Re: ppp -auto my_provider
On Wed, 2 Feb 2005, Alexander Bubnov wrote: could you help me, please? (I have FreeBSD 5.3) this question: http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/ppp.html#PPP-AUTO-NOREASONDIAL Why does ppp(8) dial for no reason in -auto mode? I've fought the same irritating issue now and again. As for diagnosis, the most useful thing I've found is to turn on full logging (in ppp.conf), then grep (or tail -f or whatever) the log looking for the dial trigger after a spurious dial. I'm not on the machine from which I have the misfortune of needing to use a modem so I can't say off-hand the exact string to look for, but it's not any of the four lines you've posted. If you need more info about the nature of the transaction, try 'tcpdump -i tun0'. I used this recently to determine that various operations on NAT machines behind my gateway were generating spurious (and obviously failing) reverse DNS lookups and thus, an unwanted dial. I never reached a conclusion about how to deal with this other than to set up a cacheing-only DNS server, but I shouldn't even mention it here since it's probably not related to a solution for you (...or is it?) BTW, and totally unrelated, does anyone know of a graphical dial utility for ppp(8) (aka, user-ppp?) I see two in the ports collection for 'pppd', but I know 'user-ppp' slightly better. My goal is to set up a machine for a completely computer non-literate friend, and I would rather use FreeBSD than any of the Linux distros that may also be suitable. I would need to make his system very user-friendly. Thanks, - Tom I used the following line for log-file: set log tcp/ip /var/log/ppp.log includes next text: Feb 1 10:24:04 fatal ppp[894]: Phase: Using interface: tun0 Feb 1 10:24:04 fatal ppp[894]: Phase: deflink: Created in closed state Feb 1 10:24:04 fatal ppp[895]: TCP/IP: OUT 0: fe80::2c0:26ff:fea4:b6b0 --- ff02::1:ffa4:b6b0 (72) Feb 1 10:24:04 fatal ppp[895]: TCP/IP: OUT ICMP: :::135 --- ff02::1:ffa4:b6b0 (16/64) (I install FreeBSD 5.3 from mini-install disk and I do not have samba) also I used next: /etc/ppp/ppp.conf: default: ... set filter dial 1 deny udp src eq 53 set filter dial 2 deny udp dst eq 53 set filter dial 3 permit 0/0 0/0 ... my_provider: ... and I killed sendmail, typing killall sendmail These ways did not help me :( What do I need to do to solve a problem? When ppp begins to dualup 'netstat -rn' outputs next: Internet6: Destination Gateway Flags Netif Expire ::1 ::1 UH lo0 fe80::%rl0/64 link#1UC rl0 fe80::2c0:26ff:fea4:b6b0%rl0 00:c0:26:a4:b6:b0 UHL lo0 fe80::%lo0/64 fe80::1%lo0 U lo0 fe80::1%lo0 link#3UHL lo0 ff01::/32 ::1 U lo0 ff02::%rl0/32 link#1UC rl0 ff02::%lo0/32 ::1 UC lo0 ff02::%tun0/32fe80::2c0:26ff:fea4:b6b0%tun0 UC tun0 this string adds when 'ppp -auto my_provider' dialups: ff02::%tun0/32fe80::2c0:26ff:fea4:b6b0%tun0 UC tun0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How do I do a COLD Reboot on FreeBSD?
Bob Hall wrote: This may help. http://www.faqs.org/faqs/assembly-language/x86/general/part3/section-5.html Bob Hall Hmmm. Good link. Here's a better one that I just discovered reading about this stuff: http://unix.derkeiler.com/Mailing-Lists/FreeBSD/hackers/2003-11/0205.html I began to notice that the 0x472 code is rampant in these reboot assembler code examples. Then I found out that FreeBSD has its own asembly language found in the boot loaders, etc. OpenBSD and others like Linux use this stuff similarly. Linux seems to give you the option in a config file!! to cold reboot. So this led me to: /usr/src/sys/i386/i386/locore.s Which looks to me the place where a warm boot is guaranteed. By the way, the guy above (Adrian Steinmann) might have cleaned up the code for the btx (usr/src/sys/boot/i386/btx/btx/btx.S) in 2003. But his code cleanup never stayed in /usr/src/sys/boot/i386/boot2/boot1.S. Example from FreeBSD-5-stable: /usr/src/sys/boot/i386/btx/btx/btx.S has this: movw $0x1234, BDA_BOOT # Do a warm boot ljmp $0x,$0x0 # reboot the machine /usr/src/sys/boot/i386/boot2/boot1.S has the *better* version: movw $0x1234, BDA_BOOT # Do a warm boot ljmp $0xf000,$0xfff0# reboot the machine Anyway, Adrian Steinmann tried to patch the reboot code in btx.s to do some sort of bugfix and troubleshooting on his particular machine. There may have been a regresion here since he tried that, but I don't care much about the BTX or the boot1 code. My issue is for now with the reboot done during a normal full kernel running. That is when SMP code is active and the memory is being actively used. I believe the locore.s file is where I need to look, because it moves this 0x1234 data into the BDA_BOOT location, which is 0x427 in memory. Therefore, I will try to hack the locore.s file and use a zero instead of 0x1234 to move into memory at the BDA_BOOT location. here's my unified diff: -Code --- locore.sThu Jul 8 17:35:34 2004 +++ /usr/src/sys/i386/i386/locore.s Wed Feb 2 01:50:36 2005 @@ -214,7 +214,8 @@ movsb #else /* IBM-PC */ /* Tell the bios to warmboot next time */ - movw$0x1234,0x472 +/* movw$0x1234,0x472 */ +movw$0x,0x472 /* Billy: Perform Cold Reboot! */ #endif /* PC98 */ /* Set up a real frame in case the double return in newboot is executed. */ -Code The only substantial change is that I hope this make my machine do a cold reboot. Billy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
distrubuting distro
Is it allowed to distribute Freebsd on any other distro charging only media cost related to it ? GNU based application are very hard to find here in my country ordering from Internet is very expensive, for a normal user , so i was thinking can i copy my distro Cd's sell @ media cost in my country ? is it allowed ? thanks = *º¤., ¸¸,.¤º*¨¨¨*¤ Allah-hu-Akber*º¤., ¸¸,.¤º*¨¨*¤ God is the Greatest __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re[2]: ppp -auto my_provider
Hello Tom, Wednesday, February 2, 2005, 11:02:04 AM, you wrote: On Wed, 2 Feb 2005, Alexander Bubnov wrote: could you help me, please? (I have FreeBSD 5.3) this question: http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/ppp.html#PPP-AUTO-NOREASONDIAL Why does ppp(8) dial for no reason in -auto mode? I've fought the same irritating issue now and again. As for diagnosis, the most useful thing I've found is to turn on full logging (in ppp.conf), then grep (or tail -f or whatever) the log looking for the dial trigger after a spurious dial. I'm not on the machine from which I have the misfortune of needing to use a modem so I can't say off-hand the exact string to look for, but it's not any of the four lines you've posted. full log (if it help you remeber that string, if not when you are on that machine could you send me the string, please?): Feb 2 11:27:56 fatal ppp[511]: Phase: Using interface: tun0 Feb 2 11:27:56 fatal ppp[511]: Phase: deflink: Created in closed state Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: ident user-ppp VERSION (built COMPILATIONDATE) Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set device /dev/cuaa0 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set speed 115200 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set dial ABORT BUSY ABORT NO\sCARRIER TIMEOUT 5 AT OK-AT-OK ATE1Q0 OK \dATDT\T TIMEOUT 80 CONNECT Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set filter dial 1 deny udp src eq 53 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Src: AF_UNSPEC Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Dst: AF_UNSPEC Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Proto: 17 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: src: eq (53) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: dst: none (0) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: estab: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: syn: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: finrst: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set filter dial 2 deny udp dst eq 53 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Src: AF_UNSPEC Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Dst: AF_UNSPEC Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Proto: 17 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: src: none (0) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: dst: eq (53) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: estab: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: syn: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: finrst: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set filter dial 3 permit 0/0 0/0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Src: AF_UNSPEC Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Dst: AF_UNSPEC Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: Proto: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: src: none (0) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: dst: none (0) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: estab: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: syn: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: Parse: finrst: 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: set timeout 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: default: enable dns Feb 2 11:27:56 fatal ppp[511]: tun0: ID0: 0x282e97c0 = fopen(/etc/ppp/ppp.conf, r) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: ReadSystem: Checking mts (/etc/ppp/ppp.conf). Feb 2 11:27:56 fatal ppp[511]: tun0: Command: mts: set phone 8w2850 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: mts: set authname mts Feb 2 11:27:56 fatal ppp[511]: tun0: Command: mts: set authkey Feb 2 11:27:56 fatal ppp[511]: tun0: Command: mts: set timeout 20 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: mts: set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0 Feb 2 11:27:56 fatal ppp[511]: tun0: ID0: 11 = socket(2, 2, 0) Feb 2 11:27:56 fatal ppp[511]: tun0: ID0: 0 = ioctl(11, 2151704858, 0xbfbfda10) Feb 2 11:27:56 fatal ppp[511]: tun0: Warning: tun0: AIFADDR 10.0.0.1/24 - 10.0.0.2 returns 0 Feb 2 11:27:56 fatal ppp[511]: tun0: Command: mts: add default HISADDR Feb 2 11:27:56 fatal ppp[511]: tun0: ID0: 11 = socket(17, 3, 0) Feb 2 11:27:56 fatal ppp[511]: tun0: ID0: 140 = write(11, data, 140) Feb 2 11:27:56 fatal ppp[511]: tun0: Debug: wrote 140: cmd = Add, dst = 0.0.0.0/0, gateway = 10.0.0.2 Feb 2 11:27:56 fatal ppp[512]: tun0: ID0: 0x282e97c0 = fopen(/var/run/tun0.pid, w) Feb 2 11:27:56 fatal ppp[512]: tun0: Phase: PPP Started (auto mode). Feb 2 11:27:56 fatal ppp[512]: tun0: Timer: tun: fdset(r) 8 Feb 2 11:27:56 fatal ppp[512]: tun0: Timer: Select returns 1 Feb 2 11:27:56 fatal ppp[512]: tun0: Phase: bundle: Establish Feb 2 11:27:56 fatal ppp[512]: tun0: Phase: deflink: closed - opening Feb 2 11:27:56 fatal ppp[512]: tun0: TCP/IP: OUT 0: fe80::2c0:26ff:fea4:b6b0 ---
Re: Problem with booting freebsd
On Wed, 02 Feb 2005, Adil F. Mamedov wrote: Hello! After my WINDOWS XP crashed, I decided to reinstall it... But I forgot that during windows installation it overwrites the MBR. So, instead of prompting me for the OS to load (FreeBSD or Windows), the system loads Windows. When I found this problem, I have booted my system from the CD, then entered Fixit menu, booted the Live File System CD and went to the Console at VTY4. Then I did the following: Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] Hi, the reinstalling of your boot manager is a FAQ: [...] 3.9 Windows killed my boot manager! How do I get it back? You can reinstall the boot manager FreeBSD comes with in one of three ways: Running DOS, go into the tools/ directory of your FreeBSD distribution and look for bootinst.exe. You run it like so: ...\TOOLS bootinst.exe boot.bin and the boot manager will be reinstalled. Boot the FreeBSD boot floppy again and go to the Custom installation menu item. Choose Partition. Select the drive which used to contain your boot manager (likely the first one) and when you come to the partition editor for it, as the very first thing (e.g. do not make any changes) select (W)rite. This will ask for confirmation, say yes, and when you get the Boot Manager selection prompt, be sure to select ``Boot Manager''. This will re-write the boot manager to disk. Now quit out of the installation menu and reboot off the hard disk as normal. Boot the FreeBSD boot floppy (or CDROM) and choose the ``Fixit'' menu item. Select either the Fixit floppy or CDROM #2 (the ``live'' filesystem option) as appropriate and enter the fixit shell. Then execute the following command: Fixit# fdisk -B -b /boot/boot0 bootdevice substituting bootdevice for your real boot device such as ad0 (first IDE disk), ad4 (first IDE disk on auxiliary controller), da0 (first SCSI disk), etc. [...] Oliver mount /dev/ad0s3a /mnt - mount root filesystem fdisk -B -b /mnt/boot/boot0 /dev/ad0 - recover the MBR The last command gives me the error: ad0 Permission Denied. Note, that my Live File System CD is for the 4.4 Release, but I have 5.3 Release installed on my system. I don't expect this to be the reason of my problem, but anyway, who knows ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- ... don't touch the bang bang fruit ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Routing Problem
Im confused.. if you have two T1s, then are using /30s dor the ranges? If so.. what about not giving a default gateway for either one and just add routes... Are you attempting utilize this as just a router.? Theres a section that covers setting up routing on interfaces in the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routing.html Hope this helps T - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Tuesday, February 01, 2005 5:35 PM Subject: Routing Problem I am having a problem setting up a multi-homed host. I have two separate T1 internet connections, and one physical NIC in my FreeBSD box. The two networks are as follows: Connection 1: LAN Address: 1.2.3.24/25 Router Address: 1.2.3.1 Connection 2: LAN Address: 4.5.6.106/29 Router Address: 4.5.6.105 I would like to set up my FreeBSD box so that I can connect to either LAN address from the outside world. The problem is that I cannot specify two default gateways. Right now, I have 1.2.3.1 set up as a default gateway, and I can get to the 1.2.3.24 IP from the outside world. However, I can't get to 4.5.6.106. I can't even ping it. From the FreeBSD box, I can ping 4.5.6.105, and from the outside world I can ping 4.5.6.105, but I can't ping 4.5.6.106 from the outside world. Is there any way to make this work? How can I make FreeBSD have two default gateways? I read somewhere about being able to set up source routing, but I haven't been able to find any HOWTO's about that. Any help is greatly appreciated. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re[2]: ppp -auto my_provider
On Wed, 2 Feb 2005, Alexander Bubnov wrote: Hello Tom, Wednesday, February 2, 2005, 11:02:04 AM, you wrote: On Wed, 2 Feb 2005, Alexander Bubnov wrote: could you help me, please? (I have FreeBSD 5.3) this question: http://www.freebsd.org/doc/en_US.ISO8859-1/books/faq/ppp.html#PPP-AUTO-NOREASONDIAL Why does ppp(8) dial for no reason in -auto mode? I've fought the same irritating issue now and again. As for diagnosis, the most useful thing I've found is to turn on full logging (in ppp.conf), then grep (or tail -f or whatever) the log looking for the dial trigger after a spurious dial. I'm not on the machine from which I have the misfortune of needing to use a modem so I can't say off-hand the exact string to look for, but it's not any of the four lines you've posted. full log (if it help you remeber that string, if not when you are on that machine could you send me the string, please?): Thinking back and looking at the man page a bit, I believe that what you want to log is 'Filter'. Here's a bit from the (long!) man page (locate 'LOGGING' to find it.): ... DNSLog DNS QUERY packets. Filter Log packets permitted by the dial filter and denied by any filter. HDLC Dump HDLC packet in hex. ... IIIRC, you can then 'grep Filter' to see what triggered the dial. This was sufficient in my case to determine what machine behind my NAT gateway was misbehaving, and something about what it was trying to do (i.e., contact Yahoo! IM server (determined after an nslookup).) It may not give enough info to pinpoint exactly the cause of the troubles in your case, but it would be a good start I think. Thanks, - Tom ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting FreeBSD-5.3 from NTLDR
On Tue, Feb 01, 2005 at 07:32:07PM +0400, Rakhesh Sasidharan wrote: On Tue, 1 Feb 2005 19:04:07 +0400, Rakhesh Sasidharan [EMAIL PROTECTED] wrote: On Tue, 1 Feb 2005 04:10:49 -0800, Loren M. Lang [EMAIL PROTECTED] wrote: I think that you should be able to use boot0 and boot1 as a file once the apropriate fields are filled in. When boot0 and boot1 are written to the disk in their special locations, several bytes of each file are modified to reflex various paramaters like which disk or partition they should use. You should be able to extract them with dd and boot them externally from my understanding of it. boot1 is normally written to the first sector of the partitionthat freebsd is installed on, if that's the first partition on ur second hard drive then: dd if=/dev/ad1s1 of=boot1.img count=1 will extract the file to boot1.img might NTLDR should be able to use. dd if=/dev/ad1 of=boot0.img count=1 I just tried these again. Same results as when I had used the bs=512 option. Extracting boot0.img gets me back to the NTLDR screen; extracting boot1.img gives me a Boot Error message. But what you said above gave me an idea. Possibly BootPart modifies the extracted bootsectors specially, changing the special parameters to enable booting of the second disk from the first? Its a thought ... maybe the way these files are written to the disk (from where dd extracts them), the special parameters are not such that they can be booted from the first disk. But when BootPart extracts the sectors, it modifies these parameters, enabling the booting. What say? bs=512 is the default. The typical sector size of disk drive is 512 bytes. This is so engrained right now that even flash memory sticks have to emulate 512 byte sectors when there is nothing that actually mandates that for flash chips. Unless BootPart specifically know about how the freebsd boot loaders work and how to reconize them, I doubt that it's modifying those parameters. Now the last 66 bytes of the MBR stores the partition table of the hard drive, it's possible that BootPart might try to modify that as it's not part of the boot loader, but the boot loader uses that information. -- -- Rakhesh [EMAIL PROTECTED] -- I sense much NT in you. NT leads to Bluescreen. Bluescreen leads to downtime. Downtime leads to suffering. NT is the path to the darkside. Powerful Unix is. Public Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mounted ext2 fs causes bad shutdown
On Tue, Feb 01, 2005 at 07:58:34AM -0600, Eric Kjeldergaard wrote: One of the many ways to do the same thing without the bugs could be: # extfs=$(mount | grep '^/.*(ext2fs,' | awk '{print $1}') Actually, better than that would be extfs=$(mount -t ext2fs | awk '{print $1;}') Or even just replace the whole thing with umount -a -t ext2fs While we're at it, isn't awk a bit of overkill? Seems that the following would do: extfs=$(mount -t ext2fs | cut -d ' ' -f1) How about save a few more bytes and do: extfs=`mount -text2fs|cut -d\ -f` But umount -a -text2fs is the shortest version since it doesn't even need a loop, it does everything in one command. Every cycle counts :p -- If I write a signature, my emails will appear more personalised. -- I sense much NT in you. NT leads to Bluescreen. Bluescreen leads to downtime. Downtime leads to suffering. NT is the path to the darkside. Powerful Unix is. Public Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
nsswitch ldap lookup problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi guys, I've gotten my kerberos and openldap up and running on FreeBSD 5.3 - and can login with my user (because he has been created in kerberos and pam looks in that), but nsswitch can't find the user in ldap for some reason. All help will be greatly appreciated When I login with ssh I get this in debug.log: Feb 2 11:06:06 auth01 sshd[771]: NSSWITCH(nss_method_lookup): ldap, passwd, endpwent, not found Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, group, setgrent, not found Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, group, getgrent_r, not found Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, group, endgrent, not found Feb 2 11:06:09 auth01 slapd[604]: conn=2 fd=12 ACCEPT from IP=172.21.1.109:56828 (IP=0.0.0.0:636) Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=0 BIND dn= method=128 Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=0 RESULT tag=97 err=0 text= Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=1 SRCH base=ou=People,dc=vsen,dc=dk scope=1 deref=0 filter=((objectClass=posixAccount)(uid=ktk)) Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Feb 2 11:06:09 auth01 slapd[604]: conn=2 fd=12 closed Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, group, setgrent, not found Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, group, getgrent_r, not found Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, group, endgrent, not found Feb 2 11:06:09 auth01 sshd[774]: NSSWITCH(nss_method_lookup): ldap, passwd, endpwent, not found if I try to do an ldapsearch for the same: # ldapsearch ((objectClass=posixAccount)(uid=ktk)) -b ou=People,dc=vsen,dc=dk -Y gssapi It seems to work fine: [SNIP - cut SASL talk] # extended LDIF # # LDAPv3 # base with scope sub # filter: ((objectClass=posixAccount)(uid=ktk)) # requesting: -b ou=People,dc=vsen,dc=dk -Y gssapi # # ktk, People, telmore.dk dn: uid=ktk,ou=People,dc=vsen,dc=dk # search result search: 5 result: 0 Success # numResponses: 2 # numEntries: 1 my /usr/local/etc/ldap.conf (on freebsd 5.3) looks like this: BASEdc=vsen, dc=dk URI ldaps://auth.vsen.dk:636/ TLS_REQCERT allow #SIZELIMIT 12 #TIMELIMIT 15 #DEREF never scope sub port 389 pam_password md5 ldap_version 3 pam_filter objectclass=posixAccount pam_login_attribute uid pam_member_attribute memberUid nss_base_passwd ou=People,dc=vsen,dc=dk?one nss_base_group ou=Groups,dc=vsen,dc=dk?one nss_base_shadow ou=People,dc=vsen,dc=dk?one #debug testing logdir /var/log debug 9 - -- Regards, Klavs Klavsen, GSEC - [EMAIL PROTECTED] - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 Those who do not understand Unix are condemned to reinvent it, poorly. ~ --Henry Spencer -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFCAKjtPToLeX4GPGIRAutdAJ4prd0S1dlM+kNcSAooZgNg6AV+hgCfW3pL YA9GXibYIkpgKkrxvPxL50c= =JwZO -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NFS tweaking (mount_nfs and fstab)
Hey FreeBSD community, Firstly - Whats the difference between freebsd-questions and freebsd-newbies? Just the level of detail / questions asked? Let me know if I should be posting somewhere besides this list. Ok, so I've been transferring large tar files (60gig+) to a nfs mount (both client and server are on the same LAN and both FreeBSD). Every so often the transfer halts. My NIC is using the `vr` driver so changed to a Intel card using the fxp driver - I'm told this is much more reliable. anyway... Since I'm spending so much time babying this NFS mount, I'd like to tweak it the best I can for fast, reliable read/write access. I googled and found a suggestion of: mount -t nfs -o -r=32768,-w=32768 bigbang:/backup/ad4m1a/tic /backup Can someone tell me if the -r,-w values are sane? Also - assuming those values are correct and make things reliably faster, how would I A). Check to see that these arguments are in action and B). add them to my /etc/fstab? I've assumed the following: bigbang:/backup/ad4m1a/tic /backup nfs rw,-r=32768,-w=32768 0 0 Is this correct? Any NFS experts care to share there knowledge on how to tweak NFS to a solid, fast state. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Getting FAM up and running from inetd
Hi there! I'm looking for a way to get fam [devel/fam] up and running from inetd. I seem to have followed all the hints in the pkg-message, however it doesnt work: imhotep# ps auxwww|grep inetd root97100 0.0 0.1 1128 836 ?? Is 11:10AM 0:00.02 /usr/sbin/inetd -wW imhotep# ps auxwww|grep portmap daemon 97494 0.0 0.1 952 612 ?? Is 11:23AM 0:00.00 /usr/sbin/portmap imhotep# grep fam /etc/inetd.conf sgi_fam/1-2 stream rpc/tcp waitroot /usr/local/bin/fam fam imhotep# grep fam /etc/rpc sgi_fam 391002 # file alteration monitor imhotep# rpcinfo -p program vers proto port 102 tcp111 portmapper 102 udp111 portmapper When I use courier-imap, fam doesnt start up automatically. I can start fam from commandline perfectly, but it only has a limited lifespan then. Any hints would be greatly appreciated :) Nils. -- Simple guidelines to happiness: Work like you don't need the money, love like your heart has never been broken and dance like no one can see you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
My unqualified host name (localhost) unknown; sleeping for retry
how do you fix this ? Feb 2 12:09:22 I sm-mta[699]: My unqualified host name (localhost) unknown; sle eping for retry ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Dealing with ports installations
I have a question. I attempted to install a port and when it failed I realized that it installed its dependancies that I don't need. ( I don't need the port because I found another that does what I need). Is there any way to safely go through and see what is installed, what depends on it and deinstall those that I don't need/use? Thanks, Tom ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ssh root@localhost
Why does it not accept my password ? I# ssh [EMAIL PROTECTED] Password: Password: Password: Permission denied (publickey,keyboard-interactive). I# ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ssh root@localhost
Am 02.02.2005 um 12:16 schrieb Gert Cuykens: Why does it not accept my password ? I# ssh [EMAIL PROTECTED] Hi Gert, if you really need that (this is disabled for security reasons), you need to edit /etc/ssh/sshd_config and change the following line so it is no longer commented out and says Yes instead: PermitRootLogin yes Hope that helps Stephan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ssh root@localhost
Gert Cuykens wrote: Why does it not accept my password ? I# ssh [EMAIL PROTECTED] Password: Password: Password: Permission denied (publickey,keyboard-interactive). I# ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ssh root access is per default not permitted, as far as I know. Log on as ordinary user, the su to root. Ben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ssh root@localhost
add your user to the wheel group that might do the trick. Greetings Oliver Leitner Technical Staff http://www.shells.at On Wednesday 02 February 2005 12:16, Gert Cuykens wrote: Why does it not accept my password ? I# ssh [EMAIL PROTECTED] Password: Password: Password: Permission denied (publickey,keyboard-interactive). I# ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
what is /entrophy ?
what is /entrophy ? can i delete it ? also can i delete /python.core ? what about /COPYRIGHT :P you just had to put it in the / dont you :) whats wrong with /tmp :P ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ssh root@localhost
oops, the others are right, i was wrong, i was thinking just two steps ahead once again...) On Wednesday 02 February 2005 12:38, Oliver Leitner wrote: add your user to the wheel group that might do the trick. Greetings Oliver Leitner Technical Staff http://www.shells.at On Wednesday 02 February 2005 12:16, Gert Cuykens wrote: Why does it not accept my password ? I# ssh [EMAIL PROTECTED] Password: Password: Password: Permission denied (publickey,keyboard-interactive). I# ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: what is /entrophy ?
On Wed, 2 Feb 2005 12:52:52 +0100, Gert Cuykens [EMAIL PROTECTED] wrote: what is /entrophy ? can i delete it ? also can i delete /python.core ? what about /COPYRIGHT :P you just had to put it in the / dont you :) whats wrong with /tmp :P PS what is the use of /usr/compat ? Can i delete it ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Routing Problem
Thomas, No, I'm not using this box as a router. It is a web server, and I need to spread the load of my web traffic across two separate T1s. I can't just add routes. You need a default route, or parts of the internet would become inaccessible. In my case, you need TWO default routes. I have set up Cisco equipment and Windows workstations with two default routes in the past, and it has worked. In fact, I have one Windows box right now that is configured on both these networks with two default gateways, and it is working. There has to be a way to make it work on FreeBSD. Tim Gustafson MEI Technology Consulting, Inc [EMAIL PROTECTED] (516) 379-0001 Office (516) 480-1870 Mobile/Emergencies (516) 908-4185 Fax http://www.meitech.com/ -Original Message- From: Thomas Foster [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:48 AM To: Gustafson, Tim Cc: [EMAIL PROTECTED] Subject: Re: Routing Problem Im confused.. if you have two T1s, then are using /30s dor the ranges? If so.. what about not giving a default gateway for either one and just add routes... Are you attempting utilize this as just a router.? Theres a section that covers setting up routing on interfaces in the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routin g.html Hope this helps T - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Tuesday, February 01, 2005 5:35 PM Subject: Routing Problem I am having a problem setting up a multi-homed host. I have two separate T1 internet connections, and one physical NIC in my FreeBSD box. The two networks are as follows: Connection 1: LAN Address: 1.2.3.24/25 Router Address: 1.2.3.1 Connection 2: LAN Address: 4.5.6.106/29 Router Address: 4.5.6.105 I would like to set up my FreeBSD box so that I can connect to either LAN address from the outside world. The problem is that I cannot specify two default gateways. Right now, I have 1.2.3.1 set up as a default gateway, and I can get to the 1.2.3.24 IP from the outside world. However, I can't get to 4.5.6.106. I can't even ping it. From the FreeBSD box, I can ping 4.5.6.105, and from the outside world I can ping 4.5.6.105, but I can't ping 4.5.6.106 from the outside world. Is there any way to make this work? How can I make FreeBSD have two default gateways? I read somewhere about being able to set up source routing, but I haven't been able to find any HOWTO's about that. Any help is greatly appreciated. smime.p7s Description: S/MIME cryptographic signature
Re: ssh root@localhost
thx all ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
netstat reset
Hi, all! Can anybody tell me how can I reset network statistic, which could be seen by command `netstat -i'? Thank you for advance Eugene ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
OT: Funny disclaimers (Was: Re: ssh root@localhost)
Hey, Sorry for the noise, but... -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. Could you please confirm this to be a joke? Thanks. Bye... Nico ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compiling/installing ports via NFS - any gotcha's? (while building linux_base-8-8.0_6, /usr/bin/build-locale-archive: cannot lock new archive: Operation not supported)
On Mon, Jan 31, 2005 at 05:15:19PM -0600, John typed: I don't have enough storage on my laptop for the entire ports tree (surprise, surprise), so I'm trying to make install acroread and jdk14 via NFS mounts from a bigger server. I'm down to trying to get the specific version of linux_base that it wants(and I already have the linux kld loaded and linprocfs mounted). I have rpc.statd and rpc.lockd running on both systems. What version of FreeBSD are you running? AFAIK, rpc.lockd in 4.x only handles serverside locking, not from the client. Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
faisal gillani wrote: Is it allowed to distribute Freebsd on any other distro charging only media cost related to it ? GNU based application are very hard to find here in my country ordering from Internet is very expensive, for a normal user , so i was thinking can i copy my distro Cd's sell @ media cost in my country ? is it allowed ? You can do ANYTHING you want with FreeBSD (The BSD license effectively says the same thing as the MIT license, you can see the BSD license here: http://www.opensource.org/licenses/bsd-license.php and here http://www.freebsd.org/copyright/license.html): - The MIT License Copyright (c) year copyright holders Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the Software), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED AS IS, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. --- As far as the GPL umm you can do anything you want with the code and even sell it. If you give it to customers in binary form you also have to give them the modified source code, if they ask for it. If you want to make copy's (on CD, etc.) of GPL software and distribute them for money this is also ok. You are aloud to charge for the time and cost of you providing this service, documentation, packaging the product etc. theres also the LGPL. umm I recommend reading up about the GPL/LGPL as I'm sure I have not given you the full story about the details and gottas of the licenses. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
On Wed, Feb 02, 2005 at 06:29:08AM -0600, Nikolas Britton wrote: faisal gillani wrote: Is it allowed to distribute Freebsd on any other distro charging only media cost related to it ? GNU based application are very hard to find here in my country ordering from Internet is very expensive, for a normal user , so i was thinking can i copy my distro Cd's sell @ media cost in my country ? is it allowed ? You can do ANYTHING you want with FreeBSD (The BSD license effectively says the same thing as the MIT license, you can see the BSD license here: http://www.opensource.org/licenses/bsd-license.php and here http://www.freebsd.org/copyright/license.html): But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
On Wed, 2005-02-02 at 04:12, faisal gillani wrote: Is it allowed to distribute Freebsd on any other distro charging only media cost related to it ? GNU based application are very hard to find here in my country ordering from Internet is very expensive, for a normal user , so i was thinking can i copy my distro Cd's sell @ media cost in my country ? is it allowed ? thanks = *., ,.** Allah-hu-Akber*., ,.** God is the Greatest __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] I am NOT a FreeBSD official, so please wait for a formal reply from someone else who is more qualified to speak. I don't see any problem with doing this for CDs for which there is an ISO image on www.freebsd.org, but the OTHER CDs that come in the boxed set are probably NOT available for further copying and distribution. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Big problem with PAE
Hello. I have some interest problem in FreeBSD 5.2 - 5.3. Funny, but 5.1 is not implement for this problem. Problem description: when I try to switch PAE mode (I have 8 Gb installed memory), I have many problems with kernel. It's happening when making lot of proccesses (for forcing this problem I used ForkBomb-1.3 in ports collection). When I typing: #forkbomb --runasroot -f(this will make lot of proccesses) kernel panic has appear Fatal trap 12: page fault while in kernel mode fault virtual address = 0xb000 fault code = supervisor read, page not present instruction pointer = 0x8:0xc045e830 stack pointer = 0x10:0xf2dd89e4 frame pointer = 0x10:0xf2dd8a18 code segment= base 0x0, limit 0xf, type 0x16 = DPL 0, pres 1, def32 1, gran 1 processor eflags= interrupt enabled, resume, IOPL=0 current process = 495 (forkbomb) trap number = 12 panic: page fault Sometimes, this appear: panic: pmap_enter: invalid page directory pdir=0x8f1063, va=0xffe0, sometimes this: panic: could not copy LDT, and this: panic: vm_fault: fault on nofault entry, addr: e796a000 I found, that this problem is in the pmap_qremove function (I think so...) Please, help!! P.S. In message attachment, I give you copy of my GENERIC and dmesg.boot files - http://mobile.ngs.ru/games - Java- ... http://love.ngs.ru - Copyright (c) 1992-2004 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 5.3-RELEASE #1: Wed Feb 2 15:22:21 UTC 2005 [EMAIL PROTECTED]:/usr/src/sys/i386/compile/GENERIC Timecounter i8254 frequency 1193182 Hz quality 0 CPU: Intel(R) Xeon(TM) CPU 3.20GHz (3189.73-MHz 686-class CPU) Origin = GenuineIntel Id = 0xf25 Stepping = 5 Features=0xbfebfbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE Hyperthreading: 2 logical CPUs real memory = 8858370048 (8448 MB) avail memory = 8413073408 (8023 MB) ACPI APIC Table: INTEL SBR20 ACPI-0697: *** Warning: Type override - [DEB_] had invalid type (Integer) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [MLIB] had invalid type (Integer) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [DATA] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [SIO_] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [LEDP] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [GPEN] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [GPST] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [GP1N] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [WUES] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [WUSE] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [SBID] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [SWCE] had invalid type (String) for Scope operator, changed to (Scope) ACPI-0697: *** Warning: Type override - [SMIR] had invalid type (String) for Scope operator, changed to (Scope) ioapic0 Version 2.0 irqs 0-23 on motherboard ioapic1 Version 2.0 irqs 24-47 on motherboard ioapic2 Version 2.0 irqs 48-71 on motherboard lapic0: Forcing LINT1 to edge trigger acpi0: INTEL SBR20 on motherboard acpi0: Power Button (fixed) acpi_ec0: Embedded Controller: GPE 0x8 port 0xca7,0xca6 on acpi0 Timecounter ACPI-fast frequency 3579545 Hz quality 1000 acpi_timer0: 24-bit timer at 3.579545MHz port 0x408-0x40b on acpi0 cpu0: ACPI CPU on acpi0 acpi_button0: Sleep Button on acpi0 pcib0: ACPI Host-PCI bridge port 0xcf8-0xcff on acpi0 pci0: ACPI PCI bus on pcib0 pci0: unknown at device 0.1 (no driver attached) pcib1: ACPI PCI-PCI bridge at device 3.0 on pci0 pcib1: could not get PCI interrupt routing table for \\_SB_.PCI0.P0P5 - AE_NOT_FOUND pci2: ACPI PCI bus on pcib1 pci2: base peripheral, interrupt controller at device 28.0 (no driver attached) pcib2: ACPI PCI-PCI bridge at device 29.0 on pci2 pci4: ACPI PCI bus on pcib2 pcib3: PCI-PCI bridge at device 2.0 on pci4 pci5: PCI bus on pcib3 amr0: LSILogic MegaRAID mem 0xfea8-0xfeaf,0xfc3f-0xfc3f irq 52 at device 0.0 on pci5 amr0: [GIANT-LOCKED] amr0: LSILogic Intel(R) RAID
Re: what is /entrophy ?
On Wed, Feb 02, 2005 at 12:52:52PM +0100, Gert Cuykens wrote: what is /entrophy ? can i delete it ? It is used to store entropy to reseed the random number generator at boot time. If it really is in your way there, then you can put it elsewhere by setting entropy_file in /etc/rc.conf. also can i delete /python.core ? Yes. It is the remnants of a crashed python process. If you're not interested in debugging it, you may as well get rid. what about /COPYRIGHT :P Why bother? It's only using one inode, and occupies very little disk space. But if it offends, then sure, remove it. It'll come back when you upgrade anyway. you just had to put it in the / dont you :) whats wrong with /tmp :P They're not temporary files. /tmp is for storing session data, etc, that will not be required after reboot. The whole point of the entropy file is to store entropy across a reboot. COPYRIGHT should be somewhere easy to find - where's easier to find than /? And /usr/compat is where the compatibility layers live. If you use any ports that depend on Linux, then they will want this stuff intact. If you don't use any ports that expect to be run on Linux, it'll probably be empty. Dan -- Daniel Bye PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc PGP Key fingerprint: 3B9D 8BBB EB03 BA83 5DB4 3B88 86FC F03A 90A1 BE8F _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ pgpmPzS35vvQR.pgp Description: PGP signature
Re: Routing Problem
Hi Tim.. If you have multiple interfaces and you configure a default gateway for each interface, the default metric determination that is based on the speed of the interface usually uses the fastest interface for default gateway traffic. This is usually desirable in configurations in which the computer is connected to the same network. This behavior can become a problem when the computer exists on two or more disjointed networks (networks that do not provide symmetric reachability on layer3). Symmetric reachability exists when packets can be sent to and received from an arbitrary destination. Because the TCP/IP version4 protocol uses a single default route in FreeBSD's routing table at any one time for default route traffic, default routers configured on multiple interfaces connected to two or more disjointed networks can wreak routing traffic havoc. In FreeBSD, you can manually configure the routing table for the individual interfaces.. but it sounds to me as if you are attempting to use two ethernet interfaces connected to two disjointed networks connected to routers with two seperate subnets in order to balance http requests to one server.. is this the case? I guess I am not fully understanding your configuration ... T. - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: Thomas Foster [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:06 AM Subject: RE: Routing Problem Thomas, No, I'm not using this box as a router. It is a web server, and I need to spread the load of my web traffic across two separate T1s. I can't just add routes. You need a default route, or parts of the internet would become inaccessible. In my case, you need TWO default routes. I have set up Cisco equipment and Windows workstations with two default routes in the past, and it has worked. In fact, I have one Windows box right now that is configured on both these networks with two default gateways, and it is working. There has to be a way to make it work on FreeBSD. Tim Gustafson MEI Technology Consulting, Inc [EMAIL PROTECTED] (516) 379-0001 Office (516) 480-1870 Mobile/Emergencies (516) 908-4185 Fax http://www.meitech.com/ -Original Message- From: Thomas Foster [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:48 AM To: Gustafson, Tim Cc: [EMAIL PROTECTED] Subject: Re: Routing Problem Im confused.. if you have two T1s, then are using /30s dor the ranges? If so.. what about not giving a default gateway for either one and just add routes... Are you attempting utilize this as just a router.? Theres a section that covers setting up routing on interfaces in the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routin g.html Hope this helps T - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Tuesday, February 01, 2005 5:35 PM Subject: Routing Problem I am having a problem setting up a multi-homed host. I have two separate T1 internet connections, and one physical NIC in my FreeBSD box. The two networks are as follows: Connection 1: LAN Address: 1.2.3.24/25 Router Address: 1.2.3.1 Connection 2: LAN Address: 4.5.6.106/29 Router Address: 4.5.6.105 I would like to set up my FreeBSD box so that I can connect to either LAN address from the outside world. The problem is that I cannot specify two default gateways. Right now, I have 1.2.3.1 set up as a default gateway, and I can get to the 1.2.3.24 IP from the outside world. However, I can't get to 4.5.6.106. I can't even ping it. From the FreeBSD box, I can ping 4.5.6.105, and from the outside world I can ping 4.5.6.105, but I can't ping 4.5.6.106 from the outside world. Is there any way to make this work? How can I make FreeBSD have two default gateways? I read somewhere about being able to set up source routing, but I haven't been able to find any HOWTO's about that. Any help is greatly appreciated. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
Erik Trulsson wrote: On Wed, Feb 02, 2005 at 06:29:08AM -0600, Nikolas Britton wrote: faisal gillani wrote: Is it allowed to distribute Freebsd on any other distro charging only media cost related to it ? GNU based application are very hard to find here in my country ordering from Internet is very expensive, for a normal user , so i was thinking can i copy my distro Cd's sell @ media cost in my country ? is it allowed ? You can do ANYTHING you want with FreeBSD (The BSD license effectively says the same thing as the MIT license, you can see the BSD license here: http://www.opensource.org/licenses/bsd-license.php and here http://www.freebsd.org/copyright/license.html): But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. If there was no GPL code in FreeBSD he could prevent anybody from making copys of his copys, as long as he keeps the BSD copyright notices in there etc he can do anything he wants with it, ANYTHING! For example the Windows NT network stack was ripped from OpenBSD et. al. Now if you ask me if it's a sane thing to do I'd say no because they can just go around him and get it from the FreeBSD site. but the point I'm trying to make is that he could if he wanted to, even if it's a stupid idea such as this, because FreeBSD IS free, unlike the GPL. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Routing Problem
Thomas (and John too), Let me clarify a little bit. What I have is this: A single FreeBSD web server with a single NIC in it Two T1 routers, each with a different subnet. My FreeBSD box has two IP addresses assigned to it, one from the first subnet and one from the second subnet. I want to use round-robin DNS to direct half my web traffic to the first IP and half to the second IP. As I said to John in a private e-mail earlier this morning, I have a Windows 2000 box that is doing exactly this with these two subnets right now. I know it can be done. I have a feeling that the FreeBSD TCP stack lacks the capability. By the way, this also works with Cisco hardware. I have used Cisco equipment in this same configuration in the past. I think they way it SHOULD work is that you should be able to give a FreeBSD box multiple default gateways. When FreeBSD gets a packet to an IP on the first subnet, it should use the default gateway that is also on that subnet. When FreeBSD gets a packet to an IP on the second subnet, it should use the second default gateway. This seems to be the logic that Windows (and Cisco) uses. Tim Gustafson MEI Technology Consulting, Inc [EMAIL PROTECTED] (516) 379-0001 Office (516) 480-1870 Mobile/Emergencies (516) 908-4185 Fax http://www.meitech.com/ -Original Message- From: Thomas Foster [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 7:57 AM To: Gustafson, Tim Cc: [EMAIL PROTECTED] Subject: Re: Routing Problem Hi Tim.. If you have multiple interfaces and you configure a default gateway for each interface, the default metric determination that is based on the speed of the interface usually uses the fastest interface for default gateway traffic. This is usually desirable in configurations in which the computer is connected to the same network. This behavior can become a problem when the computer exists on two or more disjointed networks (networks that do not provide symmetric reachability on layer3). Symmetric reachability exists when packets can be sent to and received from an arbitrary destination. Because the TCP/IP version4 protocol uses a single default route in FreeBSD's routing table at any one time for default route traffic, default routers configured on multiple interfaces connected to two or more disjointed networks can wreak routing traffic havoc. In FreeBSD, you can manually configure the routing table for the individual interfaces.. but it sounds to me as if you are attempting to use two ethernet interfaces connected to two disjointed networks connected to routers with two seperate subnets in order to balance http requests to one server.. is this the case? I guess I am not fully understanding your configuration ... T. - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: Thomas Foster [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:06 AM Subject: RE: Routing Problem Thomas, No, I'm not using this box as a router. It is a web server, and I need to spread the load of my web traffic across two separate T1s. I can't just add routes. You need a default route, or parts of the internet would become inaccessible. In my case, you need TWO default routes. I have set up Cisco equipment and Windows workstations with two default routes in the past, and it has worked. In fact, I have one Windows box right now that is configured on both these networks with two default gateways, and it is working. There has to be a way to make it work on FreeBSD. Tim Gustafson MEI Technology Consulting, Inc [EMAIL PROTECTED] (516) 379-0001 Office (516) 480-1870 Mobile/Emergencies (516) 908-4185 Fax http://www.meitech.com/ -Original Message- From: Thomas Foster [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:48 AM To: Gustafson, Tim Cc: [EMAIL PROTECTED] Subject: Re: Routing Problem Im confused.. if you have two T1s, then are using /30s dor the ranges? If so.. what about not giving a default gateway for either one and just add routes... Are you attempting utilize this as just a router.? Theres a section that covers setting up routing on interfaces in the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routin g.html Hope this helps T - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Tuesday, February 01, 2005 5:35 PM Subject: Routing Problem I am having a problem setting up a multi-homed host. I have two separate T1 internet connections, and one physical NIC in my FreeBSD box. The two networks are as follows: Connection 1: LAN Address: 1.2.3.24/25 Router Address: 1.2.3.1 Connection 2: LAN Address: 4.5.6.106/29 Router Address: 4.5.6.105 I would like to set up my FreeBSD box so that I can connect to either LAN address from the outside world. The problem is that I cannot specify two default gateways. Right now, I
Re: Compiling/installing ports via NFS - any gotcha's? (while building linux_base-8-8.0_6, /usr/bin/build-locale-archive: cannot lock new archive: Operation not supported)
On Wed, Feb 02, 2005 at 01:19:18PM +0100, Ruben de Groot wrote: On Mon, Jan 31, 2005 at 05:15:19PM -0600, John typed: I don't have enough storage on my laptop for the entire ports tree (surprise, surprise), so I'm trying to make install acroread and jdk14 via NFS mounts from a bigger server. I'm down to trying to get the specific version of linux_base that it wants(and I already have the linux kld loaded and linprocfs mounted). I have rpc.statd and rpc.lockd running on both systems. What version of FreeBSD are you running? AFAIK, rpc.lockd in 4.x only handles serverside locking, not from the client. Thanks, Ruben. I should have said. It's 5.3-STABLE on both sides. I now believe the problem was that I installed some parts before the cvsup, and some parts after, and missed the messages about it needing newer versions of some of the parts. I ripped out all the dependent packages and reinstalled the latest versions, and a lot of the weirdness went away. I also gave up trying to do the make over NFS, which I now regret, because my NFS server is the least powerful machine I have in terms of CPU power, and it's been compilig for about 16 hours now... -- John Lind [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
Nikolas Britton wrote: Erik Trulsson wrote: But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. If there was no GPL code in FreeBSD he could prevent anybody from making copys of his copys, as long as he keeps the BSD copyright notices in there etc he can do anything he wants with it, ANYTHING! For example the Windows NT network stack was ripped from OpenBSD et. al. Now if you ask me if it's a sane thing to do I'd say no because they can just go around him and get it from the FreeBSD site. but the point I'm trying to make is that he could if he wanted to, even if it's a stupid idea such as this, because FreeBSD IS free, unlike the GPL. duh, I forgot the best example. BSD running on a mach kernel running a custom user interface, otherwise known as Mac OS-X. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: nsswitch ldap lookup problems
Has anyone gotten nsswitch ldap lookup working on a FreeBSD-5.x? I tried this exact config on a linux-client (to the same ldap-server) and it worked fine - I could do: getent passwd - and it also returned the users only on the ldap server. I try to do the equivalent (I think - there's no getent for freebsd :( ) - by doing an(on FreeBSD-5.3): # id ktk id: ktk: no such user in linux it gives me: # id ktk uid=5042(ktk) gid=5001(drift) groups=5001(drift) (the ktk user only exists in ldap) the /etc/ldap.conf, /usr/local/etc/ldap.conf and /usr/local/etc/openldap/ldap.conf files are exactly alike on Linux and FreeBSD and now look like this: ssl start_tls ssl on suffix dc=vsen,dc=dk uri ldaps://auth.vsen.dk/ #pam_password exop ldap_version 3 pam_filter objectclass=posixAccount pam_login_attribute uid pam_member_attribute memberuid nss_base_passwd ou=People,dc=vsen,dc=dk nss_base_shadow ou=People,dc=vsen,dc=dk nss_base_group ou=Group,dc=vsen,dc=dk nss_base_hosts ou=Hosts,dc=vsen,dc=dk scope one on 02-02-2005 11:18 Klavs Klavsen wrote: Hi guys, I've gotten my kerberos and openldap up and running on FreeBSD 5.3 - and can login with my user (because he has been created in kerberos and pam looks in that), but nsswitch can't find the user in ldap for some reason. All help will be greatly appreciated When I login with ssh I get this in debug.log: Feb 2 11:06:06 auth01 sshd[771]: NSSWITCH(nss_method_lookup): ldap, passwd, endpwent, not found Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, group, setgrent, not found Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, group, getgrent_r, not found Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, group, endgrent, not found Feb 2 11:06:09 auth01 slapd[604]: conn=2 fd=12 ACCEPT from IP=172.21.1.109:56828 (IP=0.0.0.0:636) Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=0 BIND dn= method=128 Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=0 RESULT tag=97 err=0 text= Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=1 SRCH base=ou=People,dc=vsen,dc=dk scope=1 deref=0 filter=((objectClass=posixAccount)(uid=ktk)) Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= Feb 2 11:06:09 auth01 slapd[604]: conn=2 fd=12 closed Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, group, setgrent, not found Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, group, getgrent_r, not found Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, group, endgrent, not found Feb 2 11:06:09 auth01 sshd[774]: NSSWITCH(nss_method_lookup): ldap, passwd, endpwent, not found if I try to do an ldapsearch for the same: # ldapsearch ((objectClass=posixAccount)(uid=ktk)) -b ou=People,dc=vsen,dc=dk -Y gssapi It seems to work fine: [SNIP - cut SASL talk] # extended LDIF # # LDAPv3 # base with scope sub # filter: ((objectClass=posixAccount)(uid=ktk)) # requesting: -b ou=People,dc=vsen,dc=dk -Y gssapi # # ktk, People, telmore.dk dn: uid=ktk,ou=People,dc=vsen,dc=dk # search result search: 5 result: 0 Success # numResponses: 2 # numEntries: 1 my /usr/local/etc/ldap.conf (on freebsd 5.3) looks like this: BASEdc=vsen, dc=dk URI ldaps://auth.vsen.dk:636/ TLS_REQCERT allow #SIZELIMIT 12 #TIMELIMIT 15 #DEREF never scope sub port 389 pam_password md5 ldap_version 3 pam_filter objectclass=posixAccount pam_login_attribute uid pam_member_attribute memberUid nss_base_passwd ou=People,dc=vsen,dc=dk?one nss_base_group ou=Groups,dc=vsen,dc=dk?one nss_base_shadow ou=People,dc=vsen,dc=dk?one #debug testing logdir /var/log debug 9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Regards, Klavs Klavsen, GSEC - [EMAIL PROTECTED] - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 Those who do not understand Unix are condemned to reinvent it, poorly. --Henry Spencer ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
keeping freebsd uptodate - doubt
Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all ( or should I change tag=RELENG_5_3 ) cvsup -g -L 2 /root/ports-supfile 3) portsdb -Uu 4) portversion -v 5) portupgrade -arR { to upgrade from all the lower versions of applications ) Any other steps to do? What 'make fetchindex' will do? Pls guide me Sarav __ Do you Yahoo!? Yahoo! Mail - Find what you need with new enhanced search. http://info.mail.yahoo.com/mail_250 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
On Wed, Feb 02, 2005 at 07:00:57AM -0600, Nikolas Britton wrote: Erik Trulsson wrote: On Wed, Feb 02, 2005 at 06:29:08AM -0600, Nikolas Britton wrote: faisal gillani wrote: Is it allowed to distribute Freebsd on any other distro charging only media cost related to it ? GNU based application are very hard to find here in my country ordering from Internet is very expensive, for a normal user , so i was thinking can i copy my distro Cd's sell @ media cost in my country ? is it allowed ? You can do ANYTHING you want with FreeBSD (The BSD license effectively says the same thing as the MIT license, you can see the BSD license here: http://www.opensource.org/licenses/bsd-license.php and here http://www.freebsd.org/copyright/license.html): But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. If there was no GPL code in FreeBSD he could prevent anybody from making copys of his copys, No, he could not, unless he adds his own modifications to the code. If he adds his own modifications then those modifications can't be copied without a specific license and untangling the free and non-free parts of the code is infeasible. as long as he keeps the BSD copyright notices in there etc he can do anything he wants with it, ANYTHING! For example the Windows NT network stack was ripped from OpenBSD et. al. It has been widely alleged (and is even likely) that Windows got large parts of the TCP/IP implementation from some BSD implementation, but so far no proof has appeared. But that is irrelevant since Microsoft no doubt has made their own changes and those changes are not re-distributable without Microsoft's permisson. Now if you ask me if it's a sane thing to do I'd say no because they can just go around him and get it from the FreeBSD site. but the point I'm trying to make is that he could if he wanted to, even if it's a stupid idea such as this, because FreeBSD IS free, unlike the GPL. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
On Wed, Feb 02, 2005 at 07:11:36AM -0600, Nikolas Britton wrote: Nikolas Britton wrote: Erik Trulsson wrote: But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. If there was no GPL code in FreeBSD he could prevent anybody from making copys of his copys, as long as he keeps the BSD copyright notices in there etc he can do anything he wants with it, ANYTHING! For example the Windows NT network stack was ripped from OpenBSD et. al. Now if you ask me if it's a sane thing to do I'd say no because they can just go around him and get it from the FreeBSD site. but the point I'm trying to make is that he could if he wanted to, even if it's a stupid idea such as this, because FreeBSD IS free, unlike the GPL. duh, I forgot the best example. BSD running on a mach kernel running a custom user interface, otherwise known as Mac OS-X. With the BSD running on a mach kernel part also known as Darwim, which is freely distributable under pretty much the same conditions as the other BSDs. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
Hello, On Wed, Feb 02, 2005 at 05:19:36AM -0800 or thereabouts, saravanan ganapathy wrote: 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all ( or should I change tag=RELENG_5_3 ) This tag (RELENG_5_3) is for system cvsup not for ports cvsup. In case of system cvsup tag=. means to get 6.0-CURRENT. For ports cvsup (which is what I presume you want) tag=. is correct. 3) portsdb -Uu 4) portversion -v 5) portupgrade -arR { to upgrade from all the lower versions of applications ) I would recommend you to use also -b switch in portupgrade (like -abrR) to preserve replaced version of software you are upgrading. Cheers, Martin -- martin hudec * 421 907 303 393 * [EMAIL PROTECTED] * http://www.aeternal.net Nothing travels faster than the speed of light with the possible exception of bad news, which obeys its own special laws. Douglas Adams, The Hitchhiker's Guide to the Galaxy pgpYIYKCctZtm.pgp Description: PGP signature
Re: keeping freebsd uptodate - doubt
On Wednesday 02 February 2005 14:19, saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all ( or should I change tag=RELENG_5_3 ) cvsup -g -L 2 /root/ports-supfile 3) portsdb -Uu 4) portversion -v 5) portupgrade -arR { to upgrade from all the lower versions of applications ) id add the following things: 1. install portaudit. 2. portupgrade portdir/portname (e.g. portupgrade lang/perl5) 3. if portupgrade portdir/portname doesnt do, use the -f flag. 4. install freebsd-update from the security ports dir. 5. freebsd-update fetch 6. freebsd-update install 7. in case freebsd-update did find new kernel modules, you might eventually want to reboot the machine. Any other steps to do? What 'make fetchindex' will do? make fetchindex from what i might tell does the same as portsdb -Uu (if i got that wrong, please forgive me... i just had my first month with BSD) Pls guide me Sarav __ Do you Yahoo!? Yahoo! Mail - Find what you need with new enhanced search. http://info.mail.yahoo.com/mail_250 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Greetings Oliver Leitner Technical Staff http://www.shells.at -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dealing with ports installations
On Wednesday 02 February 2005 03:13 am, Tom Moyer [EMAIL PROTECTED] wrote: I have a question. I attempted to install a port and when it failed I realized that it installed its dependancies that I don't need. ( I don't need the port because I found another that does what I need). Is there any way to safely go through and see what is installed, what depends on it and deinstall those that I don't need/use? There are runtime dependencies and there are build dependencies. After installing, you don't need the build dependencies anymore, but in some cases it might be more convenient to leave them there, like if you're going to track updates for those ports, or if many ports need it to build. To see which dependencies of each type that a particular installed package has, you can use: % pkg_info -rR packagename\* That last backslash (escape) and asterix (wildcard) isn't necessary if you know the complete name of the installed package with the version number. You can see a brief listing of all packages on your system with: % pkg_info And you can see all dependencies if you do: % pkg_info -arR For more, see man pkg_info. - jt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
to add something... pkg_version -v pkgversions.txt then you might check the generated textfile for current packages which are outdated, and need to be upgraded... On Wednesday 02 February 2005 14:25, Oliver Leitner wrote: On Wednesday 02 February 2005 14:19, saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all ( or should I change tag=RELENG_5_3 ) cvsup -g -L 2 /root/ports-supfile 3) portsdb -Uu 4) portversion -v 5) portupgrade -arR { to upgrade from all the lower versions of applications ) id add the following things: 1. install portaudit. 2. portupgrade portdir/portname (e.g. portupgrade lang/perl5) 3. if portupgrade portdir/portname doesnt do, use the -f flag. 4. install freebsd-update from the security ports dir. 5. freebsd-update fetch 6. freebsd-update install 7. in case freebsd-update did find new kernel modules, you might eventually want to reboot the machine. Any other steps to do? What 'make fetchindex' will do? make fetchindex from what i might tell does the same as portsdb -Uu (if i got that wrong, please forgive me... i just had my first month with BSD) Pls guide me Sarav __ Do you Yahoo!? Yahoo! Mail - Find what you need with new enhanced search. http://info.mail.yahoo.com/mail_250 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Greetings Oliver Leitner Technical Staff http://www.shells.at -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all OK ( or should I change tag=RELENG_5_3 ) No, tag=. is exactly what is needed for updating ports. cvsup -g -L 2 /root/ports-supfile OK 3) portsdb -Uu From 'man portsdb': -U --updateindex Update or create the ports index file called INDEX. from 'man ports': fetchindex Fetch the INDEX file from the FreeBSD cluster. Generating INDEX with 'portsdb -U' can take a while. Alternatively, you could run 'cd /usr/ports make fetchindex' which will download that file for you. so point 3) could be like: 3-a) cd /usr/ports 3-b) make fetchindex 3-c) portsdb -u This is *much* faster but, of course, there's nothing wrong with 'portsdb -Uu'. 4) portversion -v 'portversion -v | grep -v = ' is what I use. Any other steps to do? Above procedure updates (only) your ports tree and installed ports. Subscribe to freebsd-announce and keep your system up-to-date. What 'make fetchindex' will do? See above (point 3). Regards, Karol -- Karol Kwiatkowski freebsd at orchid dot homeunix dot org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re:(solved) nsswitch ldap lookup problems
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Embarressing.. Once I actually installed nss_ldap - it worked :) on 02-02-2005 14:19 Klavs Klavsen wrote: | Has anyone gotten nsswitch ldap lookup working on a FreeBSD-5.x? | | I tried this exact config on a linux-client (to the same ldap-server) | and it worked fine - I could do: | getent passwd - and it also returned the users only on the ldap server. | | I try to do the equivalent (I think - there's no getent for freebsd :( ) | - by doing an(on FreeBSD-5.3): | # id ktk | id: ktk: no such user | | in linux it gives me: | # id ktk | uid=5042(ktk) gid=5001(drift) groups=5001(drift) | | (the ktk user only exists in ldap) | | the /etc/ldap.conf, /usr/local/etc/ldap.conf and | /usr/local/etc/openldap/ldap.conf files are exactly alike on Linux and | FreeBSD and now look like this: | | ssl start_tls | ssl on | suffix dc=vsen,dc=dk | | uri ldaps://auth.vsen.dk/ | #pam_password exop | | ldap_version 3 | pam_filter objectclass=posixAccount | pam_login_attribute uid | pam_member_attribute memberuid | nss_base_passwd ou=People,dc=vsen,dc=dk | nss_base_shadow ou=People,dc=vsen,dc=dk | nss_base_group ou=Group,dc=vsen,dc=dk | nss_base_hosts ou=Hosts,dc=vsen,dc=dk | | scope one | | | on 02-02-2005 11:18 Klavs Klavsen wrote: | | Hi guys, | | I've gotten my kerberos and openldap up and running on FreeBSD 5.3 - and | can login with my user (because he has been created in kerberos and pam | looks in that), but nsswitch can't find the user in ldap for some reason. | | All help will be greatly appreciated | | When I login with ssh I get this in debug.log: | Feb 2 11:06:06 auth01 sshd[771]: NSSWITCH(nss_method_lookup): ldap, | passwd, endpwent, not found | Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, | group, setgrent, not found | Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, | group, getgrent_r, not found | Feb 2 11:06:06 auth01 sshd[770]: NSSWITCH(nss_method_lookup): ldap, | group, endgrent, not found | Feb 2 11:06:09 auth01 slapd[604]: conn=2 fd=12 ACCEPT from | IP=172.21.1.109:56828 (IP=0.0.0.0:636) | Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=0 BIND dn= method=128 | Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=0 RESULT tag=97 err=0 text= | Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=1 SRCH | base=ou=People,dc=vsen,dc=dk scope=1 deref=0 | filter=((objectClass=posixAccount)(uid=ktk)) | Feb 2 11:06:09 auth01 slapd[604]: conn=2 op=1 SEARCH RESULT tag=101 | err=0 nentries=1 text= | Feb 2 11:06:09 auth01 slapd[604]: conn=2 fd=12 closed | Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, | group, setgrent, not found | Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, | group, getgrent_r, not found | Feb 2 11:06:09 auth01 sshd[773]: NSSWITCH(nss_method_lookup): ldap, | group, endgrent, not found | Feb 2 11:06:09 auth01 sshd[774]: NSSWITCH(nss_method_lookup): ldap, | passwd, endpwent, not found | | if I try to do an ldapsearch for the same: | # ldapsearch ((objectClass=posixAccount)(uid=ktk)) -b | ou=People,dc=vsen,dc=dk -Y gssapi | | It seems to work fine: | [SNIP - cut SASL talk] | # extended LDIF | # | # LDAPv3 | # base with scope sub | # filter: ((objectClass=posixAccount)(uid=ktk)) | # requesting: -b ou=People,dc=vsen,dc=dk -Y gssapi | # | | # ktk, People, telmore.dk | dn: uid=ktk,ou=People,dc=vsen,dc=dk | | # search result | search: 5 | result: 0 Success | | # numResponses: 2 | # numEntries: 1 | | my /usr/local/etc/ldap.conf (on freebsd 5.3) looks like this: | BASEdc=vsen, dc=dk | URI ldaps://auth.vsen.dk:636/ | TLS_REQCERT allow | | | #SIZELIMIT 12 | #TIMELIMIT 15 | #DEREF never | | scope sub | port 389 | pam_password md5 | ldap_version 3 | pam_filter objectclass=posixAccount | pam_login_attribute uid | pam_member_attribute memberUid | nss_base_passwd ou=People,dc=vsen,dc=dk?one | nss_base_group ou=Groups,dc=vsen,dc=dk?one | nss_base_shadow ou=People,dc=vsen,dc=dk?one | #debug testing | logdir /var/log | debug 9 | | | ___ | freebsd-questions@freebsd.org mailing list | http://lists.freebsd.org/mailman/listinfo/freebsd-questions | To unsubscribe, send any mail to | [EMAIL PROTECTED] | - -- Regards, Klavs Klavsen, GSEC - [EMAIL PROTECTED] - http://www.vsen.dk PGP: 7E063C62/2873 188C 968E 600D D8F8 B8DA 3D3A 0B79 7E06 3C62 Those who do not understand Unix are condemned to reinvent it, poorly. ~ --Henry Spencer -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFCANr0PToLeX4GPGIRAt6lAJ9cRo6Lj6dbF34uoIr5FnOJtcNEBQCgnz0G /SCbfhShS5ZJaIGvP4J04fY= =1NPq -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: User Limits
Simon [EMAIL PROTECTED] writes: I can't seem to find a way to limit FD per UID nor a way to limit memory per UID Both of these can only be applied per process basis. Is there a reason why FreeBSD still doesn't support these limits per UID? it would very useful to be able to limit per UID as well as per process. My current problem is that I have some user processes which need, let's say, 50mb of memory, but I also want to make sure that no single user is using more than 500mb of memory at any given time. Unfortunately, I also need to give users ability to spawn more than 10 processes and without per UID limits, if I set a limit of 20 processes per UID, 20 x 50mb would yield usage over 2x that of 500mb. I've been able to solve such problems by adding a limit on the number of processes per user, but that really only works because my environment is limited. I can imagine trying to write a daemon that would monitor usage and kill processes if they exceeded usage. It's a clunky solution, though. PS: I wasn't sure if I could address this on freebsd-arch, so it's going here. If you're offering to write kernel modifications to do it, then you should take it there. Otherwise, this probably is the right place. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Dealing with ports installations
On Wednesday 02 February 2005 05:39 am, Joshua Tinnin [EMAIL PROTECTED] wrote: On Wednesday 02 February 2005 03:13 am, Tom Moyer [EMAIL PROTECTED] wrote: I have a question. I attempted to install a port and when it failed I realized that it installed its dependancies that I don't need. ( I don't need the port because I found another that does what I need). Is there any way to safely go through and see what is installed, what depends on it and deinstall those that I don't need/use? There are runtime dependencies and there are build dependencies. After installing, you don't need the build dependencies anymore, but in some cases it might be more convenient to leave them there, like if you're going to track updates for those ports, or if many ports need it to build. To see which dependencies of each type that a particular installed package has, you can use: % pkg_info -rR packagename\* That last backslash (escape) and asterix (wildcard) isn't necessary if you know the complete name of the installed package with the version number. You can see a brief listing of all packages on your system with: % pkg_info And you can see all dependencies if you do: % pkg_info -arR For more, see man pkg_info. Sorry, once again I started writing email right after I woke up ... What I described will show you upward and downward dependencies of installed packages, but not build dependencies. To do that, you can do this, using Firefox as an example (you don't have to be root to do this, but you do to deinstall a port): % cd /usr/ports/www/firefox % make pretty-print-run-depends-list This port requires package(s) atk-1.8.0 bitstream-vera-1.10 expat-1.95.8 fontconfig-2.2.3,1 freetype2-2.1.7_4 gettext-0.14.1 glib-2.4.8 gnomehier-1.0_22 gtk-2.4.14_2 hicolor-icon-theme-0.5 jpeg-6b_3 lcms-1.14,1 libIDL-0.8.4 libXft-2.1.6 libiconv-1.9.2_1 libmng-1.0.8 libxml2-2.6.17 pango-1.6.0 perl-5.8.5 pkgconfig-0.15.0_1 png-1.2.8_1 shared-mime-info-0.15_7 tiff-3.7.1_2 xorg-fonts-encodings-6.8.1 xorg-fonts-truetype-6.8.1 xorg-libraries-6.8.1_1 to run. % make pretty-print-build-depends-list This port requires package(s) atk-1.8.0 bitstream-vera-1.10 expat-1.95.8 fontconfig-2.2.3,1 freetype2-2.1.7_4 gettext-0.14.1 glib-2.4.8 gmake-3.80_2 gtk-2.4.14_2 hicolor-icon-theme-0.5 intltool-0.32.1 jpeg-6b_3 lcms-1.14,1 libIDL-0.8.4 libXft-2.1.6 libiconv-1.9.2_1 libmng-1.0.8 libxml2-2.6.17 p5-XML-Parser-2.34_1 pango-1.6.0 perl-5.8.5 pkgconfig-0.15.0_1 png-1.2.8_1 shared-mime-info-0.15_7 tiff-3.7.1_2 xorg-fonts-encodings-6.8.1 xorg-fonts-truetype-6.8.1xorg-libraries-6.8.1_1 zip-2.3_2 to build. As you can see, some of the packages are required to run and build, so you need those no matter what. Some of the other build dependencies, like zip, you probably would find useful otherwise, so you may want to keep something like that, too. - jt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
--- Karol Kwiatkowski [EMAIL PROTECTED] wrote: saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all OK ( or should I change tag=RELENG_5_3 ) No, tag=. is exactly what is needed for updating ports. cvsup -g -L 2 /root/ports-supfile OK 3) portsdb -Uu From 'man portsdb': -U --updateindex Update or create the ports index file called INDEX. from 'man ports': fetchindex Fetch the INDEX file from the FreeBSD cluster. Generating INDEX with 'portsdb -U' can take a while. Alternatively, you could run 'cd /usr/ports make fetchindex' which will download that file for you. so point 3) could be like: 3-a) cd /usr/ports 3-b) make fetchindex 3-c) portsdb -u This is *much* faster but, of course, there's nothing wrong with 'portsdb -Uu'. 4) portversion -v 'portversion -v | grep -v = ' is what I use. Any other steps to do? Above procedure updates (only) your ports tree and installed ports. Subscribe to freebsd-announce and keep your system up-to-date. What 'make fetchindex' will do? See above (point 3). Thx for ur responses I have done the above steps to update my system and when I run 'portversion -v | grep -v = ', I am gettin g the perl package only. freebsd# portversion -v | grep -v = perl-5.8.5needs updating (port has 5.8.6_1) freebsd# portupgrade perl --- Upgrading 'perl-5.8.5' to 'perl-5.8.6_1' (lang/perl5.8) --- Building '/usr/ports/lang/perl5.8' === Cleaning for perl-5.8.6_1 === perl-5.8.6_1 has known vulnerabilities: = perl -- File::Path insecure file/directory permissions. Reference: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/perl5.8. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade5864.0 make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/perl5.8 (perl-5.8.5) (unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed How to solve this problem? Sarav __ Do you Yahoo!? Yahoo! Mail - now with 250MB free storage. Learn more. http://info.mail.yahoo.com/mail_250 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 5.3, Openfiles Limit in login.conf not respected
Matt Rechkemmer [EMAIL PROTECTED] writes: On Tue, Feb 01, 2005 at 05:01:53PM -0500, Lowell Gilbert wrote: What configuration file should I execute this on? login.conf? Yes. Go back to /etc/login.conf and read the first few lines. Lowell, I can't thank you enough :-). I should have RTFP in the first place. I submitted a small change to the login.conf manual page to note cap_mkdb more prominently... Now another question related to the open files proposition. Will FreeBSD every provide unlimited file descriptors as per the default class, or will it simply set the maximum that it's capable of? I'm not sure what the question means, to be honest. Certainly FreeBSD will never provide more file descriptors than it is capable of providing. And there is a system-wide limit -- all of the open files in the system have to be described in a kernel table which cannot be resized after boot time. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
On Wednesday 02 February 2005 14:57, saravanan ganapathy wrote: --- Karol Kwiatkowski [EMAIL PROTECTED] wrote: saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all OK ( or should I change tag=RELENG_5_3 ) No, tag=. is exactly what is needed for updating ports. cvsup -g -L 2 /root/ports-supfile OK 3) portsdb -Uu From 'man portsdb': -U --updateindex Update or create the ports index file called INDEX. from 'man ports': fetchindex Fetch the INDEX file from the FreeBSD cluster. Generating INDEX with 'portsdb -U' can take a while. Alternatively, you could run 'cd /usr/ports make fetchindex' which will download that file for you. so point 3) could be like: 3-a) cd /usr/ports 3-b) make fetchindex 3-c) portsdb -u This is *much* faster but, of course, there's nothing wrong with 'portsdb -Uu'. 4) portversion -v 'portversion -v | grep -v = ' is what I use. Any other steps to do? Above procedure updates (only) your ports tree and installed ports. Subscribe to freebsd-announce and keep your system up-to-date. What 'make fetchindex' will do? See above (point 3). Thx for ur responses I have done the above steps to update my system and when I run 'portversion -v | grep -v = ', I am gettin g the perl package only. freebsd# portversion -v | grep -v = perl-5.8.5needs updating (port has 5.8.6_1) freebsd# portupgrade perl --- Upgrading 'perl-5.8.5' to 'perl-5.8.6_1' (lang/perl5.8) --- Building '/usr/ports/lang/perl5.8' === Cleaning for perl-5.8.6_1 === perl-5.8.6_1 has known vulnerabilities: = perl -- File::Path insecure file/directory permissions. Reference: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fa e.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/perl5.8. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade5864.0 make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/perl5.8 (perl-5.8.5) (unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed How to solve this problem? portupgrade -f portname... Sarav __ Do you Yahoo!? Yahoo! Mail - now with 250MB free storage. Learn more. http://info.mail.yahoo.com/mail_250 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
Erik Trulsson wrote: On Wed, Feb 02, 2005 at 07:11:36AM -0600, Nikolas Britton wrote: Nikolas Britton wrote: Erik Trulsson wrote: But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. If there was no GPL code in FreeBSD he could prevent anybody from making copys of his copys, as long as he keeps the BSD copyright notices in there etc he can do anything he wants with it, ANYTHING! For example the Windows NT network stack was ripped from OpenBSD et. al. Now if you ask me if it's a sane thing to do I'd say no because they can just go around him and get it from the FreeBSD site. but the point I'm trying to make is that he could if he wanted to, even if it's a stupid idea such as this, because FreeBSD IS free, unlike the GPL. duh, I forgot the best example. BSD running on a mach kernel running a custom user interface, otherwise known as Mac OS-X. With the BSD running on a mach kernel part also known as Darwim, which is freely distributable under pretty much the same conditions as the other BSDs. Yep, but they did not have to do that. It was a gesture of giving back to the community that which they took from it. You would have to be morally corrupt to take other peoples life work and not think you should give something back to them, even if it is free and has no strings attached. Umm and about BSD in windows. It is in there, open the binary network (ping, ftp, telnet, finger, etc.) commands in a text editor and you can view the BSD copyright notices. also SFU (services for unix) version 3.5 was almost an entire rip of OpenBSD, and no thay did not give any kick backs to the community. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Unix equivalent of a variant??
Hey everyone, I'm finally doing something very exciting here at work: porting software to Unix! I need the equivalent of a variant, however. A hold-everything variable that can be any type in C/C++. Is there something already out there I can use or should I just roll my own? Are you porting VB code over to *nix? If that's the case then a better fit might be Python or Ruby with or without one of the various bindings for windowing toolkits. Jason ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
saravanan ganapathy wrote: I have done the above steps to update my system and when I run 'portversion -v | grep -v = ', I am gettin g the perl package only. freebsd# portversion -v | grep -v = perl-5.8.5needs updating (port has 5.8.6_1) freebsd# portupgrade perl --- Upgrading 'perl-5.8.5' to 'perl-5.8.6_1' (lang/perl5.8) --- Building '/usr/ports/lang/perl5.8' === Cleaning for perl-5.8.6_1 === perl-5.8.6_1 has known vulnerabilities: = perl -- File::Path insecure file/directory permissions. Reference: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/perl5.8. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade5864.0 make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/perl5.8 (perl-5.8.5) (unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed How to solve this problem? Portaudit thinks perl-5.8.6_1 is not safe. It even tells you where to find more information: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html If you look there it says: Affects: * perl =0 5.6.2 * perl =5.8.0 5.8.6 Clearly, perl-5.8.6_1 is *not* affected. This leads us to conclusion that your portadit's database is outdated. To fetch new databse simply run: # portaudit -F oh, btw. I forgot to include in previous post: before upgrading ports always read /usr/ports/UPDATING. It can save you some headaches ;) Cheers, Karol -- Karol Kwiatkowski freebsd at orchid dot homeunix dot org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
--- Oliver Leitner [EMAIL PROTECTED] wrote: On Wednesday 02 February 2005 14:19, saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all ( or should I change tag=RELENG_5_3 ) cvsup -g -L 2 /root/ports-supfile 3) portsdb -Uu 4) portversion -v 5) portupgrade -arR { to upgrade from all the lower versions of applications ) id add the following things: 1. install portaudit. 2. portupgrade portdir/portname (e.g. portupgrade lang/perl5) 3. if portupgrade portdir/portname doesnt do, use the -f flag. 4. install freebsd-update from the security ports dir. 5. freebsd-update fetch 6. freebsd-update install 7. in case freebsd-update did find new kernel modules, you might eventually want to reboot the machine what freebsd-update fetch install will do? Sarav __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
[snip] 4) portversion -v 'portversion -v | grep -v = ' is what I use. You shouldn't require the grep...you can do this instead: # portversion -vl [snip] Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
On Wednesday 02 February 2005 15:11, saravanan ganapathy wrote: --- Oliver Leitner [EMAIL PROTECTED] wrote: On Wednesday 02 February 2005 14:19, saravanan ganapathy wrote: Hai , I have installed 5.3 release and want to keep my system uptodate with the security patches. Based on many guides, I have arranged as a doc. Pls confirm me whether my steps are ok 1) Install portupgrade 2) Sync ports Ports-supfile contains as *default host=cvsup10.us.freebsd.org *default base=/var/db *default prefix=/usr *default release=cvs tag=. *default delete use-rel-suffix ports-all ( or should I change tag=RELENG_5_3 ) cvsup -g -L 2 /root/ports-supfile 3) portsdb -Uu 4) portversion -v 5) portupgrade -arR { to upgrade from all the lower versions of applications ) id add the following things: 1. install portaudit. 2. portupgrade portdir/portname (e.g. portupgrade lang/perl5) 3. if portupgrade portdir/portname doesnt do, use the -f flag. 4. install freebsd-update from the security ports dir. 5. freebsd-update fetch 6. freebsd-update install 7. in case freebsd-update did find new kernel modules, you might eventually want to reboot the machine what freebsd-update fetch install will do? Sarav freebsd-update keeps the non-ports part of freebsd up to date. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Perl modules
On Tue, Feb 01, 2005 at 11:06:57AM +0100, [EMAIL PROTECTED] typed: Hello, I have to do thise things: A) if Perl is installed from pkg_add and not the ports, uninstall it. pkg_delete -f perl5.8 B) add ENABLE_SUIDPERL=true to /etc/make.conf C) cd to /usr/ports/lang/perl5.8 D) make -DENABLE_SUIDPERLTRUE install clean E) re-install all the perl modules from the ports. F) Follow the QMR manual to the T!!! The Re-install of the perl modules from ports part How do I do that? How do I id all my perl modules and is there a way to re-install them all together? To check which modules are installed (packages/ports and CPAN) I use the following script: #!/usr/bin/perl # list installed modules use ExtUtils::Installed; my $instmod = ExtUtils::Installed-new(); foreach my $module ($instmod-modules()) { my $version = $instmod-version($module) || ???; print $module -- $version\n; } I know of no way to automatically reinstall them though... Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Routing Problem
Sounds like the man page for routed might be what you seek http://www.freebsd.org/cgi/man.cgi?query=routedsektion=8 T - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: Thomas Foster [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 5:02 AM Subject: RE: Routing Problem Thomas (and John too), Let me clarify a little bit. What I have is this: A single FreeBSD web server with a single NIC in it Two T1 routers, each with a different subnet. My FreeBSD box has two IP addresses assigned to it, one from the first subnet and one from the second subnet. I want to use round-robin DNS to direct half my web traffic to the first IP and half to the second IP. As I said to John in a private e-mail earlier this morning, I have a Windows 2000 box that is doing exactly this with these two subnets right now. I know it can be done. I have a feeling that the FreeBSD TCP stack lacks the capability. By the way, this also works with Cisco hardware. I have used Cisco equipment in this same configuration in the past. I think they way it SHOULD work is that you should be able to give a FreeBSD box multiple default gateways. When FreeBSD gets a packet to an IP on the first subnet, it should use the default gateway that is also on that subnet. When FreeBSD gets a packet to an IP on the second subnet, it should use the second default gateway. This seems to be the logic that Windows (and Cisco) uses. Tim Gustafson MEI Technology Consulting, Inc [EMAIL PROTECTED] (516) 379-0001 Office (516) 480-1870 Mobile/Emergencies (516) 908-4185 Fax http://www.meitech.com/ -Original Message- From: Thomas Foster [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 7:57 AM To: Gustafson, Tim Cc: [EMAIL PROTECTED] Subject: Re: Routing Problem Hi Tim.. If you have multiple interfaces and you configure a default gateway for each interface, the default metric determination that is based on the speed of the interface usually uses the fastest interface for default gateway traffic. This is usually desirable in configurations in which the computer is connected to the same network. This behavior can become a problem when the computer exists on two or more disjointed networks (networks that do not provide symmetric reachability on layer3). Symmetric reachability exists when packets can be sent to and received from an arbitrary destination. Because the TCP/IP version4 protocol uses a single default route in FreeBSD's routing table at any one time for default route traffic, default routers configured on multiple interfaces connected to two or more disjointed networks can wreak routing traffic havoc. In FreeBSD, you can manually configure the routing table for the individual interfaces.. but it sounds to me as if you are attempting to use two ethernet interfaces connected to two disjointed networks connected to routers with two seperate subnets in order to balance http requests to one server.. is this the case? I guess I am not fully understanding your configuration ... T. - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: Thomas Foster [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:06 AM Subject: RE: Routing Problem Thomas, No, I'm not using this box as a router. It is a web server, and I need to spread the load of my web traffic across two separate T1s. I can't just add routes. You need a default route, or parts of the internet would become inaccessible. In my case, you need TWO default routes. I have set up Cisco equipment and Windows workstations with two default routes in the past, and it has worked. In fact, I have one Windows box right now that is configured on both these networks with two default gateways, and it is working. There has to be a way to make it work on FreeBSD. Tim Gustafson MEI Technology Consulting, Inc [EMAIL PROTECTED] (516) 379-0001 Office (516) 480-1870 Mobile/Emergencies (516) 908-4185 Fax http://www.meitech.com/ -Original Message- From: Thomas Foster [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 02, 2005 4:48 AM To: Gustafson, Tim Cc: [EMAIL PROTECTED] Subject: Re: Routing Problem Im confused.. if you have two T1s, then are using /30s dor the ranges? If so.. what about not giving a default gateway for either one and just add routes... Are you attempting utilize this as just a router.? Theres a section that covers setting up routing on interfaces in the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routin g.html Hope this helps T - Original Message - From: Gustafson, Tim [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Tuesday, February 01, 2005 5:35 PM Subject: Routing Problem I am having a problem setting up a multi-homed host. I have two separate T1 internet connections, and one physical NIC in my FreeBSD box. The two networks are as follows: Connection 1: LAN Address: 1.2.3.24/25 Router Address: 1.2.3.1 Connection
Compile time for kde
Hello, I have installed 5.3 on a P4 with 1024mb. I am installing kde3 from source (ports). How long would you guys think that would take? It has been going on for almost 4 hours now... Should I stop it? Have never seen anything like it8) Regards Peter ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Unix equivalent of a variant??
On Wed, Feb 02, 2005 at 09:04:20AM -0500, Jason Stewart wrote: : Hey everyone, : : I'm finally doing something very exciting here at work: porting software to : Unix! : : I need the equivalent of a variant, however. A hold-everything variable : that can be any type in C/C++. Is there something already out there I can : use or should I just roll my own? : : : Are you porting VB code over to *nix? If that's the case then a better : fit might be Python or Ruby with or without one of the various : bindings for windowing toolkits. I think I'm going to use Python as the test container, but all the component code needs to be C/C++. I think the boost library is exactly what I need. jm -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: using portversion (Was: keeping freebsd uptodate - doubt)
Chris Hodgins wrote: 4) portversion -v 'portversion -v | grep -v = ' is what I use. You shouldn't require the grep...you can do this instead: # portversion -vl Cheers for that, I didn't thought about that. But, that's not exactly what I wanted: '-l' switch includes only while 'grep -v =' excludes =. The difference is I wanted included, too (just in case). Quick scan of portversion manpage gave me '-L' option: -L CHARS --inv-limit CHARSExclude the packages with the specified status flags. so it would be like: # portversion -vL Thanks for info! Karol -- Karol Kwiatkowski freebsd at orchid dot homeunix dot org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: using portversion (Was: keeping freebsd uptodate - doubt)
Karol Kwiatkowski wrote: so it would be like: # portversion -vL doh! should be: # portversion -vL= Sorry! -- Karol Kwiatkowski freebsd at orchid dot homeunix dot org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compile time for kde
On Wednesday 02 February 2005 14:27, [EMAIL PROTECTED] wrote: Hello, I have installed 5.3 on a P4 with 1024mb. I am installing kde3 from source (ports). How long would you guys think that would take? It has been going on for almost 4 hours now... Should I stop it? Have never seen anything like it8) Regards Peter I have an Athlon 3200 with 1024MB ram. It took about 28 hours for me, but it spent many hours waiting for me to come back and answer a question of some kind. -- /Xian The important thing is not to stop questioning. Curiosity has its own reason for existing. Albert Einstein ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
--- Karol Kwiatkowski [EMAIL PROTECTED] wrote: saravanan ganapathy wrote: I have done the above steps to update my system and when I run 'portversion -v | grep -v = ', I am gettin g the perl package only. freebsd# portversion -v | grep -v = perl-5.8.5needs updating (port has 5.8.6_1) freebsd# portupgrade perl --- Upgrading 'perl-5.8.5' to 'perl-5.8.6_1' (lang/perl5.8) --- Building '/usr/ports/lang/perl5.8' === Cleaning for perl-5.8.6_1 === perl-5.8.6_1 has known vulnerabilities: = perl -- File::Path insecure file/directory permissions. Reference: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/perl5.8. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade5864.0 make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/perl5.8 (perl-5.8.5) (unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed How to solve this problem? Portaudit thinks perl-5.8.6_1 is not safe. It even tells you where to find more information: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html If you look there it says: Affects: * perl =0 5.6.2 * perl =5.8.0 5.8.6 Clearly, perl-5.8.6_1 is *not* affected. This leads us to conclusion that your portadit's database is outdated. To fetch new databse simply run: # portaudit -F The problem has been solved by updating the portaudit database. What is the recommended period to update the ports? Is there any announcements for any port update? So that I can manually update the ports. Is portupgrade contains the security patches also? Pls guide me Sarav __ Do you Yahoo!? Yahoo! Mail - Helps protect you from nasty viruses. http://promotions.yahoo.com/new_mail ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
MySQL Disk Quotas per User/Group
Hi all, I have been struggling with how to include a users MySQL disk usage within thier disk quota. Currently, each user has a disk quota set on thier /home/usernamehere directory The mysql databases are kept in the /home/usernamehere/database directory, but, mysql insists on owning the files. (In the /usr/local/mysql/var/ there is a symlink to the users database directory: /usr/local/mysql/var/usernamehere - /home/usernamehere/database Is there a way to setup user:group permissions so that the database directory is included in the users disk quota? -Grant ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Compile time for kde
On Wednesday 02 February 2005 06:41 am, Xian [EMAIL PROTECTED] wrote: On Wednesday 02 February 2005 14:27, [EMAIL PROTECTED] wrote: Hello, I have installed 5.3 on a P4 with 1024mb. I am installing kde3 from source (ports). How long would you guys think that would take? It has been going on for almost 4 hours now... Should I stop it? Have never seen anything like it8) Regards Peter I have an Athlon 3200 with 1024MB ram. It took about 28 hours for me, but it spent many hours waiting for me to come back and answer a question of some kind. On my Athlon 2400 with 1GB it usually takes 7-8 hours, but that's excluding a couple parts, and that's if I'm there to answer the questions or run batch. If I start it as batch right before I go to bed it's usually done by the time I get up. Can't remember offhand, but this time might not include qt, either. - jt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting FreeBSD-5.3 from NTLDR
On Wed, 2 Feb 2005 01:48:47 -0800, Loren M. Lang [EMAIL PROTECTED] wrote: Unless BootPart specifically know about how the freebsd boot loaders work and how to reconize them, I doubt that it's modifying those parameters. Now the last 66 bytes of the MBR stores the partition table of the hard drive, it's possible that BootPart might try to modify that as it's not part of the boot loader, but the boot loader uses that information. Possible. I even checked BootPart's site and forums, but didn't find any mention that it is FreeBSD-aware etc. All they talk about is Windows and DOS and Linux. I had a good mind to sign up on the forums and ask the author -- but wasn't too keen on signing up and so left it. I know it modifies the bootsector some way, coz when I boot using the extracted file I get a message (and a second's pause) saying that this bootsector was extracted using BootPart blah blah ... -- -- Rakhesh rax -at- rakhesh -dot- com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
upgrading FreeBSD
I was wondering if it is possible to upgrade from FreeBSD 3.2 to 5.3 without doing a fresh install, and if possible what issues might I have. Thanks Greg ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upgrading FreeBSD
I was wondering if it is possible to upgrade from FreeBSD 3.2 to 5.3 without doing a fresh install, and if possible what issues might I have. It might be possible, but it may be less effort to just do the fresh install. You would have to do several stages of upgrades. I don't know anyone who is saying it can be done in one fell swoop as just an upgrade. jerry Thanks Greg ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: library call for directory path creation?
On Tue, Feb 01, 2005 at 04:39:21PM -0500, Louis LeBlanc typed: On 02/01/05 12:58 PM, Michael C. Shultz sat at the `puter and typed: On Tuesday 01 February 2005 11:35 am, Louis LeBlanc wrote: I know there might be a better place for this question, but here goes. I'm working on a utility that has to, among many other things, create directory paths, often with a series of parent directories that may not already exist. Solaris has mkdirp(3GEN) in the libgen library, but I can't find a library call that will do this in FreeBSD. Kind of like `mkdir -p` would. I know it would be pretty trivial to roll my own, and if I can't find it I will. I'm just curious if anyone knows of an *existing* library call that would do this. TIA Lou Assuming your working in C what is wrong with: char command[] = mkdir -p /path/to/whatever; system( command ); Nothing, except that calling a system command from C when you can roll your own method in about 18 lines of code is usually not ideal. Particularly when speed is important. And yes, it is definitely important - disk access can be an insurmountable bottleneck for high volume systems if it is neglected at the implemenation stage. I only wanted a system lib call because I trust FreeBSDs implementation to be faster than my quick throw together. I've already written it. It's not pretty, and probably not as fast as a system lib would be (it has to make 1 system call per directory in the path, rather than just one system call for the whole path). It is, however, much faster than a call to system() would be. Actually, the mkdirp(3GEN) library routine in Solaris probably makes the same amount of system calls as your implementation: uname -sr SunOS 5.9 cat mkdirp.c #include libgen.h #include sys/stat.h #define path /tmp/a/b/c/d int main(void) { mkdirp(path,S_IRWXU); } gcc -lgen -o mkdirp mkdirp.c truss ./mkdirp | tail -10 mkdir(/tmp/a/b/c/d, 0700) Err#2 ENOENT access(/tmp/a/b/c, 0) Err#2 ENOENT access(/tmp/a/b, 0) Err#2 ENOENT access(/tmp/a, 0) Err#2 ENOENT access(/tmp, 0) = 0 mkdir(/tmp/a, 0700) = 0 mkdir(/tmp/a/b, 0700) = 0 mkdir(/tmp/a/b/c, 0700) = 0 mkdir(/tmp/a/b/c/d, 0700) = 0 _exit(-13163152) cheers, Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: distrubuting distro
On Wed, Feb 02, 2005 at 08:03:12AM -0600, Nikolas Britton wrote: Erik Trulsson wrote: On Wed, Feb 02, 2005 at 07:11:36AM -0600, Nikolas Britton wrote: Nikolas Britton wrote: Erik Trulsson wrote: But remember that several parts of FreeBSD are covered by the GNU GPL which has somewhat more restrictions (mainly in that (slightly simplified) you need to include the sourcecode for anything you distribute.) In either case it is certainly allowed to sell FreeBSD and charge whatever you want. You just can't prevent anybody making further copies once they have recieved one. If there was no GPL code in FreeBSD he could prevent anybody from making copys of his copys, as long as he keeps the BSD copyright notices in there etc he can do anything he wants with it, ANYTHING! For example the Windows NT network stack was ripped from OpenBSD et. al. Now if you ask me if it's a sane thing to do I'd say no because they can just go around him and get it from the FreeBSD site. but the point I'm trying to make is that he could if he wanted to, even if it's a stupid idea such as this, because FreeBSD IS free, unlike the GPL. duh, I forgot the best example. BSD running on a mach kernel running a custom user interface, otherwise known as Mac OS-X. With the BSD running on a mach kernel part also known as Darwim, which is freely distributable under pretty much the same conditions as the other BSDs. Yep, but they did not have to do that. It was a gesture of giving back to the community that which they took from it. You would have to be morally corrupt to take other peoples life work and not think you should give something back to them, even if it is free and has no strings attached. If, as you imply, there is a moral requirement to give something back to them, then there are strings attached even if the strings are not legally enforcible. Personally I would not have considered Apple morally corrupt even if they had kept all of MacOS X has proprietary and binary-only, any more than I consider Sun morally corrupt just because they took BSD-code and changed it into SunOS (or BSDi for doing the same with BSD/OS.) Also keep in mind that open source and freely distributable are *not* the same thing. BSD-licensed code that is part of another project is always freely distributable, but might not have source available. (It can of course be very difficult to determine exactly which code is BSD-licensed and which is not in a binary file.) Umm and about BSD in windows. It is in there, open the binary network (ping, ftp, telnet, finger, etc.) commands in a text editor and you can view the BSD copyright notices. Yes, I know, but the earlier comments concerned the network stack, not the client programs. also SFU (services for unix) version 3.5 was almost an entire rip of OpenBSD, and no thay did not give any kick backs to the community. The BSD license says that they are allowed do that. *If* the people who wrote the BSD code thinks that Microsoft (et al) should not have taken BSD-licensed code and incorporated it into proprietary products then they should have used another license for the code (like the GPL which is designed to prevent exactly such behaviour.) Microsoft has done many things that are morally and/or legally dubious (if not outright wrong.) The use of BSD-licensed code is not one of them. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: what is /entrophy ?
On Wed, 2 Feb 2005 12:46:52 + Daniel Bye [EMAIL PROTECTED] wrote: what about /COPYRIGHT :P Why bother? It's only using one inode, and occupies very little disk space. But if it offends, then sure, remove it. It'll come back when you upgrade anyway. trollingeven if it's symlinked to /dev/null ? :)/trolling -- Adrian Pircalabu Public KeyID = 0x04329F5E -- This message was scanned for spam and viruses by BitDefender. For more information please visit http://www.bitdefender.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upgrading FreeBSD
On Wed, Feb 02, 2005 at 10:13:11AM -0500, Greg Foster wrote: I was wondering if it is possible to upgrade from FreeBSD 3.2 to 5.3 without doing a fresh install, and if possible what issues might I have. Possible: Yes. Recommended: Absolutely not! You will almost certainly have to do it in several steps. The sequence 3.2 - 3.5.1 3.5.1 - 4.1 4.1 - 4.11 4.11 - 5.3 *should* work, but no guarantees. Remember to read /usr/src/UPDATING very carefully before each step - most problems that you *will* encounter are documented there. The sequence backup all data make a fresh install of 5.3 restore data from backup will almost certainly be quicker, simpler, and less prone to catastrophic failure. (Making a backup of all important data is a *very* good idea anyway.) -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Slow Thin Clients
Lee Harr wrote: Hi; I am using FreeBSD-5.3 as a terminal server for a few thin client machines. I have the inside network interface configured so: ifconfig_xl0=inet 172.16.0.1 netmask 255.255.0.0 media 100baseTX mediaopt full-duplex and the outside interface is from DHCP. The clients are configured similarly 172.16.0.2, 172.16.0.3, etc. In the /etc/hosts files, I have: 172.16.0.1 tserv 172.16.0.2 gu2 172.16.0.3 gu3 /etc/nsswitch.conf is the default: group: compat group_compat: nis hosts: files dns networks: files passwd: compat passwd_compat: nis shells: files I am using kdm and xdmcp to connect. When the client connects I get a message that says: DNS spoof attempt or misconfigured resolver. The main symptom though is that programs are extremely slow to start up, and menus react very slowly. I am connected through a hub (not a switch) but I have had this system set up like this before (using FreeBSD 4.8) and it was much more responsive. What am I missing? I don't know. You may have already discovered that this error message comes from kdebase/kdm/backend/xdmcp.c, apparently from a routine that, not unexpectedly, is attempting to resolve hostnames from a network address. I don't read C well enough to even know what might be happening here. It might be interesting to know if any machines were attempting to use IPv6. It appears that ossi removed support for IPv6 from xdm last April, because, according to the commit log, it was not perfect, particularly on anything but Solaris. I don't know if that's out of date now, or not. Now, FreeBSD 5 generally has IPv6 out of the box, so I wonder ... but as I said, I'm in way over my head on this one. Have you tried a kde users list? Or maybe the freebsd-x11 one? Kevin Kinsey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SV: Compile time for kde
(cc'ed to the list) On Wednesday 02 February 2005 07:06 am, [EMAIL PROTECTED] wrote: -Oprindelig meddelelse- Fra: Joshua Tinnin [mailto:[EMAIL PROTECTED] Sendt: 2. februar 2005 15:56 Til: freebsd-questions@freebsd.org Cc: Xian; Peter Lidell, PDI Emne: Re: Compile time for kde On Wednesday 02 February 2005 06:41 am, Xian [EMAIL PROTECTED] wrote: On Wednesday 02 February 2005 14:27, [EMAIL PROTECTED] wrote: Hello, I have installed 5.3 on a P4 with 1024mb. I am installing kde3 from source (ports). How long would you guys think that would take? It has been going on for almost 4 hours now... Should I stop it? Have never seen anything like it8) Regards Peter I have an Athlon 3200 with 1024MB ram. It took about 28 hours for me, but it spent many hours waiting for me to come back and answer a question of some kind. On my Athlon 2400 with 1GB it usually takes 7-8 hours, but that's excluding a couple parts, and that's if I'm there to answer the questions or run batch. If I start it as batch right before I go to bed it's usually done by the time I get up. Can't remember offhand, but this time might not include qt, either. Damn, thats a long time! Why does it take this long from ports? When I did it from sysinstall it took about an hour... Well, sysinstall off a CD is just installing a pre-compiled package. When the port is built and installed it's indistingishable from an installed package - what you're doing right now is compiling it locally, which is very cpu-intensive and does take some time for a program of any size, but this can have some advantages. FreeBSD's ports system is designed around this concept. If you want, you can use pkg_add -r (which will fetch remote packages) instead of compiling, or portinstall -P or portupgrade -P (or -PP), but you have to make sure you have the right dependencies. Since packages have to be built by someone after the port is updated, packages usually lag behind what's available in ports, but builds for KDE are available here and are updated regularly: http://rabarber.fruitsalad.org/ Most of the packages on the FreeBSD site itself are for RELEASEs, so that the packages on an install CD will work with the OS. Once you update the source to a higher patchlevel and rebuild your world and kernel so your RELEASE has all the security updates, you might have to rebuild those packages, too, but you might not - it depends on what was changed. Another solution is to build locally, but do make package, which will create a package in addition to the installation, so you can use it to install elsewhere - this is useful for networks where one machine can act as the build machine for many computers. As long as the build options are consistent with the hardware (not using cpu optimization is more portable, but cpu optimization can help in some circumstances), and the dependencies are consistent, you can install that elsewhere or again on your own machine. You can also use one machine as the build machine and do make install through NFS, with /usr/ports mounted from the build machine, or you can make a network package repository. There's more info here: http://www.onlamp.com/pub/a/bsd/2003/08/07/FreeBSD_Basics.html - jt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mx2.freebsd.org in dnsbl.sorbs.net
Hi, I have been thrown off the list because of too many bounces, turns out that mx2.freebsd.org has been listed at dnslb.sorbs.net, $ host 119.204.136.216.dnsbl.sorbs.net 119.204.136.216.dnsbl.sorbs.net has address 127.0.0.6 How on earth did it end up there? are someone mad at us? mx1 is not listed, but it appears that most list mail comes from mx2... I have had other problems trying to filter spam, yet recieve legitimate mail on the lists - I'm using postfix. How do you set up your filters? Thanks, Erik -- Ph: +34.666334818 web: http://www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Questions about Cyrus/SASL with postgress
Hi, [Ports is not the appropriate place for the question I know, so please feel free to redirect me to a workable list/group/forum/ on this topic.] I've inherited such a config of which the basic domain has changed. Now basic things still work, but creating new useraccounts fail on: Login failed: authentication failure at /usr/local/lib/perl5/site_perl/5.6.1/mach/Cyrus/IMAP/Admin.pm line 118 Please login first at /root/imapcreate.pl line 72. and in the logfile: Feb 2 16:28:11 mail1 imap[86468]: :11 pwcheck: admin Failed to login. Feb 2 16:28:11 mail1 imap[86468]: badlogin: localhost [::1] plaintext admin SASL(-13): authentication failure: checkpass failed Even more worrying is is the [::1] suggesting IPv6, which is not used by this customer. although the interfaces do have inet6. What is the easiest tool to check these authentications. And how do I get my admin-loging back online ASAP. Thanx, --WjW ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Video Capture, TV tuner devices
On Tuesday 01 February 2005 10:03 pm, Thomas Foster wrote: You can get the Hauppauge PVR drivers running, though its a manual job... http://mythtv.son.org/tiki-index.php?page=Multimedia+Drivers hope this helps.. Thanks. I had looked at that card but crossed it off figuring it wouldn't work... -- Rod If you stay the same long enough you'll be in style some day again. Cren Dog ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: what is /entrophy ?
On Wed, Feb 02, 2005 at 05:26:40PM +0200, Adi Pircalabu wrote: On Wed, 2 Feb 2005 12:46:52 + Daniel Bye [EMAIL PROTECTED] wrote: what about /COPYRIGHT :P Why bother? It's only using one inode, and occupies very little disk space. But if it offends, then sure, remove it. It'll come back when you upgrade anyway. trollingeven if it's symlinked to /dev/null ? :)/trolling I don't know - I honestly can't say that I have ever spent much time in comtemplation of things to do with /COPYRIGHT. Be sure to tell us when you find out, though. -- Daniel Bye PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc PGP Key fingerprint: 3B9D 8BBB EB03 BA83 5DB4 3B88 86FC F03A 90A1 BE8F _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ pgpbWxZiYv2bs.pgp Description: PGP signature
Re: upgrading FreeBSD
On 02 Feb Erik Trulsson wrote: The sequence backup all data make a fresh install of 5.3 restore data from backup will almost certainly be quicker, simpler, and less prone to catastrophic failure. (Making a backup of all important data is a *very* good idea anyway.) You're so right ;-) Main problem (at least to me) is almost everytime *what* is important data and what is not? I don't mean my personal stuff (that's the easy part), but more, which control files and (fine) tunings on the running system do I not want to loose? /etc and /usr/local/etc are very important data dirs, but what others are too? -- dick -- http://nagual.st/ -- PGP/GnuPG key: F86289CE ++ Running FreeBSD 4.11 ++ FreeBSD 5.3 + Nai tiruvantel ar vayuvantel i Valar tielyanna nu vilja ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
Here are some useful links. Read carefully!! http://www.taosecurity.com/keeping_freebsd_applications_up-to-date.html http://www.taosecurity.com/keeping_freebsd_up-to-date.html On Wed, 2 Feb 2005 06:49:06 -0800 (PST), saravanan ganapathy [EMAIL PROTECTED] wrote: --- Karol Kwiatkowski [EMAIL PROTECTED] wrote: saravanan ganapathy wrote: I have done the above steps to update my system and when I run 'portversion -v | grep -v = ', I am gettin g the perl package only. freebsd# portversion -v | grep -v = perl-5.8.5needs updating (port has 5.8.6_1) freebsd# portupgrade perl --- Upgrading 'perl-5.8.5' to 'perl-5.8.6_1' (lang/perl5.8) --- Building '/usr/ports/lang/perl5.8' === Cleaning for perl-5.8.6_1 === perl-5.8.6_1 has known vulnerabilities: = perl -- File::Path insecure file/directory permissions. Reference: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html = Please update your ports tree and try again. *** Error code 1 Stop in /usr/ports/lang/perl5.8. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade5864.0 make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! lang/perl5.8 (perl-5.8.5) (unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed How to solve this problem? Portaudit thinks perl-5.8.6_1 is not safe. It even tells you where to find more information: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html If you look there it says: Affects: * perl =0 5.6.2 * perl =5.8.0 5.8.6 Clearly, perl-5.8.6_1 is *not* affected. This leads us to conclusion that your portadit's database is outdated. To fetch new databse simply run: # portaudit -F The problem has been solved by updating the portaudit database. What is the recommended period to update the ports? Is there any announcements for any port update? So that I can manually update the ports. Is portupgrade contains the security patches also? Pls guide me Sarav __ Do you Yahoo!? Yahoo! Mail - Helps protect you from nasty viruses. http://promotions.yahoo.com/new_mail ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
saravanan ganapathy wrote: What is the recommended period to update the ports? Someone else should comment on that, but I think updating (cvsup) ports tree once a week should be often enough to track changes and rare enough to not overload mirrors. That applies to single desktop machine, if you're using more machines / servers it's probably better to setup local mirror for that. As for installed ports, I think you should update installed port when: 1. there are security patches available (a must) 2. there is a new version available with new features / better performance / etc (but only if you need/want the new functionality) ad1: You have already installed portaudit which takes care of security warnings. Have a look at daily security run output emails. For example, today I got: [snip] Checking for a current audit database: Database created: Tue Feb 1 02:40:19 CET 2005 Checking for packages with security vulnerabilities: Affected package: perl-5.8.5 Type of problem: perl -- File::Path insecure file/directory permissions. Reference: http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html [snip] Then I went to http://www.freebsd.org/ports/index.html, saw it has been already updated in ports, fired up cvsup... ad2: When such event occurs (say, new version of KDE) just update ports tree and do a portupgrade. Is there any announcements for any port update? So that I can manually update the ports. I think http://www.freshports.org/ or http://www.freebsd.org/ports/index.html could be what you want. Is portupgrade contains the security patches also? I'm not sure what that means. Portupgrade simply updates a port, it takes all patches provided by port manager, applies them, compile, etc. (in case of building from source). So, if there are any security patches for a port, yes, portupgrade will take care of them. Hope that helps, Karol -- Karol Kwiatkowski freebsd at orchid dot homeunix dot org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: problems running k3b in fluxbox with sudo
On Wednesday 02 February 2005 2:35 am, Brian John wrote: Sorry, I should have been more clear. I have 'dvd+rw-tools' installed, and it works in kde. I just can't get it to work in fluxbox because of this one problem. The difference is I am starting it through the kde menu in kde and I'm starting it using 'sudo' in fluxbox. Does that help? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] When you start k3b in fluxbox, do you get the error that keb could not connect to klauncher? I have all type of problems trying to run k3b in fluxbox that did not happen when running KDE. I think k3b just need to be run in full blown KDE. -- Rod If you stay the same long enough you'll be in style some day again. Cren Dog ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting FreeBSD-5.3 from NTLDR
Rakhesh Sasidharan wrote: On Wed, 2 Feb 2005 01:48:47 -0800, Loren M. Lang [EMAIL PROTECTED] wrote: Unless BootPart specifically know about how the freebsd boot loaders work and how to reconize them, I doubt that it's modifying those parameters. Now the last 66 bytes of the MBR stores the partition table of the hard drive, it's possible that BootPart might try to modify that as it's not part of the boot loader, but the boot loader uses that information. Possible. I even checked BootPart's site and forums, but didn't find any mention that it is FreeBSD-aware etc. All they talk about is Windows and DOS and Linux. I had a good mind to sign up on the forums and ask the author -- but wasn't too keen on signing up and so left it. I know it modifies the bootsector some way, coz when I boot using the extracted file I get a message (and a second's pause) saying that this bootsector was extracted using BootPart blah blah ... I don't know about BootPart, but the FreeBSD boot manager replaces the MBR on _both_ disks and allows booting from either. The limitation is in NTLDR because it's M$ so is only designed for booting M$ OSes and the BOOTSECT file method is designed for booting DOS and non-NT class Windows which could only boot from the first partition on the first drive anyway therefore there is no need for NTLDR to support booting from the second, third, etc. disk using a BOOTSECT file. Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-1, 02/02/2005 Tested on: 02/02/2005 16:05:07 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mx2.freebsd.org in dnsbl.sorbs.net
On Wed, 02 Feb 2005 16:37:40 +0100 Erik Norgaard [EMAIL PROTECTED] wrote: Hi Erik, I have been thrown off the list because of too many bounces, turns out that mx2.freebsd.org has been listed at dnslb.sorbs.net, $ host 119.204.136.216.dnsbl.sorbs.net 119.204.136.216.dnsbl.sorbs.net has address 127.0.0.6 How on earth did it end up there? are someone mad at us? mx1 is not listed, but it appears that most list mail comes from mx2... I have had other problems trying to filter spam, yet recieve legitimate mail on the lists - I'm using postfix. How do you set up your filters? Have you contacted [EMAIL PROTECTED] He should get in contact with SORBS and get the host delisted. My theory about how mx2 ended up there: Maybe somebody has an automated spam submitting system and SORBS parsed the addresses of one of the few spam messages that get through the list or either someone intentionally submitted a forged e-mail there. Either way, SORBS is a total joke and nobody should ever use them. They unilaterally blacklisted my /16 and there's zero change I'll ever get delisted until I pay the $50 extortion fee. Apparently the facts that I've had the same IP for 5 years and that I publish SPF records don't matter. I laugh at the Fighting spam by finding and listing Exploitable Servers. title in their web page. Google for 'sorbs sucks', nice reads :-) If you want to filter spam you can use spamassassin (disablig the sorbs and spews tests) and greylisting which works very well. SPF checks also catch a few forged e-mails on my server (probably virus-generated but spam nonetheless.) Cheers, -- Miguel Mendez [EMAIL PROTECTED] http://www.energyhq.es.eu.org PGP Key: 0xDC8514F1 pgpOwVbhVNFPq.pgp Description: PGP signature
Re: mx2.freebsd.org in dnsbl.sorbs.net
Erik Norgaard wrote: I have been thrown off the list because of too many bounces, turns out that mx2.freebsd.org has been listed at dnslb.sorbs.net, $ host 119.204.136.216.dnsbl.sorbs.net 119.204.136.216.dnsbl.sorbs.net has address 127.0.0.6 Just to clarify myself, mx2.freebsd.org is listed in dnsbl.sorbs.net and spam.dnsbl.sorbs.net but NOT in smtp.dnsbl.sorbs.net I just checked sorbs spamdb faq, they require a fine of $50 per spam mail donated to charity!? - is FreeBSD ok as charity? - to delist a server, with the exception if it happens due to blocking a whole netblock. Time to block sorbs I guess... Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt Subject ID: A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9 Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
Karol Kwiatkowski writes: Someone else should comment on that, but I think updating (cvsup) ports tree once a week should be often enough to track changes and rare enough to not overload mirrors. The other theory involves more frequent (i,e, daily) but presumably smaller updates. On the gripping hand ... I'm not convinced the mirrors are in danger of overload except possibly at the end of a ports freeze. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Trouble reading the nightly security run output report
OK, so every night the default install of FreeBSD generates a security run output report for IPF denied packets. Here is a sample report; 221143 @2 block out log quick on dc0 from any to any head 15 92733 @2 block in log quick on dc0 from any to any head 10 20 @8 block in log quick on dc0 from 10.0.0.0/8 to any group 10 That's it. I am looking at this and trying to figure out if it is useful and just what are those numbers for? I have IPF creating a log entry for all of the dropped packets, but when I look at the logs I can't match those numbers at all. In fact, if I do a 'wc -l' on the log file I get a count of 10,780 lines. If I take into account the log entries that have a consecutive count logged I come up with 11,422. Not even close the numbers listed above. So just what does this report mean and is there a better tool to run that would give me a nightly report of total drops and perhaps the top ten offenders and why? Thanks Tim ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
On Wednesday 02 February 2005 17:08, Robert Huff wrote: Karol Kwiatkowski writes: Someone else should comment on that, but I think updating (cvsup) ports tree once a week should be often enough to track changes and rare enough to not overload mirrors. The other theory involves more frequent (i,e, daily) but presumably smaller updates. On the gripping hand ... I'm not convinced the mirrors are in danger of overload except possibly at the end of a ports freeze. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Well... in general the daily small updates is a good idea, *if* youre not on a dialup, isdn or slow austrian cable connection, things can get annoying with that... besides the more obvious reason why daily updates on every package isnt a good idea, if you dont want to read UPDATES file daily;) Greetings Oliver Leitner Technical Staff http://www.shells.at -- By reading this mail you agree to the following: using or giving out the email address and any other info of the author of this email is strictly forbidden. By acting against this agreement the author of this mail will take possible legal actions against the abuse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
3C2000-T
Im having a problem putting a 3C2000-T to work in freebsd5.3 In the page it isnt saying that It works in 5.3. But is there another way to make it work ? Regards, Luiz Ozaki ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: library call for directory path creation?
On 02/02/05 04:23 PM, Ruben de Groot sat at the `puter and typed: On Tue, Feb 01, 2005 at 04:39:21PM -0500, Louis LeBlanc typed: On 02/01/05 12:58 PM, Michael C. Shultz sat at the `puter and typed: On Tuesday 01 February 2005 11:35 am, Louis LeBlanc wrote: I know there might be a better place for this question, but here goes. I'm working on a utility that has to, among many other things, create directory paths, often with a series of parent directories that may not already exist. Solaris has mkdirp(3GEN) in the libgen library, but I can't find a library call that will do this in FreeBSD. Kind of like `mkdir -p` would. I know it would be pretty trivial to roll my own, and if I can't find it I will. I'm just curious if anyone knows of an *existing* library call that would do this. TIA Lou Assuming your working in C what is wrong with: char command[]= mkdir -p /path/to/whatever; system( command ); Nothing, except that calling a system command from C when you can roll your own method in about 18 lines of code is usually not ideal. Particularly when speed is important. And yes, it is definitely important - disk access can be an insurmountable bottleneck for high volume systems if it is neglected at the implemenation stage. I only wanted a system lib call because I trust FreeBSDs implementation to be faster than my quick throw together. I've already written it. It's not pretty, and probably not as fast as a system lib would be (it has to make 1 system call per directory in the path, rather than just one system call for the whole path). It is, however, much faster than a call to system() would be. Actually, the mkdirp(3GEN) library routine in Solaris probably makes the same amount of system calls as your implementation: uname -sr SunOS 5.9 cat mkdirp.c #include libgen.h #include sys/stat.h #define path /tmp/a/b/c/d int main(void) { mkdirp(path,S_IRWXU); } gcc -lgen -o mkdirp mkdirp.c truss ./mkdirp | tail -10 mkdir(/tmp/a/b/c/d, 0700) Err#2 ENOENT access(/tmp/a/b/c, 0) Err#2 ENOENT access(/tmp/a/b, 0) Err#2 ENOENT access(/tmp/a, 0) Err#2 ENOENT access(/tmp, 0) = 0 mkdir(/tmp/a, 0700) = 0 mkdir(/tmp/a/b, 0700) = 0 mkdir(/tmp/a/b/c, 0700) = 0 mkdir(/tmp/a/b/c/d, 0700) = 0 _exit(-13163152) I shoulda thought of that. This gives me another idea to consider for my implementation too. Thanks! Lou -- Louis LeBlanc FreeBSD-at-keyslapper-DOT-net Fully Funded Hobbyist, KeySlapper Extrordinaire :) This is a list only address, and the return address is a black hole! Send off-list email to:leblanc at keyslapper d.t net Key fingerprint = C5E7 4762 F071 CE3B ED51 4FB8 AF85 A2FE 80C8 D9A2 court, n.: A place where they dispense with justice. -- Arthur Train pgpaREtsFFYXl.pgp Description: PGP signature
Strange foreign connections
While running netstat I found these entries: Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) tcp4 0 0 localhost.52730undernet1.blueyo.ircd ESTABLISHED tcp4 0 0 localhost.52398minotor.spale.co.ircd ESTABLISHED tcp4 0 0 localhost.60635bagan2.srce.hr.ircd ESTABLISHED The foreign addresses all show ircd at the end, but there is no irc clients or servers running and irc ports are blocked at the firewall. Does anyone have any idea what might be going on here? Gene ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: keeping freebsd uptodate - doubt
On Wednesday 02 February 2005 17:08, Robert Huff wrote: Karol Kwiatkowski writes: Someone else should comment on that, but I think updating (cvsup) ports tree once a week should be often enough to track changes and rare enough to not overload mirrors. The other theory involves more frequent (i,e, daily) but presumably smaller updates. On the gripping hand ... I'm not convinced the mirrors are in danger of overload except possibly at the end of a ports freeze. an alternative is to subscribe to freshports portswatch service and be notified of changes to your installed ports and update accordingly. fastest_cvsup (from the ports collection natch) can also be employed to locate the fastest cvsup server for you ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Strange foreign connections
Gene wrote: While running netstat I found these entries: Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) tcp4 0 0 localhost.52730undernet1.blueyo.ircd ESTABLISHED tcp4 0 0 localhost.52398minotor.spale.co.ircd ESTABLISHED tcp4 0 0 localhost.60635bagan2.srce.hr.ircd ESTABLISHED The foreign addresses all show ircd at the end, but there is no irc clients or servers running and irc ports are blocked at the firewall. Does anyone have any idea what might be going on here? You might try running 'sockstat' to get more info about these connections. It will provide you with user, command and PID info for each connected socket. --Tim Gene ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ee editor rules :)
I like it allot but i cant seem to find out how to type a / character ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
xhost +localhost
i want a screensaver but the ... xscreensaver daemon wont start complaining about acces controle. I did xhost +localhost but it still wont start :( ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
IPF, IPFW, or IPFILTER?
The author of the FreeBSD handboodk prefers IPF (ipfilter) because its stateful rules are much less complicated The author of The Complete BSD talks about IPFW (ipfirewall) only. People on this list talk of PF (packetfilter) quite a bit. What is the most commonly used firewall for a web/email host server with a static IP address connected directly to the Internet? (protecting itself) What is the most commonly used firewall for a gateway/router/ network firewall server in front of several other boxes? (protecting others and itself) Thanks, Andy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Using PAM with ssh
Konrad Heuer wrote: I never tried by myself, but did you also modify /etc/pam.d/sshd? I think that would be necessary. Of course; here it is: # # $FreeBSD: src/etc/pam.d/sshd,v 1.15 2003/04/30 21:57:54 markm Exp $ # # PAM configuration for the sshd service # # auth authrequiredpam_nologin.so no_warn #auth sufficient pam_opie.so no_warn no_fake_prompts #auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass authsufficient /usr/local/lib/pam_smb_auth.so try_first_pass debug authrequiredpam_unix.so no_warn try_first_pass # account #accountrequiredpam_krb5.so account requiredpam_login_access.so account requiredpam_unix.so # session #sessionoptionalpam_ssh.so session requiredpam_permit.so # password #password sufficient pam_krb5.so no_warn try_first_pass passwordrequiredpam_unix.so no_warn try_first_pass bye Thanks av. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Obtener FreeBSD
Hola, quisiera que me mandaran un link desde donde pueda descargar una imagen de el sistema operativo freeBSD en español. Gracias ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]