Re: What is you motivational to use OpenBSD
Thus said Mohamed Salah on Wed, 28 Aug 2019 16:32:29 +0200 I wanna put something in discussion, what's your motivational to use OPENBSD what not other bsd's what not gnu/Linux, if something doesn't work fine on openbsd and you love this os so much what will do? See stories here: https://runbsd.info/people/
Re: Getting screen to lock on suspend with Lenovo Thinkpad X1 Carbon
On surface this is the correct configuration. I would try putting something like: echo "lock" >> /tmp/lock.log to /etc/apm/suspend to see if it's executed at all and then something like: pgrep xidle >> /tmp/lock.log to see if xidle is running at that moment, then ls /usr/local/bin/slock >> /tmp/lock.log. Also would check for the correct permissions. Please let us know what it was when you identify the problem. BTW, you can put the timeout value and program to ~/.Xresources and just execute xidle &. On 3/9/19 22:09, Trey Sizemore wrote: On Tue, Sep 3, 2019, at 8:54 PM, joshua stein wrote: On Tue, 03 Sep 2019 at 19:41:40 -0400, Trey Sizemore wrote: One remaining issue is getting the screen to lock when the laptop lid is closed and the laptop suspends. The screen does not lock and just resumes to the XFCE4 desktop. I have the following in my .xsession: bsd$ cat .xsession xidle -timeout 300 -program "/usr/local/bin/slock" & Any help greatly appreciated. xidle locks on SIGUSR1, so you could send it such a signal upon suspend. With apmd enabled, add "pkill -USR1 xidle" to /etc/apm/suspend Thank you. I should have said, I have the following: bsd# cat /etc/apm/suspend #!/bin/sh pkill -USR1 xidle and that file is executable.
Re: Getting screen to lock on suspend with Lenovo Thinkpad X1 Carbon
On Tue, Sep 3, 2019, at 8:54 PM, joshua stein wrote: > On Tue, 03 Sep 2019 at 19:41:40 -0400, Trey Sizemore wrote: > > One remaining issue is getting the screen to lock when the laptop lid is > > closed and the laptop suspends. The screen does not lock and just resumes > > to the XFCE4 desktop. > > > > I have the following in my .xsession: > > > > bsd$ cat .xsession > > xidle -timeout 300 -program "/usr/local/bin/slock" & > > > > Any help greatly appreciated. > > xidle locks on SIGUSR1, so you could send it such a signal upon > suspend. > > With apmd enabled, add "pkill -USR1 xidle" to /etc/apm/suspend > > Thank you. I should have said, I have the following: bsd# cat /etc/apm/suspend #!/bin/sh pkill -USR1 xidle and that file is executable.
Re: Getting screen to lock on suspend with Lenovo Thinkpad X1 Carbon
On Tue, 03 Sep 2019 at 19:41:40 -0400, Trey Sizemore wrote: > One remaining issue is getting the screen to lock when the laptop lid is > closed and the laptop suspends. The screen does not lock and just resumes to > the XFCE4 desktop. > > I have the following in my .xsession: > > bsd$ cat .xsession > xidle -timeout 300 -program "/usr/local/bin/slock" & > > Any help greatly appreciated. xidle locks on SIGUSR1, so you could send it such a signal upon suspend. With apmd enabled, add "pkill -USR1 xidle" to /etc/apm/suspend
Getting screen to lock on suspend with Lenovo Thinkpad X1 Carbon
Hi- I've install OpenBSD 6.5 on my Lenovo Thinkpad X! carbon (5th gen). I have installed XFCE4 and have most features working well. One remaining issue is getting the screen to lock when the laptop lid is closed and the laptop suspends. The screen does not lock and just resumes to the XFCE4 desktop. I have the following in my .xsession: bsd$ cat .xsession xidle -timeout 300 -program "/usr/local/bin/slock" & Any help greatly appreciated. -- Trey Sizemore t...@fastmail.fm
Re: Incoming connection via VLAN
On Tue, Sep 03, 2019 at 09:54:24PM -, Stuart Henderson wrote: > Please show ifconfig -A output. Not sure but maybe it will give us a clue. > Looking through it now, I am not sure about the 'llprio' and 'txprio' on vlan2 and pppoe0, but I can't play with them right now as I am connected remotely (I have to forward to another internal host and then back to the router!) and don't want it to break. $ doas ifconfig -A lo0: flags=8049 mtu 32768 index 6 priority 0 llprio 3 groups: lo inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6 inet 127.0.0.1 netmask 0xff00 em0: flags=8843 mtu 1500 lladdr 00:0d:b9:4c:03:74 index 2 priority 0 llprio 3 media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause) status: active em1: flags=8b43 mtu 1500 lladdr 00:0d:b9:4c:03:75 index 3 priority 0 llprio 3 media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause) status: active em2: flags=8b43 mtu 1500 lladdr 00:0d:b9:4c:03:76 index 4 priority 0 llprio 3 media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause) status: active enc0: flags=0<> index 5 priority 0 llprio 3 groups: enc status: active bridge0: flags=41 index 7 llprio 3 groups: bridge priority 32768 hellotime 2 fwddelay 15 maxage 20 holdcnt 6 proto rstp em2 flags=3 port 4 ifpriority 0 ifcost 0 em1 flags=3 port 3 ifpriority 0 ifcost 0 vether0 flags=3 port 10 ifpriority 0 ifcost 0 Addresses (max cache: 100, timeout: 240): 00:17:c8:3e:08:22 em2 0 flags=0<> 1c:c3:eb:68:05:29 em1 0 flags=0<> b8:bc:1b:1e:9d:9f em1 0 flags=0<> 38:f9:d3:47:db:54 em1 1 flags=0<> 48:bf:6b:e6:27:c2 em1 0 flags=0<> 74:d4:35:80:51:91 em2 1 flags=0<> 74:44:01:81:9b:7e em1 0 flags=0<> pflow0: flags=1 mtu 1492 index 8 priority 0 llprio 3 pflow: sender: 10.0.1.1 receiver: 10.0.1.2:INVALID version: 5 groups: pflow vether0: flags=8943 mtu 1500 lladdr fe:e1:ba:d0:39:34 index 10 priority 0 llprio 3 groups: vether media: Ethernet autoselect status: active inet 10.0.1.1 netmask 0xff00 broadcast 10.0.1.255 inet6 fe80::71c1:1036:9b53:e5ff%vether0 prefixlen 64 scopeid 0xa inet6 2001:44b8:41ae:b001::baff:: prefixlen 64 pflog0: flags=141 mtu 33136 index 12 priority 0 llprio 3 groups: pflog vlan2: flags=8843 mtu 1500 lladdr 00:0d:b9:4c:03:74 index 14 priority 0 llprio 3 encap: vnetid 2 parent em0 txprio 1 groups: vlan media: Ethernet autoselect (1000baseT full-duplex,rxpause,txpause) status: active inet 10.0.3.1 netmask 0xff00 broadcast 10.0.3.255 pppoe0: flags=8851 mtu 1440 index 15 priority 0 llprio 1 dev: vlan2 state: session sid: 0xf7a1 PADI retries: 0 PADR retries: 0 time: 3d 11:50:50 sppp: phase network authproto pap authname "xxx...@internode.on.net" groups: pppoe egress status: active inet6 fe80::516a:6d3c:8072:6303%pppoe0 -> prefixlen 64 scopeid 0xf inet 194.193.XXX.XXX --> 10.20.25.29 netmask 0x
Re: Incoming connection via VLAN
Please show ifconfig -A output. Not sure but maybe it will give us a clue.
Re: athn in 6.5: no link. Works in 6.4
If no one in Europe donates one to you I'm more than willing to send one across the pond. diana On Tue, Sep 3, 2019 at 4:10 PM Stefan Sperling wrote: > > Alternatively, if somebody could ship me one of these AR5418 devices, > I could debug the problem myself. > > Regards, > Stefan
Re: athn in 6.5: no link. Works in 6.4
On Tue, Sep 03, 2019 at 04:17:05PM +, Pedro Fortuny Ayuso wrote: > > I am having a surprising problem: my athn driver (computer is > a 2007 MacBook Pro Core 2 duo) works flawlessly with an iphone 7 > as a wifi router (i.e. wifi tethering). The device, as per > dmesg is: > > athn0 at pci3 dev 0 function 0 "Atheros AR5418" rev 0x01: apic 1 int 17 > athn0: MAC AR5418 rev 2, RF AR5133 (2T3R), ROM rev 4, address ... Known issue. I will need more information to fix it. Specifically, knowing which commit between 6.4 and 6.5 broke your device would be very helpful. Alternatively, if somebody could ship me one of these AR5418 devices, I could debug the problem myself. Regards, Stefan
athn in 6.5: no link. Works in 6.4
I am having a surprising problem: my athn driver (computer is
a 2007 MacBook Pro Core 2 duo) works flawlessly with an iphone 7
as a wifi router (i.e. wifi tethering). The device, as per
dmesg is:
athn0 at pci3 dev 0 function 0 "Atheros AR5418" rev 0x01: apic 1 int 17
athn0: MAC AR5418 rev 2, RF AR5133 (2T3R), ROM rev 4, address ...
The ifconfig shows:
athn0: flags=8843 mtu 1500
lladdr 00:19:e3:08:01:7c
index 2 priority 4 llprio 3
groups: wlan egress
media: IEEE802.11 autoselect (HT-MCS15 mode 11n)
status: active
ieee80211: nwid pfortuny-iphone7 chan 6 bssid be:e1:43:75:4c:58 -49dBm
wpakey wpaprotos wpa2 wpaakms psk wpaciphers ccmp wpagroupcipher ccmp
However, I upgraded to 6.5 and it does not work any more (when
doing a
pera-mb$ doas ifconfig athn0 nwwid pfortuny-iphone7 wpakey
it always says:
athn0: no link..
Sorry but I do not have the 6.5 logs because I am a bit
afraid to break everything again... What I am certain is that
it complains (when using 6.5):
athn0: could not wakeup chip
athn0: unable to reset hardware; reset status 60
However, those messages also appear when using 6.4 and then
go away and the device works (I am writing this message using
my tethered iphone connection).
I have been trying to set up the wifi in a lot of ways but to
no avail before downgrading to 6.4 again.
I am pasting my (working 6.4) dmesg, sorry for not having the
6.5 available.
Thanks and please do ask for any more info you might need.
Pedro.
OpenBSD 6.4 (GENERIC.MP) #943: Thu Oct 11 13:51:32 MDT 2018
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
real mem = 3204898816 (3056MB)
avail mem = 3131359232 (2986MB)
mpath0 at root
scsibus0 at mpath0: 256 targets
mainbus0 at root
bios0 at mainbus0: date 07/29/05, SMBIOS rev. 2.4 @ 0xe (40 entries)
bios0: vendor Apple Inc. version "MBP22.88Z.00A5.B07.0708131242" date 08/13/07
bios0: Apple Computer, Inc. MacBookPro2,2
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP HPET APIC MCFG ASF! SBST ECDT SSDT SSDT SSDT
acpi0: wakeup devices ADP1(S3) LID0(S3) PXS1(S4) PXS2(S4) USB1(S3) USB2(S3)
USB3(S3) USB4(S3) USB7(S3) EC__(S3)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM)2 CPU T7600 @ 2.33GHz ("GenuineIntel" 686-class) 2.33
GHz, 06-0f-06
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG,LAHF,PERF,SENSOR,MELTDOWN
mtrr: Pentium Pro MTRR support, 8 var ranges, 88 fixed ranges
cpu0: apic clock running at 166MHz
cpu0: mwait min=64, max=64, C-substates=0.2.2.2.2, IBE
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM)2 CPU T7600 @ 2.33GHz ("GenuineIntel" 686-class) 2.33
GHz, 06-0f-06
cpu1:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,VMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,NXE,LONG,LAHF,PERF,SENSOR,MELTDOWN
ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins, remapped
acpimcfg0 at acpi0
acpimcfg0: addr 0xf000, bus 0-255
acpiec0 at acpi0
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (PEGP)
acpiprt2 at acpi0: bus 2 (RP01)
acpiprt3 at acpi0: bus 3 (RP02)
acpiprt4 at acpi0: bus 4 (RP03)
acpiprt5 at acpi0: bus 12 (PCIB)
acpicpu0 at acpi0: !C3(100@55 mwait@0x31), !C2(500@1 mwait@0x10), C1(1000@1
mwait), PSS
acpicpu1 at acpi0: !C3(100@55 mwait@0x31), !C2(500@1 mwait@0x10), C1(1000@1
mwait), PSS
acpisbs0 at acpi0: SBS0 model "ASMB012" serial 30839 type LION oem "Sony"
acpiac0 at acpi0: AC unit online
acpibtn0 at acpi0: LID0
"APP0002" at acpi0 not configured
acpibtn1 at acpi0: PWRB
acpibtn2 at acpi0: SLPB
"APP0001" at acpi0 not configured
"ACPI0008" at acpi0 not configured
"APP0003" at acpi0 not configured
"ACPI0001" at acpi0 not configured
acpicmos0 at acpi0
acpivideo0 at acpi0: GFX0
bios0: ROM list: 0xc/0xfa00
cpu0: Enhanced SpeedStep 2328 MHz: speeds: 2333, 2167, 2000, 1833, 1667, 1500,
1333, 1000 MHz
memory map conflict 0xbff0/0x10
memory map conflict 0xf00f8000/0x1000
memory map conflict 0xfed1c000/0x4000
memory map conflict 0xfffb/0x3
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 "Intel 82945GM Host" rev 0x03
ppb0 at pci0 dev 1 function 0 "Intel 82945GM PCIE" rev 0x03: apic 1 int 16
pci1 at ppb0 bus 1
1:0:0: mem address conflict 0xfffe/0x2
radeondrm0 at pci1 dev 0 function 0 "ATI Radeon Mobility X1600" rev 0x00
drm0 at radeondrm0
radeondrm0: msi
vendor "Intel", unknown product 0x27a3 (class DASP subclass Time and Frequency,
rev 0x03) at pci0 dev 7 function 0 not configured
azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x02: msi
azalia0: codecs:
Re: ypldap
Gustavo Rios wrote: > I am aware that ypldap serves information about user and group from ldap. > My doubt is: what about other information like netgroup, bootparams, > etc, etc ... ? Does it grab these data from local file ? Only password, group, and netid (a sort of internal group->user mapping) It was decided years ago that the other stuff makes no sense; You end up with libc routines inside daemons that block. Sun went too far.
ypldap
Hi folks. I am aware that ypldap serves information about user and group from ldap. My doubt is: what about other information like netgroup, bootparams, etc, etc ... ? Does it grab these data from local file ? Thanks in advance -- Pag Bem Fácil Ltda www.pagbemfacil.com.br
Re: What is you motivational to use OpenBSD
That is a long story, I first switched to BSD around 2010, I was just a kid with a Netbook running on a VIA C7-M. I was pissed at lack of open source drivers and wanted to code my own for the on board graphics. The Ubuntu and general Linux boards back then where full of script kiddies ridiculing anyone with any perceived lack of knowledge to oblivion. Even when they them selves lacked the knowledge. This hostility, combined with the utter lack of documentation among the Linux Distros, drove me away from Linux. I came to FreeBSD, then Dragonfly, then finally OpenBSD. I currently use Dfly and OBSD on my private machines where ever I do not run MacOS, sometimes alongside. FreeBSD became rare, NetBSD is only around on an image that I sometimes boot on my PlayStation 2. I tend to choose OpenBSD in the following scenarios: 1. outdated and/or obscure hardware. Example: I have an older G3 iMac that I use out of pure enjoyment, getting Open running on there still took half a day (I had to write my first own X11 config in 6 years) but it runs, is secure and always up to date. I even managed to write my own TBXI boot file for the OpenFirmware from the source on the image for macppc. Now I have a nice Pufferfish greeting me if I hold down the Option (Alt) key at boot. 2. Pentesting Rationale: In Opsec scenarios you have to often make yourself vulnerable to exploit someone elses vulnerability. I like to be able to select where my ports are open. OpenBSD is, as stated often, secure by default. It therefore won’t surprise you with new and sudden vulnerabilities. OpenBSD also won’t complain when running as root only 3. network facing always on devices Example: I have exactly one device at home that is constantly running and exposed to the Internet instead of only our intranet. That thing runs ssh. No other distro would I trust with handling my security right. Other benefits of OpenBSD include: -Lack of patheticism: Other Distros call you an idiot when they assume you i.e. tried to mount an already hung in device (Ubuntu), I even wrote a Program in Go before, Go craps it’s pants when you do not indent correctly. I hat shit like that. OpenBSD just assumes sou what you do. -excellent documentation as mentioned in contrast to Linux. Oh how I hate fumbling for „solutions“ in Forums. -maintained base of excellent standard software, they really do fork what they need. Xenocara and LibreSSL are excellent examples. OpenBSD is doing where others are merely complaining. Glaring Cons: -Bluetooth support, I mean folks it’s 2019 -That lackluster Raspberry port -The often harsh community, there is a certain elitism here^ -The obvious lack of proprietary graphics drivers the likes of which Linux gets^^ -No killer Filesystem like ZFS or HAMMER, get used to UFS brother ^however it mostly extends to telling others when and why they made dumb decisions and it goes by without namecalling, Linux is just a Swamp nowadays, a swamp of kiddies. Dragonfly, in contrast to all here, really is the heaven of polite technical conversation. ^^that is just stupid vendors though, the community ports where there is interest. > On Wed, 28 Aug 2019, at 15:32, Mohamed salah wrote: > I wanna put something in discussion, what's your motivational to use > OPENBSD what not other bsd's what not gnu/Linux, if something doesn't work > fine on openbsd and you love this os so much what will do?
Re: handling snapshot installation in production environment
Am 02.09.19 um 19:58 schrieb Stuart Henderson:
Use sysupgrade -n and monitor the OS version number ("what
/home/_sysupgrade/bsd"). If you see 6.6-current it is post-release and
you should not install it ("rm /bsd.upgrade"), you can then wait until
actual release day and update to be sure you're running on the proper
release binaries.
This is exactly what I was searching for.
Thanks!
smime.p7s
Description: S/MIME Cryptographic Signature
Re: obsd web server
On 02.09.19 02:49, Gustavo Rios wrote: Hi folks, i would like to confgiure my obsd server as a web server. I would like to configure my web server to handle multiple domains without having to set each domain one by one. I mean: Every request for www.x.com is mapped into the root directory /var/web/www.x.com Got the idea ? If a new server is required, All i needed to do would create a directory inside /var/web with the full access string : mkdir /var/web/www.newdomain.com And i should not need to manipulate config files Hi, you may want to look at lighttpd. https://redmine.lighttpd.net/projects/lighttpd/wiki/Docs_ModSimpleVhost should be what you need
