Re: OpenBSD 4.7 Released, May 19 2010
Thanks developers for the great work! On Wed, May 19, 2010 at 9:48 AM, Bob Beck b...@cvs.openbsd.org wrote: May 19, 2010. We are pleased to announce the official release of OpenBSD 4.7. This is our 27th release on CD-ROM (and 28th via FTP). We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install. As in our previous releases, 4.7 provides significant improvements, including new features, in nearly all areas of the system: - New/extended platforms: o OpenBSD/alpha o Added support for the DS15/DS25/ES45. o OpenBSD/loongson New platform for systems based on the Loongson 2E and 2F MIPS-compatible processors. Supported machines include: o Lemote Fuloong 2F mini-PC o Lemote Lynloong all-in-one-PC o Lemote Yeeloong netbook (8.9 and 10.1 models) o EMTEC Gdium Liberty 1000 netbook o OpenBSD/sgi o Added support for multi-node SGI Origin systems, in M mode. o Added support for the SGI Origin 350, Onyx 350, Onyx 4 and Tezro systems. o Added SMP support on the SGI Octane. o Support for many more onboard devices on Octane and Origin systems. o OpenBSD/socppc o Added support for the RouterBOARD RB600A. o OpenBSD/sparc64 o Preliminary support for running OpenBSD in a guest domain on top of an OpenBSD control domain on sun4v machines. - Improved hardware support, including: o Revamped SCSI midlayer and improved driver support. o UDF 2.5 and 2.6 (HDDVD and Blu-ray) disks support. o Added mpath(4), a driver that steals paths to scsi devices if they could be available via multiple paths and then made available via mpath(4). o New aibs(4) driver for ASUSTeK AI Booster hardware monitoring. o New uthum(4) driver for the TEMPerHUM USB temperature and humidity sensors. o New utrh(4) driver for USBRH temperature and humidity sensors. o New uyurex(4) driver for the Maywa-denki KAYAC YUREX twitch/jiggle of knee sensor. o New urndis(4) driver for remote NDIS Ethernet over USB devices (phones). o New xf86-video-wsudl(4) Xorg driver for USB DisplayLink devices supported by udl(4). o New mpii(4) driver for LSI Logic Fusion MPT Message Passing Interface II based SAS 2 controllers. o New athn(4) driver for Atheros IEEE 802.11a/g/n wireless network devices. o New alc(4) driver for Atheros AR8131/AR8132 10/100/Gigabit Ethernet devices. o New lisa(4) driver for STMicroelectronics LIS331DL MEMS motion sensors. o New gcu(4) driver for Intel EP80579 Global Configuration Unit. o New lom(4) driver for LOMLite and LOMLite2 as found on many of Sun's UltraSPARC-IIi servers. o New vsw(4) driver for virtual switches on sun4v machines. o New vds(4) driver for virtual disk servers on sun4v machines. o Support for EP80579 integrated Ethernet and ICH9 M V has been added to em(4). o Support for 82599 and SFP+ 82598 devices has been added to ix(4). o Support for the Sun GigabitEthernet SBus Adapter 1.0/1.1 has been added to ti(4). o Support for SBus variants of the QLogic Fibre Channel host adapters has been added to isp(4). o Support for SBus variants of the Sun Gigabit Ethernet has been added to gem(4). o Support for Intel WiFi Link 1000 and Intel Centrino Advanced-N 6200/Ultimate-N 6300 has been added to iwn(4). o Support for Ralink RT3572 based 802.11n devices has been added to run(4). o VIA Tremor 5.1, M-Audio Revolution 5.1 cards has been added to envy(4). o New uhts(4) driver for USB HID touchscreens. o Improved touchscreen support in the xf86-input-ws(4) Xorg driver and improved calibration using the new device properties from Xinput. o Support for ON CAT6095 and ON CAT34TS02 temperature sensors added to sdtemp(4). o Several improvements and bug fixes to existing Ethernet drivers, including em(4), re(4), ti(4) and vge(4). o Support for the PIC PCI-X controller added to the SGI xbridge(4) driver. o Support for the onboard Fast Ethernet interface found on SGI Octane and many SGI Origin family systems, iec(4). o Support for more SGI input and video devices on Octane and Origin systems, with iockbc(4), impact(4), and odyssey(4). o Improved PCI resource allocation; more hardware left unconfigured by the machine's firmware (including hotplugged hardware) should work now. o Support for recording/full-duplex added to mavb(4). o Improved support for USB audio devices in uaudio(4). o Improved support for bwi(4) devices on strict-alignment architectures like armish. o Eliminate usage of SCSI tagged queueing mechanisms other than simple queuing, thus avoiding incorrect implementations on various disk devices. o Eliminate spurious
Re: OpenBSD 4.6 release Oct 28, 2009
Thanks for the great work! On Sun, Oct 18, 2009 at 12:38 PM, Theo de Raadt dera...@cvs.openbsd.org wrote: Many people have received their 4.6 CDs in the mail by now, and we really don't want them to be without the full package repository. Oct 18, 2009. We are pleased to announce the official release of OpenBSD 4.6. This is our 26th release on CD-ROM (and 27th via FTP). B We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install. As in our previous releases, 4.6 provides significant improvements, including new features, in nearly all areas of the system: - New/extended platforms: B B o mvme88k B B B o MVME141 and MVME165 boards are now supported. B B o sgi B B B o SGI Octane, SGI Origin 200 and SGI Fuel systems are now supported. B B B o Several bugs in interrupt handling have been fixed, resulting B B B B in significantly improved system response. B B o sparc B B B o The bootblock load address has been moved so that larger kernels B B B B can be loaded. B B o sparc64 B B B o Acceleration support has been added for many of the PCI frame buffer B B B B drivers, such as the Sun PGX, PGX64 and XVR-100, and Tech Source B B B B Raptor GFX graphics cards. - Improved hardware support, including: B B o Several new/improved drivers for sensors, including: B B B o The ips(4) driver now has sensor support, complementing the bio support. B B B o The acpithinkpad(4) driver now has temperature and fan sensor support. B B B o New endrun(4) driver for the EndRun Technologies timedelta sensor. B B B o The fins(4) driver now has support for F71806, F71862 and F71882 ICs. B B B o The acpitz(4) driver now shows correct decimals for temperature. B B o Added radeonfb(4) to sparc64, an accelerated framebuffer for B B B Sun XVR-100 boards. B B o Added support for RTL8103E and RTL8168DP devices in the re(4) driver. B B o Added support for BCM5709/BCM5716 devices in the bnx(4) driver. B B o Added support for ICH10 variants of em(4). B B o Added support for VIA VX855 chipset in the viapm(4) and pciide(4) drivers. B B o Added support for Intel SCH IDE to pciide(4). B B o Added support for the Broadcom HT-1100 chipset in the piixpm(4) driver. B B o Added support for 82574L based devices in the em(4) driver. B B o Added support for VIA CX800 south bridge to the viapm(4) driver. B B o A number of network drivers including bge(4), bnx(4), hme(4), iwn(4), B B B ix(4), msk(4), sis(4), sk(4), vr(4) and wpi(4) now make use of the B B B MCLGETI(9) allocator in order to reduce memory usage and increase B B B performance when under load or attack. B B o Added support in em(4) for the newer 82575 chips. B B o zyd(4) now supports devices with Airoha AL2230S radios. B B o zyd(4) now works on big-endian machines B B o urtw(4) now supports RTL8187B based devices. B B o New otus(4) driver for Atheros AR9001U USB 802.11a/b/g/Draft-N B B B wireless devices. B B o New berkwdt(4) driver for Berkshire Products PCI watchdog timers. B B o New udl(4) driver for USB video devices. B B o Support for a variety of newer models in bge(4). B B o Initial version of vsw(4), a driver for the virtual network switch B B B found on sun4v sparc64 systems. B B o Implemented machfb(4), an accelerated driver for the sparc64 PGX/PGX64 B B B framebuffers. B B o New vcc(4) and vcctty(4) drivers for the Virtual Console Concentrator B B B found on the control domain of sun4v systems. B B o Implemented 64-bit FIFO modes for ciss(4) devices. B B o Enabled hardware VLAN tagging and stripping on ix(4). B B o Added basic support for Envy24HT chips to the envy(4) driver. B B o Many improvements and updates to the isp(4) driver. B B o Added support for 88E8057-based Yukon 2 Ultra 2-devices in msk(4). B B o The ips(4) driver now works reliably. B B o Added raptor(4), an accelerated framebuffer driver for the Tech Source B B B Raptor GFX cards on the sparc64 platform. B B o Enabled schsio(4) on i386 and amd64 and added watchdog timer support. B B o New acpivideo(4) driver for ACPI display switching and brightness control. B B o Added support for the IBM ServeRAID-8k in the aac(4) driver. B B o Added support for the BCM5825 and 5860/61/62 Broadcom CryptoNetX B B B IPSec/SSL Security processor in the ubsec(4) driver. B B o Added support for AES-CBC with BCM5823-based ubsec(4) devices. B B o Firmware for bnx(4) has been updated. B B o Added support to fxp(4) for the 82552 MAC found on some ICH7 chipsets. B B o Added support to umsm(4) for Truinstall enabled modems like the B B B Sierra 881U. B B o Added support to pciide(4) for ICH10 SATA devices not operating in B B B AHCI mode. B B o dc(4) now reads the MAC address from the eeprom rather than CIS. B B o em(4) now correctly handles MAC addresses for dual-port 8257[56] cards. B B o IPv6 receive TCP/UDP
Kernel memory usage
Hi Misc, Anyone know how to show the amount of memory my kernel (4.5) is using? Thanks in advance. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Where can I find the cksum source code?
Hi Misc, Where can I find the cksum source code? Not in the base system. Thanks in advanced.
Re: Where can I find the cksum source code?
Thanks. On Mon, Jun 29, 2009 at 8:32 AM, Jonathan Grayj...@goblin.cx wrote: sure it is, look at the contents of /usr/src/bin/md5 On Mon, Jun 29, 2009 at 08:17:47AM -0300, Jo?o Salvatti wrote: Hi Misc, Where can I find the cksum source code? Not in the base system. Thanks in advanced. -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Sensorsd behavior
Hi Misc, I put the following line in my sensorsd.conf file: hw.sensors.acpibat0.raw0:command=/etc/sensorsd/bat_status %2 When the battery's laptop status change, bat_status program is executed using param %2 (sensor's value can be: 0 when battery is idle, 1 when battery is discharging and 2 when battery is charging), but the problem is: sensorsd only runs program bat_status when it is started! EG: If my power cord is plugged on my laptop sensorsd execute bat_status, but when I remove my power cord the sensorsd doesn't run bat_status again. Is this a normal behavior? bat_status.c: #include stdio.h #include syslog.h #include stdarg.h int main(int argc, char *argv[]) { int bat_status = atoi(argv[1]); if (bat_status == 0) syslog(LOG_WARNING, Battery is now idle.\n); else if (bat_status == 1) syslog(LOG_WARNING, Battery is now discharging...\n); else syslog(LOG_WARNING, Battery is now charging...\n); return 0; } Thanks in advance. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Azalia codec on HP Pavilion dv6000
Hi, For the first time my multimedia keyboard works (OpenBSD 4.5). Thanks developers for the great work. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Re: OpenBSD and VPN 1411 Criptographic Card
Ok, thanks Stuart. On Wed, May 20, 2009 at 9:47 PM, Stuart Henderson s...@spacehopper.org wrote: On 2009-05-20, Iqigo Ortiz de Urbina tarom...@gmail.com wrote: On Wed, May 20, 2009 at 10:15 PM, Stuart Henderson s...@spacehopper.org wrote: On 2009-05-20, Joco Salvatti salva...@gmail.com wrote: Hi misc, I bought a Soekris Net5501 with a cryptographic card VPN1411 (Authentication, SHA-1 and MD5, Public Key, RSA, DSA, SSL, IKE and DH, Hardware random number generator) and I would like to know if any configuration is needed in OpenBSD kernel to use this card when cryptography is necessary. eg. When a VPN IPSec is done. You might want to check that it's not actually slower when you use the card. Some basic benchmarking would be appreciated, for the sake of the list. As a newcomer I am really interested in understanding the cryptohardware framework. I would have never said accelerated hardware could perform any worse. Interesting point Stuart. also note the difference between discrete devices (PCI or PCI-like accelerators, either discrete cards/ICs, or on-die like the AES128 accelerator in the Geode LX cpu), and the accelerators that use specific CPU instructions like VIA C7M and forthcoming Intel CPUs. the latter have fewer overheads. -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
OpenBSD and VPN 1411 Criptographic Card
Hi misc, I bought a Soekris Net5501 with a cryptographic card VPN1411 (Authentication, SHA-1 and MD5, Public Key, RSA, DSA, SSL, IKE and DH, Hardware random number generator) and I would like to know if any configuration is needed in OpenBSD kernel to use this card when cryptography is necessary. eg. When a VPN IPSec is done. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Re: OpenBSD and VPN 1411 Criptographic Card
Thanks for all. On Wed, May 20, 2009 at 12:07 PM, Henning Brauer lists-open...@bsws.de wrote: * Jo?o Salvatti salva...@gmail.com [2009-05-20 13:51]: I bought a Soekris Net5501 with a cryptographic card VPN1411 (Authentication, SHA-1 and MD5, Public Key, RSA, DSA, SSL, IKE and DH, Hardware random number generator) and I would like to know if any configuration is needed in OpenBSD kernel to use this card when cryptography is necessary. crypto accellerators are used automagically as far as they are supported. no buttons. -- Henning Brauer, h...@bsws.de, henn...@openbsd.org BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Re: OpenBSD Libs
Thanks Hannah. 2009/5/14 Hannah Schroeter han...@schlund.de: Hi! On Wed, May 13, 2009 at 03:34:17PM -0300, Joco Salvatti wrote: I've been working on a project to create a smaller, functional version of OpenBSD (50MB). One thing that I've noticed while carrying out this project is that there are four types of libraries, eg: libssl.a libssl.so.14.0 libssl_p.a libssl_pic.a What I would like to know is why are there four different types of libraries? Since disk consumption is a severe constraint, I would like to know which of these are of paramount importance, mandatory for the proper system operation. In general, libfoo.a Static library, normal build. Used only when you link a program against -lfoo and you either specify static linkage or there's no dynamic library available (or you're on an architecture that doesn't support dynamic libraries at all). libfoo_p.a Static library for profiling build (used when you link a program with -p or -pg). libfoo_pic.a Static library, but build from the object files that are compiled with -fpic or -fPIC (i.e. the object files that are used to build the dynamic library). I don't know whether that's used for linking with -lfoo at all (or only if you specify its full pathname). libfoo.so.x.y Dynamic library. Used for linking with -lfoo unless one of the others is used as described above. *Also needed at runtime* if a program is linked against it. If a program is linked against libfoo.so.x.y, you need version x.z with the same x and z = y. So bottom line, if you don't intend to compile or (re-)link anything on your target system, IMO you should be safe to remove the lib*.a files. You *should* keep the lib*.so.* unless you can be sure that you don't need any binary that is linked against that library (check with ldd). You can of course do test installations e.g. in a chroot environment or in a virtual machine (e.g. qemu) or on a spare machine where it doesn't hurt if you break things by removing too much. Kind regards, Hannah. -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Shared IRQ
Hi, I would like to know if a different hardware can shared the same IRQ with another? Eg: inteldrm0 at vga1: apic 1 int 16 (irq 11) ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x02: apic 1 int 16 (irq 11) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x02: apic 1 int 16 (irq 11) Thanks in advance. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
OpenBSD Libs
Hi all, I've been working on a project to create a smaller, functional version of OpenBSD (50MB). One thing that I've noticed while carrying out this project is that there are four types of libraries, eg: libssl.a libssl.so.14.0 libssl_p.a libssl_pic.a What I would like to know is why are there four different types of libraries? Since disk consumption is a severe constraint, I would like to know which of these are of paramount importance, mandatory for the proper system operation. Thanks in advance for the group's attention. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
VPN client-to-site over IPSec
Hi Misc, Is it possible to implement a client-to-site VPN over IPSec? I have searched on the web, but only found site-to-site models. Thanks in advance.
Re: VPN client-to-site over IPSec
Hi folks, google ipsec road warrior openbsd, solve my problem! Thanks for all. On Fri, Apr 3, 2009 at 6:26 PM, Marcello Cruz marcello.c...@globo.com wrote: Toni, Do you mean a VPN where only a HOST will access an entire NETWORK? If so, then the answer is YES. For instance, I have some OpenBSD servers acting as VPN Server and they allow me to connect from home to the networks behind those OpenBSD servers. PC -- Internet -- OpenBSD LAN PC IPSec Tunnel -- LAN I also have other situations where I need an entire LAN communicate with other LAN, like: LAN -- OpenBSD/Other -- Internet --- OpenBSD -- LAN LAN --- IPSec Tunnel --- LAN What do you need? - Original Message - From: Toni Mueller openbsd-m...@oeko.net To: misc@openbsd.org Sent: Friday, April 03, 2009 5:43 PM Subject: Re: VPN client-to-site over IPSec Hi, On Fri, 03.04.2009 at 12:43:33 -0300, JoC#o Salvatti salva...@gmail.com wrote: Is it possible to implement a client-to-site VPN over IPSec? I have searched on the web, but only found site-to-site models. what exactly do you mean by client to site? You can distinguish between transport mode, where you use the IP that you actually use, as an endpoint, and tunnel mode, where you assign an IP of your chosing for use inside the tunnel, and then use that IP for all of your connections. Usually, site-to-site is associated with tunnel mode, and I currently see no reason, and much less any advantage, in using transport mode. Kind regards, --Toni++ -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
[off-topic] Attacks on Intel's System Management Mode
Joanna Rutkowska and Loic Duflot have simultaneously disclosed details of vulnerabilities in Intel's caching mechanisms, which permit the injection of code into the System Management Mode and ultimately the placing of a virtually invisible rootkit. System Management Mode (SMM) is a relatively obscure mode on Intel processors used for low-level hardware control, explain Embleton, Sparks and Zou in a paper on SMM rootkits that's well worth reading. It has its own private memory space [SMRAM], and execution environment which is generally invisible to code running outside [it.] By poisoning the cache of the CPU, Rutkowska can successfully inject her own code, which then runs with maximum privileges, while remaining invisible to the operating system and applications. She provides a harmless proof of concept exploit that she claims works on Intel's DQ35 board, among others. Embleton, Sparks and Zou demonstrate what a genuine SMM rootkit could look like. Not much more is known about Duflot's presentation at CansecWest, other than the title, Getting into the SMRAM: SMM Reloaded. Despite the far-reaching consequences of such SMM rootkits, there's no need to panic. Fortunately, only theoretical concepts and a few conceptual studies for laboratory environments have so far been heard of. Nothing of the kind has yet been observed in the wild as a part of malicious software. Source: http://www.h-online.com/security/Attacks-on-Intel-s-System-Management-Mode--/news/112903
Re: Where is Secure by default ?
If FreeBSD solve your problem, use it. On Mon, Mar 9, 2009 at 12:10 PM, bofh goodb...@gmail.com wrote: On Mon, Mar 9, 2009 at 10:36 AM, irix i...@ukr.net wrote: When this is introduced in OpenBSD, so you can say with confidence that the system really Secure by default ? Then shouldn't you be using freebsd, and go bug them? -- http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk This officer's men seem to follow him merely out of idle curiosity. -- Sandhurst officer cadet evaluation. Securing an environment of Windows platforms from abuse - external or internal - is akin to trying to install sprinklers in a fireworks factory where smoking on the job is permitted. -- Gene Spafford learn french: http://www.youtube.com/watch?v=j1G-3laJJP0feature=related -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
mp3blaster returns: Sound device control error
I have installed recently mp3blaster (version 3.2.1) using pkg_add. However, when I try to play any mp3 file it gives the following message: Sound device control error. Then I have installed it through ports systems (version 3.2.1). Nevertheless, I keep receiving the same message. Finally, I have downloaded the latest version of this software (3.2.5) from the Internet (http://mp3blaster.sourceforge.net/), and then I could get it working perfectly. I have searched on the Internet for a solution but I did not have any success. I can listen to my mp3 files with this newer version, but I would like to know if any of you has experienced such a problem before. Isn't it the case of upgrading mp3blaster package in both the repositories and the ports system? Thanks in advance for the attention to this message. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA - Brazil E-Mail: salva...@gmail.com
Re: Survey on the usage of IPv6
I don't need registration to participate. On Fri, Jan 30, 2009 at 3:14 PM, Lars Noodin larsnoo...@openoffice.org wrote: Registration is a barrier. What do you want to know? -Lars -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA E-Mail: salva...@gmail.com
Re: (bit)torrent openbsd client
Packages: pkg_add -v BitTorrent-4.4.0p4.tgz (curses) pkg_add -v BitTorrent-gui-4.4.0p4.tgz On Wed, Jan 28, 2009 at 12:12 PM, Mihai Popescu B.S. mihai...@gmail.com wrote: Hello, Could you make some suggestion for a good openbsd (bit)torrent client with or without GUI ? I know some names, but I want to have some user experience presented. Thanks. -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joco Salvatti Graduated in Computer Science Federal University of Para - UFPA E-Mail: salva...@gmail.com
3D Acceleration (inteldrm) and 3Ddesktop works fine
Hi misc, With inteldrm enabled, my 3D Desktop works. Steps: 1. Enabling 3D Acceleration: [EMAIL PROTECTED]:/$ glxinfo | grep -i direct direct rendering: Yes 2. Download the 3Ddesktop http://sourceforge.net/project/showfiles.php?group_id=59688 3. Compilation tar xzf 3ddesktop-0.2.9.tar.gz cd 3ddesktop-0.2.9 ./configure (no problem - need libstdc++) make 4. 3Ddesktop ./3ddesk (Works fine) Thanks a lot for the great work. -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA
ifconfig -M on OpenBSD current.
Hi misc, I have already installed OpenBSD current on my laptop, but the ifconfig command doesn't support -M option. Knowing this, how can I scan the wireless networks on current? Thanks in advance.
Re: ifconfig -M on OpenBSD current.
Thanks for all. On Mon, Nov 3, 2008 at 11:34 AM, Stuart Henderson [EMAIL PROTECTED] wrote: On 2008-11-03, Joco Salvatti [EMAIL PROTECTED] wrote: Hi misc, I have already installed OpenBSD current on my laptop, but the ifconfig command doesn't support -M option. Knowing this, how can I scan the wireless networks on current? Thanks in advance. If you follow -current, you need to keep an eye on www.openbsd.org/faq/current.html.
Re: OpenBSD 4.4 released, Nov 1. Enjoy!
Thanks network subsystem developers for the great works. On Sat, Nov 1, 2008 at 1:41 PM, James R. Campbell [EMAIL PROTECTED] wrote: Thanks for all of your hard work! I really enjoyed the song in this release also. --James -- - -- Sendmail: The Vietnam of Berkley UNIX -- Se Debugar i a arte de remover bugs, programar i a arte de inserm-los. Donald E. Knuth. -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA
Re: /usr/include/ headers in the kernel source
Thanks Mats. On Feb 7, 2008 12:25 AM, Mats O Jansson [EMAIL PROTECTED] wrote: On Wed, 6 Feb 2008, Joco Salvatti wrote: Hi all, I've downloaded the OpenBSD 4.2 current source tree to my 4.2 release machine. Then I've made small modifications to my kernel, but when I run make depend I get the following error messages: /usr/src/sys/kern/kern_sysctl.c:91:21: ifaddrs.h: No such file or directory /usr/src/sys/kern/kern_sysctl.c:92:17: err.h: No such file or directory /usr/src/sys/kern/kern_sysctl.c:93:19: ctype.h: No such file or directory I've already read style(9) and even made some search on the web, but I could not find a thing. So I would like to hear from you where I could find information about this issue or if it is possible to use /usr/include headers in the kernel (I guess so because I've seen this in other kernel files) adnd if it links to user libraries. The three include files are userland includes. You can't use them in kernel source. A quick search in the sys tree didn't find any reference to ifaddrs.h. err.h and ctype.h are in some utilities in the sys tree but not in any kernel sources. the kernel doesn't link with any userland libraries. -moj Thanks in advance for the time wasted reading this e-mail. -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED] -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
/usr/include/ headers in the kernel source
Hi all, I've downloaded the OpenBSD 4.2 current source tree to my 4.2 release machine. Then I've made small modifications to my kernel, but when I run make depend I get the following error messages: /usr/src/sys/kern/kern_sysctl.c:91:21: ifaddrs.h: No such file or directory /usr/src/sys/kern/kern_sysctl.c:92:17: err.h: No such file or directory /usr/src/sys/kern/kern_sysctl.c:93:19: ctype.h: No such file or directory I've already read style(9) and even made some search on the web, but I could not find a thing. So I would like to hear from you where I could find information about this issue or if it is possible to use /usr/include headers in the kernel (I guess so because I've seen this in other kernel files) adnd if it links to user libraries. Thanks in advance for the time wasted reading this e-mail. -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Bandwitdh control using altq + pf.
Hi all, I work in a public institution, and its computer network has 4 subnets with CIDR mask 24, i.e., each subnet may have up to 254 hosts. My doubt is: is it possible to implement some rules using altq + pf so that every machine has bandwidth limited to 192Kb/s, without the need to create macros for each machine at pf.conf ? In other words, can I create a rule for the entire subnet x.y.z.0/24 , and make every machine belonging to this subnet be limited to 192 Kb/s ? For example: === fxp_if=fxp0 em_if=em0 dti=10.0.0.0/24 oc=20.0.0.0/24 ies=30.0.0.0/24 dfi=40.0.0.0/24 altq on { $fxp_if, $em_if } cbq bandwidth 100Mb queue { dti, oc, ies, dfi } queue dti bandwidth 192Kb cbq(default) # Each machine inside dti subnet will have 192Kb , not the entire network queue oc bandwidth 192Kb cbq #idem para oc # same for oc queue ies bandwidth 192Kb cbq #idem para ies # same for ies queue dfi bandwidth 192Kb cbq #idem para dfi # same for dfi block log all pass quick on { $fxp_if, $em_if } from $dti to any queue dti pass quick on { $fxp_if, $em_if } from $oc to any queue oc pass quick on { $fxp_if, $em_if } from $ies to any queue ies pass quick on { $fxp_if, $em_if } from $dfi to any queue dfi = I'd like that each machine inside dti subnet had 192Kb, but the entire network. I've searched in lots of websites about a solution that could meet my needs, but I could not find a thing. If anyone does know something that could help me, I'd be very thankful. Thanks in advance for the time wasted reading this e-mail. -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Software for traffic analyzer
Hi Folks, I would like to know what web traffic analyzer should I use on my network. I mean, what do you recommend. Thanks in advance. -- Joao Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
wpa_supplicant with wireless network support
Hi all, Does exist the wpa_supplicant package with wireless network support? Thanks in advance. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: wpa_supplicant with wireless network support
Ok, thanks. On Dec 26, 2007 1:02 PM, Han Boetes [EMAIL PROTECTED] wrote: Joco Salvatti wrote: Does exist the wpa_supplicant package with wireless network support? Check the archives of this mailinglist. # Han -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Source code of OpenBSD packages.
Hi all, Does anyone know if there is a repository in which I could get the source code of some OpenBSD packages? I've been searching about it, but could not find any on the web. I know the ones belonging to the base system may be retrieved through CVS, but what about the other ones? Thanks in advance for the time wasted reading this e-mail... -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Binary emulation removed from OpenBSD 4.2?
Hi all, Was it removed the sysctl which was used to activate the binary emulation of the rc.conf at OpenBSD 4.2? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Problem when trying to install packages under 4.2 snapshot
Hi all, I have the OpenBSD 4.2 snapshot installed, and everything is working fine. But when installing gimp-2.2.17, pkg_add has returned the following error message: Can't install gimp-2.2.17 : lib not found expat.9.0 Using locate I've found: /usr/X11R6/lib/libexpat.so.8.0 Has anyone ever faced this problem before? I've already searched the web but I could not find a tip on how to solve this issue. Thanks in advance for the time wasted reading this e-mail. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Problem when trying to install packages under 4.2 snapshot
Thanks for all. On 10/30/07, Stuart Henderson [EMAIL PROTECTED] wrote: On 2007/10/30 22:33, Joco Salvatti wrote: Hi all, I have the OpenBSD 4.2 snapshot installed, and everything is working fine. But when installing gimp-2.2.17, pkg_add has returned the following error message: Can't install gimp-2.2.17 : lib not found expat.9.0 Using locate I've found: /usr/X11R6/lib/libexpat.so.8.0 Has anyone ever faced this problem before? I've already searched the web but I could not find a tip on how to solve this issue. The quick/no-dwonloading answer: build your own packages from the ports tree. You're using a package snapshot newer than the OS snapshot you have installed. (-current package snaps are always going to trail OS snaps by a bit, currently something around a few days - a week on the faster arch i.e. i386/amd64/sparc64, more on slower arch, so you should have time to update your OS before the package snaps need a newer OS installed). -current works well, but it *is* a moving target, and most developers have limited time which doesn't allow for much hand-holding there. If you're following development code, please follow as an absolute minimum the website (faq/current.html), and really you should also be reading tech@ and source-changes@ (maybe OWC as an alternative) and also ports@ and ports-changes@ if you're interested in ports/packages to get an idea of what's going on. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: When loading a home-made module, linker says : undefined reference to `read'
that's what i was looking for! Thanks. On 10/10/07, Gilles Chehade [EMAIL PROTECTED] wrote: On Wed, Oct 10, 2007 at 10:28:22PM -0300, Jo?o Salvatti wrote: Hi all, I wrote a kernel module for my 4.1 OpenBSD kernel. It compiles normally, but when I try to load it, the modload says: : undefined reference to `read' But the read syscall header is declared within my module. Has anyone ever faced this problem before? Could anyone provide me with some tip in order to tackle this issue? Thanks in advance for the time dedicated to this e-mail. could it be that its sys_read() you are after ? Gilles -- SCHNEIER FACT #40: A vigenere cipher with the Key quot;BRUCESCHNEIERquot; is in fact unbreakable. (source: http://geekz.co.uk/schneierfacts/ ) -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
When loading a home-made module, linker says : undefined reference to `read'
Hi all, I wrote a kernel module for my 4.1 OpenBSD kernel. It compiles normally, but when I try to load it, the modload says: : undefined reference to `read' But the read syscall header is declared within my module. Has anyone ever faced this problem before? Could anyone provide me with some tip in order to tackle this issue? Thanks in advance for the time dedicated to this e-mail. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Definition of the major number under OpenBSD
Thanks Theo, my pseudo device works! On 9/13/07, Theo de Raadt [EMAIL PROTECTED] wrote: In which OpenBSD file do I define the major number for devices (both regular and pseudo-device)? I have searched in several sources, and the closest answer was for NetBSD, which says that major numbers are in /usr/src/sys/conf/majors. But I have not found this file in OpenBSD sources. Noone builds new block devices anymore (in OpenBSD, we instead write drivers which hide behind the scsi subsystem, since this is more flexible). As for strictly character devices, these are inserted per-architecture into the cdevsw[] arrays in arch/ARCH/ARCH/conf.c. At the same time, /usr/src/etc/etc.ARCH/MAKEDEV* have to be modified to create the device nodes. There is no need to keep the major numbers in sync between different architectures. Actually because of many historical reasons, it is impossible. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Clarifications about /dev devices
Hi all, I'd like to know why /dev/cd0a and /dev/rcd0a device files (at my machine) refer to the same physical device, given that one is not a symlink to the other one, and vice-versa, and also given that cd0a is a block device and rcd0a is a character device. Thanks in advance. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Clarifications about /dev devices
Thanks folks. On 9/13/07, Miod Vallat [EMAIL PROTECTED] wrote: I'd like to know why /dev/cd0a and /dev/rcd0a device files (at my machine) refer to the same physical device, given that one is not a symlink to the other one, and vice-versa, and also given that cd0a is a block device and rcd0a is a character device. The kernel handles two kinds of device nodes: ``block'' devices and ``character'' devices. The major numbers of these devices are platform-dependant, and must match the bdevsw[] and cdevsw[] arrays in sys/arch/platform/platform/conf.c. Storage devices can be accessed either as block devices or character devices, hence they have one entry in each of these tables. Their major numbers do not need to match since these are completely independant numbering spaces. Miod -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Traduz pra mim
Sorry Folks! On 9/13/07, Joco Salvatti [EMAIL PROTECTED] wrote: Ola Pessoa da lista, Em qual arquivo do OpenBSD eu defino o major number para os dispositivos (device e pseudo-device)? Pesquisei em varias fontes a mais prsximo foi a do NetBSD que diz que os major numbers ficam em /usr/src/sys/conf/majors. Mas nco encontrei este arquivo nas fontes do OpenBSD! Sds Tmtulo: Definigco do major number no OpenBSD -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Traduz pra mim
Ola Pessoa da lista, Em qual arquivo do OpenBSD eu defino o major number para os dispositivos (device e pseudo-device)? Pesquisei em varias fontes a mais prsximo foi a do NetBSD que diz que os major numbers ficam em /usr/src/sys/conf/majors. Mas nco encontrei este arquivo nas fontes do OpenBSD! Sds Tmtulo: Definigco do major number no OpenBSD
Definition of the major number under OpenBSD
Hi all, In which OpenBSD file do I define the major number for devices (both regular and pseudo-device)? I have searched in several sources, and the closest answer was for NetBSD, which says that major numbers are in /usr/src/sys/conf/majors. But I have not found this file in OpenBSD sources. Thanks in advance for the explanation. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
FOSS Open Hardware Documentation
http://blogs.sun.com/webmink/entry/open_chips_wiki_open http://wikis.sun.com/display/FOSSdocs/Home -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Route traffic through gateway having two links
Hi all, I have a OpenBSD machine working as a gateway and which has two data links, an adsl (sis0 192.158.254.254) and an E1 (rl0 10.3.0.68). There is a machine in the private network (10.3.0.62) that needs a route through the adsl link. I have configured NAT using the following command: nat on sis0 from 10.3.0.62 to any - sis0 But the rule is not working. I do have route for both outputs and my IP forwarding is enabled. I have searched on the net but I could not find anything similar to my problem. If anyone could give me a hint about it, I'd be very thankful. [ host ] | rl0 [ OpenBSD ] -- rl0 (Link E1) --- (internet) | |--- sis0 (link adsl) (internet) My pf.conf # # Macros # e1_link=rl0 adsl_link=sis0 int_if=lo0 e1_ip=10.3.0.68 adsl_ip=192.168.254.10 host= 10.3.0.62 # # Optimizations # set timeout interval 10 set timeout frag 30 set limit { frags 5000, states 2500 } set optimization aggressive set block-policy drop set loginterface rl0 set skip on lo0 set state-policy if-bound # # Scrub # scrub in all # # Nat. # nat on $adsl_link from $host to any - $adsl_link # # Default Policy # block log all # # Rules. # pass quick on $int_if all pass in log on $e1_link inet proto { tcp, udp, icmp } from $host to any flags S/SA keep state pass out log on { $e1_link, $adsl_link } inet proto { tcp, udp, icmp } from any to any flags S/SA keep state -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Remote Printing Using CUPS
Thanks folks! On 7/26/07, Antoine Jacoutot [EMAIL PROTECTED] wrote: On Wed, 25 Jul 2007, Joco Salvatti wrote: Windows machines. I've already both CUPS and Samba installed, but the only options I have are: * AppSocket/HP JetDirect * Internet Printing Protocol (http) * Internet Printing Protocol (ipp) * LDP/LPR Host or Printer * USB Printer #1 * USB Printer #2 IIRC correctly, you need to: $ cd /usr/local/libexec/cups/backend/ \ ln -s /usr/local/bin/smbspool . Then restart cups and you should have smb/windows as an option. smb://username:[EMAIL PROTECTED]:port]/printer cf. smbspool(8) Cheers! -- Antoine -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Netwotk Printing (cups driver).
Hi all, I managed to configure my Xerox PCL 6 printer with a generic driver, the same used in our GNU/Linux distributions, which was obtained from linuxprinting.org. So far, so good. When I send a file to print, the job is scheduled in the printing spool, but nothing else happens, i e, the file is not printed. Does anyone have any suggestions for this issue? Thanks in advance.
Remote Printing Using CUPS
Hi all, I've already searched on the Internet and also some OpenBSD FAQ documentation but I could not find anything that could help me. I'd like to know if CUPS that is packed for OpenBSD has the Windows Printer through Samba option, that could allow remote printing on Windows machines. I've already both CUPS and Samba installed, but the only options I have are: * AppSocket/HP JetDirect * Internet Printing Protocol (http) * Internet Printing Protocol (ipp) * LDP/LPR Host or Printer * USB Printer #1 * USB Printer #2 Thanks in advance
Access Control Mechanism (DAC x MAC)
Hi all, Having Read about computer security, one of the parts that mostly called up my atention were the access control mechanisms. I've found out that the mechanism used by mostly of the Unix-like systems is DAC (Discretionary Access Control) and as I could see OpenBSD fits in that mechanism as well. But the literature says that there is a more sophisticated mechanism, called MAC (Mandatory Access Control). In my studies, all the papers I have read explain that MAC is much more sophiscitated that DAC. Thus I would like to know from you why OpenBSD does not implement this type of mechanism. Thanks.
Re: webmail
Horde (www.horde.org) run nice under OpenBSD. My webmail (webmail.openbsd-pa.org). On 11/23/06, Tautvydas [EMAIL PROTECTED] wrote: Hi On 11/23/06, Jasper Bal [EMAIL PROTECTED] wrote: Anyone using webmail on OpenBSD? What's good, what's not? Jasper roundcube webmail is quite nice. but I use not the latest beta. Latest beta has some problems, I haven't got enough time for debugging :( -- Hi, I'm a .signature virus! Copy me to your .signature file and help me propagate, thanks! -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Randomized malloc() randomized mmap()
Thanks for all. On 10/31/06, Nick Guenther [EMAIL PROTECTED] wrote: On 10/30/06, Joco Salvatti [EMAIL PROTECTED] wrote: Hi all, Reading Theo de Raadt's presentation about exploit mitigation techniques, I could not understand the advantages of using randomized malloc and randomized mmap techniques. I've searched on the Internet about this subject but I couldn't find a thing, maybe because this subject is too technical. I'm sorry for the lack of abilities to understand the presentation. Could anyone, please, give me an example or point me any website in which I could find informations in order to understand why randomized malloc and randomized mmap are more secure than the traditional ones? Thanks in advance for the time wasted reading this e-mail. If memory locations are predictable and you can access program memory arbitrarily (e.g. kernel mode or a bug in something) then you can easily calculate where to find certain pieces of data. This is bad. It lets you read private data or maybe even write it. At least, I think that's about right, right? -Nick -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Randomized malloc() randomized mmap()
Hi all, Reading Theo de Raadt's presentation about exploit mitigation techniques, I could not understand the advantages of using randomized malloc and randomized mmap techniques. I've searched on the Internet about this subject but I couldn't find a thing, maybe because this subject is too technical. I'm sorry for the lack of abilities to understand the presentation. Could anyone, please, give me an example or point me any website in which I could find informations in order to understand why randomized malloc and randomized mmap are more secure than the traditional ones? Thanks in advance for the time wasted reading this e-mail. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Exceptions at transparent proxy.
Hi all, I use transparent proxy, but I have some machines that should access some subnets without proxy, in order to gain access to some applications. When I allow the straight connection to these subnets only the first subnet in the list has effect. The connection to other subnets continue to pass through proxy. I've already searched on the Internet, but all I've noticed was a lot of people claiming to have the same problems, but no solution. Has anyone here in this list a tip about how to solve this issue? nonat = { 200.201.174.0/24, 200.252.141.0/24 } rdr on $int_if inet proto tcp from $int_if:network to ! $nonat port www - $loop_if port 3128 Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Exceptions at transparent proxy.
Thanks folks. On 9/13/06, Martin Toft [EMAIL PROTECTED] wrote: Joco Salvatti wrote: Hi all, I use transparent proxy, but I have some machines that should access some subnets without proxy, in order to gain access to some applications. When I allow the straight connection to these subnets only the first subnet in the list has effect. The connection to other subnets continue to pass through proxy. I've already searched on the Internet, but all I've noticed was a lot of people claiming to have the same problems, but no solution. Has anyone here in this list a tip about how to solve this issue? nonat = { 200.201.174.0/24, 200.252.141.0/24 } rdr on $int_if inet proto tcp from $int_if:network to ! $nonat port www - $loop_if port 3128 Thanks. Your list expands it another way than you think :) Try to use a table: table nonat const { 200.201.174.0/24 200.252.141.0/24 } rdr on $int_if inet proto tcp from $int_if:network to ! nonat port www - $loop_if port 3128 --Martin -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Data from partition where lost!
Hi all, Today, when trying to upload a file to my server, I found out that the server was frozen. Then I restarted it... The fsck ran normally, and everything was fine, and finally all the system partitions were mounted, but the one in which my website was. I've already umounted and mounted the partition a thousand times, and also ran fsck a lot of times, but I've got nothing. It looks like all my data were lost. I just don't have any idea of what could have hapenned. I believe no one has hacked my server because there is no ssh running and ftp is only being served to my localnet. Can anyone help me with this issue? Is there any way to recover my data? I do have a backup, but it is rather old ... Thanks... -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Function prologue and epilogue.
Hi all, I'm studying assembly programming and at this moment I have reached the capther that talnks about functions, and so far having learned about functions' prologue and epilogue. When I implemented a function, using both prologue and epilogue, the compiler compiled it, linked it but when it comes to run the binary I have a fail on memory segment. There it follows the function's prologue and epilogue: function: pushl %ebp movl %esp, %ebp . . movl %ebp, %esp popl %ebp ret When I implement without it the binary runs perfectly. I've already done some researchs about it, but it's too difficult to find specific informations about it for OpenBSd systems, and that's why I'm asking it in the list. Could please anyone help me with this issue? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Suggestions about a topic in Operational Systems
Hi all, I intend to participate in a symposium on Operational Systems here in Brazil, that will take place in the middle of the next year. I also wanted to have a paper published on this symposium, however I need to treat about something of interest from the scientific community, something really relevant to the area. Considering this, I'd like to ask here a opinion from you, about what I could work on in order to ellaborate a paper on it. I'd appreciate tips on the security field (Op Systems security, not concerning to network security...) For now, thanks for the time dedicated to read this e-mail. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: gcc support to stack-smashing attacks protection
Thanks folks . On 6/29/06, Joachim Schipper [EMAIL PROTECTED] wrote: On Thu, Jun 29, 2006 at 04:48:24PM -0300, Jo?o Salvatti wrote: Hi all... I'd like to know if OpenBSD's gcc build binary files with built-in stack-smashing attacks protection. As Theo pointed out, yes. Be aware that there are still plenty of problems that can occur with less-than-perfectly written code; plus, in many cases only the program logic needs to be exploited (XSS and SQL injection are prime examples of this, as are most symlink attacks). Joachim -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
gcc support to stack-smashing attacks protection
Hi all... I'd like to know if OpenBSD's gcc build binary files with built-in stack-smashing attacks protection. Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Nagios and Apache
Hi all, I've installed and configured nagios, and I can open the start page with no problems. But I don't have access to the links that monitor services, such as Tatical Overview. At apache log I have the following error messages: [Fri Jun 23 15:42:51 2006] [error] (13)Permission denied: exec of /cgi-bin/nagios/tac.cgi failed [Fri Jun 23 15:42:51 2006] [error] [client 127.0.0.1] Premature end of script headers: /cgi-bin/nagios/tac.cgi My httpd.conf is how it follows: ScriptAlias /cgi-bin/nagios /var/www/cgi-bin/nagios Directory /var/www/cgi-bin/nagios # SSLRequireSSL Options ExecCGI AuthName Nagios Access AuthType Basic AuthUserFile /var/www/nagios/htpasswd.users Require valid-user Order deny,allow Deny from all Allow from 127.0.0.1 /Directory Alias /nagios /var/www/nagios Directory /var/www/nagios # SSLRequireSSL Options ExecCGI Options None AllowOverride None AuthName Nagios Access AuthType Basic AuthUserFile /var/www/nagios/htpasswd.users Require valid-user Order deny,allow Deny from all Allow from 127.0.0.1 /Directory My apache server runs using the chroot feature. Could please anyone tell me what's going wrong? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Nagios and Apache
Hi folks... Thanks for the suggestions. But I didn't have paid attention that the problem was at /etc/fstab file : noexec flag was active for /var partition. I should have paid better attention to that before. Thanks. On 6/23/06, Craig Skinner [EMAIL PROTECTED] wrote: On Fri, Jun 23, 2006 at 03:45:35PM -0300, Joco Salvatti wrote: [Fri Jun 23 15:42:51 2006] [error] (13)Permission denied: exec of /cgi-bin/nagios/tac.cgi failed /var[/www] mounted noexec in fstab? -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Doubts about OpenBSD security.
My doubts may seem fool, so thanks in advance for those who will read this e-mail and may help me with my doubts. 1. Why doesn't passwd ask superuser's current password when it's run by the superuser to change its own password? May not it be considered a serious security flaw? 2. Why doesn't the system ask the password, as a default action, to log in the system, when entering in single user mode? May not it also be considered a serious security flaw? And why doesn't exist a different password to log in single user mode, instead of using root's password? An real example: Let's suppose an attacker entered the room where an OpenBSD server is located in, and by mistake the system administrator has forgotten to logout the root login session. So the attacker could enter in single user mode, without the need for the root password, and load a malicious kernel module. He also could do millions of other things, but changing root's password, because the system administrator would notice it immediatelly. I believe it could be more difficult for the attacker if there were a different password to log in the system in single user mode. Thanks for the time wasted reading this e-mail and I'm sorry if my questions are too silly. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: Doubts about OpenBSD security.
Thanks for all. On 6/21/06, Peter Landry [EMAIL PROTECTED] wrote: I think that when you've given an attacker physical access to a machine with a root session open, there's not a whole lot OpenBSD (or any OS) can do... The attacker could also, with physical, attach a keystroke logger, unplug your machine, or any number of other bad/humorous things I'm not clever enough to think of -- no matter what OS is running on the system. Hope that allays some of your fears regarding OpenBSD in particular... Peter L. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Joco Salvatti Sent: Wednesday, June 21, 2006 1:23 PM To: Misc OpenBSD Subject: Doubts about OpenBSD security. My doubts may seem fool, so thanks in advance for those who will read this e-mail and may help me with my doubts. 1. Why doesn't passwd ask superuser's current password when it's run by the superuser to change its own password? May not it be considered a serious security flaw? 2. Why doesn't the system ask the password, as a default action, to log in the system, when entering in single user mode? May not it also be considered a serious security flaw? And why doesn't exist a different password to log in single user mode, instead of using root's password? An real example: Let's suppose an attacker entered the room where an OpenBSD server is located in, and by mistake the system administrator has forgotten to logout the root login session. So the attacker could enter in single user mode, without the need for the root password, and load a malicious kernel module. He also could do millions of other things, but changing root's password, because the system administrator would notice it immediatelly. I believe it could be more difficult for the attacker if there were a different password to log in the system in single user mode. Thanks for the time wasted reading this e-mail and I'm sorry if my questions are too silly. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED] -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Default PF policy
Hi all, I have a OpenBSD 3.9 machine acting as a firewall. It has two network interface cards, one connected to my local network and the other one connected to Internet. My default policy is blocking all traffic using block all I don't want anyone from my local network to connect to MSN and P2P programs, so I haven't created any rule to permit those kind of packet traffic. But I'm facing a lot of problems due to this, because I have to specify packets that should pass through my internal and external interfaces. I'd like any ideas or tips from PF gurus about how to improve my firewall policies. I have an idea: allow everything at my internal NIC and block all at my external NIC, so all I had to do was specifying allowed incoming and outcomming traffics only at my external NIC. But I'll be waiting for (better) proposals. By now thanks for the time spent reading with this e-mail. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Problems trying to log on squirrelmail - part 2.
Hi all, Thank you very much for the tips you sent me. I could finally put squirrelmail to work. Now everything is almost fine, but there is still a little problem: I can send and receive e-mail through squirrelmail, but when it comes to receive an e-mail, it arrives at my mailbox (/var/spool/username) but it doesn't appear at my INBOX. But when I send an e-mail it appears at my sent items folder. Does anyone know what's happening? Just to remember: OpenBSD 3.9 postfix procmail cyrus-imapd Squirrelmail folders are placed at /var/spool/imap/user/myusername/Sent, Drafts, Trash Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Problems trying to log on squirrelmail.
Hi all, After three days facing a lot of problems to install an OpenBSD server with postfix, cyrus and squirrelmail, I could finally log on webmail. But now I'm facing a new problem that I could solve, and it shows as soon as I log in. I've tried everything I found on the Internet, but I didn't succeed. The error message is how it follows: On the left side, where the folders are shown: ERROR: ERROR: Could not complete request. Query: CREATE INBOX.Sent Reason Given: Permission denied On the right side, where the messages are placed: ERROR: ERROR: Could not complete request. Query: SELECT INBOX Reason Given: Mailbox does not exist Has anyone ever faced this problem? I'd also be thankful if anyone could point me a set of servers that I could use to build an e-mail server over OpenBSD. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
ksh doesn't read .profile when logging as root at xterm.
Hi all, I'd like to know if it's possible to configure `ls' to list files using colors. I use ksh as default shell. I have also noticed that when logged in the X server, when I open a xterm and do `su root' my ksh doesn't read my profile. Reading OpenBSD's FAQ I've found the following configuration: $ echo XTerm*loginShell: true ~/.Xdefaults But it didn't work either. I've already search the Internet but I wasn't able to find a thing about it that could solve my problem. Can please anyone explain me what's going wrong? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Built assembly module using libc routines.
Hi all, I'm developing a small program that uses an assembly routine. It is compiled and executed normally. But I've done some changes in the routine, more specifically changing the system calls, such as write, by libc functions, such as fprintf and exit. Then everytime I try to run the program I have the following error message: printf undefined reference exit undefined reference This routine is not inline , it is a separated module built in assembly. Does anyone know how to build this program using libc routines? I've used the following command line to compile the code: as procedure.S -o procedure.o ld -Bdynamic -dynamic-linker /usr/libexec/ld.so procedure.o -o procedure -lc /usr/lib/libc.so.39.0: undefined reference to `environ' /usr/lib/libc.so.39.0: undefined reference to `__progname' But it doesn't work. Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Problems trying to mount partition.
Hi all, I have two hd's: one has my OpenBSD system (wd0) and the other one is for backup purposes. When OpenBSD 3.9 was released I formatted my wd0 to install it, but I didn't do a thing with wd1. But when I tried to mount it (file system type ffs) it returns the following message: [EMAIL PROTECTED]:/# mount -t ffs /dev/wd1a /mnt/backup/ mount_ffs: /dev/wd1a on /mnt/backup: Device not configured Could please anyone help me? There goes the disklabel. [EMAIL PROTECTED]:/# disklabel wd1 # Inside MBR partition 3: type A6 start 63 size 156296322 # /dev/rwd1c: type: ESDI disk: ESDI/IDE disk label: ST380011A flags: bytes/sector: 512 sectors/track: 63 tracks/cylinder: 16 sectors/cylinder: 1008 cylinders: 16383 total sectors: 156301488 rpm: 3600 interleave: 1 trackskew: 0 cylinderskew: 0 headswitch: 0 # microseconds track-to-track seek: 0 # microseconds drivedata: 0 16 partitions: # sizeoffset fstype [fsize bsize cpg] a: 15629632263 unused 0 0 # Cyl 0*-155055* c: 156301488 0 unused 0 0 # Cyl 0 -155060 [EMAIL PROTECTED]:/# mount -t ffs /dev/wd1a /mnt/backup/ mount_ffs: /dev/wd1a on /mnt/backup: Device not configured For now, thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Congratulations OpenBSD project.
Hi all, This e-mail has not the purpose of clearing any doubt. It's only meant to thanks everyone who belongs to this mailing list, those who are developers, those who work translating any kind of pages and answering e-mails. I also would like to give my congratulations to the OpenBSD project. The OpenBSD 3.9 release is really fantastic!! A lot of newly implemented features, much more supported devices, much more secure, more packages available (some updated, some newly added, and so on)! No doubts that OpenBSD's security, deployment and release policies are one of the best (if not the best) of any existing. I also would like to invite people, let's help the project buying the installation CD's, T-shirts, and posters, so this project may grow more and more, and always keeping it's development quality. Thanks to everyone and my best wishes to OpenBSD project. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
OpenBSD remote printer
Hi all, I'd like to know if its possible to share a printer connected to a Windows machine to print a document from a OpenBSD machine. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Secure programming over openbsd
Hi all, Does anyone know a book, tutorial or documents of any kind that treat about secure programming over OpenBSD? Since OpenBSD implements many secure system calls and lots of other methods that are much more secure that respective implementations in other platforms: mkstem, strlcpy, strlcat... Thanks... -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
why /dev/rwd0c instead of /dev/wd0c?
Hi all, When I run 'disklabel wd0', it returns: # /dev/rwd0c: My question is: why /dev/rwd0c instead of /dev/wd0c? Thanks.. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: why /dev/rwd0c instead of /dev/wd0c?
Thanks folks. On 4/14/06, Tim Donahue [EMAIL PROTECTED] wrote: On Friday 14 April 2006 10:56, Joco Salvatti wrote: Hi all, When I run 'disklabel wd0', it returns: # /dev/rwd0c: My question is: why /dev/rwd0c instead of /dev/wd0c? Thanks.. From `man disklabel`: diskSpecify the disk to operate on. It can be specified either by its full pathname or an abbreviated disk form. In its abbreviat- ed form, the path to the device, the `r' denoting raw device, and the slice, can all be omitted. For example, the first IDE disk can be specified as either /dev/rwd0c, /dev/wd0c, or wd0. Tim Donahue -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Set up root partition as read only.
Hi all, To increase the security level of my OpenBSD system I have defined at /etc/fstab that the root partition should be read only. /etc/fstab follows: /dev/wd0a / ffs ro,softdep 1 1 /dev/wd0g /home ffs rw,softdep,nodev,nosuid,noexec 1 2 /dev/wd0f /tmp ffs rw,softdep,nodev,nosuid,noexec 1 2 /dev/wd0d /usr ffs rw,softdep,nodev 1 2 /dev/wd0e /var ffs rw,softdep,nodev,nosuid,noexec 1 2 After rebooting my system I tested to check whether these settins were applied correctly: # cd / # touch test When I ran ls the 'test' file was there. I mean, the ro flag that I had added to my root partition had no effect. Has anyone ever faced this? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
why is 'passwd' located in /usr/bin instead of /bin?
Hi all, I'd like to know why 'passwd' is located in /usr/bin, since this command is very important for system maintenance purposes. Wouldn't it be better 'passwd' being located in /bin? Because generally /usr has its own partition, and then, when entering in single user mode for any reason or even to recover root password we are to mount /usr partition in order to run 'passwd'. I'm asking it because I've faced this problem sometime ago. An OpenBSD server was installed by a sysadmin that travelled as he had quit the job. Then when I assumed this responsability (being a sysadmin) no one could tell me the superuser password, because no one knew that information, thus I had to enter in single user mode, but in order to run 'passwd' I had to mount /usr. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Re: why is 'passwd' located in /usr/bin instead of /bin?
Thanks Bob! On 4/12/06, Bob Beck [EMAIL PROTECTED] wrote: Because passwd is actually a big old command that uses lots of shared libraries. - and may use other network calls, such as yp or kerberos. commands in /bin are staticly linked. The short answer is if you want to do things like vi or passwd in single user mode - mount /usr - it's not that hard. having said that I never run passwd to recover a root password, I just use ed on /etc/master.passwd, paste in a copy of a blowfish password I know and run pwd_mkdb -Bob * Joco Salvatti [EMAIL PROTECTED] [2006-04-12 08:37]: Hi all, I'd like to know why 'passwd' is located in /usr/bin, since this command is very important for system maintenance purposes. Wouldn't it be better 'passwd' being located in /bin? Because generally /usr has its own partition, and then, when entering in single user mode for any reason or even to recover root password we are to mount /usr partition in order to run 'passwd'. I'm asking it because I've faced this problem sometime ago. An OpenBSD server was installed by a sysadmin that travelled as he had quit the job. Then when I assumed this responsability (being a sysadmin) no one could tell me the superuser password, because no one knew that information, thus I had to enter in single user mode, but in order to run 'passwd' I had to mount /usr. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED] -- | | | The ASCII Fork Campaign \|/ against gratuitous use of threads. | -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://www.openbsd-pa.org e-mail: [EMAIL PROTECTED]
Bind or Djbdns
Hi all, I'd like to know your opinion about to major DNS servers: Bind and djbdns. Which one is the best (I'm not sure if I may ask it this way)? Which one you'd best recommend? I've already used Bind (and I still use it) and I know it works perfectly fine. But before getting in touch with OpenBSD and their users I realized that I had an wrong opinion about a lot of softwares. So I'd like to know your opinion. P.S. My intention is not starting a flamed discussion or even an argument. I just want to know your opinion about this issue. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Re: Bind or Djbdns
Tanks for all! On 4/10/06, Obi Okeke [EMAIL PROTECTED] wrote: Hi Joco, Personally, I would VERY highly recommend DJBDNS for DNS and also Qmail for Email Servers. I've used both on multiple servers for 7 years straight and NEVER EVER had one single issue - no security hacks and no performance issues just rock solid performance always. DJBDNS and Qmail by Dan Bernstein is THE BEST in my opinion. My understanding is that Theo and the OpenBSD team removed DJBDNS and Qmail from the ports because Dan Bernstein does not have a fully free and unrestricted license, which I can understand does not fit the OpenBSD philosophy, ideals and project goals. Regardless, I go with what's best and DJBDNS and Qmail are the best hands down in my opinion. Like OpenBSD, it just works, period. Look at the recent Sendmail security issue which is just one of MANY over the years while Qmail to my knowledge NEVER EVER had one single issue - it is truely rock solid (just like OpenBSD). I have saved my self MANY headaches and I have watched othe Sys Admins struggle year in and year out with M$ email systems and Sendmail systems. --- Joco Salvatti [EMAIL PROTECTED] wrote: Hi all, I'd like to know your opinion about to major DNS servers: Bind and djbdns. Which one is the best (I'm not sure if I may ask it this way)? Which one you'd best recommend? I've already used Bind (and I still use it) and I know it works perfectly fine. But before getting in touch with OpenBSD and their users I realized that I had an wrong opinion about a lot of softwares. So I'd like to know your opinion. P.S. My intention is not starting a flamed discussion or even an argument. I just want to know your opinion about this issue. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED] Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Mount Windows Shares
I'd like to know if it's possible to mount a Windows share that is located on a Windows 2003 server machine which also has my OpenBSD 3.8. My machine does not belong to the Windows machine's domain. I've tried the same system to mount with GNU/Linux but I hadn't any success. I've already search for informations on man pages, but all I've got were some parameter misusage. If anyone can help me, I'd be very thankful. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Firefox with Java and Flash
Hi all, I have installed in my machine both firefox web browser and java plugin (compiled on my own machine). The java plugin works fine with opera, but I'd like to use it with firefox, but I don't know where to put it. Does anyone here from list know where to place the plugins? I've seen the FAQ before, but it only reports about Opera. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Privilege separation privilege revocation
Hi all, I've tried to find any definition on the Internet before but I really couldn't find a paper or anything that could clear up my doubts. If anyone here could help me I'd be very thankful. The questions are the following: 1. What is privilege separation? 2. What is privilege revocation? 3. What is ProPolice? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Re: Privilege separation privilege revocation
Thanks for all!!! On 3/23/06, Joachim Schipper [EMAIL PROTECTED] wrote: On Thu, Mar 23, 2006 at 10:14:12AM -0300, Joco Salvatti wrote: Hi all, I've tried to find any definition on the Internet before but I really couldn't find a paper or anything that could clear up my doubts. If anyone here could help me I'd be very thankful. The questions are the following: 1. What is privilege separation? 2. What is privilege revocation? 3. What is ProPolice? Thanks. See Wikipedia's OpenBSD entry and the ProPolice page linked from there. Basically, the first two involve running with less priviliges than the process was started with, and the last one protects from certain buffer overflows, which is a common exploitable bug in C programs. Nothing Google couldn't answer. Please search first; if you genuinely want to know something that cannot be found elsewhere, please ask again. Joachim -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
flash plugin mozilla-firefox
Hi all, I'd like to know where to put the flash plugin in order to have flash animations being run under Mozilla-Firefox. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
rip dvd on OpenBSD.
hi all, I'd like to know how to rip a DVD. But using dvdrip, thus creating the DVD's image. Could please anyone help me? Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Problem to read dvd on openbsd!
Hi all, I'd like to know if anyone could help on the following problem: 1. First I've copied the contents of a DVD to my HD 2. After copying I've burned the DVD, as it is specified in the official OpenBSD FAQ. Everything works fine. 3. When it comes to use the DVD for playing with gmplayer or in any other DVD equipment an error occurs. Using gmplayer, the error message is Can't open VGM info!. Has anyone ever experienced this problem? Could please anyone help me? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
xchm port
I have installed xchm from a non-offical OpenBSD port. The installation process ran fine, however the program is not running completely fine. When I try to open a .chm document it doesn't open. In the status bar the message connecting... appears and nothing else happens... Has anyone here faced that before? What should I do to solve it? -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
updating the kernel to CURRENT
Hi all, When updating the kernel to CURRENT (in the case, 3.9), do I have to update ports and already installed packages? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
enable the Fn key of my keyboard in my OpenBSD 3.8
Hi all, Is there any way to enable the Fn key of my keyboard in my OpenBSD 3.8 and configure the delete key? Because right now the delete key is working the same way backspace does, and the Fn key is useless. Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Compiling the current version within the stable version
Hi all, I have installed on my machine the OpenBSD release 3.8. So, if I download the source code from a more recent release, compile and install it, will the current installed binaries, such as top, mount, disklabel, and many others in /bin, /sbin, /usr/bin, etc... work with this new kernel? If so, why do I need to update all my packages every a new version of the system is released? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Re: Using freshports.org ports
Ok, thanks! On 1/16/06, Josh Grosse [EMAIL PROTECTED] wrote: On Mon, Jan 16, 2006 at 06:06:20PM -0300, Jo?o Salvatti wrote: Hi all, I'd like to know if I can use the ports at http://www.freshports.org/ in my OpenBSD system. These are FreeBSD ports. Binaries from these ports may be used in some circumstances, see compat_freebsd(8) for details. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Geforce Driver for OpenBSD
Hi all, I visited the Nvidia's website but I didn't find anything, but I just want to be sure: are there any geforce device driver available for OpenBSD? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Re: OpenBSD's 10th birthday
Happy Birthday OpenBSD!!! On 10/18/05, z0mbix [EMAIL PROTECTED] wrote: Theo de Raadt wrote: Now it is really OpenBSD's 10th birthday ;) Congratulations and many thanks to the whole OpenBSD team for all their hard work and for such a excellent Operating System. Cheers David -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Re: Happy Birthday OpenBSD
Brazilian community wish you happy birthday!! Feliz Aniversario OpenBSD! On 10/14/05, Marcin Wilk [EMAIL PROTECTED] wrote: HAPPY BIRTHDAY OPENBSD !!! Thank You Theo De Raadt for 10 years of hard work under OpenBSD! Thank You community for support, hacking learning OpenBSD! VIVA LA OpenBSD! Wszystkiego najlepszego! At 11:53 2005-10-14, you wrote: HAPPY BIRTHDAY OPENBSD \ ^__^ \ (oo)\___ (__)\ )\/\ ||w | || || 10`s years :) -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
After upgrading the source tree the kernel building process fails!
Hi all, I upgraded my OpenBSD 3.7 system's source code running this command: cvs -q up -rOPENBSD_3_7 -Pd Ok, everything worked fine, the source files were updated. Following the instructions contained in http://www.openbsd.org/anoncvs.html, there says that before compiling a new kernel I should compile my latest config, because I could have problems during the kernel config. Ok, I did that. I updated my config: cd /usr/src/usr.sbin/config make ... Ok. make install ... Ok. I went to mu kernel config directory, and I did the following: ./dmassage -s GENERIC mykernel after: config mykernel I entered in my kernel's compilation directory and I did: make depend make After a certain amount of time compiling the sources, the following error messages showed up: - Hide quoted text - systrace.o(.text+0xc67): In function `systrace_redirect': : undefined reference to `stackgap_init' systrace.o(.text+0x137d): In function `systrace_prepinject': : undefined reference to `stackgap_alloc' systrace.o(.text+0x1bdb): In function `systrace_replace': : undefined reference to `stackgap_alloc' init_sysent.o(.data+0x44): undefined reference to `compat_43_sys_creat' init_sysent.o(.data+0x9c): undefined reference to `compat_43_sys_lseek' init_sysent.o(.data+0x134): undefined reference to `compat_43_sys_stat' init_sysent.o(.data+0x144): undefined reference to `compat_43_sys_lstat' init_sysent.o(.data+0x1f4): undefined reference to `compat_43_sys_fstat' init_sysent.o(.data+0x1fc): undefined reference to `compat_43_sys_getkerninfo' init_sysent.o(.data+0x204): undefined reference to `compat_43_sys_getpagesize' init_sysent.o(.data+0x23c): undefined reference to `compat_43_sys_mmap' init_sysent.o(.data+0x2a4): undefined reference to `compat_43_sys_wait' init_sysent.o(.data+0x2bc): undefined reference to `compat_43_sys_gethostname' init_sysent.o(.data+0x2c4): undefined reference to `compat_43_sys_sethostname' init_sysent.o(.data+0x2cc): undefined reference to `compat_43_sys_getdtablesize' init_sysent.o(.data+0x31c): undefined reference to `compat_43_sys_accept' init_sysent.o(.data+0x32c): undefined reference to `compat_43_sys_send' init_sysent.o(.data+0x334): undefined reference to `compat_43_sys_recv' init_sysent.o(.data+0x364): undefined reference to `compat_43_sys_sigvec' init_sysent.o(.data+0x36c): undefined reference to `compat_43_sys_sigblock' init_sysent.o(.data+0x374): undefined reference to `compat_43_sys_sigsetmask' init_sysent.o(.data+0x384): undefined reference to `compat_43_sys_sigstack' init_sysent.o(.data+0x38c): undefined reference to `compat_43_sys_recvmsg' init_sysent.o(.data+0x394): undefined reference to `compat_43_sys_sendmsg' init_sysent.o(.data+0x3ec): undefined reference to `compat_43_sys_recvfrom' init_sysent.o(.data+0x40c): undefined reference to `compat_43_sys_truncate' init_sysent.o(.data+0x414): undefined reference to `compat_43_sys_ftruncate' init_sysent.o(.data+0x46c): undefined reference to `compat_43_sys_getpeername' init_sysent.o(.data+0x474): undefined reference to `compat_43_sys_gethostid' init_sysent.o(.data+0x47c): undefined reference to `compat_43_sys_sethostid' init_sysent.o(.data+0x484): undefined reference to `compat_43_sys_getrlimit' init_sysent.o(.data+0x48c): undefined reference to `compat_43_sys_setrlimit' init_sysent.o(.data+0x494): undefined reference to `compat_43_sys_killpg' init_sysent.o(.data+0x4ac): undefined reference to `compat_43_sys_quota' init_sysent.o(.data+0x4b4): undefined reference to `compat_43_sys_getsockname' init_sysent.o(.data+0x4e4): undefined reference to `compat_43_sys_getdirentries' init_sysent.o(.data+0x5e4): undefined reference to `compat_35_sys_stat' init_sysent.o(.data+0x5ec): undefined reference to `compat_35_sys_fstat' init_sysent.o(.data+0x5f4): undefined reference to `compat_35_sys_lstat' init_sysent.o(.data+0x6f4): undefined reference to `compat_35_sys_semop' init_sysent.o(.data+0x73c): undefined reference to `compat_35_sys_shmget' init_sysent.o(.data+0x80c): undefined reference to `compat_35_sys___semctl' init_sysent.o(.data+0x814): undefined reference to `compat_35_sys_shmctl' init_sysent.o(.data+0x81c): undefined reference to `compat_35_sys_msgctl' init_sysent.o(.data+0x84c): undefined reference to `compat_35_sys_fhstat' tty.o(.text+0xfe0): In function `ttioctl': : undefined reference to `ttcompat' I always used the 'dmassage' to configure my kernel and I never had a problem before. Could please anyone tell me what's going on? I don't believe it could be a programming error in kernel source files. Could it be my linker? Because I noticed all the modules were compiled. Only when it comes to linking the problem shows up. P.S. I have also tried to compile a GENERIC kernel but it also ran into errors. And the error list was quite bigger. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Text Editor
Hi all. I'd like to know if anyone can tell me a good text editor that runs under X environment. I'd like to know a good one, since there is no OpenOffice port to OpenBSD. Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED] Eu tinha uma vida antes de conhecer o computador
Active Swap space
Hi all, I have a OpenBSD system acting as a firewall. When I use the top command I see that the swap space is not being used. I'd like to know if the swap space is only enabled when the system needs it or if it's enabled just when the system comes up. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
snmp support
Hi all, I have a firewall with a xl0 at pci0 dev 9 function 0 3Com 3c905 100Base-TX rev 0x00: irq 11, address 00:60:97:d3:77:85 network interface card, and I'd like to know how to activate SMNP under my OpenBSD system to capture the informations and generate the input to MRTG. Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
How to configure bind to work under OpenBSD 3.7
HI all, I'd like to know where I could find informations about how to configure bind to work under OpenBSD 3.7. I've already made a search in the net, but the available documents are vacant. I've already looked at FAQ files, but I also cound't find a thing. Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
Nagios: Premature end of script headers
Hi all, I installed and configured Nagios on my machine. The Nagios webpage can be retrieve normally, but something strange happens when I try to retrieve host detail: Internal Server Error The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, [EMAIL PROTECTED] and inform them of the time the error occurred, and anything you might have done that may have caused the error. More information about this error may be available in the server error log. Eu olhei o arquivo de log de erros e ele me diz o seguinte: [Tue Aug 23 11:35:06 2005] [error] [client 10.10.1.254http://10.10.1.254/ http://10.10.1.254] Premature end of script headers: /nagios/cgi-bin/tac.cgi [Tue Aug 23 11:35:16 2005] [error] [client 10.10.1.254 http://10.10.1.254/ http://10.10.1.254] Premature end of script headers: /nagios/cgi-bin/status.cgi I've already tried to look for some reference about how to solve this problem at Google, but I couldn't find a thing. Has anyone any suggestion about how to solve this? Thanks -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]
My OpenBSD system cannot load any shared object anymore!!!
Hi all, I was trying to emulate linux binaries under my OpenBSD system 3.7, but I believe I made a mistake. My OpenBSD system cannot load any shared object anymore. Anything I try to run, the system can't load the shared object to which it's linked. I thought that restarting the system the problem would be solved, but it got wrost. It doesn't start ttys anymore, doesn't ask for login, the system is a mess. Is there anyway to solve this problem, or is it only the case of a new install? Thanks. -- Joco Salvatti Undergraduating in Computer Science Federal University of Para - UFPA web: http://salvatti.expert.com.br e-mail: [EMAIL PROTECTED]