Re: spamd vs IPv6

[Nick Guenther]

February 22, 2021 1:22 PM, "Edgar Pettijohn"  wrote:

> Have you tried starting spamd with '-l ::1' to alter its address to bind
> to?

I hadn't! But it's no help:

comms# /usr/libexec/spamd -l ::1 -d -v -G 15:4:864 -C 
/etc/letsencrypt/live/comms.kousu.ca/fullchain.pem -K 
/etc/letsencrypt/live/comms.kousu.ca/privkey.paranoid.pem 
spamd: getaddrinfo: no address associated with name

Re: spamd vs IPv6

[Nick Guenther]

July 1, 2020 7:34 AM, "Harald Dunkel"  wrote:

> Hi folks,
> 
> spamd(8) still mentions 127.0.0.1, but no indication of IPv6 support.
> Looking on Google for "openbsd spamd ipv6" gives me some entries of
> 2015 and 2016, but no up-to-date information. Please excuse if I am
> too blind to see.
> 
> I am a big fan of spamd, but I wonder is spamd in a dead-end wrt IP
> address families? Would you recommend "IPv4 only" for EMail?

I was just wondering about this too! I can't see a clear answer anywhere online 
either.




I went looking because I realized that

# /etc/pf.conf
pass in log proto tcp to any port smtp divert-to 127.0.0.1 port spamd

was becoming

# pfctl -s rules
pass in log inet proto tcp from any to any port = 25 flags S/SA divert-to 
127.0.0.1 port 8025

I wondered where that `inet` was coming from. Eventually I realized that maybe 
pf was implying it from the divert-to, since, according to pf.conf(5):

> divert-to [...] The packets will not be modified [...]

so if a packet comes in as IPv4 (inet) is has to stay IPv4.

I tried

# /etc/pf.conf
pass in log proto tcp to any port smtp divert-to 127.0.0.1 port spamd
pass in log proto tcp to any port smtp divert-to ::1 port spamd

and this became

# pfctl -s rules  
pass in log inet proto tcp from any to any port = 25 flags S/SA divert-to 
127.0.0.1 port 8025
pass in log inet6 proto tcp from any to any port = 25 flags S/SA divert-to ::1 
port 8025


However if I actually tried to connect via IPv6 (`nc -6 mail.myserver.com 25`) 
I just get an immediately closed connection, presumably because ::1:8025 isn't 
open.


Come to think of it, because spamd uses IP addresses to do its job, for this to 
happen the database format needs to be augmented to store the longer addresses, 
so it's not necessarily a simple change, and that's probably why it hasn't 
happened yet.

I just double-checked by digging around in the code (which I am not finally 
experienced enough for, phew) and found: 
https://github.com/openbsd/src/blob/cf8f31167b4af5c8ea769ff3d8a5974a24fec6bb/libexec/spamd/spamd.c#L1427

smtplisten = socket(AF_INET, SOCK_STREAM, 0);

So yeah, it looks like it's still inet-only, no inet6 here.

-Nick

Re: Hidden Long Filenames and mount_cd9660

[Nick Guenther]

On Sun, 19 Feb 2012 09:47:29 -0500, Richard Thornton wrote:

Why not find a Windows box to dump the data to a Linux server?
Problem solved.


Because this isn't the first time I've noticed this, and last night I 
finally hunted down specs and guessed around enough to figure out what 
was going on--and also, I refuse to believe that OpenBSD is this 
retarded. This was one of the first things that bugged me about it, back 
when I first ever stuck discs into it. Also I have about 100gigs on DVD 
and I want to minimize the hoops the data has to go through. Also I'd 
have to beg friends for access to Windows.


I thought about this though! My last plan before sleeping last night 
was to install linux in qemu on the server with sshd running and access 
to cd0c and dump data that way--the virtual network lag should be far 
less than real lag, but now thankfully I don't have to because Remco has 
stumbled into the proper solution.


On Sun, 19 Feb 2012 16:41:44 +0100, Remco wrote:

Nick Guenther wrote:

 Here's what cd-info(1) (for the archives: this is from package 
libcdio)

 has to say about a DVD that OpenBSD shows LFNs for:
 ~$ cd-info  --dvd
[snip]
 Disc mode is listed as: DVD-R
 CD-ROM Track List (1 - 1)
   #: MSF   LSNType   Green? Copy?
   1: 00:02:00  00 data   false  no
 ++ WARN: number of minutes (501) truncated to 99.
 170: 99:24:74  447224 leadout (1003 MB raw, 873 MB formatted)
 __
 CD Analysis Report
 CD-ROM with ISO 9660 filesystem and joliet extension level 3
 ISO 9660: 2256224 blocks, label `GOSHA_DOCUMENTS '
 Application: NERO BURNING ROM
 Preparer   :
 Publisher  :
 System :
 Volume : GOSHA_DOCUMENTS
 Volume Set :
 ~$


 and one that OpenBSD shows SFNs for:

 ~$ cd-info --dvd
 [snip common drive info]

 Disc mode is listed as: DVD-R
 CD-ROM Track List (1 - 1)
   #: MSF   LSNType   Green? Copy?
   1: 00:02:00  00 data   false  no
 ++ WARN: number of minutes (507) truncated to 99.
 170: 99:16:26  446576 leadout (1001 MB raw, 872 MB formatted)
 __
 CD Analysis Report
 ISO 9660: 2279017 blocks, label `G Save B 6  '
 Application: EASY CD CREATOR 6.0 (171) COPYRIGHT (C) 1999-2003 
ROXIO,

 INC.
 Preparer   :
 Publisher  :
 System :
 Volume : G Save B 6
 Volume Set :
 UDF: version 0.00


 and another:

 Disc mode is listed as: DVD-R
 CD-ROM Track List (1 - 1)
   #: MSF   LSNType   Green? Copy?
   1: 00:02:00  00 data   false  no
 ++ WARN: number of minutes (505) truncated to 99.
 170: 99:57:63  449688 leadout (1008 MB raw, 878 MB formatted)
 __
 CD Analysis Report
 ISO 9660: 2269454 blocks, label `G Save B 7  '
 Application: EASY CD CREATOR 6.0 (171) COPYRIGHT (C) 1999-2003 
ROXIO,

 INC.
 Preparer   :
 Publisher  :
 System :
 Volume : G Save B 7
 Volume Set :
 UDF: version 0.00


 So, obviously, the clue is that Roxio obviously didn't put Joliet 
data
 on the discs (grrr), which Nero did on the other one. But 
nevertheless
 the long file names *are* there because linux reads them. Is there 
any

 way to make OpenBSD find the long names anyway?

 Thanks to all you lovely misc@ers,
 -Nick


If I'm not mistaken your LFN disc only show ISO9660, the SFN discs 
have an

additional "UDF: version 0.00" marker.

I've never used it so I don't know if it's the right tool for the job 
but

there is mount_udf(8) on OpenBSD.

I'll leave it to you if you want to risk trying it, or wait for more
knowledgeable people to chime in.



Ahhh! You win!!
~$ sudo mount_cd9660 /dev/cd0c /mnt/cd0/
~$ ls /mnt/cd0/
AUDIOCOMICS   FONTSPROGRAMS
~$ mount | grep cd0
/dev/cd0c on /mnt/cd0 type cd9660 (local, read-only, norrip)
~$ #ALLCAPS is a symptom of 8.3 filenames on OpenBSD (n.b. part of 
Linux's spec is
~$ #that it tolower()s 8.3 filenames to make them less scary, but also 
less obvious)

~$ sudo umount /mnt/cd0
~$ sudo mount_udf /dev/cd0c /mnt/cd0/
~$ ls /mnt/cd0
AudioComics   FontsPrograms
~$ mount | grep cd0
/dev/cd0c on /mnt/cd0 type udf (local, read-only)

(again, for the records, because this confused me and isn't documented 
anywhere) norrip means "no rock ridge interchange protocol", which is 
OpenBSD complaining that your ISO is ghetto.


I just mounted the same disk on Linux and got this:
[kousu@splaat ~]$ sudo mount /dev/sr1 /mnt/cd1
Password:
mount: block device /dev/sr1 is write-protected, mounting read-only
[kousu@splaat ~]$ mount
/dev/sr1 on /mnt/cd1 type udf (ro,relatime,utf8)

So, conclusion: if you don't force it, Linux's mount(1) prefers to 
mount as UDF, whereas OpenBSD falls back to cd9660. AND THE BELLS RANG 
OUT.


Thanks a lot for your eyes, I probably would have given up and done the 
qemu thing and then maybe next year noticed mount_udf and made the 
connection.


-Nick

Hidden Long Filenames and mount_cd9660

[Nick Guenther]

Hiya misc@,

Upfront: if you have something useful to say, CC me, please. I haven't 
been on this list in a while, managing to solve my own shit before 
having to mail the hivemind, but today I am at a loss.


I have some old DVD backups from the days when backing up to DVD sort 
of made sense, and now I'm trying to extricate them from their prison. 
Some have broken down and are full of I/O errors or won't mount at all, 
but others work fine. The trouble I'm having is that, in those that will 
mount, some (but only -some-!) show up with 8.3 (aka short aka DOS) 
filenames. I've booted my server into Linux and confirmed that, all else 
being equal, Linux gives long file names and OpenBSD doesn't for these 
disks, so *the metadata is* there and OpenBSD is doing it wrong.


The head-scratching thing is that for some disks OpenBSD works like 
you'd expect, it's only some disks which teleport it to the stone age. I 
expect there's something weird about the metadata (having or not having 
proper Joliet or Rock Ridge attributes, I guess?), but I'm damned if I 
know what they are (I made these disks on Windows, with Nero probably, 
before I was on the path of enlightenment). I don't really care the 
cause, I just want my data: is there a way to -force- OpenBSD to pay 
attention to the long file names? mount_cd9660's -e, -g, -j and -R, much 
like the goggles, do nothing. Halpp!



Here's what cd-info(1) (for the archives: this is from package libcdio) 
has to say about a DVD that OpenBSD shows LFNs for:

~$ cd-info  --dvd
cd-info version 0.80 i386-unknown-openbsd4.9
Copyright (c) 2003, 2004, 2005, 2007, 2008 R. Bernstein
This is free software; see the source for copying conditions.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
CD location   : /dev/rcd0c
CD driver name: OpenBSD
   access mode: READ_CD

Vendor  : TSSTcorp
Model   : CD/DVDW TS-H652D
Revision: GA01
Hardware  : CD-ROM or DVD
Can eject : Yes
Can close tray: Yes
Can disable manual eject  : Yes
Can select juke-box disc  : No

Can set drive speed   : No
Can read multiple sessions (e.g. PhotoCD) : Yes
Can hard reset device : Yes

Reading
  Can read Mode 2 Form 1  : Yes
  Can read Mode 2 Form 2  : Yes
  Can read (S)VCD (i.e. Mode 2 Form 1/2)  : Yes
  Can read C2 Errors  : Yes
  Can read IRSC   : Yes
  Can read Media Channel Number (or UPC)  : Yes
  Can play audio  : Yes
  Can read CD-DA  : Yes
  Can read CD-R   : Yes
  Can read CD-RW  : Yes
  Can read DVD-ROM: Yes

Writing
  Can write CD-RW : Yes
  Can write DVD-R : Yes
  Can write DVD-RAM   : Yes
  Can write DVD-RW: No
  Can write DVD+RW: No
__

Disc mode is listed as: DVD-R
CD-ROM Track List (1 - 1)
  #: MSF   LSNType   Green? Copy?
  1: 00:02:00  00 data   false  no
++ WARN: number of minutes (501) truncated to 99.
170: 99:24:74  447224 leadout (1003 MB raw, 873 MB formatted)
__
CD An   alysis Report
CD-ROM with ISO 9660 filesystem and joliet extension level 3
ISO 9660: 2256224 blocks, label `GOSHA_DOCUMENTS '
Application: NERO BURNING ROM
Preparer   :
Publisher  :
System :
Volume : GOSHA_DOCUMENTS
Volume Set :
~$


and one that OpenBSD shows SFNs for:

~$ cd-info --dvd
[snip common drive info]

Disc mode is listed as: DVD-R
CD-ROM Track List (1 - 1)
  #: MSF   LSNType   Green? Copy?
  1: 00:02:00  00 data   false  no
++ WARN: number of minutes (507) truncated to 99.
170: 99:16:26  446576 leadout (1001 MB raw, 872 MB formatted)
__
CD Analysis Report
ISO 9660: 2279017 blocks, label `G Save B 6  '
Application: EASY CD CREATOR 6.0 (171) COPYRIGHT (C) 1999-2003 ROXIO, 
INC.

Preparer   :
Publisher  :
System :
Volume : G Save B 6
Volume Set :
UDF: version 0.00


and another:

Disc mode is listed as: DVD-R
CD-ROM Track List (1 - 1)
  #: MSF   LSNType   Green? Copy?
  1: 00:02:00  00 data   false  no
++ WARN: number of minutes (505) truncated to 99.
170: 99:57:63  449688 leadout (1008 MB raw, 878 MB formatted)
__
CD Analysis Report
ISO 9660: 2269454 blocks, label `G Save B 7  '
Application: EASY CD CREATOR 6.0 (171) COPYRIGHT (C) 1999-2003 ROXIO, 
INC.

Preparer   :
Publisher  :
System :
Volume : G Save B 7
Volume Set :
UDF: version 0.00


So, obviously, the clue is that Roxio obviously did

Re: What does your environment look like?

[Nick Guenther]

On Sun, Jan 3, 2010 at 3:01 AM, Tomas Bodzar  wrote:
> I use default fvwm(1) and I'm happy with that. I tried cwm(1) after
> this post http://undeadly.org/cgi?action=article&sid=20090502141551
> and I found it very clean and useful, but I still use fvwm(1). Anyway
> I plan to try this one http://www.scrotwm.org/
>

I never figured out fvwm. It has multiple desktops and you can drag
windows between them but it jumps them too far too easily. Tell me,
what's the appeal? I'm willing to think I'm just not understanding it
(though points should always be allotted for intuitiveness).

I use wmii with a bunch of dmenu custom menus. I haven't found a file
manager I like (xfe is the best so far, but it uses some weird custom
toolkit, thunar is nice but really wants famd, which for some reason
seems associated with trackerd spinning up and eating my CPU, the
rox-filer in packages doesn't work right). I like Midori but it
doesn't work everywhere, so I keep firefox and epiphany and galeon
around (why is it that Gecko seems so much slower on OpenBSD than
Linux?). I try to use mpd but sometimes I just don't bother to set it
up locally (especially since I have a media server now), so I stick
with Totem (I hate VLC's UI and mplayer is only really any good for
one offs; totem is codewise pretty heavy but at least the interface
makes sense).

OpenBSD on the desktop feels like a lot of compromises to me :( . If I
still got off from using the command line everywhere it wouldn't be a
problem but it is.

-Nick

Re: Web Browsers

[Nick Guenther]

On Fri, Jan 1, 2010 at 3:27 PM, Ted Unangst  wrote:
>
> On Jan 1, 2010, at 4:02 AM, Nick Guenther  wrote:
>
>> On Fri, Jan 1, 2010 at 2:47 AM, Theo de Raadt 
>> wrote:
>>>>
>>>> Firefox: might slow down on some sort of sites (heavy javascript,
>>>> etc). If on tab crashes, the whole thing goes down. Privacy a bit more
>>>> trustworthy than google
>>>
>>> Why?
>>>
>> Because Google's stated mission is to collect all the world's
>> information and "make it useful", whereas Mozilla's is to promote an
>> open web.
>>
>
> Who pays for the majority of firefox's development?

Ooooh right. Good point. Well, I wasn't meaning to make a fuss, just
filling in the rhetorical answer. Hugo just said "a bit" after all.

Re: Web Browsers

[Nick Guenther]

On Fri, Jan 1, 2010 at 2:47 AM, Theo de Raadt  wrote:
>> Firefox: might slow down on some sort of sites (heavy javascript,
>> etc). If on tab crashes, the whole thing goes down. Privacy a bit more
>> trustworthy than google
>
> Why?
>
Because Google's stated mission is to collect all the world's
information and "make it useful", whereas Mozilla's is to promote an
open web.

Re: Web Browsers

[Nick Guenther]

On Wed, Dec 23, 2009 at 2:39 PM, nixlists  wrote:
> On 12/20/09, Robert Bronsdon  wrote:
>> Google are clearly clever enough to know that upsetting the 'tin-foiled' 
>> [...]
>
> Google also wants the browser to be
> used by businesses - so there will be many features similar to those
> IE has in the Windows version. There's a reason why Chromium/Chrome
> uses Windows' proxy crap on Windows, and the developers are refusing
> to change that despite many requests.
>
> http://code.google.com/p/chromium/issues/detail?id=266
>

Uh,
"Comment 7  by nsylv...@chromium.org, Sep 08, 2008

If you want to use a different proxy server for Google Chrome, you can use this
command line :

chrome.exe --proxy-server=foo:8080"

Jus' sayin'.

Re: DVD burning software besides cdrecord/growisofs

[Nick Guenther]

On Tue, Dec 22, 2009 at 10:19 PM, James Hozier  wrote:
> Okay, so cdrecord I got from pkg_add with 4.6-release cannot even
> burn DVDs at all. growisofs refuses to burn my DVD with the error:
>
> more than 50% of space will be *wasted*!
> use a single-layer media for this.
>
> And there's no option to force the burn.
>
> What other command-line options are there? (I'm having trouble
> getting X to work.)
>
>

dmesg? if cdrecord can't do it nothing else can--cdrecord is the
backend for most other things, and even when it's not.. the cdrecord
people have made CD burning their entire life.

Re: OT: Python (was Re: vi in /bin)

[Nick Guenther]

On Sat, Dec 19, 2009 at 3:19 PM, Claudio Jeker  wrote:
> On Sat, Dec 19, 2009 at 02:51:32PM -0500, Nick Guenther wrote:
>> and just to add to the pyre...
>>
>> On Sat, Dec 19, 2009 at 8:38 AM, Claudio Jeker  
>> wrote:
>> >
>> > Ugh, a programming language where you can't copy paste from xterm to xterm
>> > without fucking up the program is just way to much pain to work on.
>>
>>
>> >On Sat, Dec 19, 2009 at 10:03 AM, Ted Unangst  wrote:
>> > for many people who are a little suspicious of the whole
>> > whitespace thing, when your first taste of the language is hours spent
>> > fixing the whitespace, you aren't inclined to use it any more than
>> > necessary.
>>
>> Your losses then. Python isn't so much a language of recipes, it's a
>> language of ideas.
>>
>
> Python is a bit like mother russia, it is thinking for you.
>
>> On Sat, Dec 19, 2009 at 2:06 PM, Henning Brauer  
>> wrote:
>> > * Floor Terra  [2009-12-19 19:10]:
>> >>
>> >> In my experience (mostly python and c), code that has been pasted has
>> >> a higher bug density.
>> >>
>> >> It's worse with Python because of the indentation (tabs vs. spaces),
>> >> but as a general rule I would say never copy/paste code.
>> >
>> > boo hoo.
>> >
>> > there are very valid uses of copied code, or extremely similiar code
>> > (copy & paste and change a few things). we have that many times in the
>> > tree.
>>
>> Python is about thinking about what you're doing. It's one of those
>> languages that forces you to work on a higher level (not that there
>> aren't lots of places where python is used as a scripting
>> language--that code tends to come out badly, but that's because it's
>> written just to get the job done).
>>
>
> Yeah, we C-programmers are just mastrubating monkeys poking the typewrite
> till it produces compiling code. If you don't think about what your doing
> you get the crap code you see everywhere and it is not depending on the
> language used.
>
>> Ideal code is abstracted code, what possible use does repeating
>> yourself in the tree have? I know drivers have to declare a common set
>> of globals and make some macro calls and various entry-points are
>> found by sticking to a naming scheme, but that's trivia, hardly enough
>> to justify "valid uses for copied code". Anytime I find myself wanting
>> to copy some code it's always meant I've stumbled over an abstraction
>> I haven't made yet, so what in the world is src/ doing that -requires-
>> copied code?
>>
>
> Code abstraction is nice until you have to update a vendor driver or some
> other highly abstracted nightmare. Been there, done that, got the
> nightmares. Sometimes it is far better to copy a few lines instead of
> abstracting an interface until it is unusable.
>
> No programming language will redeem people from thinking and designing
> their projects correctly.

I should make it more clear what I was saying: knowing the basics of
python can't force you to write good code (in fact the python stdlib
is full of shitty shitty code--the web stuff is particularly terrible)
but there's something about working in it that lets me approach
problems in a different way then I would have otherwise.

(of course the near-ultimate end of this line of thinking is lisp,
where you can define syntax for any construct you want to abstract,
but lisp personally I find lisp too wordy--that's just me though)

And I didn't mean "abstracting" in the way that C++/Java people mean
it. I've fought tooth and nail against indirection in the name of
"simplification" before. Come on.

On Sat, Dec 19, 2009 at 3:30 PM, Darrin Chandler
 wrote:
> Python is regularly used by myself and others for scripting and it
> comes out just fine. Sometimes I work at a higher level and other times
> not, as the situation calls for. Doing things The UNIX Way(tm) means
> some programs are simple filters that do not benefit from large numbers
> of abstraction layers. Far from forcing me, Python allows me to write in
> a way appropriate to the task at hand.

I'm sorry, I didn't mean to imply that scripting people wrote bad
code. I was thinking more like the add-ons to QuantumGIS.

>> Your losses then. Python isn't so much a language of recipes, it's a
>> language of ideas.
>
> Oh my.
>
> A language of ideas should mean that ideas are concisely expressible in
> code, and that reading the code should convey the meaning. So

Re: OT: Python (was Re: vi in /bin)

[Nick Guenther]

and just to add to the pyre...

On Sat, Dec 19, 2009 at 8:38 AM, Claudio Jeker  wrote:
>
> Ugh, a programming language where you can't copy paste from xterm to xterm
> without fucking up the program is just way to much pain to work on.


>On Sat, Dec 19, 2009 at 10:03 AM, Ted Unangst  wrote:
> for many people who are a little suspicious of the whole
> whitespace thing, when your first taste of the language is hours spent
> fixing the whitespace, you aren't inclined to use it any more than
> necessary.

Your losses then. Python isn't so much a language of recipes, it's a
language of ideas.

On Sat, Dec 19, 2009 at 2:06 PM, Henning Brauer  wrote:
> * Floor Terra  [2009-12-19 19:10]:
>>
>> In my experience (mostly python and c), code that has been pasted has
>> a higher bug density.
>>
>> It's worse with Python because of the indentation (tabs vs. spaces),
>> but as a general rule I would say never copy/paste code.
>
> boo hoo.
>
> there are very valid uses of copied code, or extremely similiar code
> (copy & paste and change a few things). we have that many times in the
> tree.

Python is about thinking about what you're doing. It's one of those
languages that forces you to work on a higher level (not that there
aren't lots of places where python is used as a scripting
language--that code tends to come out badly, but that's because it's
written just to get the job done).

Ideal code is abstracted code, what possible use does repeating
yourself in the tree have? I know drivers have to declare a common set
of globals and make some macro calls and various entry-points are
found by sticking to a naming scheme, but that's trivia, hardly enough
to justify "valid uses for copied code". Anytime I find myself wanting
to copy some code it's always meant I've stumbled over an abstraction
I haven't made yet, so what in the world is src/ doing that -requires-
copied code?

-Nick

Re: Scroll with laptop touchpad

[Nick Guenther]

On Wed, Dec 2, 2009 at 7:42 AM, Mikael Bak  wrote:
> Dope Ice Apollyon the Third wrote:
>> On Tue, Dec 1, 2009 at 3:13 PM, Abel Abraham Camarillo Ojeda
>>  wrote:
>>> On Tue, Dec 01, 2009 at 02:36:02PM +0100, Mikael Bak wrote:
 Hi list,
 I'm really new to openbsd, so please forgive me if this is faq or rtfm.

 I did try to search for information on how to be able to scroll with my
>> laptop touchpad, but did not find any openbsd specific documentation.
 I'd be happy if someone could point me to any documentation describing
how
>> to do this in openbsd.
 My system:
 $ uname -a
 OpenBSD neo.my.domain 4.6 GENERIC#58 i386

 My laptop:
 Dell Latitude CPt 400
 (it's an old P2 400MHz)

 In WinXP a driver from synaptics made the scrolling work.

 TIA,
 --
 Mikael Bak 

>>> First... investigate if the scrolling ins'n in hardware...
>>>
>>> (I read the manual of my eeepc and it said everything about "scrolling",
>>>  because the eeepc have some interesting ways to do it)
>>
>> It's not in hardware. On linux this is supported by the synaptics X
>> touchpad driver. I would also really like to see this work on OpenBSD
>> but I'm not awesome enough to know why it doesn't. I took a stab at
>> compiling the synaptics driver (which you can google for) and it, of
>> course, failed miserably (and yes I used gmake).
>>
>> I know that some features need a multitouch touchpad, but simple
>> scrolling should just be able to work with any touchpad that can give
>> an x,y coordinate. It's a pity.
>>
>> -Nick
>>
>
> Abel, Nick,
> Thanks both of you for responding!


Sorry, I missed this in my inbox before!

> I also have the feeling that basic scrolling shouldn't depend on
> specific hardware. I have used this same hw in WinXP and successfully
> made the touchpad scroll. Zooming and other features may be hardware
> dependent.
>
> Nick, you are telling me that people use openbsd and X and surf the web
> as their primary OS without missing this feature? :-) We are the only
> ones who whould like to use our old laptops this way? :-)
>
>
> OK. I know the gig. If I want it to work I should download the source
> code and fix it, then post the fix to a list with developers who can
> review and submit the patches. I know that. I was just surprised such
> basic thing haven't been targeted yet.

Yeah I know. Strange, isn't it? I don't really know why. I think it
must be because the devs all spend most of their time at the command
line without even running X (I don't know how they can stand fvwm).
And that's fine for them, but there's just a lot of tiny little UI
advances that "desktops" have made in the last few years that I really
would prefer not to live without, that unfortunately I have to on
OpenBSD.

I don't know enough to fix it myself and I don't have time to learn,
which is sad because it means that, practically, if I want to not be
in opposition to my UI all the time I have to use Ubuntu or something.

> I just took a look at my other laptop (running Ubuntu) and its xorg.conf
> has this:
> Section "InputDevice"
>Identifier  "Synaptics Touchpad"
>Driver  "synaptics"
>Option  "SendCoreEvents""true"
>Option  "Device""/dev/psaux"
>Option  "Protocol"  "auto-dev"
>Option  "HorizEdgeScroll"   "0"
> EndSection
>
> It seems to be a similar way in FreeBSD (PCBSD):
> http://forums.pcbsd.org/viewtopic.php?f=30&t=9249
>
> Oh well. If someone had any luck with this on OpenBSD, then please tell us.

Ditto. Though I am not holding out hopes.

There's long threads in the archives about how OpenBSD can /totally/
be used a a desktop but after a good 6 years of using OpenBSD I'm not
so sure. Yeah, you can edit .docs and you can browse the web, and
there are file browsers in ports, but everything hangs together like a
Frankenstein monster. It seems no one has really put it through it's
paces; for example, if I want Thunar to update files when I delete
them I have to run FAM, but FAM for some reason spawns trackerd which
eats my CPU.

Anyway, that's not what this thread was about. Good holidays everyone!

-Nick

Re: running openbsd 4.6 under qemu

[Nick Guenther]

On Sun, Dec 13, 2009 at 6:56 PM, Marco Peereboom  wrote:
> ETHER=em0 BRIDGE=bridge0 qemu-system-x86_64 -no-fd-bootchk -hda boot.img -hdb 
> 1.img -hdc 2.img -hdd 3.img -net nic,model=rtl8139 -net tap -nographic 
> -serial stdio
>
> don't use kqemu; it simply doesn't work right.

How so? Does it crash the kernel or does it not talk to devices
properly or what?

Re: pseudo-crash on OpenBSD 4.5

[Nick Guenther]

On Fri, Dec 11, 2009 at 12:17 PM,   wrote:
> Got a bit of an oddity with OpenBSD 4.5 - it's not quite a crash, but
> close. It has happened 3 times now, usually after running flawlessly for
> 2-3 weeks.
>
> Fully up to date with 4.5-stable, running GENERIC.MP on a Dell poweredge
> R300 quad-core server with 4 gig ram (dmesg below). It's used as a
> firewall/NAT/vpn gateway, and as an email server.
>
> When the problem occurs, all services on the server stop responding
> (pop,imap,smtp, etc).
>
> The odd thing is that it does respond to ping, and the server still routes
> traffic correctly, and the vpn is up.
>
> The server console shows nothing out of the ordinary (white on black text
> login prompt, no X11), but the console is frozen - doesn't respond to
> keyboard.
>
> Since it doesn't actually panic, I can't run the usual debug tools.

I've definitely had this happen to me but never had conclusive proof
of the cause (because as you say, all you can do is reboot). I have
more information from a DD-WRT install in fact: the web UI would stop
responding and traffic would slow to a crawl but not stop; we were 90%
sure the problem was memory pressure. When you get it back up try
logging vmstat(8) every few minutes?

-Nick

Re: Looking for "Secure Architectures with OpenBSD" pdf.

[Nick Guenther]

On Thu, Dec 10, 2009 at 8:47 AM, jackwssp q  wrote:
> 2 Tomas Bodzar:
> Why you so ugly? I don't looking for pf manual. As you can see above, i'm
> not alone. When i got it, will share it for all on misc@, and you may
> furiously try to stop me.
>
>

Truly we have the markings of a gentleman *and* a scholar here.

Naming FFS volumes?

[Nick Guenther]

I know that a filesystem in unix just exists wherever it exists (i.e.
it's 'identity' is its mountpoint), but I find it extremely handy with
ext* and FAT filesystems to be able to give every volume its own name.
I was just living with not being able to do this on OpenBSD,  just
discovered dumpfs(8) and noticed a "volname" property snuck in at the
end. It doesn't seem like newfs(8) or tunefs(8) let me set this at
all, but (and you may find this vain) is there any secret tool that
lets me edit these other properties, or an explanation of why they
aren't exposed at least?

$ dumpfs /media/Audio | head -n 22
magic   11954 (FFS1)timeWed Dec  9 20:49:01 2009
id  [ 48c43640 cb8f7499 ]
cylgrp  dynamic inodes  4.4BSD  fslevel 3
ncg 2356ncyl2356size244192000   blocks  240328133
bsize   16384   shift   14  mask0xc000
fsize   2048shift   11  mask0xf800
frag8   shift   3   fsbtodb 2
minfree 5%  optim   timesymlinklen 60
maxbpg  4096maxcontig 1 contigsumsize 0
nbfree  11274402ndir4728nifree  61162329nffree  9186
cpg 1   bpg 12958   fpg 103664  ipg 25984
nindir  4096inopb   128 nspf4   maxfilesize 1126174852055039
sbsize  2048cgsize  16384   cgoffset 0  cgmask  0x
csaddr  1648cssize  38912
rotdelay 0msrps 60  interleave 1
nsect   414656  npsect  414656  spc 414656
sblkno  8   cblkno  16  iblkno  24  dblkno  1648
cgrotor 2183fmod0   ronly   0   clean   1
avgfpdir 64 avgfilesize 16384
flags   updated
fsmnt   /media/Audio
volname swuid   0
^ empty??

-Nick

Firefox pegging my CPU

[Nick Guenther]

I installed firefox35 on 4.6 and used it happily until yesterday when
it went crazy. It will still load pages but extremely slowly--to the
point of being unusable. I deleted my .mozilla directory--no luck. I
reinstalled it--no luck. I got rid of swfdec--no luck. Here's top(1):

load averages:  3.57,  3.41,  3.0203:01:56
62 processes:  60 idle, 2 on processor
CPU0 states: 24.1% user,  0.0% nice,  4.3% system,  5.9% interrupt, 65.7% idle
CPU1 states: 35.9% user,  0.0% nice,  6.4% system,  0.1% interrupt, 57.6% idle
Memory: Real: 170M/496M act/tot  Free: 1000M  Swap: 0K/2910M used/tot

  PID USERNAME PRI NICE  SIZE   RES STATE WAIT  TIMECPU COMMAND
 5413 kousu 630   52M   80M onproc/0  - 3:13 78.76%
firefox35-bin
 9499 _x11   20   20M   39M sleep/1   select8:04 29.98% Xorg
 5556 kousu  20 2468K 3812K sleep/1   select2:11 10.84% ssh
24095 kousu  20 9600K   18M sleep/1   poll  1:07  7.18% Terminal
15752 kousu  20  844K 1456K sleep/1   netio 0:16  0.98% sftp
 3515 kousu  20  920K 2152K sleep/1   select0:04  0.05% wmii
17588 kousu  20   19M   43M sleep/0   poll  0:07  0.00% liferea-bin
24351 kousu 180  592K  408K sleep/1   pause 0:09  0.00% sh
16769 kousu  20  544K 2088K sleep/1   poll  0:01  0.00% autocutsel
11276 kousu  20 1808K 4188K sleep/1   poll  0:00  0.00% gconfd-2
13162 kousu -60  636K  488K idle  piperd0:00  0.00% sh
28545 kousu  20 2168K 4600K sleep/0   poll  0:00  0.00% gconfd-2
25080 kousu  20  600K 1528K sleep/0   poll  0:00  0.00% top
28316 root   20  476K 1168K idle  select0:00  0.00% famd
11756 _pflogd40  604K  332K sleep/1   bpf   0:00  0.00% pflogd
 1948 kousu  30 1652K 3172K idle  ttyin 0:00  0.00% lynx
30910 kousu  20  484K  780K sleep/0   select0:00  0.00% ifstat
 6337 kousu  30  716K  580K idle  ttyin 0:00  0.00% ksh

Is anyone else seeing this? Any tips on how to debug it? Clearly
something has changed on my system because it was fine for a good
month until just now.

Thanks,
-Nick

Re: BAD SU

[Nick Guenther]

On Sun, Nov 29, 2009 at 6:43 PM, Brad Tilley  wrote:
> On Sun, Nov 29, 2009 at 6:28 PM, Brad Tilley  wrote:
>
>> I see the same on 4.6-release. The initial user I added during install
>> can su and sudo
>
> Just to be clear, 'sudo su' works for newly added users who are in the
> wheel group, but su by itself does not. Apologies for the confusion.
>
> Brad
>
>

That's funny, because I followed your directions and I can't
reproduce. I'm running 4.6 GENERIC -release. You did relogin after
changing the passwords and groups right?

Re: BAD SU

[Nick Guenther]

On Sun, Nov 29, 2009 at 4:51 PM, phil  wrote:
> Hello
>
> I have some strange behavior with su in openbsd 4.6,
> I have two users root and test, test user is in wheel group with usermod -G
> wheel test, when i try to be root with su -
> I have the sorry message and in the /var/log/authlog I have :
> BAD SU test to root on /dev/ttyp0
>
> I'm sure about the root password, cat from /etc/group show me that test user
> is in wheel group.
> If I remove the test user and recreate it whith adduser and specify to add
> test user in the wheel group I have the same behavior
> If I try to get root privilege with su root - I have the same result.
>
> What I do wrong or missing.
>

Hmm. Try the obvious first: what does groups say about your test user?

Re: Connect to wireless Access Point according to MAC address

[Nick Guenther]

2009/11/26 TomC!E! BodE>C!r :
> On Thu, Nov 26, 2009 at 12:27 PM, Milin  wrote:
>> Hi all,
>>
>> I'd like to connect to the wireless AP according to its MAC address.
>> For example there are two wireless AP
>>
>> nwid Open chan 6 bssid 00:0b:0e:29:06:40 189dB 54M
short_preamble,short_slottime
>> nwid Open chan 6 bssid 00:0b:0e:33:ed:00 172dB 54M
short_preamble,short_slottime
>>
>> and I'd like to connect to the second one (00:0b:0e:33:ed:00). With
>> ifconfig iwn0 nwid Open up it connects to the first one.
>>
>> I have googled, but haven't found anything useful.
>> I'm using OpenBSD 4.6 and wireless NIC is iwn0.
>>
>> Thanks a lot,
>>
>> Milan
>>
>>
>
>
>
> --
> http://www.openbsd.org/lyrics.html
>
>


> Why you Google for something which you can find in man page?
>
>
http://www.openbsd.org/cgi-bin/man.cgi?query=ifconfig&apropos=0&sektion=0&man
path=OpenBSD+Current&arch=i386&format=html
>
> from this man page :
>
>  bssid bssid
> Set the desired BSSID for IEEE 802.11-based wireless network
in-
> terfaces.
>
> -bssid  Unset the desired BSSID for IEEE 802.11-based wireless network
> interfaces.  The interface will automatically select a BSSID in
> this mode, which is the default.
>
>

Also, the BSSID is not the MAC. It looks like a MAC but it's a
wifi-specific thing (you can have multiple APs on the same BSSID;
that's how you make a wifi cloud).

Re: Question regarding to dsniff.

[Nick Guenther]

On Tue, Nov 24, 2009 at 4:11 PM, Mateusz Gierblinski
 wrote:
>
> 2009/11/24 Olivier Cherrier 
>
>> On Mon, Nov 23, 2009 at 06:39:02PM +0100, mateusz.gierblin...@gmail.comwrote:
>> > I'm playing around with some security tools and I would like to test out
>> the
>> > dsniff package. I have tried to install dsniff using ports, db, libnet &
>> > dsniff had been compiled but on the end of the installation process log
>> file
>> > told me that the installation of dsniff had been faked. Why?
>>
>> You can read ports(7) and bsd.port.mk(5)
>>
>> --
>> Olivier Cherrier - Symacx.com
>> mailto:o...@symacx.com
>


> Hi again
>
> @Nick: It seems that you're right. OpenBSD creates *.tgz package from source
> and stores it in /usr/ports/packages/i386/all and after that the package is
> automatically installed, but the problem is that  package is not installed
> in the end. Even tryied to install the package manually but this also did
> not work.

..oh? Show us your command log. Did you run 'make install'? Did you
run 'sudo make install'? Maybe you're missing an R-dep?

-Nick

Re: TOSHIBA PORTEGE R600

[Nick Guenther]

On Tue, Nov 24, 2009 at 6:02 AM, Peter Ericson
 wrote:
> On Mon, Nov 23, 2009 at 09:42:49PM -0500, Nick Guenther wrote:
>> Funny you should ask. I have an R500 and it works fine, excepting the
>> lack of ACPI support of course. The Fn-Mute key combo even works right
>> away, no configuring needed (magic!). It's super flimsy though, I've
>> had it's optical drive repaired twice and the DC in has come loose and
>> I'm terrified of bumping the screen (it's 4mm thick). It's not the
>> worst laptop I've heard of as far as heat goes but it definitely gets
>> up there--I can't really do CPU intensive things on it since it'll get
>> up to 95degC and hover there really quick. Wifi is wpi(4) and except
>> for one firmware glitch once, and sometimes things lagging out (seems
>> to be correlated with heat) until I reset the card, I've never had any
>> problems. I'm not sure how different the R600 is, though.
>
> Hi Nick,
>
> Thanks for the detailed reply, very helpful.
>
> A work colleague used to fix these machines, he mentioned that you
> might want to upgrade the bios to 1.6 which adds ACPI support, also
> pre 1.6 the optical drive wouldn't park during emergency shutdowns
> which might explain why you have had to repair yours.
>
> Anyway thanks again, I'll probably go ahead and order the R600.  Maybe
> I leave the cpu throttled if it gets too hot...
>


Oh really? I downloaded the update but it's a Windows app and I read
somewhere that all it did was support SSDs better (but I can't find
that post now so it's hearsay), so I haven't taken the time to hack up
a way to get it installed. And it's not like ACPI isn't there, just
that OpenBSD doesn't support it fully. But if the update might help
I'll definitely try it. Does you colleague has a tip on how to do it
without Windows?

-Nick

Re: USB key with OpenBSD - hangs at POST

[Nick Guenther]

On Tue, Nov 24, 2009 at 1:00 AM, Andrius V  wrote:
>>
>
> I tried to play with usb key yesterday. Yes, when I copied mbr from
> the other computer, computers didn't hang anymore. Of course, that mbr
> is not suitable to boot OpenBSD as it points to grub which doesn't
> exist in this usb key, however I successfully booted OS from CD (boot
> hd0a:/bsd). So, I have question. Can I install grub (with ffs
> support?) to openbsd from ports or I need to compile it and configure
> it manually? Grub manual points that booting method is the same as
> NetBSD (however, does it mean that I need to write --type=netbsd or
> --type=openbsd?). Thank you in advance.

Yes, grub is in ports, and it can even read OpenBSD partitions (though
you have to use chainloading because it doesn't call the OpenBSD
kernel right). If you search the mailing list archives
(http://marc.info?l=openbsd-misc) or just google there's results. In
the future, you can find out this sort of information by using `make
search` in the ports tree or, if you don't have an OpenBSD box handy,
from http://openports.se.

-Nick

Re: TOSHIBA PORTEGE R600

[Nick Guenther]

On Mon, Nov 23, 2009 at 9:42 PM, Nick Guenther  wrote:
> On Mon, Nov 23, 2009 at 6:51 PM,   wrote:
>> Hi m...@i'm thinking of buying an R600 to run current on.Has anyone had
any
>> experience with these machines?From the spec sheet:  Part Number
>> PPR61A-02200R CPU
>> Intel® CoreTM2 Duo Processor ULV Su9400
>> (1.4GHz, 800mHz FSB, 3MB l2 cache)
>> mobile Intel® GS45 Express Chipset
>> Video/GraphicsIntel® Graphics media Accelerator GS45
>> Wireless Communications   Intel® 802.11 a/g/n, BluetoothTM V2.1 + EDR,
>> Built-in 3G HSPABIOS  ACPI, PnP, VESA, DPmS,
DDC,
>> Sm BIOS, PCI, BIOS support   Audio
Intel®
>> High Definition Audio Sound   Wired
>> Communications  Intel® 1GBit Tx Ethernet + Active management
>> Technology (AmT) 4.0  Thanks in advance,Peter Ericson
>>
>>
>
>
> Funny you should ask. I have an R500 and it works fine, excepting the
> lack of ACPI support of course. The Fn-Mute key combo even works right
> away, no configuring needed (magic!). It's super flimsy though, I've
> had it's optical drive repaired twice and the DC in has come loose and
> I'm terrified of bumping the screen (it's 4mm thick). It's not the
> worst laptop I've heard of as far as heat goes but it definitely gets
> up there--I can't really do CPU intensive things on it since it'll get
> up to 95degC and hover there really quick. Wifi is wpi(4) and except
> for one firmware glitch once, and sometimes things lagging out (seems
> to be correlated with heat) until I reset the card, I've never had any
> problems. I'm not sure how different the R600 is, though.
>
> This BIOS doesn't seem to like (legacy) GRUB: it hangs on the logo
> screen unless I warm-boot or mash the F keys (very odd) but when I was
> just using the OpenBSD MBR it never did that.
>
> dmesg from 4.6-release:
> OpenBSD 4.6 (GENERIC.MP) #89: Thu Jul  9 21:32:39 MDT 2009
>dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
> cpu0: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20
GHz
> cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,
xTPR
> real mem  = 1064202240 (1014MB)
> avail mem = 1020198912 (972MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 10/30/07, BIOS32 rev. 0 @
> 0xfcb25, SMBIOS rev. 2.4 @ 0xec000 (40 entries)
> bios0: vendor TOSHIBA version "Version 1.50" date 10/30/2007
> bios0: TOSHIBA PORTEGE R500
> acpi0 at bios0: rev 0
> acpi0: tables DSDT FACP SSDT BOOT APIC MCFG HPET TCPA SLIC SSDT SSDT
> acpi0: wakeup devices USB1(S3) USB3(S3) USB4(S3) EHCI(S3) GLAN(S4)
> WLAN(S4) LID_(S4) PWRB(S4) HS87(S4) HS86(S4)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: apic clock running at 133MHz
> cpu1 at mainbus0: apid 1 (application processor)
> cpu1: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20
GHz
> cpu1:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,
xTPR
> ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
> ioapic0: misconfigured as apic 0, remapped to apid 1
> acpihpet0 at acpi0: 14318179 Hz
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus 3 (PCIB)
> acpiprt2 at acpi0: bus 1 (PEX1)
> acpiprt3 at acpi0: bus 2 (MPEX)
> acpicpu0 at acpi0: C3, C2, C1, PSS
> acpicpu1 at acpi0: C3, C2, C1, PSS
> acpipwrres0 at acpi0: PDOC
> acpitz0 at acpi0: critical temperature 102 degC
> acpibtn0 at acpi0: LID_
> acpibat0 at acpi0: BAT1 model "G71C00086210" serial 000796 type
> Li-ION   oem "0"
> acpibtn1 at acpi0: PWRB
> acpiac0 at acpi0: AC unit offline
> acpidock0 at acpi0: DOCK not docked (0)
> acpivideo0 at acpi0: VGA_
> acpivout0 at acpivideo0: LCD_
> acpivout1 at acpivideo0: CRT_
> acpivout2 at acpivideo0: DVI_
> bios0: ROM list: 0xc/0x1 0xe/0x1!
> cpu0: Enhanced SpeedStep 1198 MHz: speeds: 1200, 800 MHz
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 "Intel 82945GM Host" rev 0x03
> vga1 at pci0 dev 2 function 0 "Intel 82945GM Video" rev 0x03
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> intagp0 at vga1
> agp0 at intagp0: aperture at 

Re: TOSHIBA PORTEGE R600

[Nick Guenther]

On Mon, Nov 23, 2009 at 6:51 PM,   wrote:
> Hi m...@i'm thinking of buying an R600 to run current on.Has anyone had any
> experience with these machines?From the spec sheet:  Part Number
> PPR61A-02200R CPU
> Intel® CoreTM2 Duo Processor ULV Su9400
> (1.4GHz, 800mHz FSB, 3MB l2 cache)
> mobile Intel® GS45 Express Chipset
> Video/GraphicsIntel® Graphics media Accelerator GS45
> Wireless Communications   Intel® 802.11 a/g/n, BluetoothTM V2.1 + EDR,
> Built-in 3G HSPABIOS  ACPI, PnP, VESA, DPmS,
DDC,
> Sm BIOS, PCI, BIOS support   Audio
Intel®
> High Definition Audio Sound   Wired
> Communications  Intel® 1GBit Tx Ethernet + Active management
> Technology (AmT) 4.0  Thanks in advance,Peter Ericson
>
>


Funny you should ask. I have an R500 and it works fine, excepting the
lack of ACPI support of course. The Fn-Mute key combo even works right
away, no configuring needed (magic!). It's super flimsy though, I've
had it's optical drive repaired twice and the DC in has come loose and
I'm terrified of bumping the screen (it's 4mm thick). It's not the
worst laptop I've heard of as far as heat goes but it definitely gets
up there--I can't really do CPU intensive things on it since it'll get
up to 95degC and hover there really quick. Wifi is wpi(4) and except
for one firmware glitch once, and sometimes things lagging out (seems
to be correlated with heat) until I reset the card, I've never had any
problems. I'm not sure how different the R600 is, though.

This BIOS doesn't seem to like (legacy) GRUB: it hangs on the logo
screen unless I warm-boot or mash the F keys (very odd) but when I was
just using the OpenBSD MBR it never did that.

dmesg from 4.6-release:
OpenBSD 4.6 (GENERIC.MP) #89: Thu Jul  9 21:32:39 MDT 2009
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20
GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,
xTPR
real mem  = 1064202240 (1014MB)
avail mem = 1020198912 (972MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 10/30/07, BIOS32 rev. 0 @
0xfcb25, SMBIOS rev. 2.4 @ 0xec000 (40 entries)
bios0: vendor TOSHIBA version "Version 1.50" date 10/30/2007
bios0: TOSHIBA PORTEGE R500
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP SSDT BOOT APIC MCFG HPET TCPA SLIC SSDT SSDT
acpi0: wakeup devices USB1(S3) USB3(S3) USB4(S3) EHCI(S3) GLAN(S4)
WLAN(S4) LID_(S4) PWRB(S4) HS87(S4) HS86(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20
GHz
cpu1:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUS
H,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,
xTPR
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 1
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 3 (PCIB)
acpiprt2 at acpi0: bus 1 (PEX1)
acpiprt3 at acpi0: bus 2 (MPEX)
acpicpu0 at acpi0: C3, C2, C1, PSS
acpicpu1 at acpi0: C3, C2, C1, PSS
acpipwrres0 at acpi0: PDOC
acpitz0 at acpi0: critical temperature 102 degC
acpibtn0 at acpi0: LID_
acpibat0 at acpi0: BAT1 model "G71C00086210" serial 000796 type
Li-ION   oem "0"
acpibtn1 at acpi0: PWRB
acpiac0 at acpi0: AC unit offline
acpidock0 at acpi0: DOCK not docked (0)
acpivideo0 at acpi0: VGA_
acpivout0 at acpivideo0: LCD_
acpivout1 at acpivideo0: CRT_
acpivout2 at acpivideo0: DVI_
bios0: ROM list: 0xc/0x1 0xe/0x1!
cpu0: Enhanced SpeedStep 1198 MHz: speeds: 1200, 800 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82945GM Host" rev 0x03
vga1 at pci0 dev 2 function 0 "Intel 82945GM Video" rev 0x03
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp0 at vga1
agp0 at intagp0: aperture at 0xe000, size 0x1000
inteldrm0 at vga1: apic 1 int 16 (irq 10)
drm0 at inteldrm0
"Intel 82945GM Video" rev 0x03 at pci0 dev 2 function 1 not configured
azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x02:
apic 1 int 22 (irq 255)
azalia0: codecs: Realtek ALC262
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x02
pci1 at ppb0 bus 1
em0 at pci1 dev 0 function 0 "Intel PRO/1000MT (82573L)" rev 0x00:
apic 1 int 16 (irq 10), address 00:15:b7:43:a0:f2
ppb1 at pci0 dev 28 function 2 "Intel 82801GB PCIE" rev 0x02
pci2 at ppb1 bus 2
wpi0 at pci2 dev 0 function 0 "Intel PRO/Wireless 3945ABG" rev 0x02:
apic 1 in

Re: Question regarding to dsniff.

[Nick Guenther]

On Mon, Nov 23, 2009 at 12:39 PM, Mateusz Gierblinski
 wrote:
> Hello
>
> I'm playing around with some security tools and I would like to test out the
> dsniff package. I have tried to install dsniff using ports, db, libnet &
> dsniff had been compiled but on the end of the installation process log file
> told me that the installation of dsniff had been faked. Why?
>

You built from ports right? Ports "fakes" installation to somewhere
under the ports tree, then builds a package from that, then, if you've
said 'make install', runs pkg_add on that package.

Re: USB key with OpenBSD - hangs at POST

[Nick Guenther]

On Mon, Nov 23, 2009 at 1:43 AM, Andrius V  wrote:
>
> On Mon, Nov 23, 2009 at 5:56 AM, Robert Bronsdon  wrote:
>> Don't forget booting from USB is a black art. Different USB keys will
>> represent themselves in different ways, some keys represent themselves as
>> USB Floppy drives, some as USB CD-ROM drives.
>>
>> Some motherboards see USB keys as valid boot media, not all motherboards.
>>
>> Given your problem is during POST I can't see this being an OpenBSD
>> problem. One solution could be too install an OS designed to run from a
>> USB key and test it on the machine then. If it boots you can at least
>> eliminate the USB key itself as a problem.
>>
>>

> Hello,
>
> Ok, If you need more information I can give it. I used this flash key
> with other OSes successfully (NetBSD, for example). So it is not an
> usb key problem. POST means "power on self test" which you see than
> computer starts. Motherboard is Jetway JNF76-N1G-LF P (VIA Nano U2300
> 1GHz, VIA VX800), however, it hanged with all other my motherboards
> (Intel X58, AMD 690G chipsets). I tried to disable SATA, AHCI but it
> didn't help. It doesn't hang only when I disable usb media as storage
> in BIOS (however it can't be bootable then). Installable OpenBSD CD
> boots without problems. It appears that BIOS can't recognize USB key
> with OpenBSD for some reason.


Wait, do you mean you've installed NetBSD to the disk and had it boot
fine on the same motherboard? In THAT case it's not hanging at POST,
it's hanging just after POST. Are you sure the OpenBSD bootloader
doesn't show itself -at all-? I'm pretty sure the first thing it does
is print its banner, so if that's not even happening the BIOS must be
loading the MBR in a way the OpenBSD MBR doesn't expect somehow.
Perhaps you could try copying the MBR from a USB key with NetBSD over
the USB key with OpenBSD, see if that makes a difference.

Also please don't top post.

-Nick

Re: Gnash

[Nick Guenther]

On Sun, Nov 22, 2009 at 3:04 PM, Ed Ahlsen-Girard  wrote:
> Does anybody use it happily?
>

I'm going to be snippy and say No.

The old youtube player seems to work with it but I haven't come across
a youtube video I've wanted to watch has used that player.

It's coming but not.. yet.
-Nick

Re: USB key with OpenBSD - hangs at POST

[Nick Guenther]

On Sun, Nov 22, 2009 at 1:21 PM, Andrius V  wrote:
> Hello,
>
> I installed OpenBSD 4.6 (default install) into USB key (Patriot
> Xporter XT 16GB).
> However after install computer hangs during POST while USB key is inserted
> (I tried several other computers but they also hanged). What have I done 
> wrong?
>

I seem to recall that disabling AHCI (aka SATA) in your BIOS can solve
this. I've had a bunch of BIOSes hang on me like this.

-Nick

Re: Security via the NSA?

[Nick Guenther]

On Sat, Nov 21, 2009 at 5:32 PM, AG  wrote:
> Felipe Alfaro Solana wrote:
>> On Sat, Nov 21, 2009 at 8:29 PM, Doug Milam  wrote:
>>
>>
>>> Will OpenBSD be the next to be 'helped'?
>>>
>>> http://www.npr.org/blogs/thetwo-way/2009/11/nsa_microsoft_windows_7.html
>>>
>>> NSA also helped Linux with SElinux. As long as OpenBSD remains open source,
>>>
>> I don't see the problem.
>>
>>
>>
>
> Depends on whether one trusts the NSA or not.
>
>

It also depends on whether one trusts the OpenBSD devs, and the
OpenBSD packagers, and the upstream ports providers, (and for most
users), the mirror admins.

Like, obviously the NSA's mandate is spying but so long as Linux and
OpenBSD are open source we (or more realistically, someone with the
deep knowledge and time) can check the code for 'bugs'. Intel's binary
blobs should be scarier than the NSA for us (though the situation
might be different for Windows users).

-Nic

Re: Adding 3Com CardBus card

[Nick Guenther]

On Thu, Nov 12, 2009 at 8:11 PM, rhubbell  wrote:
> On Thu, 12 Nov 2009 14:52:48 -0800
> J.C. Roberts wrote:
>
>> On Thu, 12 Nov 2009 12:45:24 -0800 rhubbell 
>> wrote:
>>
>> > I'm new to OpenBSD and so far so good.
>> > One thing I am floundering around on is that I cannot get my 3Com
>> > card working.
>>
>> You're new, so you might want to read the following:
>>
>> http://www.openbsd.org/mail.html
>> [quote]
>> "Include important information
>> Don't waste everyone's time with a hopelessly incomplete question.
>> No one other than you has the information needed to resolve your
>> problem, it is better to provide more information than needed than one
>> detail too little. Any question should include at least the version of
>> OpenBSD (i.e., "3.2-stable", "3.3-current as of July 20, 2003"). Any
>> hardware related questions should mention the platform (i.e., sparc,
>> alpha, etc.), and provide a full dmesg(8)."
>> [/quote]
>
> Ok. I guess once I'm here for a while I can waste everyone's time with
> nasty analogies (see other thrd about "platform of choice") (^:
>
>>
>> The reason for that last bit about providing a "full dmesg" is the full
>> dmesg shows lots of important details. In a sense, you can think of
>> the full demeg as showing a picture of your full environment.
>
> Yes, sure does. I guess I got lucky this time and picked the right lines
> to include from dmesg.

Not really. It's really important to know what your processor is, and
in some cases if you're running APM or ACPI. There can be a lot of
variables involved in a hardware problem (think: IRQ conflicts) and
and after years on this list I've seen plenty of cases where someone
(more than once myself) has thought a problem simple when it was
actually anything but.

Welcome to OpenBSD, though! Do make yourself at home, only Theo bites.
-Nick

Re: Truncation Data Loss

[Nick Guenther]

On Wed, Nov 11, 2009 at 1:16 PM, Ted Unangst  wrote:
> On Tue, Nov 10, 2009 at 10:50 PM, Nick Guenther  wrote:
>> See, since it seems that BSD doesn't have this file-data consistency
>> guarantee, are Linus' worries about ext4's potential data loss just
>> being alarmist? It seems to me that the case described in
>>
https://bugs.edge.launchpad.net/ubuntu/+source/linux/+bug/317781/comments/45
>> is just as likely to happen on OpenBSD--if I run KDE or GNOME and mess
>> around with my settings then quickly murder the system the files will
>> be resurrected empty, right?
>
> Yes, if you cut power before things are written to disk, they will not
> be written to disk.  Snark aside, it really is that simple.  Different
> filesystems have different definitions of what "written to disk
> means", or more accurately, *when*, but in all cases, if you cared you
> used fsync or tried a little harder to not crash.
>
>> What is the reason softdep isn't on by default?
>
> It changes the "expected" behavior.  FFS without softdep is a lot
> closer to the semantics people and most applications expect.
>


Okay, one last question: one of the original softdep papers
(http://www.usenix.org/publications/library/proceedings/bsdcon02/mckusick.htm
l)
is all about how softdeps can avoid fsck, but I just set softdep on
all my filesystems, rebooted (to start fresh), wrote some files, wrote
some more files, edited the first files, and jacked the power plug
right after it said "wrote". When the system came up fsck ran, what
gives? Does OpenBSD only implement softdep for the write speedups?

I'm just really confused about what softdep -is- I guess. What
semantics get changed? Do all the BSDs use the same softdep code? Did
they pick and choose ideas from the original softdep papers?

Thanks for letting me pick your brain, Ted,
-Nick

Re: Truncation Data Loss

[Nick Guenther]

On Wed, Nov 11, 2009 at 3:35 AM, David Vasek  wrote:
> On Tue, 10 Nov 2009, Nick Guenther wrote:
>
>> [ext3 data= / FFS]
>> journal ~= sync (ensures consistency of both metadata and file data)
>> ordered ~= softdep (ensures consistency of metadata both internally
>> and with file data)
>> writeback ~= default (ensures consistency of metadata internally but
>> real file data may not agree, e.g. my empty file)
>> Additionally FFS has the async flag which turns off the internal
>> consistency of the metadata structures; I guess there's no equivalent
>> for this in ext?
>
> Isn't it rather
> default ~= async ?
>
> For ext2, at least.
>

Well I'm not sure because no one seems to really know. Linux's
mount(1) has this to say:
  writeback
 Data ordering is not preserved - data may be written
into
 the  main file system after its metadata has been
commitb
 ted to the journal.  This is rumoured to be the
highest-
 throughput  option.   It  guarantees internal file
system
 integrity, however it can allow old  data  to  appear
in
 files after a crash and journal recovery.
which seems to imply that metadata is written synchronously (because
it only talks about data appearing in files, not about the whole
filesystem getting trashed).

And BSD's mount(1) says:
 async   Metadata I/O to the file system should be done asyn-
 chronously.  By default, only regular data is read/writ-
 ten asynchronously.

 This is a dangerous flag to set since it does not
guaran-
 tee to keep a consistent file system structure on the
 disk.  You should not use this flag unless you are pre-
 pared to recreate the file system should your system
 crash.  The most common use of this flag is to speed up
 restore(8) where it can give a factor of two speed in-
 crease.

Re: 802.11 Monitor Mode in 4.6-Release

[Nick Guenther]

On Wed, Nov 11, 2009 at 8:49 AM, Tom Smith  wrote:
> On Tue, Nov 10, 2009 at 9:30 PM, Nick Guenther  wrote:
>
>>
>> A snaplen of 0 on linux really means a snaplen of 2^16-1 which is
>> "good enough". I'd imagine "tcpdump: invalid snaplen 0" was chosen
>> because technically it's true, the linux thing is just a convenience
>> hack that will bite someone down the line.
>
>
> I hope that you are not accusing me of using Linux. Because if you are, then
> that is the ultimate insult to which I would reply how do *you* know so much
> about that steaming pile of fecal matter? FreeBSD's tcpdump has a snaplen
> implementation that can be set to 0 that is why I asked the question.

Heh, I know because I have friends who use it, it supports audio
better (at the moment), and Ubuntu is nicer for a desktop. I didn't
know freebsd works that way, sorry. But offtopic.

>
>> What you want is to set
>> your snaplen to be equal to your MTU, which is what I guess you're
>> doing?
>>
>
> I'm sniffing packets over 802.11 and I wonder why I see some packets, but
> not all.
>

Well if you were using monitor mode on some other card I would say
it's because as a 'security measure' the firmware is blocking it, but
it's a Ralink and they're the open ones so hmm. Sorry, I think I'm
spent.

-Nick

Re: locking a softraid crypto vol

[Nick Guenther]

On Tue, Nov 10, 2009 at 10:52 PM, Marco Peereboom  wrote:
>
> where sd3 is the softraid crypto volume.
>
> On Tue, Nov 10, 2009 at 07:38:00PM -0600, c l wrote:
>> Is it possible to lock a softraid crypto volume without rebooting?
>>
>> It seems bioctl -d is what I want but I'm not sure.
>>
>> What I would like to do is unlock the volume...
>>
>> bioctl -c C -l /dev/sd0d softraid0
>>
>> Mount it, then copy some data to it, then unmount it and lock again.
>>
>> bioctl -d softraid0
>>
>>
>> Cluestick anyone?
>>
>>
> Not sure what locking means but -d delete it.
>
> The man page has an example of -d but it comes down to
> bioctl -d sd3

If Marco doesn't know what 'locking' means I would say he just wants
to make sure that the volume "gets encrypted". To the OP: the volume
is always encrypted, decrypting just means that the kernel knows the
key, so as soon as you unmount it it is "locked" (though you have to
make sure your key is protected, of course).

-Nick

Re: Truncation Data Loss

[Nick Guenther]

On Tue, Nov 10, 2009 at 1:18 PM, Theo de Raadt 
wrote:
>>On Tue, Nov 10, 2009 at 4:29 AM, Nick Guenther  wrote:
>>> So, as nicely summarized at
>>>
http://www.h-online.com/open/news/item/Possible-data-loss-in-Ext4-740467.html
,
>>> ext4 is kind of broken. It won't honor fsync and, as a /feature/, will
>>> wait up to two minutes to write out data, leading to lots of files
>>> emptied to the great bitbucket in the sky if the machine goes down in
>>> that period. Why is this relevant to OpenBSD? Well sometimes I've been
>>> writing a file in vi or mg and had my machine go down, and when it
>>> comes back I find that the file is empty and I'm just trying to figure
>>> out if this is just because the data wasn't fsync'd or if it's because
>>> of softdep or what.
>>
>>softdep has that effect.  The file was created and then data written.
>>But softdep cares more about the first op than the second, so there's
>>a window where crashing will cause you to wake up with empty files.
>>
>>Without softdep, it's more likely you'll have your data (though it may
>>even be the old version, and you may have to look in lost+found for
>>it).  softdep works fine with fsync, but the old unix trick of write
>>data then rename leads to empty files, because the rename is "sped up"
>>but the data isn't.
>
> There is a very simple explanation for why things are so.
>
> Actual data file loss has never been what these things were coded for.
>
> filesystem *tree and meta-data*, ie. the structure of how things are
> knit together, is the main concern.  If you lose the filesystem tree
> structure, you've lost all your files, not just the newest ones.
> Therefore the goal is safe metadata handling.  The result is you can
> lose specific data in specific (newly written to) files, but the
> structure of the filesystem is consistant enough for fsck to not damage
> it.
>
> If you want to never lose data, you have an option.  Make the filesystem
> syncronous, using the -o sync option.
>
> If you can't accept the performance hit from that, then please accept
> that all the work done over the ages is only on ensuring metadata-safety
> for a low performance penalty.  It has never been about trying to
> promise file data consistancy when that could only be achieved by
> syncronous file data writing.
>

Thank you Ted and Theo for setting the record straight. I'm still a
bit confused so in the hopes of enlightening us all I'd like to keep
asking.

See, since it seems that BSD doesn't have this file-data consistency
guarantee, are Linus' worries about ext4's potential data loss just
being alarmist? It seems to me that the case described in
https://bugs.edge.launchpad.net/ubuntu/+source/linux/+bug/317781/comments/45
is just as likely to happen on OpenBSD--if I run KDE or GNOME and mess
around with my settings then quickly murder the system the files will
be resurrected empty, right?

Another summary article,
http://www.h-online.com/open/news/item/Kernel-developers-squabble-over-Ext3-a
nd-Ext4-740787.html,
says that ext3 mounted with data=ordered  "changes to metadata only
become valid after writing the payload data". My understanding is that
the way this works is the metadata gets journalled to a scratch area
on the disk, then once the syncer gets around to actually writing the
file data (the 'payload') to some new unused location on disk, the
metadata in the journal gets written to the disk too. If the system
goes down before the payload gets written (or even after, but before
the metadata) then the old version of the file is the one still in the
filesystem. This way a file is either in its old state or new state,
never in-between. So then where would my empty file example fit in? Is
it impossible on ext3?

I know I'm getting off topic a bit, but I know this list is clear
enough to clean up the mud puddle. I'm trying to understand the
implementation choices of my chosen OS, so that I can either defend it
to linux zealots. This table summarizes my understanding of the
approximate equivalencies between the various ext and ffs modes.
Please, if I'm totally off, hit me:
[ext3 data= / FFS]
journal ~= sync (ensures consistency of both metadata and file data)
ordered ~= softdep (ensures consistency of metadata both internally
and with file data)
writeback ~= default (ensures consistency of metadata internally but
real file data may not agree, e.g. my empty file)
Additionally FFS has the async flag which turns off the internal
consistency of the metadata structures; I guess there's no equivalent
for this in ext?
What is the reason softdep isn't on by default?

Sorry for being long winded, but I'm th

Re: 802.11 Monitor Mode in 4.6-Release

[Nick Guenther]

On Tue, Nov 10, 2009 at 9:30 PM, Nick Guenther  wrote:
> On Tue, Nov 10, 2009 at 12:57 PM, Tom Smith  wrote:
>> Made some progress:
>>
>> ifconfig rum0 chan 11
>> ifconfig rum0 nwid TheOpenWAP
>> ifconfig rum0 mediaopt monitor
>> ifconfig rum0 up
>>
>> tcpdump - -s 1514 -i rum0 -y IEEE802_11
>>
>> This seems to capture a lot, but not quiet what I expect. Why in OpenBSD
>> does snaplen of 0 not work?

Also I too would like to know why giving ifconfig commands all on one
line doesn't always seem to 'take'.

Re: 802.11 Monitor Mode in 4.6-Release

[Nick Guenther]

On Tue, Nov 10, 2009 at 12:57 PM, Tom Smith  wrote:
> Made some progress:
>
> ifconfig rum0 chan 11
> ifconfig rum0 nwid TheOpenWAP
> ifconfig rum0 mediaopt monitor
> ifconfig rum0 up
>
> tcpdump - -s 1514 -i rum0 -y IEEE802_11
>
> This seems to capture a lot, but not quiet what I expect. Why in OpenBSD
> does snaplen of 0 not work?
>
>

A snaplen of 0 on linux really means a snaplen of 2^16-1 which is
"good enough". I'd imagine "tcpdump: invalid snaplen 0" was chosen
because technically it's true, the linux thing is just a convenience
hack that will bite someone down the line. What you want is to set
your snaplen to be equal to your MTU, which is what I guess you're
doing?

-Nick

Truncation Data Loss

[Nick Guenther]

So, as nicely summarized at
http://www.h-online.com/open/news/item/Possible-data-loss-in-Ext4-740467.html,
ext4 is kind of broken. It won't honor fsync and, as a /feature/, will
wait up to two minutes to write out data, leading to lots of files
emptied to the great bitbucket in the sky if the machine goes down in
that period. Why is this relevant to OpenBSD? Well sometimes I've been
writing a file in vi or mg and had my machine go down, and when it
comes back I find that the file is empty and I'm just trying to figure
out if this is just because the data wasn't fsync'd or if it's because
of softdep or what.

I know this is kind of a newbish question but I have no idea how I'd
go about researching it. And I'd like to sort this out because it's a
big gap in my knowledge. I thought there was a paper on softdep but
http://openbsd.org/papers doesn't have it.

NetBSD's summary  says:
"The FFS takes care to correctly order all metadata operations, as
well as to ensure that all metadata operations precede operations on
the data to which they refer, so that the file system may be
guaranteed to be recoverable after a crash. The last N seconds of file
data may not be recoverable, where N is the syncer interval, but the
file system metadata will be. N is usually 30."

So my interpretation of this is that my missing file is a
to-be-expected ancient part of posix, unless I run sync after every
write. Is this right? Out of curiousity, what would happen if I ran
sync and pulled the power at the same time (that is, what cases can
cause the filesystem to get inconsistent)?


But I still don't get how softdeps fits into all this. That page goes on:

"With softdeps running, you've got almost the same guarantee. With
softdeps, you have the guarantee that you will get a consistent
snapshot of the file system as it was at some particular point in time
before the crash. So you don't know, as you did without softdeps,
that, for example, if you did an atomic operation such as a rename of
a lock file, the lock file will actually be there; but you do know
that the directory it was in won't be trashed and you do know that
ordering dependencies between that atomic operation and future atomic
operations will have been preserved, so if you are depending on atomic
operations to control, say, some database-like process (e.g. writing
mail spool files in batches, gathering data from a transaction system,
etc.) you can safely start back up where you appear to have left off."

but while I kind of grasp the details, I can't seem to figure out what
they mean in context.

Enlightenment appreciated! I don't want to be that guy in 20 years who
rewrites the filesystem to be more efficient by not actually writing
the quantum-light-platter.

(and btw, why isn't http://openbsd.org/papers linked from the front page?)

-Nick

Re: Premature end of archive

[Nick Guenther]

On Wed, Nov 4, 2009 at 5:49 AM, sonjaya  wrote:
> Dear all
> i try install clamav from packages but  get error like this , how to solved
?
> - i try another mirror still same
> - try donwload to local pc still same
>
> # export PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/4.6/packages/i386/
> # pkg_add -i clamav
> Premature end of archive
>clamav-0.95.2: complete
> Adjusting sha for /usr/local/lib/libclamav.a from
> k3C2K5oQcz5KJ1wrU0uLgN9h6iZ1w6MYh5gIYM02On4= to
> orCLZWKfCRHFq1lVJcXljBP3QjUq2trZIlRJ49Np5zk=
> /usr/sbin/pkg_add: Installation of clamav-0.95.2 failed, partial
> installation recorded as partial-clamav-0.95.2
>

Did you make sure to pkg_delete the partial install before trying again?

Re: Native Instruments 'Soundcards'

[Nick Guenther]

On Thu, Oct 29, 2009 at 6:11 PM, Nick Guenther  wrote:
> On Thu, Oct 29, 2009 at 12:42 AM, Jacob Meuser 
wrote:
>> the alsa driver looks to be a complete driver that has nothing to do
>> with any of the usb standards based drivers for audio or midi.  one
>> of the copyright holders on the alsa driver has an @caiaq.de email
>> address.  http://caiaq.de doesn't have much info, but it says
>> "hardware development".  I'm guessing these guys (caiaq.de) developed
>> this hardware and the drivers.  why it doesn't use the usb audio and
>> midi standards though, I cannot answer.
>
> Well because this just seems so braindead I'm bugging Native
> Instruments and the @caiaq.de guy; I'll let you all know if any useful
> info comes out of that.

Amazingly he responded within an hour of me emailing him! He says the
reason for the proprietary protocol is that the cards are 6 years old
and appearently USB audio drivers in all the various OSes weren't good
enough for "pro" use. That's annoying these days but acceptable, I
think.

I still kind of want to trade it in but it's looking like there might
not be any other 4in/4out USB soundcard that's suitable (they're all
either too complex or appear to be old so probably need custom
drivers).

Re: Native Instruments 'Soundcards'

[Nick Guenther]

On Thu, Oct 29, 2009 at 12:42 AM, Jacob Meuser 
wrote:
> the alsa driver looks to be a complete driver that has nothing to do
> with any of the usb standards based drivers for audio or midi.  one
> of the copyright holders on the alsa driver has an @caiaq.de email
> address.  http://caiaq.de doesn't have much info, but it says
> "hardware development".  I'm guessing these guys (caiaq.de) developed
> this hardware and the drivers.  why it doesn't use the usb audio and
> midi standards though, I cannot answer.

Well because this just seems so braindead I'm bugging Native
Instruments and the @caiaq.de guy; I'll let you all know if any useful
info comes out of that.

I got this from one of their fanbois on their forums:
> hmm,
> ... it is a soundcard
> ... you connect it via usb
> ... it works via usb
>
> therefore Audio4DJ is definetly a USB soundcard!
>
> That Audio4 is not working with linux doesn't disqualify it,
> as long NI doesn't promote it for doing that.
Which is kind of "Arggh stupid people". I was hoping we were past the
days of being slaves to vendors for compatibility. (And I did mention
OpenBSD, he's probably just unaware that anything besides
win/mac/linux exists.)

Native Instruments 'Soundcards'

[Nick Guenther]

I was very excited to open up my new Native Instruments Audio4DJ
soundcard today, but when I plugged it in I found out the wool they're
pulling over their customers eyes. With 4.5 it shows up as
ugen0 at uhub0 port 1 "Native Instruments Audio 4 DJ" rev 2.00/0.92 addr 3
which, you'll note, is NOT a uaudio(4).

The latest ALSA appearently supports it with sound/usb/caiaq (e.g.
http://tomoyo.sourceforge.jp/cgi-bin/lxr/source/sound/usb/caiaq/), so
that means that it won't Just Work on Windows, Mac, or Linux without
installing drivers. I'm writing though because I don't know enough
about the various USB standards at play here; I'm writing to ask if I
should return it or not. Is there a chance in hell that BSD (or even
*BSD) would grow support for this card? Is the linux driver a hack or
does "caiaq" mean some new standard that may some day be supported?
(googling turned up only references to the driver itself).

Proprietary devices are so frustrating, so paying-to-be-a-slave. I
don't want to do that unless there's a good reason for it. A friend
suggests that USB soundcards by default are "cpu driven" so there's a
lower bound on the latency that can be achieved, but again I don't
know enough about this area to judge that for myself, and I don't know
where I'd start researching it.

Thanks for any insight at all.
-Nick

Re: PKG_PATH never works as stated

[Nick Guenther]

On Sun, Oct 25, 2009 at 10:29 PM, Juan Miscaro  wrote:
> I've had this problem for a long time (over many OpenBSD releases).
>
> The pkg_add man page (for 4.5) states:
>
> "If a given package name cannot be found, the directories named by
> PKG_PATH are searched.  It should contain a series
> of entries separated by colons.  Each entry consists of a directory
> name.  URL schemes such as FTP, HTTP, HTTPS, or SCP are also
> appropriate."
>
> On a client machine:
>
> PKG_PATH=http://$HTTP_MASTER/:http://$HTTP_MASTER/by_port/i386/all/
>
> My master server serves up normal packages and those packages compiled
> from ports.
>
> When I do this only the first component is searched.  I have to do a
> second package update run with PKG_PATH pointing directly to the
> second component for the "ports packages" to be seen.
>
> Why is this?
>

I've seen this too but I've never figured it out. Obviously it's
supposed to work so we must be doing it wrong... or maybe we have odd
characters in our URLs that are throwing off the parser (after all,
http:// contains the delimiter field, it's not unlikely it might screw
up). Can you echo your $HTTP_MASTER, and your $PKG_PATH? And show an
attempt to use pkg_add that fails?

-Nick

Re: Xconsole using Xfce

[Nick Guenther]

On Mon, Oct 19, 2009 at 8:15 PM, Morten Juhl-Johansen Zvlde-Fejir
 wrote:
> Dear all,
> I have installed the new OpenBSD - and am now toying with a shiny new
> desktop.
> I am using Xfce, but I am wondering about one thing: I keep getting a
> status Xconsole. Could anyone point me to how I might disable that?
>

How are you starting xfce? If it's with an exec line in .xinitrc then
I would try to find the xfce config files and see if xconsole is being
started there.

-Nick

Re: Forum engine

[Nick Guenther]

On Sun, Oct 11, 2009 at 9:17 PM, Samuel Baldwin
 wrote:
> 2009/10/11 Mic J :
>> Why is that better?
>
> Because you get to pick your UI, because all your mail as amalgamated
> into one mailbox where you can sort it yourself where there's no easy
> place for garbage "off-topic" discussion, because your mailbox is
> where messages can be threaded properly, because there are no avatars
> or forum stats or ranks or administrators or moderators to create
> politics, because they're low overhead and easy accessible, because
> low-traffic mailing lists still catch everyone's attention where a
> low-traffic forum will eventually be ignored by the users... so on and
> so forth. There's bound to be a bunch of sites or archived
> rants/debates about this.
>
> If it helps, compare your average forum goer with your average mailing
> list denizen. That alone should be enough...

Forum goers: kind of stupid, but friendly, or at least funny if they
get into flamewars?
Mailing list users: snotty and short with people?

I think you misunderstand forums; have you ever even participated in
one? Not needing to choose your UI is a feature, not a bug.

Re: Forum engine

[Nick Guenther]

On Sun, Oct 11, 2009 at 6:03 PM, Mic J  wrote:
> On Sun, Oct 11, 2009 at 7:36 PM, Jesus Sanchez  wrote:
>> Samuel Baldwin escribiC3:
>>>
>>> I've heard good things about FluxBB and PunBB, but really you should
>>> consider using a mailing list instead of a server.
>>>
>>>
>> +1, mail list with archive it's always better than a forum.
>
> Why is that better?

Yeah, really. Mailing lists are really really barebones. They are good
for a suitably barebones community, but how do you go about
implementing subforums, moderators, and so on? How do you integrate
cute avatars and msn links? What if your users don't want to tie their
email to the community but don't want to be bothered finding some free
email provider to camp? For a lot of non-techie communities, forums
are much easier.

-Nick

Re: image editor

[Nick Guenther]

On Wed, Oct 7, 2009 at 5:38 PM, Frank Bax  wrote:
> I'm looking for basic image editor: crop, resize, lossless jpg rotation.
>
> Something minimalistic would be nice, so GIMP is out.

This will force KDE libs on your system, but KolourPaint is actually
really really good. I'm not sure what package it's in, if it is in
one, but you can always build from source.

aucat -l and mpd

[Nick Guenther]

On Sat, Oct 3, 2009 at 4:18 AM,   wrote:
> hello,
> while I see there is some talking about aucat, I'd like to pose a question
> myself.
> If I use aucat -l and then play multiple sessions of, say, mplayer,
> everything is fine, but if I start mpd while running aucat as server, mpd
> refuses to start.
> Is it possible to make mpd use aucat? Or should I use mpd to do the "aucat
> -l" job? (to be able to hear, for instance, incoming messages from pidgin).

aucat locks /dev/audio while it's running, and a new sound API, sndio,
is used to intelligently detect whether aucat is running or not and
route audio to it or to the soundcard directly. The (huge) downside of
this is that there is no drop-in solution that lets you have audio
shared between any and all apps, each one must be hacked to support
sndio as a backend, and mpd hasn't had this work done yet as far as I
know.

Re: how to trace a hardcore-bug in OpenBSD-4.5

[Nick Guenther]

I don't think anyone understands.

On Tue, Sep 15, 2009 at 5:13 PM, Marco Peereboom  wrote:
> Got that finger fixed yet?
>
> On Tue, Sep 15, 2009 at 09:44:40PM +0200, paranoid.gand...@googlemail.com 
> wrote:
>> Today I faced a issue which blowed my mind because if left no traces at
>> the affected system.

Re: boot disk ???

[Nick Guenther]

On Thu, Aug 6, 2009 at 4:47 PM, Chris Dukes wrote:
>
> Noone in their right mind installs an operating system just to install
> an operating system.  For the matter, noone in their right mind uses
> a computer to just use a computer.
> There are rational human oriented end goals for which installing
> an operating system *MIGHT* be a rational step.

Hardly true. I have plenty of geeky friends who love toying with
different OSes. However, they usually have a "i'll make it work, it'll
be a fun challenge" attitude, not "it doesn't work so you're all
trying to GET ME"...

Re: boot disk ???

[Nick Guenther]

On Wed, Aug 5, 2009 at 6:08 PM, PJ wrote:
> Peter N. M. Hansteen wrote:

> It really pisses me off that everyone assumes that the poor sap who is
> asking for help is too stupid to have done things right and they just
> forget that maybe the problem is in the SOURCE !
> I know what a bootable image usually looks like... but neither of those
> I downloaded look right.
> Unless, of course the booting is supposed to be done in some
> incomprehesible way from some other operating system in some mysterious
> way that is not spelled out anywhere where I can find it, anyway. :-)
> Sorry, but I'm ust laughing all theway back to FreeBSD... they may be
> fucked-up but at least I can managed to figure out how to to deal with them.
> I liked the idea of how your head honcho runs things and the general
> response to the OS, but by gosh and by golly, Molly, somebody ai'nt got
> the steering sheel pointed right!
>

That pisses me off too but a lot of the time there is something stupid
going on. Seriously, did you check the md5? You really need to clear
all the basics before whining around here. Like someone said, if
install45.iso wasn't bootable in general it would have been fixed by
now; if it isn't bootable on your particular machine that's a
different issue, and you should post the machine's specs, possibly a
dmesg (get one from FreeBSD?).

Re: Success!!

[Nick Guenther]

On Thu, Jul 9, 2009 at 11:59 PM, Wayne M. Scace wrote:
>  *YES
> I've got OpenBSD 4.5 installed on an older box that is earmarked as a
> Firewall/NAT box.  I've added a regular user account and pkg_add'd some
> packages of CLI apps that I prefer to use.  I must say, the install process
> was a LOT less painful than the last time I attempted to tinker with
> OpenBSD.
>   Have a great weekend!!
>
> Sincerely and Respectfully Yours,
>


Cool! What's the box (dmesg?)? Is it cheap? Is it fast? I have a
WRT-DD install but it always lags out my connections for some reason
(perhaps because the NAT is full) and I would like to be able to run
OpenBSD on it so I could actually tweak things.

-Nick

Re: Voice-chat on OpenBSD with nothing more than aucat and ssh

[Nick Guenther]

On Sat, Jun 6, 2009 at 3:18 PM, Alexandre Ratchov wrote:
> On Fri, Jun 05, 2009 at 06:02:01PM -0400, Ryan Flannery wrote:
>> With the recent work done to the audio system on OpenBSD, a buddy of
>> mine and I figured it should be easy to setup two-way voice-chat
>> between two OpenBSD clients using nothing more than aucat(1) and
>> ssh(1).  As we found out, it is both very easy and very usable!  We
>> have telephone-quality chatting working with a <= 1 second delay in
>> the audio (after a few minutes of chatting, this is unnoticeable).
>>
>> First, a hearty thanks to Jacob Meuser and the other OpenBSD
>> developers who have worked hard on this recently.  Your efforts are
>> both noticed and greatly appreciated.
>>
>> Second, I have a couple of questions...
>>
>> 1. We, the two users chatting (users neal and ryan) have ssh accounts
>> on each other's machines.  To voice-chat with each other, what we did
>> boils down to the following:
>>
>> ryan# aucat -l
>> ryan# aucat -o - | ssh r...@neals-machine aucat -i -
>>
>> User neal would do the same, only to my (ryan's) machine.
>> When aucat is run in server-mode ('aucat -l') it creates a socket in
>> "/tmp/aucat-USERID/default" where USERID is the uid of the user who
>> ran the command (aucat -l).  For another user (neal) to bind to this
>> socket, we had to make this socket available to the other user, namely
>>
>> ryan# grep ryan /etc/passwd
>>(find ryan's uid, call it RYANSID)
>> ryan# grep neal /etc/passwd
>>(find neal's uid, call it NEALSID)
>> ryan# aucat -l
>> ryan# cd /tmp/
>> ryan# chmod 755 aucat-RYANSID
>> ryan# ln -s aucat-RYANSIDaucat-NEALSID
>>
>
> if you use hard links instead of soft links, you can
> ``share'' your socket with another user without changing the
> socket directory permissions (so you avoid giving it to all
> users).
>

Classy! I was looking for a way to do this but the manpage didn't
mention anything.

>> Neal would do the same on his machine, only reversed.
>> Question: is it possible to run aucat(1) in such a way that the socket
>> it creates in 'global', such that other users can connect to it?
>> A quick perusing of the man/archives and the source says no... but I
>> may be missing something.
>>
>
> no, there's no way for that. Even if we start supporting
> ``shared sockets'' (i hope so), they will not be usable
> simultaneously by multiple users (to avoid evesdropping).
> Fine grained access control might solve this problem, but is
> too complicated and outside the scope of aucat.


What good are shared sockets if they aren't usable simultaneously??

use case: I'm always wanting to set up and audio-studio box, and right
now aucat lets me, but what if I want to have myself and a hundred of
my closest friends play a midi-orchestra all routed through the one
box with everyone running their own session on a (remote) frontend? I
could just make a shared 'music' account but that's a workaround for
an awkward system.

Please, don't necessarily make a -g(lobal) flag for aucat, but don't
restrict its flexibility by forcing restrictions in the name of
security. The OS is perfectly competent as handling security with file
permissions like it's designed to. Just add a way for each user to
specify what socket they want sndio to talk to? Like a /etc/sndiorc
and ~/.sndiorc pair. Then to make a global socket you would set it in
your global /etc/sndiorc and then sound would Just Work for every user
and you'd only have to start aucat -l once, but users would still have
to be in the audio group or whatever to use this. Conversely, if
you're actually worried about eavesdropping you can run aucat -l like
usual.

Actually, you could hack this now: make an 'audio' user, at boot do
"sudo -u audio aucat -l" and also create links to the socket that made
for each user on the system. I don't know what's worse: recreating
links at each boot or having to have a config file.

-Nick

Re: Building OpenBSD

[Nick Guenther]

Is that always true? I don't think that's always true. Take wpa-psk
which does not just work for me on current or 4.5, or how I've never
seen linux unable to sleep a laptop but I've plenty of machines that
OpenBSD's sleep is funky with.

The important thing is that that's always the -ideal-, wheras in linux
the goal is just to get things working, not necessarily working
reproducibly well without regard to platform and situations.

-Nick

On 13/05/2009, Eric Furman  wrote:
> On Wed, 13 May 2009 01:01:40 -0400, "Chuck Robey" 
> said:
>> between FreeBSD and OpenBSD.  Getting this new OS up is really turning
>> out to be
>> fun (I like troubleshooting).
>
> If you like troubleshooting then OpenBSD is going to be no fun for you.
> OpenBSD "Just Works"
>
> This isn't Linux or FreeBSD

Re: mDNS

[Nick Guenther]

On Wed, May 13, 2009 at 8:55 AM, Antoine Jacoutot 
wrote:
> On Wed, 13 May 2009, Marco Peereboom wrote:
>
>> I need an mdns solution as well.  If you have something working please
>> let me know.
>
> I'm working on avahi which I intend to finish at c2k9.
>

Thank you!

mDNS

[Nick Guenther]

I've installed howl on my fileserver and enabled multicast. From linux
I can do this:

ko...@arcology:~$ uname -a
Linux arcology 2.6.28-11-generic #42-Ubuntu SMP Fri Apr 17 01:57:59
UTC 2009 i686 GNU/Linux
ko...@arcology:~$ nslookup muzkabox.local
Server: 192.168.1.254
Address:192.168.1.254#53

** server can't find muzkabox.local: NXDOMAIN

ko...@arcology:~$ ping muzakbox.local
PING muzakbox.local (192.168.1.66) 56(84) bytes of data.
64 bytes from muzakbox.local (192.168.1.66): icmp_seq=1 ttl=255 time=310 ms
64 bytes from muzakbox.local (192.168.1.66): icmp_seq=2 ttl=255 time=3.19 ms
64 bytes from muzakbox.local (192.168.1.66): icmp_seq=3 ttl=255 time=5.26 ms
64 bytes from muzakbox.local (192.168.1.66): icmp_seq=7 ttl=255 time=2.44 ms
^C
--- muzakbox.local ping statistics ---
7 packets transmitted, 4 received, 42% packet loss, time 6025ms
rtt min/avg/max/mdev = 2.441/80.299/310.295/132.792 ms


but on OpenBSD I get this:

$ uname -a
OpenBSD splat 4.5 GENERIC#1749 i386
$ nslookup muzakbox.local
Server: 192.168.1.254
Address:192.168.1.254#53

** server can't find muzakbox.local: NXDOMAIN

$ ping muzakbox.local
ping: unknown host: muzakbox.local


Obviously linux's resolver is checking mDNS as well as regular DNS. Is
there any way to get OpenBSD doing this too? The only thing I can
think is that is has to do with the 'order hosts,bind' line, though
bind doesn't seem to be install on the linux box Zeroconf is
really convenient for me but it's kind of useless if it's going to
force me into using Linux as a desktop.

To head off the stupid questions: I had my computers all with static
IPs but I've moved and there's a new (very locked down) router that I
can't tamper with, and names are nicer anyway.

.Actually I just solved my problem a different way because I
discovered the dhclient.conf:send host-name ""; option. I'm
still curious about mDNS support in OpenBSD though (and this took me a
couple hours of searching, so the archives could probably use this
tip).
-Nick

Re: eject(1) locks machine on >= 4.4

[Nick Guenther]

I had a similar problem where trying to write anything with my CD
drive, and sometimes even just reading it, would lock. I saw something
go by on here that hinted it was because the drive was a fancy
blu-ray/duallayer/hddvd-capable drive but that's as far as I cared to
dig.

On 09/05/2009, Jasper Valentijn  wrote:
> 2009/5/9 Jasper Valentijn :
>> 2009/5/9 Jasper Valentijn :
>>> Hey misc@,
>>>
>>> I'm able to open/close the trays of cd0, cd1 and cd3 through eject(1).
>>>
>>> When I use eject(1) on cd2 at scsibus1 targ 0 lun 0: <_NEC, DV-5800D,
>>> F9S6> ATAPI 5/cdrom removable, the machine locks up hard. Doesn't
>>> respond to pings, sshs or ctrl-alt-dels.  I've tried this with acpi on
>>> and off. Same results. :(
>>>
>>> When trying this with a ramdisk kernel, I've tried 4.3-release,
>>> 4.4-release and stable, 4.5-release, stable and current, the prompt
>>> doesn't return on all tests except the 4.3 one. The box doesn't lock
>>> up as hard as when using a regular kernel. cd0, cd1 and cd3 do open
>>> and close after making the devices with MAKEDEV when booted with
>>> bsd.rd.
>>>
>>> If I should provide more info let me know.
>>
>> I've just tested if the kind of media matters. It does.
>>
>> With a dvd in the drive the machine locks up, with a cd or nothing in
>> it, it doesn't.
>
> The dvds I've done my first tests with are windows game dvds. I've
> also tested dvd-movies then there's no problem.
>
> Same on macppc.
>
> --
>  We spend the first twelve months of our children's lives teaching
> them to walk and talk and the next twelve telling them to sit down and
> shut up.

Re: No OpenBSD for Lenovo Thinkpad w500 4058CTO

[Nick Guenther]

Your disks aren't showing up in dmesg. Try tweaking your BIOS
settings--i know that I had to change from IDE emulation to AHCI when
I upgraded to 4.5.

On 05/05/2009, Bill Maas  wrote:
> Hi,
>
> First, and just for the record: while trying to set up an FTP server on
> OpenBSD 4.2 I got this error message while trying to connect by any
> other address than 'localhost':
>
> 421 Service not available, remote server has closed connection.
>
> Reason, it turned out: a missing entry in /etc/hosts.allow. I had a hard
> time finding anything relevant out there, so now at least the relation
> between the error message and the missing entry is documented.
>
>
> The reason I needed an FTP server is that I'm trying to install OpenBSD
> 4.5 on a Lenovo Thinkpad W500 model 4058-CTO, with no success. With obsd
> 4.4 it never got past hardware initialization, with 4.5 at least I get
> the installer menu, but no for long:
>
> [...]
> Proceed with install? [n] y
> [...]
>
> No disks found
> #
>
> And no, I don't expect developers to _scramble to their laptops_ just
> because I as an OpenBSD user am _entitled to have this fixed ASAP_ and
> stuff like that. I was at least happy to see that the Fathers of OpenBSD
> in their infinite wisdom decided to use plain ftp for downloading
> packages, and not some custom-built single-purpose
> binary-installer-builtin, so I could at least get a dmesg off the box (I
> didn't manage to get a screen capture over USB).
>
> The output from the 'dmesg' command run from the shell commandline is
> listed below. I'm only an "index" list member, but feel free to contact
> me offlist if you need more info. I'll be happy to help testing any
> updates. And I'll be following any replies through the archives of
> course.
>
> An otherwise very happy OpenBSD user,
>
>
> Bill
>
>
> dmesg:
> --
> OpenBSD 4.5 (RAMDISK_CD) #1112: Sat Feb 28 15:06:26 MST 2009
> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD
> cpu0: Intel(R) Core(TM)2 Duo CPU T9400 @ 2.53GHz ("GenuineIntel"
> 686-class) 2.53 GHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR
> real mem  = 3214176256 (3065MB)
> avail mem = 3115958272 (2971MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 09/24/08, BIOS32 rev. 0 @ 0xfdc80,
> SMBIOS rev. 2.4 @ 0xe0010 (74 entries)
> bios0: vendor LENOVO version "6FET46WW (1.16 )" date 09/24/2008
> bios0: LENOVO 4058CTO
> acpi0 at bios0: rev 2
> acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT
> SSDT SSDT SSDT SSDT
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: apic clock running at 265MHz
> cpu at mainbus0: not configured
> ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
> ioapic0: misconfigured as apic 2, remapped to apid 1
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus 1 (AGP_)
> acpiprt2 at acpi0: bus 2 (EXP0)
> acpiprt3 at acpi0: bus 3 (EXP1)
> acpiprt4 at acpi0: bus -1 (EXP2)
> acpiprt5 at acpi0: bus 5 (EXP3)
> acpiprt6 at acpi0: bus 13 (EXP4)
> acpiprt7 at acpi0: bus 21 (PCI1)
> bios0: ROM list: 0xc/0xfc00 0xd/0x1000 0xd1000/0x1000
> 0xd2000/0x1000 0xde000/0x1800! 0xe/0x1
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07
> ppb0 at pci0 dev 1 function 0 "Intel GM45 PCIE" rev 0x07: apic 1 int 16
> (irq 11)
> pci1 at ppb0 bus 1
> vga1 at pci1 dev 0 function 0 "ATI Mobility Radeon HD 3650" rev 0x00
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured
> em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: apic 1
> int 20 (irq 11), address 00:1c:25:97:34:61
> uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int
> 20 (irq 11)
> uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int
> 21 (irq 11)
> uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int
> 22 (irq 11)
> ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int
> 23 (irq 11)
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> "Intel 82801I HD Audio" rev 0x03 at pci0 dev 27 function 0 not
> configured
> ppb1 at pci0 dev 28 function 0 "Intel 82801I PCIE" rev 0x03: apic 1 int
> 20 (irq 11)
> pci2 at ppb1 bus 2
> ppb2 at pci0 dev 28 function 1 "Intel 82801I PCIE" rev 0x03: apic 1 int
> 21 (irq 11)
> pci3 at ppb2 bus 3
> iwn0 at pci3 dev 0 function 0 "Intel WiFi Link 5300AGN" rev 0x00: apic 1
> int 17 (irq 11), MIMO 3T3R, MoW, address 00:16:ea:a3:00:2c
> ppb3 at pci0 dev 28 function 3 "Intel 82801I PCIE" rev 0x03: apic 1 int
> 23 (irq 11)
> pci4 at ppb3 bus 5
> ppb4 at pci0 dev 28 function 4 "Intel 82801I PCIE" rev 0x03: apic 1 int
> 20 (irq 11)
> pci5

Re: Recovering data from OpenBSD drive using OSX

[Nick Guenther]

How does it not boot? What's the error/symptoms?

I know I had OpenBSD booting without a hitch in qemu under OS X. You
can either install it from darwinports or there's a GUI wrapper called
Q.app available somewhere.

On 03/05/2009, jebyrnes  wrote:
> Indeed, that was my first impulse as well once I noticed that the drive
> wouldn't mount under osx.  Something is odd, however, with VirtualPC, and
> though openbsd 4.4 installs just fine, it will not then boot.  Even though
> once I boot up the virtual machine using the CD, I can mount the newly
> formatted and installed drives just fine.  Hence, I was wondering if there
> was something more direct.
>
> Hrm.
>
> -Jarrett
>
>
> Jason Dixon wrote:
>>
>> On Fri, May 01, 2009 at 02:50:48PM -0700, jebyrnes wrote:
>>> Hello, all.  I have a question.  A long time ago in college I ran an
>>> openBSD
>>> server.  It was an old, cantankerous machine, and eventually something
>>> happened to the motherboard, and it died.  The drives, with all of their
>>> data, are still fine.  In fact, I'd like to recover the data.  In my
>>> current
>>> situation, I don't have access to the equipment to put together a new box
>>> with the old drives in it.  I would like to get the data, off, however.
>>> All
>>> I have is a mac laptop.
>>>
>>> Will OSX be able to access these drives?  Are their any utilities that
>>> would
>>> help in this?  It's been a while since I hacked around at this level, so
>>> would appreciate any advice you all could give.  Thanks.
>>
>> Find an external USB enclosure.  Toss them in.  Connect it.  Boot
>> OpenBSD in a virtual machine.  Mount drive.  Read files.
>>
>> --
>> Jason Dixon
>> DixonGroup Consulting
>> http://www.dixongroup.net/
>>
>>
>>
>
> --
> View this message in context:
> http://www.nabble.com/Recovering-data-from-OpenBSD-drive-using-OSX-tp23340252p23361918.html
> Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: Someone has running Ekiga?

[Nick Guenther]

2009/4/29 Toma Bodar :
> After installation of gconf-editor ekiga runs fine.So why isn't
> gconf-editor as dependency for ekiga?

Huh? Because gconf-editor just edits the gconf database. It shouldn't
have caused this. Maybe installing it triggered something else to get
installed that is actually what fixed ekiga, or maybe running it a
first time caused gconf to valid-ize all your keys. Weird.

-Nick

Re: wifi modes

[Nick Guenther]

On Wed, Apr 29, 2009 at 2:46 AM, Claudio Jeker  wrote:
>
> host-ap mode needs to be able to send out some very specific messages
> that are not needed for normal client operation. If the HW/firmware or
> whatever does not support us to generate these packets the card will not
> support host-ap mode. Some drivers support host-ap mode even though the
> HW is actually not capable of being a real AP because some parts of the
> spec can not be satisfied (stuff like power saving mode for example).
> While it works somewhat it fails to be spec conformant.
>

Thank you very kindly for the explanation. I really mean that.

-Nick

Re: wifi modes

[Nick Guenther]

On Wed, Apr 29, 2009 at 1:27 AM, Claudio Jeker  wrote:
> On Tue, Apr 28, 2009 at 05:47:20PM -0400, Nick Guenther wrote:
>> Why do only certain wireless cards support host AP mode or IBSS mode?
>> Is the 'modality' hardwired into the wifi hardware?
>>
>> For the archives (since I couldn't find anything on this), the drivers
>> that support being wireless routers (Host AP mode) are:
>> acs(4), ath(4), pgt(4), ral(4), rtw(4), rum(4), ural(4) and wi(4)
>>
>> Drivers that support joining ad-hoc networks:
>> acx(4), an(4), ath(4), atu(4), atw(4), ipw(4), iwi(4), pgt(4), ral(4),
>> ray(4), rtw(4), rum(4), ural(4), urtw(4), wi(4)
>>
>> Drivers that can be ad-hoc "masters" (is this still correct or are
>> ad-hoc masters outdated?):
>> wi(4)
>>
>> (zyd(4) says the chip has the ability to do ad-hoc but "more work is
>> required", and googling
>> (http://mirror.hamakor.org.il/archives/linux-il/11-2005/18095.html)
>> suggests it can be an access point too)
>>
>
> The list is not correct. acx(4) is quite fine in host-ap mode (I guess
> acs(4) is a typo in the first list).
> Being not able to do host-ap mode on wifi cards are either HW limitations
> or documentation limitation. So not much we can do about it.
>

Oh yeah, I meant acx, oops. These newfangled qwerty keyboards, you know...

So that's two answers. So is AP mode a hardware-level thing or what?
Or is it that certain firmware/chipsets implement it themselves and
only allow the driver to activate it (or rather, don't, in most
cases). Does the same apply or not apply to ad hoc mode?

Thank you!
-Nick

Re: wifi modes

[Nick Guenther]

Apologies. By now of course I see *that*. But so it's just a software
issue then: that's the answer I was hoping for! It means there's
nothing inherently wrong with my hardware, I can make it work if I
just put the effort in (and find the time to learn).

Thanks
-Nick

On 28/04/2009, Theo de Raadt  wrote:
>> Why do only certain wireless cards support host AP mode or IBSS mode?
>
> Because someone has to _want_ to do the work.
>
> I understand not everyone can do the work, but why bother making lists.
>
> It isn't going to encourage anyone to want to.
>
> Why don't you all see that?
>
> We are not your slaves.

wifi modes

[Nick Guenther]

Why do only certain wireless cards support host AP mode or IBSS mode?
Is the 'modality' hardwired into the wifi hardware?

For the archives (since I couldn't find anything on this), the drivers
that support being wireless routers (Host AP mode) are:
acs(4), ath(4), pgt(4), ral(4), rtw(4), rum(4), ural(4) and wi(4)

Drivers that support joining ad-hoc networks:
acx(4), an(4), ath(4), atu(4), atw(4), ipw(4), iwi(4), pgt(4), ral(4),
ray(4), rtw(4), rum(4), ural(4), urtw(4), wi(4)

Drivers that can be ad-hoc "masters" (is this still correct or are
ad-hoc masters outdated?):
wi(4)

(zyd(4) says the chip has the ability to do ad-hoc but "more work is
required", and googling
(http://mirror.hamakor.org.il/archives/linux-il/11-2005/18095.html)
suggests it can be an access point too)

Thank you in advance
-Nick

Re: automaticaly mount/umount encrypted $HOME or ...

[Nick Guenther]

Interesting. But if I steal your laptop and run jack the ripper on it
then I get your svnd password, don't I?

Using bash seems awkward. Does this work if you're using xdm?

Otherwise, this is very slick. The reason I haven't gotten around to
using encrypted homes is just that it's awkward to do it in .profile
because you'd have to remount your /home/$USER over top, but moving
the mounting code into login(1) avoids that

-Nick

On 28/04/2009, Maxim Bourmistrov  wrote:
> ... yet another vnd-hack including modified login_passwd, sudo
> and .bash_logout:
>
> http://en.roolz.org/Blog/Entries/2009/4/27_Auto_mount_umount_of_encrypted_%24HOME_on_OpenBSD.html
>
> Read first-line warning carefully before usage/flame :).
>
> //maxim

Re: Someone has running Ekiga?

[Nick Guenther]

The "apps" dir there is virtual. Gconf makes a virtual filesystem
where preference data is stored. Install gconf-editor to understand
really quickly. I found it confusing too.

So did you run that command?

On 27/04/2009, Toma Bodar  wrote:
> Hi all,
>
> I installed ekiga trough ports (pkg_add wasn't succesfull) and I'm
> maybe missing some info.
>
> $ pkg_info -M gnome-keyring
> Information for inst:gnome-keyring-2.24.1p3
>
> Install notice:
> The gnome-keyring SSH agent is disabled by default. If needed, there are
> two ways to enable it.
>
> System-wide:
>   sudo gconftool-2 --direct --config-source=`gconftool-2
> --get-default-source` \
> --type bool --set /apps/gnome-keyring/daemon-components/ssh true
>
> Per user:
>   gconftool-2 --set --type bool /apps/gnome-keyring/daemon-components/ssh
> true
>
>
> $
>
> I haven't /apps directory on the system.This directory is only in my
> home folder under ~/.gconf and
> I can't set path with '.' after '/'.
>
> Ekiga is not able to start then.
>
> Gconf key error
>
> Ekiga got an invalid value for the GConf key
> "/apps/ekiga/general/gconf_test_age".
>
> It probably means that your GConf schemas have not been correctly
> installed or the that permissions are not correct.
>
> Please check the FAQ (http://www.ekiga.org/), the troubleshooting
> section of the GConf site (http://www.gnome.org/projects/gconf/) or
> the mailing list archives for more information (http://mail.gnome.org)
> about this problem.
>
> I'm googling but still no point :-(
>
> --
> http://www.openbsd.org/lyrics.html

aucat's volume-sharing algorithm

[Nick Guenther]

I'm playing with the new aucat. Or rather, running it, since unlike
every other soundserver it doesn't require endless tweaking to just
work. There is one issue I'm having, and I'm not sure if it's on
purpose or not. Whenever (say) pidgin (or anything else) plays sound
my music dims in volume. It makes sense the clients have to be turned
down so two playing at 100% don't blow the speakers, but the trouble
is the dip in sound is -really obvious-.

I found
 -v volume
 Software volume attenuation of the playback stream.  The value
 must be between 1 and 127, corresponding to -42dB and -0dB atten-
 uation.  In server mode, clients inherit this parameter.  Reduc-
 ing the volume in advance reduces a client's dynamic range, but
 allows client volume to stay independent from the number of
 clients as long as their number is small enough.  A good compro-
 mise is to use -4dB attenuation (12 volume units) for each addi-
 tional client expected (115 if 2 clients are expected, 103 for 3
 clients, and so on).
which I interpret as saying that if I run aucat as "aucat -l -v 50" it
should predim the volume of any client that connects so that the dip
doesn't happen. If I'm right about that (which I'm not at all sure
that I am) then aucat is behaving badly because I even tried giving
"-v 1" and heard no change at all.


OpenBSD 4.5-current (GENERIC.MP) #80: Mon Apr 20 12:59:56 MDT 2009
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR
real mem  = 1064202240 (1014MB)
avail mem = 1020690432 (973MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 10/30/07, BIOS32 rev. 0 @
0xfcb25, SMBIOS rev. 2.4 @ 0xec000 (40 entries)
bios0: vendor TOSHIBA version "Version 1.50" date 10/30/2007
bios0: TOSHIBA PORTEGE R500
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP SSDT APIC MCFG HPET TCPA SLIC SSDT SSDT
acpi0: wakeup devices USB1(S3) USB3(S3) USB4(S3) EHCI(S3) GLAN(S4)
WLAN(S4) LID_(S4) PWRB(S4) HS87(S4) HS86(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 1
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 3 (PCIB)
acpiprt2 at acpi0: bus 1 (PEX1)
acpiprt3 at acpi0: bus 2 (MPEX)
acpitz0 at acpi0: critical temperature 102 degC
acpicpu0 at acpi0
acpicpu1 at acpi0
acpibtn0 at acpi0: LID_
acpibat0 at acpi0: BAT1 model "G71C00086210" serial 000796 type
Li-ION   oem "0"
acpibtn1 at acpi0: PWRB
acpiac0 at acpi0: AC unit offline
acpidock at acpi0 not configured
acpivideo at acpi0 not configured
bios0: ROM list: 0xc/0x1 0xe/0x1!
cpu0: unknown Enhanced SpeedStep CPU, msr 0x060b090e0600090e
cpu0: using only highest and lowest power states
cpu0: Enhanced SpeedStep 1200 MHz (924 mV): speeds: 1200, 800 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
extent `pciio' (0x0 - 0x), flags=0
 0xaf10 - 0xaf1f
 0xaf24 - 0xaf2f
 0xaf34 - 0xaf9f
 0xafe0 - 0xbfff
 0xcff8 - 0xcfff
extent `pcimem' (0x0 - 0x), flags=0
 0x0 - 0x9
 0xe - 0x3fff
 0xe000 - 0xefff
 0xfec0 - 0xfec17fff
 0xfec2 - 0xfec27fff
 0xfed0 - 0xfed003ff
 0xfed14000 - 0xfed19fff
 0xfed1c000 - 0xfed8
 0xfeda - 0xfedb
 0xfee0 - 0xfee00fff
 0xff60 - 0xff8f
 0xff98 - 0xffbf
 0xffc3b800 - 0x
pchb0 at pci0 dev 0 function 0 "Intel 82945GM Host" rev 0x03
vga1 at pci0 dev 2 function 0 "Intel 82945GM Video" rev 0x03
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
intagp0 at vga1
agp0 at intagp0: aperture at 0xe000, size 0x1000
inteldrm0 at vga1: apic 1 int 16 (irq 10)
drm0 at inteldrm0
"Intel 82945GM Video" rev 0x03 at pci0 dev 2 function 1 not configured
azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x02:
apic 1 int 22 (irq 11)
azalia0: codecs: Realtek ALC262
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x02
pci1 at ppb0 bus 1
extent `ppb0 pciio' (0x0 - 0x), flags=0
 0x0 - 0xafff
 0xbfe0 - 0x
extent `ppb0 pcimem' (0x0 - 0x), flags=0
 0x0 - 0xff7ff

Re: sudo won't work with login_fingerprint

[Nick Guenther]

On Fri, Apr 24, 2009 at 7:14 AM, LEVAI Daniel  wrote:
> On Friday 24 April 2009 12.27.50 you wrote:
>>
>> I followed the README too but it told me to add this:
>> #
>> # The fingerprint login class allows the fingerprint and passwd
>> # authentication methods and checks your 7th (right index) finger.
>> #
>>
>> fingerprint:
>> :auth=-fingerprint,passwd:\
>> :x-fingerprint=7:\
>> :tc=default:
>>
> I've done the same thing except I've added this to the default class, so I
> don't have to change the already made classes (which are
> including "auth-defaults").
>
>> and I had to do "sudo usermod -L fingerprint $USER" to get "su $USER"
>> to start asking me to swipe. Do we maybe have different versions (I
>> should probably shyly mention here that I'm on -CURRENT right now)?
> I'm using -current too, but in this case it doesn't matter; the login
classes
> we use are not the same, but that's all.
>
>> Why are we writing "-fingerprint" instead of "fingerprint"?
>> login.conf(8) is hazy on what this means. It doesn't seem to matter
>> espcially which is chosen.
> man login.conf:
> Local authentication styles may be added by creating a login script for
> the style (see below).  To prevent collisions with future official BSD
> Authentication style names, all local style names should start with a
> dash (-).
>
> ^^^ That is why the -fingerprint; also:
> # ls -l /usr/libexec/auth/
> [...]
> login_-fingerprint
> [...]

Ah. login_fingerprint is installed to two places. Under /usr/local/
it's "login_fingerprint", which is why I was confused.

>> I suspect my problem is a driver issue. I have a 1600 chip (as linux
>> tells me... dunno w
hy OpenBSD) but the driver is written for 1610
>> chips. Until I can at least use su with my finger I'm not sure I can
>> help you.
> What does `ls -lR /home/$USER/.fprint/` tells you? Do you have the proper
> scanned fingerprints there? Do you have the $USER in the fingerprint class
> (if you've followed the README file with login_fingerprint)?
>

The fingerprint files exist alright. The only thing I thought it might
be is that -CURRENT broke login_fingerprint somehow, but if you're
running the same code it must be the driver.
http://reactivated.net/fprint/wiki/Aes1610 sort of suggests that the
reader isn't great to begin with and if mine's a version off I
wouldn't be surprised it's b0rked.

-Nick

Re: sudo won't work with login_fingerprint

[Nick Guenther]

On Fri, Apr 24, 2009 at 3:38 AM, LEVAI Daniel  wrote:
> On Friday 24 April 2009 09.28.34 you wrote:
>> omg we have finger print reader support??? !
>>
>> I installed the port and I'm playing with it. Can you post your full
>> config? The login_fingerprint docs are short on the troubleshooting. I
>> can enroll my fingers and I've got su asking me for finger swipes but
>> whenever I do it says "invalid swipe" or "login incorrect".
> You need to enroll_fingerprint(8) as the target (root) user too, so root
will
> have a ~/.fprint directory too.

When I say "su" I actually meant I'm running "su $USER".

>> I see the same result as you with sudo. Annoying. Sudo must not be
>> feeding it correctly right, but perhaps login_fingerprint is expecting
>> wrongly.
>>
>> It would be a neat gimmick if we could get this working!
> I just followed /usr/local/share/doc/login_fingerprint/README:
> $ enroll_fingerprint -f 7
> It has populated a ~/.fprint/ dir with the scanned fingerprint, and after
the
> login.conf modify I could login on the console and do `su`. Only sudo seems
> to need the '-apasswd' option to force it to use the passwd auth type
instead
> of the -fingerprint type. But grepping thru sudo's source I couldn't find
> this error message anywhere :\
>
> My modifications in login.conf is only the following:
> --- /var/backups/etc_login.conf.backup  Thu Apr 16 16:06:00 2009
> +++ /etc/login.conf Thu Apr 23 17:15:23 2009
> @@ -23,7 +23,8 @@
>  #
>
>  # Default allowed authentication styles
> -auth-defaults:auth=passwd,skey:
> +auth-defaults:auth=-fingerprint,passwd,skey:\
> +   :x-fingerprint=7:
>
>  # Default allowed authentication styles for authentication type ftp
>  auth-ftp-defaults:auth-ftp=passwd:
>

I followed the README too but it told me to add this:
#
# The fingerprint login class allows the fingerprint and passwd
# authentication methods and checks your 7th (right index) finger.
#
fingerprint:
:auth=-fingerprint,passwd:\
:x-fingerprint=7:\
:tc=default:

and I had to do "sudo usermod -L fingerprint $USER" to get "su $USER"
to start asking me to swipe. Do we maybe have different versions (I
should probably shyly mention here that I'm on -CURRENT right now)?

Why are we writing "-fingerprint" instead of "fingerprint"?
login.conf(8) is hazy on what this means. It doesn't seem to matter
espcially which is chosen.

I suspect my problem is a driver issue. I have a 1600 chip (as linux
tells me... dunno why OpenBSD) but the driver is written for 1610
chips. Until I can at least use su with my finger I'm not sure I can
help you.

-Nick

Re: sudo won't work with login_fingerprint

[Nick Guenther]

omg we have finger print reader support??? !

I installed the port and I'm playing with it. Can you post your full
config? The login_fingerprint docs are short on the troubleshooting. I
can enroll my fingers and I've got su asking me for finger swipes but
whenever I do it says "invalid swipe" or "login incorrect".

I see the same result as you with sudo. Annoying. Sudo must not be
feeding it correctly right, but perhaps login_fingerprint is expecting
wrongly.

It would be a neat gimmick if we could get this working!

-Nick

On 23/04/2009, LEVAI Daniel  wrote:
> Hi!
>
> I've set up this login_fingerprint port and it is working fine in console
> logins and with `su`, but with sudo I can't seem to get it to work.
> I've modified my /etc/login.conf like this:
> # Default allowed authentication styles
> auth-defaults:auth=-fingerprint,passwd,skey:\
> :x-fingerprint=7:
>
> I've just added the fingerprint stuff. Now when running sudo, and typing in
> my
> password 3 times:
>
> $ sudo -l
> -fingerprint: challenge not supported
> sudo password(daniell):
> -fingerprint: response not supported
> Sorry, try again.
> -fingerprint: challenge not supported
> sudo password(daniell):
> -fingerprint: response not supported
> Sorry, try again.
> -fingerprint: challenge not supported
> sudo password(daniell):
> -fingerprint: response not supported
> Sorry, try again.
> sudo: 3 incorrect password attempts
>
> With `sudo -a` I can specify the "passwd" type, and can sudo with my
> password,
> so no big problem, I'm just wondering what special configuration is needed
> for sudo to work with this auth type.
>
> Any idead would be appreciated, thanks!
>
> Daniel
>
> --
> LIVAI Daniel
> PGP key ID = 0x4AC0A4B1
> Key fingerprint = D037 03B9 C12D D338 4412  2D83 1373 917A 4AC0 A4B1

Re: Unable to mount CD/DVD-RW drive in OpenBSD 4.4/i386.

[Nick Guenther]

That wouldn't give device not configured.

What does disklabel cd0 give?

On 23/04/2009, Mike Erdely  wrote:
> On Thu, Apr 23, 2009 at 12:13:06PM -0700, minsai0...@yahoo.com wrote:
>> /dev/cd0a /mnt/cdrom cd9660 ro,noauto 0 0
>
> Does /mnt/cdrom exist?

Too many partitions?l

[Nick Guenther]

I set up a dual booting OpenBSD/ubuntu (only for the audio, I swear!)
install. I made sure to have the Ubuntu installer make an ext2 data
partition for sharing. For some reason OpenBSd couldn't see the ext2
partition until I added it manually. I would like to know why.

Here's my fdisk:
$ fdisk sd0
Disk: sd0   geometry: 19457/255/63 [312581808 Sectors]
Offset: 0   Signature: 0xAA55
Starting Ending LBA Info:
 #: id  C   H   S -  C   H   S [   start:size ]
---
 0: 83  0   1   1 -   2431 254  63 [  63:39070017 ] Linux files*
 1: 05   2432   0   1 -   2674 254  63 [39070080: 3903795 ] Extended DOS
*2: A6   2675   0   1 -   5106 254  63 [42973875:39070080 ] OpenBSD
 3: 83   5107   0   1 -  19456 254  63 [82043955:   230532750 ] Linux files*
Offset: 39070080Signature: 0xAA55
Starting Ending LBA Info:
 #: id  C   H   S -  C   H   S [   start:size ]
---
 0: 82   2432   1   1 -   2674 254  63 [39070143: 3903732 ] Linux swap
 1: 00  0   0   0 -  0   0   0 [   0:   0 ] unused
 2: 00  0   0   0 -  0   0   0 [   0:   0 ] unused
 3: 00  0   0   0 -  0   0   0 [   0:   0 ] unused
$

and original disklabel:
$ disklabel sd0
# Extended partition 1: type 05 start 39070080 size 3903795
# /dev/rsd0c:
type: SCSI
disk: SCSI disk
label: TOSHIBA MK1637GS
flags:
bytes/sector: 512
sectors/track: 63
tracks/cylinder: 255
sectors/cylinder: 16065
cylinders: 19457
total sectors: 312581808
rpm: 3600
interleave: 1
trackskew: 0
cylinderskew: 0
headswitch: 0   # microseconds
track-to-track seek: 0  # microseconds
drivedata: 0

16 partitions:
#size   offset  fstype [fsize bsize  cpg]
  a:  1253070 42973875  4.2BSD   2048 163841
  b:  1253070 44226945swap
  c:3125818080  unused
  d:  2329425 45480015  4.2BSD   2048 163841
  e:  2329425 47809440  4.2BSD   2048 163841
  f:  8530515 50138865  4.2BSD   2048 163841
  g:  2104515 58669380  4.2BSD   2048 163841
  h:  5285385 60773895  4.2BSD   2048 163841
  i: 39070017   63  ext2fs
  j:  3180870 66059280  4.2BSD   2048 163841
  k:  3903732 39070143 unknown
  l:  4209030 69240150  4.2BSD   2048 163841
  m:  8594775 73449180  4.2BSD   2048 163841

I used the 'b' command to extend disklabel(8)'s idea of the OpenBSD
area, and then it let me add this:
  n:230532750 82043955  ext2fs


and dmesg for good measure:
OpenBSD 4.5-current (GENERIC.MP) #80: Mon Apr 20 12:59:56 MDT 2009
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR
real mem  = 1064202240 (1014MB)
avail mem = 1020690432 (973MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 10/30/07, BIOS32 rev. 0 @
0xfcb25, SMBIOS rev. 2.4 @ 0xec000 (40 entries)
bios0: vendor TOSHIBA version "Version 1.50" date 10/30/2007
bios0: TOSHIBA PORTEGE R500
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP SSDT APIC MCFG HPET TCPA SLIC SSDT SSDT
acpi0: wakeup devices USB1(S3) USB3(S3) USB4(S3) EHCI(S3) GLAN(S4)
WLAN(S4) LID_(S4) PWRB(S4) HS87(S4) HS86(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 133MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM)2 CPU U7600 @ 1.20GHz ("GenuineIntel" 686-class) 1.20 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 1
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 3 (PCIB)
acpiprt2 at acpi0: bus 1 (PEX1)
acpiprt3 at acpi0: bus 2 (MPEX)
acpitz0 at acpi0: critical temperature 102 degC
acpicpu0 at acpi0
acpicpu1 at acpi0
acpibtn0 at acpi0: LID_
acpibat0 at acpi0: BAT1 model "G71C00086210" serial 000796 type
Li-ION   oem "0"
acpibtn1 at acpi0: PWRB
acpiac0 at acpi0: AC unit online
acpidock at acpi0 not configured
acpivideo at acpi0 not configured
bios0: ROM list: 0xc/0x1 0xe/0x1!
cpu0: unknown Enhanced SpeedStep CPU, msr 0x060b090e0600090e
cpu0: using only highest and

gdmsetup hangs

[Nick Guenther]

I've installed the latest snapshot on my new laptop and have been
poking around at things. I installed gdm from packages (which
thankfully were all there, for gdm) and turned it on in rc.local. It
works great but I've noticed that if I turn on "Themed with Face
Chooser" in gdmsetup then if I try to run gdmsetup from the login
screen it hangs. It displays the gdmsetup screen but the widgets are
all greyed out and the mouse is forever a 'wait' symbol. I discovered
that running it from within a session or running it from a
"Plain"-themed gdm works fine, though.

Has anyone ever seen this before? It's not critical, I'm just curious
if this is a bug in gdm or a bug in my setup.

Thanks!
-Nick

Re: Slow SATA write speeds with SMB

[Nick Guenther]

Thank you!

On 20/04/2009, frantisek holop  wrote:
> hmm, on Mon, Apr 20, 2009 at 05:19:05PM -0500, Tony Abernethy said that
>> frantisek holop wrote:
>> > all hw is unrealible to some degree,
>> ... and all degrees of unreliability are equivalent?
>> Methinks some people like stuff that is LESS unreliable.
>> Even going so far as to make an OS that is LESS unreliable.
>
> not that i disagree, but sometimes, it is enough to be unreliable once.
>
> and reliable hw tends to make one sloppy and not think of
> worst case scenarios :]
>
> -f
> --
> want to forget all your troubles?  wear tight shoes.

Re: I need to mount in a normal account

[Nick Guenther]

2009/4/17 Juan Jimenez Galdos :
> Hi. Right now i have written "db   ALL=NOPASSWD:/sbin/mount /mnt/cd0,
> /sbin/umount /mnt/cd0", but it seems that isn't correct. What could i
write?
> I was typing the root password, so i have tried the user password and it
> works fine.
>
> THank you very much.
>
>

Show us the command you're running. You should get used to
copy-pasting the relevant bits from your terminal to here. Please, use
your head, you're making us fly blind here. WHY does that seem to not
be correct?

-Nick

Re: I need to mount in a normal account

[Nick Guenther]

On Thu, Apr 16, 2009 at 4:18 PM, Juan Jimenez Galdos
 wrote:
> Sorry, I pressed enter.
>
> I add to sudoers (cd0 is the directory in /mnt/):
> db ALL=/sbin/mount /cd0,/sbin/umount /cd0
>
> But when I try "mount /dev/cd0c /mnt/cd0" and i write the password it says
> "try again", and i have written the password correctly. I am trying to do
> the same without password:
>
> db ALL=NOPASSWD:/sbin/mount /cd0,/sbin/umount /cd0
>
> But something is wrong, and it says "password:".


..are you sure? You've said here that db can run mount /cd0, not mount
/mnt/cd0

If you want help here you should (generally) make an effort to collect
and post as much information as possible. What command are you typing
that is making it say "password:"?

> Thank you very much.

NFS clarifications

[Nick Guenther]

(Sorry, I know nfs is boring.)

The linux nfs(5) manpage says"
 NB:  A  so-called  "soft"  timeout can cause silent data
  corruption in certain  cases.  As  such,  use  the  soft
  option only when client responsiveness is more important
  than data integrity.  Using NFS over TCP  or  increasing
  the value of the retrans option may mitigate some of the
  risks of using the soft option.

Which mount_nfs(8) says nothing about. I don't see how a soft mount
could cause data corruption, unless you're using a buggy program that
doesn't handle error'd reads and writes properly, and this

seems to confirm that, but before I commit to using it can someone
tell me if there is a fundamental difference in Linux's implementation
or if they are just raising red flags and not remembering why?

Also, what is the difference between mount_nfs -i and mount_nfs -s?
Are the the same except that the first makes nfs return an error only
when I hit ctrl-c (or otherwise sent an interrupt) and the latter
makes nfs return an error whenever it times out? It seems like if you
want to kill a program you should always be able to kill it so I
suspect I'm misinterpreting -i.

Thanks!
-Nick

Re: Intel 5100AGN in 4.5?

[Nick Guenther]

On Tue, Apr 14, 2009 at 3:02 AM,   wrote:
> OpenBSD 4.5 Release has support for Intel WiFi Link 5000 Series
> adapters.  See http://www.openbsd.org/45.html
>

D'oh, that was the one place I didn't think to look. Thanks.

-Nick

Intel 5100AGN in 4.5?

[Nick Guenther]

I'm considering getting one of the new ruggedized Thinkpad or HP
laptops, but it seems like they all come with an Intel 5100AGN.
http://marc.info/?l=openbsd-misc&m=123606425822588&w=2 claims iwn(4)
supports it "in -current" but I'm stupid with CVS and can't figure out
when 4.4-CURRENT because 4.5-RELEASE. Can anyone tell me? Or better
yet, tell me if there's a way to figure these things out in cvsweb?

Thanks
-Nick

Re: European orders - Thank you Theo and your team, some of us appreciate you!

[Nick Guenther]

Because, you know, blind faith has such a solid track record and reputation.

On 31/03/2009, David Schulz  wrote:
> For me, i cant even estimate the time and effort that goes into all the
> related work and issues for OpenBSD, and thus am more than thankful. OpenBSD
> sits in every important Corner for two Businesses i am involved in, I could
> not live without it. I purchase each CD that comes out, have all the
> Posters,
> Shirts and Stickers there are, and will continue to get all the new Stuff
> there is. Whatever Problem there is right now, while i think its a bad Idea
> to just spread all this in public, ill just blindly take Theo's Side without
> a doubt. Hopefully OpenBSD, the Project, can navigate this stormy Season
> without harm and continue to be the best OS there is.
>
> On Tue, Mar 31, 2009 at 12:30:06PM +1100, William Chivers wrote:
>> Hello,
>>
>> Thank you Theo and your team of developers for OpenBSD.
>>
>> Some people responding to the "European Orders" thread seem to have lost
>> sight of what OpenBSD is and who develops it. I am a bit of a newbie here
>> (although I have been using computers in my career since 1972), but it
>> seems to me that OpenBSD is developed by people who donate their own time
>> and expertise to the project. Theo draws an  income but few others do.
>> OpenBSD is given away freely because of the good grace of Theo and the
>> team. If you choose to pay for CDs then this is a donation, is it not? If
>> you do not want to donate, Theo allows you to download for free.
>>
>> Who are these people who think that they can question the motivation,
>> honesty and accounting procedures of the OpenBSD team who give people free
>> access to their project? Here we have a team of people donating their own
>> time to make this fantastic OS available for free and people think they
>> have the right to flame them? Because they donated $50? Give us all a
>> break...
>>
>> Have you heard the proverb about not biting the hand that feeds you? Theo
>> and his team give this OS to us because they choose to do so, not because
>> they have to. They do not have to give it away. Do you have any idea of
>> the salary Theo and the other developers could command at Microsoft,
>> Intel, IBM, Sun, HP, ... God forbid.
>>
>> I am an academic who also runs a consultancy. I intend to start making
>> heavy use of OpenBSD in my teaching and consultancy over the next year or
>> two, not sooner because of various unrelated reasons. Theo, when I make my
>> first dollar using OpenBSD your project will get a percentage, and the
>> same for as long as I use it, and what you choose to do with the money is
>> your business. You can use it to buy food, shelter and even mountain bikes
>> if you wish!
>>
>> As I said, I am new to OpenBSD and my first purchase will be the 4.5 CDs.
>> Go to town, Theo, the $50 is all yours.
>>
>> Please keep doing what you are doing! Many of us appreciate you and what
>> your team do for us.
>>
>> Bill Chivers
>>
>> -
>> William J. Chivers
>> Lecturer in Information Technology
>> School of DCIT
>> Faculty of Science and Information Technology
>> University of Newcastle---Ourimbah Campus
>> PO Box 127, Ourimbah, NSW 2259
>> Australia
>> CRICOS Provider Number: 00109J
>>
>> phone:   +61 2 4349 4473
>> fax: +61 2 4349 4565
>> email:  william.chiv...@newcastle.edu.au

Re: screen(1) on boot

[Nick Guenther]

I ran it for a while but it's too barebones for me. IIRC, It doesn't
let me monitor torrent-packets and peers and all the other niceties
the usual torrent clients have. Especially, it doesn't support
encryption.

On 08/04/2009, Abel Camarillo  wrote:
> On Wed, Apr 08, 2009 at 04:58:38PM -0400, Nick Guenther wrote:
>> I'm trying to make my torrents get started with my server. A script is
>> at http://ubuntuforums.org/archive/index.php/t-859543.html that starts
>> it up in a detached screen session, but obviously the linux-ism of
>> that script won't work here. I pulled out the important bits and just
>> to start off wrote this script which I placed in ~/bin/scr:
>> #!/bin/sh
>> TAG=TAG=`date +%H%M%S`
>> sudo -u kousu -H /usr/local/bin/screen -d -m -S $TAG
>>
>> If I run this script as myself or as root (to simulate running as
>> /etc/rc) it works:
>> $ sh bin/scr
>> $ screen -ls
>> There is a screen on:
>> 21423.152001(Detached)
>> 1 Socket in /tmp/uscreens/S-kousu.
>>
>> $ sudo su
>> # cd /
>> # sh /home/kousu/bin/scr
>> # ^D
>> $ screen -ls
>> There are screens on:
>> 21423.152001(Detached)
>> 22840.152333(Detached)
>> 2 Sockets in /tmp/uscreens/S-kousu.
>>
>> $
>>
>> So I added this to rc.local:
>> sh /home/kousu/bin/scr
>>
>> But whenever I reboot I get this:
>> $ screen -ls
>> There is a screen on:
>> 12042.151112(Dead ???)
>> Remove dead screens with 'screen -wipe'.
>> 1 Socket in /tmp/uscreens/S-kousu.
>>
>> I tried moving the "sh /home/kousu/bin/scr" to the very last line of
>> /etc/rc just in case, right before "exit 0" but still no luck.
>>
>> I took a look at all the environment variables in the working and
>> broken cases and even copied all except the SUDO_* and SSH_* into my
>> script and got no difference, so the only remaining difference between
>> when I run it as a logged in user and when the system runs it for me
>> is that /etc/rc gets run under the the login class 'daemon'. But even
>> that seems wrong since I just added a test user with login class
>> 'daemon', su'd in, and ran my script and when I came back to my user
>> account had a shiny new screen session waiting for me.
>>
>> My only remaining theory is that getty(8) or login(1) is resetting the
>> terminals which might make screen(1) sad, but I have no idea how to
>> get error messages out of screen at boot time.
>>
>> Interestingly, running rtorrent from my crontab as "@reboot screen -fa
>> -d -m -S torrents rtorrent" (thanks
>> http://www.plouj.com/blog/2008/03/31/howto-run-rtorrent-from-cron-inside-screen)
>> works and is simpler than having to sudo -u and give full paths for
>> everything so I'll just stick with that.
>>
>> I'd still like to know what's going on here. Running things from boot
>> scripts appearently works on Linux, and a guy I asked last night
>> seemed to think my method should work on FreeBSD, so what is OpenBSD
>> doing that's upsetting screen?
>>
>> Thanks for your attention,
>> -Nick
>>
>
> Why don't you use btpd (it's in ports).
>
> http://www.murmeldjur.se/btpd/
>
> I use it to make exactly what you mean (and then btcli to monitor from
> time to time).

Re: screen(1) on boot

[Nick Guenther]

Yeah, it's there, that's why I said "I don't have to bother with sudo
-u" to switch from root to my user.

I still want to know what's killing screen.

Thanks,
-Nick

On 08/04/2009, Mike Erdely  wrote:
> On Wed, Apr 08, 2009 at 04:58:38PM -0400, Nick Guenther wrote:
>> I'm trying to make my torrents get started with my server. A script is
>> at http://ubuntuforums.org/archive/index.php/t-859543.html that starts
>> it up in a detached screen session, but obviously the linux-ism of
>> that script won't work here. I pulled out the important bits and just
>> to start off wrote this script which I placed in ~/bin/scr:
>> #!/bin/sh
>> TAG=TAG=`date +%H%M%S`
>> sudo -u kousu -H /usr/local/bin/screen -d -m -S $TAG
>>
>> If I run this script as myself or as root (to simulate running as
>> /etc/rc) it works:
>> $ sh bin/scr
>> $ screen -ls
>> There is a screen on:
>> 21423.152001(Detached)
>> 1 Socket in /tmp/uscreens/S-kousu.
>
> Try the @reboot entry in your personal crontab.
> That's how I get my tmux session going.
>
> And switch to tmux, it's better. :)
>
> -ME

screen(1) on boot

[Nick Guenther]

I'm trying to make my torrents get started with my server. A script is
at http://ubuntuforums.org/archive/index.php/t-859543.html that starts
it up in a detached screen session, but obviously the linux-ism of
that script won't work here. I pulled out the important bits and just
to start off wrote this script which I placed in ~/bin/scr:
#!/bin/sh
TAG=TAG=`date +%H%M%S`
sudo -u kousu -H /usr/local/bin/screen -d -m -S $TAG

If I run this script as myself or as root (to simulate running as
/etc/rc) it works:
$ sh bin/scr
$ screen -ls
There is a screen on:
21423.152001(Detached)
1 Socket in /tmp/uscreens/S-kousu.

$ sudo su
# cd /
# sh /home/kousu/bin/scr
# ^D
$ screen -ls
There are screens on:
21423.152001(Detached)
22840.152333(Detached)
2 Sockets in /tmp/uscreens/S-kousu.

$

So I added this to rc.local:
sh /home/kousu/bin/scr

But whenever I reboot I get this:
$ screen -ls
There is a screen on:
12042.151112(Dead ???)
Remove dead screens with 'screen -wipe'.
1 Socket in /tmp/uscreens/S-kousu.

I tried moving the "sh /home/kousu/bin/scr" to the very last line of
/etc/rc just in case, right before "exit 0" but still no luck.

I took a look at all the environment variables in the working and
broken cases and even copied all except the SUDO_* and SSH_* into my
script and got no difference, so the only remaining difference between
when I run it as a logged in user and when the system runs it for me
is that /etc/rc gets run under the the login class 'daemon'. But even
that seems wrong since I just added a test user with login class
'daemon', su'd in, and ran my script and when I came back to my user
account had a shiny new screen session waiting for me.

My only remaining theory is that getty(8) or login(1) is resetting the
terminals which might make screen(1) sad, but I have no idea how to
get error messages out of screen at boot time.

Interestingly, running rtorrent from my crontab as "@reboot screen -fa
-d -m -S torrents rtorrent" (thanks
http://www.plouj.com/blog/2008/03/31/howto-run-rtorrent-from-cron-inside-screen)
works and is simpler than having to sudo -u and give full paths for
everything so I'll just stick with that.

I'd still like to know what's going on here. Running things from boot
scripts appearently works on Linux, and a guy I asked last night
seemed to think my method should work on FreeBSD, so what is OpenBSD
doing that's upsetting screen?

Thanks for your attention,
-Nick

Re: Can you subscribe to the PF mailing list? I can't

[Nick Guenther]

On Wed, Apr 8, 2009 at 12:31 PM, Bryan Irvine  wrote:
> The problem is that you can't use the pf mailing list from gmail.
>
> -Bryan


Because people who use gmail aren't smart enough for PF? Because it's
a free webmail provider and so a source of spam?

-Nick

Re: European orders

[Nick Guenther]

On Wed, Apr 8, 2009 at 12:24 PM, Lazarus Wasbeim
 wrote:
>
> What has been posted from the acqusing part is full of lies.
> It's a pity you can not read it.
> Tiny little lies are used to makemuch bigger half-truth
> look more plausible. Add to that a horde of screaming
> masses and what do you get? Propaganda.
> Can a sane person use propaganda as a basis for theirs opinion about
> and relationship with others? No. I would say No.
>
>  > But luckily there is the greate and awesome OpenBSD project that
>> > keeps these "people" occupied and away from the rest of the intarwebbs.
>> > Let us all pray for it and pitch a buck so that it continues to protect
>> > the all evil and hostile intarwebb from these so called individuals.
>>
>> are you directly involved? do you know all the details?
>
>
> Surely I know something You perhaps don't.
> More importantly I can see where the lies are.

And where are the lies? For those of us uninitiated in whatever you
are, cite your science please.
-Nick

Re: I can't mount HDDs

[Nick Guenther]

On Tue, Apr 7, 2009 at 4:33 PM, Jose P.G  wrote:
> I swear that i am not a troll. I don't understand anything, LOL, why have to
> be a troll? My questions are REAL, i haven't read the faq carefully, i only
> seek for help (more fast, i think).
>
> REALLY, i don't understand, when i was learning about Linux Debian i was
> doing the same questions (though Linux is more easy for beginners), why this
> mailing list is different? I repeat, i don't understand why i have to be a
> troll.
>
> "Thank you".
>
>

Because in OpenBSD-land people who can't do their own research are not
received well. Linux is newbie-friendly because they're intent on
beating Microsoft. OpenBSD is intent on making strong, stable systems.
OpenBSD could be easier but I'd take cleanliness over Linux's "wheee
let's make BUGFIXES [without regard to the logical integrity of the
system]" most days.

By asking these questions you are wasting the computer bandwidth of
the mailing list and every system that talks to it, and the mind
bandwidth of the humans who have to filter it out. I already filter
(manually) most of the mail from misc@ because it's not relevant to me
and still misc@ overwhelms me. You can hopefully imagine that in this
situation handholding is something we all begrudge.

Seriously, start at afterboot(8) (this notation means run `man 8
afterboot`), read it all the way through and follow the pointers it
gives you. Once you're bored with that go the the FAQ and read that.
And then just watch misc@, and whenever anyone mentions a device (e.g.
wd(4) or ath(4)) look it up in the manpages (if you're not on an
OpenBSD system at the time there's
http://www.openbsd.org/cgi-bin/man.cgi).

We all go through this, it hurts, it makes us better. Do you want to be better?

-Nick

p.s. if you learned debian without learning what mount(8) is you
couldn't have learned it at all

Re: REQUEST OF INFORMATION

[Nick Guenther]

On Tue, Apr 7, 2009 at 4:25 PM, job2international
 wrote:
> Hello.
> Job2international is an association that helps students to find a
work-placement. Our students generally have a good command of English -- and
we have also have students who have mastered two additional languages.
Job2international pre-interviews all of the students, and then selects only
those students who speak languages besides French, in order to provide real
help to the company that will eventually welcome them.
>
> These work-placements -- for companies that agree to involve our students in
a practicum-style work arrangement -- might include such tasks as doing
canvassing, research, or telephone polls, developing the company, looking for
new clients, increasing product turnover, doing an e-mailing campaign or
developing a strategy to get more clients.

Has the world always been about blatantly exploiting the weak and
impoverished or is that a new development?

Re: shell history and page-up

[Nick Guenther]

On Mon, Apr 6, 2009 at 8:10 PM, Chris  wrote:
> On Tue, Apr 7, 2009 at 10:04 AM, Nick Guenther  wrote:
>> On Mon, Apr 6, 2009 at 7:54 PM, Chris  wrote:
>>> On Mon, Apr 6, 2009 at 6:13 PM, J.C. Roberts  
>>> wrote:
>>>> If you are using ksh, and the above keys/key-combos do not work, then
>>>> you have screwed around with the default ksh settings, or you are using
>>>> a garbage terminal emulator that is screwing with the key-bindings.
>>>
>>> The problem was with "export EDITOR=vi" in ~/.profile. I removed it
>>> and all good now.
>>>
>>
>> ..huh? How?
>
> Not sure how but if I put "export EDITOR=vi" or "export
> EDITOR=/usr/bin/vi" in .profile, page-up (or page-down) don't work
> anymore.
>

And you really do mean page-up right? Not arrow-up?

I just tried and you're right. The ksh manpage says:
 VISUAL If set, this parameter controls the command-line editing mode
for interactive shells.  If the last component of the path
specified in this parameter contains the string ``vi'',
``emacs'', or ``gmacs'', the vi, emacs, or gmacs (Gosling
emacs) editing mode is enabled, respectively.  See also the
EDITOR parameter, above.

-Nick

Re: shell history and page-up

[Nick Guenther]

On Mon, Apr 6, 2009 at 7:54 PM, Chris  wrote:
> On Mon, Apr 6, 2009 at 6:13 PM, J.C. Roberts  wrote:
>> If you are using ksh, and the above keys/key-combos do not work, then
>> you have screwed around with the default ksh settings, or you are using
>> a garbage terminal emulator that is screwing with the key-bindings.
>
> The problem was with "export EDITOR=vi" in ~/.profile. I removed it
> and all good now.
>

..huh? How?

Re: I can't connect to Internet

[Nick Guenther]

On Mon, Apr 6, 2009 at 5:06 PM, Jose P.G  wrote:
> Wow... i never expected so many responses... i still have problems, and *this
> time i have written it correct* for sure: "export pkg_path=
> ftp://ftp.openbsd.org/pub/OpenBSD/4.4/packages/i386/";. This time is written
> well, i still don't know where the problem is.
>
> Thank you very much, i see that i am being helped by many people at once.
>
>

successful troll is successful

Re: hello whiners and crybabies

[Nick Guenther]

On Fri, Apr 3, 2009 at 12:24 PM, kytoon  wrote:
> hello whiners and crybabies,
>
> you people make me sick. theo has a right to run obsd anyway he wants. why?
> he runs the project! don't like that? start coding. because that's the only
> thing that matters. you know, like you got anything going on in there? oh,
> that's right. you don't, and you can't code. you can only whine and cry, and
> take up theo's and the developer's valuable time. screw you punks. that's
> right! you are punks. you don't even understand what he and the developers
> do. you think they do this for you? screw you. they do it because they like
> clean and efficient code. you know, code that works. they do it for
> themselves! you cry because they don't cave in and sign some nda to
> implement a poorly coded wireless device. these guys rule the world of
> operating systems! hey! and they _GIVE_ you a chance to tag along. THEY GIVE
> YOU THE CODE! they produce! every six months, obsd gets better and better.
> you bunch of whining crying punks! you should be giving theo all the money
> he needs to make obsd even better! so, shut up and show the developers what
> you got, if you got anything at all, other than the dribble of a paralyzed
> brain.
>
> with love to theo and the developers
>
>

Hello fanb{oy,aby}.

Re: dvd-rw as user?

[Nick Guenther]

On Thu, Apr 2, 2009 at 3:06 AM, J.C. Roberts 
wrote:
> On Wed, 1 Apr 2009 21:24:16 -0400 Nick Guenther 
> wrote:
>
>> On Wed, Apr 1, 2009 at 10:48 AM, J.C. Roberts
>>  wrote:
>> > On Wed, 1 Apr 2009 04:46:10 + Jacob Meuser
>> >  wrote:
>> >
>> >> On Tue, Mar 31, 2009 at 07:13:33PM -0700, OpenBSD wrote:
>> >> > Hello
>> >> >
>> >> > Could somebody please tell me how to use a dvd-rw as user?
>> >> > I'am trying to install Slackware using qemu, and the dvd does not
>> >> > work properly, it works well as root. I've tried adding the user
>> >> > to operator group, users group, and declaring it at fstab without
>> >> > optimum results.
>> >>
>> >> by default root can read and write /dev/rcd0c.  operator group can
>> >> only read.
>> >>
>> >> you need to be able to write to /dev/rcd0c to put a filesystem on
>> >> a cd/dvd.
>> >>
>> >> you can change the permissions on /dev/rcd0c or use sudo.
>> >
>> > Using sudo is a great way to handle this situation, but this depends
>> > on how much you trust the user, and whether or not you can properly
>> > configure /etc/sudoers with visudo.
>> >
>> > NOTE: Jake only said "change the permissions" but he did not say to
>> > change them permanently on disk. Of course, changing permissions
>> > permanently on disk is an option, but in many situations it is not
>> > the best option.
>> >
>> > If as root you fumble-finger the chown/chmod command on your
>> > devices, stuff a user into the wrong group, or don't fully
>> > understand all the esoteric issues involved in device permissions,
>> > you could easily be in a world of hurt.
>> >
>> > If you really want to go the route of changing permissions on a
>> > workstation, the best way to do it is using the existing features
>> > available /etc/fbtab to change permissions on devices automatically
>> > and temporarily at user login and logout. See man fbtab for details.
>> >
>> > This exact situation of an unprivileged local user needing access to
>> > devices is the reason why fbtab exists.
>> >
>>
>> Reading fbtab(5), it seems that it changes the device permissions
>> whenever any matching user logs in. So what happens if two users log
>> in (say, one on the first virtual term, one on the second)? Does the
>> second get control of all the devices and the first is just out of
>> luck?
>
> It depends on how you configure things. It's just a chmod, so you could
> set the permissions however you want (owner/group/everyone). At times
> you would *want* the other guy to be out of luck.
>
> The tty(4) used to login, is the trigger for fbtab to the change the
> permissions. If you look at your /etc/fbtab file, you'll find you're
> already using it.
>
> If you log into the first virtual terminal (i.e. the default), you're
> on /dev/ttyC0. If you log into the second virtual terminal, you're
> on /dev/ttyC1, and so on. Though they are called "Virtual Terminals"
> and you've got a number of them, they are, in essence, device files
> associated with "hardware terminal ports." Yes, the names, hardware
> versus virtual, do seem a bit contradictory until you read `man 4 tty`
> and think about it.

When I get back to my BSD box I'll have to remember to see who owns
what if I login as one user on ttyC0 and a different one on ttyC1.

> The Virtual Terminals (normally) all use the same single of user
> interface equipment (keyboard, mouse, ...), but the equipment is only
> tied to one virtual terminal at a time. Yep, by switching virtual
> terminals, you're basically reassigning control of the equipment from
> one hardware terminal port to another.
>
> You might be doing something highly improbable, namely you are
> successfully running a "Hydra System" (i.e. multiple keyboards, mice,
> monitors, ... all connected to one system) -- If you've got that
> working, please tell me how. (; -- In this case you could have two
> different people logged in *locally* via UI equipment. Sadly, I do not
> recall how tty(4)'s and/or virtual terminals are assigned on a hydra
> system. I'm fairly certain it still involves the typicall TTY
> "dial-in" port waiting for a connection/login (via getty), but I do not
> recall (and can't find) the details on how the hardware gets assigned.
>
> In contrast, if you log in remotely via ssh, you use a "

Re: shell history and page-up

[Nick Guenther]

On Thu, Apr 2, 2009 at 12:58 AM, Chris  wrote:
> On Thu, Apr 2, 2009 at 3:55 PM, Nick Guenther  wrote:
>> On Thu, Apr 2, 2009 at 12:52 AM, Chris  wrote:
>>> On Thu, Apr 2, 2009 at 3:46 PM, Nick Guenther  wrote:
>>>> On Thu, Apr 2, 2009 at 12:37 AM, Chris  wrote:
>>>>> I am trying to get the shell history with page-up but looks like it's
>>>>> not working. I'm running -current with the default ksh and added
>>>>> HISTSIZE=50 and export HISTSIZE to ~/.profile.
>>>>>
>>>>> Does anyone know how to get it?
>>>>
>>>> I've never seen it not work. Does it work for you on -RELEASE? Does it
>>>> work if you don't set HISTSIZE at all?
>>>
>>> No, it doesn't work either way. Maybe I should mention that it's only
>>> a test machine so I didn't create a swap partition (it has only one 6
>>> GB / partition) - could this be the reason why?
>>>
>>> Thanks.
>>
>>
>> I doubt it but I don't know the code off by heart. A more likely
>> reason is your terminal settings, what's $TERM?
>
> You are right: it's something to do with the $TERM environment
> variable. I ssh to the box from inside GNU screen so $TERM shows
> screen; OTOH, if I log on to the box directly, $TERM shows vt220.
>
> Should I export term vt220 in .profile?
>

Oh you're using screen? Does the problem show up when you don't use screen?

Re: shell history and page-up

[Nick Guenther]

On Thu, Apr 2, 2009 at 12:52 AM, Chris  wrote:
> On Thu, Apr 2, 2009 at 3:46 PM, Nick Guenther  wrote:
>> On Thu, Apr 2, 2009 at 12:37 AM, Chris  wrote:
>>> I am trying to get the shell history with page-up but looks like it's
>>> not working. I'm running -current with the default ksh and added
>>> HISTSIZE=50 and export HISTSIZE to ~/.profile.
>>>
>>> Does anyone know how to get it?
>>
>> I've never seen it not work. Does it work for you on -RELEASE? Does it
>> work if you don't set HISTSIZE at all?
>
> No, it doesn't work either way. Maybe I should mention that it's only
> a test machine so I didn't create a swap partition (it has only one 6
> GB / partition) - could this be the reason why?
>
> Thanks.


I doubt it but I don't know the code off by heart. A more likely
reason is your terminal settings, what's $TERM?

-Nick

Re: shell history and page-up

[Nick Guenther]

On Thu, Apr 2, 2009 at 12:37 AM, Chris  wrote:
> I am trying to get the shell history with page-up but looks like it's
> not working. I'm running -current with the default ksh and added
> HISTSIZE=50 and export HISTSIZE to ~/.profile.
>
> Does anyone know how to get it?

I've never seen it not work. Does it work for you on -RELEASE? Does it
work if you don't set HISTSIZE at all?

-Nick

Re: dvd-rw as user?

[Nick Guenther]

On Wed, Apr 1, 2009 at 10:48 AM, J.C. Roberts 
wrote:
> On Wed, 1 Apr 2009 04:46:10 + Jacob Meuser
>  wrote:
>
>> On Tue, Mar 31, 2009 at 07:13:33PM -0700, OpenBSD wrote:
>> > Hello
>> >
>> > Could somebody please tell me how to use a dvd-rw as user?
>> > I'am trying to install Slackware using qemu, and the dvd does not
>> > work properly, it works well as root. I've tried adding the user to
>> > operator group, users group, and declaring it at fstab without
>> > optimum results.
>>
>> by default root can read and write /dev/rcd0c.  operator group can
>> only read.
>>
>> you need to be able to write to /dev/rcd0c to put a filesystem on
>> a cd/dvd.
>>
>> you can change the permissions on /dev/rcd0c or use sudo.
>
> Using sudo is a great way to handle this situation, but this depends
> on how much you trust the user, and whether or not you can properly
> configure /etc/sudoers with visudo.
>
> NOTE: Jake only said "change the permissions" but he did not say to
> change them permanently on disk. Of course, changing permissions
> permanently on disk is an option, but in many situations it is not
> the best option.
>
> If as root you fumble-finger the chown/chmod command on your devices,
> stuff a user into the wrong group, or don't fully understand all the
> esoteric issues involved in device permissions, you could easily be
> in a world of hurt.
>
> If you really want to go the route of changing permissions on a
> workstation, the best way to do it is using the existing features
> available /etc/fbtab to change permissions on devices automatically
> and temporarily at user login and logout. See man fbtab for details.
>
> This exact situation of an unprivileged local user needing access to
> devices is the reason why fbtab exists.
>

Reading fbtab(5), it seems that it changes the device permissions
whenever any matching user logs in. So what happens if two users log
in (say, one on the first virtual term, one on the second)? Does the
second get control of all the devices and the first is just out of
luck? It seems a lot simpler to just chmod g+w on any devices you find
you need and make sure you're in the operator group (though don't
chmod g+w /dev/*, I did that once and things broke very badly I seem
to recall, though I don't remember details since I was more like
"shitshitfixfix").

What's the risk in doing it this way? The only thing I can see is that
if someone breaks into your account they can burn CDs remotely (or
overwrite any unmounted partitions) while you're not logged in which
is obviously so much more dangerous than someone breaking into your
account while you are logged in.

-Nick

Re: fdisk -- difference between 'update' and 'write'

[Nick Guenther]

So then does 'fdisk -u' also install a disklabel [to sector 0 of the
disk]? That surprises me, I'd think that disklabel would be for that,
and the man pages don't explain what is going on.

-Nick

On 26/03/2009, Brynet  wrote:
> Jesus(?) wrote:
>> The question is: What's the mainly difference between 'update' and 'write'
>> on fdisk program?
>
> The 'update' command, or.. the -u option.. updates the
> MBR(/usr/mdec/mbr) boot program without changing the partition table.
> The 'write' command commits the partition table to disk.
>
> You may want to read fdisk(8) again.
>
> -Brynet

Re: Browsers was: Re: firefox starts two times

[Nick Guenther]

Thank you! And there's way more video sites than just youtube, and not
all of them are as rip-happy as it.

But flash support is only a small part of browsers and not really the point.

-Nick

On 23/03/2009, Jacob Meuser  wrote:
> On Mon, Mar 23, 2009 at 03:39:41PM -0700, patrick keshishian wrote:
>> On Mon, Mar 23, 2009 at 1:35 PM, Nick Guenther  wrote:
>> > Also, youtube matters. This is going to get me flamed but a lot of
>> > worthwhile content is in form of video now and not making that work
>> > disenfranchises yourself.
>>
>> There are methods of fetching just the video off youtube if that's all
>> you want. I think I've even seen at least two scripts in ports that
>> just do that (www/youtube-dl is one and the other I can't recall its
>> names off top of my head). I don't know how well they work; never used
>> them myself.
>
> isn't that sorta like using ftp(1) to get JPEGs from sites you're
> browsing with lynx(1)?
>
>> I agree with you on valuable/informative/entertaining content on youtube.
>>
>> Flash is open now, their specification docs were released. If it is
>> important for folks, a truly open, reliable and secure versions
>> should/could be implemented.
>
> I only got feedback from one person about swfdec update/sndio backend
> addition.
>
> --
> jake...@sdf.lonestar.org
> SDF Public Access UNIX System - http://sdf.lonestar.org

Browsers was: Re: firefox starts two times

[Nick Guenther]

I am no fan of firefox at all. I wish day and night it would work
without sucking so hard all the time. But tweak headers? Random
metacruft? That's feature creep too, just from a programmer's
perspective -- which is even worse if you want people to take it up
and use it and thus work out the bugs you missed.

What don't you like about lynx, w3m, links, links+, dillo, konqueror,
galeon, midori, or epiphany? If you're no fan on javascript then the
incompleteness of most of these browsers shouldn't bother you.
Personally I think that webkit is promising, even if epiphany+webkit
did segfault on me and doesn't have an OpenBSD package. With webkit it
*should* be possible to rapidly design any UI you want.

Also, youtube matters. This is going to get me flamed but a lot of
worthwhile content is in form of video now and not making that work
disenfranchises yourself.

-Nick

On 23/03/2009, Ingo Schwarze  wrote:
> Hi Chris,
>
> very probably, you are not describing a bug, but the following feature.
>
> Chris wrote on Mon, Mar 23, 2009 at 02:15:10PM +1100:
>
>> When I start firefox (3.0.6) from the xterm shell, I get two firefox
>> starting at the same time.
>
> Very probably, you are not getting two firefox processes,
> but one firefox process managing two windows.
> To check this, run
>
>  $ ps ax | grep firefox-bin
>
>> If I close one of them (by doing File - Exit),
>
> By chance, i still have the somewhat oldish firefox 3.0.6 installed
> on a 4.5-current i386 box.  Here, the file menu doesn't contain
> an "Exit" menu entry.
>
>> it closes both of them.
>
> When i do "File - Quit", i get a popup window
>
>  "Do you want Firefox to save your tabs and windows
>   for the next time it starts?
>
>   [Checkbox] Do not ask next time
>
>   Button: Quit
>   Button: Cancel
>   Button: Save and Quit"
>
> Maybe you checked the checkbox and clicked "Save and Quit"?
> When doing that, i can reproduce the behaviour you describe.
>
>> I have the same behavior from two
>> different window managers: awesome and scrotwm.
>
> Probably, what you describe has nothing to do with the
> operating system or the window manger, but with firefox itself.
>
> You can go to "Edit - Preferences - Main - Startup"
> and select "When Firefox starts, Show my home page".
> Actually, you wouldn't believe it from what the dialogue
> texts in the browser say: But that will revert *exactly*
> the effect of checking the box "Do not ask next time".
> I checked this by diffing the prefs.js file before and after.
>
> If you want to keep the behaviour of restoring tabs and windows
> on startup but just want to use only one window in the future,
> just click "File - Close" in one of your two windows.
>
>
> Now don't get me started on firefox.  It has turned so damn
> MS-Windows-ish:  Creeping featurism wherever you look, features
> hidden so well and in so much layers that you simply do not find
> most of them even when you actively search for them, almost
> nothing documented, incomprehensible names of features,
> unintellegible correspondance between UI texts and configuration
> option names, unsecure to insane defaults and bloat, bloat, bloat...
>
> All the same, things you really need are not available, or you
> need obscure plugins to achieve them.
>
>
> So if anybody is going to write a browser that i would like,
> i would probably contribute funding to allow several months of full
> time work.  Yes, i know that a few months will hardly suffice.
>
> I would like the following:
>  * Monolithic, fast, small and readable code; no plugins.
>  * Secure, good privacy, high speed by default, and
>no way to move the global default settings away from that.
>  * No useless knobs.  No drop-down menus.  No icon toolbars.
>  * Do not bother about non-POSIX operating systems, i.e. assume that
>POSIX external utilities and C library calls are available.
>  * Strict principle of not more than one HTTP request per click or ENTER.
>  * No data ever sent across the wire without an explicit left click or
> ENTER.
>  * Never reuse a tab for a different URL unless explicitely requested.
>Always use a new tab for each new URL.
>  * Two URL bars, the upper showing the URL displayed in the current tab,
>the lower showing the URL the mouse is currently pointing at, including
>the TARGET tag, if any.  Prominently mark POST to distinguish it from
> GET.
>The lower URL bar can also be used for keyboard input.
>  * A delete command (d) to close the current tab.
>  * A goto command (g) to open a new tab and set the cursor to the URL line,
>such that "ghttp://www.openbsd.org/" gets you there.
>  * An alias command (a) to define a bookmark to the current URL,
>for example "aobsd" to make "gobsd" work.
>  * Show meta-information about embedded content, not the content itself,
>i.e. content type (e.g. IMG), file name or URL, ALT text, size if it
>is large.
>  * Per-site and per-URL configuration database, allowing things like
> - embedded image