Re: Is it possible: IPsec tunnel with no static addresses?
On Fri, Dec 31, 2010 at 04:19:53PM -0600, Matt Evans wrote: A friend and I are both on dynamic IP residential broadband connections. We both use OpenBSD boxes as edge devices. We were wondering if it were possible to create an ipsec tunnel between us, even though we both have dynamic public IPs. The documentation I've read seems to suggest that at least _somebody_ must have a static IP. I can understand that at some point, needing the public IPs is necessary for setting up the tunnel, but is it possible that dyndns or some other dynamic mechansim can be used to find the public IPs as needed? Isn't it the case that IPsec can mutually authenticate peers based on keys, and fixed public IPs aren't required as part of peer authentication? Why do you think IPSec needs one fixed-IP endpoint? Certainly, things won't work if both of you change IP addresses before the DNS updates, but you seem to accept that. You can also get a fixed IP for free by contacting one of the IPv6 tunnel brokers. Yes, this will be IPv6-over-IPv4, which has its issues. Joachim -- PotD: textproc/groff - gnu clone of nroff http://www.joachimschipper.nl/
printing
First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ :lp=/dev/ulpt0:\ :af=/etc/foomatic/HPOJ.ppd:\ :if=/usr/local/bin/foomatic-rip:\ :sd=/var/spool/output:\ :lf=/var/log/lpd-errs: Here is my rc.conf.local: xdm_flags= httpd_flags= lpd_flags= #smbd_flags=-D# for normal use: -D #nmbd_flags=-D # for normal use: -D #rarpd_flags=-a #bootparamd_flags= #dhcpd_flags= #nfs_server=YES #portmap=YES Here is my error on running 'lp $somefile' ($somefile is a shell script that I own). lp: Error - scheduler not responding! Here is proof that lpd is started: $ps -auxU daemon USER PID %CPU %MEM VSZ RSS TT STAT STARTED\ daemon 31108 0.0 0.1 484 804 ?? Is 5:21PM\ TIMECOMMAND 0:00.00 lpd dmesg below. What am I overlooking? -- Edward Ahlsen-Girard Ft Walton Beach, FL OpenBSD 4.8-current (GENERIC) #522: Thu Dec 23 12:23:25 MST 2010 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) 4 CPU 2.66GHz (GenuineIntel 686-class) 2.66 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-ID real mem = 1072746496 (1023MB) avail mem = 1045127168 (996MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 11/12/02, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.3 @ 0xf0450 (56 entries) bios0: vendor Dell Computer Corporation version A03 date 11/12/2002 bios0: Dell Computer Corporation Dimension 4550 acpi0 at bios0: rev 0 acpi0: sleep states S0 S1 S3 S4 S5 acpi0: tables DSDT FACP SSDT APIC BOOT ASF! acpi0: wakeup devices VBTN(S4) PCI0(S3) USB0(S3) USB1(S3) USB2(S3) PCI1(S5) KBD_(S3) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 132MHz ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 1 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 2 (PCI1) acpicpu0 at acpi0 acpibtn0 at acpi0: VBTN bios0: ROM list: 0xc/0xf800 0xcf800/0x800 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82845G Host rev 0x01 intelagp0 at pchb0 agp0 at intelagp0: aperture at 0xe800, size 0x800 ppb0 at pci0 dev 1 function 0 Intel 82845G AGP rev 0x01 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 NVIDIA GeForce4 MX 420 rev 0xa3 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) uhci0 at pci0 dev 29 function 0 Intel 82801DB USB rev 0x01: apic 1 int 16 (irq 11) uhci1 at pci0 dev 29 function 1 Intel 82801DB USB rev 0x01: apic 1 int 19 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801DB USB rev 0x01: apic 1 int 18 (irq 9) ehci0 at pci0 dev 29 function 7 Intel 82801DB USB rev 0x01: apic 1 int 23 (irq 3) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb1 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0x81 pci2 at ppb1 bus 2 cmpci0 at pci2 dev 0 function 0 C-Media Electronics CMI8738/C3DX Audio rev 0x10: apic 1 int 21 (irq 11) audio0 at cmpci0 opl at cmpci0 not configured mpu at cmpci0 not configured vendor Broadcom, unknown product 0x4212 (class communications subclass modem, rev 0x02) at pci2 dev 1 function 0 not configured fxp0 at pci2 dev 8 function 0 Intel PRO/100 VE rev 0x81, i82562: apic 1 int 20 (irq 11), address 00:07:e9:c3:c0:ba inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0 ichpcib0 at pci0 dev 31 function 0 Intel 82801DB LPC rev 0x01 pciide0 at pci0 dev 31 function 1 Intel 82801DB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: WDC WD600BB-75CAA0 wd0: 16-sector PIO, LBA, 57220MB, 117187500 sectors wd1 at pciide0 channel 0 drive 1: WDC WD800JB-00JJC0 wd1: 16-sector PIO, LBA, 76319MB, 156301488 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: _NEC, DVD+RW ND-1100A, 10GE ATAPI 5/cdrom removable wd2 at pciide0 channel 1 drive 1: WDC WD800JB-00JJC0 wd2: 16-sector PIO, LBA, 76319MB, 156301488 sectors cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3 Intel 82801DB SMBus rev 0x01: apic 1 int 17 (irq 11) iic0 at ichiic0 spdmem0 at iic0 addr 0x50: 512MB DDR SDRAM non-parity PC2700CL2.5 spdmem1 at iic0 addr 0x51: 512MB DDR SDRAM non-parity PC2700CL2.5 usb1 at uhci0: USB
Re: New WANTLIB formats in ports
On Fri, Dec 31, 2010 at 07:04:14PM -0600, Markus Peloquin wrote: I've been having problems building ports in -current with the new WANTLIB formats. I just noticed a commit from late November saying I need -current {dpb, sqlports, pkg_add}, and I had updated the base system to -current: http://marc.info/?l=openbsd-ports-cvsm=128973351720992w=1 $ cd devel/gettext # make package === Checking files for gettext-0.18.1p0 `/usr/ports/distfiles/gettext-0.18.1.tar.gz' is up to date. (SHA256) gettext-0.18.1.tar.gz: OK === Verifying specs: c expat m ncurses stdc++ iconv=2 c expat m ncurses stdc++ iconv=2 Missing library for iconv=2.=0.0 Fatal error *** Error code 1 [...] And here are the WANTLIB lines that seem relevant, at least to me: $ grep WANTLIB devel/gettext/gettext.port.mk MODGETTEXT_WANTLIB =intl=5 iconv=6 WANTLIB += ${MODGETTEXT_WANTLIB} $ grep WANTLIB converters/libiconv/libiconv.port.mk MODLIBICONV_WANTLIB = iconv=2 WANTLIB += ${MODLIBICONV_WANTLIB} Does anybody know what might be going wrong? It's hard to imagine I discovered a 1.5-mo-old bug. Thanks Markus Your pkg_add is definitely not uptodate. In particular, check OpenBSD/LibSpec/Build.pm
syslog.conf(5) log a given facility only to a separate logfile, not /var/log/messages
Greetings, My Apple Airport Extreme wireless bridge forwards syslog messages of the following format using facility local0 to my OpenBSD syslogd(8) running in insecure -u mode thus: Jan 1 13:29:53 dadsairport dadsairport admin: Connection accepted from :::192.168.0.4/52199. Jan 1 13:46:33 dadsairport dadsairport dot11: Installed unicast CCMP key for supplicant 00:1e:52:72:20:06 I can direct these to a separate logfile using the following line in syslog.conf(5): local0.* /var/log/airport These messages are also directed by default to /var/log/messages as they are included in this default line of syslog.conf: *.notice;auth,authpriv,cron,ftp,kern,lpr,mail,user.none /var/log/messages My question is how can these messages be excluded from /var/log/messages? From my reading of the manual page, the only way to filter these messages using base syslogd is via the program tag, and as you can see from the above these tags vary. Is there any other way without installing syslogd-ng from ports? Thanks in advance for any assistance.
Re: Is it possible: IPsec tunnel with no static addresses?
Why do you think IPSec needs one fixed-IP endpoint? Certainly, things won't work if both of you change IP addresses before the DNS updates, but you seem to accept that. You can also get a fixed IP for free by contacting one of the IPv6 tunnel brokers. Yes, this will be IPv6-over-IPv4, which has its issues. I've never seen an example where hostnames are used in place of static IP addresses in configuration files. Is it the case that anywhere I see an ip address (filenames, conf file values, etc), I could just as easily put in foo.dyndns.org? If my searching and/or comprehension skills are lacking, could you send a link this way? Thanks, Matt
Re: syslog.conf(5) log a given facility only to a separate logfile, not /var/log/messages
Hi Damon, Damon McMahon wrote on Sun, Jan 02, 2011 at 12:26:07AM +1030: My Apple Airport Extreme wireless bridge forwards syslog messages of the following format using facility local0 to my OpenBSD syslogd(8) running in insecure -u mode thus: Jan 1 13:29:53 dadsairport dadsairport admin: Connection accepted from :::192.168.0.4/52199. Jan 1 13:46:33 dadsairport dadsairport dot11: Installed unicast CCMP key for supplicant 00:1e:52:72:20:06 I can direct these to a separate logfile using the following line in syslog.conf(5): local0.* /var/log/airport These messages are also directed by default to /var/log/messages as they are included in this default line of syslog.conf: *.notice;auth,authpriv,cron,ftp,kern,lpr,mail,user.none /var/log/messages My question is how can these messages be excluded from /var/log/messages? Wouldn't just changing that line too *.notice;auth,authpriv,cron,ftp,kern,local0,lpr,mail,user.none /var/log/messages do the job? Yours, Ingo
Re: syslog.conf(5) log a given facility only to a separate logfile, not /var/log/messages
On 2 January 2011 00:55, Ingo Schwarze schwa...@usta.de wrote: Hi Damon, Damon McMahon wrote on Sun, Jan 02, 2011 at 12:26:07AM +1030: My Apple Airport Extreme wireless bridge forwards syslog messages of the following format using facility local0 to my OpenBSD syslogd(8) running in insecure -u mode thus: Jan 1 13:29:53 dadsairport dadsairport admin: Connection accepted from :::192.168.0.4/52199. Jan 1 13:46:33 dadsairport dadsairport dot11: Installed unicast CCMP key for supplicant 00:1e:52:72:20:06 I can direct these to a separate logfile using the following line in syslog.conf(5): local0.* /var/log/airport These messages are also directed by default to /var/log/messages as they are included in this default line of syslog.conf: *.notice;auth,authpriv,cron,ftp,kern,lpr,mail,user.none /var/log/messages My question is how can these messages be excluded from /var/log/messages? Wouldn't just changing that line too *.notice;auth,authpriv,cron,ftp,kern,local0,lpr,mail,user.none /var/log/messages do the job? Yours, Ingo Thanks, Ingo :-) That works. I actually tried that, but didn't realise the section of the manual: Multiple selectors may be specified for a single action by separating them with semicolon (`;') characters. It is important to note, however, that each selector can modify the ones preceding it. means that selectors can only modify preceding selectors when they're on the same line, separated by semicolons. This is different to how pf.conf(5) is interpreted (for example) and that was my mistake. Cheers, Damon
Re: syslog.conf(5) log a given facility only to a separate logfile, not /var/log/messages
On 01/01/11 08:56, Damon McMahon wrote: Greetings, My Apple Airport Extreme wireless bridge forwards syslog messages of the following format using facility local0 to my OpenBSD syslogd(8) running in insecure -u mode thus: Jan 1 13:29:53 dadsairport dadsairport admin: Connection accepted from :::192.168.0.4/52199. Jan 1 13:46:33 dadsairport dadsairport dot11: Installed unicast CCMP key for supplicant 00:1e:52:72:20:06 I can direct these to a separate logfile using the following line in syslog.conf(5): local0.* /var/log/airport These messages are also directed by default to /var/log/messages as they are included in this default line of syslog.conf: *.notice;auth,authpriv,cron,ftp,kern,lpr,mail,user.none /var/log/messages My question is how can these messages be excluded from /var/log/messages? From my reading of the manual page, the only way to filter these messages using base syslogd is via the program tag, and as you can see from the above these tags vary. Is there any other way without installing syslogd-ng from ports? Thanks in advance for any assistance. man syslog.conf - especially the parts about !!prog There is an example for spamd that will be interesting for you.
How do I set process memory ulimits system wide on OpenBSD?
I've installed OpenBSD 4.7, i386 in a VMWare virtual machine with 3GB RAM. I find I can't allocate more than 1GB to any process as root. ksh ulimit builtin provides me this when I try to set the hard limit unlimited. Even so, when I set the hard and soft limits for, say, 'ulimit -d' as root and then su my application user, the specified limit is unattainable. # ulimit -d 1048576 # ulimit -Hd unlimited # ulimit -d unlimited # ulimit -d 1048576 # su - xyz $ ulimit -d 524288 $ ulimit -d 1024575 ksh: ulimit: exceeds allowable limit Other operating systems have a configuration such as /etc/security/limits.conf. What is the equivalent in OpenBSD? -- Douglas Held d...@douglasheld.net +447986527654
Re: How do I set process memory ulimits system wide on OpenBSD?
On Sat, Jan 01, 2011 at 02:54:48PM +, Douglas Held wrote: I've installed OpenBSD 4.7, i386 in a VMWare virtual machine with 3GB RAM. I find I can't allocate more than 1GB to any process as root. ksh ulimit builtin provides me this when I try to set the hard limit unlimited. 1GB is the hard limit in the kernel (for i386). There are a number of factors that play into this, the limitations of i386 with W^X, address space randomisation, space for mmap, etc. Basically the price you pay for OpenBSDs invisible security features. There are some recent patches on tech@ that raise the limit a bit, iirc. Even so, when I set the hard and soft limits for, say, 'ulimit -d' as root and then su my application user, the specified limit is unattainable. # ulimit -d 1048576 # ulimit -Hd unlimited # ulimit -d unlimited # ulimit -d 1048576 # su - xyz $ ulimit -d 524288 $ ulimit -d 1024575 ksh: ulimit: exceeds allowable limit Other operating systems have a configuration such as /etc/security/limits.conf. What is the equivalent in OpenBSD? -- Douglas Held d...@douglasheld.net +447986527654
power button and OpenBSD 4.8
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi all and happy new year! I have an OpenBSD 4.8 VM with KVM (qemu-kvm 0.12.5) and I've found that when I run system_powerdown (it simulate the pressing of a fixed feature acpi power button) from Qemu Monitor, the VM freezes using both bsd and bsd.mp stock kernel. Does it work on physical HW? I copy the output of dmesg if this can provide some more information. - --- bsd:~$ dmesg OpenBSD 4.8 (GENERIC.MP) #359: Mon Aug 16 09:16:26 MDT 2010 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: QEMU Virtual CPU version 0.12.5 (AuthenticAMD 686-class, 512KB L2 cache) 3.08 GHz cpu0: FPU,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3,CX16 real mem = 536428544 (511MB) avail mem = 517672960 (493MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 06/23/99, BIOS32 rev. 0 @ 0xff046, SMBIOS rev. 2.4 @ 0x1ef0 (10 entries) bios0: vendor Bochs version Bochs date 01/01/2007 bios0: Bochs Bochs acpi0 at bios0: rev 0 acpi0: sleep states S3 S4 S5 acpi0: tables DSDT FACP SSDT APIC HPET acpi0: wakeup devices acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat acpihpet0 at acpi0: 1 Hz acpiprt0 at acpi0: bus 0 (PCI0) mpbios0 at bios0: Intel MP Specification 1.4 cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 2146MHz mpbios0: bus 0 is type PCI mpbios0: bus 1 is type ISA ioapic0 at mainbus0: apid 1 pa 0xfec0, version 11, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 1 bios0: ROM list: 0xc/0x8c00 0xc9000/0x8000 0xd1000/0x2200 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82441FX rev 0x02 pcib0 at pci0 dev 1 function 0 Intel 82371SB ISA rev 0x00 pciide0 at pci0 dev 1 function 1 Intel 82371SB IDE rev 0x00: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: QEMU HARDDISK wd0: 16-sector PIO, LBA48, 38912MB, 79691776 sectors wd0(pciide0:0:0): using PIO mode 0, DMA mode 2 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: QEMU, QEMU DVD-ROM, 0.12 ATAPI 5/cdrom removable cd0(pciide0:1:0): using PIO mode 0 piixpm0 at pci0 dev 1 function 3 Intel 82371AB Power rev 0x03: apic 1 int 9 (irq 9) iic0 at piixpm0 iic0: addr 0x19 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x1b 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x1c 0f=00 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x1d 0f=00 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x1e 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x1f 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x29 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x2b 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x4c 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words 00= 01= 02= 03= 04= 05= 06= 07= iic0: addr 0x4e 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words 00= 01= 02= 03= 04= 05= 06= 07= vga1 at pci0 dev 2 function 0 Cirrus Logic CL-GD5446 rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) em0 at pci0 dev 3 function 0 Intel PRO/1000MT (82540EM) rev 0x03: apic 1 int 11 (irq 11), address 00:16:3e:00:00:33 isa0 at pcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com0: console pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pmsi0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pmsi0 mux 0 pcppi0 at isa0 port 0x61 spkr0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: density unknown fd1 at fdc0 drive 1: density unknown mtrr: Pentium Pro MTRR support nvram: invalid checksum softraid0 at root root on wd0a swap on wd0b dump on wd0b WARNING: / was not properly unmounted clock: unknown CMOS layout arpresolve: 10.1.0.10: route without link local address arpresolve: 10.1.0.10: route without link local address arpresolve: 10.1.0.10: route without link local address -
Re: How do I set process memory ulimits system wide on OpenBSD?
OK. 1GB hard limit, I can work with that. What about the reduced limit for my non root user? For now I'll simply carry out my processing as root, but this can hardly be considered best practices. Doug On Sat, Jan 1, 2011 at 3:23 PM, Tobias Ulmer tobi...@tmux.org wrote: On Sat, Jan 01, 2011 at 02:54:48PM +, Douglas Held wrote: I've installed OpenBSD 4.7, i386 in a VMWare virtual machine with 3GB RAM. I find I can't allocate more than 1GB to any process as root. ksh ulimit builtin provides me this when I try to set the hard limit unlimited. 1GB is the hard limit in the kernel (for i386). There are a number of factors that play into this, the limitations of i386 with W^X, address space randomisation, space for mmap, etc. Basically the price you pay for OpenBSDs invisible security features. There are some recent patches on tech@ that raise the limit a bit, iirc. Even so, when I set the hard and soft limits for, say, 'ulimit -d' as root and then su my application user, the specified limit is unattainable. # ulimit -d 1048576 # ulimit -Hd unlimited # ulimit -d unlimited # ulimit -d 1048576 # su - xyz $ ulimit -d 524288 $ ulimit -d 1024575 ksh: ulimit: exceeds allowable limit Other operating systems have a configuration such as /etc/security/limits.conf. What is the equivalent in OpenBSD? -- Douglas Held d...@douglasheld.net +447986527654 -- Douglas Held d...@douglasheld.net +447986527654
Re: New WANTLIB formats in ports
On 2011-01-01 07:30, Marc Espie wrote: On Fri, Dec 31, 2010 at 07:04:14PM -0600, Markus Peloquin wrote: I've been having problems building ports in -current with the new WANTLIB formats. I just noticed a commit from late November saying I need -current {dpb, sqlports, pkg_add}, and I had updated the base system to -current: http://marc.info/?l=openbsd-ports-cvsm=128973351720992w=1 $ cd devel/gettext # make package === Checking files for gettext-0.18.1p0 `/usr/ports/distfiles/gettext-0.18.1.tar.gz' is up to date. (SHA256) gettext-0.18.1.tar.gz: OK === Verifying specs: c expat m ncurses stdc++ iconv=2 c expat m ncurses stdc++ iconv=2 Missing library for iconv=2.=0.0 Fatal error *** Error code 1 [...] And here are the WANTLIB lines that seem relevant, at least to me: $ grep WANTLIB devel/gettext/gettext.port.mk MODGETTEXT_WANTLIB =intl=5 iconv=6 WANTLIB += ${MODGETTEXT_WANTLIB} $ grep WANTLIB converters/libiconv/libiconv.port.mk MODLIBICONV_WANTLIB = iconv=2 WANTLIB += ${MODLIBICONV_WANTLIB} Does anybody know what might be going wrong? It's hard to imagine I discovered a 1.5-mo-old bug. Thanks Markus Your pkg_add is definitely not uptodate. In particular, check OpenBSD/LibSpec/Build.pm Thanks, I don't know why that wasn't updated...
Re: How do I set process memory ulimits system wide on OpenBSD?
Hi Douglas, Douglas Held wrote on Sat, Jan 01, 2011 at 02:54:48PM +: I've installed OpenBSD 4.7, i386 in a VMWare virtual machine with 3GB RAM. I find I can't allocate more than 1GB to any process as root. ksh ulimit builtin provides me this when I try to set the hard limit unlimited. Even so, when I set the hard and soft limits for, say, 'ulimit -d' as root and then su my application user, the specified limit is unattainable. # ulimit -d 1048576 # ulimit -Hd unlimited # ulimit -d unlimited # ulimit -d 1048576 # su - xyz $ ulimit -d 524288 $ ulimit -d 1024575 ksh: ulimit: exceeds allowable limit Other operating systems have a configuration such as /etc/security/limits.conf. What is the equivalent in OpenBSD? Have a look at login.conf(5). Of course, that will only work as far up as supported by your architecture. Yours, Ingo
Re: How do I set process memory ulimits system wide on OpenBSD?
On Sat, Jan 01, 2011 at 03:53:09PM +, Douglas Held wrote: OK. 1GB hard limit, I can work with that. What about the reduced limit for my non root user? For now I'll simply carry out my processing as root, but this can hardly be considered best practices. Put the user in the staff class (login.conf(5), passwd(5)). The user can then raise its limits. Doug On Sat, Jan 1, 2011 at 3:23 PM, Tobias Ulmer tobi...@tmux.org wrote: On Sat, Jan 01, 2011 at 02:54:48PM +, Douglas Held wrote: I've installed OpenBSD 4.7, i386 in a VMWare virtual machine with 3GB RAM. I find I can't allocate more than 1GB to any process as root. ksh ulimit builtin provides me this when I try to set the hard limit unlimited. 1GB is the hard limit in the kernel (for i386). There are a number of factors that play into this, the limitations of i386 with W^X, address space randomisation, space for mmap, etc. Basically the price you pay for OpenBSDs invisible security features. There are some recent patches on tech@ that raise the limit a bit, iirc. Even so, when I set the hard and soft limits for, say, 'ulimit -d' as root and then su my application user, the specified limit is unattainable. # ulimit -d 1048576 # ulimit -Hd unlimited # ulimit -d unlimited # ulimit -d 1048576 # su - xyz $ ulimit -d 524288 $ ulimit -d 1024575 ksh: ulimit: exceeds allowable limit Other operating systems have a configuration such as /etc/security/limits.conf. What is the equivalent in OpenBSD? -- Douglas Held d...@douglasheld.net +447986527654 -- Douglas Held d...@douglasheld.net +447986527654
Re: reasoning behind default primary group being user
On 12/31/10 14:31, Joel Rees wrote: Okay, that's dated after the freeze for 4.8, so this is not just a PPC issue. Okay, that's dated after the freeze for 4.8? so this is not just a PPC issue. And it's taken care of already. FWIW, distrib/miniroot/install.sh is not machine dependant.
Re: printing
On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ :lp=/dev/ulpt0:\ :af=/etc/foomatic/HPOJ.ppd:\ :if=/usr/local/bin/foomatic-rip:\ :sd=/var/spool/output:\ :lf=/var/log/lpd-errs: Here is my rc.conf.local: xdm_flags= httpd_flags= lpd_flags= #smbd_flags=-D # for normal use: -D #nmbd_flags=-D # for normal use: -D #rarpd_flags=-a #bootparamd_flags= #dhcpd_flags= #nfs_server=YES #portmap=YES Here is my error on running 'lp $somefile' ($somefile is a shell script that I own). lp: Error - scheduler not responding! Here is proof that lpd is started: 'lp' is a CUPS command. you want 'lpr'. $ps -auxU daemon USER PID %CPU %MEM VSZ RSS TT STAT STARTED\ daemon 31108 0.0 0.1 484 804 ?? Is 5:21PM\ TIME COMMAND 0:00.00 lpd dmesg below. What am I overlooking? -- Edward Ahlsen-Girard Ft Walton Beach, FL OpenBSD 4.8-current (GENERIC) #522: Thu Dec 23 12:23:25 MST 2010 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) 4 CPU 2.66GHz (GenuineIntel 686-class) 2.66 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-ID real mem = 1072746496 (1023MB) avail mem = 1045127168 (996MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 11/12/02, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.3 @ 0xf0450 (56 entries) bios0: vendor Dell Computer Corporation version A03 date 11/12/2002 bios0: Dell Computer Corporation Dimension 4550 acpi0 at bios0: rev 0 acpi0: sleep states S0 S1 S3 S4 S5 acpi0: tables DSDT FACP SSDT APIC BOOT ASF! acpi0: wakeup devices VBTN(S4) PCI0(S3) USB0(S3) USB1(S3) USB2(S3) PCI1(S5) KBD_(S3) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 132MHz ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 1 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 2 (PCI1) acpicpu0 at acpi0 acpibtn0 at acpi0: VBTN bios0: ROM list: 0xc/0xf800 0xcf800/0x800 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82845G Host rev 0x01 intelagp0 at pchb0 agp0 at intelagp0: aperture at 0xe800, size 0x800 ppb0 at pci0 dev 1 function 0 Intel 82845G AGP rev 0x01 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 NVIDIA GeForce4 MX 420 rev 0xa3 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) uhci0 at pci0 dev 29 function 0 Intel 82801DB USB rev 0x01: apic 1 int 16 (irq 11) uhci1 at pci0 dev 29 function 1 Intel 82801DB USB rev 0x01: apic 1 int 19 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801DB USB rev 0x01: apic 1 int 18 (irq 9) ehci0 at pci0 dev 29 function 7 Intel 82801DB USB rev 0x01: apic 1 int 23 (irq 3) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb1 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0x81 pci2 at ppb1 bus 2 cmpci0 at pci2 dev 0 function 0 C-Media Electronics CMI8738/C3DX Audio rev 0x10: apic 1 int 21 (irq 11) audio0 at cmpci0 opl at cmpci0 not configured mpu at cmpci0 not configured vendor Broadcom, unknown product 0x4212 (class communications subclass modem, rev 0x02) at pci2 dev 1 function 0 not configured fxp0 at pci2 dev 8 function 0 Intel PRO/100 VE rev 0x81, i82562: apic 1 int 20 (irq 11), address 00:07:e9:c3:c0:ba inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0 ichpcib0 at pci0 dev 31 function 0 Intel 82801DB LPC rev 0x01 pciide0 at pci0 dev 31 function 1 Intel 82801DB IDE rev 0x01: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: WDC WD600BB-75CAA0 wd0: 16-sector PIO, LBA, 57220MB, 117187500 sectors wd1 at pciide0 channel 0 drive 1: WDC WD800JB-00JJC0 wd1: 16-sector PIO, LBA, 76319MB, 156301488 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: _NEC, DVD+RW ND-1100A, 10GE ATAPI 5/cdrom removable wd2 at pciide0 channel 1 drive 1: WDC WD800JB-00JJC0 wd2: 16-sector PIO, LBA, 76319MB, 156301488 sectors cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 wd2(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 5 ichiic0 at pci0 dev 31 function 3
Re: Does anybody know a PeerGuardian like app?
On windows stop using peerguardian, it's dead. Use peerblock ;) On OpenBSD... what about PF with tables? On Wed, Dec 29, 2010 at 5:04 PM, S Mathias smathias1...@yahoo.com wrote: Are there any programs blocking ip, and has frequently updated lists, like the peerguardian on windows? sorry for the question, but i looking for this kind of application :O Thank you, and a happy christmas!
Re: printing
On Sat, Jan 01, 2011 at 02:07:02PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-01 19:34:40: On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ lp=/dev/ulpt0:\ af=/etc/foomatic/HPOJ.ppd:\ where did HPOJ.ppd come from? -- jake...@sdf.lonestar.org SDF Public Access UNIX System - http://sdf.lonestar.org
Re: reboot command doesn't work
I have tried booting kernel files with acpi enabled only, apm enabled only, acpi apm disabled, and acpi apm disabled. Still no successful reboot. Don't know of anything else to try, so any other tips/hints would be appreciated. Thanks in advance! MC. On 12/31/2010 6:00 PM, netmgr7 wrote: On 12/31/2010 3:23 PM, Ted Unangst wrote: On Fri, Dec 31, 2010 at 1:50 AM, Markus Bergkvist markus.bergkv...@telia.com wrote: I've been using some Compaq Deskpro DPENS Pentium II machines as OpenBSD firewalls since late 2.x to early 3.x. Recently I made the jump to 4.8 and all seems to work fine except I noticed the reboot command does not appear to work. The machine gets halted, screen blanks out, but that's as far as it goes. I re-installed 3.3 and confirmed the reboot works fine under 3.3. Any tips/hints to help troubleshoot or resolve this problem would be greatly appreciated. We wouldn't have to play guess the machine if you sent a dmesg, but my first approach would be to disable some combination of acpi and apm. Do you have powerdown=YES in /etc/rc.shutdown? That has nothing to do with rebooting. Here's the dmesg from my machine OpenBSD 4.8 (GENERIC) #136: Mon Aug 16 09:06:23 MDT 2010 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Pentium II (GenuineIntel 686-class, 512KB L2 cache) 350 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PSE36,MMX,FXSR real mem = 66678784 (63MB) avail mem = 55726080 (53MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 06/29/98, BIOS32 rev. 0 @ 0xec700, SMBIOS rev. 2.1 @ 0xf1146 (48 entries) bios0: vendor Compaq version 686T5 date 06/29/98 bios0: Compaq Deskpro EN Series SFF acpi0 at bios0: rev 0 acpi0: sleep states S0 S1 S4 S5, can't enable ACPI bios0: ROM list: 0xc/0x8000 0xe/0x8000! cpu0 at mainbus0: (uniprocessor) pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x02 intelagp0 at pchb0 agp0 at intelagp0: aperture at 0x4400, size 0x400 ppb0 at pci0 dev 1 function 0 Intel 82443BX AGP rev 0x02 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Rage Pro rev 0x5c wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) fxp0 at pci0 dev 10 function 0 Intel 8255x rev 0x05, i82558: irq 11, address 00:08:c7:81:20:fc inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 0 xl0 at pci0 dev 13 function 0 3Com 3c905 100Base-TX rev 0x00: irq 11, address 00:60:97:cf:35:9b nsphy0 at xl0 phy 24: DP83840 10/100 PHY, rev. 1 xl1 at pci0 dev 14 function 0 3Com 3c905 100Base-TX rev 0x00: irq 11, address 00:60:08:b0:cc:d9 nsphy1 at xl1 phy 24: DP83840 10/100 PHY, rev. 1 piixpcib0 at pci0 dev 20 function 0 Intel 82371AB PIIX4 ISA rev 0x02 pciide0 at pci0 dev 20 function 1 Intel 82371AB IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: WDC AC26400R wd0: 16-sector PIO, LBA, 6149MB, 12594960 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: COMPAQ, CD-224E, 8.0J ATAPI 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, DMA mode 2 uhci0 at pci0 dev 20 function 2 Intel 82371AB USB rev 0x01: irq 11 piixpm0 at pci0 dev 20 function 3 Intel 82371AB Power rev 0x02: SMI iic0 at piixpm0 admtemp0 at iic0 addr 0x4c: adm1021 spdmem0 at iic0 addr 0x50: 64MB SDRAM non-parity PC100CL3 isa0 at piixpcib0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pmsi0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pmsi0 mux 0 sb0 at isa0 port 0x220/24 irq 5 drq 1: dsp v3.01 midi0 at sb0: SB MIDI UART audio0 at sb0 opl at sb0 not configured pcppi0 at isa0 port 0x61 spkr0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec usb0 at uhci0: USB revision 1.0 uhub0 at usb0 Intel UHCI root hub rev 1.00/1.00 addr 1 biomask ef45 netmask ef45 ttymask ffdf mtrr: Pentium Pro MTRR support softraid0 at root root on wd0a swap on wd0b dump on wd0b #
Re: printing
On Sun, Jan 02, 2011 at 12:26:38AM +, Jacob Meuser wrote: On Sat, Jan 01, 2011 at 02:07:02PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-01 19:34:40: On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ lp=/dev/ulpt0:\ af=/etc/foomatic/HPOJ.ppd:\ where did HPOJ.ppd come from? fwiw, I just tried with my HP officejet 4500, to see if it prints with ulpt and lpd on my laptop (I normally use ugen and cups on my desktop... I need ugen for the scanner). I installed hpijs and foomatic-filters packages. this pulled in a2ps and ghostscript. located the ppd I want, which is /usr/local/share/foomatic/db/source/PPD/HP/hp-officejet_4500_g510g-m-hpijs.ppd.gz I had to dig for that. well, 'pkg_info -L hpijs | grep 4500' is how I found it. not sure why 'foomatic-ppdfile -P 4500' did not find it. I think it should. anyway ... $ zcat /usr/local/share/foomatic/db/source/PPD/HP/hp-officejet_4500_g510g-m-hpijs.ppd.gz hpoj4500_hpijs.ppd $ sudo cp hpoj4500_hpijs.ppd /etc/foomatic $ sudo mg /etc/printcap $ cat /etc/printcap # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:\ # :lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: #rp|remote line printer:\ # :lp=:rm=music.humppa.hu:rp=lp:sd=/var/spool/output:lf=/var/log/lpd-errs: # basically copied from local/share/doc/pkg-readmes/foomatic-filters # but add the 'sh' to not get the burst page header lp:\ :lp=/dev/ulpt0:\ :af=/etc/foomatic/hpoj4500_hpijs.ppd:\ :if=/usr/local/bin/foomatic-rip:\ :sd=/var/spool/output:\ :lf=/var/log/lpd-errs:\ :sh: $ sudo lpd $ lpr bin/aup and viola, aup, a 10 line shell script, is printed on paper moral of the story: use the right PPD file. how did I know which one to use? well, I know ijs works with ghostscript, and I've used the ijs drivers from gutenprint with lpd. seems to me the most likely to work, since ghostscript is a classical lpd filter. -- jake...@sdf.lonestar.org SDF Public Access UNIX System - http://sdf.lonestar.org
Re: Another carp problem.
Le Fri, 31 Dec 2010 18:09:40 +0100, Alessandro Baggi alessandro.ba...@gmail.com a icrit : To exclude also pf rules problem, I've tried a rule set as: match...nat-to... pass all but the problem persists. Other Issue? Hmmm Ok, I don't know where is the problem. I've made recently a lot of tests with carp and pfsync without any problem (on 4.8/amd64). IMO it should work (but I don't use the carp peer option). One remark, you should use a dedicated interface for pfsync. In your setup, rl0 is shared by pfsync and carp1. This is a no sense. Best regards and happy new year to all.
Re: Another carp problem.
Hi , Happy new year to all. I am little bit busy. But, I can help you with below URL . http://www.pantz.org/software/carp/openbsdfirewallfailover.html It may be useful. On Sun, Jan 2, 2011 at 7:33 AM, Patrick Lamaiziere patf...@davenulle.orgwrote: Le Fri, 31 Dec 2010 18:09:40 +0100, Alessandro Baggi alessandro.ba...@gmail.com a icrit : To exclude also pf rules problem, I've tried a rule set as: match...nat-to... pass all but the problem persists. Other Issue? Hmmm Ok, I don't know where is the problem. I've made recently a lot of tests with carp and pfsync without any problem (on 4.8/amd64). IMO it should work (but I don't use the carp peer option). One remark, you should use a dedicated interface for pfsync. In your setup, rl0 is shared by pfsync and carp1. This is a no sense. Best regards and happy new year to all. -- Thank you Indunil Jayasooriya
Re: printing
Jacob Meuser jakemsr () sdf ! lonestar ! org at 2011-01-02 0:26:38 wrote: On Sat, Jan 01, 2011 at 02:07:02PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-01 19:34:40: On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ lp=/dev/ulpt0:\ af=/etc/foomatic/HPOJ.ppd:\ where did HPOJ.ppd come from? -- jake...@sdf.lonestar.org From the /etc/cups/ppd; only place I saw one. CUPS is dragged in by freerdp. I am not trying to use it. If there is a better filter for the 5510v I'll use it. -- Edward Ahlsen-Girard Ft Walton Beach, FL
Re: printing
Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-02 1:24:20 wrote: On Sun, Jan 02, 2011 at 12:26:38AM +, Jacob Meuser wrote: On Sat, Jan 01, 2011 at 02:07:02PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-01 19:34:40: On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ lp=/dev/ulpt0:\ af=/etc/foomatic/HPOJ.ppd:\ where did HPOJ.ppd come from? fwiw, I just tried with my HP officejet 4500, to see if it prints with ulpt and lpd on my laptop (I normally use ugen and cups on my desktop... I need ugen for the scanner). I installed hpijs and foomatic-filters packages. this pulled in a2ps and ghostscript. located the ppd I want, which is /usr/local/share/foomatic/db/source/PPD/HP/hp-officejet_4500_g510g-m-hpijs.ppd.gz I had to dig for that. well, 'pkg_info -L hpijs | grep 4500' is how I found it. not sure why 'foomatic-ppdfile -P 4500' did not find it. I think it should. anyway ... $ zcat /usr/local/share/foomatic/db/source/PPD/HP/hp-officejet_4500_g510g-m-hpijs.ppd. \ gz hpoj4500_hpijs.ppd $ sudo cp hpoj4500_hpijs.ppd /etc/foomatic $ sudo mg /etc/printcap $ cat /etc/printcap # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:\ # :lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: #rp|remote line printer:\ # :lp=:rm=music.humppa.hu:rp=lp:sd=/var/spool/output:lf=/var/log/lpd-errs: # basically copied from local/share/doc/pkg-readmes/foomatic-filters # but add the 'sh' to not get the burst page header lp:\ :lp=/dev/ulpt0:\ :af=/etc/foomatic/hpoj4500_hpijs.ppd:\ :if=/usr/local/bin/foomatic-rip:\ :sd=/var/spool/output:\ :lf=/var/log/lpd-errs:\ :sh: $ sudo lpd $ lpr bin/aup and viola, aup, a 10 line shell script, is printed on paper moral of the story: use the right PPD file. how did I know which one to use? well, I know ijs works with ghostscript, and I've used the ijs drivers from gutenprint with lpd. seems to me the most likely to work, since ghostscript is a classical lpd filter. -- jake...@sdf.lonestar.org Shameless cloning using the hp-officejet_5500-hpijs.ppd file worked pretty well. Eventually I'll want to put in scan support too, but that can wait until I'm worn out from the dance of joy over just printing. Many, many thanks. -- Edward Ahlsen-Girard Ft Walton Beach, FL
Ahmed
Je suis le fils de l'ancien ministre de la Guinie (Mariame Sy Diallo) mais je vis actuellement en Angleterre, j'ai trouvi votre adresse ` la chambre de commerce ici ` Londres, j'ai besoin de votre aide pour investir au Maroc ou Algirie ou en Tunisie. Si vous jtes intiressi ` ma demandes'il vous plant contactez-moi sur mon adresse e-mail (ahmeddiall...@gmail.com) ou sur mon numiro, (+447031869448). Merci de votre bonne comprihension Ahmed. Pour plus de ditails. Je veux en savoir plus sur vous Votre nom ... Votre ville actuelle... Votre profession .. ... ... ... .. Votre numiro de tiliphone ... ... ... ... Votre bge ...
Wifi host AP thoughts
I was thinking of building a new wifi AP. The following is a stream of thoughts on the subject. Any constructive suggestions are welcome. Requirements: * Compatibility with Androids, Kindles, x86 Linux, OpenBSD wifi clients * Strong in-doors signal * Maximum control Nice to have: * Combine the AP with the wired Ethernet OpenBSD router. * Low power noise. Complications: * A few wireless networks in nearby houses * OpenBSD AP capable devices have a CAVEAT: Host AP mode doesn't support power saving. Clients attempting to use power saving mode may experience significant packet loss (disabling power saving on the client will fix this). Possible design: * OpenBSD host with 2 or more wired Ethernets * USB wifi device (free to switch host hardware) * External Hi-Gain antenna Detailed implementation: * small i386 or armish machine for the host (Soekris?) * Hawking HWUG1 (rum(4)) ( http://goo.gl/ccd6Q ) * Hawking HAI7SIP Antenna ( http://goo.gl/Axg7j ) Does anybody know if the CAVEAT above present a problem in real life for the clients I listed? Thanks Greg -- nest.cx is Gmail hosted, use PGP for anything private. Key: http://tinyurl.com/ho8qg Fingerprint: 5E2B 2D0E 1E03 2046 BEC3 4D50 0B15 42BD 8DF5 A1B0
Re: printing
On Sat, Jan 01, 2011 at 07:52:24PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org at 2011-01-02 0:26:38 wrote: On Sat, Jan 01, 2011 at 02:07:02PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-01 19:34:40: On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ lp=/dev/ulpt0:\ af=/etc/foomatic/HPOJ.ppd:\ where did HPOJ.ppd come from? -- jake...@sdf.lonestar.org From the /etc/cups/ppd; only place I saw one. CUPS is dragged in by freerdp. I am not trying to use it. those PPDs only work with CUPS, and they are only general purpose PPDs. If there is a better filter for the 5510v I'll use it. foomatic-db, foomatic-db-gutenprint, hpijs and maybe other packages contain more sepcific PPD files. -- Edward Ahlsen-Girard Ft Walton Beach, FL -- jake...@sdf.lonestar.org SDF Public Access UNIX System - http://sdf.lonestar.org
Re: printing
On Sat, Jan 01, 2011 at 10:01:20PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-02 1:24:20 wrote: On Sun, Jan 02, 2011 at 12:26:38AM +, Jacob Meuser wrote: On Sat, Jan 01, 2011 at 02:07:02PM -0600, Ed Ahlsen-Girard wrote: Jacob Meuser jakemsr () sdf ! lonestar ! org wrote at 2011-01-01 19:34:40: On Sat, Jan 01, 2011 at 07:03:52AM -0600, Ed Ahlsen-Girard wrote: First, Happy New Year! I resolved last week to stop using Windows to print from my OpenBSD machine, so I re-read man pages for and re-tried CUPS, lpd, foomatic, etc. As it stands now, here is my printcap: # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: lp|5510:\ lp=/dev/ulpt0:\ af=/etc/foomatic/HPOJ.ppd:\ where did HPOJ.ppd come from? fwiw, I just tried with my HP officejet 4500, to see if it prints with ulpt and lpd on my laptop (I normally use ugen and cups on my desktop... I need ugen for the scanner). I installed hpijs and foomatic-filters packages. this pulled in a2ps and ghostscript. located the ppd I want, which is /usr/local/share/foomatic/db/source/PPD/HP/hp-officejet_4500_g510g-m-hpijs.ppd.gz I had to dig for that. well, 'pkg_info -L hpijs | grep 4500' is how I found it. not sure why 'foomatic-ppdfile -P 4500' did not find it. I think it should. anyway ... $ zcat /usr/local/share/foomatic/db/source/PPD/HP/hp-officejet_4500_g510g-m-hpijs.ppd. \ gz hpoj4500_hpijs.ppd $ sudo cp hpoj4500_hpijs.ppd /etc/foomatic $ sudo mg /etc/printcap $ cat /etc/printcap # $OpenBSD: printcap,v 1.4 2003/03/28 21:32:30 jmc Exp $ #lp|local line printer:\ # :lp=/dev/lp:sd=/var/spool/output:lf=/var/log/lpd-errs: #rp|remote line printer:\ # :lp=:rm=music.humppa.hu:rp=lp:sd=/var/spool/output:lf=/var/log/lpd-errs: # basically copied from local/share/doc/pkg-readmes/foomatic-filters # but add the 'sh' to not get the burst page header lp:\ :lp=/dev/ulpt0:\ :af=/etc/foomatic/hpoj4500_hpijs.ppd:\ :if=/usr/local/bin/foomatic-rip:\ :sd=/var/spool/output:\ :lf=/var/log/lpd-errs:\ :sh: $ sudo lpd $ lpr bin/aup and viola, aup, a 10 line shell script, is printed on paper moral of the story: use the right PPD file. how did I know which one to use? well, I know ijs works with ghostscript, and I've used the ijs drivers from gutenprint with lpd. seems to me the most likely to work, since ghostscript is a classical lpd filter. -- jake...@sdf.lonestar.org Shameless cloning using the hp-officejet_5500-hpijs.ppd file worked pretty well. Eventually I'll want to put in scan support too, but that can wait until I'm worn out from the dance of joy over just printing. Many, many thanks. nice :) however, if you want to use MFPs for printing *and* scanning, you can't really use lpd. you'll have to disable ulpt in ukc and use your device as a ugen. then you have to use CUPS for printing. there are some ideas being formulated on how to make this easier, but nothing concrete yet. -- jake...@sdf.lonestar.org SDF Public Access UNIX System - http://sdf.lonestar.org
Re: printing
On Sun, 2 Jan 2011, Jacob Meuser wrote: snip I had to dig for that. well, 'pkg_info -L hpijs | grep 4500' is how I found it. not sure why 'foomatic-ppdfile -P 4500' did not find it. I think it should. anyway ... foomatic-ppdfile only works on xml files, not PPDs (it actually creates a PPD file from an XML definition). HPLIP only provides pre-formatted PPD files but not the XML sources so... yeah you do have to look for it manually. -- Antoine
Re: seeking SQLite on OpenBSD stories
Thanks to Marco, Marc and Jim for the responses. gives me a warm, fuzzy feeling to go on ahead and continue using SQLite. On Tue, Dec 7, 2010 at 11:48 PM, Marco Peereboom sl...@peereboom.us wrote: -- 8 --- The only thing I don't like is not having access to a non-sql API. One of the things I use it for is for a basic b+tree and I really could have done without the sql shiz. having looked into its innards, i'm trying to see how much time it would take me to remove the SQL shiz from it. maybe in a year's time. thanks again and have a wonderful new year to all. /e