Re: Similar USB scanners
http://www.sane-project.org/ On 6/22/07, Karel Kulhavy [EMAIL PROTECTED] wrote: Hello uscanner(4) supports Epson Perfection 610U,636U,1200U,1200U Photo, but I can get only Perfection V10. Or HP ScanJet - supported 4100C, 5200C, 5300C, 6300C, but I can get only 2400C. Is there a chance that Epson Perfection V10 or HP ScanJet 2400C will be not only recognized, but will also work with the driver? CL
Re: files system of OpenBSD
On 6/21/07, Peter N. M. Hansteen [EMAIL PROTECTED] wrote: Alex Kwan [EMAIL PROTECTED] writes: I am first time to install Open BSD, is the OpenBSD files' system same as FreeBSD? many thanks! They share a common ancestry and the teams tend to look at the good bits produced by the others from time to time, so with a bit of luck it is possible you could take your /home partition with you from one to the other. Only if you create a new disklabel for OpenBSD. Installing OpenBSD inside a FreeBSD fdisk is not supported, and a terrible idea. I recently did this when I installed fbsd over a snapshot and then reinstalled the snapshot unknowingly keeping the fbsd fdisk. It does not work. Your shit will break. C will not start at sector 0. Your partitions outside the disklabel will have completely fucked offsets. It's bad, bad, bad, bad, bad. Don't do it. Jimmy.
uath kernel panic on sparc64
+0x87ac uath_attachhook(40001a82000, 11, 13f4750, 1c09e60, 7ffe, 1800) at uath_attachho ok+0xa8 dohooks(1810ce0, 2, 0, 13f4750, 7ffe, 1800) at dohooks+0x6c main(0, 10f9820, e0008074, 1800, 50, 1009614) at main+0x9c4 print_dtlb(80, 800, 100, fff63a70, 18, 27) at print_dtlb+0x44c ddb ps PID PPID PGRPUID S FLAGS WAIT COMMAND 13 0 0 0 30x100200 crypto_wa crypto 12 0 0 0 30x100200 aiodoned aiodoned 11 0 0 0 30x100200 syncer update 10 0 0 0 30x100200 cleanercleaner 9 0 0 0 30x100200 reaper reaper 8 0 0 0 30x100200 pgdaemon pagedaemon 7 0 0 0 30x100200 pftm pfpurge 6 0 0 0 30x100200 usbtsk usbtask 5 0 0 0 30x100200 usbdly usb0 4 0 0 0 30x100200 timeoutsensors 3 0 0 0 30x100200 bored syswq 2 0 0 0 30x100200 kmallockmthread 1 0 0 0 3 0 initexec swapper *0 -1 0 0 7 0x80200 swapper ddb Jimmy.
Re: uath kernel panic on sparc64
On 6/9/07, Jimmy Mitchener [EMAIL PROTECTED] wrote: I have a TRENDnet TEW-444UB that is supported under the atheros driver, and works wonderfully on i386. Sparc64 however, is a different story. If I plug the device in to an already running system, it is recognized and nothing seems to go terribly wrong, I can even scan with `ifconfig -M uath0`. However, it cannot associate with any access points. And if I have the device in at startup I get a pretty nasty kernel panic. It is also worth noting that I am not actually detaching the device when those events come up in the dmesg. It is now panicking when plugged in to an already running system. OpenBSD/sparc64 (blade.my.domain) (console) login: root Password: Last login: Sat Jun 9 12:34:56 on console OpenBSD 4.1-current (GENERIC) #1312: Fri Jun 8 16:54:02 MDT 2007 Welcome to OpenBSD: The proactively secure Unix-like operating system. Please use the sendbug(1) utility to report bugs in the system. Before reporting a bug, please try to reproduce it with the latest version of the code. With bug reports, please try to ensure that enough information to reproduce the problem is enclosed, and if a known fix for it exists, include that as well. You have new mail. Terminal type? [sun] # ifconfig lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33168 groups: lo inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 gem0: flags=8822BROADCAST,NOTRAILERS,SIMPLEX,MULTICAST mtu 1500 lladdr 00:03:ba:0d:c5:38 media: Ethernet autoselect (none) status: no carrier enc0: flags=0 mtu 1536 uath0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:14:d1:c1:b7:24 groups: wlan media: IEEE802.11 autoselect status: no network ieee80211: nwid 100dBm # ifconfig -M uath0 uath0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500 lladdr 00:14:d1:c1:b7:24 groups: wlan media: IEEE802.11 autoselect status: no network ieee80211: nwid 100dBm nwid Drittz's Home chan 6 bssid 00:06:25:f8:78:08 5dB 11M pollable,privacy nwid Poolie chan 6 bssid 00:0c:41:6f:a3:b6 7dB 11M pollable,privacy nwid HomeNet chan 10 bssid 00:0d:93:80:ab:bc 21dB 54M privacy,short_slottime nwid leftsquareA chan 2 bssid 00:0f:3d:aa:32:43 34dB 54M privacy nwid Rick chan 11 bssid 00:11:50:c8:7d:6e 8dB 54M privacy,short_preamble,short_slottime lladdr 00:14:bf:33:ea:0a 0dB 11M cache nwid leftsquare chan 6 bssid 00:16:01:4a:bb:64 30dB 54M privacy,short_slottime nwid Shutit chan 1 bssid 00:17:3f:a1:11:d4 10dB 54M privacy,short_slottime nwid linksys chan 6 bssid 00:1a:70:4a:bc:35 3dB 54M privacy,short_slottime nwid linksys_SES_35661 chan 6 bssid 00:1a:70:57:c9:81 9dB 54M privacy,short_slottime lladdr 06:86:ee:21:b5:6a 0dB 11M cache lladdr 07:8d:cc:52:c9:81 0dB 54M cache lladdr 20:b2:73:4a:b0:bf 0dB 54M cache lladdr 26:be:dd:9e:e9:7c 0dB 54M cache lladdr 29:4e:ff:2f:9b:f6 0dB 54M cache lladdr 60:88:1d:75:87:a7 0dB 11M cache lladdr 92:93:48:4f:2c:f7 0dB 11M cache lladdr 97:cf:6f:df:ed:ff 0dB 54M cache # data error type 32 sfsr=0 sfva=4d646000 afsr=8400 afva=1fe02000600 tf=0x400175ab9c0 panic: data fault: pc=1347558 addr=4d646000 sfsr=0 kdb breakpoint at 1376fa0 Stopped at Debugger+0x4: nop RUN AT LEAST 'trace' AND 'ps' AND INCLUDE OUTPUT WHEN REPORTING THIS PANIC! DO NOT EVEN BOTHER REPORTING THIS WITHOUT INCLUDING THAT INFORMATION! ddb trace ddb ps PID PPID PGRPUID S FLAGS WAIT COMMAND 29265 1 29265 0 3 0x4082 ttyin ksh 28527 1 28527 0 30x80 select cron 18180 1 18180 0 3 0x40180 select sendmail 8236 1 8236 0 30x80 select sshd 20166 1 20166 0 3 0x180 select inetd 14255 2873 2873 83 3 0x180 poll ntpd 2873 1 2873 0 30x80 poll ntpd 5393 1026 1026 73 2 0x180 syslogd 1026 1 1026 0 30x88 netio syslogd 13 0 0 0 30x100200 crypto_wa crypto 12 0 0 0 30x100200 aiodoned aiodoned 11 0 0 0 20x100200 update 10 0 0 0 30x100200 cleanercleaner 9 0 0 0 30x100200 reaper reaper 8 0 0 0 30x100200 pgdaemon pagedaemon 7 0 0 0 30x100200 pftm pfpurge 6 0 0 0 30x100200 usbtsk usbtask 5 0 0 0 30x100200 usbevt usb0 *4 0 0 0 70x100200 sensors 3 0 0 0 3
Re: Invalid partition table (was /usr/obj partition AWOL)
On 6/8/07, Theo de Raadt [EMAIL PROTECTED] wrote: c: 7168196763 unused 0 0 # Cyl 0*- 4461 d: 210445263 4.2BSD 2048 16384 132 # Cyl 0*- 130 Ah -- your 'c' partition does not start at 0. It's an old FreeBSD partition on your disk. That should not work; it is bunk. We are removing the code from the kernel that allows it to work, because it requires extra stupid checks all over the place to support an old 386BSD stupidity. It appears I have the very same issue, though with a much larger offset. I created an OpenBSD partition on an existing partition table towards the end of the drive. [EMAIL PROTECTED]:~ sudo fdisk wd0 Disk: wd0 geometry: 11978/255/63 [192426570 Sectors] Offset: 0 Signature: 0xAA55 Starting Ending LBA Info: #: idC H S -C H S [ start: size ] 0: E8 15356 77 8 - 229721 118 4 [ 246698998: 3443776305 ] Unknown ID 1: 010 0 1 - 267349 89 4 [ 0: 0 ] DOS FAT-12 2: 000 0 0 -0 0 0 [ 0: 0 ] unused 3: 3F0 0 1 - 267349 89 4 [ 0: 0 ] Unknown ID [EMAIL PROTECTED]:~ sudo disklabel wd0 # /dev/rwd0c: type: ESDI disk: ad0s3 label: flags: bytes/sector: 512 sectors/track: 63 tracks/cylinder: 255 sectors/cylinder: 16065 cylinders: 11978 total sectors: 192426570 rpm: 3600 interleave: 1 trackskew: 0 cylinderskew: 0 headswitch: 0 # microseconds track-to-track seek: 0 # microseconds drivedata: 0 8 partitions: # sizeoffset fstype [fsize bsize cpg] a:208845 17395 4.2BSD 2048 16384 13 # Cyl 9683 - 9695 b: 4192965 155766240swap # Cyl 9696 - 9956 c: 36869175 17395 unused 0 0 # Cyl 9683 - 11977 d:401625 159959205 4.2BSD 2048 16384 25 # Cyl 9957 - 9981 e: 20964825 160360830 4.2BSD 2048 16384 328 # Cyl 9982 - 11286 f: 11100915 181325655 4.2BSD 2048 16384 328 # Cyl 11287 - 11977 disklabel: warning, unused partition i: size 1413615339 offset -2147417768 disklabel: warning, unused partition j: size -196918 offset 402701520 disklabel: warning, unused partition k: size 503365533 offset 1463353529 disklabel: warning, unused partition l: size -1407327343 offset -1382830702 disklabel: warning, unused partition m: size -2013104760 offset -1065155243 disklabel: warning, unused partition n: size 402998726 offset 268977606 disklabel: warning, unused partition o: size -400023365 offset 17760440 disklabel: warning, unused partition p: size 1086332943 offset -356507121 [EMAIL PROTECTED]:~ Jimmy.
Re: Problem installing 4.1/sparc64 on Sun Blade 100
On 6/7/07, Landry Breuil [EMAIL PROTECTED] wrote: 2007/6/7, Landry Breuil [EMAIL PROTECTED]: 2007/5/31, Ted Bullock [EMAIL PROTECTED]: I had the same problem until I updated the firmware to 4.17.1 -Ted Landry Breuil wrote: Hello, i'm trying to install OpenBSD/Sparc64 on a Blade 100, tried various methods/versions (all described in INSTALL.sparc64), they all fail after 'Trying bsd' and stall. Where can i have a start point to debug what happens/doesn't happen ? I've tried : - 3.9-release Cdrom (original version from wim) - 4.1-release cd41.iso taken from mirror/4.1 - 4.1-current cd41.iso taken from snapshots - knowing cd-install are not really good on blades, i tried netbooting bsd.rd 4.1-release and -current, using another obsd box as rarpd/tftpd/rpc.bootparamd/nfsd/mountd server, set like described in diskless(8). The weird thing is that ofwboot.net is taken from tftpd after 'boot net bsd.rd', ran, i see the first twolines : OpenBSD 4.1 (obj) #0: -build-date- [EMAIL PROTECTED] :/usr/src/sys/arch/sparc64/compile/GENERIC then Trying bsd and stalled-nothing more on the screen. but i see no mount requests in mountd -d output. i tried following https://www-s.acm.uiuc.edu/wiki/comments/OpenBSD+Sparc64#notesdocumentation too. security-mode is set to none in OBP, and firmware version is 4.0.45, i don't think it needs a firmware upgrade. Could it be a hardware problem ? How can i get more debug information ? Thanks for any hints. Next step will be trying to use a floppy (gee, i have to find a floppy reader and a disk), or putting the disk in my U10 (which works fine) and try to do the install on it. Landry Upgrading to 4.17.1 didn't solved the issue here i'm still having the same problem, kernel hanging just after Trying bsd, either using netboot or cdrom and various versions. I had no problem installing -current on Ultra60, even with a really older firmware version.. Really annoying. If anyone has a hint to debug this issue.. I'm starting to suspect hardware, because even with this OBP upgrade i didn't manage to start the install of FreeBSD/sparc, NetBSD/sparc64, and various flavors of Linux/Sparc. All the installers start a kernel, and hangs at various places in kernel startup. It's not a question of serial console redirection, because i can ping the host when the boot starts, and it doesn't respond to pings as soon as it stalls during boot process. (And i don't have a db25 compatible serial cable..). Could it be memory ? hard disk ? Box has a 256mb + 512mb , and i don't know a way to test this memory without os on the box. Smth like memconf http://myweb.cableone.net/4schmidts/memconf.html or memtest for sparc would be appreciated. I'll try maybe setenv diag-switch? true setenv diag-level max reset but i really have no more ideas to boot this Blade 100. (and various flavors of openbsd works really well on Ultra 10 and ultra 60 here) Landry I'm afraid it doesn't really help you much, but I got 4.1 installed on a Blade 100 from the CDs without a hitch :D Just so you know it's not an issue specific to all blades I guess. Jimmy.
Snapshots src/sys tarballs
Is there a reason snapshots do not currently come with a src/sys.tar.gz as releases do? I would think this to be quite useful for people wishing/requiring building their own kernels, and using snapshots, as it would help to minimize damage from kernel/userland (and packages) coming out of sync. I'm sure there's a good reason for them not being included, but I'm just curious as to what it is, I was unable to find anything in the archives. Jimmy.
Re: Snapshots src/sys tarballs
anyway, snapshots aren't always quite the same as you get from -current source. That's my point really. I would think it to be advantageous to have a snapshot of the code just as that snapshot was created (no pun intended). But yes, you could avoid the pitfalls I described previously by following source-changes. I was just curious as to why it wasn't included as it is for releases.
Re: Failing to get [EMAIL PROTECTED] in X
On 5/12/07, Michael Oliver [EMAIL PROTECTED] wrote: On 5/12/07, Alex Holst [EMAIL PROTECTED] wrote: Quoting Tobias Weingartner [EMAIL PROTECTED]: xdpyinfo | grep dim tori$ xdpyinfo | grep dim dimensions:1680x1050 pixels (474x303 millimeters) And my current xorg.conf with what I believe are correct HorizSync and VertRefresh: http://a.mongers.org/x/xorg.conf This config outputs [EMAIL PROTECTED] -- I prefer the dark of the night, after midnight and before four-thirty, when it's more bare, more hollow.http://a.mongers.org I had a similar problem a few weeks back. It turned out that the 'nv' driver didn't support wide screen resolutions. However, I installed the 'nvidia' drivers and it worked out just fine. Perhaps this problem is similar. Alex, I'm still inclined to believe it's a horiz/vsync issue. Especially since you're getting 56Hz as the output. Also, you claim your rates are correct, yet you clearly have not checked the documentation, as many here have told you to do. Looking at your xorg.conf I see you have a Dell E228WFP display. It took me all of five seconds to find that you were using the wrong refresh rates. I really can't even believe I'm bothering to link this for you, as it took mere seconds to find on Google. Now please, read the damn specs. http://accessories.us.dell.com/sna/productdetail.aspx?c=usl=ens=dhscs=19sku=320-5205 Jimmy.
Re: Failing to get [EMAIL PROTECTED] in X
Have you tried starting X several times in a row? I have this issue when I connect my external display to my laptop. Sometimes X comes up at [EMAIL PROTECTED] and sometimes it is at 56Hz and looks awful. The only solution seems to be to restart X several times, and eventually it gets it right. Sometimes it's not required, other times I have to restart X nearly 20 times. It seems pretty hit and miss. Hopefully this will improve with the new 965GM drivers =) On 5/12/07, Alex Holst [EMAIL PROTECTED] wrote: Quoting Jimmy Mitchener ([EMAIL PROTECTED]): Also, you claim your rates are correct, yet you clearly have not checked the documentation, as many here have told you to do. Looking at your xorg.conf I see you have a Dell E228WFP display. It took me all of five seconds to find that you were using the wrong refresh rates. I really can't even believe I'm bothering to link this for you, as it took mere seconds to find on Google. Now please, read the damn specs. http://accessories.us.dell.com/sna/productdetail.aspx?c=usl=ens=dhscs=19sku=320-5205 The very first xorg.conf and Xorg.log I posted in this thread contained those HorizSync and VertRefresh settings. Running with them currently outputs [EMAIL PROTECTED] (that Hz count isn't a typo. It's now 55, where it before was 56). This is part of the reason I'm so baffled this doesn't Just Worktm: During my first attempts without a config file, DDC seems to detect all the right settings but for some reason decided to skip the 1680x1050 mode. The hints about using 915resolution to massage the i810 driver seemed to be the missing bit, but even with the following settings, the monitor won't go above 1280x1024, hence I'm still interested in any comments that might help resolve this: tori$ sudo 915resolution -l Intel 800/900 Series VBIOS Hack : version 0.5.2 Chipset: 855GM BIOS: TYPE 1 Mode Table Offset: $C + $29f Mode Table Entries: 39 Mode 30 : 640x480, 8 bits/pixel Mode 32 : 800x600, 8 bits/pixel Mode 34 : 1024x768, 8 bits/pixel Mode 38 : 1280x1024, 8 bits/pixel Mode 3a : 1600x1200, 8 bits/pixel Mode 3c : 1680x1050, 8 bits/pixel Mode 41 : 640x480, 16 bits/pixel Mode 43 : 800x600, 16 bits/pixel Mode 45 : 1024x768, 16 bits/pixel Mode 49 : 1280x1024, 16 bits/pixel Mode 4b : 1600x1200, 16 bits/pixel Mode 4d : 1680x1050, 16 bits/pixel Mode 50 : 640x480, 32 bits/pixel Mode 52 : 800x600, 32 bits/pixel Mode 54 : 1024x768, 32 bits/pixel Mode 58 : 1280x1024, 32 bits/pixel Mode 5a : 1600x1200, 32 bits/pixel Mode 5c : 1680x1050, 32 bits/pixel I've also tried variations on the above, including setting every single mode to 1680x1050. -- I prefer the dark of the night, after midnight and before four-thirty, when it's more bare, more hollow.http://a.mongers.org
Re: Failing to get [EMAIL PROTECTED] in X
On 5/10/07, Alex Holst [EMAIL PROTECTED] wrote: Quoting Jimmy Mitchener ([EMAIL PROTECTED]): Try `sudo 915resolution 4d 1680 1050 32` If 4d is the only one that has 1680x1050 available you only have 16bit color, and you're trying to use 24, so it's not changing anything. Thanks for commenting; this is the relevant output from 915resolution: tori$ sudo 915resolution -l | grep 1680 Mode 3a : 1680x1050, 8 bits/pixel Mode 3c : 1680x1050, 8 bits/pixel Mode 4b : 1680x1050, 16 bits/pixel Mode 4d : 1680x1050, 32 bits/pixel Mode 5a : 1680x1050, 24 bits/pixel Mode 5c : 1680x1050, 32 bits/pixel With those settings, I get [EMAIL PROTECTED] - but again xwininfo -root shows that my actual desktop size is 1680x1050. Have you checked your HorizSync/VertRefresh? I'd be willing to bet those are not correct. Check your display's specs. My Samsung 206BW uses the following: HorizSync 30 - 81 VertRefresh 56 - 75 Jimmy.
Re: Failing to get [EMAIL PROTECTED] in X
Try `sudo 915resolution 4d 1680 1050 32` If 4d is the only one that has 1680x1050 available you only have 16bit color, and you're trying to use 24, so it's not changing anything. On 5/10/07, Alex Holst [EMAIL PROTECTED] wrote: Quoting Ted Unangst ([EMAIL PROTECTED]): On 5/10/07, Alex Holst [EMAIL PROTECTED] wrote: I see from the archives that I'm not alone with this problem, but I have found no solution: Trying to get the VGA port on my X40 to deliver [EMAIL PROTECTED] to my Dell E228WFP and failing. the i810 driver really doesn't like using resolutions that aren't in its BIOS. use 915resolution to add a 1680 1050 mode. I have actually tried that a few days ago, running 915resolution from rc.securelevel like pkg/DESCR says with no positive effect. I didn't know which mode to change, so I even booted my system at securelevel -1 and manually set every mode to 1680 1050 mode with absolutely no effect (other than changing those Mode outputs in Xorg.log). Just now I changed mode 4d to 1680x1050 and restarted X. My display is now running [EMAIL PROTECTED] .. showing a massive, unscrollable 1680x1050 desktop. This message is hence cramped and insanely hard to read while I type :) tori$ sudo 915resolution -l | grep 4d Mode 4d : 1680x1050, 16 bits/pixel tori$ xwininfo -root | grep geometry -geometry 1680x1050+0+0 Any more suggestions as to what I'm doing wrong? -- I prefer the dark of the night, after midnight and before four-thirty, when it's more bare, more hollow.http://a.mongers.org
Re: cvsync broken?
I'm pretty sure this is all related to ualberta and www blowing up, causing a bit of a ripple effect. It'll likely take some time for the mirrors to sync back up Jimmy. On 5/10/07, Jason Crawford [EMAIL PROTECTED] wrote: On 5/10/07, Claus Assmann [EMAIL PROTECTED] wrote: On Thu, May 10, 2007, Hannah Schroeter wrote: Just trying to cvsync my stuff. And it wants to remove quite much: hostname cvsync.de.openbsd.org same problem with anoncvs1.usa.openbsd.org and anoncvs3.usa.openbsd.org I talked with Todd Miller about this (anoncvs3 specifically) and he said it is a problem with the upstream mirror that appears to be fixed now (my cvsup server doesn't delete stuff anymore). Jason
Re: what's the best way to configure a 3.75TB datastore?
I believe in using the right tool for the job and, to be honest I wouldn't use OpenBSD for a large data store like that. If it were me I'd get a real SAN or NAS but you have what you have so my top choice would be an OS that you can run an Volume manager on, Linux with LVM2 or Veritas VM. FreeBSD has some Volume Management capabilities but I have no experience using them. Sorry if my answer offends you. I'm inclined to agree here, at least until OpenBSD gets stable ffs2 support (allowing filesystems larger than 1tb), but until then, I'd really recommend going the GNU/Linux or FreeBSD route. Although I'd probably favor GNU/Linux with LVM for a large data store. Jimmy.
Re: order
I am in the exact same situation (cc has not been charged). I got an email confirmation right away, but austin@ has not responded to any of my emails, cc has not been charged, and I have no idea what the status of my order is On 5/8/07, Kyle George [EMAIL PROTECTED] wrote: On Tue, 8 May 2007, Paolo Supino wrote: Does anyone know how I can contact Austin@ except emails? My CDs and book have yet to arrive (preorderd on the day orders were opened) and I'm not getting any feedback/reaction via email :-( I placed my order on 4/27 (4.1, another tshirt, some posters). I haven't received it, nor has my CC been charged. When I ordered 4.0 I got a shipping confirmation email really fast the next day, but not this time. I sent an email a few days ago but haven't heard back. I hope all is well. -- Kyle George
Re: order
My CC was just charged 54.92, and I can only hope it's my 4.1 shipment :D On 5/8/07, Greg Thomas [EMAIL PROTECTED] wrote: I'm in Los Angeles, I ordered two CD sets on 4/13, no book because I hadn't noticed it, and I received my order on Cinco de Mayo. G
Re: spamd unnecessarily abrasive?
Rogier Krieger wrote: Humans shouldn't be connecting to port 25 in any case, unless when they know what they're doing (and know why they're connecting). End user connections are what the submission port (589) is for. # grep submission /etc/services submission 587/tcp submission 587/udp
ox remove
Have a rice with soup as breakfast, and cycle my way to school. Its more popular name is D-bol. so I got to go to give him a helping hand. and nothing special up till now. The series follows four unique individuals, two male-to-females and two female-to-males as they struggle to transition from one gender to the other in the midst of a grueling school year. Only several weeks to go before I have a big presentation. Nothing special then. The series follows four unique individuals, two male-to-females and two female-to-males as they struggle to transition from one gender to the other in the midst of a grueling school year. Well, we will have to wait for several more weeks before we got to know of that. But it also opened schisms that challenged the very identity of the Log Cabin itself. Basically an updated version of Abbot and Costello, only now with bong smoke and heavy metal pumping through their veins, The D undercut their goofy leanings with their genuine musical skill. My junior is having a problem with his NetBSD. I think the rise was related with a rumor regarding Mohd. Anyway, if you still wanna read them, just search it for yourself, remember, you've been warned. It has been so long since our last karaoke, and I was like. Went to school, and was greeted by a teacher asking for help in Microdude Excel. The dialogue is all sung, peppered with mystical allusions and self-serious progressive-rock goofiness. What I need now is another linux computer, to the program. I stayed as long as I could in the futon before going to take a hot shower. However he was desparate, and I felt bad if I dont help him. From both of the stories, the tapping was done by stalkers. and might change due time. but I'm not totally sold on either of those points, either. that's how I finish off my weekend, by watching Smallville. Enough telling about my wish list on my blog. Carlin is the sort of detective who notices things like tiny bits of plastic washed up on the shore and explosive residue on the underside of a nearby bridge. It has been so long since our last karaoke, and I was like. At first reluctant to join forces, Kyle and Jack find the only way to blow minds is to form the greatest band in the world: Tenacious D. Still, they're breaching into others privacy. Race to the room again and quickly putting on thick clothes. never have thought that thisday would came. He doesn't seem to be the same Thomas as the Inquisition Thomas, nor is it the same Isabel . but that just not that. My cough is almost gone, but still have some sore throats once in a while. It has been so long since our last karaoke, and I was like. [demime 1.01d removed an attachment of type image/gif which had a name of afflict.gif]
Re: hints for scanning msdosfs patters?
vladas wrote: due to the first 10Mb being gone, I do not expect to find any valid fs anymore. What I still hope for are individual files from the 3Gb image file that I have. I mean e.g. exe's, or dll's, zip's, lha's etc should have their size written in them or their data structures, not only fs, as well. If there where more than one partition on the disk the problem isn't as hard though. I've had great success previously with gpart which you can find at http://www.stud.uni-hannover.de/user/76201/gpart/. The program tries to guess how the partition-table looked by scanning the disk for known filesystem-signatures, and will often be able to recreate all partitions following the first one in cases like yours. Best Regards, Jimmy
arpbalance + pfsync synchronization problems
Hi
We are trying to use two firewalls (actually three, but to reproduce the
problems we reduced it to the simplest case on our test-machines) using
arpbalance and pfsync, and are experiencing stale connections after a while
when the packets flowing from server to client pass fw-2 and the packets from
client to server pass fw-1.
To reproduce the problem we just SSH from the server (which is arpbalanced to
fw-2) to the client (which is arpbalanced to fw-1) and cat a large file. The
connection first works and then hangs every time after we send the large file.
Is this expected (i.e, is the situation where different firewalls are used for
incoming and outgoing packets in the same TCP-session supported)?
The following pf.conf was used on both firewalls.
pf.conf:
ext_if=fxp0
int_if=em1
all_if={fxp0, em1}
admin_if=rl0
sync_if=em0
set debug misc
set skip on lo0
set skip on $admin_if
set skip on $int_if
pass quick on $sync_if proto pfsync
pass quick on $all_if proto carp keep state
pass out quick on $ext_if proto tcp from any to any port 22 keep state
pass in quick on $ext_if inet proto icmp keep state
block log quick all
In the log for fw-1 we get lots of messages like below (the last two are
repeated):
Jun 7 16:38:39 lab6 last message repeated 2 times
Jun 7 16:39:43 lab6 /bsd: pfsync: ignoring stale update (4) id:
4486e33b0004 creatorid: 69a3e6f5
Jun 7 16:39:56 lab6 last message repeated 9 times
Jun 7 16:39:58 lab6 /bsd: pf: BAD state: TCP 194.9.94.201:13599
194.9.94.201:13599 194.42.55.190:22 [lo=428695180 high=428763873 win=16384
modulator=0 wscale=0] [lo=777455537 high=777455546 win=33304 modulator=0
wscale=1] 4:2 A seq=777455537 ack=428697265 len=1448 ackskew=-2085 pkts=0:36
dir=in,rev
Jun 7 16:39:58 lab6 /bsd: pf: State failure on: 1 |
and the state with id 4486e33b0004 looks like:
all tcp 194.9.94.201:13599 - 194.42.55.190:22 FIN_WAIT_2:ESTABLISHED
[428697586 + 66607] wscale 0 [777456985 + 14936] wscale 1
age 00:02:31, expires in 00:13:49, 0:1 pkts, 0:1500 bytes
id: 4486e33b0004 creatorid: 69a3e6f5
In the log for fw-2 we get (repeatedly):
Jun 7 16:39:30 lab5 /bsd: pfsync: ignoring stale update (2) id:
4486e33b0004 creatorid: 69a3e6f5
Jun 7 16:39:30 lab5 /bsd: pfsync: ignoring stale update (3) id:
4486e33b0004 creatorid: 69a3e6f5
and the state with id 4486e33b0004 looks like:
all tcp 194.9.94.201:13599 - 194.42.55.190:22 TIME_WAIT:TIME_WAIT
[428697586 + 63131] wscale 0 [777439162 + 32759] wscale 1
age 00:02:08, expires in 00:00:42, 52:0 pkts, 5108:0 bytes, rule 3
id: 4486e33b0004 creatorid: 69a3e6f5
Does anyone have any bright ideas of what to try or what the messages mean?
Thanks in advance for any help, it would be really appreciated.
Best regards,
Jimmy
Re: arpbalance + pfsync synchronization problems
Hi
I forgot to mention that we use 3.9-release.
Regards,
Jimmy
- Original Message -
From: Jimmy Mdkeld | Loopia AB [EMAIL PROTECTED]
To: misc@openbsd.org
Sent: Wednesday, June 07, 2006 5:06 PM
Subject: arpbalance + pfsync synchronization problems
Hi
We are trying to use two firewalls (actually three, but to reproduce the
problems we reduced it to the simplest case on our test-machines) using
arpbalance and pfsync, and are experiencing stale connections after a while
when the packets flowing from server to client pass fw-2 and the packets from
client to server pass fw-1.
To reproduce the problem we just SSH from the server (which is arpbalanced to
fw-2) to the client (which is arpbalanced to fw-1) and cat a large file. The
connection first works and then hangs every time after we send the large file.
Is this expected (i.e, is the situation where different firewalls are used for
incoming and outgoing packets in the same TCP-session supported)?
The following pf.conf was used on both firewalls.
pf.conf:
ext_if=fxp0
int_if=em1
all_if={fxp0, em1}
admin_if=rl0
sync_if=em0
set debug misc
set skip on lo0
set skip on $admin_if
set skip on $int_if
pass quick on $sync_if proto pfsync
pass quick on $all_if proto carp keep state
pass out quick on $ext_if proto tcp from any to any port 22 keep state
pass in quick on $ext_if inet proto icmp keep state
block log quick all
In the log for fw-1 we get lots of messages like below (the last two are
repeated):
Jun 7 16:38:39 lab6 last message repeated 2 times
Jun 7 16:39:43 lab6 /bsd: pfsync: ignoring stale update (4) id:
4486e33b0004 creatorid: 69a3e6f5
Jun 7 16:39:56 lab6 last message repeated 9 times
Jun 7 16:39:58 lab6 /bsd: pf: BAD state: TCP 194.9.94.201:13599
194.9.94.201:13599 194.42.55.190:22 [lo=428695180 high=428763873 win=16384
modulator=0 wscale=0] [lo=777455537 high=777455546 win=33304 modulator=0
wscale=1] 4:2 A seq=777455537 ack=428697265 len=1448 ackskew=-2085 pkts=0:36
dir=in,rev
Jun 7 16:39:58 lab6 /bsd: pf: State failure on: 1 |
and the state with id 4486e33b0004 looks like:
all tcp 194.9.94.201:13599 - 194.42.55.190:22 FIN_WAIT_2:ESTABLISHED
[428697586 + 66607] wscale 0 [777456985 + 14936] wscale 1
age 00:02:31, expires in 00:13:49, 0:1 pkts, 0:1500 bytes
id: 4486e33b0004 creatorid: 69a3e6f5
In the log for fw-2 we get (repeatedly):
Jun 7 16:39:30 lab5 /bsd: pfsync: ignoring stale update (2) id:
4486e33b0004 creatorid: 69a3e6f5
Jun 7 16:39:30 lab5 /bsd: pfsync: ignoring stale update (3) id:
4486e33b0004 creatorid: 69a3e6f5
and the state with id 4486e33b0004 looks like:
all tcp 194.9.94.201:13599 - 194.42.55.190:22 TIME_WAIT:TIME_WAIT
[428697586 + 63131] wscale 0 [777439162 + 32759] wscale 1
age 00:02:08, expires in 00:00:42, 52:0 pkts, 5108:0 bytes, rule 3
id: 4486e33b0004 creatorid: 69a3e6f5
Does anyone have any bright ideas of what to try or what the messages mean?
Thanks in advance for any help, it would be really appreciated.
Best regards,
Jimmy
Change of carpdev not working
Hi I have a CARP-interface working nicely on 3.9-generic and am trying to change the carpdev to another interface on the same network segment, but it is not working. The problem seems to be that the multicast-address 224.0.0.18 is removed from the interface, resulting in the different servers all thinking that they are master on the interface. Before the change I have: # ifconfig carp3 carp3: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 carp: BACKUP carpdev em2 vhid 1 advbase 1 advskew 200 groups: carp inet 194.42.55.175 netmask 0xffe0 broadcast 194.42.55.191 # netstat -anI carp3 NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls carp3 1500 Link 00:00:5e:00:01:01 176100 00 0 0 carp3 1500 194.42.55.1 194.42.55.175 224.0.0.1 224.0.0.18 176100 00 0 0 then i change carpdev using: # ifconfig carp3 carpdev em3 and afterwards I get: # ifconfig carp3 carp3: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500 carp: MASTER carpdev em3 vhid 1 advbase 1 advskew 200 groups: carp inet 194.42.55.175 netmask 0xffe0 broadcast 194.42.55.191 # netstat -anI carp3 NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls carp3 1500 Link 00:00:5e:00:01:01 176166 00 0 0 carp3 1500 194.42.55.1 194.42.55.175 224.0.0.1 176166 00 0 0 Am I doing anything wrong, and does anyone have an idea of another working way to do this? I will probably work around the problem by destroying the interface and then recreate it, but I just felt that the way I did it should have worked. Thanks in advance for any help or explanations. Best regards, Jimmy
Re: Why Perl (a request to the developer sof the Ports-System)
On Fri, Dec 02, 2005 at 06:14:18PM +0100, Sebastian Rother wrote: I scrited with pdksh all the time lon for now. Now I'm interested into learning another Scripting-Language. I can't decide between Perl and Python. Perl has a lot modules but it's GPLed. Python on the other hand is under a BSD-compatible License and has less modules. http://www.perl.com/download.csp#srclic It is NOT gpl'ed. I would like to know some facts why Perl is in the base system on a BSD even Python is a BSD-licensed alternativ. Does it have some advantages I don#t know? I read a lot papers about both languages. Also CS-related Papers but I can't decide. I advice to try both, Python is nice in it's syntax and it's harder to misuse, I mean, there are a LOT of Perl programmers out there that do theire best to make theire program unreadable, to say it softly. The downside about Perl (in my opinion) is the whole you can do it in more than one way and you can do it on a single line spirit. I would be happy if some developers would tell me why they prefere Perl. Even if the answer would be: It's more common or: It existed at first. I use Perl because it's easier to get the hard things done. I also think it has better documentation than Python does; probably because Python is more OO minded than Perl and I don't like it to much, except for things where it has it's use. On the other hand, I don't like the Perl way it returns it's values from functions based on the context it's being called and Python does better type checking. Kind regards, Sebastan I advice to learn both, you can browse the Python tutorial in one day, and Perl shouldn't be any harder if you learn it from the supplied documentation 'perldoc perl' and 'perldoc perlintro' it a good start. Kind regards, Jimmy Scott -- The Four Horsemen of the Apocalypse: Death, Famine, War, and SNMP [demime 1.01d removed an attachment of type application/pgp-signature]
Re: Why Perl (a request to the developer sof the Ports-System)
On Fri, Dec 02, 2005 at 01:02:32PM -0500, Jason Crawford wrote: On 12/2/05, Jimmy Scott [EMAIL PROTECTED] wrote: On Fri, Dec 02, 2005 at 06:14:18PM +0100, Sebastian Rother wrote: I scrited with pdksh all the time lon for now. Now I'm interested into learning another Scripting-Language. I can't decide between Perl and Python. Perl has a lot modules but it's GPLed. Python on the other hand is under a BSD-compatible License and has less modules. http://www.perl.com/download.csp#srclic It is NOT gpl'ed. According to this: http://www.openbsd.org/cgi-bin/cvsweb/src/gnu/usr.bin/perl/README?rev=1.8con tent-type=text/x-cvsweb-markup it is GPL'd. It's the first time I read that. But you are right if OpenBSD has chosen to redistribute it under the GPL instead of the artistic license, which seems to be the case: http://www.openbsd.org/cgi-bin/cvsweb/src/gnu/usr.bin/perl/Copying I would like to know some facts why Perl is in the base system on a BSD even Python is a BSD-licensed alternativ. Does it have some advantages I don#t know? I read a lot papers about both languages. Also CS-related Papers but I can't decide. I advice to try both, Python is nice in it's syntax and it's harder to misuse, I mean, there are a LOT of Perl programmers out there that do theire best to make theire program unreadable, to say it softly. The downside about Perl (in my opinion) is the whole you can do it in more than one way and you can do it on a single line spirit. Definitely try both, as no one can really tell you which language is better for your situation except...you. And if you try both, you'll definitely learn more than if you only tried one. There are always downsides and upsides to any language, and the best way to judge which fits your situation the most is just to dive in and get dirty. snip Jason -- The Four Horsemen of the Apocalypse: Death, Famine, War, and SNMP [demime 1.01d removed an attachment of type application/pgp-signature]
install 3.8 on hppa using lif38.fs
Hello, I tried to install a few machines with OpenBSD/hppa 3.8 without success. In the past I installed them with OpenBSD 3.6, switched them the hard way to use the serial console (using machine) and threw away the horrible big and noisy (and compatible :/) screens. When I boot the lif38.fs image, the boot prompt appears (where I can still enter some commands), the kernel boots, ask me to install or upgrade, and this is where I got stuck. I could not enter anything. I tried booting with a keyboard attached to the HIL or PS/2 (depending on machine) without success (still using rs232 as console). I tried using lif36.fs to verify if this ever worked, and it did. Is there something new not mentioned in the INSTALL file I should know about? or any solutions to fix the netboot? Maybe I overlooked something. The machines I've tried: 9000/715/64 9000/712/80 9000/712/100 Kind regards, Jimmy Scott console/dmesg log from a 9000/712/80: BOOT_ADMIN Information Processor revision 2.4100MHz Instruction Cache Size: 131072 Data Cache Size: 131072 Memory Size: 128 MB Built in floating point coprocessor Board Serial Number 401105L1MV BootRom Version2.2 auto boot on auto search off fastboot off Primary boot path:scsi.6.0 Alternate boot path: lan.00-00.0.0 Console path: rs232.9600.8.none LAN Station Addresses: 080009-7DFA86 080009-FF BOOT_ADMIN boot lan isl Booting OpenBSD/hppa BOOT 0.8 boot booting lf0a:/bsd: 2084864+454656+2666496+389120=0x6d9148 SPID bits: 0x0, error = -2 pdc_coproc: 0xc0, 0xc0; model d rev 1 [ bsd ELF symbol table not valid: symtab unaligned ] [ no symbol table formats found ] Copyright (c) 1982, 1986, 1989, 1991, 1993 The Regents of the University of California. All rights reserved. Copyright (c) 1995-2005 OpenBSD. All rights reserved. http://www.OpenBSD.org OpenBSD 3.8 (RAMDISK) #275: Sat Sep 10 17:22:17 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/hppa/compile/RAMDISK HP 9000/712/100 (King Gecko) PA-RISC 1.1c real mem = 134217728 (524288 reserved for PROM, 8785920 used by OpenBSD) avail mem = 108199936 using 8421 buffers containing 13393920 bytes of memory mainbus0 (root) [flex fff8] pdc0 at mainbus0 power0 at mainbus0: DR25 mem0 at mainbus0 offset ffbf000: viper rev 0, size 128MB cpu0 at mainbus0 offset ffbe000 irq 31: PCXL L1-A 100MHz, FPU PCXL (CMOS-26B) rev 1 cpu0: 128K(32b/l) Icache, 128K(32b/l) wr-back Dcache, 64 coherent TLB, 8 BTLB lasi1 at mainbus0 offset 50 irq 27: rev 3.0 lasi0 at mainbus0 offset 10 irq 28: rev 3.0 gsc0 at lasi0 gsckbc0 at gsc0 offset 8100 irq 26 gsckbc1 at gsc0 offset 8000 irq 26 floppy controller at gsc0 (type a sv 83 mod 1 hv d0) offset a000 not configured Advanced audio (ext.) at gsc0 (type a sv 7b mod 1 hv d0) offset 4000 not configured lpt0 at gsc0 offset 2000 irq 7 com0 at gsc0 offset 5000 irq 5: ns16550a, 16 byte fifo ie0 at gsc0 offset 7000 irq 8: LASI/i82596CA v1.0, address 08:00:09:7d:fa:86 osiop0 at gsc0 offset 6000 irq 9: NCR53C710 rev 2, 40MHz, SCSI ID 7 scsibus0 at osiop0: 8 targets osiop0: target 6 now using 8 bit 10 MHz 8 REQ/ACK offset xfers sd0 at scsibus0 targ 6 lun 0: QUANTUM, EMPIRE_1080S, 1242 SCSI2 0/direct fixed sd0: 1029MB, 2874 cyl, 8 head, 91 sec, 512 bytes/sec, 2109376 sec total sti0 at mainbus0 offset 800 irq 11: HPA208LC1280 rev 8.04;7, ID 0x2B4DED6D40A00499 sti0: 2048x1024 frame buffer, 1280x1024x8 display, offset 0x0 sti0: 8x16 font type 1, 16 bpc, charset 0-255 gsc1 at lasi1 com1 at gsc1 offset 5000 irq 5: ns16550a, 16 byte fifo biomask 0xb netmask 0x2b ttymask 0x3f boot path: 2/0/2.1.be8a0050.8dd1dd7b.74ee3403.ac15.ac100128 class=4098 flags=0 hpa=0xf0107000 spa=0x0 io=0x84ec rd0: fixed, 5120 blocks wsdisplay0 at sti0 mux 1 wsdisplay0: screen 0 added (default, vt100 emulation) rootdev=0x300 rrootdev=0x900 rawdev=0x902 WARNING: clock gained 81 days -- CHECK AND RESET THE DATE! erase ^?, werase ^W, kill ^U, intr ^C, status ^T (I)nstall, (U)pgrade or (S)hell? -- The Four Horsemen of the Apocalypse: Death, Famine, War, and SNMP [demime 1.01d removed an attachment of type application/pgp-signature]
Re: A question about the adduser.perl file
Quoting steven mestdagh [EMAIL PROTECTED]:
On Mon, Nov 28, 2005 at 04:30:25PM +0100, Said Outgajjouft wrote:
$ENV{'PATH'} = /sbin:/bin:/usr/sbin:/usr/bin;
and that is where pwd_mkdb will be found.
Hmm that doesn't answer my question.
The answer I am looking for could be one of the following.
1. The PATH environment is local to the process and cannot be tampered
with.
2. The PATH environment is global but if someone can tampered with it
you are screwed
anyway so it doesn't matter that the pwd_mkdb is called using a
relative path.
3. The PATH environment however very slim can be tempered with so
adduser instead calls
/evilfiles/pwd_mkdb then adding an absolute path sounds like
something that should be done.
$ENV is inherited from the parent process, but $ENV{'PATH'} is set
explicitly inside the script, so it will have the desired value
mentioned above.
Disclaimer: http://www.kuleuven.be/cwis/email_disclaimer.htm
The script is not designed to be run by anyone else as root.
Which is a good idea since it's interactive and tainting is not enabled.
If you really need to add users as part of running a privileged binary
as an unprivileged user, you should use/make an API for this.
passwd(5) is a good place to start looking.
PS: There are much more things than $PATH to worry about.
Kind regards,
Jimmy Scott
This message has been sent through ihosting.be
To report spamming or other unaccepted behavior
by a iHosting customer, please send a message
to [EMAIL PROTECTED]
Re: pf keep state on 3.8
On Mon, Nov 14, 2005 at 11:41:17AM -0500, Jim Razmus wrote:
* Jimmy Scott [EMAIL PROTECTED] [051113 12:35]:
[snipped]
I finaly had some time to rearrange my network, and split it into 3
parts: LAN, DMZ, WAN.
Basicly, the LAN (172.20) may not access the DMZ (172.16), but host
172.20.1.10 can. the DMZ may not access the LAN, and both can go to
the
WAN.
[snipped]
[snipped]
You might find this helpful:
http://www.openbsd.org/faq/pf/filter.html#state
[snipped]
Thank you very much for your time looking at the problem. This time I
will give out the pf.conf file itself to all people interested in the
final solution I made from it (snipped from personal things and/or
replaced with example rules, eg: port 22 on host exmp).
I took this approach because the example mentioned in my book was
not that restrictive towards local traffic (between DMZ and LAN).
For those who didn't bought it yet and want all topics by hand,
Building Firewalls with OpenBSD and PF is a very good book.
Here mine goes:
##
## MACRO DEFINITIONS##
##
# Interfaces
ext_if=sis0
dmz_if=sis1
lan_if=sis2
# Hosts
enix=172.20.1.10
exmp=172.16.1.10
# Groups
staff={ $enix }
##
##TABLE DEFINITIONS ##
##
# Unwanted people
table intruders file /etc/pf.deny
##
##OPTIONS ##
##
set require-order yes
set block-policy drop
set optimization normal
set loginterface $ext_if
##
##TRAFFIC NORMALIZATION ##
##
# Normalize every packet, and give random id's on outgoing
scrub in all no-df
scrub out all no-df random-id
##
##BANDWIDTH MANAGEMENT ##
##
# TODO
##
##TRANSLATION ##
##
# NAT the internal networks
nat on $ext_if from $lan_if:network - ($ext_if:0)
nat on $ext_if from $dmz_if:network - ($ext_if:0)
##
##REDIRECTION ##
##
# Redirect certain incomming requests
#rdr on $ext_if proto tcp from any to ($ext_if:0) port 22 - $exmp port 22
# No redirects from LAN to DMZ and the other way around
no rdr on $lan_if proto tcp to $dmz_if:network
no rdr on $dmz_if proto tcp to $lan_if:network
# Redirect ftp requests through our ftp proxy with NAT
rdr on $lan_if proto tcp to ! $lan_if port ftp - 127.0.0.1 port 8021
rdr on $dmz_if proto tcp to ! $dmz_if port ftp - 127.0.0.1 port 8021
##
##PACKET FILTERING ##
##
### DEFAULT RULES
# Block all packets
block in log all
block out log all
# Block broadcast and intruders quick without further processing
block in log quick on $ext_if from any to ($ext_if:broadcast)
block in log quick on $ext_if from intruders to any
### LOOPBACK
# Allow all valid loopback traffic quick
pass quick on lo0 from lo0:network
### LAN INTERFACE
# Allow net traffic except to DMZ, modulate tcp
pass in on $lan_if inet proto tcp from $lan_if:network to ! $dmz_if:network \
modulate
state
pass in on $lan_if inet proto {udp,icmp} from $lan_if:network to \
! $dmz_if:network keep state
# Allow staff members to access the DMZ
pass in on $lan_if inet proto {tcp,udp,icmp} from $staff \
to $dmz_if:network keep state
# Allow the firewall to access the LAN (for debugging problems)
#pass out on $lan_if inet proto {tcp,udp,icmp} from $lan_if \
# to $lan_if:network keep state
### DMZ INTERFACE
# Allow net traffic except to LAN, modulate tcp
pass in on $dmz_if inet proto tcp from $dmz_if:network to ! $lan_if:network
Re: pf keep state on 3.8
Quoting Jim Razmus [EMAIL PROTECTED]: * Jimmy Scott [EMAIL PROTECTED] [051113 12:35]: Hi misc@, I finaly had some time to rearrange my network, and split it into 3 parts: LAN, DMZ, WAN. Basicly, the LAN (172.20) may not access the DMZ (172.16), but host 172.20.1.10 can. the DMZ may not access the LAN, and both can go to the WAN. But for some reason, when I create state from 172.20.1.10 to 172.16.x.x; the packet comming back gets blocked which should not happen because the state would be checked first and the state really is created?! I tried setting 'set state-policy floating' explicit, but no advance. Someone who knows what the problem is here? I had a ruleset with a bunch of 'quick' rules before instead of this, but had the same problem. [diagnostics snipped] I think you might have the concept of in and out rules confused. Visualize yourself sitting in the computer between the three interfaces. From that perspective, in rules mean a packet coming from a remote host to you through one of those interfaces. Conversely out rules mean a packet leaving from the local machine to some remote host. Give something like this a whirl for starters. Caution, I have not tested these! You also likely need to allow packets from the Internet into your DMZ. # pf.conf [proposed firewall rules snipped] HTH, Jim Aah, I see what I did wrong, since I used in the passed 'pass all on sis2', I never realized that state creation on an 'in' will only match an 'out' for traffic in the other direction right? So for traffic from sis2 to sis1 I will need to create states on the 'in' of sis2 and states on the 'out' of sis1 if I got it right. Also thanks for your example, I will take a look at it later when I'm back home to figure things out. Kind regards, Jimmy Scott This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: OpenSSH, ssh-agent question
On Mon, Oct 31, 2005 at 11:15:14AM +0100, Sebastian Rother wrote: I've a question because ssh-agent. Why do I've to start an ssh-agent for each Console even sudo works for all consoles if I entered the password once? Maybe I missed something in the configuration but I don#t think so. Is there any special reason for this? If not: Wouldn#t that be a perfect change-request? =) Kind regards, Sebastian This is just the way ssh-agent works, it uses environment variables. There are solutions for situations where you have X, and where you don't. If you are using X, you could just edit your xinitrc or xsession to start your window maker with ssh-agent: /usr/bin/ssh-agent /usr/X11R6/bin/ion3 If you are not using X, you have to edit your shells profile to use a program to start/resume some sort of session for it. You can use keychain for example, maintained by a gentoo developer, or you can use my ssh-agent-session script if you don't need the extra stuff or don't like keychain, or you can make something yourself. The script I am using can be found here: http://pub.devbox.be/devel/ssh-agent-session/ Any remarks or suggestions are appreciated. Kind regards, Jimmy Scott -- People usually get what's coming to them ... unless it's been mailed. [demime 1.01d removed an attachment of type application/pgp-signature]
Re: strcpy to strlcpy warnings
Quoting John N. Brahy [EMAIL PROTECTED]: First of all, it's been a while since I've written c, so I'm curious if this is a bulk change I can do. I'm changing code that another programmer did, but we got rid of him for doing stupid things. So I'm auditing his source code on a few of our customer's sites and I came across a strcat. And when I recompile it, I got warnings saying that it's almost always misused, then I read the manpage of strlcat and it seemed simple enough to do this: strcat(mailbox, MAILSPOOLHOME); strlcat(mailbox, MAILSPOOLHOME, sizeof(mailbox)); Should I look out for anything special or is it safe to do this everywhere I see strcat or strcpy? if 'mailbox' was malloc()'ed, that won't work as expected since sizeof is or can be implemented as a macro. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: TERM=wsvt25 with wscons?
On Mon, Oct 24, 2005 at 08:53:35PM +0100, Stuart Henderson wrote: --On 25 October 2005 05:10 +1000, [EMAIL PROTECTED] wrote: What I'd like to do is have my TERM environment variable set to wsvt25 for all users forever, and XTERM set to xterm-xfree86 for all users forever. The environment variable is still called TERM in X. I've grepped through /etc and I can't find where environment variables are set, either. So (my user account shell is bash) I set TERM=wsvt25 in .bash_profile, and when I login I get the declare messages, but it ignores TERM and XTERM that I set, with TERM set to vt220. I don't know bash well but in ksh, you need to make the xterm a login shell in order to use .profile (by setting loginShell resource to true, or using -ls in the xterm command line). Displaying some output will prove whether it's being run. Also, did you remember to export the variable? I like colorls and color syntax highlighting when using emacs on a console, so that's why I want wsvt25. You might be able to use some xterm variant at the console too, actually. Works for me with mutt on the console of a Zaurus.. For bash, as I use it: .bash_profile - interactive, login shell .bashrc - interactive, non login shell Since I want all interactive bash shells to have the same environment, I just (sym)link .bash_profile to .bashrc bash(1) has more detailed information. Kind regards, Jimmy Scott -- People usually get what's coming to them ... unless it's been mailed. [demime 1.01d removed an attachment of type application/pgp-signature]
Re: Portmap non-local set / unset attempt
Quoting Clint M. Sand [EMAIL PROTECTED]: On Thu, Sep 22, 2005 at 07:09:12PM -0600, Theo de Raadt wrote: People keep yammering this bullshit about Security is a process. Bullshit! Lies! It's about paying attention to the frigging details when they are right in front of your face. And it is very clear other vendors do not pay attention to the details, considering the work I did here was talked about all over BUGTRAQ back in that month. No wonder these vendors and their blogboys have to have this Security is a process mantra to protect themselves from looking bad. Security is a process is intended to mean 2 things. One is that the idea that you can set and forget anything and think it's somehow secure is a joke. To secure a network includes at a minimum, keeping up with vendor patches for example. Processes like patch management help keep systems secure. It does not say Security is ONLY a process. Secondly, it is meant to refute the moronic idea that some admins seem to have is that buying any product makes you secure. Prevelant is the idea for example that if you have a firewall then you are now secure. Or, I have Norton AntiVirus so now my PC is secured. No, no no. You are playing the same semantic games that avoid responsibility at the ENGINEERING and PRODUCT DEVELOPMENT STAGES. It's so very very Microsoft. Just like the air-conditioning technicians I keep firing because they can't read schematics and charts. Which is why I now know MORE about air-conditioners than most of the technicians who come here. The phrase, and everything you said, is all excuses for the vendors. It IS POSSIBLE to set something up and have it be secure and NOT TOUCH IT, because many people have OpenBSD machines running older releases running without any modification for YEARS now, RISK FREE, without having to update ANY THING. No, you can put an openbsd box up and leave it for years with root login enabled and password for a password. It takes more than correct code. It's correct code plus correct usage. I think the GOBBLES sshd exploit is proof enough that set and forget is not risk free. Security is everything you've ever said, plus a process. If it is secure, it doesn't need a process. So why would security be a process again? Because of the vendors making mistakes and fix it later? Jimmy Scott This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: OpenBSD website Design.
Quoting Siju George [EMAIL PROTECTED]: Hi, One of my friends sent me this new OpenBSD website design he created. Please have a look at it :-D http://mayuresh.freeshell.org/openbsd/ Thankyou so much Kind Regards Siju It's clean and far more viewable in (e)links. I would change the page if it were mine, but I'm afraid people are not willing to change it. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: mount_null gone?
Quoting Gijs Nijholt [EMAIL PROTECTED]: What's particularly strange, it's that the command (/sbin/mount_null) exists, but on executing the following command: [EMAIL PROTECTED] sudo mount_null /extended/ /home/gijs/fileserver/ ...I get the following error: mount_null: /home/gijs/fileserver/: Filesystem not supported by kernel Both filesystems are FFS, and it worked really well in 3.6. Can anyone tell me how to fix this problem? On 9/4/05, Gijs Nijholt [EMAIL PROTECTED] wrote: Hello, After some digging through mailinglist archives, it seems that mount_null is no longer in the GENERIC since OpenBSD 3.7 (and mount_union as well) This is not mentioned in the release notes as far as I can verify. Why is it gone and what is the alternative? (I need a way to mount my /extended partition into /home/users and /var/www/users/user, which are both chrooted in respectively ftp and apache) Or how can I get mount_null back without reinstalling the system? Thanks in advance. Gijs Nijholt This was planned imho, a few months after reporting this: http://www.monkey.org/openbsd/archive/bugs/0404/msg00119.html I got response from Otto that nullfs isn't supported anymore. I think the code is to old and hasn't a maintainer to support it any further (I could be wrong). Take a look at mount_nullfs(8) from freebsd for example: BUGS THIS FILE SYSTEM TYPE IS NOT YET FULLY SUPPORTED (READ: IT DOESN'T WORK) AND USING IT MAY, IN FACT, DESTROY DATA ON YOUR SYSTEM. USE AT YOUR OWN RISK. BEWARE OF DOG. SLIPPERY WHEN WET. This code also needs an owner in order to be less dangerous - serious hackers can apply by sending mail to [EMAIL PROTECTED] and announcing their intent to take it over. Kind Regards, Jimmy Scott This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: sysctl tuning for maximum network performance
Quoting Diego Augusto Dalmolin [EMAIL PROTECTED]: Where I could find a material for studding how to improve OBSD network performance to maximum, using sysctl, kernel compilation, etc... -- Diego Augusto Dalmolin (41) 9648-0882 Search the archives, this has been discussed not so long ago ... To keep it short: use the defaults, this isn't Linux. Kind regards, Jimmy Scott This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: termcap and xterm with xterm-color bad results
On Fri, Aug 26, 2005 at 04:38:04PM +, Christian Weisgerber wrote: To: misc@openbsd.org From: [EMAIL PROTECTED] (Christian Weisgerber) Subject: Re: termcap and xterm with xterm-color bad results Date: Fri, 26 Aug 2005 16:38:04 + (UTC) Jimmy Scott [EMAIL PROTECTED] wrote: Maybe I shouldn't be using xterm-color at all for these colors to work? I haven't looked into this, but for the xterm shipped with XFree86/X.org, xterm-xfree86 seems to be the most up-to-date capability description. Thank you, it seems a good alternative since almost any machine (unless it's been equiped with a proprietary X server) has this entry. -- People usually get what's coming to them ... unless it's been mailed. [demime 1.01d removed an attachment of type application/pgp-signature]
termcap and xterm with xterm-color bad results
Hello misc@, I have this very strange behaviour in xterm with the TERM var set to xterm-color and using a colored application, for example mutt and irssi. Let me put mutt as example, mails below the indicator are white, while those above are gray. irssi just has random pieces white. It's even worse on a white terminal. If I set the TERM to 'screen' there is no problem, unless i'm using the screen application and started it in an xterm which has xterm-color as TERM set. To reproduce: xterm -fg gray60 -bg black (and a normal xterm too) TERM=xterm-color; export TERM And start mutt in it with at least this .muttrc: color normal default default color status white blue color indicator cyan blue Maybe I shouldn't be using xterm-color at all for these colors to work? I could set it to TERM screen permanent, but I'm quite sure it will then again break on other machines and/or applications. Correct me if I'm wrong, I have very little understanding of the termcap file and how therse terminal capabilities are handled. Kind regards, Jimmy Scott -- People usually get what's coming to them ... unless it's been mailed. [demime 1.01d removed an attachment of type application/pgp-signature]
Re: Text editor
Quoting Matthias Kilian [EMAIL PROTECTED]: On Sat, Aug 06, 2005 at 08:52:17PM +0200, Mike Henker wrote: Hi yesterday I installed OpenBSD 3.7 seem to be all ok, my question is how I can edit the files of the operating system,what editor you recommand? (I m a newbie) If isn t in the default installation how can I install it? I saw the FAQ and the man but I can t find info about this doubt. Thanks Personally, I prefer vi(1), but for newbies, mg(1) may be a better choice. Ciao, Kili You can also install nano from ports or package, nice and simple editor. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: Requesting an change in the installer
Quoting Bernd Schoeller [EMAIL PROTECTED]: On Fri, Aug 05, 2005 at 01:24:41PM +0200, Artur Grabowski wrote: Nick Holland [EMAIL PROTECTED] writes: Roger Neth Jr wrote: ... Did this newbie (me) do this wrong? cd / cp bsd bsd.old cp bsd.mp bsd #reboot PERSONALLY, I prefer to call the single processor kernel bsd.sp, rather than bsd.old. bsd.old is most commonly the previous kernel before I tried to build my own and hosed the heck out of everything. :) But yes, other than the one small detail, this is my prefered way. Altering boot.conf is dangerous. Art's story isn't the only one I've heard along those lines from developers. [a story about some Linux admin deleting /etc/*] Everybody knows that there are tons of ways to shoot yourself into the foot. But at least OpenBSD should not help you in doing it. More and more machines require the bsd.mp kernel, and I think there should be a hint of how to do the switch. This would prevent home-brewed solutions and keep the installations consistent. My recommendation would be: - call the single user kernel /bsd.sp - add a hard link from /bsd.sp to /bsd - add a description to 'man afterboot' for changing the default kernel by doing 'rm /bsd ln /bsd.mp /bsd' This would give a clean setup for switching the kernel. Also it is clear that by booting /bsd.sp, you always boot the single processor kernel, by booting /bsd.mp, you always boot the multi processor kernel. By booting /bsd you boot the configured kernel. Bernd [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc] I disagree the hardlink, since it would change bsd.* after using 'config'. Kind regards, Jimmy Scott This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: suggested /etc/skel/ modifications
Quoting Moritz Grimm [EMAIL PROTECTED]: Ever heart of a multiuser system where one user shouldn't be able to acces the files of another user? Not all users are thinking about this issue and many forget to change the modes for confidential files. IMO, But keeping confidential files on true multiuser systems is stupid ... I disagree, How about a heavy build server for different projects? Or shared (insert word)-solutions. You cannot be to careful with your files, one day, as normal user, you will forget to chmod() that file ... IMNSHO. And you cannot hide anything from the administrator. You depend on how well the admin is capable of securing the rest of the system and not have it rooted by a 3rd party(*) including the other users. Then you shouldn't use the system at all. It is not because something might be/become a flaw, that you don't have to care about the rest. Every extra layer of defence _does_ protect you from a subset of attacks, even how small that subset is, it counts. If I create new users for the sake of them having a Unix shell, then it's something different, but this is so very rare ... and there really shouldn't be any confidential things on such a multiuser shell server. Who says that the admin is any more trustworthy than some other, regular users? They are not, but most of the time they give you confidential information that you must use on that box that you use for stuff other users may not access, like database/pop3 information. Moritz *: OpenBSD had only one remote hole in the default install, but a few more (very few, relatively speaking) local root vulnerabilities. And there are also still numerous ways of breaking OpenBSD inspite of sane defaults and exploit mitigation techniques in place. In the end, it simply boils down on properly assessing risks, giving a box a defined purpose (even if it's an eierlegende Wollmilchsau(**)), and enforcing an appropriate security and usage policy. Solving social problems with social means is often enough the only viable way. **: Rough translation: A fictional all-purpose animal; a sow that grows wool, gives milk and lays eggs. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: suggested /etc/skel/ modifications
Quoting Hannah Schroeter [EMAIL PROTECTED]: Hello! On Thu, Jul 28, 2005 at 06:50:19PM +0200, [EMAIL PROTECTED] wrote: Quoting Moritz Grimm [EMAIL PROTECTED]: Ever heart of a multiuser system where one user shouldn't be able to acces the files of another user? Not all users are thinking about this issue and many forget to change the modes for confidential files. IMO, But keeping confidential files on true multiuser systems is stupid ... I disagree, How about a heavy build server for different projects? Or shared (insert word)-solutions. You cannot be to careful with your files, one day, as normal user, you will forget to chmod() that file ... Then, for that system, you can modify the default install as said. And if your stuff is very secret, even among co-workers, check out encryption options. I agree to modify that system for it and not to push these changes to everybody, I only disagreed the point of view being mentioned. A solutions like chmod 700 /etc/skell is good enough for me, since starting to change sources will force you to keep track of any changes to it and applying patches every time etc etc. However I'd prefer to work in a place where the employees could in basic trust each other wrt the products of their respective work. Same here, this isn't true however where I'm working. Software company .. external people .. source code. [...] Kind regards, Hannah. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: suggested /etc/skel/ modifications
Quoting Moritz Grimm [EMAIL PROTECTED]: shell server. Who says that the admin is any more trustworthy than some other, regular users? They are not, but most of the time they give you confidential information that you must use on that box that you use for stuff other users may not access, like database/pop3 information. Huh, why would I give shell access (or even a system account) to anyone but fellow admins on a database or mail server in the first place? From a user perspective, I for one would rather Post-It[tm] complicated and unmemorizeable credentials to my monitor(*) where I have at least some idea about who might get to see them instead of putting them into my home directory on my own server at home, let alone some server someplace else. I was talking about the multi user systems you mentioned in combination why I should trust the admin from it, you use passwords on them which you get from those administrators, being a password to read your mailbox from there, or being a password from a personal database or from a system you need to check. It isn't the first time I needed to use password X to log into system Y to access service A with password B. Not mentioning I needed an account on server C to be able to connect to system Y. Where server C and Y are those multi user systems you mentioned. On the other hand, I never agreed with making it the default, only for providing a method to change that behaviour without hacking the code. Which I didn't knew it could be fixed with changing the permissions of just /etc/skel once, I only read the adduser code near the permissions. If someone did agree integrating it, I would be happy to read the next/prev lines and make the patch myself. J. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: suggested /etc/skel/ modifications
Quoting Dave Feustel [EMAIL PROTECTED]: 1) add the line umask 077 to .profile 2)add the file .kshrc containing at least the line set -o vi Also modify adduser so that the home directory permissions of new users are set to drwx-- instead of drwxr-xr-x I agree with including a configurable solution for #3. #1 however would break a lot of software installations etc. #2 would also be subject of personal preferences imho. This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: OpenBSD-specific Perl problem
Quoting Dan Brosemer [EMAIL PROTECTED]:
I've been trying to make a forking daemon in Perl with little success. The
whole daemon terminates as soon as the first child terminates.
This exact same code performs as I'd expect (ie perfectly) on other
platforms (even including win32/ActivePerl) and so I'm wondering what it is
about my OpenBSD-3.7/i386 machine that is causing the parent to eat itself.
I've included the code below in case anyone can spot anything. I would
really appreciate any insight that can be offered.
Thanks in advance.
-Dan
It's also on FreeBSD 5.x
I think from perl version 5.8 on, you should be very careful with this.
It looks like there isn't much to find about it, but I noticed that
any signal linked to a subroutine, could escape the line being executed.
IMHO this is only during waiting functions, although I'm not sure
since I can't find any documentation about it, maybe a bug?
You could fix this example like this:
while ($new_sock = $main_sock-accept() || (my $sigrecv = $!{ECHILD}))
{
if (defined $sigrecv) {
next;
}
using a system call tracer like truss/strace will show more answers on this
This message has been sent through ihosting.be
To report spamming or other unaccepted behavior
by a iHosting customer, please send a message
to [EMAIL PROTECTED]
Via K8T800 based mainboards
Hello all, Since my problems with the ATI RS400 chipset, I'm looking for something else that has a bit more quality and is better supported. Does anyone has good experience with the Abit AV8-3rd Eye mainboard? or with the Via K8T800 Pro chipset in general? My main concearn is the write speed to the PCI bus, since it has to be equiped with a hardware raid controller. Other suggestions are welcome as long as it is an AMD socket 939 mainboard. Thnx, Jimmy Scott This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Re: Slow PCI write access to twe or pciide
The dmesg for OpenBSD/i386 (-CURRENT) shows things about the IRQ routing table, anyone who can provide me some more info about what could be going wrong? OpenBSD 3.7-current (GENERIC) #204: Fri Jun 24 21:25:02 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD Athlon(tm) 64 Processor 3200+ (AuthenticAMD 686-class, 512KB L2 cach e) 1.99 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CF LUSH,MMX,FXSR,SSE,SSE2 cpu0: AMD Powernow: FID VID TTP TM real mem = 468230144 (457256K) avail mem = 420102144 (410256K) using 4278 buffers containing 23515136 bytes (22964K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(37) BIOS, date 02/03/05, BIOS32 rev. 0 @ 0xf9fd0 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 70102 dobusy 1 doidle 1 pcibios0 at bios0: rev 3.0 @ 0xf/0xcd44 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfcc10/272 (15 entries) pcibios0: bad IRQ table checksum pcibios0: PCI BIOS has 17 Interrupt Routing table entries pcibios0: PCI Exclusive IRQs: 3 5 10 11 12 pcibios0: no compatible PCI ICU found pcibios0: Warning, unable to fix up PCI interrupt routing pcibios0: PCI bus #2 is the last bus WARNING: can't reserve area for I/O APIC. WARNING: can't reserve area for Local APIC. WARNING: can't reserve area for BIOS PROM. bios0: ROM list: 0xc/0xd000 0xd/0x1000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 ATI RS480 Host rev 0x00 ppb0 at pci0 dev 1 function 0 ATI RS480 PCIE rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 5 function 0 ATI Radeon XPRESS 200 rev 0x00 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ohci0 at pci0 dev 19 function 0 ATI IXP400 USB rev 0x00: irq 3, version 1.0, l egacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: ATI OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 4 ports with 4 removable, self powered ohci1 at pci0 dev 19 function 1 ATI IXP400 USB rev 0x00: irq 3, version 1.0, l egacy support usb1 at ohci1: USB revision 1.0 uhub1 at usb1 uhub1: ATI OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub1: 4 ports with 4 removable, self powered ehci0 at pci0 dev 19 function 2 ATI IXP400 USB2 rev 0x00: irq 3 usb2 at ehci0: USB revision 2.0 uhub2 at usb2 uhub2: ATI EHCI root hub, class 9/0, rev 2.00/1.00, addr 1 uhub2: 8 ports with 8 removable, self powered ATI IXP400 SMBus rev 0x04 at pci0 dev 20 function 0 not configured pciide0 at pci0 dev 20 function 1 ATI IXP400 IDE rev 0x00: DMA (unsupported), channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: Maxtor 5T040H4 wd0: 16-sector PIO, LBA, 39083MB, 80043264 sectors pciide0: channel 1 ignored (not responding; disabled or no drives?) pcib0 at pci0 dev 20 function 3 ATI IXP400 ISA rev 0x00 ppb1 at pci0 dev 20 function 4 ATI IXP400 PCI rev 0x00 pci2 at ppb1 bus 2 twe0 at pci2 dev 2 function 0 3ware Escalade IDE RAID rev 0x01: irq 11 twe0: Escalade V1.3 scsibus0 at twe0: 16 targets sd0 at scsibus0 targ 0 lun 0: 3WARE, Host drive #00, SCSI2 0/direct fixed sd0: 152636MB, 152636 cyl, 64 head, 32 sec, 512 bytes/sec, 312598784 sec total rl0 at pci2 dev 3 function 0 Realtek 8139 rev 0x10: irq 10 address 00:11:09:fa :e5:b5 rlphy0 at rl0 phy 0: RTL internal phy VIA VT6306 FireWire rev 0x80 at pci2 dev 4 function 0 not configured ATI IXP400 AC'97 rev 0x00 at pci0 dev 20 function 5 not configured pchb1 at pci0 dev 24 function 0 AMD AMD64 HyperTransport rev 0x00 pchb2 at pci0 dev 24 function 1 AMD AMD64 Address Map rev 0x00 pchb3 at pci0 dev 24 function 2 AMD AMD64 DRAM Cfg rev 0x00 pchb4 at pci0 dev 24 function 3 AMD AMD64 Misc Cfg rev 0x00 isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 sysbeep0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec biomask fb6d netmask ff6d ttymask ffef pctr: user-level cycle counter enabled dkcsum: wd0 matched BIOS disk 80 dkcsum: sd0 matched BIOS disk 81 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302 This message has been sent through ihosting.be To report spamming or other unaccepted behavior by a iHosting customer, please send a message to [EMAIL PROTECTED]
Slow PCI write access to twe or pciide
Hi all, I have a problem with the RS480M2-IL mainboard from MSI. The problem is that I cannot write with more than 29 MB/s to a disk on any add-on PCI IDE/RAID controller, even not to a raid 0 array. I even get only 14 MB/s to a raid 1 array. I tried to attach a 3ware Escalade 7006-2 with 2 disks. I even tried some unknown IDE controller (ITE chip) on the PCI slots. I both tried OpenBSD/i386 and OpenBSD/amd64. The onboard IDE controller is forced to use DMA mode, since it was 10x slower otherwise because the controller did not report that DMA could be used. I tried the disks and controllers on another mainboard, and I could get at least 53 MB/s on the raid 0 array and 34 MB/s to an individual disk. Speeds were mesured with 'dd if=/dev/zero of=/mnt/100mb bs=1m count=100' This is the dmesg from the OpenBSD/amd64 installed were i had to include the twe driver myself. The same problem exists though with OpenBSD/i386's GENERIC kernel. Every suggestion is welcome, I already tried to tweak anything in the bios, doesn't change a thing, FreeBSD also has this same problem. OpenBSD 3.7 (CUSTOM) #0: Wed Jun 22 19:49:34 CEST 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/CUSTOM real mem = 518582272 (506428K) avail mem = 433680384 (423516K) using 12711 buffers containing 52064256 bytes (50844K) of memory mainbus0 (root) cpu0 at mainbus0: (uniprocessor) cpu0: AMD Athlon(tm) 64 Processor 3200+, 1990.06 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,NXE,MMXX,FFXSR,LONG,3DNOW2,3DNOW cpu0: 64KB 64b/line 2-way I-cache, 64KB 64b/line 2-way D-cache, 512KB 64b/line 16-way L2 cache cpu0: ITLB 32 4KB entries fully associative, 8 4MB entries fully associative cpu0: DTLB 32 4KB entries fully associative, 8 4MB entries fully associative pci0 at mainbus0 bus 0: configuration mode 1 pchb0 at pci0 dev 0 function 0 vendor ATI, unknown product 0x5950 rev 0x00 ppb0 at pci0 dev 1 function 0 vendor ATI, unknown product 0x5a3f rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 5 function 0 vendor ATI, unknown product 0x5954 rev 0x00 wsdisplay0 at vga1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ohci0 at pci0 dev 19 function 0 vendor ATI, unknown product 0x4374 rev 0x00: irq 7, version 1.0, legacy support usb0 at ohci0: USB revision 1.0 uhub0 at usb0 uhub0: ATI OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 4 ports with 4 removable, self powered ohci1 at pci0 dev 19 function 1 vendor ATI, unknown product 0x4375 rev 0x00: irq 7, version 1.0, legacy support usb1 at ohci1: USB revision 1.0 uhub1 at usb1 uhub1: ATI OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub1: 4 ports with 4 removable, self powered vendor ATI, unknown product 0x4372 (class serial bus subclass SMBus, rev 0x04) at pci0 dev 20 function 0 not configured pciide0 at pci0 dev 20 function 1 vendor ATI, unknown product 0x4376 rev 0x00: DMA, (partial support), channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0: Maxtor 5T040H4 wd0: 16-sector PIO, LBA, 39083MB, 80043264 sectors pciide0: channel 1 ignored (not responding; disabled or no drives?) pciide0:0:0: using DMA data transfers vendor ATI, unknown product 0x4377 (class bridge subclass ISA, rev 0x00) at pci0 dev 20 function 3 not configured ppb1 at pci0 dev 20 function 4 vendor ATI, unknown product 0x4371 rev 0x00 pci2 at ppb1 bus 2 twe0 at pci2 dev 2 function 0 3ware Escalade IDE RAID rev 0x01: irq 11 twe0: Escalade V1.3 scsibus0 at twe0: 16 targets sd0 at scsibus0 targ 0 lun 0: 3WARE, Host drive #00, SCSI2 0/direct fixed sd0: 152636MB, 19458 cyl, 255 head, 63 sec, 512 bytes/sec, 312598784 sec total rl0 at pci2 dev 3 function 0 Realtek 8139 rev 0x10: irq 10 address 00:11:09:fa:e5:b5 rlphy0 at rl0 phy 0: RTL internal phy VIA VT6306 FireWire rev 0x80 at pci2 dev 4 function 0 not configured pchb1 at pci0 dev 24 function 0 AMD AMD64 HyperTransport rev 0x00 pchb2 at pci0 dev 24 function 1 AMD AMD64 Address Map rev 0x00 pchb3 at pci0 dev 24 function 2 AMD AMD64 DRAM Cfg rev 0x00 pchb4 at pci0 dev 24 function 3 AMD AMD64 Misc Cfg rev 0x00 isa0 at mainbus0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0 (mux 1 ignored for console): console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 sysbeep0 at pcppi0 dkcsum: wd0 matched BIOS disk 80 dkcsum: sd0 matched BIOS disk 81 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302 # pcitweak -l PCI: Probing config type using method 1 PCI: Config type is 1 PCI: PCI scan (all values are in hex) PCI: 00:00:0: chip 1002,5950 card 1462,7141 rev 00 class 06,00,00 hdr 00 PCI: 00:01:0: chip 1002,5a3f card , rev 00 class 06,04,00 hdr 01 PCI: 00:13:0: chip 1002,4374 card 1462,7141 rev 00 class 0c,03,10 hdr 80 PCI: 00:13:1: chip 1002,4375 card 1462,7141 rev 00 class 0c,03,10 hdr 00 PCI: 00:14:0: chip
