Re: X crashes with snapshot
On Tuesday 08 September 2009 15.27.01 you wrote: > On Monday 07 September 2009 18.44.42 Owain Ainsworth wrote: > > On Mon, Sep 07, 2009 at 11:27:31AM +0200, LEVAI Daniel wrote: > > > Fatal server error: > > > Caught signal 11. Server aborting > > > > Please checkout the xenocara tree and follow the instructions in README > > in order to provide a gdb backtrace with debug symbols. > > > > I have no idea why people think that X is different in this respect to > > other applications... > > Thanks for the pointer, I got it. Here is the output of bt full: [...] Can I be of more assistance with this? Is there a suspicion about what could this be? Daniel -- LIVAI Daniel PGP key ID = 0x4AC0A4B1 Key fingerprint = D037 03B9 C12D D338 4412 2D83 1373 917A 4AC0 A4B1
Re: Broadcom BCM5716 support in 4.6/snapshots
i have some 960s floating around here, i'll see if i can give one of them a go with openbsd in the next few days. On 14/09/2009, at 12:06 PM, Predrag Punosevac wrote: Hi, I bought a couple new dells with Broadcom BCM5716 chips on the motherboard for network support but everytime I boot and it gets to the starting network it reboots on me. Anyone have any ideas on this? thanks, JB Hi, I got two weeks ago brand new OptiPlex 960. I think it is manufactured in mid August of this year. It does come with Broadcom Gigabit LAN card. I will check the chip-set for you as well post the dmesg for the developers when I get tomorrow into my office. There was absolutely no way to get that thing working on OpenBSD but the installer was not rebooting on me. It just didn't see the LAN card. I tested with Linux and it was dead as well. I just used PCI LAN card and I am now happy camper. On the final note I want to document one more thing for other users. Those new DeLLs come with some kind stupid software RAID. One has to get into the BIOS and adjust SATA controller into IDE legacy mode. OpenBSD will not otherwise recognize the HDD and I just learned from the fellow NetBSD user that NetBSD has the same problem. Other than that new DeLL OptiPlex 960 is 100% functional with the 4.6 snapshot including my fancy ATi video card. Best, Predrag P.S. I got this DeLL with 4Gb of RAM and OpenBSD (amd64) sees about 3.3Gb. I assume that that is normal behavior as bigmem is still not enabled.
Re: how see refresh rate computer sends to LCD screen
Nick Holland escribis: Jesus Sanchez wrote: Hi, using 4.5 stable. I'm doing some tests with the VESA driver on a HP nx9030 (a laptop) and I noticed a little flicker on the screen when I'm using the VESA driver so I wanted to see the refresh rate the computer is sending to the LCD screen and xrandr reported: 1024 x 768 0.0 not overly suprising, the VESA driver is about getting dots on the screen, not tweaking every register in the graphics chip. I also don't know that it is supporting xrandr. while with the "intel" driver for the card xrandr reported 1024 x 768 60.0 Is there anyway to see the refresh rate the LCD screen is recieving? It's a laptop so it don't have any control panel or buttons to interact directly with the LCD screen. it doesn't need them, either. normally, the video chip will interface directly to the LCD, it won't be doing multiple conversions that all the control panel buttons are there to help with. LCD screens don't "refresh" in a way that is directly comparable to CRTs. Any numbers you see reflect the the data rate between the CRTC and the LCD hardware, not how data is displayed on the LCD...and on a laptop, even that is probably mostly fiction. If you are seeing flicker on the LCD screen, it is something OTHER than the CRTC's refresh rate... unfortunately, some of them could be hardware no, it's not a hardware problem, as I said before, this flicker only happens when I'm using "vesa" as driver. problems. Nick. Anyway, there isn't any kind of program or log file where to look the refresh rate Xorg uses?
Java plugin
Well, I built and installed the JDK (1.7) from ports. The FAQ is correct about
it's taking a long time, and it took so much space that I ended up mounting an
additional partition for /usr/ports, because /usr ran out of space the first
time.
But the predicted (by the FAQ) message on using the plugin that comes along
with JDK installation did not appear. What have I missed? Relevant messages
below.
--
Ed Ahlsen-Girard
Ft. Walton Beach FL
# make install;date
===> Faking installation for jdk-1.7.0.00
install -d -o root -g bin -m 755
/usr/ports/obj/jdk-1.7.0.00/fake-i386/usr/local/jdk-1.7.0
cd /usr/ports/obj/jdk-1.7.0.00/openjdk/build/bsd-i586/j2sdk-image && tar -cf -
* | tar -C /usr/ports/obj/jdk-1.7.0.00/fake-i386/usr/local/jdk-1.7.0 -xf -
install -d -o root -g bin -m 755
/usr/ports/obj/jdk-1.7.0.00/fake-i386/usr/local/jre-1.7.0
cd /usr/ports/obj/jdk-1.7.0.00/openjdk/build/bsd-i586/j2re-image && tar -cf - *
| tar -C /usr/ports/obj/jdk-1.7.0.00/fake-i386/usr/local/jre-1.7.0 -xf -
===> Building package for jdk-1.7.0.00b59p1
Create /usr/ports/packages/i386/all/jdk-1.7.0.00b59p1.tgz
# dmesg
OpenBSD 4.6-current (GENERIC) #171: Tue Sep 8 20:49:10 MDT 2009
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium III ("GenuineIntel" 686-class, 512KB L2 cache) 449 MHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE
real mem = 268009472 (255MB)
avail mem = 251281408 (239MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 08/01/01, BIOS32 rev. 0 @ 0xffe90, SMBIOS
rev. 2.2 @ 0xfb410 (64 entries)
bios0: vendor Dell Computer Corporation version "A10" date 08/01/01
bios0: Dell Computer Corporation OptiPlex GX1 450M+
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
acpi: bad checksum at 0xd7207f50
acpi at bios0 function 0x0 not configured
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfc670/144 (7 entries)
pcibios0: PCI Interrupt Router at 000:07:0 ("Intel 82371AB PIIX4 ISA" rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0xd000 0xd/0x8000
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82443BX AGP" rev 0x03
intelagp0 at pchb0
agp0 at intelagp0: aperture at 0xf000, size 0x400
ppb0 at pci0 dev 1 function 0 "Intel 82443BX AGP" rev 0x03
pci1 at ppb0 bus 1
"ATI Rage Pro" rev 0x5c at pci1 dev 0 function 0 not configured
piixpcib0 at pci0 dev 7 function 0 "Intel 82371AB PIIX4 ISA" rev 0x02
pciide0 at pci0 dev 7 function 1 "Intel 82371AB IDE" rev 0x01: DMA, channel 0
wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 6149MB, 12594960 sectors
wd1 at pciide0 channel 0 drive 1:
wd1: 16-sector PIO, LBA, 76319MB, 156301488 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 2
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: ATAPI 5/cdrom
removable
wd2 at pciide0 channel 1 drive 1:
wd2: 16-sector PIO, LBA, 57220MB, 117187500 sectors
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2
uhci0 at pci0 dev 7 function 2 "Intel 82371AB USB" rev 0x01: irq 11
piixpm0 at pci0 dev 7 function 3 "Intel 82371AB Power" rev 0x02: SMBus disabled
vga1 at pci0 dev 13 function 0 "ATI Radeon 9200 SE Sec" rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
radeondrm0 at vga1: irq 11
drm0 at radeondrm0
ohci0 at pci0 dev 14 function 0 "Acer Labs M5237 USB" rev 0x03: irq 11, version
1.0, legacy support
ehci0 at pci0 dev 14 function 3 "Acer Labs M5239 USB2" rev 0x01: irq 10
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Acer Labs EHCI root hub" rev 2.00/1.00 addr 1
xl0 at pci0 dev 17 function 0 "3Com 3c905B 100Base-TX" rev 0x24: irq 11,
address 00:c0:4f:14:cd:00
exphy0 at xl0 phy 24: 3Com internal media interface
isa0 at piixpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
isapnp0 at isa0 port 0x279: read port 0x203
wss1 at isapnp0 "CS4236B, CSC, , WSS/SB" port 0x534/4,0x388/4,0x220/16 irq
5 drq 1,0: CS4236/CS4236B (vers 0)
audio0 at wss1
joy0 at isapnp0 "CS4236B, CSC000F, , Game" port 0x3a0/8
"CS4236B, CSC0010, , Ctrl" at isapnp0 p
Re: how see refresh rate computer sends to LCD screen
Jesus Sanchez wrote: > Hi, using 4.5 stable. > > I'm doing some tests with the VESA driver on a HP nx9030 (a laptop) and > I noticed a little flicker on the screen when I'm using the VESA > driver so I wanted to see the refresh rate the computer is sending to > the LCD screen and xrandr reported: > 1024 x 768 0.0 not overly suprising, the VESA driver is about getting dots on the screen, not tweaking every register in the graphics chip. I also don't know that it is supporting xrandr. > while with the "intel" driver for the card xrandr reported > 1024 x 768 60.0 > > Is there anyway to see the refresh rate the LCD screen is recieving? > It's a laptop so it don't have any control panel or buttons to interact > directly with the LCD screen. it doesn't need them, either. normally, the video chip will interface directly to the LCD, it won't be doing multiple conversions that all the control panel buttons are there to help with. LCD screens don't "refresh" in a way that is directly comparable to CRTs. Any numbers you see reflect the the data rate between the CRTC and the LCD hardware, not how data is displayed on the LCD...and on a laptop, even that is probably mostly fiction. If you are seeing flicker on the LCD screen, it is something OTHER than the CRTC's refresh rate... unfortunately, some of them could be hardware problems. Nick.
how see refresh rate computer sends to LCD screen
Hi, using 4.5 stable. I'm doing some tests with the VESA driver on a HP nx9030 (a laptop) and I noticed a little flicker on the screen when I'm using the VESA driver so I wanted to see the refresh rate the computer is sending to the LCD screen and xrandr reported: 1024 x 768 0.0 while with the "intel" driver for the card xrandr reported 1024 x 768 60.0 Is there anyway to see the refresh rate the LCD screen is recieving? It's a laptop so it don't have any control panel or buttons to interact directly with the LCD screen. -Jesus
Re: Broadcom BCM5716 support in 4.6/snapshots
> Hi, > > I bought a couple new dells with Broadcom BCM5716 chips on the > motherboard > for network support but everytime I boot and it gets to the starting > network > it reboots on me. > > Anyone have any ideas on this? > > thanks, > > JB Hi, I got two weeks ago brand new OptiPlex 960. I think it is manufactured in mid August of this year. It does come with Broadcom Gigabit LAN card. I will check the chip-set for you as well post the dmesg for the developers when I get tomorrow into my office. There was absolutely no way to get that thing working on OpenBSD but the installer was not rebooting on me. It just didn't see the LAN card. I tested with Linux and it was dead as well. I just used PCI LAN card and I am now happy camper. On the final note I want to document one more thing for other users. Those new DeLLs come with some kind stupid software RAID. One has to get into the BIOS and adjust SATA controller into IDE legacy mode. OpenBSD will not otherwise recognize the HDD and I just learned from the fellow NetBSD user that NetBSD has the same problem. Other than that new DeLL OptiPlex 960 is 100% functional with the 4.6 snapshot including my fancy ATi video card. Best, Predrag P.S. I got this DeLL with 4Gb of RAM and OpenBSD (amd64) sees about 3.3Gb. I assume that that is normal behavior as bigmem is still not enabled.
Re: Broadcom BCM5716 support in 4.6/snapshots
which dells specifically? are you able to get a dmesg off it? dlg On 14/09/2009, at 6:47 AM, John Brahy wrote: Hi, I bought a couple new dells with Broadcom BCM5716 chips on the motherboard for network support but everytime I boot and it gets to the starting network it reboots on me. Anyone have any ideas on this? thanks, JB
Re: Relevant article
Daniel Bolgheroni wrote on Thu, Sep 10, 2009 at 05:09:09PM +: > since Nick Holland touched on the DESIGN aspect in his e-mail regarding > supporting OpenBSD, I think this article pretty much reflects the > reality here. > > http://www.osnews.com/story/22135/The_Problem_with_Design_and_Implementation > > Just think it's worth reading. Hardly; it's wrong because the author considers trivial tasks only. By definition, for trivial tasks, specification and implementation roughly agree in size and content, and no design is involved. For a very small, yet non-trivial example, look at: Specification: * double sin(double x) - the sine function, x in radians * sin(Inf or NaN) is NaN Implementation: /usr/src/lib/libm/src/k_sin.c and s_sin.c Even if i add a proper mathematical definition to the specs, e.g. e^z := sum(k in N0) z^k/k!, z in C; sin(x) := Im(e^ix), x in R, the specification is still short and easy to understand, the implementation is tricky, and both are not trivial to convert to each other. I guess libcrypto contains more scary stuff. In any case, if that's what you were driving at, OpenBSD quality is not caused by confusing design and implementation, but by keeping the first simple and functional and the second correct and robust.
Re: adduser vs useradd (rmuser vs userdel)
hmm, on Mon, Sep 14, 2009 at 01:42:44AM +0200, frantisek holop said that > googling around a bit, it seems that historically, "adduser" > is a vendor added "convinience" script to make useradd > "friendlier", whatever that means. but of course there are > as many variations on this as there are unices... let's not > even get into linux... what variety :] netbsd: only useradd (as far as i can tell) freebsd: adduser shell script debian: adduser perl script fedora, centos: adduser is a symbolic link to useradd i thought at least the bsd's kind of had the same thing... -f -- save a tree. eat a beaver.
Re: adduser vs useradd (rmuser vs userdel)
hmm, on Mon, Sep 14, 2009 at 01:12:53AM +0200, Ingo Schwarze said that > If you insist on breaking scripts for many users... the way i see it, adduser has no advantage in scripts at all. adduser/useradd is quite completely not-portable anyway... googling around a bit, it seems that historically, "adduser" is a vendor added "convinience" script to make useradd "friendlier", whatever that means. but of course there are as many variations on this as there are unices... let's not even get into linux... it sure is a favourite item on the unix haters' handbook :] -f -- i know someone with the exact same name! really? who?
Re: Recommanded way to set up a mail server
On Sun, 13 Sep 2009, jean-francois wrote: > Hello, > > I am currently setting up a mail server comprising of the following > services : > > - mail (send/receive) > - accounts (base of some many clients) > - webmail > Save youself a lot of headaches and start with: http://www.allardsoft.com/mailserver/ There is a nice Rails manager, and it's free for a single domain. Good support & OpenBSD based. Lee == Leland V. Lammertl...@omnitec.net Chief ScientistOmnitec Corporation Network/Internet Consultants www.omnitec.net ==
Re: adduser vs useradd (rmuser vs userdel)
Hi Frantisek, frantisek holop wrote on Mon, Sep 14, 2009 at 12:34:59AM +0200: > this question was always kind of in the back of my mind: > why are there 2 sets of commands for adding and removing > users? Purely historical reasons, AFAIK. > looking at the man pages their functionalities quite overlap > and i am not really sure which one is the preferred, if any. Purely a matter of taste. For example, i use neither. If you have few users, visudo, vi, mkdir, chown and friends do the job just fine. If you have many users, you have your own scripts anyway. [...] > one should take over everything and the other one should be booted, no? If you insist on breaking scripts for many users... The situation is not nice (neither is the code), but the ugliness does not appear to be so bad that anybody improved it yet. Also, i doubt that new users should do that kind of cleanup as one of their first projects, and it's not really clear what should be done. Perhaps rewriting one tool from scratch, providing both interfaces, cutting down the total amount of code by a factor of four or more? But that may take more time than it's worth, given that those tools are not that important in the first place. Yours, Ingo
Re: adduser vs useradd (rmuser vs userdel)
hmm, on Mon, Sep 14, 2009 at 12:50:23AM +0200, Robert said that > adduser is something interactiv which makes is easy to do manually. > useradd is what i use in my scripts with lots of options i only have to > look up once to have them right in that case. > > Should one of them removed? No?! They serve different usage scenarios. call me tunnel visioned, but then every and all unix utility could have an "interactive" version... if there is a need for a "handholding slash interactive" version, the ports tree can surely offer something. for example rmuser has no extra functionality over userdel whatsoever. amaaq$ sudo userdel test userdel: No such user `test' amaaq$ sudo rmuser test /usr/sbin/rmuser: Error: User test not in password database amaaq$ sudo rmuser Enter login name for user to remove: test /usr/sbin/rmuser: Error: User test not in password database this is called "bloat". two programs for the same thing with no added benefit at all. what is my point really? those perl scripts are awfully aged. they are without strict, use hacks (reading passwd.master byte by byte instead of getpw*, etc.) -- they are overengineered, full of hacks and stick out of openbsd like an xml parser in the kernel. -f -- foied vinom pipafo, cra carefo.
Re: adduser vs useradd (rmuser vs userdel)
On Mon, 14 Sep 2009 00:34:59 +0200 frantisek holop wrote: > hi there, > > this question was always kind of in the back of my mind: > why are there 2 sets of commands for adding and removing > users? > > looking at the man pages their functionalities quite overlap > and i am not really sure which one is the preferred, if any. > the ports framework uses useradd/userdel if i am not mistaken, > adduser and rmuser are way more chatty and not really in the > unix philosophy (the way i see it: an "untouchable" configuration > file that is read/written by the program, console input in the > forms of questions, etc). > > apart from the historical circumstances (useradd and userdel > first appeared in 2.7) why are they both there? one should > take over everything and the other one should be booted, no? > > -f adduser is something interactiv which makes is easy to do manually. useradd is what i use in my scripts with lots of options i only have to look up once to have them right in that case. Should one of them removed? No?! They serve different usage scenarios. - Robert
Re: adduser vs useradd (rmuser vs userdel)
one more thing, if there was such a notion of axing one of these (and probably offering patches for any functionality to cross over to the victor) would it be the C version to stay? -f -- you can give a man a fish, or you can teach him to fish.
Re: Recommanded way to set up a mail server
On Sun, 13 Sep 2009 22:58:57 +0200 jean-francois wrote: > Hello, > > I am currently setting up a mail server comprising of the following > services : > > - mail (send/receive) > - accounts (base of some many clients) > - webmail > > I would like to use as much security as possible. > > After some searches on google, I am not completely sure about the > choices I should take. > > Regarding the choices of OpenBSD, is it so that there is a recommanded > way to do or shall I install whatever does the job ? > > Thanks for your experience and hints. > > BR > JF Take whatever software your are most comfortable with configuring to your needs. smtpd: OpenBSD comes with 'sendmail' as default smtpd. So if you can roll with that, you get something from base with all the advantages that come with that. (SASL support still needs a recompile of sendmail.) 'opensmtpd' is in base, also. It looks very promising. But gilles "if you use it in production..." statement still stands. (Not yet.) Lots of poeple like 'postfix'. If you can't stand sendmail, give it a try. pop/imap: If you only need pop3, 'pop3d' is in base. You can give it pop3s support with 'stunnel' from ports. Wan't more than pop3, like imap support, i'd advise to try 'dovecot'. This also gives you more choices from where to pull user/authentication info. webmail: This is imho the hardest choice to make. In the end in comes down to how secure your webserver setup is. If you need something that looks good to the enduser i'd tend to say 'roundcube'. user/account management: a setup with system/local user's is the easiest to get right. to ease the management some simple script help it a lot. other choices are userinfo in ladp or sql, directly eg. through dovecot's auth deamon. if one wants to take the database out of the "downtime equation" there is always the possibily to sync to textfiles or use a combination of both. postfix + dovecot + roundcube = easy setup and happy customers. You can look at howto's, but don't religiously stick to them. If you want a secure setup, understanding what every relevant config option does is paramount. (The default configs installed by the packages only need little edditing to get up basic functionallity.) Cheers - Robert
adduser vs useradd (rmuser vs userdel)
hi there, this question was always kind of in the back of my mind: why are there 2 sets of commands for adding and removing users? looking at the man pages their functionalities quite overlap and i am not really sure which one is the preferred, if any. the ports framework uses useradd/userdel if i am not mistaken, adduser and rmuser are way more chatty and not really in the unix philosophy (the way i see it: an "untouchable" configuration file that is read/written by the program, console input in the forms of questions, etc). apart from the historical circumstances (useradd and userdel first appeared in 2.7) why are they both there? one should take over everything and the other one should be booted, no? -f -- i'm not nearly as think a you confused i am.
Re: Amanda backup problem on OpenBSD 4.5
On Thu, Sep 10, 2009 at 1:01 PM, Dustin J. Mitchell wrote: > On Thu, Sep 10, 2009 at 2:29 PM, Philip Guenther wrote: >> It happens at initialization time of libpthread and is undone at exit >> and exec. It applies to all fds. There is no manpage, as it's not >> (supposed to be) application visible. > > OK, so basically this is an OpenBSD/pthread bug. I'm still sort of > shell-shocked here. The idea is that *all* file descriptors are made > non-blocking, and then the file-descriptor syscalls are wrapped to > pretend they are blocking. As long as all of the code operating on > those "pseudo-blocking" files is using the wrapped syscalls, all is > well. However, when one of those files is accessed by a binary not > linked to libpthread, the illusion breaks down. > > Do I have that right? Yep. > Why does the fcntl(fd, F_GETFL) fix it? Does it really fix it, or are > we just lucky? The original post wasn't clear where that line was being inserted, as it said "before the dup2" ...when there were two dup2 calls in the quoted code. I'm not 100% clear on the exact sequence of forks, execs, and fd manipulation (the dup2 in the child is done _after_ the exec? Does sendbackup fork before execing dump or do it directly?) so I can't be sure, but off-hand it looks more like luck than a real fix. Can you describe the sequence of operations in more detail? > This sounds like more of a design bug than a code bug, so I don't > expect a fix in a 4.5 patch release. So we'll need to do something to > work around it in Amanda. Presumably this is a fairly common problem, > so what is the usual solution? Actually, it's a pretty rare problem. The restrictions that the standard sets on operations after fork() in a threaded process mean that relatively few programs tangle in to this that much. Not linking with libpthread unless actually necessary helps too. So there is no "usual solution". There was a previous case where the workaround was to explicitly set a socket to non-blocking before forking (so that the parent wouldn't reset its state when closing it), but pipes are already excluded from the logic that was being hit in that case. (It was actually the reverse problem then, with the fd was being set back to blocking behind the threaded process's back.) Philip Guenther
Recommanded way to set up a mail server
Hello, I am currently setting up a mail server comprising of the following services : - mail (send/receive) - accounts (base of some many clients) - webmail I would like to use as much security as possible. After some searches on google, I am not completely sure about the choices I should take. Regarding the choices of OpenBSD, is it so that there is a recommanded way to do or shall I install whatever does the job ? Thanks for your experience and hints. BR JF
Broadcom BCM5716 support in 4.6/snapshots
Hi, I bought a couple new dells with Broadcom BCM5716 chips on the motherboard for network support but everytime I boot and it gets to the starting network it reboots on me. Anyone have any ideas on this? thanks, JB
Fw: Re: "0~" and beep on switch from console to X.
Begin forwarded message: Date: Sunday, 13 Sep 2009 +0400 From: Jesus Sanchez To: 4625 Subject: Re: "0~" and beep on switch from console to X. 4625 escribiC3: > On Sat, 12 Sep 2009 05:44:50 +0200 Jesus Sanchez wrote: If xterm window currently active in X and I'm switch from console to X by pressing Alt-F9 key, then xterm will beep and display "0~". > I mean Ctrl-Alt-F9. > If web browser window currently active there is in X, then he will open history toolbar. >>> Still nothing on my install ... >>> Want to supply more information?? >>> > 1) OpenBSD localhost 4.5 200908010004#0 i386 > 2) Part of /etc/ttys > console "/usr/libexec/getty std.9600" vt220 off secure > ttyC0 "/usr/libexec/getty std.9600" vt220 on secure > ttyC1 "/usr/libexec/getty std.9600" vt220 on secure > ttyC2 "/usr/libexec/getty std.9600" vt220 on secure > ttyC3 "/usr/libexec/getty std.9600" vt220 on secure > ttyC4 "/usr/libexec/getty std.9600" vt220 on secure > ttyC5 "/usr/libexec/getty std.9600" pcvt25 on secure > ttyC6 "/usr/libexec/getty std.9600" pcvt25 on secure > ttyC7 "/usr/libexec/getty std.9600" wsvt25 on secure > ttyC8 "/usr/libexec/getty std.9600" vt220 off secure > ttyC9 "/usr/libexec/getty std.9600" vt220 off secure > ttyCa "/usr/libexec/getty std.9600" vt220 off secure > ttyCb "/usr/libexec/getty std.9600" vt220 off secure > tty00 "/usr/libexec/getty std.9600" unknown off > 3) Something else?.. > > >> As I understood, you're having problems to switch between >> X an virtual consoles (the ones without mouse) >> >> on OpenBSD there are only 6 virtual consoles by default. >> to change from X to virtual console use Ctrl+Alt+F1 to >> F6 except which F5 to return X. >> >> You can change this on kernel configuration, checkout the >> FAQ before posting this. >> > My kernel will create ttyC0 only. Next 10 consoles wsconscfg will > create on boot. hmm, it looks OK to me... you should post this on misc@, I don't really know what else to do. Hope someone can help you with this issue better than me. regards and good luck -Jesus -- /4625
Re: question about mozilla-firefox port
Clocks are all good ;). First thing I enable was openntpd. Unfortunately, I'm seeing the same behavior from firefox downloaded from mozilla too, even on osx. A search for the invalid cert term indicated that this is new behavior (stricter) on firefox-3 series. It appears that if I want the old behavior, I can go back to kubuntu-8.04 or openbsd 4.5... Hmmm... Something to think about... On 9/13/09, Sean Howard wrote: > When I last got this error, it's because my time program was off by a few > years, and therefore the cert was not inside it's trusted times, and > therefore the cert was seen as invalid. > > --Sean > > Somebody claiming to be bofh wrote: >> I noticed something is different about the openbsd 4.5 mozilla-firefox >> package vs say, kubuntu's build. >> >> I set up paros (MITM proxy) with it's own cert (wildcard cert) signed >> by my cacert.pem file. I added this root cert to the openbsd firefox. >> I can go to https://mail.google.com without problems. >> >> In kubuntu - firefox 3.0.3, I did the same thing, pointed it at paros >> with the wildcard cert and inserted the same cacert.pem into kubuntu's >> firefox, when I go to another https site, I get the following: >> >> >> >> >> This Connection is Untrusted >> You have asked Firefox to connect >> >> Normally, when you try to connect securely, >> sites will present trusted identification to prove that you are >> going to the right place. However, this site's identity can't be verified. >> >> >> What Should I Do? >> >> If you usually connect to >> this site without problems, this error could mean that someone is >> trying to impersonate the site, and you shouldn't continue. >> >> Technical Details >> >> mail.google.com uses an invalid security certificate. >> >> The certificate is only valid for * >> >> (Error code: ssl_error_bad_cert_domain) >> >> >> What is different about openbsd's build? Thanks! >> >> -- >> http://www.glumbert.com/media/shift >> http://www.youtube.com/watch?v=tGvHNNOLnCk >> "This officer's men seem to follow him merely out of idle curiosity." >> -- Sandhurst officer cadet evaluation. >> "Securing an environment of Windows platforms from abuse - external or >> internal - is akin to trying to install sprinklers in a fireworks >> factory where smoking on the job is permitted." -- Gene Spafford >> learn french: http://www.youtube.com/watch?v=j1G-3laJJP0&feature=related >> > -- Sent from my mobile device http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk "This officer's men seem to follow him merely out of idle curiosity." -- Sandhurst officer cadet evaluation. "Securing an environment of Windows platforms from abuse - external or internal - is akin to trying to install sprinklers in a fireworks factory where smoking on the job is permitted." -- Gene Spafford learn french: http://www.youtube.com/watch?v=j1G-3laJJP0&feature=related
Re: question about mozilla-firefox port
When I last got this error, it's because my time program was off by a few years, and therefore the cert was not inside it's trusted times, and therefore the cert was seen as invalid. --Sean Somebody claiming to be bofh wrote: > I noticed something is different about the openbsd 4.5 mozilla-firefox > package vs say, kubuntu's build. > > I set up paros (MITM proxy) with it's own cert (wildcard cert) signed > by my cacert.pem file. I added this root cert to the openbsd firefox. > I can go to https://mail.google.com without problems. > > In kubuntu - firefox 3.0.3, I did the same thing, pointed it at paros > with the wildcard cert and inserted the same cacert.pem into kubuntu's > firefox, when I go to another https site, I get the following: > > > > > This Connection is Untrusted > You have asked Firefox to connect > > Normally, when you try to connect securely, > sites will present trusted identification to prove that you are > going to the right place. However, this site's identity can't be verified. > > > What Should I Do? > > If you usually connect to > this site without problems, this error could mean that someone is > trying to impersonate the site, and you shouldn't continue. > > Technical Details > > mail.google.com uses an invalid security certificate. > > The certificate is only valid for * > > (Error code: ssl_error_bad_cert_domain) > > > What is different about openbsd's build? Thanks! > > -- > http://www.glumbert.com/media/shift > http://www.youtube.com/watch?v=tGvHNNOLnCk > "This officer's men seem to follow him merely out of idle curiosity." > -- Sandhurst officer cadet evaluation. > "Securing an environment of Windows platforms from abuse - external or > internal - is akin to trying to install sprinklers in a fireworks > factory where smoking on the job is permitted." -- Gene Spafford > learn french: http://www.youtube.com/watch?v=j1G-3laJJP0&feature=related
Re: Erlangen Mirror Downtime
Hi, On Wed, 19.08.2009 at 09:37:26 +0200, Alexander von Gernler wrote: > This means that the mirror won't be available for a longer period of > time before I can bring it back online. I will reflect this situation > on the respective www pages very soon, just giving you a heads-up via > mail now. any progess on this? I liked the Erlangen mirror for its comparably liberal access policy. Eg. when I try to install some package and it doesn't work on the first attempt, I often find myself locked out from a given mirror on subsequent attempts, presumably because the sense a "denial of service attack". It can take quite some time to gain access to the host in question again. :-( -- Kind regards, --Toni++
Rappel : Mettre � jour votre compte
Cher(e) utilisateur Desjardins Mise ` jour nicessaire de votre compte AcchsD En raison de prioccupations pour la sicuriti et l'intigriti de votre compte, nous avons publii ce message d'avertissement. Il a iti porti ` notre attention que votre compte AcchsD doit jtre mis ` jour dans le cadre de notre engagement continu pour protiger votre compte et ` riduire les cas de fraude sur notre site Web. Si vous pouviez prendre 5-10 minutes de votre expirience en ligne et de mettre ` jour vos dossiers personnels. Une fois que vous avez mis ` jour votre compte, vous ne rencontrez l'avenir des problhmes avec le service en ligne. Mettre ` jour maintenant Nous vous remercions de votre grande attention ` cette question. S'il vous plant comprenez que c'est une mesure de sicuriti destinie ` vous protiger ainsi que votre compte. Cordialement Service de l'examen des comptes Acchs Desjardins.
Re: shutting down
On Sun, Sep 13, 2009 at 03:35:04PM +0200, Maurice Janssen wrote: > The NFS-server is an embedded device (Netgear NAS). Unfortunately I > can't set the +5 on the shutdown command... Then there's probably no way to mount the NFS server's FS's sync? That could be enough if all processes that need clean shutdown run on the NFS clients.
Re: shutting down
Mauro Rezzonico wrote: Why don't ask the NSF server to do a 'shutdown +5' and the others to do a 'shutdown now'? (see shutdown(8) http://www.openbsd.org/cgi-bin/man.cgi?query=shutdown) The NFS-server is an embedded device (Netgear NAS). Unfortunately I can't set the +5 on the shutdown command... Sorry I know nothing about this 'nut' software you are talking about... nut = networkupstools from ports. Quite nice set of tools to talk to your ups. Maurice
Re: shutting down
Toni Mueller wrote: Hi, On Fri, 11.09.2009 at 22:28:43 +0200, Maurice Janssen wrote: Will the master shutdown normally, or will it stall while trying to umount the NFS share? The slaves will shutdown first, so when the master goes down, the NFS server won't be responding. man mount_nfs You can mount NFS shares soft. This means that it becomes less reliable for you, but your clients won't hang if you shut down your NFS server first. Another option could be to somehow notify your NFS clients, so they know that they need to unmount the NFS shares. I tried it, but there's still a time-out of several minutes. Not ideal when the UPS might kill the power any minute. I solved it by using upssched from nut. When the battery goes low, I umount the NFS share on the master (this is the only machine that has a share mounted on the NFS-server). The slaves will begin to shutdown a couple of seconds after the battery goes low, so this should be OK. I'll do some tests to see if this really works as I think it does. Maurice
