Problem completing a 9.1 release to 9.2 release upgrade
I have a server that was/is running 9.1 release that I tried to upgrade to 9.2 release. I missed the step of updating to the latest 9.1 patches by doing freebsd-update fetch freebsd-update install I went right to freebsd-update upgrade -r 9.2-RELEASE freebsd-update install rebooot freebsd-update install reboot again But my system still comes up as 9.1 release. Any suggestions on the steps to fix my goof? Eric Feldhusen ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Problem completing a 9.1 release to 9.2 release upgrade
Ah, yes, when this particular box was a 9.0-release, I had compiled a custom kernel to enable ipsec. When I check the strings, it's a 9.1 release kernel. I see my /usr/src/sys/amd64/conf/GENERIC is a 9.2 kernel, so I should just be able to do a cd /usr/src make buildworld make installworld reboot and I'll be running up on the 9.2 kernel and then I'll be all set? Thanks for the help. Eric On Sat, Oct 5, 2013 at 3:34 PM, Matthew Seaman matt...@freebsd.org wrote: On 05/10/2013 20:11, Eric Feldhusen wrote: I have a server that was/is running 9.1 release that I tried to upgrade to 9.2 release. I missed the step of updating to the latest 9.1 patches by doing freebsd-update fetch freebsd-update install I went right to freebsd-update upgrade -r 9.2-RELEASE freebsd-update install rebooot freebsd-update install reboot again But my system still comes up as 9.1 release. Any suggestions on the steps to fix my goof? Did you replace the generic kernel from 9.1-RELEASE with something you compiled yourself? If so, you may well have caused freebsd-update to ignore any modifications to the kernel. You can fix that by re-compiling a kernel using the 9.2-RELEASE sources and basically the same kernel configuration as for 9.1 (you will need to check for 9.2 related differences to the configuration, but these are likely to be pretty minor or not needed at all.) If you aren't using a customized kernel, then has the kernel in the standard location on your system actually been updated? You can tell if it's a 9.2 kernel by running strings(1) against the kernel binary, like so: # strings /boot/kernel/kernel | grep RELEASE If that's clearly a 9.2 kernel, then are you actually booting up from a different kernel somewhere else on your system? First of all, are there any other copies of FreeBSD kernels around anywhere -- on memsticks, or on split mirrors perhaps? You may need to fiddle with the bios settings or interrupt the boot sequence and type things directly at the loader if so. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. PGP: http://www.infracaninophile.co.uk/pgpkey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Problem completing a 9.1 release to 9.2 release upgrade
I figured I'd walk through those steps from start to finish and just correct my main problem and any other little glitches I might have. I'm on step 6 and when I run mergemaster -p, I get the following error. *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot /usr/bin/install: Undefined symbol gid_from_group *** FATAL ERROR: Cannot copy files to the temproot environment I found this thread on the Freebsd forums http://forums.freebsd.org/showthread.php?t=41779 with the same error and if I do the same diagnostic steps of truss install -d -g wheel ~/testdirectory I find an error of lstat(/usr/local/etc/libmap.d,0x7fffb990) ERR#2 'No such file or directory' Any suggestions? Thank you for the help thus far. Eric On Sat, Oct 5, 2013 at 4:41 PM, Polytropon free...@edvax.de wrote: On Sat, 5 Oct 2013 16:00:25 -0400, Eric Feldhusen wrote: I see my /usr/src/sys/amd64/conf/GENERIC is a 9.2 kernel, so I should just be able to do a cd /usr/src make buildworld make installworld reboot and I'll be running up on the 9.2 kernel and then I'll be all set? No. You should follow the procedure mentioned in the comment header of /usr/src/Makefile. From my (old) b-STABLE system: # 1. `cd /usr/src' (or to the directory containing your source tree). # 2. `make buildworld' # 3. `make buildkernel KERNCONF=YOUR_KERNEL_HERE' (default is GENERIC). # 4. `make installkernel KERNCONF=YOUR_KERNEL_HERE' (default is GENERIC). # [steps 3. 4. can be combined by using the kernel target] # 5. `reboot'(in single user mode: boot -s from the loader prompt). # 6. `mergemaster -p' # 7. `make installworld' # 8. `make delete-old' # 9. `mergemaster'(you may wish to use -i, along with -U or -F). # 10. `reboot' # 11. `make delete-old-libs' (in case no 3rd party program uses them anymore) Pick what you need to do. When kernel and world sources are in sync, a new kernel can always be installed in multi-user mode. To install world, you should drop to single-user mode to avoid interferences with a full-featured system running in the background. This procedure (or parts of it) will also work when you have been using freebsd-update to modify your kernel, world, and sources. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Login.conf Limits not Applying for Postfix
Hey list, I have a pretty low resource usage for users on my system, thus I have some low limits set in my /etc/login.conf. Particularly openfiles, which is set to 128 for the default class. However, I started getting errors from Postfix saying it has hit this limit: postfix/proxymap[97907]: warning: could allocate space for only 128 open files So I added a new class in my /etc/login.conf: postfix:\ :openfiles=1024:\ :tc=default: Yes, I did run `cap_mkdb /etc/login.conf` (multiple times, in fact). I stopped and restarted the postfix daemon. I've even rebooted the system entirely since then, to no avail (It sends half the mail at a time - but the error appears again once mail starts building up). Am I missing something? Do I need to set the postfix user into the postfix login class somehow? Yes see http://www.freebsd.org/doc/en/books/handbook/users-modifying.html My full /etc/login.conf is here: http://pastebin.ca/2376936 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pkgng repositories
On Wed, 01 May 2013 08:54:33 -0500, Quark unixuser2000-f...@yahoo.com wrote: Does some noble soul maintain any publically accessible pkgng repo? PCBSD has one! ftp://ftp.pcbsd.org/pub/mirror/packages/9.1-RELEASE/amd64/ (or i386) ___ Also if I remember right Xorg and KDE4 are included on the release DVD image. -- | _ ASCII Ribbon Eric S Pulley | ( ) Campaign Against pul...@dabus.com | X HTML Mail | / \ www.asciiribbon.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Home WiFi Router with pfSense or m0n0wall?
Hi, I'm looking to replace the piece of crap 2wire WiFi router that gets crakced every other day for something with pfSense or m0n0wall I would like something that is plug and play and easy to use in the $300 rage tops that has the WiFi router integrated. It seems only Hacom offers this. Can anyone recommend something different or has anyone here tried Hacom WiFi routers? Any additional comments or recommendations? Thanks, -- Alejandro Imass Get a HostAP capable miniPCI card and stick it in a netbook. I did that to an Acer I picked up cheap and added external antenna (not sure how much that mattered), works great all for under 300USD. I'm running OpenBSD on mine but should do any of the firewall/routers specific variants just fine. -- | _ ASCII Ribbon Eric S Pulley | ( ) Campaign Against pul...@dabus.com | X HTML Mail | / \ www.asciiribbon.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Soekris or .. ?
On Fri, Mar 1, 2013 at 11:49 AM, Julien Cigar jci...@ulb.ac.be wrote: Hello, I'm looking for a small Soekris-like (http://soekris.com/) box which support FreeBSD, any experience or brand to advise .. ? I'm using Soekris net4801 boxes with FreeBSD without problems since many years as small routers with pf, dhcp, bind, lighttpd etc... Last version i've tested is 8.3. I didn't update to 9.X yet for no other reasons than lack of time to try it, and I don't know if clang supports Geode well enough so I can't say anything about -CURRENT. But save for this, Soekris boxes and FreeBSD are a great match. Thank you, Julien -cpghost. -- Cordula's Web. http://www.cordula.ws/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Just food for thought: You could also use a cheap netbook for about the same money as a new Soekris box. Unless you have minimalistic power requirements and really need the Seokris' 12-15W vs a netbooks 40-50W draw. Advantages, at least compared to my Soekris net4801, are integrated screen,keyboard and UPS and much better network throughput via ural(4) or similar versus the built in sis(4) of the net4801. If power is a major concern you can shut down the LCD assuming you can get APCI working correctly. -- ESP ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Unable to install xorg using pkg_add
Read the 9.1 Release notes. This is the expected behavior. You'll need the DVD iso or build from ports to get xorg going in 9.1 right now. Hello, I just installed FreeBSD last night using the bootonly image for 9.0-RELEASE. I then updated to 9.1-RELEASE using freebsd-update. Everything seems to have gone smoothly but now I'm getting the below error when trying to isntall xorg. Error: Unable to get ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-9.1-release/Latest/xorg.tbz: File unavailable (e.g., file not found, no access) pkg_add: unable to fetch ' ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-9.1-release/Latest/xorg.tbz' by URL ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Is FreeBSD 9 Production Ready?
--On November 24, 2012 10:38:35 AM -0600 Tim Daneliuk tun...@tundraware.com wrote: I am currently running FBSD 8.3-STABLE on a production server that provides http, dns, smtp, and so on for a small domain. This is not a high arrival rate environment but it does need to be rock solid (which FBSD 4-8 have been). I am contemplating moving to the FBSD 9 family. Is this branch ready for production or should I wait a while yet? I ordinarily avoid x.0 releases of anything and I know 9.1 is soon going to be with us. In a related note, if I do move to 9.x is it sufficient to grab the appropriate source tree and compile world and kernels, install and reboot? That is, it is reasonable to do an in-place upgrade. This is how I migrated 4-6, 6-7, and 7-8 and I am hoping this is till the case since a complete reinstall is painful and slow. I upgraded to 9 on a server that is basically doing what yours is. I used freebsd-update and it did all the right things no problems. Been running on 9 without any issues pretty much since it came out. However, the only thing remotely fancy I'm doing is running root ZFS and link aggregation on my NIC's. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How is zfs file system known in fsck?
--On November 18, 2012 10:38:43 AM -0500 Lynn Steven Killingsworth blue.seahorse.syndic...@gmail.com wrote: Hi FreeBSD - On my PC-BSD 9.1 RC3 I need to run fsck on my internal storage drive. I would like to use I think: fsck -y -F -t ufs /dev The question is what should I place for 'ufs' since I have zfs. My guesses just generate similar to 'directories unknown' My disk is also gpt. If I leave out the file system type after -t my machine apparently accepts a command to do something, but it of course does not do what is needed. Thanks If you're going to run advanced filesystems you really should try to understand how they work. There is no fsck tool and no need for one on zfs. If you have managed to loose data while running zfs you'd better have a backup. Read zpool(8) zfs(8) and possibly http://docs.oracle.com/cd/E19253-01/819-5461/index.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Info 2 Release
René Mercier realmo.merc...@gmail.com writes: Bonjour, Je suis sous Debian, mais travaillant dans les réseaux, je souhaiterai passer sur FreeBsd pour sa stabilité et pour sa sécurité,, je vois qu'actuellement il y une 9 rc1, pourriez vous s'il vous plait me dire quelle la prochaine release à venir et sa date de sortie [L'usage sur les ML FreeBSD est l'utilisation de l'anglais] Check http://www.freebsd.org/releng/index.html for further information. Éric Masson -- Puisque nous n'avons aucun problème traduisant le Suédois au frencece ne devrait pas être aucun problème pour que vous le fassiezl'autre voie autour. Sucez sur ceci: www.Hlookslikeshit.xxx.com -+- H in GNU : Pour qui sont ces suédois qui sucent sur nos sites ? -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sharing COM ports to Windows hosts
Victor Sudakov v...@mpeks.tomsk.su writes: Hi, There is a FreeBSD box with several RS232 ports. Can those ports be accessed by Windows hosts over the network? Actually, does anyone have a success story for such a scenario? Yes, sredird on the FreeBSD box NetDialout from PCMicro on the Windows box. There is some software like comms/serialoverip, comms/tits etc but are there any (freeware) Windows virtual COM port drivers compatible therewith? http://en.wikipedia.org/wiki/COM_port_redirector#Open_source_solutions com0com Project's com2tcp may be what you're expecting. Regards Éric Masson -- l'anarchie, c'est pt'etre pas genial comme mode de gouvernement, mais c'est mieux que pas de gouvernement du tout. -+- Kevin in http://www.le-gnu.net -+- Ni Root, ni Maître. -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
fusefs-ntfs panic after update to 9.0-RELEASE....
All, I've been using fusefs-ntfs for quite a while with no issues for my ntfs needs in 8.x I recently updated to 9.0-RELEASE, and now my machine panics upon writing to an ntfs mount. I did rebuild all fusefs-ntfs ports after the upgrade. Anyone else experiencing this or similar? Thanks, Eric signature.asc Description: OpenPGP digital signature
Re: Synchronising jails
On 04/27/2012 09:35, Frank Staals wrote: Hey Everyone, I'm looking for a way to synchronise two jails. More specifically, I would like to keep/maintain an exact copy of a given jail. As an example: Suppose I build a jail A on some system (in my particular case build with ezjail) , and I copy the jail into jail B on some other system (using tar, as is mentioned here: http://forums.freebsd.org/showthread.php?t=17813). Now stuff happens in Jail A, e.g. files change, new stuff is installed etc. I would like to propagate these changes to jail B, but since the transfer is over WAN I would like not to have to copy the entire jail again, just the stuff that has changed since the last backup. It is safe to assume nothing in Jail B changes: I basically want to maintain the exact copy so if something would happen to the system running Jail A I can immediately switch to jail B without much hassle. Normally I would say this a perfect use case for rsync. But as the aforementioned thread mentions ``scp or similar wont work to copy a jail'', and I consider rsync similar to scp, rsync is dissimilar in that it is capable of preserving links. It may likely do the job? I am under the impression that rsync would not be usable in this situation. Can anyone shed some light on this, or suggest an alternative to synchronise the jails? Regards, signature.asc Description: OpenPGP digital signature
Re: RIP routing protocol implementation is FreeBSD?
Kaya Saman kayasa...@gmail.com writes: Hi, does anyone know if there's an implementation of the RIP version 2 routing protocol in FreeBSD??? man 8 routed I did check out the handbook for the enable_routerd=YES I'd try routed_enable = YES instead. Regards Éric Masson -- je crosspost sur fr rec moto pour ce triste modéle d'intolérance. [...] PS :Désolé mon logiciel de news ne permet pas les follow up et je n'en changerai certainement pas pour vous etre agréable. -+- CC in Guide du Neuneu Usenet - Bien configurer son incompétence -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: RIP routing protocol implementation is FreeBSD?
Eric Masson e...@free.fr writes: Sorry, Followup to myself. I'd try routed_enable = YES instead. router_enable = YES as Michael stated in another post. Regards Éric Masson -- et me dis quil y a eu une merde avec le serveur truc machin et que ca a fait un gros server crash. OU ets la merde? Fallait choisir le serveur bidule, c'est pour ça. -+- EJ in guide du linuxien pervers - Tout ça c'est de la bidouille -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Clang - what is the story?
kpn...@pobox.com writes: Hi, Lattice C - targeted MS-DOS, AmigaOS, probably others. Had a 32-bit int on the Amiga, where Manx had a 16-bit int. When Commodore ported BSD sockets to the Amiga they had to change all the ints to longs because of this. Was renamed SAS/C towards the end of the Amiga product. And those who did C development on Atari ST probably remember of DRI Alcyon C (a quick port of CPM/68K C Compiler) Pure C (a Turbo C like IDE compiler). Éric Masson -- Warning: file /home/emss/misc/fortune/En_sig.dat unreadable Warning: file /home/emss/misc/fortune/Fr_sig.dat unreadable Faut vraiment que je m'occupe de ce problème de signature :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Extract photo from digital camera that is not USB mass storage device
David Demelier demelier.da...@gmail.com writes: Hi, What can I do to copy photo without extracting the SD card each time, does gphoto (or something similar) support this kind of generic device? Iirc, my old Canon A75, ptp device, was supported by gphoto. Éric Masson -- personne n'a un zipper suffisament puissant pour comprimer un con en 4 ligne pour le GNU ? parce que celui la, pour ses oeuvres complétes faut un forum dédié ! -+- JFP in neuneu.ctw.cc - Si le con presse, zippé des prunes-+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ports vs packages
Dick Hoogendijk d...@nagual.nl writes: Hi, As I write in another reply: that's true and totally stupid imo. *You* think it's stupid. There's not one true way to serve php pages, more and more platforms use a lightweight httpd daemon like nginx and php-fpm for example. If you manage many servers, you can build custom packages with options you need and then deploy. If you tinker with your home server, using the ports isn't that a problem... Éric Masson -- je comprend pas ce a quoi sert ce site ou cette boite a lettre.J'y voit plein de messages et autres anneries alors si tu pouvais m'aider et me repondre pour m'expliquer a qui et a quoi servent toutes ses phrases -+- DD in http://www.le-gnu.net : Allo Huston, nous avons un neuneu. -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ports vs packages
Alejandro Imass a...@p2ee.org writes: Hi, IMO it's stupid as well and I second Dick's opinion. You're at least two, great. The module doesn't hurt anyone, and reduces confusion. I think that PHP is still more heavily deployed on mod_php than on anything else. The Apache module should be built by default unless there is a really strong argument as to why it shouldn't. And then someone will pop here telling that he doesn't need mod_php and doesn't understand why it's packaged by default and that his own configuration should be the default instead... Éric Masson -- Ce personnage doit probablement avoir des qualités cachées (bien cachées) pour ne pas avoir été rejeté par ces paires. Ou bien ça s'apelle l'esprit de corps. -+- FrF in : GNU - Il a les couilles chevillées au corps -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Thinkpad w500 microphone with Conexant CX20561 (Hermosa)
On 01/01/2012 15:23, Lyubomir Grigorov wrote: I assume you are using Skype with linuxator? In this case, are the sound devices in Skype set to OSS? From the PC-BSD forum, the following got sound working for me, since OSS wasn't showing as an option: hmm. well. thats a good quesiton (with linuxulator?) now that you mention it. The port is marked BROKEN. and if you unmark it as such you can't get the distfiles. So I pulled them off a machine I had it one from some time (years?) back and built it. It built fine. Runs fine. Digging into var/db/pkg/skype* ... +CONTENTS says linux this and that so I'd dare to say yes then. There does not seem to be a config option in Skype that I can find to set it to use OSS. Just says '/dev/dsp' and /dev/dsp0'. # pkg_add -r linux-f10-alsa-plugins-oss # cp /compat/linux/etc/alsa/pcm/pcm-oss.conf-dist /compat/linux/etc/alsa/pcm/ I'm not seeing the above in the ports tree. :/ Lyubomir Grigorov (bgalakazam) signature.asc Description: OpenPGP digital signature
Re: Thinkpad w500 microphone with Conexant CX20561 (Hermosa)
On 01/01/2012 16:45, Lyubomir Grigorov wrote: Yes, it does sound like it, as there is no native Skype for FreeBSD, so you are using the linux layer. If you are missing OSS from devices, then it is not installed. Once you install the port, configure it use OSS. For all 3 dropdowns under the Devices settings. I'm not seeing the above in the ports tree. :/ The port is here: $ pwd /usr/ports/audio/linux-f10-alsa-plugins-oss Definitely not in my ports tree. I'm running amd64, and my ports tree is old. Either could be the culprit? I'll update and see what I get. -- Lyubomir Grigorov (bgalakazam) Cheers. signature.asc Description: OpenPGP digital signature
Re: Thinkpad w500 microphone with Conexant CX20561 (Hermosa)
On 01/01/2012 18:43, Lyubomir Grigorov wrote: Definitely not in my ports tree. I'm running amd64, and my ports tree is old. Either could be the culprit? I'll update and see what I get Well I update on a daily basis, but I am pretty sure this is an older port. In any case, you know # portsnap fetch # portsnap update After updating... still not there. No package available either. :/ P.S. I was interested in a W500, but due to it being ATI, I rather go with T400 or X200 because of the Intel graphics. If no 3D acceleration is fine by you, W500 is a beast by all means. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org signature.asc Description: OpenPGP digital signature
Re: 9.0 install and journaling
--On Tuesday, December 13, 2011 09:54:38 AM +1000 Da Rock freebsd-questi...@herveybayaustralia.com.au wrote: On 12/13/11 06:00, Eric S Pulley wrote: As for one big / partition- linux may be using it: and its their biggest failing! I've had a system lockup due to lack of space. Never a problem with bsd as logs will only fill up var, a user won't break it with filling up usr, etc. And root always stays protected! Its saved my life a number of times... I can quickly fill TB's of data in no time, and if something goes bang the logs can be a silent killer too. My 2c's anyway... ___ And along those lines for security of the system, this is the U.S. DoD recommendations (well mandates really) including ZFS. Not that the DoD doesn’t have security problems... but I’m not big fan of the one or two mount point solution either… never understood why other OS packagers think is okay to just dump it all under / Per the DISA STIG (Security Technical Implementation Guide) / (obviously) /home directories) /var /tmp /location of audit files should all be separate mount points The use of separate file systems for different paths can protect the system from failures resulting from a file system becoming full or failing... in addition... All local file systems must employ journaling or another mechanism that ensures file system consistency. Removable media, remote file systems, and any file system that does not contain approved device files must be mounted with the nodev option. Removable media, remote file systems, and any file system that does not contain approved setuid files must be mounted with the nosuid option. The nosuid option must be enabled on all NFS client mounts. and so on... you can find a copy of the UNIX STIG online and some of it is just crazy paranoia and makes your life a pain, but there are a lot of good practices in it too. I don't think any of it crazy paranoia. A PITA, maybe, but not paranoid. Do you have a link to the original of it? Sure, http://iase.disa.mil/stigs/ Lots more there than just UNIX too. I find that the newer SRG xml files are easier to just load into a browsers and read the recommendations rather than pouring through the big sections in the STIGs. http://iase.disa.mil/stigs/downloads/zip/unclassified_os-srg-unix_v1r1_finalsrg.zip Or just do the checklists. There are no *BSD specific ones but the the generic UNIX STIG works good (probably because at this point *BSD is basically the reference implementation of UNIX or at least it should be... damn Linux) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: 9.0 install and journaling
--On Tuesday, December 13, 2011 08:54:23 AM -0800 Devin Teske devin.te...@fisglobal.com wrote: We're seeing in 8.1-RELEASE that nodev is an invalid option for NFS mounts that causes your system to boot into single-user mode. Is this still the case in 9.0-RC2/3 or has the option been re-added? nodev was a valid option in 4.11-RELEASE, not sure why it was removed (and/or made invalid). -- Devin No that was just a guideline for generic unix security practices if nodev isn't support by the filesystem there is nothing you can do about it. Not a FreeBSD specific issue. Sorry for the confusion. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 9.0 install and journaling
As for one big / partition- linux may be using it: and its their biggest failing! I've had a system lockup due to lack of space. Never a problem with bsd as logs will only fill up var, a user won't break it with filling up usr, etc. And root always stays protected! Its saved my life a number of times... I can quickly fill TB's of data in no time, and if something goes bang the logs can be a silent killer too. My 2c's anyway... ___ And along those lines for security of the system, this is the U.S. DoD recommendations (well mandates really) including ZFS. Not that the DoD doesnt have security problems... but Im not big fan of the one or two mount point solution either never understood why other OS packagers think is okay to just dump it all under / Per the DISA STIG (Security Technical Implementation Guide) / (obviously) /home directories) /var /tmp /location of audit files should all be separate mount points The use of separate file systems for different paths can protect the system from failures resulting from a file system becoming full or failing... in addition... All local file systems must employ journaling or another mechanism that ensures file system consistency. Removable media, remote file systems, and any file system that does not contain approved device files must be mounted with the nodev option. Removable media, remote file systems, and any file system that does not contain approved setuid files must be mounted with the nosuid option. The nosuid option must be enabled on all NFS client mounts. and so on... you can find a copy of the UNIX STIG online and some of it is just crazy paranoia and makes your life a pain, but there are a lot of good practices in it too. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: postfix INST_BASE option
Christer Solskogen christer.solsko...@gmail.com writes: Hi, You can do this a lot easier with just: sendmail_enable=NONE From rc.sendmail(8) : RC.CONF VARIABLES The following variables affect the behavior of rc.sendmail. They are defined in /etc/defaults/rc.conf and can be changed in /etc/rc.conf. sendmail_enable (str) If set to ``YES'', run the sendmail(8) daemon at system boot time. If set to ``NO'', do not run a sendmail(8) daemon to listen for incoming network mail. This does not preclude a sendmail(8) daemon listening on the SMTP port of the loopback interface. The ``NONE'' option is deprecated and should not be used. It will be removed in a future release. Regards Éric Masson -- CS: Oui mais alors moi je me construis une souris avec autant de boutons qu'applis et je fais des racourcis, rena ! :-) LP: Ah oui, mais alors là il va falloir acheter des doigts, rerena! ;-p -+- LP in Guide du Macounet Pervers : Vous m'en mettrez une poignée -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: nice man pages?
On 10/25/2011 20:20, Patrick Lamaiziere wrote: Hello, I use sysutils/most to have nice manual pages in color, that's cool but is there a way to do this with the base system (ie without adding port)? Thanks, regards. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Well, (depending on your definition of adding a port) for me since I always have vim, I use the following alias: alias man man -P \col -b \| vim -c \'set ft=man nomod nolist\' -\ Maybe that helps a bit? -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: Breakin attempt
Actually this looks like fairly normal white noise you can expect on a
public facing ssh server. There are a lot of bots out there, looking for
another box to own. If you're running PF put in something like the
following.
block in quick log from {BADGUYS}
.
.
.
pass in log on $ext_if proto tcp to ($ext_if) port { ssh } \
flags S/SA modulate state \
(max-src-conn-rate 3/60, overload BADGUYS flush global)
And remember that that you need to wait a minute if you (for some reason)
make more than x (3 in this case) connections from the same source in a
minutes time. Tune as needed.
The disable root logins and only use keys if you can, strong PWs if you
can't and you should be good.
--On Saturday, October 22, 2011 03:43:44 PM +0200 Admin ValhallaProjectet
ad...@thorshammare.org wrote:
Hello all
FreeBSD odin.thorshammare.org 8.2-STABLE FreeBSD 8.2-STABLE #0: Sat Oct 22
10:14:48 CEST 2011
ha...@odin.thorshammare.org:/usr/obj/usr/src/sys/ODIN i386
Firewall PF.
Blocking China and some other related countries in that region.
Disabled ssh root logins
Apparently, I'm under some kind of attack, for the last 3 days.
Lots of attempts to ssh in as root from many different IP addresses.
No bruteforce attempts.
This just puzzles me. Using all these resources ? To achieve what ?
Below is a one hour snip from my auth.log
Nothing unusual in pflog
Appreciate all ideas of how to proceed with this mather.
Best regards Hasse
Oct 22 12:00:19 odin sshd[14359]: error: PAM: authentication error for
root from server.fabian.cz
Oct 22 12:01:08 odin sshd[14365]: Address 87.105.187.194 maps to
client-arsmedica-2.wroclaw.dialog.net.pl, but this does not map back to
the address - POSSIBLE BREAK-IN ATTEMPT!
Oct 22 12:01:09 odin sshd[14365]: error: PAM: authentication error for
root from 87.105.187.194
Oct 22 12:02:59 odin sshd[14422]: error: PAM: authentication error for
root from 87.229.7.163
Oct 22 12:03:36 odin sshd[14865]: error: PAM: authentication error for
root from 201.25.53.34
Oct 22 12:03:53 odin sshd[15571]: error: PAM: authentication error for
root from 109.237.210.147
Oct 22 12:05:18 odin sshd[18357]: error: PAM: authentication error for
root from 12.222.202.34
Oct 22 12:05:36 odin sshd[18375]: error: PAM: authentication error for
root from mx.aysor.am
Oct 22 12:05:53 odin sshd[18537]: error: PAM: authentication error for
root from 190.129.11.76
Oct 22 12:07:06 odin sshd[19429]: Address 80.188.13.214 maps to
www.profitaxi.cz, but this does not map back to the address - POSSIBLE
BREAK-IN ATTEMPT!
Oct 22 12:07:06 odin sshd[19429]: error: PAM: authentication error for
root from 80.188.13.214
Oct 22 12:07:27 odin sshd[19542]: error: PAM: authentication error for
root from 85.185.180.48
Oct 22 12:08:05 odin sshd[19591]: error: PAM: authentication error for
root from 208.125.137.121
Oct 22 12:09:45 odin sshd[19629]: error: PAM: authentication error for
root from 83.14.240.10
Oct 22 12:10:53 odin sshd[19699]: error: PAM: authentication error for
root from 200.160.121.246
Oct 22 12:10:59 odin sshd[19702]: error: PAM: authentication error for
root from 151.1.183.216
Oct 22 12:11:38 odin sshd[19787]: error: PAM: authentication error for
root from crm.nepinc.com
Oct 22 12:12:16 odin sshd[19830]: error: PAM: authentication error for
root from 189.16.12.146
Oct 22 12:12:45 odin sshd[19843]: error: PAM: authentication error for
root from narro.uaaan.mx
Oct 22 12:14:14 odin sshd[19913]: error: PAM: authentication error for
root from 217.128.151.181
Oct 22 12:14:56 odin sshd[19925]: reverse mapping checking getaddrinfo for
panda.zsuvoz.cz [195.178.81.116] failed - POSSIBLE BREAK-IN ATTEMPT!
Oct 22 12:14:56 odin sshd[19925]: error: PAM: authentication error for
root from 195.178.81.116
Oct 22 12:16:14 odin sshd[19995]: error: PAM: authentication error for
root from 87.193.246.26
Oct 22 12:16:23 odin sshd[20008]: error: PAM: authentication error for
root from 219.94.144.230
Oct 22 12:16:39 odin sshd[20026]: error: PAM: authentication error for
root from 82.130.143.216
Oct 22 12:17:41 odin sshd[20073]: error: PAM: authentication error for
root from 87.193.246.26
Oct 22 12:17:52 odin sshd[20102]: error: PAM: authentication error for
root from 82.130.143.216
Oct 22 12:21:16 odin sshd[20268]: error: PAM: authentication error for
root from 203.141.158.120
Oct 22 12:21:34 odin sshd[20286]: error: PAM: authentication error for
root from 208.125.137.121
Oct 22 12:22:05 odin sshd[20326]: reverse mapping checking getaddrinfo for
86-100-134-185-ip.balticum.lt [86.100.134.185] failed - POSSIBLE BREAK-IN
ATTEMPT!
Oct 22 12:22:05 odin sshd[20326]: error: PAM: authentication error for
root from 86.100.134.185
Oct 22 12:22:22 odin sshd[20339]: error: PAM: authentication error for
root from 201.232.69.113
Oct 22 12:23:35 odin sshd[20428]: error: PAM: authentication error for
root from 87.229.7.163
Oct 22 12:23:58 odin sshd[20486]: error: PAM: authentication error for
root from
Re: Enlightenment cpufreq gadget broken display
Gary, Fwiw You might try #e on freenode. :) -Eric -Original message- From: Open Slate openslatep...@gmail.com To: freebsd-questions@freebsd.org Sent: Thu, Oct 20, 2011 23:14:01 GMT+00:00 Subject: Enlightenment cpufreq gadget broken display I added the cpugreq gadget to my shelf. It appears to be an analog tachometer but the only data displayed is digital, just below the center of where the tach needle should be. And the font makes to number too small to be useful, even on the desktop. Anybody have a working cpufreq gadget? The one in gnome work just fine. -- Gary Dunn Open Slate Project http://openslate.org/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to deny getting static ip address via pf ?
On Tue, July 26, 2011 9:01 am, Chuck Swiger wrote: On Jul 26, 2011, at 3:44 AM, Yavuz MaÅlak wrote: I use pf on freebsd as packet filter. I have a wireless area. The users get to the internet using automatic ip from the dhcp server. I wish to deny to assign a static ip address by manual. You can't prevent someone from doing manual configuration. If you were connecting via a smart switch, you can configure MAC address filtering on each of the switch ports and then use DHCPd to only assign each MAC to the right range or static IP, and then use an IP-based firewall to control traffic from there. If a user tried to spoof some other MAC, the switch would block such traffic. However, with wireless, nothing prevents the users from spoofing other MACs. Regards, -- -Chuck If your purpose is to deny a person the ability to add themselves manually to your local net and then get to other networks this is a perfect example of the use for authpf. Combine authpf with port security on your local switch (if you have that functionality). But they can still spoof their MAC so it doesn't protect the local wifi subnet much. Only thing I know works 100% is to set up a wifi net that is unrouted with nothing in it but a VPN concentrator, once someone connects to the wifi net then they establish an encrypted VPN connection that will route the VPN traffic in/out of the wifi net. Might be an interesting project for someone to add a PKI auth layer to the DHCP protocol if someone hasn't already . I can think of several uses for it. Of course Cisco has something that might work for you: http://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/ftdsiaa.html. I'd rather figure something else out than pay them for their crap though. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Tools to find unlegal files ( videos , music etc )
Frank Bonnet f.bon...@esiee.fr writes: Hi, We'll see who will win ;-) Check this : http://fr.wikipedia.org/wiki/Droit_de_l'informatique_en_France The fact you can do something doesn't mean you're allowed to... -- Moi je trouve qu'il est debile de vouloir detruir kekel ke chose MG Ta touche k est coincée ? -+- G in GNU : dans le kk jusqu'au cou -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: dnssec with freebsd's resolver(3)
On 6/22/11 5:58 PM, Matthew Seaman m.sea...@infracaninophile.co.uk wrote: On 22/06/2011 20:02, Osterweil, Eric wrote: On 6/22/11 2:56 PM, Leon Meßner l.mess...@physik.tu-berlin.de wrote: On Mon, Jun 20, 2011 at 06:17:23AM +0100, Matthew Seaman wrote: On 20/06/2011 01:37, Leon Meßner wrote: Ok, my recursive resolver does DO processing. How do i tell ssh to set the bit ? Doesn't ssh use my base system stub resolveer to query my in resolv.conf configured DNS ? I'm not sure what you mean by DO processing, but validation requires a little more than issuing queries w/ the DO bit set (that has been the default in BIND for a while). You need to have the root (or some other) trust-anchor configured, and you need to enable DNSSEC validation in your named.conf. Only after that will you see the AD bit at the stub. Actually, typically with a correctly configured validating resolver, as an end user issuing queries from the system's stub resolver, you'll only see responses with data that is either: -- completely unsigned And this will _not_ have the AD bit. -- signed, and that validates correctly This will have the AD bit, but only if there is a verifiable chain of trust leading from a configured trust-anchor. Data that doesn't validate correctly is discarded. Better make sure your DNSSEC setup is correctly maintained and updated, or your domains may effectively disappear from the net. This actually depends on exactly what you mean by doesn't validate, and how the resolver is configured: If the chain of trust does not lead to this zone, then the resolver can be configured to return data without setting the AD bit (this is the default for most early movers on DNSSEC). If there IS a valid chain of trust, and the crypto doesn't verify, then you are right, data is not returned (unless the CD bit is set). validates correctly is a function of how your recursive resolver is configured: for instance, you will probably want to trust DLV secured data until authentication paths up to the root become more prevalent in all corners of the DNS. I strongly disagree! Now that the root, .com, .net, .edu, .gov, .org, etc. are signed (over 65 TLDs), the few _debatable_ reasons to use DLV are really gone. Today, if there is no chain to a zone, then you (as the resolver operator) can decide if you want to configure the TA manually, or wait until the zone operator gets their DS in their parent zone. In either case, the typical DNSSEC validating resolver configuration will return data for these zones, just not setting the AD bit. Don't forget (also), that using DLV exposes the privacy of exactly what zones you are querying to the external party running the DLV. You will essentially tell that party what zones your are querying by asking for those zones' DLV records. Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: dnssec with freebsd's resolver(3)
On 6/23/11 2:23 PM, Leon Meßner l.mess...@physik.tu-berlin.de wrote: This mail got only send to Matthew because of bad time of day ;) On Wed, Jun 22, 2011 at 10:58:00PM +0100, Matthew Seaman wrote: On 22/06/2011 20:02, Osterweil, Eric wrote: On 6/22/11 2:56 PM, Leon Meßner l.mess...@physik.tu-berlin.de wrote: On Mon, Jun 20, 2011 at 06:17:23AM +0100, Matthew Seaman wrote: snip I'm not sure what you mean by DO processing, but validation requires a little more than issuing queries w/ the DO bit set (that has been the default in BIND for a while). You need to have the root (or some other) trust-anchor configured, and you need to enable DNSSEC validation in your named.conf. Only after that will you see the AD bit at the stub. Actually, typically with a correctly configured validating resolver, as an end user issuing queries from the system's stub resolver, you'll only see responses with data that is either: -- completely unsigned -- signed, and that validates correctly Data that doesn't validate correctly is discarded. Better make sure your DNSSEC setup is correctly maintained and updated, or your domains may effectively disappear from the net. validates correctly is a function of how your recursive resolver is configured: for instance, you will probably want to trust DLV secured data until authentication paths up to the root become more prevalent in all corners of the DNS. The only thing i want to do at the moment is serve my local zone to my local clients. If i do % dig @dns +dnssec rosa.physik-pool.tu-berlin.de i get ;; flags: qr rd ra ad; QUERY: 1, ANSWER: 2, AUTHORITY: 4, ADDITIONAL: 3 and also i can see the D0 bit set when looking at the tcpdump. If i now use the stub resolver through telnet/ssh the D0 bit does _not_ get set in the query. So there is no way for the recursive NS to supply AD data, right ? That is correct, sorry. If the stub doesn't request DNSSEC enabled (via the DO bit), then the resolver will not return the validation bit. :( I did a little bit of googling, and found these instructions but I have not tried any of this myself: https://www.dnssec-tools.org/svn/dnssec-tools/trunk/htdocs/readme/README.ssh (Look under the Requirements section) There seemed to be a lot of people suggesting that opening bug reports will prompt more attention to this. thanks for helping the blind. Not at all! :) Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: dnssec with freebsd's resolver(3)
On 6/22/11 2:56 PM, Leon Meßner l.mess...@physik.tu-berlin.de wrote: On Mon, Jun 20, 2011 at 06:17:23AM +0100, Matthew Seaman wrote: On 20/06/2011 01:37, Leon Meßner wrote: does the freebsd resolver(3) support sending the DO bit in queries and thus do DNSSEC validation ? I tried using ssh with SSHFP RR's in a signed zone but i still get the insecure Key message from ssh on FreeBSD (works on some other OS). My understanding is that the stub resolver in the base system does not handle any DNSSEC functionality. It's not clear (at least to me) that DO bit processing in stub resolvers is very useful -- without support in the recursive resolver you use upstream, it won't work, but if your recursive resolver does DO processing, then you don't need it in your stub resolver. Ok, my recursive resolver does DO processing. How do i tell ssh to set the bit ? Doesn't ssh use my base system stub resolveer to query my in resolv.conf configured DNS ? I'm not sure what you mean by DO processing, but validation requires a little more than issuing queries w/ the DO bit set (that has been the default in BIND for a while). You need to have the root (or some other) trust-anchor configured, and you need to enable DNSSEC validation in your named.conf. Only after that will you see the AD bit at the stub. Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Limitting SSH access
Jack Raats j...@jarasoft.net writes: Hello, I have a question concerning SSH op a FreeBSD 7.4-STABLE server. Don't know sshd version in 7.4-STABLE, but if higher or equal to 4.8, the following link could help : http://www.debian-administration.org/articles/590 Regards Éric Masson -- C'est pas un pingouin mais une hirondelle africaine et sa noix de coco Maintenant que vous le dîtes, c'est fort possible, Roland Courbis a des faux airs de John Cleese, mais en plus petit. -+- fct inwww.le-gnu.net : Une hirondelle ne fait pas le pingouin-+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Bandwith Management
Could you please assist me. I have a freebsd box the previous person who handled it left the company. Now we increased the bandwidth with tenet now how do I increase it on my freebsd box? As well as how do I now what is actually used for the management of the bandwith like ipfw, ect? Please let me know Thank you, Eric Beukes - This e-mail is subjected to the disclaimer that can be viewed at: * http://www.cut.ac.za/www/disclaimer/email_disclaimer - ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
gcc45 wrong debug info?
Wondering if anyone has encountered this problem where gdb/gcc doesn't seem to be getting the line number info right. I compiled code in as -- gcc45 -g -W -Wall -O0 -std=c99 -D_BSD_SOURCE -DDEBUG -D__BSD_VISIBLE -DFREEBSD -c interreflect3d.c -o x86-debug/objects/interreflections/interreflect3d.o gcc45 -g -W -Wall -O0 -std=c99 -D_BSD_SOURCE -DDEBUG -D__BSD_VISIBLE -DFREEBSD interreflect_driver.c x86-debug/objects/interreflections/interreflect3d.o -o x86-debug/bin/interreflect_driver -I./ -Ix86-debug/include -Ix86-debug/../external/include -Lx86-debug/../external/lib -llapack -lf77blas -lcblas -latlas -lgfortran -- and then I go to debug. I seem to stop in my function ok, locals and such seem ok, gdb seems to handle OK, except the line number information is wrong: #0 0x0040467b in reconstruction_prune (r=0x7fffe420, intensity_threshold_min=1, intensity_threshold_max=99, jump_discontinuity_threshold=100, clustersize=5) at interreflect3d.c:296 #1 0x004013ef in main (argc=26, argv=0x7fffe620) at interreflect_driver.c:103 For #0, the correct line is 1108, not 296. #1 is correct. This incorrect line number info is giving me grief while I'm trying to step through my code. Anyone have a hunch what's going on here? Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: gcc45 wrong debug info?
Hmm. When I compile with -gstabs -ggdb, at least addr2line and gdb can at least see the correct line info. The info below is correct except I don't know what's up with the argc thing. Ideas? Thanks. -- Breakpoint 1, main (argc=Cannot access memory at address 0x8000e41c ) at interreflect_driver.c:9 (gdb) info breakpoints Num Type Disp Enb AddressWhat 1 breakpoint keep y 0x00400fed in main at interreflect_driver.c:9 breakpoint already hit 1 time 2 breakpoint keep y 0x004013bb in main at interreflect_driver.c:103 3 breakpoint keep y 0x00401cd3 in reconstruction_load_points at interreflect3d.c:296 4 breakpoint keep y 0x00404419 in reconstruction_prune at interreflect3d.c:1107 -- On Sun, Feb 27, 2011 at 07:30:38PM -0500, Eric Dedrick wrote: Wondering if anyone has encountered this problem where gdb/gcc doesn't seem to be getting the line number info right. I compiled code in as -- gcc45 -g -W -Wall -O0 -std=c99 -D_BSD_SOURCE -DDEBUG -D__BSD_VISIBLE -DFREEBSD -c interreflect3d.c -o x86-debug/objects/interreflections/interreflect3d.o gcc45 -g -W -Wall -O0 -std=c99 -D_BSD_SOURCE -DDEBUG -D__BSD_VISIBLE -DFREEBSD interreflect_driver.c x86-debug/objects/interreflections/interreflect3d.o -o x86-debug/bin/interreflect_driver -I./ -Ix86-debug/include -Ix86-debug/../external/include -Lx86-debug/../external/lib -llapack -lf77blas -lcblas -latlas -lgfortran -- and then I go to debug. I seem to stop in my function ok, locals and such seem ok, gdb seems to handle OK, except the line number information is wrong: #0 0x0040467b in reconstruction_prune (r=0x7fffe420, intensity_threshold_min=1, intensity_threshold_max=99, jump_discontinuity_threshold=100, clustersize=5) at interreflect3d.c:296 #1 0x004013ef in main (argc=26, argv=0x7fffe620) at interreflect_driver.c:103 For #0, the correct line is 1108, not 296. #1 is correct. This incorrect line number info is giving me grief while I'm trying to step through my code. Anyone have a hunch what's going on here? Thanks. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 8.2 prerelease, virtualbox, and windows guests that freeze...
On 02/06/2011 21:44, Rob Farmer wrote: On Sun, Feb 6, 2011 at 7:03 PM, Chris Brennan xa...@xaerolimit.net wrote: Net, I've formatted drives as fat32 that were well over 4gb. In fact I have an external 120gb we datavault that's fat32 Max per file, not the whole partition. Virtual machines generally store the whole disk as a single file, though Vmware has an option to split it up for these situations. Correct. not an option here. -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: 8.2 prerelease, virtualbox, and windows guests that freeze...
On 02/06/2011 22:02, Adam Vande More wrote: On Sun, Feb 6, 2011 at 9:23 PM, Eric Schuele e.schu...@computer.org wrote: Ok... found the logs. :) Looks as if each machine has 4 log files, and that the set of files is from the last run. Anything in there I could post to help diagnose? Let's see what's in the most recent log of an affected VM. If you have any funky options like page fusion enabled disable them. After looking in the logs I found an error. :) AIOMgr: Error happened This led me to an open issues in VirtualBox's bug tracker. The proposed work around is to either *enable* th Use Host I/O cache on your virtualized SATA disks, or just use virtualized IDE disks. I am testing this now. Will let you know how it turns out. What the output of gstat(8) and top(1) look like when you reach this degraded state? -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: 8.2 prerelease, virtualbox, and windows guests that freeze... [Solved]
On 02/07/2011 05:58, Eric Schuele wrote: On 02/06/2011 22:02, Adam Vande More wrote: On Sun, Feb 6, 2011 at 9:23 PM, Eric Schuele e.schu...@computer.org wrote: Ok... found the logs. :) Looks as if each machine has 4 log files, and that the set of files is from the last run. Anything in there I could post to help diagnose? Let's see what's in the most recent log of an affected VM. If you have any funky options like page fusion enabled disable them. After looking in the logs I found an error. :) AIOMgr: Error happened This led me to an open issues in VirtualBox's bug tracker. The proposed work around is to either *enable* th Use Host I/O cache on your virtualized SATA disks, or just use virtualized IDE disks. I am testing this now. Will let you know how it turns out. Thanks guys! I've had my VMs running longer this evening than before. I'm gonna call this one fixed. For the archives, here is the VirtualBox bug report I was referring to that mentions the host I/O cache. http://www.virtualbox.org/ticket/7363 Thanks. What the output of gstat(8) and top(1) look like when you reach this degraded state? -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: 8.2 prerelease, virtualbox, and windows guests that freeze...
On 02/06/2011 09:23, Mario Lobo wrote: On Saturday 05 February 2011 22:12:45 Eric Schuele wrote: All, I have a laptop running 8.2-prerelease GENERIC. I have virtualbox ose 3.2.12 from ports (and kmod as well). I've only installed windows guests in vbox. I've installed windows 2008 server 64, windows vista 64bit, and windows 7 32bit. I have the vbox hdd images on an NTFS filesystem mounted using fuse. snip Eric; My advice to you is that you change the file system on drive that holds the VMs files from NTFS to EXT2. Thanks for the suggestion, however, I've already tried this (sorta). From my original post... I did try a windows guest on a non fuse filesystem just to rule that out, but had same issue. I suppose it may have been a little less than clear. By non fuse filesystem I actually meant UFS. The problem still persisted. NTFS file systems on FreeBSD or even Linux are OK only for doing small r/w stuff. I use the ntfs-3g which is really good but don't trust NTFS for heavy usage under those OSs. Sometimes it's not even trustable under windows itself. I realize NTFS on fBSD has been shaky in the past, but had heard it had come a long way these days. It does seem to work well for all my purposes, except these VMs. Had hoped NTFS was not the issue. EXT on the other hand, is very stable in FreeBSD and has very good drivers for any version of 32/64 windows (Ext2IFS_1_11a) so you can access you vdi files. I've not tried the EXT IFS for windows yet, nor had I heard much regarding their success or failure. If your willing to go out on a limb and say very good drivers for any version of 32/64 windows... I'll give it a try, and post my results. :) Thanks. hope this helps. -- Mario Lobo http://www.mallavoodoo.com.br FreeBSD since 2.2.8 [not Pro-Audio YET!!] (99% winblows FREE) -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: 8.2 prerelease, virtualbox, and windows guests that freeze...
On 02/06/2011 11:35, Adam Vande More wrote: On Sat, Feb 5, 2011 at 7:12 PM, Eric Schuele e.schu...@computer.org wrote: What else could I provide that might allow someone to point me in the right direction here? You can try recompiling virtualbox with debug options and see if it spits out any pertinent messages. I have no problems with Windows guests on VDI, ZVOL, raw file, or raw partitions. Vbox also logs data per VM, you can check that. Logs might be nice. Where would I find these. Or are they only present with debug builds (which I am building now) Another possibility is that you have mismatched versions of guest additions. If that were the problem, it would show up in the Vbox logs. I thought of that... even though vbox does not complain of a mismatch, I went ahead and removed them from a machine and added them back in from my FreeBSD host. No improvement unfortunately. -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: 8.2 prerelease, virtualbox, and windows guests that freeze...
On 02/06/2011 21:17, Eric Schuele wrote: On 02/06/2011 11:35, Adam Vande More wrote: On Sat, Feb 5, 2011 at 7:12 PM, Eric Schuele e.schu...@computer.org wrote: What else could I provide that might allow someone to point me in the right direction here? You can try recompiling virtualbox with debug options and see if it spits out any pertinent messages. I have no problems with Windows guests on VDI, ZVOL, raw file, or raw partitions. Vbox also logs data per VM, you can check that. Logs might be nice. Where would I find these. Or are they only present with debug builds (which I am building now) Ok... found the logs. :) Looks as if each machine has 4 log files, and that the set of files is from the last run. Anything in there I could post to help diagnose? Another possibility is that you have mismatched versions of guest additions. If that were the problem, it would show up in the Vbox logs. I thought of that... even though vbox does not complain of a mismatch, I went ahead and removed them from a machine and added them back in from my FreeBSD host. No improvement unfortunately. -- Regards, Eric signature.asc Description: OpenPGP digital signature
8.2 prerelease, virtualbox, and windows guests that freeze...
All, I have a laptop running 8.2-prerelease GENERIC. I have virtualbox ose 3.2.12 from ports (and kmod as well). I've only installed windows guests in vbox. I've installed windows 2008 server 64, windows vista 64bit, and windows 7 32bit. I have the vbox hdd images on an NTFS filesystem mounted using fuse. My box is a dual boot machine between FreeBSD and Windows. My desire is to be able to utilize the same virtual machine in vbox on both my Windows and FreeBSD installations. I can successfully utilize the virtuals in vbox (same version) in Windows. However when I utilize any of the virtual machines in FreeBSD, they run for several minutes and eventually freeze. Freeze may not necessarily be the correct term. All windows processes on the virtual machine begin to die. First one process, then another, then all. Hard to explain, which may not help my cause here. But, most important fact... in Windows they work fine... under FreeBSD they run for a while and then cease to run. When the VM is good and dead, it is always dead with the little vbox virtual hard disk LED lit up (no idea if that is important). Previously, they would run for a *very* short time. seconds? minutes? and then die (sometimes I couldn't login). I disabled sound support and now they run for 10-15 minutes. Had one run for an hour or two the other day, but can't reproduce that. Usually 10-15 minutes max. Network works fine inside the virtual. I'm new to VirtualBox on FreeBSD. I've used it a bit on Windows with good results. I did try a windows guest on a non fuse filesystem just to rule that out, but had same issue. What else could I provide that might allow someone to point me in the right direction here? Thanks. -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: Any recommendations for FreeBSD VPS hosting?
n j wrote: Hello, I'm looking for inexpensive but reliable FreeBSD VPS hosting. Any input coming from a positive personal experience will be most appreciated. So far the most likely candidate seems to be http://www.nqhost.com/unmetered-xen-vds.html. If anyone ever dealt with them, please share. TIA, ive had good experiences across a few servers with rootbsd. Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Custom rc script using /usr/sbin/daemon
Hello,
I'm trying to create a script that would launch php-cgi in fastcgi mode.
So far, I've the following script :
#!/bin/sh
#
# PROVIDE: phpfastcgi
# REQUIRE: DAEMON
# KEYWORD: shutdown
#
# Add the following lines to /etc/rc.conf to enable phpfastcgi :
#
# phpfastcgi_enable (bool): Set it to YES to enable
phpfastcgi
# Default is NO.
# phpfastcgi_flags (str): Set the uwsgi command line
arguments
# Default is -M -L.
. /etc/rc.subr
name=phpfastcgi
rcvar=`set_rcvar`
[ -z $phpfastcgi_enable ] phpfastcgi_enable=NO
[ -z $phpfastcgi_flags ] phpfastcgi_flags=
load_rc_config $name
sig_stop=TERM
pidfile=/var/run/${name}/${name}.pid
command=/usr/sbin/daemon -f -p ${pidfile} /usr/local/bin/php-cgi
run_rc_command $1
When invoked with start argument, it barfs at me but launches php-cgi as
expected :
e...@srvbsdfenssv:~ sudo /usr/local/etc/rc.d/phpfastcgi start
/usr/local/etc/rc.d/phpfastcgi: WARNING: no shebang line in /usr/sbin/daemon
[: /usr/sbin/daemon: unexpected operator
Starting phpfastcgi.
When invoked with stop argument, it errors and doesn't stop the process
as expected :
e...@srvbsdfenssv:~ sudo /usr/local/etc/rc.d/phpfastcgi stop
/usr/local/etc/rc.d/phpfastcgi: WARNING: no shebang line in /usr/sbin/daemon
phpfastcgi not running? (check /var/run/phpfastcgi/phpfastcgi.pid).
From a quick peek at /etc/rc.subr, it seems that messages regarding
lack of shebang line in /usr/sbin/daemon indicate something is wrong in
my script but atm, I can't figure it.
Any idea, anyone ?
Kind Regards
Éric Masson
--
RJ j'ai eu des cookies sur mon HD et j'ai un peu peur des représailles
Il faut reformater ton disque dur et le jetter depuis le 3e étage de la
tour Eiffel pour le détruire irrémédiablement sans laisser de traces.
-+- LP in http://www.le-gnu.net : Par ici ou parano c'est pareil -+-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Custom rc script using /usr/sbin/daemon
RW rwmailli...@googlemail.com writes:
Hello,
I don't think you can do it like that. IIRC when you try to stop a
daemon it doesn't just kill the process by pid, it also sanity checks
the command in case the daemon has died and the pid was reused.
Since daemon wont show-up in the ps output it can't be in the command
variable.
Ok, makes sense.
I think you need to write a start function, something like this:
start_cmd=phpfastcgi_start
command=/usr/local/bin/php-cgi
phpfastcgi_start(){
echo starting phpfastcgi.
/usr/sbin/daemon -f -p ${pidfile} ${command}
}
Fine, it works much better now.
Thanks a lot
Kind Regards
Éric Masson
--
je n'ai jamais repondu aux AAD car je pensais qu'on pouvais pas en tant
que personne qui propose un newgroup...
-+- A in GNU : C'est quoi un groupe de discussion d'ailleurs ? -+-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Add a SSL certificate authority
Bastien Semene sabba...@semene.fr writes: Hi, I'm trying to add a certificate authority unsuccessfully. The Equifax certificates authority seems not to be registered in FreeBSD, so I tried to add it on my server. You can use the security/ca_root_nss port to retrieve the Mozilla Project root CA list and then configure the apps that need/require it. I'm not sure if I do it correctly, but found nothing more relevant on google and in the freebsd's handbook. This is a svn issue, not a FreeBSD one, check this section of the svn book : http://svnbook.red-bean.com/nightly/en/svn.advanced.confarea.html#svn.advanced.confarea.opts.servers or http://svnbook.red-bean.com/nightly/fr/svn.advanced.confarea.html#svn.advanced.confarea.opts.servers Then adapt ssl-authority-files directive in [global] section of your local or system-wide subversion servers file. Éric Masson -- Seriez gentils de garder Hordes ou moutons dans le sujet de vos enfilades débiles ; comme ça, je peux demander à OE de les filtrer. -+- NM in Guide du linuxien pervers - Bien configurer sa secrétaire ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: bash instead of csh (completely)
Jerry B. Altzman jba...@gmail.com writes: Hi, To get rid of csh? http://www.faqs.org/faqs/unix-faq/shell/csh-whynot/ This link is about csh *programming*, as standard scripts in FreeBSD use sh, this is pointless. Regards -- Ol: ..un plan perdu au fond d'une armoire dont seul Steve Jobs a la clé. BL: Qu'il a laissée dans un pantalon déposé chez un teinturier dont il a perdu l'adresse et le ticket ! -+- BL in Guide du Macounet Pervers : Bien cacher sa stratégie -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Hi es_MX internationalization needed.....
Bernt: Thanks for your reply, I read it already, and ended my self reading the mklocale manuals The problem i have now is where to find a suitable es_MX.UTF-8.src file, I looked here: http://cvsup.hu.freebsd.org/viewvc/FreeBSD/src/share/mklocale/?sortby=file to no avail. Do you know or some one know here in the list where i can find a src file for es_MX.UTF-8 ? Thanks in advance. LIA Eric De La Cruz Lugo Mérida, Yucatán, México, The MayaLand. From: Bernt Hansson be...@bah.homeip.net To: Eric De La Cruz Lugo eric_delac...@yahoo.com Cc: freebsd-i...@freebsd.org; freebsd-questions@freebsd.org Sent: Wed, June 2, 2010 10:24:32 PM Subject: Re: Hi es_MX internationalization needed. 2010-06-03 03:37, Eric De La Cruz Lugo skrev: Hi to every one. I have been checking the mail lists and haven`t found information about es_MX localization, in Ubuntu, OpenSUSE and other Linux distributions this can be achieved by something like. # locale-gen es_MX.UTF-8 Not the freebsd way of doing it. hava a look at: http://www.se.freebsd.org/doc/en_US.ISO8859-1/books/handbook/l10n.html # locale-gen es_MX But on FreeBSD I can`t find any command or tool to perform this. there is a es_ES locale on FreeBSD. I thinked about generating the es_MX locale with a file like es_MX.UTF-8.src or something like that, without success this is beyond my expertise right now. I need the es_MX because there is a postgreSQL database that MUST be encoded with the es_MX encoding, for a project am working on. On KDE 4 on FreeBSD 8.0 I can changed the region to Mexico (es_MX), but I can't change my locale variables (LC_) on my command line terminal. they look actually like this: [cursos] ~ locale LANG= LC_CTYPE=es_ES.UTF-8 LC_COLLATE=es_ES.UTF-8 LC_TIME=es_ES.UTF-8 LC_NUMERIC=es_ES.UTF-8 LC_MONETARY=es_ES.UTF-8 LC_MESSAGES=es_ES.UTF-8 LC_ALL= [cursos] ~ On other server i have OpenSUSE 11.2 and have this: (the way a needed it). edelac...@sgi:~ locale LANG=es_MX.UTF-8 LC_CTYPE=es_MX.UTF-8 LC_NUMERIC=es_MX.UTF-8 LC_TIME=es_MX.UTF-8 LC_COLLATE=es_MX.UTF-8 LC_MONETARY=es_MX.UTF-8 LC_MESSAGES=es_MX.UTF-8 LC_PAPER=es_MX.UTF-8 LC_NAME=es_MX.UTF-8 LC_ADDRESS=es_MX.UTF-8 LC_TELEPHONE=es_MX.UTF-8 LC_MEASUREMENT=es_MX.UTF-8 LC_IDENTIFICATION=es_MX.UTF-8 LC_ALL= edelac...@sgi:~ How do i do this on FreeBSD 8.0 i386 or amd64? Thanks in advance for your attention and help. LIA Eric De La Cruz Lugo. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Hi es_MX internationalization needed.....
Hi to every one. I have been checking the mail lists and haven`t found information about es_MX localization, in Ubuntu, OpenSUSE and other Linux distributions this can be achieved by something like. # locale-gen es_MX.UTF-8 # locale-gen es_MX But on FreeBSD I can`t find any command or tool to perform this. there is a es_ES locale on FreeBSD. I thinked about generating the es_MX locale with a file like es_MX.UTF-8.src or something like that, without success this is beyond my expertise right now. I need the es_MX because there is a postgreSQL database that MUST be encoded with the es_MX encoding, for a project am working on. On KDE 4 on FreeBSD 8.0 I can changed the region to Mexico (es_MX), but I can't change my locale variables (LC_) on my command line terminal. they look actually like this: [cursos] ~ locale LANG= LC_CTYPE=es_ES.UTF-8 LC_COLLATE=es_ES.UTF-8 LC_TIME=es_ES.UTF-8 LC_NUMERIC=es_ES.UTF-8 LC_MONETARY=es_ES.UTF-8 LC_MESSAGES=es_ES.UTF-8 LC_ALL= [cursos] ~ On other server i have OpenSUSE 11.2 and have this: (the way a needed it). edelac...@sgi:~ locale LANG=es_MX.UTF-8 LC_CTYPE=es_MX.UTF-8 LC_NUMERIC=es_MX.UTF-8 LC_TIME=es_MX.UTF-8 LC_COLLATE=es_MX.UTF-8 LC_MONETARY=es_MX.UTF-8 LC_MESSAGES=es_MX.UTF-8 LC_PAPER=es_MX.UTF-8 LC_NAME=es_MX.UTF-8 LC_ADDRESS=es_MX.UTF-8 LC_TELEPHONE=es_MX.UTF-8 LC_MEASUREMENT=es_MX.UTF-8 LC_IDENTIFICATION=es_MX.UTF-8 LC_ALL= edelac...@sgi:~ How do i do this on FreeBSD 8.0 i386 or amd64? Thanks in advance for your attention and help. LIA Eric De La Cruz Lugo. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Ping from jail not permitted error
On Sun, Apr 18, 2010 at 12:39 AM, Aiza aiz...@comclark.com wrote: My jail has public internet access because i can do pkg_add -r unix2dos and the package does install. But when I enter ping -c 2 freebsd.org I get message ping: socket: Operation not permitted There is no firewall running in the jail. Any ideas would be helpful. there is a reason people write man pages; honor their hard work by reading them first! From jail(8): security.jail.allow_raw_sockets This MIB entry determines whether or not prison root is allowed to create raw sockets. Setting this MIB to 1 allows utilities like ping(8) and traceroute(8) to operate inside the prison. If this MIB is set, the source IP addresses are enforced to comply with the IP address bound to the jail, regardless of whether or not the IP_HDRINCL flag has been set on the socket. Since raw sockets can be used to configure and interact with various network subsystems, extra caution should be used where privileged access to jails is given out to untrusted parties. As such, by default this option is disabled. Regards, aaron.glenn ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Virtual RS232 port link on IP or on network card
Mike Tancsa m...@sentex.net writes: Hello, Not sure if this is what you want to do or not, but if you want to connect a device to a serial port on FreeBSD and then access that serial device over the network from a remote machine, try /usr/ports/comms/ser2net Nope, seems to be the opposite. In OP's context, I'd try to check whether the application he wants to use could be configured to access a remote device over ip (the manual talks about connections to remote weather stations). Generally, is there any way to create a virtual serial device that would be backed by a userland daemon implementing rfc2217 for example ? Regards -- J'ai essayé de creer un news un alt.west.virginia ou sur d'autres alt.west.wirginia.xxx mais quand je vais sur ces forums rien n'apparait? l'emetteur d'un new recoit il un avertissement si celui ci est censuré? -+- LM in: http://www.le-gnu.net - Bien sansurer ses news sur C-I -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
PASSWORD LOST!!
Hey guys, I have a web/ftp server loaded with FreeBSD. This was done a couple of years back. Since then the person or persons that did the original install have gone out of business and cannot be found. Currently I have an issue logging into the ftp. I hooked a monitor up to the server and I'm getting filesystem full errors and since I don't have a password to get in I cannot have it fixed by someone that knows UNIX. I have made numerous attempts to contact the person that installed on a personal level. But I'm getting the impression he has moved with no forwarding. I you have need for more information I will supply it. I just don't know where to start. Our company's ftp is down and doesn't look like it will return anytime soon with out further assistance. Thank you for your time and have a great day. -- Eric Petersen Pre-Press Technician Anderson Brothers Printing Company 4525 41st Street Sioux City, Iowa 51108 phone: 712.239. fax: 712.239.3322 e-mail: er...@andersonbrothers.biz ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Can't get wifi working in 8.0, please help.
Hello, I recently upgraded from bsd 6.4 to bsd 8.0 release ( new install ) and I am having issues getting my wifi to work. Before the upgrade it worked perfectly in 6.4. I am a bit confused as I have read different things about this. The handbook http://www.freebsd.org/doc/en/books/handbook/network-wireless.html#NETWORK-WIRELESS-AP-BASIC under basic settings says check to see if your device supports host based ap mode by doing ifconfig wlan0 list caps # ifconfig wlan0 list caps drivercaps=2985cd01STA,IBSS,HOSTAP,AHDEMO,SHSLOT,SHPREAMBLE,MONITOR,MBSS,WPA1,WPA2,WDS,BGSCAN Then it says the wireless device can now be put into AP mode by doing: ifconfig wlan0 ssid freebsdap mode 11g mediaopt hostap inet 10.0.0.1 netmask 255.255.255.0 Which returns: ifconfig: inet: bad value I read some place that you need to put inet before ssid so I tried it with the following: # ifconfig wlan0 inet 10.0.0.1/24 ssid gangsta wepmode on weptxkey 1 wepkey apasswordhere mode 11g mediaopt hostap Which returns: ifconfig: SIOCSIFMEDIA (media): Device not configured If I try to configure it like it was in 6.4 I get another error: ifconfig wlan0 ssid gangsta channel 8 wepmode on weptxkey 1 wepkey apasswordhere mode 11g mediaopt hostap 10.0.0.1 netmask 255.255.255.0 Which returns: ifconfig: SIOCSIFMEDIA (media): Device not configured I know wep is not secure, I am just trying to get it working. At start of the guide it tells you to configure the following in /boot/loader.conf which I did. /boot/loader.conf if_ral_load=YES wlan_load=YES wlan_scan_ap_load=YES wlan_scan_sta_load=YES wlan_wep_load=YES wlan_ccmp_load=YES wlan_Tkip_load=YES When I run kldstat I see the if_ral is loaded. I don't know if its supposed to show the other modules. kldstat Id Refs Address Size Name 1 9 0xc040 b22548 kernel 2 1 0xc0f23000 13e4c if_ral.ko 3 1 0xc357b000 35000 ipl.ko Here is rc.conf check_quotas=NO gateway_enable=YES hostname=router.foo.bar ibcs2_enable=NO ifconfig_sk0=DHCP ifconfig_xl0=inet 192.168.0.1 netmask 255.255.255.0 wlans_ral0=wlan0 ifconfig_wlan0=inet 10.0.0.1/24 ssid gangsta wepmode on weptxkey 1 wepkey apasswordhere mode 11g mediaopt hostap ipfilter_enable=YES ipfilter_rules=/etc/ipf.rules ipmon_enable=YES ipmon_flags=-Ds ipnat_enable=YES ipnat_rules=/etc/ipnat.rules Here is ifconfig -a xl0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 options=8VLAN_MTU ether 00:60:97:7f:3e:6c inet 192.168.0.1 netmask 0xff00 broadcast 192.168.0.255 media: Ethernet autoselect (100baseTX full-duplex) status: active sk0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 options=bRXCSUM,TXCSUM,VLAN_MTU ether 00:0c:41:e4:7e:83 inet x.x.x.x netmask 0xf800 broadcast 255.255.255.255 media: Ethernet autoselect (100baseTX full-duplex) status: active ral0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 2290 ether 00:14:bf:78:a2:a7 media: IEEE 802.11 Wireless Ethernet autoselect mode 11g status: associated plip0: flags=8810POINTOPOINT,SIMPLEX,MULTICAST metric 0 mtu 1500 lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST metric 0 mtu 16384 options=3RXCSUM,TXCSUM inet 127.0.0.1 netmask 0xff00 wlan0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500 ether 00:14:bf:78:a2:a7 media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) status: no carrier ssid gangsta channel 11 (2462 Mhz 11g) country US authmode OPEN privacy ON deftxkey 1 wepkey 1:104-bit txpower 0 bmiss 7 scanvalid 60 bgscan bgscanintvl 300 bgscanidle 250 roam:rssi 7 roam:rate 5 protmode CTS bintval 0 netstat -rn Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default x.x.x.x UGS 0 35 sk0 x.x.x.x/21 link#2 U 0 0 sk0 x.x.x.x link#2 UHS 0 0 lo0 127.0.0.1 link#5 UH 0 32 lo0 192.168.0.0/24 link#1 U 1 568 xl0 192.168.0.1 link#1 UHS 0 0 lo0 Many thanks in advance!! Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to make VirtualBox have higher (full screen) resolution?
My understanding from a previous post in this list (Around december 18th) was that VBoxLinuxAdditions-x86.run was specifically tied to the Linux kernel This also what I experimented. Regards, Eric Le Goff On Sun, Dec 20, 2009 at 1:57 PM, Ed Jobs olori...@gmail.com wrote: On Sunday 20 December 2009 12:24, Yuri wrote: Oleg Ginzburg wrote: You need for Install Guest Additional How do I do this? I have VBOXADDITIONS_3. CDROM image in the virtual Linux. But how to install it? mount it in the guest (linux) system and there is a file callled VBoxLinuxAdditions-x86.run as root all you need to do is cd in the mounted folder and run: ./VBoxLinuxAdditions-x86.run -- Real programmers don't document. If it was hard to write, it should be hard to understand. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to enable network manager in KDE?
Have a look at ports/net-mgmt/wifimgr I had a look at ports/net-mgmt/wifimgr I am quite new in FreeBsd but in my case it does not work , ie : I start a xfce4 session for a (non-root) user open the wifimgr from the 'network' menu provide root password as requested but then it hangs forever on my laptop Did anyone successfully used wifimgr ? If yes, what could I check to make it work ? PS : I am using FreeBsd 8.0 on an (old) Thinkpad laptop with ipw-2100 wireless card Regards Eric On Sun, Dec 20, 2009 at 3:03 AM, Glen Barber glen.j.bar...@gmail.com wrote: On Sat, Dec 19, 2009 at 8:59 PM, Yuri y...@rawbw.com wrote: How do I launch network manager that allows to visually manage WiFi and LAN connections? I have FreeBSD on a laptop and I have to establish WiFi connections manually -- it's very inconvenient. You can always edit wpa_supplicant.conf(5) - you don't need to use WPA/WPA2... In Kubuntu this problem is solved and WiFi management is very easy. It's the same Looking for the same in FreeBSD. -- Glen Barber ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
8.0-RELEASE, puc, ppbus lpt
Hello, I'd like to know whether it is possible to force device numbering on a box which has a built in parallel port and another on a serial/parallel card ? Parallel port managing code is loaded as modules : 131 0x80917000 8cc0 ppc.ko 143 0x8092 99c8 ppbus.ko 151 0x8092a000 4848 lpt.ko 161 0x8092f000 a418 puc.ko Serial parallel/card port is probed before builtin port : ppc1: Oxford Semiconductor OX16PCI954 Parallel port port 0xd300-0xd307,0xd400-0xd407,0xd500-0xd51f mem 0xf6013000-0xf6013fff irq 18 at device 9.1 on pci0 ppc1: Generic chipset (NIBBLE-only) in COMPATIBLE mode ppc1: [ITHREAD] ppbus0: Parallel port bus on ppc1 lpt0: Printer on ppbus0 lpt0: [ITHREAD] lpt0: Interrupt-driven port ... ppc0: Parallel port port 0x378-0x37f,0x778-0x77b irq 7 on acpi0 ppc0: Generic chipset (NIBBLE-only) in COMPATIBLE mode ppc0: [ITHREAD] ppbus1: Parallel port bus on ppc0 lpt1: Printer on ppbus1 lpt1: [ITHREAD] lpt1: Interrupt-driven port I've tried to set device hints but couldn't achieve a consistant numbering (ppc1-ppbus1-lpt1 ppc0-ppbus0-lpt0). Any idea, anyone ? TIA Regards -- L'attitude qui consiste a rappeler a un contributeur que sa poste est contraire a la charte du NG, me parait pedante, anale et probablement aussi hors-sujet. Ce qui m'enerve plus qu' une poste sur le TeX... -+- Dr NV in GNU : Les a(nale)ventures de Docteur Juste Tex. -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Whic mail server?
On 9/27/2009 10:06 AM, herbert langhans wrote: Yes. What about bogofilter. This port is smart, I always wonder how intelligent it dedects spam, just by the content. Even works with Chinese messages.. Setting it up requires some time and patience (its a filter what plugs in at procmail). But its small and efficient, ideal for mailservers. http://bogofilter.sourceforge.net/ Cheers herb langhans Any suggestions on spam filters like spam-assassin? dspam works very well for me across several sites ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: diablo-jdk16
Roy Stuivenberg roys1...@gmail.com writes: Hi, rs-unix# make install clean === Vulnerability check disabled, database not found === Found saved configuration for diablo-jdk-1.6.0.07.02_5 Because of licensing restrictions, you must fetch the distribution manually. Please open http://java.sun.com/javase/downloads/index.jsp in a web browser and follow the Download link for JDK US DST Timezone Update Tool - 1_3_15 to obtain the time zone update file, tzupdater-1_3_15-2009g.zip. Please place the downloaded file(s) in /usr/ports/distfiles. *** Error code 1 Stop in /usr/ports/java/diablo-jdk16. *** Error code 1 Stop in /usr/ports/java/diablo-jdk16. rs-unix# I have tzupdater-1_3_18-2009k.zip in /usr/ports/distfiles. tzupdater-1_3_15-2009g.zip and tzupdater-1_3_18-2009k.zip are not the same files. Get the port required version, tzupdater-1_3_15-2009g.zip, or update your ports tree. -- DM FU2 BàS T'as rien trouvé de pire comme pseudo? SI un jour il te venait la bonne idée d'en changer, fais moi signe, j'ai déjà quelques idées -+- mimi in http://www.le-gnu.net : bien configurer son pseudo -+- Hi, to this day the dispatch order #026-5884620 has not reached me. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: diablo-jdk16
Roy Stuivenberg roys1...@gmail.com writes: Hi, My portstree is up to date, and when I follow the link on Sun website this is the version I get? Seems the port lags behind Sun's site. -- (Pour mesurer l'intelligence dans fufe) Facile: un test de Turing. Tu prends une personne dans un groupe sensé, une personne dans fufe. Dès que tu arrives à repérer le trolleur tu détruis le groupe. -+- Ol in Guide du Neuneu Usenet : Maffacre à la fufonneuse -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: diablo-jdk16
Josef Grosch jgro...@mooseriver.com writes: Hi, Trust me, it is a lot faster to download and install a binary package than go the long compile process. Diablo-j(re|dk) ports install binary packages... -- Je parlais au nom de tous les frjviens, ne joue pas au con... VOUS n'avez pas à détruire NOTRE ng. C'est clair comme ça ou il faut que je te l'explique avec des mots plus faciles encore ? -+- in http://www.le-gnu.net - Mon niouzegroup à moi ke G -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Portupgrade not handling dependencies
I've been running Freebsd for several years on one of my primary public facing servers. Currently the server is running Freebsd 7.2. Up until about 2 weeks ago portupgrade always seemed to upgrade ports in the correct order so that any dependencies were built first, allowing all ports to be upgraded properly in one run. For the past 2 weeks though I have to run portupgrade 2-3 times every time I have more than one update because at least 1 port fails due to a dependency(which is seemingly upgraded after it tries to upgrade the other port). What the heck is going on and how do I fix it? Thanks, Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Portupgrade not handling dependencies
Well, it has been happening with just about every port(no specific ones) that have a dependency which is also being built. An example from today: === Registering installation for libtheora-1.0_1 === Cleaning for libtheora-1.0_1 --- Cleaning out obsolete shared libraries [Updating the pkgdb format:bdb_btree in /var/db/pkg ... - 456 packages found (-0 +1) . done] --- Skipping 'multimedia/ffmpeg' (ffmpeg-2008.07.27_10) because a requisite package 'libtheora-1.0' () failed (specify -k to force) ** Listing the failed packages (-:ignored / *:skipped / !:failed) - (bsdpan-Acme-Damn-0.04) * multimedia/ffmpeg (ffmpeg-2008.07.27_10) %portupgrade -a --- Skipping 'bsdpan-Acme-Damn-0.04' because it is held by user (specify -f to force) --- Upgrading 'ffmpeg-2008.07.27_10' to 'ffmpeg-2008.07.27_11' (multimedia/ffmpeg) --- Building '/usr/ports/multimedia/ffmpeg' As seen above, libtheora built and installed just fine, but ffmpeg was skipped for some reason. I ran portupgrade -a again and all worked fine. This ways also occuring when I ran portupgrade -arR. Ports tree is updated with cvsup each night. I don't believe I've overridden anything, most especially not in the past 2 weeks when this all started happening. The above is just one example of it happening. It happens almost everyday there is more than one port to upgrade(and different ports each time of course). Thanks again, Eric b. f. wrote: For the past 2 weeks though I have to run portupgrade 2-3 times every time I have more than one update because at least 1 port fails due to a dependency(which is seemingly upgraded after it tries to upgrade the other port). What the heck is going on and how do I fix it? We obviously can't help you without more information. What ports are failing? What are the dependencies that are out of sequence? What OPTIONS are you using with all of these? Have you overidden anything via pkgtools.conf? Is you ports tree up-to-date, and intact? b. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Portupgrade not handling dependencies
Actually, the bsdpan package is not the issue here. I was aware it wouldn't update that(no port for this perl module yet anyway). If you notice, it doesn't proceed to install ffmpeg, i force it to(highlighted by ): ** Listing the failed packages (-:ignored / *:skipped / !:failed) - (bsdpan-Acme-Damn-0.04) * multimedia/ffmpeg (ffmpeg-2008.07.27_10) ** %portupgrade -a --- Skipping 'bsdpan-Acme-Damn-0.04' because it is held by user (specify -f to force) --- Upgrading 'ffmpeg-2008.07.27_10' to 'ffmpeg-2008.07.27_11' (multimedia/ffmpeg) It should upgrade ffmpeg automatically, but doesn't and that is the issue. b. f. wrote: On 7/8/09, Eric Sheesley eshee...@shadowlair.com wrote: Well, it has been happening with just about every port(no specific ones) that have a dependency which is also being built. An example from today: === Registering installation for libtheora-1.0_1 === Cleaning for libtheora-1.0_1 --- Cleaning out obsolete shared libraries [Updating the pkgdb format:bdb_btree in /var/db/pkg ... - 456 packages found (-0 +1) . done] --- Skipping 'multimedia/ffmpeg' (ffmpeg-2008.07.27_10) because a requisite package 'libtheora-1.0' () failed (specify -k to force) ** Listing the failed packages (-:ignored / *:skipped / !:failed) - (bsdpan-Acme-Damn-0.04) * multimedia/ffmpeg (ffmpeg-2008.07.27_10) %portupgrade -a --- Skipping 'bsdpan-Acme-Damn-0.04' because it is held by user (specify -f to force) --- Upgrading 'ffmpeg-2008.07.27_10' to 'ffmpeg-2008.07.27_11' (multimedia/ffmpeg) --- Building '/usr/ports/multimedia/ffmpeg' I see. In the default /usr/local/etc/pkgtools.conf, there is a sample line (not commented out) that places any port that matches the glob bsdpan-* in HOLD_PKGS, meaning that portupgrade will refuse to handle it. Presumably this is so users can manage their own local tree of Perl ports that aren't in the regular ports tree. I don't do this, so I'm not familiar with how the two interact. But portupgrade seems to have done the right thing here: in the snippet you gave us, it ignored bsdpan-Acme-Damn and proceeded to begin building ffmpeg after updating libtheora -- the only problem seems to be that in the intermediate summary it lists ffmpeg, erroneously, as having been skipped -- but that seems to just be a cosmetic problem, because it then proceeds to start updating it. If later on it refuses to update it, then you've got a problem. In that case, you should try running pkgdb -L pkgdb -F to make sure that your pkgdb is in good shape, and then try your updates again. You might also try instead something like: portupgrade -ax bsdpan-* If that doesn't work, then you may either have to rip out your bsdpan-* ports, or just use a another tool for updating -- portmaster, for example. Or you can roll your own. b. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
it is about installing FreeBSD on USB stick
hello, this is my first time to ask a help from FreeBSD. I have a question about installing FreeBSD on USB stick. There are so many informations about how to install FreeBSD on USB stick from Internet, but I can not find out any information about follow : first, if i install FreeBSD on USB stick. Could I operate it on any computer. if not, how to reach this issue ? second, if i install FreesBIE on USB stick, i know i can operate it on any computer. but i don't know how to store my setting and installed software on USB stick directly instead of copy my setting to another store device. thanks, good luck for you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
gnat gpl 2009
I noticed that AdaCore has delivered 2009 Edition [http://libre.adacore.com/libre/tools/gnat-gpl-edition/] of its GNAT GPL toolset. Will the port lang/gnat reflect this update ? Should I stick to gnat gpl 2006 which is the latest I found in my ports tree ? or go for any of the lang/gnat-gcc* ports ? The x86-linux version is downloadable from : [http://libre2.adacore.com/dynamic/view/gnat-gpl-2009-43-i686-gnu-linux-libc2.3-bin.tar.gz?version=2009config=x86-linuxfilename=gnat-gpl-2009-43-i686-gnu-linux-libc2.3-bin.tar.gz] But I would need a step by step instruction from for how to set it up in my FreeBSD 7.2 (i386) box Thanks for your help -- Eric Le Goff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: OpenSSH
Jerry wrote: I have the following version of SSH installed: OpenSSH_4.5p1 FreeBSD-20061110, OpenSSL 0.9.7e-p1 25 Oct 2004 I noticed an article regarding a flaw in OpenSSH below version 5.2. The article is here: http://news.zdnet.com/2100-9595_22-303182.html Is this anything to worry about? Does the FreeBSD team have to update the base version of SSH to correct this problem? cant you install OpenSSH-portable or better yet, update your FreeBSD installation (which includes a new version of OpenSSH)? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Configuring an IPv6 router to assign addresses
Odhiambo ワシントン odhia...@gmail.com writes: Hi, Nice question. I wonder if isc-dhcp-server can already handle IPv6 addresses. Seems it can since 4.x branch. But, is there any reason to use dhcp on ipv6 nets as the protocol has been designed with autoconfiguration in mind ? Regards -- J'aimerai créer mon propre newsgroup fr.mincir.vitalite [...] Ainsi, cela permettrait aux personnes de se rendre directement dans mon newsgroup plutot que moi-même de publier des annonces dans les autres -+-LH in Guide du Neuneu Usenet : Mince, Neuneu investit (dans) fufe -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Source update tag RELENG_7_2 != 7.2-RELEASE ?
Doug Poland wrote: Hello, Yesterday I did a source update on an i386 box to 7.2. My supfile uses RELENG_7_2 So, I'm pretty sure I'm running 7.2-RELEASE. But my kernel still says 7.2-RC2. Did I do something wrong here? my guess is cvsup8.us.freebsd.org doesnt have the RELEASE code on it yet. Does /usr/src/UPDATING mention 7.2-RELEASE or is the last item about an ssl fix? if its ssl, pick a new mirror and try again. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Safe to 'make installkernel' in multi-user mode?
Modulok wrote: Just making sure I'm not brewing a disaster... Is it 'safe' to install a kernel (i.e. 'make installkernel') on a system while in multi-user mode? Thanks! -Modulok- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org Thats the way i do it and havent had an issue yet. I always do installworld from single user mode tho. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: first firewall with pf
Hi, You were right it had to do my topology. The firewall is working correctly now. Thanks again for all you help On Thu, Mar 26, 2009 at 8:07 PM, Eric Magutu emag...@gmail.com wrote: Hi Micheal, I was trying to simulate the conditions of the server on a test machine. I'm pretty sure now I didn't take into account all the network aspects, silly mistake :-) Its probably my routing. I will check on my routes tomorrow and get back to you. I think there is only one active interface though. On Thu, Mar 26, 2009 at 7:33 PM, Michael K. Smith - Adhost mksm...@adhost.com wrote: Hello Eric: Hi everyone, Can you provide a little more information about your topology? Right now, you only have one interface defined in your rules, but you are attempting to pass traffic between two subnets. That would suggest you have two interfaces and, if so, both need to be accounted for in your rules below. You'll have to have pass/block rules for both. It looks like this: 172.16.0.0/16 - le0 firewall - (some other interface) - 10.0.0.0 Could you tell me if that is correct? Thanks, Mike - Original Message Snipped - Thanks for all your input so far. I have tried to implement all you suggestions but have gotten stuck. I set up a test machine in the office with the ip 10.0.0.110 and encountered the following problems: when I enables antispoofing the firewall didn't work when I tried allowing the 10.0.0.0 subnet it worked ok but when i tried connecting from machines on the 172.16 subnet I was unable to connect. Can you please let me know what I'm doing wrong? -- Regards, Eric Magutu -- Regards, Eric Magutu ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: first firewall with pf
Hi everyone,
Thanks for all your input so far. I have tried to implement all you
suggestions but have gotten stuck. I set up a test machine in the office
with the ip 10.0.0.110 and encountered the following problems:
when I enables antispoofing the firewall didn't work
when I tried allowing the 10.0.0.0 subnet it worked ok but when i tried
connecting from machines on the 172.16 subnet I was unable to connect.
Can you please let me know what I'm doing wrong?
#
#interfaces #
#
ext_if=le0
#ext_if2=bce1
#
#ports to be opened #
#
#tcp ports
good_port_tcp={ 80, 110, 143, 161, 443, 873 }
#udp ports
good_port_udp={ 161, 873 }
##
#block all other traffic #
##
# should be the first rule
block in on $ext_if all
#anti-spoofing #
#traffic can't come in on your IP's
#antispoof quick for { lo0 $ext_if $ext_if2 } inet
#
#allow all connections from and to loopback #
#
pass in quick on lo0 all keep state
pass out quick on lo0 all keep state
#allow all connections out through external interfaces #
pass out quick on $ext_if all keep state
##
#Blocked ips #
##
#put ips or ip blocks as below
badguys={ 192.168.1.100, 192.160.1.2, 192.168.200.0/24 }
block in quick on $ext_if from $badguys
#smtp connections allowed #
#European servers
pass in quick on $ext_if proto tcp from x.x.x.0/26 to 10.0.0.110 port 25
keep state
#American
pass in quick on $ext_if proto tcp from x.x.x.0/26 to 10.0.0.110 port 25
keep state
#from the old iptables???
pass in quick on $ext_if proto tcp from x.x.x.0/27 to 10.0.0.110 port 25
keep state
###
# pass traffic from allowed ports #
###
#pass traffic from allowed tcp ports
pass in on $ext_if inet proto tcp from any to 10.0.0.110 port $good_port_tcp
keep state
#pass traffic from allowed udp ports
pass in on $ext_if inet proto tcp from any to 10.0.0.110 port $good_port_tcp
keep state
##
# allow connections from NMC and servers #
##
#my ip
pass in quick on $ext_if inet proto { tcp, udp, icmp } from 10.0.0.58 to
10.0.0.110 keep state
#172.16.0.0/12 are the ips NMC access with
pass in on $ext_if inet proto { tcp, udp, icmp } from 172.16.0.0/8 to
10.0.0.110 keep state
##
# enable logging #
##
block in log on $ext_if
# to view log run command below
#tcpdump -n -e -ttt -i pflog0
##
#for any questions contact me#
##
On Tue, Mar 24, 2009 at 8:00 PM, Michael K. Smith - Adhost
mksm...@adhost.com wrote:
I also forgot to mention:
You should probably log your block rule so that you can see what's going on
if things don't work as expected.
So:
block in log on $ext_if
Note the lack of quick as well, as previously mentioned.
With logging enabled, provided you have pflog running (which you should),
you can use the following to see what's being blocked.
tcpdump -n -e -ttt -i pflog0 (provided pflog0 is your pflog interface).
Regards,
Mike
--
Regards,
Eric Magutu
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: first firewall with pf
Hi Micheal, I was trying to simulate the conditions of the server on a test machine. I'm pretty sure now I didn't take into account all the network aspects, silly mistake :-) Its probably my routing. I will check on my routes tomorrow and get back to you. I think there is only one active interface though. On Thu, Mar 26, 2009 at 7:33 PM, Michael K. Smith - Adhost mksm...@adhost.com wrote: Hello Eric: Hi everyone, Can you provide a little more information about your topology? Right now, you only have one interface defined in your rules, but you are attempting to pass traffic between two subnets. That would suggest you have two interfaces and, if so, both need to be accounted for in your rules below. You'll have to have pass/block rules for both. It looks like this: 172.16.0.0/16 - le0 firewall - (some other interface) - 10.0.0.0 Could you tell me if that is correct? Thanks, Mike - Original Message Snipped - Thanks for all your input so far. I have tried to implement all you suggestions but have gotten stuck. I set up a test machine in the office with the ip 10.0.0.110 and encountered the following problems: when I enables antispoofing the firewall didn't work when I tried allowing the 10.0.0.0 subnet it worked ok but when i tried connecting from machines on the 172.16 subnet I was unable to connect. Can you please let me know what I'm doing wrong? -- Regards, Eric Magutu ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Issue with apcupsd and gd.h missing?
When trying to do a portupgrade of apcupsd I received the following error: checking for gd2/gd.h... no configure: error: Found system GD library but no header file. Please find the file gd.h in your system include directories and report its location to apcupsd-users at lists.sourceforge.net The system is Freebsd 7.1. I checked and gd.h does exist so I'm a bit confused as to what is going on. The file is located in /usr/local/include, a path that it appears the port checks. Anyone else experiencing this? Any suggestions on how to fix it? gd is installed. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: weird permissions on directories when installing ports through sudo
On 02/19/2009 15:56, Aleksandr Miroslav wrote: For the longest time, I have installed ports via the sudo make install or sudo portupgrade or sudo portinstall method and never had a problem. This seems to have jumped up and bitten me on the arse as well. I believe the problem lies herein: http://www.freebsd.org/cgi/cvsweb.cgi/ports/security/sudo/distinfo?rev=1.61 It appears that sudo has been changed following a security issue. I use a more restrictive umask than the default. I suspect you do as well. The sudo change now implements a union of umasks, therefore never lowering the umask of the person running sudo. This had the effect of truly screwing up many installed ports for me (I do the same as you `sudo portupgrade`). I'm not blaming the fix... just whining about it. The fix for me was to deinstall and reinstall and problem ports using root himself. I suspect though you could fix it other ways by fiddling with your usmask, and/or altering the sudo config files. Recently, as of a few weeks ago, I started noticing that ports that were installed or upgraded were getting the wrong permissions. Not only were directories getting permissions of 700 (whereas previously they had been 755), but the directories /usr/local and entries in /var/db/pkg were getting permissions of 700. This is causing a lot of things to break, and I have to manually go in and make everything public for it to work again. This only happens when I build ports via sudo. If I am root and I run make install, everything works fine. yeah. Me too. :) I haven't changed anything recently either in sudo, or my umask. What can I do to fix this? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: weird permissions on directories when installing ports through sudo
On 02/25/2009 11:49, Brian A. Seklecki wrote: lowering the umask of the person running sudo. This had the effect of truly screwing up many installed ports for me Maybe try sudo -H -u root [command] NetBSD Pkgsrc is nice in this respect because it has sudo(8) integration in the MKs. ~BAS I didn't think this would do much, but gave it a try anyway And it doesn't help. :/ The following command prior to the change resulted in root's umask being displayed: sudo -H -u root umask Whereas after the change in sudo I mentioned, the union of mine and root's is presented. I looked at the security issue mentioned in the commit log, and I'm not sure this change was required in order to fix it. Anyone have thoughts on why this change was made? I'd argue POLA was broken here. But I don't keep up with sudo developments (aside from using it). -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: Backup to spare drive (rsync / crontab)
On Fri, January 30, 2009 11:37 am, drc...@yahoo.com wrote: I am using rsync and crontab to perform scheduled backups on FreeBSD AMD64 Rel. 7.0 I am following process described here for rsync : http://samba.anu.edu.au/rsync/examples.html You should check out the rsnapshot port. it does what you are looking for and more. It will save you a lot of scripting, etc and it works great. I have been using it as part of my backup procedure for a while now and it works well. Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Eric Yeo is no longer in FLY Entertainment
Dear all, Please note that Eric Yeo is no longer an employee of FLY Entertainment with immediate effect. He no longer represent FLY or any of FLY's clients/entity for any matter. For further enquiries, please contact the following person in charge: Cindy Teo: ci...@fly.com.sg Keifer Ang: kei...@fly.com.sg Your mail concerning Harddrill her today! FNUON will be read by Cindy Teo. Thank you. FLY Entertainment Management ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Using HDD's for ZFS: 'desktop' vs 'raid / enterprise' -edition drives?
Wojciech Puchar woj...@wojtek.tensor.gdynia.pl writes: Hi, think twice before doing. Could you elaborate please ? Regards Éric Masson -- [Linux] c'est une philosophie un art de vivre, un état intérieur, une sorte de fluide qui nous entoure et nous pénètre. Fais tourner stp ! -+- Guillaume in Guide du linuxien pervers - Tous drogués j'vous dis ! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
user and group probleme
Ok In gnome menu you have shoftware call user and group is halo you to add remove user group. it work good in FreeBSD 7.0 but in 7.1rc and 6.4 in cant do noting whit in the root like user. is look like if I don t have the permission to do the change on root. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
gnome problem with user and group.
Ok In gnome menu you have shoftware call user and group is halo you to add remove user group. It work good in FreeBSD 7.0 but in 7.1rc and 6.4 in cant do noting whit in the root like user. is look like if I don t have the permission to do the change on root. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: realtime network replication
On 11/17/2008 19:32, Ansar Mohammed wrote: Ok, I have /home on one server, I need to REPLICATE /home to another server in realtime. Kinda like a mirror, but over a network. I don't want to use rsync because its not realtime. Something along the lines of this maybe: http://phaq.phunsites.net/2006/08/11/realtime-file-system-replication-on-freebsd/ (Disclaimer I've not used the procedure above.) -Original Message- From: Chuck Swiger [mailto:[EMAIL PROTECTED] Sent: November 17, 2008 8:28 PM To: Ansar Mohammed Cc: freebsd-questions@freebsd.org Subject: Re: realtime network replication On Nov 17, 2008, at 5:25 PM, Ansar Mohammed wrote: I need to replicate /home between two freebsd servers in real time (no scheduled rsyncs) What are my options? Most people use a network file system (ie, NFS, Samba/CIFS, etc) for this sort of thing -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: shrink ntfs
On 11/17/2008 18:48, Jerry McAllister wrote: On Tue, Nov 18, 2008 at 01:39:48AM +0100, Albert Shih wrote: Hi all, Newbie question from a not newbie (well I think ;-) ) I've install many FreeBSD, but I always use the all disk. If I've a laptop come with winxp ? How can I shrink the WinNT partition ? Can the FreeBSD install CD do that ? If he can't what's your advice for some software to do that ? No, it cannot. There are a couple of utilities that come with FreeBSD but, at last check, they did not handle NTFS. I have successfully used Partition Magic version 7.0 (8.0 is crap) as long as it is not on a USB drive. It won't handle USB and 8.0 will not either even though it claims it will. I have also successfully used 'gparted' which is downloadable. I can second the gparted. I've used it from time to time, and it has worked well. It comes on a downloadable live cd which is handy. It worked for NTFS and also worked fine with USB disk. There is yet another one whose name I don't remember now. Download gparted and burn a CD to boot and do the work. Or, buy Partition Magic 7.0 and build the floppies. Don't try using either on a running system.. jerry Regards. -- Albert SHIH SIO batiment 15 Observatoire de Paris Meudon 5 Place Jules Janssen 92195 Meudon Cedex Heure local/Local time: Mar 18 nov 2008 01:35:38 CET ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- Regards, Eric signature.asc Description: OpenPGP digital signature
Re: FreeBSD RELENG_7 scsi and usb, usb disks take precedence
Dan Nelson [EMAIL PROTECTED] writes: Hi, No patching needed. You can wire down the unit number of your scsi bus and drive with boot hints as described in the scsi(4) manpage. Wire the adaptec card down as scbus0, and wire the device at scbus0.0 down as da0. Nice. I've never used scsi related hints ATM. I've learned something today © ;) -- bof mot de passe invalide ca veut dire quoi? Que tu peux s'assoir dans les places réservées des autobus. -+- LW in GNU : Pour l'invalide, c'est l'opéra ou la concorde. -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD RELENG_7 scsi and usb, usb disks take precedence
Svein Skogen (List Mail Account) [EMAIL PROTECTED] writes: Hi, Is there any way to tell FreeBSD permanently I want my adaptec controller's scsi chain to be the first, no matter what USB devices you find? You can circumvent this behaviour by using GEOM labels : http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/geom-glabel.html Regards -- CEJe ne sais pas si vous etes la personne adequat mais il y a un CEdégénéré mental qui veut enculer tous le monde sur frsf ne vous inquiétez pas, ce n'est pas possible via Usenet :) -+-LW in Guide du Neuneu Usenet - Après les mouches, à qui le tour ? -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD RELENG_7 scsi and usb, usb disks take precedence
Svein Skogen (List Mail Account) [EMAIL PROTECTED] writes: Hi, With all due respect, if sysinstall isn't able to write those labels, this is hardly the solution to the problem... ;) Sysinstall, even if it has proven to be useful, is outdated in many respects, it doesn't cope really well with GEOM or ZFS for example. Using GEOM labels ensure that fstab will always be consistent, so *this is* a solution. Now, you can try to patch the kernel to make it probe devices in a predefined sorted order, but I guess it will be much more difficult ;) -- Car en normandie nous aimons beaucoup le jeu du saute-moutons. Et j'interdis ici les parisiens centralistes et snobinards de profiter de cet aveu pour briller d'un calembour à tendance zoophile et bocagophobe -+- LC in www.le-gnu.net - Sauter n'est pas jouir -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: help with AWk
On 09/27/2008 22:06, Len Conrad wrote:
The logic desired if
If IP has no PTR, print PTR_NUL, else print the PTR.
dig +short -x 1.2.3.4 | awk '{if ( $0 == ) {print PTR_NUL } else {print
$0 } }'
... works if PTR exist, but if no PTR, PTR_NUL doesn't print.
A workaround that does the trick...
printf dug `dig +short -x 1.2.3.4` | awk '{if ( NF == 1 ) {print
PTR_NUL } else {print $2 } }'
thanks
Len
__
IMGate OpenSource Mail Firewall www.IMGate.net
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
--
Regards,
Eric
signature.asc
Description: OpenPGP digital signature
Re: Identd question...
Agus wrote: Hi guys, Just wondering if i can have like a central ident server on my LANthats cause my boxes are behind A NAT so i can only forward identd requests to oneand i mean like a fake one..cause the process may be on one of the other boxes that require de ident, is clear?...i read about fakeidentdjust wanted to ask your opinion or experience on this i found liedent to work the best for me. i used it primarily for irc servers that wanted an ident response. just forward the port to your bsd box behind the firewall and it should work ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Virtual machines hosted on FreeBSD 7
Derek Ragona [EMAIL PROTECTED] writes: Hi, I thought that the VMware ESX is just a trial version that quits running after a few weeks. But if I am wrong about that, let me know. From : http://vmware.com/products/esxi/ ESXi seems to be free, but not the entreprise administration tools. Éric Masson -- je me fais un réveil matin qui m'énonce les SC6 et SC7 de word98 [avec le Speech de MacsBug]. Si je me lève pas pour l'éteindre, je suis sûr que ma femme le fera .-) -+- BL in Guide du Macounet Pervers : Tyran domestique ! -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Kernel Panic help.
Hey folks, First, please 'reply-all' as I'm not on the list. I've got a backup server that, every night, offloads things to a secondary, USB attached hard disk. We've got two of these disks, which we rotate so as to have a fairly recent off-site version, in the event of a disaster. One of the two drives has start to cause the backup server to core dump and reboot. The other works fine. I tried taking the problematic drive and repartitioning and reformatting it, but the problems persist. Here is what I get from a kgdb: [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC- sudo kgdb kernel.debug / var/crash/vmcore.17 [GDB will not be able to debug user-mode threads: /usr/lib/ libthread_db.so: Undefined symbol ps_pglobal_lookup] GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for details. This GDB was configured as i386-marcel-freebsd. Unread portion of the kernel message buffer: panic: softdep_deallocate_dependencies: dangling deps cpuid = 0 Uptime: 11d20h37m38s Physical memory: 1011 MB Dumping 201 MB: 186 170 154 138 122 106 90 74 58 42 26 10 #0 doadump () at pcpu.h:195 195 __asm __volatile(movl %%fs:0,%0 : =r (td)); Any insight is appreciated. uname -a is: FreeBSD hostname 7.0-RELEASE-p3 FreeBSD 7.0-RELEASE-p3 #1: Tue Jul 15 13:53:28 CDT 2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Regular panics in RELENG_7....
Hello, I seem to be suffering from some rather consistent panics. I say consistent not because I can actually reproduce it on demand, but that I know it _will_ happen eventually. These only happen while I am at the office with my laptop. The only difference between the office and home is the wireless network. I have an atheros based card in my laptop (and using wpa_supplicant), and we have two wireless access points here at the office. I'm not sure why there would be some problem, but if I disable card the panics stop. I do notice that the two access points have similar S/N ratios given my proximity to both. And that my machine frequently flip flops between the two. What happens is, two maybe three times a week my machine will panic here at the office. Frequently when shutting down (when ath0 goes down), sometimes when starting X, sometimes when killing X, sometimes while sitting at console not even logged in, and sometimes after a reboot from a panic while fsck'ing. All seemingly go away if I disable the atheros card in bios. I have a dozen crashdumps. I'm including dmesg, and a couple backtraces. I'm not particularly familiar with the kernel sources so not sure what I'm looking for here. Given the wide variation in bts, I suspect folks are gonna say my memory is to blame. Possible of course but odd it only happens at office. And only in RELENG_7, never before in any prior versions. Ideas appreciated. Thanks in advance. (dumps below, dmesg is last) -- Regards, Eric === BT 01 - I see fork_trampoline() in a lot of the bts === (kgdb) bt #0 doadump () at pcpu.h:195 #1 0xc0758098 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:409 #2 0xc0758351 in panic (fmt=Variable fmt is not available. ) at /usr/src/sys/kern/kern_shutdown.c:563 #3 0xc0a43bb0 in trap_fatal (frame=0xdf902a2c, eva=23) at /usr/src/sys/i386/i386/trap.c:899 #4 0xc0a43e00 in trap_pfault (frame=0xdf902a2c, usermode=0, eva=23) at /usr/src/sys/i386/i386/trap.c:812 #5 0xc0a4475a in trap (frame=0xdf902a2c) at /usr/src/sys/i386/i386/trap.c:490 #6 0xc0a2c35b in calltrap () at /usr/src/sys/i386/i386/exception.s:139 #7 0xc0944328 in softdep_disk_io_initiation (bp=0xd31b33e4) at /usr/src/sys/ufs/ffs/ffs_softdep.c:3841 #8 0xc094a39c in ffs_geom_strategy (bo=0xc3e42c70, bp=0xd31b33e4) at buf.h:436 #9 0xc07bb5ef in bufwrite (bp=0xd31b33e4) at buf.h:429 #10 0xc09498a9 in ffs_bufwrite (bp=0xd31b33e4) at /usr/src/sys/ufs/ffs/ffs_vfsops.c:1804 #11 0xc07b5550 in vfs_bio_awrite (bp=0xd31b33e4) at buf.h:417 #12 0xc07bf90c in vop_stdfsync (ap=0xdf902cd4) at /usr/src/sys/kern/vfs_default.c:437 #13 0xc06f0a62 in devfs_fsync (ap=0xdf902cd4) at /usr/src/sys/fs/devfs/devfs_vnops.c:394 #14 0xc0a579c2 in VOP_FSYNC_APV (vop=0xc0b75f40, a=0xdf902cd4) at vnode_if.c:1007 #15 0xc07cee82 in sched_sync () at vnode_if.h:538 #16 0xc0739511 in fork_exit (callout=0xc07ce789 sched_sync, arg=0x0, frame=0xdf902d38) at /usr/src/sys/kern/kern_fork.c:783 #17 0xc0a2c3d0 in fork_trampoline () at /usr/src/sys/i386/i386/exception.s:205 (kgdb) === BT 02 - I think this was during fsck === (kgdb) bt #0 doadump () at pcpu.h:195 #1 0xc0758098 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:409 #2 0xc0758351 in panic (fmt=Variable fmt is not available. ) at /usr/src/sys/kern/kern_shutdown.c:563 #3 0xc0a43bb0 in trap_fatal (frame=0xdd73e828, eva=7) at /usr/src/sys/i386/i386/trap.c:899 #4 0xc0a43e00 in trap_pfault (frame=0xdd73e828, usermode=0, eva=7) at /usr/src/sys/i386/i386/trap.c:812 #5 0xc0a4475a in trap (frame=0xdd73e828) at /usr/src/sys/i386/i386/trap.c:490 #6 0xc0a2c35b in calltrap () at /usr/src/sys/i386/i386/exception.s:139 #7 0xc06ef776 in devfs_find (dd=0xc3d66000, name=0xc3df1405 tty, namelen=3) at /usr/src/sys/fs/devfs/devfs_devs.c:156 #8 0xc06f3445 in devfs_lookup (ap=0xdd73e9b8) at /usr/src/sys/fs/devfs/devfs_vnops.c:609 #9 0xc0a58d91 in VOP_LOOKUP_APV (vop=0xc0b75e60, a=0xdd73e9b8) at vnode_if.c:99 #10 0xc07c3238 in lookup (ndp=0xdd73eb80) at vnode_if.h:57 #11 0xc07c3f18 in namei (ndp=0xdd73eb80) at /usr/src/sys/kern/vfs_lookup.c:219 #12 0xc07d9c19 in vn_open_cred (ndp=0xdd73eb80, flagp=0xdd73ec78, cmode=0, cred=0xc41fd600, fp=0xc3e1e288) at /usr/src/sys/kern/vfs_vnops.c:188 #13 0xc07d9ed5 in vn_open (ndp=0xdd73eb80, flagp=0xdd73ec78, cmode=0, fp=0xc3e1e288) at /usr/src/sys/kern/vfs_vnops.c:94 #14 0xc07d7c96 in kern_open (td=0xc425f660, path=0x81af295 Address 0x81af295 out of bounds, pathseg=UIO_USERSPACE, flags=3, mode=0) at /usr/src/sys/kern/vfs_syscalls.c:1028 #15 0xc07d81f2 in open (td=0xc425f660, uap=0xdd73ecfc) at /usr/src/sys/kern/vfs_syscalls.c:995 #16 0xc0a44148 in syscall (frame=0xdd73ed38) at /usr/src/sys/i386/i386/trap.c:1035 #17 0xc0a2c3c0 in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:196 #18 0x0033 in ?? () Previous frame inner to this frame (corrupt stack?) (kgdb) === BT 03 - Might have been shutting X down. === (kgdb) bt #0 doadump () at pcpu.h:195 #1 0xc0758098 in boot
LDAP Authentication questions...
Hello folks, First, please reply-all to this message as I'm not on the list. I'm trying to configure a bunch of FreeBSD 6.x and 7.x servers for authentication via LDAP. I've got LDAP setup with user accounts, I've got replication configured on the LDAP servers, and I have pam_ldap and nss_ldap installed, configured, and working. The last hurdle I'm trying to leap is server failover. I have the following line in my /usr/local/etc/ldap.conf file: uri ldap://ldap.example.com ldap://ldap2.example.com If I finger ldap_user with both servers running, I get a response with that user's information. If I switch around the order of the two ldap servers, I get a response (for a different username to avoid the caching). My problem lies with failing the first server in the list. In this case, I'm simply stopping the slapd process. finger ldap_user hangs forever and authentications all timeout for ldap- configured services like ssh. Now, shouldn't it eventually fail over to my secondary LDAP server? I've even tried adding timelimit 10 to the ldap.conf file to set a timeout, to no avail. Thanks! - Eric F Crist Secure Computing Networks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[6.3] watch(8) tty capture
Hello, I'm trying to capture trafic beetween vgetty and an Olitec modem on a FreeBSD 6.3 box. I've loaded snp(4) via kldload and watch -co /dev/ttyd2 only captures traffic sent from vgetty to the modem, not its responses. Am I missing something trivial or is it a known behaviour ? TIA. Regards -- J'ai essayé de creer un news un alt.west.virginia ou sur d'autres alt.west.wirginia.xxx mais quand je vais sur ces forums rien n'apparait? l'emetteur d'un new recoit il un avertissement si celui ci est censuré? -+- LM in: http://www.le-gnu.net - Bien sansurer ses news sur C-I -+- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 6.3 to 7.0 STABLE upgrade buildworld failures
Wojciech Puchar wrote: Can we no longer use make buildworld to upgrade from source builds? Everytime I've tried, I get build errors. I've gotten the impression from a few things I've read that freebsd-update is suppose to be used. I don't want a binary install/upgrade though. I've just sync from CVS with this in the config: well i exactly upgraded this way. no errors. ___ same here. no errors on a few boxes. do you have extra stuff in your make.conf file? if so, comment them out and try again ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Foo JH wrote: I like Qmail. It's not overly difficult to configure, and it's extensible. and requires 400 patches to do basic things =( heres some interesting reading about qmail... http://www.dt.e-technik.uni-dortmund.de/~ma/qmail-bugs.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to get best results from FreeBSD-questions
On Fri, May 30, 2008 at 2:17 PM, [EMAIL PROTECTED] wrote: Message 2: Subject: Problems installing FreeBSD I've just got the FreeBSD 2.1.5 CD-ROM from Walnut Creek, and I'm having a lot of difficulty installing it. I have a 66 MHz 486 with 16 MB of memory and an Adaptec 1540A SCSI board, a 1.2GB Quantum Fireball disk and a Toshiba 3501XA CD-ROM drive. The installation works just fine, but when I try to reboot the system, I get the message Missing Operating System. - ** Wow, this example is getting old! 66Mhz CPU, 16 MB memory? I think I had a computer like this around 15 years ago. I cringe at the thought that anyone is using something like this as their main machine. And FreeBSD 2.1?!? -- Eric Mesa http://www.ericsbinaryworld.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need to build a new mail server
Patrick Baldwin wrote: Hi all, I've got an older Solaris system running Sendmail for my mail server right now. It's about time to replace it, and I'm thinking FreeBSD might be the best choice of OS for the replacement. However, it's been some time since I looked into options for mail servers. I'm interested in both suggestions for hardware and mail servers that would make for the best FreeBSD based mail server. I've only got about two dozen users, though they are all very heavy users of email. I'm using IMAP, and I'd like to continue to do so. Finally, we have quite a few aliases I'd want to port over to a new server. Thanks, I like postfix + dovecot. Easy to set up and both have a ton of features. any relatively modern hardware will do with that kind of volume. your aliases shouldnt be a problem either. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
