve the problem, but the question is still, it worked on 4.4 perfectly. This means something has changed in a way -- With best regards, Gregory Edigarov