Re: current: high interrupts on a macbook
On Jun 18 08:10:05, Jan Stary wrote: > > > On Fri, Jun 17, 2011 at 05:53:10PM +0200, Jan Stary wrote: > > > Since a few snapshots ago, current/amd64 has occassionaly > > > been interrupting like crazy on my macbook. top(1) shows > > > above 90% interrupt, and > > > > > > $ apm > > > Battery state: high, 91% remaining, 81 minutes life estimate > > > A/C adapter state: not connected > > > Performance adjustment mode: cool running (2000 MHz) > > > > > > 2000 Mhz is the highest possible frequency of my CPU; > > > there is nothing happening on the machine, and normally while > > > running 'apmd -C', this usually stays at 800 MHz. > > > > > > Sometimes it behaves like this since boot, > > > sometimes it gets into this state after a resume. > > > Sometimes a suspend/resume "fixes" that. > > > > > > Has something specific changed that I should test? > > On Jun 17 18:02:17, Otto Moerbeek wrote: > > Try a more recent snap, various things related to interrupt handling > > have been volatile these days. > > I upgraded last night, and got > > OpenBSD 4.9-current (GENERIC.MP) #105: Thu Jun 9 19:20:38 MDT 2011 > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > > which doesn't seem to be newer than what I had before. > (I upgraded from ftp.openbsd.org directly.) > > > > OpenBSD 4.9-current (GENERIC.MP) #105: Thu Jun 9 19:20:38 MDT 2011 > > > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > > The problem still exists in the latest snapshot. > I will try upgrading again later. This is just to confirm that the high interrupts exist in the last amd64 snapshot (yesterday). Now they consistently occur after suspend/resume. The machine will not suspend a second time. Is there something I should test? Jan OpenBSD 4.9-current (GENERIC.MP) #19: Mon Jul 11 12:20:24 MDT 2011 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 2646556672 (2523MB) avail mem = 2562048000 (2443MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xe (44 entries) bios0: vendor Apple Inc. version "MB31.88Z.008E.B02.0803051832" date 03/05/08 bios0: Apple Inc. MacBook3,1 acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP HPET APIC MCFG ASF! SBST ECDT SSDT SSDT SSDT SSDT SSDT acpi0: wakeup devices ADP1(S3) LID0(S3) ARPT(S3) GIGE(S3) UHC1(S3) UHC2(S3) UHC3(S3) UHC4(S3) UHC5(S3) EHC1(S3) EHC2(S3) EC__(S3) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpihpet0 at acpi0: 14318179 Hz acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM)2 Duo CPU T7300 @ 2.00GHz, 1995.29 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG cpu0: 4MB 64b/line 16-way L2 cache cpu0: apic clock running at 199MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 Duo CPU T7300 @ 2.00GHz, 1995.00 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG cpu1: 4MB 64b/line 16-way L2 cache ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 1 acpimcfg0 at acpi0 addr 0xf000, bus 0-255 acpiec0 at acpi0 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 2 (RP05) acpiprt2 at acpi0: bus 3 (RP06) acpiprt3 at acpi0: bus 4 (PCIB) acpicpu0 at acpi0: C3, C2, C1, PSS acpicpu1 at acpi0: C3, C2, C1, PSS acpiac0 at acpi0: AC unit offline acpibtn0 at acpi0: LID0 acpibtn1 at acpi0: PWRB acpibtn2 at acpi0: SLPB acpibat0 at acpi0: BAT0 model "15253732082930497" type 15253732284385612 oem "15253732284452179" acpivideo0 at acpi0: GFX0 cpu0: Enhanced SpeedStep 1995 MHz: speeds: 2000, 1800, 1600, 1400, 1200, 800 MHz memory map conflict 0xf00f8000/0x1000 memory map conflict 0xfed1c000/0x4000 memory map conflict 0xfffa/0x3 pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel GM965 Host" rev 0x03 vga1 at pci0 dev 2 function 0 "Intel GM965 Video" rev 0x03 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) intagp0 at vga1 agp0 at intagp0: aperture at 0xa000, size 0x1000 inteldrm0 at vga1: apic 1 int 16 drm0 at inteldrm0 "Intel GM965 Video" rev 0x03 at pci0 dev 2 function 1 not configured uhci0 at pci0 dev 26 function 0 "Intel 82801H USB" rev 0x03: apic 1 int 20 uhci1 at pci0 dev 26 function 1 "Intel 82801H USB" rev 0x03: apic 1 int 16 ehci0 at pci0 dev 26 function 7 "Intel 82801H USB" rev 0x03: apic 1 int 21 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 azalia0 at pci0 dev 27 function 0 "Intel 82801H HD Audio" rev 0x03: msi azalia0: codecs: Realtek ALC885 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 "Intel 82801H PCIE"
Salam Sejahtera/Good Day!!
Salam Sejahtera/Good Day!! I am Norasiah Binti Othman, a MALAYSIAN, Based in United Kingdom ,I will be pleased to have a discussion with you on my company intended offshore partnership,in which you will stand as a middle man between my company and the supplier of this product there in MALAYSIA. If you are genuinely interested,respond immediately with your mobile details. Do contact me directly on my email at: Regards, Norasiah Binti Othman. -- This message has been scanned for viruses and dangerous content by MailScanner , and is believed to be clean.
Re: How does OpenBSD compare to Ubuntu Server?
On Mon, 11 Jul 2011 21:13:10 -0700 patrick keshishian wrote: > > added daemons have different connotations from those included in obsd > > base, and this also applies to debian and derivatives. the closest > > parallel would be packages built from ports and the automation pkg_add > > performs on installing them > > you failed at making any point. I think the point was that things like avahi and cups do have exploits regularly and may not be required at all on certain systems and even manually using init.d stop and update-rc.d and chkconfig etc. etc. does not often work so every so often you have to find the new place to edit a script and prevent those things from running, I assume they assume why would anyone stop those, with this breaking install scripts, it is amateurish, brutish and flagrantly ignorant. Another annoyance is the assumption of "why would anyone not want to run a kde desktop without mysqld" and especially "apt-get remove 'plate from dishwasher' ... to do this you must remove the kitchen sink. And now I've got e-coli. I've also heard complaints, but this depends on your setup that some don't have enough bandwidth to keep their Linux box secure, so preventing removal of these things is plainly wrong.
Re: If I install OpenBSD 4.9, when will I have to upgrade to 5.0?
On Tue, 12 Jul 2011 08:32:55 +0200 (CEST) Francois Pussault wrote: > Hi, > I upgrade only when i need to, or when a version is done, to buy CD > & give money to the project. > So twice a year maximum, but most often on spring version once a year Really it depends on the apps you run. If you use fvwm and Xorg even then your unlikely to need to upgrade for quite a while (looking at exploit lists), add firefox and KDE or something which has received security warnings then when you have to upgrade will vary depending on necessity and your will to upgrade versus your will/ability and the varying ease to work around dependency problems in applications you use. I've been busy and thankfully just broke my record for keeping firefox upto date on desktops at 9 months but have to upgrade now. If you do this don't expect any help without using a snapshot to verify an issue on a Generic kernel first. For a base firewall you can choose to upgrade often for non security bug fixes or judging from it's past record run it for years and years whilst laughing at all the Linux boxes that could have been owned due to kernel exploits. If you think about it every major kernel exploit means that for all that time you were at risk and still are untill the next one. So whilst the risk may be small the potential and best practice is to constantly have to wipe your box. Security support for base could be said to be years and years but of course, non existent verbally after 6 months or non existent because it's generally not needed. You must keep track of what you add to systems of course but the mantra of just installing the latest package isn't a must and can be educational, especially if your configs prevent some of those exploits or as often is the case, they don't affect you.
Link exchange opportunity
Dear Webmaster, I recently came across journal.reallyenglish.com through search and really like it. I was just wondering if you would like to exchange links with me? You may be aware that exchanging links would be mutually beneficial and also very helpful in increasing traffic or visitors for both yours and my websites. If you are interested in exchanging links, please feel free to contact me at your earliest convenience and I will send you more details. Please let me know if you have any questions or comments. Best regards, Karina Sexton
Re: How does OpenBSD compare to Ubuntu Server?
On Thu, 7 Jul 2011 09:02:08 -0400 Juan Miscaro wrote: > Was wondering what advantages OpenBSD has over a progressive Linux > distribution such as Ubuntu (Server edition). One thing I noticed is > that they're having a hell of a time transitioning away from the > traditional sysvinit-based system to the Upstart event-based init > daemon system. You can also disable the X-aperture not only making your server more secure but also preventing stupid things like running KDE and god forbid, firefox on your server. I was truly shocked when I asked my cousin something inside his cage and he opened up Internet Exploiter on his exchange server to look it up. With the recent addition of HW acceleration and webgl, this is even more important.
OpenBSD GENERIC.MP -current 29 May Snapshot and 10 July Snapshot Panic
Hi Misc@,
Getting this panic over and over on a router. Something with uvm and
tcp_input. IPMI was enabled to get system sensors.
dmesg 29 May
OpenBSD 4.9-current (GENERIC.MP) #20: Sun May 29 04:42:43 WIT 2011
r...@aggregation-rf.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC.MP
RTC BIOS diagnostic error e
cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz ("GenuineIntel" 686-class) 3 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX1
6,xTPR,PDCM,SSE4.1
real mem = 2143801344 (2044MB)
avail mem = 2097905664 (2000MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 12/12/07, SMBIOS rev. 2.5 @
0x7fdfd000 (63 entries)
bios0: vendor Intel Corporation version
"S3200X38.86B.00.00.0045.082820081329" date 08/28/2008
bios0: Intel Corporation S3210SH
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT SLIC FACP APIC WDDT MCFG HPET SPCR SSDT SSDT SSDT SSDT
SSDT HEST BERT ERST EINJ DMAR
acpi0: wakeup devices SLPB(S5) NPE1(S5) NPE6(S5) P32_(S5) PS2M(S1)
PS2K(S1) ILAN(S5) PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5)
UHC1(S1) UHC2(S1) UHC3(S1) UH
C4(S1) EHCI(S1) EHC2(S1) UH42(S1) UHC5(S1) UHC6(S1) AZAL(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 332MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz ("GenuineIntel" 686-class) 3 GHz
cpu1:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX1
6,xTPR,PDCM,SSE4.1
ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 5
acpimcfg0 at acpi0 addr 0xf000, bus 0-63
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (NPE1)
acpiprt2 at acpi0: bus 1 (NPE6)
acpiprt3 at acpi0: bus 4 (P32_)
acpiprt4 at acpi0: bus 2 (PEX0)
acpiprt5 at acpi0: bus -1 (PEX1)
acpiprt6 at acpi0: bus -1 (PEX2)
acpiprt7 at acpi0: bus -1 (PEX3)
acpiprt8 at acpi0: bus 3 (PEX4)
acpiprt9 at acpi0: bus -1 (PEX5)
acpicpu0 at acpi0: PSS
acpicpu1 at acpi0: PSS
acpibtn0 at acpi0: SLPB
acpibtn1 at acpi0: PWRB
bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xc9000/0x1000
0xca000/0x1000 0xcb000/0x1800 0xcc800/0x1000
ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca2/2 spacing 1
cpu0: Enhanced SpeedStep 2993 MHz: speeds: 3000, 2000 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel 3200/3210 Host" rev 0x00
ppb0 at pci0 dev 6 function 0 "Intel 3210 PCIE" rev 0x00: apic 5 int 16
pci1 at ppb0 bus 1
em0 at pci1 dev 0 function 0 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic
5 int 16, address 00:24:81:7d:11:f4
em1 at pci1 dev 0 function 1 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic
5 int 17, address 00:24:81:7d:11:f5
em2 at pci0 dev 25 function 0 "Intel ICH9 IGP AMT" rev 0x02: apic 5 int
20, address 00:15:17:8d:4c:c5
uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x02: apic 5 int 18
uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x02: apic 5 int 21
ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x02: apic 5 int 17
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x02: apic 5 int 17
pci2 at ppb1 bus 2
ppb2 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x02: apic 5 int 17
pci3 at ppb2 bus 3
vga1 at pci3 dev 0 function 0 "Matrox MGA G200e (ServerEngines)" rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
uhci2 at pci0 dev 29 function 0 "Intel 82801I USB" rev 0x02: apic 5 int 23
uhci3 at pci0 dev 29 function 1 "Intel 82801I USB" rev 0x02: apic 5 int 19
uhci4 at pci0 dev 29 function 2 "Intel 82801I USB" rev 0x02: apic 5 int 18
ehci1 at pci0 dev 29 function 7 "Intel 82801I USB" rev 0x02: apic 5 int 23
usb1 at ehci1: USB revision 2.0
uhub1 at usb1 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 "Intel 82801BA Hub-to-PCI" rev 0x92
pci4 at ppb3 bus 4
em3 at pci4 dev 0 function 0 "Intel PRO/1000MT (82540EM)" rev 0x02: apic 5
int 16, address 00:07:e9:0f:44:37
skc0 at pci4 dev 1 function 0 "D-Link DGE-530T B1" rev 0x11, Yukon Lite
(0x9): apic 5 int 17
sk0 at skc0 port A: address 00:1b:11:10:07:6e
eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5
em4 at pci4 dev 2 function 0 "Intel PRO/1000MT (82541GI)" rev 0x05: apic 5
int 18, address 00:15:17:8d:4c:c3
ichpcib0 at pci0 dev 31 function 0 "Intel 82801IR LPC" rev 0x02: PM
disabled
pciide0 at pci0 dev 31 function 2 "Intel 82801I SATA" rev 0x02: DMA,
channel 0 configured to native-PCI, channel 1 configured to native-PCI
pciide0: using apic 5
Re: OpenBSD GENERIC.MP -current 29 May Snapshot and 10 July Snapshot Panic
On 2011-07-12, Insan Praja SW wrote: > Hi Misc@, > Getting this panic over and over on a router. Something with uvm and > tcp_input. IPMI was enabled to get system sensors. man crash "CRASH LOCATION DETERMINATION" http://www.openbsd.org/faq/faq2.html "How to gather further information from a kernel crash."
Re: OpenBSD GENERIC.MP -current 29 May Snapshot and 10 July Snapshot Panic
(a) not enough information
(b) you enabled things which are disabled for a good reason.
> Hi Misc@,
> Getting this panic over and over on a router. Something with uvm and
> tcp_input. IPMI was enabled to get system sensors.
>
> dmesg 29 May
>
>
> OpenBSD 4.9-current (GENERIC.MP) #20: Sun May 29 04:42:43 WIT 2011
>
> r...@aggregation-rf.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC.MP
> RTC BIOS diagnostic error e
> cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz ("GenuineIntel" 686-class) 3 GHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX1
> 6,xTPR,PDCM,SSE4.1
> real mem = 2143801344 (2044MB)
> avail mem = 2097905664 (2000MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 12/12/07, SMBIOS rev. 2.5 @
> 0x7fdfd000 (63 entries)
> bios0: vendor Intel Corporation version
> "S3200X38.86B.00.00.0045.082820081329" date 08/28/2008
> bios0: Intel Corporation S3210SH
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S1 S4 S5
> acpi0: tables DSDT SLIC FACP APIC WDDT MCFG HPET SPCR SSDT SSDT SSDT SSDT
> SSDT HEST BERT ERST EINJ DMAR
> acpi0: wakeup devices SLPB(S5) NPE1(S5) NPE6(S5) P32_(S5) PS2M(S1)
> PS2K(S1) ILAN(S5) PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5)
> UHC1(S1) UHC2(S1) UHC3(S1) UH
> C4(S1) EHCI(S1) EHC2(S1) UH42(S1) UHC5(S1) UHC6(S1) AZAL(S4)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: apic clock running at 332MHz
> cpu1 at mainbus0: apid 1 (application processor)
> cpu1: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz ("GenuineIntel" 686-class) 3 GHz
> cpu1:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX1
> 6,xTPR,PDCM,SSE4.1
> ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins
> ioapic0: misconfigured as apic 0, remapped to apid 5
> acpimcfg0 at acpi0 addr 0xf000, bus 0-63
> acpihpet0 at acpi0: 14318179 Hz
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus -1 (NPE1)
> acpiprt2 at acpi0: bus 1 (NPE6)
> acpiprt3 at acpi0: bus 4 (P32_)
> acpiprt4 at acpi0: bus 2 (PEX0)
> acpiprt5 at acpi0: bus -1 (PEX1)
> acpiprt6 at acpi0: bus -1 (PEX2)
> acpiprt7 at acpi0: bus -1 (PEX3)
> acpiprt8 at acpi0: bus 3 (PEX4)
> acpiprt9 at acpi0: bus -1 (PEX5)
> acpicpu0 at acpi0: PSS
> acpicpu1 at acpi0: PSS
> acpibtn0 at acpi0: SLPB
> acpibtn1 at acpi0: PWRB
> bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xc9000/0x1000
> 0xca000/0x1000 0xcb000/0x1800 0xcc800/0x1000
> ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca2/2 spacing 1
> cpu0: Enhanced SpeedStep 2993 MHz: speeds: 3000, 2000 MHz
> pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
> pchb0 at pci0 dev 0 function 0 "Intel 3200/3210 Host" rev 0x00
> ppb0 at pci0 dev 6 function 0 "Intel 3210 PCIE" rev 0x00: apic 5 int 16
> pci1 at ppb0 bus 1
> em0 at pci1 dev 0 function 0 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic
> 5 int 16, address 00:24:81:7d:11:f4
> em1 at pci1 dev 0 function 1 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic
> 5 int 17, address 00:24:81:7d:11:f5
> em2 at pci0 dev 25 function 0 "Intel ICH9 IGP AMT" rev 0x02: apic 5 int
> 20, address 00:15:17:8d:4c:c5
> uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x02: apic 5 int 18
> uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x02: apic 5 int 21
> ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x02: apic 5 int 17
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x02: apic 5 int 17
> pci2 at ppb1 bus 2
> ppb2 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x02: apic 5 int 17
> pci3 at ppb2 bus 3
> vga1 at pci3 dev 0 function 0 "Matrox MGA G200e (ServerEngines)" rev 0x02
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> uhci2 at pci0 dev 29 function 0 "Intel 82801I USB" rev 0x02: apic 5 int 23
> uhci3 at pci0 dev 29 function 1 "Intel 82801I USB" rev 0x02: apic 5 int 19
> uhci4 at pci0 dev 29 function 2 "Intel 82801I USB" rev 0x02: apic 5 int 18
> ehci1 at pci0 dev 29 function 7 "Intel 82801I USB" rev 0x02: apic 5 int 23
> usb1 at ehci1: USB revision 2.0
> uhub1 at usb1 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> ppb3 at pci0 dev 30 function 0 "Intel 82801BA Hub-to-PCI" rev 0x92
> pci4 at ppb3 bus 4
> em3 at pci4 dev 0 function 0 "Intel PRO/1000MT (82540EM)" rev 0x02: apic 5
> int 16, address 00:07:e9:0f:44:37
> skc0 at pci4 dev 1 function 0 "D-Link DGE-530T B1" rev 0x11, Yukon Lite
> (0x9): apic 5 int 17
> sk0 at skc0 port A: address 00:1b:11:10:07:6e
> eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5
> em4 at pci4 dev 2 function 0 "Intel PRO/1000MT (82541GI)" rev 0x05: apic 5
ping got incorrectly caught by pf
Hello, with latest snapshot (Jul 11 2011) I see this strange behavior which I haven't seen before upgrade (ping caught by strange pf rule). $ id ;netstat -rnf inet | grep default uid=1000(jirib) gid=10(users) groups=10(users), 0(wheel), 5(operator) default192.168.1.1UGS6 1320 -12 iwn0 $ ping 192.168.1.1 PING 192.168.1.1 (192.168.1.1): 56 data bytes ping: sendto: No route to host ping: wrote 192.168.1.1 64 chars, ret=-1 --- 192.168.1.1 ping statistics --- 1 packets transmitted, 0 packets received, 100.0% packet loss OK, why? It was caught by pf: # tcpdump -i pflog0 -n -ttt -e icmp tcpdump: WARNING: snaplen raised from 116 to 160 tcpdump: listening on pflog0, link-type PFLOG Jul 12 17:43:00.412525 rule 9/(match) block out on iwn0: 192.168.1.254 > 192.168.1.1: icmp: echo request Interesting... what is that rule? # pfctl -R 9 -vv -sr @9 block return out log all user = 1002 [ Evaluations: 275 Packets: 23Bytes: 1912States: 0 ] [ Inserted: uid 0 pid 30333 State Creations: 0 ] So, why was ping caught by rule which should apply only to uid = 1002? FYI, the ping is caught for root as well? Am i doing something wrong or I haven't seen some info for -current followers? jirib
snapshot upgrade defaults to fetching sets from http i.o. cd
A snapshot upgrade for both i386 and amd64 OpenBSD 4.9-current (GENERIC.MP) #10: Mon Jul 11 12:31:05 MDT 2011 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP OpenBSD 4.9-current (GENERIC.MP) #19: Mon Jul 11 12:20:24 MDT 2011 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP seem to want to fetch the installation sets over http instead of from cd, even though a cd with the sets on them is in the cd drive: Let's upgrade the sets! Location of sets? (cd disk ftp http or 'done') [http] cd I don't know if this is intentional or an oversight, but it doesn't make much sense to me. Regards, Remco
Panic On 29 May 2011 and 10 July 2011 i386 bsd.mp -current
Hope this is accurate and helping, just trying to do the homework :).
OpenBSD 4.9 GENERIC.MP i386 -current panic repeatedly. The machine is
consistently following -current building from the source.
DMESG - 29th May 2011 Kernel
$ dmesg
OpenBSD 4.9-current (GENERIC.MP) #20: Sun May 29 04:42:43 WIT 2011
r...@aggregation-rf.mygreenlinks.net:/usr/src/sys/arch/i386/compile/GENERIC.MP
RTC BIOS diagnostic error e
cpu0: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz ("GenuineIntel" 686-class) 3 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX1
6,xTPR,PDCM,SSE4.1
real mem = 2143801344 (2044MB)
avail mem = 2097905664 (2000MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 12/12/07, SMBIOS rev. 2.5 @
0x7fdfd000 (63 entries)
bios0: vendor Intel Corporation version
"S3200X38.86B.00.00.0045.082820081329" date 08/28/2008
bios0: Intel Corporation S3210SH
acpi0 at bios0: rev 2
acpi0: sleep states S0 S1 S4 S5
acpi0: tables DSDT SLIC FACP APIC WDDT MCFG HPET SPCR SSDT SSDT SSDT SSDT
SSDT HEST BERT ERST EINJ DMAR
acpi0: wakeup devices SLPB(S5) NPE1(S5) NPE6(S5) P32_(S5) PS2M(S1)
PS2K(S1) ILAN(S5) PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5)
UHC1(S1) UHC2(S1) UHC3(S1) UH
C4(S1) EHCI(S1) EHC2(S1) UH42(S1) UHC5(S1) UHC6(S1) AZAL(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 332MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Xeon(R) CPU E3110 @ 3.00GHz ("GenuineIntel" 686-class) 3 GHz
cpu1:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX1
6,xTPR,PDCM,SSE4.1
ioapic0 at mainbus0: apid 5 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 5
acpimcfg0 at acpi0 addr 0xf000, bus 0-63
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (NPE1)
acpiprt2 at acpi0: bus 1 (NPE6)
acpiprt3 at acpi0: bus 4 (P32_)
acpiprt4 at acpi0: bus 2 (PEX0)
acpiprt5 at acpi0: bus -1 (PEX1)
acpiprt6 at acpi0: bus -1 (PEX2)
acpiprt7 at acpi0: bus -1 (PEX3)
acpiprt8 at acpi0: bus 3 (PEX4)
acpiprt9 at acpi0: bus -1 (PEX5)
acpicpu0 at acpi0: PSS
acpicpu1 at acpi0: PSS
acpibtn0 at acpi0: SLPB
acpibtn1 at acpi0: PWRB
bios0: ROM list: 0xc/0x8000 0xc8000/0x1000 0xc9000/0x1000
0xca000/0x1000 0xcb000/0x1800 0xcc800/0x1000
ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca2/2 spacing 1
cpu0: Enhanced SpeedStep 2993 MHz: speeds: 3000, 2000 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel 3200/3210 Host" rev 0x00
ppb0 at pci0 dev 6 function 0 "Intel 3210 PCIE" rev 0x00: apic 5 int 16
pci1 at ppb0 bus 1
em0 at pci1 dev 0 function 0 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic
5 int 16, address 00:24:81:7d:11:f4
em1 at pci1 dev 0 function 1 "Intel PRO/1000 PT (82571EB)" rev 0x06: apic
5 int 17, address 00:24:81:7d:11:f5
em2 at pci0 dev 25 function 0 "Intel ICH9 IGP AMT" rev 0x02: apic 5 int
20, address 00:15:17:8d:4c:c5
uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x02: apic 5 int 18
uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x02: apic 5 int 21
ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x02: apic 5 int 17
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x02: apic 5 int 17
pci2 at ppb1 bus 2
ppb2 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x02: apic 5 int 17
pci3 at ppb2 bus 3
vga1 at pci3 dev 0 function 0 "Matrox MGA G200e (ServerEngines)" rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
uhci2 at pci0 dev 29 function 0 "Intel 82801I USB" rev 0x02: apic 5 int 23
uhci3 at pci0 dev 29 function 1 "Intel 82801I USB" rev 0x02: apic 5 int 19
uhci4 at pci0 dev 29 function 2 "Intel 82801I USB" rev 0x02: apic 5 int 18
ehci1 at pci0 dev 29 function 7 "Intel 82801I USB" rev 0x02: apic 5 int 23
usb1 at ehci1: USB revision 2.0
uhub1 at usb1 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 "Intel 82801BA Hub-to-PCI" rev 0x92
pci4 at ppb3 bus 4
em3 at pci4 dev 0 function 0 "Intel PRO/1000MT (82540EM)" rev 0x02: apic 5
int 16, address 00:07:e9:0f:44:37
skc0 at pci4 dev 1 function 0 "D-Link DGE-530T B1" rev 0x11, Yukon Lite
(0x9): apic 5 int 17
sk0 at skc0 port A: address 00:1b:11:10:07:6e
eephy0 at sk0 phy 0: 88E1011 Gigabit PHY, rev. 5
em4 at pci4 dev 2 function 0 "Intel PRO/1000MT (82541GI)" rev 0x05: apic 5
int 18, address 00:15:17:8d:4c:c3
ichpcib0 at pci0 dev 31 function 0 "Intel 82801IR LPC" rev 0x02: PM
disabled
pciide0 at pci0 dev 31 function 2 "Intel 82801I SATA" re
Re: Panic On 29 May 2011 and 10 July 2011 i386 bsd.mp -current
You are not listening. You enabled ipmi. It is disabled for a damn good reason. You expect us to read your bug report, but you have made it quite clear to us that you are more clever than us, because you have enabled it. You make a change -> You are on your own.
sysmerge doesn't work on snapshot upgrade
During a snapshot upgrade for both i386 and amd64 OpenBSD 4.9-current (GENERIC.MP) #10: Mon Jul 11 12:31:05 MDT 2011 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP OpenBSD 4.9-current (GENERIC.MP) #19: Mon Jul 11 12:20:24 MDT 2011 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP the option to run sysmerge at the end doesn't work: Merge the new etc/xetc install sets using sysmerge(8)? [no] yes ftp: Can't open file ///mnt2/4.9/amd64/etc49.tgz: No such file or directory ftp: Can't open file ///mnt2/4.9/amd64/xetc49.tgz: No such file or directory *** ERROR: please specify a valid path to src or (x)etcXX.tgz usage: sysmerge [-bd] [-s [src | etcXX.tgz]] [-x xetcXX.tgz] I briefly looked at the install scripts in src/distrib/miniroot/ and tried to understand them. AFIACT the cd is unmounted from /mnt2/ before sysmerge is run. See src/distrib/miniroot/install.sub: the function install_sets() seems to unmount /mnt2/ after installing the sets and before returning from that function. If I'm not mistaken the idea is to copy the (x)etc49.tgz sets to /mnt/tmp/. Maybe it's an option to do that in the install_files() phase. If the user chooses to not run sysmerge, those files will be cleaned upon reboot anyway, won't they ? Regards, Remco
Re: Panic On 29 May 2011 and 10 July 2011 i386 bsd.mp -current
> For what good reason should ipmi be disabled? For what reason should pciide be enabled? Around here, we make the decisions and we are responsible for the decisions we make. If you make any decisions which are different from ours, you are responsible for your own decisions. pciide is enabled because it is, and ipmi is disabled because it is. You can go look in the cvs logs if you really care to find out why. But let me be clear. Anyone who has gone through the effort of turning on ipmi has probably made a pile of other changes which might be triggering the bug, and they just are not telling us about them. We will not go down the rathole of figuring that out. You make any changes -> You are responsible.
Re: sysmerge doesn't work on snapshot upgrade
On Tue, 12 Jul 2011, Remco wrote: > During a snapshot upgrade for both i386 and amd64 > > OpenBSD 4.9-current (GENERIC.MP) #10: Mon Jul 11 12:31:05 MDT 2011 > dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP > > OpenBSD 4.9-current (GENERIC.MP) #19: Mon Jul 11 12:20:24 MDT 2011 > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > > the option to run sysmerge at the end doesn't work: > > Merge the new etc/xetc install sets using sysmerge(8)? [no] yes > ftp: Can't open file ///mnt2/4.9/amd64/etc49.tgz: No such file or > directory > ftp: Can't open file ///mnt2/4.9/amd64/xetc49.tgz: No such file or > directory > *** ERROR: please specify a valid path to src or (x)etcXX.tgz > usage: sysmerge [-bd] [-s [src | etcXX.tgz]] [-x xetcXX.tgz] > > I briefly looked at the install scripts in src/distrib/miniroot/ and tried to > understand them. > > AFIACT the cd is unmounted from /mnt2/ before sysmerge is run. > See src/distrib/miniroot/install.sub: the function install_sets() seems to > unmount /mnt2/ after installing the sets and before returning from that > function. > > If I'm not mistaken the idea is to copy the (x)etc49.tgz sets to /mnt/tmp/. > Maybe it's an option to do that in the install_files() phase. If the user > chooses to not run sysmerge, those files will be cleaned upon reboot anyway, > won't they ? I'll look at that asap, thanks for the report. -- Antoine
Cómo desarrollar Manuales de Políticas y Mejorar Procesos
[IMAGE] Pms de Mixico Capacitacisn Efectiva de Mixico presenta:Identificacisn de Procesos y Desarrollo de un Manual de Polmticas y Procedimientos.25 de Julio, Ciudad de Mixico.Expositor: Ing. Enrique Castro B.10 horas de entrenamiento, Conozca los beneficios de capacitarse con los mejores!Empresa Registrada ante la STPS Reg. COLG640205CP30005Smguenos en Twitter@pmscapacitacion o bien en Facebook PMS de Mixico Solicite mas informacisn de este Seminario! Por favor responda este e-mail con los datos siguientes.Empresa:Nombre: Telifono: Email: Nzmero de Interesados: Y en breve le haremos llegar la informacisn completa del evento. O bien comunmquense a nuestros telifonos un ejecutivo con gusto le atendera Telifonos: (0133) 8851-2365, (0133) 8851-2741, (0133) 1589-6156. Copyright (C) 2011, PMS Capacitacisn Efectiva de Mixico S.C. Derechos Reservados. PMS de Mixico, El logo de PMS de Mixico son marcas registradas. ADVERTENCIA PMS de Mixico no cuenta con alianzas estratigicas de ningzn tipo dentro de la Republica Mexicana. NO SE DEJE ENGAQAR - DIGA NO A LA PIRATERIA. Todos los logotipos, marcas comerciales e imagenes son propiedad de sus respectivas corporaciones y se utilizan con fines informativos solamente. Este Mensaje ha sido enviado a misc@openbsd.org como usuario de Pms de Mixico o bien un usuario le refiris para recibir este boletmn. Como usuario de Pms de Mixico, en este acto autoriza de manera expresa que Pms de Mixico le puede contactar vma correo electrsnico u otros medios. Si usted ha recibido este mensaje por error, haga caso omiso de el y reporte su cuenta respondiendo este correo con el subject BAJAMANUALESUnsubscribe to this mailing list, reply a blank message with the subject UNSUBSCRIBE BAJAMANUALES Tenga en cuenta que la gestisn de nuestras bases de datos es de suma importancia y no es intencisn de la empresa la inconformidad del receptor. [demime 1.01d removed an attachment of type image/jpeg which had a name of manual de pyp.jpg]
Re: How does OpenBSD compare to Ubuntu Server?
On 7/11/11 10:48 PM, Andres Perera wrote: On Mon, Jul 11, 2011 at 11:43 PM, patrick keshishian wrote: you failed at making any point. i'll rebrand it into convenient twitter format: debian splits packages to the point where a single service is a associated to a single top level package, meaning that there's never a reason for unused installed services openbsd limitations do not apply 1:1 to other systems unless they happen to be openbsd. in the previous sentence, "openbsd" can be replaced by any word OK, I got the first paragraph but not the second. Could you please "rebrand" it so people like me can unnerstand? I just got off the boat. To be clear, which is my thing today, here is how I read the "openbsd limitations..." sentence: OpenBSD limitations apply only to OpenBSD. As my 4-year old would say, "Hello..." Your last sentence is equally baffling. I understand you may be mad at some responders, but the lack of clarity makes us haze over your argument and take the topic off on a tangent that you do not like. And that makes you mad, it is a Type A thing - we understand. Simple, clear sentences sting the most. Mehma
Re: Panic On 29 May 2011 and 10 July 2011 i386 bsd.mp -current
On Tue, Jul 12, 2011, k...@servihoo.net wrote: > For what good reason should ipmi be disabled? is not working a good reason?
Re: How does OpenBSD compare to Ubuntu Server?
Please don't. This whole thread has gotten really stupid. Unless you have something funny to add, let's kill it now. On Tue, 12 Jul 2011 14:11 -0700, "Mehma Sarja" wrote: > On 7/11/11 10:48 PM, Andres Perera wrote: > > On Mon, Jul 11, 2011 at 11:43 PM, patrick keshishian > > wrote: > >> you failed at making any point. > > i'll rebrand it into convenient twitter format: > > > > debian splits packages to the point where a single service is a > > associated to a single top level package, meaning that there's never a > > reason for unused installed services > > > > openbsd limitations do not apply 1:1 to other systems unless they > > happen to be openbsd. in the previous sentence, "openbsd" can be > > replaced by any word > > > OK, I got the first paragraph but not the second. Could you please > "rebrand" it so people like me can unnerstand? I just got off the boat. > To be clear, which is my thing today, here is how I read the "openbsd > limitations..." sentence: OpenBSD limitations apply only to OpenBSD. As > my 4-year old would say, "Hello..." Your last sentence is equally > baffling. I understand you may be mad at some responders, but the lack > of clarity makes us haze over your argument and take the topic off on a > tangent that you do not like. And that makes you mad, it is a Type A > thing - we understand. > > Simple, clear sentences sting the most. > > Mehma
Re: ping got incorrectly caught by pf
On 2011-07-12, Jiri B wrote: > Hello, > > with latest snapshot (Jul 11 2011) I see this strange behavior > which I haven't seen before upgrade (ping caught by strange pf > rule). You have important information which you didn't include: the date when it last worked. Ideally read through the commits from between then and now (there are git imports of the openbsd tree with web interfaces at anoncvs.estpak.ee and git.freebsd.your.org/cgit which may be easier than reading source-changes) and try and track down which commit/s seem likely candidates. Then try building (in this case at least make includes and build a new kernel+pfctl) with the tree from before/after those times (or just bisect if nothing stands out) to track down what caused it. > > $ id ;netstat -rnf inet | grep default > uid=1000(jirib) gid=10(users) groups=10(users), 0(wheel), 5(operator) > default192.168.1.1UGS6 1320 -12 iwn0 > > $ ping 192.168.1.1 > PING 192.168.1.1 (192.168.1.1): 56 data bytes > ping: sendto: No route to host > ping: wrote 192.168.1.1 64 chars, ret=-1 > --- 192.168.1.1 ping statistics --- > 1 packets transmitted, 0 packets received, 100.0% packet loss > > OK, why? It was caught by pf: > > # tcpdump -i pflog0 -n -ttt -e icmp >tcpdump: WARNING: snaplen raised from 116 to 160 > > tcpdump: listening on pflog0, link-type PFLOG > Jul 12 17:43:00.412525 rule 9/(match) block out on iwn0: 192.168.1.254 > > 192.168.1.1: icmp: echo request > > Interesting... what is that rule? > > # pfctl -R 9 -vv -sr > @9 block return out log all user = 1002 > [ Evaluations: 275 Packets: 23Bytes: 1912States: 0 > ] > [ Inserted: uid 0 pid 30333 State Creations: 0 ] > > So, why was ping caught by rule which should apply only to > uid = 1002? FYI, the ping is caught for root as well? > > Am i doing something wrong or I haven't seen some info for > -current followers? > > jirib
Re: How does OpenBSD compare to Ubuntu Server?
Help, i shot it three times and I'm on my fourth monitor, 3 bullets left. What next? On Tue, Jul 12, 2011 at 2:21 PM, Eric Furman wrote: > Please don't. This whole thread has gotten really stupid. > Unless you have something funny to add, let's kill it now. > > On Tue, 12 Jul 2011 14:11 -0700, "Mehma Sarja" > wrote: >> On 7/11/11 10:48 PM, Andres Perera wrote: >> > On Mon, Jul 11, 2011 at 11:43 PM, patrick keshishian wrote: >> >> you failed at making any point. >> > i'll rebrand it into convenient twitter format: >> > >> > debian splits packages to the point where a single service is a >> > associated to a single top level package, meaning that there's never a >> > reason for unused installed services >> > >> > openbsd limitations do not apply 1:1 to other systems unless they >> > happen to be openbsd. in the previous sentence, "openbsd" can be >> > replaced by any word >> > >> OK, I got the first paragraph but not the second. Could you please >> "rebrand" it so people like me can unnerstand? I just got off the boat. >> To be clear, which is my thing today, here is how I read the "openbsd >> limitations..." sentence: OpenBSD limitations apply only to OpenBSD. As >> my 4-year old would say, "Hello..." Your last sentence is equally >> baffling. I understand you may be mad at some responders, but the lack >> of clarity makes us haze over your argument and take the topic off on a >> tangent that you do not like. And that makes you mad, it is a Type A >> thing - we understand. >> >> Simple, clear sentences sting the most. >> >> Mehma
Re: How does OpenBSD compare to Ubuntu Server?
shoot it again son. On Tue, Jul 12, 2011 at 03:59:31PM -0700, Zeb Packard wrote: > Help, i shot it three times and I'm on my fourth monitor, 3 bullets > left. What next? > > On Tue, Jul 12, 2011 at 2:21 PM, Eric Furman wrote: > > Please don't. This whole thread has gotten really stupid. > > Unless you have something funny to add, let's kill it now. > > > > On Tue, 12 Jul 2011 14:11 -0700, "Mehma Sarja" > > wrote: > >> On 7/11/11 10:48 PM, Andres Perera wrote: > >> > On Mon, Jul 11, 2011 at 11:43 PM, patrick keshishian > wrote: > >> >> you failed at making any point. > >> > i'll rebrand it into convenient twitter format: > >> > > >> > debian splits packages to the point where a single service is a > >> > associated to a single top level package, meaning that there's never a > >> > reason for unused installed services > >> > > >> > openbsd limitations do not apply 1:1 to other systems unless they > >> > happen to be openbsd. in the previous sentence, "openbsd" can be > >> > replaced by any word > >> > > >> OK, I got the first paragraph but not the second. Could you please > >> "rebrand" it so people like me can unnerstand? I just got off the boat. > >> To be clear, which is my thing today, here is how I read the "openbsd > >> limitations..." sentence: OpenBSD limitations apply only to OpenBSD. As > >> my 4-year old would say, "Hello..." Your last sentence is equally > >> baffling. I understand you may be mad at some responders, but the lack > >> of clarity makes us haze over your argument and take the topic off on a > >> tangent that you do not like. And that makes you mad, it is a Type A > >> thing - we understand. > >> > >> Simple, clear sentences sting the most. > >> > >> Mehma
Re: How does OpenBSD compare to Ubuntu Server?
I think it worked. Sent from my iclone. On Tue, Jul 12, 2011 at 4:23 PM, Marco Peereboom wrote: > shoot it again son. > > On Tue, Jul 12, 2011 at 03:59:31PM -0700, Zeb Packard wrote: >> Help, i shot it three times and I'm on my fourth monitor, 3 bullets >> left. What next? >> >> On Tue, Jul 12, 2011 at 2:21 PM, Eric Furman wrote: >> > Please don't. This whole thread has gotten really stupid. >> > Unless you have something funny to add, let's kill it now. >> > >> > On Tue, 12 Jul 2011 14:11 -0700, "Mehma Sarja" >> > wrote: >> >> On 7/11/11 10:48 PM, Andres Perera wrote: >> >> > On Mon, Jul 11, 2011 at 11:43 PM, patrick keshishian >> wrote: >> >> >> you failed at making any point. >> >> > i'll rebrand it into convenient twitter format: >> >> > >> >> > debian splits packages to the point where a single service is a >> >> > associated to a single top level package, meaning that there's never a >> >> > reason for unused installed services >> >> > >> >> > openbsd limitations do not apply 1:1 to other systems unless they >> >> > happen to be openbsd. in the previous sentence, "openbsd" can be >> >> > replaced by any word >> >> > >> >> OK, I got the first paragraph but not the second. Could you please >> >> "rebrand" it so people like me can unnerstand? I just got off the boat. >> >> To be clear, which is my thing today, here is how I read the "openbsd >> >> limitations..." sentence: OpenBSD limitations apply only to OpenBSD. As >> >> my 4-year old would say, "Hello..." Your last sentence is equally >> >> baffling. I understand you may be mad at some responders, but the lack >> >> of clarity makes us haze over your argument and take the topic off on a >> >> tangent that you do not like. And that makes you mad, it is a Type A >> >> thing - we understand. >> >> >> >> Simple, clear sentences sting the most. >> >> >> >> Mehma
Re: How does OpenBSD compare to Ubuntu Server?
brraaiiinsss. B-) On Jul 12, 2011, at 7:25 PM, Zeb Packard wrote: > I think it worked. > > Sent from my iclone. > > On Tue, Jul 12, 2011 at 4:23 PM, Marco Peereboom wrote: >> shoot it again son. >> >> On Tue, Jul 12, 2011 at 03:59:31PM -0700, Zeb Packard wrote: >>> Help, i shot it three times and I'm on my fourth monitor, 3 bullets >>> left. What next? >>> >>> On Tue, Jul 12, 2011 at 2:21 PM, Eric Furman > wrote: Please don't. This whole thread has gotten really stupid. Unless you have something funny to add, let's kill it now. On Tue, 12 Jul 2011 14:11 -0700, "Mehma Sarja" wrote: > On 7/11/11 10:48 PM, Andres Perera wrote: >> On Mon, Jul 11, 2011 at 11:43 PM, patrick > keshishian >>> wrote: >>> you failed at making any point. >> i'll rebrand it into convenient twitter format: >> >> debian splits packages to the point where a single service is a >> associated to a single top level package, meaning that there's never > a >> reason for unused installed services >> >> openbsd limitations do not apply 1:1 to other systems unless they >> happen to be openbsd. in the previous sentence, "openbsd" can be >> replaced by any word >> > OK, I got the first paragraph but not the second. Could you please > "rebrand" it so people like me can unnerstand? I just got off the boat. > To be clear, which is my thing today, here is how I read the "openbsd > limitations..." sentence: OpenBSD limitations apply only to OpenBSD. As > my 4-year old would say, "Hello..." Your last sentence is equally > baffling. I understand you may be mad at some responders, but the lack > of clarity makes us haze over your argument and take the topic off on a > tangent that you do not like. And that makes you mad, it is a Type A > thing - we understand. > > Simple, clear sentences sting the most. > > Mehma [demime 1.01d removed an attachment of type application/pkcs7-signature which had a name of smime.p7s]
Re: apache ssl behind nat problems
Hi Nigel, The SSL certificate itself does not have any part in this problem as it never gets that far in the process. As I wrote previously, the TCP handshake never completes -- e.g. netstat & co. never see a connection in any kind of state. I did try the suggested openssl command as well as lynx, wget, w3m, ... and none of them emit any errors, just "timed out". And of course, there are no errors (or connection traces) in the apache logs either :-( On 12 Jul 2011 at 1:55, Nigel Taylor wrote: > Hi, > > One guess would be the SSL certificate is for your internal hostname, > not your external hostname. Those connecting to the external hostname, > reject the connection because the hostname doesn't match the > certificate. To use both internal and external names you have to create > certificate under one name and include alternative names / ip addresses > in the certificate. > > Internally on my local network I refer to the my server by it's external > name. With a pf rule > . > pass in log quick on $int_if inet proto tcp from any to $webext port > https rdr-to 127.0.0.1 port https > . > > If I connect to the internal name / ip address, I get an untrusted > connection response, because I haven't added the alternatives. > > Look in /var/www/logs, > . > [Tue Jul 12 01:14:16 2011] [error] OpenSSL: error:14094412:SSL > routines:SSL3_READ_BYTES:sslv3 alert bad certificate [Hint: Subject CN > in certificate not server name or identical to CA!?] > [Tue Jul 12 01:14:19 2011] [error] mod_ssl: SSL handshake failed (server > new.host.name:443, client 192.168.202.23) (OpenSSL library error follows) > [Tue Jul 12 01:14:19 2011] [error] OpenSSL: error:14094412:SSL > routines:SSL3_READ_BYTES:sslv3 alert bad certificate [Hint: Subject CN > in certificate not server name or identical to CA!?] > . > > > Try connecting with tools like openssl, gnutls > > openssl s_client -connect host:port > . > SSL handshake has read 2617 bytes and written 388 bytes > --- > New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA > Server public key is 4096 bit > Secure Renegotiation IS supported > Compression: NONE > Expansion: NONE > SSL-Session: > Protocol : TLSv1 > Cipher: DHE-RSA-AES256-SHA > . > > > > Regards > > Nigel Taylor > > On 07/11/11 22:57, Jacob L. Leifman wrote: > > Environment: > > - OpenBSD 4.9, stock (base) apache with self-signed certificate > > - behind a SOHO NAT router (with relevant in-bound redirects) > > > > Problem: non-local SSL connections never complete the handshake > > (verified while monitoring the interface with tcpdump, see below) > > > > During troubleshooting I was able to eliminate a few suspects: > > - Regular un-encrypted HTTP (port 80) works every time; > > - https:// from the same LAN (i.e. no NAT) always works; > > - SSH always works (whether local or remote); > > - PF seems to have no bearing -- no difference in behavior whether > > enabled, enabled with "pass in quick" for the remote test host, or even > > altogether disabled. > > > > Unfortunately, I cannot eliminate the NAT device and need to find a way > > to work with it. > > > > All clues(ticks) are appreciated, > > -Jacob. > > > > Sanitized tcpdump -netttvv log: > > Jul 11 17:26:39.589073 00:0f:b5:ww:ww:ww 00:01:03:zz:zz:zz 0800 74: > > a.b.c.d.37325> 192.168.x.y.443: S [tcp sum ok] > > 2560292710:2560292710(0) win 5840 > 0,nop,wscale 0> (DF) (ttl 45, id 30330, len 60) > > Jul 11 17:26:39.590087 00:01:03:zz:zz:zz 00:0f:b5:ww:ww:ww 0800 78: > > 192.168.x.y.443> a.b.c.d.37325: S [tcp sum ok] > > 1786229842:1786229842(0) ack 2560292711 win 16384 > 1460,nop,nop,sackOK,nop,wscale 3,nop,nop,timestamp 1751359378 > > 3005841692> (DF) (ttl 64, id 5701, len 64) > > Jul 11 17:26:42.584962 00:0f:b5:ww:ww:ww 00:01:03:zz:zz:zz 0800 74: > > a.b.c.d.37325> 192.168.x.y.443: S [tcp sum ok] > > 2560292710:2560292710(0) win 5840 > 0,nop,wscale 0> (DF) (ttl 45, id 30331, len 60) > > Jul 11 17:26:42.585565 00:01:03:zz:zz:zz 00:0f:b5:ww:ww:ww 0800 78: > > 192.168.x.y.443> a.b.c.d.37325: S [tcp sum ok] > > 1786229842:1786229842(0) ack 2560292711 win 16384 > 1460,nop,nop,sackOK,nop,wscale 3,nop,nop,timestamp 1751359384 > > 3005841992> (DF) (ttl 64, id 52775, len 64) > > Jul 11 17:26:42.589685 00:01:03:zz:zz:zz 00:0f:b5:ww:ww:ww 0800 78: > > 192.168.x.y.443> a.b.c.d.37325: S [tcp sum ok] > > 1786229842:1786229842(0) ack 2560292711 win 16384 > 1460,nop,nop,sackOK,nop,wscale 3,nop,nop,timestamp 1751359384 > > 3005841992> (DF) (ttl 64, id 3806, len 64) > > Jul 11 17:26:48.584959 00:0f:b5:ww:ww:ww 00:01:03:zz:zz:zz 0800 74: > > a.b.c.d.37325> 192.168.x.y.443: S [tcp sum ok] > > 2560292710:2560292710(0) win 5840 > 0,nop,wscale 0> (DF) (ttl 45, id 30332, len 60) > > Jul 11 17:26:48.585435 00:01:03:zz:zz:zz 00:0f:b5:ww:ww:ww 0800 78: > > 192.168.x.y.443> a.b.c.d.37325: S [tcp sum ok] > > 1786229842:1786229842(0) ack 2560292711 win 16384 > 1460,nop,nop,sackOK,nop,wscale 3,nop,nop,timestamp
Re: apache ssl behind nat problems
On 11 Jul 2011 at 20:59, Paul Suh wrote: > On Jul 11, 2011, at 5:57 PM, Jacob L. Leifman wrote: > > > Environment: > > - OpenBSD 4.9, stock (base) apache with self-signed certificate > > - behind a SOHO NAT router (with relevant in-bound redirects) > > > > Problem: non-local SSL connections never complete the handshake > > (verified while monitoring the interface with tcpdump, see below) > > > > During troubleshooting I was able to eliminate a few suspects: > > - Regular un-encrypted HTTP (port 80) works every time; > > - https:// from the same LAN (i.e. no NAT) always works; > > - SSH always works (whether local or remote); > > - PF seems to have no bearing -- no difference in behavior whether > > enabled, enabled with "pass in quick" for the remote test host, or even > > altogether disabled. > > > > Unfortunately, I cannot eliminate the NAT device and need to find a way > > to work with it. > > *snip* > > Jacob, > > A few things to try: > > 1) Try a non-OpenBSD server on the inside, just to see if the problem is > specific to OpenBSD or occurs with other server types. good idea. I will try it as soon as I can which will not be for a few days. > 2) Try using > > openssl s_client -connect hostname:443 > > from the outside and see what kind of error message you get back. did that (as well as lynx and some others) -- there are no error message, just times out. > 3) Try connecting from the outside using wget or curl and see what kind of > error message you get back. see just above. > FWIW, I'm guessing that the problem is at the router. The packet trace is > showing a TCP SYN coming from the client, followed correctly by a SYN-ACK > going back from the server. The client should send an ACK packet back, but > instead it waits several seconds (i.e., timeout) then sends another TCP SYN, > which would be what happens when the client does not receive the SYN-ACK from > the server. Can you get a packet trace from the outside interface of the > router? I believe you are right; or at the very least it is some kind of weird interaction with the router. Unfortunately, this is a consumer DSL device with no packet capture/trace capability. > Hope this helps. some more leads to chase ;-) > --Paul > > [demime 1.01d removed an attachment of type application/pkcs7-signature which > had a name of smime.p7s]
Invitación: Selección de Proveedores
186135 [IMAGE] Pms Capacitacisn Efectiva de Mixico presenta: Manejo de Proveedores 3600 18 de Julio, Ciudad de Mixico. Expositor: Ariel Valero Cruz 10 horas de entrenamiento. Empresa Registrada ante la STPS Reg. COLG640205CP30005 Smguenos en Twitter@pmscapacitacion o bien en Facebook PMS de Mixico Solicite Mayores informes responda este correo electrsnico con los siguientes datos. Empresa: Nombre: Telifono: Email: Nzmero de Interesados: Y en breve le haremos llegar la informacisn completa del evento. O bien comunmquense a nuestros telifonos un ejecutivo con gusto le atendera Tels. (33) 8851-2365, (33)8851-2741. Copyright (C) 2010, PMS Capacitacisn Efectiva de Mixico S.C. Derechos Reservados. PMS de Mixico, El logo de PMS de Mixico son marcas registradas. ADVERTENCIA PMS de Mixico no cuenta con alianzas estratigicas de ningzn tipo dentro de la Republica Mexicana. NO SE DEJE ENGAQAR - DIGA NO A LA PIRATERIA. Todos los logotipos, marcas comerciales e imagenes son propiedad de sus respectivas corporaciones y se utilizan con fines informativos solamente. Este Mensaje ha sido enviado a misc@openbsd.org como usuario de Pms de Mixico o bien un usuario le refiris para recibir este boletmn. Como usuario de Pms de Mixico, en este acto autoriza de manera expresa que Pms de Mixico le puede contactar vma correo electrsnico u otros medios. Si usted ha recibido este mensaje por error, haga caso omiso de el y reporte su cuenta respondiendo este correo con el subject BAJAPROVEEDORES Unsubscribe to this mailing list, reply a blank message with the subject UNSUBSCRIBE BAJAPROVEEDORES Tenga en cuenta que la gestisn de nuestras bases de datos es de suma importancia y no es intencisn de la empresa la inconformidad del receptor. [demime 1.01d removed an attachment of type image/jpeg which had a name of proveedores.jpg]
Re: snapshot upgrade defaults to fetching sets from http i.o. cd
On 07/12/11 14:34, Remco wrote: > A snapshot upgrade for both i386 and amd64 > > OpenBSD 4.9-current (GENERIC.MP) #10: Mon Jul 11 12:31:05 MDT 2011 > dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP > > OpenBSD 4.9-current (GENERIC.MP) #19: Mon Jul 11 12:20:24 MDT 2011 > dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > > seem to want to fetch the installation sets over http instead of from cd, > even > though a cd with the sets on them is in the cd drive: > > Let's upgrade the sets! > Location of sets? (cd disk ftp http or 'done') [http] cd > > I don't know if this is intentional or an oversight, but it doesn't make much > sense to me. > > Regards, > Remco Actually, it defaults to the last thing done by your IP address. :) Nick.
Re: apache ssl behind nat problems
On Jul 12, 2011, at 9:35 PM, Jacob L. Leifman wrote: >> FWIW, I'm guessing that the problem is at the router. The packet trace is >> showing a TCP SYN coming from the client, followed correctly by a SYN-ACK >> going back from the server. The client should send an ACK packet back, but >> instead it waits several seconds (i.e., timeout) then sends another TCP SYN, >> which would be what happens when the client does not receive the SYN-ACK from >> the server. Can you get a packet trace from the outside interface of the >> router? > > I believe you are right; or at the very least it is some kind of weird > interaction with the router. Unfortunately, this is a consumer DSL > device with no packet capture/trace capability. Jacob, Just to confirm this, can you get a packet trace from the client showing whether it's receiving the SYN-ACK, and/or if it's sending an ACK back? Also, check to see if the router is expecting to be managed from the outside via https on port 443, so that it is listening on port 443 from the outside but the redirect rule on port 443 is then causing all kinds of weirdness inside the router. --Paul [demime 1.01d removed an attachment of type application/pkcs7-signature which had a name of smime.p7s]
Re: snapshot upgrade defaults to fetching sets from http i.o. cd
On Tue, Jul 12, 2011 at 7:00 PM, Nick Holland wrote: > On 07/12/11 14:34, Remco wrote: >> A snapshot upgrade for both i386 and amd64 >> >> OpenBSD 4.9-current (GENERIC.MP) #10: Mon Jul 11 12:31:05 MDT 2011 >> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP >> >> OpenBSD 4.9-current (GENERIC.MP) #19: Mon Jul 11 12:20:24 MDT 2011 >> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP >> >> seem to want to fetch the installation sets over http instead of from cd, even >> though a cd with the sets on them is in the cd drive: >> >> Let's upgrade the sets! >> Location of sets? (cd disk ftp http or 'done') [http] cd >> >> I don't know if this is intentional or an oversight, but it doesn't make much >> sense to me. >> >> Regards, >> Remco > > Actually, it defaults to the last thing done by your IP address. :) *spooky*
Re: ping got incorrectly caught by pf
Thanks for pointing this out, it was an oversight in the recent changes
to pf_test_rule().
I recommend specifying explicitly the correct protocols if you're
wanting to to match by user/group/os fingerprints.
block return out log proto { tcp, udp } all user = 1002
If you'd like, you can apply the patch below which will force you to do
it this way, but it's not strictly necessary. (hopefully this will be in
a snapshot near you soon)
On Tue, Jul 12, 2011 at 11:46:47AM -0400, Jiri B wrote:
> Hello,
>
> with latest snapshot (Jul 11 2011) I see this strange behavior
> which I haven't seen before upgrade (ping caught by strange pf
> rule).
>
> $ id ;netstat -rnf inet | grep default
> uid=1000(jirib) gid=10(users) groups=10(users), 0(wheel), 5(operator)
> default192.168.1.1UGS6 1320 -12 iwn0
>
> $ ping 192.168.1.1
> PING 192.168.1.1 (192.168.1.1): 56 data bytes
> ping: sendto: No route to host
> ping: wrote 192.168.1.1 64 chars, ret=-1
> --- 192.168.1.1 ping statistics ---
> 1 packets transmitted, 0 packets received, 100.0% packet loss
>
> OK, why? It was caught by pf:
>
> # tcpdump -i pflog0 -n -ttt -e icmp
>tcpdump: WARNING: snaplen raised from 116 to 160
>
> tcpdump: listening on pflog0, link-type PFLOG
> Jul 12 17:43:00.412525 rule 9/(match) block out on iwn0: 192.168.1.254 >
> 192.168.1.1: icmp: echo request
>
> Interesting... what is that rule?
>
> # pfctl -R 9 -vv -sr
> @9 block return out log all user = 1002
> [ Evaluations: 275 Packets: 23Bytes: 1912States: 0
> ]
> [ Inserted: uid 0 pid 30333 State Creations: 0 ]
>
> So, why was ping caught by rule which should apply only to
> uid = 1002? FYI, the ping is caught for root as well?
>
> Am i doing something wrong or I haven't seen some info for
> -current followers?
>
> jirib
>
--
Index: parse.y
===
RCS file: /cvs/src/sbin/pfctl/parse.y,v
retrieving revision 1.604
diff -u -p -r1.604 parse.y
--- parse.y 8 Jul 2011 18:52:47 - 1.604
+++ parse.y 13 Jul 2011 03:52:25 -
@@ -3941,9 +3941,23 @@ rule_consistent(struct pf_rule *r, int a
{
int problems = 0;
+ if (r->proto != IPPROTO_TCP && r->os_fingerprint != PF_OSFP_ANY) {
+ yyerror("os only applies to tcp");
+ problems++;
+ }
if (r->proto != IPPROTO_TCP && r->proto != IPPROTO_UDP &&
(r->src.port_op || r->dst.port_op)) {
yyerror("port only applies to tcp/udp");
+ problems++;
+ }
+ if (r->proto != IPPROTO_TCP && r->proto != IPPROTO_UDP &&
+ r->uid.op) {
+ yyerror("user only applies to tcp/udp");
+ problems++;
+ }
+ if (r->proto != IPPROTO_TCP && r->proto != IPPROTO_UDP &&
+ r->gid.op) {
+ yyerror("group only applies to tcp/udp");
problems++;
}
if (r->proto != IPPROTO_ICMP && r->proto != IPPROTO_ICMPV6 &&
Pagos al Extranjero y Aplicacion de Tratados Internacionales en Materia Fiscal (21 de Julio)
Politicas de Privacidad Si no puede ver esta informacisn haga click aqum [IMAGE] POLMTICAS DE CANCELACISN [IMAGE] Corporativo Fiscal Dicada, S.C. posee una rmgida polmtica contra el SPAMming, por lo que respetamos su privacidad. Por favor, si usted no desea recibir mas informacisn y comunicados sobre Corporativo Fiscal Dicada, S.C. o considera que recibis por error este e-mail, le suplicamos haga click aqum, escriba su nombre y lo daremos de baja inmediatamente de nuestra base de datos. EVENTOS COFIDE PROGRAMACION JULIO 2011 JUEVES 07 DE JULIO NUEVA PLATAFORMA ELECTRSNICA DEL SAT DE PAGOS Y DECLARACIONES PARA OBLIGADOS A DICTAMINARSE Duracisn: 5 hrs. De: 09:00 A 14:00 hrs. DESAYUNO DE 08:00 A 09:00 hrs. Expositor: C.P.C. Y E.F. GADIEL ARAGON PERALTA Inversisn: $1,450.00 mas IVA VIERNES 08 DE JULIO REFORMAS DE LA LEY DE AMPARO. AFECTACIONES FISCALES. DESAYUNO INFORMATIVO Duracisn: 3 hrs. De: 09:00 A 12:00 hrs. INCLUYE DESAYUNO Expositor: LIC. RAFAEL RIVERA PRADO Inversisn: $890.00 mas IVA VIERNES 08 DE JULIO REGIMENES ESPECIALES DE LA LEY DEL IMSS (CONSTRUCTORAS) Duracisn: 5 hrs. De: 15:00 A 20:00 hrs. COMIDA DE 14:00 A 15:00 hrs. Expositor: C.P.C. GABRIELA COLOSIA CALDERSN Inversisn: $1,400.00 mas IVA SABADO 09 DE JULIO SIPRED 2010 Y ANEXO 21. Duracisn: 5 Hrs. De: 15:00 A 20:00 hrs. COMIDA DE: 14:00 A 15:00 hrs. Expositor: C.P. ROBERTO GOMEZ LEDEZMA Inversisn: $1,500.00 mas IVA SABADO 09 DE JULIO NUEVA RESOLUCISN MISCELANEA 2011-2012 Duracisn: 6 hrs. De: 09:00 a 15:00 hrs. DESAYUNO DE 08:00 A 09:00 hrs. Expositor: C.P.C Y E.F. LUIS GUILLERMO DELGADO PEDROZA Inversisn: $1,680.00 mas IVA SABADO 09 DE JULIO REGIMENES ESPECIALES DE LA LEY DEL IMSS (OUTSOURCING, ESCUELAS, TRANSPORTISTAS Y CAMPO) Duracisn: 5 hrs. De: 09:00 a 14:00 hrs. DESAYUNO DE 08:00 A 09:00 hrs. Expositor: C.P.C. GABRIELA COLOSIA CALDERON Inversisn: $1,400.00 mas IVA MIERCOLES 13 DE JULIO CURSO TALLER DE HABILIDADES PARA VENTAS EFECTIVAS Duracisn: 8 Hrs. De: 09:00 A 18:00 Hrs. COMIDA DE: 14:00 A 15:00 Hrs. Expositor: LIC. ENRIQUE TOSHIRO VAZQUEZ TSUJI Inversisn: $2,050.00 mas IVA SABADO 16 DE JULIO APLICACISN PRACTICA NIF B-2 ESTADO DE FLUJO DE EFECTIVO Duracisn: 5 Hrs. De: 09:00 A 14:00 Hrs. DESAYUNO DE:08:00 a 09:00 Hrs Expositor: L.C.P. Y MTRO. JORGE ZZQIGA CARRASCO Inversisn: $1,400.00 mas IVA MIERCOLES 20 DE JULIO NUEVA RESOLUCISN MISCELANEA 2011-2012 Duracisn: 6 hrs. De: 15:00 a 21:00 hrs. COMIDA DE 14:00 A 15:00 hrs. Expositor: C.P.C Y E.F. LUIS GUILLERMO DELGADO PEDROZA Inversisn: $1,680.00 mas IVA JUEVES 21 DE JULIO PAGOS AL EXTRANJERO Y APLICACISN DE TRATADOS INTERNACIONALES EN MATERIA FISCAL Duracisn: 9 Hrs. De: 09:00 A 19:00 Hrs. COMIDA DE: 14:00 a 15:00 Hrs. Expositor: C.P.C. Y E.F. GADIEL ARAGON PERALTA Inversisn: $ 2,970.00 mas IVA VIERNES 22 DE JULIO FINANZAS PARA NO FINANCIEROS Duracisn: 8 Hrs. De: 09:00 A 18:00 Hrs. COMIDA DE: 14:00 a 15:00 Hrs. Expositor: C.P.C. Y MTRO. JORGE ZZQIGA CARRASCO Inversisn: $2,500.00 mas IVA VIERNES 22 DE JULIO NUEVOS SISTEMAS AUTOMATIZADOS DE DEVOLUCIONES Y COMPENSACIONES Duracisn: 5 Hrs. De: 09:00 A 14:00 Hrs. DESAYUNO DE:08:00 A 09:00 Hrs. Expositor: C.P.C. Y E.F. GADIEL ARAGON PERALTA Inversisn: $1,680.00 mas IVA VIERNES 22, SABADO 23, VIERNES 29 Y SABADO 30 DE JULIO DICTAMEN IMSS E INFONAVIT Duracisn: 20 hrs. Viernes 22 de: 15:00 A 20:00 Hrs. Comida: 14:00 A 15:00 Hrs. Sabado 23 de: 09:00 A 14:00 Hrs. Desayuno: 08:00 A 09:00 Hrs. Viernes 29 de: 15:00 A 20:00 Hrs. Comida: 14:00 A 15:00 Hrs. Sabado 30 de: 09:00 A 14:00 Hrs. Desayuno: 08:00 A 09:00 Hrs. Expositor: C.P.C. ARTURO HERNANDEZ LSPEZ Inversisn: $5,600.00 mas IVA MIERCOLES 27 DE JULIO REGIMEN FISCAL DE AUTOTRANSPORTE (INCLUYE RESOLUCISN DE FACILIDADES 2011) Duracisn: 5 hrs. De: 09:00 A 14:00 hrs. DESAYUNO DE:08:00 A 09:00 hrs. Expositor: C.P.C. Y E.F. GADIEL ARAGON PERALTA Inversisn: $1,650.00 mas IVA JUEVES 28 DE JULIO NUEVA RESOLUCISN MISCELANEA 2011-2012 Duracisn: 6 Hrs. De: 09:00 A 15:00 Hrs. DESAYUNO DE:08:00 a 09:00 Hrs. Expositor: C.P.C Y E.F. LUIS GUILLERMO DELGADO PEDROZA Inversisn: $1,680.00.00 mas IVA VIERNES 29 DE JULIO TRATAMIENTO FISCAL DE SOCIEDADES Y ASOCIACIONES CIVILES Duracisn: 5 Hrs. De: 09:00 A 14:00 Hrs. DESAYUNO DE: 08:00 a 09:00 Hrs. Expositor: C.P.C. Y E.F. GADIEL ARAGON PERALTA Inversisn: $1,450.00.00 mas I
