Re: BCM4311

On Tue, Feb 24, 2009 at 4:07 PM, Huy Nguyen wrote: > No, see http://undeadly.org/cgi?action=article&sid=20070406104008 > Huy > > On Tue, Feb 24, 2009 at 03:44:35PM +, Saifi Khan wrote: >> On Mon, Feb 23, 2009 at 10:42 PM, Roy Morris >> wrote: >> > I did some searching around and found a cvs m

Re: NAT, Firewall & pf

You should try to go look at http://74.125.77.147 which is google. That way you check if the comm is going. In the first place I had DNS troubles. If then it is a DNS problem at least we have localised sth. Please try to locate the problem by sniffing packets using tcpdump on the OpenBSD's interfac

Re: NAT, Firewall & pf

On Tue, Feb 24, 2009 at 9:48 PM, Hilco Wijbenga wrote: > 2009/2/23 Jason Dixon : >> ## >> 00 ext_if = "sk0" >> 01 int_if = "sk1" >> 02 >> 03 set skip on lo >> 04 >> 05 scrub in >> 06 >> 07 nat on $ext_if from $int_if:network to any -> ($ext_i

TBB on OBSD

Anyone working with TBB ( http://www.threadingbuildingblocks.org/ ) on OpenBSD? -- Jack J. Woehr# I run for public office from time to time. It's like http://www.well.com/~jax # working out at the gym, you sweat a lot, don't get http://www.softwoehr.com # anywhere, and you fall asleep

Re: get php uptime function out of apache chroot jail?

On Wed, Feb 25, 2009 at 12:51 PM, Jerome Santos wrote: > hello, I want to put a php script in a site on an openbsd 4.2 webserver. > From what I understand because apache is chrooted, a function that uses an > exec to a system call cannot work. > ie. > B B B B $s = explode( " ", exec("/var/run/

get php uptime function out of apache chroot jail?

hello, I want to put a php script in a site on an openbsd 4.2 webserver. >From what I understand because apache is chrooted, a function that uses an exec to a system call cannot work. ie. only echoes epoch time, "This server is up 14300 days, 5 hours, 49 minutes and 24seconds" any ideas how to f

Re: NAT, Firewall & pf

2009/2/23 johan beisser : > I make no claims this works or will work for you. It's a simple rewrite of > what you claimed to want (NAT for outbound traffic, for example). > > ext_if="sk0" > int_if="sk1" > udp_services="{ domain, ntp}" > > set skip on lo > set block-policy return > scrub in > > nat

Re: NAT, Firewall & pf

2009/2/23 Jason Dixon : > ## > 00 ext_if = "sk0" > 01 int_if = "sk1" > 02 > 03 set skip on lo > 04 > 05 scrub in > 06 > 07 nat on $ext_if from $int_if:network to any -> ($ext_if:0) > 08 > 09 block in log all > 10 pass in on $int_if inet keep s

Re: Create a bootable usb key?

On Sun, 2009-02-15 at 15:28 -0700, Theo de Raadt wrote: > > > On 2009-01-10, Guillaume Thouvenin wrote: > > >> > > >> Now next step is to have wired network working and so add support to my > > >> Attansic Technology L1E. > > > > > > This chip is not yet supported in OpenBSD. N.B. it is not the sa

Re: recognizing 8GB RAM? (4.5)

On Tue, Feb 24, 2009 at 9:47 PM, David Heinrich wrote: > How do I get the kernel to recognize 8GB of RAM? It is only recognizing > 3.3GB? You don't. That much memory can't be used currently. > Also, where do I go for packages for 4.5 current? The install.amd64 > file reference ftp://ftp.openbsd

recognizing 8GB RAM? (4.5)

How do I get the kernel to recognize 8GB of RAM? It is only recognizing 3.3GB? Also, where do I go for packages for 4.5 current? The install.amd64 file reference ftp://ftp.openbsd.org/pub/OpenBSD/4.5/amd64 but no such ftp exists. -Dave dmesg below: ing; disabled or no drives?) ppb3 at pci0 dev 2

Re: OpenBSD hosting

Friedrich Locke wrote: Dear gentleman, i am searching for web hosting service that : supports java, support MySQL allow me shell account access for software development with access to MySQL. allow ssh/sftp access. and runs OpenBSD at least for the shell services. allow me to host dns for my dom

Re: listing ftp-proxy anchor rules

On 2009-02-24, Chris Smith wrote: > On Tue, Feb 24, 2009 at 8:17 AM, Imre Oolberg wrote: >> 2. issuing 'systat rules' i look for exact entries, like >> /ftp-proxy/26694.100 pfctl -sA -v is simpler. > Maybe that is necessary but the man page (unless I'm misunderstanding > it - wouldn't be the fi

Re: relayd: rdr instead of proxy mode?

On 2009-02-24, Falk Brockerhoff - smartTERRA GmbH wrote: > Hi, > > I'm using relayd for loadbalancing incoming tcp traffic, works fine > like a charme :-) > > But as relayd works like a proxy, in the log files of my applications, > there is always the ip address of the load balancing node and

Re: packets redirected to loopback never appear in tcpdump

On 2009-02-24, Gregory Edigarov wrote: > Is this a bug of feature? > the test case: > > # ifconfig lo1 192.168.0.1 up > > # ping 192.168.0.1 > 64 bytes from 192.168.0.1: icmp_seq=0 ttl=255 time=0.200 ms > 64 bytes from 192.168.0.1: icmp_seq=1 ttl=255 time=0.111 ms > 64 bytes from 192.168.0.1: icmp

Re: -CURRENT intel(4) problem

On Mon, Feb 23, 2009 at 08:21:35AM -0800, J.C. Roberts wrote: > On Mon, 23 Feb 2009 08:27:08 -0600 Marco Peereboom > wrote: > > > You are not the one paying the fixers unfortunately. The only > > influence you have is what Matthieu suggested. > > Thanks Marco. If I'm reading Mathieu and you cor

Re: TNC Packet Radio for OpenBSD

Am 24.02.2009 um 19:41 schrieb Dan Colish: On Tue, Feb 24, 2009 at 05:50:55PM +0100, Marc Balmer wrote: Am 24.02.2009 um 16:23 schrieb Dan Colish: I just got a radio for my car and it is capable to handling TNC tranceiver traffic. So, now I'm on a search for a decent packet radio, but it

1.2GHz US$99 ARM wall plug

http://linuxdevices.com/news/NS9634061300.html They look rather nifty. Even the hardware design is to be released under some sort of open license. We've already got the armish port. If Dale Rahn or another OpenBSD dev wants to do a port to this thing, I'll buy them the dev kit to do it with. US

Re: "heartbeating" Carp ?

I set preempt on FW1 only. -Steve S. > -Original Message- > From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On Behalf Of > Mikel Lindsaar > Sent: Tuesday, February 24, 2009 11:18 AM > To: OpenBSD general usage list > Subject: "heartbeating" Carp ? > > Hi all, >

Re: relayd: rdr instead of proxy mode?

If you are doing web traffic, then relayd can insert a HTTP header into the inbound request, which is then visible to the backend webserver. For vanilla tcp connections, verbose logging on relay box and backend together with ntp time syncing and some scripting foo should permit reconstruc

Re: xenocara - autoconf magic incantation?

On Tue, Feb 24, 2009 at 9:20 PM, J.C. Roberts wrote: > I'm testing out the v2.6.1 intel(4) driver requested here: > http://marc.info/?l=openbsd-tech&m=123307709522306&w=2 > > In my Xorg.0.log I'm getting the mysterious error: > >(WW) intel(0): libpciaccess reported 0 rom size, guessing 64k

upgrades for the project

As you can read at: http://undeadly.org/cgi?action=article&sid=20090224194829&mode=expanded&count=0 the project needs some upgrades. So if you can spare us a donation it'll be appreciated. I'd appreciate if you'd put in the paypal comment field if you want to be listed or not on the donations.htm

Re: OpenBSD hosting

Hi Consider www.geekisp.com I have a account with Dave for almost, three years without problems. www.rootr.net can be a nice solution. Dedicated server, www.sprocketdata.com or www.m5hosting.com Regards. --- On Sun, 2/22/09, Friedrich Locke wrote: > From: Friedrich Locke > Subject: Open

xenocara - autoconf magic incantation?

I'm testing out the v2.6.1 intel(4) driver requested here: http://marc.info/?l=openbsd-tech&m=123307709522306&w=2 In my Xorg.0.log I'm getting the mysterious error: (WW) intel(0): libpciaccess reported 0 rom size, guessing 64kB (EE) intel(0): Bad VBT signature (WW) intel(0

Re: Unfortunate dot was ... missing

This perfectly worked. Thanks to all btw. 2009/2/24 Josh Grosse : > On Tue, 24 Feb 2009 19:43:18 +0100, Jean-Francois wrote >> All, >> >> I just forget the dot !! in the 'rm -r ./dev' so I have no /dev anymore >> on my server box. >> One can tell me if this is possible to backup the system withou

Re: Unfortunate dot was ... missing

On February 24, 2009 01:43:18 pm you wrote: > All, > > I just forget the dot !! in the 'rm -r ./dev' so I have no /dev anymore > on my server box. > One can tell me if this is possible to backup the system without freshh > install ? > This is a i386 4.4 OpenBSD. One could eventually send me a way o

relayd: rdr instead of proxy mode?

Hi, I'm using relayd for loadbalancing incoming tcp traffic, works fine like a charme :-) But as relayd works like a proxy, in the log files of my applications, there is always the ip address of the load balancing node and not of the real client. Is there a way to have relayd have all pac

Re: Unfortunate dot was ... missing

Firstly, don't panic. I think if you recreate /dev with the appropriate permissions, add the "MAKEDEV" script and run it, that everything will be fine. You might have to do all this after booting from a CD though and mounting the filesystem. Here's what the permissions look like on my 4.4 syst

Re: Unfortunate dot was ... missing

Jean-Francois wrote: > All, > > I just forget the dot !! in the 'rm -r ./dev' so I have no /dev anymore > on my server box. > One can tell me if this is possible to backup the system without freshh > install ? > This is a i386 4.4 OpenBSD. One could eventually send me a way or > another the full /

Re: Unfortunate dot was ... missing

Quoting Jean-Francois : > All, > > I just forget the dot !! in the 'rm -r ./dev' so I have no /dev anymore > on my server box. > One can tell me if this is possible to backup the system without freshh > install ? > This is a i386 4.4 OpenBSD. One could eventually send me a way or > another the fu

Re: Unfortunate dot was ... missing

Jason Dixon wrote: > > On Tue, Feb 24, 2009 at 07:43:18PM +0100, Jean-Francois wrote: > > All, > > > > I just forget the dot !! in the 'rm -r ./dev' so I have no > /dev anymore > > on my server box. > > One can tell me if this is possible to backup the system > without freshh > > install ? > >

Re: Unfortunate dot was ... missing

On Tue, Feb 24, 2009 at 07:43:18PM +0100, Jean-Francois wrote: > All, > > I just forget the dot !! in the 'rm -r ./dev' so I have no /dev anymore > on my server box. > One can tell me if this is possible to backup the system without freshh > install ? > This is a i386 4.4 OpenBSD. One could eventu

Re: TNC Packet Radio for OpenBSD

On Tue, Feb 24, 2009 at 05:50:55PM +0100, Marc Balmer wrote: > > Am 24.02.2009 um 16:23 schrieb Dan Colish: > >> I just got a radio for my car and it is capable to handling TNC >> tranceiver traffic. So, now I'm on a search for a decent packet radio, >> but it looks like the only ones I've found ar

Unfortunate dot was ... missing

All, I just forget the dot !! in the 'rm -r ./dev' so I have no /dev anymore on my server box. One can tell me if this is possible to backup the system without freshh install ? This is a i386 4.4 OpenBSD. One could eventually send me a way or another the full /dev in case this option actually work

Re: listing ftp-proxy anchor rules

On Tue, Feb 24, 2009 at 8:17 AM, Imre Oolberg wrote: > 2. issuing 'systat rules' i look for exact entries, like > /ftp-proxy/26694.100 Maybe that is necessary but the man page (unless I'm misunderstanding it - wouldn't be the first time) seems to indicate otherwise: ==

Re: NAT, Firewall & pf

On Mon, Feb 23, 2009 at 8:58 PM, Hilco Wijbenga wrote: > Hi all, > > I've been trying to get a simple firewall system up-and-running in > OpenBSD. I have "The Book of PF" and "Secure Architectures > with OpenBSD" so I thought it would be very simple. Well, we're two > weeks later now and still no

Re: packets redirected to loopback never appear in tcpdump

Gregory Edigarov wrote: Hello, Is this a bug of feature? the test case: This works for me with 4.5-beta: $ sudo ifconfig lo1 192.168.3.1 Password: $ ping 192.168.3.1 PING 192.168.3.1 (192.168.3.1): 56 data bytes 64 bytes from 192.168.3.1: icmp_seq=0 ttl=255 time=0.036 ms 64 bytes from 192.168

Re: NAT, Firewall & pf

2009/2/23 Jason Dixon : > On Mon, Feb 23, 2009 at 05:58:20PM -0800, Hilco Wijbenga wrote: >> Hi all, >> >> I've been trying to get a simple firewall system up-and-running in >> OpenBSD. I have "The Book of PF" and "Secure Architectures >> with OpenBSD" so I thought it would be very simple. Well, we

Re: NAT, Firewall & pf

2009/2/24 Jorge Enrique Valbuena Vargas : > 1. You need to enable routing on your BSD box > edit /etc/sysctl.conf and change the 0 (zero) with 1 > > net.inet.ip.forwarding=1 B B B B # 1=Permit forwarding (routing) of IPv4 > packets My problem isn't that basic. :-) Forwarding is permitted. That

Re: TNC Packet Radio for OpenBSD

Am 24.02.2009 um 16:23 schrieb Dan Colish: I just got a radio for my car and it is capable to handling TNC tranceiver traffic. So, now I'm on a search for a decent packet radio, but it looks like the only ones I've found are Windows only. It not as concerned with the software as I am with the HW

packets redirected to loopback never appear in tcpdump

Hello, Is this a bug of feature? the test case: # ifconfig lo1 192.168.0.1 up # ping 192.168.0.1 64 bytes from 192.168.0.1: icmp_seq=0 ttl=255 time=0.200 ms 64 bytes from 192.168.0.1: icmp_seq=1 ttl=255 time=0.111 ms 64 bytes from 192.168.0.1: icmp_seq=2 ttl=255 time=0.110 ms 64 bytes from 192.1

"heartbeating" Carp ?

Hi all, I have a pair of firewalls using carp between them in front of some servers. Works really nice. Today, however, I got an edge case on the firewalls. Firewall one was not accessible, and I couldn't access any firewall behind it. Getting into firewall 2 directly, I found that firewall 1

Re: BCM4311

On Mon, Feb 23, 2009 at 10:42 PM, Roy Morris wrote: > I did some searching around and found a cvs message talking about > removing support for the bcm4311. I was wondering if anything has > changed since then? I don't see any newer updates. My Dell 1721 > amd64 comes with this wireless adapter. Mi

Huawei E160 detach issues

Hi, I've got a Huawei E160 UMTS stick which gives me some trouble. After being attached for some time (so far something between 16 and 36 hours) it seems to get detached automatically. ucom0 detached umsm0 detached ucom1 detached umsm1 detached cd0 detached scsibus0 detached umass0 detached umsm2

TNC Packet Radio for OpenBSD

I just got a radio for my car and it is capable to handling TNC tranceiver traffic. So, now I'm on a search for a decent packet radio, but it looks like the only ones I've found are Windows only. It not as concerned with the software as I am with the HW being detected correctly, although having bot

Re: sftp chroot ?

Hi Jean-Francois Attach a little example, hope that helps The user archivos only have access to /var/www/domains/home/ archivos/public_html $ cat /etc/ssh/sshd_config Port 22 Protocol 2 SyslogFacility AUTH LogLevel INFO PermitRootLogin no Subsystem sftp internal-sftp Match group chrootusers

Re: NAT, Firewall & pf

1. You need to enable routing on your BSD box edit /etc/sysctl.conf and change the 0 (zero) with 1 net.inet.ip.forwarding=1# 1=Permit forwarding (routing) of IPv4 packets In order to enable routing without restart the BSD type: sysctl -w net.inet.ip.forwarding=1 On Mon, Feb 23, 2009

Re: NAT, Firewall & pf

On Mon, Feb 23, 2009 at 11:47 PM, johan beisser wrote: > Comments inline. > > On Feb 23, 2009, at 5:58 PM, Hilco Wijbenga wrote: > >> Hi all, >> >> I've been trying to get a simple firewall system up-and-running in >> OpenBSD. I have "The Book of PF" and "Secure Architectures >> with OpenBSD" so I

Re: listing ftp-proxy anchor rules

Hallo! I am not sure this is the rigth way, must certanly it doesnt scale well, but i snooped now and then for ftp-proxy rules/translations like this 1. have a guess there should be some ftp-proxy rules created in achors 2. issuing 'systat rules' i look for exact entries, like /ftp-proxy/2669

Re: sftp chroot ?

Dnia poniedziaEek, 23 lutego 2009, Nigel J. Taylor napisaE: > ChrootDirectory %h > > Subsystem sftpinternal-sftp > > Match group wheel > ChrootDirectory none Or the other way around. Subsystem sftp internal-sftp Match User john paul ChrootDirectory /chroot/%u -- Pozdrawiam, Cezary Mo

Re: Bug OpenBGPD, IPv6 peer gets cleared, never gets up again

Hi Claudio, I've attached both the MRT session dumps and a tcpdump capture. Kind regards, Arnoud Vermeer Claudio Jeker schreef: > On Mon, Feb 23, 2009 at 02:11:38PM +0100, Arnoud Vermeer wrote: > >> I found a different way to replicate the bug, this time it crashes ALL >> the IPv6 sessions c

Jornais e Revistas - Ganhe 7 noites de Hotel

This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible.

Re: sftp chroot ?

On Mon, Feb 23, 2009 at 07:33:23PM +0100, jfsimon1...@gmail.com wrote: > If I understand this will chroot any user. Am I correct ? > - Is root chrroted as well ? > - Is it possible to chrrot only some users ? What man page is not clear? -- Olivier Cherrier

Re: Serial console only works if set tty com0 is specified in boot.conf

I have exactly the same problem. When i redirect default console to com0 (set tty com0 in /etc/boot.conf) serial console on tty00 then is working. But when i don't want to have default console there, then serial access is not working, but /usr/lib/getty std.9600 tty00 is running Only if i edit /

Re: Bug OpenBGPD, IPv6 peer gets cleared, never gets up again

On Mon, Feb 23, 2009 at 02:11:38PM +0100, Arnoud Vermeer wrote: > I found a different way to replicate the bug, this time it crashes ALL > the IPv6 sessions connected to multiple Foundry switches (cisco seems > fine). I have setup a v6 session with a tcp md5sig like so: > > group "peers-rs-v6" { >

Re: sftp chroot ?

On 2009-02-23, Michael W. Lucas wrote: > On Mon, Feb 23, 2009 at 07:33:23PM +0100, Jean-Francois wrote: >> Hello, >> >> If I understand this will chroot any user. Am I correct ? >> - Is root chrroted as well ? > > Don't scp or SSH in as root. Use a regular account and sudo, or at > least the roo

Re: NAT, Firewall & pf

Hi, On Mon, 23.02.2009 at 17:58:20 -0800, Hilco Wijbenga wrote: > c. How can I get pflog to flush immediately? I noticed I have to wait > a minute or so before logged lines show up. you don't need to. Listen on pflog0 instead. Kind regards, --Toni++

Re: user-friendliness and netbsd

On Mon, Feb 23, 2009 at 10:11:17PM +0100, Marc Espie wrote: > On Mon, Feb 23, 2009 at 09:56:18PM +0100, Matthias Kilian wrote: > > Next time when I'm in a condition similar to that in vienna after > > p2k8, I'll test *all* installers of *all* existing operation systems. > > I'm sure I'd managed to

Re: toggle X screens on intel in obsd?

On 2009-02-24, Matthieu Herrb wrote: > On Mon, Feb 23, 2009 at 9:53 PM, Dorian B|ttner > wrote: >> Found this one in the www: > http://www.thinkwiki.org/wiki/Sample_Fn-F7_script >> >> Is there something similar one can do in OpenBSD? No clue, how to grab the >> fn-f8 event here... brightness adju

Re: Carp with aliases route problem

On 2009-02-24, Rod Whitworth wrote: > On Mon, 23 Feb 2009 17:52:33 -0600, Todd T. Fries wrote: > >>As a corrilary, for those ISP's who think there is only need for a >>single /30 for a client's router, the concept of failover routers >>means 1 physical IP per router, and 1 IP for the failover IP,

Re: toggle X screens on intel in obsd?

On Tue, 24 Feb 2009, Matthieu Herrb wrote: On Mon, Feb 23, 2009 at 9:53 PM, Dorian B|ttner wrote: Found this one in the www: http://www.thinkwiki.org/wiki/Sample_Fn-F7_script Is there something similar one can do in OpenBSD? No clue, how to grab the fn-f8 event here... brightness adjustment

Re: 4.5 audio aucat autoconfig

On Mon, 23 Feb 2009 18:10:53 +0100 Alexandre Ratchov wrote: > > Unfortunately, the above doesn't work in 4.5-current, and the debug > > output has been changed somewhat. One of the things I did notice is > > the resampling from 16000Hz to 44100Hz does not seem to be > > occurring in 4.5-current.