Network bridge, but assigned IP address
I am creating a simple network bridge (as described in http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-bridging.html) which consists of 5 network interface cards. Function-wise, it's basically acting as a switch. However, I want to assign an IP address to the machine with the 5 NICs. So far without the bridge everything is working perfectly, and my /etc/rc.conf looks like this: gateway_enable=YES hostname=speedy.i ifconfig_fxp4=DHCP ifconfig_em0=inet 192.168.0.254 netmask 255.255.255.0 And I have a NAT (using pf) to allow the 192.168.0.x hosts to directly reach the outside internet. fxp4 is the external network card. My other network cards that I want to make part of the internal network (acting as a switch) are fxp0 through fxp3. So I'm not sure what to do with my rc.conf. In the handbook it says to add these lines: cloned_interfaces=bridge0 ifconfig_bridge0=addm em0 addm fxp0 addm fxp1 addm fxp2 addm fxp3 up ifconfig_fxp0=up ifconfig_fxp1=up ifconfig_fxp2=up ifconfig_fxp3=up ifconfig_em0=up How should I intermingle these lines with my existing rc.conf, and/or which lines should I remove? I want em0, fxp0, fxp1, fxp2, and fxp3 to be a bridge and be assigned the IP address 192.168.0.254. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Fwd: Boot failure
On Sat, Aug 08, 2009 at 11:29:13PM -0400, Karl Vogel wrote: On Sat, 8 Aug 2009 15:38:25 +0200, Roland Smith rsm...@xs4all.nl said: R At $WORK the Dell computers (both desktops and servers AFAIK) that we R use are ditched at the first problem after the warranty runs out which R is after three years, I believe. Interesting. I've used a Dell GX260 for my workstation since 2003, and I've had no hardware problems running two versions of FreeBSD, one version of OpenBSD and one version of Solaris-10. Two other 260s have been file-servers since 2004. The hardware was retired (recently a lot of GX260s) because repairs and downtime are expensive in man-hours. At $WORK there is a group of volunteers who check out and rebuild these retired machines, so they can be donated to schools et cetera. I agree that most of those machines will last several years longer. The GX260s we had only came with 128 MB RAM standard, which is a very tight to run XP with MS office at a reasonable speed. And they came with small harddisks, because most of our storage is on the network. With added RAM and a bigger harddisk it is perfectly usable. But I agree they would probably even perform better with FreeBSD or Linux on it. For myself I tend not to buy the latest and greatest hardware. It takes time for support for new hardware to materialize, and the newest fastest hardware comes with notably reduced value for money. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgpta1zbxLCtq.pgp Description: PGP signature
a (hopefully) simple newbie zfs query regarding available space
Hello list I followed instructions for ZFS on http://wiki.freebsd.org/ZFSQuickStartGuide, substituting ad6 and ad10 (two new SATA3 1TB disks) for da0 da1 and da2 in the instructions. I was surprised to see only 993GB in /tank/. Is this expected, or is it user error? Also, these disks are completely unformatted. I expected to do a newfs or something similar, and for it to take a bit of time! This is on a running 7.2-STABLE amd64 system. It is only these two disks that I want as ZFS, the rest are UFS2 cheers -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: a (hopefully) simple newbie zfs query regarding available space
2009/8/9 John . comp.j...@googlemail.com: Hello list I followed instructions for ZFS on http://wiki.freebsd.org/ZFSQuickStartGuide, substituting ad6 and ad10 (two new SATA3 1TB disks) for da0 da1 and da2 in the instructions. I was surprised to see only 993GB in /tank/. Is this expected, or is it user error? Also, these disks are completely unformatted. I expected to do a newfs or something similar, and for it to take a bit of time! This is on a running 7.2-STABLE amd64 system. It is only these two disks that I want as ZFS, the rest are UFS2 cheers -- John I think I might have answered my own questionj - seems we need 3 or more disks for raidz - (n-p)*x gives 1TB usable. reliability isn't that important, and they are new disks. I suppose ccd would be better in this scenario? -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Building home router: 192.168.0.x to access internet
Nerius Landys wrote: First, my choise of internal network IP addresses is 192.168.0.x. My router machine's IP address will be 192.168.0.254 (that's the interface facing the internal network). The IP addresses of the machines behind the router will start at 192.168.0.2 and go up. I'm wondering if this choice of IP addresses is conventional or good. Is this numbering scheme decent? This is the way I had it set up earlier. I've seen a lot of networks using 192.168.1.x and the router would be 192.168.1.1. Whichever works. I don't think there is reason to speculate in best practices as which gets to be number 1, however you may consider dividing the address space into ranges for different uses. You may like to group servers in a particular range and clients in another so that you can create firewall rules accordingly. My network is 172.16/23. The range 172.16.0/24 I use for statically configured nodes, servers, access points etc. The 172.16.1/24 I use for dynamically configured nodes, laptops. The reason is that I'm using dynamic dns on my LAN. The reverse map zones cannot be created for classless networks, you have to define reverse zone for a /16 or /24 network. So to ensure that my static servers reverse map cannot be modified I have split my range such that dynamic and static addresses can be separated. For my static range, I have divided it into two, 172.16.0.0/25 and 172.16.0.128/25, the first for production servers, the later for testing and development. This is just a convention I have established, I thought it might be a good idea, but it is not configured in any way. For my dynamic range, in my dhcpd configuration I have created two ranges, 172.16.1.0/25 and 172.16.1.128/25. The first I assign to known hosts, that is hosts I have registered the MAC address of and know the owner. I haven't statically assigned a particular ip to a particular MAC, I just created a host entry in the dhcpd.conf with the MAC. The later range I use for unknown hosts, so when somebody connects they are easy to identify as foreign. This also permits creating special rules in my firewall so that strangers do not get the same unlimited access as friends. Of course, this is very crude as anyone can just reconfigure their address to get unlimited access, but So now to the problem of being able to connect from a 192.168.0.x machine to an outside IP address. The way I did this before was by adding 'gateway_enable=YES' to /etc/rc.conf and then using the OpenBSD packet filter (pf) to do a NAT thing. I'm wondering if this, in your opinion, is the preferred way to do things in order to set up an internal network which can access the outside internet directly. Yes, that's a great idea. If so, can someone give me a really minimal yet secure packet filter rule set that would do the job? (I'm prepared to read the pf docs, which will take me a few hours.) The router will connect to the outside via DHCP, and from what I remember I had to add a rule to not drop packets that were DHCP-related. See the packet filter documentation, IIRC they have also sample filters for common setups such as yours. BR, Erik -- Erik Nørgaard Ph: +34.666334818/+34.915211157 http://www.locolomo.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: a (hopefully) simple newbie zfs query regarding available space
2009/8/9 John . comp.j...@googlemail.com Hello list I followed instructions for ZFS on http://wiki.freebsd.org/ZFSQuickStartGuide, substituting ad6 and ad10 (two new SATA3 1TB disks) for da0 da1 and da2 in the instructions. I was surprised to see only 993GB in /tank/. Is this expected, or is it user error? Also, these disks are completely unformatted. I expected to do a newfs or something similar, and for it to take a bit of time! This is on a running 7.2-STABLE amd64 system. It is only these two disks that I want as ZFS, the rest are UFS2 cheers -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org not a zfs thing is happens with all os and file systems. Basically HD manufacturers quote their capacities in base 10 ie 1 TB = 10 bytes. File systems are calculated in binary therefore the calculation they use is 1024 x 1024 x 1024 = 1099511627776. Slightly more as you can see. Therefore 1 GB is os terms is 1073741824 therefore hd capacity in GB is 1/1073741824 = 931.322575 The extra you see is it due to HD manufactures slightly over capacity the drives ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Network bridge, but assigned IP address
Nerius Landys wrote: I am creating a simple network bridge (as described in http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-bridging.html) which consists of 5 network interface cards. Function-wise, it's basically acting as a switch. However, I want to assign an IP address to the machine with the 5 NICs. So far without the bridge everything is working perfectly, and my /etc/rc.conf looks like this: gateway_enable=YES hostname=speedy.i ifconfig_fxp4=DHCP ifconfig_em0=inet 192.168.0.254 netmask 255.255.255.0 You should remove this ifconfig_em0 setting ... And I have a NAT (using pf) to allow the 192.168.0.x hosts to directly reach the outside internet. fxp4 is the external network card. My other network cards that I want to make part of the internal network (acting as a switch) are fxp0 through fxp3. So I'm not sure what to do with my rc.conf. In the handbook it says to add these lines: cloned_interfaces=bridge0 ifconfig_bridge0=addm em0 addm fxp0 addm fxp1 addm fxp2 addm fxp3 up ifconfig_fxp0=up ifconfig_fxp1=up ifconfig_fxp2=up ifconfig_fxp3=up ifconfig_em0=up ... and then add all of these lines to the rest of the existing rc.conf How should I intermingle these lines with my existing rc.conf, and/or which lines should I remove? I want em0, fxp0, fxp1, fxp2, and fxp3 to be a bridge and be assigned the IP address 192.168.0.254. To give the whole ensemble an IP address, simply set the IP on the bridge0 interface. I think you can do it most easily by adding this line, ipv4_addrs_bridge0=192.168.0.254/24 but in case that doesn't work correctly, just extend the ifconfig_bridge0 setting: ifconfig_bridge0=addm em0 addm fxp0 addm fxp1 addm fxp2 addm fxp3 inet 192.168.0.254 netmask 255.255.255.0 up See the section on network_interfaces in rc.conf(5) for more detail and some other possibilities. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: a (hopefully) simple newbie zfs query regarding available space
2009/8/9 chris scott kra...@googlemail.com: not a zfs thing is happens with all os and file systems. Basically HD manufacturers quote their capacities in base 10 ie 1 TB = 10 bytes. File systems are calculated in binary therefore the calculation they use is 1024 x 1024 x 1024 = 1099511627776. Slightly more as you can see. Therefore 1 GB is os terms is 1073741824 therefore hd capacity in GB is 1/1073741824 = 931.322575 The extra you see is it due to HD manufactures slightly over capacity the drives Hi, What I meant was, I was seeing 931MB instead of 1.6TB (2x1TB disks) but this was because I didn't read about zfs properly (they recommend 3 or more disks. In the man page for zpool it says: A raidz group with N disks of size X with P parity disks can hold approximately (N-P)*X bytes [...] The recommended number is between 3 and 9 so, I'll wait till I get an array before implementing zfs. In the meantime, I'm using gconcat. Sorry for the noise. -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: a (hopefully) simple newbie zfs query regarding available space
2009/8/9 John . comp.j...@googlemail.com 2009/8/9 chris scott kra...@googlemail.com: not a zfs thing is happens with all os and file systems. Basically HD manufacturers quote their capacities in base 10 ie 1 TB = 10 bytes. File systems are calculated in binary therefore the calculation they use is 1024 x 1024 x 1024 = 1099511627776. Slightly more as you can see. Therefore 1 GB is os terms is 1073741824 therefore hd capacity in GB is 1/1073741824 = 931.322575 The extra you see is it due to HD manufactures slightly over capacity the drives Hi, What I meant was, I was seeing 931MB instead of 1.6TB (2x1TB disks) but this was because I didn't read about zfs properly (they recommend 3 or more disks. In the man page for zpool it says: A raidz group with N disks of size X with P parity disks can hold approximately (N-P)*X bytes [...] The recommended number is between 3 and 9 so, I'll wait till I get an array before implementing zfs. In the meantime, I'm using gconcat. Sorry for the noise. -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ah did you do a zpool create tank ad0 then zpool attach tank ad1 type thing? if you did you have you have created a mirror to fix do a zpool dettach ad1 then a zpool add ad1 to create a stripe Having said that it not good practice to have no redundancy. You could comprise by putting your important data on a dedicated file system then setting copies to 2 or 3 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Availability quality of manual pages (was Re: FreeBSD for the common man(or woman))
in message 20090808195518.7eb8e5ee.free...@edvax.de, wrote Polytropon thusly... On Sat, 8 Aug 2009 10:46:00 -0600, Chad Perrin per...@apotheon.com wrote: Yeah, I hate that stuff. (referring to loathsome info pages.) The GNU project is kind of like the Microsoft of the open source community, that way. Be happy that there at least is an info manual. In many cases, there is NO local documentation, neither in man or info format. ... Fortunately, there are even GUI only projects that keep up with the good manpage tradition. Have you ever tried man opera ... Hot Diggity! I never thought of Opera having a man page. Thanks much. Dang it! Firefox does not have one. - Parv -- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Network bridge, but assigned IP address
To give the whole ensemble an IP address, simply set the IP on the bridge0 interface. I think you can do it most easily by adding this line, ipv4_addrs_bridge0=192.168.0.254/24 Indeed, that works well. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mod_security 2.5.9
On Aug 8, 2009, at 11:38 PM, Mel Flynn wrote: On Saturday 08 August 2009 19:38:42 Charles Howse wrote: On Aug 8, 2009, at 11:36 AM, Mel Flynn wrote: On Saturday 08 August 2009 08:00:47 Charles Howse wrote: Just wondering if anyone has tried updating from mod_security 2.5.9 to 2.5.9_1 via portupgrade. It fails with a linker error for me. And can we see the actual linker error? Thought I had included enough in my original post. Here's the mod_security part of 'portupgrade -a' ... [Updating the pkgdb format:bdb_btree in /var/db/pkg ... - 51 packages found (-0 +1) . done] --- Upgrading 'mod_security-2.5.9' to 'mod_security-2.5.9_1' (www/ mod_security) --- Building '/usr/ports/www/mod_security' ... checking for libapr config script... /usr/local/bin/apr-1-config configure: using ' -lcrypt -pthread' for apr Library ^^ /usr/local/share/apr/build-1/libtool --silent --mode=link cc -o mod_security2.la -R/usr/local/lib -L/usr/local/lib -L/usr/local/ lib - L/usr/local/lib -lpcre -lxml2 -lz -liconv -lm -rpath /usr/local/ libexec/apache22 -module -avoid-versionmsc_release.lo msc_lua.lo acmp.lo msc_geo.lo pdf_protect.lo msc_reqbody.lo persist_dbm.lo msc_pcre.lo msc_util.lo msc_parsers.lo modsecurity.lo msc_multipart.lo msc_xml.lo msc_logging.lo re_variables.lo re_tfns.lo re_actions.lo re_operators.lo re.lo apache2_util.lo apache2_io.lo apache2_config.lo mod_security2.lo # XXX there is mlogc-static target in the Makefile, too cd /usr/ports/www/mod_security/work/modsecurity-apache_2.5.9/apache2 /usr/bin/env SHELL=/bin/sh NO_LINT=YES PREFIX=/usr/local LOCALBASE=/usr/local X11BASE=/usr/local MOTIFLIB=-L/usr/local/lib - lXm -lXp LIBDIR=/usr/lib CC=cc CFLAGS=-O2 -fno-strict- aliasing - pipe CXX=c++ CXXFLAGS=-O2 -fno-strict-aliasing -pipe MANPREFIX=/ usr/local BSD_INSTALL_PROGRAM=install -s -o root -g wheel -m 555 BSD_INSTALL_SCRIPT=install -o root -g wheel -m 555 BSD_INSTALL_DATA=install -o root -g wheel -m 444 BSD_INSTALL_MAN=install -o root -g wheel -m 444 make -f Makefile mlogc Building dynamically linked mlogc... /usr/local/lib/libapr-1.so: undefined reference to `pthread_yield' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_destroy' /usr/local/lib/libapr-1.so: undefined reference to `pthread_create' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_init' /usr/local/lib/libapr-1.so: undefined reference to `pthread_exit' /usr/local/lib/libapr-1.so: undefined reference to `pthread_equal' /usr/local/lib/libapr-1.so: undefined reference to `pthread_detach' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_setstacksize' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_getdetachstate' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_setguardsize' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_setdetachstate' /usr/local/lib/libapr-1.so: undefined reference to `pthread_join' /usr/local/lib/libapr-1.so: undefined reference to `pthread_cond_timedwait' *** Error code 1 Apparently -pthread isn't passed here. I've tried to reproduce this, but I can't. Could you show the output of: make -C /usr/ports/www/mod_security actual-package-depends r...@curly /root# make -C /usr/ports/www/mod_security actual-package- depends pcre-7.9:devel/pcre apr-gdbm-db42-1.3.8.1.3.9:devel/apr curl-7.19.5_1:ftp/curl libxml2-2.7.3:textproc/libxml2 apache-2.2.11_7:www/apache22 pkg-config-0.23_1:devel/pkg-config expat-2.0.1:textproc/expat2 gdbm-1.8.3_3:databases/gdbm db42-4.2.52_5:databases/db42 libiconv-1.13.1:converters/libiconv ca_root_nss-3.11.9_2:security/ca_root_nss pkg-config-0.23_1:devel/pkg-config libiconv-1.13.1:converters/libiconv expat-2.0.1:textproc/expat2 perl-5.8.9_3:lang/perl5.8 pcre-7.9:devel/pcre libiconv-1.13.1:converters/libiconv r...@curly /root# Also the contents of /var/db/ports/apr/options. r...@curly /root# cat /var/db/ports/apr/options # This file is auto-generated by 'make config'. # No user-servicable parts inside! # Options for apr-gdbm-db42-1.3.3.1.3.4_1 _OPTIONS_READ=apr-gdbm-db42-1.3.3.1.3.4_1 WITH_THREADS=true WITHOUT_IPV6=true WITH_GDBM=true WITH_BDB=true WITHOUT_NDBM=true WITHOUT_LDAP=true WITHOUT_MYSQL=true WITHOUT_PGSQL=true r...@curly /root# Thanks Mel! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Gmirror
Hi there all, I need your help. I have a supermicro server which was running Freebsd 7.1 with 2 SATA drives. I have had G mirror running on the server. I needed to do a full reinstall of freebsd but was unable to disengage the mirror at the time. When installing Freebsd, on to the drives i see i have AD4 AD6 and AR0 on the disk label, i have installed the new free bsd in AD4, and the system would not boot. I have come across this before where i have to remove AR0 to default the drive, i can remember reading a thread on how to use “fix it” and using the live cd. I have google but cannot find it Please is there any one here that can refresh my memory and tell me how to remove gmirror from my drives so i can do a fresh install,. Thanmks Mick ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
(no subject)
Hi there all, I need your help. I have a supermicro server which was running Freebsd 7.1 with 2 SATA drives. I have had G mirror running on the server. I needed to do a full reinstall of freebsd but was unable to disengage the mirror at the time. When installing Freebsd, on to the drives i see i have AD4 AD6 and AR0 on the disk label, i have installed the new free bsd in AD4, and the system would not boot. I have come across this before where i have to remove AR0 to default the drive, i can remember reading a thread on how to use “fix it” and using the live cd. I have google but cannot find it Please is there any one here that can refresh my memory and tell me how to remove gmirror from my drives so i can do a fresh install,. Thanmks Mick ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Gmirror
On Sun, Aug 09, 2009 at 10:41:05PM +1000, Michael Christie wrote: Hi there all, I need your help. I have a supermicro server which was running Freebsd 7.1 with 2 SATA drives. I have had G mirror running on the server. I needed to do a full reinstall of freebsd but was unable to disengage the mirror at the time. When installing Freebsd, on to the drives i see i have AD4 AD6 and AR0 on the disk label, i have installed the new free bsd in AD4, and the system would not boot. I have come across this before where i have to remove AR0 to default the drive, i can remember reading a thread on how to use “fix it” and using the live cd. I have google but cannot find it Please is there any one here that can refresh my memory and tell me how to remove gmirror from my drives so i can do a fresh install,. I don't think you have to do a new install. Just use 'boot0cfg -s 1 ad4' to make the next boot start from da4. Then rebuild ad6: 'gmirror rebuild ar0 ad6'. Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgp1HJIPzCCEQ.pgp Description: PGP signature
netgraph aggrate L2 tunnels
hello list, I have searched the web for hours and I cant seem to find a recent How to for my project. I have 2 FreeBSD 8 machines 1 at my office and 1 at a colo datacenter. I have 2 DSL connections at my office, Would like a recipe to bond the connections to the datacenter FreeBSD box via L2 netgraph tunnels. the goal is to combine the DSL download speeds for a single tcp connection. after much searching I believe netgraph is the most elegant way to achieve this Would the Lagg driver be a good choice for bonding both sides? Setup info My DSL lines both have seprate static IP's from my telco, the telco does not support MLPPP my inside office network is 192.168.1.x, and the data center has a single static ip I could get more if I need them. I assume I would assign the datacenter side of the tunnel a 192.168.1.x address and use that as my gateway and run pf at the data center with nat. I am sure there are several people out there that understand netgraph and could post config examples. Thank you in advance Sam ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD for the common man(or woman) (was: upgrade 7.2
On Sat, Aug 08, 2009 at 07:55:18PM +0200, Polytropon wrote: On Sat, 8 Aug 2009 10:46:00 -0600, Chad Perrin per...@apotheon.com wrote: Yeah, I hate that stuff. The GNU project is kind of like the Microsoft of the open source community, that way. Be happy that there at least is an info manual. In many cases, there is NO local documentation, neither in man or info format. The usual cases of documentation, often found in different Linusi, but as well in some modern software on FreeBSD, are: - bury the documentation in an arbitrary web location - use a Wiki for documentation - let the users write the documentation - don't document anything. An info page is almost as bad as nothing, as far as I'm concerned. The GNU project has this bizarre idea that everybody in the world should use everything it produces and *nothing else*, no matter how painful it all is to use -- and assumes everybody should be using emacs, so obviously the baroque emacs-inspired interface to info pages is ideal. Debian actually tended to be pretty good at manpage coverage of software and files on the system, but FreeBSD still manages to do at least slightly better most of the time -- and, for some reason, few of the other Linux distributions took advantage of the manpages produced by the Debian project. Fortunately, there are even GUI only projects that keep up with the good manpage tradition. Have you ever tried man opera or man gmencoder? On the other hand, most KDE stuff doesn't have a manpage - of course, I can understand it. From their point of view, the question would be: Who would want to read documentation? Answer: Nobody. So why spend time to create it? This is one reason among many I have no interest in using KDE software. The FHS isn't a Unix standard. It's a Linux distributions standard. It aims to be. To be . . . which one? I'm sure its proponents want it to take over the world, but frankly, I hope it fails miserably. They're actually doing things that break backward compatibility with older standard ways of doing things just for the sake of political expediency, which definitely gets my hackles up. In the specific case of creating /etc/opt, you shouldn't really be damaging anything, but there's a very good reason that stuff is in /usr/local/etc -- so that when using separate filesystems for separate parts of the hierarchy, you don't separate the stuff installed in /usr/local from its configuration data. Especially in an environment with elevated security, there are resons to separate things filesystem wise. File permissions and mount options are a topic there, and symlinking across partitions is a no-go in such settings. That's another excellent point. The FHS doesn't apply to FreeBSD (or any other BSD Unix, or any commercial UNIX system, for that matter), so it's not breaking anything. Just have a look at how Solaris, HP-UX or AIX organize things in terms of directories. You'll be surprised every day where you can find stange things. :-) Hell, I've been surprised at the strange places Red Hat keeps things sometimes, even when Linux distributions were my daily business. Then again, I go out of my way to make sure I use network-attached PostScript laser printers, and they tend to be very well supported by CUPS on BSD Unix and other Unix-like OSes. Postscript capable network printers have the advanage that they don't need any support. PS is the default output format for printing, so there's no need to mess around with filters. Most office class printers even include a spooling mechanism for the printer jobs, so this takes away more work from the OS. You simply use the system's lpr command to shove data into the printer, and it does the rest by itself. I kinda like having the ability to manage my printer spool from the system where the print job was created, though, using the same interface I used to configure the printer and send jobs to it in the first place. Don't forget that `man man` will tell you stuff like how to access a manpage in a particular section of the Unix Manual: man n foo . . . where n is the section number and foo is the manpage in that section you want to read. It's worth mentioning that there are manpages that don't refer to a particular binary, file, interface or function, but instead provide information about maintenance operations and general introduction. An example is % man intro There are other manpages that give hints for compiling the system, such as man build, and others. Indeed. Another is: man security -- Chad Perrin [ original content licensed OWL: http://owl.apotheon.org ] Quoth James Madison: If Tyranny and Oppression come to this land, it will be in the guise of fighting a foreign enemy. pgp1i7JAWg8YR.pgp Description: PGP signature
Re: FreeBSD for the common man(or woman) (was: upgrade 7.2
On Sat, Aug 08, 2009 at 10:09:30PM -0700, James Phillips wrote: Okay, after reading this, I used the WayBack Machine to review the printing section of the April 17, 2006 version of the Handbook. I was not able to find anything that is writing a print-driver per-se. In the Advanced section numerous shell scripts are described (some of which use printer commands directly), but they tend to use filters from the ports collection: http://web.archive.org/web/20060417220024/www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/printing-advanced.html There is a section in the Simple section that explicitly says PS != PCL. Part of the problem may be I did not have documentation for my printer, so did not know how to put it in postscript mode. I really did feel I needed the PCL 4 documentation at one point. I'm going to have to conclude I was mistaken. No biggie. We all make mistakes from time to time (even me). For most of my printing needs, I use an HP 4050N. Configuring CUPS to use it was very straightforward -- I just chose the most obvious values from the options presented to me, and everything worked beautifully. For most, if not all, network-attached HP printers, I rather suspect it'd be much the same. Anyway, best of luck with it. -- Chad Perrin [ original content licensed OWL: http://owl.apotheon.org ] Quoth Malaclypse the Younger: 'Tis an ill wind that blows no minds. pgpN1jSnDDIwr.pgp Description: PGP signature
Failed update
In upgrading 7.1-PRELEASE to -stable, all seemed fine until I rebooted out of single user mode after doing make installworld and mergemaster. Now I get to devd and it dies. I've copied down what's on screen and typed it here. [snip] starting devd. Fatal trap 12: page fault while in kernel mode. cpu id = 0; apic id = 00 fault virtual address = 0x3030313a fault code = supervisor write, page not present [snip] current process = 355 (devd) What critical step did I miss? Single user mode seems OK, and I can mount the drives (though right now it'll tell me to fsck, since I just hard crashed). I have not tried to cycle this thing much, for fear of trashing something further, but I did at least try one reboot. Same issue. (and yes, I'll be researching this myself, but I thought I'd get this message out there sooner rather than later...) Rich Mahlerwein Mobile: 715-891-7420 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
sftp + chrooting users
hi all, I am about chrooting ftp users into theirs home directories. I've following in the end of /etc/ssh/sshd_config Subsystem sftp internal-sftp Match group ftp ChrootDirectory /home X11Forwarding no AllowTcpForwarding no ForceCommand internal-sftp Now, problem I am facing: if I connect like u...@hostname (user is in ftp group) and do ls, it shows all content of /home dir which is not wanted. I want to chroot user to /home/user. But, as in manual, if you are going to do that, chrooted dir must be owned by root and not writable by anyone. This is impossible to do then. In sshd_config(5), there is ChrootDirectory keyword, and there are %u (user name) and %h (home dir) which would work, but they do not. Using of ChrootDirectory /home/%u does not work (because of privileges issue). it is also an option to chmod 700 for home dirs, but is there some other way? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: (no subject)
Michael Christie wrote: Hi there all, I need your help. I have a supermicro server which was running Freebsd 7.1 with 2 SATA drives. I have had G mirror running on the server. I needed to do a full reinstall of freebsd but was unable to disengage the mirror at the time. When installing Freebsd, on to the drives i see i have AD4 AD6 and AR0 on the disk label, i have installed the new free bsd in AD4, and the system would not boot. I have come across this before where i have to remove AR0 to default the drive, i can remember reading a thread on how to use “fix it” and using the live cd. I have google but cannot find it You do understand that 'ar0' is an ATARAID mirror and nothing to do with gmirror at all? gmirror uses device names like /dev/mirror/gm0 typically. Please is there any one here that can refresh my memory and tell me how to remove gmirror from my drives so i can do a fresh install,. You don't need to remove gmirror per-se. If you do a fresh install on top of what you have, it will set up the drive you install on as a stand-alone disk. In fact, you can take one of a gmirror'd pair and just tweak the device names in /etc/fstab and run it as a plain disk pretty easily without reinstalling at all. There will be gmirror metadata blocks on disk, but these wont have any effect unless you mount partitions on the gmirror device. To remove those metadata blocks, just do # gmirror clear /dev/mirror/gm0 (or whatever your gmirror device is called) -- obviously *not* while the gmirror is active. You may need to allow writes to an active underlying partition by # sysctl kern.geom.debugflags=16 The ATARAID mirror you seem to have picked up inadvertently is very similar to a gmirror RAID in the way it works, except that it won't generally have the nice behaviour for replacing blown hot-swap drives without having to reboot the system. In any case, you can just ignore /dev/ar0 and mount partitions from /dev/ad4 instead, equivalently as for the gmirror case. To remove ar0, just do: # atacontrol delete ar0 Either of these are fairly safe to do while the system is up and running. Also, I suspect that your system is not booting for a different reason than you think. You'ld have to tell us the exact error message you see in order to get a definitive answer, but given what you've described two pretty likely problems are: * Early stage boot blocks can't find the kernel image. In this case you'll be dumped at the loader prompt and asked to give the device name and path to read the kernel from -- typically something like (ad,0)/boot/kernel/kernel (you can use the 'ls' command in the loader to see what available devices there are to try booting from). * Can't mount root partition. Generally this means that /etc/fstab contains incorrect data. In this case, you can probably boot to single user, remount the root partition read-write and then edit /etc/fstab These are not impossibly difficult things to deal with, but neither are they entirely trivial, and if you're a beginner and you don't care about what's currently on the disk, you might find it more productive just to reinstall over the top of the previous contents. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW signature.asc Description: OpenPGP digital signature
Re: Failed update
--- On Sun, 8/9/09, Richard Mahlerwein mahle...@yahoo.com wrote: From: Richard Mahlerwein mahle...@yahoo.com Subject: Failed update To: FreeBSD-Questions freebsd-questions@freebsd.org Date: Sunday, August 9, 2009, 10:23 AM In upgrading 7.1-PRELEASE to -stable, all seemed fine until I rebooted out of single user mode after doing make installworld and mergemaster. Now I get to devd and it dies. I've copied down what's on screen and typed it here. [snip] starting devd. Fatal trap 12: page fault while in kernel mode. cpu id = 0; apic id = 00 fault virtual address = 0x3030313a fault code = supervisor write, page not present [snip] current process = 355 (devd) What critical step did I miss? Single user mode seems OK, and I can mount the drives (though right now it'll tell me to fsck, since I just hard crashed). I have not tried to cycle this thing much, for fear of trashing something further, but I did at least try one reboot. Same issue. (and yes, I'll be researching this myself, but I thought I'd get this message out there sooner rather than later...) Rich Mahlerwein I'm redoing the whole process in single user mode. My guess is I goofed something during mergemaster and devd.conf is messed up. (Mergemaster is, undeniably, my least favorite utility). I can suffer the system being down for a while, as long as my wife has access to a handful of files. How would I go about mounting a USB stick, if such can be done in single-user mode? I have several sitting around that I could copy stuff to (I'm sure that's easier than pulling off the backup I made last night, since the backup is in dump format on tape, and since my only bsd box is currently not working...) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Failed update
--- On Sun, 8/9/09, Richard Mahlerwein mahle...@yahoo.com wrote: From: Richard Mahlerwein mahle...@yahoo.com Subject: Re: Failed update To: FreeBSD-Questions freebsd-questions@freebsd.org Date: Sunday, August 9, 2009, 11:34 AM --- On Sun, 8/9/09, Richard Mahlerwein mahle...@yahoo.com wrote: From: Richard Mahlerwein mahle...@yahoo.com Subject: Failed update To: FreeBSD-Questions freebsd-questions@freebsd.org Date: Sunday, August 9, 2009, 10:23 AM In upgrading 7.1-PRELEASE to -stable, all seemed fine until I rebooted out of single user mode after doing make installworld and mergemaster. Now I get to devd and it dies. I've copied down what's on screen and typed it here. [snip] starting devd. Fatal trap 12: page fault while in kernel mode. cpu id = 0; apic id = 00 fault virtual address = 0x3030313a fault code = supervisor write, page not present [snip] current process = 355 (devd) What critical step did I miss? Single user mode seems OK, and I can mount the drives (though right now it'll tell me to fsck, since I just hard crashed). I have not tried to cycle this thing much, for fear of trashing something further, but I did at least try one reboot. Same issue. (and yes, I'll be researching this myself, but I thought I'd get this message out there sooner rather than later...) Rich Mahlerwein I'm redoing the whole process in single user mode. My guess is I goofed something during mergemaster and devd.conf is messed up. (Mergemaster is, undeniably, my least favorite utility). I can suffer the system being down for a while, as long as my wife has access to a handful of files. How would I go about mounting a USB stick, if such can be done in single-user mode? I have several sitting around that I could copy stuff to (I'm sure that's easier than pulling off the backup I made last night, since the backup is in dump format on tape, and since my only bsd box is currently not working...) I'll answer my own question: mount -t msdosfs /dev/da0s1 /mnt then copy away at will. I suppose my biggest issue had been wondering if that works in single user mode. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
serial console on a machine without a serial port, but with a USB port
I need to have access to the console on my server, so that I can do stuff like grab the output of a crash or, if it halts whilst booting up, to take remedial action. I had planned on doing this from a much older machine whose sole function is to provide that capability. This older machine will be remotely accessible, and it sits next to the server machine, on its own real IP address, running ssh and maybe tip or whatever to read the console of the other machine. Sort of like a poor man's ILO. The problem is, the server is a much newer machine and it has no serial port - just USB. Is the only way round this to install a serial card? Would a serial-to-usb converter work? Will usb to usb work? Both machines have USB. on the server machine with a generic kernel (7.2-STABLE), I have this: dmesg | grep -E ^sio[0-9] sio0: configured irq 4 not in bitmap of probed irqs 0 sio0: port may not be enabled sio0: configured irq 4 not in bitmap of probed irqs 0 sio0: port may not be enabled sio0: 16550A-compatible COM port port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0 sio0: type 16550A sio0: [FILTER] sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled sio0: configured irq 4 not in bitmap of probed irqs 0 sio0: port may not be enabled sio0: configured irq 4 not in bitmap of probed irqs 0 sio0: port may not be enabled sio0: 16550A-compatible COM port port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0 sio0: type 16550A sio0: [FILTER] sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled and /dev has no sio* entries cheers -- John ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD MATLAB R2008b
Elias, I got to a certain point, then temporarily put it aside. See, I was installing from a custom install disc, and so I'm not really surprised that the Handbook instructions for installing matlab on freebsd didn't completely help me. However, I now have a standard install disc. I plan to retry the install with this new disc. I do think I encountered java-related errors, but I can't recall the details or whether it's what you're encountering. I'll reply to the list here once I attempt the install tomorrow. (Sent from my iPhone) On Aug 9, 2009, at 9:43 AM, Elias Schäfer elias.schae...@gmx.net wrote: Hello Daniel, I read your post (http://lists.freebsd.org/pipermail/freebsd-questions/2009-July/202242.html ) and applied your patch. First, it seemed to work (no sse2 complaining) but then I got an Java related error that I could not solve. I have R14 running here, but I need to run a newer version. I am curious if you got MATLAB r2008b working. Do you get a similar error? I am looking for a solution for the past couple of days. regards Elias (Aug 08, 2009 21:15:12)MATHWORKS ACTIVATION IS STARTING UP. (Aug 08, 2009 21:15:13)java.lang.UnsatisfiedLinkError: /usr/home/ knick/matlabr2008b/bin/glnx86/libinstutil.so: libstdc++.so.6: cannot handle TLS data com.mathworks.instutil.NativeUtility.(NativeUtility.java:36) com.mathworks.instutil.MachineInfo.(MachineInfo.java:40) com.mathworks.activationclient.model.ActivationModelImpl.loadNativeLib( ActivationModelImpl.java:216) com.mathworks.activationclient.model.ActivationModelImpl.getMachineInfo( ActivationModelImpl.java:189) com.mathworks.activationclient.view.ApplicationViewImpl.getMachineInfo( ApplicationViewImpl.java:200) com.mathworks.activationclient.view.ApplicationViewImpl.showGUI (ApplicationViewImpl.java:79) com.mathworks.activationclient.controller.ApplicationControllerImpl.start( ApplicationControllerImpl.java:99) com.mathworks.activationclient.ActivationApplication.main (ActivationApplication.java:31) (Aug 08, 2009 21:15:13)null com.mathworks.activationclient.view.ApplicationViewImpl.showGUI (ApplicationViewImpl.java:79) com.mathworks.activationclient.controller.ApplicationControllerImpl.start( ApplicationControllerImpl.java:99) com.mathworks.activationclient.ActivationApplication.main (ActivationApplication.java:31) (Aug 08, 2009 21:15:24)There was an unexpected exception: null See the log file (/tmp/aws.log) for more details. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sftp + chrooting users
On 8/9/09 4:29 PM, Stefan Miklosovic wrote: hi all, I am about chrooting ftp users into theirs home directories. I've following in the end of /etc/ssh/sshd_config Subsystem sftp internal-sftp Match group ftp ChrootDirectory /home X11Forwarding no AllowTcpForwarding no ForceCommand internal-sftp I have this in my sshd_config: Match Group sftponly ChrootDirectory /usr/home/%u X11Forwarding no AllowTcpForwarding no ForceCommand internal-sftp But also note that the user(which is in the sftponly group) have / as his home directory. -- chs ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
nspluginwrapper freezes Firefox35
Hi, a couple of days ago I upgraded linux-f8-flashplugin10 and nspluginwrapper. They seems to work better than before, but them freezes Firefox 3.5 aftwer a while, specially while using yahoo mail (because of its flash banners). To fix it, I have to killall npviewer.bin. I'm running 7.2 for i386. Any hint on this? Leonardo M. Ramé http://leonardorame.blogspot.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
vsftpd with ssl - compile option
hi, I would like to use vsftpd with ssl support. If I install it from ports, there is an option to compile it against ssl librarie(s) (VSFTPD_SSL) If I download it by pkg_fetch and extract the package and use ldd on vsftpd in libexec directory, there is no ssl library, in complied way, there are some. libssl.so.5 = /usr/lib/libssl.so.5 (0x280b) libcrypto.so.5 = /lib/libcrypto.so.5 (0x280f1000) I would like to use that program on other computer, but there is not port tree and installing of port tree is really not an option. how to handle this? thank you ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Gmirror
On 8/9/09, Michael Christie vk3...@gmail.com wrote: Hi there all, I need your help. I have a supermicro server which was running Freebsd 7.1 with 2 SATA drives. I have had G mirror running on the server. I needed to do a full reinstall of freebsd but was unable to disengage the mirror at the time. When installing Freebsd, on to the drives i see i have AD4 AD6 and AR0 on the disk label, i have installed the new free bsd in AD4, and the system would not boot. ar0 is often a cheap onboard RAID device. So cheap as it doesn't even hide ad4 and ad6 which is also hooked up to the motherboard. Installing to ad4 installed it allright. But now the hardware raid will screw things up a bit. Either use gmirror with ad4 and ad6, or use hardware raid on ar0 only. I have come across this before where i have to remove AR0 to default the drive, i can remember reading a thread on how to use “fix it” and using the live cd. I have google but cannot find it Please is there any one here that can refresh my memory and tell me how to remove gmirror from my drives so i can do a fresh install,. Thanmks Mick ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD for the common man(or woman) (was: upgrade 7.2
On Sun 09 Aug 2009 at 06:52:31 PDT Chad Perrin wrote: An info page is almost as bad as nothing, as far as I'm concerned. The GNU project has this bizarre idea that everybody in the world should use everything it produces and *nothing else*, no matter how painful it all is to use -- and assumes everybody should be using emacs, so obviously the baroque emacs-inspired interface to info pages is ideal. It has always puzzled me that Stallman set out to implement a Unix-like operating system and userland, when his roots seem to have been elsewhere. Sometimes I think he must have had a grudge against Unix and that he deliberately set out to pervert it. That would certainly explain some of the more bizarre things coming from GNU! Never forget, vi was created by the same guy who put together the original tapes of the Berkeley Software Distribution. ;-) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mod_security 2.5.9
On Sunday 09 August 2009 04:24:37 Charles Howse wrote: On Aug 8, 2009, at 11:38 PM, Mel Flynn wrote: On Saturday 08 August 2009 19:38:42 Charles Howse wrote: On Aug 8, 2009, at 11:36 AM, Mel Flynn wrote: On Saturday 08 August 2009 08:00:47 Charles Howse wrote: Just wondering if anyone has tried updating from mod_security 2.5.9 to 2.5.9_1 via portupgrade. It fails with a linker error for me. And can we see the actual linker error? Thought I had included enough in my original post. Here's the mod_security part of 'portupgrade -a' ... [Updating the pkgdb format:bdb_btree in /var/db/pkg ... - 51 packages found (-0 +1) . done] --- Upgrading 'mod_security-2.5.9' to 'mod_security-2.5.9_1' (www/ mod_security) --- Building '/usr/ports/www/mod_security' ... checking for libapr config script... /usr/local/bin/apr-1-config configure: using ' -lcrypt -pthread' for apr Library ^^ /usr/local/share/apr/build-1/libtool --silent --mode=link cc -o mod_security2.la -R/usr/local/lib -L/usr/local/lib -L/usr/local/ lib - L/usr/local/lib -lpcre -lxml2 -lz -liconv -lm -rpath /usr/local/ libexec/apache22 -module -avoid-versionmsc_release.lo msc_lua.lo acmp.lo msc_geo.lo pdf_protect.lo msc_reqbody.lo persist_dbm.lo msc_pcre.lo msc_util.lo msc_parsers.lo modsecurity.lo msc_multipart.lo msc_xml.lo msc_logging.lo re_variables.lo re_tfns.lo re_actions.lo re_operators.lo re.lo apache2_util.lo apache2_io.lo apache2_config.lo mod_security2.lo # XXX there is mlogc-static target in the Makefile, too cd /usr/ports/www/mod_security/work/modsecurity-apache_2.5.9/apache2 /usr/bin/env SHELL=/bin/sh NO_LINT=YES PREFIX=/usr/local LOCALBASE=/usr/local X11BASE=/usr/local MOTIFLIB=-L/usr/local/lib - lXm -lXp LIBDIR=/usr/lib CC=cc CFLAGS=-O2 -fno-strict- aliasing - pipe CXX=c++ CXXFLAGS=-O2 -fno-strict-aliasing -pipe MANPREFIX=/ usr/local BSD_INSTALL_PROGRAM=install -s -o root -g wheel -m 555 BSD_INSTALL_SCRIPT=install -o root -g wheel -m 555 BSD_INSTALL_DATA=install -o root -g wheel -m 444 BSD_INSTALL_MAN=install -o root -g wheel -m 444 make -f Makefile mlogc Building dynamically linked mlogc... /usr/local/lib/libapr-1.so: undefined reference to `pthread_yield' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_destroy' /usr/local/lib/libapr-1.so: undefined reference to `pthread_create' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_init' /usr/local/lib/libapr-1.so: undefined reference to `pthread_exit' /usr/local/lib/libapr-1.so: undefined reference to `pthread_equal' /usr/local/lib/libapr-1.so: undefined reference to `pthread_detach' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_setstacksize' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_getdetachstate' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_setguardsize' /usr/local/lib/libapr-1.so: undefined reference to `pthread_attr_setdetachstate' /usr/local/lib/libapr-1.so: undefined reference to `pthread_join' /usr/local/lib/libapr-1.so: undefined reference to `pthread_cond_timedwait' *** Error code 1 Apparently -pthread isn't passed here. I've tried to reproduce this, but I can't. Could you show the output of: make -C /usr/ports/www/mod_security actual-package-depends r...@curly /root# make -C /usr/ports/www/mod_security actual-package- depends pcre-7.9:devel/pcre apr-gdbm-db42-1.3.8.1.3.9:devel/apr curl-7.19.5_1:ftp/curl libxml2-2.7.3:textproc/libxml2 apache-2.2.11_7:www/apache22 pkg-config-0.23_1:devel/pkg-config expat-2.0.1:textproc/expat2 gdbm-1.8.3_3:databases/gdbm db42-4.2.52_5:databases/db42 libiconv-1.13.1:converters/libiconv ca_root_nss-3.11.9_2:security/ca_root_nss pkg-config-0.23_1:devel/pkg-config libiconv-1.13.1:converters/libiconv expat-2.0.1:textproc/expat2 perl-5.8.9_3:lang/perl5.8 pcre-7.9:devel/pcre libiconv-1.13.1:converters/libiconv r...@curly /root# Also the contents of /var/db/ports/apr/options. r...@curly /root# cat /var/db/ports/apr/options # This file is auto-generated by 'make config'. # No user-servicable parts inside! # Options for apr-gdbm-db42-1.3.3.1.3.4_1 _OPTIONS_READ=apr-gdbm-db42-1.3.3.1.3.4_1 WITH_THREADS=true WITHOUT_IPV6=true WITH_GDBM=true WITH_BDB=true WITHOUT_NDBM=true WITHOUT_LDAP=true WITHOUT_MYSQL=true WITHOUT_PGSQL=true Ok, reproduced in a clean jail on a 6.4-p6 box, amd64. I tried setting WITH_THREADS in www/apache22 options (built without first), but that didn't change anything. I built apache22 with defaults + APR_FROM_PORTS. On the working machine (7.1) I see no mention of pthread in the mlogc makefile either, so perhaps the linker got smarter in 7.x. I've attached a patch that fixes the issue. @maintainers: do you want a PR for this? -- Mel --- Makefile.orig 2009-08-05 12:31:21.0 -0800 +++ Makefile
Re: nspluginwrapper freezes Firefox35
On Sun, Aug 9, 2009 at 12:49 PM, Leonardo M. Ramémartinr...@yahoo.com wrote: Hi, a couple of days ago I upgraded linux-f8-flashplugin10 and nspluginwrapper. They seems to work better than before, but them freezes Firefox 3.5 aftwer a while, specially while using yahoo mail (because of its flash banners). To fix it, I have to killall npviewer.bin. I'm running 7.2 for i386. Any hint on this? Leonardo M. Ramé http://leonardorame.blogspot.com I can also confirm this, linux-f10-flashplugin10 and nspluginwrapper on FreeBSD 8 beta2 i386 hangs Firefox 3.5 on citibankcards.com but this is Better than before. Sam Fourman Jr. Fourman Networks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
eclipse
Build error on FreeBSD 8 BETA2: Copying plugins/org.eclipse.update.core.linux.source into plugins/org.eclipse.update.core.freebsd.source Copying plugins/org.eclipse.swt/Eclipse SWT PI/gtk/library/make_linux.mak into plugins/org.eclipse.swt/Eclipse SWT PI/gtk/library/make_freebsd.mak Copying plugins/org.eclipse.core.net.freebsd.x86 into plugins/org.eclipse.core.net.freebsd.x86_64 === Applying FreeBSD patches for eclipse-3.4.2_1 Ignoring previously applied (or reversed) patch. 1 out of 1 hunks ignored--saving rejects to assemble.org.eclipse.sdk.all.xml.rej = Patch patch-assemble.org.eclipse.sdk.all.xml failed to apply cleanly. *** Error code 1 Stop in /usr/ports/java/eclipse. All Ports are up-to-date Thanks Jochen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Gmirror
Yes you are right , I would like to clean off the drives, defalt and clean, then reformat. and reinstall, i did see a post some where on how to do it with the fixit cd, but can not find it now. any idears ? Thanks Mick On Mon, Aug 10, 2009 at 5:07 AM, Tim Judd taj...@gmail.com wrote: On 8/9/09, Michael Christie vk3...@gmail.com wrote: Hi there all, I need your help. I have a supermicro server which was running Freebsd 7.1 with 2 SATA drives. I have had G mirror running on the server. I needed to do a full reinstall of freebsd but was unable to disengage the mirror at the time. When installing Freebsd, on to the drives i see i have AD4 AD6 and AR0 on the disk label, i have installed the new free bsd in AD4, and the system would not boot. ar0 is often a cheap onboard RAID device. So cheap as it doesn't even hide ad4 and ad6 which is also hooked up to the motherboard. Installing to ad4 installed it allright. But now the hardware raid will screw things up a bit. Either use gmirror with ad4 and ad6, or use hardware raid on ar0 only. I have come across this before where i have to remove AR0 to default the drive, i can remember reading a thread on how to use “fix it” and using the live cd. I have google but cannot find it Please is there any one here that can refresh my memory and tell me how to remove gmirror from my drives so i can do a fresh install,. Thanmks Mick ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
.cshrc History missing
Aloha, I have been trying the new FreeBSD 8 Current, Head and Beta* on an AMD64 box with 2 CPU's. The OS loads and everything works under all versions including i386, but the key stroke history on csh does not survive over a reboot or shutdown. I have never seen this happen before and I have been using FreeBSD for a very long time.. since FreeBSD 2.* . Anyone have any ideas what I should check for either with hardware or in .cshrc or elsewhere? Thanks... ~Al Plant - Honolulu, Hawaii - Phone: 808-284-2740 + http://hawaiidakine.com + http://freebsdinfo.org + + http://aloha50.net - Supporting - FreeBSD 6.* - 7.* - 8.* + email: n...@hdk5.net All that's really worth doing is what we do for others.- Lewis Carrol ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: .cshrc History missing
Allthough I'm not familiar with the particular problem you described, I observed that the history sometimes (!) does not survive a reboot. It may have to do with a situation where more than one shell is running. Idea: The last shell closed (even forced) saves its history, so the history of the other shells gets lost. I've set those globally in /etc/csh.cshrc: set history = 100 set savehist = 100 Sometimes, history survives, sometimes it doesn't. Very strange... -- Polytropon From Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: .cshrc History missing
Polytropon wrote: Allthough I'm not familiar with the particular problem you described, I observed that the history sometimes (!) does not survive a reboot. It may have to do with a situation where more than one shell is running. Idea: The last shell closed (even forced) saves its history, so the history of the other shells gets lost. I've set those globally in /etc/csh.cshrc: set history = 100 set savehist = 100 Sometimes, history survives, sometimes it doesn't. Very strange... Aloha Poly, I'm glad to have somebody confirm this. I thought it was funny that this was happening. I have earlier CURRENT 8 running on a couple of machines and they never acted this way. This is root that is doing this on my test box. set history = 100 set savehistory = 100 are in the .cshrc file. I'll look in /etc/csh.cshrc Thanks... ~Al Plant - Honolulu, Hawaii - Phone: 808-284-2740 + http://hawaiidakine.com + http://freebsdinfo.org + + http://aloha50.net - Supporting - FreeBSD 6.* - 7.* - 8.* + email: n...@hdk5.net All that's really worth doing is what we do for others.- Lewis Carrol ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: vsftpd with ssl - compile option
Stefan Miklosovic wrote: hi, I would like to use vsftpd with ssl support. If I install it from ports, there is an option to compile it against ssl librarie(s) (VSFTPD_SSL) If I download it by pkg_fetch and extract the package and use ldd on vsftpd in libexec directory, there is no ssl library, in complied way, there are some. libssl.so.5 = /usr/lib/libssl.so.5 (0x280b) libcrypto.so.5 = /lib/libcrypto.so.5 (0x280f1000) I would like to use that program on other computer, but there is not port tree and installing of port tree is really not an option. Build it as you want it on another machine using ports, then run on that build machine: pkg_create -b -R name from pkg_info This will turn the selected install (and all its dependencies, with the -R flag) into tbz packages in the current directory suitable for pkg_add on the target machine. If there are any missing dependencies on the target machine, pkg_add will try to load them from the same directory from which you are adding the main package. If they do not exist, it will most likely fail, so you will likely want to copy over everything that pkg_create spits out, unless you know it's already installed and up to date on your target. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net cyber...@cyberleo.net Furry Peace! - http://.fur.com/peace/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mod_security 2.5.9
On Aug 9, 2009, at 3:42 PM, Mel Flynn wrote: I've attached a patch that fixes the issue. blush Whoops, looks like I've stepped in over my head. Exactly how do I use this patch? /blush ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mod_security 2.5.9
On Sunday 09 August 2009 18:31:55 Charles Howse wrote: On Aug 9, 2009, at 3:42 PM, Mel Flynn wrote: I've attached a patch that fixes the issue. blush Whoops, looks like I've stepped in over my head. Exactly how do I use this patch? /blush cd /usr/ports/www/mod_security patch /path/to/patch make build You can also not use the patch and do: cd /usr/ports/www/mod_security make patch cd `make -V WRKSRC` sed -i.orig -e 's,@APR_LD_LINK@,@APR_LD_LINK@ @ARP_LIBS@,' \ mlogc-src/Makefile.in cd /usr/ports/www/mod_security make build But that only works one time. The patch fixes the port so that it works every time. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org