e panic resulted in another fsck at boot, and
this time, it caught whatever it puked over last time.
Nick.
der surfers. :)
(and I'm sure there are fixes for all these issues, but I didn't hunt
very hard)
Nick.
hus, no sd1.
For your goal -- repartitioning an established system, boot bsd.rd, then
just delete and create partitions on sd1. No reason to delete sd1 itself,
your encrypted drive was just fine, it was just the disklabel partitions
within it you wanted to rework.
Nick.
applications. REAL LIFE data loss or
system compromise from these processor flaws is fairly rare (has
it ever even happened?), It is something that should be fixed,
but ... it isn't the low-hanging fruit for most systems.
Unfortunately.
Nick.
On Sun, Sep 15, 2024 at 12:22 AM Jonathan Thornburg
wrote:
>
> Does OpenBSD support any file systems with built-in checksums to
> (try to) ensure metadata and/or data integrity in the face of "bit rot"
> disk (or memory/cpu/USB) errors? I'm not looking for ZFS-style storage
> pools or logical vol
but I realize that's a little difficult on a system that won't boot.
SOME important bits:
BIOS vs UEFI boot
OpenBSD version?
HW run on?
Softraid?
What are you booting from?
multiple disks?
multibooting?
Exactly what error messages are you seeing at exactly what point?
Nick.
incompatible hardware boot an install media just fine
then fail to see a disk.
But your answer to the disk/http/nfs question will be "disk".
The disk will be the USB drive's 'a' partition, and it is not
currently mounted.
Nick.
on with a new one, in the next 20G of the disk. In a few years,
maybe you need 25G or 30G. But this way, you can never use storage that
has been worn for more than a year. Might get ten years of "fresh" disk
on a single SSD that way. Do this, I'll laugh at you. :)
Nick.
you
are good enough that you can deal with the issues when you find out you were
not as smart as the OpenBSD devs after all. I like hitting those issues,
because then I learn something).
Nick.
I'm having trouble believing your laptop is having this same
issue. (this particular machine is noted for this problem on Linux, too,
except Linux won't boot headless at all; the full OpenBSD kernel boots
just fine headless, but you can't do a headless upgrade.)
Nick.
eat, others are horribly
non-standard, "Works with windows, ship it!".
Nick.
ion process. Either your burner is bad,
your media is damaged, or the reader is bad. I've seen all three, lots of
times. Be glad you got the error...back in the olden days, I had a drive
that would happily install every Novell Netware file on a server...but most
were corrupted.
Nick.
y written software". So really, security is the least
important consideration. You want to be able to break your system and
repair it over the network without console access. To your credit, you
are honest about that. That's your call, but you are gonna want a
different OS. Perhaps Windows 95 (remember the user name/PW prompt,
where if you just hit ESC, it went away and dropped you at the desktop?).
OpenBSD is probably not the tool you want.
Nick.
ing drives). So
when I test the drive replacement process, I plan to rebuild the OS
partition first (anticipated time: minutes), then the data partition
later (anticipated time: days).
And yes, I'm testing the behaviors of this thing and the drive replacement
process before I commit it to production.
Nick.
hat the drive is unused, but if things are as you describe it,
it's safe.
But most likely, it's sd2, because USB devices are enumerated AFTER
IDE/SATA/SCSI/SAS/RAID connected drives. (but there are things that
can happen that keep me saying, "most likely" and "here's how you
find out" rather than just assuming sd2. :) )
Nick.
tion to do that is just
fine with me.
OpenBSD provides cdio(1), which has the "cdrip" option to extract
audio tracks to .wav files. In the base system.
Nick.
o zero, and then the next
read encounters the same problem. You may be able to hear lots of
activity on the drive with little obvious progress. I'm not convinced
this is your problem, but ... something to consider.
Nick.
On 5/22/24 08:08, Kirill A. Korinsky wrote:
On Wed, 22 May 2024 12:53:11 +0100,
Nick Holland wrote:
For reasons of multi-hour fsck's on a few systems, I'm looking at
remounting the problem file systems as "rw" when writing is actually
needed and "ro" after th
On 5/21/24 08:28, Stuart Henderson wrote:
On 2024-05-21, Nick Holland wrote:
...
When I remove that disk the boot sequence stops and asks for a fsck
I would like that this disk is mounted when it's present, but when it's not
installed I don't want the boot sequence to stop
post
boot by a separate script. Maybe make /tmp an MFS if that's an option.
That will minimize the fsck problems, and allow the system to come up
for either manual, remote fixing or even fsck -y in the mountall script.
Don't forget you ro'd the /usr partitions, otherwise your upgrades will
be unpleasant. :)
Nick.
e the new favorite revision control system, so knowing
got/git is more marketable than cvs. :-/
Nick.
On Sun, May 5, 2024, 13:05 Christer Solskogen
wrote:
> Running pfstat -q gives:
> ioctl: DIOCGETSTATUS: Permission denied
> pf_query: query_counters() failed
>
> This is on a newly updated system (current)
> OpenBSD tugs.antarctica.no 7.5 GENERIC.MP#50 amd64
>
> Packages are also all up to date.
code was ugly, and it made it difficult to
actually improve the code.
Nick.
ts -- copy it to /bsd75,
for example, then "boot bsd75 -s" (the -s is so it doesn't try to go
multi-user with a mixed new kernel/old userland/packages). If that
seems happy, just do a "remote upgrade", using the "Manual Upgrade
(without the install kernel)" process in
https://www.openbsd.org/faq/upgrade75.html.
Nick.
OpenBSD 7.3 as well, so something changed on your
computer, I'm suspicious your CMOS battery has died, and the system came back
up in the defaults, which include this RAID "feature".
Nick.
On Sat, Apr 6, 2024 at 8:10 AM Sonic wrote:
>
> Running -current on my router and finally (after years) decided to move into
> using ipv6.
> I added "inet6 autoconf" to hostname.em0 (also has "inet autoconf") and I get
> a link local address:
> =
> # ifconfig em0
from there. That
would have the benefit of remote administration, too.
Nick.
ple to do? What is it that you see bash doing so much
better than stock pdksh?
Nick.
ll. But as a
system administrator, you will generally find benefit in knowing the
native tools. During the week for a living, I administer Linux machines,
and use bash. In evenings and weekends, I work with OpenBSD and pdksh.
I really have no issue switching between the two.
Nick.
Linking (KARL). There are fixes for this,
HOWEVER, I'm not sure what your goals are here in tweaking
your kernel like this, but I'm guessing breaking KARL isn't
your biggest problem you are about to create for yourself.
This probably isn't something you want to be doing.
Nick.
to get out of config)
CTRL-D (to get out of script)
ta-da! output in 'typescript'.
config does some of what boot -c does from a running system.
script captures screen input and output.
man config
man script
Nick.
he same problem. And thinking about it, I don't recall having to
reboot the
system the FTDI device is attached to in a while due to port lockup, so maybe
it's fixed
in the OS, maybe it has become so automatic to me, I just do it and don't log
it in my
brain).
Nick.
GHT just find that multiple stand-alone systems will
give you better redundancy for some applications. RAID helps if your
disk fails, but there are a lot of other things that fail on storage servers,
and for SOME applications, having a whole other machine ready to roll is
a better solution. Granted, my FIRST choice is TWO machines running RAID
storage, but that's not always practical.
Nick.
hing up?
>
> does this only mimic bytebeat, and is not true 8-bit technique to get
> realistic bytebeat?
>
> On Fri, February 2, 2024 9:15 pm, Nick Owens wrote:
> > back when i used to mess with these, i frequently used `sox` to play the
> > 8-bit
> > samples. it can do the
back when i used to mess with these, i frequently used `sox` to play
the 8-bit samples. it can do the sample conversion for you to whatever
the system needs.
On Fri, Feb 2, 2024 at 11:08 AM Omar Polo wrote:
>
> On 2024/02/02 18:41:46 +, beecdadd...@danwin1210.de wrote:
> > hello
> >
> > I've
based system.
https://nickh.org/warstories/adaptec.html
(no ads!)
Nick
irm the problem with obsdacvs.cs.toronto.edu but other
servers are fine. So it does appear to be a problem on
obsdacvs.cs.toronto.edu itself.
- todd
Yes. the cvs checkout tmp directory was filled on obsdacvs.cs.toronto.edu.
That has been fixed. My apology for the issue.
Nick.
houldn't be allowed to
touch the trusted machines, but unlike your situation, the untrusted
machines don't need to be accessed by the trusted. Small machine,
two NICs. One NIC is DHCP to the trusted network, NAT and DCHP server
on the untrustedv side, maybe a logging DNS server. Block all from
the untrusted to the trusted subnet, pass everything else (internet).
These don't need those inbound static routes.
Nick.
man.openbsd.org,
cvsweb.openbsd.org,
openbsd.cs.toronto.edu
obsdacvs.cs.toronto.edu
are all back up and running. Snapshots and packages should be
up to date, now, too.
My apologies for the inconvenience.
Nick.
On 12/19/23 15:38, Nick Holland wrote:
Hello,
man.openbsd.org
Tuesday or Wednesday next week (Jan 2-3).
In the meantime, as Eric pointed out,
https://cvsweb.egoslike.us/
https://man.egoslike.us/
are available as temporary fill-ins.
Nick.
don't suck. :)
These are not official, but they are run by one of the people who
run the official sites. They will go away once the official site
is back up and running.
Nick.
On 12/23/23 11:16 AM, Nick Holland wrote:
On 12/19/23 15:38, Nick Holland wrote:
Hello,
man.openbsd.org, cvsweb.o
On 12/19/23 15:38, Nick Holland wrote:
Hello,
man.openbsd.org, cvsweb.openbsd.org, openbsd.cs.toronto.edu
and obsdacvs.cs.toronto.edu will be unavailable for site
maintenance starting Thursday, December 21 about 6:00am ET
(UTC-5) and hopefully be back up and running by Saturday,
December 23, 6
SO happened, and was dismissed as "part of the upgrade noise".
This wasn't OpenBSD nor was it a "security event", but it did delay the
detection and repair of a redundancy failure issue because one line was
missed in a sea of thousands of lines of "yeah, that's exp
.
Nick.
On Tue, Nov 21, 2023 at 7:03 PM Chris Narkiewicz wrote:
>
> I'm experimentin with auto-install over network using linux libvirt
> (qemu).
>
> I managed to load pxeboot in BIOS mode and I'm wondering if UEFI
> is supported.
>
> According to this blog, I should load BOOTX64.EFI instead of pxeboot.
>
ou will have to reinstall to switch boot modes (technically, no, but
if you have to ask, yes).
Nick.
sily. You could also read and
understand rc(8) and find what is going on by following the startup
process.
Nick.
s probably flawed. So I'd really suggest, just don't
worry about it, just do an upgrade, let it install everything, and
be done with it. But if you don't like the way sysupgrade does
things, don't use that tool.
Nick.
leases ago, but after KARL and library relinks1, I found
that on i386, 384MB was required to prevent swapping during the kernel and
library relink at boot. I'm assuming it is "worse" now, and worse yet on
amd64.
Nick.
seen "Long Term Support" Linux releases
used in, I've become absolutely convinced LTS is just a BAD IDEA and I'm
thankful OpenBSD doesn't do that.
Nick.
ks in advance.
Try this, perhaps?
man sftp-server,
options of interest may include -f, -l.
You will probably have to have a /dev/log inside the chroot, which
also means the "nodev" option is not your friend.
Nick.
s
created (and your daily output e-mails might be of use there),
you might get lucky recreating the disklabel. You might want
to start by imaging the remains of the disk to another drive
before going any further so you can try again if you guess
wrong.
But yeah. You need a good backup.
here's mine: https://holland-consulting.net/scripts/ibs/
ksh shell script + rsync + another computer and big disk.
Nick.
problem?
(I've got a pair of machines here. I've flipped over to
the other after reving it up to -current (yesterday's
snapshot, but machine that failed twice is still at the
snapshot that failed for now).
Nick.
OpenBSD 7.3-current (GENERIC.MP) #1360: Fri Sep 8 19:01:03 MDT 2023
On 9/23/23 13:42, S V wrote:
Any info on man.openbsd.org state? It is down for me and web checkers.
It is back up now.
Seems my monitor's alert to text me is handled as spam by my cellular
service now. Sorry for the downtime!
Nick.
just wouldn't have been a thing if it
was running FFS. It was literally "features" taking down a
customer facing system, over and over.
You are trying to "fix" a non-problem by making things more
complicated. Not gonna work they way you expect.
Nick.
enBSD should become Linux Reinvented Badly. That's offensive.
Nick.
mpt. But NOW you might be able to CTRL-ALT-F1 back to the CLI.
WORST CASE, reboot the machine, and boot in single user mode.
# mount -a
# export TERM=vt220
...fix it
Nick.
types (my "good" one seems to plug/unplug the mouse/keyboard,
but has a great keep-alive for the monitor).
Nick.
a change on one machine before breaking
everything...and then waiting for the next refresh cycle to fix it.
Nick.
OpenBSD is designed to be able to install on wiped disks, new disks,
or co-exist with other systems. You seem to think that if you go
out a buy a new hard disk at the store, you couldn't possibly
install OpenBSD on it because there's no existing EFI partition.
A lot of people can assu
alled. People often consider it
a way to "learn" a new OS, I disagree, it is a good way to get massively
frustrated and lose a lot of data.
Nick.
and nothing else. I'm taking
this as meaning you are intending to do things wrong by making a root-
only system. Please stop and reconsider your life choices here, this
one is probably not one of your better ones.
Nick.
-bin/cvsweb/~checkout~/www/faq/faq1.html?rev=1.147&content-type=text/html#ReallyFree
I definitely say something similar regularly, but it looks like the
original text here was from Theo, himself. I've been similarly
inspired and found the example memorable. :)
Nick.
fication that something
was worked around (or at least, didn't behave as expected) -- if
there are no other symptoms.
Nick.
On 6/30/23 08:30, soko.tica wrote:
Thanks NIck,
How do I exactly try to unlock the disk with bioctl command?
I do not have the appropriate disk to try to rebuild it.
I am trying it from openbsd 6.9 bootable usb. The encrypted hdd was 7.3.
don't do that.
I'm not aw
s.
Honestly, though, I'd suggest just recycling an old PC and a surplus
network card (or multi-port card, depending on how people toss stuff
out around you). If you want "the best choice", this is probably it.
Nick.
times.
Kinda easy to see how things like this not only happen, but are
kinda expected.
For snapshots, you might want to pick a favorite local mirror and
use that. I doubt you will see a huge difference in performance
for an install or upgrade.
Nick.
esign, encrypted storage is more
fragile than unencrypted storage.
Nick.
the actual output of this activity.
Nick.
(1) this may require bringing the system up in single user mode.
/usr/local probably can be done without single user mode but many
other mounts will require it)
On Wed, Jun 7, 2023 at 4:38 AM Stuart Henderson
wrote:
> On 2023-06-07, Nick Bouliane wrote:
> > I have a bridge veb0 to which is connected tap1, the interface of a
> virtual
> > machine.
> > On the bridge I have a rule for tap1:
> > pass in on tap1 src 11:22:
:
pass path "/something.html" tagged VM1
It doesn't work. If I try to match only the path it works, only the IP it
works, etc... but the tag doesn't match.
Is it supposed to work ? Does the veb strips the tag ?
thank you,
Nick
On Tue, Jun 6, 2023 at 11:08 AM Paul Pace wrote:
> On 6/5/23 3:15 PM, Nick Bouliane wrote:
> > Hi,
> >
> > in relayd.conf I'm trying to do :
> >
> > pass from 192.168.1.1 path "/something.html"
> >
> > If I individually specify the &q
there another way to express this another way ?
thank you,
Nick
ut I suspect there's still a bug
there.
I am happy to put the '&' back and gather more information next time
it happens...if someone tells me what info to gather.
Nick.
Machine that has had problems, but fixed by no longer backgrounding
the rm -r $OLDEST backup:
OpenBSD 7.3-curr
Hi Folks,
I am writing to seek assistance regarding an issue I am experiencing in
trying to route my Personal Computer's network traffic to a TUN interface.
My objective is to modify some of its content and subsequently return the
traffic back.
So far, I have successfully created a TUN interface
Followup...
On 5/12/23 08:17, Stuart Henderson wrote:
On 2023-05-12, Nick Holland wrote:
...
I had several other people suggest network problems. I'm not going to
say "impossible" or even "unlikely", but my understanding is that the
two machines are both plugged int
On 5/12/23 03:28, Stuart Henderson wrote:
On 2023-05-12, Nick Holland wrote:
Here's the problem I've seen: I have my two machines flipping state
randomly(?). This bothers me because that means it is breaking people's
downloads. Longest period betweek flips was less than
ff00
pf.conf includes this before any other "quick" statements:
pass quick inet proto carp all
Is there something I'm missing? Incorrect expectations on my part?
Nick.
dmesg:
OpenBSD 7.3-current (GENERIC.MP) #1175: Wed May 3 08:19:33 MDT 2023
dera...@amd64.openbsd.or
st someone this forgetful?
Nick.
ail vps as ok and still slows my "mail server" (with existing
PTR)?
If there are no delay... ugh, guess I'm out of luck with my ISP ? But
then again why vps is ok?
Thanks in advance for any suggestions!
man spamd
It's running on the OpenBSD mail server.
also look up "Greylisting" with your favorite search engine.
Nick.
ive decisions,
stupid managers, bad applications, indifferent users (in roughly that
order). But it won't be your firewall that is the entry point, nor a
resource for the attackers.
As others said, be realistic about what the firewall does and doesn't
do for your security. Your firewall isn't how bad guys are getting
into your systems. Set up properly, it will slow 'em down, and perhaps
slow the spread from one vulnerable system to another.
Nick.
e different types of
hardware on a VM anyway? Put your virtual disks on the hw that
works best for you.
So many questions would be answered with a dmesg...
Nick.
Nick.
On Tue, Apr 18, 2023 at 7:28 AM stolen data wrote:
>
> Everything seems to work. Only caveat noticed is that the firmware is
> UEFI-only with no CSM/legacy mode, and it will only boot an OpenBSD
> installation from GPT which must contain an EFI system partition holding
> the bootloader.
great cho
tiny. But
if you have 1GB to spare, it is probably too big. I did learn to
regret a 200MB root because OpenBSD grew a lot over around ten
years that I used that install.
Nick.
e, back your data up, put either a UEFI or MBR partition table on it,
and then use the rest of the disk for your backup. With modern disk
sizes, the amount of space you "save" isn't worth the first time this
happens to you.
Nick.
(who went back to look at your dmesg to make sure it wasn't a sparc64 :)
oblem, but you never indicated you power
cycled the modem...which I have found critical for the last 20+ years.
Nick.
home directories, but that kinda defeats a point of a multi-user system,
that people might just want to collaborate with each other.
Nick.
hi,
dhcpd.conf(5) has two undocumented options i experimented with
recently for doing pxe boot on my lan.
for example, one might write the following:
# iPXE client
user-class "iPXE" {
filename "menu.ipxe";
}
to configure a iPXE script as the boot file for
works ok here. i installed tor-0.4.7.13 on my 7.2 home gateway, no
special setup. i have not done any fiddling with login.conf.
maybe you can set "Log debug syslog" and see what comes out?
fugu$ uname -a
OpenBSD fugu.offblast.org 7.2 GENERIC.MP#6 amd64
fugu$ grep '^[A-Z]' /etc/tor/torrc
Log notic
an entire 'c' partition of a disk that's doing "other
things" at the same time, including a layers of softraid?
Nick.
Not sure how true it was
"back then" or now, but if better performance is seen with fewer cores,
this might be why.
Nick.
our
host i3 could be maxed out with a web browser, so the VMs you run are
going to have to be minimal and your expectations modest.
Nick.
is a old citrix appliance with a six port NIC and two
onboard ports, for eight em(4)s.
Nick.
e" via bsd.rd and what do you know, things
seem to be running smoothly again, relinking/reodering and everything.
I may have a failing harddrive, but for now this immediate problem
seems to be resolved.
Thanks!
-Nick
On Fri, Jan 13, 2023 at 2:00 PM Crystal Kolipe
wrote:
>
> On Fri, Jan
Ever since upgrading my machine to 7.2 I've been unable to relink my
kernel, anybody have any idea why? I was reminded of this when I
attempted to apply the latest errata today:
$ doas syspatch
Get/Verify syspatch72-009_xserver... 100% |*| 4384 KB00:01
Installing patch 009_xserver
es what you want, absolutely, give it a spin.
If it doesn't...either install the package or grab the source code
to openrsync, add what you need and submit it. :)
I think there was some talk about ultimately naming it rsync, but
unless it is 100% feature compatible (and I'm not sure I'd consider
that a good thing), that will cause confusion in my world.
Nick.
On 1/6/23 02:31, Christer Solskogen wrote:
On Mon, Jan 2, 2023 at 5:14 PM Nick Holland
wrote:
hiya.
Goal: home (i.e., DHCP external network config) redundant
firewalls with CARP and PFSYNC.
Totally doable. I've been running it like that for the last 7 years at
home.
My ISP doesn&#
t want to try it
with BIOS/Legacy. That's an old enough machine that UEFI might
not have been the optimal way to boot that machine. You could
see if there's a newer BIOS for your computer.
Nick.
right now, I see both are
missing drives...and I'm not sure why, I suspect there's a
good reason. But fdisk output is NOT there, and I'd rather
prefer it be there too on fdisk platforms).
Nick.
Thanks!
Nathan
Does a softraid(4) crypto volume require metadata backup? (I am
runni
quot;slow" mean?
I've got encrypted partitions running on 1GHz class netbooks,
which I'll admit is painful, but it's not the crypto that is
the core problem. So you have to show what is different in
your configuration than mine.
Nick.
1 - 100 of 1005 matches
Mail list logo
