FreeBSD 4.6p2 an0 frezzing
Hello, i have problem with my freebsd 4.6p2 (i386) over an0 interface (cisco 4800 airo net pci card), If i use interface all is work, but after 15-30 min, if i not use it, shi stop work and frezzing. Need restart server to resume normal operation. Any body know what is the problem and how to fix it? Regards, Condor ___ http://www.vcable.net To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
VPN Not working
Hi all, I'm trying to setup up Tunneling VPN between two FreeBSD boxes. I have network A talking through gateway A to Network B via gateway B Network A IP Range - 192.168.11.0/24 Network B IP Range - 192.168.12.0/24 Gateway A Internal IP Address - 192.168.11.1 Gateway A External IP Address - 192.168.10.1 Gateway B Internal IP Address - 192.168.12.1 Gateway B External IP Address - 192.168.10.2 I have ip forwarding setup and with the VPN down, a machine behind the first gateway, 192.168.11.2 can ping a machine behind the second gateway, 192.168.12.2. As soon as I start the VPN up though, they can't talk at all any more. Not ssh, not ping, not anything. I am using the following scripts on Gateway A and B respectively to start my VPN #!/bin/bash setkey -c EOF spadd 192.168.11.0/24 192.168.12.0/24 any -P out ipsec \ ah/tunnel/192.168.10.1-192.168.10.2/require ; spadd 192.168.12.0/24 192.168.11.0/24 any -P in ipsec \ ah/tunnel/192.168.10.1-192.168.10.2/require ; add 192.168.10.1 192.168.10.2 ah-old 0x10003 -m any \ -A keyed-md5 this is the test add 192.168.10.2 192.168.10.1 ah-old 0x10004 -m any \ -A keyed-md5 this is the test #!/bin/bash setkey -c EOF spadd 192.168.12.0/24 192.168.11.0/24 any -P out ipsec \ ah/tunnel/192.168.10.1-192.168.10.2/require ; spadd 192.168.11.0/24 192.168.12.0/24 any -P in ipsec \ ah/tunnel/192.168.10.1-192.168.10.2/require ; add 192.168.10.1 192.168.10.2 ah-old 0x10003 -m any \ -A keyed-md5 this is the test add 192.168.10.2 192.168.10.1 ah-old 0x10004 -m any \ -A keyed-md5 this is the test Anyone have any ideas ? TIA, -- - Wayne Pascoe Yoohoo... I'll make you famous To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
CONSIDER THIS
ATTN: THE PRESIDENT/CEO SIR, I AM ANTONIO SAVIMBI JR, SON OF THE LATE ANGOLAN OPPOSITION LEADER OF NATIONAL UNION FOR THE TOTAL INDEPENDANCE OF ANGOLA (UNITA) DR JONAS SAVIMBI WHO WAS KILLED IN A CLASH WITH THE GOVERNMENT TROOPS ON FRIDAY, FEBRUARY, 22ND 2002 IN THE MEXICO PROVICES OF EAST-CENTRAL ANGOLA. UNITA HAS BEEN FIGHTING AGAINST THE LUANDA COMMUNIST BACKED GOVERNMENT SINCE 1975 WITH THE HELP OF UNITED STATES OF AMERICA AND OTHER WESTERN SUPPORT. HE WAS FACTUAL MURDER BY THE BETRAYAL AND TREACHARY BETWEEN HIS KEY LIEUTENENTS. BUT SOMEHOW IT IS A PRICE TO PAY FOR PEACE IN ANGOLA AND A CROSS-FOR PEACE MY FAMILY HAS TO BEAR FOREVER. A SACRIFICE MY LATE FATHER LEFT OVER US$486,000,000.00 AND ESTIMATED US$162,000,000.00 WORTH OF DIAMOND IN THE UNITAS COFFER. THE ANGOLA GOVERNMENT HAS DISBANDED UNITA AND CURRENTLY BEEN DISARMED AND DEMOBILISE. I CURRETLY HAVE THE SUM OF THIRTY-FIVE MILLION UNITED STATES DOLLARS (US$35,000,000.00) OF MY LATE FATHER IN MY POSSESSION WHICH I SUCCESSFUL AND SAFELY DEPOSITED IN A TRUST SECURITY FIRM IN THE NEIGHBORING SOUTH AFRICAN COUNTRY WITH OPRATIONAL HEADQUATERS IN LONDON. DUE TO THE CURRENT SITUATION IN MY COUNTRY CONCERNING GOVERNMENT ATTITUDE TOWARDS MY FAMILY, IT HAS BECOME QUITE IMPOSSIBLE FOR ME TO MAKE USE OF THIS MONEY WITHIN NOR HAVE FREEDOM TO TRAVEL NOW, THIS, I SEEK YOUR CO-OPERATION AND ASSISTANCE TO TRANSFER THIS MONEY OUT OF THIS TRUST FIRM TO ANY COUNTRY OF YOUR CHOICE FOR SAFE INVESTMENT PURPOSE. I AM INTERESTED IN INVESTING IN PROPERTIES, STOCKS, SHARES, DIVERSIFY INTO INDUSTRIES JUDICIOUSLY WITH YOU/YOUR COMPANYS EXPERT GUIDIANCE. BEARING IN MIND THAT YOUR ASSISTANCE IS NEEDED TO TRANSFER THIS FUND, I PROPOSE A COMMISSION OF 25% OF THE TOTAL SUM TO YOU FOR THE EXPECTED SERVICES AND CO-OPERATION. IT IS 100% RISK-FREE AND DOES NOT RELATE TO ANY BREACH OF LAW OR PROCEED FROM DRUG OR ANY GOVERNMENT MONEY. NO-RECORD EVER EXISTED OR TRACEBLE BY GOVERNMENT OR ANY PERSON. BUT THE TRANSACTION MUST BE HANDLE WITH EXTRA ORDINARILY PERSONAL. PLEASE IF YOU ARE WILLING TO ASSIST CARRY OUT THIS TRANSACTION, CONTACT ME DIRECTLY FOR MORE DETAILED THROUGH THIS E-MAIL ADDRESS:[EMAIL PROTECTED] THANKS AND REGARDS ANTONIO SAVIMBI JR. TREAT AS URGENT To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Sendmail: non-relay secure
* Steve Warwick [EMAIL PROTECTED] [20021031 05:19]: Hi, I have sendmail / qpopper running on a production machine and have yet to figure out a way to open mail up to my client sin a secure way. [snip] Is there a way to do this that will not open my machine up to abuse? POP-before-SMTP. Open to abuse depends on your definition, but it is generally safe: in order for someone to send unauthorized mail through your smtp server, they would have to spoof the IP address from where your client is connecting within a small time frame (tipically 10 min.) I use qmail (http://cr.yp.to/qmail.html) and relay-ctrl (http://untroubled.org/relay-ctrl/). If you are holding virtual domains (and mail accounts), you might also want to try vmailmgr (http://untroubled.org/relay-ctrl/). I use this software to serve several virtual domains without a hitch. qvb -- pica To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
RE: Sendmail: non-relay secure
I recommend you use SMTP AUTH if your mail clients support it. There is some info on sendmail.org: http://www.sendmail.org/~ca/email/auth.html Cheers, Barry -- Barry Byrne, IT Manager, WBT Systems, Block 2, Harcourt Centre Harcourt Street, Dublin 2, Ireland -Original Message- From: [EMAIL PROTECTED] [mailto:owner-freebsd-questions;FreeBSD.ORG]On Behalf Of Steve Warwick I have sendmail / qpopper running on a production machine and have yet to figure out a way to open mail up to my client sin a secure way. Eg. Client logs in from aol.com to check and send mail. Is there a way to do this that will not open my machine up to abuse? To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
stragne output from dmesg
I type dmesg and get this output. I didn't get this before. Could someone tell me what this means? fd0c: hard error writing fsbn 1 of 1-3 (No status) fd0c: hard error writing fsbn 7 of 7-9 (No status) fd0c: hard error writing fsbn 10 of 10-12 (No status) fd0c: hard error writing fsbn 16 of 16-18 (No status) fd0c: hard error writing fsbn 2549 (No status) fd0c: hard error writing fsbn 1 of 1-3 (No status) fd0c: hard error writing fsbn 7 of 7-9 (No status) arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 Limiting closed port RST response from 282 to 200 packets per second Limiting closed port RST response from 380 to 200 packets per second Limiting closed port RST response from 388 to 200 packets per second Limiting closed port RST response from 392 to 200 packets per second Limiting closed port RST response from 392 to 200 packets per second Limiting closed port RST response from 392 to 200 packets per second Limiting closed port RST response from 257 to 200 packets per second Limiting closed port RST response from 203 to 200 packets per second arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 acd0: PLAY_MSF command timeout - resetting ata1: resetting devices .. done arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 pid 21808 (fluxbox), uid 1001: exited on signal 6 (core dumped) arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 acd0: PLAY_MSF command timeout - resetting ata1: resetting devices .. done arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 --- E-Mail: Bryan Cassidy [EMAIL PROTECTED] Operating System: FreeBSD 4.6.2 Gaim: bsdsys Yahoo Messenger: bsdsys Please do not simply Reply-To: Bryan Cassidy [EMAIL PROTECTED] It is OK to Cc: me as long as you send the Reply back To: the original mailing lists. I have put alot of time in setting up filters so please don't simply reply to me unless I tell you to or send you one directly. _ | ___| __ ___ ___| __ ) ___|| _ \ | |_ | '__/ _ \/ _ \ _ \___ \| | | | | _|| | | __/ __/ |_) |__) | |_| | |_| |_| \___|\___|//|/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: make buildworld fails
Chris Pressey wrote: On Wed, 30 Oct 2002 23:41:49 +0200 Giorgos Keramidas [EMAIL PROTECTED] wrote: On 2002-10-29 19:26, Chris Pressey [EMAIL PROTECTED] wrote: On Tue, 29 Oct 2002 14:28:39 + Matthew Seaman [EMAIL PROTECTED] wrote: I think what has happened is that one or more of the Makefiles in the src tree hasn't been updated properly, possibly because cvsup(1) doesn't think it owns the file. Try doing what the cvsup FAQ says, and running an update with the 'list=cvs:RELENG_4' added to the supfile. With any luck you should see updates to files matching '*.mk' and 'Makefile*', and then the build will succeed. Unfortunately, no luck there. No Makefile-type files were updated. So, I toasted my *entire* source tree (including the 'checkouts' files) and grabbed it all anew, tried rebuilding the world... and got the same error. To start with as clean an environment as possible for a buildworld you really have to do more than that: + Remove everything under /usr/obj. # chflags -R noschg /usr/obj # rm -fr /usr/obj/* I did this step a couple of days ago, just before my first post to this list. To be on the safe side, I did it again before the most recent attempt. + CVSup your sources. I did this step yesterday. + Start a new buildworld. Avoid using -DNOCLEAN or similar flags. I've done this now with NO_OPENSSH=true in make.conf, but I *still* get errors! I had the exact same results when I tried NO_OPENSSH=true. Kernel wouldn't compile. Seems like kernel is broken with NO_OPENSSH=true. Compile with OPENSSH and use sshd_program=/usr/local/sbin/sshd at ur rc.conf if you are trying to use the new sshd. U will also need to change the PATH so that /usr/local/. comes first. Its not the proper way but still, its a workaround. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
mistake in vmemoryuse
Hi All, Every 5 minutes I can see the message about vmemoryuse. It's from logs: Oct 29 01:25:00 mybsd /usr/sbin/cron[517]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:30:00 mybsd /usr/sbin/cron[520]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:31:00 mybsd /usr/sbin/cron[523]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:35:00 mybsd /usr/sbin/cron[528]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:40:00 mybsd /usr/sbin/cron[531]: getting vmemoryuse resource limit: Invalid argument My system: FreeBSD mybsd 4.5-RELEASE FreeBSD 4.5-RELEASE #0: Wed Oct 23 00:00:56 MSD 2002 vasily@:/usr/obj/usr/src/sys/RASKERN i386 What have I do to solve problem? -- Best regards, Vasily [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: SMP Trouble on Compaq ML-530.
As I can record, I did upgrade scsi card firmware (it was a Compaq Smart Array 332) and Proliant's firmware also. Then switched from Unixware to Linux on bios and both processors came up. This specific machine were locking-up his networking, but I think this were another issue (bug on nic) and now it runs a Red Hat MySQL server, it has a workaround for the nic. Also, notice: my Proliant is not a G2, it uses 2xXeon 800 only. Robert B. wrote: Dear list, I have seen that there is building issue with Compaq's SMP boards. I would like to add my story to it in hopes of receiving some help. Compaq ML-530 2.2GHz P4 Xeon 4.7-RELEASE Locking up at point of launching 2nd CPU. I have tried to use different OS's in the BIOS, e.g. Netware SMP, Linux, etc. to no avail. Currently running with a non-smp kernel and will wait patiently watching the lists for any solutions that appear working. If you need any more information please e-mail me and I will answer to the best of my ability. [ ]'s -- Marcio Merlone To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: make buildworld fails
I've done this now with NO_OPENSSH=true in make.conf, but I *still* get errors! I had the exact same results when I tried NO_OPENSSH=true. Kernel ^World wouldn't compile. Seems like kernel is broken with NO_OPENSSH=true. ^World Compile with OPENSSH and use sshd_program=/usr/local/sbin/sshd at ur rc.conf if you are trying to use the new sshd. U will also need to change the PATH so that /usr/local/. comes first. Its not the proper way but still, its a workaround. :-))) To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
cvsup-mirror and collections
I'm using the cvsup-mirror port to create an unofficial mirror for use within a private network with limited connectivity. Local machines will cvsup various releases from this repository. Before using cvsup-mirror I disabled gnats and www. Now I see that the docs are not updating in my repository. Here's what I have: drwxr-xr-x6 cvsupin cvsupin 1536 Oct 31 22:33 CVSROOT drwxr-xr-x3 cvsupin cvsupin 512 Oct 20 21:20 distrib drwxr-xr-x 38 cvsupin cvsupin 1024 Oct 20 21:47 doc drwxr-xr-x 58 cvsupin cvsupin 1536 Oct 31 22:40 ports drwxr-xr-x 24 cvsupin cvsupin 1024 Oct 31 23:02 src drwxr-xr-x 12 cvsupin cvsupin 512 Oct 21 04:37 www Now maybe all I have to do is tell it to get docs-all, but I'm asking about it first in case I've done something wrong because I'm surprised that docs wouldn't be in the default setup for a mirror. Is this what I should expect to see? -- Regards, -*Sue*- http://www.sievx.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
ADMTek AN983
I searched the archives for an answer to this question, and, although it has been asked a few times, I didn't see any answers, so I thought I would try again. In fact, someone a couple of months ago asked about the very same motherboard I have. I just picked up an MSI MS-6378 board, which has an onboard NIC. It is an ADMTek AN983. I moved my hard drive over from the old machine (fairly painless, just fixing up fstab), but when booting GENERIC, the NIC didn't work. It was recognized just fine, although I'm pretty sure the MAC address is wrong. It says it is 07:00:07:00:07:00. I added back the NIC I had in my old box (an Network Anywhere), that is, actually, the same kind of NIC, and all is well. I'd like to use the built in one to access my internal network now, though. Here's the appropriate dmesg output: dc0: ADMtek AN985 10/100BaseTX port 0xdc00-0xdcff mem 0xd800-0xd80003ff irq 10 at device 8.0 on pci0 dc0: Ethernet address: 00:04:5a:5a:fb:d2 miibus0: MII bus on dc0 ukphy0: Generic IEEE 802.3u media interface on miibus0 ukphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto dc1: ADMtek AN985 10/100BaseTX port 0xe000-0xe0ff mem 0xd8001000-0xd80013ff irq 11 at device 15.0 on pci0 dc1: Ethernet address: 07:00:07:00:07:00 miibus1: MII bus on dc1 One thing to note is that USB the builtin NIC share IRQ 11. Does FBSD support that? And here's the current output of ifconfig: dc0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 inet 66.92.76.224 netmask 0xff00 broadcast 66.92.76.255 inet6 fe80::204:5aff:fe5a:fbd2%dc0 prefixlen 64 scopeid 0x1 ether 00:04:5a:5a:fb:d2 media: Ethernet autoselect (100baseTX) status: active dc1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 inet6 fe80::204:5aff:fe5a:fbd2%dc1 prefixlen 64 scopeid 0x2 inet 0.0.0.0 netmask 0xff00 broadcast 255.255.255.255 ether 07:00:07:00:07:00 media: Ethernet autoselect (100baseTX full-duplex) status: active dc0 is the working NIC, while dc1 is the builtin, non-functioning NIC. Is the full-duplex part wrong? It doesn't have an inet address in this output, but I've using ifconfig to assign one and it doesn't help. Like I said, the identical setup worked with the old NIC. -- Jonathan Arnold Software Engineer inSORS Integrated Communications, Inc [EMAIL PROTECTED] Office/fax: 781.391.2818 To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
why my kernel log always said: /kernel: IPv4 ESP input: no key associationfound for spi xxxxxx
running racoonipsec on my FBSD4.6-STABLE.the kernel log always sai /kernel: IPv4 ESP input: no key association found for spi and the worsed problem is that : sometime my box can not connect to the other peers for long time before restart racoon. especially, if two peers restart racoon on same time , It would connected soon? what's the problem? any help with appreciates: PS: here's my racoon.conf log notify; path pre_shared_key /usr/local/etc/racoon/psk.txt ; listen{ isakmp xxx.xxx.xxx.xxx [500]; } remote anonymous { #exchange_mode main,aggressive; exchange_mode aggressive,main; doi ipsec_doi; situation identity_only; nonce_size 16; lifetime time 2 hour;# sec,min,hour initial_contact on; support_mip6 on; proposal_check obey;# obey, strict or claim proposal { encryption_algorithm 3des; hash_algorithm sha1; authentication_method pre_shared_key ; dh_group 2 ; } } sainfo anonymous { pfs_group 2; lifetime time 1 hour; encryption_algorithm 3des ; authentication_algorithm hmac_sha1; compression_algorithm deflate ; } To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: SSH x11 forwarding of netscape
[ -redirected to -questions where it belongs] Michael C. Cambria wrote: Hi, I've just starting using SSH for X11 forwarding from one FreeBSD 4.6-Stable machine to another. One is home, the other in the office. I've been successfull doing this with most programs I've tried. The man page suggests ssh -f host xterm, but in my case I need to also supply '-X' (as in ssh -X -f host xterm), but other than the '-X', most programs I've tried work. The goal is to be able to run mail etc. from home or (several) office, keeping all the folders etc. in one place, on the home machine. From the office, when I try netscape, things don't work. The command issued from my work system is ssh -X -f home netscape. Not only does netscape not start, Mozilla does! Worse yet, Mozilla starts not on the remote machine, but on the local one. Running netstat on both machines confirms this observation, as does looking at local files from mozilla. What happened if you type ssh -X yourmachine, login and then type netscape ? Hope that helps Marc To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: make (build options)
Lute, You will want to invoke the following: make -DWITH_PSPELL install I apologize, but I don't know where this is/might be documented. However, it's a pretty general rule that you can go into any ports directory and look through the Makefile. Scan for if defined or if !defined, etc. In the sylpheed-claw port Makefile, there is a menu of options that are shown when compilation begins. NOTE: In some ports you will want to set variables, such as make WITH_GIMP=yes install Which is not the same thing as defining a variable (in case you don't already know this). Good luck, Alex On Thu, 2002-10-31 at 07:49, Lute Mullenix wrote: Hi there, I have been installing most of my software via the ports, and for the most part it been a simple matter of: make install clean however now I would like to install sylpheed-claws with the pspell option, and even though I have been through the info on make about three times still can't get it to work. Could someone please at least point me to some more docs so I can get this silly thing to compile the way I want it? Please CC me as I don't subscribe to the list, thanks. Lute ** Triple Boot: * FreeBSD 4.6 RELEASE * Debian GNU/Linux 3.0 * Windows ME * ** To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
make (build options)
Hi there, I have been installing most of my software via the ports, and for the most part it been a simple matter of: make install clean however now I would like to install sylpheed-claws with the pspell option, and even though I have been through the info on make about three times still can't get it to work. Could someone please at least point me to some more docs so I can get this silly thing to compile the way I want it? Please CC me as I don't subscribe to the list, thanks. Lute ** Triple Boot: * FreeBSD 4.6 RELEASE * Debian GNU/Linux 3.0 * Windows ME * ** To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Freebsd, Apache and .htacess files
On Wed, Oct 30, 2002 at 03:26:11PM +0100, Erik Mattsson wrote: Hi Ive installed the apache-1.3.26_3 port and trying to get it to work with TWiki (an intranet discussion/note board). But I cant limit the access of the sites. Ive made the following test: created a test dir in the DocumentRoot directory. In this directory Ive created a index.html file that the browser can acess. But now I want to limit the access to the test directory by adding a .htaccess file in the dir. The .htaccess file looks like this: AuthName restricted stuff AuthType Basic AuthUserFile /usr/local/twiki/data/.htpasswd require valid-user And the AutgUserFile look like this: TWikiGuest:zK.G.uuPi39Qg But I can reach the /test/ directory anyways even though it should be restricted. I dont even get a Dialog wanting user/password details. What is wrong, the strange thing is that Ive used the same .htaccess and .htpasswd files on a netbsd and got it to work. But now I cant get it to work on my freebsd box. Can anyone help me ? Hi erik, check your AllowOverride directive in your httpd.conf. I had the same problem because it was set to 'none'. cheers, tom To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Kerberos5 PAM Question
Moving up the pam_krb5 in the sshd section helped to a point. The problem turned out to be having ChallengeResponseAuthentication set to yes in the sshd_config. It seems it got into calling the pam authentication module 2x thus confusing it and no ticket file was written. The way I figured this out was ssh from an older system with OpenSSH 2.9 installed (which doesn't have the ChallengeResponseAuthentication as a possible feature) and the ticket file was written fine. Thanks, --geeb At 08:38 +0200 30 October 2002, D. Penev dpenev wrote: On Tue, Oct 29, 2002 at 08:10:11AM -0500, Mark A Gebert wrote: Date: Tue, 29 Oct 2002 08:10:11 -0500 From: Mark A Gebert [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Kerberos5 PAM Question Under FreeBSD4.7, I installed the pam_krb5 port (compiled with MIT Kerberos) and I'm trying to get it to generate a ticket file with sshd (with UsePrivilegeSeparation set to yes). I get authenticated fine into the system: Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) initialize_method: pam_sm_authenticate Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) initialize_method: allocating pam_krb5_state Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) dumping state Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) option: debug Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) option: use_first_pass Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) option: require_keytab Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) option: ccache=%u Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) state: user=`geeb' Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) state: service=`sshd' Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) initialize_method: success Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) pam_sm_authenticate: resolve_principal: Success Oct 29 08:05:05 lart2 sshd[301]: (pam_krb5) pam_krb5_get_authtok: no pre-existing password Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) pam_sm_authenticate: krb5_get_init_creds_password: Success Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) pam_sm_authenticate: pam_krb5_store_tgt: Success Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) pam_krb5_verify_tgt: Success Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) pam_sm_authenticate: result for user `geeb': Success Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) initialize_method: pam_sm_acct_mgmt Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) dumping state Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) option: debug Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) option: use_first_pass Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) option: require_keytab Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) option: ccache=%u Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) state: STATE_AUTH_COMPLETED Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) state: princ_name=`[EMAIL PROTECTED]' Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) state: user=`geeb' Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) state: service=`sshd' Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) state: princ exists Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) state: ccache exists Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) initialize_method: success Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) pam_sm_acct_mgmt: result for user `geeb': Success Oct 29 08:05:18 lart2 sshd[301]: (pam_krb5) cleanup_state Oct 29 08:05:18 lart2 sshd[299]: Accepted keyboard-interactive/pam for geeb from 66.93.1.55 port 2142 ssh2 But no ticket file: klist klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_4465) Kerberos 4 ticket cache: /tmp/tkt4465 klist: You have no tickets cached The line in /etc/pam.conf is: sshdauthrequiredpam_krb5.so use_first_pass ccache=%u require_keytab debug I had such kind of problems with pam_krb5 login and I resolve them as move pam_krb5 to be first in pam stack. I've generated a host/lart2.thugsrus.net and a sshd/lart.thugsrus.net key but to no avail. Any help is appreciated. --geeb -- Mark Gebert [EMAIL PROTECTED] It takes a Viking to raze a village! To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- Regards, D. Penev -- To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
switch languages
I need to switch languages (English, French, Italian) very often within the same document. Is there some way to switch keyboard layouts on FreeBSD quickly and painlessly as can be done on Windows? On Windows, hiting Left Shift + Alt switches between keyboards. An alternate way of entering accented or strange characters (on Windows) is to hold down Alt and enter the ASCII codes from the number pad, e.g. Alt - 0233 produces é. What options are there in FBSD - Unix? Thanks for any help. PJ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
regarding php installation
Hello, Well I have apache2+mod_php4 installed. Still my apache server does not execute php scripts (it just sends them as plain text). After installing mod_php4 i didn't modify anything in httpd.conf. Should I? As i can tell the module is loaded. Why is the server not running the scripts? Regards, Razvan __ Do you Yahoo!? HotJobs - Search new jobs daily now http://hotjobs.yahoo.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: regarding php installation
On Thu, 31 Oct 2002, Rotaru Razvan wrote: Date: Thu, 31 Oct 2002 06:41:45 -0800 (PST) From: Rotaru Razvan [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: regarding php installation Hello, Well I have apache2+mod_php4 installed. Still my apache server does not execute php scripts (it just sends them as plain text). After installing mod_php4 i didn't modify anything in httpd.conf. Should I? As i can tell the module is loaded. Why is the server not running the scripts? Regards, Razvan Assuming it's the same setup as 1.2.x you need to tell the server what type of files to interpret as php. See the comments in the file, search it for 'php'. JB # John Bleichert # http://vonbek.dhs.org/latest.jpg To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Sendmail: non-relay secure
On Wed, 30 Oct 2002, Steve Warwick wrote: I have sendmail / qpopper running on a production machine and have yet to figure out a way to open mail up to my client sin a secure way. Eg. Client logs in from aol.com to check and send mail. Is there a way to do this that will not open my machine up to abuse? One thing you might want to keep in mind is that some clients may not be able to even connect to your SMTP server. A lot of ISPs (ie: AOL, Bell Sympatico) and carriers (ie: UUNet, Bell Nexxia) do not allow their dial-up users to connect to third party servers on port 25. I believe that AOL forwards any connections on port 25 to their own servers. Sympatico simply drops port 25 packets to anywhere other than their servers. I know for a fact that UUNet and Bell Nexxia require their resellers to keep an up-to-date list of their SMTP servers, which is applied in a filter to drop packets for any other servers. One workaround is you could put your SMTP daemon on another port. I think that the best solution is to have your clients use their ISPs outgoing mail mserver. If they travel a lot and/or have different ISPs, a VPN might be an idea as well. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: regarding php installation
From: John Bleichert [EMAIL PROTECTED] To: Rotaru Razvan [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, October 31, 2002 8:45 AM Subject: Re: regarding php installation On Thu, 31 Oct 2002, Rotaru Razvan wrote: Date: Thu, 31 Oct 2002 06:41:45 -0800 (PST) From: Rotaru Razvan [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: regarding php installation Hello, Well I have apache2+mod_php4 installed. Still my apache server does not execute php scripts (it just sends them as plain text). After installing mod_php4 i didn't modify anything in httpd.conf. Should I? As i can tell the module is loaded. Why is the server not running the scripts? Regards, Razvan Assuming it's the same setup as 1.2.x you need to tell the server what type of files to interpret as php. See the comments in the file, search it for 'php'. JB # John Bleichert That's pretty much it. Load_Module, Add_Module, and AddType application should get it. Do your scripts have the .php extension? Kevin Kinsey, DaleCo, S.P. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: make buildworld fails
On 2002-10-30 19:12, Chris Pressey [EMAIL PROTECTED] wrote: On Wed, 30 Oct 2002 23:41:49 +0200 Giorgos Keramidas [EMAIL PROTECTED] wrote: + Remove everything under /usr/obj. # chflags -R noschg /usr/obj # rm -fr /usr/obj/* + CVSup your sources. + Start a new buildworld. Avoid using -DNOCLEAN or similar flags. I've done this now with NO_OPENSSH=true in make.conf, but I *still* get errors! cc -O -pipe -o ppp acf.o arp.o async.o auth.o bundle.o cbcp.o ccp.o chap.o chat.o command.o datalink.o deflate.o defs.o exec.o filter.o fsm.o hdlc.o iface.o ip.o ipcp.o ipv6cp.o iplist.o lcp.o link.o log.o lqr.o main.o mbuf.o mp.o ncp.o ncpaddr.o pap.o physical.o pred.o probe.o prompt.o proto.o route.o server.o sig.o slcompress.o sync.o systems.o tcp.o tcpmss.o throughput.o timer.o tty.o tun.o udp.o vjcomp.o nat_cmd.o atm.o id.o chap_ms.o mppe.o radius.o i4b.o ether.o -lcrypt -lmd -lutil -lz -lalias -lcrypto -lradius -lnetgraph radius.o: In function `demangle': radius.o(.text+0xd1): undefined reference to `rad_request_authenticator' radius.o(.text+0x102): undefined reference to `rad_server_secret' radius.o: In function `radius_Process': radius.o(.text+0x84d): undefined reference to `rad_get_vendor_attr' radius.o: In function `radius_Authenticate': radius.o(.text+0x1217): undefined reference to `rad_put_vendor_attr' radius.o(.text+0x12a3): undefined reference to `rad_put_vendor_attr' radius.o(.text+0x1323): undefined reference to `rad_put_vendor_attr' *** Error code 1 Odd. This should work fine. Try backing up your data and installing a -RELEASE version (preferrably 4.6.2-RELEASE). It's obvious that your build system is at least, uhm, non-standard. If that doesn't work either, you can ask around in freebsd-stable to see if other people have similar problems. But this is very unlikely with -STABLE. Giorgos. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
IPSEC tunnel help
Hi all, I'm struggling to setup a VPN. I'm now reading through http://www.daemonnews.org/200101/ipsec-howto.html and this is confusing me even more :( Reading this, I see: However, if your goal is to set up a VPN, that is, link 2 widely-separated networks together over the Internet, then you'll probably want to use ESP/tunnel mode. The example then goes on to show spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/transport/1.2.3.4-5.6.7.8/require; which is transport mode, no ? Can anyone point me at a decent howto to link 2 networks together? I'm trying to setup 2 VPN gateways so that everything behind each of those talks to everything behind the other one via a VPN. I'm also confused about the ifconfig instructions for the gif0 device. I've got 2 network cards going with one being the external device (172.16.0.1 and 172.16.0.2 respectively) and the other for the internal network (10.0.1.1 and 10.0.2.1 respectively) What should my gifconfig and ifconfig lines be ? -- - Wayne Pascoe Microsoft complaining about the source license used by Linux is like the event horizon calling the kettle black - adamba on k5 To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: switch languages
At 04:18 PM 10/31/2002 +, you wrote: I have to slap my own hands - dumb. I was not clear - When I say I have to switch languages, I am using OpenOffice (trying to replace MS Ofc) and have to use text and graphics in the same document. So, I don't think that I could use emacs since it is a text only editor. The carbonbased lifeform [EMAIL PROTECTED] shocked freebsd-questions with: I need to switch languages (English, French, Italian) very often within the same document. Is there some way to switch keyboard layouts on FreeBSD quickly and painlessly as can be done on Windows? Why not install emacs and leim? Use menu-Options-Mule and select language environment to European-latin-9. Then toggle the input method from the same menu and pick the default. Now you can type ~c and get a c cedille and 'e to automatically get an e accent aigu. To find the exact keybindings, pick Describe Input Method from the same menu. Easy as pie! -- Ban All Sigs!! To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSEC tunnel help
On Thu, Oct 31, 2002 at 03:37:52PM +, Wayne Pascoe wrote: Hi all, I'm struggling to setup a VPN. I'm now reading through http://www.daemonnews.org/200101/ipsec-howto.html and this is confusing me even more :( Reading this, I see: However, if your goal is to set up a VPN, that is, link 2 widely-separated networks together over the Internet, then you'll probably want to use ESP/tunnel mode. The example then goes on to show spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/transport/1.2.3.4-5.6.7.8/require; which is transport mode, no ? Yes, this is transport mode. AFAIK the article describes a situation where you encapsulate the packets using IPIP (gif tunnel), which is then encapsulated using ESP (transoprt mode). Not sure this is a correct impression and if yes, why. Can anyone point me at a decent howto to link 2 networks together? I'm trying to setup 2 VPN gateways so that everything behind each of those talks to everything behind the other one via a VPN. I'm also confused about the ifconfig instructions for the gif0 device. I've got 2 network cards going with one being the external device (172.16.0.1 and 172.16.0.2 respectively) and the other for the internal network (10.0.1.1 and 10.0.2.1 respectively) What should my gifconfig and ifconfig lines be ? Last time I tried I just used spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/tunnel/1.2.3.4-5.6.7.8/require; and an analogous line for the other direction. And, surprise, it worked. I think. mf -- What do you care what other people think? msg07251/pgp0.pgp Description: PGP signature
Re: regarding php installation
DaleCo Help Desk wrote: From: John Bleichert [EMAIL PROTECTED] To: Rotaru Razvan [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, October 31, 2002 8:45 AM Subject: Re: regarding php installation On Thu, 31 Oct 2002, Rotaru Razvan wrote: Date: Thu, 31 Oct 2002 06:41:45 -0800 (PST) From: Rotaru Razvan [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: regarding php installation Hello, Well I have apache2+mod_php4 installed. Still my apache server does not execute php scripts (it just sends them as plain text). After installing mod_php4 i didn't modify anything in httpd.conf. Should I? As i can tell the module is loaded. Why is the server not running the scripts? Regards, Razvan Assuming it's the same setup as 1.2.x you need to tell the server what type of files to interpret as php. See the comments in the file, search it for 'php'. JB # John Bleichert That's pretty much it. Load_Module, Add_Module, and AddType application should get it. Do your scripts have the .php extension? Try adding the following in your httpd.conf: IfModule mod_php4.c AddType application/x-httpd-php .php .php4 .php3 .phtml AddType application/x-httpd-php-source .phps /IfModule To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
FreeBSD 4.7 on IBM Thinkpad T20
Hello, I have installed FreeBSD 4.7 on an IBM Thinkpad T20. But I can't get X-Windows to start up on it. I keep getting the No Screens Found error. The Thinkpad has a Savage/Mx video card with 4MB of video memory. Has anyone else run into this problem before ? I would appreciate help on this one. Thanks. _ Unlimited Internet access for only $21.95/month. Try MSN! http://resourcecenter.msn.com/access/plans/2monthsfree.asp To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSEC tunnel help
On Thursday 31 October 2002 10:37 am, Wayne Pascoe wrote: Hi all, I'm struggling to setup a VPN. I'm now reading through http://www.daemonnews.org/200101/ipsec-howto.html and this is confusing me even more :( Reading this, I see: However, if your goal is to set up a VPN, that is, link 2 widely-separated networks together over the Internet, then you'll probably want to use ESP/tunnel mode. The example then goes on to show spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/transport/1.2.3.4-5.6.7.8/require; which is transport mode, no ? Can anyone point me at a decent howto to link 2 networks together? I'm trying to setup 2 VPN gateways so that everything behind each of those talks to everything behind the other one via a VPN. I'm also confused about the ifconfig instructions for the gif0 device. I've got 2 network cards going with one being the external device (172.16.0.1 and 172.16.0.2 respectively) and the other for the internal network (10.0.1.1 and 10.0.2.1 respectively) What should my gifconfig and ifconfig lines be ? I have this running. I made a couple .sh files, which I placed in /usr/local/etc/rc.d . Here is what they look like. They should answer your questions, hopefully.. xxx.xxx.xxx.xxx is the IP of the host that is running this file, yyy.yyy.yyy.yyy is the host at the other end. The other end's file is the same, reversing the outside and inside IP's. You will also need to do some routing perhaps, because the source ip of the machines on the other LAN will show up as 10. addresses. You don't need gif support compiled in, the module will load. Hope this helps, Jim #!/bin/sh ifconfig gif0 create # These commands need to be run on node A # Set up the tunnel device. This presumes you have gif(4) support # gif0 connects xxx.xxx.xxx.xxx to yyy.yyy.yyy.yyy gifconfig gif0 xxx.xxx.xxx.xxx yyy.yyy.yyy.yyy # The 'internal' side of the tunnel connects 10.10.10.1 to 10.20.20.1 ifconfig gif0 inet 10.10.10.1 10.20.20.1 netmask 255.255.255.0 # The next 2 lines delete all existing entries from the SPD and SAD setkey -FP setkey -F # Add the policy setkey -c EOF spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/transport/xxx.xxx.xxx.xxx-yyy.yyy.yyy.yyy/require; spdadd 10.20.20.0/24 10.10.10.0/24 any -P in ipsec esp/transport/yyy.yyy.yyy.yyy-xxx.xxx.xxx.xxx/require; EOF To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSEC tunnel help
Jim Durham [EMAIL PROTECTED] writes: I have this running. I made a couple .sh files, which I placed in /usr/local/etc/rc.d . Here is what they look like. They should answer your questions, hopefully.. xxx.xxx.xxx.xxx is the IP of the host that is running this file, yyy.yyy.yyy.yyy is the host at the other end. The other end's file is the same, reversing the outside and inside IP's. You will also need to do some routing perhaps, because the source ip of the machines on the other LAN will show up as 10. addresses. You don't need gif support compiled in, the module will load. Thanks a stack for that ! :) -- - Wayne Pascoe If you can't dazzle them with brilliance, riddle them with bullets. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
WL200, new card support, PD6729
Up to a certain point (4.1 or so) it was possible to get a WL200 (which is a WL100 wireless pcmcia with a PD6729 pcmcia-pci bridge afaik) to work on FreeBSD. In 4.7 and -CURRENT it consistently will either hang at boot, hang after detection or not function, whilst emmitting wi0 watchdog timeout and init attempts. I noticed that there is now a new hw.pcic.pd6729_intr_path I assume this is identical to hw.pcic.intr_path but specific to this bridge ? Secondly - does anyone have a config which works for 4.7 or -CURRENT with the WL200 ? Or hints on BIOS settings. We tried combinations of: - BIOS - plug and play - always set to no PCI AUTO assign to specific IRQ ISA auto matchin manual assign on PCI slot - pccard.conf was updated to match above. - loader.conf: hw.pcic: - ignore_function_1 yes/no init_path any 0 caused an early hang pd6729_int_path 0,2 hang, 1 boot through - irq polling or manual to mach bios. Old functional config on 4.1: hw.pcic.intr_path=1 hw.pcic.irq=0 hw.pcic.ignore_function_1=1 Any suggestions of what to try ? Or what dmesg/info to provide to dig deeper into this ? Dw To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
REQUEST FOR INVESTMENT ASSISTANCE.
From.MR.AKU WILLISON DUKE. Lot 140 Petit Marche, 10 Bp. Abidjan 10,Koumassi, Cote d' Ivoire,West Africa. Dear, REQUEST FOR INVESTMENT ASSISTANCE. Permit me to inform you of my desire of going into business relationship with you. Introducing myself , I am MR.AKU WILLISON DUKE the only son of the late Mr and Mrs Barnabas DUKE , my father was a gold and cocoa merchant based in Accra, Ghana and Abidjan (Ivory Coast ),he was poisoned to death by his business associates on one of their business trips. Before the death of my father on 29th June 2001 in a private hospital here in Abidjan. He secretly called me on his bedside and told me that he has a sum of USD$12.5M Twelve Million five hundred thousand U.S), deposited in Bank in Abidjan Cote D' Ivoire, that he used my name as his only son for the next of kin in depositing of the fund. He also explained to me that it was because of this wealth that he was poisoned by his business associates, that I should seek for a foreign partner in a country of my choice where I will transfer this money and use it for investment purpose such as expansion of his existing cocoa business and real estate management overseas. Please, I am humbly seeking your assistance in the following ways. 1- To assist me in providing an account of yours where this fund can quietly transferred. 2-To serve as the guardian of this fund since I am still in the secondary school. 3) To make arrangement for me to come over to your country to further my education and to help secure a residential permit in your country. 4.TO come down to abidjan in three working visit Moreover, I am willing to offer you 15% of the total sum as compensation for your effort/ Input after the successful transfer of this fund to your nominated account overseas, while 5% will be set aside to offset any expenses we may incure Furthermore, you can indicate your option towards assisting me as I believe that this transaction would be concluded within the shortest possible time if you signify interest to assist me. NB: Please call /contact me immediately you receive this message through the above contact if you are interested. Best Regards MR.AKU W DUKE _ Gagne une PS2 ! Envoie un SMS avec le code PS au 61166 (0,35 Hors coût du SMS)
Re: FreeBSD 4.7 on IBM Thinkpad T20
On Thu, 31 Oct 2002, KD Rajkumar wrote: Date: Thu, 31 Oct 2002 16:03:03 + From: KD Rajkumar [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: FreeBSD 4.7 on IBM Thinkpad T20 Hello, I have installed FreeBSD 4.7 on an IBM Thinkpad T20. But I can't get X-Windows to start up on it. I keep getting the No Screens Found error. The Thinkpad has a Savage/Mx video card with 4MB of video memory. Has anyone else run into this problem before ? I would appreciate help on this one. Thanks. Did you run xf86config to set it up? That chipset is supported by XFree86. JB # John Bleichert # http://vonbek.dhs.org/latest.jpg To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSEC tunnel
(sorry, lost the exact subject...) On Thu, Oct 31, 2002 at 11:03:22AM -0500, Jim Durham wrote: On Thursday 31 October 2002 10:37 am, Wayne Pascoe wrote: I have this running. I made a couple .sh files, which I placed in /usr/local/etc/rc.d . Here is what they look like. They should answer your questions, hopefully.. xxx.xxx.xxx.xxx is the IP of the host that is running this file, yyy.yyy.yyy.yyy is the host at the other end. The other end's file is the same, reversing the outside and inside IP's. = You will also need to do some routing perhaps, because the source ip of the machines on the other LAN will show up as 10. addresses. You don't need gif support compiled in, the module will load. Hope this helps, Jim #!/bin/sh ifconfig gif0 create # These commands need to be run on node A # Set up the tunnel device. This presumes you have gif(4) support # gif0 connects xxx.xxx.xxx.xxx to yyy.yyy.yyy.yyy gifconfig gif0 xxx.xxx.xxx.xxx yyy.yyy.yyy.yyy # The 'internal' side of the tunnel connects 10.10.10.1 to 10.20.20.1 ifconfig gif0 inet 10.10.10.1 10.20.20.1 netmask 255.255.255.0 # The next 2 lines delete all existing entries from the SPD and SAD setkey -FP setkey -F # Add the policy setkey -c EOF spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/transport/xxx.xxx.xxx.xxx-yyy.yyy.yyy.yyy/require; spdadd 10.20.20.0/24 10.10.10.0/24 any -P in ipsec esp/transport/yyy.yyy.yyy.yyy-xxx.xxx.xxx.xxx/require; EOF It would probably be nicer if you used gif_interfaces=3Dgif0 gifconfig_gif0=3Dxxx.xxx.xxx.xxx yyy.yyy.yyy.yyy ifconfig_gif0=3Dinet 10.10.10.1/32 10.20.20.1 ipsec_enable=3DYES in /etc/rc.conf and spdadd 10.10.10.0/24 10.20.20.0/24 any -P out ipsec esp/transport/xxx.xxx.xxx.xxx-yyy.yyy.yyy.yyy/require; spdadd 10.20.20.0/24 10.10.10.0/24 any -P in ipsec esp/transport/yyy.yyy.yyy.yyy-xxx.xxx.xxx.xxx/require; in /etc/ipsec.conf. (I know, this is undocumented. Search for ipsec_enable in /etc/rc.network)o Your solution can lead to problems if something needs IPSEC before scripts from /usr/local/etc/rc.d are run (eg. NFS over IPSEC, as in my case) mf -- What do you care what other people think? msg07260/pgp0.pgp Description: PGP signature
IPSEC ping from other side
Dear freebsd experts, I have set up a VPN with racoon/ipsec on Freebsd 4.7 using tunneling with ESP transport. By using the setkey -D command, on my side the peer seems connected while on the other direction no connection has been established. Pinging the other side is not possible from my point. If the other peer (currently a CISCO 3662 ROUTER) pings my ip then the VPN connection is instantly established and the whole VPN is up-and-running giving me the ability now to ping the other peer. How can I avoid waiting for a human on the other size to ping me and have the vpn successfully connect without human intervention? Best Regards, Ion __ Do you Yahoo!? HotJobs - Search new jobs daily now http://hotjobs.yahoo.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
FBSD and GDM startup?
How would I go about starting GDM on boot. I looked through the handbook and im unable to find documentation To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
-current NIS client with -stable server
I have a NIS server running on a -stable machine, and a client running -stable too, everything is all ok Now I'd like to add a new -current machine after I set domainname, rpcbind, and run ypbind I can use ypcat and ypmatch to check if I can connect to the server but if I tried to login to the -current machine, server report error messages as follows : Oct 31 14:41:23 ns1 ypserv[84721]: access to master.passwd.byname denied -- client XXX.XXX.XXX.XXX:Y not privileged are NIS on -stable and -current not compatible ? or is there anything I have to set ? -- Testing can show the presence of bugs, but not their absence. --- Edsger W. Dijkstra msg07263/pgp0.pgp Description: PGP signature
Intel PCI Modem
Hello! I have an Intel V92 HaM Data Fax Voice Modem. It is a hardware based modem. Mi pnpbios recognizes it as Simple COMM. controler IRQ12. I would like to hack sio.c in order to get it working. Therefore I think I should add an entry to pci_ids[] like: {hex x, Intel V92 HaM Data Fax Voice, hex y} But I do not know what are hex x and hex y, or if it is going to work. With dmesg I can see this: pci0 unknown card (vendor=0x1813, dev=0x4000) at 9.0 irq 12 And if I do pciconf -l: none0@pci0:9:0: class=0x078000 card=0x chip=0x40001813 rev=0x02 hdr=0x00 My questions are: * What are hex x and hex y? * If I hack sio.c like I intend to, is my modem going to work? * If so, would be the following line correct in my kernel configuration file: devicesio2 at isa? port IO_COM3 irq 12 ? Please, I will appreciate very much your help. I would like very much to connect to Internet so I can build ports, ftp, telnet, :-) Best regards, Braulio Solano To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Intel PCI Modem
Hi! About this: I have an Intel V92 HaM Data Fax Voice Modem. It is a hardware based modem. Mi pnpbios recognizes it as Simple COMM. controler IRQ12. I would like to hack sio.c in order to get it working. Therefore I think I should add an entry to pci_ids[] like: {hex x, Intel V92 HaM Data Fax Voice, hex y} But I do not know what are hex x and hex y, or if it is going to work. With dmesg I can see this: pci0 unknown card (vendor=0x1813, dev=0x4000) at 9.0 irq 12 And if I do pciconf -l: none0@pci0:9:0: class=0x078000 card=0x chip=0x40001813 rev=0x02 hdr=0x00 I have found that my modem is in /usr/share/misc/pci_vendors, and if I do a pciconf -lv, I get: none0@pci0:9:0: class=0x078000 card=0x chip=0x40001813 rev=0x02 hdr=0x00 vendor = 'Ambient Technologies Inc' device = 'Creatix V.90 HaM Modem' class = simple comms It does not have a subclass, is this why I don't see it at boot? My questions are: * What are hex x and hex y? * If I hack sio.c like I intend to, is my modem going to work? * If so, would be the following line correct in my kernel configuration file: devicesio2 at isa? port IO_COM3 irq 12 ? Or do I need a special driver? If this is needed maybe I can try to program one, even if I have to learn lots of technical stuff. Please be gentle, I am not used to technical discussions of FreeBSD. I would like very much to see my modem working, therefore I will appreciate very much your help. Best regards, Braulio Solano Developer - Costa Rica To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: FBSD and GDM startup?
On Thu, 31 Oct 2002, Pookie wrote: Date: Thu, 31 Oct 2002 08:56:37 -0800 From: Pookie [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: FBSD and GDM startup? How would I go about starting GDM on boot. I looked through the handbook and im unable to find documentation gdm and kdm are based on XDM and an excellent discussion of all 3 is in the Handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-xdm.html (you'd never find it if you're looking for gdm ;-) JB # John Bleichert # http://vonbek.dhs.org/latest.jpg To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSEC ping from other side
On Thu, 31 Oct 2002, Ion Amigdalou wrote: Dear freebsd experts, I have set up a VPN with racoon/ipsec on Freebsd 4.7 using tunneling with ESP transport. By using the setkey -D command, on my side the peer seems connected while on the other direction no connection has been established. Pinging the other side is not possible from my point. If the other peer (currently a CISCO 3662 ROUTER) pings my ip then the VPN connection is instantly established and the whole VPN is up-and-running giving me the ability now to ping the other peer. How can I avoid waiting for a human on the other size to ping me and have the vpn successfully connect without human intervention? This is the default behaviour if you don't make a dynamic crypto map on the Cisco side. If you use a regular crypto map, only the Cisco can initiate the connection as the permit rule requires inbound packets to be encrypted. This means that if the peer (in your case, racoon) initiates Phase 1 negotiations, that clear text packet will be discarded by the Cisco, so that peer can never successfully start the negotiations. Do a search at www.cisco.com for Configuring IPSec Network Security for the article that gives greater details. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: FBSD and GDM startup?
On Thu, 31 Oct 2002, Andres Aitsen wrote: Date: Thu, 31 Oct 2002 19:45:31 +0200 From: Andres Aitsen [EMAIL PROTECTED] To: John Bleichert [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: FBSD and GDM startup? John Bleichert wrote: On Thu, 31 Oct 2002, Pookie wrote: Date: Thu, 31 Oct 2002 08:56:37 -0800 From: Pookie [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: FBSD and GDM startup? How would I go about starting GDM on boot. I looked through the handbook and im unable to find documentation gdm and kdm are based on XDM and an excellent discussion of all 3 is in the Handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/x-xdm.html (you'd never find it if you're looking for gdm ;-) JB # John Bleichert # http://vonbek.dhs.org/latest.jpg There is nothing about gdm. Take a look in /usr/ports/x11/gdm2/pkg-message : snip Andres Aitsen Doh! You're right. Did that change recently? I could swear I first learned how to setup GDM in there. KDM too, but that's still there. # John Bleichert # http://vonbek.dhs.org/latest.jpg To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
strange problem with ppp
Hello I have a strange problem with ppp. I have a ADSL connection. Since I installed 4.7 STABLE ppp looks like freezing from time to time even if the tun0 interface is up tun0: flags=8051UP,POINTOPOINT,RUNNING,MULTICAST mtu 1492 inet 80.116.25.253 -- 192.168.100.1 netmask 0x Opened by PID 69 anyway if I ping 192.168.100.1 it does not work. I have to restart ppp to make it work again... I have no clue about this, no trace of this problem in any log file... anyone got my problem too?? thanks Rick To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Booting with a MFS filesystem
I'm trying to boot from a flash with the file system loaded into an MFS filesystem. This is what the /boot/loader.rc looks like: --- load /kernel load -t mfs-root /mfsroot autoboot 0 --- The flash boot partition contains these files / kernel.gz mfsroot.gz boot/ loader loader.rc I managed to get this to work the other day, by constructing the file systems for the flash by hand, but now I'm suddenly stumped when trying to rebuild. Loading and starting the kernel works ok, but after initial boot, this happens: ... sio0: type 16550A, console sio1 at port 0x2f8-0x2ff irq 3 on isa0 sio1: type 16550A ad0: 245MB SanDisk SDCFB-256 [980/16/32] at ata0-master BIOSPIO Manual root filesystem specification: fstype:device Mount device using filesystem fstype eg. ufs:/dev/da0s1a ? List valid disk boot devices empty line Abort manual input mountroot Obviously it doesn't like to mount the MFS as root, but so far I haven't been able to figure out exactly why. The MFS was constructed basically like this: dd if=/dev/null of=mfsroot ... vnconfig -e -s labels vn2 mfsroot disklabel -w -B -b boot1 -s boot2 vn2 auto newfs -o space -m 1 /dev/vn2c # mount and populate This is more or less what /usr/src/release/scripts/doFS.sh does, I've mimicked the way the boot floppy works. Selected parts from the kernel config file: options FFS #Berkeley Fast Filesystem options FFS_ROOT#FFS usable as root device [keep this!] options SOFTUPDATES #Enable FFS soft updates support options MFS #Memory Filesystem options MD_ROOT #MD is a potential root device pseudo-device md # Memory disks Anyone have any obvious things I must have missed? -- Daniel Larsson Service Factory AB Årstaängsvägen 17 Phone: +46 70 559 41 61 signature.asc Description: This is a digitally signed message part
Re: MPlayer playing DivX (was: divxPlayer)
On Tuesday 29 October 2002 20:53, Michael Joyner wrote: Not on this box. I get a lot of distortions using mplayer playing DivX-files (encoded with mencoder), while divxPlayer does it nicely... if it don't core-dumps, that is. distortions? what kind? Like mplayer can't display the frames fast enough. Eg. looks like frame X gets displayed but halfway down frame X+1 takes over. Or perhaps some sort stop'n'go (ie. tiny stops in the flow). The CPU-load is only ~30-50% and I don't have this issue with DVD's/MPEG's. Just DivX 4/5. BTW: Do you know how to rebuild index' in divx-files permanently? The man-pages says I can do this with mencoder... but I can't find any mention on *how*? Bjarne -- Homepage: http://www.mekanix.dk To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Several Questions of variny insanity
On 2002-10-31 02:03, TooMany Mirrors [EMAIL PROTECTED] wrote: Ok, so I have a couple of questions [...] Don't post many questions in one message. Answering one question in a message is ok, but trying to answer many is usually the cause of long, twisted and complicated threads. I dual boot FreeBSD and SourceMage Linux and in FreeBSD I have SourceMage mounted under /linux for linux root and linux usr as /linux/usr etc. It came to me that what would happen if I were to issue chroot /linux in FreeBSD? Would I essentially have a linux system running without the timely reboot? That will not work. Many tools in the /linux root depend on features of the Linux kernel, and while you are booted into a FreeBSD kernel those features won't be available. You might try various tricks with the Linux compatibility of FreeBSD, but nobody can guarantee that everything will work as expected. Anyways, I am running on a small network and am tring to figure out how to name ip address so that I can do things like ssh laptop and it work. You can always install a DHCP server to one of the machines of the local network, and use dhcp-client to grab addresses off it. Then a local name server can assign whatever names you feel like to the IP addresses. That's one option. Another option is (if all the machines of the local network are running UNIX) to use /etc/hosts files that you copy around, and avoid running a local name server. Also, as I have disscused before I have a IDE CD-RW drive and can't get SCSI emulation to work, which I now just accept. But what is the eaiset way, using burncd, to make mp3s/oggs into a red book audio cd? Is there a cheat sheet, app or shell script that will do that? Read the manpage of burncd. You should be able to convert mp3 or other audio formats to .wav files and then use: # burncdd -f /dev/acd0 audio lala.wav koko.wav fixate For more details on burncd options, look at the manpage. Giorgos. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: MPlayer playing DivX (was: divxPlayer)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 (10.31.2002 @ 1110 PST): Bjarne Wichmann Petersen said, in 0.9K: Like mplayer can't display the frames fast enough. Eg. looks like frame X gets displayed but halfway down frame X+1 takes over. Or perhaps some sort stop'n'go (ie. tiny stops in the flow). end of Re: MPlayer playing DivX (was: divxPlayer) from Bjarne Wichmann Petersen Run mplayer with the -framedrop option. - -Adam - -- Adam Weinberger [EMAIL PROTECTED] [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE9wYDjo8KM2ULHQ/0RAp2uAKDZhXcIimamAExXicUsxDYzeUBg3QCgvULS nuGdqk27ctAGiN2VWBBfYkk= =bdPo -END PGP SIGNATURE- To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: mistake in vmemoryuse
On Thu, Oct 31, 2002 at 03:01:57PM +0300, Vasily wrote: Hi All, Every 5 minutes I can see the message about vmemoryuse. It's from logs: Oct 29 01:25:00 mybsd /usr/sbin/cron[517]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:30:00 mybsd /usr/sbin/cron[520]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:31:00 mybsd /usr/sbin/cron[523]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:35:00 mybsd /usr/sbin/cron[528]: getting vmemoryuse resource limit: Invalid argument Oct 29 01:40:00 mybsd /usr/sbin/cron[531]: getting vmemoryuse resource limit: Invalid argument My system: FreeBSD mybsd 4.5-RELEASE FreeBSD 4.5-RELEASE #0: Wed Oct 23 00:00:56 MSD 2002 vasily@:/usr/obj/usr/src/sys/RASKERN i386 What have I do to solve problem? It means that your userland your kernel is out of sync. You can't do a installworld without a buildkernel; similarly you can't use new kernel sources without doing an installworld. -- Jonathan Chen [EMAIL PROTECTED] -- When you don't know what you are doing, do it neatly. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: stragne output from dmesg
On Thu, Oct 31, 2002 at 05:50:33AM -0600, Bryan Cassidy wrote: I type dmesg and get this output. I didn't get this before. Could someone tell me what this means? fd0c: hard error writing fsbn 1 of 1-3 (No status) fd0c: hard error writing fsbn 7 of 7-9 (No status) fd0c: hard error writing fsbn 10 of 10-12 (No status) fd0c: hard error writing fsbn 16 of 16-18 (No status) fd0c: hard error writing fsbn 2549 (No status) fd0c: hard error writing fsbn 1 of 1-3 (No status) fd0c: hard error writing fsbn 7 of 7-9 (No status) You've got a problem with a floppy disk. arp: 12.222.160.1 moved from 00:50:0f:00:50:54 to 00:50:0f:00:50:a8 on xl0 arp: 12.222.160.1 moved from 00:50:0f:00:50:a8 to 00:50:0f:00:50:54 on xl0 Somebody moved a network card or reused an IP address [...] Limiting closed port RST response from 203 to 200 packets per second Somebody's pinging your box very rapidly. -- Jonathan Chen [EMAIL PROTECTED] --- I love deadlines. I like the whooshing sound they make as they fly by - Douglas Adams To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: MPlayer playing DivX (was: divxPlayer)
On Thursday 31 October 2002 20:13, Adam Weinberger wrote: Like mplayer can't display the frames fast enough. Eg. looks like frame X gets displayed but halfway down frame X+1 takes over. Or perhaps some sort stop'n'go (ie. tiny stops in the flow). Run mplayer with the -framedrop option. Being used, so that's not it. Bjarne -- Homepage: http://www.mekanix.dk To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
hostname ircd and jail
it seem that when i used a jail the ircd couldn t resolve hostname (but dns work fine) anyone has any idea to fix that problem ? To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: switch languages
[EMAIL PROTECTED] writes: I need to switch languages (English, French, Italian) very often within the same document. Is there some way to switch keyboard layouts on FreeBSD quickly and painlessly as can be done on Windows? Quickly and painlessly? Ha Ha. Not until you set things up on your own and assigned the switch to whatever key or menu you prefer. After you've spent a few days or weeks researching it. http://www.charvolant.org/~doug/xkb/ http://www.tsu.ru/~pascal/en/xkb/ http://www.x-docs.org/XKB/XKBproto.pdf http://www.x-docs.org/XKB/XKBlib.pdf /usr/X11R6/lib/X11/doc/html/setxkbmap.1.html /usr/X11R6/lib/X11/doc/html/xkbcomp.1.html /usr/X11R6/lib/X11/doc/html/xkbevd.1.html /usr/X11R6/lib/X11/doc/html/xkbprint.1.html /usr/X11R6/lib/X11/xkb/compiled/README I wouldn't be suprised if you'd need to work in some font stuff too. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Enlightenment, Freetype, and XFree86
It's been a few months since I did a FreeBSD install, and I'm having more trouble getting X going than I did before. Actually it's not X specifically... I think I'm ok there (it starts)... but getting Enlightenment going as my wm. I installed 4.7-Release and XFree86 4.2.0 (from ports). I tried to install Enlightenment from ports but it complained about no Freetype. So I installed Freetype2 2.1.2 from ports. But it doesn't seem to make Enlightenment happy: checking for freetype.h... no checking for freetype/freetype.h... no checking for TT_Init_FreeType in -lttf... no ERROR: Enlightenment needs a system with libttf.so (TrueType Font Library) You can obtain it from: ftp://ftp.enlightenment.org/pub/enlightenment/ ftp://www.rasterman.com/pub/enlightenment/ You can also obtain it from: http://www.freetype.org/ You can obtain some truetype fonts from: http://voyager.cns.ohiou.edu/~sadkins/web_library/fonts/font_archive/ configure: error: Fatal Error: no FreeType detected. === Script configure failed unexpectedly. Please report the problem to [EMAIL PROTECTED] [maintainer] and attach the /usr/ports/x11-wm/enlightenment/work/enlightenment-0.16.5/config.log including the output of the failure of your make command. Also, it might be a good idea to provide an overview of all packages installed on your system (e.g. an `ls /var/db/pkg`). *** Error code 1 Stop in /usr/ports/x11-wm/enlightenment. I tried scanning for libttf.so and could not find it. Does Enlightenment not work w/ Freetype2? Do I need to install Freetype 1.3.1 instead? I keep ports current w/ cvsup. = Scott I. Remick --==-- ICQ: 450152 Save the internet - Use Mozilla: http://home.adelphia.net/~sremick/mozilla/ Voici mon secret. Il est tres simple: on ne voit bien qu'avec le coeur. L'essentiel est invisible pour les yeux. __ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Enlightenment, Freetype, and XFree86
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 (10.31.2002 @ 1130 PST): Scott I. Remick said, in 2.1K: about no Freetype. So I installed Freetype2 2.1.2 from ports. But it doesn't seem to make Enlightenment happy: checking for freetype.h... no checking for freetype/freetype.h... no checking for TT_Init_FreeType in -lttf... no ERROR: Enlightenment needs a system with libttf.so (TrueType Font Library) end of Enlightenment, Freetype, and XFree86 from Scott I. Remick Install /usr/ports/print/freetype - -Adam - -- Adam Weinberger [EMAIL PROTECTED] [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE9wYt0o8KM2ULHQ/0RAkEWAJ9mA++ffzA6SKHw2GB3UTgImnUTzACeKmoM Cel5WqcdLNoL5DzZ7+sqlzw= =qLYa -END PGP SIGNATURE- To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
routed, dynamic update
Hi, how can I prevent automatic updating of routing tables where one of the flags has D (Dynamic). I tried to put routed: ALL: deny in /etc/hosts.allow, but somehow I still got entries in routing table. Thank you! To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
changing build options for ports
I was trying to build VIM on my webserver, and it started to build the X version, downloading all the X libraries, etc. This is a lights out machine, so I didn't want X on it, so I killed the build. I eventually figured out that by putting: WITHOUT_X11=1 somewhere near the beginning of my Makefile, I could force it to build w/o X11 support. With my new-found power, I began to tweak other build-time configuration options with other ports. But then I thought, you know, theres gotta be a better way to set these options than editing the Makefile. What is the best common practice to set these options? -- Soren Harward [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: changing build options for ports
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 (10.31.2002 @ 1313 PST): Soren Harward said, in 0.7K: I was trying to build VIM on my webserver, and it started to build the X version, downloading all the X libraries, etc. This is a lights out machine, so I didn't want X on it, so I killed the build. I eventually figured out that by putting: WITHOUT_X11=1 somewhere near the beginning of my Makefile, I could force it to build w/o X11 support. With my new-found power, I began to tweak other build-time configuration options with other ports. But then I thought, you know, theres gotta be a better way to set these options than editing the Makefile. What is the best common practice to set these options? end of changing build options for ports from Soren Harward /etc/make.conf and /usr/local/etc/pkgtools.con (from sysutils/portupgrade). - -Adam - -- Adam Weinberger [EMAIL PROTECTED] [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE9wZ6No8KM2ULHQ/0RAlkmAJ0fW4MPXR6bqks9jDzRB4E0NouATgCeIs43 8PEACAaVUqZRyzrVF9GEWMU= =CZN/ -END PGP SIGNATURE- To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: changing build options for ports
you can usually set compile time options in the environment before invoking make i.e. export WITHOUT_X11=true make Quoting Soren Harward [EMAIL PROTECTED]: I was trying to build VIM on my webserver, and it started to build the X version, downloading all the X libraries, etc. This is a lights out machine, so I didn't want X on it, so I killed the build. I eventually figured out that by putting: WITHOUT_X11=1 somewhere near the beginning of my Makefile, I could force it to build w/o X11 support. With my new-found power, I began to tweak other build-time configuration options with other ports. But then I thought, you know, theres gotta be a better way to set these options than editing the Makefile. What is the best common practice to set these options? -- Soren Harward [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- FreeBSD System Administrator http://manhattan.hq.dyns.cx/ - This mail sent through IMP: http://horde.org/imp/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: changing build options for ports
On Thu, Oct 31, 2002 at 02:13:37PM -0700, Soren Harward wrote: you know, theres gotta be a better way to set these options than editing the Makefile. What is the best common practice to set these options? make -DWITHOUT_X11 For pararmeters whose value is important, say something like: make PREFIX=/opt -- Matthew Hunt [EMAIL PROTECTED] * Salvage, like other forms of virtue, is http://www.pobox.com/~mph/ * its own reward. -George Reamerstaff To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Separating the OS from the data - tough to do?
Hi, -- Problem: Separating OS from underlying data. Which parts of the BSD OS are not part of the initial, never modified OS? Or, which pieces of the OS change due to useage. -- Goal: To have a slightly modified BSD OS structure where the OS can be upgraded, yet the variable data remains the untouched (DNS, websites, mail etc), on another partition or disk, allowing an OS upgrade that can be as plug play as possible. -- THEORY -- See reference below for BSD file system details. At first glance it looks like I can just move and soft link a few directories, /etc, /usr/local, /usr/home (websites) and /var. However if one upgrades the OS, is it possible to have all the installed apps separate? For example, I have Apache, MySQL and PHP installed. By moving/linking /usr/local to another partition or disk, is it possible that these apps will run properly once the OS is upgraded and the soft link re-setablished? Will /var still function properly? Will MySQL re-write the DB files somewhere else next time it is optimized or repaired? All thoughts, ideas and input gratefully received. Hopefully this discussion will be of use to a few more people that just me :) --- For reference -- From: Filesystem Hierarchy Standard Version 2.2 final Filesystem Hierarchy Standard Group the standard unix FS, moveable? directories marked with a # bin Essential command binaries # boot Static files of the boot loader # dev Device files etc Host-specific system configuration # lib Essential shared libraries and kernel modules # mnt Mount point for mounting a filesystem temporarily # opt Add-on application software packages # sbin Essential system binaries # tmp Temporary files # usr Secondary hierarchy usr/local * var Variable data Note: The /usr/local hierarchy is for use by the system administrator when installing software locally. It needs to be safe from being overwritten when the system software is updated. It may be used for programs and data that are shareable amongst a group of hosts, but not found in /usr. Need a copy? Email me for the PDF Steve To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Separating the OS from the data - tough to do?
Steve Warwick wrote: Hi, Hi Steve! -- Problem: Separating OS from underlying data. Which parts of the BSD OS are not part of the initial, never modified OS? Or, which pieces of the OS change due to useage. -- Goal: To have a slightly modified BSD OS structure where the OS can be upgraded, yet the variable data remains the untouched (DNS, websites, mail etc), on another partition or disk, allowing an OS upgrade that can be as plug play as possible. -- THEORY -- See reference below for BSD file system details. At first glance it looks like I can just move and soft link a few directories, /etc, /usr/local, /usr/home (websites) and /var. However if one upgrades the OS, is it possible to have all the installed apps separate? For example, I have Apache, MySQL and PHP installed. By moving/ linking /usr/local to another partition or disk, is it possible that these apps will run properly once the OS is upgraded and the soft link re-setablished? Will /var still function properly? Will MySQL re-write the DB files somewhere else next time it is optimized or repaired? All thoughts, ideas and input gratefully received. Hopefully this discussion will be of use to a few more people that just me :) [...snip...] Not a direct answer to your question, as I assume you want to reformat the disk for every new installation, but... The easiest way to upgrade the OS is by using cvsup. Then you'll get the changes of the source files, and after you've cvsup'ed you just compile the sources and install them. It's as easy as this... cvsup sources make buildworld make buildkernel KERNCONF=KERNEL mergemaster -p make installkernel reboot make installworld mergemaster reboot(?) (If I remember the steps correct) No need to reformat the disk, no need to recreate symbolic links and all is updated. It's all in the handbook! :-) Best regards, Paul To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Separating the OS from the data [Addendum]
[Addendum] Cvsup / makeworld: I apologize for missing that piece of information Yes, I could use the usual update procedure, however, this is a production machine. So my thought is: build a new OS on a staging machine, add required symlinks, pull the drive (sled) and slot it into the production machine. In THEORY it should be possible to do an upgrade in the time it takes to do a reboot. For server farms this would be a big benefit... Steve -- Problem: Separating OS from underlying data. Which parts of the BSD OS are not part of the initial, never modified OS? Or, which pieces of the OS change due to useage. [...snip...] Not a direct answer to your question, as I assume you want to reformat the disk for every new installation, but... The easiest way to upgrade the OS is by using cvsup. Then you'll get the changes of the source files, and after you've cvsup'ed you just compile the sources and install them. It's as easy as this... cvsup sources make buildworld make buildkernel KERNCONF=KERNEL mergemaster -p make installkernel reboot make installworld mergemaster reboot(?) (If I remember the steps correct) No need to reformat the disk, no need to recreate symbolic links and all is updated. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Separating the OS from the data [Addendum]
Steve Warwick wrote: [Addendum] Cvsup / makeworld: I apologize for missing that piece of information Yes, I could use the usual update procedure, however, this is a production machine. So my thought is: build a new OS on a staging machine, add required symlinks, pull the drive (sled) and slot it into the production machine. In THEORY it should be possible to do an upgrade in the time it takes to do a reboot. For server farms this would be a big benefit... Steve So... Would the following be an option? The production server have two disks: one with the OS on (A) and some symbolic links to another disk where /usr/local is (B). You have another computer with an identical disk (C) as disk A, where you can do the upgrade. Do the upgrade on disk C, pick it out, shutdown the production server, replace disk A with C, and boot the production server. Then put disk A into the other computer and upgrade that disk, then disk A and C will be identical again. Next time, upgrade A and swap it with C. It would be good if you, on the upgrade build computer, could have an exact copy of disk B so you could test, that everything went as expec- ted. Also, it's not necessary to have the mySql database tables in /var. I've put them in /usr/local/mysql, and hence I do not care if anything happens to /var when upgrading. Best regards, Paul To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Separating the OS from the data - tough to do?
-- Problem: Separating OS from underlying data. Which parts of the BSD OS are not part of the initial, never modified OS? Or, which pieces of the OS change due to useage. -- Goal: To have a slightly modified BSD OS structure where the OS can be upgraded, yet the variable data remains the untouched (DNS, websites, mail etc), on another partition or disk, allowing an OS upgrade that can be as plug play as possible. -- THEORY -- At first glance it looks like I can just move and soft link a few directories, /etc, /usr/local, /usr/home (websites) and /var. However if one upgrades the OS, is it possible to have all the installed apps separate? For example, I have Apache, MySQL and PHP installed. By moving/linking /usr/local to another partition or disk, is it possible that these apps will run properly once the OS is upgraded and the soft link re-setablished? Will /var still function properly? Will MySQL re-write the DB files somewhere else next time it is optimized or repaired? All thoughts, ideas and input gratefully received. Hopefully this discussion will be of use to a few more people that just me :) What I've done which has worked for me so far is to create /usr/local and /local as separate partitions. FreeBSD doesn't use /usr/local by default, so everything that's in there is stuff I built from ports (vim, netpbm, etc...), but aren't *critical* in the sense that Apache is critical on my webserver. I then create: /local/home /local/www/apache_1.2.27 /local/www/apache (symlink to above) /local/www/sites /local/www/sites/site_one /local/www/sites/site_two /local/tmp /local/db/ local/db/mysql... ... Then everything I build (apache, php, mysql, etc.) I put into /local. This does require changing ld_config in /etc/rc.conf to look for libraries and includes in the right places, but that's no big deal. And all application specific logging (ie. apache) goes in /local/ not in /var. This way I can backup /local and /usr/local (or just /usr/local/etc if I remember what ports I've installed) and I'm done. The other nice thing about the above setup is you can install a new version of apache, configure it to run on say port 81, and test it out using your existing sites. Once you're happy, tweak the config, repoint the symlink and you're done. And it's nice because if you decide you don't want apache anymore just rm -rf /local/www/apache* and it's *all* gone. No guessing where things are. just my 2 cents. -philip To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
lizard named[63]: deleting interface [194.44.39.40].53
Hello everybody! Help me please. What is this: lizard named[63]: deleting interface [194.44.39.40].53 This message appears sometimes while I browse in the inet. And after that I can use only IP addresses in my browser :( Here is output of ifconfig: ~# ifconfig tun0 tun0: flags=8051UP,POINTOPOINT,RUNNING,MULTICAST mtu 1500 inet 194.44.39.33 -- 193.193.217.138 netmask 0xff00 Opened by PID 754 Here is my resolv.conf: nameserver 193.193.217.130 nameserver 194.44.39.140 Thanks Anton To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: lizard named[63]: deleting interface [194.44.39.40].53
On Fri, Nov 01, 2002 at 01:48:13AM +0200, Anton wrote: Hello everybody! Help me please. What is this: lizard named[63]: deleting interface [194.44.39.40].53 This message appears sometimes while I browse in the inet. And after that I can use only IP addresses in my browser :( Here is output of ifconfig: ~# ifconfig tun0 tun0: flags=8051UP,POINTOPOINT,RUNNING,MULTICAST mtu 1500 inet 194.44.39.33 -- 193.193.217.138 netmask 0xff00 Opened by PID 754 That's your named noticing that your PPP interface got a different IP number the last time you dialed up. By default, named will scan your interfaces once an hour to detect changes, and will rebind to any new addresses it finds. You can make named rescan the interfaces faster by putting eg. options { interface-interval 1; } into named.conf, which will cause named to rescan the interfaces once a minute. That should mean you won't have to wait for longer than a minute after you dial up before DNS resolution starts working again. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
FreeBSD Router/Firewall Questions
Hi guys, me again :) well I've been reading up on compiling a kernel for nat and ipfw. I'm running a d-link 704 router now. I want some input here... I have an extra box (p200 - 128ram) for a router firewall.. I was thinking about it being my Gateway/Router/Firewall for my other 3 computers. I run a webserver box, a ftp server box, and my workstation box behind my d-link. What advantages/disadvantages would I have by running freebsd in place of the d-link? How do I connect this? Do I use 2 eithernets 1 to net and 1 to a hub? I also have 1 crossover rj45 cable for card to card connection that I haven't tried yet... Tx guys RD To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
RE: FreeBSD Router/Firewall Questions
Hi guys, me again :) well I've been reading up on compiling a kernel for nat and ipfw. I'm running a d-link 704 router now. I want some input here... I have an extra box (p200 - 128ram) for a router firewall.. I was thinking about it being my Gateway/Router/Firewall for my other 3 computers. I run a webserver box, a ftp server box, and my workstation box behind my d-link. What advantages/disadvantages would I have by running freebsd in place of the d-link? Adv: More flexible, more services can be run, well supported via email lists, etc. DisAdv: More power needed, higher learning curve, more time needed for updates, more things to go wrong, etc. How do I connect this? Do I use 2 eithernets 1 to net and 1 to a hub? Yes. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: FreeBSD Router/Firewall Questions
One advantage is you can keep you current subnet and with the freebsd box you could run a whole another subnet with it .. or it can be used just to learn and play. But with a dlink already in the network Iwould use it as a play thing and try new things on that box. I like to use p1 and below for small routers anything above is a good test platform for new projects I want to learn - Original Message - From: RD [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, October 31, 2002 4:08 PM Subject: FreeBSD Router/Firewall Questions Hi guys, me again :) well I've been reading up on compiling a kernel for nat and ipfw. I'm running a d-link 704 router now. I want some input here... I have an extra box (p200 - 128ram) for a router firewall.. I was thinking about it being my Gateway/Router/Firewall for my other 3 computers. I run a webserver box, a ftp server box, and my workstation box behind my d-link. What advantages/disadvantages would I have by running freebsd in place of the d-link? How do I connect this? Do I use 2 eithernets 1 to net and 1 to a hub? I also have 1 crossover rj45 cable for card to card connection that I haven't tried yet... Tx guys RD To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: FreeBSD Router/Firewall Questions
On Thu, 31 Oct 2002, RD wrote: Hi guys, me again :) well I've been reading up on compiling a kernel for nat and ipfw. I'm running a d-link 704 router now. I want some input here... I have an extra box (p200 - 128ram) for a router firewall.. I was thinking about it being my Gateway/Router/Firewall for my other 3 computers. I run a webserver box, a ftp server box, and my workstation box behind my d-link. What advantages/disadvantages would I have by running freebsd in place of the d-link? Let's be honest folks, If you are not running any special services or are not in the pursuit of learning, then having BSD do the work is pointless. If you want to learn a little something then it may be worth doing. It does give you the opportunity to do more with your network. People could go on and on about what it can do for you. I'll just leave it at: lots. How do I connect this? Do I use 2 eithernets 1 to net and 1 to a hub? I also have 1 crossover rj45 cable for card to card connection that I haven't tried yet... Yes, 2 ethernet cards. One for the outside network and one for the inside network. Basic stuff. Nick Rogness [EMAIL PROTECTED] - Wouldn't it be great if we could answer people with a kick to the crotch? [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: FreeBSD Router/Firewall Questions
On Thu, 31 Oct 2002, at 17:28 [=GMT-0700], Nick Rogness wrote: On Thu, 31 Oct 2002, RD wrote: How do I connect this? Do I use 2 eithernets 1 to net and 1 to a hub? I also have 1 crossover rj45 cable for card to card connection that I haven't tried yet... Yes, 2 ethernet cards. One for the outside network and one for the inside network. Basic stuff. If your ethernet card has two types of connectors (RJ45 aka UTP and BNC [which is a thing that sticks out of the card]) then you could try to connect the adsl-modem to the RJ45 and the rest of your stuff to the BNC, which would save you the hub (as BNC is daisy chain) and one network card. And black thick dusty coax cable can be found for free everywhere. And BNC connectors don't break so easily! Don't forget to let us know how it works! To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Sendmail - File descriptors missing on startup: stdin, stderr;Bad file descriptor
On Fri, 2002-11-01 at 11:48, Tuc wrote: Hi, Having a problem that we can't figure out. 2 different people installed machines, one is working fine, the other gives : Oct 31 00:07:34 lodur1 sendmail[47337]: File descriptors missing on startup: std in, stderr; Bad file descriptor constantlyCan't figure out why... Binary sum is the same, config is the same except for the generation time Where to look? I'm seriously puzzled Not sure if this is your problem, but try fsck'ing the disk. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: MODE_SENSE_BIG ata problem with 4.7 installation
Hi, On Fri, 1 Nov 2002 12:27, Paul English wrote: acd0: MODE_SENSE_BIG command timeout - resetting ata1: resetting devices .. done I thought that this was fixed in a 4.7-PRERELEASE according to the 4.6 errata? It depends on which brand cd-rom drive you have as to wether it is supported/fixed. I still have the same problem as well, I submitted a bug report and was told that for my particular cd-rom drive (sony), I could fix the problem by making the cd-rom drive the master (instead of slave) on the ide cable. (Which isnt an option to me for this is a work computer which I am not allowed to open). Regards, Jacob Rhoden Jacob RhodenPhone: +61 3 8344 6102 ITS DivisionEmail: [EMAIL PROTECTED] Melbourne University Mobile: +61 403 788 386 To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Re: Logging ssh login failures
On Thu, Oct 31, 2002 at 11:29:14PM -0500, Steve Wingate wrote: How can I get FreeBSD 4.7-stable to log password ssh login attempt failures? Googling shows people last year added it via a patch to /etc/security but I wonder if it's been added to base now. What about the traces in /var/log/auth.log? -- What about them? auth.log only logs successes and su's. Work like you don't need the money Dance like nobody's watching Love like you've never been hurt To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Re: Logging ssh login failures
On Fri, Nov 01, 2002 at 12:04:51AM -0500, Steve Wingate wrote: On Thu, Oct 31, 2002 at 11:29:14PM -0500, Steve Wingate wrote: How can I get FreeBSD 4.7-stable to log password ssh login attempt failures? Googling shows people last year added it via a patch to /etc/security but I wonder if it's been added to base now. What about the traces in /var/log/auth.log? -- What about them? auth.log only logs successes and su's. Odd, my 4.7-stable (with default syslog.conf and sshd.conf) logs failures as well: Nov 1 18:07:13 grimoire sshd[43947]: error: Authentication failure Nov 1 18:07:13 grimoire sshd[43947]: Postponed keyboard-interactive for jonc from 192.168.1.10 port 4367 ssh2 Nov 1 18:07:14 grimoire sshd[43947]: error: Authentication failure Nov 1 18:07:14 grimoire sshd[43947]: Failed keyboard-interactive/pam for jonc from 192.168.1.10 port 4367 ssh2 Nov 1 18:07:14 grimoire sshd[43947]: Postponed keyboard-interactive for jonc from 192.168.1.10 port 4367 ssh2 Nov 1 18:07:15 grimoire sshd[43947]: error: Authentication failure Nov 1 18:07:15 grimoire sshd[43947]: Failed keyboard-interactive/pam for jonc from 192.168.1.10 port 4367 ssh2 Nov 1 18:07:18 grimoire sshd[43947]: Failed password for jonc from 192.168.1.10 port 4367 ssh2 Nov 1 18:07:21 grimoire sshd[43947]: Disconnecting: Too many authentication failures for jonc Cheers. -- Jonathan Chen [EMAIL PROTECTED] -- When you don't know what you are doing, do it neatly. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
MODE_SENSE_BIG ata problem with 4.7 installation
I'm getting the following error repeated to the screen when the 4.7 install boot reaches ata: acd0: MODE_SENSE_BIG command timeout - resetting ata1: resetting devices .. done I thought that this was fixed in a 4.7-PRERELEASE according to the 4.6 errata? I tried the fix on the 4.6 errata webpage with no luck. Thanks, Paul To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: After make world, periodic sends me suid diffs
On Thu, 2002-10-31 at 07:02, Andrew Boring wrote: I upgraded a box from 4.6 to 4.7 that is not in production yet. This was my first time upgrading via CVS and make world and everything appeared to go smoothly with no issues. However, the following day I received mail from the daily periodic scripts Security Run Output: Checking setuid files and devices: setuid diffs: 1,50c1,50 11 -r-sr-xr-x 1 root wheel 321100 Oct 8 11:12:48 2002 /bin/rcp 2761 -r-xr-sr-x 1 root kmem 65944 Oct 9 12:45:20 2002 /sbin/ccdconfig 153 -r-sr-xr-x 1 root wheel 201836 Oct 9 12:45:27 2002 /sbin/ping 154 -r-sr-xr-x 1 root wheel 202816 Oct 9 12:45:27 2002 /sbin/ping6 [...] Looking through the 100.chksetuid script, I am guessing that the security script is warning me that the binaries have changed (as a result of the source upgrade) and NOT that the permissions have changed or that more have been added. Am I correct? I don't have a record or snapshot of the permissions on all the binaries listed in the email to verify. permissions, owner, group, filesize, date, filename ... anything that's different between the directory snapshot from the previous run and the current one. It's just a diff between two ls commands, but it's pretty effective for catching unusual goings on To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: SSH Delay problems
On Thursday, Oct 31, 2002, at 21:58 US/Pacific, joe wrote: I apologize for this repeat as I was following this issue on the last a few months ago. I tried to find the thread but was not successfull. There is a significant delay before ssh connects and returns a prompt. I am on a private network, attempting a 192.168.0.XXX 192.168.0.YYY connection. There is a distinct 1:15 min delay before the password prompt appears. I have included the log of a specific session. I get the same thing at the same place. It began with an openssl update about a week ago. KeS To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: SSH Delay problems
On Fri, 1 Nov 2002 16:58, joe wrote: There is a significant delay before ssh connects and returns a prompt. I am on a private network, attempting a 192.168.0.XXX 192.168.0.YYY connection. There is a distinct 1:15 min delay before the password prompt appears. I have included the log of a specific session. Summary of last thread: If your dns isnt setup properly then there will be a delay in connecting to the server. The reason for this is, the remote server is attempting to resolve the local machines ip address. If setup properly, it will resolve straight away. If dns is not setup properly, it tries and gives up (after about approximately 1:15 minutes I would suspect). You need to check the remote machine can resolve your local ip address. To test this on your remove machine type: nslookup 192.168.local.machine.ip.address Regards, Jacob Jacob RhodenPhone: +61 3 8344 6102 ITS DivisionEmail: [EMAIL PROTECTED] Melbourne University Mobile: +61 403 788 386 To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: SSH Delay problems
On October 31, 2002 10:12 pm, Jacob Rhoden wrote: On Fri, 1 Nov 2002 16:58, joe wrote: There is a significant delay before ssh connects and returns a prompt. I am on a private network, attempting a 192.168.0.XXX 192.168.0.YYY connection. There is a distinct 1:15 min delay before the password prompt appears. I have included the log of a specific session. Summary of last thread: If your dns isnt setup properly then there will be a delay in connecting to the server. The reason for this is, the remote server is attempting to resolve the local machines ip address. If setup properly, it will resolve straight away. If dns is not setup properly, it tries and gives up (after about approximately 1:15 minutes I would suspect). You need to check the remote machine can resolve your local ip address. To test this on your remove machine type: nslookup 192.168.local.machine.ip.address Sorry, I should have mentioned these two machines are behind a firewall and use private ip addresses. The hosts files identify each other properly. Even if I attempt a connection using the ip address I observe the same problem. Do you still think this is a DNS issue? I'm not sure how it would be. Joe Sotham Christianity got over the difficulty of furious opposites by keeping them both and keeping them furious. - G.K. Chesterton To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: SSH Delay problems
Sounds like a DNS issue to me! :) You need to setup a local bind that will resolve and reverse resolve all your private #'s Quoting joe [EMAIL PROTECTED]: On October 31, 2002 10:12 pm, Jacob Rhoden wrote: On Fri, 1 Nov 2002 16:58, joe wrote: There is a significant delay before ssh connects and returns a prompt. I am on a private network, attempting a 192.168.0.XXX 192.168.0.YYY connection. There is a distinct 1:15 min delay before the password prompt appears. I have included the log of a specific session. Summary of last thread: If your dns isnt setup properly then there will be a delay in connecting to the server. The reason for this is, the remote server is attempting to resolve the local machines ip address. If setup properly, it will resolve straight away. If dns is not setup properly, it tries and gives up (after about approximately 1:15 minutes I would suspect). You need to check the remote machine can resolve your local ip address. To test this on your remove machine type: nslookup 192.168.local.machine.ip.address Sorry, I should have mentioned these two machines are behind a firewall and use private ip addresses. The hosts files identify each other properly. Even if I attempt a connection using the ip address I observe the same problem. Do you still think this is a DNS issue? I'm not sure how it would be. Joe Sotham Christianity got over the difficulty of furious opposites by keeping them both and keeping them furious. - G.K. Chesterton To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- FreeBSD System Administrator http://manhattan.hq.dyns.cx/ - This mail sent through IMP: http://horde.org/imp/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Fw: SSH Delay problems
I just recently had that problem also. It was a dns problem, my firewall uses dhcp and the dns server was changed by the isp, but my other box didn't get the change. I would agree the best is to set up a local bind. Sounds like a DNS issue to me! :) You need to setup a local bind that will resolve and reverse resolve all your private #'s Quoting joe [EMAIL PROTECTED]: On October 31, 2002 10:12 pm, Jacob Rhoden wrote: On Fri, 1 Nov 2002 16:58, joe wrote: There is a significant delay before ssh connects and returns a prompt. I am on a private network, attempting a 192.168.0.XXX 192.168.0.YYY connection. There is a distinct 1:15 min delay before the password prompt appears. I have included the log of a specific session. Summary of last thread: If your dns isnt setup properly then there will be a delay in connecting to the server. The reason for this is, the remote server is attempting to resolve the local machines ip address. If setup properly, it will resolve straight away. If dns is not setup properly, it tries and gives up (after about approximately 1:15 minutes I would suspect). You need to check the remote machine can resolve your local ip address. To test this on your remove machine type: nslookup 192.168.local.machine.ip.address Sorry, I should have mentioned these two machines are behind a firewall and use private ip addresses. The hosts files identify each other properly. Even if I attempt a connection using the ip address I observe the same problem. Do you still think this is a DNS issue? I'm not sure how it would be. Joe Sotham Christianity got over the difficulty of furious opposites by keeping them both and keeping them furious. - G.K. Chesterton To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message -- FreeBSD System Administrator http://manhattan.hq.dyns.cx/ - This mail sent through IMP: http://horde.org/imp/ To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: make buildworld fails
Giorgos Keramidas wrote: On 2002-10-30 19:12, Chris Pressey [EMAIL PROTECTED] wrote: On Wed, 30 Oct 2002 23:41:49 +0200 Giorgos Keramidas [EMAIL PROTECTED] wrote: + Remove everything under /usr/obj. # chflags -R noschg /usr/obj # rm -fr /usr/obj/* + CVSup your sources. + Start a new buildworld. Avoid using -DNOCLEAN or similar flags. I've done this now with NO_OPENSSH=true in make.conf, but I *still* get errors! cc -O -pipe -o ppp acf.o arp.o async.o auth.o bundle.o cbcp.o ccp.o chap.o chat.o command.o datalink.o deflate.o defs.o exec.o filter.o fsm.o hdlc.o iface.o ip.o ipcp.o ipv6cp.o iplist.o lcp.o link.o log.o lqr.o main.o mbuf.o mp.o ncp.o ncpaddr.o pap.o physical.o pred.o probe.o prompt.o proto.o route.o server.o sig.o slcompress.o sync.o systems.o tcp.o tcpmss.o throughput.o timer.o tty.o tun.o udp.o vjcomp.o nat_cmd.o atm.o id.o chap_ms.o mppe.o radius.o i4b.o ether.o -lcrypt -lmd -lutil -lz -lalias -lcrypto -lradius -lnetgraph radius.o: In function `demangle': radius.o(.text+0xd1): undefined reference to `rad_request_authenticator' radius.o(.text+0x102): undefined reference to `rad_server_secret' radius.o: In function `radius_Process': radius.o(.text+0x84d): undefined reference to `rad_get_vendor_attr' radius.o: In function `radius_Authenticate': radius.o(.text+0x1217): undefined reference to `rad_put_vendor_attr' radius.o(.text+0x12a3): undefined reference to `rad_put_vendor_attr' radius.o(.text+0x1323): undefined reference to `rad_put_vendor_attr' *** Error code 1 Odd. This should work fine. Try backing up your data and installing a -RELEASE version (preferrably 4.6.2-RELEASE). It's obvious that your build system is at least, uhm, non-standard. If that doesn't work either, you can ask around in freebsd-stable to see if other people have similar problems. But this is very unlikely with -STABLE. Giorgo, I am using 4.7-STABLE FreeBSD 4.7-STABLE #0: Tue Oct 29 02:30:34 EET 2002 and I still get the same exact error if I set NO_OPENSSH=true in make.conf. I am also forwarding this to STABLE discusion. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message