current snapshot can not install drupal7 with sqlite3 any more.
because php's version is php 5.4 , installing error sample; Warning: Illegal string offset 'field' in UpdateQuery_sqlite-removeFieldsInCondition() (line 75 of in previous php 5.3, drupal 7 with sqlite3 works.
OT: YubiKey NEO OpenSSH Token Support
TL;DR http://25thandclement.com/~william/YubiKey_NEO.html This is slightly off-topic, but perhaps some people on this list would be interested in this. I've been waiting over a decade, and tonight I've finally found the smartcard promise land. By gods, I'll never have to d*ck around with OpenSC ever again (not that I ever got it working to my satisfication; not in years of trying, and hundreds of dollars blown on various tokens). OpenBSD has native server auth support for the YubiKey OTP HID device, which is pretty awesome. I have over 10 tokens and an HSM module (which I need to eventually getting working on OpenBSD). I'm a Yubico fan. The recently released YubiKey NEO has added OpenPGP CCID support. The NEO is only the second card in the universe, AFAIK, that supports the OpenPGP smartcard specification. And at the moment the only one commercially available with a built-in reader. Why is this important? Because GnuPG has *native* support for OpenPGP CCID tokens. And while GnuPG and the underlying libusb library give me pause (the source code is... not pretty), it doesn't matter that much on the client side--at worse some exceptionally capable attacker sniffs your PIN. Yubico's libraries and GnuPG have made token management as simple as I've ever seen, from an open source perspective. I'm not that familiar with OpenPGP; I never cared to use PGP PKI without a hardware token. I had trouble getting everything working, so I've put together a HOWTO for configuring and using the YubiKey NEO as an OpenSSH authentication token on OS X. (*boo* *hiss* I like Mac laptops and I'm too lazy to put anything else on it.) Fortunately, most of the instructions should be identical for other Unix-like machines. http://25thandclement.com/~william/YubiKey_NEO.html
Re: easy-rsa script for OpenVPN issue
* Predrag Punosevac punoseva...@gmail.com [2013-09-13 17:14:22 -0400]: Deal All, I am trying to set up OpenVPN server at my work on the freshly installed OpenBSD machine using a 5.4 snapshot from July 30 (i386) and the ports tree fetched the same day. We must use OpenVPN so I am not interested in alternatives. The July 30 snapshot is pre- long long time_t, so it think that if you installed ports and plan to install ports from the current tree/packages, some or most of them will now be updated to the long long time_t versions and you may experience issues. The July 30 snapshot is the code that was used for the upcoming 5.4-REALEASE I think. I stayed with that particular snapshot for some extra time to allow for the packages to be updated before upgrading (fresh install) to a later snapshot - currently, Sep 9th. Someone hopefully can correct me if i'm wrong, I'm just trying to help you avoid further headaches wrt ports packages on that snapshot. Jamie
thunar-settings
This file located in /usr/local/bin seems to prevent thunar from working properly on sparc64, when xfce is running under a user. When xfce is running under a root account, there is no problem. On amd64, there is no issue period. On my sparc box, I removed this file, and now thunar works properly. Why does this file not work properly on a sparc box? #!/bin/sh # # vi:set et ai sw=2 sts=2 ts=2: */ test x$DISPLAY != x || DISPLAY=:0 output=`dbus-send --session --print-reply --dest=org.xfce.FileManager \ /org/xfce/FileManager org.xfce.FileManager.DisplayPreferencesDialog \ string:$DISPLAY string:$DESKTOP_STARTUP_ID` if ! [ $? -eq 0 ]; then echo $output exit 1 fi
cvsync, rsync
Dear Sirs! I have a question, perhaps a little of-topic, but it arose as I read about cvsync in openbsd web page. And OpenBsd people sure know a lot about cryptography :) Does rsync suppose that a part of a file in the server is equal to a part of a file in the client, if a hash value of these parts are equal? Does cvsync do the same? Is this reliable? Mathematicaly not a catastrophe? (equal if the images under a non-injective function are equal)? Is there a reliable way to make a local copy of the repository and update it from time to time (I have only very elementary knowledge about cvs and few experience)? Thanks Rodrigo
Re: i386_set_ioperm and machdep.allowaperture
On Tue, Sep 10, 2013 at 05:24:31PM +1000, Paul Kelly wrote: Dear list, Here's a manpage diff for i386_get_ioperm(2) to reflect the behaviour I have observed (see below diff). Please whack me with a stick if I have made any obvious mistakes. diff below committed. mark kettenis advised me just to lift the securelevel text from i386_iopl(2), which makes sense. he also wanted it left that both could return EFAULT. thanks for your mail, jmc Index: i386_get_ioperm.2 === RCS file: /cvs/src/lib/libarch/i386/i386_get_ioperm.2,v retrieving revision 1.14 diff -u -r1.14 i386_get_ioperm.2 --- i386_get_ioperm.2 26 Jun 2008 05:42:04 - 1.14 +++ i386_get_ioperm.2 14 Sep 2013 14:56:27 - @@ -50,7 +50,12 @@ .Fn i386_set_ioperm sets the I/O permission bitmap from the data pointed to by .Fa iomap . -This call is restricted to the superuser. +This call may only be made by the superuser. +Additionally, it is only permitted when the +.Xr securelevel 7 +is less than or equal to 0 or the +.Va machdep.allowaperture +sysctl has been set to a non-zero value. .Pp The permission bitmap contains 1024 bits in 32 longwords. If bit @@ -90,8 +95,16 @@ .It Bq Er EFAULT .Fa iomap points outside the process's allocated address space. +.El +.Pp +Additionally +.Fn i386_set_ioperm +will fail if: +.Bl -tag -width [EINVAL] .It Bq Er EPERM -The caller was not the superuser. +The caller was not the superuser, or the securelevel is greater than zero and +.Va machdep.allowaperture +has not been set to a non-zero value. .El .Sh SEE ALSO .Xr i386_iopl 2
pms0: not in sync yet, discard input (state 3)
hi there, after upgrading to the september 10 snapshot, i am not able to use the touchpad. console is full of: pms0: not in sync yet, discard input (state 1) pms0: not in sync yet, discard input (state 2) pms0: not in sync yet, discard input (state 3) attaching an external usb mouse helps, although sometimes, after trying to use pms again, button1 stops working... help help help plz OpenBSD 5.4-current (GENERIC.MP) #57: Tue Sep 10 17:42:20 MDT 2013 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF real mem = 1061818368 (1012MB) avail mem = 1032613888 (984MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 03/31/10, SMBIOS rev. 2.6 @ 0xeb0f0 (53 entries) bios0: vendor LENOVO version 50CN12WW date 04/22/2011 bios0: LENOVO 20109 acpi0 at bios0: rev 3 acpi0: sleep states S0 S1 S3 S4 S5 acpi0: tables DSDT FACP APIC MCFG SLIC HPET acpi0: wakeup devices P0P8(S4) PS2K(S3) PS2M(S3) EUSB(S3) P0PA(S4) P0PB(S4) P0PC(S4) P0P9(S3) USB0(S3) USB1(S3) USB2(S3) USB3(S3) PWRB(S3) SLPB(S3) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 166MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF cpu2 at mainbus0: apid 2 (application processor) cpu2: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu2: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu3: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins acpimcfg0 at acpi0 addr 0xf000, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 3 (P0P8) acpiprt2 at acpi0: bus 2 (P0PA) acpiprt3 at acpi0: bus -1 (P0PB) acpiprt4 at acpi0: bus -1 (P0PC) acpiprt5 at acpi0: bus 1 (P0P9) acpiec0 at acpi0 acpicpu0 at acpi0:, C3, C2, C1, PSS acpicpu1 at acpi0:, C3, C2, C1, PSS acpicpu2 at acpi0:, C3, C2, C1, PSS acpicpu3 at acpi0:, C3, C2, C1, PSS acpibtn0 at acpi0: PWRB acpibtn1 at acpi0: SLPB acpibtn2 at acpi0: LID_ acpiac0 at acpi0: AC unit online acpibat0 at acpi0: BAT1 model LNV-L10C6Y12 serial 004706 type LiIon oem CPT-ES3 acpivideo0 at acpi0: GFX0 acpivout0 at acpivideo0: DD02 bios0: ROM list: 0xc/0xda00! 0xce000/0x1000 cpu0: Enhanced SpeedStep 1663 MHz: speeds: 1667, 1334, 1000 MHz pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel Pineview DMI rev 0x02 vga1 at pci0 dev 2 function 0 Intel Pineview Video rev 0x02 intagp0 at vga1 agp0 at intagp0: aperture at 0xd000, size 0x1000 inteldrm0 at vga1 drm0 at inteldrm0 intel_overlay_map_regs partial stub inteldrm0: 1024x600 wsdisplay0 at vga1 mux 1: console (std, vt100 emulation) wsdisplay0: screen 1-5 added (std, vt100 emulation) Intel Pineview Video rev 0x02 at pci0 dev 2 function 1 not configured azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x02: msi azalia0: codecs: Realtek ALC269 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x02: apic 4 int 16 pci1 at ppb0 bus 1 re0 at pci1 dev 0 function 0 Realtek 8101E rev 0x05: RTL8105E (0x4080), msi, address 00:19:d1:e4:7c:15 rlphy0 at re0 phy 7: RTL8201E 10/100 PHY, rev. 2 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x02: apic 4 int 17 pci2 at ppb1 bus 2 Realtek 8188CE rev 0x01 at pci2 dev 0 function 0 not configured uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x02: apic 4 int 23 uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x02: apic 4 int 19 uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x02: apic 4 int 18 uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x02: apic 4 int 16 ehci0 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x02: apic 4 int 23 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb2 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xe2 pci3 at ppb2 bus 3 pcib0 at pci0 dev 31 function 0 Intel NM10 LPC rev 0x02 ahci0 at pci0 dev
Re: cvsync, rsync
Kenneth R Westerback kwesterb...@rogers.com wrote: People use cvsync or rsync to create/maintain a local copy or copies [...] Not sure what your 'reliable' metrics are, but works for me. My question was not about what people do or if it works (till now) for you. It was about the algorithm. Is the algorithm correct in the sense that it *always* give the right result, or there is only a (high) probability that in practical cases it gives the right result? Just this is my question. You make copy file F from computer A to computer B, compute the hash in both copies and see if they coincide. This is just a check of the transmition, of course it is possible that the copy is corrupted and in spite of it have the same hash. A completely other thing is to conclude that two *arbitrary* pieces of data are the same only because they have the same hash. Arbitrary means here that the one was not a copy of the other. And this is what rsync seems to do as far as I understand the wikipedia web-page. Regards Rodrigo
Re: cvsync, rsync
On Sat, Sep 14, 2013 at 01:59:50PM +, hru...@gmail.com wrote: Dear Sirs! I have a question, perhaps a little of-topic, but it arose as I read about cvsync in openbsd web page. And OpenBsd people sure know a lot about cryptography :) Does rsync suppose that a part of a file in the server is equal to a part of a file in the client, if a hash value of these parts are equal? Does cvsync do the same? Is this reliable? Mathematicaly not a catastrophe? (equal if the images under a non-injective function are equal)? Is there a reliable way to make a local copy of the repository and update it from time to time (I have only very elementary knowledge about cvs and few experience)? People use cvsync or rsync to create/maintain a local copy or copies of the repository. I use cvsync to sync one repository with an external source and then run cvsyncd on that box if I want repositories on other local machines. Not sure what your 'reliable' metrics are, but works for me. Ken Thanks Rodrigo
Re: cvsync, rsync
On Sat, Sep 14, 2013 at 03:09:48PM +, hru...@gmail.com wrote: A completely other thing is to conclude that two *arbitrary* pieces of data are the same only because they have the same hash. Arbitrary means here that the one was not a copy of the other. And this is what rsync seems to do as far as I understand the wikipedia web-page. The probability of an electrical failure in your hard drive causing it to munge the file, or of a bug in the software using that file is much higher than this happening.
Re: cvsync, rsync
Marc Espie es...@nerim.net wrote: On Sat, Sep 14, 2013 at 03:09:48PM +, hru...@gmail.com wrote: A completely other thing is to conclude that two *arbitrary* pieces of data are the same only because they have the same hash. Arbitrary means here that the one was not a copy of the other. And this is what rsync seems to do as far as I understand the wikipedia web-page. The probability of an electrical failure in your hard drive causing it to munge the file, or of a bug in the software using that file is much higher than this happening. This is a conjecture. Do you have a proof that the probability is so small? For me it is difficult to accept it. Is this conjecture used elsewhere? About my original intention: to get a copy of the repository. Does the repository only grow with new files? Old files never change? Can I hence expect that cvsync never rely on the above questionable conjecture? Even if the transmition for whatever reason is interrupted and I try again? Is there an alternative for downloading the repository without the conjecture? I dont like rsync and similars Thanks Rodrigo.
Re: cvsync, rsync
On Sat, Sep 14, 2013 at 04:13:41PM +, hru...@gmail.com wrote: Marc Espie es...@nerim.net wrote: On Sat, Sep 14, 2013 at 03:09:48PM +, hru...@gmail.com wrote: A completely other thing is to conclude that two *arbitrary* pieces of data are the same only because they have the same hash. Arbitrary means here that the one was not a copy of the other. And this is what rsync seems to do as far as I understand the wikipedia web-page. The probability of an electrical failure in your hard drive causing it to munge the file, or of a bug in the software using that file is much higher than this happening. This is a conjecture. Do you have a proof that the probability is so small? For me it is difficult to accept it. Is this conjecture used elsewhere? Oh, for crying out loud. There's a REPORT included with rsync, that describes the algorithm. Rsync uses 128 bits checksums to ensure files are not corrupted. The 16 bit checksums are just for *identifying blocks for transfer*. The end check is *of course* a full checksum. I consider 1/2^128 to be *vanishingly small*. It's ways more likely for a cpu or memory bug to occur. Cosmic ray radiation, or something, which you generally don't consider to be a big problem, is ways more probably to affect your memory, and storage. I dont like rsync and similars Just because you're irrational doesn't mean we have to cater to your irrational fears.
Re: cvsync, rsync
This just in, all the data in the world successfully moved with rsync just a coincidence. On Sat, Sep 14, 2013 at 11:34 AM, Marc Espie es...@nerim.net wrote: On Sat, Sep 14, 2013 at 04:13:41PM +, hru...@gmail.com wrote: Marc Espie es...@nerim.net wrote: On Sat, Sep 14, 2013 at 03:09:48PM +, hru...@gmail.com wrote: A completely other thing is to conclude that two *arbitrary* pieces of data are the same only because they have the same hash. Arbitrary means here that the one was not a copy of the other. And this is what rsync seems to do as far as I understand the wikipedia web-page. The probability of an electrical failure in your hard drive causing it to munge the file, or of a bug in the software using that file is much higher than this happening. This is a conjecture. Do you have a proof that the probability is so small? For me it is difficult to accept it. Is this conjecture used elsewhere? Oh, for crying out loud. There's a REPORT included with rsync, that describes the algorithm. Rsync uses 128 bits checksums to ensure files are not corrupted. The 16 bit checksums are just for *identifying blocks for transfer*. The end check is *of course* a full checksum. I consider 1/2^128 to be *vanishingly small*. It's ways more likely for a cpu or memory bug to occur. Cosmic ray radiation, or something, which you generally don't consider to be a big problem, is ways more probably to affect your memory, and storage. I dont like rsync and similars Just because you're irrational doesn't mean we have to cater to your irrational fears.
Re: cvsync, rsync
On Sat, Sep 14, 2013 at 04:13:41PM +, hru...@gmail.com wrote: Is there an alternative for downloading the repository without the conjecture? Use ftp. That way, you will get rid of those pesky 128 bits checksum, and only rely on your TCP/IP to be reliable. I'm pretty sure the built-in checksums in TCP headers are enough. (clue: normal network transfers are WAYS LESS protected than rsync)
Re: cvsync, rsync
hru...@gmail.com wrote: Does rsync suppose that a part of a file in the server is equal to a part of a file in the client, if a hash value of these parts are equal? Yes. Does cvsync do the same? (Embarrassingly, I don't actually remember how cvsync works in detail.) Is this reliable? In practice, yes. If you reduce 2^n bit chunks of data to 2^m bit hash values, with n m, there will always be collisions, i.e., chunks of data that are different but have the same hash value. However, the likelihood of such a collision can be made very, very small. Also, you can never transmit data with perfect reliability over an unreliable channel. With increasing effort you can make the probability of an undetected error arbitrarily small, but you can never reduce it to nothing. I will point out that the respective probabilities of data bits being corrupted on disk, in memory, on the various buses, or even inside the processor, are all non-zero. I don't have good figures at hand, but you'll need scientific notation to express how much more likely these events are than collisions for a 128-bit hash. (HGST, for instance, tells me that for their latest 4TB drives the error rate (non-recoverable, bits read) is 1 in 10^15.) Is there a reliable way to make a local copy of the repository and update it from time to time Yes, that's exactly what cvsync is for. -- Christian naddy Weisgerber na...@mips.inka.de
Re: cvsync, rsync
Marc Espie es...@nerim.net wrote: I consider 1/2^128 to be *vanishingly small*. Christian Weisgerber mentions that a relative small range of the hash function would be a problem, but a big range is not enough: the whole depends on the hash function itself. But this would be a big discussion: in some contexts a necessary discussion in which experience with the function is not enough. Just because you're irrational doesn't mean we have to cater to your irrational fears. You have a different concept of rationality. It has nothing to do with to fear or not fear, with to like or dislike, or to express that one dislikes an algorithm (as I did). Rationality means to have a convincing explanation. You show to be more rational than Patric Conant, but your of his rationality is not the thema: we are speaking about rsync, cvsync, md5, not about Marc, Patric or Rodrigo. And no, I am not the expert: that is why I asked. But I do have my reasons to dislike such an algorithm, and even aesthetical reasons are reasons, and I never expected or demanded that you share my reasons. Rodrigo.
RdRand instruction - is it used by default?
Support for the RdRand instruction was added to i386 and amd64 a year ago (see http://marc.info/?l=openbsd-cvsm=134808609318790w=2 ), but recent events have called its trustworthiness into question: http://en.wikipedia.org/wiki/RdRand https://plus.google.com/117091380454742934025/posts/SDcoemc9V3J Do these concerns currently affect OpenBSD? Is RdRand actually used by default by the base system? Thanks, -- Joe Gidi j...@entropicblur.com You cannot buy skill. -- Ross Seyfried
rcsfile(5)
Hello misc@, Was reading through rcs manual pages and came across a reference to rcsfile(5) in the rcscan(1) and rcscmp(1) SEE ALSO sections however I can't seem to find it. Am I dense or is it missing?
Re: RdRand instruction - is it used by default?
On Sat, Sep 14, 2013 at 8:26 PM, Joe Gidi j...@entropicblur.com wrote: Support for the RdRand instruction was added to i386 and amd64 a year ago (see http://marc.info/?l=openbsd-cvsm=134808609318790w=2 ), but recent events have called its trustworthiness into question: http://en.wikipedia.org/wiki/RdRand https://plus.google.com/117091380454742934025/posts/SDcoemc9V3J Do these concerns currently affect OpenBSD? Is RdRand actually used by default by the base system? http://www.change.org/en-GB/petitions/linus-torvalds-remove-rdrand-from-dev-random-4/responses/9066
Re: rcsfile(5)
On Sat, Sep 14, 2013 at 12:32:25PM -0600, Kyle R W Milz wrote: Hello misc@, Was reading through rcs manual pages and came across a reference to rcsfile(5) in the rcscan(1) and rcscmp(1) SEE ALSO sections however I can't seem to find it. Am I dense or is it missing? none of these files exist on a default install. you're maybe reading pages from another rcs implementation. jmc
Re: rcsfile(5)
On Sat, Sep 14, 2013 at 08:11:44PM +0059, Jason McIntyre wrote: On Sat, Sep 14, 2013 at 12:32:25PM -0600, Kyle R W Milz wrote: Hello misc@, Was reading through rcs manual pages and came across a reference to rcsfile(5) in the rcscan(1) and rcscmp(1) SEE ALSO sections however I can't seem to find it. Am I dense or is it missing? none of these files exist on a default install. you're maybe reading pages from another rcs implementation. You're totally right. I thought they belonged with rcs, rcsclean, rcsmerge, rcsdiff and company however using pkglocate it seems they are a part of the cvsync package. jmc
Re: rcsfile(5)
Jason McIntyre j...@kerhand.co.uk writes: On Sat, Sep 14, 2013 at 12:32:25PM -0600, Kyle R W Milz wrote: Hello misc@, Was reading through rcs manual pages and came across a reference to rcsfile(5) in the rcscan(1) and rcscmp(1) SEE ALSO sections however I can't seem to find it. Am I dense or is it missing? none of these files exist on a default install. you're maybe reading pages from another rcs implementation. ~$ man -w rcscmp /usr/local/man/man1/rcscmp.1 ~$ grep rcscmp /var/db/pkg/*/+CONTENTS /var/db/pkg/cvsync-0.24.19p2/+CONTENTS:@bin bin/rcscmp /var/db/pkg/cvsync-0.24.19p2/+CONTENTS:@man man/man1/rcscmp.1 ~$ -- jca | PGP: 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
Re: pms0: not in sync yet, discard input (state 3)
On Sat, Sep 14, 2013 at 05:02:03PM +0200, frantisek holop wrote: hi there, after upgrading to the september 10 snapshot, i am not able to use the touchpad. What were you running before upgrading to that snapshot? console is full of: pms0: not in sync yet, discard input (state 1) pms0: not in sync yet, discard input (state 2) pms0: not in sync yet, discard input (state 3) pms0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pms0 mux 0 pms0: Elantech Touchpad, version 2 Did you ever see the Elantech Touchpad, version 2 message before, and did the mouse work with it?
Re: sudo configuration !ttytickets?
On Fri, 13 Sep 2013 12:44:45 +0200, Donovan Watteau wrote: Am I right thinking that sudo in base is still vulnerable to CVE-2013-1776 for those who enable tty_tickets? Yes, but the situation is no worse than with tty_tickets disabled. If you are really worried about this you can simply disable the time stamp files by setting timestamp_timeout to 0. This makes sudo a lot less convenient to use though. - todd
US Paypal Donations Appears Broken
It appears the US donations area is broken. Following PayPal from http://www.openbsd.org/donations.html, I am taken to http://www.openbsdfoundation.org/donations.html. From http://www.openbsdfoundation.org/donations.html, I select US Donations and then taken to PayPal. PayPal's site takes me to Canada's landing page. When I switch countries to US, the US states are not populated so I can't select my state from the dropdown. When I attempt to add my state to my city (i.e., Pasadena, MD), the form fails validation due to lack of a province.
Webscraping exchange rates
Anyone care to code a snippet for the OpenBSD orders processing? I could be a bit more efficient here if I didn't have to manually enter latest exchange rates into our scripts from time to time. If would be nice if we could get a rate for current date, and for any past date from: http://www.bankofcanada.ca/rates/exchange/10-year-converter/ and just do it as part of the order processing scripts. Austin Hook OpenBSD Distribution
Re: Webscraping exchange rates
On Saturday, September 14, 2013, Austin Hook wrote: Anyone care to code a snippet for the OpenBSD orders processing? I could be a bit more efficient here if I didn't have to manually enter latest exchange rates into our scripts from time to time. this is for non-credit card orders? because i always see canadian amount posted to my cc statement, the conversion rate and surcharge my cc imposes for the foreign currency transaction. --patrick If would be nice if we could get a rate for current date, and for any past date from: http://www.bankofcanada.ca/rates/exchange/10-year-converter/ and just do it as part of the order processing scripts. Austin Hook OpenBSD Distribution
Re: sudo configuration !ttytickets?
On 09/12/13 02:59, Michael W. Lucas wrote: Hi, I've noticed that the sudo on OpenBSD seems to have !ttytickets set by default. In other words, I authenticate sudo once on, say, ttyp4, and all of my login sessions on all my other ttyp* have authenticated to sudo. This, well, kind of surprised me. I'm sure you folks have thought this through in much more detail than I have, but I can't find anything on the rationale behind it. It seems insecure. Can anyone enlighten me as to the thinking here? Thanks, ==ml FWIW, I tend to append this to /etc/sudoers: - - - - # Local settings Defaultspassprompt=Sudo password (%u@%h):, \ tty_tickets, \ passwd_timeout=0, \ timestamp_timeout=60 %wheel ALL=(ALL:ALL) SETENV: ALL - - - - Meaning I do use the 'per-tty' sudo ticket, extending the timeout to 60 minutes. Some issues remain though; - Making sure to 'sudo -k' on leaving the shell (or, rather, tty). 'trap' helps here, at least a bit, but I'm not sure I catch 100% of the cases. - If you don't have a tty (ssh -T $HOST sudo $whatever), calling it again won't prompt for a password. (sudo -k $whatever would, however) I'm sure there are more potential flaws with the setup. Call it security by obscurity if you please, but it makes me feel a tad better about upping the timeout. The passprompt change is really helpful at times though, not to be mistaken for an ssh password, a sudo password on another machine or sth else. /Alexander
How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
I'm trying to add myself to sudoers. I used `su -` to get root, and then `adduser jwalton sudo`. Now I'm stuck a loop of: Enter username[]: When I try and add my name, I'm told its there. When I try to RETURN (no name), I looped back to the prompt. I have to break out with a ^C. After the ^C break and exit from root, I'm told I'm not in sudoers again. How does one use adduser in OpenBSD?
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On 09/15/13 00:41, Jeffrey Walton wrote: I'm trying to add myself to sudoers. I used `su -` to get root, and then `adduser jwalton sudo`. What did you expect from that command? And why? Now I'm stuck a loop of: Enter username[]: When I try and add my name, I'm told its there. When I try to RETURN (no name), I looped back to the prompt. I have to break out with a ^C. After the ^C break and exit from root, I'm told I'm not in sudoers again. How does one use adduser in OpenBSD? I'd say you use it to add users, but since your user name already existed you could not. It makes sense to me. The question is what you really wanted to do. /Alexander
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 6:56 PM, Alexander Hall alexan...@beard.se wrote: On 09/15/13 00:41, Jeffrey Walton wrote: I'm trying to add myself to sudoers. I used `su -` to get root, and then `adduser jwalton sudo`. What did you expect from that command? And why? I'd expect the user jwalton to be added to the sudo group. Its seems like a reasonable expectation to me. Now I'm stuck a loop of: Enter username[]: When I try and add my name, I'm told its there. When I try to RETURN (no name), I looped back to the prompt. I have to break out with a ^C. After the ^C break and exit from root, I'm told I'm not in sudoers again. How does one use adduser in OpenBSD? I'd say you use it to add users, but since your user name already existed you could not. It makes sense to me. When I cat /etc/sudoers, its not there. The question is what you really wanted to do. I wanted to add myself to the sudo group. I'm not a BSD admin - I'm just a dumb user. So I'm probably doing something wrong. I just haven't figured out what it is. Jeff
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
2013/9/15 Jeffrey Walton noloa...@gmail.com: I wanted to add myself to the sudo group. man sudo man visudo man adduser man group Best Martin
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 7:08 PM, Martin Schröder mar...@oneiros.de wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: I wanted to add myself to the sudo group. man sudo man visudo man adduser man group Thanks Martin.
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 7:11 PM, Kenneth R Westerback kwesterb...@rogers.com wrote: On Sat, Sep 14, 2013 at 06:41:58PM -0400, Jeffrey Walton wrote: I'm trying to add myself to sudoers. I used `su -` to get root, and then `adduser jwalton sudo`. Now I'm stuck a loop of: Enter username[]: When I try and add my name, I'm told its there. When I try to RETURN (no name), I looped back to the prompt. I have to break out with a ^C. After the ^C break and exit from root, I'm told I'm not in sudoers again. How does one use adduser in OpenBSD? rtfm? Thanks Kenneth.
Re: Webscraping exchange rates
Yes, mostly for non-credit card orders. However, there are some credit card transactions that arrive in Euros or US$ that start at one of the donation links. Some orders are received with a request for quote in other currencies, to be paid by other means, when someone selects pre-arranged which informally also includes to be arranged. If we had more automation handy, we could also offer more options and more convenience. It would be nice if we could quote postage in advance too. Actually there are almost endless opportunities to improve the order process. Automatically getting exchange rates more accurate would be one small step. Austin On Sat, 14 Sep 2013, patrick keshishian wrote: On Saturday, September 14, 2013, Austin Hook wrote: Anyone care to code a snippet for the OpenBSD orders processing? I could be a bit more efficient here if I didn't have to manually enter latest exchange rates into our scripts from time to time. this is for non-credit card orders? because i always see canadian amount posted to my cc statement, the conversion rate and surcharge my cc imposes for the foreign currency transaction. --patrick If would be nice if we could get a rate for current date, and for any past date from: http://www.bankofcanada.ca/rates/exchange/10-year-converter/ and just do it as part of the order processing scripts. Austin Hook OpenBSD Distribution === When emailing me the first time from a new email address, or passing mine to a colleague, please include a special pass phrase in the body of the text, see: http://computershop.ca/emailpass.html Best to use a separate line. Keep the spacing between words. Currently the phrase is: blue wooden shoe. ===
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sun, Sep 15, 2013 at 01:08:05AM +0200, Martin Schröder wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: I wanted to add myself to the sudo group. man sudo man visudo man adduser man group Are any of those directly useful for adding a group to a user's supplementary groups? I'd suggest usermod(1).
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 7:08 PM, Martin Schröder mar...@oneiros.de wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: I wanted to add myself to the sudo group. man sudo It appears to lack information on adding a user (I went through this man page before asking the question). Then, I went to the web and landed on an overflow page (I think its the 'meta' site, and not the 'stack' site). That's what took me to 'adduser'. man visudo I don't know vi. I do known emacs, but its not on this system so I can't edit /etc/sudo by hand. I tried to add emacs through pkg_add, but it appears broke. Surely emacs has been ported to every *nix system in existence, so its baffling (to me) the package manager cannot find it. man adduser I tried `adduser jwalton sudo`, and it did not work even though the command looks well formed. I got the command from the overflow site. man group Does not appear applicable. I want to add a user to a group, and not create or delete groups. And 'usermod -G sudo jwalton' does not work, either. It errors with Can't append group sudo for user jwalton. This stuff really should not be this hard... Jeff
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
2013/9/15 Jeffrey Walton noloa...@gmail.com: man visudo I don't know vi. I do known emacs, but its not on this system so I Then learn it. This is unix. You really should use visudo to edit /etc/sudoers, not an editor. Best Martin PS: su - should also work.
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013, at 06:47 PM, Martin Schröder wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: man visudo I don't know vi. I do known emacs, but its not on this system so I Then learn it. This is unix. You really should use visudo to edit /etc/sudoers, not an editor. Note that you can configure visudo, vipw, and vigr to use an editor besides vi. It's possible to get by on Unix without knowing vi, I did so on GNU/Linux systems for most of 4 years, but I finally broke down and figured it out and promptly realized it wasn't as hard as it had been made out to be. -- Shawn K. Quinn skqu...@rushpost.com
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 07:42:46PM -0400, Jeffrey Walton wrote: man visudo I don't know vi. I do known emacs, but its not on this system so I can't edit /etc/sudo by hand. I tried to add emacs through pkg_add, but it appears broke. Surely emacs has been ported to every *nix system in existence, so its baffling (to me) the package manager cannot find it. You can do it without emacs or vi: echo jwalton ALL=(ALL) /etc/sudoers This stuff really should not be this hard... Jeff -- anton
Re: pms0: not in sync yet, discard input (state 3)
hmm, on Sat, Sep 14, 2013 at 10:35:01PM +0200, Stefan Sperling said that On Sat, Sep 14, 2013 at 05:02:03PM +0200, frantisek holop wrote: hi there, after upgrading to the september 10 snapshot, i am not able to use the touchpad. What were you running before upgrading to that snapshot? aug 18 snapshot console is full of: pms0: not in sync yet, discard input (state 1) pms0: not in sync yet, discard input (state 2) pms0: not in sync yet, discard input (state 3) pms0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pms0 mux 0 pms0: Elantech Touchpad, version 2 Did you ever see the Elantech Touchpad, version 2 message before, and did the mouse work with it? $ grep Elantech dmesg* dmesg.boot-2013-05-11:pms0: Elantech Touchpad, version 2 dmesg.boot-2013-06-21:pms0: Elantech Touchpad, version 2 dmesg.boot-2013-07-01:pms0: Elantech Touchpad, version 2 dmesg.boot-2013-08-21:pms0: Elantech Touchpad, version 2 dmesg.boot-2013-09-14:pms0: Elantech Touchpad, version 2 dmesg of previous snapshot: OpenBSD 5.4-current (GENERIC.MP) #46: Sun Aug 18 13:40:34 MDT 2013 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF real mem = 1061818368 (1012MB) avail mem = 1032622080 (984MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 03/31/10, SMBIOS rev. 2.6 @ 0xeb0f0 (53 entries) bios0: vendor LENOVO version 50CN12WW date 04/22/2011 bios0: LENOVO 20109 acpi0 at bios0: rev 3 acpi0: sleep states S0 S1 S3 S4 S5 acpi0: tables DSDT FACP APIC MCFG SLIC HPET acpi0: wakeup devices P0P8(S4) PS2K(S3) PS2M(S3) EUSB(S3) P0PA(S4) P0PB(S4) P0PC(S4) P0P9(S3) USB0(S3) USB1(S3) USB2(S3) USB3(S3) PWRB(S3) SLPB(S3) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 166MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF cpu2 at mainbus0: apid 2 (application processor) cpu2: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu2: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF cpu3 at mainbus0: apid 3 (application processor) cpu3: Intel(R) Atom(TM) CPU N570 @ 1.66GHz (GenuineIntel 686-class) 1.67 GHz cpu3: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,NXE,LONG,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,LAHF,PERF ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins acpimcfg0 at acpi0 addr 0xf000, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 3 (P0P8) acpiprt2 at acpi0: bus 2 (P0PA) acpiprt3 at acpi0: bus -1 (P0PB) acpiprt4 at acpi0: bus -1 (P0PC) acpiprt5 at acpi0: bus 1 (P0P9) acpiec0 at acpi0 acpicpu0 at acpi0:, C3, C2, C1, PSS acpicpu1 at acpi0:, C3, C2, C1, PSS acpicpu2 at acpi0:, C3, C2, C1, PSS acpicpu3 at acpi0:, C3, C2, C1, PSS acpibtn0 at acpi0: PWRB acpibtn1 at acpi0: SLPB acpibtn2 at acpi0: LID_ acpiac0 at acpi0: AC unit offline acpibat0 at acpi0: BAT1 model LNV-L10C6Y12 serial 004706 type LiIon oem CPT-ES3 acpivideo0 at acpi0: GFX0 acpivout0 at acpivideo0: DD02 bios0: ROM list: 0xc/0xda00! 0xce000/0x1000 cpu0: Enhanced SpeedStep 1663 MHz: speeds: 1667, 1334, 1000 MHz pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel Pineview DMI rev 0x02 vga1 at pci0 dev 2 function 0 Intel Pineview Video rev 0x02 intagp0 at vga1 agp0 at intagp0: aperture at 0xd000, size 0x1000 inteldrm0 at vga1 drm0 at inteldrm0 intel_overlay_map_regs partial stub inteldrm0: 1024x600 wsdisplay0 at vga1 mux 1: console (std, vt100 emulation) wsdisplay0: screen 1-5 added (std, vt100 emulation) Intel Pineview Video rev 0x02 at pci0 dev 2 function 1 not configured azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x02: msi azalia0: codecs: Realtek ALC269 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x02: apic 4 int 16 pci1 at ppb0 bus 1 re0 at pci1 dev 0 function 0 Realtek 8101E rev 0x05: RTL8105E (0x4080), msi, address 50:af:73:14:da:b5 rlphy0 at re0 phy 7: RTL8201E 10/100 PHY, rev. 2 ppb1 at pci0 dev 28 function 1 Intel 82801GB PCIE rev 0x02: apic 4 int 17 pci2 at ppb1 bus 2 Realtek
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 06:41:58PM -0400, Jeffrey Walton wrote: I'm trying to add myself to sudoers. I used `su -` to get root, and then `adduser jwalton sudo`. Now I'm stuck a loop of: Enter username[]: When I try and add my name, I'm told its there. When I try to RETURN (no name), I looped back to the prompt. I have to break out with a ^C. After the ^C break and exit from root, I'm told I'm not in sudoers again. How does one use adduser in OpenBSD? rtfm? adduser(8) should explain things. Looking at the synopsis it's not clear what you typed would do. Certainly I can't see such a command line in the examples section. If you're just working with sudoers, perhaps you want visudo(8) and not adduser(8). Ken
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
Thanks Shawn. Sorry to go offlist. So, I'm trying to do some initial testing. I'm on a MacBook with OpenBSD in a VM. All I want to do is run my compiler over some source files. MacBooks have a funky keyboard, and when I try to use visudo to move the cursor around, some of the arrow keys don't work. Not to mention the DELETE key (or the key combinations I know to use to simulate delete). visudo responds with ^? is not valid. I'm sure I'll have that file corrupted shortly. I really don't get why this shit is so f**k'ing difficult. How is running around with a root terminal open more secure than exec'ing one command under sudo??? Thanks for the advice. Jeff On Sat, Sep 14, 2013 at 7:53 PM, Shawn K. Quinn skqu...@rushpost.com wrote: On Sat, Sep 14, 2013, at 06:47 PM, Martin Schröder wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: man visudo I don't know vi. I do known emacs, but its not on this system so I Then learn it. This is unix. You really should use visudo to edit /etc/sudoers, not an editor. Note that you can configure visudo, vipw, and vigr to use an editor besides vi. It's possible to get by on Unix without knowing vi, I did so on GNU/Linux systems for most of 4 years, but I finally broke down and figured it out and promptly realized it wasn't as hard as it had been made out to be. -- Shawn K. Quinn skqu...@rushpost.com
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
Jeffrey Walton noloa...@gmail.com writes: On Sat, Sep 14, 2013 at 7:08 PM, Martin Schröder mar...@oneiros.de wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: I wanted to add myself to the sudo group. man sudo It appears to lack information on adding a user (I went through this man page before asking the question). Then, I went to the web and landed on an overflow page (I think its the 'meta' site, and not the 'stack' site). That's what took me to 'adduser'. man visudo I don't know vi. I do known emacs, but its not on this system so I can't edit /etc/sudo by hand. To make things clear: you should always use visudo(8). It does validation on the modified sudoers(5) file. And just like a lot of programs, visudo(8) respects the VISUAL and EDITOR environment variables. So you're not forced to use vi(1), the base system also ships with ed(1) and mg(1). I tried to add emacs through pkg_add, but it appears broke. Surely emacs has been ported to every *nix system in existence, so its baffling (to me) the package manager cannot find it. I am the emacs package maintainer. If you encounter problems not documented by the README, please send a mail to po...@openbsd.org, with a full description. man adduser I tried `adduser jwalton sudo`, and it did not work even though the command looks well formed. I got the command from the overflow site. man group Does not appear applicable. I want to add a user to a group, and not create or delete groups. adduser is not a standardized command, you can't expect it to behave the same way as it does on some other OSes. Just stating a fact. And 'usermod -G sudo jwalton' does not work, either. It errors with Can't append group sudo for user jwalton. $ getent group sudo $ # no output There is no group named `sudo' in the default install, though you can add one. On the other hand, just use visudo(8) and read the bits about the wheel group. This stuff really should not be this hard... You're on a different OS now, some things stay the same, some change. On the plus side the documentation is quite extensive. Manpages, the FAQ and other pieces of information are a big concern here, so make use of them. Have fun. -- jca | PGP: 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
Jeffrey Walton noloa...@gmail.com writes: Thanks Shawn. Sorry to go offlist. So, I'm trying to do some initial testing. I'm on a MacBook with OpenBSD in a VM. All I want to do is run my compiler over some source files. Parallels? MacBooks have a funky keyboard, and when I try to use visudo to move the cursor around, some of the arrow keys don't work. Not to mention the DELETE key (or the key combinations I know to use to simulate delete). visudo responds with ^? is not valid. I'm sure I'll have that file corrupted shortly. The vi(1) editor in base doesn't behave the same way as vim wrt. some keys. export EDITOR=mg and profit. I really don't get why this shit is so f**k'ing difficult. How is running around with a root terminal open more secure than exec'ing one command under sudo??? No one said it was more secure. As I already said in another mail, you can't meet a new OS and expect everything to work as you think they should. Thanks for the advice. Jeff On Sat, Sep 14, 2013 at 7:53 PM, Shawn K. Quinn skqu...@rushpost.com wrote: On Sat, Sep 14, 2013, at 06:47 PM, Martin Schröder wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: man visudo I don't know vi. I do known emacs, but its not on this system so I Then learn it. This is unix. You really should use visudo to edit /etc/sudoers, not an editor. Note that you can configure visudo, vipw, and vigr to use an editor besides vi. It's possible to get by on Unix without knowing vi, I did so on GNU/Linux systems for most of 4 years, but I finally broke down and figured it out and promptly realized it wasn't as hard as it had been made out to be. -- Shawn K. Quinn skqu...@rushpost.com -- jca | PGP: 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
Re: font weirdness
From: Alexander Polakov plhk () sdf ! org Date: 2013-09-03 12:25:50 Message-ID: 20130903122550.GA27589 () watashi ! plhk ! ru * Ed Ahlsen-Girard eagir...@cox.net [130903 16:18]: Has anyone else noticed that some fonts are not displaying the right character? Some substitutions, some blanks? Yes. http://reddit.com/r/programming looks like this in firefox: http://plhk.ru/trash/rdit-fonts.png rm -rf ~/.cache/fontconfig/* seems to fix that for me This does not fix it for me, and I have found since that leaving FireFox open longer makes it worse. -- Edward Ahlsen-Girard Ft Walton Beach, FL
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sun, Sep 15, 2013 at 02:28:15AM +0200, Jérémie Courrèges-Anglas wrote: Jeffrey Walton noloa...@gmail.com writes: On Sat, Sep 14, 2013 at 7:08 PM, Martin Schröder mar...@oneiros.de wrote: 2013/9/15 Jeffrey Walton noloa...@gmail.com: I wanted to add myself to the sudo group. man sudo It appears to lack information on adding a user (I went through this man page before asking the question). Then, I went to the web and landed on an overflow page (I think its the 'meta' site, and not the 'stack' site). That's what took me to 'adduser'. man visudo I don't know vi. I do known emacs, but its not on this system so I can't edit /etc/sudo by hand. To make things clear: you should always use visudo(8). It does validation on the modified sudoers(5) file. And just like a lot of programs, visudo(8) respects the VISUAL and EDITOR environment variables. So you're not forced to use vi(1), the base system also ships with ed(1) and mg(1). Just to clarify. mg is an emacs-like editor. Every OpenBSD installation include it by default. You can run visudo with mg with this command: EDITOR=mg visudo. I tried to add emacs through pkg_add, but it appears broke. Surely emacs has been ported to every *nix system in existence, so its baffling (to me) the package manager cannot find it. I am the emacs package maintainer. If you encounter problems not documented by the README, please send a mail to po...@openbsd.org, with a full description. man adduser I tried `adduser jwalton sudo`, and it did not work even though the command looks well formed. I got the command from the overflow site. man group Does not appear applicable. I want to add a user to a group, and not create or delete groups. adduser is not a standardized command, you can't expect it to behave the same way as it does on some other OSes. Just stating a fact. And 'usermod -G sudo jwalton' does not work, either. It errors with Can't append group sudo for user jwalton. $ getent group sudo $ # no output There is no group named `sudo' in the default install, though you can add one. On the other hand, just use visudo(8) and read the bits about the wheel group. This stuff really should not be this hard... You're on a different OS now, some things stay the same, some change. On the plus side the documentation is quite extensive. Manpages, the FAQ and other pieces of information are a big concern here, so make use of them. Have fun. -- jca | PGP: 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494 -- Juan Francisco Cantero Hurtado http://juanfra.info
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On 09/14/13 18:41, Jeffrey Walton wrote: I'm trying to add myself to sudoers. I used `su -` to get root, and then `adduser jwalton sudo`. Now I'm stuck a loop of: Enter username[]: When I try and add my name, I'm told its there. When I try to RETURN (no name), I looped back to the prompt. I have to break out with a ^C. After the ^C break and exit from root, I'm told I'm not in sudoers again. How does one use adduser in OpenBSD? Just in case you didn't notice, when you first install you should have mail. $mail It will describe reading afterboot and many other things, even an example of adding the emacs package.
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 9:20 PM, Brian McCafferty br...@mccafferty.ca wrote: On 09/14/13 18:41, Jeffrey Walton wrote: Just in case you didn't notice, when you first install you should have mail. $mail It will describe reading afterboot and many other things, even an example of adding the emacs package. Haha! that's too funny. I saw the prompt and immediately tried to run mail. It did not work (I don't recall what the message was, but I remember thinking, wtf???). Jeff
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 09:28:07PM -0400, Jeffrey Walton wrote: On Sat, Sep 14, 2013 at 9:20 PM, Brian McCafferty br...@mccafferty.ca wrote: On 09/14/13 18:41, Jeffrey Walton wrote: Just in case you didn't notice, when you first install you should have mail. $mail It will describe reading afterboot and many other things, even an example of adding the emacs package. Haha! that's too funny. I saw the prompt and immediately tried to run mail. It did not work (I don't recall what the message was, but I remember thinking, wtf???). Too bad you don't remember what the message was. It works for us. You must have done something really stupid and obvious, and if we knew the message, we could possibly help you...
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 20:14, Jeffrey Walton wrote: I really don't get why this shit is so f**k'ing difficult. How is running around with a root terminal open more secure than exec'ing one command under sudo??? I think you're going to be in for a long day. It's not really very hard to drive a screw into wood, but it can be if you're using a hammer. Dont be fooled just because a screw resembles a nail.
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 9:52 PM, Ted Unangst t...@tedunangst.com wrote: On Sat, Sep 14, 2013 at 20:14, Jeffrey Walton wrote: I really don't get why this shit is so f**k'ing difficult. How is running around with a root terminal open more secure than exec'ing one command under sudo??? I think you're going to be in for a long day. It's not really very hard to drive a screw into wood, but it can be if you're using a hammer. Dont be fooled just because a screw resembles a nail. Yeah, there's no doubt in my mind. I'm 4 or 6 hours into this, and I still have not been able to run my compiler!
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 9:47 PM, Marc Espie es...@nerim.net wrote: On Sat, Sep 14, 2013 at 09:28:07PM -0400, Jeffrey Walton wrote: On Sat, Sep 14, 2013 at 9:20 PM, Brian McCafferty br...@mccafferty.ca wrote: On 09/14/13 18:41, Jeffrey Walton wrote: Just in case you didn't notice, when you first install you should have mail. $mail It will describe reading afterboot and many other things, even an example of adding the emacs package. Haha! that's too funny. I saw the prompt and immediately tried to run mail. It did not work (I don't recall what the message was, but I remember thinking, wtf???). Too bad you don't remember what the message was. It works for us. You must have done something really stupid and obvious, I would not rule that out. After system install, I saw that system message and immediately ran `mail` based on its suggestion. I don't recall an error message - it was more like it exited immediately or had no effect. and if we knew the message, we could possibly help you... Yeah, I should have taken a screen capture. I don't use the mail program too often (its been years since I've had to), so it was not a priority.
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 07:42:46PM -0400, Jeffrey Walton wrote: snip And 'usermod -G sudo jwalton' does not work, either. It errors with Can't append group sudo for user jwalton. This stuff really should not be this hard... I'm going to go out on a limb here and guess that you really want to add yourself to the wheel group, not sudo. This isn't Linux, and there is no sudo group by default. For some reason Linux distros discarded the traditional wheel group years ago. On OpenBSD wheel is used like the sudo group, among other things. You may also want to read the sudoers file. Just reading it will clue you in this. And then go ahead and edit it.
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 7:00 PM, Jeffrey Walton noloa...@gmail.com wrote: ... Yeah, I should have taken a screen capture. I don't use the mail program too often (its been years since I've had to), so it was not a priority. Screen capture? In order to convey what was presumably a one line error message? If cut-n-paste won't work, might I suggest just (carefully) typing it? Side note: it's lost on me why you're unable to run the compiler because of tangles with adduser/sudo/whatever. Philip Guenther
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
On Sat, Sep 14, 2013 at 10:08 PM, Philip Guenther guent...@gmail.com wrote: On Sat, Sep 14, 2013 at 7:00 PM, Jeffrey Walton noloa...@gmail.com wrote: ... Yeah, I should have taken a screen capture. I don't use the mail program too often (its been years since I've had to), so it was not a priority. Screen capture? In order to convey what was presumably a one line error message? If cut-n-paste won't work, might I suggest just (carefully) typing it? Yes, I'm lazy like that. Plus it removes any ambiguity. Side note: it's lost on me why you're unable to run the compiler because of tangles with adduser/sudo/whatever. Oh, that's my own doing. I need to install wget and subversion to fetch the sources. Plus, I want to see how a Clang 3.3 build goes. (Compilers and software engineering are my business, not system administration). Jeff
Re: How does one use adduser in OpenBSD (stuck inEnter username[] loop)?
Jeffrey Walton noloa...@gmail.com writes: On Sat, Sep 14, 2013 at 10:08 PM, Philip Guenther guent...@gmail.com wrote: On Sat, Sep 14, 2013 at 7:00 PM, Jeffrey Walton noloa...@gmail.com wrote: ... Yeah, I should have taken a screen capture. I don't use the mail program too often (its been years since I've had to), so it was not a priority. Screen capture? In order to convey what was presumably a one line error message? If cut-n-paste won't work, might I suggest just (carefully) typing it? Yes, I'm lazy like that. Plus it removes any ambiguity. Side note: it's lost on me why you're unable to run the compiler because of tangles with adduser/sudo/whatever. Oh, that's my own doing. I need to install wget and subversion to fetch the sources. Plus, I want to see how a Clang 3.3 build goes. (Compilers and software engineering are my business, not system administration). $ su - Password: # pkg_add subversion llvm That's it. You're not into system adminstration yet you want to do unneeded configuration when you have a precise goal. What do you expect? Re wget, there is ftp(1). That's already a lot of mails and a lot of attention for what is a rather simple problem. Just have a break. -- jca | PGP: 0x06A11494 / 61DB D9A0 00A4 67CF 2A90 8961 6191 8FBF 06A1 1494
Re: Webscraping exchange rates
I'm using https://openexchangerates.org/ https://openexchangerates.org/# for a project of mine. They even provide historical data. Regards, Bryce Chidester On Sat, Sep 14, 2013 at 3:02 PM, Austin Hook aus...@computershop.ca wrote: Anyone care to code a snippet for the OpenBSD orders processing? I could be a bit more efficient here if I didn't have to manually enter latest exchange rates into our scripts from time to time. If would be nice if we could get a rate for current date, and for any past date from: http://www.bankofcanada.ca/rates/exchange/10-year-converter/ and just do it as part of the order processing scripts. Austin Hook OpenBSD Distribution