Re: Cellular network modems
On 11/12/13, Stijn wrote:
> On 11/11/2013 22:22, patrick keshishian wrote:
>> Greetings,
>>
>> Saw this semi-related post[1], posting separately not to hijack it.
>>
>> Searching marc.info for "cellular modem" on misc@ archives
>> finds mostly old, and posts about using mobile phones as
>> cellular modems.
>>
>> Are there standalone cellular modem devices known to work
>> with OpenBSD?
>>
>> Multi-Tech's QuickCarrier USB-D[2] caught my attention.
>>
>> --patrick
>>
>> [1] http://marc.info/?l=openbsd-misc&m=138419004519701&w=2
>> [2] http://www.multitech.com/en_US/PRODUCTS/Families/QuickCarrierUSBD/
>>
> Not OpenBSD per se, but I've been using the following Huawei device (via
> wifi) with great success:
> http://consumer.huawei.com/en/portable-internet/mobile-wifi/tech-specs/e5220-en.htm
Thanks. That device is essentially what I'm looking for. A local
WiFi to "cellular" network router. MultiTech also has similar, more
industrial grade, cellular routers for local LAN (ethernet).
This was a great reference, helping me get to:
http://consumer.huawei.com/en/solutions/m2m-solutions/overview/index.htm
Cheers,
--patrick
> Basically it sets up a wireless hotspot so as long as your device has a
> wireless NIC you can have 3G connectivity.
>
> FYI, I just tried to see if USB tethering is working on this device but
> with no luck. Looks like the device ID is unknown(?) Anyway, dmesg and
> the "usbdevs -dv" output are available below. I also disconnected and
> reconnected the device so you can see what it spits out on the console.
>
> HTH,
> Stijn
>
> --- dmesg
> OpenBSD 5.4 (GENERIC) #37: Tue Jul 30 12:05:01 MDT 2013
> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
> cpu0: Intel(R) Celeron(R) M processor 900MHz ("GenuineIntel" 686-class)
> 901 MHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,PBE,NXE,PERF
> real mem = 1064366080 (1015MB)
> avail mem = 1035530240 (987MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 09/11/08, BIOS32 rev. 0 @ 0xf0010,
> SMBIOS rev. 2.5 @ 0xf06f0 (37 entries)
> bios0: vendor American Megatrends Inc. version "0906" date 09/11/2008
> bios0: ASUSTeK Computer INC. 900
> acpi0 at bios0: rev 0
> acpi0: sleep states S0 S3 S4 S5
> acpi0: tables DSDT FACP APIC OEMB MCFG
> acpi0: wakeup devices P0P3(S4) P0P4(S4) P0P5(S4) P0P6(S4) P0P7(S4)
> MC97(S4) USB1(S3) USB2(S3) USB3(S3) USB4(S3) EUSB(S3)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: apic clock running at 100MHz
> ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
> acpimcfg0 at acpi0 addr 0xe000, bus 0-255
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus 5 (P0P3)
> acpiprt2 at acpi0: bus 3 (P0P5)
> acpiprt3 at acpi0: bus 1 (P0P6)
> acpiec0 at acpi0
> acpicpu0 at acpi0: C3, C2
> acpitz0 at acpi0: critical temperature is 90 degC
> acpibat0 at acpi0: BAT0 model "900" serial type LION oem "ASUS"
> acpiac0 at acpi0: AC unit online
> acpiasus0 at acpi0
> acpibtn0 at acpi0: LID_
> acpibtn1 at acpi0: SLPB
> acpibtn2 at acpi0: PWRB
> bios0: ROM list: 0xc/0xf800!
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 "Intel 82915GM Host" rev 0x04
> vga1 at pci0 dev 2 function 0 "Intel 82915GM Video" rev 0x04
> intagp0 at vga1
> agp0 at intagp0: aperture at 0xd000, size 0x1000
> inteldrm0 at vga1
> drm0 at inteldrm0
> inteldrm0: 1024x600
> wsdisplay0 at vga1 mux 1: console (std, vt100 emulation)
> wsdisplay0: screen 1-5 added (std, vt100 emulation)
> "Intel 82915GM Video" rev 0x04 at pci0 dev 2 function 1 not configured
> azalia0 at pci0 dev 27 function 0 "Intel 82801FB HD Audio" rev 0x04: msi
> azalia0: codecs: Realtek ALC662
> audio0 at azalia0
> ppb0 at pci0 dev 28 function 0 "Intel 82801FB PCIE" rev 0x04: apic 1 int 16
> pci1 at ppb0 bus 4
> ppb1 at pci0 dev 28 function 1 "Intel 82801FB PCIE" rev 0x04: apic 1 int 17
> pci2 at ppb1 bus 3
> lii0 at pci2 dev 0 function 0 "Attansic Technology L2" rev 0xa0: apic 1
> int 17, address 00:22:15:22:f5:9e
> atphy0 at lii0 phy 1: F2 10/100 PHY, rev. 2
> ppb2 at pci0 dev 28 function 2 "Intel 82801FB PCIE" rev 0x04: apic 1 int 18
> pci3 at ppb2 bus 1
> uhci0 at pci0 dev 29 function 0 "Intel 82801FB USB" rev 0x04: apic 1 int 23
> uhci1 at pci0 dev 29 function 1 "Intel 82801FB USB" rev 0x04: apic 1 int 19
> uhci2 at pci0 dev 29 function 2 "Intel 82801FB USB" rev 0x04: apic 1 int 18
> uhci3 at pci0 dev 29 function 3 "Intel 82801FB USB" rev 0x04: apic 1 int 16
> ehci0 at pci0 dev 29 function 7 "Intel 82801FB USB" rev 0x04: apic 1 int 23
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> ppb3 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0xd4
> pci4 at ppb3 bus 5
> ichpcib0 at pci0 dev 31 function 0 "Intel 82801FBM LPC" rev 0x04: PM
> disabled
> pciide0 at pci0 dev 31 function 2 "Intel 8
Re: Mount CD/DVD and playback DVD as normal user
There are many reasons for wanting to mount a CD/DVD, perhaps to restore a backup or to access files from someone who only just recently made the transition from floppy. But for the two most common reasons today.. * Music/Audio discs, containing no filesystem and cannot be mounted. cdio(1) in base can be used to playback and rip audio CD's using the raw device node directly, as can many other ports. * DVD Video discs, which do contain a filesystem.. but with encrypted files. There is libdvdread/libdvdcss, also in ports, and runtime dependencies for many media players, and like cdio work by directly manipulating the device. -Bryan.
Re: Mount CD/DVD and playback DVD as normal user
Fred writes: > On 11/12/13 20:48, Laurence Rochfort wrote: >> Thanks Fred, >> >> /cdrom is the mount point, so no I don't think it should be a symlink. >> >> The command is: >> >> $ mount /dev/cd0a /cdrom >> mount_cd9660: /dev/cd0a on /cdrom: Operation not permitted > > Hi Laurence, > > You are right it should just be a node so not a symlink. > > The issue is with root owning /cdrom - but if you add /cdrom entry to fbtab: > > port:fred ~> tail -2 /etc/fbtab > #/dev/ttyC0 0600/dev/fd0 > /dev/ttyC00600/cdrom ^ 0700 *might* give better results. > Then the user who logs in can then mount /cdrom > > port:fred ~> mount -tcd9660 /dev/cd0a /cdrom > port:fred ~> mount > /dev/sd0a on / type ffs (local) > /dev/sd0k on /home type ffs (local, nodev, nosuid) > /dev/sd0d on /tmp type ffs (local, nodev, nosuid) > /dev/sd0f on /usr type ffs (local, nodev) > /dev/sd0g on /usr/X11R6 type ffs (local, nodev) > /dev/sd0h on /usr/local type ffs (local, nodev) > /dev/sd0j on /usr/obj type ffs (local, nodev, nosuid) > /dev/sd0i on /usr/src type ffs (local, nodev, nosuid) > /dev/sd0e on /var type ffs (local, nodev, nosuid) > /dev/sd2i on /mnt/usbpen type msdos (local) > /dev/cd0a on /cdrom type cd9660 (local, nodev, nosuid, read-only) > > I had to read mount(8) and fbtab(5) to work it out... > > hth > > Fred -- jca | PGP : 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
Re: Mount CD/DVD and playback DVD as normal user
On 11/12/13 20:48, Laurence Rochfort wrote: Thanks Fred, /cdrom is the mount point, so no I don't think it should be a symlink. The command is: $ mount /dev/cd0a /cdrom mount_cd9660: /dev/cd0a on /cdrom: Operation not permitted Hi Laurence, You are right it should just be a node so not a symlink. The issue is with root owning /cdrom - but if you add /cdrom entry to fbtab: port:fred ~> tail -2 /etc/fbtab #/dev/ttyC0 0600/dev/fd0 /dev/ttyC0 0600/cdrom Then the user who logs in can then mount /cdrom port:fred ~> mount -tcd9660 /dev/cd0a /cdrom port:fred ~> mount /dev/sd0a on / type ffs (local) /dev/sd0k on /home type ffs (local, nodev, nosuid) /dev/sd0d on /tmp type ffs (local, nodev, nosuid) /dev/sd0f on /usr type ffs (local, nodev) /dev/sd0g on /usr/X11R6 type ffs (local, nodev) /dev/sd0h on /usr/local type ffs (local, nodev) /dev/sd0j on /usr/obj type ffs (local, nodev, nosuid) /dev/sd0i on /usr/src type ffs (local, nodev, nosuid) /dev/sd0e on /var type ffs (local, nodev, nosuid) /dev/sd2i on /mnt/usbpen type msdos (local) /dev/cd0a on /cdrom type cd9660 (local, nodev, nosuid, read-only) I had to read mount(8) and fbtab(5) to work it out... hth Fred
GM45 gpu hung error
Hello, I'm running the latest snapshot on a thinkpad T400 witha an intel GM45 intel video card. After some use I get errors in dmesg and sometimes it glxinfo reports switching to sw rendering, it can always be triggered simply by trying to use youtube in chromium. Even when glxinfo reports still using the hw renderer the performance is severely degraded. Here's my dmesg: OpenBSD 5.4-current (GENERIC) #124: Sun Nov 10 22:49:21 MST 2013 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 4166717440 (3973MB) avail mem = 4047708160 (3860MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xe0010 (74 entries) bios0: vendor LENOVO version "7UET66WW (2.16 )" date 04/22/2009 bios0: LENOVO 2768HJ2 acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT TCPA DMAR SSDT SSDT SSDT acpi0: wakeup devices LID_(S3) SLPB(S3) UART(S3) IGBE(S4) EXP0(S4) EXP1(S4) EXP2(S4) EXP3(S4) EXP4(S4) PCI1(S4) USB0(S3) USB3(S3) USB5(S3) EHC0(S3) EHC1(S3) HDEF(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiec0 at acpi0 acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM)2 Duo CPU P9500 @ 2.53GHz, 2527.34 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,XSAVE,NXE,LONG,LAHF,PERF cpu0: 6MB 64b/line 16-way L2 cache cpu0: smt 0, core 0, package 0 cpu0: apic clock running at 265MHz cpu at mainbus0: not configured ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 2, remapped to apid 1 acpimcfg0 at acpi0 addr 0xe000, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus -1 (AGP_) acpiprt2 at acpi0: bus 2 (EXP0) acpiprt3 at acpi0: bus 3 (EXP1) acpiprt4 at acpi0: bus -1 (EXP2) acpiprt5 at acpi0: bus 5 (EXP3) acpiprt6 at acpi0: bus 13 (EXP4) acpiprt7 at acpi0: bus 21 (PCI1) acpicpu0 at acpi0: C3, C2, C1, PSS acpipwrres0 at acpi0: PUBS: resource for USB0, USB3, USB5, EHC0, EHC1 acpitz0 at acpi0: critical temperature is 127 degC acpitz1 at acpi0: critical temperature is 100 degC acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: SLPB acpibat0 at acpi0: BAT0 model "92P1137" serial25 type LION oem "SANYO" acpibat1 at acpi0: BAT1 not present acpiac0 at acpi0: AC unit online acpithinkpad0 at acpi0 acpidock0 at acpi0: GDCK not docked (0) cpu0: Enhanced SpeedStep 2527 MHz: speeds: 2534, 2533, 1600, 800 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07 vga1 at pci0 dev 2 function 0 "Intel GM45 Video" rev 0x07 intagp0 at vga1 agp0 at intagp0: aperture at 0xd000, size 0x1000 inteldrm0 at vga1 drm0 at inteldrm0 inteldrm0: 1440x900 wsdisplay0 at vga1 mux 1: console (std, vt100 emulation) wsdisplay0: screen 1-5 added (std, vt100 emulation) "Intel GM45 Video" rev 0x07 at pci0 dev 2 function 1 not configured "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured pciide0 at pci0 dev 3 function 2 "Intel GM45 PT IDER" rev 0x07: DMA (unsupported), channel 0 wired to native-PCI, channel 1 wired to native-PCI pciide0: using apic 1 int 18 for native-PCI interrupt pciide0: channel 0 ignored (not responding; disabled or no drives?) pciide0: channel 1 ignored (not responding; disabled or no drives?) puc0 at pci0 dev 3 function 3 "Intel GM45 KT" rev 0x07: ports: 1 com com4 at puc0 port 0 apic 1 int 17: ns16550a, 16 byte fifo com4: probed fifo depth: 15 bytes em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: msi, address 00:22:68:12:2d:ef uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int 20 uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int 21 uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int 22 ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int 23 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1 azalia0 at pci0 dev 27 function 0 "Intel 82801I HD Audio" rev 0x03: msi azalia0: codecs: Conexant CX20561, Conexant/0x2c06, using Conexant CX20561 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x03: msi pci1 at ppb0 bus 2 ppb1 at pci0 dev 28 function 1 "Intel 82801I PCIE" rev 0x03: msi pci2 at ppb1 bus 3 iwn0 at pci2 dev 0 function 0 "Intel WiFi Link 5300" rev 0x00: msi, MIMO 3T3R, MoW, address 00:21:6a:63:9e:ca ppb2 at pci0 dev 28 function 3 "Intel 82801I PCIE" rev 0x03: msi pci3 at ppb2 bus 5 ppb3 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x03: msi pci4 at ppb3 bus 13 uhci3 at pci0 dev 29 function 0 "Intel 82801I USB" rev 0x03: apic 1 int 16 uhci4 at pci0 dev 29 function 1 "Intel 82801I USB" rev 0x03: apic 1 int 17 uhci5 at pci0 dev 29 function 2 "Intel 82801I USB" rev 0x03: apic 1 int 18 ehci1 at pci0 dev 29 function 7 "Intel 82801I USB" rev 0x03:
Re: Mount CD/DVD and playback DVD as normal user
Thanks Fred, /cdrom is the mount point, so no I don't think it should be a symlink. The command is: $ mount /dev/cd0a /cdrom mount_cd9660: /dev/cd0a on /cdrom: Operation not permitted On 12 November 2013 20:27, Fred wrote: > On 11/12/13 18:56, Laurence Rochfort wrote: >> >> Thanks Tomas, >> >> I have set kern.usermount=1 now and added myself to the operator >> group, but still get operation denied when trying to mount a cdrom. >> >> Does the below look right? >> >> Thank you >> >> $ sysctl kern.usermount >> kern.usermount=1 >> >> $ groups >> laurence wheel operator >> >> $ ls -l / | grep cdrom >> drwxrwxr-x 2 root operator 512 Nov 8 14:29 cdrom >> >> $ ls -l /dev/cd* >> brwxrw 1 root operator6, 0 Nov 8 14:13 /dev/cd0a >> brw-rw 1 root operator6, 2 Nov 8 14:13 /dev/cd0c >> brw-r- 1 root operator6, 16 Nov 8 14:13 /dev/cd1a >> brw-r- 1 root operator6, 18 Nov 8 14:13 /dev/cd1c >> > > Surely /cdrom should be a symbolic link to /dev/cd0a? > > ie: > > ln -fs /dev/cd0a /cdrom > > hth > > Fred > > PS what command are you running that gives an operation denied?
Re: VPN suggestions
On 12 November 2013 20:42, Kapetanakis Giannis wrote: > On 12/11/13 19:29, Daniel Polak wrote: >> >> Original message from Kapetanakis Giannis at 8-11-2013 13:38 >>> >>> I would like to discuss some suggestions about VPN to multiple road >>> warriors. >>> >>> So far we're using OpenVPN, but I want to change that or at maybe >>> offer L2TP/IPsec in addition to OpenVPN. >> >> Have you considered using isakmpd? > > > Yes my test implementation was with isakmpd and npppd. The problem is the > authentication on the ipsec path. > I don't want to use the same PSK for every-one. > > >>> Playing around with npppd was straight forward and I was quite >>> impressed with it. Good job. >>> EAP-TLS would also be a very nice feature to have. >>> >>> What I'm wondering is what you guys do to setup the ipsec path of the >>> tunnel. >>> >>> One option is to use a unique pre-shared key for all clients. But this >>> is probably insecure since >>> it opens MITM attacks. Isn't it? >>> >>> Best option would be is to use a PKI infrastructure for your clients. >>> Isn't that a pain in the ass for users (user registration, key >>> deliveries etc). >>> How do you guys manage this for best user experience and compatibility >>> with most OSes? >> >> PKI is a bit of a PITA but it is doable. You could use a PKCS#12 package >> to deliver the certificates to the client. >> >> Daniel >> > > Agree with you that PKI is a PITA especially for the users. > > I'm thinking a solution with either OpenCA or Dogtag where user would > ideally > login, generate and download their certificate... > > However the whole process is much more difficult for the end user than > New Connection -> Define Connection type -> Enter username/password -> done. > > IKEv2 looks promising but don't know if it's supported in something else > except windows 8. > I want to cover windows XP,7,Vista,8, MAC OSx (xxx) and varius flavors of > Linux + smart phones. > Win7 and OS X should be supported, as per Reyk Floeter's paper on OpenIKED: http://www.openbsd.org/papers/openiked-asiabsdcon2013.pdf Vista and XP probably need an external client to handle IKEv2. As far as Linux is concerned my guess you'll have to test a bunch of clients and it will depend on what is already being used to manage connections. For instance, NetworkManager can integrate with OpenVPN or Cisco VPN client to provide a GUI to manage the VPN connection. Marios > The only type that works in all these is PPTP but this suxxx a lot in terms > of security... > > G
Re: Mount CD/DVD and playback DVD as normal user
On 11/12/13 18:56, Laurence Rochfort wrote: Thanks Tomas, I have set kern.usermount=1 now and added myself to the operator group, but still get operation denied when trying to mount a cdrom. Does the below look right? Thank you $ sysctl kern.usermount kern.usermount=1 $ groups laurence wheel operator $ ls -l / | grep cdrom drwxrwxr-x 2 root operator 512 Nov 8 14:29 cdrom $ ls -l /dev/cd* brwxrw 1 root operator6, 0 Nov 8 14:13 /dev/cd0a brw-rw 1 root operator6, 2 Nov 8 14:13 /dev/cd0c brw-r- 1 root operator6, 16 Nov 8 14:13 /dev/cd1a brw-r- 1 root operator6, 18 Nov 8 14:13 /dev/cd1c Surely /cdrom should be a symbolic link to /dev/cd0a? ie: ln -fs /dev/cd0a /cdrom hth Fred PS what command are you running that gives an operation denied?
Re: VPN suggestions
Original message from Kapetanakis Giannis at 12-11-2013 20:42 > >>> So far we're using OpenVPN, but I want to change that or at maybe >>> offer L2TP/IPsec in addition to OpenVPN. >> Have you considered using isakmpd? > > Yes my test implementation was with isakmpd and npppd. The problem is > the authentication on the ipsec path. > I don't want to use the same PSK for every-one. isakmpd with an ipsec.conf set up to use X.509 certificates would take care of that. > However the whole process is much more difficult for the end user than > New Connection -> Define Connection type -> Enter username/password -> > done. If you use PKCS#12 you can send the certificate to the end user by mail without compromising security. All the end user needs to do is tell a (properly configured) VPN client where the PKCS#12 package is located and he/she is up and running. Daniel
Re: Mount CD/DVD and playback DVD as normal user
Thanks Tomas, I have set kern.usermount=1 now and added myself to the operator group, but still get operation denied when trying to mount a cdrom. Does the below look right? Thank you $ sysctl kern.usermount kern.usermount=1 $ groups laurence wheel operator $ ls -l / | grep cdrom drwxrwxr-x 2 root operator 512 Nov 8 14:29 cdrom $ ls -l /dev/cd* brwxrw 1 root operator6, 0 Nov 8 14:13 /dev/cd0a brw-rw 1 root operator6, 2 Nov 8 14:13 /dev/cd0c brw-r- 1 root operator6, 16 Nov 8 14:13 /dev/cd1a brw-r- 1 root operator6, 18 Nov 8 14:13 /dev/cd1c On 12 November 2013 12:48, Tomas Bodzar wrote: > > > > On Mon, Nov 11, 2013 at 11:08 PM, Laurence Rochfort > wrote: >> >> Hello, >> >> I'm trying to configure my laptop so that a normal user may mount a >> CD/DVD or playback a DVD in Xine. >> >> So far I've just put an entry in /etc/fbtab. /cdrom permissions look >> OK, but the devices themselves less so. > > > > Check sysctl kern.usermount option > >> >> >> What are the consequences of putting myself in the operator group? >> Where can I find a description of those groups? >> >> Advice greatly appreciated. >> >> Cheers, >> Laurence. >> >> drwxr-xr-x 2 root wheel 512 Nov 8 14:29 cdrom >> >> brw-r- 1 root operator6, 0 Nov 8 14:13 /dev/cd0a >> brw-r- 1 root operator6, 2 Nov 8 14:13 /dev/cd0c >> brw-r- 1 root operator6, 16 Nov 8 14:13 /dev/cd1a >> brw-r- 1 root operator6, 18 Nov 8 14:13 /dev/cd1c >> crw-r- 1 root operator 15, 0 Nov 8 14:13 /dev/rcd0a >> crw-r- 1 root operator 15, 2 Nov 8 14:13 /dev/rcd0c >> crw-r- 1 root operator 15, 16 Nov 8 14:13 /dev/rcd1a >> crw-r- 1 root operator 15, 18 Nov 8 14:13 /dev/rcd1c >> >> # $OpenBSD: fbtab.head,v 1.2 1999/05/05 06:56:34 deraadt Exp $ >> # login(1) reads this file to determine which devices should be chown'd to >> # the new user. Format is: >> # login-tty permdevice:[device]:... >> /dev/ttyC0 0600 >> >> /dev/console:/dev/wskbd:/dev/wskbd0:/dev/wsmouse:/dev/wsmouse0:/dev/ttyCcfg >> /dev/X0 0600/dev/wsmouse:/dev/wsmouse0 >> # samples >> #/dev/ttyC0 0600/dev/fd0 >> /dev/ttyC4 0755/dev/cd0a:/dev/rcd0c
Re: VPN suggestions
Ugh...please disregard my signature...it was auto added onstupid me *Marc* On Tue, Nov 12, 2013 at 2:54 PM, Marc Epstein < marc.epst...@tightropeinteractive.com> wrote: > Hi > > Just wanted to chime in on my experience with PKI...like you guys said, > initially I found it to be a PITA especially combining it with site to site > tunneling (using ISAKMPD). But after getting the configs down and on the > client side using Shrew VPN client (if there is something else out there > better and free please let me know!) with a detailed document, none of my > users seem to have issues doing the initial connection. > > So my experience has been a pleasure so far. I do have some routing issues > where I have trouble getting the vpn user to connect to the endpoints on > the site to site but I hope to solve those soon. > > Regards, > > *Marc Epstein* > Senior IT Manager > Mobile: (415) 994-4625 > Email: marc.epst...@tightropeinteractive.com > > > > > On Tue, Nov 12, 2013 at 2:42 PM, Kapetanakis Giannis < > bil...@edu.physics.uoc.gr> wrote: > >> On 12/11/13 19:29, Daniel Polak wrote: >> >>> Original message from Kapetanakis Giannis at 8-11-2013 13:38 >>> I would like to discuss some suggestions about VPN to multiple road warriors. So far we're using OpenVPN, but I want to change that or at maybe offer L2TP/IPsec in addition to OpenVPN. >>> Have you considered using isakmpd? >>> >> >> Yes my test implementation was with isakmpd and npppd. The problem is the >> authentication on the ipsec path. >> I don't want to use the same PSK for every-one. >> >> >> Playing around with npppd was straight forward and I was quite impressed with it. Good job. EAP-TLS would also be a very nice feature to have. What I'm wondering is what you guys do to setup the ipsec path of the tunnel. One option is to use a unique pre-shared key for all clients. But this is probably insecure since it opens MITM attacks. Isn't it? Best option would be is to use a PKI infrastructure for your clients. Isn't that a pain in the ass for users (user registration, key deliveries etc). How do you guys manage this for best user experience and compatibility with most OSes? >>> PKI is a bit of a PITA but it is doable. You could use a PKCS#12 package >>> to deliver the certificates to the client. >>> >>> Daniel >>> >>> >> Agree with you that PKI is a PITA especially for the users. >> >> I'm thinking a solution with either OpenCA or Dogtag where user would >> ideally >> login, generate and download their certificate... >> >> However the whole process is much more difficult for the end user than >> New Connection -> Define Connection type -> Enter username/password -> >> done. >> >> IKEv2 looks promising but don't know if it's supported in something else >> except windows 8. >> I want to cover windows XP,7,Vista,8, MAC OSx (xxx) and varius flavors of >> Linux + smart phones. >> >> The only type that works in all these is PPTP but this suxxx a lot in >> terms of security... >> >> G
Re: VPN suggestions
Hi Just wanted to chime in on my experience with PKI...like you guys said, initially I found it to be a PITA especially combining it with site to site tunneling (using ISAKMPD). But after getting the configs down and on the client side using Shrew VPN client (if there is something else out there better and free please let me know!) with a detailed document, none of my users seem to have issues doing the initial connection. So my experience has been a pleasure so far. I do have some routing issues where I have trouble getting the vpn user to connect to the endpoints on the site to site but I hope to solve those soon. Regards, *Marc Epstein* Senior IT Manager Mobile: (415) 994-4625 Email: marc.epst...@tightropeinteractive.com On Tue, Nov 12, 2013 at 2:42 PM, Kapetanakis Giannis < bil...@edu.physics.uoc.gr> wrote: > On 12/11/13 19:29, Daniel Polak wrote: > >> Original message from Kapetanakis Giannis at 8-11-2013 13:38 >> >>> I would like to discuss some suggestions about VPN to multiple road >>> warriors. >>> >>> So far we're using OpenVPN, but I want to change that or at maybe >>> offer L2TP/IPsec in addition to OpenVPN. >>> >> Have you considered using isakmpd? >> > > Yes my test implementation was with isakmpd and npppd. The problem is the > authentication on the ipsec path. > I don't want to use the same PSK for every-one. > > > Playing around with npppd was straight forward and I was quite >>> impressed with it. Good job. >>> EAP-TLS would also be a very nice feature to have. >>> >>> What I'm wondering is what you guys do to setup the ipsec path of the >>> tunnel. >>> >>> One option is to use a unique pre-shared key for all clients. But this >>> is probably insecure since >>> it opens MITM attacks. Isn't it? >>> >>> Best option would be is to use a PKI infrastructure for your clients. >>> Isn't that a pain in the ass for users (user registration, key >>> deliveries etc). >>> How do you guys manage this for best user experience and compatibility >>> with most OSes? >>> >> PKI is a bit of a PITA but it is doable. You could use a PKCS#12 package >> to deliver the certificates to the client. >> >> Daniel >> >> > Agree with you that PKI is a PITA especially for the users. > > I'm thinking a solution with either OpenCA or Dogtag where user would > ideally > login, generate and download their certificate... > > However the whole process is much more difficult for the end user than > New Connection -> Define Connection type -> Enter username/password -> > done. > > IKEv2 looks promising but don't know if it's supported in something else > except windows 8. > I want to cover windows XP,7,Vista,8, MAC OSx (xxx) and varius flavors of > Linux + smart phones. > > The only type that works in all these is PPTP but this suxxx a lot in > terms of security... > > G
Re: VPN suggestions
On 12/11/13 19:29, Daniel Polak wrote: Original message from Kapetanakis Giannis at 8-11-2013 13:38 I would like to discuss some suggestions about VPN to multiple road warriors. So far we're using OpenVPN, but I want to change that or at maybe offer L2TP/IPsec in addition to OpenVPN. Have you considered using isakmpd? Yes my test implementation was with isakmpd and npppd. The problem is the authentication on the ipsec path. I don't want to use the same PSK for every-one. Playing around with npppd was straight forward and I was quite impressed with it. Good job. EAP-TLS would also be a very nice feature to have. What I'm wondering is what you guys do to setup the ipsec path of the tunnel. One option is to use a unique pre-shared key for all clients. But this is probably insecure since it opens MITM attacks. Isn't it? Best option would be is to use a PKI infrastructure for your clients. Isn't that a pain in the ass for users (user registration, key deliveries etc). How do you guys manage this for best user experience and compatibility with most OSes? PKI is a bit of a PITA but it is doable. You could use a PKCS#12 package to deliver the certificates to the client. Daniel Agree with you that PKI is a PITA especially for the users. I'm thinking a solution with either OpenCA or Dogtag where user would ideally login, generate and download their certificate... However the whole process is much more difficult for the end user than New Connection -> Define Connection type -> Enter username/password -> done. IKEv2 looks promising but don't know if it's supported in something else except windows 8. I want to cover windows XP,7,Vista,8, MAC OSx (xxx) and varius flavors of Linux + smart phones. The only type that works in all these is PPTP but this suxxx a lot in terms of security... G
Re: Cellular network modems
On 11/11/2013 22:22, patrick keshishian wrote:
Greetings,
Saw this semi-related post[1], posting separately not to hijack it.
Searching marc.info for "cellular modem" on misc@ archives
finds mostly old, and posts about using mobile phones as
cellular modems.
Are there standalone cellular modem devices known to work
with OpenBSD?
Multi-Tech's QuickCarrier USB-D[2] caught my attention.
--patrick
[1] http://marc.info/?l=openbsd-misc&m=138419004519701&w=2
[2] http://www.multitech.com/en_US/PRODUCTS/Families/QuickCarrierUSBD/
Not OpenBSD per se, but I've been using the following Huawei device (via
wifi) with great success:
http://consumer.huawei.com/en/portable-internet/mobile-wifi/tech-specs/e5220-en.htm
Basically it sets up a wireless hotspot so as long as your device has a
wireless NIC you can have 3G connectivity.
FYI, I just tried to see if USB tethering is working on this device but
with no luck. Looks like the device ID is unknown(?) Anyway, dmesg and
the "usbdevs -dv" output are available below. I also disconnected and
reconnected the device so you can see what it spits out on the console.
HTH,
Stijn
--- dmesg
OpenBSD 5.4 (GENERIC) #37: Tue Jul 30 12:05:01 MDT 2013
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Celeron(R) M processor 900MHz ("GenuineIntel" 686-class)
901 MHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,PBE,NXE,PERF
real mem = 1064366080 (1015MB)
avail mem = 1035530240 (987MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 09/11/08, BIOS32 rev. 0 @ 0xf0010,
SMBIOS rev. 2.5 @ 0xf06f0 (37 entries)
bios0: vendor American Megatrends Inc. version "0906" date 09/11/2008
bios0: ASUSTeK Computer INC. 900
acpi0 at bios0: rev 0
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP APIC OEMB MCFG
acpi0: wakeup devices P0P3(S4) P0P4(S4) P0P5(S4) P0P6(S4) P0P7(S4)
MC97(S4) USB1(S3) USB2(S3) USB3(S3) USB4(S3) EUSB(S3)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 100MHz
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 5 (P0P3)
acpiprt2 at acpi0: bus 3 (P0P5)
acpiprt3 at acpi0: bus 1 (P0P6)
acpiec0 at acpi0
acpicpu0 at acpi0: C3, C2
acpitz0 at acpi0: critical temperature is 90 degC
acpibat0 at acpi0: BAT0 model "900" serial type LION oem "ASUS"
acpiac0 at acpi0: AC unit online
acpiasus0 at acpi0
acpibtn0 at acpi0: LID_
acpibtn1 at acpi0: SLPB
acpibtn2 at acpi0: PWRB
bios0: ROM list: 0xc/0xf800!
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82915GM Host" rev 0x04
vga1 at pci0 dev 2 function 0 "Intel 82915GM Video" rev 0x04
intagp0 at vga1
agp0 at intagp0: aperture at 0xd000, size 0x1000
inteldrm0 at vga1
drm0 at inteldrm0
inteldrm0: 1024x600
wsdisplay0 at vga1 mux 1: console (std, vt100 emulation)
wsdisplay0: screen 1-5 added (std, vt100 emulation)
"Intel 82915GM Video" rev 0x04 at pci0 dev 2 function 1 not configured
azalia0 at pci0 dev 27 function 0 "Intel 82801FB HD Audio" rev 0x04: msi
azalia0: codecs: Realtek ALC662
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 "Intel 82801FB PCIE" rev 0x04: apic 1 int 16
pci1 at ppb0 bus 4
ppb1 at pci0 dev 28 function 1 "Intel 82801FB PCIE" rev 0x04: apic 1 int 17
pci2 at ppb1 bus 3
lii0 at pci2 dev 0 function 0 "Attansic Technology L2" rev 0xa0: apic 1
int 17, address 00:22:15:22:f5:9e
atphy0 at lii0 phy 1: F2 10/100 PHY, rev. 2
ppb2 at pci0 dev 28 function 2 "Intel 82801FB PCIE" rev 0x04: apic 1 int 18
pci3 at ppb2 bus 1
uhci0 at pci0 dev 29 function 0 "Intel 82801FB USB" rev 0x04: apic 1 int 23
uhci1 at pci0 dev 29 function 1 "Intel 82801FB USB" rev 0x04: apic 1 int 19
uhci2 at pci0 dev 29 function 2 "Intel 82801FB USB" rev 0x04: apic 1 int 18
uhci3 at pci0 dev 29 function 3 "Intel 82801FB USB" rev 0x04: apic 1 int 16
ehci0 at pci0 dev 29 function 7 "Intel 82801FB USB" rev 0x04: apic 1 int 23
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0xd4
pci4 at ppb3 bus 5
ichpcib0 at pci0 dev 31 function 0 "Intel 82801FBM LPC" rev 0x04: PM
disabled
pciide0 at pci0 dev 31 function 2 "Intel 82801FBM SATA" rev 0x04: DMA,
channel 0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 1 drive 0:
wd0: 1-sector PIO, LBA, 3847MB, 7880544 sectors
wd1 at pciide0 channel 1 drive 1:
wd1: 1-sector PIO, LBA, 7695MB, 15761088 sectors
wd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 4
wd1(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 4
ichiic0 at pci0 dev 31 function 3 "Intel 82801FB SMBus" rev 0x04: apic 1
int 19
iic0 at ichiic0
spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-3200CL5 SO-DIMM
usb1 at uhci0: USB revisi
Re: VPN suggestions
Original message from Kapetanakis Giannis at 8-11-2013 13:38 > I would like to discuss some suggestions about VPN to multiple road > warriors. > > So far we're using OpenVPN, but I want to change that or at maybe > offer L2TP/IPsec in addition to OpenVPN. Have you considered using isakmpd? > Playing around with npppd was straight forward and I was quite > impressed with it. Good job. > EAP-TLS would also be a very nice feature to have. > > What I'm wondering is what you guys do to setup the ipsec path of the > tunnel. > > One option is to use a unique pre-shared key for all clients. But this > is probably insecure since > it opens MITM attacks. Isn't it? > > Best option would be is to use a PKI infrastructure for your clients. > Isn't that a pain in the ass for users (user registration, key > deliveries etc). > How do you guys manage this for best user experience and compatibility > with most OSes? PKI is a bit of a PITA but it is doable. You could use a PKCS#12 package to deliver the certificates to the client. Daniel
Re: vio(4) stopped working
On 11/11/13 21:03, Jorge Luiz Silva Peixoto wrote:
2013/9/26 Kapetanakis Giannis
Hi,
Anyone experienced vio(4) problems on current?
The interface randomly stopped working this morning (2 days after the upgrade
from 5.3 to latest snapshot).
System is i386 on KVM running with mpbios disabled.
There was no log nor hung.
After that I compiled a kernel with RingEventIndex disabled to see if this has
anything to do with this problem.
Any way to debug this if/before this happens again?
Thanks
G
ps. After the upgrade I changed from em(4) to vio(4) cause I'm still
experiencing
em watchdog timeouts on other systems (current on KVM)
OpenBSD 5.4-current (GENERIC) #0: Thu Sep 26 12:38:10 EEST 2013
r...@cerebro.physics.uoc.gr:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Core i7 9xx (Nehalem Class Core i7) ("GenuineIntel" 686-class) 2.67
GHz
cpu0:
FPU,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,NXE,LONG,SSE3,SSSE3,CX16,SSE4.1,SSE4.2,x2APIC,POPCNT,LAHF,PERF
real mem = 1073250304 (1023MB)
avail mem = 1043963904 (995MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 06/23/99, BIOS32 rev. 0 @ 0xff046, SMBIOS
rev. 2.4 @ 0x3ea0 (10 entries)
bios0: vendor Seabios version "0.5.1" date 01/01/2007
bios0: oVirt oVirt Node
acpi0 at bios0: rev 0
acpi0: sleep states S5
acpi0: tables DSDT FACP SSDT APIC SSDT
acpi0: wakeup devices
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
acpiprt0 at acpi0: bus 0 (PCI0)
acpicpu0 at acpi0
mpbios at bios0 function 0x0 not configured
bios0: ROM list: 0xc/0x9e00 0xca000/0x800 0xca800/0x2200
cpu0 at mainbus0: (uniprocessor)
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82441FX" rev 0x02
pcib0 at pci0 dev 1 function 0 "Intel 82371SB ISA" rev 0x00
pciide0 at pci0 dev 1 function 1 "Intel 82371SB IDE" rev 0x00: DMA, channel 0
wired to compatibility, channel 1 wired to compatibility
pciide0: channel 0 disabled (no drives)
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: ATAPI 5/cdrom removable
cd0(pciide0:1:0): using PIO mode 0
uhci0 at pci0 dev 1 function 2 "Intel 82371SB USB" rev 0x01: irq 11
piixpm0 at pci0 dev 1 function 3 "Intel 82371AB Power" rev 0x03: irq 10
iic0 at piixpm0
iic0: addr 0x19 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01=
02= 03= 04= 05= 06= 07=
iic0: addr 0x1b 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01=
02= 03= 04= 05= 06= 07=
iic0: addr 0x1c 0f=00 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01=
02= 03= 04= 05= 06= 07=
iic0: addr 0x1d 0f=00 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01=
02= 03= 04= 05= 06= 07=
iic0: addr 0x1e 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01=
02= 03= 04= 05= 06= 07=
iic0: addr 0x1f 3e=00 48=00 4a=00 4e=00 fc=00 fe=00 words 00= 01=
02= 03= 04= 05= 06= 07=
iic0: addr 0x29 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words
00= 01= 02= 03= 04= 05= 06= 07=
iic0: addr 0x2b 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words
00= 01= 02= 03= 04= 05= 06= 07=
iic0: addr 0x4c 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words
00= 01= 02= 03= 04= 05= 06= 07=
iic0: addr 0x4e 00=d0 01=d0 02=d0 03=d0 04=d0 05=d0 06=d0 07=d0 08=d0 words
00= 01= 02= 03= 04= 05= 06= 07=
vga1 at pci0 dev 2 function 0 unknown vendor 0x1b36 product 0x0100 rev 0x04
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
virtio0 at pci0 dev 3 function 0 "Qumranet Virtio Network" rev 0x00: Virtio
Network Device
vio0 at virtio0: RingEventIdx disabled by UKC: address 00:1a:4a:34:9f:c6
virtio0: irq 11
virtio1 at pci0 dev 4 function 0 vendor "Qumranet", unknown product 0x1004 rev
0x00: Virtio SCSI host Device
virtio1: no matching child driver; not configured
virtio2 at pci0 dev 5 function 0 "Qumranet Virtio Console" rev 0x00: Virtio
Console Device
virtio2: no matching child driver; not configured
virtio3 at pci0 dev 6 function 0 "Qumranet Virtio Storage" rev 0x00: Virtio
Block Device
vioblk0 at virtio3
scsibus1 at vioblk0: 2 targets
sd0 at scsibus1 targ 0 lun 0: SCSI3 0/direct fixed
sd0: 12288MB, 512 bytes/sector, 25165824 sectors
virtio3: irq 10
virtio4 at pci0 dev 7 function 0 "Qumranet Virtio Memory" rev 0x00: Virtio
Memory Balloon Device
viomb0 at virtio4
virtio4: irq 11
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pcppi0 at isa0 port 0x61
Looking for HP J6700/J6750 (HPPA) in Spain
Hi. Theo told me HPPA is a "funny" platform to work in ports. So, I'm looking for a HP J6700/J6750 (HPPA). The main purpose of the machine will be ports testing. If someone can donate and ship one of this machines to Spain, please contact me off-list. Due to my economic situation I can only accept shipments from inside of the European Union (the spanish customs charges too many taxes for the gifts from outside of EU). Thanks. -- Juan Francisco Cantero Hurtado http://juanfra.info
Re: Mount CD/DVD and playback DVD as normal user
On Mon, Nov 11, 2013 at 11:08 PM, Laurence Rochfort < laurence.rochf...@gmail.com> wrote: > Hello, > > I'm trying to configure my laptop so that a normal user may mount a > CD/DVD or playback a DVD in Xine. > > So far I've just put an entry in /etc/fbtab. /cdrom permissions look > OK, but the devices themselves less so. > Check sysctl kern.usermount option > > What are the consequences of putting myself in the operator group? > Where can I find a description of those groups? > > Advice greatly appreciated. > > Cheers, > Laurence. > > drwxr-xr-x 2 root wheel 512 Nov 8 14:29 cdrom > > brw-r- 1 root operator6, 0 Nov 8 14:13 /dev/cd0a > brw-r- 1 root operator6, 2 Nov 8 14:13 /dev/cd0c > brw-r- 1 root operator6, 16 Nov 8 14:13 /dev/cd1a > brw-r- 1 root operator6, 18 Nov 8 14:13 /dev/cd1c > crw-r- 1 root operator 15, 0 Nov 8 14:13 /dev/rcd0a > crw-r- 1 root operator 15, 2 Nov 8 14:13 /dev/rcd0c > crw-r- 1 root operator 15, 16 Nov 8 14:13 /dev/rcd1a > crw-r- 1 root operator 15, 18 Nov 8 14:13 /dev/rcd1c > > # $OpenBSD: fbtab.head,v 1.2 1999/05/05 06:56:34 deraadt Exp $ > # login(1) reads this file to determine which devices should be chown'd to > # the new user. Format is: > # login-tty permdevice:[device]:... > /dev/ttyC0 0600 > /dev/console:/dev/wskbd:/dev/wskbd0:/dev/wsmouse:/dev/wsmouse0:/dev/ttyCcfg > /dev/X0 0600/dev/wsmouse:/dev/wsmouse0 > # samples > #/dev/ttyC0 0600/dev/fd0 > /dev/ttyC4 0755/dev/cd0a:/dev/rcd0c
Re: Mount CD/DVD and playback DVD as normal user
2013/11/11 Laurence Rochfort : > Hello, > > I'm trying to configure my laptop so that a normal user may mount a > CD/DVD or playback a DVD in Xine. I never used it but have you seen: http://www.bsdua.org/hotplug-diskmount.html ? mark > So far I've just put an entry in /etc/fbtab. /cdrom permissions look > OK, but the devices themselves less so. > > What are the consequences of putting myself in the operator group? > Where can I find a description of those groups? > > Advice greatly appreciated. > > Cheers, > Laurence. > > drwxr-xr-x 2 root wheel 512 Nov 8 14:29 cdrom > > brw-r- 1 root operator6, 0 Nov 8 14:13 /dev/cd0a > brw-r- 1 root operator6, 2 Nov 8 14:13 /dev/cd0c > brw-r- 1 root operator6, 16 Nov 8 14:13 /dev/cd1a > brw-r- 1 root operator6, 18 Nov 8 14:13 /dev/cd1c > crw-r- 1 root operator 15, 0 Nov 8 14:13 /dev/rcd0a > crw-r- 1 root operator 15, 2 Nov 8 14:13 /dev/rcd0c > crw-r- 1 root operator 15, 16 Nov 8 14:13 /dev/rcd1a > crw-r- 1 root operator 15, 18 Nov 8 14:13 /dev/rcd1c > > # $OpenBSD: fbtab.head,v 1.2 1999/05/05 06:56:34 deraadt Exp $ > # login(1) reads this file to determine which devices should be chown'd to > # the new user. Format is: > # login-tty permdevice:[device]:... > /dev/ttyC0 0600 > /dev/console:/dev/wskbd:/dev/wskbd0:/dev/wsmouse:/dev/wsmouse0:/dev/ttyCcfg > /dev/X0 0600/dev/wsmouse:/dev/wsmouse0 > # samples > #/dev/ttyC0 0600/dev/fd0 > /dev/ttyC4 0755/dev/cd0a:/dev/rcd0c > -- Disclaimer; This message is just a reflection of what I thought at the time of sending. The message may contain information that is not intended for you or that you don't understand.
Re: Ivy Bridge-EP Xeon (E5-2637v2) and Intel C602 Patsburg-A Chipset support
On Mon, Nov 11, 2013 at 10:56 AM, Andy wrote:
> On Fri 08 Nov 2013 18:28:38 GMT, Chris Cappuccio wrote:
>
>> Andy [a...@brandwatch.com] wrote:
>>
>>> Hi Chris,
>>>
>>> Yea that makes sense, as you say its pretty trivial and a divide by zero
>>> check is a common coding practice...
>>>
>>> I will try again as I only tried 'Max Performance' but it might mean
>>> until
>>> this is fixed we cannot enable 'Turbo+' at all.
>>>
>>> With the GIANT lock in OpenBSD I was really hoping that Turbo+ would
>>> work as
>>> that gives me a few hundred extra MHz on top of the default 3.5GHz Ivy
>>> clock
>>> in a single core etc.
>>>
>>> Please let me know if a commit for this is done and I will test using a
>>> snapshot :)
>>>
>>> Thanks for your time, Andy.
>>>
>>>
>> My patch is almost certainly not the right solution. But it will
>> possibly allow you to boot in turbo mode.
>>
>> So, it might be interesting to try it, or to try a version
>> with the patch (to get a turbo mode dmesg for phessler) and also
>> some extra info like:
>>
>> printf("high: %d low: %d cpuspeed %d\n",high,low,cpuspeed);
>>
>> in the est_init() function after high and low are calculated
>> (of course).
>>
>> Perhaps the way that the est_fqlist is built is faulty
>> for new CPUs, dmesg output from this might show this.
>>
>> For some reason I thought I had a Xeon 55xx but it's actually
>> an E5-26xx, and not a v2 either. And doesn't show this
>> problem as far as I can tell. Maybe I need to test it more!
>>
>
> Ok, I'll have a go at writing the fix and test it, but expect some pretty
> newbie questions..
>
> It's been a /very/ long time since I've written any C and I've never tried
> to compile OpenBSD.
>
> I'll read http://www.openbsd.org/faq/faq5.html next weekend..
>
and man release ...
