Re: OpenBSD 4.8 released Nov 1, 2010
Again a phenomenal release...thanks again for the best OS in existence. On Nov 1, 2010, at 8:02, Theo de Raadt dera...@cvs.openbsd.org wrote: Nov 1, 2010. We are pleased to announce the official release of OpenBSD 4.8. This is our 28th release on CD-ROM (and 29th via FTP). We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install. As in our previous releases, 4.8 provides significant improvements, including new features, in nearly all areas of the system: - New/extended platforms: o i386 and amd64: - ACPI-based suspend/resume works on most machines with Intel/ATI video. Machines using NVidia graphics will not resume the graphics. cardbus(4) and pcmcia(4) will still have some problems, too. - Improved hardware support, including: o New acpisony(4) driver for Sony ACPI control. o New itherm(4) driver for Intel 3400 temperature sensor. o New se(4) driver for SiS 190 10/100/Gigabit Ethernet devices. o New uguru(4) driver for ABIT temperature, voltage and fan sensors. o New owctr(4) driver for 1-Wire counter devices. o New pgs(4) driver for Programmers Switch found on some macppc machines. o Support for 82576 fiber and 82577/82578 (PCH) based devices has been added to em(4). o Support for 24-bit encodings and USB 2.0 playback has been added to uaudio(4). o Support for Winbond/Nuvoton W83627DHG-P has been added to wbsio(4). o Support for RTL8168E has been added to re(4). o Support for 800x480 has been added to udl(4). o Support for M-audio Audiophile 192k has been added to envy(4). o Support for Intel Core i3/i5 internal graphics (Ironlake) has been added to inteldrm(4) and agp(4). o The ss(4) and uscanner(4) drivers have been removed. o Improved robustness of several SCSI/SAS/RAID HBA drivers, including mpi(4), mpii(4) and ciss(4). - New tools: o iked(8), an Internet Key Exchange version 2 (IKEv2) daemon. o ldapd(8), a Lightweight Directory Access Protocol (LDAP) daemon. - Filesystem midlayer improvements: o Fix internal locking in (still experimental!) NTFS. - OpenBGPD, OpenOSPFD and other routing daemon improvements: o bgpd(8) control sockets are now specified in the config file. This removes the -s and -r arguments to bgpd. o Extended the BGP MPLS VPN support to allow Layer-3 MPLS VPNs to be terminated on OpenBSD with the help of mpe(4), ldpd(8), and bgpd(8). o bgpd(8) supports multiple FIBs and it is possible to assign them to RIBs for redistribution. o bgpd now supports to use neighbor-as in AS filter statements and added two new filters -- max-as-seq and max-as-len -- to limit the length of a sequence of a single AS or the total length of an AS path. o Added softreconfig support in bgpd for peers changing the RIB. o Fixed multiprotocol MRT dumps and added 4-byte AS-Number support in bgpd(8). o Added support for ping6 and traceroute6 in bgplg(8) and bgplgsh(8) o ospfd(8) has better LSA pruning and config reload support. o ospf6d(8) now supports LSAs larger than the link MTU, has improved interoperability with other OSPFv3 implementations, can redistribute the default route, and will correctly handle IPv6 prefixes advertised by neighbours on the same link but not configured on the router itself. o Various improvements in ldpd(8) including correct penultimate hop popping, better session handling, and a imporved config file parser. - Generic network stack improvements: o ifconfig(8) and route(8) get better Multiprotocol Label Switching support. o traceroute(8) now supports extended ICMP headers which allows printing of MPLS labels. o Support for RFC 4941 privacy extensions for stateless address autoconfiguration has been added to inet6(4) and can be enabled via ifconfig(8). o ifconfig(8) now supports random selection of MAC addresses. o tcpdump(8) now decodes Multicast Listener Discovery version 2 and Internet Key Exchange version 2 traffic. o enc(4) and ipsec(4) are now aware of routing domains. o dhcpd(8) and dhclient(8) and are now capable of running in different routing domains. o Added MPLS support and a simple keepalive mechanism to gre(4). o Added MPLS support to gif(4). o Support for 802.1ad-style QinQ nested VLANs with the addition of svlan(4) (service VLAN) interfaces. o Added a RTM_DESYNC routing message as indicator that route messages got dropped because of insufficent buffer space. ospfd(8) uses this message to keep the internal view of the routing table in sync. - SCSI improvements: o better cd(4) detaching. o better st(4) sense data and buf handling. o eliminate excessive delays when starting DVD playing. o
Re: Happy Birthday OpenBSD
Wow...time flies. Happy Birthday to the best OS in existence and as usual thanks go to the developers that make it happen, I raise a toast for another 15+ years ;)
Re: i386 and amd64 snapshots - kernel SHA256 mismatch
I should have actually shown how much was mismatched...and it's more than just the kernel: (SHA256) bsd: FAILED (SHA256) bsd.mp: FAILED (SHA256) bsd.rd: OK (SHA256) cd48.iso: FAILED (SHA256) cdboot: FAILED (SHA256) cdbr: FAILED (SHA256) cdemu48.iso: FAILED (SHA256) comp48.tgz: FAILED (SHA256) etc48.tgz: FAILED (SHA256) floppy48.fs: FAILED (SHA256) floppyB48.fs: FAILED (SHA256) floppyC48.fs: FAILED (SHA256) game48.tgz: FAILED (SHA256) man48.tgz: FAILED (SHA256) misc48.tgz: FAILED (SHA256) pxeboot: FAILED (SHA256) install48.iso: FAILED (SHA256) xbase48.tgz: OK (SHA256) xetc48.tgz: FAILED (SHA256) xfont48.tgz: FAILED (SHA256) xserv48.tgz: FAILED (SHA256) xshare48.tgz: FAILED JC Choisy(tin...@tinono.com)@Fri, Oct 15, 2010 at 08:58:49PM +: Hi, The kernel in latest i386 and amd64 snapshots has a sha256 checksum that doesn't match what's listed in the SHA256 file. bsd.rd complains about this when trying to upgrade. This is with the snapshots of Oct. 14th Thanks, -jc
Re: i386 and amd64 snapshots - kernel SHA256 mismatch
I can also confirm this on 2 different US ftp servers. JC Choisy(tin...@tinono.com)@Fri, Oct 15, 2010 at 08:58:49PM +: Hi, The kernel in latest i386 and amd64 snapshots has a sha256 checksum that doesn't match what's listed in the SHA256 file. bsd.rd complains about this when trying to upgrade. This is with the snapshots of Oct. 14th Thanks, -jc
Re: i386 and amd64 snapshots - kernel SHA256 mismatch
Okey dokey...now I know. Hmmm...I've followed snaps for years and always check sums...and I can't remember a time that they failed. Well no worries...I'll roll with it, thanks for the reality check. Theo de Raadt(dera...@cvs.openbsd.org)@Fri, Oct 15, 2010 at 06:29:52PM -0600: Snipped... With snapshots, this will happen from time to time. If people start not understanding why the install media does this check, and that failure is OK, then I will remove the code on the install media. Adjust your expectations. A hash failure can be OK. Another alternative is that I only do snapshot builds about every 2 weeks. How's that idea? As I say, adjust your expectations.
Re: ISC DHCP 4.2
Hmmm...I run my dhcpd alittle different (2 LAN's) but it sounds like you just need to update your dhcpd.interfaces file with both interfaces. If you put both if's in that file you can just run dhcpd without any additional params. On 08/16/2010 06:39 AM, Michael McCool wrote: A bit of clarification... The dhcp server is not working at all when run as a daemon process. I was mistaken before. I have specified the interfaces to run on in the command line. dhcpd -f em1 em2- works fine dhcpd em1 em2- doesn`t work I have run tcpdump on my wired lan interface, i see the dhcp requests, but the replies are only ever sent when dhcpd is running in the foreground. -Original Message- Date: Monday, August 16, 2010 12:09:23 am To: Michael McCoolmccoo...@yahoo.com Cc: misc@openbsd.org From: Olivier Mehanisht...@ssji.net Subject: Re: ISC DHCP 4.2 On Sun, Aug 15, 2010 at 08:52:51PM -0700, Michael McCool wrote: When running the ISC 4.2 dhcpd (using the old config file) in the foreground/debugging (-f or -f -d), clients on both my wired lan (segment 1) and wireless lan (segment 2) can obtain IP addresses just fine. When running the dhcpd server is daemon mode, only the wired lan clients can obtain IP addresses. Any suggestions on to what I can do to start digging into what is going on and how to fix it? Just a quick guess from my not so recent experiece: Did you specify all the relevant interfaces in /etc/dhcpd.interfaces? -- Olivier Mehanisht...@ssji.net PGP fingerprint: 4435 CF6A 7C8D DD9B E2DE F5F9 F012 A6E2 98C6 6655 [demime 1.01d removed an attachment of type application/pgp-signature]
Re: ISC DHCP 4.2
Don't ya love automagically working...just another reason I love OpenBSD ;) On 08/16/2010 09:25 AM, Chris Cappuccio wrote: OpenBSD dhcpd can run without any arguments at all, it will simply look at what LANs are in your dhcpd.conf and if any of them match to active interfaces, it will listen on those interfaces. it's pure magic Allie Daneman [...@drainfade.com] wrote: Hmmm...I run my dhcpd alittle different (2 LAN's) but it sounds like you just need to update your dhcpd.interfaces file with both interfaces. If you put both if's in that file you can just run dhcpd without any additional params. On 08/16/2010 06:39 AM, Michael McCool wrote: A bit of clarification... The dhcp server is not working at all when run as a daemon process. I was mistaken before. I have specified the interfaces to run on in the command line. dhcpd -f em1 em2- works fine dhcpd em1 em2- doesn`t work I have run tcpdump on my wired lan interface, i see the dhcp requests, but the replies are only ever sent when dhcpd is running in the foreground. -Original Message- Date: Monday, August 16, 2010 12:09:23 am To: Michael McCoolmccoo...@yahoo.com Cc: misc@openbsd.org From: Olivier Mehanisht...@ssji.net Subject: Re: ISC DHCP 4.2 On Sun, Aug 15, 2010 at 08:52:51PM -0700, Michael McCool wrote: When running the ISC 4.2 dhcpd (using the old config file) in the foreground/debugging (-f or -f -d), clients on both my wired lan (segment 1) and wireless lan (segment 2) can obtain IP addresses just fine. When running the dhcpd server is daemon mode, only the wired lan clients can obtain IP addresses. Any suggestions on to what I can do to start digging into what is going on and how to fix it? Just a quick guess from my not so recent experiece: Did you specify all the relevant interfaces in /etc/dhcpd.interfaces? -- Olivier Mehanisht...@ssji.net PGP fingerprint: 4435 CF6A 7C8D DD9B E2DE F5F9 F012 A6E2 98C6 6655 [demime 1.01d removed an attachment of type application/pgp-signature]
Re: OpenBSD 4.7 Released, May 19 2010
Congrats for another wonderful product gentleman, the love continues. On 05/19/2010 05:48 AM, Bob Beck wrote: May 19, 2010. We are pleased to announce the official release of OpenBSD 4.7. This is our 27th release on CD-ROM (and 28th via FTP). We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install. As in our previous releases, 4.7 provides significant improvements, including new features, in nearly all areas of the system: - New/extended platforms: o OpenBSD/alpha o Added support for the DS15/DS25/ES45. o OpenBSD/loongson New platform for systems based on the Loongson 2E and 2F MIPS-compatible processors. Supported machines include: o Lemote Fuloong 2F mini-PC o Lemote Lynloong all-in-one-PC o Lemote Yeeloong netbook (8.9 and 10.1 models) o EMTEC Gdium Liberty 1000 netbook o OpenBSD/sgi o Added support for multi-node SGI Origin systems, in M mode. o Added support for the SGI Origin 350, Onyx 350, Onyx 4 and Tezro systems. o Added SMP support on the SGI Octane. o Support for many more onboard devices on Octane and Origin systems. o OpenBSD/socppc o Added support for the RouterBOARD RB600A. o OpenBSD/sparc64 o Preliminary support for running OpenBSD in a guest domain on top of an OpenBSD control domain on sun4v machines. - Improved hardware support, including: o Revamped SCSI midlayer and improved driver support. o UDF 2.5 and 2.6 (HDDVD and Blu-ray) disks support. o Added mpath(4), a driver that steals paths to scsi devices if they could be available via multiple paths and then made available via mpath(4). o New aibs(4) driver for ASUSTeK AI Booster hardware monitoring. o New uthum(4) driver for the TEMPerHUM USB temperature and humidity sensors. o New utrh(4) driver for USBRH temperature and humidity sensors. o New uyurex(4) driver for the Maywa-denki KAYAC YUREX twitch/jiggle of knee sensor. o New urndis(4) driver for remote NDIS Ethernet over USB devices (phones). o New xf86-video-wsudl(4) Xorg driver for USB DisplayLink devices supported by udl(4). o New mpii(4) driver for LSI Logic Fusion MPT Message Passing Interface II based SAS 2 controllers. o New athn(4) driver for Atheros IEEE 802.11a/g/n wireless network devices. o New alc(4) driver for Atheros AR8131/AR8132 10/100/Gigabit Ethernet devices. o New lisa(4) driver for STMicroelectronics LIS331DL MEMS motion sensors. o New gcu(4) driver for Intel EP80579 Global Configuration Unit. o New lom(4) driver for LOMLite and LOMLite2 as found on many of Sun's UltraSPARC-IIi servers. o New vsw(4) driver for virtual switches on sun4v machines. o New vds(4) driver for virtual disk servers on sun4v machines. o Support for EP80579 integrated Ethernet and ICH9 M V has been added to em(4). o Support for 82599 and SFP+ 82598 devices has been added to ix(4). o Support for the Sun GigabitEthernet SBus Adapter 1.0/1.1 has been added to ti(4). o Support for SBus variants of the QLogic Fibre Channel host adapters has been added to isp(4). o Support for SBus variants of the Sun Gigabit Ethernet has been added to gem(4). o Support for Intel WiFi Link 1000 and Intel Centrino Advanced-N 6200/Ultimate-N 6300 has been added to iwn(4). o Support for Ralink RT3572 based 802.11n devices has been added to run(4). o VIA Tremor 5.1, M-Audio Revolution 5.1 cards has been added to envy(4). o New uhts(4) driver for USB HID touchscreens. o Improved touchscreen support in the xf86-input-ws(4) Xorg driver and improved calibration using the new device properties from Xinput. o Support for ON CAT6095 and ON CAT34TS02 temperature sensors added to sdtemp(4). o Several improvements and bug fixes to existing Ethernet drivers, including em(4), re(4), ti(4) and vge(4). o Support for the PIC PCI-X controller added to the SGI xbridge(4) driver. o Support for the onboard Fast Ethernet interface found on SGI Octane and many SGI Origin family systems, iec(4). o Support for more SGI input and video devices on Octane and Origin systems, with iockbc(4), impact(4), and odyssey(4). o Improved PCI resource allocation; more hardware left unconfigured by the machine's firmware (including hotplugged hardware) should work now. o Support for recording/full-duplex added to mavb(4). o Improved support for USB audio devices in uaudio(4). o Improved support for bwi(4) devices on strict-alignment architectures like armish. o Eliminate usage of SCSI tagged queueing mechanisms other than simple queuing, thus avoiding incorrect
Re: newbie help with PF. block all, then allowing port 22 doesnt work.
Why are you doing from any to (fxp0) ? That's your problem. Change all
the rules like that to from any to any since you're already putting
the rule on that interface and it should fix you up. As long as you're
not redirecting you can turn logging on specific rules and see why
they're blocking as well if that doesn't fix your issue.
Andres Salazar wrote:
Hello,
Yes it loaded properly. Yes I had missied the macro for the external
NIC it is included in the original ruleset. t_externa = fxp0
This is the result for pfctl -sr:
match in all scrub (no-df)
block drop all
pass out all flags S/SA keep state
pass out quick on fxp0 inet proto tcp from (fxp0) to 208.67.222.220
port = domain flags S/SA keep state
pass out quick on fxp0 inet proto tcp from (fxp0) to 208.67.222.222
port = domain flags S/SA keep state
pass out quick on fxp0 inet proto tcp from (fxp0) to 4.2.2.1 port =
domain flags S/SA keep state
pass out quick on fxp0 inet proto tcp from (fxp0) to 4.2.2.2 port =
domain flags S/SA keep state
pass out quick on fxp0 inet proto udp from (fxp0) to 208.67.222.220
port = domain keep state
pass out quick on fxp0 inet proto udp from (fxp0) to 208.67.222.222
port = domain keep state
pass out quick on fxp0 inet proto udp from (fxp0) to 4.2.2.1 port =
domain keep state
pass out quick on fxp0 inet proto udp from (fxp0) to 4.2.2.2 port =
domain keep state
pass in quick on fxp0 inet proto tcp from any to (fxp0) port = ssh
flags S/SA keep state
pass in quick on fxp0 inet proto tcp from any to (fxp0) port = 8080
flags S/SA keep state
pass in quick on fxp0 inet proto udp from any to (fxp0) port = ssh keep state
pass in quick on fxp0 inet proto udp from any to (fxp0) port = 8080 keep
state
pass out quick on fxp0 inet proto tcp from (fxp0) to any port = www
flags S/SA modulate state
pass out quick on fxp0 inet proto tcp from (fxp0) to any port = https
flags S/SA modulate state
pass out inet proto icmp all icmp-type echoreq keep state
pass out inet proto icmp all icmp-type unreach keep state
As soon as I hit pfctl -f /etc/pf.conf and pfctl -e iam locked and I
cannot SSH in from the outside.
Where am I blocking port SSH in? :(
Andres
On Wed, Apr 21, 2010 at 9:45 PM, Daniel Ouellet dan...@presscom.net wrote:
## Traffic IN
pass in log quick on $t_externa inet proto { tcp, udp } from any
to ($t_externa) \
port { 22 8080 } keep state
In your pf configuration it doesn't show where you actually define the
macro
for your interface $t_externa.
Are you sure the rules you run are what you think they are.
Did it load properly and may be you want to check the rules as active with
pfctl -sr
And check that display. I think you may find what you are looking for.
Compare your pf.conf with what you actually see in pfctl -sr and you will
work your issue out.
Best,
Daniel
Re: How to disable IPv6?
man ifconfig...is a quick and easy way to disable inet6 on any interface. Beyond that I'm thinking sysctl, did you peruse around before posting ? Johan Beisser wrote: On Sat, Dec 5, 2009 at 12:44 PM, rhubbell rhubb...@ihubbell.com wrote: On Sat, 5 Dec 2009 15:28:09 -0500 STeve Andre' wrote: mostly a waste of time, except for the educational aspects of what not to do. Thanks for the nice story. I get a kick out of how far folks here go out of their way not to help people out. Instead offering up non-sequitars, etc. You could also do more digging around yourself. http://www.openbsd.org/cgi-bin/cvsweb/src/sys/conf/GENERIC?rev=1.150 Look for INET6. -- Allie
Re: NAT rule change with 4.6 current PF
It changed awhile ago...check out the man page of pf.conf, there are a few examples. Quentin Merton wrote: Has the NAT rule syntax changed in 4.6 current from 3-dec? - (GENERIC.MP) #340 I dont see any change in the webpages: http://www.openbsd.org/faq/pf/nat.html A rule that worked in 4.6 release: nat pass on $ext_if proto tcp from 192.168.0.2 to any port 80 - $ext_if_IP now generates an error: pf.conf:247: syntax error I had a look at the pf documentation and it now mentions nat-to rather than nat but perhaps I am misreading. A pointer would be much appreciated. Quentin -- Allie
ntpd dies on startup if using -s option
I'm actually having this issue as well. I'm running current on an old Netra T105 and at boot the date isn't updated when running ntpd with the -s option. It won't even do it from the commandline I think because the skew it so bad (the bottom of the dmesg outlines it clearly). I had to set the date by hand to get it close and then startup ntpd to get it run with the -s option. I'm not running ipv6 and my ntp server is my OBSD firewall. When I tried to run ntpd with -s I get the following errors: Nov 25 09:34:10 blade ntpd[8306]: recvmsg control format 192.168.250.1: No such file or directory Nov 25 09:34:38 blade ntpd[29786]: dispatch_imsg in main: pipe closed I guess the real question is do I need to change the damn battery or is there an issue with ntpd with a large skew ? Thanks in advance. Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address(state) udp0 0 192.168.150.222.26027 192.168.250.1.123 OpenBSD 4.5-current (GENERIC) #0: Sun Jun 14 02:35:19 MDT 2009 dera...@sparc64.openbsd.org:/usr/src/sys/arch/sparc64/compile/GENERIC real mem = 536870912 (512MB) avail mem = 507363328 (483MB) mainbus0 at root: Netra t1 (UltraSPARC-IIi 440MHz) cpu0 at mainbus0: SUNW,UltraSPARC-IIi (rev 9.1) @ 440.011 MHz cpu0: physical 16K instruction (32 b/l), 16K data (32 b/l), 2048K external (64 b/l) psycho0 at mainbus0 addr 0xfffc: SUNW,sabre, impl 0, version 0, ign 7c0 psycho0: bus range 0-3, PCI bus 0 psycho0: dvma map c000-dfff pci0 at psycho0 ppb0 at pci0 dev 1 function 1 Sun Simba PCI-PCI rev 0x13 pci1 at ppb0 bus 1 ebus0 at pci1 dev 1 function 0 Sun PCIO EBus2 rev 0x01 auxio0 at ebus0 addr 726000-726003, 728000-728003, 72a000-72a003, 72c000-72c003, 72f000-72f003 power0 at ebus0 addr 724000-724003 ivec 0x25 SUNW,pll at ebus0 addr 504000-504002 not configured com0 at ebus0 addr 3803f8-3803ff ivec 0x1c: ns16550a, 16 byte fifo com0: console com1 at ebus0 addr 3602f8-3602ff ivec 0x14: ns16550a, 16 byte fifo lpt0 at ebus0 addr 340278-340287, 30015c-30015d, 70-7f ivec 0x22: polled clock1 at ebus0 addr 0-1fff: mk48t59 flashprom at ebus0 addr 0-f not configured watchdog at ebus0 addr 20-20003f ivec 0x4 not configured display7seg at ebus0 addr 200040-200040 not configured beeper0 at ebus0 addr 722000-722003 flashprom at ebus0 addr 40-5f not configured flashprom at ebus0 addr 80-9f not configured pcfiic0 at ebus0 addr 60-63 ivec 0x28 iic0 at pcfiic0 pcfadc0 at iic0 addr 0x4f i2cpcf,8574a at iic0 addr 0x38 not configured i2cpcf,8574a at iic0 addr 0x39 not configured pcfiic1 at ebus0 addr 10-13 ivec 0x1b iic1 at pcfiic1 SUNW,lom at ebus0 addr 40-400063 not configured hme0 at pci1 dev 1 function 1 Sun HME rev 0x01: ivec 0x7e1, address 08:00:20:c1:e5:66 luphy0 at hme0 phy 0: LU6612 10/100 PHY, rev. 1 siop0 at pci1 dev 2 function 0 Symbios Logic 53c875 rev 0x03: ivec 0x7e0, using 4K of on-board RAM scsibus0 at siop0: 16 targets, initiator 7 sd0 at scsibus0 targ 0 lun 0: FUJITSU, MAG3091L SUN9.0G, SCSI2 0/direct fixed sd0: 8637MB, 512 bytes/sec, 17689267 sec total sd1 at scsibus0 targ 1 lun 0: FUJITSU, MAG3091L SUN9.0G, SCSI2 0/direct fixed sd1: 8637MB, 512 bytes/sec, 17689267 sec total hme1 at pci1 dev 3 function 1 Sun HME rev 0x01: ivec 0x7da, address 08:00:20:c1:e5:67 luphy1 at hme1 phy 0: LU6612 10/100 PHY, rev. 1 ppb1 at pci0 dev 1 function 0 Sun Simba PCI-PCI rev 0x13 pci2 at ppb1 bus 2 ppb2 at pci2 dev 1 function 0 DEC 21150 PCI-PCI rev 0x04 pci3 at ppb2 bus 3 pciide0 at pci3 dev 14 function 0 CMD Technology PCI0646 rev 0x03: DMA, channel 0 configured to native-PCI, channel 1 configured to native-PCI pciide0: using ivec 0x7c2 for native-PCI interrupt pciide0: channel 0 disabled (no drives) atapiscsi0 at pciide0 channel 1 drive 0 scsibus1 at atapiscsi0: 2 targets cd0 at scsibus1 targ 0 lun 0: TOSHIBA, CD-ROM XM-1902B, 1114 ATAPI 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, DMA mode 2 softraid0 at root siop0: target 0 now using tagged 16 bit 20.0 MHz 16 REQ/ACK offset xfers siop0: target 1 now using tagged 16 bit 20.0 MHz 16 REQ/ACK offset xfers bootpath: /p...@1f,0/p...@1,1/s...@2,0/d...@0,0 root on sd0a swap on sd0b dump on sd0b WARNING: preposterous time in file system WARNING: clock lost 21767 days -- CHECK AND RESET THE DATE!
Virtualization, OpenBSD as host
Ok, here's my dilemna. I love OpenBSD but due to the fact that I can't run a virtual instance of XP with Java on Qemu I'm screwed. I have to use a Linux box (ducking) with virtualbox to get my work done. Has anyone successfully ported virtualbox to be run on OpenBSD as the host or been able to run java with Qemu ? Thanks in advance...I REALLY want to go back to OpenBSD as my daily driver ;)
Re: Virtualization, OpenBSD as host
I need to run Java on the guest...hence the reason Qemu doesn't work for me. T need virtualization software that runs java on an XP guest. The version of OpenBSD doesn't matter ;) I've been running it since 2.8 and am running current today as a serverwhich is what I want to change. Look, do you know how to run virtualization software like virtualbox or to have qemu do what I need (run java in an XP guest) ? If you can't, then let's let others answer my question. Eugene Ryazanov wrote: 2009/1/16 Allie Daneman d...@drainfade.com: Did you read the email ? OpenBSD would be the host not the guest. Yes, I did. I just asked what is your target: just to run java or to run java on the guest WinXP system. What is your problem? WinXP itself does not run on qemu or there are problems with java on WinXP on qemu or there are no problems, but performance is unacceptable?Do you use kqemu (QEMU acceleration layer)? Which versions of OpenBSD / qemu / java do you use? Please, describe your problem with qemu.
Re: Virtualization, OpenBSD as host
That's exactly my problem. I have to use this Linux POS to get the job done and I feel bad about it. I've loved OpenBSD for years but it can't do what I need in a PC for my daily driverI'm pissed because I can't contribute to helping the issue either so I should probably just shut up and do what I need to do. Eh...it works for now...maybe it'll change in the future. johan beisser wrote: On Jan 16, 2009, at 11:00 AM, Allie Daneman wrote: I need to run Java on the guest...hence the reason Qemu doesn't work for me. T need virtualization software that runs java on an XP guest. The version of OpenBSD doesn't matter ;) I've been running it since 2.8 and am running current today as a serverwhich is what I want to change. Look, do you know how to run virtualization software like virtualbox or to have qemu do what I need (run java in an XP guest) ? If you can't, then let's let others answer my question. My initial thought is that you're screwed. Virtualization is expensive, difficult, and just never going to be all that quick under OpenBSD. At least until someone really does horrible things to the OpenBSD kernel to make that work. Sure, you could do: OpenBSD - kQemu - WinXP - JVM - jApp. But wouldn't: OpenBSD - JVM - jApp be faster? Depending on the app, there's a variety of reasons for wanting the XP VM. I get that. It's also just not going to perform all that well. Pretty much to the point of utter failure or uselessness.
Re: Virtualization, OpenBSD as host
Nick Guenther wrote: Out of curiousity, what are you doing in Java that needs Windows? Ahh yes...for work I need to run a java based app that primarily has a Windows client. I have to run it in Windows for work although I tried Wine and it failed miserably. I tried Qemu as well and that's when the windows java crapped out and couldn't find a way to get it working as an option. I've read a little about a virtualbox port to FreeBSD which would open the possibility for OpenBSD, but seems it hasn't come to fruition. Unfortunately I'm not a coder beyond shell and a little perl so I can't help much, otherwise I'd shut up and code very willingly. That's my dilemna...I've considered buying a mac which does run virtualbox but not sure if that's really a positive move from Linux. The fact that OS X upgrades and patches generally don't break basic functionality is a motivating factor though. My intention is not to talk trash about Linux or OS X though...I want to see if anyone has done what I desire and can help me come back to OpenBSD as a desktop. On Fri, Jan 16, 2009 at 2:32 PM, Allie Daneman d...@drainfade.com wrote: That's exactly my problem. I have to use this Linux POS to get the job done and I feel bad about it. I've loved OpenBSD for years but it can't do what I need in a PC for my daily driverI'm pissed because I can't contribute to helping the issue either so I should probably just shut up and do what I need to do. Eh...it works for now...maybe it'll change in the future.
Re: Virtualization, OpenBSD as host
Marti Martinez wrote: Obviously none of us know WHAT you're really trying to do, so this suggestion may or may not be workable for you, but in your situation my preferred solution is to set up a crap machine with XP as the native OS, and just use rdesktop to log in to it. Not an option...see I work in a unique situation. I need a laptop running XP that I can use to VPN into work for email,etc. I also need XP running on the local LAN for access to local boxes that require the windows java based client. Beyond that I use the host OS to access non windows required apps on the local LAN. Right now Ubuntu does that for me and I run 2 instances of XP on the host OS, I've tried almost every flavor in existence and I keep coming back to Ubuntu because it does the best job. There's plenty of room for improvement with Ubuntu thoughlittle quirky issues and upgrades are a joke, I just wipe it every 6 months. This is the reason I'd love to come back to OpenBSD...less quirkiness, it does what I want, and I fell way better running it than something that does weird things under the hood. On Fri, Jan 16, 2009 at 12:32 PM, Allie Daneman d...@drainfade.com wrote: That's exactly my problem. I have to use this Linux POS to get the job done and I feel bad about it. I've loved OpenBSD for years but it can't do what I need in a PC for my daily driverI'm pissed because I can't contribute to helping the issue either so I should probably just shut up and do what I need to do. Eh...it works for now...maybe it'll change in the future. johan beisser wrote: On Jan 16, 2009, at 11:00 AM, Allie Daneman wrote: I need to run Java on the guest...hence the reason Qemu doesn't work for me. T need virtualization software that runs java on an XP guest. The version of OpenBSD doesn't matter ;) I've been running it since 2.8 and am running current today as a serverwhich is what I want to change. Look, do you know how to run virtualization software like virtualbox or to have qemu do what I need (run java in an XP guest) ? If you can't, then let's let others answer my question. My initial thought is that you're screwed. Virtualization is expensive, difficult, and just never going to be all that quick under OpenBSD. At least until someone really does horrible things to the OpenBSD kernel to make that work. Sure, you could do: OpenBSD - kQemu - WinXP - JVM - jApp. But wouldn't: OpenBSD - JVM - jApp be faster? Depending on the app, there's a variety of reasons for wanting the XP VM. I get that. It's also just not going to perform all that well. Pretty much to the point of utter failure or uselessness.
Re: Virtualization, OpenBSD as host
bofh wrote: On Fri, Jan 16, 2009 at 2:42 PM, Nick Guenther kou...@gmail.com wrote: Out of curiousity, what are you doing in Java that needs Windows? I have commercial crap that is used to manage windows crap but is written in java. Guess what do they call when they need to access storage? C:\ . I'm sure there're plenty of similar type crap. BingoI don't run this stuff voluntarily...I have to for work.
Re: Virtualization, OpenBSD as host
That's a great theory but it's not my situation. I use SAE and metric now but am looking for something that does it better. Why would I dump what works when I'm just asking for more options ? Sure I could go with the easy option and run 2 maybe 3 laptops if I want to run an OpenBSD desktop...but why ? We have software that can do what I wantI'm just looking for input on if anyone has done it. Why would I take 2 steps back to make 1 step forward...kinda bass ackward eh ? If you have nothing to add to this thread than why respond ? You either have or haven't done it...sorry if this is harsh but why deal with BS. I can thank Theo for that skill ;) johan beisser wrote: On Jan 16, 2009, at 12:05 PM, Allie Daneman wrote: BingoI don't run this stuff voluntarily...I have to for work. If work is all SAE, and you have metric and SAE tools, do you bring your metric tools on the job site? No, because for the most part they won't fit, and you might strip the bolt, nut, or hex socket you're trying to adjust. OpenBSD is a tool. Forcing a wedge case to accomplish your job isn't going to make you or anyone else happy, and may even break things in unexpected ways. Install XP on a different system, natively.
Re: how to install the xfce4 desktop ?
Pick one..it'll automagically install the dependencies. On Tue, 4 Nov 2008 00:37:43 +0100 elflord woods [EMAIL PROTECTED] wrote: hi all which package shall i install to automatically install all the dependencies ? thanks
Re: OpenBSD 4.3 released May 1, 2008
Thank you ! On Wed, 30 Apr 2008 16:00:55 -0600 Theo de Raadt [EMAIL PROTECTED] wrote: - OpenBSD 4.3 RELEASED - May 1, 2008. We are pleased to announce the official release of OpenBSD 4.3. This is our 23nd release on CD-ROM (and 24rd via FTP). We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install. As in our previous releases, 4.3 provides significant improvements, including new features, in nearly all areas of the system: - New/extended platforms: o OpenBSD/sparc64. SMP support. This should work on all supported systems, with the exception of the Sun Enterprise 1. o OpenBSD/hppa. K-class servers like the K200 and K410 are supported now. o OpenBSD/mvme88k SMP support on MVME188 and MVME188A systems. 88110 processor, and thus MVME197LE/SP/DP boards, are supported now. o OpenBSD/sgi. Contains many new drivers, however the kernel requires an important errata fix. - Improved hardware support, including: o The bge(4) driver now supports BCM5906/BCM5906M 10/100 and BCM5755 10/100/Gigabit Ethernet devices. o The cas(4) driver now supports Cassini+ 10/100/Gigabit Ethernet devices. o The em(4) driver now supports ICH9 10/100 and 10/100/Gigabit Ethernet devices. o The gem(4) driver now supports the onboard 1000base-SX interface on the Sun Fire V880 server. o The ixgb(4) driver now supports the Sun 10Gb PCI-X Ethernet devices. o The msk(4) driver now supports Yukon FE+ 10/100 and Yukon Supreme 10/100/Gigabit Ethernet devices. o The nfe(4) driver now supports MCP73, MCP77 and MCP79 10/100/Gigabit Ethernet devices. o The ral(4) driver now supports RT2800 based wireless network devices. o The cmpci(4) driver now supports CMI8768 based audio adapters. o The it(4) driver now supports ITE IT8705F/8712F/8716F/8718F/8726F and SiS SiS950 ICs. Watchdog timer functionality added. o The mfi(4) driver now supports Dell CERC6/PERC6 and LSI SAS1078 RAID controllers. o The viapm(4) driver now supports the VIA VT8237S south bridges SMBus controller. o Support for hotplugging ExpressCard devices has been added. o New amdpcib(4) driver for the AMD-8111 series LPC bridge and timecounter on amd64. o New pctr(4) driver for the CPU performance counters on amd64. o New bwi(4) driver for the Broadcom AirForce IEEE 802.11b/g wireless network device. o New envy(4) driver for the VIA Envy24 audio device. o New et(4) driver for the Agere/LSI ET1310 10/100/Gigabit Ethernet device. o New etphy(4) driver for the Agere/LSI ET1011 TruePHY Gigabit Ethernet PHY. o New amdpcib(4) driver for the AMD-8111 series LPC bridge and timecounter on i386. o New glxpcib(4) driver for the AMD CS5536 PCI-ISA bridge with timecounter, watchdog timer, and GPIO on i386. o New iwn(4) driver for the Intel Wireless WiFi Link 4965AGN IEEE 802.11a/b/g/Draft-N wireless network device. o New msts(4) line discipline to interface Meinberg Standard Time String devices and to provide a timedelta sensor. o New gbe(4) driver for the SGI Graphics Back End (GBE) Frame Buffer on sgi. o New mkbc(4) driver for the Moosehead PS/2 Controller on sgi. o New power(4) driver for the power button on sgi. o New ecadc(4) driver for the Environmental Monitoring Subsystem temperature sensor on sparc64. o New tda(4) driver for the fan controller on the Sun Blade 1000/2000, making these machines much less noisy. o New spdmem(4) driver retrieves information about memory modules. o New thmc(4) driver for the TI THMC50, Analog ADM1022/1028 temperature sensor. o New uchcom(4) driver for the WinChipHead CH341/340 based USB serial adapter. o New umbg(4) driver for the Meinberg Funkuhren USB5131 radio clock to provide a timedelta sensor. o New upgt(4) driver for the Conexant/Intersil PrismGT SoftMAC USB IEEE 802.11b/g wireless network device. o New wbng(4) driver for the Winbond W83793G temperature, voltage, and fan sensor. o New wbsio(4) driver for the Winbond LPC Super I/O ICs. o New adl(4) driver for the Andigilog aSC7621 temperature, voltage, and fan sensor. o The siop(4) driver now supports the (non-PCI) NCR 53c720/770 in big-endian mode. o New lmn(4) driver for the National Semiconductor LM93 sensor. - New tools: o snmpd(8), implementing the Simple Network Management Protocol. o The snmpctl(8) program controls the SNMP daemon. o The pcidump(8) utility displays the device address, vendor, and product name of PCI devices. o ldattach(8) is used to attach a line discipline to a serial line to allow for in-kernel processing of the received and/or sent data. - New functionality:
Re: looking for openbsd friendly server vendor
Netra T1 (like a 105) or a Dell...the Netras are cheap on Ebay. Lord Sporkton wrote: Im about to buy a small server, mostly for personal use looking for a 1u was hoping to find some vendors that are openbsd friendly if they offer more than just i386 that is a plus as im investigating other archs as a possiblilty, any suggestions welcome this server will be doing mostly webhosting, dns, mail, small firewalling, and a vpn or 2 thanks
My gift has arrived...
It looks like my 6 month gift has arrived in Western Washington, USA. Thanks again Theo and all the devlopers for an excellent OS.
Re: OpenBSD Install Goal
My $0.02...I've tried MANY different flavors of *BSD, Linux, etc. and I firmly think that OpenBSD's installer is exactly as it should be. It works well and doesn't need eye candy to make it work better. I can do a CD install in 20 minutes...you can't beat that. If you want more eye candy go try a Linux flavor or PCBSD...leave OpenBSD alone. IF IT AIN'T BROKE, DON'T FIX IT
Re: Qemu + auich = sound ?
Progress...I setup the following environment variables and got sound...but it was choppy as hell. export QEMU_AUDIO_DRV=oss QEMU_OSS_DAC_DEV=/dev/audio QEMU_OSS_ADC_DEV=/dev/audio Rodrigo V. Raimundo([EMAIL PROTECTED])@Wed, Sep 12, 2007 at 03:00:01PM -0300: -soundhw emulates the sound card that the guest OS will see. It has nothing to do with your real sound card. I think qemu will pass the sound data directly to /dev/audio and it will silent fail if its busy or can't be written Allie D. wrote: Can anyone give me a hint how to get sound working in Qemu ? I'm running an X31 and am starting -soundhw all but I don't think it covers my sound hardware. The precompiled 4.1 package has: pcspk PC speaker sb16Creative Sound Blaster 16 es1370 ENSONIQ AudioPCI ES1370 But my sound device is an auich. Anyone get sound working for an auich device ?
Re: Show your appreciation and get your 4.2 DVD
Theo de Raadt([EMAIL PROTECTED])@Thu, Sep 06, 2007 at 11:15:15PM -0600: Thanks for putting up pre orders...and I notice the price keeps going up too ;( Increasing operating costs ? Decreasing CD sales means the margins have to be adjusted. More of you are relying on our FTP services, and also donating less. That said, the CD price did not go up this release, it went up a few ago. Actually back then it was because the US dollar had dropped enough relative to the basket of international currencies. Huh..interesting about the dollar and another reason the next pres couldn't be any worse than the one in office now. Well I bought my copy and think it's worth every cent, thanks for another release. -- ~Allie D.
Re: Show your appreciation and get your 4.2 DVD
Thanks for putting up pre orders...and I notice the price keeps going up too ;( Increasing operating costs ? Theo de Raadt([EMAIL PROTECTED])@Thu, Sep 06, 2007 at 06:24:39PM -0600: Can you make separately available the wire frame Puffy sticker that comes with the audio CD? Yeah, perhaps we should do that. The sticker included in 4.2 will be somewhat like that. Same super-sticky very high quality stuff, but not a wireframe. You'll see. -- ~Allie D.
Re: Qemu networking help
That's the HOWTO in undeadly ;) Denny White([EMAIL PROTECTED])@Sun, Aug 26, 2007 at 03:51:41AM -0500: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, Aug 25, 2007 at 10:31:40PM -0700, Allie Daneman spake forth: So I recently installed Qemu w/XP on my 4.1 box and am having a bear of a time getting pf and the networking going. I've tried the undeadly howto and another on the Qemu forum to no avail. Can anyone share their qemu ifup script, how they run it, and the important parts of their pf.conf to get it running ? Thnx in advance... You didn't give any specific links I don't have time to search on undeadly or qemu, so I don't know if this link has the same stuff you've already read or not. Anyway, it's at http://neworder.box.sk/news/16699 Stuff there on bridges, tap devices, pf along with some extra links on each one. Looks fairly in depth. Check it out. Denny White -- ___ ___ / __/ _ \/ __/__ / _\ \/ // / _//___/ / /___//_/ /_/ [ 1987 - 2007 ] http://sdf.lonestar.org Public Access Unix System === GnuPG key : 0x1644E79A | http://wwwkeys.nl.pgp.net Fingerprint: D0A9 AD44 1F10 E09E 0E67 EC25 CB44 F2E5 1644 E79A === -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (OpenBSD) iD8DBQFG0T65y0Ty5RZE55oRAnwEAKCEZSxX5rqZ+Z2fe4vg86UYdPhaQwCfcePz 7GAbyfF+EBpGDazzWrwWtUk= =LCVp -END PGP SIGNATURE-
Another qemu + OpenBSD host + networking + pf
Ok...first off I apologize for wasting bandwidth this morning looking for
help...blame it on Sunday morning laziness. After googling and trying things I
got my qemu working w/XP finally. The undeadly article is great but isn't as
complete as it could be. Hopefully this will fill in the cracks for any of you
out there that want to get qemu going ASAP to start using virtualization on
OBSD ;) Here it is cut and dry:
### Install ###
1) qemu-img create -f qcow xp.hd 4G Create image
* make sure xp.hd is writable by the owner running qemu (otherwise you
can't partition the drive in Windows Install) **
2) qemu -m 384 -cdrom XP.iso -boot d -monitor stdio xp.hd Boot iso image
as if it was on a cdrom
### Setup networking ###
3) Update /etc/sysctl to enable forwarding:
net.inet.ip.forwarding=1
4) Create /etc/hostname.tun0 with the following:
link0 up
inet 192.168.0.1 255.255.255.0
5) Create /etc/pf.conf with this or something similar:
internal = tun0
external = ipw0
set loginterface $external
scrub in all
nat on $external from $internal:network to any - ipw0
pass quick on lo0 all flags any
pass in quick on $internal proto icmp all keep state
pass in quick on $internal from $internal:network to any keep state
pass out quick on $internal from any to $internal:network keep state
pass out quick on $external proto tcp all modulate state
pass out quick on $external proto { udp, icmp } all keep state
block quick all
### starting Qemu ###
6) sudo qemu -m 384 -monitor stdio -net nic -net tap xp.hd
That's it !!! No qemu-ifup script needed. Obviously you assign XP (or whatever
OS you install) an IP in the 192.168.0.0/24 network and you're golden. This is
a virtual network...so changing it is as easy as changing your hostname.tun0,
pf.conf, and the IP in the OS you're running as a virtual. My only dilemma is
that I run dhcp on two external interfaces and I don't want to change DNS
servers on my virtual every time I move. I think I'm going to work on running
dhcpd on tun0 and script a DNS IP harvester for dhcpd to assign the same DNS
servers as the host. There's always more to do ;) Enjoy...
Re: calling firefox from mutt
No problem /etc/urlview.conf COMMAND ~/.mutt/mozilla.sh ~/.mutt/mozilla.sh #!/bin/sh URL=$@ /usr/local/bin/firefox -remote openurl($URL, new-tab) || /usr/bin/firefox $URL ###/usr/local/bin/mozilla -remote openurl($URL, new-tab) || /usr/local/bin/mozilla $URL Enjoy Chris([EMAIL PROTECTED])@Sat, Aug 25, 2007 at 09:07:01PM +1000: Not sure if it's OpenBSD related but I'm using urlview v0.9 with mutt v1.5.12 and firefox v2.0.0.3 on OpenBSD 4.1. My window manager is wmii. I just put the following line in my /home/me/.urlview and nothing in .muttrc or anywhere else. When I go to mutt and press CTRL-b, it shows the url list and when I click one of the URLs, it opens up firefox and nothing else happens. Firefox just sits there instead of loading the URL. Any help would be much appreciated. Thanks. .urlview output - REGEXP ((http|https|ftp|gopher):(//)?[^ \t]*|www\.[-a-z0-9.]+)[^ .,;\t\):] COMMAND /usr/bin/nohup firefox -remote openURL(%s, new-tab) /dev/null 21
Qemu networking help
So I recently installed Qemu w/XP on my 4.1 box and am having a bear of a time getting pf and the networking going. I've tried the undeadly howto and another on the Qemu forum to no avail. Can anyone share their qemu ifup script, how they run it, and the important parts of their pf.conf to get it running ? Thnx in advance...
Realplayer or Helix ???
Has anyone got Helix/Realplayer running for streaming video ? I keep getting Abort traps even under linux emulation. Google isn't helping me much ;) Thanks in advance.
Re: Roundcube problem on OpenBSD 4.1 installation
First let me say that I have Roundcube running on OBSD 4.1 stable. My web server is lighttpd BUT I ran it on Apache chrooted and unchrooted. So...on to your issues. In OpenBSD I recommend starting off with the recommended php.ini which can be found here: /usr/local/share/examples/phpX/php.ini-recommended Beyond that it's an Apache configuration issue...which shouldn't be too tough if you have any experience with Apache. I recommend getting it running unchrooted first and then have fun with chroot. I didn't have to do anything unique for the roundcube install..I just followed the directions and it worked fine on my already functioning web server. Get Apache and MySQL all setup and then attack Roundcube...start simple and then add more things ;) P.S. I downloaded roundcubemail-0.1-rc1.1 from the website. Vijay Sankar([EMAIL PROTECTED])@Mon, Jul 30, 2007 at 09:43:12PM -0500: On 7/30/07, Allen wrote: I seem to recall seeing this error, too. It has been quite a while since I debugged it, but I seem to ever-so-vaguely remember it being an issue in php.ini with having to set: magic_quotes_gpc = On fwiw: I also have magic_quotes_runtime = Off, and roundcube works like a charm. Thanks very much for your response. I tried magic_quote_gpc = On but that did not work. But it is good (but frustrating that it is not working for me) to know that at least one person is running this successfully on OpenBSD! If possible, please let me know if you are using roundcube from packages on -current or if it is the version from svn.roundcube.net. Also, I am wondering if it makes a difference if httpd is chrooted? I am going to try and build a different server with 4.1 -current and see if it makes a difference . Vijay -- Vijay Sankar ForeTell Technologies Limited 59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6 Phone: +1 (204) 885-9535, E-Mail: [EMAIL PROTECTED] -- ~Allie D. Today is the first day of the rest of the mess.
Re: DJBDNS woes
You need to read the directions a bit closer.like this part. http://cr.yp.to/djbdns/run-server.html Bray Mailloux([EMAIL PROTECTED])@Thu, May 03, 2007 at 05:33:25PM -0700: So, I recently installed daemontools, ucspi and djbdns. But, to my demise, after compiling the source and configuring the system, I've found that the directory /service/tinydns/root does not exist! Have anyone experienced a similar problem? -- ~Allie D. Sex is a natural bodily process, like a stroke.
Re: Long WEP key
mail-lists([EMAIL PROTECTED])@Fri, Mar 30, 2007 at 07:41:35AM -0500: Why bother adding WPA when you can turn many wlan cards into AP-mode and have an OpenBSD box serve wireless computers with IPsec capabilities. You then have an AP with many more capabilities than any linksys/netgear/whatever AP. This would be great. However, I've yet to find an IPsec client that's 'easy' to set up.. ie. an end user can do it. Perhaps you know of a good way to solve this issue? I'd love to hear it! Openvpn -- ~Allie D.
Nagios plugin exit code not being read ?
This is a weird one and I'm not even sure if it's a nagios issue or something else.. I'm running an lpq shell script that I found through the nagios exchange and it's not working. I modified the script a little but it exits with the correct exit code as per nagios docs but nagios doesn't see it...it thinks it exits with 0 every time. Here's the trace of the script that exits with 1 as the code. What am I missing ? + LPR=lp + WARN=1 + ERROR=5 + lpq -P lp + wc -l + sed s/^ *// + sed s/ *$// + QUEUE=4 + QUEUE=2 + INFO=Queue(2) + [ 2 -ge 5 ] + [ 2 -ge 1 ] + echo WARNING - Queue(2) WARNING - Queue(2) + exit 1 The script looks like so: #! /bin/sh LPR=$1 WARN=1 ERROR=5 QUEUE=`lpq -P $LPR | wc -l | sed 's/^ *//' | sed 's/ *$//'` QUEUE=$(($QUEUE-2)) INFO=Queue($QUEUE) if [ $QUEUE -ge $ERROR ]; then echo CRITICAL - $INFO exit 2 fi if [ $QUEUE -ge $WARN ]; then echo WARNING - $INFO exit 1 fi echo OK - $INFO exit 0 I'm running these packages related to nagios: nagios-2.5-chroot host and service monitor nagios-plugins-1.4.3p2 nagios base plugins nagios-plugins-mysql-1.4.3 mysql plugin nagios-web-2.5-chroot cgis and webpages for nagios -- ~Allie D.
Is Theo still hiking ????
Is Theo still hiking, I miss him already...the lack of comic relief. The threads are just simmering, where are the well done threads that Theo can only produce ;) -- ~Allie D.
Re: spamd: being careful with Chinese IPs
I think I'm gonna try running it as well. So far it's worked pretty well and I really like the syslog output on trap entries it adds. Since the script only needs higher privileges for spamdb, I'm going to try and run it like this: rc.local ## BBeck's greytrapper if [ -x /usr/local/sbin/greyscanner ]; then echo -n 'bbecks greytrapper'; /usr/local/bin/setuidgid _spamd /usr/local/sbin/greyscanner fi The process looks likes so: _spamd 25923 0.0 0.3 5492 2264 p0 I 9:35AM0:00.01 /usr/bin/perl /usr/local/sbin/greyscanner Thanks go out to beck@, the continued development of spamd keeps my inbox spam free ;) I had to drop spews level 1 due to false positives so this greytrapper may take the edge off, THANKS ! Mike Erdely([EMAIL PROTECTED])@Sun, Nov 26, 2006 at 12:17:04PM -0500: Jacob Yocom-Piatt wrote: http://www.ualberta.ca/~beck/greyscanner is this to be run with a cron job? any feedback on its use? It daemonizes and runs as a process parsing spamdb output every $SCAN_INTERVAL (defaults to 300 seconds). cheers, jake -ME -- ~Allie D. Miss, n.: A title with which we brand unmarried women to indicate that they are in the market. -- Ambrose Bierce, The Devil's Dictionary
Re: broadcom (Dell boxes crashing)
I was thinking the same thing, almost all my boxes are Dell of various ages and hardware configurations and I have never had a problem beyond your basic bad disk,etc. My favorite cheap Dell are their 400SC's and I run a few of them on 3.9 stable (since 3.7 without a hiccup). On Fri, September 8, 2006 14:04, Marco Peereboom wrote: Many of the big server makers (HP, sun, etc) seem to be using broadcoms, and we really need to get away from our Dell boxes with em(4) card, as they crash like crazy with 3.9 stable. You must be using different Dell boxes because mine work just fine and I have many deployed. Care to elaborate with a bug report?
Re: ssh problem
Do you have the AllowUsers or AllowGroups in your config file ? That would do it. You shoulda also disable direct root logins. Try changing the following in /etc/ssh/sshd_config PermitRootLogin no Leonard Jacobs([EMAIL PROTECTED])@Mon, Sep 04, 2006 at 10:22:30PM -0400: I've configured a Soekris running OpenBSD 3.9 pf as a firewall, with a read only CF. I am using the default sshd_config file except to run sshd on port 222. My problem is that I cannot connect remotely to this box via ssh except as root. When a legit user who has an account on that box attempts connection, I get Failed password for invalid user lj from 192.168.1.13 port 10962 ssh2. Is there anything obvious that you can suggest that might be causing this problem? I did try changing the file system to read/write, but it did not resolve the problem. Thanks. -- Allie D. Allnix,LLC. http://www.allnix.net One man's theology is another man's belly laugh.
Re: 3.9 + ath....panic fixed in -current and can it run G band yet as well ?
Chris Cappuccio([EMAIL PROTECTED])@Wed, Jul 05, 2006 at 12:03:35PM -0700: Allie Daneman [EMAIL PROTECTED] wrote: is why I bought this card ;) Should I shutup and upgrade to -current and/or will G band be supported (maybe 4.0) ? ath0 at pci0 dev 15 function 0 Atheros AR5212 rev 0x01: irq 11 ath0: AR5213 5.9 phy 4.3 rf5112 3.6, FCC2A*, address 00:0b:6b:37:29:87 your dmesg shows a 5213 chip, actually someone recently imported some HAL fixes from the linux atheros free-hal things which were in turn based on the original openbsd free hal. maybe this fixes your 5213 problems. try a current snapshot Tried itno difference, no G band still. if not, then there is more reverse engineering to be done, but it's very slow and painstaking work. I bet...you have any recommendations for Soekris/OpenBSD friendly G band MiniPCI cards ? Man I just bought another ath card too...it may be hitting Ebay when it arrives ;) ~Allie
3.9 + ath....panic fixed in -current and can it run G band yet as well ?
I've been having the panic problem reported by others on stable and saw a post by Reyk that it's fixed in -current. That's awesome, thanks for the fix...but I also wanted to ask if there's work towards getting G band working in the ath driver, specifically the AR5212 chip. I'm running a Soekris 4521 w/miniPCI and would LOVE to run G band...which is why I bought this card ;) Should I shutup and upgrade to -current and/or will G band be supported (maybe 4.0) ? dmesg ath0 at pci0 dev 15 function 0 Atheros AR5212 rev 0x01: irq 11 ath0: AR5213 5.9 phy 4.3 rf5112 3.6, FCC2A*, address 00:0b:6b:37:29:87 CVS commit by reyk File: [OpenBSD] / src / sys / dev / ic / ath.c (download) Revision 1.52, Fri Jun 23 21:53:01 2006 UTC (10 days, 19 hours ago) by reyk Branch: MAIN CVS Tags: HEAD Changes since 1.51: +4 -2 lines set the RSSI Max value in ath(4) and use the new RSSI radiotap header instead of the old db signal header. also allow tcpdump and hostapd to print the new RSSI radiotap header values current/max rssi. ok damien@ jsg@ Thanks in advance for any feedback ;) ~Allie
Can't get gettext installed via package on 3.9.
I already tried to submit a bug report on a package with new dependencies so I'll just post to misc and see if I can get some guidance. It seems like a few packages depend on gettext and I'm having issues installing it's new version. I get this: Can't install gettext-0.14.5p1 because of conflicts (.libs-gettext-0.10.40p3) /usr/sbin/pkg_add: gettext-0.14.5p1:Fatal error So I perused CVSweb hoping to track down where to look for the cruft in my filesystem...I didn't find anything. I did a 3.9 upgrade on an i386 box and am fumbling through the package upgrades. I actually just removed them all and started over...which may have made it worse ;) Any help would be greatly appreciated...I can't even install php without gettext. Allie Daneman
Re: Can't get gettext installed via package on 3.9.
kyle([EMAIL PROTECTED])@Tue, May 02, 2006 at 07:33:15PM -0400: Just a headsup for others, I had no issue installing gettext(needed for wget) but this was on a fresh 3.9 install. What happens if you use pkg_add w/ -r? Nice catchI didn't even think of that and it worked. That seems like a bug... On 5/2/06, Allie Daneman [EMAIL PROTECTED] wrote: I already tried to submit a bug report on a package with new dependencies so I'll just post to misc and see if I can get some guidance. It seems like a few packages depend on gettext and I'm having issues installing it's new version. I get this: Can't install gettext-0.14.5p1 because of conflicts (.libs-gettext-0.10.40p3) /usr/sbin/pkg_add: gettext-0.14.5p1:Fatal error So I perused CVSweb hoping to track down where to look for the cruft in my filesystem...I didn't find anything. I did a 3.9 upgrade on an i386 box and am fumbling through the package upgrades. I actually just removed them all and started over...which may have made it worse ;) Any help would be greatly appreciated...I can't even install php without gettext. Allie Daneman
Re: 3.9 sightings :: ot
MikeM([EMAIL PROTECTED])@Wed, Apr 26, 2006 at 08:30:35AM -0400: On 4/25/2006 at 9:09 AM Baron Fujimoto wrote: |received mine last week, cds only. not a single tab arrived intact. = I got my CD a week and a half ago and it was the first time all of the tabs were in tact. There's always atleast 1 busted...but not this time. My CD arrived a week or so ago, in perfect condition. (Connecticut, US)
Patches out, no errata page update ?
So...I see there are some new patches out but no errata page update ? 150 Have a Gorilla. drwxr-xr-x2 1114 1114 512 Jan 03 13:03 . drwxr-xr-x 18 1114 1114 512 Dec 30 21:03 .. -r--r--r--1 1114 1114 7152 Jan 03 12:10 001_perl.patch -r--r--r--1 1114 1114 3953 Dec 30 20:29 002_fd.patch 226 There, everyone likes a Gorilla. ftp pwd 257 /pub/OpenBSD/patches/3.8/common -- Allie Daneman Allnix,LLC. http://www.allnix.net
Re: Recommendations for another POP3/IMAP/SMTP mail reader client?
I use mutt to access my email server via imaps and use msmtp for outbound via TLS w/SMTP AUTH. http://www.mutt.org/doc/manual/manual-4.html#ss4.11 Dload the msmtp-1.4.1.tgz package from your closest mirror in packages -- Allie Daneman Allnix,LLC. http://www.allnix.net On Wed, December 14, 2005 08:35, Jack Woehr wrote: Recommendations for another POP3/IMAP/SMTP mail reader client (if one exists) other than Mozilla? Years ago I hopped directly from Elm on a host server to graphic mail clients on my desktop box without ever dealing with, e.g., mutt setting up sendmail. Now Mozilla 1.7.2 crashes hard on receiving a particularly noxious piece of spam I've been getting a lot of and I'm ready to deal with changing mail clients. I'm just hoping to get around this without weeks of learning how to configure sendmail for mutt ... -- Jack J. Woehr # I never played fast and loose with the PO Box 51, Golden, CO 80402 # Constitution. Never did and never will. http://www.well.com/~jax # - Harry S Truman
php4 causing httpd seg faults after upgrade to 3.8
Hmmm...my upgrade went flawlessly except httpd started seg faulting on startup. I pinned it to php4 and tried the packages for versions 4.4.1 and 4.4.1p0 to no avail. php5 5.0.4p0 works... so, is the problem a php4 problem or with the php4 packages themselves? I use the recommended php.ini for both versions (with minor changes). -- Allie Daneman Allnix,LLC. http://www.allnix.net
Re: FYI: new mailing list anti-spam measures
I've had good results using Spamhaus XBL/SBL...if you want to be aggressive use Spews level 2. On Tue, November 8, 2005 08:38, Bob Beck wrote: This is horseshit. the SORBS dialup list is inaccurate as hell. it includes my legitimately purchased static business IP's. They are not dialups, and it is impossible to get SORBS to correct it. It also includes my ISP's mail server, and in any case relaying mail through a smarthost such as my isp's mail server negates the benefit I pay for by running my own to ensure that TLS end to end keeps conversations between myself and other developers on OpenBSD-to-OpenBSD and not trivally likeley to be sniffed and archived. This is throwing out the baby with the bathwater, and IMO, unneccesary. -Bob * Todd C. Miller [EMAIL PROTECTED] [2005-11-03 14:32]: The mailing list server is now using several blacklists from the SORBS project (http://www.sorbs.net) to prevent spam. So far it is using the SORBS zombie, spam, web form and dialup blacklists. This does mean that people sending mail from a dynamic IP address (cable modem, dynamic DSL or dialup) will need to relay messages through their ISP's mail server. This will probably have the biggest impact on cable modem users running their own SMTP servers. - todd
Re: OpenBSD's 10th birthday
Thanks go out to Theo and Co. I wish more of the world gave you guys the recognition you deserve..congrats on the milestone and thank you for a great OS. On Oct 18, 2005, at 4:23 PM, Jorge Bras wrote: Happy Birthday OpenBSD From Portugal. Congratulations to Theo, Developers, Community. Beers, -- ./bras
