Re: authpf shell at startup
It also allows the app to be started on login. A shell script on its own won't start up when added to startup items, best case it opens the default text editor. Greg Thomas wrote: On 1/23/07, Mark Zimmerman [EMAIL PROTECTED] wrote: On Tue, Jan 23, 2007 at 01:48:36PM -0500, Daniel Barowy wrote: Daniel Barowy wrote: The Rogue Fugu wrote: You can make it run a shell script using this procedure: 1) Create a directory called MyApp.app 2) Create a directory within MyApp.app called Contents 3) Create a directory within Contents called MacOS 4) Place your shell script within the MacOS directory and call it MyApp mac os will recognize it as an application. Oops. Sorry-- did not mean to CC the list on this. Ignore. No apologies necessary. It was very entertaining to see how you do a 'chmod +x' on MacOS. I figure you're just poking fun at MacOS but chmod +x on OS X is chmod +x. It looks like the above just makes an application bundle so one can double-click on it from the GUI. Greg -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Merchandise idea: OpenBSD mug
I'd be interested in one of those mugs. J.C. Roberts wrote: On Friday 12 January 2007 11:12, Samurai Chef wrote: I'll do it. I'll order some and announce here. I'll set up a ebay store for the merchandise. contact me with requests. http://www.discountmugs.com/libbey-beer-mug-glass-l24.htm Use the free Satin Etch (see bottom) Wire Frame Puffy on the front (assuming right handed) RTFM on the back Cost $5.15 per mug (when 72 are ordered) Add $5+ to cost as a donation to the project. A nice etched mug like that usually sells around $20-25 USD. -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: OptInBig.com blacklist
I'd be very interested in getting this list. Vijay Sankar wrote: On Fri, 2006-29-12 at 12:49 -0600, Jacob Yocom-Piatt wrote: would anyone be interested in a list of the IPs from which OptInBig.com, one of scott richter's spam factories, sends UCE? i have a great deal of the offending IPs and can make the list available if anyone would feel it useful. I would like to get the list of IP's for OptInBig.com, if possible. Thanks very much, this spam outfit is the only major offender that i consistently see ramming mail through spamd in greylisting mode on our site. cheers, jake !DSPAM:1,45956aa2152681136683642! -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: problem to chroot ftp users
Add the usernames to /etc/ftpchroot and the user will be chrooted when they login with FTP. If you don't want them to have shell access, add /usr/bin/false to /etc/shells and change the users' shell to /usr/bin/false. That will allow chrooted FTP access and deny shell access. You could also set ftp-chroot in login.conf(5) but I'm not sure exactly how that works since I haven't RTFM for that :) Sebastian Reitenbach wrote: Hi all, I try to setup the ftpd and to have chrooted users. 1. according to the ftpd man page, the users are in the password database, have a password and ksh as shell 2. their login name is not in /etc/ftpusers 3. their login name is in /etc/ftpchroot when I start the ftpd with -US the users can login but they are not chrooted when I start the ftpd with -A then only anonymous ftp works, the ftpd states: 530 Sorry, only anonymous ftp allowed. ftp: Login failed. when I start the ftpd with -An login access is denied: 530 User ftp_user access denied. ftp: Login failed. I do not have the ftp-chroot variable set in login.conf, the man page of login.conf has nothing about the ftp-chroot variable, I guess I have to add it for the ftp_user, but do not know how. how do I define the ftp-chroot variable in login.conf, or am I missing something else? kind regards Sebastian -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: problem to chroot ftp users
On Fri, 08 Dec 2006 12:24:48 +0100, Sebastian Reitenbach [EMAIL PROTECTED] wrote: I thought that, after reading ftpd(8), and therefore I have the user in /etc/ftpchroot. I have the same problem on two servers, OpenBSD 4.0 and 3.9. I think I misunderstand you. Are you saying that you have users in /etc/ftpchroot and they're still not chrooted after logging in? Did you restart ftpd? Assuming you're not running it from inetd of course. -- Joel Goguen http://iapetus.dyndns.org/
Re: nat or routing problem?
On Fri, 08 Dec 2006 15:16:50 +0100, Mitja [EMAIL PROTECTED] wrote: [snip] # pfctl -s all TRANSLATION RULES: nat on em1 inet from 192.168.1.0/24 to any - (em1:0) If em1 is only serving the one IP address, try changing em1:0 to em1 and see if that works. -- Joel Goguen http://iapetus.dyndns.org/
Re: webmail
I've got SquirrelMail running for mine. If you're looking for something full of features it's not for you, but if you're looking for something simple that Just Works with Courier-IMAP and Maildir it may be worth taking a look at. Jasper Bal wrote: Anyone using webmail on OpenBSD? What's good, what's not? Jasper -- Joel Goguen http://iapetus.dyndns.org/
Re: webmail
Having tried this just now, I'm now going to have to agree with the other RoundCube users here. In not quite 10 minutes I had RC downloaded and configured, and it's easily the best webmail client I've seen yet. On Thu, 23 Nov 2006 11:40:58 -0500, Jason Dixon [EMAIL PROTECTED] wrote: On Nov 23, 2006, at 10:24 AM, Bryan Allen wrote: On Nov 23, 2006, at 8:19 AM, Jasper Bal wrote: Anyone using webmail on OpenBSD? What's good, what's not? Roundcube has been the new hotness for a while now. http://www.roundcube.net/ It's trivial to configure, nice UI (shiny, has drag and drop), persistent IMAP connections... That said, I've only just now started stressing it, so, YMMV. I agree with others here that have suggested RoundCube. It is very simple in features, but it does those things well. I'm currently running revision 373 on a new OpenBSD -stable mailserver running Postfix/Courier-IMAP. I have two other installations running older versions of RoundCube on OpenBSD and RHEL. To compare and contrast, I've also used Squirrelmail and Horde/IMP for years. I can't say that I have any serious problems with Squirrelmail, but the interface sorely needs a freshening-up. Horde/ IMP setup is not for the faint of heart, but has a ton of modules available through the Horde framework. But if all you need is a webmail interface that works well on OpenBSD, RoundCube should be on your short list. Jump on the roundcube-dev list if you want to keep up with HEAD and track any regression bugs. -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net -- Joel Goguen http://iapetus.dyndns.org/
Re: webmail
Doesn't seem to be in ports, so I'd guess not. There's directions for setting up with MySQL, PostgreSQL, and SQLite in the INSTALL file once you unpack it. On Thu, 23 Nov 2006 13:08:10 -0600, Sam Fourman Jr. [EMAIL PROTECTED] wrote: Roundcube looks REALLY cool, does OpenBSD have a Maintainer for it yet? Does anyone know of a tourtorial to set it up with postfix and PostgreSQL support? is it better to use Postfix/Courier-IMAP or Postfix/Dovecot? Sam Fourman Jr. On 11/23/06, Joel Goguen [EMAIL PROTECTED] wrote: Having tried this just now, I'm now going to have to agree with the other RoundCube users here. In not quite 10 minutes I had RC downloaded and configured, and it's easily the best webmail client I've seen yet. On Thu, 23 Nov 2006 11:40:58 -0500, Jason Dixon [EMAIL PROTECTED] wrote: On Nov 23, 2006, at 10:24 AM, Bryan Allen wrote: On Nov 23, 2006, at 8:19 AM, Jasper Bal wrote: Anyone using webmail on OpenBSD? What's good, what's not? Roundcube has been the new hotness for a while now. http://www.roundcube.net/ It's trivial to configure, nice UI (shiny, has drag and drop), persistent IMAP connections... That said, I've only just now started stressing it, so, YMMV. I agree with others here that have suggested RoundCube. It is very simple in features, but it does those things well. I'm currently running revision 373 on a new OpenBSD -stable mailserver running Postfix/Courier-IMAP. I have two other installations running older versions of RoundCube on OpenBSD and RHEL. To compare and contrast, I've also used Squirrelmail and Horde/IMP for years. I can't say that I have any serious problems with Squirrelmail, but the interface sorely needs a freshening-up. Horde/ IMP setup is not for the faint of heart, but has a ton of modules available through the Horde framework. But if all you need is a webmail interface that works well on OpenBSD, RoundCube should be on your short list. Jump on the roundcube-dev list if you want to keep up with HEAD and track any regression bugs. -- Jason Dixon DixonGroup Consulting http://www.dixongroup.net -- Joel Goguen http://iapetus.dyndns.org/ -- Joel Goguen http://iapetus.dyndns.org/
Re: how to redirect port to other server
Is $remotesrv listening on port 22? Do you have a rule something like below: pass in on $Extif from any to $remotesrv port 22 flags S/SA keep state sonjaya wrote: Dear all I try to redirect port from server to comp in lan with pf , beloow my script : # xl0 interface to public IntIf =xl1 Extif=xl0 remotesrv=192.168.0.4/32 rdr on xl0 inet proto tcp from any to any port = https - $remotesrv port 22 when i try remote from public always network error connection timeout - -sonjaya- -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Error with 002_openssl.patch
Try this: Update ports, src, sys, and XF4 archives to -stable as outlined on http://www.openbsd.org/anoncvs.html. After you've got -stable ports and source, re-compile your kernel and your userland as outlined on http://www.openbsd.org/stable.html. Then, while your userland binaries are recompiling (it takes quite a while), read the relevant FAQ entries starting at http://www.openbsd.org/faq/index.html. They're wonderful documents, most of your questions can be answered by reading them. Federico Giannici wrote: z0mbix wrote: On 11/11/06, Federico Giannici [EMAIL PROTECTED] wrote: Dunceor wrote: On 11/11/06, *Federico Giannici* [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] wrote: I have upgraded an amd64 from 3.9 to 4.0. I followed all the Upgrade Guide using install media. Updated packages. Updated sys sources to -stable and made a new kernel. Everything worked perfectly. Then I download and extracted src.tar.gz. Nothing else was present in the src directory but sys. I applied the 002_openssl.patch patch and all hunks succeeded. Followed all compile instructions (included the make includes), but the make interrupts with the following errors: cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c -o rsa_x931.o /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c: In function `RSA_X931_hash_id': /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: `NID_sha256' undeclared (first use in this function) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: (Each undeclared identifier is reported only once /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: for each function it appears in.) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:168: error: `NID_sha384' undeclared (first use in this function) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:171: error: `NID_sha512' undeclared (first use in this function) *** Error code 1 Stop in /usr/src/lib/libssl/crypto. *** Error code 1 Stop in /usr/src/lib/libssl. What could be the problem? Thanks. Why are you trying to patch if you've upgraded to -stable? Do one of the other. Go and re-read the FAQ about the differences between running release + patches, stable and current. I have written that I upgraded to -stable the KERNEL (src/sys) and compiled a new one. THEN I extracted the src.tar.gz archive, patched it with 002_openssl.patch, and note that the patch SUCCEDED. Then I tried to compile the library (following instruction in the head of the patch) and, after a while, the compilation aborted. Bye. -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Error with 002_openssl.patch
Don't patch. Start with an empty /usr/src/ and extract fresh archives, then update them to -stable and recompile *ALL* userland binaries. These pages are your friend for this: http://www.openbsd.org/anoncvs.html http://www.openbsd.org/stable.html Federico Giannici wrote: Federico Giannici wrote: Darrin Chandler wrote: On Sat, Nov 11, 2006 at 04:25:29PM +0100, Federico Giannici wrote: I have written that I upgraded to -stable the KERNEL (src/sys) and compiled a new one. Good. Then you should have compiled userland as well and forgotten about the patching process, since you already had the patch as part of -stable. THEN I extracted the src.tar.gz archive, patched it with 002_openssl.patch, and note that the patch SUCCEDED. So you moved your source back to -release and the patch applied. Moving back to -release sources on a -stable system isn't a good idea. Humm... So you are saying that it's not possible compile a portion of a patched userland with sources of a -stable kernel? I restarted from an empty /usr/src and the error occurred again! Here are the steps I have done: cd /usr/src tar xvzf /usr/local/storage/openbsd/40/src.tar.gz tar xvzf /usr/local/storage/openbsd/40/sys.tar.gz patch -p0 /usr/local/storage/openbsd/40/002_openssl.patch cd lib/libssl make obj make depend make includes make And this is the output: === crypto cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_eay.c -o rsa_eay.o cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_err.c -o rsa_err.o cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c -o rsa_x931.o /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c: In function `RSA_X931_hash_id': /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: `NID_sha256' undeclared (first use in this function) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: (Each undeclared identifier is reported only once /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: for each function it appears in.) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:168: error: `NID_sha384' undeclared (first use in this function) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:171: error: `NID_sha512' undeclared (first use in this function) *** Error code 1 Stop in /usr/src/lib/libssl/crypto. *** Error code 1 Stop in /usr/src/lib/libssl. Where is the mistake? Thanks. -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Error with 002_openssl.patch
If you update your kernel to -stable, you must also update your userland binaries to -stable, and your ports tree. When running -stable you don't need the patches, since the patches are applied against -release and are already incorporated into -stable. Basically, choose one. Either run -release and patches, or run -stable and don't patch. You've already upgraded your kernel to -stable so it's simpler for you to completely ignore patches and finish upgrading to -stable. Federico Giannici wrote: Joel Goguen wrote: Don't patch. Start with an empty /usr/src/ and extract fresh archives, then update them to -stable and recompile *ALL* userland binaries. These pages are your friend for this: OK, I can do it, but then why the patches exist if I HAVE to use -stable??? I extracted a fresh -release tree and applied the patch, following all the steps. Why it shouldn't work??? Thanks. http://www.openbsd.org/anoncvs.html http://www.openbsd.org/stable.html Federico Giannici wrote: Federico Giannici wrote: Darrin Chandler wrote: On Sat, Nov 11, 2006 at 04:25:29PM +0100, Federico Giannici wrote: I have written that I upgraded to -stable the KERNEL (src/sys) and compiled a new one. Good. Then you should have compiled userland as well and forgotten about the patching process, since you already had the patch as part of -stable. THEN I extracted the src.tar.gz archive, patched it with 002_openssl.patch, and note that the patch SUCCEDED. So you moved your source back to -release and the patch applied. Moving back to -release sources on a -stable system isn't a good idea. Humm... So you are saying that it's not possible compile a portion of a patched userland with sources of a -stable kernel? I restarted from an empty /usr/src and the error occurred again! Here are the steps I have done: cd /usr/src tar xvzf /usr/local/storage/openbsd/40/src.tar.gz tar xvzf /usr/local/storage/openbsd/40/sys.tar.gz patch -p0 /usr/local/storage/openbsd/40/002_openssl.patch cd lib/libssl make obj make depend make includes make And this is the output: === crypto cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_eay.c -o rsa_eay.o cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_err.c -o rsa_err.o cc -O2 -pipe -g -DL_ENDIAN -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_IDEA -DTERMIOS -DANSI_SOURCE -DNO_ERR -DOPENSSL_NO_ASM -DOPENSSL_NO_RC5 -DOPENSSL_NO_KRB5 -DOPENSSL_NO_MDC2 -DNO_WINDOWS_BRAINDEATH -DOPENSSL_NO_HW_CSWIFT -DOPENSSL_NO_HW_NCIPHER -DOPENSSL_NO_HW_ATALLA -DOPENSSL_NO_HW_NURON -DOPENSSL_NO_HW_UBSEC -DOPENSSL_NO_HW_AEP -DOPENSSL_NO_HW_SUREWARE -DOPENSSL_NO_HW_4758_CCA -I/usr/src/lib/libssl/crypto/../src -I/usr/src/lib/libssl/crypto/../src/crypto -I/usr/src/lib/libssl/crypto/obj -c /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c -o rsa_x931.o /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c: In function `RSA_X931_hash_id': /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: `NID_sha256' undeclared (first use in this function) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: (Each undeclared identifier is reported only once /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:165: error: for each function it appears in.) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:168: error: `NID_sha384' undeclared (first use in this function) /usr/src/lib/libssl/src/crypto/rsa/rsa_x931.c:171: error: `NID_sha512' undeclared (first use in this function) *** Error code 1 Stop in /usr/src/lib/libssl/crypto. *** Error code 1 Stop in /usr/src/lib/libssl. Where is the mistake? Thanks. -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Problem when apply 001_httpd.patch
I don't see an issue there. It looks like it applied properly. Follow the directions it printed out and see that it compiles and installs properly :) On 11/9/06, Maverick [EMAIL PROTECTED] wrote: Hi i am trying to apply the 001 patch What i have done is cd /usr/src patch -p0 001_httpd.patch and i come back to me as: Hmm... Looks like a unified diff to me... The text leading up to this was: -- |Apply by doing: | cd /usr/src | patch -p0 001_httpd.patch | |And then rebuild and install httpd and its modules: | cd usr.sbin/httpd | make -f Makefile.bsd-wrapper obj | make -f Makefile.bsd-wrapper cleandir | make -f Makefile.bsd-wrapper depend | make -f Makefile.bsd-wrapper | make -f Makefile.bsd-wrapper install | -- View this message in context: http://www.nabble.com/Problem-when-apply-001_httpd.patch-tf2603928.html#a7265560 Sent from the openbsd user - misc mailing list archive at Nabble.com. -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Proper way to update a pf table?
I do something similar to this: pfctl -t local-white -T replace -f /path/to/whitelist Where local-white is my whitelist, and /path/to/whitelist is the file containing whitelisted IP addresses or CIDRs, one per line. On 10/31/06, Steve Williams [EMAIL PROTECTED] wrote: Hi, I have a table of whitelisted hosts that I can change on the fly as I see email coming in that gets greylisted. I add an entry to the file, then I try to reload the table. pfctl -t local-white -T load -f /etc/pf.conf Magically, pf seems to block most local access. ie: telnet localhost 25 times out, telnet localhost 3306 times out.. If I use a sledge hammer: pfctl -Fa -f /etc/pf.conf The system resumes normal activity. My relevant entry in the pf.conf is: table local-white persist file /etc/spamd/whitelist.txt rdr on $ext_if proto tcp from local-white to any port smtp - $int_mcafe_webshield Is there a proper way to update a pf table that resides in a file? Thanks, Steve Williams -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
Re: Applying patch ?
Are you in /usr/src/ when you apply the patch? Did you download and unpack the source tree? Does no good to patch something that isn't there. -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/ Maverick wrote: uppsss I am sorry I forgot to add the important bit. When i run patch -p0 001_sendmail.patch, it asked me for the file to patch. Can you please give me an example how to go that in sendmail patch? Thanks a lot for your help I do appreciate that. Joe S wrote: Maverick wrote: Thanks a lot for the answer I have tried it but i have something after that as well # cd /usr/src # patch -p0 001_sendmail.patch Hmm... Looks like a unified diff to me... The text leading up to this was: -- |Apply by doing: | cd /usr/src | patch -p0 001_sendmail.patch | |And then rebuild and install sendmail: | cd gnu/usr.sbin/sendmail | make obj | make depend | make | make install | |Index: gnu/usr.sbin/sendmail/libsm/fflush.c |=== |RCS file: /cvs/src/gnu/usr.sbin/sendmail/libsm/fflush.c,v |retrieving revision 1.2 |diff -u -p -r1.2 fflush.c |--- gnu/usr.sbin/sendmail/libsm/fflush.c 1 Oct 2001 17:18:29 - 1.2 |+++ gnu/usr.sbin/sendmail/l Can you please tell me what i can i do with this? You have applied the patch to the sendmail source code. Now you must rebuild and install sendmail. The output from the patch command tells you what to do: |And then rebuild and install sendmail: | cd gnu/usr.sbin/sendmail | make obj | make depend | make | make install Since you are new to OpenBSD, you should know that OpenBSD tells you how to do all of the important things. In other words, OpenBSD is very well documented. However, to be successful you must learn to find the documentation. In this case it was right under your nose. All/most patches will tell you how to apply them. Also check the OpenBSD FAQ.
Re: Applying patch ?
It's sitting there because it's reading from standard input. Try this instead: cd /usr/src/ patch -p0 /path/to/001_sendmail.patch -- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/ Maverick wrote: Hi i am quite new to openbsd. I have download the patchs from the openbsd website and extract it. I run the command to fix the first bug patch 001_sendmail.patch However it taking more then 15 mins and still staying there. Is there any thing wrong with what i have been doing? What should i do to apply the patch for openbsd 3.9 Thanks you very much. Best regard
