Re: ssh server hashcode change on nanoBSD
-- Forwarded message -- From: Aldis Berjoza graude...@yandex.com Date: Tue, Jan 1, 2013 at 2:17 PM Subject: Re: ssh server hashcode change on nanoBSD I've never used NanoBSD, but, check if ssh daemon can write to /etc/ssh/ otherwise it won't be able to save ssh_host_* keys Or you can create ssh_host keys and embed them in you NanoBSD image -- Aldis Berjoza FreeBSD addict thank you :) for the ones who know about nanobsd, i've got a /cfg on nanobsd. during nanoBsd startup, files in /etc are replaced with their new version in /cfg, if any; (as /etc is a md here). so, in the case i explained above, i just needed to copy /etc/ssh/* to /cfg/ssh/ and now, everything is fine :) Best Regards, t.a.k Best Regards, t.a.k On Tue, Jan 1, 2013 at 2:11 PM, takCoder tak.offic...@gmail.com wrote: hi everyone, i've got a nanoBSD server. when i ssh to it from another bsd system, first time everything is fine. the source bsd system asks me whether i trust my nanoSBD server or not and i apply y and the nanoBSD hash key is written in known_hosts file. everything is fine until i restart my nanoBSD server. the problem is that each time i restart my server, the source system is complaining about that i need to edit my known_hosts file cause my nanoBSD hash-code is not matched.. how can i fix this?! it really bothers me cause i think of it as a security problem.. i can't risk such things on my server.. would someone please give me a hand on this? always grateful of all your helps here :) Best Regards, t.a.k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
FB 9.1 - emulators/linux_base-f10 build error
Hi, # portmaster /usr/ports/www/nspluginwrapper ... === www/nspluginwrapper accessibility/linux-f10-atk emulators/linux_base-f10 (2/2) === Port directory: /usr/ports/emulators/linux_base-f10 === This port is marked IGNORE === linuxulator is not (kld)loaded === If you are sure you can build it, remove the IGNORE line in the Makefile and try again. === Update for emulators/linux_base-f10 failed === Aborting update === Update for accessibility/linux-f10-atk failed === Aborting update # Why marked IGNORE ? jb ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
http://localhost/phpmyadmin
___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: http://localhost/phpmyadmin
On 01/01/2013 13:01, Bekim's Mac wrote: It's traditional to actually ask a question... Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey signature.asc Description: OpenPGP digital signature
Re: http://localhost/phpmyadmin
On Tue, 1 Jan 2013 14:01:53 +0100, Bekim's Mac wrote:
{nothing}
My PHP admin has no idea what to answer. :-)
--
Polytropon
Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: http://localhost/phpmyadmin
To open some url you need to use web browser. Sending URL to freebsd mail list would not open it. On Tue, Jan 1, 2013 at 5:01 PM, Bekim's Mac bekimbisl...@gmail.com wrote: ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ssh server hashcode change on nanoBSD
On Tue, 1 Jan 2013 14:11:21 +0330, takCoder wrote: everything is fine until i restart my nanoBSD server. the problem is that each time i restart my server, the source system is complaining about that i need to edit my known_hosts file cause my nanoBSD hash-code is not matched.. how can i fix this?! it really bothers me cause i think of it as a security problem.. i can't risk such things on my server.. You should make the key permanent (i. e. include it on the boot media you're using). In case no key is found at sshd startup, a new one will be generated - a different one each time, of course. So what you're seeing seems to be normal, even though not desired at all. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ssh server hashcode change on nanoBSD
thank you for the details mentioned :) but now, a questions occurred to me about this ssh key. as i don't know enough about its process, would you please tell me whether this key is a shared key for all ssh clients who send a request? or it differs as the client changes? (this question may sound a bit newbiesh, but i don't know much about the ssh process, sorry :) ) Best Regards, t.a.k On Tue, Jan 1, 2013 at 6:10 PM, Polytropon free...@edvax.de wrote: On Tue, 1 Jan 2013 14:11:21 +0330, takCoder wrote: everything is fine until i restart my nanoBSD server. the problem is that each time i restart my server, the source system is complaining about that i need to edit my known_hosts file cause my nanoBSD hash-code is not matched.. how can i fix this?! it really bothers me cause i think of it as a security problem.. i can't risk such things on my server.. You should make the key permanent (i. e. include it on the boot media you're using). In case no key is found at sshd startup, a new one will be generated - a different one each time, of course. So what you're seeing seems to be normal, even though not desired at all. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FB 9.1 - emulators/linux_base-f10 build error
On 01/01/2013 13:52, jb wrote: === Port directory: /usr/ports/emulators/linux_base-f10 === This port is marked IGNORE === linuxulator is not (kld)loaded It is said there : === Port directory: /usr/ports/emulators/linux_base-f10 === This port is marked IGNORE === linuxulator is not (kld)loaded Do you have linux emulation enabled? Such as linux_enable=YES in your /etc/rc.conf Cheers, David ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Changing value of uname -r
uname -r returns 10.0-CURRENT setenv UNAME_r 9.0-RELEASE uname -r now returns 9.0-RELEASE How to reset uname -r to original value without doing setenv UNAME_r 10.0-CURRENT? Is there some way just to deactivate the effect of the setenv UNAME_r so it returns to the real value of the system? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FB 9.1 - emulators/linux_base-f10 build error
David Demelier demelier.david at gmail.com writes: ... Do you have linux emulation enabled? Such as linux_enable=YES in your /etc/rc.conf Cheers, David Yes, indeed, that was the cause. Thanks. jb ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ssh server hashcode change on nanoBSD
Don't top-post, please. takCoder tak.offic...@gmail.com writes: but now, a questions occurred to me about this ssh key. as i don't know enough about its process, would you please tell me whether this key is a shared key for all ssh clients who send a request? or it differs as the client changes? There are a number of keys involved in ssh. The host keys are used at the start of the connection to make sure that some other machine doesn't impersonate the one you wanted. The encryption of the data happens with per-session keys, which are not only different for each client, but for every session. The two types of keys are not related to each other. (this question may sound a bit newbiesh, but i don't know much about the ssh process, sorry :) ) Cryptography in general is quite complicated, and ssh is a lot more complicated than just its cryptography. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: utility to compare 2 dir trees
On Mon, Dec 31, 2012 at 8:39 PM, Fbsd8 fb...@a1poweruser.com wrote: ended up trying cd dir-tree1 mtree -c | mtree -p dir-tree2 Now this seems like it worked, except every thing was flagged for non-matching modification time. How do I tell it to not check modification time? mtree -c -k sha256digest,uname,gname | mtree -p dir-tree2 -- Adam Vande More ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Changing value of uname -r
Jason Lenthe wrote: On 01/01/13 12:49, Fbsd8 wrote: Is there some way just to deactivate the effect of the setenv UNAME_r so it returns to the real value of the system? I think you just want to do: unsetenv UNAME_r Yes that worked. Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Changing value of uname -r
From owner-freebsd-questi...@freebsd.org Tue Jan 1 11:52:49 2013 Date: Tue, 01 Jan 2013 12:49:17 -0500 From: Fbsd8 fb...@a1poweruser.com To: FreeBSD Questions freebsd-questions@freebsd.org Subject: Changing value of uname -r uname -r returns 10.0-CURRENT setenv UNAME_r 9.0-RELEASE uname -r now returns 9.0-RELEASE How to reset uname -r to original value without doing setenv UNAME_r 10.0-CURRENT? Is there some way just to deactivate the effect of the setenv UNAME_r so it returns to the real value of the system? Did you try: unsetenv UNAME_r If yes, what were the results? If no, _why_not_? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
freebsd-update: fale?
Greetings, list. I have the following error; though I can load update5.FreeBSD.org in a browser: root-is-on-fire # freebsd-update fetch Looking up update.FreeBSD.org mirrors... 3 mirrors found. Fetching public key from update4.FreeBSD.org... failed. Fetching public key from update5.FreeBSD.org... failed. Fetching public key from update3.FreeBSD.org... failed. No mirrors remaining, giving up. Am I missing something in this process? Regards, Joe ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Changing value of uname -r
Robert Bonomi wrote: From owner-freebsd-questi...@freebsd.org Tue Jan 1 11:52:49 2013 Date: Tue, 01 Jan 2013 12:49:17 -0500 From: Fbsd8 fb...@a1poweruser.com To: FreeBSD Questions freebsd-questions@freebsd.org Subject: Changing value of uname -r uname -r returns 10.0-CURRENT setenv UNAME_r 9.0-RELEASE uname -r now returns 9.0-RELEASE How to reset uname -r to original value without doing setenv UNAME_r 10.0-CURRENT? Is there some way just to deactivate the effect of the setenv UNAME_r so it returns to the real value of the system? Did you try: unsetenv UNAME_r If yes, what were the results? If no, _why_not_? yes unsetenv UNAME_r worked. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
how to delete link in port packing list
In a port I am working on I have a link for home - /user/home In the ports pkg-plist I can delete every thing but that darn link. Is there some statement along the line of %%EXAMPLESDIR%%default/home/lab1/.profile that will delete the @home link? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: how to delete link in port packing list
Fbsd8 wrote: In a port I am working on I have a link for home - /user/home In the ports pkg-plist I can delete every thing but that darn link. Is there some statement along the line of %%EXAMPLESDIR%%default/home/lab1/.profile that will delete the @home link? sorry for the noise, figured it out. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
9.1 won't install - GEOM/GRAID issues
My FreeBSD server had been running fine, no issues. This evening I tried to update it to 9.1. I don't update in place, I update by wiping the prior version and letting the new version have its way with the disk. Well, 9.1 has issues with my system (dmesg is at the end of this message). When I boot from the install DVD, I see a lot of messages along the lines of ~Root mount waiting for GRAID~, then eventually that times out and I am allowed to select the Install option. However, when I get to the partitioning (btw, it's another issue, but the new set of screens to partition the drive really suck. I've never been so confused by a FreeBSD install. But I digress...) I eventually selected auto partitioning. Then I am greeted with a pop up that informs me that ada0 is not valid for some unmentioned reason. (did I mention that the new partitioning screens suck?). At this point I give up, and I am now in the process of re-installing 9.0. I'm not a long-time user of FreeBSD, I've only been using it since 2005, with installs to keep it up to date through the varied and sundry versions. But this is The First Time that a FreeBSD install has failed. What's goin' on? Here's the 9.0 dmesg I promised earlier (ada0 seems to be the drive that confuses the install): $ dmesg Copyright (c) 1992-2012 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 9.0-RELEASE #0: Tue Jan 3 07:15:25 UTC 2012 r...@obrian.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 CPU: Intel(R) Pentium(R) 4 CPU 2.40GHz (2398.90-MHz 686-class CPU) Origin = GenuineIntel Id = 0xf29 Family = f Model = 2 Stepping = 9 Features=0xbfebfbffFPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,P GE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE Features2=0x4400CNXT-ID,xTPR real memory = 536870912 (512 MB) avail memory = 505307136 (481 MB) Event timer LAPIC quality 400 ACPI APIC Table: A M I OEMAPIC FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs FreeBSD/SMP: 1 package(s) x 1 core(s) x 2 HTT threads cpu0 (BSP): APIC ID: 0 cpu1 (AP/HT): APIC ID: 1 ioapic0 Version 2.0 irqs 0-23 on motherboard kbd1 at kbdmux0 acpi0: A M I OEMXSDT on motherboard acpi0: Power Button (fixed) acpi0: reservation of 0, a (3) failed acpi0: reservation of 10, 1fef (3) failed Timecounter ACPI-fast frequency 3579545 Hz quality 900 acpi_timer0: 24-bit timer at 3.579545MHz port 0x808-0x80b on acpi0 cpu0: ACPI CPU on acpi0 cpu1: ACPI CPU on acpi0 pcib0: ACPI Host-PCI bridge port 0xcf8-0xcff on acpi0 pci0: ACPI PCI bus on pcib0 agp0: Intel 82875P host to AGP bridge on hostb0 pcib1: ACPI PCI-PCI bridge at device 1.0 on pci0 pci1: ACPI PCI bus on pcib1 vgapci0: VGA-compatible display port 0xb000-0xb0ff mem 0xe000-0xe7ff,0xfd8f-0xfd8f irq 16 at device 0.0 on pci1 vgapci1: VGA-compatible display mem 0xd800-0xdfff,0xfd8e-0xfd8e at device 0.1 on pci1 pcib2: ACPI PCI-PCI bridge at device 3.0 on pci0 pci2: ACPI PCI bus on pcib2 em0: Intel(R) PRO/1000 Legacy Network Connection 1.0.3 port 0xcf80-0xcf9f mem 0xfd9e-0xfd9f irq 18 at device 1.0 on pci2 em0: Ethernet address: 00:11:2f:12:c9:96 uhci0: Intel 82801EB (ICH5) USB controller USB-A port 0xef00-0xef1f irq 16 at device 29.0 on pci0 usbus0: Intel 82801EB (ICH5) USB controller USB-A on uhci0 uhci1: Intel 82801EB (ICH5) USB controller USB-B port 0xef20-0xef3f irq 19 at device 29.1 on pci0 usbus1: Intel 82801EB (ICH5) USB controller USB-B on uhci1 uhci2: Intel 82801EB (ICH5) USB controller USB-C port 0xef40-0xef5f irq 18 at device 29.2 on pci0 usbus2: Intel 82801EB (ICH5) USB controller USB-C on uhci2 uhci3: Intel 82801EB (ICH5) USB controller USB-D port 0xef80-0xef9f irq 16 at device 29.3 on pci0 usbus3: Intel 82801EB (ICH5) USB controller USB-D on uhci3 ehci0: Intel 82801EB/R (ICH5) USB 2.0 controller mem 0xfebffc00-0xfebf irq 23 at device 29.7 on pci0 usbus4: EHCI version 1.0 usbus4: Intel 82801EB/R (ICH5) USB 2.0 controller on ehci0 pcib3: ACPI PCI-PCI bridge at device 30.0 on pci0 pci3: ACPI PCI bus on pcib3 twe0: 3ware Storage Controller. Driver version 1.50.01.002 port 0xdf90-0xdf9f mem 0xfeafec00-0xfeafec0f,0xfe00-0xfe7f irq 23 at device 11.0 on pci3 twe0: [GIANT-LOCKED] twe0: 4 ports, Firmware FE7X 1.05.00.036, BIOS BE7X 1.08.00.044 isab0: PCI-ISA bridge at device 31.0 on pci0 isa0: ISA bus on isab0 atapci0: Intel ICH5 UDMA100 controller port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xfc00-0xfc0f at device 31.1 on pci0 ata0: ATA channel 0 on atapci0 ata1: ATA channel 1 on atapci0 atapci1: Intel ICH5 SATA150 controller port 0xefe0-0xefe7,0xefac-0xefaf,0xefa0-0xefa7,0xefa8-0xefab,0xef60-0xef6f irq 18 at device 31.2 on pci0 ata2: ATA channel 0 on atapci1 ata3: ATA channel 1 on atapci1 pci0: serial bus, SMBus at device 31.3 (no driver
pkg_add and 9.1 Release
Is this command being phased out? pkg_add -r uses a default environment of ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-9.1-release/Latest/ This path does not exist on ftp.freebsd.org. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pkg_add and 9.1 Release
On 02/01/2013 05:20, doug wrote: Is this command being phased out? pkg_add -r uses a default environment of ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-9.1-release/Latest/ In fact, yes, pkg_add and the other pkg_tools commands are being phased out in favour of pkgng. However it is early days yet, and the problem you're seeing has nothing to do with that process. pkgng won't become the default in 9.x until the next release: until then the status quo ante persists. This path does not exist on ftp.freebsd.org. Quite so. It's because of this: http://www.freebsd.org/news/2012-compromise.html As a consequence, large parts of the package building infrastructure are quarantined, pending reinstallation. Also there is a lot of work going into revising the software used to build the packages with security enhancements in mind. So there simply aren't packages available yet to go with 9.1-RELEASE. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey signature.asc Description: OpenPGP digital signature
Re: pkg_add and 9.1 Release
On Wed, 2 Jan 2013, Matthew Seaman wrote: On 02/01/2013 05:20, doug wrote: Is this command being phased out? pkg_add -r uses a default environment of ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-9.1-release/Latest/ In fact, yes, pkg_add and the other pkg_tools commands are being phased out in favour of pkgng. However it is early days yet, and the problem you're seeing has nothing to do with that process. pkgng won't become the default in 9.x until the next release: until then the status quo ante persists. This path does not exist on ftp.freebsd.org. Quite so. It's because of this: http://www.freebsd.org/news/2012-compromise.html As a consequence, large parts of the package building infrastructure are quarantined, pending reinstallation. Also there is a lot of work going into revising the software used to build the packages with security enhancements in mind. So there simply aren't packages available yet to go with 9.1-RELEASE. Ah yes, thank you Matthew. I had forgotten about that. I guess the 9.1RC3 packages were removed for the same reason. _ Douglas Denault http://www.safeport.com d...@safeport.com Voice: 301-217-9220 Fax: 301-217-9277 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
