Re: does make buildworld/buildkernel require you to root
Aryeh M. Friedman wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 does make buildworld/buildkernel require you to root? I know installX does but build? No, you can build kernel, world and ports as an ordinary user as long as permissions on the build directories are configured appropriately. -- Bruce ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: a monster stole my /
On Tue, Apr 29, 2008 at 11:34:54 -0400 Jerry McAllister wrote: On Tue, Apr 29, 2008 at 02:40:09PM +1000, Hartleigh Burton wrote: Hiya! I have a problem with / currently being at 108% capacity. I have found a previous thread in the archives which explains a few questions but I can't find what is taking up all the additional space. At best without destroying what I still do not understand I can manage to get / to about 101% capacity. oI see you have used du. I usually do cd / du -sk * Since the 'h switches between K, G, M, I find it a little harder to eyeball than picking just one of K, M or G.I also find the -s more useful in a general situation than -dn since it gives a good general summary. The one thing I can think of would be some file that has been rm-ed but not released by some process. The space will still stay allocated until the file is released by all processes. A reboot can help that. If reboot doesn't free anything up, then you have some serious digging to do.Your / file system is quite large and you have most of the usually culprits moved somewhere else. So, you should not need anywhere near that much disk for /. The arithmetic is being done by a computer program which must have maximum sizes set for numbers (e.g., long [4 bytes], maybe ulong , etc.), not by a human being who can adjust for the size of the data (though he may make other mistakes). Try to get the raw data on which the arithmetic is done to see if the error may be there, and you could point to a program needing a correction (which may not be possible unless one goes to floating point which causes other problems) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: does make buildworld/buildkernel require you to root
On Wed, 07 May 2008 01:57:28 -0400, Aryeh M. Friedman [EMAIL PROTECTED] wrote: does make buildworld/buildkernel require you to root? I know installX does but build? No, building everything does not require superuser rights. I usually build my src/ snapshots as 'build', at /home/build, by something similar to: # su - build build$ MAKEOBJDIRPREFIX=/home/build/obj ; export MAKEOBJDIRPREFIX build$ rm -fr obj/* build$ cd src build$ ( make buildworld make buildkernel ) 21 | tee ~/logfile There are a few places where the build path is recorded, i.e. in the output of uname # uname -v FreeBSD 8.0-CURRENT #0: Mon May 5 00:43:56 EEST 2008 [EMAIL PROTECTED]:/home/build/obj/home/build/src/sys/KOBE but other than this, there should be nothing that prevents you from building as any non-root user. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Underscores in host names
Hello, I've a host on the network called GC100_000C1E00AC3F_GlobalCache, and I'm getting interesting behaviour when I try to do DNS lookups on it. Under FreeBSD, ping fails with 'Unknown server error'(distinct from the standard 'Unknown host'), and nslookup succeeds. OSX and Windows machines will do a DNS lookup on it quite happily The best explanation I can manage is that ping etc. are using different code from nslookup, and only nslookup is allowing the underscores within the hostname. Is this behaviour by design? My understanding is that underscores are not strictly permitted, but that most implementations choose to allow them unless there's a specific reason not to. Regards, Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Automounting External USB Drive on FreeBSD 7.x
Hello list, I have a requirement to automatically mount a USB disk to, say, ~backup/data automatically when the device is plugged to into the machine. I can handle/manage the umount part. -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Oh My God! They killed init! You Bastards! --from a /. post ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD 7 enable ipaq driver
Sam Fourman Jr. wrote: also I just found out I bet this patch would fix my problem http://www.freebsd.org/cgi/query-pr.cgi?pr=121184cat= Interesting, I have a HTC hermes (well orange spv m3100, same thing) and was going to try the /usr/ports/palm/uppc-kmod to get it working but I'll give this patch a try. Sam Fourman Jr. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Automounting External USB Drive on FreeBSD 7.x
El día Wednesday, May 07, 2008 a las 01:32:10PM +0300, Odhiambo Washington escribió: Hello list, I have a requirement to automatically mount a USB disk to, say, ~backup/data automatically when the device is plugged to into the machine. I can handle/manage the umount part. You could use and configure the amd(8) for this; it will mount the device (when it is plug'ed in) on 'cd ~backup/data' or any other access, and will umount it when not busy after some time; matthias -- Matthias Apitz Manager Technical Support - OCLC GmbH Gruenwalder Weg 28g - 82041 Oberhaching - Germany t +49-89-61308 351 - f +49-89-61308 399 - m +49-170-4527211 e [EMAIL PROTECTED] - w http://www.oclc.org/ http://www.UnixArea.de/ b http://gurucubano.blogspot.com/ Don't top-post, read RFC1855 http://www.faqs.org/rfcs/rfc1855.html A: Because it messes up the order in which people normally read text. Q: Why is it such a bad thing? A: Top-posting. Q: What is the most annoying thing on Usenet and in e-mail? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ports missing after a upgrade
Hello, I've first upgrade my system using the method described at www.digitalrage.org/downloads/Upgrade.Freebsd.pdf I had some trouble cause i've in first instance downgraded it from 6.2 to 6.0 instead of upgrading it because I didn't change the 'default release' directive in my cvs-supfile. So after the downgrade I did a upgrade from 6.0 to 6.3 and everything was working as it should. I then wanted to install tinyerp webclient and I needed some newer versions of installed software so I started a portmanager -u I was stupid enough to do it in X so it got stuck after some time... I killed it and started it again using portmanager -u -f --resume it upgrades allot of ports but then eventually stops with not all ports were upgraded check /var/log/portmanager.log for info. head -n 30 gives: -snip- portmanager 0.4.1_9 FreeBSD FreeBSD-01.domain 6.3-RELEASE-p1 FreeBSD 6.3-RELEASE-p1 #0: Thu Apr 10 13:18:08 UTC 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 autoConflicts 0 autoMoved 0 backUp 0 buildDependsAreLeaves 0 forced 0 interactive0 log1 pmMode 0 pristine 0 resume 1 Tue Apr 29 14:39:54 2008 xorg-libraries-7.3_1/x11/xorg-libraries OLD xorg-libraries-7.3_2/x11/xorg-libraries xorg-libraries-7.3_1 /x11/xorg-libraries restoring original port from backup xorg-libraries-7.3_1 /x11/xorg-libraries failed to restore from backup Tue Apr 29 14:40:44 2008 luit-1.0.2_2/x11/luit MISSING dependency of xterm-234 /x11/xterm Tue Apr 29 14:40:54 2008 luit-1.0.2_2/x11/luit failed during make, adding to ignore.db Tue Apr 29 14:40:57 2008 appres-1.0.1/x11/appres MISSING dependency of xorg-apps-7.3 /x11/xorg-apps Tue Apr 29 14:41:06 2008 -snip- the log lists allot of different ports not upgraded all because MISSING dependency of ... I hope somebody knows a way to findout what and why this is going wrong. Greetings, Geert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
chmod operation on directories / files
Hello, How do I chmod separately files and directories? If I use chmod -R 644 then it will go through all the subdirectories assigning everything 644 permissions, directories including. Many thanks! -- Zbigniew Szalbot www.lc-words.com smime.p7s Description: S/MIME Cryptographic Signature
Re: chmod operation on directories / files
sorry.. | xargs chmod instead of | xargs | chmod ...
On Wed, 2008-05-07 at 16:14 +0200, Julien Cigar wrote:
find your_dir -type (f|d) | xargs | chmod ...
or
find your_dir -type (f|d) -exec chmod {} \;
On Wed, 2008-05-07 at 13:56 +0200, Zbigniew Szalbot wrote:
Hello,
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
Many thanks!
--
Julien Cigar
Belgian Biodiversity Platform
http://www.biodiversity.be
Université Libre de Bruxelles (ULB)
Campus de la Plaine CP 257
Bâtiment NO, Bureau 4 N4 115C (Niveau 4)
Boulevard du Triomphe, entrée ULB 2
B-1050 Bruxelles
Mail: [EMAIL PROTECTED]
@biobel: http://biobel.biodiversity.be/person/show/471
Tel : 02 650 57 52
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
find your_dir -type (f|d) | xargs | chmod ...
or
find your_dir -type (f|d) -exec chmod {} \;
On Wed, 2008-05-07 at 13:56 +0200, Zbigniew Szalbot wrote:
Hello,
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
Many thanks!
--
Julien Cigar
Belgian Biodiversity Platform
http://www.biodiversity.be
Université Libre de Bruxelles (ULB)
Campus de la Plaine CP 257
Bâtiment NO, Bureau 4 N4 115C (Niveau 4)
Boulevard du Triomphe, entrée ULB 2
B-1050 Bruxelles
Mail: [EMAIL PROTECTED]
@biobel: http://biobel.biodiversity.be/person/show/471
Tel : 02 650 57 52
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
Hello,
Baptiste Grenier pisze:
Using find(1), you can try something like this:
For files:
find /plop -type f -exec chmod 644 '{}' \;
For dirs:
find /plop -type d -exec chmod 755 '{}' \;
I have recieved many helpful replies. Thank you all. The above did the trick
for me. I have saved it for future reference!
Thanks!
--
Zbigniew Szalbot
www.lc-words.com
smime.p7s
Description: S/MIME Cryptographic Signature
Re: chmod operation on directories / files
Le 07/05/08 à 14:00, Zbigniew Szalbot téléscripta :
Hello,
Hi,
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
Using find(1), you can try something like this:
For files:
find /plop -type f -exec chmod 644 '{}' \;
For dirs:
find /plop -type d -exec chmod 755 '{}' \;
Many thanks!
HTH,
Baptiste
--
Baptiste Grenier | PGP: 0x069112E2
HealthGrid SysAdmin
http://healthgrid.org/
pgp6YSoa5aV8Z.pgp
Description: PGP signature
Re: chmod operation on directories / files
On Wednesday 07 May 2008 13:56, Zbigniew Szalbot wrote: How do I chmod separately files and directories? If I use chmod -R 644 then it will go through all the subdirectories assigning everything 644 permissions, directories including. Use the symbolic form for permissions and use X, which is true if any of the execute bits is currently set, or if the argument is a directory. chmod -R =r,u+w,+X . (set read for all, add user write, add all execute bits if required) should give you 644 on files, 755 on directories and executables. Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
On Wed, May 07, 2008 at 01:56:42PM +0200, Zbigniew Szalbot wrote:
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
How about?
find . -type d -exec chmod 755 {} \;
find . -type f -exec chmod 644 {} \;
If there are a lot of them, you might want to pipe to xargs.
Cheers,
Gordon
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: suggestion on a backup utility
On Tue, May 06, 2008 at 12:06:03PM -0400, David Banning wrote: I wonder if anyone can recommend a good backup utility for FreeBSD. If it's in the ports, great. I would like to just specify which directories I would like to backup, how often and have it tar or zip the files into a directory - if it has off-site ftp, fine, but I can do that part myself via crontab. I realize I could just make a script file with some tar commands, but I'm looking for something that is quicker to maintain and allows me to organize what I'm backing up. I have been using reoback but recently I ran into some problems with is duplicating files X 10! - I looked into to solving it but it might be easier to just try something else. For backing up purposes, I use a number of tools. For files that I'm constantly changing, then I check them into subversion. This includes the files for my website, since it is in a constant state of flux. Then it's just a case of checking out the tree and running $ svn update on it on other machines when I edit anything. For databases (fairly static with few updates), I just drop the database and scp the file to other machines/disks. For a tree that I'm constantly adding to but the content is then unchanging, my LaTeX letters, templates other documents, I use rsync: $ rsync -avruz ./latex/ [EMAIL PROTECTED]:~/latex Hence, just a few files that I've added since last backup get copied across. I backup config files with scp along with any scripts I may have written. I use these methods to keep a server, workstation and laptop in sync. I don't archive anything (eg. write it to CD or DVD). In case of fire, I grab the laptop run. In case of asteroid impact, my data dies with me ;) My audio CDs will be covered by insurance. If I had directories with piles of data in it, then I'd use dump/restore but I don't. OS files, I don't give a monkeys about, I can always rebuild, ditto ports. As you see, I think you should use a number of different tools strategies dependent on the type of data you are backing up. They're all scriptable but I tend to just backup when something has changed rather than using cron. You soon get into the habit. All my machines are protected by UPSes. Regards, -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
Try with
find -type d -exec chmod 755 {} \;
find -type f -exec chmod 644 {} \;
Bye
Valerio Daelli
On Wed, May 7, 2008 at 1:56 PM, Zbigniew Szalbot [EMAIL PROTECTED]
wrote:
Hello,
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
Many thanks!
--
Zbigniew Szalbot
www.lc-words.com
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports missing after a upgrade
On Wed, 07 May 2008 13:42:00 +0200 Geert Geurts [EMAIL PROTECTED] wrote: I was stupid enough to do it in X so it got stuck after some time... I killed it and started it again using That's not normally a problem. xorg-libraries-7.3_1 /x11/xorg-libraries restoring original port from backup xorg-libraries-7.3_1 /x11/xorg-libraries failed to restore from backup How old was xorg? Have you already been through the 7.2 upgrade? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Underscores in host names
In response to Christopher Key [EMAIL PROTECTED]: Hello, I've a host on the network called GC100_000C1E00AC3F_GlobalCache, and I'm getting interesting behaviour when I try to do DNS lookups on it. Under FreeBSD, ping fails with 'Unknown server error'(distinct from the standard 'Unknown host'), and nslookup succeeds. OSX and Windows machines will do a DNS lookup on it quite happily The best explanation I can manage is that ping etc. are using different code from nslookup, and only nslookup is allowing the underscores within the hostname. Is this behaviour by design? My understanding is that underscores are not strictly permitted, but that most implementations choose to allow them unless there's a specific reason not to. I had this discussion with some colleagues a short time back. Our conclusion (based on some research and experimentation): 1) Underscores are not valid in domain names. 2) _most_ DNS systems will work with them anyway. 3) Just enough DNS systems don't work with _, that it's a really bad idea to use them in domain names. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Underscores in host names
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Bill Moran wrote: In response to Christopher Key [EMAIL PROTECTED]: Hello, I've a host on the network called GC100_000C1E00AC3F_GlobalCache, and I'm getting interesting behaviour when I try to do DNS lookups on it. Under FreeBSD, ping fails with 'Unknown server error'(distinct from the standard 'Unknown host'), and nslookup succeeds. OSX and Windows machines will do a DNS lookup on it quite happily The best explanation I can manage is that ping etc. are using different code from nslookup, and only nslookup is allowing the underscores within the hostname. Is this behaviour by design? My understanding is that underscores are not strictly permitted, but that most implementations choose to allow them unless there's a specific reason not to. I had this discussion with some colleagues a short time back. Our conclusion (based on some research and experimentation): 1) Underscores are not valid in domain names. 2) _most_ DNS systems will work with them anyway. 3) Just enough DNS systems don't work with _, that it's a really bad idea to use them in domain names. DNS is perfectly happy with underscores in RRs generally -- it's just forbidden for them to appear in hostnames in the DNS specifically. This is to distinguish between hostnames and other data such as SRV records. Cheers, Matthew - -- Dr Matthew J Seaman MA, D.Phil. Flat 3 7 Priory Courtyard PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW, UK -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.9 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREDAAYFAkghqO4ACgkQ3jDkPpsZ+VZBewCdHQWo8t2uUoAktf84NdTG6CKX FIwAoIBMMlu9k6+8N1Wypz0Wm33v7VuD =fU7u -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: chmod operation on directories / files
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Zbigniew
Szalbot
Sent: Wednesday, May 07, 2008 12:57 PM
To: freebsd-questions@freebsd.org
Subject: chmod operation on directories / files
Hello,
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
Many thanks!
--
Zbigniew Szalbot
www.lc-words.com
find /test -type f -exec chmod 644 {} \;
Replace /test with full path to your directory.
For directories use '-type d'.
Best Regards
Catalin Miclaus
Network/Security ISP-Data
Starcomms Ltd.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Best Java 1.6 JDK for FreeBSD?
Hi guys, We're currently running a busy java web application with diablo-jdk 1.5 and jboss 4.0.5 on FreeBSD 6.2 (yes it's outdated, will upgrade to 6.3 very soon). That combination has proven to be very stable in the past. Now we'd like to start making use of some 1.6 only features in the app and thus were wondering about 1.6 support on java. Now seeing that there's no diablo jdk for 1.6 afaict I have three options: 1. Use linux-sun-jdk 1.6 using the linux compatibility layer 2. Use the native FreeBSD jdk 1.6 (http://www.eyesbeyond.com/freebsddom/java/status.html) but which is officially only beta quality 3. Forget about 1.6 altogether and stick to 1.5 semantics in our code Which one do you think is the most stable option? Well, the way I've put it 3. clearly is the most stable but I'd like an honest consideration of 1. and 2. Does anybody use 1.6 in production on FreeBSD? What have your experiences been? Gunther ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Ports/Packages Philosophy
On 5/6/08, Dsiuh Djsids [EMAIL PROTECTED] wrote: I am interested to know what some of your software installing/updating philosophies are regarding ports/packages on either a server or a home desktop. For example, how often do you update your software and when you do, do you run something like 'portupgrade -a' or individually take care of each piece of software? Upgrades...unless they're very pressing security issues that directly relate to the well-being of my server, I upgrade as rarely as possible. Upgrading things has a tendency to break stuff at the most inopportune time. Frankly, I'm not sure why everyone is so adamant about having the latest updates. If the program does what I require, I would rather have a more aged version which has been given time to get the bugs worked out. As far as building software, I do this as rarely as possible as well. Unless there is a specific functionality which requires a set of non-default compiler flags, I use packages. It makes no sense to waste time re-compiling the same program, with the same compiler options, for the same processor architecture as has already been done by countless others. For example, if you ran a lab of 300 identical computers, would you re-compile every program on each computer? Probably not. If I can get a pre-compiled binary from a reliable source, I'd rater do that, than sit around all day waiting for software to build in hopes of benefiting from a few custom build options. My 2 cents worth. -Modulok- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
sorry, I forgot to reply to all.
for directorys, you can use:
chmod 755 */
if the files have a suffix. you can use
chmod 644 *.*
for the files don't have the suffix, I guess a regex should solve it.
But I'm not familiar with regex. :-)
On 5/7/08, Catalin Miclaus [EMAIL PROTECTED] wrote:
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Zbigniew
Szalbot
Sent: Wednesday, May 07, 2008 12:57 PM
To: freebsd-questions@freebsd.org
Subject: chmod operation on directories / files
Hello,
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the subdirectories
assigning everything 644 permissions, directories including.
Many thanks!
--
Zbigniew Szalbot
www.lc-words.com
find /test -type f -exec chmod 644 {} \;
Replace /test with full path to your directory.
For directories use '-type d'.
Best Regards
Catalin Miclaus
Network/Security ISP-Data
Starcomms Ltd.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
--
Regards,
Wang Yi
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: suggestion on a backup utility
For backing up purposes, I use a number of tools. Thanks Frank for your input. I have chosen for now use Chuck's suggestion, that being cvsup. The only thing I would like to do is omit certain files that I don't want backed up - large unimportant files - some cache and log files. I'll look at your suggestions and see if there is a way to tweak my backup strategy for the best mix. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Complimentary Tickets to UK's Top Trading Seminar
We have a fabulous opportunity for you to attend Traders Secrets 2008 - Absolutely No Charge Attend Traders Secrets 2008 - a fact-filled two-hour seminar where you'll learn direct from successful, full-time traders from the Award-winning Knowledge to Action. http://dotm1.net/t.aspx?l=983562i=270318406 They can help you if: - You are looking to supplement your current income - You would like to work for yourself - You are worried about your pension - You are retired and would like to maximise your savings http://dotm1.net/t.aspx?l=983562i=270318406 At the free seminar you will learn simple strategies to: - Create immediate monthly income stream from trading - Identify high profitability stocks to trade now - Risk manage your portfolio with only 1% risk per trade - Generate long term wealth from only 1 hour a month - Identify solid profitable stocks for long term wealth http://dotm1.net/t.aspx?l=983562i=270318406 After completing the first full calendar month of trading I gained £673.82, a growth of 14% on my account. Philip Bradshaw, Traders University Graduate February 2008. Claim your free tickets for Traders Secrets now. There's no charge or obligation of any kind. We'll even give you a complimentary Traders Starter Pack worth £300 that includes Trademinder, our proprietary trade management software. Please note: Our Seminars are purely educational in nature, we do not advise or tip and any trades shown in any seminar are for educational illustration purposes only. Past performance is no guarantee of future performance and you may not get back the amount you invest. The value of investments and the income from them may go down as well as up and are not guaranteed. CFDs and Spread Bets are highly leveraged products and carry a high level of risk to your capital. Due to the leverage offered it is possible for you to incur losses in excess of your initial margin. These products are not suitable for all investors so please make sure that you understand the risks involved. Rates of exchange may cause the value of investments to go up or down. The Traders UniversityT programme is presented by Knowledge to Action Limited, which is an Appointed Representative of Direct Sharedeal Limited which is authorised and regulated by the Financial Services Authority. Copyright © 2007, Knowledge to Action Ltd. All Rights Reserved ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Need to download FreeBSD
Mr./Ms.: I am trying to download FreeBsd from http://www.freebsd.org/fr/where.html. But so far, I have been unsuccessful at it as I am asked to provide a user name and a password. Anonymous login does not work either. Though some few days ago I started downloading Disc1 (iso) just to find out that the checksum was not right. Can I you assist, please ? Best regards, --- Pierre Claver B. Traore Bamako, Mali ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to download FreeBSD
In response to Ecole Point Bleu [EMAIL PROTECTED]: Mr./Ms.: I am trying to download FreeBsd from http://www.freebsd.org/fr/where.html. But so far, I have been unsuccessful at it as I am asked to provide a user name and a password. Anonymous login does not work either. Though some few days ago I started downloading Disc1 (iso) just to find out that the checksum was not right. Can I you assist, please ? I just tried and it's working fine for me. What software are you using for the download? Perhaps your FTP client is doing it wrong. Checksum problems occur sometimes during downloads ... that's the _reason_ checksums are provided, to detect corrupted downloads. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: suggestion on a backup utility
You can do all of this with amanda and simply run your backup from cron. amanda.org David Banning wrote: For backing up purposes, I use a number of tools. Thanks Frank for your input. I have chosen for now use Chuck's suggestion, that being cvsup. The only thing I would like to do is omit certain files that I don't want backed up - large unimportant files - some cache and log files. I'll look at your suggestions and see if there is a way to tweak my backup strategy for the best mix. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Automounting External USB Drive on FreeBSD 7.x
Odhiambo Washington wrote: Hello list, I have a requirement to automatically mount a USB disk to, say, ~backup/data automatically when the device is plugged to into the machine. I can handle/manage the umount part. Have a look at: http://www.freebsd.org/cgi/query-pr.cgi?pr=122726 This port waiting for commit for ~3 weeks, but it sounds like it's what you want. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Ports/Packages Philosophy
Date: Wed, 7 May 2008 07:53:37 -0600 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: freebsd-questions@freebsd.org Subject: Re: Ports/Packages Philosophy On 5/6/08, Dsiuh Djsids [EMAIL PROTECTED] wrote: I am interested to know what some of your software installing/updating philosophies are regarding ports/packages on either a server or a home desktop. For example, how often do you update your software and when you do, do you run something like 'portupgrade -a' or individually take care of each piece of software? Upgrades...unless they're very pressing security issues that directly relate to the well-being of my server, I upgrade as rarely as possible. Upgrading things has a tendency to break stuff at the most inopportune time. Frankly, I'm not sure why everyone is so adamant about having the latest updates. If the program does what I require, I would rather have a more aged version which has been given time to get the bugs worked out. As far as building software, I do this as rarely as possible as well. Unless there is a specific functionality which requires a set of non-default compiler flags, I use packages. It makes no sense to waste time re-compiling the same program, with the same compiler options, for the same processor architecture as has already been done by countless others. For example, if you ran a lab of 300 identical computers, would you re-compile every program on each computer? Probably not. If I can get a pre-compiled binary from a reliable source, I'd rater do that, than sit around all day waiting for software to build in hopes of benefiting from a few custom build options. something to think about to is that the ports collection will be more current than packages. Example of this is GNOME 2.16 being listed in packages collection for a while after GNOME 2.18 came out. If you use a custom kernel, ports would be compiled to run a bit more optimized for your processor (i.e. 686) than the GENERIC kernel (486-586-686) but good coding of the program should not have this kind of reliance anyway. if you want the system up and running fast with known working versions, definitely stick with packages. if you want the latest software, use ports and keep them upgraded. its always a personal call. _ Get Free (PRODUCT) RED™ Emoticons, Winks and Display Pics. http://joinred.spaces.live.com?ocid=TXT_HMTG_prodredemoticons_052008___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best Java 1.6 JDK for FreeBSD?
Gunther Mayer wrote: Does anybody use 1.6 in production on FreeBSD? What have your experiences been? Our Tomcat-based website, which currently gets ca 75000 requests per day, has been running with native jdk-1.6.0.3p3 for 6 months. I haven't noticed any problems -- Toomas Aas ... I'd give my right arm to be ambidextrous. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: suggestion on a backup utility
On Wed, May 07, 2008 at 10:25:12AM -0400, David Banning wrote: For backing up purposes, I use a number of tools. Thanks Frank for your input. I have chosen for now use Chuck's suggestion, that being cvsup. The only thing I would like to do is omit certain files that I don't want backed up - large unimportant files - some cache and log files. I'll look at your suggestions and see if there is a way to tweak my backup strategy for the best mix. Hi David, Obviously, you're best placed to decide which backup strategies are best to use with your setup. With cvsup you can use refuse files which might be of use. It means that some parts of the tree are ignored when cvsup is run. The manpage describes the usage of them. Best of luck and may I wish you no data loss! Regards, -- Frank Contact info: http://www.shute.org.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Best Java 1.6 JDK for FreeBSD?
On Wednesday 07 May 2008 15:44:50 Toomas Aas wrote: Gunther Mayer wrote: Does anybody use 1.6 in production on FreeBSD? What have your experiences been? Our Tomcat-based website, which currently gets ca 75000 requests per day, has been running with native jdk-1.6.0.3p3 for 6 months. I haven't noticed any problems I have not been using it in FreeBSD but I had to downgrade jdk to 1.5 on my Ubuntu machine in order to get my browsers to work correctly. For this reason, I would stay away from it in FreeBSD as well, for the time being. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to download FreeBSD
Bill Moran wrote: In response to Ecole Point Bleu [EMAIL PROTECTED]: Mr./Ms.: I am trying to download FreeBsd from http://www.freebsd.org/fr/where.html. But so far, I have been unsuccessful at it as I am asked to provide a user name and a password. Anonymous login does not work either. Though some few days ago I started downloading Disc1 (iso) just to find out that the checksum was not right. Can I you assist, please ? I just tried and it's working fine for me. What software are you using for the download? Perhaps your FTP client is doing it wrong. ftp://ftp.freebsd.org/ is currently rejecting my anonymous in 50% of a small sample of attempts. To OP: you may wish to try one of the mirrors closer to you (Spain, France, South Africa?? I have no idea how you connect to the world). See http://www.freebsd.org/doc/fr_FR.ISO8859-1/books/handbook/mirrors-ftp.html Another thought is to consider using Bittorrent if it is available to you. As this splits the files into many small chunks, checksums each one independently, and can be stopped and restarted at any time with very little loss of already transferred bytes, you may find it more resilient in your situation. --Jon Radel smime.p7s Description: S/MIME Cryptographic Signature
Re: [SSHd] Increasing wait time?
On Wednesday 07 May 2008 06:16:19 Norbert Papke wrote: On May 6, 2008, Gilles wrote: Is there a way to configure SSHd, so that the wait time between login attempts increases after X failed tries? I run sshd via inetd rather than as a stand-alone daemon. inetd provides optional rate limiting functionality. For instance. putting ssh stream tcp nowait/20/4/10 root /usr/sbin/sshd sshd -i into /etc/inetd.conf set a limit of * 20 overall ssh connections * 4 connection attempts per minute * at most 10 connections from a single IP This works very well on a personal server, not sure how it scales up. So if I copy over some files via scp, I can lock myself out. Fun stuff ;) -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SMB share not mounting at startup
I am trying to mount an SMB share at startup. I have configured (as root) .nsmbrc so I don't have to type a password. When I run mount -a, it mounts beautifully. However, when restarting the server, it will not mount automatically. According to rc.conf(5), smbfs is part of 'netfs_types' so rc should wait until after the network is started before trying to mount it (so shouldn't fail). I have an entry in /etc/fstab as follows: //[EMAIL PROTECTED]/unix_backups /mnt/snapserver smbfs rw 0 0 Does anyone have any ideas? I'm wondering if the .nsmbrc file can't be read because rc isn't running as root - and if so, where can I put .nsmbrc? Many thanks, Steve :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Fwd: Question about a recent installation
-- Forwarded message -- From: Norman Maurer [EMAIL PROTECTED] Date: 2008/5/7 Subject: Re: Question about a recent installation To: Mario Vazquez [EMAIL PROTECTED] 2008/5/6 Mario Vazquez [EMAIL PROTECTED]: On May 5, 2008, at 6:17 PM, doug wrote: To give limited priviledges I think sudo (as in linux??) would be used. I concur that sudo is really a very good way of managing privileges. I don't even know the root passwords on the systems that I administer (OK, I do have them stored in a nice secured place if I ever do need them). Cheers, -j -- In fact, I use sudo for managing too. My question is not about sudo itself, it's about the possible risks (if any) of having a default installation (FreeBSD7-RELEASE) which assigns ownership of the root folder to root:wheel, thus allowing anyone with wheel privileges be able to see (and copy btw) root folder contents. I still not get the point.. If the files are create the default is a umask of 022 anway. So if you want to protect your files in the root folder to get accessed, use umask 066 and maybe chmod 700 /root. Cheers Norman ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Delaying pf.conf loading
Hello. Is it possible to delay the loading of pf rules from pf.conf after ppp has connected and named is running through rc.conf? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Fwd: Question about a recent installation
Norman Maurer [EMAIL PROTECTED] writes: -- Forwarded message -- From: Norman Maurer [EMAIL PROTECTED] Date: 2008/5/7 Subject: Re: Question about a recent installation To: Mario Vazquez [EMAIL PROTECTED] 2008/5/6 Mario Vazquez [EMAIL PROTECTED]: On May 5, 2008, at 6:17 PM, doug wrote: To give limited priviledges I think sudo (as in linux??) would be used. I concur that sudo is really a very good way of managing privileges. I don't even know the root passwords on the systems that I administer (OK, I do have them stored in a nice secured place if I ever do need them). Cheers, -j -- In fact, I use sudo for managing too. My question is not about sudo itself, it's about the possible risks (if any) of having a default installation (FreeBSD7-RELEASE) which assigns ownership of the root folder to root:wheel, thus allowing anyone with wheel privileges be able to see (and copy btw) root folder contents. I still not get the point.. If the files are create the default is a umask of 022 anway. So if you want to protect your files in the root folder to get accessed, use umask 066 and maybe chmod 700 /root. Perhaps more to the point of the question, there is nothing in /root on a default system which has any need of being kept secret. -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMB share not mounting at startup
Stephen Allen wrote: I am trying to mount an SMB share at startup. I have configured (as root) .nsmbrc so I don't have to type a password. When I run mount -a, it mounts beautifully. However, when restarting the server, it will not mount automatically. According to rc.conf(5), smbfs is part of 'netfs_types' so rc should wait until after the network is started before trying to mount it (so shouldn't fail). I have an entry in /etc/fstab as follows: //[EMAIL PROTECTED]/unix_backups /mnt/snapserver smbfs rw 0 0 Does anyone have any ideas? I'm wondering if the .nsmbrc file can't be read because rc isn't running as root - and if so, where can I put .nsmbrc? Many thanks, Steve :) Have a look at /etc/nsmb.conf This is where smbfs looks after trying ~/.nsmbrc Don't know if this is really your problem, but it is worth a try. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SMB share not mounting at startup
Stephen Allen wrote: I am trying to mount an SMB share at startup. I have configured (as root) .nsmbrc so I don't have to type a password. When I run mount -a, it mounts beautifully. However, when restarting the server, it will not mount automatically. According to rc.conf(5), smbfs is part of 'netfs_types' so rc should wait until after the network is started before trying to mount it (so shouldn't fail). I have an entry in /etc/fstab as follows: //[EMAIL PROTECTED]/unix_backups /mnt/snapserver smbfs rw 0 0 Does anyone have any ideas? I'm wondering if the .nsmbrc file can't be read because rc isn't running as root - and if so, where can I put .nsmbrc? Many thanks, Steve :) I don't think $HOME or $USER are already set at the time hard disks are mounted. Use the global file /etc/nsmb.conf as suggested in another mail. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delaying pf.conf loading
On Wednesday 07 May 2008 19:21:22 Justin Jereza wrote:
Hello.
Is it possible to delay the loading of pf rules from pf.conf after ppp
has connected and named is running through rc.conf?
No, the design of the rc system does not allow for rc.conf to alter the order
of the scripts executed, since rc.conf is loaded on a per-script basis and
the ordering is done based on 'comments' in the scripts themselves.
You can however, load an empty table with the appropreate name, then create an
rc script in /usr/local/etc/rc.d/ that fills the table with hostnames to
solve your problem.
Here's an example:
/etc/rc.conf:
pf_dyntables_enable=YES
pf_dyntables_list=adservers
/etc/pf.conf:
table adservers persist
/etc/pf/dynamic/adservers:
cdn.fastclick.net
ad.doubleclick.net
# etc etc
/usr/local/etc/rc.d/pf_dyntables:
#!/bin/sh
#
# PROVIDE: pf_dyntables
# REQUIRE: named pf ppp
. /etc/rc.subr
name=pf_dyntables
rcvar=`set_rcvar`
start_cmd=${name}_start
stop_cmd=:
load_rc_config $name
: ${pf_dyntables_enable=NO}
: ${pf_dyntables_dir=/etc/pf/dynamic}
: ${pf_dyntables_list=NONE}
pf_dyntables_start()
{
if test x${pf_dyntables_list} != xNONE; then
for table in ${pf_dyntables_list}; do
echo Loading table $table
cat ${pf_dyntables_dir}/${table} |/usr/bin/xargs \
${pf_program} -t ${table} -Tadd
done
else
echo hi
fi
}
run_rc_command $1
--
Mel
Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delaying pf.conf loading
That ought to work. Thanks! :-)
On Thu, May 8, 2008 at 2:28 AM, Mel [EMAIL PROTECTED] wrote:
On Wednesday 07 May 2008 19:21:22 Justin Jereza wrote:
Hello.
Is it possible to delay the loading of pf rules from pf.conf after ppp
has connected and named is running through rc.conf?
No, the design of the rc system does not allow for rc.conf to alter the order
of the scripts executed, since rc.conf is loaded on a per-script basis and
the ordering is done based on 'comments' in the scripts themselves.
You can however, load an empty table with the appropreate name, then create
an
rc script in /usr/local/etc/rc.d/ that fills the table with hostnames to
solve your problem.
Here's an example:
/etc/rc.conf:
pf_dyntables_enable=YES
pf_dyntables_list=adservers
/etc/pf.conf:
table adservers persist
/etc/pf/dynamic/adservers:
cdn.fastclick.net
ad.doubleclick.net
# etc etc
/usr/local/etc/rc.d/pf_dyntables:
#!/bin/sh
#
# PROVIDE: pf_dyntables
# REQUIRE: named pf ppp
. /etc/rc.subr
name=pf_dyntables
rcvar=`set_rcvar`
start_cmd=${name}_start
stop_cmd=:
load_rc_config $name
: ${pf_dyntables_enable=NO}
: ${pf_dyntables_dir=/etc/pf/dynamic}
: ${pf_dyntables_list=NONE}
pf_dyntables_start()
{
if test x${pf_dyntables_list} != xNONE; then
for table in ${pf_dyntables_list}; do
echo Loading table $table
cat ${pf_dyntables_dir}/${table} |/usr/bin/xargs \
${pf_program} -t ${table} -Tadd
done
else
echo hi
fi
}
run_rc_command $1
--
Mel
Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delaying pf.conf loading
BTW, you might want to fix your reply-to address. I got the following: Delivery to the following recipient failed permanently: [EMAIL PROTECTED] Technical details of permanent failure: PERM_FAILURE: Gmail tried to deliver your message, but it was rejected by the recipient domain. The error that the other server returned was: 554 554 5.7.1 [EMAIL PROTECTED]: Recipient address rejected: Access denied. We recommend contacting the other email provider for further information about the cause of this error. Thanks for your continued support. (state 14) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
about seamonkey
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I was wondering if anyone here knew the answer, I have built seamonkey with ports, but everytime I start it up, two windows pop up (the browser and the mail window). Seeing as I don't want the mailer EVER to pop up (I use thunderbird for that), anyone know how I can suppress the seamoneky mail windows from popping up? I want to use it by default with eclipse, but as it stands now, I can't do that. -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIIgucz62J6PPcoOkRAmFgAKCH+44azd5N9yiMHzwMeySpzsYXFACfcnpu E308F1ntDaFE7eKnJEqLJKs= =Tf9r -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
HDD missing from sysinstall
On Thursday 01 May 2008 22:31:13 Cameigons wrote: I just want to say I'm having the same problem. I have an asus p5n-e SLI, two seagate 250GB sata2 HD's. When trying to install FreeBSD 7.0-Release, the sysinstall pops up the message No Disks Found!(...). And after that I can't boot up neither my Win Xp, Linux or Freebsd 6.2 anymore... Has anyone figured out a solution yet? :/ A problem report now exists at http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/123481 Best regards Troels Kofoed Jacobsen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
about seamonkey
Chuck Robey writes: I was wondering if anyone here knew the answer, I have built seamonkey with ports, but everytime I start it up, two windows pop up (the browser and the mail window). Seeing as I don't want the mailer EVER to pop up (I use thunderbird for that), anyone know how I can suppress the seamoneky mail windows from popping up? I use SeaMonkey; I build it pretty much as vanilla as it gets. Never had this happen. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Delaying pf.conf loading
On Thu, 8 May 2008 01:21:22 +0800
Justin Jereza [EMAIL PROTECTED] wrote:
Hello.
Is it possible to delay the loading of pf rules from pf.conf after ppp
has connected and named is running through rc.conf?
What you probably need is to do a pf resync; rc.d/ppp already does
this, but too early for named. Doing it after named is running is
probably not sufficient as there is no guarantee that ppp has
established a network connection.
I wrote a script that waits until it can ping external hosts, and then
does a resync:
#!/bin/sh
#
# PROVIDE: networkwait
# REQUIRE: named
# BEFORE: ntpdate
. /etc/rc.subr
networkwait_enable=${networkwait_enable:-NO}
name=networkwait
rcvar=`set_rcvar`
stop_cmd=:
start_cmd=wait_network
wait_network(){
if [ $networkwait_ping_hosts ] ; then
host_list=${networkwait_ping_hosts}
else
# No hosts supplied - use external nameservers
host_list=`awk '/^ *nameserver/ {print $2}
' /etc/resolv.conf | grep -E -v '^127\.0+\.0+\.0*1'`
fi
echo -n Waiting for network access ...
while true ; do
for inet_host in $host_list ; do
if ping -nc1 $inet_host 21 /dev/null ; then
echo ping to ${inet_host} succeeded.
# Re-Sync ipfilter and pf in case
# they had failed DNS lookups
/etc/rc.d/ipfilter resync
/etc/rc.d/pf resync
exit 0
fi
done
sleep 5
done
}
load_rc_config ${name}
run_rc_command $1
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
minpasswordlen and login.conf not working on 6 or 7 series
Hi, I wanted to set the minimum length of passwords of my users so I have done the followings in login.conf 1) added :minpasswordlen=5:\ todefault like: default:\ :passwd_format=md5:\ :copyright=/etc/COPYRIGHT:\ :welcome=/etc/motd:\ :setenv=MAIL=/var/mail/$,BLOCKSIZE=K,FTP_PASSIVE_MODE=YES:\ :path=/sbin /bin /usr/sbin /usr/bin /usr/games /usr/local/sbin /usr/loca l/bin ~/bin:\ :nologin=/var/run/nologin:\ :cputime=unlimited:\ :datasize=unlimited:\ :stacksize=unlimited:\ :memorylocked=unlimited:\ :memoryuse=unlimited:\ :filesize=unlimited:\ :coredumpsize=unlimited:\ :openfiles=unlimited:\ :minpasswordlen=5:\ :maxproc=unlimited:\ :sbsize=unlimited:\ :vmemoryuse=unlimited:\ 2) Have run cap_mkdb /etc/login.conf After that still the users can change their passwords to less than 5 characters and no warning are shown to the user . I have tested this at FreeBSD 6.2, FreeBSD 6.3 and even on FreeBSD 7.0 it doesn't work But I have found a FreeBSD 4.11 and followed the same steps and I got following on passwd command: ns1~# passwd x Changing local password for x. New password: Please enter a password at least 5 characters in length. New password: Password unchanged. Am I missing something here? Or this may be a bug on FreeBSD 6.X and 7.X Regards. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: minpasswordlen and login.conf not working on 6 or 7 series
On Wednesday 07 May 2008 23:00:04 Omer Faruk Sen wrote: I wanted to set the minimum length of passwords of my users so I have done the followings in login.conf 1) added :minpasswordlen=5:\ todefault like: Am I missing something here? Or this may be a bug on FreeBSD 6.X and 7.X You didn't read the login.conf manpage: The minpasswordlen and minpasswordcase facilities for enforcing restric- tions on password quality, which used to be supported by login.conf, have been superseded by the pam_passwdqc(8) PAM module. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: minpasswordlen and login.conf not working on 6 or 7 series
Actually I have read it but haven't read all the man pages because even in 7.0 manual page for login.conf still have: minpasswordlennumber6 The minimum length a local password may be. I think that line should be removed from manual page too. Regards, thanks for the fast reply. On Thu, May 8, 2008 at 12:16 AM, Mel [EMAIL PROTECTED] wrote: On Wednesday 07 May 2008 23:00:04 Omer Faruk Sen wrote: I wanted to set the minimum length of passwords of my users so I have done the followings in login.conf 1) added :minpasswordlen=5:\ todefault like: Am I missing something here? Or this may be a bug on FreeBSD 6.X and 7.X You didn't read the login.conf manpage: The minpasswordlen and minpasswordcase facilities for enforcing restric- tions on password quality, which used to be supported by login.conf, have been superseded by the pam_passwdqc(8) PAM module. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: minpasswordlen and login.conf not working on 6 or 7 series
On Wednesday 07 May 2008 23:23:54 Omer Faruk Sen wrote: Actually I have read it but haven't read all the man pages because even in 7.0 manual page for login.conf still have: minpasswordlennumber 6 The minimum length a local password may be. I think that line should be removed from manual page too. It's confusing, but... The following capabilities are reserved for the purposes indicated and may be supported by third-party software. They are not implemented in the base system. So this basically means, that cap_mkdb /etc/login.conf will not throw an error when it sees that capability and it will also set the default value, if applicable. Programs can use getcap(3) to consult the value. For instance you could write your own login program, or consult and enforce it through a webpage, or implement it in a server program. -- Mel Problem with today's modular software: they start with the modules and never get to the software part. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: about seamonkey
Chuck Robey wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I was wondering if anyone here knew the answer, I have built seamonkey with ports, but everytime I start it up, two windows pop up (the browser and the mail window). Seeing as I don't want the mailer EVER to pop up (I use thunderbird for that), anyone know how I can suppress the seamoneky mail windows from popping up? I want to use it by default with eclipse, but as it stands now, I can't do that. Just want to make sure: Have you checked the settings ? Edit - Preferences... - Appearance - When SeaMonkey starts up, open -- Christer Hermansson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
plagued by bad hdr length
Hi I'm getting loads of bad hdr length from pf on our router running freebsd 7.0 I've tried just about everything I could find with google. Lowering the mtu on my ng devices from 1492 all the way to 1485, anything lower then that and we can't ssh out of our network and I get loads of time outs every where. I've tried also pretty much every possible solution with the scrub rules in pf, I even disabled it a few times. I honestly don't know what to try next. tcpdump -n -e - -i pflog0 2008-05-07 23:42:06.596965 rule 78/0(match): pass in on ng0: 89.240.55.163.3164 192.168.1.5.80: tcp 20 [bad hdr length 8 - too short, 20] 2008-05-07 23:42:07.051043 rule 78/0(match): pass in on ng0: 89.240.55.163.3165 192.168.1.5.80: tcp 20 [bad hdr length 8 - too short, 20] 2008-05-07 23:42:25.697087 rule 76/0(match): pass in on ng0: 80.81.242.13.51145 192.168.1.5.22: tcp 36 [bad hdr length 8 - too short, 20] 2008-05-07 23:42:30.561467 rule 77/0(match): pass in on ng1: 80.81.242.14.63900 192.168.1.5.22: tcp 36 [bad hdr length 8 - too short, 20] And here are the same log again tcpdump -n -e - -r /var/log/pflog 2008-05-07 23:42:06.596965 rule 78/0(match): pass in on ng0: 89.240.55.163.3164 192.168.1.5.80: S 3008361134:3008361134(0) win 16384 mss 1360,nop,nop,sackOK 2008-05-07 23:42:07.051043 rule 78/0(match): pass in on ng0: 89.240.55.163.3165 192.168.1.5.80: S 1482992447:1482992447(0) win 16384 mss 1360,nop,nop,sackOK 2008-05-07 23:42:25.697087 rule 76/0(match): pass in on ng0: 80.81.242.13.51145 192.168.1.5.22: S 555277666:555277666(0) win 65535 mss 1460,nop,wscale 1,nop,nop,timestamp[|tcp] 2008-05-07 23:42:30.561467 rule 77/0(match): pass in on ng1: 80.81.242.14.63900 192.168.1.5.22: S 966982942:966982942(0) win 65535 mss 1460,nop,wscale 1,nop,nop,timestamp[|tcp] Here is my ifconfig ng0: flags=88d1UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST metric 0 mtu 1492 inet wan1-ip -- wan1-gw netmask 0x ng1: flags=88d1UP,POINTOPOINT,RUNNING,NOARP,SIMPLEX,MULTICAST metric 0 mtu 1492 inet wan2-ip -- wan2-gw netmask 0x Anyone out there that can lend me a hand with fixing this? Thanks Reinhold ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
On Wed, 7 May 2008 07:37:47 -0500
Gordon devel [EMAIL PROTECTED] wrote:
On Wed, May 07, 2008 at 01:56:42PM +0200, Zbigniew Szalbot wrote:
How do I chmod separately files and directories?
If I use chmod -R 644 then it will go through all the
subdirectories assigning everything 644 permissions, directories
including.
How about?
find . -type d -exec chmod 755 {} \;
find . -type f -exec chmod 644 {} \;
If there are a lot of them, you might want to pipe to xargs.
Or you could + instead of \;
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chmod operation on directories / files
On Wed, 07 May 2008 16:17:12 +0200 Julien Cigar [EMAIL PROTECTED] wrote: sorry.. | xargs chmod instead of | xargs | chmod ... It will still fail on a directory name that contains a space (this is a difference between Gnu and BSD). You need: find ... -print0 | xargs -0 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Mounting USB CD-ROM manually, after boot
Hi everyone, To get right to the chase, FBSD 7.0, I plug in an external USB CD-ROM device with a CD (of FreeBSD 7.0) and I want to mount it manually into the filesystem. The device shows up with a label, and appears as /dev/cd0 (in dmesg). # mount /dev/cd0 /cdrom ...fails, with a: mount: /dev/cd0 : Invalid Argument I have nothing else in /dev that would indicate any new device was attached. I know for fact the .iso is burned correctly, because I can boot from the same CD on another PC. Even still, a bad ISO burn still shouldn't prevent me from mounting AFAIK. I've also tried all manner of cd0a etc, but they don't exist. (I can confirm cd0 is the only entry that appears in /dev after USB insertion). Can anyone shed some quick light onto the solution that I am likely purely overlooking? Thanks, Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mounting USB CD-ROM manually, after boot
Steve Bertrand wrote: Hi everyone, To get right to the chase, FBSD 7.0, I plug in an external USB CD-ROM device with a CD (of FreeBSD 7.0) and I want to mount it manually into the filesystem. The device shows up with a label, and appears as /dev/cd0 (in dmesg). # mount /dev/cd0 /cdrom ...fails, with a: mount: /dev/cd0 : Invalid Argument I have nothing else in /dev that would indicate any new device was attached. I know for fact the .iso is burned correctly, because I can boot from the same CD on another PC. Even still, a bad ISO burn still shouldn't prevent me from mounting AFAIK. I've also tried all manner of cd0a etc, but they don't exist. (I can confirm cd0 is the only entry that appears in /dev after USB insertion). Can anyone shed some quick light onto the solution that I am likely purely overlooking? Thanks, Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Try this: mount_cd9660 /dev/cd0 /mnt If that doesnt work try acd0. This works on my system at any rate. David ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mounting USB CD-ROM manually, after boot
mount: /dev/cd0 : Invalid Argument Can anyone shed some quick light onto the solution that I am likely purely overlooking? Try this: mount_cd9660 /dev/cd0 /mnt Thank you for the very quick reply. The above command that David stated worked immediately. Thanks everyone, Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [SSHd] Increasing wait time?
On May 7, 2008, Mel wrote: On Wednesday 07 May 2008 06:16:19 Norbert Papke wrote: On May 6, 2008, Gilles wrote: Is there a way to configure SSHd, so that the wait time between login attempts increases after X failed tries? I run sshd via inetd rather than as a stand-alone daemon. inetd provides optional rate limiting functionality. For instance. putting ssh stream tcp nowait/20/4/10 root /usr/sbin/sshd sshd -i into /etc/inetd.conf set a limit of * 20 overall ssh connections * 4 connection attempts per minute * at most 10 connections from a single IP This works very well on a personal server, not sure how it scales up. So if I copy over some files via scp, I can lock myself out. Fun stuff ;) Absolutely. But the same can happen with any rate limiting solution. However, in practice this has never been an issue for me. First, I tend to copy large sets of files using a single connection. Either 'scp -r' or by running tar/rsync through an ssh tunnel. Second, this kind of limit is enough to discourage script kiddies, but caps my downside risk to an acceptable (to me) one minute lock out. Anyway, it works for me. Cheers, -- Norbert. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MP3/MP4
Dear customer, http://www.revampconcepts.com/ We are pleased to get to know that you are presently on the market for MP4 and other digital products, and as the *largest specialized OEM manufacturer of mp3/MP4/DPF and other digital products *and exporter for these products in China, we sincerely hope to establish business relations with your esteemed corporation. To know more about our products, kindly visit our website: www.valor-wave.com If you are interested in our products,pls tell me;I will send you more details. -- Thks Best regards, Grace TEL:86-755-28532658 28532458 Fax:86-755-89518848 MSN: [EMAIL PROTECTED] Email:[EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] www.valor-wave.com CHINA factory Add. : SHANGXUE INDUSTRIAL ZONE, BUJI, SHENZHEN, CHINA TEL: 00852-30628889 30602868 FAX: 00852-35902333 HK Add. : RM1002, 10/F, RICKEY CENTRE, 36 CHONG YIP STREET,KWUN TONG, KOWLOON, HK ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [SSHd] Increasing wait time?
ssh stream tcp nowait/20/4/10 root /usr/sbin/sshd sshd -i into /etc/inetd.conf set a limit of * 20 overall ssh connections * 4 connection attempts per minute * at most 10 connections from a single IP This works very well on a personal server, not sure how it scales up. So if I copy over some files via scp, I can lock myself out. Fun stuff ;) Come on... The comment was based on a 'personal' server for logins. How 'bout you explain why SCP would break this so the OP understands... Otherwise, explain why running an FTP session through one of the server's SSH tunnels wouldn't be equally viable to running an unlimited number of SCP sessions over normal TCP ;) Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [SSHd] Increasing wait time?
** At 09:59 -0800 on 05/06/2008, Beech Rintoul wrote: On Tuesday 06 May 2008, David Kelly said: On Tuesday 06 May 2008, Gilles said: Is there a way to configure SSHd, so that the wait time between login attempts increases after X failed tries? Depending on how you use ssh from external systems you could add firewall rules to disallow all but known sources. I was doing that in the past, but I found it to be inflexable and sometimes a pain to deal with. I sometimes need to access a server from a new location and that kind of hard lockdown just isn't practical. I had the same problem (i.e., needing to access the server from a new location). In my case, one of the allowed sites is the server of a friend who has provided a shell account for me. When I'm on the road, I just ssh to his machine, and from there I can ssh into any of my machines. His machine effectively does all of the script-kiddie filtering for my site. ;-) Note if you choose to do this: scp'ing files becomes a four-step process (i.e., scp file(s) to intermediate server, log in to intermediate server, scp to destination server, delete file(s) from intermediate server). Still worth it, though. Remember the wave theory of script kiddies (WARNING: Gross oversimplification ahead): Quantum mechanics says that if you throw yourself against a wall several quintillion times, you'll eventually wave through it without leaving a mark on yourself or the wall.* Similarly, a sufficiently large number of break-in attempts by script kiddies will result in one of them waving straight past all of the security without leaving a scratch. FWIW, I agree with cpghost -- it's strange that an addition as obvious and useful as this isn't already supported. __ Vince Sabio [EMAIL PROTECTED] * As if the first few billion tries didn't already leave some rather noticeable marks on both you AND the wall. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: [SSHd] Increasing wait time?
Vince Sabio wrote: Note if you choose to do this: scp'ing files becomes a four-step process (i.e., scp file(s) to intermediate server, log in to intermediate server, scp to destination server, delete file(s) from intermediate server). Still worth it, though. Never thought of port forwarding? Peter -- http://www.boosten.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
