can't startx from user after upgrade
Hello I have just successfully upgrade gnome 2.4 to gnome 2.6. Well, at least that's the message on the screen after upgrade. :) Before the upgrade all was working well. After the upgrade I have some problems. I cannot startx from a regular user login. When trying, I get the following errors: $startx xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority Fatal server error: Cannot move old logfile /var/log/XFree86.0.log.old When reporting a problem (blah, blah) giving up. xinit: No such file or directory (errno 2): unable to connect to X server xinit: No such process (errno 3): Server error. xauth: timeout in locking authority file /home/robert/.Xauthority $ If I startx from a root login, I get to gnome but it seems to load very slow. I also am not able to su from a normal login to root. $su Password: May 22 06:48:27 bsd-desktop su: BAD SU robert to root on /dev/ttyv0 su: Sorry $ I am running FreeBSD 5.2RC. TIA Robert P.S. If this message was duplicated, I apologize. I received a message from my mail admin that it could not be sent. So I am sending again. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: home on a gbde encrypted partion
On Sunday 23 May 2004 01:56, Robert Storey wrote: On Sat, 22 May 2004 12:54:29 +0200 platanthera [EMAIL PROTECTED] wrote: On Friday 21 May 2004 17:49, platanthera wrote: hi all, I want to move my home directory to a gbde encrypted partition. I plan to have only the default dotfiles in /home/xxx (before mounting the encrypted partition), log in as usual, attach and fsck the encrypted partion and then mount it 'over' /home/xxx. Is there anything wrong with this approach? hmm... obviously there is something wrong. I can't unmount my current home directory later. Not really surprising.. Interesting question. File /etc/passwd is where the system determines where a user's data files will be located. For example, user robert on my system: [EMAIL PROTECTED]:~ cat /etc/passwd | grep robert robert:*:1005:1006:User :/home/robert:/usr/local/bin/bash So just create a special user (using sysinstall), perhaps user secure. Instead of putting his login directory at /home/secure, put it on /secure (a directory you manually create) and (as root) mount /secure on an encrypted partition. After /secure is mounted, login as user secure. You'll have to tweak permissions of course so that user secure can read/write files on this partition. hi Robert, thanks for your reply. In the meantime I decided to move /home completely to an encrypted partition, which I attach and mount as root before logging in under my user account. Think that's the easiest approach.. best regards ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
The FreeBSD Diary: 2004-05-02 - 2004-05-22
The FreeBSD Diary contains a large number of practical examples and how-to guides. This message is posted weekly to [EMAIL PROTECTED] with the aim of letting people know what's available on the website. Before you post a question here it might be a good idea to first search the mailing list archives http://www.freebsd.org/search/search.html#mailinglists and/or The FreeBSD Diary http://www.freebsddiary.org/. These are the articles posted during this period: 22-May : Laptop stolen It's gone. Nothing I can do about it. http://freebsddiary.org/laptop-stolen.php?2 21-May : Xplanet - improve your background Provide a dynamic and interesting background for X http://freebsddiary.org/xplanet.php?2 -- Dan Langille BSDCan - http://www.BSDCan.org/ - BSD Conference ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keyboard country mapping
On Sat, May 22, 2004 at 03:12:09PM -0600, Warren Block wrote: On Sat, 22 May 2004, arden wrote: I'm in the UK but my install has set up my keyboard as American how can i alter it ? You can choose a keymap interactively with kbdmap. Based on 'man rc.conf', adding keymap=uk.cp850 to your rc.conf may do what you want. (I'm not sure if that's the right one, though.) keymap=uk.iso is what I use in /etc/rc.conf Nb. All of the suggestions so far in this thread only deal with the keyboard map on the console. If you're using X, that has a completely separate keyboard configuration. From /etc/X11/XF86Config: Section InputDevice Identifier Keyboard0 Driver keyboard Option XkbModel pc105 Option XkbLayout gb EndSection And there are a whole series of applications to do things with X keyboards, whose names all start with 'xkb' -- probably the most amusing is 'xkbprint' which will give you a neat postscript file showing all of the symbols attached to each key according to what modifier (shift, alt, ctrl, ...) keys you use. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgpEE7ealMJ8w.pgp Description: PGP signature
Re: LSI 20320R Raid Card
J.D. Bronson wrote: I have asked this and no one replied, but I have more information... The card seems very well supported (mpt) but yet when I setup a RAID MIRROR and it is resyncing - the card DOES tell Freebsd 5.2.1, but the message is unrecognized: Waiting 10 seconds for SCSI devices to settle mpt0: Unknown event 0xb mpt0: Unknown event 0xb GEOM: create disk da0 dp=0xc7b72050 = Is there plans to fix this so that the card and the driver can tell the OS whats going on? Thanks. The mpt and amr drivers are largely unmaintained right now as LSI no longer sponsors an engineer to take care of them. I'm not sure what else to say about that other than we would gladly accept a new maintainer. Scott ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: PPP takes the system over :(
On Sun, May 23, 2004 at 09:36:16AM +0400, -=Nihr0M=- probably wrote: Hello Lowell Gilbert! Yes, I have a vterminal open (konsole), but it does change nothing... I can open another virtual term, but only when my network activity is close to zero. If you mean the 'k' in 'konsole', that probably wasn't the VT you were asked to switch. Did you try pressing Ctrl+Alt+F2, for instance? [skip hideously wrapped top output] that nice of ppp is my doing - I thought it would take less resources - no result. And at that moment I downloaded a file... Could you try it with no extraneous stuff, like KDE, running? -- DoubleF Now this is a totally brain damaged algorithm. Gag me with a smurfette. -- P. Buhr, Computer Science 354 pgpsj1dT255Tr.pgp Description: PGP signature
internet access from jail with nat
My host machine acts as a gateway and has a simple firewall setup with ipfw and natd. There are no problems with other computers on the local network or the host machine in accessing the internet with this setup. However I'm having problems with getting jails on the host pc, to access the internet. Jails can access the host pc and vice versa, but not external ip addresses from within a jail. My host pc has ip 192.168.1.1 and aliased 10.1.1.1 as well as 10.1.1.2 (jail ip). What am I missing to allow jails to access the internet via ipfw/nat? Any help would be much apprecieated. More settings below: natd flags are: -dynamic yes -s -p -n tun0 my ipfw setup: #firewall command fwcmd=/sbin/ipfw # Force a flushing of the current rules before we reload. $fwcmd -f flush # Divert all packets through the tunnel interface. $fwcmd add divert natd all from any to any via tun0 # Allow all connections that have dynamic rules built for them, # but deny established connections that don't have a dynamic rule. # See ipfw(8) for details. $fwcmd add check-state $fwcmd add deny tcp from any to any established #Allow all localhost connections $fwcmd add allow tcp from me to any out via lo0 setup keep-state $fwcmd add deny tcp from me to any out via lo0 $fwcmd add allow ip from me to any out via lo0 keep-state # Allow all connections from my network card that I initiate $fwcmd add allow tcp from me to any out xmit any setup keep-state $fwcmd add deny tcp from me to any $fwcmd add allow ip from me to any out xmit any keep-state # Allow all local connections $fwcmd add allow tcp from any to any via fxp0 setup keep-state $fwcmd add allow ip from any to any via fxp0 keep-state #Allow IP fragments through $fwcmd add pass all from any to any frag # Allow ICMP (for ping and traceroute to work). $fwcmd add allow icmp from any to any # This sends a RESET to all ident packets. $fwcmd add reset log tcp from any to me 113 in recv any # Deny all the rest. $fwcmd add deny log ip from any to any signature.asc Description: This is a digitally signed message part
Re: Problems with qmail and connecting to smtp daemon and problem with my virtual domain.
Hello Peter, Peter Risdon wrote: Mattias Björk wrote: Hi, list(ners) Problem nr 1. I have read the following guide to install qmail: http://www.stevenfettig.com/mythoughts/archives/cat_qmailhowto.php I'll try to help. You might have looked at these already but if not, they're worthwhile: http://cr.yp.to/qmail.html for a general guide, especially the qmail pictures, and: Homepage of qmail, have read some of it from time to time. http://www.lifewithqmail.org - especially read: http://www.lifewithqmail.org/lwq.html#test for some diagnostic and testing guidance. I did know about the page, but I seem to have forgotten about it. The Problem is that the link does not work for me as I type. But I have google and found some other links that I could use. The might perhaps not be so up to date if compared to www.lifewithqmail.org. Probably the starting point for testing a new installation is to look at the output of: #qmailctl stat I do not have that commad/script on the server. to make sure everything is running properly. All uptimes should be 1 second and identical or very close to it. You should see lines for at least qmail-smtpd and qmail-send and their respective logs. I have not installed from source by my self, I found that all programs where avalible thru ports. I will make this as sort as possible, There is disagreement between the author of qmail and the port maintainer about where the service directory should go. djb says /service whereas the port maintainer says /var/service and this can lead to strange mixed installations, especially when you've been following installation or configuration guides that are not specific to FreeBSD. Check that you only have one or the other. If qmailctl stat does not show enough processes, this might be why. I have /var/service, my directory listing is like this: qmail - /var/qmail/service/qmail smtpd - /var/qmail/service/smtpd Section 2.4 qmail-conf on the page: http://stevenfettig.com/mythoughts/archives/91.php Says how to set up the service files/directories, that is so I have done it. The file /var/qmail/service/qmail/run does look like this: #!/bin/sh exec /var/qmail/rc And the file /var/qmail/rc does look like this: #!/bin/sh exec env - PATH=/var/qmail/bin:$PATH \ qmail-start ./Maildir/ /usr/local/bin/multilog t /var/log/qmail qmaill And finaly the file /var/qmail/service/smtpd/run does look like this: #!/bin/sh exec 21 \ envdir ./env \ sh -c ' case $REMOTENAME in h) H=;; p) H=p;; *) H=H;; esac case $REMOTEINFO in r) R=;; [0-9]*) R=t$REMOTEINFO;; *) R=R;; esac exec \ envuidgid qmaild \ softlimit ${DATALIMIT+-d$DATALIMIT} \ /usr/local/bin/tcpserver \ -vDU$H$R \ ${LOCALNAME+-l$LOCALNAME} \ ${BACKLOG+-b$BACKLOG} \ ${CONCURRENCY+-c$CONCURRENCY} \ -xtcp.cdb \ -- ${IP-0} ${PORT-25} \ /var/qmail/bin/qmail-smtpd ' I set up vpopmail with domain setiathome.birch.se. The domain is birch.se, fqdn is setiathome.birch.se for the host. I didn't how ever install everything. I didn't install ezmlm-idx and auotrespond, but its not vital for the operation of the mail-server at this time. That should be fine. I had this problem, that i couldn't send message to the FreeBSD mailinglists, but I solved it by adding my ISP outgoing smtpserver to /var/qmail/control/smtproutes. Perhaps it hade something to do with reversed DNS. I don't think this list checks reverse DNS. Could you send mail anywhere else? Some ISPs do not allow e-mail to be sent through their network unless their smtp server is used, as an anti-spam precaution. Aha okey, but I didn't send my mail through my ISP smtp server to get to anything else but @freebsd.org, didn't work before that. Here are my directory listing from /var/qmail/control/: defaultdomain plusdomain smtproutes locals rcpthosts virtualdomains locals.lock rcpthosts.lock virtualdomains.lock me servercert.pem In the file defaultdomain and plusdomain are the string entry birch.se. In the me file there are the hostname of the mail server. And finaly in the virtualdomains file are the string: setiathome.birch.se:setiathome.birch.se That means you're expecting to receive mail addressed to [EMAIL PROTECTED], not [EMAIL PROTECTED] - is that what you want? There should also be an entry in rcpthosts, just the domain name, setiathome.birch.se in this case. Have you made these entries by hand? You shouldn't need to since you are running vpopmail (see below). Yes, for now. I forgot to say that *.birch.se is my internal domain, and not an domain that works on the internet. How ever I use mutt and thunderbird as my MUA and I have set my mail address to [EMAIL PROTECTED] (as you could se in this mail) I have MX records for setiathome.birch.se and thrawn.birch.se and dasboot.birch.se. So what Im saying is that I understand that [EMAIL PROTECTED]/[EMAIL
New machines - Dump and Restore -deploy
Hi all, I am hopeing someone knowledgeable will read and review my comments below and point out any flaws It is time to deploy two more servers, which are en route to use. 2 Dell 750s single SCSI Duel NICS and regular Pent 4 / 512 MB etc etc. I have spent the last year or so developing a server platform that I now want to clone from a production box to the two new boxes. I realize that when I do this I will need to delete alot of things from the new box, but thats OK. I intend to use Dump and Restore to completely copy the OS from the older box to the two new ones. Before I do this, I have three questions: The current (older box) has only a 18 GB SATA drive on it. The two new machines have 36 GB SCSI drives. So my question is, as long as the partitions on the new box are names the same as the old box, and are at least the same size, or bigger, dump and restore should work without problems (?) I will need to install a base OS on the new systems first, so I can partition the drives and be able to connect tot the box, the second question is, when I use restore, will it overwrite the kernel, if so, can I protect the kernel from being overwritten? The third question is, can I, should I, use rsyn insted of dum and restore? Thanks, -Grant ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Maintainer of WHOIS command
On 2004-05-22 20:23, Julien Gabel [EMAIL PROTECTED] wrote: Who is the FreeBSD Maintainer of WHOIS command? $ ident /usr/src/usr.bin/whois/whois.c or http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.bin/whois/whois.c ... might give you an idea of who are commiting to this utility. Here's a quick summary of all the commits in that area: Rank Commits Percent Name -- 1 31 33.70% mike 2 11 11.96% ache 388.70% ru 488.70% joe 577.61% wollman 677.61% peter 766.52% rgrimes 866.52% charnier 944.35% phk 1044.35% obrien -- Total: 92 / Average: 9.200 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: New machines - Dump and Restore -deploy
On Sun, 23 May 2004, Grant Peel wrote: I have spent the last year or so developing a server platform that I now want to clone from a production box to the two new boxes. I intend to use Dump and Restore to completely copy the OS from the older box to the two new ones. The current (older box) has only a 18 GB SATA drive on it. The two new machines have 36 GB SCSI drives. So my question is, as long as the partitions on the new box are names the same as the old box, and are at least the same size, or bigger, dump and restore should work without problems (?) The partitions don't even need to be the same names. To do a clone, I cd into the target filesystem (/, /var, /usr) and use 'restore -ruf dumpfile'. Usually the dumpfile is on an NFS mount. I will need to install a base OS on the new systems first, so I can partition the drives and be able to connect tot the box, the second question is, when I use restore, will it overwrite the kernel, if so, can I protect the kernel from being overwritten? You could use the live filesystem CD (#2) or a FreeSBIE CD also, but I usually just do a minimal install. There may be an error when restore attempts to overwrite the kernel; can't recall. However, I rebuild the kernel after the system has been cloned to be sure it's in sync with the current source on the machine. The third question is, can I, should I, use rsyn insted of dum and restore? dump and restore are the right tools for this case. -Warren Block * Rapid City, South Dakota USA ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: New machines - Dump and Restore -deploy
Grant Peel wrote: I intend to use Dump and Restore to completely copy the OS from the older box to the two new ones. Before I do this, I have three questions: The current (older box) has only a 18 GB SATA drive on it. The two new machines have 36 GB SCSI drives. So my question is, as long as the partitions on the new box are names the same as the old box, and are at least the same size, or bigger, dump and restore should work without problems (?) Dump/restore are not partition-bound per se; if you wish to restore your /usr partition in /var, for instance, restore will not keep you from doing so (I hope common sense will; but that is a different matter). Restore will restore in the current directory. So, if you wish to restore your usr partition, you could do something like this: newfs /dev/ad0s1e (if that is where your /usr partition resides) mount /dev/ad0s1e /usr cd /usr restore -rf/path-to-file I will need to install a base OS on the new systems first, so I can partition the drives and be able to connect tot the box, the second question is, when I use restore, will it overwrite the kernel, if so, can I protect the kernel from being overwritten? You cannot restore the root-partition on the root-partition that you booted from, because it is in use at the time. You need to boot from a different FreeBSD system (or 'fix-it' floppy) to make that happen. - Mark ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FTPD SSHD server
Hello fellas, I have FTPD and SSHD running. The way enabled it was by uncommenting lines in inetd.conf. Now, If I access it from the outside (school's lab to my home computer, we have static IP) it works. But If my friends try to access it from the local network, it doesn't work (Using windows). I set up my server using a DHCP assigned IP address (C class), and the router that I use is the default router from my adsl modem. Should I use the server as the gateway as well? suggestions? TIA guys =) regards, Andri _ Download music tracks from 95c here: http://music.ninemsn.com.au/OD2redirect.asp?URL=http://sib1.od2.com/common/config.asp?shop=52associd=2 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTPD SSHD server
On May 23, 2004, at 10:04 AM, Andri Kok wrote: Hello fellas, I have FTPD and SSHD running. The way enabled it was by uncommenting lines in inetd.conf. Now, If I access it from the outside (school's lab to my home computer, we have static IP) it works. But If my friends try to access it from the local network, it doesn't work (Using windows). I set up my server using a DHCP assigned IP address (C class), and the router that I use is the default router from my adsl modem. Should I use the server as the gateway as well? suggestions? TIA guys =) You mean if your friends try accessing the server from the *internal* network it won't let them, but from the outside world going into the server it works fine? A) Did you verify the IP address they are connecting to is the actual internal IP the server has? B) Is the server set to reject certain IP addresses from accessing those services? C) What do the logs have to say about the connection attempts? If *I* were setting it up, I'd advise not having the server set up using DHCP internally. Set the server system to a static IP outside of the router's DHCP range, then make sure the port forwarding on the router is set up properly to forward those protocols to the internal server's static IP address. Only the router would be the gateway, as it is what is handling the routing of packets to the Internet (Unless you're setting up your BSD system to act as a proxy server with something like Squid...but I think that's outside the scope of your question :-) I've seen this setup several times...you have a static IP as seen from the Internet (actually it hits a router/NAT/soho device just behind the cable modem or DSL modem); that device is set to forward certain services to internal machines. Those machines should have static addresses to prevent the server from wandering if the DHCP address changes for some reason. Leave the DHCP to be sent to visiting machines and non-server workstations on the internal network...if you don't have a reason for them to constantly keep the IP, then they're a candidate for DHCP (advice? Don't do it unless you have notebook PCs. Home and small networks usually don't present such a management quagmire that it's too difficult to keep static IPs on them. I personally have my internal computers set to static IPs with a DHCP server handing out only a narrow number of IPs for the visiting laptops I use from work and the occasional playing with the PDA with wireless access...it's much easier to see if another system is hopping the network when an alien MAC address shows up in the logs; that's just my personal take on it though). Hope that helps...if you can, try posting errors from the server logs if the above suggestions don't help you. -Bart ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
afbackup --- switching tapes immediately ejected
afbackup-3.3.5_3-sevrer afbackup-3.3.5_3-client Hi there, I am having some difficulties with the server when I am required to change tapes. sometimes it takes a Little while to change the tape - over 3 days but by the time the tape new tape requested is inserted in the dirve - it is immediately ejected and the next tape in sequence is requested. any clues why thisn is going on? I dont know what to do to correct it. I have a series of 3 tapes used with an onstream ADR50 external SCSI drive. cheers, Noah --- adding cofniguration file # # SERVER SPECIFICATION # # The identifier for the server #ServerIdentifier: # # DEVICE SPECIFICATION # # The device name (No-Rewind-Version !) Backup-Device: /dev/sa0 # # The blocksize of the device Tape-Blocksize: 10240 # # Flag, whether the device is a robot / cartridge handling system (0 or 1) Cartridge-Handler: 0 # # Insert your number of cartridges, whether you have a robot or not Number Of Cartridges: 3 # # The specifiers of different cartridge sets, if requested. # Default is 1 set with cartridges ranging from 1 up to the # previous parameter. Specifiers of cartridge sets must be # separated by whitespace and may contain digits, commas and # dashes. Examples: 1-3 4,8-10 6,7 #Cartridge-Sets:1,2,3 # # The maximum number of bytes per file on tape Max Bytes Per File: 500 # # The maximum number of bytes per tape #Max Bytes Per Tape: # # Append also to explicitly deselected cartridges Full Append Mode: Yes # # Write to any supplied cartridge, that has space Variable Append Mode: No # # Refuse to write to tapes, that do not have a valid label Reject Unlabeled Tapes: 0 # # Prefer writable cartridges available in a changer Prefer Cartridge in Changer:Yes # # Time to wait from the moment, a new cartridge has been inserted # until a new action is attempted on the tape device Cart-Insert-Gracetime: 70 # # Time to wait while the device is unavailable until a mail is # sent to the user in charge Device Unavail Send mail after min: 6 # # Time to wait while the device is unavailable until abort Device Unavail give up after min: 45 # # The interval in seconds for probing, if device is ready, when # inserting another cartridge is requested. 0 for no probing. Device-Probe Interval: 5 # # Configuration file for a media changer Changer-Configuration-File: %L/changer.conf # # # SHELL-COMMANDS FOR TAPE HANDLING # # In these commands %d is replaced by the device name, # %n by the number, if within the command the count starts with 1, # %m by the number, if the count starts with 0. # # Command to set the file # on tape SetFile-Command:sh -c mt -f %d rewind %E/__mt -f %d fsf %m # # Command to skip to the next %n-th file on tape SkipFiles-Command: %E/__mt -f %d fsf %n # # If there is a command to set the cartridge directly, supply it here #Set-Cart-Command: # # If the cartridges can only by changed successively, insert the # command to change them here. This is also the command, that unloads # the tape, if you have no cartridge handler. Change-Cart-Command:mt -f %d rewoffl # # If the media must be prepared for access in some way, # the appropriate command can be supplied here. #Init-Media-Command: # # The command to erase the tape. This is necessary on some systems. #Erase-Tape-Command: # # Command, that is called, when a tape is full. #Tape-Full-Command: # # # CONFIGURATION FOR NON-EXISTING CARTRIDGE HANDLING SYSTEM # # The user to inform, if a cartridge should be changed manually User To Inform: root # # The mail-program to use. # # Insert %u for the position, where the username has to appear, # %U for the remote user, %H for the remote client host. Mail-Program: mail -s [Afbackup]: Backup Service Information %u # # # FILES TO SAVE THE STATE AND LOGGINGS # # Directory for changing and persistent files VarDirectory: /var/spool/afbackup # # Filename to save the current tape position Tape-Pos-File: %V/tapepos # # Filename for error loggings etc. Logging-file: @ /var/spool/afbackup/server.backup.log # # Filename to write the current server status to Status-file:%V/status # # Locking file to prevent several server starts #Lock-file: # # Lockfile for accessing a media changer #Changer-Lockfile: # # The file with the authentication encryption key Encryption-Key-File:/usr/local/etc/afbackup/cryptkey # # # CONFIGURATION FOR REMOTE_EXECUTION # # Directory, where remotely started programs must reside Program-Directory: /usr/local/libexec/afbackup # # # SERVER-STARTUP AND SHUTDOWN ACTIONS # # shell-command to perform, when the server starts #Init-Command: # # shell-command to perform, when the server exits #Exit-Command: --- snip done --- ___ [EMAIL
Re: New machines - Dump and Restore -deploy
On Sun, 23 May 2004, Mark wrote: You cannot restore the root-partition on the root-partition that you booted from, because it is in use at the time. Actually, you can. There are a couple of errors on files that can't be written, but it works. Although I do at least rebuild the kernel after rebooting, and rebuilding the world isn't a bad idea. If the original and newly-restored system are of different versions, it might break, though. -Warren Block * Rapid City, South Dakota USA ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Creating ISO image question
Hi Eddysan, Tks for your advice. I already solve my problem with following command line; $ mkisofs -R -o cdimage.raw -J -graft-points -hide-rr-moved /usr/home/user-A/Document-AAA/=/usr/home/user-A/Document-AAA/ But I like to learn an alternative. Try mkisofs -J -r -l -allow-lowercase -o outputfile.iso -V CD Lavel /dir $ mkisofs -J -r -l -allow-lowercase -o cdimage.iso -V CD Lavel /usr/home/user-A/Document-AAA/ . mkisofs: Joliet tree sort failed. cdimage could not be created. Previously it did happen occasionally on enabling -J flag. Another time it worked without problem with -J flag on. I still could not find out its cause. Removing -J flag then it worked $ mkisofs -r -l -allow-lowercase -o cdimage.iso -V CD Lavel /usr/home/user-A/Document-AAA/ creating a cdimage. However full path of directories still could not be created. B.R. Stephen On Mon, 2004-05-17 at 15:19, arden wrote: im guessing this is what you mean ? mkisofs -r -J -o cd_image.iso dir/ arden On Mon, 2004-05-17 at 12:28, Stephen Liu wrote: HI folks, I tried to solve following questions on creating ISO image with reference to 'man mkisofs' but could not resolve; Tree of diectories e.g. /usr/home/user-A/document-AAA/subdirectories 1) To include the complete tree starting from /user-A/document-AAA/subdirectories 2) To include the complete tree starting from /document-AAA/subdirectories Kindly advise. TIA B.R. Stephen Liu ___ Do You Yahoo!? Get your free @yahoo.com.hk address at http://mail.english.yahoo.com.hk ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Disater Recovery With Bacula
Can anyone point me to tutorials on best practices for disaster recovery with bacula? The bacula docs seem to cover Linux only and Google didn't turn up anything in particular. I just want to be prepared before there's a problem. Thanks, Drew -- Visit The Alchemist's Warehouse Magic Tricks, DVDs, Videos, Books, More! http://www.alchemistswarehouse.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Is www.freebsd.org down.
http://www.freebsd.org seems to be down. Everything else appears to be working. Kent -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Installing all versions of PHP: CLI and apache mod
This post is mostly for the archives. I had installed mod_php4 and later needed to install the CLI version to get pear. After searching the archives and asking around for several days finally found the answer. To get CLI/Pear and web_mod installed just use the /lang/php4 port. To get ONLY mod or CLI install the /www/mod_php4 or lang/php4-cli respectively. The lang/php4 port tells you about the other ports, but it would help if the mod and cli port mentioned that the lang/php4 port installs both. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is www.freebsd.org down.
On Sun, 2004-05-23 at 19:39, Kent Stewart wrote: http://www.freebsd.org seems to be down. Everything else appears to be working. Kent just tried it i cant connect either arden ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is www.freebsd.org down.
been this way for hours. Perhaps someone has an explanation ? At 01:39 PM 5/23/2004, you wrote: http://www.freebsd.org seems to be down. Everything else appears to be working. Kent -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is www.freebsd.org down.
On Sun, 23 May 2004, J.D. Bronson wrote: been this way for hours. Perhaps someone has an explanation ? Looks like apache has gone as I can still ping the box Rus -- e: [EMAIL PROTECTED] : t: 1-888-327-6330 www.jvds.com - Root on your own box www.vpscolo.com - Your next hosting company www.cherryhosting.net - Shared Hosting With Everything On Top ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is www.freebsd.org down.
On Sunday 23 May 2004 11:43 am, J.D. Bronson wrote: been this way for hours. Perhaps someone has an explanation ? It has also been down for me for hours but the only thing it affects is my grabing INDEX and INDEX-5 and access to cvsweb.cgi. It has a benefit because it finally caused me to add the port to do that so I can reference everything to my local mirror. It is alway running the latest version of Apache-2 and access via the Internet is always slower :). I just don't fix anything that isn't broken. Kent At 01:39 PM 5/23/2004, you wrote: http://www.freebsd.org seems to be down. Everything else appears to be working. -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
dhcp dhcpd_ifaces question.
To any network wizards on-list, I'm just tidying up dhcp and namedb files and would like to know what strings to put after this: dhcpd_ifaces= # ethernet interface(s) I'm assuming it should be dc0 dc1 but would like to make sure. If it would be just as well to leave it blank and let dhcpd figure it out, please advise. (In my old config file $IFACES wasn't defined.) thanks in advance, gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public service Unix ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't startx from user after upgrade
[EMAIL PROTECTED] writes: I have just successfully upgrade gnome 2.4 to gnome 2.6. Well, at least that's the message on the screen after upgrade. :) Did you read the Upgrade FAQ (http://www.freebsd.org/gnome/docs/faq26.html) and use the upgrade script (http://www3.freebsd.org/gnome/gnome_upgrade.sh)? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
10.0 community mandrakelinux
je cherche le cd4 d'install d'une version mandrake 10.0 community on m'a donné un lien arrivant chez vous mais il ne fonctionne pas ftp://ftp.sg.freebsd.org/sites/mandrake/iso/mandrakelinux-10.0-community pourriez-vous m'éclairer cordialement denis pranchere ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
bad gnome responsiveness with network load
Hi, Summary: with /home NFS mounted at 10Mbit/s, network i/o makes my sytem noticeably slower (as in GNOME interactivity). I'm running RELENG_5_2, with SCHED_ULE and ADAPTIVE_MUTEXES. [look at the end for the -questions] Some system details (long lines): 528,p4,0$ dmesg | grep -v Preloaded | head -16 Copyright (c) 1992-2004 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 5.2.1-RELEASE #0: Sun Apr 11 15:23:13 CEST 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/CALVIN module_register: module vesa already exists! Module vesa failed to register: 17 Timecounter i8254 frequency 1193182 Hz quality 0 CPU: AMD Athlon(tm) MP 2400+ (2000.08-MHz 686-class CPU) Origin = AuthenticAMD Id = 0x681 Stepping = 1 Features=0x383fbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE AMD Features=0xc048MP,AMIE,DSP,3DNow! real memory = 536346624 (511 MB) avail memory = 515440640 (491 MB) ACPI APIC Table: PTLTD APIC FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs 521,p4,0$ cat /etc/libmap.conf libc_r.so.5 libkse.so.1 libc_r.so libkse.so I've started to use pan (the GNOME newsreader), and when I Get New Headers it slows the system down: I get long delays when trying to start gnome-terminal, vim, ssh -X host 'xterm -e mutt', switching desktops or windows... During this time I see the network load go up (output of 'netstat -w 5' and 'vmstat -w 5' attached), which I assume it's because it does heavy i/o from ~/.pan/ (NFS mounted). This doesn't happen if the system is under high cpu load, and neither does the cpu load go up when it happens. Given it's a fast machine and that pan uses at least 4 threads, I wouldn't expect that one program waiting for the network slows everything down. Is there anything I might have misconfigured? What else should I look at to find out what's happening? tks -- pica input(Total) output packets errs bytespackets errs bytes colls 14 0 2252 14 0 2412 0 6 0972 6 0 1020 0 4 0648 4 0680 0 3 0486 3 0510 0 7 0 1158 7 0 1214 0 7 0 1042 7 0 1114 0 51 0 5282 51 0 6266 0 3 0486 3 0510 0 3 0486 3 0510 0 11 0 1774 11 0 1886 0 11 0 1750 11 0 1934 0 1124 01454225298 0 57734 0 4339 05672230 1057 0 188616 0 4222 05718896891 0 156866 0 4119 05713968782 0 142022 0 1070 01409540604 0 601633 0 310 0 62440 2674 03795940 0 293 0 59298 2334 03294460 0 503 0 109436 3410 04740849 0 360 0 90464 2534 03510504 0 input(Total) output packets errs bytespackets errs bytes colls 486 0 93290 2887 03920730 0 494 0 110604 3009 04133536 0 286 0 57404 2320 03262816 0 223 0 45536 1190 01568384 0 0 0 0 0 0 0 0 6 0972 6 0 1020 0 3 0486 3 0510 0 3 0486 3 0510 0 96 0 27776 57 0 4634 0 122 0 37352 82 0 7824 0 49 0 9330 28 0 2320 0 4 0546 3 0510 0 3 0486 3 0510 0 7 0 1134 7 0 1190 0 34 0 12756 24 0 2376 0 15 0 2324 18 0 1907 0 procs memory pagedisks faults cpu r b w avmfre flt re pi po fr sr ad0 ad2 in sy cs us sy id 0 3 0 687424 23524 173 0 0 0 165 22 0 0 3820 701 3 1 96 0 3 0 684448 25048 63 0 0 0 132 0 0 0 4560 2175 5 2 92 0 3 0 685572 24864 20 0 0 0 12 0 0 1 3410 815 2 2 96 0 3 0 685572 248640 0 0 0 0 0 0 0 3390 532 1 1 98 0 3 0 686680 24704 20 0 0 0 12 0 0 1 3400
Re: 10.0 community mandrakelinux
je cherche le cd4 d'install d'une version mandrake 10.0 community on m'a donné un lien arrivant chez vous mais il ne fonctionne pas ftp://ftp.sg.freebsd.org/sites/mandrake/iso/mandrakelinux-10.0-community pourriez-vous m'éclairer cordialement denis pranchere ftp://ftp.sg.freebsd.org/sites/mandrake/iso/ met à disposition bon nombre de logiciels (libres entre autre), la Mandrake 10.0 Official est disponible sous format Torrent notamment. Ce n'est pas directement une image à graver. Quoi qu'il en soit, cela n'a malheureusement rien à voir avec FreeBSD dont la présente liste est - de plus - strictement en langue anglaise. Si jamais essayer FreeBSD te tentait, nous pourrions te fournir néanmoins les bons liens (ISO et ml française). Bon courage, -- -jpeg. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dhcp dhcpd_ifaces question.
Gary Kline wrote: To any network wizards on-list, I'm just tidying up dhcp and namedb files and would like to know what strings to put after this: dhcpd_ifaces= # ethernet interface(s) I'm assuming it should be dc0 dc1 but would like to make sure. If it would be just as well to leave it blank and let dhcpd figure it out, please advise. (In my old config file $IFACES wasn't defined.) I have dhcpd configured; I'm not using named, so I don't know about that. As far as I know, you can use dhcpd_ifaces to limit the DHCP service to only one interface (provided you have more than one interface on your system). I have rl0 and rl1, where rl0 is on the out-side internet, and rl1 on the internal network (with IP 10.0.0.1). I only want DHCP server for internal network: I therefore have in /etc/rc.conf: dhcpd_ifaces=rl1 However, when you look at netstat output, dhcpd is still listening to all interfaces, which may have some security risks. To further limit this, you probably need a extra global line in /usr/local/etc/dhcpd.conf : local-address 10.0.0.1; Then you get a netstat output like this: udp4 0 0 10.0.0.1.bootps*.* Regards, Rob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Proper way to start a program at log-on
Since I am still new to this OS, I thought that I would check to make sure that I am doing this correctly. On my WinXP machine, I run the Distributed Net 'dnetc' program. Further information regarding this program is available here: http://www.distributed.net//docs/tutor_clients.php. To start the program in the background I need to issue the following command: 'dnetc -quiet'. Since I want to start this program automatically each time I log on, I placed that command at the end of my '.bash_profile' file. I then placed the shutdown command 'dnetc -shutdown' in the '/etc/rc.shutdown' file. Since everything seems to be workings correctly, I assume that I have done this correctly. If there is a better way to do this, I would appreciate receiving the information. Thanks! Gerard E. Seibert [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dhcp dhcpd_ifaces question.
On Mon, May 24, 2004 at 06:34:58AM +0900, Rob wrote: Gary Kline wrote: To any network wizards on-list, I'm just tidying up dhcp and namedb files and would like to know what strings to put after this: dhcpd_ifaces= # ethernet interface(s) I'm assuming it should be dc0 dc1 but would like to make sure. If it would be just as well to leave it blank and let dhcpd figure it out, please advise. (In my old config file $IFACES wasn't defined.) I have dhcpd configured; I'm not using named, so I don't know about that. The reason I broughtup named is that whenever I tried to start|restart dhcp there were a slew of errs from named[`pid`] that showed named failing. By itself, starting or restarting named was *fine*. This is obviously one of those csmic mysteries... As far as I know, you can use dhcpd_ifaces to limit the DHCP service to only one interface (provided you have more than one interface on your system). I have rl0 and rl1, where rl0 is on the out-side internet, and rl1 on the internal network (with IP 10.0.0.1). I only want DHCP server for internal network: I therefore have in /etc/rc.conf: dhcpd_ifaces=rl1 However, when you look at netstat output, dhcpd is still listening to all interfaces, which may have some security risks. To further limit this, you probably need a extra global line in /usr/local/etc/dhcpd.conf : local-address 10.0.0.1; Then you get a netstat output like this: udp4 0 0 10.0.0.1.bootps*.* I understandmost of wshat you're saying. I have the same 10.0.0.N private net as you so I can (thankfully:) just cutpaste. Can you tell me what might happen in I added dc0 to my dhcp_interfaces?? I have no clue how this could pose a security risks but I'm more than ready to take your word for it. --There really are a few sleazeballs out there.-- thank you much, gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public service Unix ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dhcp dhcpd_ifaces question.
Gary Kline wrote: On Mon, May 24, 2004 at 06:34:58AM +0900, Rob wrote: As far as I know, you can use dhcpd_ifaces to limit the DHCP service to only one interface (provided you have more than one interface on your system). I have rl0 and rl1, where rl0 is on the out-side internet, and rl1 on the internal network (with IP 10.0.0.1). I only want DHCP server for internal network: I therefore have in /etc/rc.conf: dhcpd_ifaces=rl1 However, when you look at netstat output, dhcpd is still listening to all interfaces, which may have some security risks. To further limit this, you probably need a extra global line in /usr/local/etc/dhcpd.conf : local-address 10.0.0.1; Then you get a netstat output like this: udp4 0 0 10.0.0.1.bootps*.* I understandmost of wshat you're saying. I have the same 10.0.0.N private net as you so I can (thankfully:) just cutpaste. Can you tell me what might happen in I added dc0 to my dhcp_interfaces?? I have no clue how this could pose a security risks but I'm more than ready to take your word for it. --There really are a few sleazeballs out there.-- Well, I'm not that much of a network expert, but I can imagine that someone can try to compromise your dhcpd server, if that server has a security hole. If dhcpd should serve only your internal network, than it is better to give no access what so ever on the external interface (don't allow people on the 'big-bad-internet' to even try to find security holes in your servers). Having the internal interface in the dhcpd_ifaces seems not to solve that problem completely. You'll need that extra statement in the configuration file. Why that is, I don't know. Cheers, Rob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTPD SSHD server
Hi Bart, Thx for the reply. The problem that I had from windows was connection timeout. When I try to ssh to my BSD box, it prompts the login name, than it hangs till it finally get connection time out. The same goes with ftp and telnet. Regarding the error logs, which ones should i check? he path would be nice =) And thx for your suggestion, I'll try to do that as soon as I have time (still got assignments to do ;) thx again -) Regards, Andri From: Bart Silverstrim [EMAIL PROTECTED] To: Andri Kok [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: FTPD SSHD server Date: Sun, 23 May 2004 10:29:07 -0400 On May 23, 2004, at 10:04 AM, Andri Kok wrote: Hello fellas, I have FTPD and SSHD running. The way enabled it was by uncommenting lines in inetd.conf. Now, If I access it from the outside (school's lab to my home computer, we have static IP) it works. But If my friends try to access it from the local network, it doesn't work (Using windows). I set up my server using a DHCP assigned IP address (C class), and the router that I use is the default router from my adsl modem. Should I use the server as the gateway as well? suggestions? TIA guys =) You mean if your friends try accessing the server from the *internal* network it won't let them, but from the outside world going into the server it works fine? A) Did you verify the IP address they are connecting to is the actual internal IP the server has? B) Is the server set to reject certain IP addresses from accessing those services? C) What do the logs have to say about the connection attempts? If *I* were setting it up, I'd advise not having the server set up using DHCP internally. Set the server system to a static IP outside of the router's DHCP range, then make sure the port forwarding on the router is set up properly to forward those protocols to the internal server's static IP address. Only the router would be the gateway, as it is what is handling the routing of packets to the Internet (Unless you're setting up your BSD system to act as a proxy server with something like Squid...but I think that's outside the scope of your question :-) I've seen this setup several times...you have a static IP as seen from the Internet (actually it hits a router/NAT/soho device just behind the cable modem or DSL modem); that device is set to forward certain services to internal machines. Those machines should have static addresses to prevent the server from wandering if the DHCP address changes for some reason. Leave the DHCP to be sent to visiting machines and non-server workstations on the internal network...if you don't have a reason for them to constantly keep the IP, then they're a candidate for DHCP (advice? Don't do it unless you have notebook PCs. Home and small networks usually don't present such a management quagmire that it's too difficult to keep static IPs on them. I personally have my internal computers set to static IPs with a DHCP server handing out only a narrow number of IPs for the visiting laptops I use from work and the occasional playing with the PDA with wireless access...it's much easier to see if another system is hopping the network when an alien MAC address shows up in the logs; that's just my personal take on it though). Hope that helps...if you can, try posting errors from the server logs if the above suggestions don't help you. -Bart _ Get Extra Storage in 10MB, 25MB, 50MB and 100MB options now! Go to http://join.msn.com/?pgmarket=en-aupage=hotmail/es2 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IPF/IPNat router/gateway
Hello. I apologize for asking a question which has been asked several dozen times before, but none of the prior-offered solutions seem to work. I'm trying to use a freeBSD box (v 5.1) as a gateway/router for my network. I've got a static IP range for the network, but can't get things running. (...the local machines are all running Windows XP Pro) The local machines can connect to my ISP when they're plugged in to the uplink, whether individually or through a hub, and the freeBSD box can as well. ...however, a machine plugged into the BSD box is unable to ping the BSD box and vice versa. IPF is set to pass in/out quick all from any to any IPNat has the following rules set: map rl0 192.168.1.0/24 - x.x.x.254/32 portmap tcp/udp 1:4 map rl0 192.168.1.0/24 - x.x.x.254/32 IP of the BSD box is x.x.x.254, mask 255.255.255.224 on the external NIC IP of the BSD box is 192.168.1.1, mask 255.255.255.224 on the internal NIC the lone machine connected to it at the moment is set on IP 192.168.1.2, mask 255.255.255.224, gateway 192.168.1.1 ...and rc.conf has gateway_enable, ipfilter_enable and ipnat_enable all set to YES thanks. _ [1]Stop worrying about overloading your inbox - get MSN Hotmail Extra Storage! References 1. http://g.msn.com/8HMAENUS/2737??PS=47575 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Limit port 25 via ipfw
Hello, I was experimenting a bit with limiting the amount on simultaneous connections to port 25; because if sendmail starts rejecting connections (at 32), my Milter trips over it. I did the following, on FreeBSD 4.9R: ${fwcmd} add 65500 check-state ${fwcmd} add 65501 allow tcp from any to me 25,587 limit dst-addr 30 I thought that would do it. But sendmail still occassionally rejects connections because the 32 limit is passed. Is there an error in my ipfw rules somehow? Thanks, - Mark ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTPD SSHD server
On May 23, 2004, at 8:04 PM, Andri Kok wrote: Hi Bart, Thx for the reply. The problem that I had from windows was connection timeout. When I try to ssh to my BSD box, it prompts the login name, than it hangs till it finally get connection time out. The same goes with ftp and telnet. There is a prompt that you enter a username to, then it just hangs instead of giving a password prompt? Most definitely odd... Regarding the error logs, which ones should i check? he path would be nice =) And thx for your suggestion, I'll try to do that as soon as I have time (still got assignments to do ;) thx again -) error logs should all be in the directory /var/log. Try a connection, and once it errors out, do a tail on any files that have their timestamps updated indicating that they were just written to at the time of your connection attempt...they might have info that could be of help. -Bart ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't startx from user after upgrade
From: arden [EMAIL PROTECTED] this may sound strange but is your disc full? Ive had similar probs on Linux boxes when the disc is all but full arden Aloha Arden Funny you should ask Here is the output of df bsd-desktop# df Filesystem 1K-blocksUsed Avail Capacity Mounted on/dev/da1s2a253678 75244 15814032%/ devfs 1 1 0 100%/dev/dev/da1s2e253678 208 233176 0%/tmp/dev/da1s2d253678 55926 17745824%/var/dev/da1s4f 4347996 2273842 172631657%/usrbsd-desktop# If you notice, /usr is on a different slice. The upgrade had failed earlier because of lack of space where /usr was. I then set up a larger slice and moved /usr there. The upgrade then completed so to speak. So, isn't it curious that /home actually resides in /usr/home and it is the regular login accts that can't get to gnome. After receiving your email, I ran fsck on /usr and all was well. Anything else I can try? Robert P.S. I did read the FAQ and I read it again. I checked the localhost stuff and the FAM stuff. All is well but it still takes root about 50 seconds to load gnome. On Sun, 2004-05-23 at 07:41, [EMAIL PROTECTED] wrote: Hello I have just successfully upgrade gnome 2.4 to gnome 2.6. Well, at least that's the message on the screen after upgrade. :) Before the upgrade all was working well. After the upgrade I have some problems. I cannot startx from a regular user login. When trying, I get the following errors: $startx xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority Fatal server error: Cannot move old logfile /var/log/XFree86.0.log.old When reporting a problem (blah, blah) giving up. xinit: No such file or directory (errno 2): unable to connect to X server xinit: No such process (errno 3): Server error. xauth: timeout in locking authority file /home/robert/.Xauthority $ If I startx from a root login, I get to gnome but it seems to load very slow. I also am not able to su from a normal login to root. $su Password: May 22 06:48:27 bsd-desktop su: BAD SU robert to root on /dev/ttyv0 su: Sorry $ I am running FreeBSD 5.2RC. TIA Robert P.S. If this message was duplicated, I apologize. I received a message from my mail admin that it could not be sent. So I am sending again. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IPF/IPNat router/gateway
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael Zimmer Sent: Sunday, May 23, 2004 7:08 PM To: [EMAIL PROTECTED] Subject: IPF/IPNat router/gateway Hello. I apologize for asking a question which has been asked several dozen times before, but none of the prior-offered solutions seem to work. I'm trying to use a freeBSD box (v 5.1) as a gateway/router for my network. I've got a static IP range for the network, but can't get things running. (...the local machines are all running Windows XP Pro) The local machines can connect to my ISP when they're plugged in to the uplink, whether individually or through a hub, and the freeBSD box can as well. ...however, a machine plugged into the BSD box is unable to ping the BSD box and vice versa. IPF is set to pass in/out quick all from any to any IPNat has the following rules set: map rl0 192.168.1.0/24 - x.x.x.254/32 portmap tcp/udp 1:4 map rl0 192.168.1.0/24 - x.x.x.254/32 IP of the BSD box is x.x.x.254, mask 255.255.255.224 on the external NIC IP of the BSD box is 192.168.1.1, mask 255.255.255.224 on the internal NIC the lone machine connected to it at the moment is set on IP 192.168.1.2, mask 255.255.255.224, gateway 192.168.1.1 ...and rc.conf has gateway_enable, ipfilter_enable and ipnat_enable all set to YES thanks. _ Hello, I used this great howto to get my ipfilter gateway going: http://bsdguides.org/guides/freebsd/networking/ipfilter.php however, a machine plugged into the BSD box is unable to ping the BSD box and vice versa. When you connect a XP to the Freebsd you still using Hub right? Or crossover cable? Andras Kende http://www.kende.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sophos anti virus and mailmonitor on freebsd
Mailmonitor will work on BSD. I have it running you have to build a symbolic link to the libsavi.so.3 library in /compat/linux/lib/ . Like this ln -s /usr/local/sav/lib/libsavi.so.3 /compat/linux/lib/libsavi.so.2 . Keep in mind that this is in linux compat mode so once it starts up all your mmsmtp stuff will be located in /compat/linux/var/spool/mmsmtp I know Sophos states it won't work but thats just who your talking too, If you had got me on the phone I would have had you up and running. Oh by the way if you still have the same problem after applying the symbolic link try running the un-installer that comes with mmsmtp . then run the install script to re-install. Delete the symbolic link and then linnk the library which comes with the sav-install script. in my case I have my latest sav-install script located in /tmp . I link the larger of the two libraries and it works fine. ssigc# ls -la | grep lib -r-xr-xr-x 1 root wheel 957904 Jul 7 2003 libsavi.so.3.2.05.035 -r-xr-xr-x 1 root wheel 1384632 Feb 9 05:04 libsavi.so.3.2.07.054 Link this one as libsavi.so.2 ssigc# pwd /tmp/sav-install ssigc# ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Proper way to start a program at log-on
At 2004-05-23T21:58:06Z, Gerard Seibert [EMAIL PROTECTED] writes: Since everything seems to be workings correctly, I assume that I have done this correctly. If there is a better way to do this, I would appreciate receiving the information. Nope, that's fine. Of course, you *could* just leave it running forever, if you really wanted to. -- Kirk Strauser 94 outdated ports on the box, 94 outdated ports. Portupgrade one, an hour 'til done, 82 outdated ports on the box. pgpH1L9uMvBiX.pgp Description: PGP signature
vpn over ipsec question
Dear List. I try to configure vpn over ipsec between two FreeBSD (4.10PRERELEASE and 5.1.p17) gateways. My guidelines is from FreeBSD handbook, Tunelling is workfine with gifconfig command, i can ping each internal interface from both side gateway. The problem is when i try to securing the link with setkey command (setkey -f /etc/ipsec.conf), i cant no longer established connection between internal interface. (ping time out). Please help me regarding this problem regards reza ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: IPF/IPNat router/gateway
Problem can be in how you are cabled or how you assign private lan IP address to xp box behind FBSD. An single xp box cabled to your FBSD needs to be cabled using an crossover cable. An normal configuration is cabling FBSD box directly to public internet cable or dsl modem and then have all the xp systems cabled to hub and the hub cabled to FBSD box. Xp uses DHCP to automatically get an network ip address assigned and the reference DNS server ip address to use. On an private lan you have 2 ways of doing this. The manual way is to enter the network assigned ip address and dns servers ip address into xp. The other way is to install an DHCP server software on your FBSD gateway box so xp can get the info it needs automatically. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Michael Zimmer Sent: Sunday, May 23, 2004 8:08 PM To: [EMAIL PROTECTED] Subject: IPF/IPNat router/gateway Hello. I apologize for asking a question which has been asked several dozen times before, but none of the prior-offered solutions seem to work. I'm trying to use a freeBSD box (v 5.1) as a gateway/router for my network. I've got a static IP range for the network, but can't get things running. (...the local machines are all running Windows XP Pro) The local machines can connect to my ISP when they're plugged in to the uplink, whether individually or through a hub, and the freeBSD box can as well. ...however, a machine plugged into the BSD box is unable to ping the BSD box and vice versa. IPF is set to pass in/out quick all from any to any IPNat has the following rules set: map rl0 192.168.1.0/24 - x.x.x.254/32 portmap tcp/udp 1:4 map rl0 192.168.1.0/24 - x.x.x.254/32 IP of the BSD box is x.x.x.254, mask 255.255.255.224 on the external NIC IP of the BSD box is 192.168.1.1, mask 255.255.255.224 on the internal NIC the lone machine connected to it at the moment is set on IP 192.168.1.2, mask 255.255.255.224, gateway 192.168.1.1 ...and rc.conf has gateway_enable, ipfilter_enable and ipnat_enable all set to YES thanks. _ [1]Stop worrying about overloading your inbox - get MSN Hotmail Extra Storage! References 1. http://g.msn.com/8HMAENUS/2737??PS=47575 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: FTPD SSHD server
I think you are confused about difference between ssh and FTPD. FTPD is enabled in inetd.conf. This FTP software gives FTP protocol access the home directory of the person logging in. No account on the FBSD box no FTP access. When logging in using FTP the id/pw is passed over the internet as clear text that can be harvested with a lot of effort and cost. This is normally restricted to private Lan use only, IE; not used over the public internet. FTP uses port 21 for control channel and 20 for data channel in active mode and some high port number for data channel in passive mode. Second security problem in using FTP for public internet access is you have to leave all the high port number open for inbound traffic in your firewall and this is an very big security hole. For these reasons the common practice is not to use FTP for public internet access to your system. An public accessible anonymous FTP server has special directory setting to protect against users accessing other directories. Ssh on the other hand is completely different. It has it's own FTP protocol which uses the ssh port 22 for control and data. To use ssh for remote public internet access to your FBSD box you need ssh enabled in rc.conf and inbound rule for port 22 in your firewall. Ssh has it's own built in command for FTP transfer. Ssh logs into id/pw of account on FBSD box. To ssh and ssh/ftp from windows box to FBSD box you need to use ssh client program on windows. Search the questions archives for posts about windows ssh clients for where to download free ones from. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Bart Silverstrim Sent: Sunday, May 23, 2004 8:37 PM To: Andri Kok Cc: [EMAIL PROTECTED] Subject: Re: FTPD SSHD server On May 23, 2004, at 8:04 PM, Andri Kok wrote: Hi Bart, Thx for the reply. The problem that I had from windows was connection timeout. When I try to ssh to my BSD box, it prompts the login name, than it hangs till it finally get connection time out. The same goes with ftp and telnet. There is a prompt that you enter a username to, then it just hangs instead of giving a password prompt? Most definitely odd... Regarding the error logs, which ones should i check? he path would be nice =) And thx for your suggestion, I'll try to do that as soon as I have time (still got assignments to do ;) thx again -) error logs should all be in the directory /var/log. Try a connection, and once it errors out, do a tail on any files that have their timestamps updated indicating that they were just written to at the time of your connection attempt...they might have info that could be of help. -Bart ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: can't startx after upgrade
[EMAIL PROTECTED] wrote: Aloha I have just successfully upgrade gnome 2.4 to gnome 2.6. At least that's the message I received after running the upgrade script. :) Before the upgrade all was working well. After the upgrade I have some problems. I cannot startx from a regular user login. When trying, I get the following errors: $startx xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority xauth: timeout in locking authority file /home/robert/.Xauthority Fatal server error: Cannot move old logfile /var/log/XFree86.0.log.old When reporting a problem (blah, blah) giving up. xinit: No such file or directory (errno 2): unable to connect to X server xinit: No such process (errno 3): Server error. xauth: timeout in locking authority file /home/robert/.Xauthority $ If I startx from a root login, I get to gnome but it seems to load very slow. I also am not able to su from a normal login to root. $su Password: May 22 06:48:27 bsd-desktop su: BAD SU robert to root on /dev/ttyv0 su: Sorry $ I am running FreeBSD 5.2RC. TIA Robert ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] There was a big problem with updating gnome if you did not check freebsd/org/gnome first. You have to download a script and run it first. If you did not, np, just follow the instructions and all will be good once more. Jason ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: XFree86 help...
Michal Pasternak wrote: hitokiri [Sat, May 22, 2004 at 04:51:55PM -0500]: Alright, so I recently migrated to FreeBSD and had some trouble configuring the network. I got that problem fixed for the most part now as the internet works, except when I go into X. About a minute after I get into X, my internet stops working, and I have to restart the whole computer to get it back up again. I have absolutely no clue as to what the problem might be, or how to solve it. Any suggestions? Suggestions? Here you go. Perhaps tell us more about your network configuration, tell us how does the internet stops working (can you ping anyone on LAN? what about external interface?), also tell us about your X configuration (eg. which environment / WM do you use), place .xinit and /var/log/XFree86.log.0 somewhere on the web, so we could see it. Also a dmseg and a copy of rc.conf might help. ifconfig will show what is going on with your network card. You should never have to restart your whole computer, sounds like it could be a config, or more likely a hardware problem. Jason ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Proper way to start a program at log-on
Make a shell script like the ones in /usr/local/etc/rc.d to start and stop the process. The script MUST be named whatever.sh and must be executable. It must accept start and stop as parameters. This is the general solution. There is probably a doc reference for it but I havent looked. mjt On Mon, 2004-05-24 at 07:58, Gerard Seibert wrote: Since I am still new to this OS, I thought that I would check to make sure that I am doing this correctly. On my WinXP machine, I run the Distributed Net 'dnetc' program. Further information regarding this program is available here: http://www.distributed.net//docs/tutor_clients.php. To start the program in the background I need to issue the following command: 'dnetc -quiet'. Since I want to start this program automatically each time I log on, I placed that command at the end of my '.bash_profile' file. I then placed the shutdown command 'dnetc -shutdown' in the '/etc/rc.shutdown' file. Since everything seems to be workings correctly, I assume that I have done this correctly. If there is a better way to do this, I would appreciate receiving the information. Thanks! Gerard E. Seibert [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] This Email has been scanned for Viruses by MailMarshal. -- Murray Taylor Special Projects Engineer - Bytecraft Systems Entertainment P: +61 3 8710 2555 F: +61 3 8710 2599 D: +61 3 9238 4275 M: +61 417 319 256 E: [EMAIL PROTECTED] or visit us on the web http://www.bytecraftsystems.com http://www.bytecraftentertainment.com This Email has been scanned for Viruses by MailMarshal. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Proper way to start a program at log-on
Make a shell script like the ones in /usr/local/etc/rc.d to start and stop the process. The script MUST be named whatever.sh and must be executable. It must accept start and stop as parameters. This is the general solution. There is probably a doc reference for it but I havent looked. mjt On Mon, 2004-05-24 at 07:58, Gerard Seibert wrote: Since I am still new to this OS, I thought that I would check to make sure that I am doing this correctly. On my WinXP machine, I run the Distributed Net 'dnetc' program. Further information regarding this program is available here: http://www.distributed.net//docs/tutor_clients.php. To start the program in the background I need to issue the following command: 'dnetc -quiet'. Since I want to start this program automatically each time I log on, I placed that command at the end of my '.bash_profile' file. I then placed the shutdown command 'dnetc -shutdown' in the '/etc/rc.shutdown' file. Since everything seems to be workings correctly, I assume that I have done this correctly. If there is a better way to do this, I would appreciate receiving the information. Thanks! Gerard E. Seibert [EMAIL PROTECTED] I would do it this way myself. You can use the other scripts in this directory as an example. If permissions are an issue, I would setuid for the user you want this to run as, but not root. Back in 1998, I used to run this very program, and this was my solution. HTH Eric F Crist President AdTech Integrated Systems, Inc (612) 998-3588 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]