/usr/X11R6 before /usr/local in ldconfig?
I noticed the other that that in -STABLE that /usr/X11R6 was in front of /usr/local for libraries. This results in any port that uses a library from another port to look for /usr/X11R6 first, and then /usr/local. I don't know if this would cause any real problems other than confusion for people, but with the Xorg upgrade that installs into /usr/local, is this just an oversight? I'm not too familiar with the details of how FreeBSD loads libraries(although I have noticed at least one peculiarity), so I don't know if any serious issues can happen(I renamed X11R6 and things worked ok). ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
unable to install XFree86
# cd /usr/ports/x11/XFree86 # make install. == XFree86-3.3.6_11 is marked as broken: Does not build on FreeBSD =6.x. *** Error code 1 Is that means, the XFree86 should not install and run on my newly installed FreeBSD 6.2-Release ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Installing freeBSD on an Intel RAID5 partition
I couldn't find any answer to the question.The problem is that the installer shows up all the disks instead of proposing to install somewhere on the RAID5 partition, in other words, it just doesn't recognize the RAID5. Is it possible at all to install freeBSD on one of those RAID?? I've found out that this is also a problem with the few linux distros I've tried. I've heard it was possible now but I'm a little bit surprised by the slow adoption I must say. I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). -nodje ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: unable to install XFree86
No. Instead of XFree86, you should use the X.org X server. The meta-port for it is available at: /usr/ports/x11/xorg. - Akshay - Original Message From: williamkow [EMAIL PROTECTED] To: freebsd-questions@freebsd.org freebsd-questions@freebsd.org Sent: Wednesday, October 10, 2007 12:23:26 AM Subject: unable to install XFree86 # cd /usr/ports/x11/XFree86 # make install. == XFree86-3.3.6_11 is marked as broken: Does not build on FreeBSD =6.x. *** Error code 1 Is that means, the XFree86 should not install and run on my newly installed FreeBSD 6.2-Release ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Building a website is a piece of cake. Yahoo! Small Business gives you all the tools to get online. http://smallbusiness.yahoo.com/webhosting ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: unable to install XFree86
On Wed, 10 Oct 2007 15:23:26 +0800 williamkow [EMAIL PROTECTED] wrote: # cd /usr/ports/x11/XFree86 # make install. == XFree86-3.3.6_11 is marked as broken: Does not build on FreeBSD =6.x. *** Error code 1 Is that means, the XFree86 should not install and run on my newly installed FreeBSD 6.2-Release ? Yes. You need to install xorg instead. You can use pkg_add -r xorg which would be quicker than building the port. It's explained very well in the handbook, which also tells how to configure it when the install has finished: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-install.html There's also a section (5.7.3.1) on enabling The KDE Display Manager: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x11-wm.html -- Thanks, John. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
Sounds like you have one of those 'fake' raid controllers (http://linux-ata.org/faq-sata-raid.html ), where its software raid with a hook into the bios so its bootable, while the work is done in software. This isnt supported by Freebsd (the fake raid 1 is supported by the ataraid driver for many chipsets though.) I dont know of any work to get it supported, although if you want software RAID5 gvinum supports it (and thats actively worked on.) Vince nodje wrote: I couldn't find any answer to the question.The problem is that the installer shows up all the disks instead of proposing to install somewhere on the RAID5 partition, in other words, it just doesn't recognize the RAID5. Is it possible at all to install freeBSD on one of those RAID?? I've found out that this is also a problem with the few linux distros I've tried. I've heard it was possible now but I'm a little bit surprised by the slow adoption I must say. I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). -nodje ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
offline installation of Xorg - Re: unable to install XFree86
How can I install Xorg, if there is no internet connection ? I means offline installation of Xorg ? I got a lot error codes, relating to accessing the http sites. Please advise. Thank you. __ John Murphy wrote: On Wed, 10 Oct 2007 15:23:26 +0800 williamkow [1][EMAIL PROTECTED] wrote: # cd /usr/ports/x11/XFree86 # make install. == XFree86-3.3.6_11 is marked as broken: Does not build on FreeBSD =6.x. *** Error code 1 Is that means, the XFree86 should not install and run on my newly installed FreeBSD 6.2-Release ? Yes. You need to install xorg instead. You can use pkg_add -r xorg which would be quicker than building the port. It's explained very well in the handbook, which also tells how to configure it when the install has finished: [2]http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-install.html There's also a section (5.7.3.1) on enabling The KDE Display Manager: [3]http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x11-wm.html References 1. mailto:[EMAIL PROTECTED] 2. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-install.html 3. http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x11-wm.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NVidia 100.14.19 for FreeBSD i386 released
Hi, see: http://www.nvnews.net/vbulletin/showthread.php?t=100077 is it working for anybody? regards, usleep ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: offline installation of Xorg - Re: unable to install XFree86
On Wed, 10 Oct 2007 18:37:26 +0800 williamkow [EMAIL PROTECTED] wrote: How can I install Xorg, if there is no internet connection ? I means offline installation of Xorg ? I got a lot error codes, relating to accessing the http sites. Please advise. Thank you. Presuming you have the install disk 1: Log in as root and type sysinstall Down arrow to Configure and press enter Down arrow to Distributions, press enter Down arrow all the way to X.Org, press enter Select the parts of the distribution set you require in a similar way. Press the tab key to switch between the selections and the OK box. When you're happy with your selections up arrow to Exit which will take you back to the previous page. Press enter again and you should then be able to choose the installation media. It is harder to describe than to do. -- Thanks, John. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NVidia 100.14.19 for FreeBSD i386 released
Not on amd64 but no nvidia kernel module ever has On 10/10/07, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi, see: http://www.nvnews.net/vbulletin/showthread.php?t=100077 is it working for anybody? regards, usleep ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: X (xorg 7.3) consumes all the CPU
On Wednesday 10 October 2007 05:01:50 Paul Schmehl wrote: Is there a way to start a process so that memory and CPU usage can be tracked closely enough to determine what the cause of 100% CPU use would be? I've got a box, recently installed 6.2 RELEASE with xorg 7.3 installed, and when X is started, CPU goes to 100% and stays there. Here's the bad machine 1510 pauls 1 00 277M 7076K rdnrel 0 13:41 100.05% Xorg To shoot the obvious: it's not running as root here. No idea what rdnrel is for CPU state. ktrace(1) should show what it's doing. If that's not enough info, you could always attach gdb to it. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: X (xorg 7.3) consumes all the CPU
On 2007-10-09 22:01, Paul Schmehl [EMAIL PROTECTED] wrote: Is there a way to start a process so that memory and CPU usage can be tracked closely enough to determine what the cause of 100% CPU use would be? I've got a box, recently installed 6.2 RELEASE with xorg 7.3 installed, and when X is started, CPU goes to 100% and stays there. Here's the bad machine 1510 pauls 1 00 277M 7076K rdnrel 0 13:41 100.05% Xorg Here's my desktop 868 root 1 960 202M 134M select 119:09 0.00% Xorg As you can see, memory and CPU use is sky high on the bad box. Rather than blow it away and reinstall, I'd like to try to figure out what's wrong and fix it. What utilities could I use to do that? Are you running `powerd' in `adaptive' mode on the 100%-CPU system? I've seen this happening on FreeBSD 7.0-CURRENT a few times, when powerd(8) lowered the CPU frequency to a minimum and X.org started consuming 100% CPU. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Nedit after xorg 7.3
Hi list, After upgrading xorg to 7.3, nedit has started scrolling funnily on my system. It used to work just fine, but after the upgrade scrolling down (that is moving the text cursor up) one line at a time using the arrow keys replicates the same line on each text line in view. Scrolling down still works fine?!? Page-up and -down works fine as always. Has anyone else experienced this and perhaps even solved the issue?? br Nikolaj Thygesen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Booting a GELI encrypted hard disk
Hi all, I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. All of my searches lead to the same problem...GELI passphrase can not be entered correctly upon boot. I have tried everything I have found on the web (including disabling 'kbdmux' in the kernel) to no avail. Is there any chance that anyone here has found a resolution to this problem, in the 6.x branch, and if not, has it been looked/resolved within -current? Does anyone have a suggestion for a workaround? Thanks for any advice. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amd64_set_gsbase()
On Tuesday 09 October 2007 02:48:51 Mihai Donțu wrote: I have *one* more question: maybe I don't fully understand the hole BASE thing, but since the FreeBSD kernel does not preserve %gs and %fs, what is the purpose of amd64_set_XXbase()? The %fs, %gs registers and fsbase and gsbase MSRs are separate registers. When you write %gs:offset, you actually get (gsbase+offset), so the actual value of %gs doesn't matter. There are two ways to set gsbase. One is by using the privileged instruction wrmsr to set gsbase directly (full 64bit base address), which is what amd64_set_gsbase() exposes to userland. The other is by loading a descriptor selector in %gs in which case gsbase will be set to the base address (only 32bit base address) of a descriptor entry in either the GDT or LDT. To get back to what you are trying to do, because %gs isn't preserved, I think you should avoid writing to it and instead strictly use amd64_set_gsbase(). But from what you've written, I'm guessing you're already doing this, so the next thing to try is to create threads with PTHREAD_SCOPE_SYSTEM or use libthr instead of libpthread, because if I'm not mistaken, PTHREAD_SCOPE_PROCESS in libpthread doesn't preserve gsbase either. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Samba and Swat are not restarting the daemons.
Dear all, I have install samba version:3.0.26a from ports, the daemons appear to be working fine by enabling the apropiate parameters in rc.conf, yet I am speriencing the issue where SWAT is showing as the smbd and nmbd are not running nor will they restart. Can someone point me in the right direction of what is going on. Why is swat no allowing the process to be manipulated accordingly? Thanks in advance. Lisandro Grullon _ Help yourself to FREE treats served up daily at the Messenger Café. Stop by today. http://www.cafemessenger.com/info/info_sweetstuff2.html?ocid=TXT_TAGLM_OctWLtagline___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: amd64_set_gsbase()
On Wednesday 10 October 2007, Tijl Coosemans wrote: On Tuesday 09 October 2007 02:48:51 Mihai Donțu wrote: I have *one* more question: maybe I don't fully understand the hole BASE thing, but since the FreeBSD kernel does not preserve %gs and %fs, what is the purpose of amd64_set_XXbase()? The %fs, %gs registers and fsbase and gsbase MSRs are separate registers. When you write %gs:offset, you actually get (gsbase+offset), so the actual value of %gs doesn't matter. There are two ways to set gsbase. One is by using the privileged instruction wrmsr to set gsbase directly (full 64bit base address), which is what amd64_set_gsbase() exposes to userland. The other is by loading a descriptor selector in %gs in which case gsbase will be set to the base address (only 32bit base address) of a descriptor entry in either the GDT or LDT. Invaluable info. Thanks! :) To get back to what you are trying to do, because %gs isn't preserved, I think you should avoid writing to it and instead strictly use amd64_set_gsbase(). But from what you've written, I'm guessing you're already doing this, so the next thing to try is to create threads with PTHREAD_SCOPE_SYSTEM or use libthr instead of libpthread, because if I'm not mistaken, PTHREAD_SCOPE_PROCESS in libpthread doesn't preserve gsbase either. Well, I'm am not setting (loading) %gs, I *only* do amd64_set_gsbase() and expect that *all* instructions such as: mov %gs:0x10,%rax to be valid (not segfault). I don't really care what the value of %gs is as long as *all* the instructions as the above work and access the memory specified in amd64_set_gsbase( addr ). I was under the (wrong) impression that the value of %gs is important, that's why I wanted it preserved, but if you say: [...] When you write %gs:offset, you actually get (gsbase+offset), so the actual value of %gs doesn't matter. then I don't care if %gs' value gets lost over context switches as long as mov %gs:0x10,%rax and other such instructions, work. However, it turns out that amd64_set_gsbase() is not enough :( Either: a) someone *does* set %gs (and is not me); b) the 'gsbase' gets lost; The thing is I've ported my emulator to Linux and there I use modify_ldt() and then some __asm__ voodoo to load %gs, because (quote from man): - ARCH_SET_GS is disabled in some kernels. - Context switches for 64-bit segment bases are rather expensive. It may be a faster alternative to set a 32-bit base using a segment selector by setting up an LDT with modify_ldt(2) [...] Anyhoo, I'll try to use 'libthr' and see if this helps. Thanks, again! -- Mihai Donțu ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
On 10/10/07, Steve Bertrand [EMAIL PROTECTED] wrote: Hi all, I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. All of my searches lead to the same problem...GELI passphrase can not be entered correctly upon boot. I have tried everything I have found on the web (including disabling 'kbdmux' in the kernel) to no avail. Is there any chance that anyone here has found a resolution to this problem, in the 6.x branch, and if not, has it been looked/resolved within -current? Does anyone have a suggestion for a workaround? You could always use a key without a passphrase... unsafe as it is, put the key on a usb device that you remove once the machine has booted? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
Daniel Marsh wrote: On 10/10/07, Steve Bertrand [EMAIL PROTECTED] wrote: Hi all, I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. All of my searches lead to the same problem...GELI passphrase can not be entered correctly upon boot. I have tried everything I have found on the web (including disabling 'kbdmux' in the kernel) to no avail. Is there any chance that anyone here has found a resolution to this problem, in the 6.x branch, and if not, has it been looked/resolved within -current? Does anyone have a suggestion for a workaround? You could always use a key without a passphrase... unsafe as it is, put the key on a usb device that you remove once the machine has booted? That is what I was going to try next. The 'howtos' I've been reading require putting many of the boot files on the thumb drive, so would it even be possible to unmount/remove the usb stick after the machine is booted up? If I was to do it this way, I would likely use two separate key files, on two separate USB sticks. Reference: http://www.proportion.ch/index.php?page=31 Thanks for your feedback. Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Bind configuration in FreeBSD
Hi, I as know default version (without port upgrading) is Bind 9.3.3 in Freebsd 6.2. You can see the version, executing named -v command. Do a ps -ax | grep named and see whether named is running or not. Also you can find the Bind logs in /var/named/var/log directory (chrooted directory), if it is running check your configuration with dig or nslookup if not - use /usr/sbin/named-checkconf and /usr/sbin/named-checkzone to inspect the problem. Please post your error text to help you furthermore. Regards -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of dhaneshk k Sent: Friday, October 05, 2007 5:09 PM To: freebsd-questions@freebsd.org Subject: Bind configuration in FreeBSD Hi friends , I have a FreeBSD fresh installation in a new server machine. Here I wants to run my DNS server , by default I found the in /etc/namedb dir, named.conf file master dir etc in the m/c after OS installation , so I configured my DNS entries(I mean named.conf and zone file for my domain I configured ) , and after that I tried to start /etc/rc.d/named start but no message that it is starting or not . I would like to ask you whether I have to install , bind 8 or bind 9 through /usr/ports/dns to make this machine as a DNS server or by default (I mean fresh installation) the bind is coming? (because I can see /etc/namedb dir and named.conf file ,master dir , etc ... there) pls guide me to setup Bind in FreeBSD6.2 to make A DNS server for my own domain thanks in Advance kk _ Search from any Web page with powerful protection. Get the FREE Windows Live Toolbar Today! http://toolbar.live.com/?mkt=en-in__ _ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Push/Stream Data TO a Server
Hi; I have a client that has video cameras (D-Link) and wants to stream video on his Web site. The problem is that his Internet connection is such that the IP address is dynamic. Can I push the data to my server? How? I don't need to store it; I just need to make it available for viewing. Tutorials somewhere? TIA, Tony Email and AIM finally together. You've gotta check out free AOL Mail! - http://mail.aol.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: courier-authlib problems.
yea ran into a similar issue yesterday myself. i had to make this modification in /usr/local/etc/courier-imap/imapd-ssl: TLS_PROTOCOL=SSL23 believe old default value was: TLS_PROTOCOL=SSL3 HTH -pete Thanks! This solved my problem as well! Tankko ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem compiling kdegraphics (exr problem?)
On Tuesday 09 October 2007 18:04:53 John Nielsen wrote: Quoting John Nielsen [EMAIL PROTECTED]: Quoting Will Wainwright [EMAIL PROTECTED]: I'm having some trouble getting kdegraphics to update. I use portmanager to keep my ports updated. Usually this works well, but the past couple of days portmanager did have problems with the latest OpenEXR update. As to my problem with kdegraphics, here is what I know. It compiles until this point: gmake[3]: Entering directory `/usr/ports/graphics/kdegraphics3/work/kdegraphics-3.5.7/kfile-plugins/e xr' /usr/local/bin/moc ./kfile_exr.h -o kfile_exr.moc if /bin/sh /usr/local/bin/libtool --silent --tag=CXX --mode=compile c++ -DHAVE_CONFIG_H -I. -I. -I../.. -Drestrict= -I/usr/local/include -I/usr/local/include -I/usr/local/include/OpenEXR -D_THREAD_SAFE -pthread -DQT_THREAD_SUPPORT -I/usr/local/include -I/usr/local/include -I/usr/local/include -D_GETOPT_H -D_THREAD_SAFE -Wno-long-long -Wundef -Wall -W -Wpointer-arith -DNDEBUG -DNO_DEBUG -O2 -O2 -fno-strict-aliasing -pipe -Wno-non-virtual-dtor -fno-exceptions -fno-check-new -fno-common -DQT_CLEAN_NAMESPACE -DQT_NO_ASCII_CAST -DQT_NO_STL -DQT_NO_COMPAT -DQT_NO_TRANSLATION -fexceptions -MT kfile_exr.lo -MD -MP -MF .deps/kfile_exr.Tpo -c -o kfile_exr.lo kfile_exr.cpp; \ then mv -f .deps/kfile_exr.Tpo .deps/kfile_exr.Plo; else rm -f .deps/kfile_exr.Tpo; exit 1; fi kfile_exr.cpp: In member function `virtual bool KExrPlugin::readInfo(KFileMetaInfo, uint)': kfile_exr.cpp:229: error: `hasutcOffset' was not declared in this scope kfile_exr.cpp:229: warning: unused variable 'hasutcOffset' kfile_exr.cpp: At global scope: kfile_exr.cpp:165: warning: unused parameter 'what' gmake[3]: *** [kfile_exr.lo] Error 1 gmake[3]: Leaving directory `/usr/ports/graphics/kdegraphics3/work/kdegraphics-3.5.7/kfile-plugins/e xr' gmake[2]: *** [all-recursive] Error 1 gmake[2]: Leaving directory `/usr/ports/graphics/kdegraphics3/work/kdegraphics-3.5.7/kfile-plugins' gmake[1]: *** [all-recursive] Error 1 gmake[1]: Leaving directory `/usr/ports/graphics/kdegraphics3/work/kdegraphics-3.5.7' gmake: *** [all] Error 2 *** Error code 2 Stop in /usr/ports/graphics/kdegraphics3. *** Error code 1 At which point the build fails. I'm not sure if this is a problem with KDE or if there is still something wrong with my install of OpenEXR. Any advice as to how to proceed? I ran in to this myself last night. I corrected it by taking the following steps. I use portupgrade so I won't give specific commands: Make sure your ports tree is up-to-date. Force-uninstall graphics/OpenEXR. Force-reinstall graphics/ilmbase. Re-install (manually if necessary) graphics/OpenEXR. Fix up dependencies. Continue with other upgrades. Or better yet, follow the (similar but not identical) directions in ports/UPDATING, which I didn't bother to check recently until now. Well, it's weird that fixed it for you, because kdegraphics needs to be patched. Here's the work-around: [EMAIL PROTECTED] /usr/ports/graphics/kdegraphics3 # fetch -o files/patch-kfileplugins-kexr.cpp http://su-se.lunar-linux.org/lunar/patches/kdegraphics-3.5.7-openexr-1.6.0.patch files/patch-kfileplugins-kexr.cpp 100% of 830 B 4052 kBps [EMAIL PROTECTED] /usr/ports/graphics/kdegraphics3 # perl -pi -e 's#branches/KDE/3.5/kdegraphics/##' \ files/patch-kfileplugins-kexr.cpp [EMAIL PROTECTED] /usr/ports/graphics/kdegraphics3 # make configure (cd `make -V WRKDIR`/`make -V PORTNAME`-`make -V PORTVERSION`/kfile-plugins/exr gmake clean all /dev/null) kfile_exr.cpp:166: warning: unused parameter 'what' -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sudo doesn't log anything
Pieter de Goeje a écrit : Sudo by default logs with facility 'local2' and priority 'notice'. Neither one is specified in your syslog.conf. Yes, it fix my problem ! Thanks very much ! Nicolas -- Nicolas Letellier, administrateur systèmes Site personnel : http://nicoelro.net Curriculum-vitae : http://nletellier.info ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sudo doesn't log anything
On Wed, 2007-10-10 at 18:38 +0200, Nicolas Letellier wrote: Pieter de Goeje a écrit : Sudo by default logs with facility 'local2' and priority 'notice'. Neither one is specified in your syslog.conf. To set the facility in sudoer(5): Defaultssyslog=auth Or local0-7 if you have a lot of action. ~BAS Yes, it fix my problem ! Thanks very much ! Nicolas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: what kind of UPS will work best?
On Tue, 2007-10-09 at 11:36 +0800, Erich Dollansky wrote: Hi, Ray wrote: On Monday 08 October 2007 8:36:39 pm Erich Dollansky wrote: Hi, Rob wrote: think. Most the draw in a residence is the HVAC. what is this? HVAC? Heating Ventilation Air Conditioning move the machine around to be used for heating during winter. Compared to that PCs are a minor consumer. Erich Just my 2 cents. As others have said, go with APC. I just recently hooked up a 2200XL rack mounted unit which is running 6 servers. A recent calibration test showed that the unit will run these servers for about 3 hours before it's absolutely necessary to shut down the power. Another nice thing about the APC's is that you can find SNMP/Web modules for some of their units which will generate SNMP traps when events occur with the power. I'm using apcupsd from the ports collection to control the servers in the event of a long term power outage. It has a configurable master/slave mode. You connect the master to the UPS and then slave from the master to other servers. My UPS and server are older so the connection between them is serial. You may get different results with newer hardware that is USB or if you choose to go the SNMP route. -- Chris -- __o All I was doing was trying to get home from work. _`\,_ -Rosa Parks ___(*)/_(*)___ Christopher Sean Hiltonchris | at | vindaloo.com pgp key: D0957A2D/f5 30 0a e1 55 76 9b 1f 47 0b 07 e9 75 0e 14 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Push/Stream Data TO a Server
On Wednesday 10 October 2007 16:56:59 [EMAIL PROTECTED] wrote: I have a client that has video cameras (D-Link) and wants to stream video on his Web site. The problem is that his Internet connection is such that the IP address is dynamic. Can I push the data to my server? How? I don't need to store it; I just need to make it available for viewing. Tutorials somewhere? TIA, Probably easiest solved using dyndns.com or similar services. Or setup your own. The website uses a hostname. As soon as he connects, he updates the DNS to his new IP using the various programs available to do that. Then the website doesn't care what his IP is. If this isn't an option, it depends what he's using to stream the video. Icecast[1] on your server would do the job. If the mount point isn't connected by a client[2], it will return 404. I remember from a few years back, Apple's and Real's media servers have similar features. Your customer should then be configured to stream to your server. [1] audio/icecast2 [2] audio/ices -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Portupgrade prompts
This has no doubt been covered before, but for some reason I am unable to get to the archives. Anyway, is there a way to accept the default prompts that occasionally occur while doing a ports upgrade? If I've been a way for a while and there are numerous ports that need upgrading there might be any number of prompts that occur during the upgrade process, and it would be nice to be able to have some way of accepting the defaults so that the process can carry on. Its the pits starting the process and then going to bed only to find in the morning that the upgrade process hung up waiting for a prompt that occurred right after you left the room. TIA. Rem ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bind configuration in FreeBSD
On Fri, Oct 05, 2007 at 05:29:39PM +0500, Narek Gharibyan wrote: Hi, Please don't top-post. I as know default version (without port upgrading) is Bind 9.3.3 in Freebsd 6.2. You can see the version, executing named -v command. Do a ps -ax | grep named snip -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of dhaneshk k Sent: Friday, October 05, 2007 5:09 PM To: freebsd-questions@freebsd.org Subject: Bind configuration in FreeBSD Hi friends , I have a FreeBSD fresh installation in a new server machine. Here I wants to run my DNS server , by default I found the in /etc/namedb dir, named.conf file master dir etc in the m/c after OS installation , so I configured my DNS entries(I mean named.conf and zone file for my domain I configured ) , and after that I tried to start /etc/rc.d/named start but no message that it is starting or not . I think that you made a small mistake. If you want to start a daemon, you have to enable it in /etc/rc.conf, otherwise it won't start (every rc script sources /etc/rc.conf with the line 'load_rc_config'). Try adding named_enable=YES to /etc/rc.conf, and try again. If you look in /etc/defaults/rc.conf, and search for 'named', you can see that it is disabled by default. You can also see there the rest of the options you can set for named. Hope this helps, Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgphjyH0ZdKS9.pgp Description: PGP signature
Re: Portupgrade prompts
On Wednesday 10 October 2007 19:25:24 Rem P Roberti wrote: This has no doubt been covered before, but for some reason I am unable to get to the archives. Anyway, is there a way to accept the default prompts that occasionally occur while doing a ports upgrade? If I've been a way for a while and there are numerous ports that need upgrading there might be any number of prompts that occur during the upgrade process, and it would be nice to be able to have some way of accepting the defaults so that the process can carry on. Its the pits starting the process and then going to bed only to find in the morning that the upgrade process hung up waiting for a prompt that occurred right after you left the room. TIA. echo BATCH=yes /etc/make.conf However, it's probably better to do `make config-recursive' for each port that needs upgrading before starting the upgrade as it gives unexpected results if you've configured non-default values in a previous version. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
On Wed, Oct 10, 2007 at 09:04:34AM -0400, Steve Bertrand wrote: Hi all, I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. You don't need to encrypt the whole harddisk. You can encrypt separate slices. There is no need to encrypt stuff like / or /usr; what is there that needs to be kept secret? All of my searches lead to the same problem...GELI passphrase can not be entered correctly upon boot. I have tried everything I have found on the web (including disabling 'kbdmux' in the kernel) to no avail. With a normal AT keyboard I can enter the passphrase without problems, for a non-root partition. Does anyone have a suggestion for a workaround? Put all the data that really needs to be encrypted on a separate slice, and encrypt that. Leave the rest unencrypted, especially /boot. As a rule of thumb; don't bother encrypting anything that you can just download from the internet. :-) Here's how it looks on my machine; Filesystem SizeUsed Avail Capacity Mounted on /dev/ar0s1a496M126M330M28%/ devfs 1.0K1.0K 0B 100%/dev /dev/ar0s1g.eli120G 82G 28G75%/home /dev/ar0s1e496M 16K456M 0%/tmp /dev/ar0s1f 19G4.7G 13G26%/usr /dev/ar0s1d1.9G152M1.6G 8%/var As you can see only /home is encrypted because the rest doesn't hold data worth encrypting. If you encrypted / and /usr, you might actually make the system more vulnerable to a known-plaintext attack, because there are a lot of files with well-known contents there. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgp8756KQUjO9.pgp Description: PGP signature
Re: Booting a GELI encrypted hard disk
Roland Smith [EMAIL PROTECTED] wrote: On Wed, Oct 10, 2007 at 09:04:34AM -0400, Steve Bertrand wrote: I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. You don't need to encrypt the whole harddisk. You can encrypt separate slices. There is no need to encrypt stuff like / or /usr; what is there that needs to be kept secret? Encryption isn't only useful for private data, it also reduces the risk of third parties replacing your binaries with Trojans while your away. Fabian signature.asc Description: PGP signature
Re: how to setup internet access via GPRS/EDGE network using Nokia 6230 mobile phone
Hi, On Wednesday 10 October 2007, williamkow wrote: Could anybody advise me on how to enable internet access (GPRS/EDGE) in GSM network, using Nokia mobile phone (USB cable connect to computer). Please provide me the exact PORT name to install to FreeBSD 6.2 system, also please assist me on how to use the ports, example, (1) execute it (2) establish the connection, (3) disconnect ...etc. Looks like an USB issue: If you execute the following commands like the Super User: kldload umodem kldload cdce Does your phone show up if you run the command dmesg | less ? --HPS ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
Put all the data that really needs to be encrypted on a separate slice, and encrypt that. Leave the rest unencrypted, especially /boot. As a rule of thumb; don't bother encrypting anything that you can just download from the internet. :-) Fair enough, this makes sense. Thank you. As you can see only /home is encrypted because the rest doesn't hold data worth encrypting. Well, on mine it will. If you encrypted / and /usr, you might actually make the system more vulnerable to a known-plaintext attack, because there are a lot of files with well-known contents there. I can get away with not having / encrypted, but I need /var encrypted for databases and logs etc, /tmp so any temporary files are secured and the swap file (swap very rarely gets used). So, I will test it as you suggested, however, would it be possible to still house my key on a removable USB stick, and after the slices are mounted into the file system successfully to then unmount and remove the USB drive and have the box remain in operation, or does the key need to be accessed throughout all disk reads/writes? Essentially, I'd like it so that if the box reboots while I am gone, or if I want to reboot it remotely there is theoretically no way for someone at the console to re-mount the encrypted slices? Thank you for all of this info! Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Push/Stream Data TO a Server
Perfect! Thanks! Tony dyndns.com -Original Message- From: Mel [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Wed, 10 Oct 2007 12:58 pm Subject: Re: Push/Stream Data TO a Server On Wednesday 10 October 2007 16:56:59 [EMAIL PROTECTED] wrote: I have a client that has video cameras (D-Link) and wants to stream video on his Web site. The problem is that his Internet connection is such that the IP address is dynamic. Can I push the data to my server? How? I don't need to store it; I just need to make it available for viewing. Tutorials somewhere? TIA, Probably easiest solved using dyndns.com or similar services. Or setup your own. The website uses a hostname. As soon as he connects, he updates the DNS to his new IP using the various programs available to do that. Then the website doesn't care what his IP is. If this isn't an option, it depends what he's using to stream the video. Icecast[1] on your server would do the job. If the mount point isn't connected by a client[2], it will return 404. I remember from a few years back, Apple's and Real's media servers have similar features. Your customer should then be configured to stream to your server. [1] audio/icecast2 [2] audio/ices -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Email and AIM finally together. You've gotta check out free AOL Mail! - http://mail.aol.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
iSCSI and multi-terabyte support?
At my place of work, we're looking at implementing a SAN, most likely with iSCSI, some time next year, and likely about 5-10TBytes. I was wondering if FreeBSD could provide this on COTS hardware, but my googling hasn't been successful. From my reading of this list over the past couple of years, it seems that both parts of the solution - iSCSI support and large disk support - are still problematic, but I'd like to hear more informed opinion, as the potential cost savings is quite large. Anyone have recent-ish experience putting something like this together? Kurt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
system admin question...
This is for the system admins out there; I brought up this question last weekend, (re xsysstats, an *old* app), but got no answers, so again: What are the best tools, graphical or otherwise, that I can use on a dedicated Gnome [or CWTM, KDE, Whatever] workspace that will help me track each of my four or five computers? (((Is xosview broken? I have it running here on this pre xorg-7.2 system.))) xsysstats seems reasonable; are there any others? I'd like to be able to spot any overloads of file system snafus before they go critical... . thanks for any|all insights, gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
On Wed, Oct 10, 2007 at 03:35:54PM +0800, nodje wrote: I couldn't find any answer to the question.The problem is that the installer shows up all the disks instead of proposing to install somewhere on the RAID5 partition, in other words, it just doesn't recognize the RAID5. Is it possible at all to install freeBSD on one of those RAID?? I've found out that this is also a problem with the few linux distros I've tried. I've heard it was possible now but I'm a little bit surprised by the slow adoption I must say. I had something look similar to that on a Dell 2950. It put out lots of lines for each separate drive including a device controler name. But I had to dig through the boot messages carefully to find a device name for the raid controller. But, it was there. Once I found it, things went just fine. I may have done something manually with fdisk or maybe dd to the raid device before getting things to be happy. I don't remember exactly. Unfortunately, I had to load Susie 10 Linux on it so I can't look back right now. It also would have been a Dell Perc something, probably 5. So, the device name might be different from the Intel. But, keep searching. jerry I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). Well, it is possible to get multiple failures that trash a raid too. So, make some independant backups of important stuff. /jrm -nodje ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: system admin question...
Gary Kline wrote: This is for the system admins out there; I brought up this question last weekend, (re xsysstats, an *old* app), but got no answers, so again: What are the best tools, graphical or otherwise, that I can use on a dedicated Gnome [or CWTM, KDE, Whatever] workspace that will help me track each of my four or five computers? (((Is xosview broken? I have it running here on this pre xorg-7.2 system.))) xsysstats seems reasonable; are there any others? I'd like to be able to spot any overloads of file system snafus before they go critical... . You should check out conky: /usr/ports/sysutils/conky If you install this + X client on the remote computers, you can then do xhost +server_ip ssh server_ip export DISPLAY=desktop_ip:0.0 conky exit Its not the best way but hey its quick. You'll need to set own_window yes on the remote servers in ~/.conkyrc I tend to run it on my desktop and set it to on_windows no If you have a spotting network connection this blows. Also, checkout /usr/ports/sysutils/monit There's always the time honored snmp+mgrt combos Finally, checkout /usr/ports/net/nagios Ticketmaster uses this but on Redhat AS 3 boo! -- Philip M. Gollucci ([EMAIL PROTECTED]) c:323.219.4708 o:703.749.9295x206 Senior System Admin - Riderway, Inc. http://riderway.com / http://ridecharge.com 1024D/EC88A0BF 0DE5 C55C 6BF3 B235 2DAB B89E 1324 9B4F EC88 A0BF Work like you don't need the money, love like you'll never get hurt, and dance like nobody's watching. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
Jerry McAllister wrote: On Wed, Oct 10, 2007 at 03:35:54PM +0800, nodje wrote: I couldn't find any answer to the question.The problem is that the installer shows up all the disks instead of proposing to install somewhere on the RAID5 partition, in other words, it just doesn't recognize the RAID5. Is it possible at all to install freeBSD on one of those RAID?? I've found out that this is also a problem with the few linux distros I've tried. I've heard it was possible now but I'm a little bit surprised by the slow adoption I must say. I had something look similar to that on a Dell 2950. It put out lots of lines for each separate drive including a device controler name. But I had to dig through the boot messages carefully to find a device name for the raid controller. But, it was there. Once I found it, things went just fine. I may have done something manually with fdisk or maybe dd to the raid device before getting things to be happy. I don't remember exactly. Unfortunately, I had to load Susie 10 Linux on it so I can't look back right now. It also would have been a Dell Perc something, probably 5. So, the device name might be different from the Intel. But, keep searching. Strange -- I have PowerEdge 1600 with RAID-5 (3disks) installer worked just fine. FreeBSD 6.2-RELEASE-p5 #0: Thu Jun 28 17:57:32 UTC 2007 real memory = 2147418112 (2047 MB) avail memory = 2096361472 (1999 MB) MPTable: DELL PE 011B FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs cpu0 (BSP): APIC ID: 1 cpu1 (AP): APIC ID: 0 aacd0: RAID 5 on aac0 aacd0: 139997MB (286714368 sectors) df Filesystem SizeUsed Avail Capacity Mounted on /dev/aacd0s1a989M 81M829M 9%/ devfs1.0K1.0K 0B 100%/dev /dev/aacd0s1d1.9G140K1.8G 0%/tmp /dev/aacd0s1e6.8G1.9G4.4G30%/usr /dev/aacd0s1g 24G 67M 22G 0%/usr/home /dev/aacd0s1f 24G506M 22G 2%/var /dev/aacd0s1h 70G3.2G 62G 5%/x1 devfs1.0K1.0K 0B 100%/var/named/dev This worked out of the box with GENERIC kernel on i386 Kernel config custom snippets: ## SCSI device scbus# SCSI Subsystem device ahc # AHA2940 and onboard AIC7xxx devices device da # Direct Access (disks) device cd # CD device ses # SCSI Environmental Services (and SAF-TE) device aac -- Philip M. Gollucci ([EMAIL PROTECTED]) c:323.219.4708 o:703.749.9295x206 Senior System Admin - Riderway, Inc. http://riderway.com / http://ridecharge.com 1024D/EC88A0BF 0DE5 C55C 6BF3 B235 2DAB B89E 1324 9B4F EC88 A0BF Work like you don't need the money, love like you'll never get hurt, and dance like nobody's watching. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
On Wed, Oct 10, 2007 at 04:19:02PM -0400, Philip M. Gollucci wrote: Jerry McAllister wrote: On Wed, Oct 10, 2007 at 03:35:54PM +0800, nodje wrote: I couldn't find any answer to the question.The problem is that the installer shows up all the disks instead of proposing to install somewhere on the RAID5 partition, in other words, it just doesn't recognize the RAID5. Is it possible at all to install freeBSD on one of those RAID?? I've found out that this is also a problem with the few linux distros I've tried. I've heard it was possible now but I'm a little bit surprised by the slow adoption I must say. I had something look similar to that on a Dell 2950. It put out lots of lines for each separate drive including a device controler name. But I had to dig through the boot messages carefully to find a device name for the raid controller. But, it was there. Once I found it, things went just fine. I may have done something manually with fdisk or maybe dd to the raid device before getting things to be happy. I don't remember exactly. Unfortunately, I had to load Susie 10 Linux on it so I can't look back right now. It also would have been a Dell Perc something, probably 5. So, the device name might be different from the Intel. But, keep searching. Strange -- I have PowerEdge 1600 with RAID-5 (3disks) installer worked just fine. Yes, mine worked just fine too -- once I found the device name somewhat lost in the middle of all the disk device names and info. jerry FreeBSD 6.2-RELEASE-p5 #0: Thu Jun 28 17:57:32 UTC 2007 real memory = 2147418112 (2047 MB) avail memory = 2096361472 (1999 MB) MPTable: DELL PE 011B FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs cpu0 (BSP): APIC ID: 1 cpu1 (AP): APIC ID: 0 aacd0: RAID 5 on aac0 aacd0: 139997MB (286714368 sectors) df Filesystem SizeUsed Avail Capacity Mounted on /dev/aacd0s1a989M 81M829M 9%/ devfs1.0K1.0K 0B 100%/dev /dev/aacd0s1d1.9G140K1.8G 0%/tmp /dev/aacd0s1e6.8G1.9G4.4G30%/usr /dev/aacd0s1g 24G 67M 22G 0%/usr/home /dev/aacd0s1f 24G506M 22G 2%/var /dev/aacd0s1h 70G3.2G 62G 5%/x1 devfs1.0K1.0K 0B 100%/var/named/dev This worked out of the box with GENERIC kernel on i386 Kernel config custom snippets: ## SCSI device scbus# SCSI Subsystem device ahc # AHA2940 and onboard AIC7xxx devices device da # Direct Access (disks) device cd # CD device ses # SCSI Environmental Services (and SAF-TE) device aac -- Philip M. Gollucci ([EMAIL PROTECTED]) c:323.219.4708 o:703.749.9295x206 Senior System Admin - Riderway, Inc. http://riderway.com / http://ridecharge.com 1024D/EC88A0BF 0DE5 C55C 6BF3 B235 2DAB B89E 1324 9B4F EC88 A0BF Work like you don't need the money, love like you'll never get hurt, and dance like nobody's watching. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: system admin question...
On Wednesday 10 October 2007 21:57:59 Gary Kline wrote: What are the best tools, graphical or otherwise, that I can use on a dedicated Gnome [or CWTM, KDE, Whatever] workspace that will help me track each of my four or five computers? (((Is xosview broken? I have it running here on this pre xorg-7.2 system.))) xsysstats seems reasonable; are there any others? I'd like to be able to spot any overloads of file system snafus before they go critical... . thanks for any|all insights, Ksysguard can connect to hosts via ssh, rsh or a command you provide yourself. Part of kdeadmin package. Various things can be monitored, including but not limited to diskspace, process tables, logfiles and system load. Unfortunately it doesn't do well with passwords, so use a passwordless pubkey scheme for ssh. It takes a bit to get used to the interface, but it's highly customizable once you get the hang of it. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: system admin question...
Gary Kline wrote: This is for the system admins out there; I brought up this question last weekend, (re xsysstats, an *old* app), but got no answers, so again: What are the best tools, graphical or otherwise, that I can use on a dedicated Gnome [or CWTM, KDE, Whatever] workspace that will help me track each of my four or five computers? (((Is xosview broken? I have it running here on this pre xorg-7.2 system.))) xsysstats seems reasonable; are there any others? I'd like to be able to spot any overloads of file system snafus before they go critical... . thanks for any|all insights, I am a fan of KISS, I would just start snmpd on each server and then hack a quick perl/ruby/shell script to check on the boxes now and then and alert you when something is beyond a configured parameter. Maybe pop open a term window and display the snmpget results or something. DAve -- Three years now I've asked Google why they don't have a logo change for Memorial Day. Why do they choose to do logos for other non-international holidays, but nothing for Veterans? Maybe they forgot who made that choice possible. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
Did you know that most oh my god RAID failures happen during the reconstruction of a failed drive? .Especially on SATA as the non-recoverable-bit-error math is so much easier to run into. I think..that on a 500G drive, there are enough bits to read/write that mathematically you could run into a double-drive failure every time you have to recover. Although, statistically it wouldnt happen every time. No raid solves any backup problem. I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). -nodje ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
On Wed, Oct 10, 2007 at 02:34:16PM -0400, Steve Bertrand wrote: Put all the data that really needs to be encrypted on a separate slice, and encrypt that. Leave the rest unencrypted, especially /boot. As a rule of thumb; don't bother encrypting anything that you can just download from the internet. :-) Fair enough, this makes sense. Thank you. As you can see only /home is encrypted because the rest doesn't hold data worth encrypting. Well, on mine it will. I was talking about my system. Yours will of course be different. :-) If you encrypted / and /usr, you might actually make the system more vulnerable to a known-plaintext attack, because there are a lot of files with well-known contents there. I can get away with not having / encrypted, but I need /var encrypted for databases and logs etc, /tmp so any temporary files are secured and the swap file (swap very rarely gets used). You can even encrypt /tmp with a one-time key (see 'geli onetime'). Also have a look at the geli_* variables in /etc/defaults/rc.conf. So, I will test it as you suggested, however, would it be possible to still house my key on a removable USB stick, and after the slices are mounted into the file system successfully to then unmount and remove the USB drive and have the box remain in operation, or does the key need to be accessed throughout all disk reads/writes? It only needs to be present during creation of the GELI devices (geli attach). The rc scripts know they have to load GELI and attach the devices if they see an .eli device in /etc/fstab. Geli will ask for the passphrase(s) during boot-up if you're using them. You can specify which key-file to use in the geli_[devicename]_flags variable in /etc/rc.conf However using a USB device presents it's own problems. If you plug-in a USB stick there's no telling which device node it ends up with, depending on how many other USB devices are on the bus. To make device recognition easier, you should use a GEOM label on the USB stick, so you'll know which /dev/label/* device node it gets. And you'd probably have to hack an rc script to mount the USB stick _before_ the system tries to attach the GELI device(s). Essentially, I'd like it so that if the box reboots while I am gone, or if I want to reboot it remotely there is theoretically no way for someone at the console to re-mount the encrypted slices? Well, if you don't know the passphrase during boot-up (you get 3 tries), the geli devices will not be created and mounting the slices depending on them will fail. so you don't _need_ a keyfile for that. And remember that this USB stick is another thing you have to back-up and store in a safe place. It would be bad if you lost your data because your USB stick died or got lost. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgpzTSDTZjJCa.pgp Description: PGP signature
TPM could not be initialized - bge0 has disappeared ... WTF ?
I own a Dell Latitude X1. I installed FreeBSD 6.2-RELEASE on it. All is well. No problems. Have a nice day. However, suddenly, when I boot the system, I get a message: WARNING: The TPM could not be initialized I didn't know what TPM was, I didn't care, and I just booted up. Not my problem. Except suddenly I have no network card (!) bge0 is just invisible - it is no longer in my system. As far as FreeBSD is concerned, it is gone. So what is going on ? I checked my BIOS and TPM is disabled - there is no question that it is disabled. Why do I suddenly get this error at boot time, when I did not see it for the first few weeks of running FreeBSD on the system, and _never_ saw this error in a year of running Windows ? I did not change anything, or touch the BIOS, or do anything. I don't care about any of this. I don't have time for any of this. Fuck broadcom and their TPM. So the bottom line is: why did this suddenly show up, and how do I get rid of it ? I just need my bge0 back... Be a better Globetrotter. Get better travel answers from someone who knows. Yahoo! Answers - Check it out. http://answers.yahoo.com/dir/?link=listsid=396545469 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
On Wed, Oct 10, 2007 at 08:18:38PM +0200, Fabian Keil wrote: Roland Smith [EMAIL PROTECTED] wrote: On Wed, Oct 10, 2007 at 09:04:34AM -0400, Steve Bertrand wrote: I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. You don't need to encrypt the whole harddisk. You can encrypt separate slices. There is no need to encrypt stuff like / or /usr; what is there that needs to be kept secret? Encryption isn't only useful for private data, it also reduces the risk of third parties replacing your binaries with Trojans while your away. If that someone can replace binaries on a running system, you're box has been h4x0red and you're screwed anyway. Doubly so if your encrypted filesystem was mounted at the time. :-) Disk encryption is mostly a defense against data-loss in case of the machine or disk being stolen. It's easy enough to make a list of SHA256 checksums of all binaries and store that on the encrypted partition, so you can check the binaries any time you want. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgpumPH70Xyal.pgp Description: PGP signature
FTP CRON Script
This is driving me crazy. I have a small script that I run from CRON. It is run as a regular user and not as ROOT, although I have tried it both ways. It uploads SPAM to the 'knujon.com' site'. I have created a ~/.netrc file that looks like this: machine knujon.com login user password secret macdef spam put $1 quit Now, if I run the following command from the command prompt, the script works fine. echo \$ spam spam.zip | ftp -n ftp://user:[EMAIL PROTECTED] The above should all be on one line, although it may be shown split into two right now. However, if this is put into a bash script, and run if from CRON, I receive a mail with this error message: 'spam' macro not found. I have no idea what I am doing wrong. I have the $HOME, $SHELL and $PATH variables set in CRON. -- White Hat [EMAIL PROTECTED] Looking for a deal? Find great prices on flights and hotels with Yahoo! FareChase. http://farechase.yahoo.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: TPM could not be initialized - bge0 has disappeared ... WTF ?
It's possible it's a hardware issue. Have you got a means to verify the hardware, such as a knoppix, sitting around? James On Wed, 2007-10-10 at 13:47 -0700, Gore Jarold wrote: I own a Dell Latitude X1. I installed FreeBSD 6.2-RELEASE on it. All is well. No problems. Have a nice day. However, suddenly, when I boot the system, I get a message: WARNING: The TPM could not be initialized I didn't know what TPM was, I didn't care, and I just booted up. Not my problem. Except suddenly I have no network card (!) bge0 is just invisible - it is no longer in my system. As far as FreeBSD is concerned, it is gone. So what is going on ? I checked my BIOS and TPM is disabled - there is no question that it is disabled. Why do I suddenly get this error at boot time, when I did not see it for the first few weeks of running FreeBSD on the system, and _never_ saw this error in a year of running Windows ? I did not change anything, or touch the BIOS, or do anything. I don't care about any of this. I don't have time for any of this. Fuck broadcom and their TPM. So the bottom line is: why did this suddenly show up, and how do I get rid of it ? I just need my bge0 back... Be a better Globetrotter. Get better travel answers from someone who knows. Yahoo! Answers - Check it out. http://answers.yahoo.com/dir/?link=listsid=396545469 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
On Wednesday 10 October 2007 23:17:01 Roland Smith wrote: On Wed, Oct 10, 2007 at 08:18:38PM +0200, Fabian Keil wrote: Roland Smith [EMAIL PROTECTED] wrote: On Wed, Oct 10, 2007 at 09:04:34AM -0400, Steve Bertrand wrote: I am voraciously attempting to get a FreeBSD system to boot from a GELI encrypted hard disk, but am having problems. You don't need to encrypt the whole harddisk. You can encrypt separate slices. There is no need to encrypt stuff like / or /usr; what is there that needs to be kept secret? Encryption isn't only useful for private data, it also reduces the risk of third parties replacing your binaries with Trojans while your away. If that someone can replace binaries on a running system, you're box has been h4x0red and you're screwed anyway. Doubly so if your encrypted filesystem was mounted at the time. :-) I think the case he's describing, is that one can remove the harddisk, mount it as secondary drive, replace system binaries with keylogging enabled binaries and then put it back. You won't notice this till you read daily security report in a default system. It's easy enough to make a list of SHA256 checksums of all binaries and store that on the encrypted partition, so you can check the binaries any time you want. Like sysutils/tripwire. Even if the system doesn't let you boot if system binaries have changed, the damage is probably done already because the geli passphrase binary logged your passphrase. It's questionable though, whether you should leave your computer in an environment where this can happen undetected and probably better solved by increasing real life security. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: system admin question...
At 02:57 PM 10/10/2007, Gary Kline wrote: This is for the system admins out there; I brought up this question last weekend, (re xsysstats, an *old* app), but got no answers, so again: What are the best tools, graphical or otherwise, that I can use on a dedicated Gnome [or CWTM, KDE, Whatever] workspace that will help me track each of my four or five computers? (((Is xosview broken? I have it running here on this pre xorg-7.2 system.))) xsysstats seems reasonable; are there any others? I'd like to be able to spot any overloads of file system snafus before they go critical... . thanks for any|all insights, gary I use bigsister, from the ports. There are versions for win32 servers as well, so you can monitor cross-platform. Bigsister's output is webbased, plus there are alerts you can setup. -Derek -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: TPM could not be initialized - bge0 has disappeared ... WTF ?
On Oct 10, 2007, at 1:47 PM, Gore Jarold wrote: I own a Dell Latitude X1. [ ... ] However, suddenly, when I boot the system, I get a message: WARNING: The TPM could not be initialized I didn't know what TPM was, I didn't care, and I just booted up. Not my problem. Except suddenly I have no network card (!) bge0 is just invisible - it is no longer in my system. As far as FreeBSD is concerned, it is gone. So what is going on ? According to Dell's tech support forums, this TPM module is designed to disable parts of your computer such as the NIC if it doesn't find the right keys or whatever it is supposed to contain. Trying to reinstall the TPM drivers under Windows isn't enough to reset the TPM module to a sane state, reportedly. In other words, if it screws up, your machine becomes hosed. Welcome to trusted computing. [ ... ] So the bottom line is: why did this suddenly show up, and how do I get rid of it ? I just need my bge0 back... Supposedly you need to RMA your laptop. Or, better yet, replace it with something else that doesn't contain defective hardware which locks the owner out of their own machine -- -Chuck PS: Are you a Marine, by any chance? :-) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FTP CRON Script
At 04:31 PM 10/10/2007, White Hat wrote: This is driving me crazy. I have a small script that I run from CRON. It is run as a regular user and not as ROOT, although I have tried it both ways. It uploads SPAM to the 'knujon.com' site'. I have created a ~/.netrc file that looks like this: machine knujon.com login user password secret macdef spam put $1 quit Now, if I run the following command from the command prompt, the script works fine. echo \$ spam spam.zip | ftp -n ftp://user:[EMAIL PROTECTED] The above should all be on one line, although it may be shown split into two right now. However, if this is put into a bash script, and run if from CRON, I receive a mail with this error message: 'spam' macro not found. I have no idea what I am doing wrong. I have the $HOME, $SHELL and $PATH variables set in CRON. try set -x and see what the output looks like. I'd guess you are not escaping the $ right in your script. -Derek -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting a GELI encrypted hard disk
On Wed, Oct 10, 2007 at 11:37:55PM +0200, Mel wrote: Encryption isn't only useful for private data, it also reduces the risk of third parties replacing your binaries with Trojans while your away. If that someone can replace binaries on a running system, you're box has been h4x0red and you're screwed anyway. Doubly so if your encrypted filesystem was mounted at the time. :-) I think the case he's describing, is that one can remove the harddisk, mount it as secondary drive, replace system binaries with keylogging enabled binaries and then put it back. You won't notice this till you read daily security report in a default system. That's a heck of a lot of trouble to go to, considering someone would have to steal your drive, alter it and put it back without you knowing it! If the intruder has physical access to the machine, it would be much easier to put a keylogger device between the keyboard and the machine. It's questionable though, whether you should leave your computer in an environment where this can happen undetected and probably better solved by increasing real life security. An important point that too many people forget. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgpwUiArodJxb.pgp Description: PGP signature
shooting oneself in the foot with ldconfig -v
Hey folks, I'm running 6.2-p8 and was trying to clean up my portsclean -L output today. It was reporting tons of duplicate libraries in /usr/X11R6 and /usr/local even though X11R6 is an alias to /usr/local. I tracked the problem to portclean's use of `ldconfig -elf -r` which was reporting directories and libraries in /usr/X11R6. I read the ldconfig manpage in an attempt to understand more and saw this line: -v Switch on verbose mode. I told myself, Self, the '-v' option may allow you to determine what's going on. It can't help knowing more! Alas, the -v option doesn't behave as advertised. Instead it clears the shared library cache (reference: http://www.parsed.org/tip/231/). An empty shared library cache means all dynamically-linked programs fail. This has the wonderful side-effect of preventing me from logging into the box to fix it (I logged off before I figured this out). Reboot and all will be well, you say? Yes, on boot /etc/rc.d/ldconfig is run and it builds the shared library cache. Unfortunately, the box is 1,000 miles away in my apartment. :( This brings me to the question: Is the -v option broken or is the documentation out of date? Thanks, -Jon ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: shooting oneself in the foot with ldconfig -v
On Wed, Oct 10, 2007 at 05:41:29PM -0400, Jonathan Noack wrote: Hey folks, I'm running 6.2-p8 and was trying to clean up my portsclean -L output today. It was reporting tons of duplicate libraries in /usr/X11R6 and /usr/local even though X11R6 is an alias to /usr/local. I tracked the problem to portclean's use of `ldconfig -elf -r` which was reporting directories and libraries in /usr/X11R6. I read the ldconfig manpage in an attempt to understand more and saw this line: -v Switch on verbose mode. I told myself, Self, the '-v' option may allow you to determine what's going on. It can't help knowing more! Alas, the -v option doesn't behave as advertised. Instead it clears the shared library cache (reference: http://www.parsed.org/tip/231/). An empty shared library cache means all dynamically-linked programs fail. This has the wonderful side-effect of preventing me from logging into the box to fix it (I logged off before I figured this out). Reboot and all will be well, you say? Yes, on boot /etc/rc.d/ldconfig is run and it builds the shared library cache. Unfortunately, the box is 1,000 miles away in my apartment. :( This brings me to the question: Is the -v option broken or is the documentation out of date? No, the '-v' option behaves as documented and is not broken. It is, however, intended to be used in conjunction with some other option. You see, running ldconfig(8) without any arguments at all will clear the shared library cache. (Actually it will replace the cache with the files found in the specified directories, but since none were specified...) Adding '-v' will not change what ldconfig does, except possibly letting it be a bit more verbose about what happens. ldconfig is behaving as designed and documented, so the bug, such as it is, is in the design of ldconfig that lets you screw up the machine by simply running ldconfig without any option. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: X on ThinkPad crashes after sleeping (zzz'ing)
Sleeping still works fine, but when I bring it back from sleep, X Windows seems to have crashed. I suspect it's a problem similar to one I've been having, and am investigating. I upgraded to X.org 7.3, and have since then had problems with ACPI events screwing up my X session (to the point that it make the OS as a whole pretty much stop working except via SSH for remote access). Hmm, I have X.org 7.2, but I do vaguely recall that a systemwide ports upgrade was the start of the problem. Thomas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Xorg 7.2 and FreeBSD 6.2-p5 VMWARE vmmouse problem
On 10/07/2007, at 11:53 AM, Webster, Andrew wrote: Howdy, I was successfully able to get Xorg upgraded to 7.2 by just installing them from scratch as opposed to trying to upgrading an existing system, BUT I’ve run into a problem… While running VMWare Server 1.0.3 with FreeBSD 6.2-p5 and Xorg 7.2, the mouse pointer behaves very oddly. The pointer appears in the wrong place on the screen for where the system actually thinks that it is. I’m using the vmmouse driver part of the Xorg system, as the regular mouse driver doesn’t appear to work at all, unless some settings are amiss. I really like the vmmouse drive because you can move the pointer in/ out of the window as you do with regular windows guest OSes. Has anyone experienced similar problems and/ or know of a fix for this? Andrew, I just set up VMWare Fusion with FreeBSD and have a problem that might be related. Ascii art time: _ |_| | | | | | |___| The pointer appears normally on the screen. However, clicking around the screen does not work except in a small area in the top left corner. Moving the mouse within this tiny corner seems to scale up and operate on the entire screen. Eg. if I click and drag across the tiny corner, I can see the selection appear across the entire desktop. Is this similar to your issue? Did you find a resolution? Cheers Sam ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kernel configuration failure
Actually, that's not the problem. The file which is not found is the compiler itself: gcc34:No such file or directory Maybe you've installed gcc 4.3 from ports, linked /usr/bin/cc to /usr/local/bin/gcc43 and then upgrade gcc? That doesn't seem right: [EMAIL PROTECTED] /usr/src]$ which gcc34 /usr/local/bin/gcc34 [EMAIL PROTECTED] /usr/src]$ su Password: [EMAIL PROTECTED] /usr/src]# which gcc34 /usr/local/bin/gcc34 It's true that I installed gcc 3.4 from ports and put a line in /etc/make.conf: CC=gcc34 . However, it's on the path for both my user and for root; it seems weird that the makefile would lose track of it. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kernel configuration failure
coriolinus wrote: Actually, that's not the problem. The file which is not found is the compiler itself: gcc34:No such file or directory Maybe you've installed gcc 4.3 from ports, linked /usr/bin/cc to /usr/local/bin/gcc43 and then upgrade gcc? That doesn't seem right: [EMAIL PROTECTED] /usr/src]$ which gcc34 /usr/local/bin/gcc34 [EMAIL PROTECTED] /usr/src]$ su Password: [EMAIL PROTECTED] /usr/src]# which gcc34 /usr/local/bin/gcc34 It's true that I installed gcc 3.4 from ports and put a line in /etc/make.conf: CC=gcc34 . However, it's on the path for both my user and for root; it seems weird that the makefile would lose track of it. Makefile doesn't lose it, it just redefines PATH; try using full path to gcc binary in /etc/make.conf: CC=/usr/local/bin/gcc34 Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Confusion on SSH and PAM
Replying to myself to fix my error. Vinny wrote: Rakhesh Sasidharan wrote: [snip] Here's another oddity I encountered today. If PermitRootLogin is set to forced-commands-only, my understanding is the SSHD will permit root logins if a command to be executed is given. But that doesn't seem to be the case in practice! I have keys setup for root to login, but instead of letting me in with those keys, SSHD ignores them, passes me to PAM for password prompting (three times) and the denies me out! Very strange. PermitRootLogin forced-commands-only This requires that a command be present in the authorized_keys file for a given key. For example, root's authorized_keys file might look like this for an rsync command: command=/root/.ssh/cron/validate-rsync,from=10.10.10.2,no-port-forwarding,no-X11-forwarding,no-agent-forwarding ssh-dss B3N_more_public_key_data comment The entire text above should be only one line in the file. The command shown in: command=/root/.ssh/cron/validate-rsync I.e. /root/.ssh/cron/validate-rsync This: must be the command submitted on the ssh command line, loosely: $ ssh -i private_key_matching_public_key_in_authorized_keys [EMAIL PROTECTED] \ /root/.ssh/cron/validate-rsync is incorrect. The command shown is the command that is executed when the root user is authenticated via the key in question. It does not need to appear on any ssh command line. The root user cannot otherwise login to the system using ssh unless further keys with corresponding commands exist. Sorry about the error. Vinny ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: iSCSI and multi-terabyte support?
On 10/10/07, Kurt Buff [EMAIL PROTECTED] wrote: At my place of work, we're looking at implementing a SAN, most likely with iSCSI, some time next year, and likely about 5-10TBytes. I was wondering if FreeBSD could provide this on COTS hardware, but my googling hasn't been successful. From my reading of this list over the past couple of years, it seems that both parts of the solution - iSCSI support and large disk support - are still problematic, but I'd like to hear more informed opinion, as the potential cost savings is quite large. Anyone have recent-ish experience putting something like this together? IMHO opinion I do not think FreeBSD is there...yet. ZFS is addressing many of the enterprise filesystem features that would be needed to implement something on this scale, and there is the iSCSI target from NetBSD available in the ports tree. I think 7-RELEASE is going to be a solid foundation for building solutions like this - but in the mean time it may be worth considering OpenSolaris if are considering going the COTS path. or - you can take a look at a company like Isilon Systems (http://www.isilon.com/) which builds very scalable filers based on FreeBSD. I have beta tested their iSCSI implementation and it does look good. HTH -pete -- ~~o0OO0o~~ Pete Wright www.nycbug.org NYC's *BSD User Group ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
well, you mean on RAID5 then, coz there's probably no math in reconstructing a RAID1. Why would the math on SATA be less reliable than on SCSI??? Where d'you read that anyway?? Jeff Mohler wrote: Did you know that most oh my god RAID failures happen during the reconstruction of a failed drive? .Especially on SATA as the non-recoverable-bit-error math is so much easier to run into. I think..that on a 500G drive, there are enough bits to read/write that mathematically you could run into a double-drive failure every time you have to recover. Although, statistically it wouldnt happen every time. No raid solves any backup problem. I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). -nodje ___ [EMAIL PROTECTED] mailing list [2]http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [3][EMAIL PROTECTED] References 1. mailto:freebsd-questions@freebsd.org 2. http://lists.freebsd.org/mailman/listinfo/freebsd-questions 3. mailto:[EMAIL PROTECTED] smime.p7s Description: S/MIME Cryptographic Signature
Re: Installing freeBSD on an Intel RAID5 partition
SATA drives just aint built with the same resiliency as SCSI, hence the massive difference in cost. So..as an example, the Hitachi 500G 7K500 drive has a non recoverable bitrate of 1 in 10^14th. The 10K300 FCAL (basically scsi) drive is 1 in 10^16th. Those two zeros mean a _lot_. I removed a lot of my own math here, knowing that Ive read this somewhere before..huzzah for google! http://blogs.netapp.com/dave/2006/03/expect_double_d.html?no_prefetch=1 Im used to working with much larger drives, in very large RGs..so Im correctable, youre not going to play with the devil TOO much in a home for small business system, just not enough drives. But now you can find 1TB drives, and 7 of those in a raid wont be hard to find pretty soon. Eventually..you will hit a non recoverable bit error during a reconstruction, and you wont have parity to go to, to recover it. Unless youre using a dual parity layout of some type. Drives are also more common to fail when put into use from being spares, because theyve never been exercised over a long period of time..ya never know. The quality of the firmware that operates consumer SATA isnt near the level of quality that server drives are either, which can create ghost errors that dont truly exist, but to the OS are in fact errors which can shave off a few zeros as well. On 10/10/07, Nodje [EMAIL PROTECTED] wrote: well, you mean on RAID5 then, coz there's probably no math in reconstructing a RAID1. Why would the math on SATA be less reliable than on SCSI??? Where d'you read that anyway?? Jeff Mohler wrote: Did you know that most oh my god RAID failures happen during the reconstruction of a failed drive? .Especially on SATA as the non-recoverable-bit-error math is so much easier to run into. I think..that on a 500G drive, there are enough bits to read/write that mathematically you could run into a double-drive failure every time you have to recover. Although, statistically it wouldnt happen every time. No raid solves any backup problem. I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). -nodje ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: iSCSI and multi-terabyte support?
On 10/10/07, pete wright [EMAIL PROTECTED] wrote: On 10/10/07, Kurt Buff [EMAIL PROTECTED] wrote: At my place of work, we're looking at implementing a SAN, most likely with iSCSI, some time next year, and likely about 5-10TBytes. I was wondering if FreeBSD could provide this on COTS hardware, but my googling hasn't been successful. From my reading of this list over the past couple of years, it seems that both parts of the solution - iSCSI support and large disk support - are still problematic, but I'd like to hear more informed opinion, as the potential cost savings is quite large. Anyone have recent-ish experience putting something like this together? IMHO opinion I do not think FreeBSD is there...yet. ZFS is addressing many of the enterprise filesystem features that would be needed to implement something on this scale, and there is the iSCSI target from NetBSD available in the ports tree. I think 7-RELEASE is going to be a solid foundation for building solutions like this - but in the mean time it may be worth considering OpenSolaris if are considering going the COTS path. or - you can take a look at a company like Isilon Systems (http://www.isilon.com/) which builds very scalable filers based on FreeBSD. I have beta tested their iSCSI implementation and it does look good. HTH -pete Thanks - being a noob at this particular part of IT, I appreciate the feedback. Kurt ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: shooting oneself in the foot with ldconfig -v
On Wed, October 10, 2007 18:34, Erik Trulsson wrote: On Wed, Oct 10, 2007 at 05:41:29PM -0400, Jonathan Noack wrote: Hey folks, I'm running 6.2-p8 and was trying to clean up my portsclean -L output today. It was reporting tons of duplicate libraries in /usr/X11R6 and /usr/local even though X11R6 is an alias to /usr/local. I tracked the problem to portclean's use of `ldconfig -elf -r` which was reporting directories and libraries in /usr/X11R6. I read the ldconfig manpage in an attempt to understand more and saw this line: -v Switch on verbose mode. I told myself, Self, the '-v' option may allow you to determine what's going on. It can't help knowing more! Alas, the -v option doesn't behave as advertised. Instead it clears the shared library cache (reference: http://www.parsed.org/tip/231/). An empty shared library cache means all dynamically-linked programs fail. This has the wonderful side-effect of preventing me from logging into the box to fix it (I logged off before I figured this out). Reboot and all will be well, you say? Yes, on boot /etc/rc.d/ldconfig is run and it builds the shared library cache. Unfortunately, the box is 1,000 miles away in my apartment. :( This brings me to the question: Is the -v option broken or is the documentation out of date? No, the '-v' option behaves as documented and is not broken. It is, however, intended to be used in conjunction with some other option. You see, running ldconfig(8) without any arguments at all will clear the shared library cache. (Actually it will replace the cache with the files found in the specified directories, but since none were specified...) Adding '-v' will not change what ldconfig does, except possibly letting it be a bit more verbose about what happens. Not according to ldconfig(8); running ldconfig without any arguments implies -R: -R Rescan the previously configured directories. This opens the previous hints file and fetches the directory list from the header. Any additional pathnames on the command line are also processed. This is the default action when no parameters are given. The previously configured directory list was fully populated, so effectively there should have been no change as the previously configured directories were untouched and I specified no additional pathnames. ldconfig is behaving as designed and documented, so the bug, such as it is, is in the design of ldconfig that lets you screw up the machine by simply running ldconfig without any option. Are you saying that by specifying -v I no longer satisfied the no parameters are given clause and ended up in a default place in the logic? I could see how an unconditional shared library cache clear coupled with no additional action (no matching actions to pursue) could get me the results I got. If so that behavior is really confusing. IMHO a verbose switch shouldn't change behavior; it should just spam the console a lot. -Jon ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Installing freeBSD on an Intel RAID5 partition
hum let's keep practical here please. The question is whether you can use SATA RAID as a reasonable HD failure protection system or not. Can a Raid1 on two HD, say less than 500Gb, be consider as a good protection against HD failure? It still seems to be for me. (I consider recovery to be just a bit to bit copy, not sure to rigt here) On a Raid5, since there's need for computation in case of HD failure, it seems more discutable after the facts that you've exposed. It seems that this assumption needs statistics depending on HD size which I'm not able to produce. But with reasonably sized disk, it should still be ok, isn't it? Jeff Mohler wrote: SATA drives just aint built with the same resiliency as SCSI, hence the massive difference in cost. So..as an example, the Hitachi 500G 7K500 drive has a non recoverable bitrate of 1 in 10^14th. The 10K300 FCAL (basically scsi) drive is 1 in 10^16th. Those two zeros mean a _lot_. I removed a lot of my own math here, knowing that Ive read this somewhere before..huzzah for google! [1]http://blogs.netapp.com/dave/2006/03/expect_double_d.html?no_prefetch=1 Im used to working with much larger drives, in very large RGs..so Im correctable, youre not going to play with the devil TOO much in a home for small business system, just not enough drives. But now you can find 1TB drives, and 7 of those in a raid wont be hard to find pretty soon. Eventually..you will hit a non recoverable bit error during a reconstruction, and you wont have parity to go to, to recover it. Unless youre using a dual parity layout of some type. Drives are also more common to fail when put into use from being spares, because theyve never been exercised over a long period of time..ya never know. The quality of the firmware that operates consumer SATA isnt near the level of quality that server drives are either, which can create ghost errors that dont truly exist, but to the OS are in fact errors which can shave off a few zeros as well. On 10/10/07, Nodje [2][EMAIL PROTECTED] wrote: well, you mean on RAID5 then, coz there's probably no math in reconstructing a RAID1. Why would the math on SATA be less reliable than on SCSI??? Where d'you read that anyway?? Jeff Mohler wrote: Did you know that most oh my god RAID failures happen during the reconstruction of a failed drive? .Especially on SATA as the non-recoverable-bit-error math is so much easier to run into. I think..that on a 500G drive, there are enough bits to read/write that mathematically you could run into a double-drive failure every time you have to recover. Although, statistically it wouldnt happen every time. No raid solves any backup problem. I've been using those Intel RAID with Windows for a couple of years now and it really helped solve my backup problem. I think this is simply great, no worries of data loss anymore (at least coming from hardware failure). -nodje ___ [EMAIL PROTECTED] mailing list [4]http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [5][EMAIL PROTECTED] References 1. http://blogs.netapp.com/dave/2006/03/expect_double_d.html?no_prefetch=1 2. mailto:[EMAIL PROTECTED] 3. mailto:freebsd-questions@freebsd.org 4. http://lists.freebsd.org/mailman/listinfo/freebsd-questions 5. mailto:[EMAIL PROTECTED] smime.p7s Description: S/MIME Cryptographic Signature
Re: sudo doesn't log anything
On Tuesday 09 October 2007, Pieter de Goeje [EMAIL PROTECTED] wrote: (among other verbiage) It logs it's (sic) messages in /var/log/messages. Is this mentioned in the man page ? If nort, it should be! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: shooting oneself in the foot with ldconfig -v
On Thu, Oct 11, 2007 at 12:27:49AM -0400, Jonathan Noack wrote: On Wed, October 10, 2007 18:34, Erik Trulsson wrote: On Wed, Oct 10, 2007 at 05:41:29PM -0400, Jonathan Noack wrote: Hey folks, I'm running 6.2-p8 and was trying to clean up my portsclean -L output today. It was reporting tons of duplicate libraries in /usr/X11R6 and /usr/local even though X11R6 is an alias to /usr/local. I tracked the problem to portclean's use of `ldconfig -elf -r` which was reporting directories and libraries in /usr/X11R6. I read the ldconfig manpage in an attempt to understand more and saw this line: -v Switch on verbose mode. I told myself, Self, the '-v' option may allow you to determine what's going on. It can't help knowing more! Alas, the -v option doesn't behave as advertised. Instead it clears the shared library cache (reference: http://www.parsed.org/tip/231/). An empty shared library cache means all dynamically-linked programs fail. This has the wonderful side-effect of preventing me from logging into the box to fix it (I logged off before I figured this out). Reboot and all will be well, you say? Yes, on boot /etc/rc.d/ldconfig is run and it builds the shared library cache. Unfortunately, the box is 1,000 miles away in my apartment. :( This brings me to the question: Is the -v option broken or is the documentation out of date? No, the '-v' option behaves as documented and is not broken. It is, however, intended to be used in conjunction with some other option. You see, running ldconfig(8) without any arguments at all will clear the shared library cache. (Actually it will replace the cache with the files found in the specified directories, but since none were specified...) Adding '-v' will not change what ldconfig does, except possibly letting it be a bit more verbose about what happens. Not according to ldconfig(8); running ldconfig without any arguments implies -R: -R Rescan the previously configured directories. This opens the previous hints file and fetches the directory list from the header. Any additional pathnames on the command line are also processed. This is the default action when no parameters are given. Yes, you are right. The previously configured directory list was fully populated, so effectively there should have been no change as the previously configured directories were untouched and I specified no additional pathnames. ldconfig is behaving as designed and documented, so the bug, such as it is, is in the design of ldconfig that lets you screw up the machine by simply running ldconfig without any option. Are you saying that by specifying -v I no longer satisfied the no parameters are given clause and ended up in a default place in the logic? That wasn't actually what I was saying, but after checking the source code it turns out you are right and that is exactly what happens. I could see how an unconditional shared library cache clear coupled with no additional action (no matching actions to pursue) could get me the results I got. If so that behavior is really confusing. IMHO a verbose switch shouldn't change behavior; it should just spam the console a lot. True. -- Insert your favourite quote here. Erik Trulsson [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
rebranding a i386 binary to be a amd64 binary
Even though I know this is asking for it I want to test the new nVidia driver on amd64 and the only issue with a hand compile (from nVidia's tar not the ports one) is src/nv-kernel.o is branded elf-i386-32 and amd64 wants it branded elf-amd64-64. This file comes from them as a precompiled object so rebranding seems to be my only option. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
best way to update ports
Hi, I need your advice on how to update security patches for ports on a dozen servers with minimal efforts. As I gathered, I should run portaudit in cron jobs and then manually update the ports with vulnerabilities after reading UPDATING. Is this the best way? Is this manual way feasible for managing a dozen servers? I used to run portupgrade in cron jobs, but that created too much nightmare. For example, imap-uw broke for a few days recently. Someone recommended http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/small-lan.html . It's great for maintaining machines with identical ports installed, but not good when ports are installed with different options on different servers. Thanks, Bill ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best way to update ports
On 10/11/07, Bill Stwalley [EMAIL PROTECTED] wrote: Hi, I need your advice on how to update security patches for ports on a dozen servers with minimal efforts. If the servers are homogenious why not have a single /usr/local and nfs mount it? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: best way to update ports
On 10/11/07, Aryeh Friedman [EMAIL PROTECTED] wrote: On 10/11/07, Bill Stwalley [EMAIL PROTECTED] wrote: Hi, I need your advice on how to update security patches for ports on a dozen servers with minimal efforts. If the servers are homogenious why not have a single /usr/local and nfs mount it? yeah, in that situation nfs mount will be easy. My servers are in different cities, and the ports are installed with different options on different servers, for example, some postfix use unix login accounts, some postfix use courier authentication with mysql database. So unfortunately I can't share the same ports among them. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
