Re: building xenocara fails at libdrm (for me)
You probably didn't clean you obj tree before starting the build. -- Matthieu Herrb
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
Motherboard : Asus Intel P45 1600 FSB 4x DDR2 Core 2 Duo ATX P5Q-E RAM : OCZ TechnologyDDR2 PC2-6400 800MHz 8GB Quad Kit (OCZ2G8008GQ) Hard Drive : 1TB WD1001FALS SATA 7200RPM 32MB HDD Bare drive CPU : INTEL Core 2 Quad Q9550 BX80569Q95502.83ghz Maybe you could try the i386 distribution? http://www.openbsd.org/amd64.html MvG, Jasper
STM-1 connectivity (OT?)
Hi, I'm looking into ways to handle STM-1 connections. I dimly remember that there were Marconi cards, that were supported, but can't find them anymore. What would be the recommended method these days to terminate STM-1 circuits, possibly on an OpenBSD based router, please? What alternatives do you suggest? TIA! Kind regards, --Toni++
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
On 20 February 2009 c. 09:32:24 Ted Unangst wrote: On Fri, Feb 20, 2009 at 1:22 AM, Vadim Zhukov persg...@gmail.com wrote: You should type disable softraid after entering UKC using boot -c at the bootloader prompt. More details on UKC you can find here: no, he shouldn't because that's not the bug. David says that in CURRENT installer works just fine, and in 4.4-RELEASE it hangs after displaying softraid0 at root - what is it if not a bug? -- Best wishes, Vadim Zhukov
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
On Fri, Feb 20, 2009 at 12:05:12PM +0300, Vadim Zhukov wrote: On 20 February 2009 c. 09:32:24 Ted Unangst wrote: On Fri, Feb 20, 2009 at 1:22 AM, Vadim Zhukov persg...@gmail.com wrote: You should type disable softraid after entering UKC using boot -c at the bootloader prompt. More details on UKC you can find here: no, he shouldn't because that's not the bug. David says that in CURRENT installer works just fine, and in 4.4-RELEASE it hangs after displaying softraid0 at root - what is it if not a bug? Read carefully what tedu says: there is a bug, but it is not in softraid. -Otto
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
On 20 February 2009 c. 12:10:51 Otto Moerbeek wrote: On Fri, Feb 20, 2009 at 12:05:12PM +0300, Vadim Zhukov wrote: On 20 February 2009 c. 09:32:24 Ted Unangst wrote: On Fri, Feb 20, 2009 at 1:22 AM, Vadim Zhukov persg...@gmail.com wrote: You should type disable softraid after entering UKC using boot -c at the bootloader prompt. More details on UKC you can find here: no, he shouldn't because that's not the bug. David says that in CURRENT installer works just fine, and in 4.4-RELEASE it hangs after displaying softraid0 at root - what is it if not a bug? Read carefully what tedu says: there is a bug, but it is not in softraid. Sorry, I misunderstood him. Definitely I should learn live English more:( -- Best wishes, Vadim Zhukov
Re: request for package: Distributed Checksum Clearinghouses (DCC)
Hi, On Thu, 19.02.2009 at 20:55:09 -0500, Juan Miscaro jmisc...@gmail.com wrote: Are there any plans to package DCC for anti-spam gateways? Thanks. once upon a time I converted the Debian package for pyzor to OpenBSD, which is tedious, but otherwise rather straightforward. It never never hit the ports tree, though. If there is demand, I can probably put it online (again). Kind regards, --Toni++
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
Hi, On Fri, 20.02.2009 at 00:24:28 -0500, David Heinrich dh0...@gmail.com wrote: sd0 - sd3 are because of my CF card reader. However, I don't want to install the latest beta-versin of OpenBSD; those of us who have hardware that is not, or not well supported by the release version of OpenBSD, get to check out the latest and greatest in OpenBSD to see if it works better. It's also part of what we usually can, and generally should, contribute back to the project, imho. The alternative is to try work around the problem somehow, eg. by reconfiguring the hardware (eg. less memory, different nics, whatever). I suggest that you go with the 'beta'. Kind regards, --Toni++
Re: upd packets dropped due to full socket buffers
On 2009-02-19, Boxsell Ian ian.boxs...@snowyhydro.com.au wrote: I have an issue with growth of UDP syslog outstripping performance of my box. Am running GENERIC#1368 amd64 as a VM on ESX. It is a task oriented box with no X/GUI I can allocate more mem if required. I found amd64 running on esxi rather slow, you may have better luck with i386.
routing problem
Hello all, I have a trouble with some routing-related that i can't figure out. I have this configuration: ** ***INTERNET*** ** | bnx1 | FIREWALL | bnx0 | DMZ (10.0.0.0/28) | bnx1 | PROXY | bnx0 | LAN (192.168.80.0/24) FIREWALL and PROXY are both OpenBSD machines. The bnx1 of the firewall is configured on a public subnet. A couple of machines in the DMZ are natted with public ip configured on the bnx1 of the firewall. For a particular reason, I have to route traffic from LAN to DMZ using the pubblic ip. I can't use a DNS based solution (like views). So, when I try to connect to a DMZ machine by using its pubblic (natted) ip, traffic is blocked at bnx0 of the firewall. With tcpdump I can see that bnx0 answers with a RST packet to the connection request coming from lan (and masked by PROXY). The only trick I found to make it works, is using redirect on PROXY, something like that: rdr on bnx1 from bnx0:network to $MyPublicIp - 10.0.0.2 This is the basic ruleset I'm using on FIREWALL: set skip on lo scrub in rdr pass on bnx1 proto tcp from any to $MyPublicIP port 80 - 10.0.0.2 block in log pass out pass in on bnx1 proto tcp from any to 10.0.0.2 port 80 flags S/SA synproxy state I didn't touch routes. Is there another way than using a set of rdr rules? Did I miss some man page?
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
On Fri, Feb 20, 2009 at 12:24:28AM -0500, David Heinrich wrote: I am trying to install OpenBSD 4.4 amd64 onto my system. I obtained the install CD ISO from ftp://ftp.openbsd.org/pub/OpenBSD/4.4/amd64/install44.iso and ftp://ftp.openbsd.org/pub/OpenBSD/4.4/amd64/cd44.iso (the same thing happens whether I use the full or mini boot CD made from those ISO files). If I boot from the CD, and let the CD auto-boot (or if I start typing when prompted with the boot prompt and then type boot), it goes through the startup messages, and stalls at the softraid0 at root step. The boot hangs on Softraid0 at root. I can't find information on this in the archives, and I have tried typing disable softraid and searching for how to disable softraid with no success. A friend suggested boot -d to boot in debugging mode, but this didn't give me any debugging options and just went through the normal boot, again stalling at softraid0. If this is something where the answer is online but I haven't been able to find it, please refer me to the site. If not, any ideas as to what I should I do? Should I file a bug report? Since the problem does not happen on -current there isn't much point to filing a bug report. It would just be closed with 'Fixed in -current'. :-). I also downloaded the install45.iso from the snapshots ftp directory as of 02/19/2009 12:11:00 PM. That install ISO gets beyond the softraid0 at root (that line and prior is same as with 4.4), and gets to: QUOTE root on rd0a swap on rd0b dump on rd0b erase ^?, werase ^W, kill ^U, intr ^C, status ^T (I)nstall, (U)pgrade or (S)hell? /QUOTE It then says available disks are wd0 sd0 sd1 sd2 sd3; I presume the sd0 - sd3 are because of my CF card reader. However, I don't want to install the latest beta-versin of OpenBSD; but can I use the current ISO as a launch-platform for installing OpenBSD 4.4? The latest beta-version of OpenBSD is pretty close to being what will be released as 4.5. So you should want to use it if possible because testing it now and finding a bug will mean the bug can be fixed for 4.5. Bugs in 4.4 that are already fixed hold significantly less interest to developers. You may be able to install 4.4 with the 4.5-beta boot media, but then you probably end up with a broken system. This might be useful info to track down what bug you have stumbled across, but see my first paragraph above. And a dmesg of the broken kernel is always required for any problem analysis. Ken
Diskless 4.4 machines.
Is it possible to have OpenBSD diskless or almost diskless? By almost diskless I mean an incredibly small amount installed locally and the rest over NFS or something. John. -- Faced with the fact that Intelligent Design doesn't meet the criteria for a scientific theory, leading proponent redefines what a scientific theory is. Result: Astrology now a scientific theory.
OpenBGP 4.3/4.4 Gotchas
Hi, I've run into a couple of gothas in the past week. This isn't so much a bug report, because everything is fine in -current. But I hope it might serve to save somebody some time if they stubble across it in the archives. The first was experienced on a pair of 4.3 machines. Unlike any of our other transit feeds, we have one provider which appears to re-advertise our own prefixes back to our alternate routers. The routes are of course considered invalid because they are not loop free and it hasn't caused us problems previously. Except this week when applying an inbound filter with softreconfig in yes and bgpctl reload. We observed all announcements matching these re-advertised prefixes to be withdrawn from all transit peers and not reannounced until the filter was removed. This behaviour was thankfully not replicated with 4.4 in the lab, so we'll be upgrading promptly. But we were having issues with our 4.4 peers keeping sessions open to each other. This was resolved with r1.13 of bgpd/timer.c. I'm curious though whether this will make it into the 4.4 errata as a reliability fix? Regards, Dan
Re: Diskless 4.4 machines.
John Tate wrote: Is it possible to have OpenBSD diskless or almost diskless? By almost diskless I mean an incredibly small amount installed locally and the rest over NFS or something. man diskless
Re: boot halts halfway after fresh install, bsd.rd boots fine...
To finish what i started and for the record. Owain Ainsworth wrote: boot -c disable agp Alternatively, could you try and boot -current on that machine? Quite some things have changed in that area. Installed -current from snapshot. The problem remains, but has a new name: intelagp boot -c works fine. Tested 3 different video cards. They all worked. Wich makes me beleave the problem is in the agp bus driver. The machine is a HP E60 netserver from 1999. Made the disable permanent with config(8). Because it's just an old rusty junkbox for testing I don't really mind the agp problem. In case a developer is interested, i've included some dmesges: OpenBSD/i386 BOOT 3.02 boot boot booting hd0a:/bsd: 6019356+1059784 [52+335888+318217]=0x7601a8 entry point at 0x200120 [ using 654532 bytes of bsd ELF symbol table ] Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2009 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.5-beta (GENERIC) #1685: Sun Feb 15 21:05:40 MST 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Pentium III (GenuineIntel 686-class, 512KB L2 cache) 552 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,SER,MMX,FXSR,SSE real mem = 133722112 (127MB) avail mem = 121044992 (115MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/14/00, BIOS32 rev. 0 @ 0xfd80c, SMBIOS rev. 2.2 @ 0xf0940 (54 entries) bios0: vendor Phoenix Technologies LTD version 4.06.25 PN date 01/14/2000 bios0: Hewlett Packard HP NetServer acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC BOOT acpi0: wakeup devices acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat ioapic0 at mainbus0: apid 0 pa 0xfec0, version 11, 24 pins cpu0 at mainbus0: apid 1 (boot processor) cpu0: disabling processor serial number cpu0: apic clock running at 100MHz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 2 (PCI1) acpicpu0 at acpi0 bios0: ROM list: 0xc/0x8000 0xc8000/0x5800 0xcd800/0x800 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x03 intelagp0 at pchb0 OpenBSD/i386 BOOT 3.02 boot boot booting hd0a:bsd.rd: 5184724+918896 [52+204416+189284]=0x6325d0 entry point at 0x200120 Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2009 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.5-beta (RAMDISK_CD) #1083: Sun Feb 15 21:21:00 MST 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD cpu0: Intel Pentium III (GenuineIntel 686-class, 512KB L2 cache) 552 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,SER,MMX,FXSR,SSE real mem = 133722112 (127MB) avail mem = 122679296 (116MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/14/00, BIOS32 rev. 0 @ 0xfd80c, SMBIOS rev. 2.2 @ 0xf0940 (54 entries) bios0: vendor Phoenix Technologies LTD version 4.06.25 PN date 01/14/2000 bios0: Hewlett Packard HP NetServer acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC BOOT acpimadt0 at acpi0 addr 0xfee0: PC-AT compat ioapic0 at mainbus0: apid 0 pa 0xfec0, version 11, 24 pins cpu0 at mainbus0: apid 1 (boot processor) cpu0: disabling processor serial number cpu0: apic clock running at 100MHz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 2 (PCI1) bios0: ROM list: 0xc/0x8000 0xc8000/0x5800 0xcd800/0x800 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x03 ppb0 at pci0 dev 1 function 0 Intel 82443BX AGP rev 0x03 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Mach64 rev 0x7a wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) pcib0 at pci0 dev 4 function 0 Intel 82371AB PIIX4 ISA rev 0x02 pciide0 at pci0 dev 4 function 1 Intel 82371AB IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: HITACHI, CDR-8435, 0010 ATAPI 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, DMA mode 2 wd0 at pciide0 channel 1 drive 0: ST3120023A wd0: 16-sector PIO, LBA, 114473MB, 234441648 sectors wd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 uhci0 at pci0 dev 4 function 2 Intel 82371AB USB rev 0x01: apic 0 int 19 (irq 11) Intel 82371AB Power rev 0x02 at pci0 dev 4 function 3 not configured ahc0 at pci0 dev 5 function 0 Adaptec AIC-7895 rev 0x04: apic 0 int 18 (irq 10) ahc0: Host Adapter Bios disabled. Using default SCSI device parameters scsibus1 at ahc0: 16 targets, initiator 7 sd0 at scsibus1 targ 0 lun 0: HP, 9.10GB A 68-SA40, SA40 SCSI2 0/direct fixed sd0: 8678MB, 512 bytes/sec, 17773524 sec total ahc1 at pci0 dev 5 function 1 Adaptec AIC-7895 rev 0x04: apic 0 int 18 (irq 10)
Re: A virus road map for GNOME and KDE?
On Feb 19, 2009, at 6:25 AM, Lars Noodin wrote: KammyDoe wrote: You've already said what needs to be said, don't save-and-open email attachments... Actually there are a lot of milters that can remove all the attachments for you automatically. Complex ones like procmail can even autorespond to dipshits who are dumb enough or rude enough to send files as attachments. Regards -Lars Please don't encourage people to setup auto responders like this. The best way to accomplish what you seem to want, is to deny the message during the SMTP dialog. That way you don't create another tool for the Spammers.
Re: OpenBSD AMD64 4.4 install hangs at boot (softraid0 at root) on Intel Q9550, 8GB RAM, 1TB WD
Very likely acpi or interrupt routing issues. Use 4.5-beta really. On Fri, Feb 20, 2009 at 12:24:28AM -0500, David Heinrich wrote: I am trying to install OpenBSD 4.4 amd64 onto my system. I obtained the install CD ISO from ftp://ftp.openbsd.org/pub/OpenBSD/4.4/amd64/install44.iso and ftp://ftp.openbsd.org/pub/OpenBSD/4.4/amd64/cd44.iso (the same thing happens whether I use the full or mini boot CD made from those ISO files). If I boot from the CD, and let the CD auto-boot (or if I start typing when prompted with the boot prompt and then type boot), it goes through the startup messages, and stalls at the softraid0 at root step. The boot hangs on Softraid0 at root. I can't find information on this in the archives, and I have tried typing disable softraid and searching for how to disable softraid with no success. A friend suggested boot -d to boot in debugging mode, but this didn't give me any debugging options and just went through the normal boot, again stalling at softraid0. If this is something where the answer is online but I haven't been able to find it, please refer me to the site. If not, any ideas as to what I should I do? Should I file a bug report? THE LAST SCREEN I CAN SEE WHEN BOOTING: QUOTE vable sd0: drive offline sd1 at scsci bus2 targ 1 lun 1: Generic, USB CF Reader, 1.01 SCSI0 0/direct removable sd1: drive offline sd2 at scsibus2 targ 1 lun 2: Generic, USB SM Reader, 1.02 SCSI0 0/direct removable sd2: drive offline sd3 at scsibus2 targ 1 lun 3: Generic, USB MS Reader, 1.03 SCSI0 0/direct removable sd3: drive offline uhidev0 at uhub5 port 2 configuration 1 interface 0 Composite USB PS2 Converter USB to PS2 Adapter V3.01 rev 1.10/3.10 addr 2 uhidev0: iclass 3/1 ukbd0 at uhidev0 wskbd1 at ukbd0 mux 1 wskbd1: connecting to wsdisplay0 uhidev1 at uhub5 port 2 configuration 1 interface 1 Composite USB PS2 Converter USB to PS2 Adapter V3.10 rev 1.10/3.10 addr 2 uhidev1: icass 3/1, 3 report ids uhid at uhidev1 reportid 1 not configured uhid at uhidev1 reportid 2 not configured uhid at uhidev1 reportid 3 not configured softraid0 at root _ /QUOTE I have tested my computer with the FreeBSD/amd64 7.1 boot CD (not to ruffle any feathers, but just to see if it is something wrong with my computer, as I built it myself), and I got to the install menu for fBSD. I also downloaded the install45.iso from the snapshots ftp directory as of 02/19/2009 12:11:00 PM. That install ISO gets beyond the softraid0 at root (that line and prior is same as with 4.4), and gets to: QUOTE root on rd0a swap on rd0b dump on rd0b erase ^?, werase ^W, kill ^U, intr ^C, status ^T (I)nstall, (U)pgrade or (S)hell? /QUOTE It then says available disks are wd0 sd0 sd1 sd2 sd3; I presume the sd0 - sd3 are because of my CF card reader. However, I don't want to install the latest beta-versin of OpenBSD; but can I use the current ISO as a launch-platform for installing OpenBSD 4.4? My system setup is as follows (whenever possible, information is as displays in my v02.61 American Megatrends Bios). MY HARDWARE INFO: Motherboard : Asus Intel P45 1600 FSB 4x DDR2 Core 2 Duo ATX P5Q-E RAM : OCZ TechnologyDDR2 PC2-6400 800MHz 8GB Quad Kit (OCZ2G8008GQ) Hard Drive : 1TB WD1001FALS SATA 7200RPM 32MB HDD Bare drive CPU : INTEL Core 2 Quad Q9550 BX80569Q95502.83ghz GPU : MSI Radeon HD4670 PCIE-512MB DDR3 Dual VGA/DVI (R46702D512) PSU : 1050W Revolution 85+ PSU ATX12V Version 2.3 80PLUS Silver Monitor : Sony GDM-F520 (CRT) DVD Drive (Internal) : Samsung DVD Burner 22X SH-S223Q CF Reader : CARD READER ROSEWILL|RCR-102 RTL USB DVD Drive : a LaCie Lightscribe drive MY BIOS INFO Main SATA 1 : [Not Detected] SATA 2 : [Not Detected] SATA 3 : [Not Detected] SATA 4 : [TSSTcorp CDDVDW SH] SATA 5 : [WDC WD1001FALS-00J] SATA 6 : [Not Detected] Storage Configuration - SATA Configuration [Enhanced] Configure SATA as [IDE] Hard Disk Write protect [Enabled] IDE Detect Time Out (Sec) [35] System Information -- Bios Information Version : 1201 Build Date: 08/05/08 Processor Type : Intel(R) Core(TM)2 Quad CPU 9550 @ 2.83GHz Speed : 2833 MHz Count : 4 System Memory: Usable Size : 8192MB Ai Tweaker == Ai Overclock Tuner [Auto] CPU Ratio Setting [Auto] FSB Strap to North Bridge [Auto] DRAM Frequency [Auto] DRAM CLK Skew on Channel A1 [Auto] DRAM CLK Skew on Channel A2 [Auto] DRAM CLK Skew on Channel B1 [Auto] DRAM CLK Skew on Channel B2 [Auto] DRAM Timing Control [Auto] 1st Information : 6-6-6-18-3-46-6-3 2nd Information : 8-3-6-4-6-4-6 3rd Information : 15-5-1-7-7 DRAM Static Read Control [Auto] DRAM Read Training [Auto] MEM. OC Charger [Auto] Ai Clock Twister [Auto] Ai Transaction Booster [Auto] C/P : A1 A2 A3 A4 A5 | B1 B2 B3 B4 B5 LVL : 11 11 11 11 11 | 11 11 11 11 11 CPU Voltage [Auto] CPU GTL Voltage Reference(0/2) [Auto] CPU GTL
Re: Diskless 4.4 machines.
On Sat, 21 Feb 2009 00:35:09 +1100, John Tate wrote Is it possible to have OpenBSD diskless or almost diskless? By almost diskless I mean an incredibly small amount installed locally and the rest over NFS or something. John. Yes, John. Entirely diskless. The specific technique used varies by hardware architecture. See diskless(8), to get started. Here's a link to the man page. Note the SEE ALSO section for additional materials: http://www.openbsd.org/cgi-bin/man.cgi?query=disklessapropos=0sektion=0manpath=OpenBSD+Currentarch=i386format=html
Re: A virus road map for GNOME and KDE?
Navan Carson wrote: ... The best way to accomplish what you seem to want, is to deny the message during the SMTP dialog. That way you don't create another tool for the Spammers. Of course that's best, but it also presumes a competent mail administrator. Rare as hen's teeth these days, compared to the number of mail servers or things that call themselves mail servers out there. Unless the autoresponder is misconfigured to make an infinite loop, its not going to be tool for spammers. Without it, the spam would be coming to your mailbox. With it, at worst, if the originating addressed is spoofed, then the autoresponder will be doing a favor to the real owner of the address by pointing out the problem so it can be addressed and solved. You might even add some explanation in the message about if you did not send this message, then ... Regards -Lars
Re: Diskless 4.4 machines.
On Sat, 21 Feb 2009, John Tate wrote: Is it possible to have OpenBSD diskless or almost diskless? By almost diskless I mean an incredibly small amount installed locally and the rest over NFS or something. John. sure now that's out of the way, there are various projects out there for small firewall installations on soekris or pcwrap you can use as examples.
Re: Diskless 4.4 machines.
John Tate wrote: Is it possible to have OpenBSD diskless or almost diskless? By almost diskless I mean an incredibly small amount installed locally and the rest over NFS or something. In addition to the man diskless response, by today's standards, 1G is incredibly small and plenty for an /easy/ and by the book OpenBSD install. Nick.
Share a LUN
Hi list, I would like to access to the data in a LUN (exported from a SAN) from more than one web server. I am planning to connect by a fiber card one OpenBSD server to that LUN and offer this data to the web servers by a NFS share. But I that single NFS host dies, all the web servers stop accessing the data. As fas as I know, there is no possibility of connecting more than a machine simoultaneously to the same LUN in a SAN, am I right? If that is so, I need some kind of failover. If I get a second server with a fiber card, how can I implement a failover mechanism so that when the first server dies, the spare server connects to the LUN and exports the data by NFS to the web servers? Can CARP be used for that? Thanks. /joakinen
Re: routing problem
On Fri, Feb 20, 2009 at 6:34 AM, Federico deepb...@fastwebnet.it wrote: Hello all, I have a trouble with some routing-related that i can't figure out. I have this configuration: ** ***INTERNET*** ** | bnx1 | FIREWALL | bnx0 | DMZ (10.0.0.0/28) | bnx1 | PROXY | bnx0 | LAN (192.168.80.0/24) FIREWALL and PROXY are both OpenBSD machines. The bnx1 of the firewall is configured on a public subnet. A couple of machines in the DMZ are natted with public ip configured on the bnx1 of the firewall. For a particular reason, I have to route traffic from LAN to DMZ using the pubblic ip. I can't use a DNS based solution (like views). So, when I try to connect to a DMZ machine by using its pubblic (natted) ip, traffic is blocked at bnx0 of the firewall. With tcpdump I can see that bnx0 answers with a RST packet to the connection request coming from lan (and masked by PROXY). The only trick I found to make it works, is using redirect on PROXY, something like that: rdr on bnx1 from bnx0:network to $MyPublicIp - 10.0.0.2 This is the basic ruleset I'm using on FIREWALL: set skip on lo scrub in rdr pass on bnx1 proto tcp from any to $MyPublicIP port 80 - 10.0.0.2 block in log pass out pass in on bnx1 proto tcp from any to 10.0.0.2 port 80 flags S/SA synproxy state I didn't touch routes. Is there another way than using a set of rdr rules? Did I miss some man page? $MyPublicIP doesn't actually belong to your DMZ machine, so FIREWALL's route to that address (if it has one) is not what you're expecting. Your rdr on PROXY solves the problem. Use it or remove the need for it. -HKS
Re: A virus road map for GNOME and KDE?
On Fri, Feb 20, 2009 at 9:12 AM, Lars Noodin larsnoo...@openoffice.org wrote: Navan Carson wrote: ... The best way to accomplish what you seem to want, is to deny the message during the SMTP dialog. That way you don't create another tool for the Spammers. Of course that's best, but it also presumes a competent mail administrator. Rare as hen's teeth these days, compared to the number of mail servers or things that call themselves mail servers out there. Unless the autoresponder is misconfigured to make an infinite loop, its not going to be tool for spammers. Without it, the spam would be coming to your mailbox. With it, at worst, if the originating addressed is spoofed, then the autoresponder will be doing a favor to the real owner of the address by pointing out the problem so it can be addressed and solved. You might even add some explanation in the message about if you did not send this message, then ... Regards -Lars ...then? Spoofing is one of those things that can't really be fixed. Assuming your MTA is one of the few that actually enforces SPF, they could configure that and no longer get your autoreplies. That's it. And with the vast majority of other MTAs not supporting SPF, they're going to be getting plenty of back-scatter spam anyway. And since the implication is that you use this solution if your mail administrator is incompetent, it's doubtful they're enforcing SPF. Competent mail administrators these days do not fire off autoresponses to spammers. They assume that the From: address is bullshit. They assume that much of the time it will have broken MX records, which means you run the risk of clogging your system with deferred autoresponses to messages you didn't want in the first place. Block spam at the dialog level if possible. If it gets through, either dump it to /dev/null or report it to Spamcop and then dump it to /dev/null. -HKS
Re: A virus road map for GNOME and KDE?
(private) HKS wrote: Block spam at the dialog level if possible. If it gets through, either dump it to /dev/null or report it to Spamcop and then dump it to /dev/null. Which is fine for spam. For mail from real accounts that have owners stupid enough to send a binary attachment, there are the many fine autoresponders which can 1) delete the message for you so you don't have to see it, 2) automatically send a message (polite or impolite) to the idiot who sent the attachment. E-Mail is not an acceptable surrogate for a networked filesystem. As mentioned Kerberos, OpenAFS and Apache are part of the base distro. For lamer, lower tech options there is always WebDAV provided by mod_dav. Regards -Lars
Re: STM-1 connectivity (OT?)
Toni Mueller wrote: I'm looking into ways to handle STM-1 connections. I dimly remember that there were Marconi cards, that were supported, but can't find them anymore. What would be the recommended method these days to terminate STM-1 circuits, possibly on an OpenBSD based router, please? I don't ever remember hearing about a (OpenBSD-supported) PCI card that would handle an STM-1 -- there are a couple that will handle T1/E1, but I believe that the biggest TDM circuit that OpenBSD can terminate directly is perhaps a DS3, via a lmc(4) card, though I have yet to find/use one myself. What alternatives do you suggest? You can find a number of vendors that supply DS3-to-100BaseT or STM1-to-GigE media converter, but you have to run in them in pairs on both ends of your point-to-point circuit of course. If you're getting a transit from an upstream provider you're screwed unless the provider will deliver ethernet to you (which is increasingly the case, since TDM circuits are super expensive per megabit compared to [metro-] ethernet). If you go with the media converter on both ends option, be sure to find one that drops the link on the ethernet side when the STM1 side goes down, and vice versa, so your routing protocols can take appropriate action and not continue to blackhole traffic during outages. Also, be ware that the available PPS and MTU sizes of ethernet networks versus DS3 or STM-1 are typically *not* the same, and plan accordingly. Lastly, if you *really* need to terminate an STM-1, and want more link-level info about your circuit to troubleshoot problems when they occur than a media converter will supply, and you absolutely can't get ethernet from your carrier, consider using a different router for that leg of your network. Imagestream (proprietary+linux based) works for a good+cheap solution that can talk iBGP to your other ethernet-only routers. Or just get a used Juniper/Crisco/whatever. See also Sangoma's Wanpipe offerings (FreeBSD/linux). -Tico
Re: Share a LUN
On Fri, Feb 20, 2009 at 03:59:19PM +0100, elbibliotecarioci...@gmail.com wrote: I am planning to connect by a fiber card one OpenBSD server to that LUN and offer this data to the web servers by a NFS share. But I that single NFS host dies, all the web servers stop accessing the data. As fas as I know, there is no possibility of connecting more than a machine simoultaneously to the same LUN in a SAN, am I right? If that is so, I need some kind of failover. From the SAN (zoning) and storage point of view, you can expose the same LUN to many HBA (host controllers). It means multiple OpenBSD servers can see the same LUNs. To mount them on more than one node requires a global FS, beast that does not exist on OpenBSD. You may want to setup some 'cluster' logic to mount a LUN on one node at a time, tacking care about fsck, ... If I get a second server with a fiber card, how can I implement a failover mechanism so that when the first server dies, the spare server connects to the LUN and exports the data by NFS to the web servers? Can CARP be used for that? This is really a NFS cluster scenario. With OpenBSD and CARP, you could also setup 2 web servers with their own storage and sync them with some home made scripts. Yeah, you need 100% more storage. -- Olivier Cherrier
Windows .zip files
I need to examine the contents of a Windows .zip file. I was slightly surprised that compress could not read them. I do find about 7 packages that might possible read them Any ideas which is the best package to pick?
The quest of the perfect wireless chipset
Hello, I am still trying to find a good mini PCI card to include in my Soekris and stepped upon a reseller providing Atheros based ones. The one chipset that caught my attention is that one : Atheros AR5414 (but can also fall back on 5213A). I wanted to know if anyone on this list has a return on experience running such devices as hostap (access point) with WPA encryption. Thanks a bunch, Steph
Re: Windows .zip files
On Fri, Feb 20, 2009 at 2:06 PM, Peter Fraser p...@thinkage.ca wrote: I need to examine the contents of a Windows .zip file. I was slightly surprised that compress could not read them. I do find about 7 packages that might possible read them Any ideas which is the best package to pick? pkg_add unzip?
Re: .zip files
Peter Fraser wrote: I need to examine the contents of a ... .zip file. I was slightly surprised that compress could not read them. You shouldn't have been. Compress files usually have .Z at the end of the name. What were your results with unzip? http://www.openbsd.org/4.4_packages/i386/unzip-5.52p0.tgz-long.html Regards -Lars
Re: amd64 4.5-beta kernel hang with pciide timeouts
Marco Peereboom wrote: Doesn't eliminate the need for the dmesg. Also an acpidump -o would be nice. I think I'm having the same problem with my Seagate ST31000340AS. It hangs with acpi and works fine with acpi disabled. Before I entered the new disk, the system worked with acpi, too. Here is the dmesg and an acpidump attached for Marco. booting hd0a:/bsd: 4769292+964326+835576+0+620448 [80+434928+275877]=0xb89388 entry point at 0x1001e0 [7205c766, 3404, 24448b12, 30c0a304] [ using 711656 bytes of bsd ELF symbol table ] Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2009 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 4.5-beta (GENERIC) #2030: Wed Feb 18 20:43:45 MST 2009 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC real mem = 535756800 (510MB) avail mem = 507953152 (484MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.3 @ 0xf (39 entries) bios0: vendor Phoenix Technologies, LTD version 6.00 PG date 01/19/2005 bios0: http://www.abit.com.tw/ AV8 (VIA K8T800P-8237) acpi0 at bios0: rev 0 acpi0: tables DSDT FACP BOOT APIC acpi0: wakeup devices PCI0(S5) USB0(S3) USB1(S3) USB2(S3) USB3(S3) USB4(S3) USB5 (S3) USB6(S3) AC97(S5) MC97(S5) UAR1(S5) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: AMD Athlon(tm) 64 Processor 3000+, 1839.15 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,MMX,FXSR,SSE,SSE2,SSE3,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 512KB 64b/line 1 6-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: AMD erratum 113 detected and fixed cpu0: AMD erratum 89 present, BIOS upgrade may be required cpu0: apic clock running at 204MHz ioapic0 at mainbus0 apid 2 pa 0xfec0, version 3, 24 pins acpiprt0 at acpi0: bus 0 (PCI0) acpicpu0 at acpi0 acpibtn0 at acpi0: PWRB pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 VIA K8HTB Host rev 0x00 agp at pchb0 not configured pchb1 at pci0 dev 0 function 1 VIA K8HTB Host rev 0x00 pchb2 at pci0 dev 0 function 2 VIA K8HTB Host rev 0x00 pchb3 at pci0 dev 0 function 3 VIA K8HTB Host rev 0x00 pchb4 at pci0 dev 0 function 4 VIA K8HTB Host rev 0x00 pchb5 at pci0 dev 0 function 7 VIA K8HTB Host rev 0x00 ppb0 at pci0 dev 1 function 0 VIA K8HTB AGP rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 NVIDIA GeForce3 Ti 200 rev 0xa3 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) rl0 at pci0 dev 12 function 0 Realtek 8139 rev 0x10: apic 2 int 20 (irq 10), a ddress 00:50:ba:bb:60:5f rlphy0 at rl0 phy 0: RTL internal PHY vge0 at pci0 dev 14 function 0 VIA VT612x rev 0x11: apic 2 int 22 (irq 5), add ress 00:50:8d:d3:18:38 ciphy0 at vge0 phy 1: CS8201 10/100/1000TX PHY, rev. 2 pciide0 at pci0 dev 15 function 0 VIA VT6420 SATA rev 0x80: DMA pciide0: using apic 2 int 11 (irq 11) for native-PCI interrupt wd0 at pciide0 channel 0 drive 0: ST31000340AS wd0: 16-sector PIO, LBA48, 953869MB, 1953525168 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 pciide1 at pci0 dev 15 function 1 VIA VT82C571 IDE rev 0x06: ATA133, channel 0 configured to compatibility, channel 1 configured to compatibility wd1 at pciide1 channel 0 drive 0: SAMSUNG SP1203N wd1: 16-sector PIO, LBA48, 114498MB, 234493056 sectors wd2 at pciide1 channel 0 drive 1: SAMSUNG SP2514N wd2: 16-sector PIO, LBA48, 238475MB, 488397168 sectors wd1(pciide1:0:0): using PIO mode 4, Ultra-DMA mode 5 wd2(pciide1:0:1): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide1 channel 1 drive 1 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, DVDRAM GSA-4163B, A103 ATAPI 5/cdrom r emovable cd0(pciide1:1:1): using PIO mode 4, Ultra-DMA mode 2 uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x81: apic 2 int 21 (irq 11) uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x81: apic 2 int 21 (irq 11) uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x81: apic 2 int 21 (irq 11) uhci3 at pci0 dev 16 function 3 VIA VT83C572 USB rev 0x81: apic 2 int 21 (irq 11) ehci0 at pci0 dev 16 function 4 VIA VT6202 USB rev 0x86: apic 2 int 21 (irq 10 ) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 VIA EHCI root hub rev 2.00/1.00 addr 1 viapm0 at pci0 dev 17 function 0 VIA VT8237 ISA rev 0x00 iic0 at viapm0 spdmem0 at iic0 addr 0x50: 512MB DDR SDRAM non-parity PC3200CL3.0 auvia0 at pci0 dev 17 function 5 VIA VT8233 AC97 rev 0x60: apic 2 int 22 (irq 10) ac97: codec id 0x414c4780 (Avance Logic ALC658 rev 0) ac97: codec features 20 bit DAC, 18 bit ADC, No 3D Stereo audio0 at auvia0 pchb6 at pci0 dev 24 function 0 AMD AMD64 0Fh HyperTransport rev 0x00 pchb7 at pci0 dev 24
Re: A virus road map for GNOME and KDE?
On Fri, Feb 20, 2009 at 06:37:57PM +0200, Lars Nood??n wrote: | (private) HKS wrote: | | Block spam at the dialog level if possible. If it gets through, either | dump it to /dev/null or report it to Spamcop and then dump it to | /dev/null. | | Which is fine for spam. For mail from real accounts that have owners | stupid enough to send a binary attachment, there are the many fine | autoresponders which can 1) delete the message for you so you don't have | to see it, 2) automatically send a message (polite or impolite) to the | idiot who sent the attachment. | | E-Mail is not an acceptable surrogate for a networked filesystem. As | mentioned Kerberos, OpenAFS and Apache are part of the base distro. For | lamer, lower tech options there is always WebDAV provided by mod_dav. Are you really saying ((SMTP != NFS) (HTTP == NFS)) ? Are you really calling the OpenBSD porters that send new ports to po...@openbsd.org in tarballs attached to e-mails dipshits and idiots ? Are you really suggesting the use of autoresponders in an age of spammers joe jobbing the world through backscatter, poorly configured mailservers and automated mail responders ? Are you actually insane ? The fact that a technology can be used or combined with other technologies in ways the original creator did not think of used to be a sign of a great technology. Sure, it gets abused by mindless drones completely unaware of the consequences of their actions, but there may still be valid and legal uses for it. SSH was never designed for filetransfer but you can transfer files through SSH in countless ways. People doing this are dipshits and idiots ? E-mail may not be an acceptable surrogate for a networked filesystem, but you sure can easily transfer files with it. Now it's wrong to do so because Lars tells us ? Paul 'WEiRD' de Weerd -- [++-]+++.+++[---].+++[+ +++-].++[-]+.--.[-] http://www.weirdnet.nl/ [demime 1.01d removed an attachment of type application/pgp-signature]
Re: STM-1 connectivity (OT?)
Hi, On Fri, 20.02.2009 at 11:49:19 -0600, tico tico-o...@raapid.net wrote: Toni Mueller wrote: I'm looking into ways to handle STM-1 connections. I dimly remember that there were Marconi cards, that were supported, but can't find them anymore. What would be the recommended method these days to terminate STM-1 circuits, possibly on an OpenBSD based router, please? I don't ever remember hearing about a (OpenBSD-supported) PCI card that would handle an STM-1 -- there are a couple that will handle T1/E1, but I believe that the biggest TDM circuit that OpenBSD can terminate directly is perhaps a DS3, via a lmc(4) card, though I have yet to find/use one myself. in hindsight, I may have confused support in FreeBSD with support in OpenBSD for an STM-1 ATM card, a few years ago. Sorry. You can find a number of vendors that supply DS3-to-100BaseT or STM1-to-GigE media converter, STM-1-offerings seem to be much less frequent than DS3-offerings. but you have to run in them in pairs on both ends of your point-to-point circuit of course. For DS3, that would be true, but I've been told that this would not be true for STM-1 circuits. If you're getting a transit from an upstream provider you're screwed unless the provider will deliver ethernet to you (which is increasingly the case, since TDM circuits are super expensive per megabit compared to [metro-] ethernet). Perceived cost is one of the reasons why I'm looking into operating an STM-1 circuit instead of a Fast-Ethernet Circuit. But I don't have hard numbers yet. If you go with the media converter on both ends option, be sure to find one that drops the link on the ethernet side when the STM1 side goes down, and vice versa, so your routing protocols can take appropriate action and not continue to blackhole traffic during outages. Right. That's another issue with the Ethernet I currently have: It does _not_ drop link when the fibre goes down. There is even no ETA as to when this will be fixed - the carrier only talked about wait for a fix from vendor, but don't know when it will be available. Imagestream (proprietary+linux based) works for a good+cheap solution that can talk iBGP to your other ethernet-only routers. Or just get a used Juniper/Crisco/whatever. See also Sangoma's Wanpipe offerings (FreeBSD/linux). Thanks for your advice, but I want a solution centered around OpenBSD. I've been burned by vendor lock-in often enough to try hard to avoid doing it again. FWIW, I've talked to Imagestream a few years ago, and was really not impressed with their offering, in several respects. Kind regards, --Toni++
Real-time support?
Hai misc,Does OpenBSD support real-time scheduling? Or any high-resolution timer? __ Lena pengar utan sdkerhet. Jdmfvr vilkor online hos Kelkoo. http://www.kelkoo.se/c-100390123-lan-utan-sakerhet.html?partnerId=96915014
Re: Real-time support?
On 20 February 2009 c. 23:24:09 rdc_w wrote: Hai misc,Does OpenBSD support real-time scheduling? No, OpenBSD is not a real-time OS, if you meant this. Or any high-resolution timer? What resolution do you need? Look at setitimer(2), for example. BTW, what's the real(-time) problem do you have? -- WBR, Pereresus ne Vlezaet Buggy
Re: Windows .zip files
On 21/02/2009, at 8:12 AM, Nick Guenther wrote: On Fri, Feb 20, 2009 at 2:06 PM, Peter Fraser p...@thinkage.ca wrote: I need to examine the contents of a Windows .zip file. I was slightly surprised that compress could not read them. I do find about 7 packages that might possible read them Any ideas which is the best package to pick? pkg_add unzip? unzip is good for files from Windows, but if the file is bigger than a certain size (4Gb, I think) then p7zip (7-zip) will cope.
mp3 playback speed problem on new snapshot
Hi, I'm running OpenBSD paranoiac.blackhelicopters.org 4.5 GENERIC.MP#82 i386 on a Toshiba Satellite P105-S6179. Fresh install, not an upgrade. Widescreen works beautifully with 915resolution package, ACPI made the fan start when necessary, everything seems good... except sound. MP3 playback is fast. Not terribly fast, just a little bit fast. My VNV Nation sounds like they've taken a little bit too much speed, and John Fogerty sounds like he's been kicked in the fork. Everything is understandable, but just that little bit too fast. I've solved any number of no sound problems, but this is a new one. The archives include reports of this issue years ago, but nothing current. Any suggestions? Thanks, ==ml # mixerctl outputs.spkr_source=dac outputs.spkr_mute=off outputs.spkr=200,200 outputs.spkr_eapd=on outputs.line-in_source=dac outputs.line-in_mute=off outputs.line-in=125,125 outputs.line-in_dir=input outputs.line-in_boost=off outputs.SPDIF_source=dig-dac outputs.mic_dir=input-vr80 inputs.beep_mute=off inputs.beep=108 inputs.mix_source=dac,mic,line-in inputs.mix_dac=125,125 inputs.mix_mic=125,125 inputs.mix_line-in=125,125 record.adc_source= record.adc_mute=off record.adc=121,121 outputs.line-in_sense=unplugged outputs.mic_sense=unplugged outputs.spkr_muters=line-in,mic outputs.master=125,125 outputs.master.mute=off outputs.master.slaves=spkr record.volume=121,121 record.volume.mute=off record.volume.slaves=adc inputs.usingdac=19 /var/run/dmesg.boot: OpenBSD 4.5-beta (GENERIC.MP) #82: Tue Feb 17 23:09:11 MST 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Core(TM)2 CPU T5200 @ 1.60GHz (GenuineIntel 686-class) 1.61 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,TM2,CX16,xTPR real mem = 2137157632 (2038MB) avail mem = 2058244096 (1962MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 12/22/06, BIOS32 rev. 0 @ 0xfd4a0, SMBIOS rev. 2.4 @ 0xdf010 (30 entries) bios0: vendor TOSHIBA version V3.30 date 12/22/2006 bios0: TOSHIBA Satellite P105 acpi0 at bios0: rev 2 acpi0: tables DSDT FACP APIC HPET MCFG APIC BOOT SLIC SSDT SSDT SSDT acpi0: wakeup devices HDEF(S3) LANE(S5) PXS2(S4) PXS3(S4) PXS4(S4) PXS5(S4) PXS6(S4) USB1(S3) USB2(S3) USB3(S3) USB4(S3) USB7(S3) LANC(S5) CIR_(S5) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 133MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 CPU T5200 @ 1.60GHz (GenuineIntel 686-class) 1.61 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,TM2,CX16,xTPR ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 2, remapped to apid 1 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 2 (RP01) acpiprt2 at acpi0: bus 3 (RP02) acpiprt3 at acpi0: bus 4 (RP03) acpiprt4 at acpi0: bus -1 (RP04) acpiprt5 at acpi0: bus -1 (RP05) acpiprt6 at acpi0: bus -1 (RP06) acpiprt7 at acpi0: bus 10 (PCIB) acpiec0 at acpi0 acpicpu0 at acpi0: C3, C2 acpicpu1 at acpi0: C3, C2 acpitz0 at acpi0: critical temperature 104 degC acpiac0 at acpi0: AC unit online acpibat0 at acpi0: BAT1 not present acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: PWRB acpivideo at acpi0 not configured acpivideo at acpi0 not configured bios0: ROM list: 0xc/0xea00! 0xcf000/0x1800 0xdf000/0x1000! 0xe/0x1800! cpu0: unknown Enhanced SpeedStep CPU, msr 0x06130c2506000c25 cpu0: using only highest and lowest power states cpu0: Enhanced SpeedStep 1600 MHz (1292 mV): speeds: 1600, 800 MHz pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82945GM Host rev 0x03 vga1 at pci0 dev 2 function 0 Intel 82945GM Video rev 0x03 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) intagp0 at vga1 agp0 at intagp0: aperture at 0xc000, size 0x1000 inteldrm0 at vga1: apic 1 int 16 (irq 11) drm0 at inteldrm0 Intel 82945GM Video rev 0x03 at pci0 dev 2 function 1 not configured azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x02: apic 1 int 22 (irq 11) azalia0: codecs: Conexant CX20549 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x02: apic 1 int 17 (irq 11) pci1 at ppb0 bus 2 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x02: apic 1 int 16 (irq 11) pci2 at ppb1 bus 3 wpi0 at pci2 dev 0 function 0 Intel PRO/Wireless 3945ABG rev 0x02: could not map memory space ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x02: apic 1 int 18 (irq 11) pci3 at ppb2 bus 4 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x02: apic 1 int 23 (irq 7) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x02: apic 1 int 19 (irq
Re: A virus road map for GNOME and KDE?
On Fri, Feb 20, 2009 at 09:28:50PM +0100, Paul de Weerd wrote: Are you actually insane ? beeing at @openoffice.org is a clear sign of beeing insane or weird to some level. No pun intended, Really. E-mail may not be an acceptable surrogate for a networked filesystem, but you sure can easily transfer files with it. Now it's wrong to do so because Lars tells us ? To add to this: there were times when no internet existed, and yet people did exchange files via email or news. Ciao, Kili -- Der erste Affe, der vom Baum stieg, war ein DAU. -- Horst Hoffmann in dtj
Security issue, damn I've been hacked
Hi All, It looks like my server running since few days has already been hacked. It looks like a new user called 'daemon' ID 1 and a new group daemon. User's full name 'The devil itself' First time I find out evidence of hack on my server, however it's only one month running !! It looks like ntpd was the entry daemon connected to other than ntp site but I'm not sure. I am not sure at all about this, maybe one has changed the daemon. After I checked the adresses that this daemon connected to, they were very strange as webservers content (blogs, default page 'It works' and so one ... I guess ntp servers shall not act like this). Please find enclosed the ntpd server md5 print, one could check if /usr/sbin/ntpd (OpenBSD 4.4) has the same print ? md5 print of ntpd daemon (/usr/sbin) on my OpenBSD 4.4 : a0c8961d5818b438ecbfd6c40be47a5f Thanks for your kind help.
Re: Security issue, damn I've been hacked
On 21 Feb 2009 at 0:46, Jean-Francois wrote: Hi All, It looks like my server running since few days has already been hacked. It looks like a new user called 'daemon' ID 1 and a new group daemon. User's full name 'The devil itself' First time I find out evidence of hack on my server, however it's only one month running !! It looks like ntpd was the entry daemon connected to other than ntp site but I'm not sure. I am not sure at all about this, maybe one has changed the daemon. After I checked the adresses that this daemon connected to, they were very strange as webservers content (blogs, default page 'It works' and so one ... I guess ntp servers shall not act like this). Please find enclosed the ntpd server md5 print, one could check if /usr/sbin/ntpd (OpenBSD 4.4) has the same print ? md5 print of ntpd daemon (/usr/sbin) on my OpenBSD 4.4 : a0c8961d5818b438ecbfd6c40be47a5f Thanks for your kind help. Thank you for helping me finish an ardous week with a hearty laugh! ROTFL
Re: Security issue, damn I've been hacked
On 21/02/2009, at 12:46 PM, Jean-Francois wrote: Hi All, It looks like my server running since few days has already been hacked. It looks like a new user called 'daemon' ID 1 and a new group daemon. User's full name 'The devil itself' First time I find out evidence of hack on my server, however it's only one month running !! It looks like ntpd was the entry daemon connected to other than ntp site but I'm not sure. I am not sure at all about this, maybe one has changed the daemon. After I checked the adresses that this daemon connected to, they were very strange as webservers content (blogs, default page 'It works' and so one ... I guess ntp servers shall not act like this). Please find enclosed the ntpd server md5 print, one could check if /usr/sbin/ntpd (OpenBSD 4.4) has the same print ? md5 print of ntpd daemon (/usr/sbin) on my OpenBSD 4.4 : a0c8961d5818b438ecbfd6c40be47a5f Thanks for your kind help. Ummm, not April 1st, so I'll bite. $ md5 /usr/sbin/ntpd MD5 (/usr/sbin/ntpd) = a0c8961d5818b438ecbfd6c40be47a5f $ cat /etc/passwd root:*:0:0:Charlie :/root:/bin/ksh daemon:*:1:1:The devil himself:/root:/sbin/nologin operator:*:2:5:System :/operator:/sbin/nologin
Re: Security issue, damn I've been hacked
Those are there by default. If the users shell is 'nologin' then you are chasing phantoms. Also, no, someone named 'Charlie' did not compromise root (well, most likely :-). -Bryan On Fri, Feb 20, 2009 at 3:46 PM, Jean-Francois jfsimon1...@gmail.com wrote: Hi All, It looks like my server running since few days has already been hacked. It looks like a new user called 'daemon' ID 1 and a new group daemon. User's full name 'The devil itself' First time I find out evidence of hack on my server, however it's only one month running !! It looks like ntpd was the entry daemon connected to other than ntp site but I'm not sure. I am not sure at all about this, maybe one has changed the daemon. After I checked the adresses that this daemon connected to, they were very strange as webservers content (blogs, default page 'It works' and so one ... I guess ntp servers shall not act like this). Please find enclosed the ntpd server md5 print, one could check if /usr/sbin/ntpd (OpenBSD 4.4) has the same print ? md5 print of ntpd daemon (/usr/sbin) on my OpenBSD 4.4 : a0c8961d5818b438ecbfd6c40be47a5f Thanks for your kind help.
A Distancia
Por favor, no responda este mail. Si desea responder, hagalo a la direccion que figura al pie. nbs p;nb sp; Inscripciones 2009 Psicologia Social Supervision General Licenciada Diana Coblier Primera Escuela Virtual de Psicologia Social Totalmente a Distancia Para Hispano Parlantes de todo el pams y del mundo. Tel. 011 - 48657124 Teorma y Ticnica Pichon Riviere Certificados de Estudios avalados por la propia Institucion Trabajo de Campo desde Primer Aqo Inscripcion abierta . Para consultas por Internet, remitir mail a fundaciontehuel...@hotmail.com Si no desea seguir recibiendo nuestra info, por favor, mandar mail a fundaciontehuel...@hotmail.com con la palabra remover en el Asunto.
Re: Security issue, damn I've been hacked
I didn't reply here for a long time, but this crack me :D You are the king :D Jean-Francois pisze: Hi All, It looks like my server running since few days has already been hacked. It looks like a new user called 'daemon' ID 1 and a new group daemon. User's full name 'The devil itself' First time I find out evidence of hack on my server, however it's only one month running !! It looks like ntpd was the entry daemon connected to other than ntp site but I'm not sure. I am not sure at all about this, maybe one has changed the daemon. After I checked the adresses that this daemon connected to, they were very strange as webservers content (blogs, default page 'It works' and so one ... I guess ntp servers shall not act like this). Please find enclosed the ntpd server md5 print, one could check if /usr/sbin/ntpd (OpenBSD 4.4) has the same print ? md5 print of ntpd daemon (/usr/sbin) on my OpenBSD 4.4 : a0c8961d5818b438ecbfd6c40be47a5f Thanks for your kind help.
People send attachments, deal with it (was: A virus road map for GNOME and KDE?)
On Feb 20, 2009, at 8:37 AM, Lars Noodin wrote: E-Mail is not an acceptable surrogate for a networked filesystem. Regards -Lars All right, I've had enough of your tilting at windmills. This battle has been fought and lost already. E-mail is the de facto way to collaborate, and that includes collaborating with documents and files. If you weren't supposed to send or receive binary attachments, e-mail clients wouldn't allow it (nor MTAs, for that matter). Even UNIX command line e-mail clients have had this capability for... what, decades? Stop crying about your made-up rules that the protocol standards don't seem to agree with. There are a bunch of neat products out there that can strip _large_ attachments off and place them on a secure webserver, but these are not a reasonable way to send _every_ attachment. Some system administrators believe it's their place to tell entire companies how they should do everything. These administrators tend to not be very employable. -- bk
Re: People send attachments, deal with it (was: A virus road map for GNOME and KDE?)
Cheers to that and well said! Jim On Sat, Feb 21, 2009 at 6:28 PM, Brian Keefer ch...@smtps.net wrote: On Feb 20, 2009, at 8:37 AM, Lars Noodin wrote: E-Mail is not an acceptable surrogate for a networked filesystem. Regards -Lars All right, I've had enough of your tilting at windmills. This battle has been fought and lost already. E-mail is the de facto way to collaborate, and that includes collaborating with documents and files. If you weren't supposed to send or receive binary attachments, e-mail clients wouldn't allow it (nor MTAs, for that matter). Even UNIX command line e-mail clients have had this capability for... what, decades? Stop crying about your made-up rules that the protocol standards don't seem to agree with. There are a bunch of neat products out there that can strip _large_ attachments off and place them on a secure webserver, but these are not a reasonable way to send _every_ attachment. Some system administrators believe it's their place to tell entire companies how they should do everything. These administrators tend to not be very employable. -- bk
Re: mp3 playback speed problem on new snapshot
On Fri, Feb 20, 2009 at 05:23:09PM -0500, Michael W. Lucas wrote: Hi, I'm running OpenBSD paranoiac.blackhelicopters.org 4.5 GENERIC.MP#82 i386 on a Toshiba Satellite P105-S6179. Fresh install, not an upgrade. Widescreen works beautifully with 915resolution package, ACPI made the fan start when necessary, everything seems good... except sound. MP3 playback is fast. Not terribly fast, just a little bit fast. My VNV Nation sounds like they've taken a little bit too much speed, and John Fogerty sounds like he's been kicked in the fork. Everything is understandable, but just that little bit too fast. I've solved any number of no sound problems, but this is a new one. The archives include reports of this issue years ago, but nothing current. Any suggestions? what applications are playing too fast? that's far more iportant than who's voice sounds like what. it sounds like 44.1kHz media being played at 48kHz. there are suggestions in tha FAQ. -- jake...@sdf.lonestar.org SDF Public Access UNIX System - http://sdf.lonestar.org