Cómo Cobrar de forma Contundente y Retener clientes (taller)

[Susana Hernandez]

1328602

[IMAGE]

Pms de Mixico prestigiada firma de Capacitacisn presenta:

Ticnicas Contundentes de Cobranza y Retencisn de Clientes

27 de Enero Guadalajara. Experto consultor Lic. Conrado Gsmez

Si esta informacisn no compete a su area y la considera de valor le
agradecemos compartirla. 
Pms Capacitacisn Efectiva de Mixico es una empresa Registrada ante la
STPS

Trabajamos con expertos en la materia para poder brindar herramientas
tacticas, vanguardistas y de facil aplicacisn.
100% Garantma de Satisfaccisn.
!Reciba la informacisn completa! Por favor responda este e-mail con los
datos siguientes
Empresa
Nombre
Telifono
Email
Nzmero de Interesados
En breve recibira temario, reseqa de expositor y tarifas.
Si lo prefiere comunmquese a los telifonos donde con gusto uno de
nuestros ejecutivos le atendera.
Telifonos: (0133) 8851-2365, (0133) 8851-2741 con mas de 10 lmneas.

Smguenos en Twitter@pmscapacitacion o bien en Facebook PMS de Mixico

Copyright (C) 2011, PMS Capacitacisn Efectiva de Mixico  S.C. Derechos
Reservados.
E-Mail MARKETING SERVICE POWERED BY MEDIAMKTOOLS.

Este Mensaje ha sido enviado a misc@openbsd.org como usuario de Pms de
Mixico o bien un usuario le refiris para recibir este boletmn.
Como usuario de Pms de Mixico, en este acto autoriza de manera expresa
que Pms de Mixico le puede contactar vma correo electrsnico u otros
medios.
ALTO, si en esta ocasisn la informacisn recibida no fue de su interis
pero desea recibir informacisn personalizada en relacisn a otros temas
favor de indicarlo.
Si usted ha recibido este mensaje por error, haga caso omiso de el y de
antemano una sincera disculpa por la molestia, reporte su cuenta
respondiendo este correo con el subject BAJACOBROS
Unsubscribe to this mailing list, reply a blank message with the subject
UNSUBSCRIBE BAJACOBROS
Tenga en cuenta que la gestisn de nuestras bases de datos es de suma
importancia para nosotros y no es intencisn de la empresa la
inconformidad del receptor, nuestra intencisn es promover herramientas de
utilidad para el

[demime 1.01d removed an attachment of type image/jpeg which had a name of 
tecnicas cobranza.jpg]

Re: CARP health check ?

[Илья Шипицин]

sounds nice.

I came to somewhat similar. Just ssh to external address and ping both carp
peers (via internal addresses), if there're less than 2 answers, we are in
trouble.

your idea is also good.

2012/1/13 Nick Holland 

> ok, let's try this idea...
>
> Your systems have ONE external address, but they can have as many
> internal addresses as desired, right?
>
> SO...let's say you have two CARP'd firewalls, FW1 and FW2.  They share
> external address of x.x.x.x.
>
>  FW1:   FW2:
> Externalx.x.x.xx.x.x.x   (same)
> Internal real   10.0.0.2   10.0.0.3
> internal CARP   10.0.0.1   10.0.0.1  (same)
>
> port 22 gets you ssh on the active firewall...but which is that?
>
> How about a PF ruleset that redirects port 2202 to 10.0.0.2 port 22 and
> port 2203 to 10.0.0.3?  Now you can find out anything you wish about
> either box ON DEMAND by selecting the port you ssh to?  If 2202 doesn't
> answer, you've lost fw1, if 2203 doesn't answer, you have lost fw2
>
> In addition to checking to see that the box is up, it's good to check
> for a sane CARP status -- i.e., all "MASTER" on one box, "SLAVE" on the
> other, plus other overall health issues.
>
> Nick.
>
> On 01/12/12 13:48, iLXQ {IPICIN wrote:
> > well, it's usually not possible.
> > we use OpenBSD, because it supports "carpdev" option (FreeBSD does not
> > support it)
> >
> > most of our carp clusters run on single address. no spare IP space.
> >
> > we could do ssh and ping carp peer (some trouble with preemption), but we
> > do not want to stick with certain IP addresses. we would like to monitor
> > "in general"
> >
> > 1) define new carp cluster for monitoring
> > 2) ssh to it and monitorcarp peer in general without specifying it's
> address
> >
> > 2012/1/13 Simon Perreault 
> >
> >> On 01/12/2012 01:18 PM, P P;Q Q  P(P8P?P8Q P8P= wrote:
> >>
> >>> we are using nagios for monitoring and it is running on separate
> server.
> >>> we
> >>> do not want to monitor server from inside.
> >>> we want to run run something via ssh and see whether carp peer is dead
> or
> >>> not.
> >>>
> >>
> >> Give each server it's unique IP address.
> >> Use a third IP address for carp.
> >> Monitor all three addresses.
> >>
> >> Simon
> >> --
> >> DTN made easy, lean, and smart --> http://postellation.viagenie.**ca<
> http://postellation.viagenie.ca>
> >> NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
> >> STUN/TURN server   --> http://numb.viagenie.ca

Re: CARP health check ?

[Nick Holland]

ok, let's try this idea...

Your systems have ONE external address, but they can have as many
internal addresses as desired, right?

SO...let's say you have two CARP'd firewalls, FW1 and FW2.  They share
external address of x.x.x.x.

  FW1:   FW2:
Externalx.x.x.xx.x.x.x   (same)
Internal real   10.0.0.2   10.0.0.3
internal CARP   10.0.0.1   10.0.0.1  (same)

port 22 gets you ssh on the active firewall...but which is that?

How about a PF ruleset that redirects port 2202 to 10.0.0.2 port 22 and
port 2203 to 10.0.0.3?  Now you can find out anything you wish about
either box ON DEMAND by selecting the port you ssh to?  If 2202 doesn't
answer, you've lost fw1, if 2203 doesn't answer, you have lost fw2

In addition to checking to see that the box is up, it's good to check
for a sane CARP status -- i.e., all "MASTER" on one box, "SLAVE" on the
other, plus other overall health issues.

Nick.

On 01/12/12 13:48, iLXQ {IPICIN wrote:
> well, it's usually not possible.
> we use OpenBSD, because it supports "carpdev" option (FreeBSD does not
> support it)
> 
> most of our carp clusters run on single address. no spare IP space.
> 
> we could do ssh and ping carp peer (some trouble with preemption), but we
> do not want to stick with certain IP addresses. we would like to monitor
> "in general"
> 
> 1) define new carp cluster for monitoring
> 2) ssh to it and monitorcarp peer in general without specifying it's address
> 
> 2012/1/13 Simon Perreault 
> 
>> On 01/12/2012 01:18 PM, P P;Q Q  P(P8P?P8Q P8P= wrote:
>>
>>> we are using nagios for monitoring and it is running on separate server.
>>> we
>>> do not want to monitor server from inside.
>>> we want to run run something via ssh and see whether carp peer is dead or
>>> not.
>>>
>>
>> Give each server it's unique IP address.
>> Use a third IP address for carp.
>> Monitor all three addresses.
>>
>> Simon
>> --
>> DTN made easy, lean, and smart --> 
>> http://postellation.viagenie.**ca
>> NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
>> STUN/TURN server   --> http://numb.viagenie.ca

Re: locate weirdness

[john]

On , "LV Lammert"  wrote:

> Recommendations to upgrade are total BS - the system is 4.3 for reasons  
> which I will not share with the list because they are not germaine to any  
> issue raised herein. Such comments (beyond Theo's first one, to which he  
> is more than entltled) are pure Obsd MISC - off topic, provide no useful  
> information, and only worth reading for entertainment value.

Upgrading is a rule of this list. It cannot get anymore simple than that.

Re: problem with ral in hopstap mode on -current

[Erling Westenvik]

My former access point was an OpenBSD 4.7 laptop and I experienced
exactly the same problems with at least acx(4) and ath(4). Upgrading to
5.0 did not provide a solution.

I recently installed 5.0 on a box with a ral(4) PCI-card but the problem
persisted. However: installing the same PCI ral(4) card on an older box
running OpenBSD 4.6 DID solve it, indicating that the problem might have
been introduced at some level from 4.7 onward?

Cheers,
Erling

On Thu, Jan 12, 2012 at 05:49:06PM +0100, Sebastian Reitenbach wrote:
> Hi,
> 
> I ran a soekris box as AP, and recently upgraded it from a very old 4.2, to 
> 5.0 -current. It was running the old 4.2 for such a long time, since I only 
> had a 32MB CF card in it, and just recently bought a new 2GB card, to install 
> a full system on it.
> 
> I have a ral wireless device in the box, configured as hostap:
> 
> # cat /etc/hostname.ral0  
>   
> inet 10.23.4.56 255.255.0.0
> nwid brb.freifunk.net chan 1 mediaopt hostap
> 
> The clients are OpenBSD notebooks. Now after the upgrade it happens after 
> some time (don't know what the timeframe is, maybe a day maybe longer or 
> shorter, the wireless is not that much used), that the ral device is not 
> responding, when a client tries to connect to the WLAN. On the client I see 
> the status on the WLAN device as status: no network
> 
> on the access point, all seems to be fine:
> 
> # ifconfig ral0
> ral0: flags=8943 mtu 1500
> lladdr 00:11:09:9a:9a:7e
> priority: 4
> groups: wlan
> media: IEEE802.11 autoselect hostap (autoselect mode 11b hostap)
> status: active
> ieee80211: nwid brb.freifunk.net chan 1 bssid 00:11:09:9a:9a:7e 100dBm
> inet6 fe80::211:9ff:fe9a:9a7e%ral0 prefixlen 64 scopeid 0x4
> inet 10.23.4.56 netmask 0x broadcast 10.23.255.255
> 
> To get it to work again, I have to login to the AP, and issue a 
> sh /etc/netstart ral0
> 
> that's all, afterwards, the client can happily connect.
> 
> When I have the problem, I watched with tcpdump what happens when the client 
> tries to connect to the network:
> tcpdump -n -i ral0 -y IEEE802_11_RADIO -vvv
> 
> See the tcpdump output and dmesg below.
> 
> Suggestion to debug this problem?
> 
> Sebastian
> 
> # ifconfig ral0   
>  
> ral0: flags=8943 mtu 1500
> lladdr 00:11:09:9a:9a:7e
> priority: 4
> groups: wlan
> media: IEEE802.11 autoselect hostap (autoselect mode 11b hostap)
> status: active
> ieee80211: nwid brb.freifunk.net chan 1 bssid 00:11:09:9a:9a:7e 100dBm
> inet6 fe80::211:9ff:fe9a:9a7e%ral0 prefixlen 64 scopeid 0x4
> inet 10.23.4.56 netmask 0x broadcast 10.23.255.255
> 
> OpenBSD 5.0-current (GENERIC) #118: Tue Dec 20 11:09:21 MST 2011
> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
> cpu0: Geode(TM) Integrated Processor by National Semi ("Geode by NSC" 
> 586-class)
>  267 MHz
> cpu0: FPU,TSC,MSR,CX8,CMOV,MMX
> real mem  = 133754880 (127MB)
> avail mem = 121548800 (115MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 20/40/21, BIOS32 rev. 0 @ 0xf7840
> pcibios0 at bios0: rev 2.0 @ 0xf/0x1
> pcibios0: pcibios_get_intr_routing - function not supported
> pcibios0: PCI IRQ Routing information unavailable.
> pcibios0: PCI bus #0 is the last bus
> bios0: ROM list: 0xc8000/0x9000
> cpu0 at mainbus0: (uniprocessor)
> cpu0: TSC disabled
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 "Cyrix GXm PCI" rev 0x00
> sis0 at pci0 dev 6 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: irq 10, 
> ad
> dress 00:00:24:c3:89:1c
> nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
> sis1 at pci0 dev 7 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: irq 10, 
> ad
> dress 00:00:24:c3:89:1d
> nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
> sis2 at pci0 dev 8 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: irq 10, 
> ad
> dress 00:00:24:c3:89:1e
> nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1
> ral0 at pci0 dev 10 function 0 "Ralink RT2560" rev 0x01: irq 11, address 
> 00:11:0
> 9:9a:9a:7e
> ral0: MAC/BBP RT2560 (rev 0x04), RF RT2525
> gscpcib0 at pci0 dev 18 function 0 "NS SC1100 ISA" rev 0x00
> gpio0 at gscpcib0: 64 pins
> "NS SC1100 SMI" rev 0x00 at pci0 dev 18 function 1 not configured
> pciide0 at pci0 dev 18 function 2 "NS SCx200 IDE" rev 0x01: DMA, channel 0 
> wired
>  to compatibility, channel 1 wired to compatibility
> wd0 at pciide0 channel 0 drive 0: 
> wd0: 1-sector PIO, LBA, 1918MB, 3928176 sectors
> wd0(pciide0:0:0): using PIO mode 4, DMA mode 2
> geodesc0 at pci0 dev 18 function 5 "NS SC1100 X-Bus" rev 0x00: iid 6 revision 
> 3 
> wdstatus 0
> ohci0 at pci0 dev 19 function 0 "Compaq USB OpenHost" rev 0x08: irq 5, 
> version 1
> .0, legacy support
> isa0 at gsc

Re: Blank virtual consoles in OpenBSD 5.0 with Intel graphics

[Norman Golisz]

Hi Joe,

On Thu Jan 12 2012 12:36, Joe Gidi wrote:
> Running OpenBSD/amd64 5.0-RELEASE on a ThinkPad T410 with Intel graphics,
> I have blank virtual consoles after starting X.

these new Thinkpad models come with Sandybridge graphic chips.
Basic Sandybridge support has been added recently to the kernel and
Xenocara, and should provide you with 2D graphics and working
suspend/resume functionality.

To try it, just upgrade to -current.

Yours,
Norman

Re: Install without the DNS domain name from DHCP

[Alexander Hall]

On 01/12/12 18:18, ropers wrote:

On 12 January 2012 13:33,  wrote:

BTW, what seems to work is:

supersede domain-name ".";


Makes sense, because the . means root (i.e. the domain name root),
which incidentally is why http://www.openbsd.org./ also works.



Not incidentally. Intentionally. It explicitly makes the resolver _not_ 
try to append the 'search ...' part from resolv.conf, should it not find 
a requested address.


Try setting 'search whitehouse.gov' in /etc/resolv.conf and then try the 
following links:


http://www/ => NSFW
http://www./=> SFW

Re: CARP health check ?

[Илья Шипицин]

RFC1918 addreeses are not routable.
there's no problem for carp peers to ping each other, I just cannot ping
both of them from Internet (where nagios is located)

the problem is to specify each peer's address in nagios config, I do not
want to depend on 10.0.0.2 for cluster1 peer and so on.
especially from preemption point of view.

I want to keep things simple.

1) there's another carp cluster at x.y.z.t
2) either it is running in preemption mode or not, I connect to carp master
from Internet
3) there should be alive carp backup (at some rfc1918 address, which I do
not want to specifi in nagios)
4) if backup is unreacheble, we are in trouble

2012/1/13 Simon Perreault 

> On 01/12/2012 01:49 PM, iLXQ {IPICIN wrote:
>
>> most of our carp clusters run on single address. no spare IP space.
>>
>
> That's the root of the problem.
>
> Use IPv6 for the non-carp addresses? RFC 1918? rdr on some ports?
>
> Otherwise, you'll have to invent a hackish and fragile solution...
>
>
> Simon
> --
> DTN made easy, lean, and smart -->
http://postellation.viagenie.**ca
> NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
> STUN/TURN server   --> http://numb.viagenie.ca

Re: Blank virtual consoles in OpenBSD 5.0 with Intel graphics

[Matthieu Herrb]

On Jan 12, 2012 6:41 PM, "Joe Gidi"  wrote:
>
> Running OpenBSD/amd64 5.0-RELEASE on a ThinkPad T410 with Intel graphics,
> I have blank virtual consoles after starting X.

Yes, known problem with recent ontel chipsets.

>
> Otherwise, the machine works great and seems fully supported. The only
> other quirk I've noticed is that the LED indicator on the mic mute button
> doesn't light up (but it does mute/unmute the mic).
>
> Dmesg:
>
> OpenBSD 5.0 (GENERIC.MP) #63: Wed Aug 17 10:14:30 MDT 2011
>dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> real mem = 4078419968 (3889MB)
> avail mem = 3955732480 (3772MB)
> mainbus0 at root
> bios0 at mainbus0: SMBIOS rev. 2.6 @ 0xe0010 (78 entries)
> bios0: vendor LENOVO version "6IET80WW (1.40 )" date 12/01/2011
> bios0: LENOVO 2537JU5
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S3 S4 S5
> acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET ASF! SLIC BOOT SSDT TCPA
> DMAR SSDT SSDT SSDT
> acpi0: wakeup devices LID_(S3) SLPB(S3) UART(S3) IGBE(S4) EXP1(S4)
> EXP2(S4) EXP3(S4) EXP4(S4) EXP5(S4) EHC1(S3) EHC2(S3) HDEF(S4)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpiec0 at acpi0
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.37 MHz
> cpu0:
>
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
>
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
> T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
> cpu0: 256KB 64b/line 8-way L2 cache
> cpu0: apic clock running at 133MHz
> cpu1 at mainbus0: apid 1 (application processor)
> cpu1: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.00 MHz
> cpu1:
>
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
>
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
> T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
> cpu1: 256KB 64b/line 8-way L2 cache
> cpu2 at mainbus0: apid 4 (application processor)
> cpu2: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.00 MHz
> cpu2:
>
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
>
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
> T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
> cpu2: 256KB 64b/line 8-way L2 cache
> cpu3 at mainbus0: apid 5 (application processor)
> cpu3: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.00 MHz
> cpu3:
>
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
>
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
> T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
> cpu3: 256KB 64b/line 8-way L2 cache
> ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
> ioapic0: misconfigured as apic 2, remapped to apid 1
> acpimcfg0 at acpi0 addr 0xe000, bus 0-255
> acpihpet0 at acpi0: 14318179 Hz
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus -1 (PEG_)
> acpiprt2 at acpi0: bus 2 (EXP1)
> acpiprt3 at acpi0: bus 3 (EXP2)
> acpiprt4 at acpi0: bus -1 (EXP3)
> acpiprt5 at acpi0: bus 5 (EXP4)
> acpiprt6 at acpi0: bus 13 (EXP5)
> acpicpu0 at acpi0: C3, C1, PSS
> acpicpu1 at acpi0: C3, C1, PSS
> acpicpu2 at acpi0: C3, C1, PSS
> acpicpu3 at acpi0: C3, C1, PSS
> acpipwrres0 at acpi0: PUBS
> acpitz0 at acpi0: critical temperature is 100 degC
> acpibtn0 at acpi0: LID_
> acpibtn1 at acpi0: SLPB
> acpibat0 at acpi0: BAT0 model "42T4911" serial 50006 type LION oem "LGC"
> acpibat1 at acpi0: BAT1 not present
> acpiac0 at acpi0: AC unit online
> acpithinkpad0 at acpi0
> cpu0: Enhanced SpeedStep 2394 MHz: speeds: 2400, 2399, 2266, 2133, 1999,
> 1866, 1733, 1599, 1466, 1333, 1199 MHz
> pci0 at mainbus0 bus 0
> pchb0 at pci0 dev 0 function 0 "Intel Core Host" rev 0x02
> vga1 at pci0 dev 2 function 0 "Intel Mobile HD graphics" rev 0x02
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> intagp0 at vga1
> agp0 at intagp0: aperture at 0xd000, size 0x1000
> inteldrm0 at vga1: apic 1 int 16
> drm0 at inteldrm0
> "Intel 3400 MEI" rev 0x06 at pci0 dev 22 function 0 not configured
> em0 at pci0 dev 25 function 0 "Intel 82577LM" rev 0x06: msi, address
> f0:de:f1:5a:45:49
> ehci0 at pci0 dev 26 function 0 "Intel 3400 USB" rev 0x06: apic 1 int 23
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> azalia0 at pci0 dev 27 function 0 "Intel 3400 HD Audio" rev 0x06: msi
> azalia0: codecs: Conexant/0x5069, Intel/0x2804, using Conexant/0x5069
> audio0 at azalia0
> ppb0 at pci0 dev 28 function 0 "Intel 3400 PCIE" rev 0x06: msi
> pci1 at ppb0 bus 2
> ppb1 at pci0 dev 28 function 1 "Intel 3400 PCIE" rev 0x06: msi
> pci2 at ppb1 bus 3
> iwn0 at pci2 dev 0 function 0 "Intel Centrino Advanced-N 6200" rev 0x35:
> msi, MIMO 2T2R, MoW, address 18:3d:a2:40:48:bc
> ppb2 at pci0 dev 28 function 3 "Intel 

Re: CARP health check ?

[Simon Perreault]

On 01/12/2012 01:49 PM, PP;QQ P(P8P?P8QP8P= wrote:

most of our carp clusters run on single address. no spare IP space.


That's the root of the problem.

Use IPv6 for the non-carp addresses? RFC 1918? rdr on some ports?

Otherwise, you'll have to invent a hackish and fragile solution...

Simon
--
DTN made easy, lean, and smart --> http://postellation.viagenie.ca
NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
STUN/TURN server   --> http://numb.viagenie.ca

Re: CARP health check ?

[Илья Шипицин]

well, it's usually not possible.
we use OpenBSD, because it supports "carpdev" option (FreeBSD does not
support it)

most of our carp clusters run on single address. no spare IP space.

we could do ssh and ping carp peer (some trouble with preemption), but we
do not want to stick with certain IP addresses. we would like to monitor
"in general"

1) define new carp cluster for monitoring
2) ssh to it and monitorcarp peer in general without specifying it's address

2012/1/13 Simon Perreault 

> On 01/12/2012 01:18 PM, P P;Q Q  P(P8P?P8Q P8P= wrote:
>
>> we are using nagios for monitoring and it is running on separate server.
>> we
>> do not want to monitor server from inside.
>> we want to run run something via ssh and see whether carp peer is dead or
>> not.
>>
>
> Give each server it's unique IP address.
> Use a third IP address for carp.
> Monitor all three addresses.
>
> Simon
> --
> DTN made easy, lean, and smart --> 
> http://postellation.viagenie.**ca
> NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
> STUN/TURN server   --> http://numb.viagenie.ca

Re: Disk blocking and unacceptable wait times with Areca ARC 1210

[Chris Cappuccio]

Geoff Steckel [g...@oat.com] wrote:
> I didn't follow the thread all the way back, so forgive me if this has
> been covered. I'm betting that the disk subsystem & RAID controller
> combination are choking on queued metadata writes. Some of the questions
> are aimed at the user, and some at people who know the system code.
> 

dd is being used to write zeros to a single file, so metadata updates are not 
an issue

Re: CARP health check ?

[Simon Perreault]

On 01/12/2012 01:18 PM, PP;QQ P(P8P?P8QP8P= wrote:

we are using nagios for monitoring and it is running on separate server. we
do not want to monitor server from inside.
we want to run run something via ssh and see whether carp peer is dead or
not.


Give each server it's unique IP address.
Use a third IP address for carp.
Monitor all three addresses.

Simon
--
DTN made easy, lean, and smart --> http://postellation.viagenie.ca
NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
STUN/TURN server   --> http://numb.viagenie.ca

Re: CARP health check ?

[Justin Jereza]

I would still consider using ifstated to signal to the network monitor the
state of the interface.

An alternative that may be better though is to use SNMP.

--
Composed on a phone.

Re: CARP health check ?

[Илья Шипицин]

well, I need to make question more certain.

we are using nagios for monitoring and it is running on separate server. we
do not want to monitor server from inside.
we want to run run something via ssh and see whether carp peer is dead or
not.

probably we do not want to determine that we are carp master, because we
will always connect to master via ssh.

2012/1/13 Justin Jereza 

> I think ifstated is what you want to use.
>
> --
> Composed on a phone.
> On Jan 13, 2012 2:07 AM, "iLXQ {IPICIN"  wrote:
>
>> Hello!
>>
>>
>> I'm running OpenBSD with CARP (and because of CARP), 10 servers in total.
>> Some of them preemt=1, some with preemt=0
>> I'd like to know that spare CARP server is up and running (and will play
>> it
>> part when master server die).
>>
>> questions are
>>
>> 1) how to detect that server is master? any other way except parsing
>> ifconfig output ?
>>
>> 2) how to detect whether carp peer is alive ?
>>
>> Cheers,
>> Ilya Shipitsin

Re: CARP health check ?

[Justin Jereza]

I think ifstated is what you want to use.

--
Composed on a phone.
On Jan 13, 2012 2:07 AM, "PP;QQ P(P8P?P8QP8P=" 
wrote:

> Hello!
>
>
> I'm running OpenBSD with CARP (and because of CARP), 10 servers in total.
> Some of them preemt=1, some with preemt=0
> I'd like to know that spare CARP server is up and running (and will play it
> part when master server die).
>
> questions are
>
> 1) how to detect that server is master? any other way except parsing
> ifconfig output ?
>
> 2) how to detect whether carp peer is alive ?
>
> Cheers,
> Ilya Shipitsin

Re: Multiple ISP-connections/Routing/Packet filtering

[Kenneth Gober]

On Tue, Jan 10, 2012 at 1:41 PM, Dr.-Ing. Torsten Finke <
torsten.fi...@igh-essen.com> wrote:

> On my firewall I have TWO different internet connections. It is simple to
> forward - for instance ssh -
> from both connections to an internal machine. Now this machine answers and
> the
> firewall sends the reply back. How can I force the firewall to send the
> reply
> over exactly that interface the request came in? The problem is that the
> client anywhere on the internet expects the answer from the very address it
> had contacted. If now the reply comes from another address, it will get
> lost.
>

I am doing this using OpenBSD 4.6, without any apparent problems, using the
following syntax:

pass in log quick on $pri inet proto tcp to ($pri) port 1194
pass in log quick on $sec reply-to $sec inet proto tcp to ($sec) port 1194

Unfortunately, the pf.conf syntax has changed since v4.6 and while I do
plan to upgrade my
own firewall to v5.0 (I've bought the CD already) I haven't yet had time to
perform the upgrade.
As a result, I haven't worked out what the equivalent 'modern' syntax would
be, but you might
be able to get some hints from what I'm using in v4.6.

-ken

CARP health check ?

[Илья Шипицин]

Hello!


I'm running OpenBSD with CARP (and because of CARP), 10 servers in total.
Some of them preemt=1, some with preemt=0
I'd like to know that spare CARP server is up and running (and will play it
part when master server die).

questions are

1) how to detect that server is master? any other way except parsing
ifconfig output ?

2) how to detect whether carp peer is alive ?

Cheers,
Ilya Shipitsin

Blank virtual consoles in OpenBSD 5.0 with Intel graphics

[Joe Gidi]

Running OpenBSD/amd64 5.0-RELEASE on a ThinkPad T410 with Intel graphics,
I have blank virtual consoles after starting X.

Otherwise, the machine works great and seems fully supported. The only
other quirk I've noticed is that the LED indicator on the mic mute button
doesn't light up (but it does mute/unmute the mic).

Dmesg:

OpenBSD 5.0 (GENERIC.MP) #63: Wed Aug 17 10:14:30 MDT 2011
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4078419968 (3889MB)
avail mem = 3955732480 (3772MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.6 @ 0xe0010 (78 entries)
bios0: vendor LENOVO version "6IET80WW (1.40 )" date 12/01/2011
bios0: LENOVO 2537JU5
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET ASF! SLIC BOOT SSDT TCPA
DMAR SSDT SSDT SSDT
acpi0: wakeup devices LID_(S3) SLPB(S3) UART(S3) IGBE(S4) EXP1(S4)
EXP2(S4) EXP3(S4) EXP4(S4) EXP5(S4) EHC1(S3) EHC2(S3) HDEF(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpiec0 at acpi0
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.37 MHz
cpu0:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
cpu0: 256KB 64b/line 8-way L2 cache
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.00 MHz
cpu1:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
cpu1: 256KB 64b/line 8-way L2 cache
cpu2 at mainbus0: apid 4 (application processor)
cpu2: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.00 MHz
cpu2:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
cpu2: 256KB 64b/line 8-way L2 cache
cpu3 at mainbus0: apid 5 (application processor)
cpu3: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz, 2394.00 MHz
cpu3:
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,PCLMUL,MWAIT,DS-CPL,VMX,SMX,ES
T,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,SSE4.2,POPCNT,AES,NXE,LONG
cpu3: 256KB 64b/line 8-way L2 cache
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 2, remapped to apid 1
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (PEG_)
acpiprt2 at acpi0: bus 2 (EXP1)
acpiprt3 at acpi0: bus 3 (EXP2)
acpiprt4 at acpi0: bus -1 (EXP3)
acpiprt5 at acpi0: bus 5 (EXP4)
acpiprt6 at acpi0: bus 13 (EXP5)
acpicpu0 at acpi0: C3, C1, PSS
acpicpu1 at acpi0: C3, C1, PSS
acpicpu2 at acpi0: C3, C1, PSS
acpicpu3 at acpi0: C3, C1, PSS
acpipwrres0 at acpi0: PUBS
acpitz0 at acpi0: critical temperature is 100 degC
acpibtn0 at acpi0: LID_
acpibtn1 at acpi0: SLPB
acpibat0 at acpi0: BAT0 model "42T4911" serial 50006 type LION oem "LGC"
acpibat1 at acpi0: BAT1 not present
acpiac0 at acpi0: AC unit online
acpithinkpad0 at acpi0
cpu0: Enhanced SpeedStep 2394 MHz: speeds: 2400, 2399, 2266, 2133, 1999,
1866, 1733, 1599, 1466, 1333, 1199 MHz
pci0 at mainbus0 bus 0
pchb0 at pci0 dev 0 function 0 "Intel Core Host" rev 0x02
vga1 at pci0 dev 2 function 0 "Intel Mobile HD graphics" rev 0x02
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp0 at vga1
agp0 at intagp0: aperture at 0xd000, size 0x1000
inteldrm0 at vga1: apic 1 int 16
drm0 at inteldrm0
"Intel 3400 MEI" rev 0x06 at pci0 dev 22 function 0 not configured
em0 at pci0 dev 25 function 0 "Intel 82577LM" rev 0x06: msi, address
f0:de:f1:5a:45:49
ehci0 at pci0 dev 26 function 0 "Intel 3400 USB" rev 0x06: apic 1 int 23
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
azalia0 at pci0 dev 27 function 0 "Intel 3400 HD Audio" rev 0x06: msi
azalia0: codecs: Conexant/0x5069, Intel/0x2804, using Conexant/0x5069
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 "Intel 3400 PCIE" rev 0x06: msi
pci1 at ppb0 bus 2
ppb1 at pci0 dev 28 function 1 "Intel 3400 PCIE" rev 0x06: msi
pci2 at ppb1 bus 3
iwn0 at pci2 dev 0 function 0 "Intel Centrino Advanced-N 6200" rev 0x35:
msi, MIMO 2T2R, MoW, address 18:3d:a2:40:48:bc
ppb2 at pci0 dev 28 function 3 "Intel 3400 PCIE" rev 0x06: msi
pci3 at ppb2 bus 5
ppb3 at pci0 dev 28 function 4 "Intel 3400 PCIE" rev 0x06: msi
pci4 at ppb3 bus 13
sdhc0 at pci4 dev 0 function 0 "Ricoh 5U822 SD/MMC" rev 0x01: apic 1 int 16
sdmmc0 at sdhc0
"Ricoh 5U230 Memory Stick" rev 0x01 at pci4 dev 0 function 1 not configured
"Ricoh

Re: Install without the DNS domain name from DHCP

[ropers]

On 12 January 2012 13:33,   wrote:
> BTW, what seems to work is:
>
> supersede domain-name ".";

Makes sense, because the . means root (i.e. the domain name root),
which incidentally is why http://www.openbsd.org./ also works.

problem with ral in hopstap mode on -current

[Sebastian Reitenbach]

Hi,

I ran a soekris box as AP, and recently upgraded it from a very old 4.2, to 5.0 
-current. It was running the old 4.2 for such a long time, since I only had a 
32MB CF card in it, and just recently bought a new 2GB card, to install a full 
system on it.

I have a ral wireless device in the box, configured as hostap:

# cat /etc/hostname.ral0

inet 10.23.4.56 255.255.0.0
nwid brb.freifunk.net chan 1 mediaopt hostap

The clients are OpenBSD notebooks. Now after the upgrade it happens after some 
time (don't know what the timeframe is, maybe a day maybe longer or shorter, 
the wireless is not that much used), that the ral device is not responding, 
when a client tries to connect to the WLAN. On the client I see the status on 
the WLAN device as status: no network

on the access point, all seems to be fine:

# ifconfig ral0
ral0: flags=8943 mtu 1500
lladdr 00:11:09:9a:9a:7e
priority: 4
groups: wlan
media: IEEE802.11 autoselect hostap (autoselect mode 11b hostap)
status: active
ieee80211: nwid brb.freifunk.net chan 1 bssid 00:11:09:9a:9a:7e 100dBm
inet6 fe80::211:9ff:fe9a:9a7e%ral0 prefixlen 64 scopeid 0x4
inet 10.23.4.56 netmask 0x broadcast 10.23.255.255

To get it to work again, I have to login to the AP, and issue a 
sh /etc/netstart ral0

that's all, afterwards, the client can happily connect.

When I have the problem, I watched with tcpdump what happens when the client 
tries to connect to the network:
tcpdump -n -i ral0 -y IEEE802_11_RADIO -vvv

See the tcpdump output and dmesg below.

Suggestion to debug this problem?

Sebastian

# ifconfig ral0
ral0: flags=8943 mtu 1500
lladdr 00:11:09:9a:9a:7e
priority: 4
groups: wlan
media: IEEE802.11 autoselect hostap (autoselect mode 11b hostap)
status: active
ieee80211: nwid brb.freifunk.net chan 1 bssid 00:11:09:9a:9a:7e 100dBm
inet6 fe80::211:9ff:fe9a:9a7e%ral0 prefixlen 64 scopeid 0x4
inet 10.23.4.56 netmask 0x broadcast 10.23.255.255

OpenBSD 5.0-current (GENERIC) #118: Tue Dec 20 11:09:21 MST 2011
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by National Semi ("Geode by NSC" 586-class)
 267 MHz
cpu0: FPU,TSC,MSR,CX8,CMOV,MMX
real mem  = 133754880 (127MB)
avail mem = 121548800 (115MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 20/40/21, BIOS32 rev. 0 @ 0xf7840
pcibios0 at bios0: rev 2.0 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc8000/0x9000
cpu0 at mainbus0: (uniprocessor)
cpu0: TSC disabled
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Cyrix GXm PCI" rev 0x00
sis0 at pci0 dev 6 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: irq 10, ad
dress 00:00:24:c3:89:1c
nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
sis1 at pci0 dev 7 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: irq 10, ad
dress 00:00:24:c3:89:1d
nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
sis2 at pci0 dev 8 function 0 "NS DP83815 10/100" rev 0x00, DP83816A: irq 10, ad
dress 00:00:24:c3:89:1e
nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1
ral0 at pci0 dev 10 function 0 "Ralink RT2560" rev 0x01: irq 11, address 00:11:0
9:9a:9a:7e
ral0: MAC/BBP RT2560 (rev 0x04), RF RT2525
gscpcib0 at pci0 dev 18 function 0 "NS SC1100 ISA" rev 0x00
gpio0 at gscpcib0: 64 pins
"NS SC1100 SMI" rev 0x00 at pci0 dev 18 function 1 not configured
pciide0 at pci0 dev 18 function 2 "NS SCx200 IDE" rev 0x01: DMA, channel 0 wired
 to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: 
wd0: 1-sector PIO, LBA, 1918MB, 3928176 sectors
wd0(pciide0:0:0): using PIO mode 4, DMA mode 2
geodesc0 at pci0 dev 18 function 5 "NS SC1100 X-Bus" rev 0x00: iid 6 revision 3 
wdstatus 0
ohci0 at pci0 dev 19 function 0 "Compaq USB OpenHost" rev 0x08: irq 5, version 1
.0, legacy support
isa0 at gscpcib0
isadma0 at isa0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
com0: console
com1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard
pcppi0 at isa0 port 0x61
spkr0 at pcppi0
nsclpcsio0 at isa0 port 0x2e/2: NSC PC87366 rev 9: GPIO VLM TMS
gpio1 at nsclpcsio0: 29 pins
gscsio0 at isa0 port 0x15c/2: SC1100 SIO rev 1:
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
usb0 at ohci0: USB revision 1.0
uhub0 at usb0 "Compaq OHCI root hub" rev 1.00/1.00 addr 1
vscsi0 at root
scsibus0 at vscsi0: 256 targets
softraid0 at root
scsibus1 at softraid0: 256 targets
root on wd0a (a0d20985cad8f41c.a) swap on wd0b 

Re: locate weirdness

[L. V. Lammert]

At 05:59 AM 1/12/2012, you wrote:


Is this a new phenomenon? That is, did it use to work earlier and
something is now broken? In that case, what did you change? :-)


Yes, .. nothing.


(I'm not even gonna comment on the rest of this discussion. Ah, yet I
just did, didn't I? Oh well, in that case...


Of course! Can't resist !


I feel it would have been prudent of you not to insult this community
when denied help because of *your* own failure to play by the rules.


ExCUSE me? Who is insulting whom? I asked a simple question 
[forgetting for a moment the propensities of this list], and was 
totally flamed for trying to solve a problem. We happily participate 
in the user community, as you, because OBSD is a quality product 
maintained by good folks that value technology; the fact that USERS 
like to crap on OTHER users is exactly why many people just turn off 
and tune out.


Recommendations to upgrade are total BS - the system is 4.3 for 
reasons which I will not share with the list because they are not 
germaine to any issue raised herein. Such comments (beyond Theo's 
first one, to which he is more than entltled) are pure Obsd MISC - 
off topic, provide no useful information, and only worth reading for 
entertainment value.



Not only is it counterproductive for your own problem's sake, all this
annoying bickering that flares up from time to time wears on everyones
patience, and I for one don't like to see this community wither away
because some individuals can't accept that there are a certain set of
rules by which to act in order to both get something out of the community
and to contribute to it.


ExCUSE me again? If you don't like flame wars, why do YOU participate?

Enough said - thanks to the folks that actually had some 
*CONSTRUCTIVE* suggestions, they are the 'wheat' that provide value 
on this list, as opposed to folks like yourself that are purely 'chaff'.


Lee 

Re: locate weirdness

[Fritz Wuehler]

Hey Henning,

> off-topic diatribes? coming to this mailing list asking for help about
> a 4 year old release when it is clearly documented that you are
> ENTIRELY ON YOUR OWN with releases older than a year is at least off
> topic, if not outright rude.

I notice you spend much more time scolding people than actually saying
anything worthwhile. You should work on yourself and find out why that
is. Perhaps you could benefit from some anger management training?

> so my advice is to upgrade.

You could have said just that without the assholier than thou 'tude. I know,
you can't help it.

Aşk İksiri

[Green Temptation]

Green Temptation A~k Damlas}





Green Temptation Bayanlarda cinsel g|c|n| artt}ran bile~imler igeren  

yepyeni bir a~k damlas}.



Bayanlarda Cinsel davran}~} ortaya g}karan bu |r|n dopada bulunan  

bitkilerden elde edilmi~tir.



Green Temptation kullan}ld}ktan yakla~}k 15 dakika sonra beyne, v|cudu  

harekete gegiren bir mesaj gvnderir ve cinsel istekte biling alt} bir art}~  

meydana gelir.



Green Temptation Hakk}nda Detayl} Bilgi

Re: Limit ICMP echo reply

[Simon Perreault]

On 01/11/2012 06:39 PM, Limaunion wrote:

Hi all! very simple PF question, is it possible to limit the number of
ICMP echo replies, like 5/min from any source address ?


If you're looking to limit the rate emitted by OpenBSD as a host, check 
out the net.inet.icmp.errppslimit sysctl.


If you're looking to limit the rate forwarded by OpenBSD as a router, 
then you just apply QoS in pf as usual.


Simon
--
DTN made easy, lean, and smart --> http://postellation.viagenie.ca
NAT64/DNS64 open-source--> http://ecdysis.viagenie.ca
STUN/TURN server   --> http://numb.viagenie.ca

Re: locate weirdness

[Benny Lofgren]

On 2012-01-11 16.26, L. V. Lammert wrote:
> Have a 4.3 server with a really weird problem: locate ONLY indexes one
> [user file] partition! IOW, no binaries are indexed, nor is /usr/, /var, ..

Is this a new phenomenon? That is, did it use to work earlier and
something is now broken? In that case, what did you change? :-)

Anyway, I have a very vague recollection of a problem in earlier versions
of locate, with filenames containing 8-bit characters. I don't recall the
details now, but I *think* that it core dumped, leaving the database in-
completely generated. That may very well be an exact match to the symptoms
you are seeing now, so check your file systems for (new) files containing
unusual characters.

(I'm not even gonna comment on the rest of this discussion. Ah, yet I
just did, didn't I? Oh well, in that case...

I feel it would have been prudent of you not to insult this community
when denied help because of *your* own failure to play by the rules.

Not only is it counterproductive for your own problem's sake, all this
annoying bickering that flares up from time to time wears on everyones
patience, and I for one don't like to see this community wither away
because some individuals can't accept that there are a certain set of
rules by which to act in order to both get something out of the community
and to contribute to it. People eventually tire of this shit and leave,
it's as simple as that. And rarely is it the annoying, non-contributing
people that leave first...

That said, if I look at my own modest server farm, my oldest OpenBSD
box is a 3.8 one. I dare not touch it these days! So I can absolutely
understand that there are perfectly valid reasons to keep an old, non-
upgraded machine around. But I most certainly won't expect any help from
anyone else but me either, if and when it fails. The decision to keep it
frozen in time was mine, and I'll be the one suffering the eventual
consequences of that decision, not anyone else. It will go belly-up one
day, and when it does I'll replace it with a modern server with a current
(as in current release) OpenBSD. And THEN I'll upgrade it regularly so I
won't fall years behind on maintenance again. Promise. Really.)


Regards,
/Benny


> All filesystems are ffs;
> 
> I deleted /var/db/locate.db and recreated with 
> /usr/libexec/locate.updatedb more than once;
> 
> locate.rc is stock:
> 
> ==
> TMPDIR="/var/tmp"
> FCODES="/var/db/locate.database"
> SEARCHPATHS="/"
> PRUNEPATHS="/tmp /var/tmp /usr/tmp"
> FILESYSTEMS="ffs ufs ext2fs"
> 
> [comments pruned]
> =
> 
> The locate database seems to be normal:
> 
> Database: /var/db/locate.database
> Compression: Front: 19.48%, Bigram: 65.90%, Total: 14.52%
> Filenames: 218512, Characters: 14825215, Database size: 2153551
> Bigram characters: 734303, Integers: 5440, 8-Bit characters: 3
> 
> =
> 
> Trying to troubleshoot a Perl module problem, and locate is not
> returning any hits except user files !
> Any pointers on what is 'intefering' with the process?

-- 
internetlabbet.se / work:   +46 8 551 124 80  / "Words must
Benny Lofgren/  mobile: +46 70 718 11 90 /   be weighed,
/   fax:+46 8 551 124 89/not counted."
   /email:  benny -at- internetlabbet.se

Re: Install without the DNS domain name from DHCP

[scire]

Andres Perera  wrote:
 
>> don't know if you can use
>>
>> supersede domain-name "";
>
> this constantly comes up on the list for some reason. it shouldn't
> because it doesn't do anything

I pointed some months ago to this problem.

It seems the only "clean" alternative is to write your own
dhclient-script.

BTW, what seems to work is:

supersede domain-name ".";

Rodrigo.

Re: locate weirdness

[Duncan Patton a Campbell]

On Wed, 11 Jan 2012 13:47:48 -0600
"L. V. Lammert"  wrote:

> At 01:30 PM 1/11/2012, Jeremy O'Brien wrote:
> 
> >4.3 was released May 1, 2008. That's almost 4 years old software. What
> >are you expecting here? Someone to check out the code from that
> >version and deeply inspect what may be causing your problem, that is
> >more than likely already fixed in a later version?
> 
> Another typical reply - the question was "has anyone ever seen 
> anything like this", .. or, perhaps, "what could be causing it". No 
> need for the off-topic diatribes - a simple no would more than suffice.
> 
>  Lee
> 
Yes.  I have seen problems with locate in all releases that I have run.  
Unfortunately I have never bothered to characterize these problems.

Dhu

Re: locate weirdness

[Martin Bock]

FWIW, on my system it seems to work (and yes, I should upgrade!)

$ uname -a
OpenBSD foo.bar 4.3 GENERIC.MP#587 i386

On Wed, Jan 11, 2012 at 03:09:50PM -0600, L. V. Lammert wrote:
> On Wed, 11 Jan 2012, Philip Guenther wrote:
> 
> > Lesson #1: examine the anomalous data for clues.
> >
> > So, you're saying that
> > locate /usr | grep ^/usr | head

$ locate /usr | grep '^/usr' | head
/usr
...

> > returns nothing but
> >
> Yep! As does locate /usr
> 
> > locate /home | grep ^/home | head

$ locate /home | grep '^/home' | head
/home
...

> > returns something?  (/home being a stand-in for whatever your unsaid
> > "[user file] partition" is)
> >
> > Perhaps you should investigate how those two directories differ?
> >
> That was the original question - both are ffs, both are rw, the only
> difference between then that /home is nosuid, however that does not
> affect locate on 3.3, 4.9, or 5.0 (just tested).

$ mount
/dev/sd0a on / type ffs (local, with quotas)
/dev/sd1a on /home type ffs (local, nodev, nosuid, with quotas)
/dev/sd2a on /var type ffs (local, nodev, nosuid, with quotas)

>   TFTR!
> 
>   Lee

-- 
Martin Bock  :wq

Re: locate weirdness

[Henning Brauer]

* L. V. Lammert  [2012-01-11 20:48]:
> Another typical reply - the question was "has anyone ever seen
> anything like this", .. or, perhaps, "what could be causing it". No
> need for the off-topic diatribes - a simple no would more than
> suffice.

ah, you think the other kids won't find you when you cover your eyes.

off-topic diatribes? coming to this mailing list asking for help about
a 4 year old release when it is clearly documented that you are
ENTIRELY ON YOUR OWN with releases older than a year is at least off
topic, if not outright rude.

i have extremely vague memories of something weird with locate
somewhen in the past. might misremember, doesn't matter, haven't seen
anything like that for a long time, so my advice is to upgrade.

-- 
Henning Brauer, h...@bsws.de, henn...@openbsd.org
BS Web Services, http://bsws.de, Full-Service ISP
Secure Hosting, Mail and DNS Services. Dedicated Servers, Root to Fully Managed
Henning Brauer Consulting, http://henningbrauer.com/

Re: locate weirdness

[Sean Kamath]

On Jan 11, 2012, at 4:08 PM, L. V. Lammert wrote:

> On Wed, 11 Jan 2012, Philip Guenther wrote:
>
>>> Agreed, .. but if locate.update does NOT run as root, that would seem to
>>> indicate some problem other than permissions.
>>
>> If you're saying what I think you're saying, then I disagree and think
>> your logic is backwards.
>> What user do you think locate.updatedb is run as?
>>
> If it does not run as root, then it isn't a permission issue as running as
> root provides all required permissions, eh?

eh?

"if it does not run as root. . . running as root provides. . ."??

To put it bluntly, if updatedb runs as root, it has all possible permissions.
If updatedb does NOT run as root, it does NOT have all possible permissions.


> I have never seen locate.updatedb fail when run as root (3.0 to 5.0,
> actually), .. but, then, it isn't exactly 'failing', it just isn't
> indexing anything except "/home".

FWIW, I've never had a problem with locate since, oh, I think 2.6.  But the
point is, *IS* updatedb running as root?

> The only other possible hypothesis, is that it is running out of memory;
> one would expect some sort of error to be returned in that case and a
> blank database as a result, not one partially populated.

No, your logic is backward, as Philip has been gently pointing out.

So, to diagnose your problem (regardless of release -- this is diagnosing 101
here):

1) Find out *EXACTLY* how updatedb is being called, and run it, except don't
redirect errors to /dev/null or files or such.  Check for error messages
and/or exit codes
2) Since updatedb is a *SHELL SCRIPT*, try running it with -x (this breaks 1),
of course).

If the above is not enough for you to figure it out, email me off list and
I'll help.  But I don't have a 4.3 machine handy (I have a 4.6 and a 4.7
machine).

Sean

[demime 1.01d removed an attachment of type application/pkcs7-signature which 
had a name of smime.p7s]