date:20061113

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Vlad GURDIGA wrote:
 On 12/11/06, Vlad GURDIGA [EMAIL PROTECTED] wrote:
 On 12/11/06, Garrett Cooper [EMAIL PROTECTED] wrote:
  -BEGIN PGP SIGNED MESSAGE-
  Hash: SHA1
 
  Vlad GURDIGA wrote:
   Hello,
  
   I'm trying to keep very close touch with 6.1_STABLE cvsupping sources
   once a week or even more often. I'm thinking of removing as much as
   possible devices from the kernel loading them from /boot/loader.conf
   instead, so I could rebuild and install them without a whole
   kernel/world rebuild and reboot when sources change. I'm not sure
 this
   is a correct way, any piece of advice regarding this would be highly
   appreciated. :)
  
   So, I've successfully done that with sound and network card drivers,
   but did not succeed with removing bpf from the kernel. Booting a
   kernel with no bpf support, and with
   ng_bpf_load=YES in my loader.conf, the pflogd fails to start
 with this
   error:
  
   Nov 11 20:22:33 uxterm pflogd[10251]: Failed to initialize: (no
   devices found) /dev/bpf0: No such file or directory
   Nov 11 20:22:33 uxterm pflogd[10251]: Exiting, init failure
  
   And, tcpdump also fails saying that no suitable device found. Of
   course there is no /dev/bpf0.
  
   Is there any way to have the bpf0 device without booting a kernel
 with
   bpf device included?
 
  Berkeley packet filter (bpf) is required for a lot of net related
  things, such as dhcpcd, tcpdump (as you've discovered), amongst many
  other things. Don't know if you want to go disabling that...
 
 I do not intend to disable it, just have it apart, so I could update it
 easyer.
 So, is it possible to have bpf apart from kernel?

Not sure if it's possible or not, but someone is bound to know on one of
the freebsd lists..
- -Garrett
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFWDwF6CkrZkzMC68RAmaJAJ43une+fFzquDmpVUkxCRwPvnv2gQCZARJr
BqgPcyUDJyA1Uk4dlaXxJIs=
=TU5H
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: image based stock spam

2006-11-13 Thread James Seward


On 11/13/06, Brian [EMAIL PROTECTED] wrote:

ugh, I'm running a 6.2 prerelease.  The package doesn't exist, so I
build the port, or try to.  The tiff port wont build, so I pkg_add
that.  It gets a lil further along, the pkgconfig port won't build, I
pkg_add that.  Then, a little further here comes an x windows install, a
31 mb download. I don't want that on my server.  I'll live with it for
now till something better comes along.


I succeeded in getting FuzzyOCR installed on several 6.1 systems
before it appeared in ports, and documented my method here:

http://jamesoff.net/site/projects/freebsd/fuzzyocr-for-spamassassin-on-freebsd/

Note that it will still pull in Xorg for some libraries, but doesn't
actually install X itself (assuming you remember to declare
WITHOUT_X11).

I note that the libungif port still doesn't appear to have the patch
suggested by FuzzyOCR's author to prevent segfaults.

I can vouch for FuzzyOCR's effectiveness, as the image-based spam was
about the only stuff still getting through my SpamAssassin.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: detach/reattach remote GUI applications?

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Luke Dean wrote:
 
 
 On Sun, 12 Nov 2006, Eric Schuele wrote:
 
 On 11/12/06 18:37, Luke Dean wrote:

 I run a headless server and I've become fond of using the screen
 utility with SSH to allow me to launch a text-based application,
 detach from it, and then reattach to it later to see how it's going.

 I'm wondering if there's a tool I can use that would allow me to do
 that with GUI applications. 

 Could this be of use?
  http://www.tightvnc.com/
 
 Yes!  That's exactly the kind of thing I'm looking for.  I used VNC with
 Windows years ago and it never occurred to me that it might be available
 on other platforms.  Thanks for putting me on the right track.
 
 Luke

There is also a VNC server solution that ties into running X displays
(called x11vnc under Gentoo Linux; not sure if it exists in the ports
tree though), and an X11 solution that has been customized for high
transfer rates referred to as either nx or nomachinex. I found standard
VNC to be annoying since it requires a running X server instance, which
is a waste depending on what I have running, and both solutions I
mentioned earlier run well for many people (tried x11vnc but not
nomachinex).
- -Garrett
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFWD306CkrZkzMC68RAkUGAJ42lX30GEkymcGnTvr8c7f4n/epFgCeIWah
uoDtlen53GF2t6N/VZ3e4uk=
=HhzP
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Gerard Seibert

On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote:


 I had the same 'problem'. As said it's not realy a problem since FreeBSD 
 will hold just fine if you don't have any rather stupid user + pass 
 combinations. ( test test or something like that ) Allthough I thought 
 it was annoying that my intire log was clouded with those brute force 
 attacks so I just set sshd to listen at an other port then 22. Maybe 
 that's a acceptable solusion for you ? You can change the ssd port in 
 /etc/ssh/sshd_config

Security through obscurity is a bad idea. Rather, use SSH key based
authentication exclusively.  Turn off all of the password stuff in
sshd_config.  Laugh at the poor fools trying to break in.


-- 
Gerard

 Mail from '@gmail' is rejected and/or discarded here. Don't waste
 your time!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

CARP: trouble or feature

2006-11-13 Thread Prokofiev S.P.


Hello ALL!
I have a problem with CARP on FreeBSD 6.2 in the following scheme:


 +--+   +---++-+
 | A|   |  B||   C |
 |   vlan10 |--//--|  vlan20vlan10 |---//---| vlan10  |
 +--+   +---++-+


 vlan10 10.10.10.2/26 vlan20 10.10.10.1/26
 gateway 10.10.10.1   vlan10 10.10.9.1/26vlan10 10.10.9.2/26

  carp10 10.10.9.3/26carp10 10.10.9.3/26
 advskew 0  advskew 1
  carp11 10.10.9.4/26carp11 10.10.9.4/26
 advskew 1  advskew 0


i.e. server B MASTER for 10.10.9.3/26, BACKUP for 10.10.9.4/26
 server C BACKUP for 10.10.9.3/26, MASTER for 10.10.9.4/26


But if to send icmp request from server A - to server C on ip 10.10.9.4, 
server B replay from BACKUP iface carp11 !?!?


This is trouble or feature of realization ?
-

serverB ifconfig carp*
carp10: flags=49UP,LOOPBACK,RUNNING mtu 1500
inet 10.10.9.3 netmask 0xffc0
carp: MASTER vhid 100 advbase 1 advskew 0
carp11: flags=49UP,LOOPBACK,RUNNING mtu 1500
inet 10.10.9.4 netmask 0xffc0
carp: BACKUP vhid 101 advbase 1 advskew 1

serverC ifconfig carp*
carp10: flags=49UP,LOOPBACK,RUNNING mtu 1500
inet 10.10.9.3 netmask 0xffc0
carp: BACKUP vhid 100 advbase 1 advskew 1
carp11: flags=49UP,LOOPBACK,RUNNING mtu 1500
inet 10.10.9.4 netmask 0xffc0
carp: MASTER vhid 101 advbase 1 advskew 0
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

choosing the cputype for core 2 duo?

2006-11-13 Thread Oliver Aruväli

Hi,

So I am building an allaround server for an average business, 30 or so
workstations and some misc machines. I was presented with a machine, which
in my mind is bit of an overkill, but if they are willing to spend then I
think I should give them the maximum I can squeeze out from that PC. So the
„server” has a conroe core 2 duo processor. What would be the best choice in
make.conf as a CPUTYPE paramater for this processor (other make.conf related
recommendations also welcome). I have had only experience installing freebsd
on a bit older amd machines where the choise was obvious.

 

Thank you all in advance,

Oliver

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Robert Huff


Leo L. Schwab writes:

   A little Googling revealed a couple of potentially useful
  tools: 'sshit' and 'bruteblock', both of which notice repeated
  login attempts from a given IP address and blackhole it in the
  firewall.

There's also denyhosts.  I found the configuration annoying
(need to correctly modify too many files) but once it's running it
works for me.



Robert Huff
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Maxim Masyukevich

Hello ALL!

You just must use the utility 'DenyHosts', and all Your problems will be
solved!
DenyHosts the remarkable utility! It's protects only service ssh, and
anything more.
It is easy in adjustments and very effective in work.

You can find this utility in a collection of ports.

http://denyhosts.net/ 


Best regards,
Masyukevich Maksim
SPIRIT DSP, www.spiritDSP.com/voip, Embedded Voice Experience
SeeStorm, www.SeeStorm.com, Synthetic Video Conferencing
TeamSpirit - Award-Winning Multi-Point Voice Conferencing Engine

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Leo L. Schwab
Sent: Monday, November 13, 2006 9:05 AM
To: freebsd-questions@freebsd.org
Subject: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

I recently installed FreeBSD 6.1 on my gateway.  It replaced an
installation of FreeBSD 4.6.8 (fresh install, not an upgrade) on which I
had disabled the SSH server.  Since all the bugs in SSH are fixed now (
:-) ), I thought I'd leave the server on, and am somewhat dismayed to
discover that I now get occasional brute-force/dictionary attacks on the
port.

A little Googling revealed a couple of potentially useful tools:
'sshit' and 'bruteblock', both of which notice repeated login attempts
from a given IP address and blackhole it in the firewall.  I first tried
'sshit', but after a couple days, I noticed in my daily reports that I
was still getting lengthy bruteforce attempts, suggesting the 'sshit'
was not working.

So I uninstalled 'sshit' and installed 'bruteblock'.  But again
a couple days later, the logs showed lengthy bruteforce attempts going
unblocked.

The relevant lines from my /etc/syslog.conf file are:


auth.info;authpriv.info /var/log/auth.log
auth.info;authpriv.info | exec /usr/local/sbin/bruteblock -f
/usr/local/etc/bruteblock/ssh.conf


Any hints as to what I might be doing wrong?

Thanks,
Schwab
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

changing swap size

2006-11-13 Thread Zbigniew Szalbot


Hello,

Following the advice about periodic freezes, I am going to add some RAM to 
my system. However, currently my swap size is 512MB. If I increase RAM to, 
say, 1GB, would I need to change the swap size to 2GB? If so, is it a safe 
process (I assume this can be done using FIPS)? Would I need to boot first 
in single-user mode? Any other thoughts? BTW - is there any easy way to 
make sure how much RAM is currently installed other than looking into the 
hardware? Top:


Mem: 146M Active, 23M Inact, 98M Wired, 15M Cache, 41M Buf, 22M Free

Which would seem to suggest I have 345 MB RAM. But from what I recall this 
machine uses 320 MB RAM. Thanks!



--
Zbigniew Szalbot
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: image based stock spam

In response to Brian [EMAIL PROTECTED]:

 Antony Mawer wrote:
  On 13/11/2006 12:00 PM, Brian wrote:
  Looks like the preferred approach many folks  re the above problem 
  is  fuzzyocr?   Since there isn't a port for  that, is there another 
  FreeBSD solution  worth  mentioning here?
 
  http://www.freshports.org/mail/p5-FuzzyOcr/
 
 ugh, I'm running a 6.2 prerelease.  The package doesn't exist, so I 
 build the port, or try to.  The tiff port wont build, so I pkg_add 
 that.  It gets a lil further along, the pkgconfig port won't build, I 
 pkg_add that.

If you don't report these to the ports team, they're unlikely to get
fixed.

 Then, a little further here comes an x windows install, a 
 31 mb download. I don't want that on my server.

Put NO_GUI=yes and NO_X11=yes in /etc/make.conf

-- 
Bill Moran
Collaborative Fusion Inc.

[EMAIL PROTECTED]
Phone: 412-422-3463x4023


IMPORTANT: This message contains confidential information and is
intended only for the individual named. If the reader of this
message is not an intended recipient (or the individual
responsible for the delivery of this message to an intended
recipient), please be advised that any re-use, dissemination,
distribution or copying of this message is prohibited. Please
notify the sender immediately by e-mail if you have received
this e-mail by mistake and delete this e-mail from your system.
E-mail transmission cannot be guaranteed to be secure or
error-free as information could be intercepted, corrupted, lost,
destroyed, arrive late or incomplete, or contain viruses. The
sender therefore does not accept liability for any errors or
omissions in the contents of this message, which arise as a
result of e-mail transmission.




IMPORTANT: This message contains confidential information and is intended only 
for the individual named. If the reader of this message is not an intended 
recipient (or the individual responsible for the delivery of this message to an 
intended recipient), please be advised that any re-use, dissemination, 
distribution or copying of this message is prohibited.  Please notify the 
sender immediately by e-mail if you have received this e-mail by mistake and 
delete this e-mail from your system.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Detailed questions about kernel operation (was Re: 'help')

In response to shin_ta [EMAIL PROTECTED]:

  I have some question about the Design and the Implementation of the
 FreeBSD Operating System 

You're questions are a too in-depth to easily answer on a mailing list.
I suggest you pick up a copy of The Design and Implementation of FreeBSD,
which covers these in detail.

And I suggest using a more descriptive subject line.

-- 
Bill Moran
Collaborative Fusion Inc.



IMPORTANT: This message contains confidential information and is intended only 
for the individual named. If the reader of this message is not an intended 
recipient (or the individual responsible for the delivery of this message to an 
intended recipient), please be advised that any re-use, dissemination, 
distribution or copying of this message is prohibited.  Please notify the 
sender immediately by e-mail if you have received this e-mail by mistake and 
delete this e-mail from your system.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: 'help'

2006-11-13 Thread Norberto Meijome

On Mon, 13 Nov 2006 11:30:14 +0800 (CST)
shin_ta [EMAIL PROTECTED] wrote:

  I have some question about the Design and the Implementation of the FreeBSD
 Operating System 

I somehow have the feeling someone (you) is trying to get someone else (i.e.,
the list) to prepare the assignement for you? ... hopefully I'm wrong :-)...

Anyway, you probably would gain much by reading a cleverly and vey appropriately
titled book The Design and Implementation of the FreeBSD Operating System.

Good luck,
_
{Beto|Norberto|Numard} Meijome

With sufficient thrust, pigs fly just fine. However, this is not necessarily a
good idea. RFC 1925 (quoting an unnamed source)

I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

help

2006-11-13 Thread shin_ta

I have some questions about the design and implementation of the FreeBSD 
operating system
1.  FreeBSD used System call, Hardware interrupt, Hardware trap, and 
Software-initiated trap to entry into the system kernel. What is the detailed 
operation and why FreeBSD design by this way?
 
2.  In FreeBSD 5.2, interrupt has its own context stack, what are the 
influences to each aspect of the operating system?(like bottom half of kernel, 
top half of kernel …)
 
3.  What is the basic function of the signal? Which main data 
structures are about signal? Which procedures are related in signal?
 
4.  Why signal handler routine design in user-level but not in 
kernel-level?
 
5.  After the system call completes, the system-call exit code first 
checks for a posted signal, after checking for posted signals, the system-call 
exit code checks to see whether any process has a priority higher than that of 
the currently running one. Why FreeBSD do this check at this time?
 
6.  The ULE scheduler was developed as part of the overhaul of FreeBSD 
to support SMP. Why the ULE scheduler relatively suitable for the SMP system 
than 4.4BSD timeshareing scheduler.
 
7.  FreeBSD uses pager to manage the memory. Different memory objects 
have different pager to deal with. Why FreeBSD designed by this 
way?___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

2006-11-13 Thread cremes . devlist

Ted, you got a couple of things wrong. Read below for the corrections.

On Nov 13, 2006, at 3:28 AM, Ted Mittelstaedt wrote:

- Original Message -
From: Lonnie Cumberland [EMAIL PROTECTED]
To: Garrett Cooper [EMAIL PROTECTED]
Cc: freebsd-questions@freebsd.org
Sent: Monday, November 06, 2006 3:48 AM
Subject: Re: MAC OS X connection to FreeBSD?

Thanks everyone for the replay to my post as it did finally occur  
to me

that perhaps this question had been asked on the mailing list, but
unfortunately it occurred to me after I sent it.

So, basically the Apple team took FreeBSD and the CM micro-kernel,
combined them, made some improvements and added some additional  
code and

then used it all as the MAC OS X core (without the GUI of course)?

No, they used it all as the Darwin core.  Then they took Darwin and  
added

their own GUI (used to be called Aqua) and that is MacOSX.

Bear in mind that the MacOS X gui does not translate directly into  
UNIX.

For example, you can load MacOS System 7 files with a separate
resource and data fork onto MacOSX.  The MacOS X gui handles a lot
of this kind of stuff.

No, the GUI has very little to do with the ability to run legacy  
System 9 (and prior) binaries. Some of these older binaries which  
were never updated to use the newer Carbon libraries run inside a  
virtual machine called the Blue Box. Many of these older apps that  
were updated to conform to the new Carbon libraries (primarily Carbon  
eliminated non-reentrant code and put in setter/getters for global  
vars) run natively under the darwin kernel.

OSX also has a POSIX-compliant API so almost all UNIX software  
compiles and runs cleanly on OSX (more on this below).

Lastly, OSX has the Cocoa API which is what most new OSX software  
targets. Cocoa is the new name for the old NeXT OpenStep API.

So, darwin supports POSIX semantics, the Carbon API, and the Cocoa API.

Apple also doesen't use the UNIX security model.  As near as I can
tell their core security model is an ACL model not a user/group model.
Once again this is something that's handled elsewhere.

Not quite. GUI applications owned by root with the setuid bit set are  
properly recognized by the GUI as special and will request password  
authorization from the user. Many applications can be run from the  
command line (even if they have GUI components) which will respect  
the UNIX filesystem permissions. If you go inside an application  
bundle (a directory containing all code and resources for an  
application) and change the permissions on the binary to something  
non-executable, the GUI cannot launch it.

As of the latest OSX release (10.4, Tiger) Apple added quite a bit of  
support for ACL security semantics. This is relatively new.

With this being said, then does anyone have any experience with the
stability and performance?

My guess is that if it is really based upon FreeBSD then the  
performance
should be pretty good from my readings about FreeBSD compared to  
other

operating systems.

Mac OS X is easily more stable than FreeBSD simply because it can
only be run on specific hardware that Apple sells.  As a result the
developers always know exactly what their enviornment is going to
be like.  As for performance, what performance metric are you  
looking at?

While OSX is stable for the reason you cite, I wouldn't say it is  
MORE stable than FreeBSD 4.x. It probably is as stable or moreso than  
some of the more recent FreeBSD releases but that seems to be more  
related to recent poor testing and QA practices than hardware support  
problems.

The biggest problem with MacOS X is that a lot of UNIX software that
runs on FreeBSD and such, is not ported to MacOSX, and it's very
difficult to compile on MacOSX.

This is completely wrong. Take a look at macports [1] (formerly  
darwinports) for a large repository of UNIX software that compiles  
very cleanly on OSX. It's nearly 7 years since OSX shipped to the  
public. In that time, most opensource software was updated to compile  
cleanly on OSX. The primary changes to allow this were to the  
configure scripts so they recognize darwin as a base OS. If other  
patches were necessary, most software maintainers accepted these  
patches back into their trunk.

OSX has excellent support for most UNIX software.

cr

[1] macports.org
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: changing swap size

2006-11-13 Thread Maxim Masyukevich

If you have swap section 512 Mb that it is not necessary change anything
. Simply add operative memory and all. 



Best regards,
Masyukevich Maksim
SPIRIT DSP, www.spiritDSP.com/voip, Embedded Voice Experience
SeeStorm, www.SeeStorm.com, Synthetic Video Conferencing
TeamSpirit - Award-Winning Multi-Point Voice Conferencing Engine

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Zbigniew
Szalbot
Sent: Monday, November 13, 2006 4:34 PM
To: freebsd-questions@freebsd.org
Subject: changing swap size

Hello,

Following the advice about periodic freezes, I am going to add some RAM
to my system. However, currently my swap size is 512MB. If I increase
RAM to, say, 1GB, would I need to change the swap size to 2GB? If so, is
it a safe process (I assume this can be done using FIPS)? Would I need
to boot first in single-user mode? Any other thoughts? BTW - is there
any easy way to make sure how much RAM is currently installed other than
looking into the hardware? Top:

Mem: 146M Active, 23M Inact, 98M Wired, 15M Cache, 41M Buf, 22M Free

Which would seem to suggest I have 345 MB RAM. But from what I recall
this machine uses 320 MB RAM. Thanks!


-- 
Zbigniew Szalbot
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: APC SMART-UPS 750 VA

2006-11-13 Thread Mark

 -Original Message-
 From: Mark [mailto:[EMAIL PROTECTED] 
 Sent: zondag 12 november 2006 19:31
 To: 'freebsd-questions@freebsd.org'
 Subject: APC SMART-UPS 750 VA
 
 Hello,
 
 Could someone tell me whether I can use the
 APC SMART-UPS 750 VA for my FreeBSD 4.11
 installation?

Anyone? Please?

- Mark

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Andy Greenwood


On 11/13/06, Gerard Seibert [EMAIL PROTECTED] wrote:

On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote:


 I had the same 'problem'. As said it's not realy a problem since FreeBSD
 will hold just fine if you don't have any rather stupid user + pass
 combinations. ( test test or something like that ) Allthough I thought
 it was annoying that my intire log was clouded with those brute force
 attacks so I just set sshd to listen at an other port then 22. Maybe
 that's a acceptable solusion for you ? You can change the ssd port in
 /etc/ssh/sshd_config

Security through obscurity is a bad idea. Rather, use SSH key based
authentication exclusively.  Turn off all of the password stuff in
sshd_config.  Laugh at the poor fools trying to break in.


I second this notion. I had bruteforceblocker running and recently
switched to key based auth only. The good news is no one is breaking
in. the bad news is that my server is remote and difficult to get
physical access to and the only key I uploaded initially was my work
PC. Tried to get in from home over the weekend and found that I had
locked myself out! doh! Just make sure that you have at least one PC
you can get to from anywhere which has a key to get into your server.




--
Gerard

 Mail from '@gmail' is rejected and/or discarded here. Don't waste
 your time!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]




--
I'm nerdy in the extreme and whiter than sour cream
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

cant login to my server machine(FreeBSD-6.0)

2006-11-13 Thread dhaneshk k


Hey can Any body help me?


I have a free BSD  box ,due to some power failure its rebooted , but booting 
failed ,

The error I got was
Trying  to mount root from ufs:/dev/ad4s1a  Warning : / was not properly 
dismounted loading configuration files.  /etc/rc.conf :9:Synatx error  
unterminated quoted String .Enter full pathname of shell on Return for 
/bin/sh:


  I preseed enter key then I got  #prompt .

 but no login prompt  to login to my machine: only getting #

   more ,tail, vim ,vi no command are working(getting this  command is not 
found)error.


 when I   cat the /etc.rc.conf  ther is one 
 line which is not terminated by closing  quots  


But I tried to create the new /etc/rc.conf file   by the following method

 #mount -o rw,remount/
 #cat /etc/rc.conf
but got error  : failed its a read only file . so here I got stuck. how can 
login to may server(FreeBSD -6.0) is my version


can any body solve this problem then I will be very thankful to them.

Thanks in advance.

Dhanesh.

_
Tried the new MSN Messenger? Its cool! Download now. 
http://messenger.msn.com/Download/Default.aspx?mkt=en-in


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: APC SMART-UPS 750 VA

2006-11-13 Thread Doug Poland

On Mon, Nov 13, 2006 at 02:20:33PM +, Mark wrote:
  
  Could someone tell me whether I can use the
  APC SMART-UPS 750 VA for my FreeBSD 4.11
  installation?
 
 Anyone? Please?
 
APC brand SMART-UPS work quite well with 4.x FreeBSD.  Assuming you 
want to monitor the UPS, make sure you have the correct serial cable and
pick your monitoring program from ports.  I have used apcupsd in a number of 4.x
installs.

Googling FreeBSD and smartups turns up many interesting, relevent hits :)

-- 
Regards,
Doug
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

On Mon, Nov 13, 2006 at 01:28:16AM -0800, Ted Mittelstaedt wrote:

 No, they used it all as the Darwin core.  Then they took Darwin and
 added their own GUI (used to be called Aqua) and that is MacOSX.

X11 also comes on the MacOS X DVD, but is not installed by default.

 Bear in mind that the MacOS X gui does not translate directly into
 UNIX.  For example, you can load MacOS System 7 files with a separate
 resource and data fork onto MacOSX.  The MacOS X gui handles a lot of
 this kind of stuff.

I lost you there. So what? The classic Mac file format is more
advanced than a Unix (or Windows) flat file. The MacOS X Unix view of
such files is morphed into a directory of files. The GUI turns such
directories into a single application icon which *can* be opened to see
what is inside but normally a double-click or open launches the app.

 Apple also doesen't use the UNIX security model.  As near as I can
 tell their core security model is an ACL model not a user/group model.
 Once again this is something that's handled elsewhere.

Don't know how its done underneath but from a shell and ported
applications it looks exactly the same:

[EMAIL PROTECTED] {767} uname -a
Darwin dot-matrix.local 8.8.0 Darwin Kernel Version 8.8.0: Fri Sep  8 17:18:57 
PDT 2006; root:xnu-792.12.6.obj~1/RELEASE_PPC Power Macintosh powerpc
[EMAIL PROTECTED] {768} id
uid=503(dkelly) gid=501(dkelly) groups=501(dkelly), 81(appserveradm), 
79(appserverusr), 80(admin)
[EMAIL PROTECTED] {769} who am i
dkelly   ttyp2Nov 13 08:17 
[EMAIL PROTECTED] {770} ls -ld .
drwxr-xr-x   33 dkelly  dkelly  1122 Nov  1 13:30 .
[EMAIL PROTECTED] {771} 

 The biggest problem with MacOS X is that a lot of UNIX software that
 runs on FreeBSD and such, is not ported to MacOSX, and it's very
 difficult to compile on MacOSX.

Really? Good thing I didn't know compiling was difficult. The other day
I wanted a MacOS X version of mkisofs. Copied cdrtools from
/usr/ports/distfiles/ off a FreeBSD machine. Built without a complaint
in moments. Not terribly thrilled with its default install location of
/opt/schily/bin/ but at least its easy to remove.

-- 
David Kelly N4HHE, [EMAIL PROTECTED]

Whom computers would destroy, they must first drive mad.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

BGE driver upgrade from 5.3-RELEASE

2006-11-13 Thread James Kilton

I have a running 5.3-RELEASE system that needs a BGE driver upgrade so that 
packets with VLAN tags aren't stripped.  Is there any way to do this without 
upgrading the entire OS?  This feature was just added to the driver a month ago.
   
  Thanks,
  James
   

 __
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

delete iface tun

2006-11-13 Thread Igoryan

Hello.
How to remove the interface tunN, creations ppp demon?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: APC SMART-UPS 750 VA

On Mon, Nov 13, 2006 at 02:20:33PM +, Mark wrote:
  
  Could someone tell me whether I can use the
  APC SMART-UPS 750 VA for my FreeBSD 4.11
  installation?
 
 Anyone? Please?

I don't quite understand what FreeBSD has to do with it. Is your
hardware 120 VAC 60 Hz compatible? And is the UPS the same?

In less time than spent asking others you could build
/usr/ports/sysutils/apcupsd/ and see whether it will provide automatic
shutdown of your system under UPS control.

-- 
David Kelly N4HHE, [EMAIL PROTECTED]

Whom computers would destroy, they must first drive mad.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: changing swap size

2006-11-13 Thread Andy Greenwood


On 11/13/06, Zbigniew Szalbot [EMAIL PROTECTED] wrote:

Hello,

Following the advice about periodic freezes, I am going to add some RAM to
my system. However, currently my swap size is 512MB. If I increase RAM to,
say, 1GB, would I need to change the swap size to 2GB? If so, is it a safe
process (I assume this can be done using FIPS)? Would I need to boot first
in single-user mode?


As has already been said, you don't really need to change your swap
size unless you're going to be using all of your physical memory and
need the additional space. Since it doesn't sound like you're going to
be putting any more load on the server, it's unnecessary. However, if
you want to do it, you could, without going to single-user mode:

1) create an empty file somewhere. This will make a 1 MB file, adjust
bs and count as you need to.
# dd if=/dev/zero of=/path/to/some.file bs=1k count=1024

2) create a file based device with mdconfig like this.
# mdconfig -a -t vnode -f /path/to/some.file

3) swapon your shiny new md device. Use the md device that was given
as output from the above command.
# swapon /dev/md0

4) verify that your device is now working as a swap device with
# swapinfo -h

5) now you can swapoff your main swap, change it as you need, and swapon it back
# swapoff /dev/ad0s1b
do something
# swapon /dev/ad0s1b

6) now that you new, improved swap is working, you can swapoff your
temporary swap, remove the md device, delete the file, and verify that
your swap is right
# swapoff /dev/md0
# mdconfig -d -u md0
# rm /path/to/some.file
# swapinfo -h


Any other thoughts? BTW - is there any easy way to
make sure how much RAM is currently installed other than looking into the
hardware? Top:

Mem: 146M Active, 23M Inact, 98M Wired, 15M Cache, 41M Buf, 22M Free

Which would seem to suggest I have 345 MB RAM. But from what I recall this
machine uses 320 MB RAM. Thanks!


--
Zbigniew Szalbot
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]




--
I'm nerdy in the extreme and whiter than sour cream
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: detach/reattach remote GUI applications?

2006-11-13 Thread Eric Schuele


On 11/13/06 03:42, Garrett Cooper wrote:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Luke Dean wrote:


On Sun, 12 Nov 2006, Eric Schuele wrote:


On 11/12/06 18:37, Luke Dean wrote:

I run a headless server and I've become fond of using the screen
utility with SSH to allow me to launch a text-based application,
detach from it, and then reattach to it later to see how it's going.

I'm wondering if there's a tool I can use that would allow me to do
that with GUI applications. 

Could this be of use?
 http://www.tightvnc.com/

Yes!  That's exactly the kind of thing I'm looking for.  I used VNC with
Windows years ago and it never occurred to me that it might be available
on other platforms.  Thanks for putting me on the right track.

Luke


There is also a VNC server solution that ties into running X displays
(called x11vnc under Gentoo Linux; not sure if it exists in the ports
tree though), and an X11 solution that has been customized for high
transfer rates referred to as either nx or nomachinex. I found standard
VNC to be annoying since it requires a running X server instance, which
is a waste depending on what I have running, and both solutions I
mentioned earlier run well for many people (tried x11vnc but not
nomachinex).
- -Garrett
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFWD306CkrZkzMC68RAkUGAJ42lX30GEkymcGnTvr8c7f4n/epFgCeIWah
uoDtlen53GF2t6N/VZ3e4uk=
=HhzP
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]



Search ports for vnc... there are a couple in there.  x11vnc is one.  I 
thought there were more than I saw this morning.  I know there are a 
handful of projects out there.  But maybe only a few ported to FreeBSD.


--
Regards,
Eric
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

IPMI kernel module errors on 6.x

2006-11-13 Thread Raymond Sundland

Hi Everyone,

 

I purchased a new Supermicro Superserver SS6015B-T (motherboard is X7DBR-E)
about 3 weeks ago with the IPMI module (part called SIMSO) and have had a
hard time getting the IPMI functionality to work in RELENG_6.

 

Particularly, when I attempt to 'kldload ipmi' I get the following output in
dmesg:

 

ipmi0: IPMI System Interface on isa0

ipmi0: KCS mode found at mem 0xca2 alignment 0x4 on isa

ipmi0: KCS: Failed to start write

ipmi0: KCS Error retry exhausted

ipmi0: KCS: Failed to start write

ipmi0: KCS Error retry exhausted

ipmi0: KCS: Failed to start write

ipmi0: KCS Error retry exhausted

ipmi0: Timed out waiting for GET_DEVICE_ID

 

From the dmesg, it appears it's finding the IPMI device, but unable to
interact with it.  Meanwhile, no device shows up in /dev so ipmitool does
not work, either.

 

For reference, here is my uname:

 

FreeBSD exodus 6.2-PRERELEASE FreeBSD 6.2-PRERELEASE #9: Fri Nov 10 10:56:39
PST 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/EXODUS  amd64

 

This is a RELENG_6 build with a CVSUP done just before the compile date of
the kernel.

 

The SIMSO IPMI card itself works, I can access it via the web management
console, I just can not get the kernel driver to work with it.  Any help
and/or references would be greatly appreciated.

 

Thanks!

 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: cant login to my server machine(FreeBSD-6.0)

In response to dhaneshk k [EMAIL PROTECTED]:

 Hey can Any body help me?
 
 
 I have a free BSD  box ,due to some power failure its rebooted , but booting 
 failed ,
 The error I got was
 Trying  to mount root from ufs:/dev/ad4s1a  Warning : / was not properly 
 dismounted loading configuration files.  /etc/rc.conf :9:Synatx error  
 unterminated quoted String .Enter full pathname of shell on Return for 
 /bin/sh:
 
I preseed enter key then I got  #prompt .
 
   but no login prompt  to login to my machine: only getting #

You _are_ logged in.  If your console is marked secure (which it
obviously is, see /etc/ttys) then it doesn't ask for a password when
forced to boot to single user mode.  The most likely course to correct
the problem now, is to do the following:
fsck -p
mount -a

then fix the problem in /etc/rc.conf.

-- 
Bill Moran
Collaborative Fusion Inc.



IMPORTANT: This message contains confidential information and is intended only 
for the individual named. If the reader of this message is not an intended 
recipient (or the individual responsible for the delivery of this message to an 
intended recipient), please be advised that any re-use, dissemination, 
distribution or copying of this message is prohibited.  Please notify the 
sender immediately by e-mail if you have received this e-mail by mistake and 
delete this e-mail from your system.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread [EMAIL PROTECTED]

Quoting Andy Greenwood [EMAIL PROTECTED]:

On 11/13/06, Gerard Seibert [EMAIL PROTECTED] wrote:

On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote:

I had the same 'problem'. As said it's not realy a problem since FreeBSD
will hold just fine if you don't have any rather stupid user + pass
combinations. ( test test or something like that ) Allthough I thought
it was annoying that my intire log was clouded with those brute force
attacks so I just set sshd to listen at an other port then 22. Maybe
that's a acceptable solusion for you ? You can change the ssd port in
/etc/ssh/sshd_config

Security through obscurity is a bad idea. Rather, use SSH key based
authentication exclusively. Turn off all of the password stuff in
sshd_config. Laugh at the poor fools trying to break in.

I second this notion. I had bruteforceblocker running and recently
switched to key based auth only. The good news is no one is breaking
in. the bad news is that my server is remote and difficult to get
physical access to and the only key I uploaded initially was my work
PC. Tried to get in from home over the weekend and found that I had
locked myself out! doh! Just make sure that you have at least one PC
you can get to from anywhere which has a key to get into your server.

If you are using pf. A quick google search give you several differing
versions of what I am using on the servers that I maintain.

http://www.google.com.mx/search?hl=esq=%2Bmax-src-conn-rate+%2Bpf+brute+forcebtnG=B%C3%BAsqueda+en+Googlemeta=

They are all max-src-conn-rate based and use the sysutils/expiretable
port to clear the blocked IP's.

An example that I haven't read is here:

http://johan.fredin.info/openbsd/block_ssh_bruteforce.html

I just took one and tweaked it over time and it works great.

I only allow 3 login attempts in 30 minutes, so the brute who is
trying to force his way in had better be a very good guesser;)

I did a bit of restricting in sshd_config also but only remember MaxAuthTries,

An unexpected side effect of this is that now I get only one or two
attempts a day and before there were multiple, simultaneous attempts
24 horas a day.

In my daily security report I see something like todays, everyday.

Nov 12 10:22:15 HOME sshd[82578]: Invalid user staff from 203.152.218.209
Nov 12 10:22:22 HOME sshd[83191]: Invalid user sales from 203.152.218.209
Nov 12 10:22:29 HOME sshd[83489]: Invalid user recruit from 203.152.218.209
Nov 12 12:47:10 HOME sshd[18369]: Invalid user staff from 24.11.169.203
Nov 12 12:47:12 HOME sshd[18421]: Invalid user sales from 24.11.169.203
Nov 12 12:47:15 HOME sshd[18425]: Invalid user recruit from 24.11.169.203

Before there were pages and pages. If you aren't using PF there may
be something similar to max-src-conn-rate in your firewall, if not,
you may want to convert ;)

Good luck,

--
Gerard

Mail from '@gmail' is rejected and/or discarded here. Don't waste
your time!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

--
I'm nerdy in the extreme and whiter than sour cream
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

2006-11-13 Thread Lonnie Cumberland

Greetings All,

I really appreciate all of the feedback and reply posts regaring my
inquiry about Darwin and FreeBSD.

I am still somewhat confused as I have been looking at FreeBSD which I
think is VERY good and have also recently been able to boot up the
OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to
install.

If I follow these messages correctly then it appears that FreeBSD is
just as good as Darwin although I had expected that the inclusion of
the CM kernel integrated with the FreeBSD kernel along with various
other improvements would have made the Darwin software better.

One thing that I can tell at the moment is that the FreeBSD OS seems
to have better support for hardware since Darwin (Apple) if very
specifically targeted to chosen hardware and also they seem to use
these Carbon libraries for getting things to run which I do not kow
where to locate more information on them.

We were looking for a good OS to build from and now know that it will
not be Linux, but on the BSD side of the house as I like what I have
seen in both FreeBSD and also what little I have seen in Darwin.

I would still like to do some more testing to get a better feel for
what Darwin can offer, but the bottom line is that all of these are
directly related to FreeBSD and are stable and fast compared to other
non-FreeBSD related OS's.

Thanks again and have a good day,

Lonnie T. Cumberland
OutStep Technologies Incorporated

Email: [EMAIL PROTECTED]
   [EMAIL PROTECTED]

Open Source.. opening the doors for the future in the world of
today



On Mon, November 13, 2006 08:38, David Kelly wrote:
 On Mon, Nov 13, 2006 at 01:28:16AM -0800, Ted Mittelstaedt wrote:


 No, they used it all as the Darwin core.  Then they took Darwin and
  added their own GUI (used to be called Aqua) and that is MacOSX.

 X11 also comes on the MacOS X DVD, but is not installed by default.


 Bear in mind that the MacOS X gui does not translate directly into
 UNIX.  For example, you can load MacOS System 7 files with a
 separate resource and data fork onto MacOSX.  The MacOS X gui
 handles a lot of this kind of stuff.

 I lost you there. So what? The classic Mac file format is more
 advanced than a Unix (or Windows) flat file. The MacOS X Unix view of
 such files is morphed into a directory of files. The GUI turns such
 directories into a single application icon which *can* be opened to
 see what is inside but normally a double-click or open launches the
 app.

 Apple also doesen't use the UNIX security model.  As near as I can
 tell their core security model is an ACL model not a user/group
 model. Once again this is something that's handled elsewhere.


 Don't know how its done underneath but from a shell and ported
 applications it looks exactly the same:

 [EMAIL PROTECTED] {767} uname -a Darwin dot-matrix.local 8.8.0 Darwin
 Kernel Version 8.8.0: Fri Sep  8 17:18:57 PDT 2006;
 root:xnu-792.12.6.obj~1/RELEASE_PPC Power Macintosh powerpc
 [EMAIL PROTECTED] {768} id uid=503(dkelly) gid=501(dkelly)
 groups=501(dkelly), 81(appserveradm), 79(appserverusr), 80(admin)
 [EMAIL PROTECTED] {769} who am i dkelly   ttyp2Nov 13 08:17
 [EMAIL PROTECTED] {770} ls -ld . drwxr-xr-x   33 dkelly  dkelly  1122
 Nov  1 13:30 .
 [EMAIL PROTECTED] {771}

 The biggest problem with MacOS X is that a lot of UNIX software
 that runs on FreeBSD and such, is not ported to MacOSX, and it's
 very difficult to compile on MacOSX.

 Really? Good thing I didn't know compiling was difficult. The other
 day I wanted a MacOS X version of mkisofs. Copied cdrtools from
 /usr/ports/distfiles/ off a FreeBSD machine. Built without a complaint
  in moments. Not terribly thrilled with its default install location
 of /opt/schily/bin/ but at least its easy to remove.


 --
 David Kelly N4HHE, [EMAIL PROTECTED]
 ==
 ==
 Whom computers would destroy, they must first drive mad.




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: APC SMART-UPS 750 VA

2006-11-13 Thread Jeff Palmer


At 09:45 AM 11/13/2006, you wrote:

On Mon, Nov 13, 2006 at 02:20:33PM +, Mark wrote:
 
  Could someone tell me whether I can use the
  APC SMART-UPS 750 VA for my FreeBSD 4.11
  installation?

 Anyone? Please?


When I originally ported apcupsd (The actual application,  not the 
FreeBSD port) over to *BSD,  I was using a Smart-UPS 1000 on the test 
machine.   The 750 should work well.


Jeff Palmer 


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Boot from CD

2006-11-13 Thread a . brancatelli . mail


   Hello everybody.

   I?m working on a thing = I never tried before. I did some googling but
   I don?t think I haven?t found= any correlated to this.

   = FONT face=Default Sans Serif,Verdana,Arial,Helvetica,sans-serif
   size== 2

   The situation is pretty simple: I?m conf= iguring a FreeBSD (6.1)
   server to boot from a SAN thru a QLogic 2340 Fiber = Channel card.
   This in general is not a problem as I already have another wo= rking
   machine with this solution.

   Now for a couple of reason not= related to FreeBSD this new machine
   won?t yet _boot_ from the SAN itself but at the same time ha= ve
   all the system installed on the SAN. What I need to do is have a boot
   de= vice that loads the bootsector, the kernel and then starts
   everything else = from the disk in SAN.

   = SPAN lang=EN-GB style=FONT-SIZE: 10pt; FONT-FAMILY: Arial
   I thought about accomplishing this with a B= OOT-CD that starts up the
   kernel and then from the fstab loads the /, /etc,= /usr and so on from
   the SAN.

   Now my question is this: how do th= e kernel know where to search the
   fstab (considered that the fstab says whe= re to find the /etc)? I
   mean: I suppose I have to put on the CDROM an exact= /etc/fstab for
   that installation?? Or this could be avoided? Also because = I may
   need to edit the fstab for the machine without having to reburn the C   D? 
so what? Or maybe the kernel can actually just be read from the CD
   and t= hen everything else from the ( SAN | local ) drive? Am I
   missing something?
   I?m yet in the make buildworld buildkernel stage so maybe when m   aking the 
make distribution to create the ISO everything will appear
   cleare= r to me but right now something it?s not really clear.

   = I hope the= scenario is clear.

   Any suggestion? Any link to any kind of docum= entation?

   Thank you very much.

   Andrea Brancatelli

   ___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Frank Staals


Gerard Seibert wrote:

On Monday November 13, 2006 at 04:10:58 (AM) Frank Staals wrote:


  
I had the same 'problem'. As said it's not realy a problem since FreeBSD 
will hold just fine if you don't have any rather stupid user + pass 
combinations. ( test test or something like that ) Allthough I thought 
it was annoying that my intire log was clouded with those brute force 
attacks so I just set sshd to listen at an other port then 22. Maybe 
that's a acceptable solusion for you ? You can change the ssd port in 
/etc/ssh/sshd_config



Security through obscurity is a bad idea. Rather, use SSH key based
authentication exclusively.  Turn off all of the password stuff in
sshd_config.  Laugh at the poor fools trying to break in.


  
The point is it isn't security through obscurity: as allready pointed 
out, FreeBSD  sshd can withstand those brute force attacks without much 
of a problem so there is no security problem, the only thing is those 
brute force attacks are anoying since they cloud authd.log If those 
attacks WERE a problem, or if there was a system which you could log in 
without user  pass if you would find out the correct port then, but 
only then, it is a bad idea 


--
-Frank Staals


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: cant login to my server machine(FreeBSD-6.0)

2006-11-13 Thread Nikos Vassiliadis

On Monday 13 November 2006 16:32, dhaneshk k wrote:
 But I tried to create the new /etc/rc.conf file   by the following method
 
   #mount -o rw,remount/
   #cat /etc/rc.conf

you can remount rw like this:
mount -u -w /
then use an editor to correct /etc/rc.conf

there is also /rescue which might be helpful(vi lives
there).

also mount -t ufs-a -u -w might be handy, which
will remount read-write all your ufs filesystems, so
everything will available(vi, ee etc)

You also need to boot in single user and fsck
your filesystems. I would do this step first.

HTH, Nikos
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Problem with slapd nsswitch

2006-11-13 Thread bsd


Hello,

I am trying to configure an LDAP //

It seems I have problems with nsswitch

Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup):  
ldap, passwd, endpwent, not found
Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup):  
ldap, group, setgrent, not found
Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup):  
ldap, group, getgrent_r, not found
Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup):  
ldap, group, endgrent, not found
Nov 13 16:22:56 tsuna slapd[96298]: NSSWITCH(nss_method_lookup):  
ldap, group, endgrent, not found



Thaugh nsswitch.conf has been configured with very simple parameters :


group: files ldap
group_compat: nis
hosts: files dns
networks: files
passwd: files ldap
passwd_compat: nis
shells: files



when I issue a simple -- id a_name -- I only have results for my  
local users not LDAP Users ?



Thanks for your help.



«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§

Gregober --- PGP ID -- 0x1BA3C2FD
bsd @at@ todoo.biz

«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§«?»¥«?»§


P Please consider your environmental responsibility before printing  
this e-mail



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: question

2006-11-13 Thread Jerry McAllister

On Sat, Nov 11, 2006 at 07:40:15PM +0100, Sebastian Herrmann wrote:

 
 Hallo,
 
 could you tell me how to download FreeBSD from your site?

Probably, before you do that, you should read the FreeBSD Handbook - 
especially the parts about preparing for and installing FreeBSD - which
includes portions on how to obtain FreeBSD.

The general answer is that ftp is probably the easiest way to download
the ISO.   When you do the install, you can also choose to install
the full source and documentation and you will have the whole thing.
Or, download just the source using ftp if you like.

The Handbook is freely available online at the FreeBSD website.
  http://www.freebsd.org/
Click on the Handbook like.

jerry

 
 Gru?
 
 Sebastian
   
 Ein Herz f?r Kinder - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de 
 Unser Dankesch?n: Ihr Name auf dem Segel der 1. deutschen America's 
 Cup-Yacht! 
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Boot from CD (this time in ASCII :) )

2006-11-13 Thread a . brancatelli . mail



Sorry about previous mail in HTML and something else.

Hello everybody.

I'm working on a thing I never tried before. I did some googling but I
don't think I haven't found any thing correlated to this.

The situation is pretty simple: I'm configuring a FreeBSD (6.1) server to
boot from a SAN thru a QLogic 2340 Fiber Channel card. This in general is
not a problem as I already have another working machine with this solution.

Now for a couple of reason not related to FreeBSD this new machine won't
yet _ boot _ from the SAN itself but at the same time have all the system
installed on the SAN. What I need to do is have a (local) boot device that
loads the bootsector, the kernel and then starts everything else from the
disk in SAN.

I thought about accomplishing this with a BOOT-CD that starts up the kernel
and then from the fstab loads the /, /etc, /usr and so on from the SAN.

Now my question is this: how do the kernel know where to search the fstab
(considered that the fstab says where to find the /etc)? I mean: I suppose
I have to put on the CDROM an exact /etc/fstab for that installation?? Or
this could be avoided? Also because I may need to edit the fstab for the
machine without having to reburn the CD? so what? Or maybe the kernel can
actually just be read from the CD and then everything else from the ( SAN |
local ) drive? Am I missing something?

I'm yet in the make buildworld buildkernel stage so maybe when making the
make distribution to create the ISO everything will appear clearer to me
but right now something it's not really clear.

I hope the scenario is clear.

Any suggestion? Any link to any kind of documentation?

Thank you very much.


Andrea Brancatelli___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: APC SMART-UPS 750 VA

2006-11-13 Thread Mark

 -Original Message-
 From: David Kelly [mailto:[EMAIL PROTECTED] 
 Sent: maandag 13 november 2006 15:46
 To: Mark
 Cc: freebsd-questions@freebsd.org
 Subject: Re: APC SMART-UPS 750 VA

 In less time than spent asking others you could build
 /usr/ports/sysutils/apcupsd/ and see whether it will
 provide automatic shutdown of your system under
 UPS control.

That's assuming I already have the device. :) I don't.
It's reasonably expensive (around E 300), so it seems like a
fair question to ask whether someone happens to know
whether I can do a good controlled shutdown with it.
Especially since I could not with the 350 unit.

- Mark

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ruby Vulnerability / portupgrade

2006-11-13 Thread Jeff Dickens


Regarding the following vulnerabilities as detected by portaudit:

   Affected package: ruby-1.8.4_4,1
   Type of problem: ruby -- cgi.rb library Denial of Service.
   Reference:
   
http://www.FreeBSD.org/ports/portaudit/ab8dbe98-6be4-11db-ae91-0012f06707f0.html

   Affected package: ruby-1.8.4_4,1
   Type of problem: ruby - multiple vulnerabilities.
   Reference:
   
http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html

I see that ruby is only required by portupgrade.  Anyone know if there going to 
be a fix for this vulnerability any time soon? Anyone asked the ruby guys?

   # pkg_info -R ruby-1.8.4_4,1
   Information for ruby-1.8.4_4,1:

   Required by:
   portupgrade-2.0.1_1,1
   ruby18-bdb1-0.2.2

   # pkg_info -R ruby18-bdb1-0.2.2
   Information for ruby18-bdb1-0.2.2:

   Required by:
   portupgrade-2.0.1_1,1

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: pkg_cutleaves listing needed ports as leaf nodes.....

Eric Schuele [EMAIL PROTECTED] writes:

 When I use `pkg_cutleaves -l` to list leaf nodes.  It is listing
 things I know are required by other apps.  These aren't build
 dependencies.

 For example, it lists g-wrap, and libpcap.  If I remove g-wrap, my
 gnucash2 immediately refuses to run.  And I know libpcap was an
 option I selected for NTop.  There are others as well.  I have
 noticed that a `make  pretty-print-run-depends-list` is empty for
 gnucash2.  Is that significant?

 Why would these not be +REQUIRED_BY something?  `pkgdb -F` doesn't
 mention anything at all.

 If something has no +REQUIRED_BY file... how can I go about
 determining why its on my machine or which port installed it?
 Obviously top level items I installed aside.

 Thanks.

 [Running 6.2-PRERELEASE]


The requirements files are definitely supposed to be there, and their
non-presence constitutes corruption in your package database.
pkg_cutleaves can't figure out requirements that aren't recorded, so
getting the package database restored has to be your first step.  

The obvious way of fixing the package database is to reinstall all of
your ports before removing the leaves.  You may not need to use such a
brute-force solution, though...  If you have backups of /var/db/pkg,
you could go through and try to find the dependencies as they existed
when the backup was made.  Obviously, this might not be fully
up-to-date; however, it's likely to be better than what you have now.

Good luck.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?

Garrett Cooper [EMAIL PROTECTED] writes:

 Just wondering if anyone else was experiencing the same issues that I
 am.. it's related to Samba-3.0.22c and sockets / filehandles.

 For some odd reason every couple days (~2 days) I have to restart the
 smbd daemon because it eats up 6000+ filehandles, just for sockets I
 assume (based on netstat output). At the point where it reaches 8000
 some filehandles open, the system refuses to fork, forcing me to login
 as root on the console directly instead of via SSH.

 My machine is a local / preferred master (smbd fights with XP Home
 clients because they want to be master browsers), with limited access
 to a few XP clients (4 clients at any given point in time), plus an
 XBox using smbclient with XBox Media Center.

 Helpful info:
 [EMAIL PROTECTED] /home/gcooper]# uname -a
 FreeBSD hoover.localdomain 6.1-RELEASE-p10 FreeBSD 6.1-RELEASE-p10 #9:
 Mon Oct 16 02:14:29 PDT 2006
 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/HOOVER  i386


 /usr/local/etc/smb.conf:
 [global]
   workgroup = WORKGROUP
   encrypt passwords = yes
   log file = /var/log/samba/log.%m
   log level = 3 passdb:4 auth:4
 #   log level = 5
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   local master =  yes
   preferred master = yes
   dns proxy = no
   guest ok = no

 [shared]
   path = /shared
   writeable = yes
   public = yes
   hosts deny = shiina pinocchio
   guest ok = no
   create mask = 0775

 The only changes that I've made to smb.conf between now and when I
 last accessed samba is that I've removed an unneeded share and removed
 guest advertisement for my shares (need password / username anyhow to
 login, so I figured I might as well..).

This is a Samba issue, not an OS issue, as demonstrated by the fact
that the system is able to close all of the handles when the daemon 
is shut down.  

Have you looked closely at the netstat output to which you referred?
It would be interesting if all of the stuck connections were coming
from the same host, or were in a particular state, etc.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Asking for Ports

Ferry Limanto [EMAIL PROTECTED] writes:

 Hi, I'm ferry from ISP in Indonesia. I want run my squid and there is
 error saying that file libm.so.2 is not found. I suspect that the
 library is from ports compat4x, and I try to install that ports from
 freebsd ftp server, buat always failed, or can I do another else? I
 really need this file to run my squid on my freebsd 6. Can u help me sir
 ??

You shouldn't need that file to run squid; squid should be linking
against libm.so.4 on FreeBSD 6.  If for some reason you NEED to run a
squid built for FreeBSD 4.x, then you will indeed need the compat4x
port, and you will have to look more closely at the failure to install
that port.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: installing port etherape

Matthew Pope [EMAIL PROTECTED] writes:

 Hello,
 The 'make install' on the etherape stopped, complaining about a
 missing function. The output is included below.
 My environment is FreeBSD 6.1 p10 on an Asus motherboard with a
 Pentium 4 processor.
 Given the warnings about a dependancy conflict, and my newbie lack of
 knowledge of using ports, I'm a bit perplexed on how to proceed.
 If anyone could suggest a strategy to get around this problem, I'd
 really appreciate it.
 Thanks,
 Matthew
 make install (from within etherape dir)
 .lots of output
 cc -O2 -fno-strict-aliasing -pipe -pthread -o 
 .libs/bonobo-activation-server activation-server-corba-extensions.o
 activation-context-query.o activation-context-query-lexer.o
 activation-context-query-parser.o activation-context-corba.o
 object-directory-corba.o object-directory-load.o
 object-directory-activate.o object-directory-config-file.o
 activation-server-main.o -Wl,--export-dynamic -pthread
 -L/usr/local/lib ../bonobo/.libs/libbonobo-2.so
 /usr/ports/devel/libbonobo/work/libbonobo-2.16.0/bonobo-activation/.libs/libbonobo-activation.so
 ../bonobo-activation/.libs/libbonobo-activation.so
 /usr/local/lib/libgobject-2.0.so -lname-server-2 -lORBitCosNaming-2 
 -lORBit-2 /usr/local/lib/libgmodule-2.0.so
 /usr/local/lib/libgthread-2.0.so -pthread
 /usr/local/lib/libglib-2.0.so -lxml2 -lz -liconv -lm -lintl
 -Wl,--rpath -Wl,/usr/local/lib
 /usr/bin/ld: warning: libglib-2.0.so.400, needed by
 /usr/local/lib/libORBitCosNaming-2.so, may conflict with
 libglib-2.0.so.0
 /usr/bin/ld: warning: libgmodule-2.0.so.400, needed by
 /usr/local/lib/libORBit-2.so, may conflict with libgmodule-2.0.so.0
 /usr/bin/ld: warning: libgobject-2.0.so.400, needed by
 /usr/local/lib/libORBit-2.so, may conflict with libgobject-2.0.so.0
 /usr/bin/ld: warning: libgthread-2.0.so.400, needed by
 /usr/local/lib/libORBit-2.so, may conflict with libgthread-2.0.so.0
 /usr/bin/ld: warning: libm.so.3, needed by /usr/local/lib/libxml2.so,
 may conflict with libm.so.4
 object-directory-corba.o(.text+0xa48): In function `client_cnx_broken':
 : undefined reference to `ORBit_sequence_remove'
 gmake[3]: *** [bonobo-activation-server] Error 1
 gmake[3]: Leaving directory
 /usr/ports/devel/libbonobo/work/libbonobo-2.16.0/activation-server'
 gmake[2]: *** [all] Error 2
 gmake[2]: Leaving directory
 /usr/ports/devel/libbonobo/work/libbonobo-2.16.0/activation-server'
 gmake[1]: *** [all-recursive] Error 1
 gmake[1]: Leaving directory
 /usr/ports/devel/libbonobo/work/libbonobo-2.16.0'
 gmake: *** [all] Error 2
 *** Error code 2

 Stop in /usr/ports/devel/libbonobo.
 *** Error code 1

 Stop in /usr/ports/net-mgmt/etherape.
 bash-2.05b#

My best guess; your upgrade to Gnome 2.16 is still incomplete.  
Did you follow the directions in the 20061014 entry in /usr/ports/UPDATING?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: APC SMART-UPS 750 VA

2006-11-13 Thread Mark

 -Original Message-
 From: [EMAIL PROTECTED] 
 [mailto:[EMAIL PROTECTED] On Behalf Of Jeff Palmer
 Sent: maandag 13 november 2006 16:28
 To: FreeBSD-Questions@freebsd.org
 Subject: Re: APC SMART-UPS 750 VA

 When I originally ported apcupsd (The actual application,
 not the FreeBSD port) over to *BSD,  I was using a
 Smart-UPS 1000 on the test machine. 
 The 750 should work well.

Thanks. :) I'll go get one now.

- Mark

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: AMD64 + FreeBSD 6.1 + Keyboard troubles

Coen Watstaatervoor [EMAIL PROTECTED] writes:

 I've installed FreeBSD 6.1 on a new Dual AMD Opeteron HE server, during the
 installation the keyboard works fine. But when you plug in the keyboard
 after a reboot (without the keyboard attached) the keyboard won't work any
 more. I'm doing the same installation on a Dual Intel Xeon machine and the
 keyboard works fine after a reboot and a cold plug in.

 Could this be a motherboard problem or is this something within BSD?

If it's a PS/2 keyboard, then you're not supposed to do that anyway,
and it's a hardware issue.  If it's a USB keyboard, a newer version of
FreeBSD might do better.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: X windows configuration problem

arnuld [EMAIL PROTECTED] writes:

 hai all,

 i am not able to configure my X-Windows system. i will be brief:

 1.)  ASUS K8V-MX motherboard running AMD64 Athlon
 2.) VIA K8M800, VIA 8T237R chipsets.

 i downloaded FreeBSD 6.1 last night  have verified the md5sum.
 Xorg -configure does not work. GNOME is installed. then i tried
 xorgconfig -textmode which worked  after checking my mouse,
 keyboard etc it shows me the video card list which contains only 2
 drivers ati  vmware  nothing else.  so i tried both drivers,
 ati  vmware  edited ttyv8 line in /etc/ttys to on from
 off. but all i get is Black Terminal.

 does anybody has any idea on how i can configure X?

You don't necessarily need to with X.org: 
on many systems it can run just fine without any config file.

 (i used to run Fedora Core 4 before that which installs vesa driver
 for my VGA  it ran fine in 1024x768 mode. i have used FreeBSD 5.4
 once which did show me a long list of drivers for my video card
 including vesa  i ran my box with that  it was fine but with this
 new FreeBSD i dont have any choice except 2 drivers i mentioned. )

Do you have the xorg-server port installed?
[Look at the pkg_info(1) output.]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: State of gvinum RAID-5

2006-11-13 Thread Nejc Skoberne


Hi,


I tried gvinum RAID-5 with a 5-Stable around the time when 5.1 or 5.2
was released (afair) and back then it basically sucked big time. Raid
worked as long as nothing failed, but reconstructing a drive was
somewhere between very painful and not possible.


I agree.


Now I will have to upgrade hardware soon, which means I could switch
from NetBSD (and Raidframe) to FreeBSD (with gvinum) again. I would
like to because NetBSD seems to have some kind of memory leak in
connection with Samba and large or many files, but I'd rather have a
somewhat unstable Samba than an unstable Raid, so what's the state of
affairs?


I have been running gvinum RAID-5 on a ProLiant machine for 6 months now
and I hadn't had any problems so far. First I installed FreeBSD 5.4 at
that time but the RAID array crashed when there was an unclean reboot.
After that I installed FreeBSD 6.1 and for now (knock knock knock)
everything looks to work fine. However, I hadn't had a disk crash yet so
I can't tell what exactly happens when one of the disks dies.

I also run Samba and NOD32fac viruschecking on the same server and it
works just great.

HTH,
Nejc


smime.p7s
Description: S/MIME Cryptographic Signature

Re: Java plugin for Firefox

Erik Norgaard [EMAIL PROTECTED] writes:

 Lowell Gilbert wrote:
 Erik Norgaard [EMAIL PROTECTED] writes:
 Any suggestions?
   I just built jdk15 with the default options, and the Java plugin
 works
 in my firefox.

 Secondly, is there a way to just build the plugin since I have the jdk
 built and installed?

 It looks possible, but (to me) it's not worth a few hours of human
 time to figure it out in order to save a few hours (or even days) of
 the computer's time.

 I tried again, deleting the old options files. Building mozilla still
 fails, although I no longer need to disable the vuln check.

 Which port revision is your mozilla? Mine is 1.7.13_1,2 - it should be
 the most recent revision.

Sorry, that's exactly what I have, and it works fine (even though I
don't actually use that mozilla).
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ATA drive TIMEOUT READ_DMA errors since adding power savings

2006-11-13 Thread Michael Knoll


I added a power down timer on one of my harddrives, and started
getting READ_DMA and WRITE_DMA timeouts.  Is it possible these are
occuring becuase the drive is spun down and FreeBSD isn't waiting long
enough for it to spin up?  Everything else seems to be working.

If that is the problem, is it possible to extend the timeout to
eliminate these messages clouding my logs?

Thanks,
Mike

+ad4: TIMEOUT - WRITE_DMA retrying (1 retry left) LBA=41399007
+ad4: TIMEOUT - READ_DMA retrying (1 retry left) LBA=12095
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

On Mon, Nov 13, 2006 at 09:03:20AM -0600, Lonnie Cumberland wrote:
 
 I am still somewhat confused as I have been looking at FreeBSD which I
 think is VERY good and have also recently been able to boot up the
 OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to
 install.

If your desire is to purchase a commercially supported server then an
Apple Xserve would be hard to beat. I think you misunderstand the
purpose of Darwin and would be better served with FreeBSD.

 If I follow these messages correctly then it appears that FreeBSD is
 just as good as Darwin although I had expected that the inclusion of
 the CM kernel integrated with the FreeBSD kernel along with various
 other improvements would have made the Darwin software better.

I think you are spending too much time keeping score on minute details
and not enough time on the big picture.

 One thing that I can tell at the moment is that the FreeBSD OS seems
 to have better support for hardware since Darwin (Apple) if very
 specifically targeted to chosen hardware and also they seem to use
 these Carbon libraries for getting things to run which I do not kow
 where to locate more information on them.

No, Carbon has almost nothing to do with Darwin. Carbon is the API which
runs on top of Darwin (not a part of). Aqua is implemented in Carbon,
Carbon runs on top of Darwin. Carbon is not a part of Darwin.

 I would still like to do some more testing to get a better feel for
 what Darwin can offer, but the bottom line is that all of these are
 directly related to FreeBSD and are stable and fast compared to other
 non-FreeBSD related OS's.

Testing: good idea.

Speed: the slowest machine is one that is down.

Top-posting: Frowned upon among traditional technical communities.
You'll get more out of these communities if you learn how to trim
replies and insert your comments in the appropriate places.

-- 
David Kelly N4HHE, [EMAIL PROTECTED]

Whom computers would destroy, they must first drive mad.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ruby Vulnerability / portupgrade

2006-11-13 Thread Karol Kwiatkowski

Hi Jeff,

On 13/11/2006 16:35, Jeff Dickens wrote:
 Regarding the following vulnerabilities as detected by portaudit:
 
Affected package: ruby-1.8.4_4,1
Type of problem: ruby -- cgi.rb library Denial of Service.
Reference:
   
 http://www.FreeBSD.org/ports/portaudit/ab8dbe98-6be4-11db-ae91-0012f06707f0.html

From the link:

% Affects:
% *  ruby =1.8.* 1.8.5_4,1
% *  ruby_static =1.8.* 1.8.5_4,1

The latest version of ruby in ports is 1.8.5_4,1 which is not affected[1].


Affected package: ruby-1.8.4_4,1
Type of problem: ruby - multiple vulnerabilities.
Reference:
   
 http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html

Hmmm... not sure about this one, but if I'm reading CVE-2006-3694[2]
right ruby 1.8.5 is not affected. portaudit is not complaining, too.

HTH,

Karol

[1]
http://www.freebsd.org/cgi/getmsg.cgi?fetch=2891067+0+/usr/local/www/db/text/2006/cvs-all/20061105.cvs-all
[2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3694

-- 
Karol Kwiatkowski  freebsd at orchid dot homeunix dot org
OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc



signature.asc
Description: OpenPGP digital signature

Re: APC SMART-UPS 750 VA

Mark [EMAIL PROTECTED] writes:

 -Original Message-
 From: Mark [mailto:[EMAIL PROTECTED] 
 Sent: zondag 12 november 2006 19:31
 To: 'freebsd-questions@freebsd.org'
 Subject: APC SMART-UPS 750 VA

 Hello,

 Could someone tell me whether I can use the
 APC SMART-UPS 750 VA for my FreeBSD 4.11
 installation?

Sounds like it might be the same one I'm using quite happily for my
machines at home:
[from dmesg:]
ugen0: APC Back-UPS ES 750 FW:819.z2.D USB FW:z2, rev 1.10/1.06, addr 2

I'm on -STABLE, but I don't think the OS version should matter much.

 Anyone? Please?

Give us a day, at least, okay?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?

In response to Lowell Gilbert [EMAIL PROTECTED]:

 Garrett Cooper [EMAIL PROTECTED] writes:
 
  Just wondering if anyone else was experiencing the same issues that I
  am.. it's related to Samba-3.0.22c and sockets / filehandles.
 
  For some odd reason every couple days (~2 days) I have to restart the
  smbd daemon because it eats up 6000+ filehandles, just for sockets I
  assume (based on netstat output). At the point where it reaches 8000
  some filehandles open, the system refuses to fork, forcing me to login
  as root on the console directly instead of via SSH.
 
  My machine is a local / preferred master (smbd fights with XP Home
  clients because they want to be master browsers), with limited access
  to a few XP clients (4 clients at any given point in time), plus an
  XBox using smbclient with XBox Media Center.

Have you investigated the possibility that Samba legitimately needs more
filehandles than that?  Even if there are only 4 clients, they may be
opening 2000 files each (The output of smbstatus right before the system
exhausted its filehandles would be interesting)  If that's the case, you
can update the amount of available filehandles using sysctl or by
recompiling your kernel.

We have some PostgreSQL servers that require the filehandle limit be raised
to 5, for example.

-- 
Bill Moran
Collaborative Fusion Inc.



IMPORTANT: This message contains confidential information and is intended only 
for the individual named. If the reader of this message is not an intended 
recipient (or the individual responsible for the delivery of this message to an 
intended recipient), please be advised that any re-use, dissemination, 
distribution or copying of this message is prohibited.  Please notify the 
sender immediately by e-mail if you have received this e-mail by mistake and 
delete this e-mail from your system.


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

6.2 Release delayed?

2006-11-13 Thread Joe

A while back, I read that 6.2 was going to be released today. Now I see 
that 6.2 won't be released until Mid December.


Are FreeBSD releases put out whenever they're ready or is there a set 
schedule that is adhered to?



I only ask because I am trying to schedule some server upgrades and I 
scheduled my QA tests for this week, thinking 6.2 would be released today.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: BGE driver upgrade from 5.3-RELEASE

James Kilton [EMAIL PROTECTED] writes:

 I have a running 5.3-RELEASE system that needs a BGE driver upgrade so that 
 packets with VLAN tags aren't stripped.  Is there any way to do this without 
 upgrading the entire OS?  This feature was just added to the driver a month 
 ago.

It's *possible*; how much effort are you willing to spend on porting
the code?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

2006-11-13 Thread Doug Hardie



On Nov 13, 2006, at 01:28, Ted Mittelstaedt wrote:


Apple also doesen't use the UNIX security model.  As near as I can
tell their core security model is an ACL model not a user/group model.
Once again this is something that's handled elsewhere.



The user-group security model is alive and the heart of OS-X  
security.  It is used throughout the system even within the user's  
home directory where there are files the user cannot access.  This  
causes problems for backup progrms that want to be run by the user  
with a window interface as they can't backup those files.  ACLs are  
available but not used by default.  The user has to create them if  
desired.  There used to be a FreeBSD project to add ACLs but I don't  
know its status.  i suspect the two implementations will be very  
similar.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

deleting automatically the oldest file from a harddisk

2006-11-13 Thread Koen de Wijs


Hello everybody,

I have a ftp -server. I use a harddisk of  9 Gb for the ftp-directory.

This isn't very big so I want to throw away the oldest file if the disc 
is full.


I can write a cronjob that checks every minute. But isn't there another 
solution;
Can't I just write a C program that listens to some systemcalls and 
automatically deletes the oldest file if the harddisk is full???


I hope someone can help me?

Thanks,

Koen
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ATA drive TIMEOUT READ_DMA errors since adding power savings

2006-11-13 Thread Kirk Strauser

On Monday 13 November 2006 9:57 am, Michael Knoll wrote:

 I added a power down timer on one of my harddrives, and started
 getting READ_DMA and WRITE_DMA timeouts.  Is it possible these are
 occuring becuase the drive is spun down and FreeBSD isn't waiting long
 enough for it to spin up?  Everything else seems to be working.

Yep.

 If that is the problem, is it possible to extend the timeout to
 eliminate these messages clouding my logs?

First, what kind of machine is this?  If anything other than a laptop, be 
aware that most harddrives have lifetimes measured in hundreds of thousands 
of hours, but a small number of thousand spin-ups.  If your drive is 
cycling many times a day, you could get a nasty surprise in a relatively 
short amount of time.
-- 
Kirk Strauser


pgpafne3sZMBA.pgp
Description: PGP signature

problems with serverraid 8i on an ibm x260

2006-11-13 Thread Joshua Frugé

Hello,

I am running freebsd 6.1 (amd64) on an ibm x260 and getting these
errors:

dmesg:
g_vfs_done():aacd0s1a[WRITE(offset=16567468032, length=16384)]error = 5
aacd0: hard error cmd=write 1673028351-1673028382

and in messages :
Nov 12 23:59:14 nms kernel: aac0: COMMAND 0x8bd3b2c0 TIMEOUT
AFTER 50189 SECONDS
Nov 12 23:59:34 nms kernel: aac0: COMMAND 0x8bd3b2c0 TIMEOUT
AFTER 50209 SECONDS
Nov 12 23:59:54 nms kernel: aac0: COMMAND 0x8bd3b2c0 TIMEOUT
AFTER 50229 SECONDS


The system will lock, and require a manual reboot.  

Has anyone run into this before, or can point me in the right direction
to look for answers?

Thanks,
-- 
Joshua Frugé
[EMAIL PROTECTED]
Louisiana State University
Information Technology Services 


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: delete iface tun

Igoryan [EMAIL PROTECTED] writes:

 How to remove the interface tunN, creations ppp demon?

In general, you don't.  If you unload the if_tun module, that will
delete all of them.

See the manual for tun(4).
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

2006-11-13 Thread Lonnie Cumberland




David Kelly wrote:


On Mon, Nov 13, 2006 at 09:03:20AM -0600, Lonnie Cumberland wrote:
 


I am still somewhat confused as I have been looking at FreeBSD which I
think is VERY good and have also recently been able to boot up the
OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to
install.
   



If your desire is to purchase a commercially supported server then an
Apple Xserve would be hard to beat. I think you misunderstand the
purpose of Darwin and would be better served with FreeBSD.
 

No, mostly we were just trying to look at the state of current 
OpneSource OS's to try and get a feel for the advantages and 
disadvantages of each type.


Also, not to be brash, but if I am missing the point of Darwin as you 
say, then please help to clarify this for me as it is the fundamental 
reason for this whole thread and I would really like to know what the 
purpose are so that we can make informed judgments on FreeBSD and Darwin..



If I follow these messages correctly then it appears that FreeBSD is
just as good as Darwin although I had expected that the inclusion of
the CM kernel integrated with the FreeBSD kernel along with various
other improvements would have made the Darwin software better.
   



I think you are spending too much time keeping score on minute details
and not enough time on the big picture.
 

Not really trying to keep score but again looking for the strengths and 
weaknesses of FreeBSD vs Darwin



I would still like to do some more testing to get a better feel for
what Darwin can offer, but the bottom line is that all of these are
directly related to FreeBSD and are stable and fast compared to other
non-FreeBSD related OS's.
   



Testing: good idea.
 


This is always a good idea when evaluating technologies I think.


Speed: the slowest machine is one that is down.

Top-posting: Frowned upon among traditional technical communities.
You'll get more out of these communities if you learn how to trim
replies and insert your comments in the appropriate places.
 

thanks for correcting my accepted behavior on the mailing list and I 
will try to improve in future posts.


Thanks and have a good day,

Lonnie T. Cumberland
OutStep Technologies Incorporated

Email: [EMAIL PROTECTED]
  [EMAIL PROTECTED] 


Open Source.. opening the doors for the future in the world of today

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blank screen after using X

2006-11-13 Thread Christian Walther


Sorry...

I forgot to mention that the machine is an IBM Thinkpad T23 with S3
Savage chip, max. resolution is at 1024x768.

On 13/11/06, Christian Walther [EMAIL PROTECTED] wrote:

Hi,

I'm using FreeBSD 6.x for a couple of month now, and I'm quite happy with it.
Since the beginning I've a problem that I was unable to fix: When I
quit X, or X dies for some reason, the screen remains black. I can
type blindly, starting X again, or doing a shutdown.

I searched the net a found an older thread from another FreeBSD-User,
posted to this mailing list. Link to the initial message:
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=195067+0+archive/2006/freebsd-questions/20060723.freebsd-questions

It was suggested that this would be a configuration problem, that
something has to be changed in xorg.conf. But there isn't any solution
provided, so I hope that someone here can help me.

I'll attach Xorg.0.log with the latest crash information (it complains
a segfault at the end), and my current xorg.conf.

What can I change to make this problem disappear?

Cheers
Christian




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: image based stock spam

2006-11-13 Thread Armin Arh

On Sun, 12 Nov 2006 23:17:58 -0800 Brian [EMAIL PROTECTED] wrote:
 ugh, I'm running a 6.2 prerelease.  The package doesn't exist, so I 
 build the port, or try to.  The tiff port wont build, so I pkg_add 
 that.  It gets a lil further along, the pkgconfig port won't build, I 
 pkg_add that.  Then, a little further here comes an x windows install, a 
 31 mb download. I don't want that on my server.  I'll live with it for 
 now till something better comes along.

A few weeks ago i made a solution for spam images myself.
You can find at:

ftp://pubbox.net/pub/unix/mail/mimefilter-1.0-PRE.tar.gz

enjoy,

Armin
PUBBOX Postmaster, spam-killer no.1, free email address at http://pubbox.net/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Shutting down as user

Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to 
shutdown as user.  I get a permission denied error message.  I know 
that this is probably some simple permission's thing, as I don't have 
that problem on my desktop, but I'm pretty new to all of this and would 
appreciate a heads up on how to shut down as user.  Thanks.


Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

uhci.ko keeps showing up

2006-11-13 Thread Andy Greenwood


I've commented out device uhci in my kernel config, but I keep getting
uhci.ko loaded on boot. I'm not using usb at all. I understand that I
should be able to disable usb in my bios, but it's difficult to get
to, as the server is remote. Is there anything I can do to prevent the
uhci.ko from being loaded?

--
I'm nerdy in the extreme and whiter than sour cream
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user

2006-11-13 Thread Josh Carroll


Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to
shutdown as user.  I get a permission denied error message.


Whatever is shutting down the system would either need to be setuid
(chmod u+s), or would need to use sudo (if you have the sudo port and
your user is properly setup in sudoers to issue the shutdown command
or whatever is running).

Some details on which window manager or desktop environment you are
running would help, along with whether or not you are running a
display manager (GDM, KDM, XDM, etc).

Josh
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user




Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to
shutdown as user.  I get a permission denied error message.


Whatever is shutting down the system would either need to be setuid
(chmod u+s), or would need to use sudo (if you have the sudo port and
your user is properly setup in sudoers to issue the shutdown command
or whatever is running).

Some details on which window manager or desktop environment you are
running would help, along with whether or not you are running a
display manager (GDM, KDM, XDM, etc).

Josh



I'm using the KDE window manager, but don't see how this would effect 
anything, as I am not able to shut down as user from the console.


Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Developer needed for a project (FreeBSD and Java)

2006-11-13 Thread Lonnie Cumberland

Greetings All,

While we are in the middle of evaluating various project software and
also while I am trying to learn more about FreeBSD as it relates to
our goals, we have come across a need to locate a developer that has
skills with FreeBSD and also Java.

We are working on migrating a project over from Linux to FreeBSd plus
some additional modifications, but need to find some one that we can
offer small contracts to for various amounts of work on the project.

Since we are still very small, the contracts would be in the range of
$250 - $500 for various tasks completed on the project.

If anyone is interested then please get in touch with me so tha twe
can talk more about the possibilities, ok.

Thanks and have a good day,

Lonnie T. Cumberland
OutStep Technologies Incorporated

Email: [EMAIL PROTECTED]
   [EMAIL PROTECTED]




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user

2006-11-13 Thread Jerry McAllister

On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote:

 Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to 
 shutdown as user.  I get a permission denied error message.  I know 
 that this is probably some simple permission's thing, as I don't have 
 that problem on my desktop, but I'm pretty new to all of this and would 
 appreciate a heads up on how to shut down as user.  Thanks.

In some way or other, shutdown must be done by root, or possibly by
someone in the operator group.

You can log in as root -- for which you will need the root password
You can 'su' to root from a regular account -- for which you will need
 the root password AND be in the wheel group.
You can create an alkternate root account (recommended) and log in as
 that id or su to it -- which requires creating the account
 with password.
You can put your account in the operator group -- 
You can install and set up 'sudo' to do the shutdown and allow your id
 access to it.

All of these ways require you to have root access to set them up.
They can also be done in 'single user' mode which runs with root priviledge.

All of this is well covered in the handbool and other documentation.

jerry

 
 Rem
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user

2006-11-13 Thread Joe Holden


Rem P Roberti wrote:

I'm using the KDE window manager, but don't see how this would effect 
anything, as I am not able to shut down as user from the console.


This is the intended behaviour, you wouldn't want just anyone to 
shutdown your machines would you? ;)

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user


Joe Holden wrote:

Rem P Roberti wrote:

I'm using the KDE window manager, but don't see how this would effect 
anything, as I am not able to shut down as user from the console.


This is the intended behaviour, you wouldn't want just anyone to 
shutdown your machines would you? ;)


That is very true, and I understand why this is by design, but in this 
case the ONLY user of the machine is me.  It really is no big deal, but 
I am trying to understand just what is going on here.  As I said, on my 
desktop I am able to shut down as user, and can't remember how I set it 
up so that occurs.  Back to the handbook!


Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Gerard Seibert

On Monday 13 November 2006 10:11, Frank Staals wrote:

 The point is it isn't security through obscurity: as allready pointed
 out, FreeBSD  sshd can withstand those brute force attacks without much
 of a problem so there is no security problem, the only thing is those
 brute force attacks are anoying since they cloud authd.log If those
 attacks WERE a problem, or if there was a system which you could log in
 without user  pass if you would find out the correct port then, but
 only then, it is a bad idea 


Given enough time, every user/password combination can be broken. Perhaps 
not in your lifetime, but it is still a real possibility. Given the 
relative ease of setting up keys and simply dispersing with user/passwords 
all together, I fail to see why more users do not avail themselves of this 
avenue of security. Then again, I don't know how San Diego came back to 
beat Cincinnati yesterday either.

Anyway, each to his own!

-- 
Gerard

A word to the wise is often enough to start an argument.


pgpbcMcYGCYZG.pgp
Description: PGP signature

Re: Shutting down as user

2006-11-13 Thread Joe Holden


Rem P Roberti wrote:

That is very true, and I understand why this is by design, but in this 
case the ONLY user of the machine is me.  It really is no big deal, but 
I am trying to understand just what is going on here.  As I said, on my 
desktop I am able to shut down as user, and can't remember how I set it 
up so that occurs.  Back to the handbook!


Do you have (as was mentioned) the shutdown script setuid or something?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user




On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote:

  
Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to 
shutdown as user.  I get a permission denied error message.  I know 
that this is probably some simple permission's thing, as I don't have 
that problem on my desktop, but I'm pretty new to all of this and would 
appreciate a heads up on how to shut down as user.  Thanks.



In some way or other, shutdown must be done by root, or possibly by
someone in the operator group.

You can log in as root -- for which you will need the root password
You can 'su' to root from a regular account -- for which you will need
 the root password AND be in the wheel group.
You can create an alkternate root account (recommended) and log in as
 that id or su to it -- which requires creating the account
 with password.
You can put your account in the operator group -- 
You can install and set up 'sudo' to do the shutdown and allow your id

 access to it.

All of these ways require you to have root access to set them up.
They can also be done in 'single user' mode which runs with root priviledge.

All of this is well covered in the handbool and other documentation.

jerry

  


Right.  I now remember that putting the account in the operator group 
was probably how I achieved the affect on the desktop.  I'll check that 
out, and check the handbook.


Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user




On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote:
  
Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to 
shutdown as user.  I get a permission denied error message.  I know 
that this is probably some simple permission's thing, as I don't have 
that problem on my desktop, but I'm pretty new to all of this and would 
appreciate a heads up on how to shut down as user.  Thanks.



Add yourself to the operator group. Just edit /etc/group.

  

Bingo!

Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Shutting down as user




On Mon, Nov 13, 2006 at 09:03:28AM -0800, Rem P Roberti wrote:
  
Hi everyone.  I just installed 6.1 on an old laptop, and I am unable to 
shutdown as user.  I get a permission denied error message.  I know 
that this is probably some simple permission's thing, as I don't have 
that problem on my desktop, but I'm pretty new to all of this and would 
appreciate a heads up on how to shut down as user.  Thanks.



Add yourself to the operator group. Just edit /etc/group.

  




I knew that the solution was a simple one, I just couldn't remember what 
it was.  Thanks, David.


Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Building Ports w/ Options, Env

2006-11-13 Thread Rachel Florentine

Hi;
Would someone kindly simply edit the following, if that's possible (if I'm not 
too far off how it should be done) so that I can have an example of how to 
build OpenLDAP with the options and env I want?

Here's what I have so far. I don't know if it's correct or not...

1. Edit /usr/local/etc/pkgtools.conf and enable it to read 
/usr/local/etc/pkgtools.local
2. Create the local file and add something like this:

  MAKE_ENV = {
'/usr/ports/net/openldap23-server' = [
'CC=gcc',
'CPPFLAGS=-I/usr/local/include/openssl/'
'LDFLAGS=-L/usr/local/lib/'
],
  }

That would set up the environment, and might actually be correct as written ;) 
I'm a whole lot less confident of the following:

  MAKE_ARGS = {
'/usr/ports/net/openldap23-server'= [
'--localstatedir=/var/run/slapd',
'--enable-spasswd',
etc, etc
],
  }

TIA,
Rachel





___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Testing firewire

2006-11-13 Thread George Fazio




On Sun, 12 Nov 2006, David Kelly wrote:



On Nov 12, 2006, at 5:03 PM, Erik Norgaard wrote:

So I thought: Is this like ethernet that I need a crossed cable or can I 
connect the two with an ordinary cable and check that it works?


There is no master nor slave in Firewire, all are peers, and all have 
(essentially) the same socket. If the cable fits, it works. Witness the 
difference between a hardware standard driven by Apple (Firewire) and one 
from Intel/Microsoft (USB).


Apple computers can be booted in target mode where the machine becomes 
nothing more than a Firewire hard drive. Only works for the primary drive, 
but works well. Apple recommends this mode (and Migration Assistant) for 
cloning user data and applications from one Mac to another.


You might also try fwe(4) if your other OS's are capable of doing IP over 
firewire.


fwe(4) emulates an ethernet interface and is a non-standard method of 
making Firewire become a network interface. If would work with other 
BSDs? or Mac OS/X? possibly.


fwip(4) is what Windows and a lot of other operating systems use to 
accomplish this feat. Last I check, it was no in the generic kernel and 
had to be compiled in, specified in the loader.conf(5), or loaded with 
kldload(8).


#device fwe # Ethernet over FireWire (non-standard!)
#device fwip# IP over FireWire

I had the fwip driver working with a Windows XP box for a little while. It 
worked fairly well, but I don't think it was really any faster than 
ethernet (at least for what I was doign with it).


Hope this helps.

George Fazio N3GQF
mailto:[EMAIL PROTECTED]


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: 6.2 Release delayed?

2006-11-13 Thread Kris Kennaway

On Mon, Nov 13, 2006 at 08:24:47AM -0800, Joe wrote:
 A while back, I read that 6.2 was going to be released today. Now I see 
 that 6.2 won't be released until Mid December.
 
 Are FreeBSD releases put out whenever they're ready or is there a set 
 schedule that is adhered to?
 
 
 I only ask because I am trying to schedule some server upgrades and I 
 scheduled my QA tests for this week, thinking 6.2 would be released today.
 ___

When they're ready.  They almost always slip because of bugs that
users only bother to report late in the release cycle :-)

Kris


pgp4envxjrMz7.pgp
Description: PGP signature

Re: Shutting down as user

On Mon, Nov 13, 2006 at 10:11:11AM -0800, Rem P Roberti wrote:
 
 Add yourself to the operator group. Just edit /etc/group.
 
   
 Bingo!

Haven't checked recently but in the past any darn fool could
Control-Alt-Delete reboot from the console keyboard. Caused a bit of a
pain when a machine reboots as Microsoft has been teaching their uses
that this is now the login keystroke sequence.

-- 
David Kelly N4HHE, [EMAIL PROTECTED]

Whom computers would destroy, they must first drive mad.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: MAC OS X connection to FreeBSD?

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Lonnie Cumberland wrote:
 Greetings All,
 
 I really appreciate all of the feedback and reply posts regaring my
 inquiry about Darwin and FreeBSD.
 
 I am still somewhat confused as I have been looking at FreeBSD which I
 think is VERY good and have also recently been able to boot up the
 OpenDarwin 7.2.1 as well, but never could get the Darwin 8.1 cdrom to
 install.
 
 If I follow these messages correctly then it appears that FreeBSD is
 just as good as Darwin although I had expected that the inclusion of
 the CM kernel integrated with the FreeBSD kernel along with various
 other improvements would have made the Darwin software better.
 
 One thing that I can tell at the moment is that the FreeBSD OS seems
 to have better support for hardware since Darwin (Apple) if very
 specifically targeted to chosen hardware and also they seem to use
 these Carbon libraries for getting things to run which I do not kow
 where to locate more information on them.
 
 We were looking for a good OS to build from and now know that it will
 not be Linux, but on the BSD side of the house as I like what I have
 seen in both FreeBSD and also what little I have seen in Darwin.
 
 I would still like to do some more testing to get a better feel for
 what Darwin can offer, but the bottom line is that all of these are
 directly related to FreeBSD and are stable and fast compared to other
 non-FreeBSD related OS's.
 
 Thanks again and have a good day,
 
 Lonnie T. Cumberland
 OutStep Technologies Incorporated
 
 Email: [EMAIL PROTECTED]
[EMAIL PROTECTED]
 
 Open Source.. opening the doors for the future in the world of
 today
 
 
 
 On Mon, November 13, 2006 08:38, David Kelly wrote:
 On Mon, Nov 13, 2006 at 01:28:16AM -0800, Ted Mittelstaedt wrote:

 No, they used it all as the Darwin core.  Then they took Darwin and
  added their own GUI (used to be called Aqua) and that is MacOSX.
 X11 also comes on the MacOS X DVD, but is not installed by default.


 Bear in mind that the MacOS X gui does not translate directly into
 UNIX.  For example, you can load MacOS System 7 files with a
 separate resource and data fork onto MacOSX.  The MacOS X gui
 handles a lot of this kind of stuff.
 I lost you there. So what? The classic Mac file format is more
 advanced than a Unix (or Windows) flat file. The MacOS X Unix view of
 such files is morphed into a directory of files. The GUI turns such
 directories into a single application icon which *can* be opened to
 see what is inside but normally a double-click or open launches the
 app.

 Apple also doesen't use the UNIX security model.  As near as I can
 tell their core security model is an ACL model not a user/group
 model. Once again this is something that's handled elsewhere.

 Don't know how its done underneath but from a shell and ported
 applications it looks exactly the same:

 [EMAIL PROTECTED] {767} uname -a Darwin dot-matrix.local 8.8.0 Darwin
 Kernel Version 8.8.0: Fri Sep  8 17:18:57 PDT 2006;
 root:xnu-792.12.6.obj~1/RELEASE_PPC Power Macintosh powerpc
 [EMAIL PROTECTED] {768} id uid=503(dkelly) gid=501(dkelly)
 groups=501(dkelly), 81(appserveradm), 79(appserverusr), 80(admin)
 [EMAIL PROTECTED] {769} who am i dkelly   ttyp2Nov 13 08:17
 [EMAIL PROTECTED] {770} ls -ld . drwxr-xr-x   33 dkelly  dkelly  1122
 Nov  1 13:30 .
 [EMAIL PROTECTED] {771}

 The biggest problem with MacOS X is that a lot of UNIX software
 that runs on FreeBSD and such, is not ported to MacOSX, and it's
 very difficult to compile on MacOSX.
 Really? Good thing I didn't know compiling was difficult. The other
 day I wanted a MacOS X version of mkisofs. Copied cdrtools from
 /usr/ports/distfiles/ off a FreeBSD machine. Built without a complaint
  in moments. Not terribly thrilled with its default install location
 of /opt/schily/bin/ but at least its easy to remove.


 --
 David Kelly N4HHE, [EMAIL PROTECTED]
 ==
 ==
 Whom computers would destroy, they must first drive mad.

Well, when I was in an interview with a Mac lead recently, he was
telling me that there were issues with processor affinity in the Darwin
kernel, meaning that processes/threads would jump from processor to
processor, instead of staying on the same processor. This affects all
machines with multiple processors (be they virtual or physical) from
what I understand, and it does generate a lot more relative delay in
multithreaded code as the amount of time it takes to fully change
processor state is higher moving from one processor to another, when you
have to move cached memory back and forth down the memory model, etc.
Sad, but it's one of the current problems with the implementation of
the mach kernel-Darwin-over a monolithic kernel like FreeBSD's, Linux's
or Window's.
Something minor to ponder over..
- -Garrett
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using

Re: APC SMART-UPS 750 VA

2006-11-13 Thread Charles Trevor

Mark wrote:

-Original Message-
From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Jeff Palmer

Sent: maandag 13 november 2006 16:28
To: FreeBSD-Questions@freebsd.org
Subject: Re: APC SMART-UPS 750 VA

When I originally ported apcupsd (The actual application,
not the FreeBSD port) over to *BSD,  I was using a
Smart-UPS 1000 on the test machine. 
The 750 should work well.

Thanks. :) I'll go get one now.

- Mark

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

I have a  Smart-UPS RT 7500 X at work that works quite happily with 
apcupsd, as does the Back-UPS RS 1000 at home. Machines are running 6.1 
and 5.x.

HTH

Charlie

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

v6 speed compared to previous versions

2006-11-13 Thread Jim Pazarena


When I switched to 6.0, then 6.1, it was noticed by most of my clients
that my php/mysql/apache system slowed down a fair bit compared to previous
version (5.XX).

I always like to be on the bleeding edge of FreeBSD, but the performance
hit is being commented about by my (few) mysql/php clients.

I've seen the trolls of past about speed and previous versions, and I
would really be interested to hear the actual truth about 6.XX speed.
It is my understanding that 6.XX is more optimized for multi-processors,
and that for a single processor, 5.XX (or even 4.XX) outperforms 6.XX.

Would someone please outline the choices/drawbacks/concerns of even
considering going back a series?

Thanks, Jim
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Lowell Gilbert wrote:
 Garrett Cooper [EMAIL PROTECTED] writes:
 
 Just wondering if anyone else was experiencing the same issues that I
 am.. it's related to Samba-3.0.22c and sockets / filehandles.

 For some odd reason every couple days (~2 days) I have to restart the
 smbd daemon because it eats up 6000+ filehandles, just for sockets I
 assume (based on netstat output). At the point where it reaches 8000
 some filehandles open, the system refuses to fork, forcing me to login
 as root on the console directly instead of via SSH.

 My machine is a local / preferred master (smbd fights with XP Home
 clients because they want to be master browsers), with limited access
 to a few XP clients (4 clients at any given point in time), plus an
 XBox using smbclient with XBox Media Center.

 Helpful info:
 [EMAIL PROTECTED] /home/gcooper]# uname -a
 FreeBSD hoover.localdomain 6.1-RELEASE-p10 FreeBSD 6.1-RELEASE-p10 #9:
 Mon Oct 16 02:14:29 PDT 2006
 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/HOOVER  i386


 /usr/local/etc/smb.conf:
 [global]
   workgroup = WORKGROUP
   encrypt passwords = yes
   log file = /var/log/samba/log.%m
   log level = 3 passdb:4 auth:4
 #   log level = 5
   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
   local master =  yes
   preferred master = yes
   dns proxy = no
   guest ok = no

 [shared]
   path = /shared
   writeable = yes
   public = yes
   hosts deny = shiina pinocchio
   guest ok = no
   create mask = 0775

 The only changes that I've made to smb.conf between now and when I
 last accessed samba is that I've removed an unneeded share and removed
 guest advertisement for my shares (need password / username anyhow to
 login, so I figured I might as well..).
 
 This is a Samba issue, not an OS issue, as demonstrated by the fact
 that the system is able to close all of the handles when the daemon 
 is shut down.  
 
 Have you looked closely at the netstat output to which you referred?
 It would be interesting if all of the stuck connections were coming
 from the same host, or were in a particular state, etc.

I actually went in depth looking at the code for a long period of time
and it appears that it's expected for the smbd daemon to keep on
malloc'ing file descriptors (in this case sockets) until it can no
longer allocate file descriptors. Then it cleans house on all of the
file descriptors to reclaim them for itself.

That doesn't seem to free up resources for the OS though--or at least
it wasn't obvious when looking through the code, but maybe the sockets
reclaim themselves due to the implementation of sockets... Needless to
say this problem is new (since 3.0.22x at least), but then again I've
never really had XP clients connecting to my FreeBSD box en-masse like
this before. Usually I shared via SMB with my strictly my XP dualboot
client and the xbox I have in my possession.

My bug report that I made for this (closed it because I thought the
problem was resolved--process allocation) is:
https://bugzilla.samba.org/show_bug.cgi?id=4207.
- -Garrett
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFWMpl6CkrZkzMC68RAkbPAJ44GsTfcyOj9zEFV9oCXFGzq7tHKwCeKqO0
HoLa/My3E5FVgzqnmF40CU8=
=ZA7e
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: 6.2 Release delayed?

2006-11-13 Thread Peo Nilsson

On Mon, 2006-11-13 at 13:55 -0500, Kris Kennaway wrote:
 On Mon, Nov 13, 2006 at 08:24:47AM -0800, Joe wrote:
  A while back, I read that 6.2 was going to be released today. Now I see 
  that 6.2 won't be released until Mid December.
  
  Are FreeBSD releases put out whenever they're ready or is there a set 
  schedule that is adhered to?
  
  
  I only ask because I am trying to schedule some server upgrades and I 
  scheduled my QA tests for this week, thinking 6.2 would be released today.
  ___
 
 When they're ready.  They almost always slip because of bugs that
 users only bother to report late in the release cycle :-)
 
 Kris
Hmm. But the homepage says it's uploaded/uploading...?
I've been away from FSBD for a couple of years and right now I'm just
sitting waiting for 6.2 so I can get on it.
What do they mean by this ?
http://www.freebsd.org/releases/6.2R/schedule.html

Any one?

-- 
/Cheers Peo

--
Registered Linux User #432116, get counted at
http://counter.li.org
www.whylinuxisbetter.net


signature.asc
Description: This is a digitally signed message part

Re: (SAMBA) issue with filehandles being released under 6.1-RELEASE?

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Bill Moran wrote:
 In response to Lowell Gilbert [EMAIL PROTECTED]:
 
 Garrett Cooper [EMAIL PROTECTED] writes:

 Just wondering if anyone else was experiencing the same issues that I
 am.. it's related to Samba-3.0.22c and sockets / filehandles.

 For some odd reason every couple days (~2 days) I have to restart the
 smbd daemon because it eats up 6000+ filehandles, just for sockets I
 assume (based on netstat output). At the point where it reaches 8000
 some filehandles open, the system refuses to fork, forcing me to login
 as root on the console directly instead of via SSH.

 My machine is a local / preferred master (smbd fights with XP Home
 clients because they want to be master browsers), with limited access
 to a few XP clients (4 clients at any given point in time), plus an
 XBox using smbclient with XBox Media Center.
 
 Have you investigated the possibility that Samba legitimately needs more
 filehandles than that?  Even if there are only 4 clients, they may be
 opening 2000 files each (The output of smbstatus right before the system
 exhausted its filehandles would be interesting)  If that's the case, you
 can update the amount of available filehandles using sysctl or by
 recompiling your kernel.
 
 We have some PostgreSQL servers that require the filehandle limit be raised
 to 5, for example.

Will give that a thought--thanks!
- -Garrett

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFWMtF6CkrZkzMC68RAu37AJ94ynYimAmz7u5wJTsYqJPWD4hyUgCfcHun
PK7vUcytITYlRmfunW68qHU=
=Pfsj
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Laptop Wireless

2006-11-13 Thread Damian Wiest

The OP replied off-list with his output from dmesg.  I'm sending it back to the
list in the off-chance that someone knows more about this wireless adapter.

-Damian

- Forwarded message from Rem P Roberti [EMAIL PROTECTED] -

Delivered-To: [EMAIL PROTECTED]
X-ASG-Debug-ID: 1163208958-311e00bd-Xqh92z
X-Barracuda-URL: http://dfspam01.vail:80/cgi-bin/mark.cgi
X-Barracuda-Connect: cprobd02.vailsys.com[63.210.102.130]
X-Barracuda-Start-Time: 1163208958
Date: Fri, 10 Nov 2006 17:35:54 -0800
From: Rem P Roberti [EMAIL PROTECTED]
User-Agent: Thunderbird 1.5.0.8 (X11/20061109)
To: Damian Wiest [EMAIL PROTECTED]
X-ASG-Orig-Subj: Re: Laptop Wireless
Subject: Re: Laptop Wireless
In-Reply-To: [EMAIL PROTECTED]
X-Barracuda-Bayes: INNOCENT GLOBAL 0.5363 1. 0.7500
X-Barracuda-Virus-Scanned: by Barracuda Spam Firewall at vailsys.com
X-Barracuda-Spam-Score: 1.25
X-Barracuda-Spam-Status: No, SCORE=1.25 using global scores of TAG_LEVEL=2.8 
QUARANTINE_LEVEL=3.5 KILL_LEVEL=7.5 tests=BSF_RULE7568M
X-Barracuda-Spam-Report: Code version 3.02, rules version 3.0.25571
Rule breakdown below  pts rule name  description
 -- 
--
0.50 BSF_RULE7568M  BODY: Custom Rule 7568M


On Sun, Nov 05, 2006 at 07:57:03AM -0800, Rem P Roberti wrote:
  
Would someone point me in the right direction here.  I have an old 
Compaq Presario 1692 that my sister-in-law gave to me after she 
upgraded.  I installed FreeBSD 6.1 and everything is working fine.  
However, the laptop also came with a Belkin Wireless G (F5D7011) 
notebook card, and I would like to learn how to install the appropriate 
drivers for the card to work.  I am new to FreeBSD, and have glanced at 
the Handbook section dealing with wireless.  It's a little daunting at 
this time, and I haven't yet been able to make sense out of it with 
respect to this laptop and wireless card.  Any help in making the 
process understandable would be much appreciated.

Rem


Can you post the dmesg?

Assuming that particular device has a working driver, you can probably 
use ifconfig for most of the wireless settings.

-Damian

  


Thanks for the reply, Damian.  Here is the dmesg:

Copyright (c) 1992-2006 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
   The Regents of the University of California. All rights reserved.
FreeBSD 6.1-RELEASE #2: Fri Nov  3 08:22:20 PST 2006
   rem@:/usr/src/sys/i386/compile/REMKERNEL
Timecounter i8254 frequency 1193182 Hz quality 0
CPU: AMD-K6(tm) 3D processor (432.98-MHz 586-class CPU)
 Origin = AuthenticAMD  Id = 0x58c  Stepping = 12
 Features=0x8021bfFPU,VME,DE,PSE,TSC,MSR,MCE,CX8,PGE,MMX
 AMD Features=0x8800SYSCALL,3DNow
real memory  = 201261056 (191 MB)
avail memory = 187408384 (178 MB)
kbd1 at kbdmux0
K6-family MTRR support enabled (2 registers)
ACPI disabled by blacklist.  Contact your BIOS vendor.
cpu0 on motherboard
pcib0: AcerLabs M1541 (Aladdin-V) PCI host bridge pcibus 0 on motherboard
pir0: PCI Interrupt Routing Table: 7 Entries on motherboard
pci0: PCI bus on pcib0
agp0: Ali M1541 host to AGP bridge mem 0xe000-0xe3ff at device 
0.0 on pci0
pcib1: PCI-PCI bridge at device 1.0 on pci0
pci1: PCI bus on pcib1
pci1: display, VGA at device 0.0 (no driver attached)
isab0: PCI-ISA bridge at device 7.0 on pci0
isa0: ISA bus on isab0
pcm0: ESS Solo-1 (unknown vendor) port 
0x1080-0x10bf,0x1070-0x107f,0x1060-0x106f,0x10c4
-0x10c7,0x10c0-0x10c3 irq 5 at device 9.0 on pci0
cbb0: TI1211 PCI-CardBus Bridge at device 10.0 on pci0
cardbus0: CardBus bus on cbb0
pccard0: 16-bit PCCard bus on cbb0
pci0: simple comms at device 15.0 (no driver attached)
atapci0: AcerLabs M5229 UDMA33 controller port 
0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xfc
90-0xfc9f at device 16.0 on pci0
ata0: ATA channel 0 on atapci0
ata1: ATA channel 1 on atapci0
pci0: bridge at device 17.0 (no driver attached)
ohci0: AcerLabs M5237 (Aladdin-V) USB controller mem 
0xfc00-0xfc000fff irq 5 at dev
ice 20.0 on pci0
ohci0: [GIANT-LOCKED]
usb0: OHCI version 1.0, legacy support
usb0: AcerLabs M5237 (Aladdin-V) USB controller on ohci0
usb0: USB revision 1.0
uhub0: AcerLabs OHCI root hub, class 9/0, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
pmtimer0 on isa0
orm0: ISA Option ROMs at iomem 0xc-0xcb7ff,0xdc000-0xd on isa0
atkbdc0: Keyboard controller (i8042) at port 0x60,0x64 on isa0
atkbd0: AT Keyboard irq 1 on atkbdc0
kbd0 at atkbd0
atkbd0: [GIANT-LOCKED]
psm0: PS/2 Mouse irq 12 on atkbdc0
psm0: [GIANT-LOCKED]
psm0: model Generic PS/2 mouse, device ID 0
fdc0: Enhanced floppy controller at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 
on isa0
fdc0: [FAST]
fd0: 1440-KB 3.5 drive on fdc0 drive 0
ppc0: Parallel port at port 0x378-0x37f irq 7 on isa0
ppc0: Generic chipset (EPP/NIBBLE) in COMPATIBLE mode
ppbus0: Parallel port bus on ppc0
plip0: PLIP network interface on ppbus0
lpt0: Printer on ppbus0
lpt0:

Re: 6.2 Release delayed?

2006-11-13 Thread Eric


Peo Nilsson wrote:

On Mon, 2006-11-13 at 13:55 -0500, Kris Kennaway wrote:

On Mon, Nov 13, 2006 at 08:24:47AM -0800, Joe wrote:
A while back, I read that 6.2 was going to be released today. Now I see 
that 6.2 won't be released until Mid December.


Are FreeBSD releases put out whenever they're ready or is there a set 
schedule that is adhered to?



I only ask because I am trying to schedule some server upgrades and I 
scheduled my QA tests for this week, thinking 6.2 would be released today.

___

When they're ready.  They almost always slip because of bugs that
users only bother to report late in the release cycle :-)

Kris

Hmm. But the homepage says it's uploaded/uploading...?
I've been away from FSBD for a couple of years and right now I'm just
sitting waiting for 6.2 so I can get on it.
What do they mean by this ?
http://www.freebsd.org/releases/6.2R/schedule.html

Any one?



that schedule is the perfect world schedule. things have slipped. we are 
still in the BETA stages for 6.2 at the moment.


Eric
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: pkg_cutleaves listing needed ports as leaf nodes.....

2006-11-13 Thread Eric Schuele


On 11/13/06 09:35, Lowell Gilbert wrote:

Eric Schuele [EMAIL PROTECTED] writes:


When I use `pkg_cutleaves -l` to list leaf nodes.  It is listing
things I know are required by other apps.  These aren't build
dependencies.

For example, it lists g-wrap, and libpcap.  If I remove g-wrap, my
gnucash2 immediately refuses to run.  And I know libpcap was an
option I selected for NTop.  There are others as well.  I have
noticed that a `make  pretty-print-run-depends-list` is empty for
gnucash2.  Is that significant?

Why would these not be +REQUIRED_BY something?  `pkgdb -F` doesn't
mention anything at all.

If something has no +REQUIRED_BY file... how can I go about
determining why its on my machine or which port installed it?
Obviously top level items I installed aside.

Thanks.

[Running 6.2-PRERELEASE]



The requirements files are definitely supposed to be there, and their
non-presence constitutes corruption in your package database.
pkg_cutleaves can't figure out requirements that aren't recorded, so
getting the package database restored has to be your first step.  


The obvious way of fixing the package database is to reinstall all of
your ports before removing the leaves.  You may not need to use such a
brute-force solution, though...  If you have backups of /var/db/pkg,
you could go through and try to find the dependencies as they existed
when the backup was made.  Obviously, this might not be fully
up-to-date; however, it's likely to be better than what you have now.

Good luck.


Thanks for the response.

Well,  I would accept this without any question... especially given the 
full story of my machine (I did loose /var... I did reinstall 
everything... but after reinstalling everything, there was a different 
number of ports installed??? I then pulled out a backup and grabbed some 
straglers and got closer.).


However,  sticking with my gnucash2 example.  You would think if I were 
to uninstall gnucash2, uninstall g-wrap, and reinstall gnucash2, it 
would correct this problem.  Yet it remains.  It seems odd to me.  In 
fact looking at the backup I have, g-wrap is not +REQUIRED_BY anything. 
 I wonder if the port(s) is somehow broken?


Either way... I think I'm gonna just wait till 6.2 is cut and then 
rebuild (again).  Simply because this is quite a systemic problem. I'm 
not sure I can confidently clean it up 100%.  If I fail to register (for 
lack of a better word) some port(s) in the database, they will never get 
updated, as my system will not know they are present.  And eventually 
things will get too out of whack... odd things will begin happening... 
etc, etc.  Lots of posts to questions@ later... someone will say just 
rebuild the d#$% thing.  :)  I'll re-evaluate the situation at that time.


Again, thanks for the response.

--
Regards,
Eric
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

using ipfw for NAT mapping in a 1:1 fake:real IPs for VPN

2006-11-13 Thread James Bakner


Hi,

I have a pretty complicated setup currently and am trying to figure out 
exactly how to implement it.  I'm pretty unfamiliar with freebsd, the 
last incarnation I used was 4.3 and I only used it for a few months 
before moving to linux.


I have a VPN setup for an IP range 10.0.0.1-10.0.0.255 for clients 
connecting using OpenVPN.


Now I am  handling NAT for these up to 5 IPs.  I have 5 real IPs that 
are allocated to the machine that the VPN server runs on (OpenVPN).  I 
need each client to have a real and unique IP, although not from the 
client's viewpoint.


From my understanding, I would get OpenVPN to give out IPs 
10.0.0.1-10.0.0.5. 

I would then set up rather than a standard NAT for like 192.168.0.0/24 
through A.B.C.D (single real IP)


I would now set up
nat 10.0.0.1 through A.B.C.D
nat 10.0.0.2 through A.B.C.E etc

Does this make sense and am I missing something?  These would be going 
through BSD's tun-type device.


Thanks,

-James
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Question about Ventrilo port at startup

Miles [EMAIL PROTECTED] writes:

 Running 6.1 installed from the most recent .iso CD and sync'd ports
 through CVS, I wish to have the Ventrilo port start up as a daemon
 upon reboot, however, I'm not having any success in having this
 happen. I did some searching with Google and found little information
 specific to FreeBSD for Ventrilo at all, let alone a start up
 script. The port has one, but it seems to not work, rather it is that
 I do not know how to make it work properly. Trying to run it results
 in it exiting out without anything starting.
 Searching the Handbook, I found that section on rc.d, and modifying a
 sample script there I was able to get Ventrilo to start from the
 script, however, it still wouldn't work if I put a line in
 /etc/rc.conf
 ventrilo_enable=YES

That should be enough.  Can you try calling the script by hand, giving
the forcestart parameter?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

USB Wireless

As you can no doubt see, I have been going round and round with trying 
to get an old Compaq Presario connected via wireless.  The original 
Belkin card that came with the laptop does not seem to be supported.  At 
least it does not show up in the handbook under supported devices.  
Further, it does not show up at all in the dmesg.  However, I do have a 
Linksys USB wirelss adapter that does show up in the USB, correctly 
identified in the dmesg under ugen0.  I cannot find any info on wireless 
USB devices in the handbook, and am wondering if anyone has had any 
success connecting with these wireless adapters.


Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?

2006-11-13 Thread Erik Norgaard


Leo L. Schwab wrote:

I recently installed FreeBSD 6.1 on my gateway.  It replaced an
installation of FreeBSD 4.6.8 (fresh install, not an upgrade) on which I had
disabled the SSH server.  Since all the bugs in SSH are fixed now ( :-) ), I
thought I'd leave the server on, and am somewhat dismayed to discover that I
now get occasional brute-force/dictionary attacks on the port.


Whichever service you have running, if you look in the log you will find 
attempts of attack, ssh is no different, it's a target.


Honestly, I wouldn't worry about it: review your config and make some 
simple choices to reduce the noise, see this article:


  http://www.securityfocus.com/infocus/1876

Rather than reposting myself - this issue is regularly debated, I think 
last time (or last time I participated) was debated 19-09-2006. Check 
the archive.


Cheers, Erik

--
Ph: +34.666334818  web: http://www.locolomo.org
X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt
Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Boot from CD

2006-11-13 Thread Andrea Brancatelli

Hello everybody.

 

I'm working on a thing I never tried before. I did some googling but I don't
think I haven't found any correlated to this.

 

The situation is pretty simple: I'm configuring a FreeBSD (6.1) server to
boot from a SAN thru a QLogic 2340 Fiber Channel card. This in general is
not a problem as I already have another working machine with this solution. 

 

Now for a couple of reason not related to FreeBSD this new machine won't yet
_boot_ from the SAN itself but at the same time have all the system
installed on the SAN. What I need to do is have a boot device that loads the
bootsector, the kernel and then starts everything else from the disk in SAN.

 

I thought about accomplishing this with a BOOT-CD that starts up the kernel
and then from the fstab loads the /, /etc, /usr and so on from the SAN.

 

Now my question is this: how do the kernel know where to search the fstab
(considered that the fstab says where to find the /etc)? I mean: I suppose I
have to put on the CDROM an exact /etc/fstab for that installation.? Or this
could be avoided? Also because I may need to edit the fstab for the machine
without having to reburn the CD. so what? Or maybe the kernel can actually
just be read from the CD and then everything else from the ( SAN | local )
drive? Am I missing something?

 

I'm yet in the make buildworld buildkernel stage so maybe when making the
make distribution to create the ISO everything will appear clearer to me but
right now something it's not really clear.

 

I hope the scenario is clear.

 

Any suggestion? Any link to any kind of documentation?

 

Thank you very much.

 

Andrea

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: image based stock spam

2006-11-13 Thread Martin Hepworth


Brian

the SARE Stock rules (and others) from www.rulesemporium.com are equally
good at catching this stuff, and a lot lot lighter on CPU cycles.

--
Martin

On 11/13/06, Brian [EMAIL PROTECTED] wrote:


Looks like the preferred approach many folks  re the above problem is
fuzzyocr?   Since there isn't a port for  that, is there another FreeBSD
solution  worth  mentioning here?

Brian

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
[EMAIL PROTECTED]


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Testing firewire

2006-11-13 Thread Erik Norgaard


David Kelly wrote:

On Nov 12, 2006, at 5:03 PM, Erik Norgaard wrote:

So I thought: Is this like ethernet that I need a crossed cable or  
can I connect the two with an ordinary cable and check that it works?


There is no master nor slave in Firewire, all are peers, and all have  
(essentially) the same socket. If the cable fits, it works. Witness  
the difference between a hardware standard driven by Apple (Firewire)  
and one from Intel/Microsoft (USB).


You might also try fwe(4) if your other OS's are capable of doing IP  
over firewire.


Thanks, both run FreeBSD and I was thinking of trying fwe. I just don't 
know enough to feel certain I wouldn't short circuit and fry both 
devices if I connected them with a standard cable.


Cheers, Erik
--
Ph: +34.666334818  web: http://www.locolomo.org
X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt
Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: USB Wireless