hot spot with OBSD 4.0
Dear all Very newbie question : How to setup OBSD 4.0 become hotspot machine , any link to start over beside google. Thx -sonjaya- http://sicute.blogspot.com
Typo in sudo(8) manpage
Here's the command I used to make the patch as I'm not sure I used the correct switches : $ diff -u sudo.8.org sudo.8.new sudo.8.patch --- sudo.8.org Thu Feb 22 09:58:00 2007 +++ sudo.8.new Thu Feb 22 09:58:43 2007 @@ -593,7 +593,7 @@ \ $ sudo cd /usr/local/protected .Ve .PP -since when whe command exits the parent process (your shell) will +since when the command exits the parent process (your shell) will still be the same. Please see the \s-1EXAMPLES\s0 section for more information. .PP If users have sudo \f(CW\*(C`ALL\*(C'\fR there is nothing to prevent them from
Re: hot spot with OBSD 4.0
Le Thu, 22 Feb 2007 16:22:35 +0700 sonjaya [EMAIL PROTECTED] a pris sa plume: more secure more better , i would happy if you want share to all . if it is just for you and familly/friends authpf and openvpn is the solution if if for a very public hotspot you must take a look at captive portal (but not really secure for a good fellow)
Re: hot spot with OBSD 4.0
On 2/22/07, sonjaya [EMAIL PROTECTED] wrote: more secure more better , i would happy if you want share to all . Thats the right attitude! ;) O.K. I will dump my /dev/brain into a documentation and put it online today or tomorrow. Andreas. -- Hobbes : Shouldn't we read the instructions? Calvin : Do I look like a sissy?
Re: hot spot with OBSD 4.0
ok i will be waiting good news from your.Thx before On 2/22/07, Andreas Maus [EMAIL PROTECTED] wrote: On 2/22/07, sonjaya [EMAIL PROTECTED] wrote: more secure more better , i would happy if you want share to all . Thats the right attitude! ;) O.K. I will dump my /dev/brain into a documentation and put it online today or tomorrow. Andreas. -- Hobbes : Shouldn't we read the instructions? Calvin : Do I look like a sissy? -sonjaya- http://sicute.blogspot.com
Re: hot spot with OBSD 4.0
Hi, i am using nocatauth from nocat.net. you need to modify some initialize rules. i am using two machine, you can run in one machine, however i still can fine perl5 net:netmask something that needed. brgds, riwan At 02:54 PM 02/22/2007 +0700, sonjaya wrote: Dear all Very newbie question : How to setup OBSD 4.0 become hotspot machine , any link to start over beside google. Thx -sonjaya- http://sicute.blogspot.com
Re: Email server and large Emails.
Hi, On Wed, 21.02.2007 at 14:14:57 -0800, lechuit pierre [EMAIL PROTECTED] wrote: The problem has been translated on FTP (creation of FTP access to transfer presentation!) that's what the regular users can be taught to use, and it works. One policy used is to postpone big files to transfer them during night. This is only required if you have too little bandwidth. Then : - many communication, try to create, with all the associates, mail best practicies If you can make them even discuss a proper email policy, then you're almost there. But this isn't the norm, imho, because email is so easy that discussing it is only a waste of time. Except that the legal and marketing departments get their say on how to bloat the footer by 3k per message, and/or enforce HTML email. - that your ISP route all the email so that you manage your smtp queues That should be the standard. Using a foreign POP3 mailbox or some such isn't corporate usage. This might work for a small shop, but at least, it doesn't scale. - may be one server to reveive, another to send if possible That's only necessary if you have a large volume of email. In most other cases, I'd use both for both directions in order to have at least one server up at all times. Best, --Toni++
Re: hot spot with OBSD 4.0
On 2/22/07, earx [EMAIL PROTECTED] wrote: Le Thu, 22 Feb 2007 16:22:35 +0700 sonjaya [EMAIL PROTECTED] a pris sa plume: more secure more better , i would happy if you want share to all . if it is just for you and familly/friends authpf and openvpn is the solution Right. My access point is only for my friends, but never the less it uses ipsec. Because openvpn was too easy and any unexperienced user can setup a vpn with openvpn. So we decided we are experienced users and used ipsec (with certificates) ;) So I can (and will) contribute a a AP with WEP+ipsec (not with ipsec.conf) and configurations for OpenBSD and Linux clients (I'm still working on WinDOS XP). Andreas. -- Hobbes : Shouldn't we read the instructions? Calvin : Do I look like a sissy?
Re: hot spot with OBSD 4.0
On Thu, 22 Feb 2007 14:54:34 +0700 sonjaya [EMAIL PROTECTED] wrote: Dear all Very newbie question : How to setup OBSD 4.0 become hotspot machine , any link to start over beside google. Thx -sonjaya- http://sicute.blogspot.com Have a look at: http://www.chillispot.org/ -- Scott Radvan [EMAIL PROTECTED]
Re: HTTP URL filtering?
Daniel Ouellet wrote:
Toni Mueller wrote:
I don't want to generally deny, or slow down, IE users of the site (I
can't), but only want to deny them range requests. I didn't find a knob
in Apache to do this. If anyone else does, I'm still interested.
May be I am thick here, I still don't understand what you are after
here. You can block access with:
Order Allow,Deny
Allow from all
Deny from w.x.y.z/xx
And with something like:
BrowserMatchNoCase \MSIE 5.5 browser=MSIE_5.5
and SetEnvIf, you can do clever things.
I didn't put a lots of thoughts in the last piece here as I use that for
blocking some specific traffic and the like, but I don't see why it
woudln't be possible.
Then I use something like:
RewriteRule Your rule here http://%{REMOTE_ADDR}/ [L,E=nolog:1]
But that needs to be specific for each setup you want to use.
I would need to spend time thinking about it, but I would think it's
possible to do. Not easy, but possible. Some reading is needed.
Todays post on Undeadly about the Layer-7 SSL load balancer almost
looked as if it could do just this, at least if you could identify
win-machines with the OS fingerprinting, and send all IE (hence all
winders users) to a relay that would change so that the server doesn't
announce range capabilities.
Perhaps a long-winded way of solving this, if there is no other simple
knob in apache to turn ranges off.
cyrus squatter haning computer?
Has anyone else had a problem with cyrus-imap squatter causing the enire computer to hang? cyrus-imapd-2.2.13p0 OpenbBSD 4.0 I had /etc/cyrus.conf to do squatter at 06:00 and maybe after about five to seven days the computer would hang, either with the display frozen or no display, requiring a power reset to fix. This time I caught a process in a top display that may have been the reason, squatter. notes: HERE is the top that was on my ssh session when connection was lost: = load averages 1.54, 1.57, 1.66 52 processes: 1 running, 50 idle, 1 on processor CPU States: 39.6% user 0.0% nice 15.3% system, 0.3% interrupt, 44.9% idle Memory: Real: 236M/322M act/tot Free 112M Swap: 6440K/3072M used/tot PID USERNAME PRI NICE SIZE RES STATEWAIT TIMECPU COMMAND 831 _cyrus600 9052K 8200K run -0:26 31.69% squatter 30372 named 20 14M 14M sleepselect 6:23 0.34% named 32246 _clamav20 26M 27M sleeppoll18:43 0.00% clamd 1865 _mysql 20 301M 53M sleeppoll 3:20 0.00% mysqld 7718 _spamd 20 11M 6548K idle select 3:01 0.00% spamd Here is the imapd.log just before squatter hangs entire computer, I changed username and domainname to protect users in example: Feb 22 06:00:00 mail master[831]: about to exec /usr/local/libexec/cyrus-imapd/squatter Feb 22 06:00:00 mail squatter[831]: indexing mailboxes Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox user.x1.Sent [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:00 mail squatter[831]: indexing mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:04 mail squatter[831]: indexing mailbox [EMAIL PROTECTED] Feb 22 06:00:06 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:00:06 mail squatter[831]: skipping mailbox [EMAIL PROTECTED] Feb 22 06:[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@ [EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@ [EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@ [EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@ ... # pkg_info | grep cyrus cyrus-imapd-2.2.13p0 Cyrus IMAP server cyrus-imapd-perl-2.2.13 perl utils for the Cyrus IMAP server cyrus-sasl-2.1.21p2-ldap RFC SASL (Simple Authentication and Security Layer) # grep squatter /etc/cyrus.conf squattercmd=squatter -s at=0600
Re: cyrus squatter haning computer?
On Thu, 22 Feb 2007, Paul Pruett wrote: Has anyone else had a problem with cyrus-imap squatter causing the enire computer to hang? Not, squatter works fine (but beware, it can take a lot of ressources). Here's what I have in cyrus.conf: squatter cmd=squatter -s -r user at=0540 Can you try other ressource intensive applications? Maybe this has nothing to do with squatter. -- Antoine
Broken link in 'man sendmail(8)'
The manual page of sendmail(8) contains the following link: http://www.sendmail.org/tips/DontBlameSendmail.html It seems sendmail replaced the link by the following: http://www.sendmail.org/tips/DontBlameSendmail.php Can someone please fix this?
Re: cyrus squatter haning computer?
On 2007/02/22 13:34, Paul Pruett wrote: Has anyone else had a problem with cyrus-imap squatter causing the enire computer to hang? The hang might be related to the heavy i/o from the full-text indexing. If it's an amd64 processor with an i386 kernel I'm tempted to suggest trying a snapshot from the last few days. You missed out the dmesg, btw.
Preferred hardware vendors
I'm in the middle of putting together a rather large order for servers, about half of which will be running OpenBSD. I've gotten pretty good at finding compatible hardware, but I was wondering, is there a vendor(s) who is known for either a) good technical support for OpenBSD or b) support for the development of OpenBSD (or both)? A company I can feel good about dealing with? -- Jeff Simmons [EMAIL PROTECTED] Simmons Consulting - Network Engineering, Administration, Security By these actions SRL became the first to operate intentionally lethal machinery over the net with standard browser software. -- Survival Research Laboratories
monitoring traffic/bandwidth on a bridge
I am running OpenBSD 4.0 and have a bridge set up between two interfaces: fxp0 and xl0. I would like a program that gives a fairly basic report on the traffic flowing through this bridge. I am primarily interested in knowing which IPs on the xl0 side of the bridge are pulling the most bandwidth. I am currently experimenting with bwm-ng and ntop, but was wondering if anyone had a super magic awesome tool that they could recommend. Thanks, Ross
Re: Preferred hardware vendors
On Thursday 22 February 2007 09:14, Darrin Chandler wrote: On Thu, Feb 22, 2007 at 08:49:41AM -0800, Jeff Simmons wrote: I'm in the middle of putting together a rather large order for servers, about half of which will be running OpenBSD. I've gotten pretty good at finding compatible hardware, but I was wondering, is there a vendor(s) who is known for either a) good technical support for OpenBSD or b) support for the development of OpenBSD (or both)? A company I can feel good about dealing with? A while back I bought a server from http://www.asacomputers.com/. They are listed on http://www.openbsd.org/products.html, which I didn't know until *after* I'd bought from them. They were helpful and responsive, and worked with me to line up a compatible RAID controller, etc. They installed and configured OpenBSD with everything working. Of course I did a fresh install, but since they'll install and configure as part of the price you *know* everything will work before they ship. :) They even called/emailed me later to make sure I was happy with the machine, and that there were no problems. They are not the cheapest, but they carry good quality server hardware and the service appears to be very good (I can't say what would happen if I'd had problems, since everything has been fine). And when I say they're not the cheapest, neither are they the most expensive. For what they're selling they're competitive. ASA Computers is also listed on http://www.openbsd.org/donations.html They have been here in the silicon valley for almost 20 years, have a great reputation locally and I've bought from them multiple times over the last 15 years. I've never had a problem with them and they even handled the return of a faulty mainboard very well. Supporting open source is not new to them. They've been selling supported systems and have been providing distros/projects on CD since the mid 90's. -jcr
Re: 4.0 msmtp port
On Wed, 2007-02-21 at 20:05 -0700, Darren Spruell wrote: On 2/21/07, Ryan Corder [EMAIL PROTECTED] wrote: does anyone know why GSSAPI authentication has been disabled on the port of msmtp in 4.0? Might be a good question for ports@ and (if not ports@) the maintainer. good point, thanks. -- Ryan Corder [EMAIL PROTECTED] Systems Engineer, NovaSys Health LLC. 501-219- ext. 646 [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
Re: Email server and large Emails.
To start with, I based my anti-spam on the system described at http://www.flakshack.com/anti-spam/wiki/index.php and it works very very well. I think someone already suggested limiting the size of files that are scanned by the anti-virus, and I'd second that opinion. Chances are your boss and everyone else at your company has antivirus running on their PC right? So, the antivirus running on your mail server is just one of many lines of defense against virii. Let it handle the easy stuff (less than 5MB or whatever works for you) and leave the heavy lifting to the workstation AV that's installed anyway. You need to find that happy balance between performance and AV on your mail server, and make sure the boss knows you have to make this compromise because of the performance issues caused by large attachments. Either that or she has to buy you a 4-proc dual core box to handle all the AV processes. If she keeps complaining, remind her that the reason it's taking so long to get a 50MB email is because the person sending it is doing so on a 129Kb/s DSL uplink, not because your mail server is slow. -Original Message- From: stuartv [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 21, 2007 8:39 AM To: [EMAIL PROTECTED] Org (E-mail) Subject: Email server and large Emails. I have FINALLY been allowed to schedule time to replace the aging mail server. Currently, it is running OpenBSD 3.7, with sendmail, smtp-vilter, and clamav. This is our internal mail server and it uses fetchmail to get our email off of the public server and sends our email out using a smart relay host provided by our ISP. When I originally set this server up I was also running spamassassin but had to remove it because it was causing the system to time out and stop getting mail for some reason that I never figured out. The boss where I work has NO sense of humor about not getting her email, and doesn't seem to get enough spam that it bothered her so I did the better part of valor thing and just axed the spamassassin. Lately, we have been receiving emails with larger and larger attachments which has been causing the clamav to take to long scanning them and thus a time-out and again, no more email until I get it straitened out. So now to my question. What software works really well for an internal mail server? I would like some spam protection and I NEED Anti-virus, and I need it all to work even when a customer sends an email with a 50M file attachment because they sometimes do. I don't mind doing the research and figuring out how to make it all work (although a point in the right direction would be appreciated). I just would like to know what people are using that really works for them. Stuart van Zee Dataline Systems, Inc. [EMAIL PROTECTED]
Re: monitoring traffic/bandwidth on a bridge
On Thu, Feb 22, 2007 at 11:53:33AM -0500, Ross Davis wrote: I am running OpenBSD 4.0 and have a bridge set up between two interfaces: fxp0 and xl0. I would like a program that gives a fairly basic report on the traffic flowing through this bridge. I am primarily interested in knowing which IPs on the xl0 side of the bridge are pulling the most bandwidth. I am currently experimenting with bwm-ng and ntop, but was wondering if anyone had a super magic awesome tool that they could recommend. Thanks, Ross net/pfstat and/or sysutils/symon Nice graphs :) Regards, ahb
Re: Broken link in 'man sendmail(8)'
On Thursday 22 February 2007 06:10, Tom Van Looy wrote: The manual page of sendmail(8) contains the following link: http://www.sendmail.org/tips/DontBlameSendmail.html It seems sendmail replaced the link by the following: http://www.sendmail.org/tips/DontBlameSendmail.php Can someone please fix this? It's an easy edit, so why not send the diff? --- ./gnu/usr.sbin/sendmail/sendmail/sendmail.8.origThu Feb 22 10:43:29 2007 +++ ./gnu/usr.sbin/sendmail/sendmail/sendmail.8 Thu Feb 22 10:46:22 2007 @@ -638,7 +638,7 @@ the permission problems should be fixed. For more information, see: .Pp -.Pa http://www.sendmail.org/tips/DontBlameSendmail.html +.Pa http://www.sendmail.org/tips/DontBlameSendmail.php .Sh FILES Except for the file .Pa /etc/mail/sendmail.cf
Re: Broken link in 'man sendmail(8)'
On Thursday 22 February 2007 06:10, Tom Van Looy wrote: The manual page of sendmail(8) contains the following link: http://www.sendmail.org/tips/DontBlameSendmail.html It seems sendmail replaced the link by the following: http://www.sendmail.org/tips/DontBlameSendmail.php I forwarded this to the webmaster for sendmail.org, IMHO it's a bad idea to break existing links. It would be much nicer if some reorganization (under construction?) didn't break linking for the rest of the world...
Upgrade 4.0 docs
http://openbsd.org/faq/upgrade40.html Upgrade 3.9 to 4.0 (section 1.3) does not seem to mention changes to these two files: /var/www/htdocs/manual/mod/core.html /var/www/htdocs/manual/mod/mod_proxy.html Frank
acpidump: strange opcode 0x3
Hello, I'm trying the latest acpi changes. When I try to use acpidump with or without the -o option I get the following error: acpidump: strange opcode 0x3 The file is huge, you can see the file with the error at the end, here: http://www.wiroth.net/samples/acpidump.txt Kind regards, Didier Here is my dmesg: OpenBSD 4.1-beta (GENERIC.MP.peere) #0: Thu Feb 22 11:50:18 CET 2007 [EMAIL PROTECTED]:/home/sources/src/sys/arch/i386/compile/GENERIC.MP.peere cpu0: Intel(R) Core(TM)2 CPU 6700 @ 2.66GHz (GenuineIntel 686-class) 2.68 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR real mem = 3220271104 (3144796K) avail mem = 2946883584 (2877816K) using 4278 buffers containing 161136640 bytes (157360K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+ BIOS, date 10/30/06, BIOS32 rev. 0 @ 0xf0010, SMBIOS rev. 2.4 @ 0xf0690 (74 entries) bios0: stem manufacturer P5WDG2 WS PRO apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 3.0 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf71a0/320 (18 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801GB LPC rev 0x00) pcibios0: PCI bus #6 is the last bus bios0: ROM list: 0xc/0xd000 0xcd000/0x2200 acpi0 at mainbus0: rev 2 acpi0: tables DSDT FACP APIC OEMB HPET MCFG acpitimer0 at acpi0: 3579545 Hz, 24 bits acpi device at acpi0 from table DSDT not configured acpi device at acpi0 from table FACP not configured acpimadt0 at acpi0 table APIC addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 267 MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 CPU 6700 @ 2.66GHz (GenuineIntel 686-class) 2.68 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, pins 24, base 0 ioapic1 at mainbus0: apid 3 pa 0xfec1, version 20, pins 24, base 24 acpi device at acpi0 from table OEMB not configured acpihpet0 at acpi0 table HPET: 14318179 Hz acpi device at acpi0 from table MCFG not configured acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 6 (P0P1) acpiprt2 at acpi0: bus 0 (P0P2) acpiprt3 at acpi0: bus 1 (P0P3) acpiprt4 at acpi0: bus 2 (P0P8) acpiprt5 at acpi0: bus 0 (P0P9) acpiprt6 at acpi0: bus 3 (P0P4) acpiprt7 at acpi0: bus 4 (PXHA) acpibtn0 at acpi0: SLPB acpibtn1 at acpi0: PWRB pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82975X MCH rev 0xc0 ppb0 at pci0 dev 1 function 0 Intel 82975X PCIE rev 0xc0 pci1 at ppb0 bus 6 vga1 at pci1 dev 0 function 0 ATI Radeon X300 rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ATI Radeon X300 Sec rev 0x00 at pci1 dev 0 function 1 not configured azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 19 (irq 11) azalia0: host: High Definition Audio rev. 1.0 azalia0: codec: 0x04x/0x11d4 (rev. 2.0), HDA version 1.0 audio0 at azalia0 ppb1 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01 pci2 at ppb1 bus 3 ppb2 at pci2 dev 0 function 0 Intel PCIE-PCIE rev 0x09 pci3 at ppb2 bus 4 ppb3 at pci3 dev 2 function 0 Intel IOP331 PCIX-PCIX rev 0x0a pci4 at ppb3 bus 5 ami0 at pci4 dev 14 function 0 Symbios Logic MegaRAID SATA 4x/8x rev 0x0a: apic 3 int 4 (irq 10) ami0: LSI 3008, 32b, FW 814D, BIOS vH431, 128MB RAM ami0: 1 channels, 0 FC loops, 3 logical drives scsibus0 at ami0: 40 targets sd0 at scsibus0 targ 0 lun 0: AMI, Host drive #00, SCSI2 0/direct fixed sd0: 10MB, 10 cyl, 64 head, 32 sec, 512 bytes/sec, 20480 sec total sd1 at scsibus0 targ 1 lun 0: AMI, Host drive #01, SCSI2 0/direct fixed sd1: 49998MB, 49998 cyl, 64 head, 32 sec, 512 bytes/sec, 102395904 sec total sd2 at scsibus0 targ 2 lun 0: AMI, Host drive #02, SCSI2 0/direct fixed sd2: 629606MB, 629606 cyl, 64 head, 32 sec, 512 bytes/sec, 1289433088 sec total scsibus1 at ami0: 16 targets ppb4 at pci0 dev 28 function 4 Intel 82801G PCIE rev 0x01 pci5 at ppb4 bus 2 mskc0 at pci5 dev 0 function 0 Marvell Yukon 88E8052 rev 0x21, Yukon-2 EC rev. A3 (0x2): apic 2 int 16 (irq 10) msk0 at mskc0 port A, address 00:18:f3:29:a2:53 eephy0 at msk0 phy 0: Marvell 88E Gigabit PHY, rev. 2 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 20 (irq 5) usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 17 (irq 7) usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 Intel
Re: Router performance on OpenBSD and OpenBGPD
On 2/21/07, Alex Thurlow [EMAIL PROTECTED] wrote: Oops, forgot that part. At 325Mbps, we do about 60,000pps, so that puts us at about 360,000pps needed for 2Gbps. You'll have a hard time finding benches for that. To date, the best reported is 150k pps which was on the intel E7520 chipset. That was using em drivers. You're safest best for the most performance possible would likely be using the intel 5000 chipset (i.e. SuperMicro X7DB* motherboards) coupled with SysKonnect SK-9S* line of network cards. Its probably a safe bet that you'll be capable of 200K pps, but beyond that is anyones guess.
Re: Save ports
On Tue, Feb 20, 2007 at 06:47:41PM -0800, Bray Mailloux wrote: I ran an nmap -sS localhost which output port state service 13/tcp open daytime 22/tcp open ssh 25/tcp open smtp 37/tcp open time 53/tcp open domain 113/tcpopen auth 587/tcpopen submission This BSD box will be serving solely as a router so few of the above services are needed (submission, auth, domain, smtp). How do I begin closing down these services? You do need smtp and submission unless you are very aware of why I say that and are confident you do not (hint: local mail delivery is triggered by lots of stuff). daytime doesn't hurt, but can be turned off by stopping inetd or editing /etc/inetd.conf; time is basically the same. Both may be useful for testing. auth can be turned off in the same way if you don't plan on sending any outgoing mail. I must admit to not being aware of what would be running on 53/tcp. netstat is your friend (for that matter, why use nmap instead?). Just filtering aggressively using pf works as well, of course. Joachim
Re: Donation request for batteries.
Hi (again) Robert, We've exchanged some mails in private by now. This one's for the lists. bernd@ also has an entry in want.html but he did not get help yet. I must admit to not following the changes on want.html very closely. Maybe I'll check every two or three months or whenever I get to follow source-changes somewhat closer. I *do* very much like being reminded on the lists and undeadly.org of stuff/money developers can put to good use, so thanks for letting me know. I owe you guys bigtime, so thanks once more... Nico :-)
Re: Save ports
On 2007/02/22 22:36, Joachim Schipper wrote: I must admit to not being aware of what would be running on 53/tcp. netstat is your friend $ fstat | grep tcp.*:53
Re: ldap authentication troubles
On Wed, Feb 21, 2007 at 04:54:25PM -0500, Cory Albrecht wrote: Marc Balmer wrote: Cory Albrecht wrote: I'm trying to get my OpenBSD firewall to authenticate normal user accounts off of an LDAP server running on a different machine. On a side note, you are aware that you must create the accounts locally as well for things to work properly? It is not enough to have the accounts in LDAP only. So, you're saying that if I had an organization with 100 OpenBSD desktops (and associated typical file /print/etc servers), that I would have to create every new login on *each* of those 100 desktops in addition adding it to the LDAP server every time we got a new employee? Or would have to remove an account from each individual workstation each time somebody left? Then what's the point of having a centralized login administration system? Useless and unnecessary extra work for a sysadmin, IMHO. That wouldn't exactly be a pro-adoption point. That's true. Then again, I've never had any problems with my home-hacked solution that just cats a couple of /etc/master.passwd.something files together, and then runs the appropriate 'compilation' commands. You do have to know how to avoid possibly very nasty password database corruption, though (i.e. don't try to run two in parallel, there's a reason vipw exists and is so very careful). Joachim
Re: Email server and large Emails.
On Wed, Feb 21, 2007 at 11:39:14AM -0500, stuartv wrote: I have FINALLY been allowed to schedule time to replace the aging mail server. Currently, it is running OpenBSD 3.7, with sendmail, smtp-vilter, and clamav. This is our internal mail server and it uses fetchmail to get our email off of the public server and sends our email out using a smart relay host provided by our ISP. When I originally set this server up I was also running spamassassin but had to remove it because it was causing the system to time out and stop getting mail for some reason that I never figured out. The boss where I work has NO sense of humor about not getting her email, and doesn't seem to get enough spam that it bothered her so I did the better part of valor thing and just axed the spamassassin. Lately, we have been receiving emails with larger and larger attachments which has been causing the clamav to take to long scanning them and thus a time-out and again, no more email until I get it straitened out. So now to my question. What software works really well for an internal mail server? I would like some spam protection and I NEED Anti-virus, and I need it all to work even when a customer sends an email with a 50M file attachment because they sometimes do. I don't mind doing the research and figuring out how to make it all work (although a point in the right direction would be appreciated). I just would like to know what people are using that really works for them. You've already received some very good replies, so I'll try to not repeat them too much. The first thought I had, and which was not pointed out explicitly, is that I've never had this problem. After a moment's thought, and assuming my understanding of your problem is correct, I decided that the important difference is that you run sendmail. I use postfix, and postfix does the heavyweight filtering *after* accepting the mail. You can give SpamAssassin, ClamAV, and other CPU hogs as much time as they need to finish it, and if you run a couple of instances in parallel it won't even hurt average delivery times much. I'm sure this is not just a sendmail/postfix thing (i.e. you don't have to run postfix to get this done; in fact, clever (ab)use of procmail/maildrop will almost certainly allow the same approach), and I *do* feel I need to point out that postfix' approach has the obvious issue of how to let someone know that you consigned their mail to /dev/null (mostly, you don't). However, unless I am mistaken as to the problem at hand, it would help in your case. There's also the option of switching to a lighter spam filter (there's no real alternative for ClamAV, to the best of my knowledge); I've heard good things about dspam, but have kept off actually implementing them for a very long time already. While spamd is not really a spam filter in the sense that SA is, it *is* very lightweight and handles large mail well. As an alternative, beefier hardware may have the same effect. I also seem to recall that both ClamAV and SA had options not to process mail above a certain size; this would also be a near-complete solution, albeit one with obvious downsides, particularly in the case of ClamAV. Joachim
Re: Broken link in 'man sendmail(8)'
http://www.sendmail.org/tips/DontBlameSendmail.html The link has been recreated (it is redirected by the webserver now; thanks to the fast reaction of the sendmail.org webmaster).
Re: Best way to do failover default route? (ifstated, pf route-to, etc)
On Wed, Feb 21, 2007 at 12:00:51PM -0600, Chris Black wrote: I am trying to set up failover default routes. The situation is three OpenBSD machines, client, rtr0 and rtr1. Client has two interfaces, one with a crossover link to rtr0 and one to rtr1. I would like the default route for client to be rtr0 unless rtr0 has failed in some way (unreachable, etc). As far as I know, I can not use carp to give a single default route ip carp'd between rtr0 and rtr1 because they are not on a shared network. I know this has been discussed before and have read some archived posts (including the recent inet failover solution thread) but still have questions. I have read about the following options but would like some guidance/advice (and of course any pointers to previous docs/posts): 1) ifstated with ping and if.up tests and executing route commands The idea here would be ifstated would trigger commands something like: route delete default rtr0.ip; route add default rtr1.ip That's a simple solution, so should mostly Just Work. 2) ifstated executing pf table change commands Same sort of tests, but instead of issuing route commands, change a pf table that is being used as a route-to. I am not sure exactly what this would look like yet. I am not sure what this would look like yet, I am still reading more on route-to. Downsides to ifstated approach is that I would like to use ifstated to also control a different set of interfaces from client, so this may create a complex many-state ifstated.conf. Sounds too complex. 3) new multipath routing, but somehow disable one route This one confuses me a bit. I read the presentation about the new multipath routing and some associated docs and it seems that multipath routing can only be used for balancing across routes based on source. I really want to have a failover set up, NOT load balancing so I don't think this would work. Me neither. 4) ospf, bgp I am aware of these routing daemons but really don't know too much about them. I read some docs and it seemed overly complex for setting up just a simple failover default route on internal machines. They *would* be the canonical answer, of course. I'd be inclined to recommend them - neither is perfect, but both are far better than anything home-grown in the time it takes to set them up (and, unless you are quite smart, experienced, and have lots of time, most likely anything home-grown at all). I'd go with 1 or 4, myself. The first is probably faster to set up; the second should be more reliable, more flexible, and look better on your CV. Plus it's more fun. Joachim
Re: Router performance on OpenBSD and OpenBGPD
On Thu, Feb 22, 2007 at 08:52:37AM +0500, Shohrukh Shoyokubov wrote: I just wanted to ask this question to [EMAIL PROTECTED] My situation is 100Mbps/100Mbps that is needed to be managed. I need bandwidth management and I want to ask if someone has such experience. I plan to implement it on OpenBSD. Any recommendations? Yes, please don't piggyback on unrelated threads. Joachim
Re: Router performance on OpenBSD and OpenBGPD
On Wed, Feb 21, 2007 at 05:17:22PM -0600, Alex Thurlow wrote: So anywhere I look for router performance on OpenBSD, all the benchmarks are on small lines or old machines. I also see mentions of people using it in large scale installations, which is what I'm looking to do. I thought I'd ask here and see what people have done. I have 2 GigE lines from different providers balanced via BGP with full routes from both providers. Currently, these are running through a Linux/Quagga/Iptables router/firewall with a P4 3.2 GHz. The distro is Gentoo, and we've stripped it down quite a bit. We're pushing streaming video, so it's almost all outbound traffic by about a 30:1 factor, and our average packet size is quite large - around 1200 bytes. At the moment, when we hit about 350Mbps, the router gets to ~30% CPU usage, and it appears that we stop being able to pass all the traffic at full speed. I don't see packet loss, but our traffic graph flattens a good bit. At those rates, we also start to see crashing, but we haven't been able to figure out the exact cause of those either. So, long story short, I need a new router. We've looked at Cisco, etc. and for what we're doing, it looks like we need a carrier class router. I can get a decked out 12008 for about $8k, but I'd rather not spend that much, or use the 2 feet of rack space. I've used OpenBSD/PF for firewalls in the past, and loved them, so I'd like to use it for a router if it can handle what we need. Basically, I need to be able to saturate both of those GigE lines. I'm willing to buy the brand-newest hardware - the PCI express bus should be able to do 2.5 Gbps, but I can't find anything that says I can push that much through software. I was also looking at the Intel I/O Accelerator, but I didn't see if there was OpenBSD support for it. I'm sure if there is, that would help get me to be able to push the traffic I want to. A long explanation, but I'm just hoping someone could give me some insight here. I don't have the faintest clue about that kind of speed, and the old box next to me would probably faint if showed these numbers. Still, some of the stuff below, while tangential, might be useful. OpenBGP, by any right, should not be a problem if you are not doing anything grossly stupid (like trying to run this in 8 MB of memory). The intel accelerator you mention is not supported, so that wouldn't help any. The one point I miss is failover capability; both the Cisco and OpenBSD should be able to do this, but it's worth noting - and having. Joachim
Request: Dedicated OpenBSD (root) Server for a company...
Hello everybody, I`m asking this for a friend who wanna set up a company and needs a dedicated Webserver (wich does run OpenBSD of course..). It`s kinda hard to find companies wich do provide such services OR do even just reply (or reply in a accaptable amount of time (wich is NOT 14days and more..)). So if anybody is working for such a company or knows such a company please do read this public request and do let me know. Wanted: My friend is looking for a Server wich has nearly those specifications: - Celeron 2.8ghz (or better of course) - 1GB RAM - 80GB HDD space - OpenBSD 4.0 as OS! (or Linux rescue-system wich allows him to install it) - No fBSD,, no nBSD... OPENBSD... it is CLEARLY a demand! So the Hardware must be supported 100% by OpenBSD - ~200-400gb Traffic - Serval IPs - Tech. contact who do know what they do (!= STRATO for example..) -- Propably the possibility to get special offers - Configurations for other servers - More/less Bandwith on demand to accaptable prices He would be able to pay ~100-150 USD, by Creditcard of his company. Also it would be great if the connection (speed, peering) would be good and not as lousy as at the most providers My friend did send out a request to m5hosting because I told him this company is what he`s looking for. Unfortunaly m5hosting did replied after more then 14 days and now he`s again waiting already for 72 hours and more. This is simply unaccaptable and it is a shame (yeah, sorry) that the company is listed at a openbsd website. I think there`s no need to explain that this is unaccaptable if you wanna open a business and propably do already have customers... It just SUCKS (sorry Mike...) So I would be happy to get such offers or offers with different configurations. if you`re working for such a company this is propably your chance ot get not just one customer. Also m5hosting is allowed to provide a offer. They just would have to write or answer a mail IN TIME (less then 72hrs...). He needs to make some business and not to play a waiting game... Thanks for all offers or sugesstions! Please do cc me because I`m not subscriped to [EMAIL PROTECTED] Kind regards, Sebastian
isakmpd, conflict using multiple rules w/o peer address
I've just been looking at setting up ipsec with multiple endpoints (zyxel 661h, fwiw: the basic connectivity is ok, though I am growing to loathe their web gui and lack of plaintext config). It would be convenient not to wire the remote peers down to static IP addresses, but if I do something like this... # @0 ike passive esp from 10.1.10.0/24 to 10.1.44.100/24 \ quick auth hmac-sha1 enc aes group grp2 \ srcid me.mylan.net dstid net.100 psk 2 # @1 ike passive esp from 10.1.10.0/24 to 10.1.44.101/24 \ quick auth hmac-sha1 enc aes group grp2 \ srcid me.mylan.net dstid net.101 psk 3 the following peer config sections (and others) are generated: @0 C set [Phase 1]:Default=peer-default force C set [peer-default]:Phase=1 force C set [peer-default]:Authentication=2 force C set [peer-default]:Configuration=mm-default force C set [peer-default]:ID=me.mylan.net-ID force C set [peer-default]:Remote-ID=default-ID force C set [default-ID]:ID-type=FQDN force C set [default-ID]:Name=net.100 force @1 C set [Phase 1]:Default=peer-default force C set [peer-default]:Phase=1 force C set [peer-default]:Authentication=3 force C set [peer-default]:Configuration=mm-default force C set [peer-default]:ID=me.mylan.net-ID force C set [peer-default]:Remote-ID=default-ID force C set [default-ID]:ID-type=FQDN force C set [default-ID]:Name=net.101 force obviously having the same names, the first is overwritten by the second. Would I be totally going down the wrong route if I were to change the hardcoded -default and default- section names in ipsecctl/ike.c to something based on dstid?
Re: isakmpd, conflict using multiple rules w/o peer address
On 2007/02/22 19:38, jared r r spiegel wrote:
On Fri, Feb 23, 2007 at 12:09:27AM +, Stuart Henderson wrote:
obviously having the same names, the first is overwritten by the second.
Would I be totally going down the wrong route if I were to change
the hardcoded -default and default- section names in ipsecctl/ike.c
to something based on dstid?
as long as it doesn't then try to use dstid's value
for, say:
C set [net.100]:Address=net.100 force
that's along the lines I was thinking.
and then making sure it jived nicely if you actually wanted to do
an IPaddr in some other potentially configured peer
I think that's not a problem;
if (r-peer) {
fprintf(fd, SET [peer-%s]:Remote-ID=%s-ID force\n,
r-peer-name, r-peer-name);
fprintf(fd, SET [%s-ID]:ID-type=%s force\n,
r-peer-name, ike_id_types[idtype]);
fprintf(fd, SET [%s-ID]:Name=%s force\n,
r-peer-name,
r-auth-dstid);
} else {
fprintf(fd, SET
[peer-default]:Remote-ID=default-ID force\n);
fprintf(fd, SET [default-ID]:ID-type=%s force\n,
ike_id_types[idtype]);
fprintf(fd, SET [default-ID]:Name=%s force\n,
r-auth-dstid);
}
the first half is used if you specify 'peer foo' (it is also used
if you specify 'ike esp from xx to foo' where foo is an ip address
not a subnet, in which case it is also taken as the peer address:
this is a sometimes-useful shortcut, I couldn't decide whether it
was intentional or not, but suffice to say 'attribute_unacceptable:
ENCRYPTION_ALGORITHM: got AES_CBC, expected 3DES_CBC' does not
immediately lead you to this as being the problem :-)
support for w-axis in ums/wsmouse?
Hi, Is anyone working on adding w-axis support to ums/wsmouse/xorg? the latter two seem fairly easy to add (i am working on them), but the third i haven't looked at yet, but i will if noone else is working on it at the moment. this is mostly required for any mice/trackpads that have both horizontal and vertical scrolling support, as the default behaviour in ums chooses the wrong one, making horizontal scrolling map to vertical scrolling and horizontal scrolling unusable. Anyone using the Apple Mighty Mouse would have noticed the problem (also a similar problem is mentioned in an earlier post to misc@ concerning a trackpad). Thanks Gareth
Re: Adding SWAP in fstab?
On Fri, Feb 23, 2007 at 03:14:54PM +1100, Sunnz wrote: Sorry for the n00bish question, but I noticed that the swap partition created during the installation wasn't defined in /etc/fstab. Now, am I supposed to add it myself or is it necessarily at all? (wd0b) It's not needed. If you add *additional* swap partitions you will need to add those to fstab for them to be used automatically. -- Darrin Chandler | Phoenix BSD Users Group [EMAIL PROTECTED] | http://bsd.phoenix.az.us/ http://www.stilyagin.com/darrin/ |
Re: Call for OpenOffice.Org testing!
Running fine on -current 21/02. Loads faster than the version I run on the same kit on Linux! On 22/02/07, Bryan [EMAIL PROTECTED] wrote: Running 2.2 on -current (19 Feb) with no issues. Will let you know if I come up against any issues On 2/21/07, Robert Nagy [EMAIL PROTECTED] wrote: Hi I would like to ask everyone who uses OpenOffice.Org to test the new 2.2m8 packages. Version 2.2 is going to be released on the 27th of February and I plan to include this version in OpenBSD 4.1. Their tree has been frozen since January, so the update is safe; however, I still need people to test it. The packages can be fetched from the following locations: for i386: http://bsd.hu/~robert/ooo/i386/ http://humppa.hu/ooo/i386/ for amd64: http://bsd.hu/~robert/ooo/amd64/ http://humppa.hu/ooo/amd64/ If you'd also like to build the port yourself, the diff is available at http://humppa.hu/ooo/oo_2.2m8.diff Please send all the test reports to [EMAIL PROTECTED] (even if you do not have see problem). Thank you!
Re: Call for OpenOffice.Org testing!
On Wednesday 21 February 2007 14:30, Robert Nagy wrote: Hi I would like to ask everyone who uses OpenOffice.Org to test the new 2.2m8 packages. Version 2.2 is going to be released on the 27th of February and I . . Please send all the test reports to [EMAIL PROTECTED] (even if you do not have see problem). Good day, Building the ports worked. However, if I do a pkg_add -vr to replace the existing OpenOffice installation, I get the following: parsing openoffice-2.2.0m8 Verifying dependencies still match for openoffice-java-2.1.0p0, openoffice-kde-2.1.0 Dependencies for openoffice-2.2.0m8 resolve to: javaPathHelper-0.2p0, gtk+2-2.8.20p2, libsndfile-1.0.11p0, curl-7.16.0, db-4.2.52p11, neon-0.24.7p0, python-2.4.4p1, libwpd-0.8.7p1 (todo: javaPathHelper-0.2p0) openoffice-2.2.0m8:Can't find javaPathHelper-0.2p0 /dev/wd2e: -278269 bytes /dev/wd2d: -317254410 bytes /usr/sbin/pkg_add: javaPathHelper-0.2p0:Fatal error I have the following packages installed: builder# pkg_info | grep openoffice openoffice-2.1.0p3 a multi-platform productivity suite openoffice-java-2.1.0p0 optional integration of OpenOffice java features openoffice-kde-2.1.0 optional integration of OpenOffice to the KDE environment Thanks very much, Vijay -- Vijay Sankar ForeTell Technologies Limited 59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6 Phone: +1 (204) 885-9535, E-Mail: [EMAIL PROTECTED]
Re: Call for OpenOffice.Org testing!
On Wednesday 21 February 2007 14:30, Robert Nagy wrote: Please send all the test reports to [EMAIL PROTECTED] (even if you do not have see problem). Sorry, did not include the dmesg in my earlier email. I will try this on another machine with the latest snapshot and OpenOffice 2.0.p4 and send in another report in case the problems are due to how I built the kernel or due to problems replacing 2.0.p3. Anyways, here is the error message I get builder# pkg_add -vr openoffice-2.2.0m8.tgz parsing openoffice-2.2.0m8 Verifying dependencies still match for openoffice-java-2.1.0p0, openoffice-kde-2.1.0 Dependencies for openoffice-2.2.0m8 resolve to: javaPathHelper-0.2p0, gtk+2-2.8.20p2, libsndfile-1.0.11p0, curl-7.16.0, db-4.2.52p11, neon-0.24.7p0, python-2.4.4p1, libwpd-0.8.7p1 (todo: javaPathHelper-0.2p0) openoffice-2.2.0m8:Can't find javaPathHelper-0.2p0 /dev/wd2e: -278269 bytes /dev/wd2d: -317254410 bytes /usr/sbin/pkg_add: javaPathHelper-0.2p0:Fatal error Here is the list of packages already installed: builder# pkg_info | grep openoffice openoffice-2.1.0p3 a multi-platform productivity suite openoffice-java-2.1.0p0 optional integration of OpenOffice java features openoffice-kde-2.1.0 optional integration of OpenOffice to the KDE environment Here is the dmesg: OpenBSD 4.1-beta (GENERIC) #0: Mon Feb 19 18:53:02 CST 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD Athlon(tm) 64 X2 Dual Core Processor 4600+ (AuthenticAMD 686-class, 512KB L2 cache) 2.42 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,MMX,FXSR,SSE,SSE2,HTT,SSE3,CX16 real mem = 3488051200 (3406300K) avail mem = 3192860672 (3118028K) using 4256 buffers containing 174526464 bytes (170436K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+ BIOS, date 12/22/06, BIOS32 rev. 0 @ 0xf22f0, SMBIOS rev. 2.4 @ 0xf (76 entries) bios0: ASUSTeK Computer INC. M2N-SLI DELUXE apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 70102 dobusy 1 doidle 1 pcibios0 at bios0: rev 3.0 @ 0xf/0xdc44 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdb10/304 (17 entries) pcibios0: bad IRQ table checksum pcibios0: PCI BIOS has 17 Interrupt Routing table entries pcibios0: PCI Exclusive IRQs: 5 10 11 pcibios0: no compatible PCI ICU found pcibios0: Warning, unable to fix up PCI interrupt routing pcibios0: PCI bus #7 is the last bus bios0: ROM list: 0xc/0xec00 0xd/0x2800! acpi at mainbus0 not configured cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) NVIDIA MCP55 Memory rev 0xa1 at pci0 dev 0 function 0 not configured pcib0 at pci0 dev 1 function 0 NVIDIA MCP55 ISA rev 0xa2 nviic0 at pci0 dev 1 function 1 NVIDIA MCP55 SMBus rev 0xa2 iic0 at nviic0 iic1 at nviic0 iic1: addr 0x22 00=c3 01=8b 02=38 04=03 05=45 06=02 08=9c 09=34 0a=27 0b=c0 0c=4 9 0d=92 10=18 12=80 13=80 14=01 18=01 1a=eb 1f=01 28=9c 29=34 2a=27 2b=c0 2c=49 2d=92 2f=89 40=c3 41=8b 42=38 44=03 45=45 46=02 48=9c 49=34 4a=27 4b=c0 4c=49 4d =92 50=18 52=80 53=80 54=01 58=01 5a=eb 5f=01 68=9c 69=34 6a=27 6b=c0 6c=49 6d=9 2 6f=89 80=c3 81=8b 82=38 84=03 85=45 86=02 88=9c 89=34 8a=27 8b=c0 8c=49 8d=92 90=18 92=80 93=80 94=01 98=01 9a=eb 9f=01 a8=9c a9=34 aa=27 ab=c0 ac=49 ad=92 af =89 c0=c3 c1=8b c2=38 c4=03 c5=45 c6=02 c8=9c c9=34 ca=27 cb=c0 cc=49 cd=92 d0=1 8 d2=80 d3=80 d4=01 d8=01 da=eb df=01 e8=9c e9=34 ea=27 eb=c0 ec=49 ed=92 ef=89 adt0 at iic1 addr 0x2e: adt7475 rev 0x69 NVIDIA MCP55 Memory rev 0xa2 at pci0 dev 1 function 2 not configured ohci0 at pci0 dev 2 function 0 NVIDIA MCP55 USB rev 0xa1: irq 10, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: NVIDIA OHCI root hub, rev 1.00/1.00, addr 1 uhub0: 10 ports with 10 removable, self powered ehci0 at pci0 dev 2 function 1 NVIDIA MCP55 USB rev 0xa2: irq 11 usb1 at ehci0: USB revision 2.0 uhub1 at usb1 uhub1: NVIDIA EHCI root hub, rev 2.00/1.00, addr 1 uhub1: 10 ports with 10 removable, self powered pciide0 at pci0 dev 4 function 0 NVIDIA MCP55 IDE rev 0xa1: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: LITE-ON, DVDRW LH-18A1P, GL03 SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 4 pciide0: channel 1 ignored (disabled) pciide1 at pci0 dev 5 function 0 NVIDIA MCP55 SATA rev 0xa2: DMA pciide1: using irq 11 for native-PCI interrupt wd0 at pciide1 channel 0 drive 0: ST3320620AS wd0: 16-sector PIO, LBA48, 305245MB, 625142448 sectors wd0(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 wd1 at pciide1 channel 1 drive 0: ST3320620AS wd1: 16-sector PIO, LBA48, 305245MB, 625142448 sectors wd1(pciide1:1:0): using PIO mode 4, Ultra-DMA mode 5 pciide2 at pci0 dev 5 function 1 NVIDIA MCP55 SATA rev 0xa2: DMA pciide2: using irq 5 for native-PCI interrupt wd2 at pciide2 channel 0 drive 0: ST3320620AS wd2: 16-sector
Donation request for batteries.
Hi everyone. We (bernd@ and robert@) are in a need of two laptop batteries for the IBM ThinkPad X31 modes because both of ours are kinda useless now. bernd@ also has an entry in want.html but he did not get help yet. A battery would enable us to hack on trains and other on other types of public transport. I can order the two batteries for 310 EUR and I would like to ask the community to support us getting this amount of money. If you feel that you would like to help us out please contact me in private so I can either give a PayPal address or an IBAN number. I would like everyone to ask me first because we only need this amount of money, no more. Thank you for continuous support.
Re: Adding SWAP in fstab?
On 2/22/07, Sunnz [EMAIL PROTECTED] wrote: Sorry for the n00bish question, but I noticed that the swap partition created during the installation wasn't defined in /etc/fstab. Now, am I supposed to add it myself or is it necessarily at all? (wd0b) Nope. Have a gander at swapctl(8), second paragraph. config(8) references how the kernel knows. DS
Re: Adding SWAP in fstab?
Ohh ok I see the the kernel knows about partition B. Thanks very much for your answers. 2007/2/23, Darren Spruell [EMAIL PROTECTED]: On 2/22/07, Sunnz [EMAIL PROTECTED] wrote: Sorry for the n00bish question, but I noticed that the swap partition created during the installation wasn't defined in /etc/fstab. Now, am I supposed to add it myself or is it necessarily at all? (wd0b) Nope. Have a gander at swapctl(8), second paragraph. config(8) references how the kernel knows. DS -- Please avoid sending me Word or PowerPoint attachments. See http://www.gnu.org/philosophy/no-word-attachments.html
Re: Adding SWAP in fstab?
Sunnz wrote on Fri, Feb 23, 2007 at 03:14:54PM +1100: Sorry for the n00bish question, but I noticed that the swap partition created during the installation wasn't defined in /etc/fstab. Now, am I supposed to add it myself or is it necessarily at all? (wd0b) See swapctl(8): Note: The initial swap device (root disk, partition b) is handled auto- matically by the kernel and does not need to be added to /etc/fstab or added via swapctl. It will show up as swap_device in the output dis- played with the -l flag. To find that piece of information yourself in the documentation, you would start from fstab(5), reading If fs_type is ``sw'' then the special file is made available as a piece of swap space by the swapon(8) command at the end of the system reboot pro- cedure. This redirects you just to the point where your question is answered.
