Re: Linksys support... hmm
Sorry - never mind. I cracked open my case after I got home to verify, and I'm using a v4. v5 must be really new then, because I bought this just a few weeks ago. Kian Kian Mohageri wrote: Maybe someone on the mailing list can provide me with an answer to: 1. Can v5 af the card be used with the ral driver? Yes, I used it to create an access point on 3.8-stable. [EMAIL PROTECTED] ~ $ dmesg|grep ral0 ral0 at pci0 dev 10 function 0 Ralink RT2560 rev 0x01: irq 11, address 00:16:b6:57:1e:59 ral0: MAC/BBP RT2560 (rev 0x04), RF RT2525 Hope that helps. -- Kian Mohageri ResTek, Western Washington University [EMAIL PROTECTED]
OpenBSD 3.9 Installation onto a Nokia IP330
For those of you who are waiting on me to finish testing for OpenBSD 3.9 on the Nokia IP330 firewalls, it appears that the dirty hack that worked on 3.8 works on 3.9 as well. The main deterrent is that OpenBSD can't locate a serial port to use as its console, thus giving the dreaded 'entry point at 0x100120' message. This actually isn't an error, as it does see the keyboard, it's just not something that's physically connected on the IP330. These devices aren't generally powerful. I've personally run across two variants in the wild. The first has a 266MHz AMD K6-2 CPU with 64MB of RAM and an 8GB Western Digital hard drive. The second has a 400MHz AMD K6-2 CPU with 256MB of RAM and a 20GB Western Digital hard drive. There are a few cPCI cards for them and I've even gotten some others that didn't come with the devices to work, including a 4-port Znyx ZX414 (for a grand total of 7 interfaces). I'm not sure if you can replace the CPU or not, but there is a silkscreened multiplier/clock setting on the mainboard and it does look to be a Socket7 interface with a standard HSF/clip. It takes standard PC100, CL2, ECC SDRAM (I'm unsure of the maximum) and has a standard IDE interface with a single molex connector. There are 3 fxp(4) interfaces by default, mine have an additional 2 dc(4) interfaces on a single modular cPCI card. (Please note that the OpenBSD fxp(4) driver will not recognize the original MAC addresses of the controllers as they are not stored in a standard location -- you may wish to save these prior to wiping CheckPoint IPSO from the drive! This might be fixable by making some adjustments to /usr/src/sys/dev/ic/fxp.c or fxpreg.h, but then again, it's late and I could be way off my rocker.) There are 2 DB9 male serial ports (ns16550a) on the front. It uses an Award BIOS and has quite a few settings you can manipulate -- for most practical purposes, it seems to be simply a customized x86 machine. The power supply does not have a cover, so be careful if you get to the point where you're poking around -- use some common sense when working with 120/240 VAC, don't do anything stupid. Here is a brief synopsis of what needs to be done to get it running. - Order your OpenBSD 3.9 CD (http://www.openbsd.org/items.html#39) - Unseat the chassis cover by removing 24 phillips-head screws and pulling forward slightly, then upwards - Pull the hard drive by removing 4 phillips-head screws from underneath the chassis, the molex connector and an IDE connector - Install the hard drive into a surrogate PC - Install OpenBSD as you normally would to the drive, be sure to set your console to com0 when asked, 8N1 9600bps (or hack /etc/boot.conf and /etc/ttys later) - When the install finishes, do not reboot yet! - Chroot to the OpenBSD installation (/mnt/usr/sbin/chroot /mnt) - Mount the OpenBSD CD-ROM (mount /dev/cd0a /mnt) - Untar/gzip the kernel sources (tar -zxvf /mnt/sys.tar.gz -C /usr/src/) - Edit /sys/arch/i386/stand/libsa/bioscons.c (export term=vt100; vi /sys/arch/i386/stand/libsa/bioscons.c) Go to line 105 and apply the following patch (manually or using the following diff) ---8--- 105,106c105 n = 9; n = 7; --- n = 2; /* We know there are two com ports -- force it */ ---8--- - Recompile/reinstall the bootblocks (http://www.openbsd.org/faq/faq14.html#InstBoot) # cd /sys/arch/i386/stand/ # make make install # cd /usr/mdec; cp ./boot /boot # ./installboot /boot biosboot wd0 (or whatever device your hard disk is) - Ensure that your console is set for com0 (http://www.openbsd.org/faq/faq7.html#SerCon) # /etc/ttys:tty00 /usr/libexec/getty std.9600 vt100 on secure # /etc/boot.conf:set tty com0 - Halt the surrogate PC - Replace the drive into the IP330 and reconnect the molex and IDE connectors, don't forget to fasten it from below using the screws as well - Replace the chassis and tighten the screws - Connect your console cable at 9600bps, 8N1 and power up I've attached a dmesg and a quick openssl speed -evp test on aes-256-cbc for the curious. OpenBSD 3.9 (GENERIC) #617: Thu Mar 2 02:26:48 MST 2006 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD-K6(tm) 3D processor (AuthenticAMD 586-class) 399 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,PGE,MMX real mem = 268017664 (261736K) avail mem = 237568000 (232000K) using 3297 buffers containing 13504512 bytes (13188K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(6e) BIOS, date 10/27/99, BIOS32 rev. 0 @ 0xfaa20 pcibios0 at bios0: rev 2.1 @ 0xf/0xae9c pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfd3c0/144 (7 entries) pcibios0: PCI Exclusive IRQs: 5 10 11 12 pcibios0: PCI Interrupt Router at 000:07:0 (Intel 82371SB ISA rev 0x00) pcibios0: PCI bus #1 is the last bus cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82439TX System rev 0x01 pcib0 at pci0 dev 7 function 0 Intel 82371AB PIIX4 ISA rev 0x02 pciide0 at pci0 dev 7 function 1 Intel
Re: 3.9 Release Available
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On May 1, 2006, at 1:35 AM, Bob Beck wrote: We are pleased to announce the official release of OpenBSD 3.9. Got my CDs last week, upgraded a few systems by disc; no problems (expected behavior). And # pkg_add -ui -F update -F updatedepends is pure beauty. Much thanks to everyone. - -- Bryan Allen [EMAIL PROTECTED] http://bda.mirrorshades.net/ cyberpunk is dead. long live cyberpunk. iD8DBQFEVcf98DRlpnH/NmoRAjiTAJ9AZa8G9gus6rZaJiaqri2AIAmqlgCdFaR0 tWIIJzEWbX2ekysK7N0Ab/c= =XX0b -END PGP SIGNATURE-
Re: 3.9 Release Available
Some minor things I noticed, the following is still at 3.8 http://www.openbsd.org/pkg-stable.html http://www.openbsd.org/errata38.html should link to a http://www.openbsd.org/pkg-stable38.html, rather than the above. As an example in pkg-stable.html the package clamav-0.88.1.tgz only exists for 3.7, 3.8 and current. 3.9 only has clamav-0.88.tgz available. There appears to be an issue here also with the CVS ports tree, as clamav has been updated to 0.88.1 for 3.7, 3.8 stable and current is now at 0.88.2, while 3.9 stable has been left at version 0.88. gnupg also appears to have been left behind at version 1.4.2.1 for 3.9 in CVS while 3.8 moved on to 1.4.2.2 and current is at 1.4.3. Both these are in the ports/security CVS tree. Regards Nigel Bob Beck wrote: May 1, 2006. We are pleased to announce the official release of OpenBSD 3.9. This is our 19th release on CD-ROM (and 18th via FTP). We remain proud of OpenBSD's record of eight years with only a single remote hole in the default install. As in our previous releases, 3.9 provides significant improvements, including new features, in nearly all areas of the system: - Improved hardware support, including: o Some G5-based Apple Macintosh machines, including W^X support (currently restricted to 32-bit mode). o Many more audio drivers in the OpenBSD/macppc port. o Support for many system sensors (temperature, voltage, fan speed) via the following subsystems: o Dell's Embedded Server Management (esm) o Intelligent Platform Management Interface (ipmi) o I2C/SMBus sensor subsystems found on most motherboards (iic) o Touchpad on recent Apple laptops (tpms). o nfe, a binary blob free driver for the NVIDIA nForce Ethernet interface. o Opteron systems now have all their PCI buses detected. o CardBus and PCMCIA support on OpenBSD/amd64. o ixgb, Intel PRO/10GbE Ethernet. o Support for new Intel i82571, i82572 and i82573 PCI Express based devices in the em(4) driver. o Support for new Broadcom BCM5714, BCM5715 and BCM5903M based devices in the bge(4) driver. o Support for new Ralink RT2501 and RT2600 based devices in ral. o Support for ASIX AX88178 Gigabit and AX88772 10/100 based devices in axe(4). o Support for devices incorporating GCT RF transceivers in rtw. o Zaurus remote control (zrc) support. o Initial Sound Blaster Audigy support in the emu(4) driver. o The Level 1 LXT1001 Gigabit driver has been fixed and now works (lge(4)). o More HP Smart ARRAY controllers recognized by the ciss(4) driver. o Support the Intel i915 AGP. o Support for both older and newer IDE and SATA controllers in the pciide(4) driver, including: o ATI's IXP 200/300/400 IDE controllers o Broadcom's ServerWorks HT-1000 IDE controller o a few older Intel PIIX IDE controllers o Broadcom's ServerWorks K2 and HT-1000 SATA controllers o VIA's VT6410 and VT8251 SATA controllers o some newer NVIDIA SATA controllers o Added IBSS support to the iwi(4) driver. o Added bus_dma support to the de(4) and san(4) drivers. o A lot of fixes and improvements to the uaudio(4) audio driver. o Support for the SMC SMC91C1xx Ethernet chips in the sm(4) driver as well as MII support. o New adb(4) and framebuffer (macfb(4)) drivers on OpenBSD/mac68k, plus switch to wscons(4). - New tools: o ftp-proxy(8) has been rewritten, and a tftp version, tftp-proxy, has been added. o sdiff(1), a side-by-side file comparison tool, rewritten by us. o getent(1), a tool to get entries from the administrative databases. - New functionality: o ancontrol functionality has been completely merged into ifconfig. o apmd(8) can be used to increase or decrease CPU speed automatically, depending on CPU usage and, if supported, battery status. o nc(1) now supports HTTP Proxy authentication, making it very useful as a ssh ProxyCommand. o Userland ppp(8) has IPv6 support. o A number of fixes and new functionality for trunk(4): o New active/passive failover mode o Fixed multicast support, for carp(4) and pfsync(4) over trunk interfaces. o Interface capabilities depending on the trunk ports, for full-size vlan(4) MTUs. o Improved functionality for ipsecctl(8). o Added multicast routing to GENERIC. It is now possible to enable multicast routing in the kernel with the sysctl(8) option net.inet.ip.mforwarding=1. o It is now possible to set a default vlan(4) priority via ifconfig(8). - Assorted improvements and code cleanup: o libpcap has been updated with most of tcpdump.org's libpcap-0.9.4 API, without the clutter.
Re: PCMCIA on a laptop with a Insyde Software MobilePRO BIOS not working
On 5/1/06, Jonathan Gray [EMAIL PROTECTED] wrote: Try 3.9, the Intel specific interrupt quirks now match on your chipset unlike 3.8. I have tried varoius snapshot-versions of 3.9 (latest OpenBSD 3.9-current (GENERIC) #720: Thu Apr 27 21:45:15 MDT 2006) and are downloading the official 3.9 release as we speak. The dmesg on http://bsdbandit.dk/TM2400-dmesg.boot.txt from this laptop, is based on the OpenBSD 3.9-current (GENERIC) #700: Wed Apr 19 19:35:53 MDT 2006 snapshot. -- Regards Henrik
State timeouts
Hi all, I'm looking at the set optimization policies for PF, and while it's clear that there are varying levels of aggression towards expiring state entries, I can't find exact numbers of what those levels represent. I assume they're based on a time and/or traffic metric ?? My current policy is just the default (ie. normal), but I have one particular system that wants to do an 60 second heartbeat, which I suspect is being killed by the state expiry purges. Is there somewhere that specifies the definition (or metric) on which the expiry occurs ?? (I can't find it in either the FAQ or the man pages for pf / pf.conf / pfctl) Cheers Dave
nfs mount in openvpn tunnel
Hi , my name is takesima , a japanese . i succeed in access avi file in remote PC with nfs mount in openvpn tunnel . the chart is next . gentoo(192.168.1.88)--intra net--(192.168.1.50)openbsd=internet=== ==openbsd(192.168.72.50)--intra net--(192.168.72.66)gentoo (192.168.72.66)gentoo is remote PC . i see and here avi file in (192.168.72.66)gentoo on gentoo(192.168.1.88) . the following is my methods . 1)(192.168.72.66)gentoo is nfs server . cat /etc/exports /video/Tu/ 192.168.1.88/255.255.255.255(rw,sync,no_root_squash) /video/Tu/ 10.4.0.2/255.255.255.255(rw,sync,no_root_squash) and no firewall 2)(192.168.1.50)openbsd is openvpn server and this has adress 10.4.0.1 of openvpn . pf filter is next pass in on $ext_if proto udp from okou-add/32 to any port { 1194 } keep state pass in quick on tun0 all pass out quick on tun0 all (in this place , okou-add is internet address of (192.168.1.50)openbsd ) 3)openbsd(192.168.72.50) is openvpn client and this has adress 10.4.0.2 of openvpn . pass in quick on tun0 all pass out quick on tun0 all 4)gentoo(192.168.1.88) is nfs client . mount -t nfs 192.168.72.66:/video/Tu /NFS and mplayer /NFS/abc.avi, then i see and here this movie . i wonder what ports is need on (192.168.72.66)gentoo . because the above is too fragile in the point of security . The details is written in http://nakajin.dyndns.org/pikara.html . i am sorry for my poor english .
Re: 3.9 Release Available
On 5/1/06, Mats [EMAIL PROTECTED] wrote: On Mon, May 01, 2006 at 03:36:27AM -0300, Leonardo Rodrigues wrote: Hrraaayyy!! Man, I've preordered my CDs about 2 weeks ago, and they haven't arrived yet... (bought from www.temporeal.com.br Brazil) Seems like I'll use ftp instead :P Can't wait anymore. You are lucky man. I live in Sweden (9 meg citizens and 500k dogs) and I only have _one_ place to buy from and they have no announce about them yet. Somewhere in the end of may maybe...:-( OK, I have installed over internet, but I want to read the thrilling story also and decorate the appartment with stickers. /Regs from Sweden Why not just order from Wim on the official webpage? Just as easy and couldn't be much difference in price/postage and then you would have gotten them weeks ago.
Re: pf firewall question
On 4/30/06, Stuart Henderson [EMAIL PROTECTED] wrote: On 2006/04/30 06:34, S t i n g r a y wrote: Now what i want to know , maybe is O T in this list but what is the diffrence , i mean pf in openBSD is refered to as a firewall for home or small offices ? why is that , i mean what is the criteria of an enterprise firewall what is the diffrence between pf MS ISA / cisco pix or checkpoint ? performance ? stability or features ? marketing and a manager-friendly gui. To add more...I've used PF/CARP to deploy perimeter defense for companies with users ranging from 1000+ to 4000+. Does that tell you something? Please don't fall into the trap of marketing crap like Application Layer Checks, Deep Packet Inspection, etc. Nothing more than proxies with too many false positives. Again, you can check if the protocol abides by RFCs with enormous expense, but what use is it when the embedded exploit code is not fully checked within the payload? (check the archives why PF does not do this). PF is powerful, efficient, and keeps it simple...you are better off handling Application Layer checks closer to the crappy application that is full of bugs.. _Raju -- May the packets be with you.
Re: (PC video card memory aperture !=0) =OS Rootability?
Below is a comment about X-Windows security sent to me by a person with a lot of experience in computer security: === Dave, X-Windows has been known to be insecure for some time. That is to say it can be hacked. Now you could get the code and change the sockets that are used or require authentication of every communication. But this would slow it down. You might also have virtual x-windows where you use 127.0.0.x as the endpoint and refuse to allow non-local connections. Would implementing virtual x-windows as this person describes above solve the X-Windows security problem on OpenBSD? Thanks Dave Feustel
Re: 3.9 Release Available
As pointed out on Slashdot somebody also provides Torrents wich may reduce the load of the Servers. The files can be found here: http://openbsd.somedomain.net/ Kind regards, Sebastian
packages for 3.9 not published?
And the whining continues
Re: (PC video card memory aperture !=0) =OS Rootability?
On May 1, 2006, at 9:57 AM, Dave Feustel wrote: Below is a comment about X-Windows security sent to me by a person with a lot of experience in computer security: === Dave, X-Windows has been known to be insecure for some time. That is to say it can be hacked. Now you could get the code and change the sockets that are used or require authentication of every communication. But this would slow it down. You might also have virtual x-windows where you use 127.0.0.x as the endpoint and refuse to allow non-local connections. Would implementing virtual x-windows as this person describes above solve the X-Windows security problem on OpenBSD? Why don't you try it and let us all know? Quit waiting on someone else to test your weekly exploits. -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net
Disabling Antialias no more works in 3.9
I use KDE with AntiAlias enabled, but disabled for font size from 7 to 17, and for specific application (e.g FireFox) preceding the application name with env GDK_USE_XFT=0. After I upgraded my i386 from 3.8 to 3.9 (my CDs arrived just one day before the official date), none of the two methods work any more: if antialias is enabled then it is used in every single case! Is there something wrong in my configuration, or somebody else have the same problem? How can I make at least one of the two methods work again? Thanks. -- ___ __ |- [EMAIL PROTECTED] |ederico Giannici http://www.neomedia.it Presidente del CDA - Neomedia S.r.l. ___
Re: PCMCIA on a laptop with a Insyde Software MobilePRO BIOS not working
On 5/1/06, Jonathan Gray [EMAIL PROTECTED] wrote: [...] The snapshots are quite a bit past 3.9 now. Yes i would imagine so. Are you running the latest BIOS provided by the vendor? Of course. -- Regards Henrik
Re: Using OpenBSD article in 'The Jem Report'
On Sunday 30 April 2006 10:56 pm, Dave Feustel wrote: This is a very well written article for new users of OpenBSD: http://www.softwareinreview.com/cms/content/view/34/1/ One question I have: Is the description in the article of what's required to install Java on OpenBSD correct? The only thing that looked incorrect to me was the lack of a jre package. The port builds two packages; one for the jdk and one for the jre. You can install the jre using pkg_add or SUBPACKAGE=-jre make install. -Kurt
Re: packages for 3.9 not published?
David Terrell wrote: On Mon, May 01, 2006 at 07:17:34AM -0700, Dag Richards wrote: And the whining continues What are you talking about? I see 'em on the mirrors. Well I guess I am talking abou the 404 I get by going here http://www.openbsd.org/3.9_packages/ But oh yeah ya dope, _MIRRORS_ smart orgs use them to reduce the load on the important central servers.
Re: Using OpenBSD article in 'The Jem Report'
On Monday 01 May 2006 10:48, Kurt Miller wrote: On Sunday 30 April 2006 10:56 pm, Dave Feustel wrote: This is a very well written article for new users of OpenBSD: http://www.softwareinreview.com/cms/content/view/34/1/ One question I have: Is the description in the article of what's required to install Java on OpenBSD correct? The only thing that looked incorrect to me was the lack of a jre package. The port builds two packages; one for the jdk and one for the jre. You can install the jre using pkg_add or SUBPACKAGE=-jre make install. -Kurt Thanks for the tip. Dave -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
using queues to limit bandwidth
Can queues be used to queue overall bandwidth? We have a project where we will be sharing an Internet connection with another company, we will have an IP and they will have an IP each company providing their own firewall. I understand that queuing is able to queue based on protocol, etc on the same box but lets say there is a T1 shared between the companies, The company tells us, you can have one of our IP addresses but you can only use 100k of our bandwidth, can pf do this? I guess this is more bandwitdh throttling more so than queuing. TIA, Chris
Re: using queues to limit bandwidth
ALTQ Should do the trick: http://www.openbsd.org/faq/pf/queueing.html On 5/1/06, Chris Bullock [EMAIL PROTECTED] wrote: Can queues be used to queue overall bandwidth? We have a project where we will be sharing an Internet connection with another company, we will have an IP and they will have an IP each company providing their own firewall. I understand that queuing is able to queue based on protocol, etc on the same box but lets say there is a T1 shared between the companies, The company tells us, you can have one of our IP addresses but you can only use 100k of our bandwidth, can pf do this? I guess this is more bandwitdh throttling more so than queuing. TIA, Chris
Re: [UPDATE] php5 to version 5.1.2 (IMPORTANT)
Hi. I haven't recieved a single test report, but I still get letters about asking for an update. How's that? This tarball also includes mysqli, fastcgi and hardened php support: http://gi.unideb.hu/~robert/php.tar.gz On (28/04/06 01:59), Robert Nagy wrote: Hi. Finally after fighting with pear I've managed to create a working update for the php5 port. The PHP guys have changed the installation method of pear to use some crappy PHP_Archive. With this move they broke the installation of pear on serveral linux distros (e.g. Frugalware), OpenDarwin and on OpenBSD of course. Any other crappy package managements where they install files directly to ${LOCALBASE} this was not an issue. When others reported this issue they just closed the bugreport and did nothing. When I told them that it is fucked, they did nothing. This is sad. A PHP guy told me that they will totally remove PEAR from the PHP tarball and people must install it sperately. (With go-pear or something.) They are just making the installation method worse every time. How does it work now? Well I went back to the old installation method of pear. From now on pear comes with a separate distfile. This distfile contains the old install-pear.php, the needed tarballs (PEAR, Archive_Tar, Console_Getopt...) and a patch which is applied at pre-configure time. This patch is needed to use our special pear directories and stuff. (These patches were in the php port itself but I moved them.) Everything seems backward compatible so you can upgarde safely. Please test this diff as much as you can (with different FLAVORS) because it is important to get this php update in. Thank you. P.S.: mbalmer and i want to rework the pear infrastructure and i hope we can create some ideas together at c2k6. But for now, just test the diff please. :) And be sure to CC me if you report something because I am going to miss mails on lists like [EMAIL PROTECTED] Index: Makefile.inc === RCS file: /cvs/ports/www/php5/Makefile.inc,v retrieving revision 1.7 diff -u -r1.7 Makefile.inc --- Makefile.inc 29 Dec 2005 23:03:29 - 1.7 +++ Makefile.inc 27 Apr 2006 23:54:31 - @@ -4,8 +4,8 @@ # and has Apache that supports DSO's. NOT_FOR_ARCHS= ${NO_SHARED_ARCHS} -V= 5.0.5 -DISTNAME=php-${V} +V= 5.1.2 +DISTNAME?= php-${V} CATEGORIES= www lang MAINTAINER= Robert Nagy [EMAIL PROTECTED] @@ -15,6 +15,7 @@ http://se.php.net/distributions/ \ http://no.php.net/distributions/ \ http://uk.php.net/distributions/ +MASTER_SITES0= http://anoncvs.silihost.hu/ # UPGRADERS: please read BOTH the PHP and Zend licenses # and make sure they are safe before an upgrade Index: distinfo === RCS file: /cvs/ports/www/php5/distinfo,v retrieving revision 1.7 diff -u -r1.7 distinfo --- distinfo 29 Dec 2005 23:03:29 - 1.7 +++ distinfo 27 Apr 2006 23:54:31 - @@ -1,4 +1,8 @@ -MD5 (php-5.0.5.tar.gz) = ae36a2aa35cfaa58bdc5b9a525e6f451 -RMD160 (php-5.0.5.tar.gz) = f94cd33d13a298b5b5d2389a2d2b2079fe231fce -SHA1 (php-5.0.5.tar.gz) = 031ac2b1f56f4f6b20b17206a52627790b51f3bb -SIZE (php-5.0.5.tar.gz) = 6082082 +MD5 (pear-20060428.tar.gz) = 28ab6f44a90cbcb5dd9ed0aef32d2fa9 +MD5 (php-5.1.2.tar.gz) = b5b6564e8c6a0d5bc1d2b4787480d792 +RMD160 (pear-20060428.tar.gz) = 34bac3122dfc8218efdce0ea7df046da031e72e7 +RMD160 (php-5.1.2.tar.gz) = 7cc4f943e9495d7a70304b1670aede00ea2a7af7 +SHA1 (pear-20060428.tar.gz) = 09713b3052904c1c45acba015dc067ddad0136cb +SHA1 (php-5.1.2.tar.gz) = ff9d3ae3ccf6f1995f2b88f14703be7114b472bc +SIZE (pear-20060428.tar.gz) = 619353 +SIZE (php-5.1.2.tar.gz) = 8064193 Index: core/Makefile === RCS file: /cvs/ports/www/php5/core/Makefile,v retrieving revision 1.13 diff -u -r1.13 Makefile --- core/Makefile 8 Feb 2006 04:54:50 - 1.13 +++ core/Makefile 27 Apr 2006 23:54:31 - @@ -1,4 +1,4 @@ -# $OpenBSD: Makefile,v 1.13 2006/02/08 04:54:50 david Exp $ +# $OpenBSD: Makefile,v 1.12 2005/12/29 23:03:29 sturm Exp $ MULTI_PACKAGES= -pear SUBPACKAGE?= @@ -7,6 +7,8 @@ COMMENT-pear=base classes for common PHP tasks PKGNAME= php5-core-${V} FULLPKGNAME-pear= php5-pear-${V} +DISTFILES= php-${V}.tar.gz \ + pear-20060428.tar.gz:0 CONFIGURE_ARGS+= --with-apxs=/usr/sbin/apxs \ --without-mysql \ @@ -42,7 +44,7 @@ PHPXS_SUBST+= -e 's,${i},${${i}},' .endfor -WANTLIB= c crypto des m ssl stdc++ z +WANTLIB= c crypto m ssl stdc++ z .if defined(PACKAGING) !empty(SUBPACKAGE) PREFIX= ${CHROOT_DIR} @@ -55,19 +57,36 @@ pre-fake: ${INSTALL_DATA_DIR} ${PREFIX}/${APACHE_MODULE_SUBDIR} -
Re: using queues to limit bandwidth
On May 1, 2006, at 1:02 PM, Chris Bullock wrote: Can queues be used to queue overall bandwidth? We have a project where we will be sharing an Internet connection with another company, we will have an IP and they will have an IP each company providing their own firewall. I understand that queuing is able to queue based on protocol, etc on the same box but lets say there is a T1 shared between the companies, The company tells us, you can have one of our IP addresses but you can only use 100k of our bandwidth, can pf do this? I guess this is more bandwitdh throttling more so than queuing. Yes, CBQ works quite well. http://www.openbsd.org/faq/pf/queueing.html#cbq -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net
Re: using queues to limit bandwidth
I forgot to mention in my previous e-mail, that if you were to implement the scenerio outlined in your e-mail, then the other company would have to 'trust' that you're setting up your firewall to not exceed your 100k of bandwidth. Just setup a single queue that caps at 100k. On 5/1/06, Chris Bullock [EMAIL PROTECTED] wrote: Can queues be used to queue overall bandwidth? We have a project where we will be sharing an Internet connection with another company, we will have an IP and they will have an IP each company providing their own firewall. I understand that queuing is able to queue based on protocol, etc on the same box but lets say there is a T1 shared between the companies, The company tells us, you can have one of our IP addresses but you can only use 100k of our bandwidth, can pf do this? I guess this is more bandwitdh throttling more so than queuing. TIA, Chris
using torrents for packages?
As I saw the website providing torrents for 3.9 I just thought about somethign for packages. Isn`t it be possible to switch to torrents to install packages? In fact there many mirrors and if they all would maybe use torrent the synergy-effect would be great. With the trackerless-torrents the Servers don`t even need to set up an additinal Daemon (tracker). It may would make more sense for the install sets because there are far more packages but the synergy-effect would remain. I think http://openbsd.somedomain.net/ proofs this concept right. What`s your oppinion about this?! This would reduce the load of the (Mirror-)Servers and peoples who`ve a limited connection (e.g. traffic limit or who`ve to pay for each MB) could still use FTP/http. This would be also true for peoples who`re behind a restrictive Firewall (even this limits just the Upload) Kind regards, Sebastian
Re: using torrents for packages?
From: [EMAIL PROTECTED] Well I4m interested in YOUR ubersystem to reduce the load... Are you a solution in search of a problem, right now? DS
Re: using torrents for packages?
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, May 01, 2006 3:47 PM To: Marco Peereboom Cc: misc@openbsd.org Subject: Re: using torrents for packages? Well I4m interested in YOUR ubersystem to reduce the load... Buy the CDs, no load on the ftp servers at all.
Re: What to do to compile POSIX threads enabled GCC?
Hello! On Mon, May 01, 2006 at 09:49:46PM +0200, Karel Gardas wrote: My question is: what's really needed to do to make GCC with threads enabled working? I think this will be needed anyway seeing recent SMP and Rthreads work appearing in OpenBSD releases. I'm not sure. What does that mean? I.e. what's the difference from what you achieve now using gcc -pthread -c foo.c ... gcc -pthread -o program foo.o ...? Kind regards, Hannah.
Re: using torrents for packages?
Some mirros simply miss some install-Sets and I don4t mean the x* stuff. Some mirros didn`t updated yet (well I guess they`ll do it later). Some mirrors have parts of the Source and some have the Source but not the ports.tar.gz. And mostly no mirror has packages. May be I am missing something, but I thought the project have/had plenty of mirrors to go around. Yeap today and for the next few days may be to busy as everyone is getting to them to get their files instead of may be buying CD's, but other then that, I really thought that capacity, even for packages was plenty. Is there really a need for more? And I am not talking about Torrents, as I prefer getting my data from a trusted source thank you.
Re: using torrents for packages?
On Mon, May 01, 2006 at 03:58:57PM -0400, Wade, Daniel wrote: Buy the CDs, no load on the ftp servers at all. As soon as you figure out how to get 3G of packages for i386 alone onto a CD... -- David Terrell [EMAIL PROTECTED] ((meatspace)) http://meat.net/
Re: using queues to limit bandwidth
On Mon, 2006-05-01 at 13:02 -0400, Chris Bullock wrote: Can queues be used to queue overall bandwidth? We have a project where we will be sharing an Internet connection with another company, we will have an IP and they will have an IP each company providing their own firewall. I understand that queuing is able to queue based on protocol, etc on the same box but lets say there is a T1 shared between the companies, The company tells us, you can have one of our IP addresses but you can only use 100k of our bandwidth, can pf do this? I guess this is more bandwitdh throttling more so than queuing. TIA, Chris No one mentioned it, but this'll only work in one direction. It won't stop you from saturating the pipe with incoming traffic.
Re: using torrents for packages?
May be I am missing something, but I thought the project have/had plenty of mirrors to go around. Yeap today and for the next few days may be to busy as everyone is getting to them to get their files instead of may be buying CD's, but other then that, I really thought that capacity, even for packages was plenty. Is there really a need for more? And I am not talking about Torrents, as I prefer getting my data from a trusted source thank you. You may wanna request some changes? F.e. dropping gzsig I wonder why this tool got into the base if it`s not being used Well you`ve to download a signed *.tgz completly before you could check it but you would download a currupt/modified tar.gz also completly before you`ll notice it Buy more CD-Sets - Show me a CD-Set containing all Packages... gzsig + torrent = maybe a solution for the install sets and/or packages maybe... Kind regards, Sebastian
Re: using torrents for packages?
On Mon, 01 May 2006 16:08:11 -0400 Daniel Ouellet [EMAIL PROTECTED] wrote: And I am not talking about Torrents, as I prefer getting my data from a trusted source thank you. As irrelivant as this discussion is, why do people make comments like this? What makes downloading through http or ftp so magically secure? Bittorrent checks the checksum provided by the tracker server. So you have to trust you are getting the right data from an http or ftp server, or you have to trust that you are getting the right data from a tracker server. What's the difference? Adam
Re: using torrents for packages?
On Mon, May 01, 2006 at 09:46:51PM +0200, [EMAIL PROTECTED] wrote: Well I4m interested in YOUR ubersystem to reduce the load... I selected a mirror that's local and up to date and set PKG_PATH to use it. If the packages aren't there I'll select another mirror -or- I'll roll my own. There I have revealed my uber process. This happens very infrequently because I am not as 1337 as most gentoo users. When I install a box I actually use instead of updating it all day long. So where exactly did you explained why using the upload-capacity from e.g. the community (using torrent) to reduce the load of the servers is a bad idea? I must have missed it I don4t say Lets kill ftp, http and co.. I just ask you why you why using torrents to reduce the load of the Servers is such a bad idea in your oppinion. You simply have no synergy effect with ftp or http. No matter how many proxies/mirrors you`ve. You wanna download the ports? Well you can get them via FTP and the neat FTP-Server has some MB traffic. Or you could use torrent and get it from the same Server a) completly if there no other seeders or b) just a part if there other seeders. That`s called synergy.. you may know this word. It`s as trustfull as using binary packages/install-sets from a mirror. And if you distrust P2P-Technologies start using gzsig... Kind regards, Sebastian
Re: pf firewall question
On 4/30/06, Stuart Henderson [EMAIL PROTECTED] wrote: On 2006/04/30 06:34, S t i n g r a y wrote: Now what i want to know , maybe is O T in this list but what is the diffrence , i mean pf in openBSD is refered to as a firewall for home or small offices ? why is that , i mean what is the criteria of an enterprise firewall what is the diffrence between pf MS ISA / cisco pix or checkpoint ? performance ? stability or features ? marketing and a manager-friendly gui. I must say though, a well designed gui can be a great help in managing a set of firewalls, or a firewall with complex rules. I like pf for the cleanliness of syntax and simplicity of doing things, but the guy who ran the checkpoint firewalls for 50+ sets of firewalls and 2000+ rules across them all told me he would not have been able to manage it with pf, I did not believe him. Now that I'm managing a small bunch of checkpoint boxes with a few hundred rules, and some vpns, it *does* make things easier. I know about the traditional argument of making complex things too simple, but simplifying things for an experienced admin is good thing. Lusers shooting themselves in the foot is not my problem. And anyone thinking of implementing an ISA server is simply asking for it :) PIX is another bother. Fantastic idea, copying checkpoint's gui. But when you use it, and it tells you, this feature is not available in the gui, that rapidly becomes old. As far as performance goes, anyone implementing any kind of firewalls for a business should be using hardware that's relatively recent - unless you have ungodly amounts of specialized rules, performance should not be an issue.
Re: using torrents for packages?
On Mon, May 01, 2006 at 02:14:43PM -0700, Michael Scheliga wrote: The torrent idea has been beaten to death during previous releases. If people are so hot for torrents, then why hasn't someone made one? I don't recall every hearing that a mirror would be delisted if they offered torrents. So one of you out there wanting torrents set up a mirror and get torrents going. Or is this just a case of someone wanting someone *else* to do something? -- Darrin Chandler| Phoenix BSD Users Group [EMAIL PROTECTED] | http://bsd.phoenix.az.us/ http://www.stilyagin.com/ |
3.9 on nForce4 based amd64 systems
Hi All, Over the last couple of months we have learned that many dual core AMD Athlon64 X2 and AMD Opteron systems using nVidia's nForce4 chipset come with a broken MP BIOS implementation. As a result, they will not work with the bsd.mp kernel. For some of these systems, a BIOS update is available that fixes this, but for many cheaper desktop such an update doesn't seem to exist. Over the last few weeks, workarounds that fix up these broken MP BIOSes have been committed to -current. As of today, these workarounds have also been committed to the i386 platform. So if your machine doesn't work properly with a 3.9 bsd.mp, you might want to try your luck with a -current snapshot a go. If running a -current snapshot doesn't resolve the problems, please submit a full bug report. Cheers, Mark
Re: notebook: HP Compaq nc6220 - unable to boot from installation CD (crashes)
no sorry, not yet I don't have any USB floppy drives! Darrin Chandler wrote: Have you tried booting any other way such as floppy? Just fishing...
Re: notebook: HP Compaq nc6220 - unable to boot from installation CD (crashes)
On Tue, May 02, 2006 at 12:22:41AM +0200, Vincent Immler wrote: no sorry, not yet I don't have any USB floppy drives! Darrin Chandler wrote: Have you tried booting any other way such as floppy? Just fishing... I have had some issues with CDROMs. Sometimes I get read errors, then retries, and end up with a bad file after copy. If that happens to you during the boot process then you're obviously hosed. But if CD booting works for the various things you tried then that's probably not the problem. Still, I'd try to borrow a USB floppy just to see if you can get booted up at all. -- Darrin Chandler| Phoenix BSD Users Group [EMAIL PROTECTED] | http://bsd.phoenix.az.us/ http://www.stilyagin.com/ |
Re: using torrents for packages?
On 5/1/06, Darrin Chandler [EMAIL PROTECTED] wrote: If people are so hot for torrents, then why hasn't someone made one? I don't recall every hearing that a mirror would be delisted if they offered torrents. So one of you out there wanting torrents set up a mirror and get torrents going. don't worry, they're coming. i wasn't sure which packages people would want, so i started one seed for each combination. any minute now and i'll be done uploading all 2194807090497090655450114704370049678944665985797805950372769368159998172422787828535257591527477608716372442180425204526459346318686461 4843428303132546009093554507687285921303311309734218027621519556914828837855975339158139519461319259258584743367981421875462767533212773 28358615438202398254683140496398307692071016118211017521414400742447285556862317394789544566903565524780962246880881852045704392065095234597328925723779141443473551361399544717611898064714813006917636 9117525668336549473059320155355919095159407472865798332097949126328312176991466854757339028392311761584626729455246129696273879236135472 7621319580998127008384329465263011416106985637932809835663837045585922497642742092049732285251927611662523766179845320518199621517260633 4623313397860096097967329881959103106586381056008206614208354797548377368337380343369797445979512824633140976649150429713069662937100641114437721375838643217816671210682744684572173874753152483327 files. i'll start tomorrow on amd64.
Re: using torrents for packages?
Darrin Chandler [EMAIL PROTECTED] wrote: If people are so hot for torrents, then why hasn't someone made one? But Andrew Fresh has. http://openbsd.somedomain.net/ -- Christian naddy Weisgerber [EMAIL PROTECTED]
Re: using torrents for packages?
On Mon, May 01, 2006 at 03:39:02PM -0700, Ted Unangst wrote: don't worry, they're coming. i wasn't sure which packages people would want, so i started one seed for each combination. any minute now and i'll be done uploading all 2194807090497090655450114704370049678944665985797805950372769368159998172422787828535257591527477608716372442180425204526459346318686461 4843428303132546009093554507687285921303311309734218027621519556914828837855975339158139519461319259258584743367981421875462767533212773 28358615438202398254683140496398307692071016118211017521414400742447285556862317394789544566903565524780962246880881852045704392065095234597328925723779141443473551361399544717611898064714813006917636 9117525668336549473059320155355919095159407472865798332097949126328312176991466854757339028392311761584626729455246129696273879236135472 7621319580998127008384329465263011416106985637932809835663837045585922497642742092049732285251927611662523766179845320518199621517260633 4623313397860096097967329881959103106586381056008206614208354797548377368337380343369797445979512824633140976649150429713069662937100641114437721375838643217816671210682744684572173874753152483327 files. i'll start tomorrow on amd64. K I C K A S S ! ! ! Er, would you mind doing i386, then sparc64, *then* amd64? Please? Oh, wait... I have the CDs here. Nevermind. -- Darrin Chandler| Phoenix BSD Users Group [EMAIL PROTECTED] | http://bsd.phoenix.az.us/ http://www.stilyagin.com/ |
Re: OpenBGPd max-prefix
Sylvain Coutant [EMAIL PROTECTED] wrote: well, your 2 plus the 5 from your other customers plus the $max-prefix The 5 is the $max_prefix. We have just only one BGP customer. Total is 7. I should never have announced more than 7 routes in any case. Is there any reason why you don't filter the announcements you receive from your customer?
Re: using torrents for packages?
On Mon, May 01, 2006 at 10:42:32PM +, Christian Weisgerber wrote: Darrin Chandler [EMAIL PROTECTED] wrote: If people are so hot for torrents, then why hasn't someone made one? But Andrew Fresh has. http://openbsd.somedomain.net/ Oh, yeah. Right you are. Then why are we having this discussion? You only need one tracker. Everyone remember to be good netizens and leave your client active to keep it seeded! -- Darrin Chandler| Phoenix BSD Users Group [EMAIL PROTECTED] | http://bsd.phoenix.az.us/ http://www.stilyagin.com/ |
Re: quad de, flakiness with 3.9
David Terrell [EMAIL PROTECTED] wrote: On Sat, Apr 29, 2006 at 02:54:06PM +0200, Martin Reindl wrote: Any ideas? Simply bad hardware? This was working fine with 3.8 and even a 3.9 snapshot from two months ago before the CDs arrived monday and I did the upgrade. Give the dc(4) driver a shot instead. The dc driver didn't work at all unless I put the device in promiscuous mode. I've got some old Znyx ZX346 (quad 21140) cards that used to work great with dc and somewhat with de. Now they don't work with either driver. With de there is no media support, and with dc there is some kind of problem that causes random packet loss and corruption. I haven't had time to troubleshoot what is going on, I just swapped them out for some dual fxp cards. The basic issue here is that de and dc both support a huge number of different chips. dc supports many completely different chips from different companies that all support a similar register set and similar modes of operation Unfortunately, one person makes a change to dc that fixes their chip, and breaks two others without knowing it.
Re: notebook: HP Compaq nc6220 - unable to boot from installation CD (crashes)
Thanks for your help, but I already tried that possibility. I had to disable the following devices: pciide* uhub* brgphy* bge* wdc* isa0 then the last lines are: isa at mainbus0 not configured biomask netmask ttymask rd0: fixed, 3800blocks root on rd0a rootdev=0x1100 rrootdev=0x2f00 rawdev=0x2f02 Warning: RTC time at or beyond 2038 Warning: year set back to 2037 Warning: CHECK AND RESET THE DATE! Warning: using file system time Warning: CHECK AND RESET THE DATE! *hanging* It can't be that I have to disable so many (important) devices to get to this point ... I wish I would have bought a Thinkpad ... Dave @ Allnix, LLC wrote: The boot process stops at different points every time, so it doesn't help to disable devices (anyway I tried it!) Does anyone have similar problems? Is there any solution available? The Hardware should be fine (~6 months old, Windows/FreeBSD/Knoppix all work!)! I had something similiar happen to me on an older laptop once. On the initial boot up, boot with the '-c' option. At the prompt enable verbose mode. It will then boot and you will be able to see what it gets stuck on. See also this link... http://www.bsdforums.org/forums/archive/index.php/t-33216.html In my case, I had to disable ahc ('disable ahc' at the UKC prompt) and that enabled me to install OBSD. After the initial boot and set up, you don't have to do it again because the install will configure everythink correctly. I don't want to sell this notebook and buy a Thinkpad instead ... ;-\ Awww, you really should. I got my first one this month after years with Apples and Dells with OBSD. OBSD works so well with the TPs. Dave Thanks for your help in advance. All the best, Vincent
Re: using torrents for packages?
On 5/1/06, Darrin Chandler [EMAIL PROTECTED] wrote: On Mon, May 01, 2006 at 03:39:02PM -0700, Ted Unangst wrote: don't worry, they're coming. i wasn't sure which packages people would want, so i started one seed for each combination. any minute now and i'll be done uploading all 2194807090497090655450114704370049678944665985797805950372769368159998172422787828535257591527477608716372442180425204526459346318686461 4843428303132546009093554507687285921303311309734218027621519556914828837855975339158139519461319259258584743367981421875462767533212773 28358615438202398254683140496398307692071016118211017521414400742447285556862317394789544566903565524780962246880881852045704392065095234597328925723779141443473551361399544717611898064714813006917636 9117525668336549473059320155355919095159407472865798332097949126328312176991466854757339028392311761584626729455246129696273879236135472 7621319580998127008384329465263011416106985637932809835663837045585922497642742092049732285251927611662523766179845320518199621517260633 4623313397860096097967329881959103106586381056008206614208354797548377368337380343369797445979512824633140976649150429713069662937100641114437721375838643217816671210682744684572173874753152483327 files. i'll start tomorrow on amd64. K I C K A S S ! ! ! Right on, the developers rox0r Er, would you mind doing i386, then sparc64, *then* amd64? Please? Look how reponsive Ted was. I'm sure he'll cater to your needs. Wait, I want PPC first! Greg
Re: using torrents for packages?
On 5/1/06, Darrin Chandler [EMAIL PROTECTED] wrote: On Mon, May 01, 2006 at 10:42:32PM +, Christian Weisgerber wrote: Darrin Chandler [EMAIL PROTECTED] wrote: If people are so hot for torrents, then why hasn't someone made one? But Andrew Fresh has. http://openbsd.somedomain.net/ Oh, yeah. Right you are. Then why are we having this discussion? You only need one tracker. Everyone remember to be good netizens and leave your client active to keep it seeded! We're here because Sebastian appears to want the OpenBSD team to provide an official tracker for official package distribution. Or maybe he didn't see that Andrew Fresh is working on packages for 3.9. Or maybe he just likes to whine about slow FTP and slow compression utilities. Greg
Re: using torrents for packages?
* Ted Unangst [EMAIL PROTECTED] [060501 18:27]: On 5/1/06, Greg Thomas [EMAIL PROTECTED] wrote: On 5/1/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Isn`t it be possible to switch to torrents to install packages? Are you talking about a torrent for each package? No thanks. Are you talking about a torrent including all packages? No thanks. duh, we're going to create one torrent for every combination of packages. I do hope that's for each architecture too. :-)~ Jim
Re: using torrents for packages?
On 5/1/06, Greg Thomas [EMAIL PROTECTED] wrote: On 5/1/06, Darrin Chandler [EMAIL PROTECTED] wrote: On Mon, May 01, 2006 at 10:42:32PM +, Christian Weisgerber wrote: Darrin Chandler [EMAIL PROTECTED] wrote: If people are so hot for torrents, then why hasn't someone made one? But Andrew Fresh has. http://openbsd.somedomain.net/ Oh, yeah. Right you are. Then why are we having this discussion? You only need one tracker. Everyone remember to be good netizens and leave your client active to keep it seeded! We're here because Sebastian appears to want the OpenBSD team to provide an official tracker for official package distribution. Or maybe he didn't see that Andrew Fresh is working on packages for 3.9. Or maybe he just likes to whine about slow FTP and slow compression utilities. Greg Or maybe he can't scrape up $50 for the CDs.
Re: using torrents for packages?
On 5/1/06, Samurai Chef [EMAIL PROTECTED] wrote: On 5/1/06, Greg Thomas [EMAIL PROTECTED] wrote: On 5/1/06, Darrin Chandler [EMAIL PROTECTED] wrote: On Mon, May 01, 2006 at 10:42:32PM +, Christian Weisgerber wrote: Darrin Chandler [EMAIL PROTECTED] wrote: If people are so hot for torrents, then why hasn't someone made one? But Andrew Fresh has. http://openbsd.somedomain.net/ Oh, yeah. Right you are. Then why are we having this discussion? You only need one tracker. Everyone remember to be good netizens and leave your client active to keep it seeded! We're here because Sebastian appears to want the OpenBSD team to provide an official tracker for official package distribution. Or maybe he didn't see that Andrew Fresh is working on packages for 3.9. Or maybe he just likes to whine about slow FTP and slow compression utilities. Greg Or maybe he can't scrape up $50 for the CDs. So he can't do FTP. He can't buy the CDs. He can't do the torrents from http://openbsd.somedomain.net/. I guess he's screwed then and we'll no longer be hearing from him! Greg
Re: using torrents for packages?
Greg Thomas.. you may need some glasses http://marc.theaimsgroup.com/?l=openbsd-miscm=114648851725516w=2 Hint: Take a look at the date and the time... Btw: I talked about synergy-effects wich would be provide an advantage for all Servers. If you don`t know what synergy is and if that`s the reason why you can`t stop bitching you may wanna visit the school again This topic is as dead as your mind... Kind regards, Sebastian
OpenBSD via serial line
I was wondering about installing OpenBSD on a very old laptop (no cdrom) via serial line. I am aware it would take literally ages. I am guessing slip would be the way to go, I have never used it before. Does anyone have anything they can point me at with a reasonable introduction, such as certain manpages etc. John -- There is only one God who creates the universe. This God is my Brain. As the driver of this Brain I have created a universe in which there are innumerable other Gods of equal post-hive autonomy with whom I seek to interest. And my universe was, itself, created by a Higher Level of DivinityDNA, whose mysteries and wonders I seek to understand and harmonize with. - Dr. Timothy Leary, Beware Of Monotheism. http://deoxy.org/bom.htm
Re: PCMCIA on a laptop with a Insyde Software MobilePRO BIOS not working
On Monday 01 May 2006 17:29, Henrik Borgh wrote: I suscpect that the situation is pretty much the same on every laptop, equpped with a Insyde MobilePRO BIOS, Or it could just be Acer since I dont get any errors on my generic laptop with Insyde MobilePRO 4.00: OpenBSD 3.9-current (GENERIC) #718: Wed Apr 26 19:36:32 MDT 2006 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Celeron(R) M processor 1.30GHz (GenuineIntel 686-class) 1.30 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF real mem = 519598080 (507420K) avail mem = 466530304 (455596K) using 4256 buffers containing 26083328 bytes (25472K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(17) BIOS, date 05/21/01, BIOS32 rev. 0 @ 0xe9b90 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xe7000/0x661 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfe840/144 (7 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801AA LPC rev 0x00) pcibios0: PCI bus #2 is the last bus bios0: ROM list: 0xc/0xc800! 0xe/0x1800 0xe6000/0x1000! cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82852GM Hub-PCI rev 0x02 Intel 82852GM Memory rev 0x02 at pci0 dev 0 function 1 not configured Intel 82852GM Configuration rev 0x02 at pci0 dev 0 function 3 not configured vga1 at pci0 dev 2 function 0 Intel 82852GM AGP rev 0x02: aperture at 0xb000, size 0x800 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) Intel 82852GM AGP rev 0x02 at pci0 dev 2 function 1 not configured uhci0 at pci0 dev 29 function 0 Intel 82801DB USB rev 0x03: irq 10 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 Intel 82801DB USB rev 0x03: irq 11 usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 Intel 82801DB USB rev 0x03: irq 11 usb2 at uhci2: USB revision 1.0 uhub2 at usb2 uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered ehci0 at pci0 dev 29 function 7 Intel 82801DB USB rev 0x03: irq 7 usb3 at ehci0: USB revision 2.0 uhub3 at usb3 uhub3: Intel EHCI root hub, rev 2.00/1.00, addr 1 uhub3: 6 ports with 6 removable, self powered ppb0 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0x83 pci1 at ppb0 bus 1 cbb0 at pci1 dev 0 function 0 Texas Instruments PCI1410 CardBus rev 0x02: irq 5 rl0 at pci1 dev 2 function 0 Realtek 8139 rev 0x10: irq 11, address 00:e0:4c:44:00:4e rlphy0 at rl0 phy 0: RTL internal PHY cardslot0 at cbb0 slot 0 flags 0 cardbus0 at cardslot0: bus 2 device 0 cacheline 0x0, lattimer 0x40 pcmcia0 at cardslot0 ichpcib0 at pci0 dev 31 function 0 Intel 82801DBM LPC rev 0x03: SpeedStep pciide0 at pci0 dev 31 function 1 Intel 82801DBM IDE rev 0x03: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: FUJITSU MHT2040AT wd0: 16-sector PIO, LBA, 38154MB, 78140160 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: QSI, CDRW/DVD SBW-243, TX08 SCSI0 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31 function 3 Intel 82801DB SMBus rev 0x03: irq 5 iic0 at ichiic0 auich0 at pci0 dev 31 function 5 Intel 82801DB AC97 rev 0x03: irq 5, ICH4 AC97 ac97: codec id 0x414c4760 (Avance Logic ALC655) audio0 at auich0 Intel 82801DB Modem rev 0x03 at pci0 dev 31 function 6 not configured isa0 at ichpcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pms0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pms0 mux 0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo biomask efe5 netmask efe5 ttymask ffe7 pctr: 686-class user-level performance counters enabled mtrr: Pentium Pro MTRR support uhub4 at uhub3 port 2 uhub4: Genesys Logic USB2.0 Hub, rev 2.00/7.02, addr 2 uhub4: 4 ports with 4 removable, self powered, single transaction translator uhidev0 at uhub4 port 1 configuration 1 interface 0 uhidev0: CHESEN USB Keyboard, rev 1.10/1.10, addr 3, iclass 3/1 ukbd0 at uhidev0: 8 modifier keys, 6 key codes wskbd1 at ukbd0 mux 1 wskbd1: connecting to wsdisplay0 uhidev1 at uhub4 port 1 configuration 1 interface 1 uhidev1: CHESEN USB Keyboard, rev 1.10/1.10, addr 3, iclass 3/0
Re: Linksys support... hmm
On Sunday 30 April 2006 18:38, Lasse Bach wrote: Wtf is that? How can that be a secret? It probably isnt but i bet that's the standard reply you'll always get from first-level support. 1. Can v5 af the card be used with the ral driver? I have no idea. I know the ural works with the listed Surecom EP-9001-g though. 2. Why are such information not available to their customers? Because Linksys makes substandard products (much like their mother company Cisco, only cheaper) and have retarded policies? --- Lars Hansson
Re: pf firewall question
On Tuesday 02 May 2006 05:31, bofh wrote: I must say though, a well designed gui can be a great help in managing a set of firewalls, or a firewall with complex rules. I like pf for the cleanliness of syntax and simplicity of doing things, but the guy who ran the checkpoint firewalls for 50+ sets of firewalls and 2000+ rules across them all told me he would not have been able to manage it with pf, I did not believe him. Now that I'm managing a small bunch of checkpoint boxes with a few hundred rules, and some vpns, it *does* make things easier. Maybe that says more about the design of Checkpoint than it does about pf. --- Lars Hansson
Re: 3.9 build on AMD64
No. Stable or Release build that I downloaded boot disks for today (waiting for my CD's). Completely blank machine. Formatted hard drive with low-level SATA utility. Bob Beck wrote: * Ed V. [EMAIL PROTECTED] [2006-05-01 12:34]: Install from bare metal. Install completed without errors. What did you install? a snapshot that you are now attempting to build 3.9 overtop of? -Bob CVS checkout of '-r OPENBSD_3_9' from 'anoncvs3.usa' was successful and 'make obj' and build of both GENERIC and custom kernel went well with no reported errors. On make build however, the following occurred: cc -O2 -pipe -DHAVE_CONFIG_H -DBINDIR=\/usr/bin\ -DSBINDIR=\/usr/sbin\ -DLIBEXECDIR=\/usr/libexec\ -DSYSCONFDIR=\/etc/kerberosV\ -I/usr/include/kerberosV -I/usr/src/kerberosV/libexec/kdc/../../include -I/usr/src/kerberosV/libexec/kdc/../../src/lib/roken -I/usr/src/kerberosV/libexec/kdc/../../src/include -I/usr/src/kerberosV/libexec/kdc/../../src/lib/sl -Wall -DHAVE_DLOPEN -I/usr/src/kerberosV/libexec/kdc/../../src/lib/krb5 -I/usr/src/kerberosV/libexec/kdc/../../src/kdc -c /usr/src/kerberosV/src/lib/roken/parse_bytes.c cc -o kdc 524.o config.o connect.o kerberos5.o kerberos4.o log.o main.o misc.o print_version.o parse_bytes.o -lkrb5 -ldes -lcrypto -lutil 524.o(.text+0x37): In function `fetch_server': : undefined reference to `principalname2krb5_principal' 524.o(.text+0x14d): In function `log_524': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0xe38): In function `as_rep': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0xea9): In function `as_rep': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0x11a8): In function `as_rep': : undefined reference to `KDCOptions_units' kerberos5.o(.text+0x24a4): In function `tgs_make_reply': : undefined reference to `krb5_principal2principalname' kerberos5.o(.text+0x2c1e): In function `need_referral': : undefined reference to `krb5_get_host_realm_int' kerberos5.o(.text+0x2d60): In function `tgs_rep2': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0x328c): In function `tgs_rep2': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0x335f): In function `tgs_rep2': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0x33a6): In function `tgs_rep2': : undefined reference to `principalname2krb5_principal' kerberos5.o(.text+0x33d0): In function `tgs_rep2': : undefined reference to `KDCOptions_units' kerberos4.o(.text+0x5b): In function `encode_v4_ticket': : undefined reference to `principalname2krb5_principal' kerberos4.o(.text+0x106): In function `encode_v4_ticket': : undefined reference to `principalname2krb5_principal' collect2: ld returned 1 exit status *** Error code 1 Stop in /usr/src/kerberosV/libexec/kdc (line 93 of /usr/share/mk/bsd.prog.mk). *** Error code 1 Stop in /usr/src/kerberosV/libexec. *** Error code 1 Stop in /usr/src/kerberosV. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src (line 73 of Makefile). 'dmesg' output is attached as plain text file. Did I hose something? Or is this a 'known error' that there is a workaround for? -- Ed V. # cat /var/run/dmesg.boot OpenBSD 3.9 (Asus-A8N) #0: Mon May 1 11:05:52 MDT 2006 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/Asus-A8N real mem = 2147020800 (2096700K) avail mem = 1837740032 (1794668K) using 22937 buffers containing 214908928 bytes (209872K) of memory mainbus0 (root) acpi0 at mainbus0: rev 0 acpi0: tables DSDT FACP MCFG acpitimer0 at acpi0: 3579545 Hz, 24 bits acpibtn0 at acpi0: PWRB cpu0 at mainbus0: (uniprocessor) cpu0: AMD Athlon(tm) 64 Processor 4000+, 2412.64 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,SSE3,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 1MB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative pci0 at mainbus0 bus 0: configuration mode 1 NVIDIA nForce4 DDR rev 0xa3 at pci0 dev 0 function 0 not configured pcib0 at pci0 dev 1 function 0 NVIDIA nForce4 ISA rev 0xa3 nviic0 at pci0 dev 1 function 1 NVIDIA nForce4 SMBus rev 0xa2 iic0 at nviic0 iic1 at nviic0 lm0 at iic1 addr 0x2f: W83791SD ohci0 at pci0 dev 2 function 0 NVIDIA nForce4 USB rev 0xa2: irq 5, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 10 ports with 10 removable, self powered ehci0 at pci0 dev 2 function 1 NVIDIA nForce4 USB rev 0xa3: irq 3 usb1 at ehci0: USB revision 2.0 uhub1 at usb1 uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 uhub1: 10 ports with 10 removable, self powered pciide0 at pci0 dev 6
Re: pf firewall question
On 5/1/06, Lars Hansson [EMAIL PROTECTED] wrote: On Tuesday 02 May 2006 05:31, bofh wrote: I must say though, a well designed gui can be a great help in managing a [...] not believe him. Now that I'm managing a small bunch of checkpoint boxes with a few hundred rules, and some vpns, it *does* make things easier. Maybe that says more about the design of Checkpoint than it does about pf. Hence that bit about a well designed gui. Not all guis are designed equally well. We just had a nortel sales guy tell us that their new ($$) contivity admin software is just like checkpoint. We tried it. OK, it was like checkpoint just like some ugly drag queen[1] is just like a supermodel because he put on a bikini. Yucks. [1] Apologies to anyone who has hots for ugly drag queens.
Re: using torrents for packages?
On 5/1/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Greg Thomas.. you may need some glasses http://marc.theaimsgroup.com/?l=openbsd-miscm=114648851725516w=2 Hint: Take a look at the date and the time... Btw: I talked about synergy-effects wich would be provide an advantage for all Servers. If you don`t know what synergy is and if that`s the reason why you can`t stop bitching you may wanna visit the school again Dude, This is openbsd. It's a put up or shut up world. If you want torrents of packages, put it up. If you're not willing to do it, but want to fly a flag up and see if someone else will do it, go ahead, but if the flag gets shot, just withdraw it. Right now, it seems that none of the developers are willing to spend time or effort on it. It also appears that each time someone brings it up, the developers are not willing to do it. So, unless you want to do it, please drop it. Thanx.
Re: using torrents for packages?
Adam wrote: On Mon, 01 May 2006 16:08:11 -0400 Daniel Ouellet [EMAIL PROTECTED] wrote: And I am not talking about Torrents, as I prefer getting my data from a trusted source thank you. As irrelivant as this discussion is, why do people make comments like this? What makes downloading through http or ftp so magically secure? Bittorrent checks the checksum provided by the tracker server. So you have to trust you are getting the right data from an http or ftp server, or you have to trust that you are getting the right data from a tracker server. What's the difference? I don't want to turn this into a debate. I didn't imply that ftp or http was more secure then Bittorrent, but it provide the checksum as well as the files from the same source. But getting my files from example: [EMAIL PROTECTED]:/cvs or [EMAIL PROTECTED]:/cvs where Maintained by Todd Miller. or from [EMAIL PROTECTED]:/cvs Maintained by Bob Beck or [EMAIL PROTECTED]:/cvs Maintained by Michael Shalayeff. just to take a few only and that doesn't put a judgment on the other maintainers of other source, is more likely to be more secure and more trusted with many more eyeballs looking at it then a bittorrent from someone that I don't know or may not have been on the lists for many years contributing and helping others as well with track records coming from long ago. It was a simple statement on the likely hood to make more trusted source file form well known source maintain by trusted people known to the project. After all they have cvs rights, so that must mean something no? If a dev with cvs right setup a bittorrent for distributions, or someone with many years of track records on the lists setup that, then I am more likely to trust it, or not. I am not saying anything bad about anyone that may want to help with bittorrent, if you took it as an insult, then my apology for that. Sure wasn't my intentions here. If the pkg_add for example was always comparing the checksum of any download source with a reference at checksum.openbsd.org for example via ssh, or what not, then I would say, yes, we can trust any download source as when it take it, it will automatically kill it if it is not right. But it is not how it is really. Now, I don't need the answer to this and I don't want to extend this more either. so I will stop here, no more reply either on the subject, but may be a user may check the checksum of the files when download with the listed one, but how many actually go check the main site as well to get the checksum from that site. I bet you many just use pkg_add and thing it does check the checksum by itself and if you have something on bittorrent that is tinted, but the checksum actually reflect the file, even if it doesn't reflect the main site, I would be curious to know how long this would go before it's been notice. Anyway, sorry for my statement in the first post. I main a mistake to express it there and it shadow the real question that was if there was a need for more capacity for packages for example. I was offering that, but it got miss receive and my apology for that. In the end, I conclude that there isn't any need for more capacity as it wasn't express as been needed. Sorry for the noise. Daniel
Re: using torrents for packages?
On Tue, May 02, 2006 at 03:57:42AM +0200, [EMAIL PROTECTED] wrote: Btw: I talked about synergy-effects wich would be provide an advantage for all Servers. If you don`t know what synergy is and if that`s the reason why you can`t stop bitching you may wanna visit the school again This topic is as dead as your mind... hmm. don't get me wrong; i enjoy being able to use my upstream to give more than i get with torrents, but i don't believe: $ sudo pkg_add calc-2.11.7 calc-2.11.7|connecting to tracker calc-2.11.7|torrenting calc-2.11.7|download complete. seeding. ^Z to background ^C to cancel makes much sense. i reread the OP to make sure i was reading the original question right, and there is mention that it might make more sense for the install sets than for packages, but the original topic is for packages; anyone around since this time last year remembers andrew fresh's post up about the torrents he's seeding, which already have $(uname -r).$(uname -m).packages.torrent; so i imagine the original question has to do primarily with individual packages... a couple of things spring to mind: A) python would have to be in base then. the license seems to my amateur eyes as a BSD license with a tamed-down djb clause #3. perhaps the license excludes it from consideration in base. B) making the ports infrastructure make constructive use of the bittorrent concept might be complicated. some packages are quite small; some packages are quite large. people are going to have to sit around seeding forever for some of them for there to be any difference from just going FTP... do you really think there's a need for an official/integrated torrent mechanism for obsd, given what binaries are actually distrubuted, other than what someone else has already stepped up and provided? Kind regards, Sebastian if those are kind regards, i wonder what lively discussion would be borne of the unkind ones... -- jared [ openbsd 3.9-current GENERIC ( mar 15 ) // i386 ]
Re: OpenBSD via serial line
On Monday 01 May 2006 22:15, John Kintaro Tate wrote: I was wondering about installing OpenBSD on a very old laptop (no cdrom) via serial line. I am aware it would take literally ages. I am guessing slip would be the way to go, I have never used it before. Does anyone have anything they can point me at with a reasonable introduction, such as certain manpages etc. John I've never thought about a serial feeding. You're right, it would take forever. My suggestion would be to take the disk out of the laptop and stuff it into a more modern unit and do the install that way, or, get an adaptor and put the disk into an i386 box and do an install that way. Either way is apt to be faster than using a serial line (gack). --STeve Andre'
Re: OpenBSD via serial line
On Tue, May 02, 2006 at 12:15:09PM +1000, John Kintaro Tate wrote: I was wondering about installing OpenBSD on a very old laptop (no cdrom) via serial line. I am aware it would take literally ages. I am guessing slip would be the way to go, I have never used it before. Does anyone have anything they can point me at with a reasonable introduction, such as certain manpages etc. No network? -Ray-
Re: OpenBSD via serial line
STeve Andre' wrote: On Monday 01 May 2006 22:15, John Kintaro Tate wrote: I was wondering about installing OpenBSD on a very old laptop (no cdrom) via serial line. I am aware it would take literally ages. I am guessing slip would be the way to go, I have never used it before. Does anyone have anything they can point me at with a reasonable introduction, such as certain manpages etc. John I've never thought about a serial feeding. You're right, it would take forever. My suggestion would be to take the disk out of the laptop and stuff it into a more modern unit and do the install that way, or, get an adaptor and put the disk into an i386 box and do an install that way. Either way is apt to be faster than using a serial line (gack). How about a USB PCMCIA card plus USB CD-ROM? Probably need the 'c' floppy instead of the 'a', but it might work.
Red Black Trees
I am reading through the tree(3), and I need some clarification. If I want to correctly remove an element from a red black tree that I have found and free it's memory allocation, this code should work, right? find.i = 400; n = RB_FIND(inttree, head, find); if (n != NULL) { n = RB_REMOVE(inttree, head, n); free(n); } else if (n == NULL) (void)printf(satisfied NULL check\n); I ask because the man page is clear for splay trees, but I am not certain for Red Black trees. I looked at /usr/include/sys/tree.h, and I did not find any explicit free's. I assume that since RB_REMOVE will provide me with a pointer to the removed element, that all I need to do is free it. Also, is the above the most efficient way to find and remove an element from a red black tree? Cheers, Brian Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: using torrents for packages?
On 5/1/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Greg Thomas.. you may need some glasses http://marc.theaimsgroup.com/?l=openbsd-miscm=114648851725516w=2 Hint: Take a look at the date and the time... http://www.bsdforums.org/forums/archive/index.php/t-31242.html What's your point and why are you bothering misc about something that is not going to be handled by the developers and is already being handled by someone else? Greg
Re: using torrents for packages?
On 2-May-06, at 12:21 AM, jared r r spiegel wrote: a couple of things spring to mind: A) python would have to be in base then. the license seems to my amateur eyes as a BSD license with a tamed-down djb clause #3. perhaps the license excludes it from consideration in base. bittorrent is a protocol whose first implementation happened to be in python, nothing more... B) making the ports infrastructure make constructive use of the bittorrent concept might be complicated. some packages are quite small; some packages are quite large. people are going to have to sit around seeding forever for some of them for there to be any difference from just going FTP... Obviously the idea of seeding makes integrating bt with the package tools ridiculous. The only way to start would be to download them by hand (which we can all do now apparently, teh yays!) but that makes dependency management hellish. I guess somebody could hack up a bt client that was dependency aware to use alongside the package tools. But the nearest mirror has always been lightning fast for me, much faster than I expect bt would ever be. Out of the thousands of packages, how many people are really going to leave their machines seeding the particular ones that I want? Jeremy
Compilers make a system less secure?
Hello... Some people seem to think that installing a compiler inherently makes their system less secure... despite never being able to cite any actual reasons why. Personally, I really dont see how a compiler is going to lessen security, particuarly when they are used to patch the system, But I was wondering what people here thought? Josh