Re: Throughput test with iperf...
hi again.. would any of you please at least explain it to me what may cause iperf server ending up with Segmentation fault (core dumped) message right at the beginning of setting second connection in my bi-directional throughput test, using -r flag?? i used these commands on client and server on two freebsd machines which are connected straight with one cat5e cable: iperf -s -i 1 iperf -c X.Y.Z.T -t 60 -r just getting more confused.. :( Best Regards, t.a.k On Sat, Sep 28, 2013 at 10:22 AM, takCoder tak.offic...@gmail.com wrote: hi everyone, this might be a bit off-topic but i am really confused and in need of your helps.. :( i need to understand what exactly iperf does while testing network throughput? i'm trying to run a throughput+frame loss test on a router using iperf, and i am really confused with the definitions given for throughput and packet-loss and iperf output.. as i have seen through my searches, throughput is the maximum transfer rate at which we have no packet loss, so i thought i have to rerun iperf for different transfer rate(in udp test), so i reach maximun rate while having no drops... but i have seen test videos in which they ran iperf once, with maximum bandwidth of the line, and just used the reported throughput and packet loss as the required result! what's on? does iperf calculate the throughput independent from packet-loss? and why is it reporting it named as bandwidth?? thank you all.. Kind regards, takcoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Throughput test with iperf...
thanks for your reply.. :) i think it's iperf.. i installed /usr/ports/benchmarks/iperf port. where can i find iperf2? my machines are both FreeBsds but i can't find iperf2 in my ports collection.. Best Regards, t.a.k On Sun, Sep 29, 2013 at 11:38 AM, Doug Hardie bc...@lafn.org wrote: On 28 September 2013, at 23:38, takCoder tak.offic...@gmail.com wrote: hi again.. would any of you please at least explain it to me what may cause iperf server ending up with Segmentation fault (core dumped) message right at the beginning of setting second connection in my bi-directional throughput test, using -r flag?? i used these commands on client and server on two freebsd machines which are connected straight with one cat5e cable: iperf -s -i 1 iperf -c X.Y.Z.T -t 60 -r just getting more confused.. :( Are you using iperf or iperf2. Iperf has a few problems. Iperf2 is more stable. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Throughput test with iperf...
Thank you, Doug, I'll check it :) Best Regards, t.a.k On Sun, Sep 29, 2013 at 12:41 PM, Doug Hardie bc...@lafn.org wrote: On 29 September 2013, at 01:20, takCoder tak.offic...@gmail.com wrote: thanks for your reply.. :) i think it's iperf.. i installed /usr/ports/benchmarks/iperf port. where can i find iperf2? my machines are both FreeBsds but i can't find iperf2 in my ports collection.. Bad memory - its iperf3. There is no port at this time. You find it at: http://code.google.com/p/iperf/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Throughput test with iperf...
hi everyone, this might be a bit off-topic but i am really confused and in need of your helps.. :( i need to understand what exactly iperf does while testing network throughput? i'm trying to run a throughput+frame loss test on a router using iperf, and i am really confused with the definitions given for throughput and packet-loss and iperf output.. as i have seen through my searches, throughput is the maximum transfer rate at which we have no packet loss, so i thought i have to rerun iperf for different transfer rate(in udp test), so i reach maximun rate while having no drops... but i have seen test videos in which they ran iperf once, with maximum bandwidth of the line, and just used the reported throughput and packet loss as the required result! what's on? does iperf calculate the throughput independent from packet-loss? and why is it reporting it named as bandwidth?? thank you all.. Kind regards, takcoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
which performance test tool to use?
Hi everyone, I need and am trying to find a way to run reliable performance tests on my Network nodes. I am looking for proper BSD-Based tools, which give me information about my systems' throughput, latency, packet-drop and alike in the performance test family... Would you please share your experiences with me? It would be really kind of you t do so; Thank you all in advance. Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: telnet authentication using RADIUS
hi again.. pardon me, but I still have not find anything to solve my problem with using pam/telnetd.. my problem is: I need pam.d/telnetd to be always used as telnet aaa configs.. but when a non-sra telnet connection is created, pam.d/login is used for that telnet session's aaa configurations.. is there any way to do an integration? any ideas?? please let me know of any point you may know about this.. thank you so much :) Best Regards, takCoder On Wed, Aug 14, 2013 at 2:38 PM, takCoder tak.offic...@gmail.com wrote: hi all, I need to apply radius authentication for my remote connections. For ssh, I have no problems, as I use pam.d/sshd file to add pam_radius.so entry.. but for telnet I've faced a problem.. as I have seen, for non-SRA telnet connections, telnet authentication will be done via pam.d/login rather than pam.d/telnetd.. and this depends on telnet client as well rather than just my server.. I need it to always apply pam.d/telnetd file for all telnet authentications, so i can separate my remote authentication policies from local ones.. am I right with the facts I said above about telnet? Do you know of any tip or trick on this?? any ideas are really appreciated.. Thank you :) Best Regards, t.a.k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
which pam.d config does telnetd use for authentication when SRA is activated?
Hi all, how can I apply radius authentication for all possible types of freebsd telnet connections? I am trying to use pam_radius.so for my remote authentication. when I add auth sufficient pam_radius.so to pam.d/sshd file, it works fine and authentication is done via radius servers. If i run telnetd(via inetd) with -X sra option (or if second machine does not support SRA), if I add mentioned line to pam.d/login file, it correctly uses radius servers for authentication.. but if SRA connection is set, it seems that authentication is done kinda locally.. in both of these telnet connections, it seems pam.d/telnetd authentication config is not applied.. am i right?? then why?! Excuse me for including different questions in one email.. but i found them all related to my need.. Thank you all for your helps and ideas. Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
any way to stop boot2 from waiting for keypress at system startup
Hi Everyone, i wanna stop boot2 from getting a input string to change default boot point.. is there any way around, other than changing boot2.c source code to disable this feature?? As you may know, on system-startup, if you press any key, you will see the following prompt, waiting for you to enter related string: FreeBSD/x86 boot Default: 0:ad(0,a) boot: I checked it and found out that i can change boot2.c file to disable this section.. but I'd rather find another way.. Would you please let me know whether there are any other ways to do so? Thank you all in advance :) Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: any way to stop boot2 from waiting for keypress at system startup
Thank you for your quick reply. :) Unfortunately, no.. the option you are talking about is for limitting or disabling beastie menu waiting time, and i am using the option you mention as well.. I wait to disable a feature one step before that.. before even loading kernel.. i just don't know what exactly its name is.. but it's just at the beginning of boot2 procedure; it waits for 3 seconds for user input and if you press any key, it shows you the prompt i mentioned and so on.. if there is no key-press, the normal process will go on.. Best Regards, t.a.k On Tue, Jul 2, 2013 at 11:10 AM, Polytropon free...@edvax.de wrote: On Tue, 2 Jul 2013 11:05:22 +0430, takCoder wrote: Hi Everyone, i wanna stop boot2 from getting a input string to change default boot point.. is there any way around, other than changing boot2.c source code to disable this feature?? As you may know, on system-startup, if you press any key, you will see the following prompt, waiting for you to enter related string: FreeBSD/x86 boot Default: 0:ad(0,a) boot: I checked it and found out that i can change boot2.c file to disable this section.. but I'd rather find another way.. Would you please let me know whether there are any other ways to do so? Without having checked it, but is this what you are searching for? In /boot/loader.conf: autoboot_delay=-1 From /boot/defaults/loader.conf: Delay in seconds before autobooting, set to -1 if you don't want user to be allowed to interrupt autoboot process and escape to the loader prompt, set to NO to disable autobooting I'm using autoboot_delay=1 to limit the time which the system is waiting before continuing the boot process. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: any way to stop boot2 from waiting for keypress at system startup
i found the answer! if i add a -n parameter to /boot.config file, the mentioned feature will be disabled.. On Tue, Jul 2, 2013 at 11:16 AM, takCoder tak.offic...@gmail.com wrote: Thank you for your quick reply. :) Unfortunately, no.. the option you are talking about is for limitting or disabling beastie menu waiting time, and i am using the option you mention as well.. I wait to disable a feature one step before that.. before even loading kernel.. i just don't know what exactly its name is.. but it's just at the beginning of boot2 procedure; it waits for 3 seconds for user input and if you press any key, it shows you the prompt i mentioned and so on.. if there is no key-press, the normal process will go on.. Best Regards, t.a.k On Tue, Jul 2, 2013 at 11:10 AM, Polytropon free...@edvax.de wrote: On Tue, 2 Jul 2013 11:05:22 +0430, takCoder wrote: Hi Everyone, i wanna stop boot2 from getting a input string to change default boot point.. is there any way around, other than changing boot2.c source code to disable this feature?? As you may know, on system-startup, if you press any key, you will see the following prompt, waiting for you to enter related string: FreeBSD/x86 boot Default: 0:ad(0,a) boot: I checked it and found out that i can change boot2.c file to disable this section.. but I'd rather find another way.. Would you please let me know whether there are any other ways to do so? Without having checked it, but is this what you are searching for? In /boot/loader.conf: autoboot_delay=-1 From /boot/defaults/loader.conf: Delay in seconds before autobooting, set to -1 if you don't want user to be allowed to interrupt autoboot process and escape to the loader prompt, set to NO to disable autobooting I'm using autoboot_delay=1 to limit the time which the system is waiting before continuing the boot process. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: any way to stop boot2 from waiting for keypress at system startup
Yes you are right :) If i knew the feature's name, it would be easier to find this option out.. Actually i found mentioned flag while tracing boot2.c code... Anyway, Thank you for your complete reply :) On Wed, Jul 3, 2013 at 6:35 AM, Polytropon free...@edvax.de wrote: On Tue, 2 Jul 2013 15:18:04 +0430, takCoder wrote: i found the answer! if i add a -n parameter to /boot.config file, the mentioned feature will be disabled.. Sorry for my confusion. The option you've successfully found is documented in man 8 boot (which also provides a short description of the stages performed at system boot). That's why it's good to know how the different components of the boot process are named so it becomes more logical where to search. :-) From the manual page: -nignore key press to interrupt boot before loader(8) is invoked. Explained: However, it is possible to dispense with the third stage altogether, either by specifying a kernel name in the boot block parameter file, /boot.config, or, unless option -n is set, by hitting a key during a brief pause (while one of the characters -, \, |, or / is displayed) before loader(8) is invoked. Booting will also be attempted at stage two, if the third stage cannot be loaded. It's always good to know where thine documentation is. ;-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Telnet SRA login related issue
Hi all, My question may sound dummish, excuse me, but would you please tell when exactly is telnet sra authentication involved?? For example, is it possible to telnet to a Freebsd machine via a Win node and set the connection to use SRA? or this is something in Freebsd world? As i see, when I telnet to my Freebsd machine from another Freebsd machine, SRA authentication get involved, and changes to pam.d/telnetd auth phase are applied on the session; but when i telnet to my machine from a Win node, using putty or Windows telnet client or SecureCRT as telnet client, SRA auth is not involved; pam.d/telnetd changes are not applied and pam.d/login changes are applied instead (just like when i use -X sra for telnetd to disable SRA and it uses system login). As i checked, for example putty doesn't have any config to use sra.. It would be really kind of you to let me know what is exactly happening here.. Thank you.. Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Telnet SRA login related issue
Excuse me i just founded similar thread on the list which says: SRA is a login sequence that encrypts the password (something that regular telnet doesn't do). It's only is activated if the other end advertises itself as a telnet server. http://lists.freebsd.org/pipermail/freebsd-questions/2010-August/220796.html the second part of my question now seems to be off-list.. Sorry for sending repeated and off-list question before enough googling.. On Thu, Jun 20, 2013 at 1:22 PM, takCoder tak.offic...@gmail.com wrote: Hi all, My question may sound dummish, excuse me, but would you please tell when exactly is telnet sra authentication involved?? For example, is it possible to telnet to a Freebsd machine via a Win node and set the connection to use SRA? or this is something in Freebsd world? As i see, when I telnet to my Freebsd machine from another Freebsd machine, SRA authentication get involved, and changes to pam.d/telnetd auth phase are applied on the session; but when i telnet to my machine from a Win node, using putty or Windows telnet client or SecureCRT as telnet client, SRA auth is not involved; pam.d/telnetd changes are not applied and pam.d/login changes are applied instead (just like when i use -X sra for telnetd to disable SRA and it uses system login). As i checked, for example putty doesn't have any config to use sra.. It would be really kind of you to let me know what is exactly happening here.. Thank you.. Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: apply /etc/ttys changes on system
Thank you all for your replys. :) Why is kill -HUP 1 unsafe? It's documented in init's manpage: Line status (on, off, secure, getty, or window information) may be changed in the ttys(5) file without a reboot by sending the signal SIGHUP to init with the command ``kill -HUP 1''. On receipt of this signal, init re-reads the ttys(5) file. You are right, it is in the man page. I just wanted to preserve my machine from facing possible side-effects this command may cause, which i may not be aware of, if possible.. If one tty's tc has been changed and i run *kill -HUP 1* command, any current session on that tty will be forcibly closed; but not for those with same tty configs as before. At least, i may loose things, according to the loss of open sessions(though not having faced any problems during tests till now). i know i am responsible for the time of running this command, but do all child PIDs exit normally? I have heard of unwanted reactions on other OS es because of this command, but not for FreeBSD (at least till now).. Or init q As i heard, this command is just the same as kill -HUP 1. Does init q have any difference with the other one, in any aspects?? FWIW, I've used kill -HUP 1 on FreeBSD for reloading /etc/ttys since roughly 1997. No repercussions. Ever. Not once. It wasn't until sometime in the early 2000s that I found init(8) mentioning you could do init q instead, so since then I've done that. That's the experience! good to hear about that.. Anyhow, i think i will try init q from now on. At least seems more handy :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD maximum password length
Thank you all for the points you mentioned around this topic. On Mon, Jun 17, 2013 at 3:44 PM, Mark Felder f...@feld.me wrote: There isn't a max password length as far as I'm aware, ... On Jun 17, 2013, at 7:47 AM, Eduardo Morras wrote: If I remember well, any password longer than default size is truncated, so passwords a) ' AhN12Njufsn8794432kjfvsnkkJHNDSMNDKh844mNJKnhjhu8u8424' b) 'AhN12Njufsn8794432kj' have the same salt hash value and both validate the user. My test machine is currently an old 8.2 one, but the final machine may be upgraded. on this machine, if i enter a password longer than 128 characters, extra characters will be exactly trimmed. So, the final password for any user with a greater-equal input password string, with same first 128 characters, would be the first 128characters. has this been changed in Freebsd 8.3+ to what you explained, Eduardo, or this is the respected behavior? or i am wrong somewhere? Thank you :) On Tue, Jun 18, 2013 at 7:12 AM, Michael Sierchio ku...@tenebras.comwrote: I know this may seem off-the-wall to some, but I pasted a hashed password for a user under 9.1 into the /etc/passwd entry for that user on an 8.3 machine, and auth continues to work properly. That's nice. - M ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
apply /etc/ttys changes on system
Hi all, Is there any way to apply /etc/ttys changes on system, except for *restarting system*and *running kill -HUP 1* command ? Due some reasons, i need to change tc value of some of my ttys, periodically. I'm looking for a safer way than *kill -HUP 1* command. So, as this command is not a good one to be used often, any ideas are really appreciated. I couldn't find any other one so far.. Thank you :) Best regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
FreeBSD maximum password length
Hi Everyone, As i googled it, there is no maximum limitations for users' password length by default.. But we may use *pam_passwdqc* module with *max* option to check it when required. And i've heard that no-maximum-limits for passwords length is only possible when we keep them in encrypted form not as plain text, which i think is matched with FreeBSD behavior. Am i right? Is that all about maximum password length in FreeBSD? Did i miss something?? Thank you for all your helps and ideas :) Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD maximum password length
Thank you, Mark, for your helpful answer :) yes, i am aware of the max username length of 16characters.. I just wanted to become sure about password max length, cause i need to moderate it in my self-built user interface.. Thank you again :) On Mon, Jun 17, 2013 at 3:44 PM, Mark Felder f...@feld.me wrote: There isn't a max password length as far as I'm aware, but there is a max username length that drive me insane sometimes. I should really file a PR about that... __**_ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-**questionshttp://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-** unsubscr...@freebsd.org freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD maximum password length
Thank you, Lowell, for your reply. :) And i've heard that no-maximum-limits for passwords length is only possible when we keep them in encrypted form not as plain text, which i think is matched with FreeBSD behavior. Is plain-text passwords even a supported behaviour? I didn't think it was. I meant i think FreeBSD does not use plain-text passwords, so we won't have a limitation for that reason.. excuse me for my poor english. _PASSWORD_LEN is the defined limit. It's 128 characters by default but could be changed at compile time. There may be other limits, such as in various versions of NIS. ... I'm not sure I understand what you're doing, so I don't have any real advice, but I don't see why 128 characters would be that hard to deal with. I need to moderate the input password in my system's user interface. And I believe i have tested longer passwords than that, about 1000 characters long, and there was no limitations, via using this command in a /bin/sh test shell script : echo PASSWORD | pw user mod USER -h 0. at least there was no errors reported by *pw*. i did not test the user myself.. and it somehow seems correct, as the encrypted output string may be not a function of the input string, based on the method used. Thank you :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
getting system's telnet sessions' pid per pty
Hi everyone :) Do you have any ideas how i can separate telnet session's pid per pty it uses ?? i have written a reporter shell which prints out all current remote sessions' pid per tty per user. My shell uses 'pstree' tool together with 'w' command outputs to do so. Everything is fine. I just can't figure it out when one user makes more than one telnet session to my system! i have all of that user's telnet sessions' pids, but i can not figure it out to which pts they are related. if only i could trust on increasing pid assignment!! then i could use time entry in 'w' command's output to relate them.. Also, I'd rather not to keep old data of the time each session is created in a common structure to use it later on as well, i am trying to generate this list dynamically, based on current sessions available while calling my shell, using the tty which runs it.. any ideas? any other command line tools which may help me?? any command which gives me pid per tty information or alike? Looking forward to any helpful points and ideas from you all.. :) Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pwd.db/spwd.db file corupption when having unsafe system poweroff
First, thank you for your quick and complete reply :) then: Furthermore, file system corruption due to an abrupt cut of power should be avoided. Whenever the system comes up in a non-clean state, fsck should be run first, _then_ the boot process should continue. Still it's possible that this process leaves truncated files behind (e. g. the binary database files with a length of zero, which implies they will have to be rebuilt by pwd_mkdb). i added fsck_background=no to rc.conf but i still see the error.. and i don't see any differance in system startup output! how should i know it's working?? Alternatively to pw, you could try adduser, which is more an interactive program, but can perform the same tasks. Again, it would take care of updating all required files. This is the situation one would expect after the program ended, or at least some seconds after one got back to the root prompt. when i tried using adduser, when a error occurs(like multiple definition of a username), it's pw who reports the errors! it means that adduser also uses pw.. is this functionality of taking care of updating all required files, an add-on appeared in add-user?? During the 2 minutes, you could use programs like lsof (it's in ports) to check if a program has a file open, so you could capture the power off while writing to file incident. i tried using lsof as well , but there was no differance.. yes! when i use pw -h 0 parameter, 10 extra files are added to the lsof list.. but exactly after i enter the password, all of them are closed(none of these files are of those main 5 files of users..lib files and alike..).. and in later monitoring with lsof, i could not catch the time when these files are in use!.. i'll write a shell to monitor it more detailed though.. After you could not login again, did you check the files involved in the login process? yes, file sizes are ok but pwd.db and swpd.db are out of use..(also once i opened passwd with nano and it had irrational characters..). always if i use pwd_mkdb or just replace these two files, in next startup system will come up fine! now there is something special about my own servers, which i'm suspicious of.. i've add an executable file to my /usr/local/etc/rc.d dir, which tries to initiate some parts of myserver.. this includes usernames as well.. i mean, i may have template users during system uptime, which i won't need in next startup.. this initiliazer will remove those unwanted users and redifine main usernames, using pw.. it works fine while having safe shutdowns but when i have the bug-generator scenario, it won't work.. may it be the conflict of running my initializer and fsck ? or is it true that rc.d files are executed in shutdown process as well? is shutdown process started when i start pressing power button for 4 seconds?? i don't know what else to think of... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pwd.db/spwd.db file corupption when having unsafe system poweroff
Excuse me again.. i was trying to test the situation explained here, so i just defined a user with pw command, waited for 2minutes and then power off the system.. Again i couldn't login anymore.. if we assume that, pw is still working with db files after 2 minutes, the question is that, is it usual for a command to keep db files busy, this long?? or is it pw problem? or is t something else that i'm missing?? thank you :) Best Regards, t.a.k On Thu, Apr 18, 2013 at 9:10 PM, takCoder tak.offic...@gmail.com wrote: hi again, real thanks to all of you; for really complete and clear answers.. it's amazing to have a clear view of what's on, when you need to deal with it. :) as a quick conclusion, for now: 1- i inserted a shell file to /usr/local/etc/rc.d/ which runs pwd_mkdb /etc/master.passwd and tested it.. the error mentioned in this email's title is no more seen in frequent tests.. (but i don't think it's that good to use a mkdb command this frequently.. right? for me, it was somehow a test..) 2- the notes mentioned about fsck was nice.. cause before this, we've faced uncleaned FS in the mentioned condition and we where in doubt where the automate fsck had gone?? ;) i think it's better to test the foreground fsck just in case.. for sure, background fsck has its own benefits.. but, any benefits has its own costs.. :) 3- this power-key functionality setting, is what i'll work on, as it seems helpful, in near future.. but, i think for this thread, it would be off-topic somehow to talk about its details.. i'll try to write them back, on related thread, if required and if it was new.. BTW, it was _really_ of hardware knowledge.. ;) again, thank you. :) Best Regards, t.a.k On Wed, Apr 17, 2013 at 8:05 PM, Polytropon free...@edvax.de wrote: Allow me a few additions: On Tue, 16 Apr 2013 16:45:59 -0400, Michael Powell wrote: Pressing the power button for 4 seconds as described is invoking the ACPI layer to stimulate call(s) down to the system BIOS. No. In most (but of course not all) default settings the long press will forcedly (and with _no_ message to the OS) turn off the system's power. The short press will emit the ACPI signal to the OS to deal with the power-off sequence itself. Still it's possible to have a different programming for the button. For example, it seems to be common to have this button perform a ACPI sleep, ACPI hibernate or ACPI powersafe mode on short press, and (as you mentioned) the ACPI power down on long press. But as I said: _What_ the button actually does is defined in the CMOS setup. http://en.wikipedia.org/wiki/Advanced_Configuration_and_Power_Interface#Power_states have a look at this page to find out more about the various possible signals (power states). Whatever is set in the BIOS wrt to power control and various power-savings modes are passed through the ACPI layer. The problem with this is the acpi module in FreeBSD may, or may not, be a perfect implementation for every possible piece of hardware in existance. This statement especially applies in regards to laptops, where closing the lid can also trigger a specific signal, and opening the device again sends another signal. Vendors don't agree on how to properly do this, so there are many different ACPI implementations. % ls /boot/kernel/acpi* /boot/kernel/acpi.ko* /boot/kernel/acpi_ibm.ko* /boot/kernel/acpi_aiboost.ko* /boot/kernel/acpi_panasonic.ko* /boot/kernel/acpi_asus.ko* /boot/kernel/acpi_sony.ko* /boot/kernel/acpi_dock.ko* /boot/kernel/acpi_toshiba.ko* /boot/kernel/acpi_fujitsu.ko* /boot/kernel/acpi_video.ko* /boot/kernel/acpi_hp.ko*/boot/kernel/acpi_wmi.ko* You can see from this example that FreeBSD only supports a subset of what can be considered possible. Of course there are many fields of compatibility, but it may still result in specific hardware not working properly -- mostly in the area of laptops and their accessories (like docking stations). The piece of that which really concerns me are individual manufactuer BIOS quirks can be just enough 'off' so as to misbehave even when the FreeBSD acpi implentation is basically sound. Even though I did not experience that myself, it can be considered possible. A sloppy ACPI implementation can be the source of many kinds of trouble, even involving such simple devices like a power button. The jist of this is (IMHO here - YMMV) is I consider it a bad procedure to turn off a server as you've described. Definitely. :-) Use the shutdown command properly instead. I would never do what your coworker did to any of my servers. A mechanicl protection could prevent that. Caveat being sometimes you have no other choice but to do a hard power-down. A hard power-down is done by using the switch on the power supply, and not using the ACPI/BIOS from pressing the power switch on the front. This is also
Re: pwd.db/spwd.db file corupption when having unsafe system poweroff
hi again, real thanks to all of you; for really complete and clear answers.. it's amazing to have a clear view of what's on, when you need to deal with it. :) as a quick conclusion, for now: 1- i inserted a shell file to /usr/local/etc/rc.d/ which runs pwd_mkdb /etc/master.passwd and tested it.. the error mentioned in this email's title is no more seen in frequent tests.. (but i don't think it's that good to use a mkdb command this frequently.. right? for me, it was somehow a test..) 2- the notes mentioned about fsck was nice.. cause before this, we've faced uncleaned FS in the mentioned condition and we where in doubt where the automate fsck had gone?? ;) i think it's better to test the foreground fsck just in case.. for sure, background fsck has its own benefits.. but, any benefits has its own costs.. :) 3- this power-key functionality setting, is what i'll work on, as it seems helpful, in near future.. but, i think for this thread, it would be off-topic somehow to talk about its details.. i'll try to write them back, on related thread, if required and if it was new.. BTW, it was _really_ of hardware knowledge.. ;) again, thank you. :) Best Regards, t.a.k On Wed, Apr 17, 2013 at 8:05 PM, Polytropon free...@edvax.de wrote: Allow me a few additions: On Tue, 16 Apr 2013 16:45:59 -0400, Michael Powell wrote: Pressing the power button for 4 seconds as described is invoking the ACPI layer to stimulate call(s) down to the system BIOS. No. In most (but of course not all) default settings the long press will forcedly (and with _no_ message to the OS) turn off the system's power. The short press will emit the ACPI signal to the OS to deal with the power-off sequence itself. Still it's possible to have a different programming for the button. For example, it seems to be common to have this button perform a ACPI sleep, ACPI hibernate or ACPI powersafe mode on short press, and (as you mentioned) the ACPI power down on long press. But as I said: _What_ the button actually does is defined in the CMOS setup. http://en.wikipedia.org/wiki/Advanced_Configuration_and_Power_Interface#Power_states have a look at this page to find out more about the various possible signals (power states). Whatever is set in the BIOS wrt to power control and various power-savings modes are passed through the ACPI layer. The problem with this is the acpi module in FreeBSD may, or may not, be a perfect implementation for every possible piece of hardware in existance. This statement especially applies in regards to laptops, where closing the lid can also trigger a specific signal, and opening the device again sends another signal. Vendors don't agree on how to properly do this, so there are many different ACPI implementations. % ls /boot/kernel/acpi* /boot/kernel/acpi.ko* /boot/kernel/acpi_ibm.ko* /boot/kernel/acpi_aiboost.ko* /boot/kernel/acpi_panasonic.ko* /boot/kernel/acpi_asus.ko* /boot/kernel/acpi_sony.ko* /boot/kernel/acpi_dock.ko* /boot/kernel/acpi_toshiba.ko* /boot/kernel/acpi_fujitsu.ko* /boot/kernel/acpi_video.ko* /boot/kernel/acpi_hp.ko*/boot/kernel/acpi_wmi.ko* You can see from this example that FreeBSD only supports a subset of what can be considered possible. Of course there are many fields of compatibility, but it may still result in specific hardware not working properly -- mostly in the area of laptops and their accessories (like docking stations). The piece of that which really concerns me are individual manufactuer BIOS quirks can be just enough 'off' so as to misbehave even when the FreeBSD acpi implentation is basically sound. Even though I did not experience that myself, it can be considered possible. A sloppy ACPI implementation can be the source of many kinds of trouble, even involving such simple devices like a power button. The jist of this is (IMHO here - YMMV) is I consider it a bad procedure to turn off a server as you've described. Definitely. :-) Use the shutdown command properly instead. I would never do what your coworker did to any of my servers. A mechanicl protection could prevent that. Caveat being sometimes you have no other choice but to do a hard power-down. A hard power-down is done by using the switch on the power supply, and not using the ACPI/BIOS from pressing the power switch on the front. This is also possible. Both this _and_ the default forced power off (the long press in many defaults) equal the action of pulling the power cord. When you do have an 'uh-oh' like this, FreeBSD normally boots back into an unclean file system with corresponding whinings and complaints about how the file system(s) were not properly dismounted. This is an intended behaviour. TO prevent further damage and to make data recovery possible (worst case), the system does not try to boot by all means, just to make the (clueless) user happy. :-)
difference between cu and putty for serial connections
hi all, i'm trying to activate my custom boot0 on a headless server. i got my required results while connecting by cu, but not when i use putty to connect.. here's the scenario: one of my goals in this custom boot0 is to deactivate all keys but F2 for some reasons.. i applied required changes to the boot0.S code and applied DONLY_F_KEYS in the Makefile and changed the flags BOOT_BOOT0_FLAGS to required values and got required output using cu. but when i connect to the mentioned server using putty, my F keys don't work and i have to remove DONLY_F_KEYS in Makefile so '2' Key become available (SIO mode activated??) i don't know so much things about this sio mode here.. would someone please explain their difference to me? i have no idea.. is it related to the keymap differences? any suggestions are really appritiated.. Thank you all :) Best Regards, t.a.k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: difference between cu and putty for serial connections
nice to mention, at least for me, that changing putty keyboard settings from ESC[n~ to VT100+ solved my problem temporarily.. :) i'll work on solving my problem permanently, may be via working on keymap differences.. Thank you all :) Best Regards, t.a.k On Wed, Mar 6, 2013 at 1:24 PM, takCoder tak.offic...@gmail.com wrote: hi all, i'm trying to activate my custom boot0 on a headless server. i got my required results while connecting by cu, but not when i use putty to connect.. here's the scenario: one of my goals in this custom boot0 is to deactivate all keys but F2 for some reasons.. i applied required changes to the boot0.S code and applied DONLY_F_KEYS in the Makefile and changed the flags BOOT_BOOT0_FLAGS to required values and got required output using cu. but when i connect to the mentioned server using putty, my F keys don't work and i have to remove DONLY_F_KEYS in Makefile so '2' Key become available (SIO mode activated??) i don't know so much things about this sio mode here.. would someone please explain their difference to me? i have no idea.. is it related to the keymap differences? any suggestions are really appritiated.. Thank you all :) Best Regards, t.a.k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ssh server hashcode change on nanoBSD
On Tue, Jan 1, 2013 at 10:41 PM, Lowell Gilbert wrote: Don't top-post, please. Sorry for top-posting.. i'll try to keep an eye on it from now on :) well, cause i got my answer, let's have a conclusion: According to: On Tue, Jan 1, 2013 at 10:41 PM, Lowell Gilbert wrote: There are a number of keys involved in ssh. The host keys are used at the start of the connection to make sure that some other machine doesn't impersonate the one you wanted. and On Wed, Jan 2, 2013 at 2:22 PM, Polytropon wrote: The key received in the first step of a SSH session is the host key which identifies the host (in your case: the nanoBSD box). This key is stored in the SSH client's key database for reference because the key of a box typically does not change. .. As explained, this host key is generated when no key is found at startup. As soon as you make it permanent to your nanoBSD installation, the key will obviously stay the same, and the SSH client won't complain i made my ssh server key permanent on my nanoBSD server, by moving /etc/ssh/ files to /cfg/ssh files (i think those two files named dsa_key are enough, but in this test, i copied all files in the source dir..) and now there are no compliments from any clients, thanks to Polytropon and Lowell and Aldis. :) Cryptography in general is quite complicated, and ssh is a lot more complicated than just its cryptography. and also thank you all for your patience and good explanations :) Best Regards, t.a.k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ssh server hashcode change on nanoBSD
-- Forwarded message -- From: Aldis Berjoza graude...@yandex.com Date: Tue, Jan 1, 2013 at 2:17 PM Subject: Re: ssh server hashcode change on nanoBSD I've never used NanoBSD, but, check if ssh daemon can write to /etc/ssh/ otherwise it won't be able to save ssh_host_* keys Or you can create ssh_host keys and embed them in you NanoBSD image -- Aldis Berjoza FreeBSD addict thank you :) for the ones who know about nanobsd, i've got a /cfg on nanobsd. during nanoBsd startup, files in /etc are replaced with their new version in /cfg, if any; (as /etc is a md here). so, in the case i explained above, i just needed to copy /etc/ssh/* to /cfg/ssh/ and now, everything is fine :) Best Regards, t.a.k Best Regards, t.a.k On Tue, Jan 1, 2013 at 2:11 PM, takCoder tak.offic...@gmail.com wrote: hi everyone, i've got a nanoBSD server. when i ssh to it from another bsd system, first time everything is fine. the source bsd system asks me whether i trust my nanoSBD server or not and i apply y and the nanoBSD hash key is written in known_hosts file. everything is fine until i restart my nanoBSD server. the problem is that each time i restart my server, the source system is complaining about that i need to edit my known_hosts file cause my nanoBSD hash-code is not matched.. how can i fix this?! it really bothers me cause i think of it as a security problem.. i can't risk such things on my server.. would someone please give me a hand on this? always grateful of all your helps here :) Best Regards, t.a.k ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ssh server hashcode change on nanoBSD
thank you for the details mentioned :) but now, a questions occurred to me about this ssh key. as i don't know enough about its process, would you please tell me whether this key is a shared key for all ssh clients who send a request? or it differs as the client changes? (this question may sound a bit newbiesh, but i don't know much about the ssh process, sorry :) ) Best Regards, t.a.k On Tue, Jan 1, 2013 at 6:10 PM, Polytropon free...@edvax.de wrote: On Tue, 1 Jan 2013 14:11:21 +0330, takCoder wrote: everything is fine until i restart my nanoBSD server. the problem is that each time i restart my server, the source system is complaining about that i need to edit my known_hosts file cause my nanoBSD hash-code is not matched.. how can i fix this?! it really bothers me cause i think of it as a security problem.. i can't risk such things on my server.. You should make the key permanent (i. e. include it on the boot media you're using). In case no key is found at sshd startup, a new one will be generated - a different one each time, of course. So what you're seeing seems to be normal, even though not desired at all. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mount -u effects
nice and quick point! thanks a lot :) You could have found it out by refering to man mount. :-) yes, it seems to be right! ;) So I'd say you should always take care that write operations are finished properly (and so brought to an end) but, how to become sure my write operations are completely finished?? by obtaining some sort of sleep time before my restart command in my upgrade shell for example? or there are other special ways to do so? Best Regards, t.a.k On Tue, Dec 11, 2012 at 11:13 AM, Polytropon free...@edvax.de wrote: On Tue, 11 Dec 2012 10:55:10 +0330, takCoder wrote: via googling, i found out that i can use mount -u on the mentioned device, and then after doing whatsoever needed, when i restart my server the ro permission will be back via applying old fstab.. You could have found it out by refering to man mount. :-) but i have no idea what kind of effects it may have on my server.. i couldn't find anything but suggestions about not to use this so often.. and i really need to know why?? cause my bsd server is not allowed to be missed almost at all.. i think that because this -u option is just increasing my permissions in this case, there won't be a danger for my server. is that true?! There are _few_ side effects that _may_ apply when using the -u option. From the manual: The -u flag indicates that the status of an already mounted file system should be changed. Any of the options discussed above (the -o option) may be changed; also a file system can be changed from read-only to read-write or vice versa. An attempt to change from read-write to read-only will fail if any files on the file system are currently open for writing unless the -f flag is also specified. The set of options is determined by applying the options specified in the argument to -o and finally applying the -r or -w option. So I'd say you should always take care that write operations are finished properly (and so brought to an end). -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: getting packets on a specific port by pf
hi, suddenly this occured to my mind that, as you know, each firewall has a virtual interface on system which they listen to.. so, isn't it possible to just forward required packets from ipfw to pf's virtual if? i have to mention that this is just an all-of-a-sudden idea and i'm not sure about it's being right at all.. may be someone else can give both of us a tip on its being right or wrong?? :) regards, takCoder Best Regards, t.a.k On Thu, Nov 8, 2012 at 5:30 PM, s m sam.gh1...@gmail.com wrote: dear takcoder maybe you are right but now it is not important for me. i want to get packets by pf in order to set packet's TOS bit (packets which comes from IPFW). have you any suggestion? thanks for your attention sam On Thu, Nov 8, 2012 at 4:11 PM, takCoder tak.offic...@gmail.com wrote: hey sam, i don't know the exact answer for your question.. but a question occurred in my mind.. what's your final purpose of doing so? what do you exactly mean by the phrase to change them?? and don't you think that this sequence of firewalls has a deep effect on your system performance? in my idea this seems just like a throughput bottleneck.. isn't it so? or it's not important here? any how.. if you tell us more details about what you're looking for, may be it become more clear for guys such as me! ;) yours, takcoder On Thu, Nov 8, 2012 at 3:53 PM, s m sam.gh1...@gmail.com wrote: hello guys i have a problem with getting packets which are diverted to a specific port by PF. i mean i diverted my packets to a specific port by IPFW and want to get these packets by PF to change them. i used ipfw add 1000 divert 8000 all form any to any command to divert my packets. how can i get these packets by pf on port number 8000? pf has divert-reply option. should i use it to get packets? how? any comments or hints are really appreciated. thanks, sam ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
PAM auto Login
hi everyone, hope it to be a simple question.. is there a way to let one of PAM modules to just escape its authentication phase and have something like template_user so it uses that user's home configs and don't ask for user passwords or so? i tried pam_permit.so in sufficient mode but don't know why it does not work as required... and i don't know which entry to put after that line, so the sufficient entry won't become the last chain entry.. (cause in manuals, they said, if a sufficient entry becomes the last line, it will show abnormal behaviour when not matched or so!..) besides, it still asks for a username.. how can i just define such , somehow, default user for a pam module, like telnetd for example? need to mention that i don't want to disable other phases, if possible. Really really appriciate any ideas or suggestions :) Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: getting packets on a specific port by pf
hey sam, i don't know the exact answer for your question.. but a question occurred in my mind.. what's your final purpose of doing so? what do you exactly mean by the phrase to change them?? and don't you think that this sequence of firewalls has a deep effect on your system performance? in my idea this seems just like a throughput bottleneck.. isn't it so? or it's not important here? any how.. if you tell us more details about what you're looking for, may be it become more clear for guys such as me! ;) yours, takcoder On Thu, Nov 8, 2012 at 3:53 PM, s m sam.gh1...@gmail.com wrote: hello guys i have a problem with getting packets which are diverted to a specific port by PF. i mean i diverted my packets to a specific port by IPFW and want to get these packets by PF to change them. i used ipfw add 1000 divert 8000 all form any to any command to divert my packets. how can i get these packets by pf on port number 8000? pf has divert-reply option. should i use it to get packets? how? any comments or hints are really appreciated. thanks, sam ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: define a default username for logging in
Hi again, Really Thank You for your tricky advice.. it was a Nice one(and seems to be the Only one!).. :) sorry for late reply; it took me a while to become sure i got no other ways that bothering you again.. the suggested way seems to work, but i've got a problem: how can i apply these settings on pts devices?! i mean, how can i disable login on pts devices to continue the rest? do you have any idea?? i tried the same format in /etc/ttys, but it didn't work.. i could not find any tips via googling as well.. so.. :) you know, it's not that important to be able to use all 999 enabled pts devices on my server! i can abound them if there is a file such as /etc/ttys for per pty device configurations.. looking forward to receive your ideas. Thanks in Advance :) takCoder On Sat, Apr 7, 2012 at 12:39 PM, Polytropon free...@edvax.de wrote: On Sat, 7 Apr 2012 12:21:57 +0430, takCoder wrote: Hi All :) i'm trying to find a way to enable a required feature : to set *default username *in my Freebsd 8.2 server.. i mean, i wanna be able to login with just entering My Master Password(no usernames needed.. also prefer it to be per tty), which is *not related to my root account, *but is the password of a user which i have defined as my default user.. is it possible for, e.g. pam_login module (i couldn't find any manuals on such feature yet..), to have such a config or is there any other ways to set such default username for login? It is, but I assume my answer will just be a half of the whole story. The problem will be: no password. But maybe you can find some inspiration and then extend the procedure to fit your needs. 1. Modify /etc/gettytab as follows: default:\ ... localautologin:\ :al=USERNAME:tc=Pc: a|std.110|110-baud:\ ... where USERNAME is the name of the user you want to login as (given by the al= parameter, and inheriting the tc= settings). Make sure the user does exist in the system. 2. Modify /etc/ttys as follows: ttyv0 /usr/libexec/getty localautologin cons25 on secure and maybe change cons25 to cons25l1 (or any other value that might be required). As I said initially, this does _not_ prompt for a password! Maybe /etc/passwd's shell field allows you to add the password protection. If you're logging in remotely, ssh USERNAME@yourserver.qw.er.tzu will only prompt for a password. This idea offers an opportunity to something overcomplicated: Create a user for localautologin that is _not_ your default user name. Make this user login automatically, and into his ~/.login, place the command ssh USERNAME@localhost so right after performing the localautologin, ssh will attempt to connect to localhost _as USERNAME_ and _prompt for_ the password. Terrible, I know. :-) To milden the pain of this approach, you could allow telnet for localhost, i. e. from 127.0.0.1 to 127.0.0.1 _ONLY_ and nothing more, and use telnet instead of ssh in the ~/.login command. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
define a default username for logging in
Hi All :) i'm trying to find a way to enable a required feature : to set *default username *in my Freebsd 8.2 server.. i mean, i wanna be able to login with just entering My Master Password(no usernames needed.. also prefer it to be per tty), which is *not related to my root account, *but is the password of a user which i have defined as my default user.. is it possible for, e.g. pam_login module (i couldn't find any manuals on such feature yet..), to have such a config or is there any other ways to set such default username for login? i've googled most of the keywords i thought might be related, but haven't find any related answers except for maybe working on nsswitch.conf or master.passwd or login.conf options (which are, as you see, really *different ways, *and also none seems to be behaved per tty..) and now, i'm not quite sure whether i'm taking the correct steps or not.. and i've got a bit confused.. would anyone please helps me find the way? thanks a lot for your helps :) Best Regards, takCoder ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org