Playing audio
Hi, I have an embeded system build on FreeBSD 4.11, I want to add sound facility, I have configured pcm and sbc and apparentlyit is working. In a C program, how can I play a sound file, what format should I use for that sound file? Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how to block rj45 sockets.
Do you recommend any good switch product and model number which has port enable.disable This is refeered to as manageable switch, or managed switch, or SNMP manageable. See with your prefered dealer according to your budget. Of course if the switches are in a closed rack, you can also simply disconnect whatever cable you want and lock the rach. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: When to use SUID Perl (5.8.x)?
Hi, Just wondering what do you need suid perl for? To run a Perl script that needs to get root privileges. it is a security risk having it? It is always a risk to have a powerfull tool installed when you don't need it. If a security bug is discovered in Perl, one could be able to become root without you wanting it. Is the risk that if the webserver/webserver-app gets comprimised the user could use perl? It depends on whatyou are running on your server. If you don't need setuid perl, do not install it :)) Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD sticker sheets
Hi there! My name is Nicole Nguyen and I'm the Membership Coordinator at EFF. We have been fans of your sticker sheet and are in the process of producing one of our own. I'd be happy to send some to your team once they're finished since you were our inspiration! I just wanted to check to see if you would share your sticker printer. Please let me know who you used and if you would recommend them. Thanks so much! Thanks, Nicole Nicole Nguyen Membership Coordinator Electronic Frontier Foundation 415-436-9333 ext. 120 [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: PART TIME JOB OFFER FOR YOU
They send you a counterfeit money order/ cheque, you deposit it, your bank makes the funds available, you send the bad guy the the money, and If you are naive enough to send them money before you ever get it... Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail to root
running. I was informed that Postfix was not running. So the question, how does mail generated by the system get delivered to the root account? Local mail delivery can be specific: mail could be delivered even is no smtp server is running. This is highly dependant of your environment and of what is used to generate this very email. Some scripts could make a direct call to whatever your mail server is and instruct it just to deliver that email, it would not require the server to run as a daemon. For example you send the header+body of your email to standard input of sendmail -t it will take your mail and deliver it. Here is my motive: I have a server that I want to run headless. I want to be able to retrieve mail to root from another machine via ssh login (on the same private net work number/netmask 255.255.255.0). I cannot login to the system as root over ssh. I don't know if I can read root mail with su (as wheel group It is preferable that you cannot ssh as root. Prefer using sudo instead of su (/usr/ports/security/sudo). IMHO su should not exist anymore. Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD not popular in Asia?
Check out http://www.bsdstats.org ... Republic of Korea is about to push the US out of first place, but there are *zero* FreeBSD boxes reporting from there ... DragonFly is first, then NetBSD and then OpenBSD ... 6 days later: Thailand jumped from 12 machines to 110... ahead of France and Australia. Only thing that the figures say is that they are far from being accurate. And that people should be reminded to register from time to time. Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Slow install of Ruby 18 from ports
Just out of curiosity I tried ruby port on two machines - fast one (1.6GHz Athlon with 1GB RAM) and small one (400MHz with 96MB RAM). Fast one has no problems with ruby, it builds and installs in few minutes. The slow one is another story, however. There is definitely something in teh building of ruby (I beleive in the test part), looks like it does a complete disk scanning (to find possible libraries?) during that period when it seems to be idled, disk are being accessed like carzy. Anyway, after a night at it, it finally installs :) Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Upgrading our mail server
| Our mailhub is actually a HP DL360 with one processor (Xeon 2.8 ghz) | with 2 Gb RAM and 120 Gb disks, it is 3 years old. | It runs Postfix + imap + imaps + pop3 + pop3s + squirrelmail + vexira | antivirus + postgrey | and some small auxiliary services. Your server is good enough to handle even 10k users. You just need to identify what is causing the overload. Adding one processor and 2GB extra RAM should be enough, I think. Even when the hardware is enough, I enjoy a new machine when it comes to build a mail server: it is such a critical machine (users will not understand that their mailbox could be out of reach for 5 minutes) with enough different components, each having specificities on the config (not the sort you power one and you are done) I don't feel at ease doing too much modif on a production email server. Now at 10K$ you have plenty of money, I believe you could afford 2 machines for hi availability. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Poutupgrade unsafe
Hi, I know the mistake was on my side, I was not carefull enough when using portupgrade on a production machine but... Yesterday I froze our system for about one hour when I used portupgrade to upgrade Samba. It was a very minor upgrade (from 3.0.10 to 3.0.23c,1 I think), but it happens that in between the 2 versions the location of the password file for Samba has been changed. I beleive that the port maintener has a very good reason why to change this directory, but portupgrade would build and install the new Samba silently (if the message at the begining of the makefile did ever show, it was drawn into the flow of portupgrade messages) resulting the new Samba did not accept any connection. I think that such modification should be considered as critical and portupgrade should stop and request acknowledgement before it keeps on installing. I am not sure the mechanism exists in portupgrade, but I see it as a very usefull enhancement. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Slow install of Ruby 18 from ports
Old FreeBSD on old hardware is a recipe for such problems. Hummm, I was looking at bsdstats... majority of registered hardware is pentium III. I like FreeBSD because of it's hability of running well on old hardware: why would I need a Xeon dual core to run a DNS server for 5 clients? Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Slow install of Ruby 18 from ports
I don't know why. I'm running DNS server on old Celeron 400Mhz with 96MB RAM just fine. Why do you think you need Xeon dual core for that? Of course I don't, and won't. I was just replying to the guy that told me that I am using archaic hardware and that it makes building ruby slow. I do use a number of PIII servers (more than Xeon) and am very happy with them. Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Slow install of Ruby 18 from ports
Hi, I am upgrading a few servers. I have noticed that on pentium III, it takes a VERY long time to upgrade Ruby 1.8. It blocks at some stage saying: zlib.c: mcc... Generating RI... Eventually it will finich installing. I am running RELENG 4.11 p21. Any clue? TIA Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MailScanner
Edit the MailScanner.conf file and set at least high scoring SPAM to bounce. Please DONT BOUNCE. There is never any usefull return address in SPAM, so bouncing will not get back to any spammer, but it will rather annoy some innocent person. It is totally useless to bounce for virus or spam, quarantine it or discard it silently, but never ever bounce. Bests, olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Spoofers, Spammers Other Bad Guys
This might be a useful tool for doing this without blocking some of the good guys in that part of the world, like Oz and NZ. And as most of the spam is for products originating from the USA, you can also kill USA from your mail... Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: local user authentification with ldap
Jean, In case you read French, there are some introductory documents on http://articles.mongeurs.net/magazines/linuxmag65.html and following. There is also a very complete document from INT Evry (int-evry.fr), but I got it as file, I don't have the URL. I am working on the same thing rightnow, that is why I have the documents on my table :) Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Finding IP Addresses (OT)
Beno, I'm configuring my IP filter and I need to figure out what IP addresses I use (via SSH2) to contact my server. I'd advise you not to filter SSH by IP, that would be the best way to lock you out of your server. Even if you find all the IP used by your ISP, you cannot predict when the IP range will change, and it DOES change. If you limit the IP that can SSH to your server, you will not be able to login when you are traveling and some urgent administration task need to be performed. And the most urgent tasks must often be performed when traveling... Set a strong password to your account (8+ characters, using letters up and lower case, numbers and punctuation signs), do not allow SSH to root account, enforce using sudo instead of su. That's the best way in a long run. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Filtering mail based on header contents
I have a mail system on which I have recently implemented spamassassin with Pyzor, DCC and Razor. I am really happy with the tagging accuracy and am ready to start filtering mail. I know spamassassin can be configured to drop all mail with a score over a certain amount, but I am concerned about NO SA only tag the mail, it never drops anything. Droping email is a bad attitude if you don't send a bounce, and as it it impossible to bounce a spam, then you should not drop spam email. dropping false positives. I would really prefer to either drop it in a folder for each user, or just send them all to a mailbox. The system we use has two tiers: mail enters the filtering server running sendmail, spamassassin Pyzor and DCC, which then sends to a qmail/courier-imap server. I would prefer to have the actual mailbox server drop the mail into a spam folder in each user's mailbox, but I realise that this could be a bit ambitious. Also, not all of the users use IMAP (about half use POP) so differentiating between IMAP and POP users is important. Does anyone have any suggestions? I solved that by putting email tagged as spam into quarantine. Once a day I submit to the users an email summary of their quarantine and they can recover any message by replying. Failing that, is there an easy way to filter based on header content (Spamassassin score) in Sendmail on the filtering machine, or would I have to implement procmail or some such to redirect all spam to one mailbox? But I do that with procmail, at the delivery level :) http://www.cs.ait.ac.th/laboratory/email/quarantine.shtml Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Doing Routing On My Production Server
I'm updating my firewall and I've found a nifty how-to that recommends using a BSD box in front of another box as your firewall, using the first as a router and passing one NIC to the other box. Can't all that be done from the same box? I am not sure I know what you are doing. What do you have on your production server. If you have one web server as production server and a serie of workstations on a NAT'ed local network, it is possible to have your production server hook onto the network and do the NAT stuff for your local network. It works, but it is certainly not advisable (for anything except home network?). A web server and a router/NAT are two very distinct type of machine, resources, needs, so it is better to leave them separated. On a web serveryou will end up adding lot of ports/external softwares, each of them having their possible flaws, and needing frequent updates, a router is a stock system, etc. Now the firewall thing. Security is build by adding level after level of different security features in order to slow down a hacker. There is no one solve it all solution. So having a global firewall running on a router machine is a good one more level solution. You will still run a firewall on your production server (and TCP wrapper, and disable uneeded services, and properly bind each service to only the needed interfaces). And if your router/firewall is of different type than your server, maybe one is faulty and can be break through but the second will not open back door to the same defect. In fact, but that is not a commonly shared thought, I like the firewall to be on an IP less machine, sitting like an Ethernet device that cannot be contacted through TCP/IP. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Thin terminals for FreeBSD
- Is there a more cost-effective solution? (Something that I did not think of) We used to build (well my colleague did that) X terminals based on a thin configuration of freeBSD (must have been version 2 at that time) that we ran on diskless computers booting from floppy. At that time we ran it on pentium 100 MHz, with something between 16 and 32 MB RAM, over a 10 MB shared Ethernet. All applications ran on the cental server, and X terminals were just that: display devices. It was a bit slow, you could not look at a video, but otherwise it worked. Of course you need more horse power on the server, but if you have a set of old PC with similar video adapters, that's an easy solution to deploy once one machine is up. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Stand up and be counted - BSDStats Project
pciconf -lv needs to be parsed, this being the hard step, into a string that can be sent via HTTP ... this is the hard part because it has to be done as/in a shell script ... anyone out there *really* good at shell programming? Why not doing the parsing on the server? Is there a limit on the size of an HTTP GET request? If not, the output of pciconf -v can fit in one single request, done. And limiting the number of requests, you also limit the amount of data xfered. I'd also go for: pciconf -l | sed s/\ /+/g | sed s/\ /%09/g| sed s/@/%40/g | sed s/:/%3a/g| sed s/=/%3d/g and you get lines like: hostb0%40pci0%3a0%3a0%3a%09class%3d0x06+card%3d0x341a8086+chip%3d0x254c8086+rev%3d0x01+hdr%3d0x00 none0%40pci0%3a0%3a1%3a%09class%3d0xff+card%3d0x341a8086+chip%3d0x25418086+rev%3d0x01+hdr%3d0x00 That are almost completely URL encoded. Remains to replace the newline into %0d, and you are done. Result is one line that is around 2000 characters. olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Gotta start somewhere ... how many of us are really out there?
You still can't avoid fakeries. Except that the fake will not bother coming back 3 times at one week interval, just to plant his faked data. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: spamfilter
1) spamd (part of SpamAssassin) is written in perl. This is fine for a workstation, not so much for a high-volume mail server. SpamAssassin itself is written in Perl... But it can be run on a remote server, it does not have to be on the machine running sendmail. 2) installing spamass-milter requires rebuilding sendmail. (I have no idea about other MTAs.) This usually sounds more frightening than it is, but can still lead to complications. I think stock sendmail is installed with milter, so it is only a matter aof configuration, not of compiling. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: spamfilter
I `ve got a spam problem and want to run a spamfilter. There is only a problem i don`t no witch spamfilter to choose. Can anyone give me a tip of a good and simple to run spamfilter??? I have been using spamassassin and am quite pleased with it. I think it's in the ports. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
What process is using what UDP port
Hi, I have a FreeBSD machine sending UDP packets to one of my other machine. There is no apparent reason why it is sending those UDP packets. How can I trace the process doing so? TIA Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Gotta start somewhere ... how many of us are really out there?
Hi, Just my 2 satangs. It's nice to try to get a overall figure, but something that could be easier to indentify and would have some importance too, is the VIP users. If we can say that Google is using FreeBSD for their search engine farm, even if there are only 2000 machines, it may have more importance than the 200,000 John Doe's machines. olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Creating vinum RAID 1 on place
Hi, Is there a trick on the way to build a vinum RAID 1 without backup-in the data first? I have the two disk that will get mirrored. One of the disk if formated as UFS 4.2 and already holds all the data. The second disk is blank. NormallyI should start with 2 blank disks, label them as vinum, create the vinum plex, then push the data on that RAID. Is there a way to do it without blanking both disk first (a RAID 0 on a single disk, copy the data on the RAID 0), label the other disk as vinum and create a RAID1? best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: DNS beginner question
Michael, I am trying to set up a DNS service. I have 2 FreeBSD machines, one's web and DNS (that I am setting up) and the other FTP. Both machines are behind a router and get local addresses (i.e. 192.168). If DNS, FTP and web ports in the router are open, will I be able to set up the DNS in a way such that when someone from the outside types www.mydomain.com, he'll be taken to the machine that runs apache, and when he types ftp.mydomain.com he'll be taken to the machine which runs ftp? By the way simply typing ftp://mydomain.com and http://mydomain.com does the trick, but I want it to work with prefixes too. It looks like it is a problem of setting up your router and NAT service on the router, rather than a DNS issue. From the wolrd, mydomain.com, ftp.mydomain.com and www.mydomain.com are seen as a signle IP/host (the public/WAN interface of your router). That is the router that direct traffic to this or that. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: find syntax
#find /dir/to/htmlfile -name *.html -exec perl -p -i -e
s/nagual.st/nagual.nl/g; {} \;
You should escape the * that you pass to find:
-name \*.html
Most probably.
olivier
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Slow server
2) as there are many connections comming from search engines siders (90% of all the established connections), I'd like to limit the ressources that spiders are using. One way would be through IPFW, but are there better ways? Is there a way to limit/prioritize in Apache (not that I know any). Lookup mod_security rules for Apache and mod_dosevasive. mod_evasive will help prevent the spiders from opening many pages at one time Thanks for the idea. I looked at both. mod_evasive would be the one, but it keeps traffic information on a per web site basis. The problem is that I have hundred of web sites and the spider tries to access one page at a time, but one page of each web site... OK I have to dig that further. Thanks, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: DNS discovery / FreeBSD Firewall
The questions is; How do I have the internal network machines get the DNS server settings from the Firewall? The two scenarios I can think of are: that the Firewall also acts as a DHCP server and somehow set the DNS of the internal net machines to the Firewalls resolv.conf entries; or I can have the Firewall act as a DNS server/relay and forward the DNS requests. If your ISP keep changing their DNS server I'd suggest another solution: set your own DNS server, but on a machine different from the firewall. Just make sure that the filrewall let domain traffic (udp/53 and tcp/53) go through. And configure the firewall to use your own DNS server. DNS server needs NO resources, an old PIII 500 will do the trick. It is always a good choice to have the firewall be only a firewall and nothing else. If you add DNS on your firewall and DNS has somore vulnerabilities, your firewall would be comprimised... Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Slow server
Hi, I am trying to deal with a server that is getting slower and slower. Machine is based on a AMD Opteron(tm) Processor 244 with 4GB memory. It is running MySQL, and Apache 13 and serving about 400 web sites written in PHP. OK the design of PHP is certainly not the most efficient, but actually the server cannot hold 50 simultaneous http connections. I am wondering: 1) what optimization I should look for in the system 2) as there are many connections comming from search engines siders (90% of all the established connections), I'd like to limit the ressources that spiders are using. One way would be through IPFW, but are there better ways? Is there a way to limit/prioritize in Apache (not that I know any). Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Slow server
Hi, I am trying to deal with a server that is getting slower and slower. Machine is based on a AMD Opteron(tm) Processor 244 with 4GB memory. It is running MySQL, and Apache 13 and serving about 400 web sites written in PHP. OK the design of PHP is certainly not the most efficient, but actually the server cannot hold 50 simultaneous http connections. I am wondering: 1) what optimization I should look for in the system 2) as there are many connections comming from search engines siders (90% of all the established connections), I'd like to limit the ressources that spiders are using. One way would be through IPFW, but are there better ways? Is there a way to limit/prioritize in Apache (not that I know any). Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: named: invalid rndc key
$ rndc reload rndc: connection to remote host closed This may indicate that the remote server is using an older version of the command protocol, this host is not authorized to connect, or the key is invalid. Did you check that named was still listeing on port tcp 953? What does netstat -Sa|grep rndc tells you? Can you telnet localhost 953? Did you check that rndc and named are of the same version? Calling rndc with no argument should give you the version, and any dig request should give you the version of named. Do they have the same installation date? Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
(no subject)
Hello, Any experience about running 2x CPU AMD Athlon 64 X2 Dual-Core Windsor 5000+ with FreeBSD 6.1? I have to make decision on a new web/php/mysql server and any help will be appreciated. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Backup sollutions
I'm looking for a free (ports?) backup sollutions for FreeBSD servers. I would like to have something similare to IBM's Tivoli where you install a client on each server and administer the backup from another server with a web gui. I don't know about the GUI, but I have been using Amanda very successfuly for many years. It will backup FreeBSD, but any flavor of Unix, as well as Microsoft... Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NFS Server and MS Windows
Can I have the two? NFS and Samba? There is no reason you can't. I run NFS between Unix machines and Samba with MS world. But there could be strange results if on Xp machines connects to the same file using both NFS and Samba at same time. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD users of Thailand
Khun Prasert, Good initiative, very good idea. Well I have more interest in the server use of FreeBSD and obviously I cannot read Thai, but if I can help... Best regards, Olivier Pathumthani ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBSD users of Thailand
Khun Prasert, Good initiative, very good idea. Well I have more interest in the server use of FreeBSD and obviously I cannot read Thai, but if I can help... Bestoo regards, Olivier Pathumthani ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Breakin attempt in the log
Jun 9 06:34:12 designaproduct sshd[58759]: reverse mapping checking getaddrinfo for ev1s-67-15-10-78.ev1servers.net failed - POSSIBLE BREAKIN ATTEMPT! Is this something I need to fear of? The short reply: No, but that something that the ISP ev1servers.net should clear of if they don't want to see their clients to be banned from some internet resources like yours. The longest and technical reply: You have set-up ssh daemon on your machine to refuse connections that have a missmatched DNS reverse. When one client tries to connect to the ssh daemon on your machine, your machine does a reverse DNS resolution, try to associate a name to the IP address that attempt the connection. Then your machine does a DNS resolution, it tries to associate an IP address to the name found on the previous stage. That IP address should be the same that you see for the client trying to connect to your ssh daemon. If not, it means something is not normal and your ssh daemon refuses the connection. Some ISP do not set-up properly their DNS and reverse DNS, so there are some missmatches. Missmatches can also occur on IP blocs that have just changed from one ISP to another, forward DNS points to thenew values while reverse DNS are still in the cache with old values... Anyway, problem lays with the ISP and the ISP client, not with you. Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how does cron exec jobs?
How can I simulate a cron job from the shell? There must be something different about the way cron is executing this command... Counld be different environment variables set, different working directory... Any diagnostic when it hangs? Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: how does cron exec jobs?
Counld be different environment variables set, different working directory... That's what I'm trying to find out. The cron man pages are ... empty on the subject. Remove every and any environment variable and try to run from / or from /root or from /tmp OK that's trial and error approach. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Openoffice complete failure?
Hi, I just finished installing OpenOffice 2.0.3rc3 from the ports. 1) at starts it complains that: I18N: Operating system doesn't support locale en_US 2) it keeps on starting on the welcome window, with acceptation of the licence and so on. 3) When I try to create and save a simple document it spits at me: General input/output error What is going wrong? Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Cannot delete stubborn files - New Hint
I cannot get it to reveal the crosslink that is preventing the removal. I beleive you tried find -inum. Do you have any lost+found directory at the root top level of the filesystem? I haven't seen any mention of the version of the FreeBSD you are running, nor the type of file system you are having problem with. If you have spare disk/partition, I beleive you could always copy everything (but the problem files) to a new partition and newfs the one making problem. best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: newsyslog.conf wrong count of archive logs
count Specify the maximum number of archive files which may exist. This does not consider the current log file. From what i see on a running system, count is the maximum number of the archive log: a count of 2 makes archives .0, .1 and .2 Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Odd sendmail behavior change
Now all system mail seems to want to be forwarded thru some relay a t hus.parkingspa.com. I have no clue where this came from nor Try dig kt.weeble.com it is just an alias name for hus.parkingspa.com olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: system recovery
or, can someone recommend how i might use that tarball of my entire system to quickly get a new system up and running (all this with the assumtion that i have not changed any hardware configurations). if someone has time to answer quickly, i would sure appreciate it. I think that the recovery system that lies on one of the CDs has tar. You could boot the recovery system and untar the things. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Biometric Fingertip Scan
Hi Carlos, Actually, can we use biometric fingertip scans on our systems to allow a root logon? I'm interested in that technology ;) If you know a fingerprint scanner that work with FreeBSD and if you add that to the system, why not :) But I don't have the equipment to try and play with here. I only do remote logon (via SSH) and get root priviledges via sudo. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Implementing IMAP advice for first timer
Well I want to get IMAP running on my FreeBSD box and would like to have a safe, non service-interrupting strategy to implementing it. What do you mean non service-interrupting strategy? If you have already POP3 installed and running, there is good chance that installing IMAP will install another POP3 and at some stage it may create sirvice disturbances. 1) Can somebody please recommend a good FAQ about how-to get IMAP running my FreeBSD machine? Install from /usr/ports/mail/cyrus-imapd23 for example 2)Are there things I should be aware of before I start the process? None that I can think off. 3) I dont completely understand how IMAP works is there a good tutorial about this subject? IMAP is a protocols that allows you to READ your email. Your IMAP client will connect to your IMAP server and retreive emails from your mailbox. IMAP also allows you to retreive mails from mail folders. 4) I dont completely understand how local mail delivery will change is there a good tutorial about this subject? IMAP does not interract with mail delivery. Once mail is delivered into your mailbox, IMAP allows you to read it. Best regards, olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Implementing IMAP advice for first timer
Installing it from ports (/usr/ports/mail/courier-imap) is pretty straightforward, and most settings can be left at the default, at least True, except... Courrier-imap is using maildir mailboxes, so unless the existing system already uses maildir, there will be some disturbance at the conversion time. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: MESS
if i enter single user mode it dasen't seem to recognize many commands: starrtx, ee, pico, emacs etc so i cannot change my /etc/fstab in case this is the problem. At that stage, you should still be able to mount /usr (provided that you did notmove /usron your windows disk...) So mount -a, it will complain about the ntfs disk, but you have access to emacs. (else you can still use ed(1), no need to mount /usr) So you can remove the offending line from /etc/fstab. Then reboot and reconsider the procedure. You may need to define /dev/ad0s1 For Windows reboot I don't know. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: email with a database
is there an email solution that employs some kind of database that stores mail for long term? id rather not turn on leave a copy on the server as this has shown to give poorer and poorer performance over time for me. People normally take backups of their machines in order to protect against losing files, including your email. You should be using IMAP instead of POP3 if you want your email to reside on the server efficiently. In fact you would want to use maildir format instead of mbox format for your mailbox. That you use imap or pop3 is of little relevance on the speed. Format of the mailbox is though. In standard mbox format you have to open and manipulate one single huge file, that keeps growing bigger and bigger. Browsing that file to find the new/unseen messages can take several tens of second when your mailbox gets too big. In maildir format, you manipulates one file per message, new messages being in a different directory from the seen messages. That makes the file manipulation much faster. Of course you can make tape archive of your mailbox (easier to archive maildir format though as there is not risk of concurent access to a message file). And you can use procmail or the like to duplicate the message in a file on your server. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Building horde from ports
Hi, I am trying to build horde (horde-3.1.1_1) from the ports. While I coul dbuild it without any problem in the past, now I get: This port requires the Apache Module or the CGI version of PHP, but you have already installed a PHP port without them. *** Error code 1 At the very begining of make. But my php4 is of course installed as Apache module: ufoon: pkg_info | grep php | grep -y module php4-4.4.2_1PHP Scripting Language (Apache Module and CLI) So what am I doing wrong? Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Linux distro with ports/package type system?
Linux distro that has a ports like system. I heard that gentoo has a port like system. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Is it recommended to allow all outgoing connections from your firewall??
I've seen most people allow all outgoing traffic originating from the firewall itself... Is this really recommended?? What if the machine have been A server being a server (and a firewall is nothing but a specific server) there is no reason one would run a client application from that machine. So I deny every outgoing connection from a server (only exceptions are the protocols used by the server to upgrade itself, http/ftp is allowd only through a proxy). This makes very little constraint and I make the server much safer knowing that one will not be able to read his mail or browse the web from that server. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Copying a file system w/ tar - symbolic links not copied right.
I'm trying to move a file system from one disk to another, and when I do this: I think that the way to go is: tar cf - /source/* | ( cd /destination tar xfvBp - ) Note the Bp at the end of the extract tar. olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Zope 2.8.6 does not work any more
Hi, I just upgraded from zope port 2.8.4 to 2.8.6. Since then I cannot access my zope sites anymore. After few seconds Zope28 will die and I get the error messages: [Wed May 3 13:21:27 2006] [error] [client 192.41.170.57] (61)Connection refused: FastCGI: failed to connect to server /web/csim/htdocs/zope28: connect() failed [Wed May 3 13:21:27 2006] [error] [client 192.41.170.57] FastCGI: incomplete headers (0 bytes) received from server /web/csim/htdocs/zope28 That zope thing is certainly build around obscurity so I don't know where to look at the problem. Any help would be highly appreciated. TIA, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: generating a FeeBSD system
to download and where and how I can start a system generation WITHOUT a CD, just being under Window and having a free partition on my Hard disk. Hummm, unless you are using a virtual machine in Windows (like vmware) you will need to boot your machine in FreeBSD, not in Windows. So you will need to boot from floppy or from CD. best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: xhost does not work as expected
Franck, I am at 6.0 with xorg and I cannot remotely use a GUI backup software ( netvault) because I am not able to use properly the xhost command. It is not clear what you can client and what you call server, are you talking about your backup software: the server is the machine with the tape drive and the clientis the machine where you sit and look at your GUI; or about X: the server is the machine where you sit and look at your GUI and the client is the machine running netvault and having the tape drive. That said: - can you run xterm on the netvault machine (m1) and display the window on the machine with 6.0 xorg (m2)? You need: - on netvault machine (m1) to setenv DISPLAY m2:0.0 - on 6.0 xorg machine (m2) xhost + m1 - are you sure that no firewall are blocking X connection between the 2 machines? Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: xhost does not work as expected
- can you run xterm on the netvault machine (m1) and display the window on the machine with 6.0 xorg (m2)? no I cannot What is the error message? Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: xhost does not work as expected
xterm Xt error: Can't open display: lisa:0.0 - what does ping lisa says? - do you have any kind of firewall running on lisa? - Do you have X server running on lisa? - try setenv DISPLAY IPadress_of_lisa:0.0 Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: FreeBsd
Try http://www.de.freebsd.org/de/mailinglists.html for FreeBSD German http://liste.gufi.org/ for FreeBSD Italian I see no mailing list in Romanian Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Simluating a satellite connection using dummynet?
I've been reading up on it and best I can tell I'm looking at 1000ms round trips... at *best*. Most of what I do I can do on servers at home, but there will be the occasional ssh, etc. Supposedly, the round trip should be only 500 ms: the time for the signal to go from earth to the satellite and back to earth, then the same time for the reply packet to come back. On the machine directly connected to the satellite modem, a ping to the machine at the other end, directly connected to the satellite modem (so the 2 machine as close as possible to the satellite equipment) I get a ping round trip of 800 ms. That speed is pretty workable for ssh/telnet, even for a full screen editor. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to read a damaged tape
Hi, I have a SLR 100 tape drive (SCSI interface) and a tape cartridge with 4 files. The first file is damaged so I cannot mt fsf over that file to read the others. Is there a secret way to to advance the tape by a certain number of meters, or by a certain number of seconds or something. I know I would end up at a random position in the middle of a file, but at least I could fast forward over the damaged file. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to recover /usr and /home directory
I have a previous 40GB HDD which crashed during power outage and now no longer repairable. Before I installed a new HDD, I can still see the contents of that defective hard disk when booting from a single user mode. Now, I set it up as slave and installed a new FreeBSD on the new master HDD. But then, when I mounted the old hard disk, I can no longer see any content in my /usr and /home directories. These directories are the ones with hard If the old disk gave you access to data when booted in single user, why not keep it master, put the new disk in slave, boot single user, mount what you need and copy the information? Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ipfw secure setup for ssh bruteforcers
admin said that doing this can be bad, especially when the kiddy is connected to a large network like a company or university; I may block other people who aren't guilty of the act. (which makes sense) I know I have no problem with blocking one IP from a larger network, nor even blocking the full block. That can help to raise awarness in that block that they have miss behaving users. Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: freebsd log files
What log file stors things like system shutdown notices and that, I want to It may depend on your setting, in my /var/log/messages I see things like: Mar 23 11:07:00 machine reboot: rebooted by root Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: getop.h conflict when building audio/akode
Deinstall the libgnugetopt port - it's only needed on FreeBSD releases earl= ier=20 than 5.x and causes buildtime errors on later versions (as you found out). Thanks. After I managed to rebuild audio/akode, it seems that it was not depending on libgnugetopt anymore. I cannot get rid of libgnugetopt though because it is needed for libmal (?) thatis needed for KDE. Bests Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
getop.h conflict when building audio/akode
Hi, I try to portinstall audio/akode (needed by kde) and I get the following error: labtoproot52: /usr/local/sbin/portinstall audio/akode [...] then mv -f .deps/akodeplay.Tpo .deps/akodeplay.Po; else rm -f .deps/akodeplay.Tpo; exit 1; fi In file included from akodeplay.cpp:29: /usr/local/include/getopt.h:115: error: declaration of C function `int getopt()' conflicts with /usr/include/unistd.h:376: error: previous declaration `int getopt(int, char* const*, const char*)' here gmake[1]: *** [akodeplay.o] Error 1 gmake[1]: Leaving directory `/usr/ports/audio/akode/work/akode-2.0/akode/akodeplay' gmake: *** [all-recursive] Error 1 *** Error code 2 Stop in /usr/ports/audio/akode. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portinstall59136.0 make ** Fix the problem and try again. ** Listing the failed packages (*:skipped / !:failed) ! audio/akode (new compiler error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed labtoproot53: System is 5.4-p13 Ports are up to date (30 minutes ago) That usr/local/include/getopt.h comes from libgnugetopt-1.2 (up to date too) Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Oops: Deleted /var/named
devfs rule: ioctl DEVFSIO_RAPPLY: Inappropriate ioctl for device devfs rule: ioctl DEVFSIO_RAPPLY: Inappropriate ioctl for device devfs rule: ioctl DEVFSIO_RAPPLY: Inappropriate ioctl for device I can only assume that it has something to do with the files in /var/named/dev/ that I have untarred there. I tried doing a make What I can see from my environment (4.11), you only need /var/named/dev/null, copy it from /dev/null Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Need some tips in reorganizing our LAN.
Jay, If you have any Network Transition plan that you may want to share to me, please do so. Even if we don't have that much similarities in our network setup, at least the non technical part like planning etc... It really depends of the goals you want to reach, the services you plan to provide, how you wantto devide your network in groups, if there is effective geographical division (one service in one single floor or in one single office), if you can afford new cabling in the building, etc. Once you have the big picture clear, then you can think of the technical parts. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How do you keep users from stealing other user's ip??
1. Users when they want to plug a machine to the network... let's 1. say their own testbeds, they will choose whatever ip they want 1. possibly stealing used ip's. Use DHCP, then users do not have to choose an IP, it is given to them. Plus it gives them all parameterstheyneed to configure their machineto acces the network (like netmask, gateway, DNS...) DHCP keeps logs of what IP wasassigne to what machine (for Windows you have the windows name of the machine) so you can track what is what down. If you are dealing with users that have little knowledge and not with hackers (and it seems to be your case) DHCPo will solve 90% of your problems. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: hosts.allow ?
I'm not sure this is correct. If you read sshd(8), you'll see in the FILES section that sshd will read /etc/hosts.allow and /etc/hosts.deny on its own (i.e. it's compiled/linked with libwrap). Looking at /usr/src/crypto/openssh/Makefile.in for the sshd target verifies this. That and sshd will re-read the file at each new connection or as soon as the file is changed. You don't need any signal/restarting of sshd to make the new wrapping policy effective. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Open Source and 3rd world countries
I'm writing this thesis on the benefits of integrating open source software into third world countries to boost their economies and the knowledge of their people. Certainly not the answer you are expecting, but I am afraid it is the reality, developping countries do not really care about open source. They just use pirated software (windows) because it takes less time to start-up, because it cames with better internationalization... Time comes when they reach the limits of using pirated software and turning to open source is a solution, but that needs a certain level of development. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Open Source and 3rd world countries
Sorry Nicole, but here in Brazil our government does not use pirated software, and yes, they're changing to Open Source. That only means Brazil is not much a 3rd world country anymore... guess this may be coming to an end, or not expanding, since the new cheap computer for the poor people comes with Free Software. Yeah, sure, government did the same here in Thailand, cheap PC at $250 with Linux, and every body did installed Windows on it as soon as they get home :) Because Free Software was simply not working and that was not what they used at school, in the internet cafe and such, there were not the latest and coolest games... Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
What process is LOISTENingon a given port
Hi, In 5.4, who to know what process is LISTENing on a given TCP or UDP port? Bestregards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to keep the options with potupgrade
Hi, I usually build my Apache server with the option WITH_APACHE_SUEXEC=yes defined. How/where/what to configure to make sure that a portupgrade -R apache13-modssl will use the same option when rebuilding? Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Authentication with auto replication
Hi, I have a system that needs user authentication. Right now I am using NIS to share the users password between all the machines that need it: one machine is the primary server, others clients are also running a secondary server: so would a machine get isolated, it could still do authentication with the secondary server that it is running. This is all smooth and transparent, files replication is done automatically. I am considering moving away from NIS (because its lack of security). Radius could do the trick, I can run several radius servers. But then I need to manually synchronize the data between the various radius servers. Does it exists another authentication system that would do the automatic data replication like NIS does? Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Kernel dump then what
Hi, Now I managed to get a kernel dump. I even got two of them, with different panic, both page fault, one on read, one on write. The machine had been runing fine for a year when it started to panic on heavly load. I updated the kernel but not to avail. I tried all the hardware monitoring in usr/ports/sysutil but none could report CPU temperature for that Asus CUR-DLS motherboard. I do suspect a temperature problem because when I kept the rack drawer open it it not panic. What should I do next? Fatal trap 12: page fault while in kernel mode mp_lock = 0002; cpuid = 0; lapic.id = 0300 fault virtual address = 0x38053bc0 fault code = supervisor write, page not present instruction pointer = 0x8:0xc01d2ae5 stack pointer = 0x10:0xcd66ad04 frame pointer = 0x10:0xcd66ad14 code segment= base 0x0, limit 0xf, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags= interrupt enabled, resume, IOPL = 0 current process = 688 (dumper) interrupt mask = bio - SMP: XXX trap number = 12 panic: page fault mp_lock = 0002; cpuid = 0; lapic.id = 0300 boot() called on cpu#0 Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to know that make buildworld finished
Hi, For testing purposes, I am trying to build a quite old (read slow) machine. It happens that every time I start a buildworld, I will have to leave before the end. And next morning the shell I was using to run the buildworld will have terminated for some reason. So I cannot see if the make did finished successfully or not. Is there a way to check that make buildworld did finished successfully? TIA. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to know that make buildworld finished
Is there a way to check that make buildworld did finished successfully? Use a Short-Circuit List Operator: '' make buildworld mail -s Buildworld successful! [EMAIL PROTECTED] /dev/null Thanks, I should have thought about that myself :(( Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: How to do a kernel dump?
This isn't guaranteed 100% correct, but at least if it's not, maybe it'll get someone else involved. Below my dumpdev in rc.conf I have savecore_flags=-z to compress the core dump kernel with gzip. Also, read man savecore again, esp the part about minfree in /var/crash free kilobytes for non-superusers in the file system after the copies would be made. Thanks Denny, that was 100% correct. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to do a kernel dump?
Hi, I'd like to get a kernel dump when the machine panics. I set-up dumpdev=/dev/rda0s1b in /etc/rc.conf. My swap is: amandaon41: swapinfo Device 1K-blocks UsedAvail Capacity Type /dev/rda0s1b 10484480 1048448 0%Interleaved My memory is only 256 MB, so the swap is large enough to keep up to 4 dumps. But still no dump, no image created in /var/crash, the system reboots in multi-user mode and period. When I try savecore by hand I get: savecore: reboot after panic: page fault savecore: system went down at Thu Mar 2 01:13:26 2006 savecore: no dump, not enough free space on device (235544 available, need 264924) How should I understand that? Is it because I use the raw device (that is not clear in the handbook). System is: FreeBSD amanda.cs.ait.ac.th 4.11-RELEASE-p14 FreeBSD 4.11-RELEASE-p14 #5: Tue Feb 28 16:07:07 ICT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/SMALL i386 Thanks in advance, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Choosing cpu type when building kernel (stupid one i know)
the rest is what i don't understand. 486 isn't mentioned in the NOTES file, 586 is just pentium, and 686 is pentium pro. I have a P4 1.4 gig intel chip in my system, what should these settings be? if i remove 486 You could use only 686. GENERIC kernel is generic, it is meant to support most of the architecture, back to to 80386. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Mysterious reboot, suspecting hardware issue
Hi, Running an Amanda server on a dual P III, with 256 MB ram and dual Symbios SCSI adapter. Part of the hard disk are mounted in RAID with vinum on the first SCSI adapter. The Tandberg tape drive is on the second SCSI adapter. FreeBSD is: FreeBSD amanda.cs.ait.ac.th 4.11-RELEASE-p14 FreeBSD 4.11-RELEASE-p14 #3: Thu Feb 23 14:03:05 ICT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/SMALL i386 Recently (mid February) it started rebooting around 01:20, that is about 40 minutes after amanda started the nightly dumps of the various servers on my network. It's about time when amanda reaches full speed and the machine may be busy doing some high gzip compress. The first reboot occured while I was running 4.10-RELEASE-p19 so it cannot be related to the version of FreeBSD. That machine has been running like that for about one year without any problem. I set dumpdev=/dev/rda0s1b in /etc/rc.conf, expecting to get a kernel dump in time of the crash, but I got nothing. - did I missed something? - how to prevent the machine from rebooting when it crashes? Other idea? Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: French accents test
This is a test to see: áéíóú. Vu d'ici ca marche. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: proxy
I need to monitor traffic from my network to the internet, I then need to charge each user (preferably username and password authentication) for the amount of data used. I think monowall can do that, it is build on freebsd. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Trouble with apache ports (finding it hard to enable particular modules)
php4-extension-enabled php php-enabled apache ssl-enabled apache If I am not wrong, install apache13-modssl php4 php4-extension And that does the trick. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problem building perl-5.8.8
Hi, I updated the ports, now it is perl 5.8.8 and still the same `sh cflags optimize='-O -pipe' toke.o` -fpic toke.c CCCMD = gcc -DPERL_CORE -c -DAPPLLIB_EXP=/usr/local/lib/perl5/5.8.8/BSDPAN -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -O -pipe -Wall toke.c: In function `S_scan_formline': toke.c:10596: error: invalid operands to binary + toke.c:10596: error: invalid lvalue in unary `' toke.c:10596: error: invalid lvalue in unary `' *** Error code 1 Stop in /usr/ports/lang/perl5.8/work/perl-5.8.8. *** Error code 1 Stop in /usr/ports/lang/perl5.8. uforoot: uname -a FreeBSD ufo.cs.ait.ac.th 5.4-RELEASE-p11 FreeBSD 5.4-RELEASE-p11 #3: Tue Feb 21 13:35:24 ICT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/SMALL i386 uforoot: Any idea what that can be? Best regsards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem building perl-5.8.8
I updated the ports, now it is perl 5.8.8 and still the same `sh cflags optimize='-O -pipe' toke.o` -fpic toke.c CCCMD = gcc -DPERL_CORE -c -DAPPLLIB_EXP=/usr/local/lib/perl5/5.8.8/BSDPAN -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -O -pipe -Wall toke.c: In function `S_scan_formline': toke.c:10596: error: invalid operands to binary + toke.c:10596: error: invalid lvalue in unary `' toke.c:10596: error: invalid lvalue in unary `' *** Error code 1 Stop in /usr/ports/lang/perl5.8/work/perl-5.8.8. *** Error code 1 Stop in /usr/ports/lang/perl5.8. uforoot: uname -a FreeBSD ufo.cs.ait.ac.th 5.4-RELEASE-p11 FreeBSD 5.4-RELEASE-p11 #3: Tue Feb 21 13:35:24 ICT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/SMALL i386 uforoot: Any idea what that can be? Can you try with an empty make.conf file? It is already empty. For information it gives the same error with 5.3 system. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem building perl-5.8.8
`sh cflags optimize='-O -pipe' toke.o` -fpic toke.c CCCMD = gcc -DPERL_CORE -c -DAPPLLIB_EXP=/usr/local/lib/perl5/5.8.8/BSDPAN -fno-strict-aliasing -pipe -Wdeclaration-after-statement -I/usr/local/include -O -pipe -Wall toke.c: In function `S_scan_formline': toke.c:10596: error: invalid operands to binary + toke.c:10596: error: invalid lvalue in unary `' toke.c:10596: error: invalid lvalue in unary `' *** Error code 1 Hummm, got it : I had a file called test somewhere, so the configure script did not run well, so the compile was affected. Sorry for the trouble. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problem building perl-5.8.7_2
Hi, When I tryto build perl-5.8.7_2 I got: `sh cflags optimize='-O -pipe' toke.o` -fpic toke.c CCCMD = gcc -DPERL_CORE -c -DAPPLLIB_EXP=/usr/local/lib/perl5/5.8.7/BSDPAN -fno-strict-aliasing -pipe -I/usr/local/include -O -pipe -Wall toke.c: In function `S_scan_formline': toke.c:10392: error: invalid operands to binary + toke.c:10392: error: invalid lvalue in unary `' toke.c:10392: error: invalid lvalue in unary `' *** Error code 1 Stop in /usr/ports/lang/perl5.8/work/perl-5.8.7. *** Error code 1 Stop in /usr/ports/lang/perl5.8. at the very begining of the compile. Any clue on what is going on? TIA Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem building perl-5.8.7_2
Hi, When I tryto build perl-5.8.7_2 I got: `sh cflags optimize='-O -pipe' toke.o` -fpic toke.c CCCMD = gcc -DPERL_CORE -c -DAPPLLIB_EXP=/usr/local/lib/perl5/5.8.7/BSDPAN -fno-strict-aliasing -pipe -I/usr/local/include -O -pipe -Wall toke.c: In function `S_scan_formline': toke.c:10392: error: invalid operands to binary + toke.c:10392: error: invalid lvalue in unary `' toke.c:10392: error: invalid lvalue in unary `' *** Error code 1 Stop in /usr/ports/lang/perl5.8/work/perl-5.8.7. *** Error code 1 Stop in /usr/ports/lang/perl5.8. at the very begining of the compile. Any clue on what is going on? I forgot to mention this is going on FreeBSD ufo.cs.ait.ac.th 5.4-RELEASE-p11 FreeBSD 5.4-RELEASE-p11 #3: Tue Feb 21 13:35:24 ICT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/SMALL i386 Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Anyone interpret this ?
+Limiting closed port RST response from 216 to 200 packets/sec By analogy with the rate limiting on icmp echo (ping) I'd say that someone try to access to a closed service 216 times per second and that the reset (RST) response is limited to 200. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mysterious reboot
I've also been observing my system...even when mail load from these mini-attacks is heaviest, maybe 800 messages a second, the system load barly goes over idle. There appeas to have been two such attacks. It's a 2.8 ghz machine with 3 gigs of RAM, it should be well able to handle that load even for sustained periods of time. Did you do some disk stress test? The hardware problem could be somwhere else than the MB. Or network if your anti-spam rely on some network check? It would be nice that you set-up your system (how?) so that it does not reboot in case of failure, so you'd have some information on the screen. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Log analysis server suggestions?
As for searching / analysis, I've seen php-syslog-ng ( http://www.vermeer.org/projects/php-syslog-ng ), which looks very basic, and phpLogCon ( http://www.phplogcon.com/ ), which does not support PG anyway. Is there anything better GUI-wise? As for the log analysis, I remember attending a security seminar where the conclusion was that a good log analysis system should let you define what events are unimportant and could be ignored so that all other events, including the unexepected ones are shown as important and requiring action. Best regards, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mysterious reboot
/var/log/messages just shows a user connectig via pop, and then the next line is the machine booting. Does the reboot correspond to the rainstorm? Do you have UPS? If time matches and no UPS I'd highly suspect a micro power faillure, that other machines could over go, but that this specific machine could not handle. It could be enough that a capacitor in the power supply of the machine is drying out and the micro cut could not be filtered as well as it used to be. I'd not expect laptopn of TV to be affected by such micro shortage. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mail back-up system
I read the article and the idea is good. But i would like to know what MTA are you using..In the paper you said that at first the email is strored in Mailbox format. Isn`t that a bottleneck. WHat are the loads of the machines= Considering we have only 200 users and 3000 messages per day, whatever would do. MTA is sendmail/milter. I plan to change that mailbox thing when I get budget for a new machine to play with (I don't want to take the risk to break the working configuration). Bests, Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mail back-up system
Mailbox format might not be a bottleneck in this application. It's fairly efficient at appending new messages, and that is the only common operation being performed on these backup mail spools. The application is using maildir (that's the normal email server that is using mailbox). Maildir because it is esaier to expunge oldest emails to free some disk space and because thetape backup is cheaper when it come sto incremental. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Mail back-up system
I just have a second disk on the server that I rsync everything to on an hourly basis. That would not solve the oops I deleted that VERY IMPORTANT email, where I can get it back? question. My goal is not high availability, but offering the user a way to undelete emails. I use Matt Simerson's excellent Mail Toaster scripts for FreeBSD, which create a full mail server using vpopmail, courier, maildirs, spam/virus filtering, webmail. If you are switching to Maildirs anyway, I recommend trying it out. http://www.tnpi.biz/internet/mail/toaster/ Thanks for that link, I'll keepit at hand. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
