Re: HP Proliant DL385 with Squid at a Gigabit-switch - bad network performance
On 28 February 2009 G. 01:58:29 Stuart Henderson wrote: On 2009-02-27, Pete Vickers p...@systemnet.no wrote: The bge driver sucks for these cards - just chuck in an em(4) NIC and you should see instant improvement. 'netstat -I bge0' will confirm the packet errors this was fixed a year ago. Maybe not fully fixed, here is some sort of suscipious output from DL120 G5: NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls lo0 33160 Link 44550 044550 0 0 lo0 33160 localhost localhost.corp.ar44550 044550 0 0 lo0 33160 localhost.c localhost.corp.ar44550 044550 0 0 lo0 33160 fe80::%lo0/ fe80::1%lo0 44550 044550 0 0 em0 1500 Link 00:15:17:93:a1:04 3981794 0 3588281 0 0 em0 1500 89-235-155- 89-235-155-228.ad 3981794 0 3588281 0 0 em0 1500 fe80::%em0/ fe80::215:17ff:fe 3981794 0 3588281 0 0 em1 1500 Link 00:15:17:93:a1:05 867952 0 325838 0 0 em1 1500 213.234.230 213.234.230.206 867952 0 325838 0 0 em1 1500 fe80::%em1/ fe80::215:17ff:fe 867952 0 325838 0 0 em2 1500 Link 00:1f:29:54:2f:78 1921436 016203 0 0 em2 1500 193.168.1/2 193.168.1.51921436 016203 0 0 em2 1500 fe80::%em2/ fe80::21f:29ff:fe 1921436 016203 0 0 em3 1500 Link 00:1f:29:54:2f:79 32213605 013069 0 0 em3 1500 192.168.0/2 192.168.0.5 32213605 013069 0 0 em3 1500 fe80::%em3/ fe80::21f:29ff:fe 32213605 013069 0 0 bge01500 Link 00:1f:29:0e:7b:57 9977060 654 5961231 0 0 bge01500 192.168.1/2 proxy.corp.arbat2 9977060 654 5961231 0 0 bge01500 fe80::%bge0 fe80::21f:29ff:fe 9977060 654 5961231 0 0 bge01500 192.168.200 192.168.200.2549977060 654 5961231 0 0 enc0* 1536 Link 0 00 0 0 pflog0 33160 Link 0 0 212721 0 0 pflog1 33160 Link 0 04 0 0 pflow0 1464 Link 0 00 0 0 pflog2* 33160 Link 0 0 7956 0 0 -- WBR, Pereresus ne Vlezaet Buggy
Re: A virus road map for GNOME and KDE?
On 19 February 2009 c. 10:09:32 Shagbag OpenBSD wrote: Did anyone else read the article http://www.geekzone.co.nz/foobar/6229#compact ? Does anyone have a view on it (other than the obvious ones: security is a process not a product and don't save-and-open unfamiliar e-mail attachments)? Fix is on it's way (at least in KDE4): http://www.purinchu.net/wp/2009/02/21/desktop-file-security/ -- WBR, Pereresus ne Vlezaet Buggy
Re: Real-time support?
On 20 February 2009 c. 23:24:09 rdc_w wrote: Hai misc,Does OpenBSD support real-time scheduling? No, OpenBSD is not a real-time OS, if you meant this. Or any high-resolution timer? What resolution do you need? Look at setitimer(2), for example. BTW, what's the real(-time) problem do you have? -- WBR, Pereresus ne Vlezaet Buggy
Re: Postgresql create tablespace permissions problem
On 11 February 2009 c. 17:59:53 Tony Berth wrote: Dear List, in a 4.4 box with Postgresql 8.3.3 I try to create a new tablespace in a different filesystem and get the following error: --- template1=# CREATE TABLESPACE tbspace-name OWNER DB-user LOCATION '/home/DB-user/db'; ERROR: could not set permissions on directory /home/DB-user/db: Permission denied --- /home/DB-user/db does exist and belongs to DB-user who has the same name in Postgresql and in Unix! Thanks for your help Tony PostgreSQL runs under system _postgresql user, see /usr/local/share/doc/postgresql/README.OpenBSD -- WBR, Pereresus ne Vlezaet Buggy
Re: Survey on the usage of IPv6
On 30 January 2009 c. 20:50:47 Claudio Jeker wrote: For an IPv6 related paper we are currently working on, Claudio and I are doing a small online survey on the use of IPv6 among OpenBSD developers and users. It would be nice if you could spare 10-15 minutes of your time and answer the questions. Please do that also if you don't use IPv6, since that helps us evaluating how much it is used. You find the survey online at http://ilias.msys.ch/goto.php?target=svy_41client_id=ipv6 and you start the survey by pressing the button on the top left. Many thanks, Marc Claudio Should be Do you use IPv6 autoconfiguration? answered yes or no in case of using DHCPv6, and not router solicitation? -- WBR, Pereresus ne Vlezaet Buggy
Re: KDE/DCOP vs pf
On 24 January 2009 c. 20:18:24 Ken Dickey wrote:
Greetings,
Sorry for the newbie question, but my googling has not found the
answer.
I have a laptop and have set pf.conf to the following [which runs
fine].
However, if I try to tighten things up a bit by commenting out the
pass out all line and uncommenting the following two lines, KDE
loses.
I added the `localhost' line for DCOP, but I know zip about its port
usage.
Can anyone help me out? Better suggestions for pf rules for KDE ??
Thanks much,
-KenD
OpenBSD 4.4 ; i386
vvv=pf.conf===vvv
## MACROS
tcp_services = { ssh, smtp, domain, www, pop3, auth, pop3s, ftp,
sftp, https }
udp_services = { domain }
## DEFAULT: DENY external access; OK going out
block in all
pass in from any to 127.0.0.1
pass out all
#pass out proto tcp to any port $tcp_services
#pass proto udp to any port $udp_services
^^^=E O F===^^^
Add set skip on lo. Searching for the right place of this string will
be your homework. ;)
--
WBR,
Pereresus ne Vlezaet Buggy
Re: rfc1918
On 22 January 2009 c. 16:37:52 Steve Laurie wrote: Hi all, I was wondering if someone could tell me why there's a need to write a rule to block addresses that come under the private address space if these addresses aren't routable over the Internet? - Home Internet provider give you public IP but their internal network is still one of described in RFC 1918; - OpenBSD machine is bridging some traffic; - etc. And when you set up such rule you can control flow of matched packets (tag them, label them, etc); otherwise you cannot. -- WBR, Pereresus ne Vlezaet Buggy
Re: How can I mount a NTFS( sharing) remote partition on openBSD?
On 25 November 2008 c. 20:19:33 Anathae Townsend wrote: I'd suggest looking at the samba package for 4.3. smbfs there do not work, it requires FUSE. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ricardo Augusto de Souza Sent: Tuesday, November 25, 2008 9:06 AM To: misc@openbsd.org Subject: How can I mount a NTFS( sharing) remote partition on openBSD? Hi, i need to Access a sharing on a Windows from a openBSD. I did that in the past on linux using mount -t vfat or smbclient. How can I do that on obsd 4.3 ? thanks -- WBR, Pereresus ne Vlezaet Buggy
Re: Logging interface state changes
On 17 November 2008 c. 20:35:33 (private) HKS wrote: My apologies if this has already been addressed, but I couldn't find it in the man pages or mailing list archives. Is there a way to enable logging of network interface state changes on OpenBSD 4.3 or 4.4? This is mostly for forensic purposes - obviously I'll know if my firewall loses its ethernet connection, but if something starts flapping I'd like to be able to see it in my logs rather than trying to catch it in the act. My hosts are using mostly vic and vr drivers, and neither seems to care whether the debug option is enabled. Thanks for the help. dmesg for one of my Soekris (vr) boxes below. -HKS OpenBSD 4.3 (GENERIC) #698: Wed Mar 12 11:07:05 MDT 2008 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Geode(TM) Integrated Processor by AMD PCS (AuthenticAMD 586-class) 500 MHz cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX real mem = 536440832 (511MB) avail mem = 510664704 (487MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 20/70/03, BIOS32 rev. 0 @ 0xfac40 pcibios0 at bios0: rev 2.0 @ 0xf/0x1 pcibios0: pcibios_get_intr_routing - function not supported pcibios0: PCI IRQ Routing information unavailable. pcibios0: PCI bus #0 is the last bus bios0: ROM list: 0xc8000/0xa800 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 1 function 0 AMD Geode LX rev 0x31 glxsb0 at pci0 dev 1 function 2 AMD Geode LX Crypto rev 0x00: RNG AES vr0 at pci0 dev 6 function 0 VIA VT6105M RhineIII rev 0x96: irq 11, address 00:00:24:ca:3f:58 ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 vr1 at pci0 dev 7 function 0 VIA VT6105M RhineIII rev 0x96: irq 5, address 00:00:24:ca:3f:59 ukphy1 at vr1 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 vr2 at pci0 dev 8 function 0 VIA VT6105M RhineIII rev 0x96: irq 9, address 00:00:24:ca:3f:5a ukphy2 at vr2 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 vr3 at pci0 dev 9 function 0 VIA VT6105M RhineIII rev 0x96: irq 12, address 00:00:24:ca:3f:5b ukphy3 at vr3 phy 1: Generic IEEE 802.3u media interface, rev. 3: OUI 0x004063, model 0x0034 glxpcib0 at pci0 dev 20 function 0 AMD CS5536 ISA rev 0x03: rev 0, 32-bit 3579545Hz timer, watchdog, gpio gpio0 at glxpcib0: 32 pins pciide0 at pci0 dev 20 function 2 AMD CS5536 IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: SanDisk SDCFH-2048 wd0: 4-sector PIO, LBA, 1953MB, 4001760 sectors wd0(pciide0:0:0): using PIO mode 4, DMA mode 2 pciide0: channel 1 ignored (disabled) ohci0 at pci0 dev 21 function 0 AMD CS5536 USB rev 0x02: irq 15, version 1.0, legacy support ehci0 at pci0 dev 21 function 1 AMD CS5536 USB rev 0x02: irq 15 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 AMD EHCI root hub rev 2.00/1.00 addr 1 isa0 at glxpcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 nsclpcsio0 at isa0 port 0x2e/2: NSC PC87366 rev 9: GPIO VLM TMS gpio1 at nsclpcsio0: 29 pins npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom0: console pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo usb1 at ohci0: USB revision 1.0 uhub1 at usb1 AMD OHCI root hub rev 1.00/1.00 addr 1 biomask e5c5 netmask ffe5 ttymask ffe7 mtrr: K6-family MTRR support (2 registers) softraid0 at root root on wd0a swap on wd0b dump on wd0b route monitor ? -- WBR, Pereresus ne Vlezaet Buggy
Re: Turning off sendmail
On 14 November 2008 c. 19:31:10 Doug Milam wrote: To cut down on services I don't use, I'd like to disable sendmail, unless this is unwise. If so, I'd like to know why. Thanks. You use sendmail on your localhost. Please read FAQ carefully. -- WBR, Pereresus ne Vlezaet Buggy
Re: Oптимизация бухгалтepcкoй cлужбы в уcлoвиях кpизиcа
On 12 November 2008 P3. 09:59:56 Jonathan Schleifer wrote:
Am 12.11.2008 um 01:12 schrieb P!PP2P5QP=P8P:_PP4P5P;Q
P2P5P9Q:
C`loe cobpelemmoe hgkofemhe, c`l{e oockedmhe m`p`aorjh g`o`dm{u h
orewecrbemm{u jolo`mhi, ophbgj` j op`jrhje! Ophuodhre!.
That looks like it's XORed with some pattern like 0x1 for the first
byte, 0x2 for the second byte, 0x3 for the next, then 0x1 again etc.
or something like that :). At least, when I did that to normal english
text, it looked similar :).
Every Russian that saw that mail knows that this is just spam invitation
to seminar devoted to accounting in case of world slump... :)
--
WBR,
Pereresus ne Vlezaet Buggy
Re: Apache 1.3 in base or 2.2.8 from ports ?
On Saturday 08 November 2008 08:40:55 Francisco Valladolid Hdez. wrote: Hi folks. I need a recomendation for using one or other web server for a shared web hosting for a small company. Always prefer using Apache from base, whenever I watch that Apache 2 include best performance compared to 1.3 (included in base), and best reverse proxy for dynamic web sites. Which must be the best choice for web hosting company having web 2.0, mod_perl and rails app's ? mod_perl = Apache 1.x mod_perl2 = Apache 2.x No choice. -- WBR, Pereresus ne Vlezaet Buggy
Re: IBM X60 heating up considerably when boot into OpenBSD
On 27 October 2008 c. 14:45:04 Amarendra Godbole wrote: Hello misc@ My IBM (Lenovo) X60 laptop heats up considerably and the battery also discharges faster, when I boot into OpenBSD. This does not seem to be the case when I boot it into Windows XP. The relevant temperature sysctls are: hw.sensors.acpitz0.temp0=73.05 degC (zone temperature) hw.sensors.acpitz1.temp0=72.05 degC (zone temperature) hw.sensors.cpu0.temp0=72.00 degC hw.sensors.aps0.temp0=52.00 degC hw.sensors.aps0.temp1=52.00 degC dmesg is put up at http://www.obscure.org/~amunix/tmp/dmesg I did read about SpeedStep, and slowing down the processor so that it consumes less power - so I am going to try it out by tweaking sysctl hw.cpuspeed and changing it from 1829 to 1000, but I am not sure if this would solve the problem. Has anyone encountered something similar? If yes, I'd appreciate tips to fix this (apart from the SpeedStepping stuff -- will post my findings. Thanks). Read apmd(8). I have ~ same actual working times on WinXP and OpenBSD. -- WBR, Pereresus ne Vlezaet Buggy
Re: The firmware matter
B qnnayemhh nr 11 njrap 2008 c. Rafael Almeida m`ohq`k(a): Hello, From time to time I see people debating about blobs on kernels. I have some understanding of the issue, but it seems that everytime some issue comes out that I was not aware of. Not too recently I've seen a discussion regarding intel wireless device, people from linux seem to say it doesn't require blobs, though some openbsd users sugested otherwise. Linux people even refered to some sourceforge link, I think http://ipw2100.sourceforge.net/firmware.php was it. I believe there are some problems when it comes to firmware. In that sense, is there even wireless hardware that have no need for any kind of blob? A while ago I've seen theo slides about how hardware vendors do not suply the customer with documentation needed for him to operate the hardware any way he wants. That is a major problem because it does not let the user chose which operating system he will use. Now, couldn't the firmware be considered part of the hardware? Why need it be free? You can program the hardware without knowing about it, right? Yes. OpenBSD accepts firmware blobs. But also OpenBSD requires that firmware is freely _redistributable_. See the Intel wireless firmware license, and you'll see this point. Is there some hardware manufacturer that's actually concerned with the customer's freedom? I know some of them eventually release some documentation, but are there any hardware vendor which has providing documentation as one of its goals? Ralink? I know this is not enterily on topic, but I was looking for a mature open source comunity that's willing to discuss those matters with me. I hope I have found such comunity and I hope not to see too many (or not at all) aswers like 'linux just sucks' and the like (unless the phrase comes with proper justification, of course :-)). Linux is good. OpenBSD is just somewhat better ;) -- WBR, Pereresus ne Vlezaet Buggy
Re: apm.8 Ox version patch
B qnnayemhh nr 6 njrap 2008 c. Gregory Steuck m`ohq`k(a): According to CVS history, the file was there for 2.0, and I don't recall any OpenBSD release 1.2. This was not a public release. See Wikipedia: In October 1995, de Raadt founded OpenBSD, a new project forked from NetBSD 1.0. The initial release, OpenBSD 1.2, was made in July 1996, followed in October of the same year by OpenBSD 2.0. -- WBR, Pereresus ne Vlezaet Buggy
Re: know any neat tricks for 2 * dhclient?
Oct 26 2005 c. 20:42 Graham Toal wrote: I wanted to set up a system which has two ether cards (it's part of a transparent bridge so it'll be inline with someone's connection) such that it'll pick up a DHCP address on *both* cards ... the trick comes from not knowing in advance whether the DHCP server will be on the inside connection or the net-facing one. (i.e. if the bridge is deployed near the network edge, the DHCP server is inside; but if it is deployed immediately in front of a single server, then it will see DHCP facing outwards). It *ought* to be possible to configure both hostname.xl0 and hostname.fxp1 as dhcp, and whichever one comes up first, will then bridge through the DHCP server for the other. Unfortunately it just happens by luck of alphabetical order, that the one which comes up first is *not* looking at a DHCP server. So after a relatively short period of retries it goes to sleep. Then the other interface asks for its dhcp address and gets it quickly. What I expected was that the first would sleep for a short time then ask again, and get it OK. I haven't seen that happen - about 30 minutes later and the interface still has no IP. What's the best way to ensure that they both get IPs as quickly as possible? I can think of some dirty hacks, but I don't like the solutions I've come up with. (For example, if I kick off the dhcp client requests in the background, that interferes with the rest of the boot sequence). Has anyone had this configuration before and come up with an elegant solution? May be I'm wrong (only one OBSD box with two NICs with different networks attached I heve this time is production box and cannot be switched off now), but maybe this helps: 1) Disable sysctl net.inet.ip.forwarding in sysctl.conf Then, in rc.local: 2) Initialize network manually (call dhclient) 3) Enable forwarding 4) Configure and wake up bridge IMHO, this'll look like static IP address given to bridge interfaces... -- With my best, Pereresus ne Vlezaet Buggy
Re: OpenBSD's 10th birthday
On Tue, 18 Oct 2005, Rick wrote: when i first began to learn unix, openbsd provided me with a clean and secure plot of land from which to build upon. thank you for your efforts. happy birthday, from ann arbor, MI. rlh On Tue, 18 Oct 2005, Theo de Raadt wrote: Now it is really OpenBSD's 10th birthday ;) Cannot say anything more except: thank you, Team! -- Pereresus ne Vlezaet Buggy P.S. Sorry if I'm too late:))
