Re: arm on pandaboard fails
thanks for advice of Juan and Jonathan . i try snapshots. *now 8/13/2016* it can not reach the step of entrance of install . so i try 5.8 by shell script ./comment-out.bat get_and_burn-panda_XY.bat wget ftp://mirror.yandex.ru/pub/OpenBSD/$1.$2/armv7/miniroot-panda-$1$2.fs echo '---get---' ls *panda*.fs dd if=./miniroot-panda-$1$2.fs of=/dev/rsd0c echo '---burned---' but rebooting also fals . -> ddb> trace panic+0x18 scp=0xc03bf9bc rlv=0xc03bd000 (pool_do_get+0x260) rsp=0xcc4cad58 rfp=0xcc4cad90 pool_do_get+0xc scp=0xc03bcdac rlv=0xc03bc948 (pool_get+0x90) rsp=0xcc4cad94 rfp=0xcc4cade4 r7=0xb81a6000 r6=0x0002 r5=0xc0708094 r4=0x0002 pool_get+0x10 scp=0xc03bc8c8 rlv=0xc0537a58 (pmap_enter+0x484) rsp=0xcc4cade8 rfp=0xcc4cae34 r8=0xb81a600e r7=0xb81a6000 r6=0x0001 r5=0xca59f838 r4=0x0002 pmap_enter+0xc scp=0xc05375e0 rlv=0xc04e100c (uvm_fault+0x9fc) rsp=0xcc4cae38 rfp=0xcc4caf58 r10=0x0001 r9=0xcc4cae84 r8=0x r7=0x r6=0xca58b2ac r5=0xca58b2ac r4=0xc5214634 uvm_fault+0xc scp=0xc04e061c rlv=0xc05333e4 (data_abort_handler+0x248) rsp=0xcc4caf5c rfp=0xcc4cafb0 r10=0xcc4cafb4 r9=0xcc4c9000 r8=0x0001 r7=0xca5a0118 r6=0x0001 r5=0xca592a14 r4=0x4838 data_abort_handler+0xc scp=0xc05331a8 rlv=0xc0532bb0 (address_exception_entry+0x50) rsp=0xcc4cafb4 rfp=0xb2a0 r10=0x r9=0xb2a8 r8=0x r7=0x4cd6e388 r6=0x4cd6ec88 r5=0x0001 r4=0x ddb> panic+0x18 scp=0xc03bf9bc rlv=0xc03bd000 (pool_do_get+0x260) rsp=0xcc4cad58 rfp=0xcc4cad90 ddb> ps PID PPID PGRPUID S FLAGS WAIT COMMAND *29031 27053 27053 0 7 0x1sh 27053 1 27053 0 30x8b pause sh 25014 0 0 0 3 0x14200 pgzerozerothread 6099 0 0 0 3 0x14200 aiodoned aiodoned 27203 0 0 0 3 0x14200 syncerupdate 12059 0 0 0 3 0x14200 cleaner cleaner 864 0 0 0 3 0x14200 reaperreaper 29025 0 0 0 3 0x14200 pgdaemon pagedaemon 13319 0 0 0 3 0x14200 bored crypto 15627 0 0 0 3 0x14200 pftm pfpurge 10623 0 0 0 3 0x14200 usbtskusbtask 23133 0 0 0 3 0x14200 usbatsk usbatsk 18513 0 0 0 3 0x14200 mmctsksdmmc0 19715 0 0 0 3 0x14200 bored softnet 25386 0 0 0 3 0x14200 bored systqmp 24708 0 0 0 3 0x14200 bored systq 5111 0 0 0 3 0x40014200idle0 20329 0 0 0 3 0x14200 kmalloc kmthread 1 0 1 0 30x82 wait init 0 -1 0 0 3 0x10200 scheduler swapper <--- i should wait for the next snapshot . --- regards
arm on pandaboard fails
Hi all . i report this . i take photos . they are on http://akita-arm.blogspot.jp/2016/08/pandaboard-openbsd.html i am looking forward to meet openbsd 60 's armv7 . regards my favorite arm board is odroid-c2 . and os is dietpi .
where is the image of openbsd arm ?
Hi all . i now use arm linux as server . because it needs 5W , so its cost as 24Hr server is very low and it's root can be put in hard disk , so big space can be get . where is the image of openbsd arm ? ( raspberry pi , pine64 or other ) --- regards
Re: permisson of .htpasswd of 5.9's nginx
thanks for ludovic # ls -l /var/www/1/ total 16 -rw-r- 1 www www 65 Apr 29 11:19 .htpasswd # chmod 640 /var/www/1/.htpasswd this go well . tuyosi
permisson of .htpasswd of 5.9's nginx
Hi all . i do chmod 777 /var/www/1/.htpasswd and so nginx works with basic authentification. but this setting is too open . are there any idea ? # /etc/nginx/nginx.conf events { worker_connections 800; } http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; server_name localhost;#<-for test root /var/www/d1; } server { listen 80; server_name abcxyz.jp; root /var/www/d1; auth_basic "closed site"; auth_basic_user_file /var/www/1/.htpasswd; } } --- regards
scim-anthy may be wrong (5.9 i386)
hi all . i do command [ scim-anthy ] , and at [ global setup ] i remove check of [Others] . but i do again scim-setup , check mark is on [Others] namely no change . so i think that something is wrong with scim-anthy of 5.9 i386. at present i use ibus-anthy , and this works well . - regards
how to Bridging with a wireless NIC
thanks for Stefan's good idvice . i add 3)too common , only dhcpd & pf (no bridge) internet-router:192.168.1.1--FON192.168.10.1...wifi...rum0[openbsd]axe0---TV /etc/hostname.rum0 nwid MyPlace wpakey 70810 dhcp /etc/hostname.axe0 inet 192.168.0.1 255.255.255.0 /etc/dhcpd.interfaces< axe0 /etc/dhcpd.conf option domain-name "my.domain"; option domain-name-servers 8.8.8.8; subnet 192.168.0.0 netmask 255.255.255.0 { option routers 192.168.0.1; range 192.168.0.10; } /etc/pf.conf OUT="rum0" int_if="axe0" table { 0.0.0.0/8 10.0.0.0/8 127.0.0.0/8 169.254.0.0/16 \ 172.16.0.0/12 192.0.0.0/24 192.0.2.0/24 224.0.0.0/3 \ 192.168.0.0/16 198.18.0.0/15 198.51.100.0/24\ 203.0.113.0/24 } set block-policy drop set loginterface egress set skip on lo0 match in all scrub (no-df random-id max-mss 1440) match out on egress inet from !(egress:network) to any nat-to (egress:0) block in quick on egress from to any block return out quick on egress from any to block all pass out quick inet pass in on $int_if inet TV get 192.168.0.10 gateway adress 192.168.0.1 dns8.8.8.8 how to rerite pf.conf inorder to access TV from 192.168.10.0/24 ? by the way , there is /etc/rc.d/hostapd and hostapd.conf is wlan="ath0" wired="sis0" table { 00:90:4b:0d:fd:c8, 00:02:6f:21:ea:8b } ... i do not understand hostapd any . i noticed 'wlan phrase' only - regards
Re: how to Bridging with a wireless NIC
i try openbsd . 1) too common way( wired-wired bridge) internet--router:192.168.1.1--em0[openbsd]axe0---TV /etc/hostname.em0 dhcp /etc/hostname.axe0 up /etc/hostname.bridge0 add em0 add axe0 up TV address 192.168.1.250 gateway 192.168.1.1 dns 192.168.1.1 2) wifi bridging is hard internet--router:192.168.1.1--FON192.168.10.1...wifi...rum0[openbsd]axe0---wired---TV /etc/hostname.rum0 nwid MyPlace wpakey 70810 dhcp /etc/hostname.axe0 up /etc/hostname.bridge0 add rum0 add axe0 up rum0 get 192.168.10.220 TV get 169.254.232.148/255.255.0.0 (no gateway adress , no dns) - regards
how to Bridging with a wireless NIC
hi,all i write my home work the latter part . first i rewite /etc/network/interfaces -- auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.0.1 netmask 255.255.255.0 broadcast 192.168.0.255 auto wlan0 iface wlan0 inet dhcp wpa-ssid URoad-9BF wpa-ap-scan 1 wpa-key-mgmt WPA-PSK wpa-psk 4955 and i do update-rc.d -f wicd remove update-rc.d -f network-manager remove and then reboot and then run the following shellscript ifconfig eth0 192.168.0.1 echo 1 > /proc/sys/net/ipv4/ip_forward /etc/init.d/dnsmasq restart brctl addbr br0 brctl addif br0 eth0 brctl addif br0 wlan0 dhclient br0 #ping -c 5 www.openbsd.org #ifconfig -a /etc/init.d/network-manager stop /etc/init.d/wicdstop /etc/init.d/ssh restart --- homework--> # iw wlan0 info command failed: No such device (-19) # iw br0 info command failed: No such device (-19 <--- but route åä¿¡å ãµã¤ãã²ã¼ãã¦ã§ã¤ããããã¹ã¯ ãã©ã° Metric Ref 使ç¨æ° ã¤ã³ã¿ãã§ã¼ã¹ (gateway) (interface) default 192.168.100.254 0.0.0.0 UG20400 br0 link-local * 255.255.0.0 U 20200 eth0 192.168.0.0 * 255.255.255.0 U 0 00 eth0 192.168.100.0 * 255.255.255.0 U 20400 br0 ifconfig -a br0 Link encap:ã¤ã¼ãµããã ãã¼ãã¦ã§ã¢ã¢ãã¬ã¹ 00:22:cf:ec:c8:05 inetã¢ãã¬ã¹:192.168.100.251 ããã¼ããã£ã¹ã:192.168.100.255 ãã¹ã¯:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 ã¡ããªãã¯:1 RXãã±ãã:903 ã¨ã©ã¼:0 æ失:0 ãªã¼ãã©ã³:0 ãã¬ã¼ã :0 TXãã±ãã:381 ã¨ã©ã¼:0 æ失:0 ãªã¼ãã©ã³:0 ãã£ãªã¢:0 è¡çª(Collisions):0 TXãã¥ã¼é·:0 RXãã¤ã:58634 (57.2 KiB) TXãã¤ã:55245 (53.9 KiB) eth0 Link encap:ã¤ã¼ãµããã ãã¼ãã¦ã§ã¢ã¢ãã¬ã¹ b8:27:eb:27:84:5d inetã¢ãã¬ã¹:192.168.0.1 ããã¼ããã£ã¹ã:192.168.0.255 ãã¹ã¯:255.255.255.0 inet6ã¢ãã¬ã¹: fe80::ba27:ebff:fe27:845d/64 ç¯å²:ãªã³ã¯ UP BROADCAST RUNNING MULTICAST MTU:1500 ã¡ããªãã¯:1 RXãã±ãã:246 ã¨ã©ã¼:0 æ失:0 ãªã¼ãã©ã³:0 ãã¬ã¼ã :0 TXãã±ãã:675 ã¨ã©ã¼:0 æ失:0 ãªã¼ãã©ã³:0 ãã£ãªã¢:0 è¡çª(Collisions):0 TXãã¥ã¼é·:1000 RXãã¤ã:37912 (37.0 KiB) TXãã¤ã:126740 (123.7 KiB) loLink encap:ãã¼ã«ã«ã«ã¼ããã㯠inetã¢ãã¬ã¹:127.0.0.1 ãã¹ã¯:255.0.0.0 inet6ã¢ãã¬ã¹: ::1/128 ç¯å²:ãã¹ã UP LOOPBACK RUNNING MTU:65536 ã¡ããªãã¯:1 RXãã±ãã:4 ã¨ã©ã¼:0 æ失:0 ãªã¼ãã©ã³:0 ãã¬ã¼ã :0 TXãã±ãã:4 ã¨ã©ã¼:0 æ失:0 ãªã¼ãã©ã³:0 ãã£ãªã¢:0 è¡çª(Collisions):0 TXãã¥ã¼é·:0 RXãã¤ã:240 (240.0 B) TXãã¤ã:240 (240.0 B) wlan0 Link encap:ã¤ã¼ãµããã ãã¼ãã¦ã§ã¢ã¢ãã¬ã¹ 00:22:cf:ec:c8:05 inet6ã¢ãã¬ã¹: fe80::222:cfff:feec:c805/64 ç¯å²:ãªã³ã¯ UP BROADCAST RUNNING MULTICAST MTU:1500 ã¡ããªãã¯:1 RXãã±ãã:1148 ã¨ã©ã¼:0 æ失:13 ãªã¼ãã©ã³:0 ãã¬ã¼ã :0 TXãã±ãã:748 ã¨ã©ã¼:0 æ失:1 ãªã¼ãã©ã³:0 ãã£ãªã¢:0 è¡çª(Collisions):0 TXãã¥ã¼é·:1000 RXãã¤ã:187948 (183.5 KiB) TXãã¤ã:133449 (130.3 KiB) and debiandog get ip address 192.168.100.104 namely internet --wifi router:192.168.100.254. ...wlan0:{raspberry}:eth0-eth0:192.168.100.104{debiandog} br0:192.168.100.251 again i use only dnsmasq & bridge . this may help openbsd's ethenet converter . in the future i wii try this on openbsd. (today i install openbsd 5.9 snapshots , it runs well , japanese input method is OK) - regards
Re: how to Bridging with a wireless NIC
Hi all . my final goal is openbsd . the prementary step is on Linux. tool is only dynmasq and bridge schima is next - wifi router 192.168.100.254 . wifi . wlan0:192.168.100.103 raspberry pi (minibian , a kind of debian ) eth0;192.168.0.1 | | eth0 Debiandog 1)no firewall then iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination 2) /etc/network/interfaces is simple auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.0.1 netmask 255.255.255.0 3) /etc/dnsmasq.conf interface=eth0 dhcp-range=192.168.0.21,192.168.0.22,72h dhcp-option=option:router,192.168.0.1 domain-needed bogus-priv no-resolv no-poll server=8.8.8.8 no-hosts expand-hosts 4)run shell script ifconfig eth0 192.168.0.1# perhaps neddless echo 1 > /proc/sys/net/ipv4/ip_forward /etc/init.d/dnsmasq restart brctl addbr br0 brctl addif br0 eth0 brctl addif br0 wlan0 dhclient br0 then debiandog get address 192.168.100.104 (not 192.168.0.X) this is very simple method. so , there is posiibility of ethenet converter on OpenBSD my bed room has no lan cable . and the video recorder has no wifi , so i want ethenet converter regards , tuyosi
Re: how to Bridging with a wireless NIC
i follow your advice . the resul is --- # ifconfig -a lo0: flags=8049mtu 32768 priority: 0 groups: lo inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff00 re0: flags=8b43 mtu 1500 lladdr f0:76:1c:6c:41:af priority: 0 media: Ethernet autoselect (100baseTX full-duplex,rxpause,txpause) status: active enc0: flags=0<> priority: 0 groups: enc status: active rum0: flags=8943 mtu 1500 lladdr 00:22:cf:01:22:6f priority: 4 groups: wlan egress media: IEEE802.11 autoselect (OFDM12 mode 11g) status: active ieee80211: nwid URoad-9BF5EC chan 1 bssid 00:1d:93:9b:f5:ec 114dBm wpakey 0x33948dd44dd$ inet 192.168.100.102 netmask 0xff00 broadcast 192.168.100.255 bridge0: flags=41 groups: bridge priority 32768 hellotime 2 fwddelay 15 maxage 20 holdcnt 6 proto rstp rum0 flags=3 port 4 ifpriority 0 ifcost 0 re0 flags=3 port 1 ifpriority 0 ifcost 0 pflog0: flags=141 mtu 33144 priority: 0 groups: pflog --- but fails . acording to http://marc.info/?l=openbsd-misc=113037538815977=2 it may be too hard for me (i have no knowlege about hostap). - regards
how to Bridging with a wireless NIC
hi all , my room has no wired lan cord . my situation is internet | wifi router 192.168.100.254 | |wireless | rum0:dhcpcd openbsd re0 | |wired LAN | video recorder my intension is that video recorder recieves address from wifi router ( ***not from openbsd***) debian linux has https://wiki.debian.org/BridgeNetworkConnections#Bridging_with_a_wireless_NIC . but this setting is compex and hard to follow . openbsd has logical simplicity . so are there someone who overcome it ? - regards
Re: openvpn & ./pkitool --initca error
thanks for Stuart your deep knowlege . i try easy-rsa on snapsots & ports , but it is not matured . i wait some time to expect its maturing reading https://openvpn.net/index.php/access-server/docs/quick-start-guide.html . - regards 2015-12-15 17:36 GMT+09:00 Stuart Henderson <s...@spacehopper.org>: > On 2015-12-14, Tuyosi Takesima <nakajin.fu...@gmail.com> wrote: > > Hi all . > > about openvpn ,i follow http://www.kernel-panic.it/openbsd/vpn/vpn4.html > > > > cp openssl-0.9.6.cnf openssl.cnf > > > > and > > when # ./pkitool > > easy-rsa is broken in 5.8 release. If you fetch a -stable ports tree > from cvs and update easy-rsa you can get a version which has a workaround. > > > --initca > > then > > Using CA Common Name: changeme > > error on line 39 of /usr/local/share/easy-rsa/openssl.cnf > > 6496586334084:error:0E065068:configuration file > routines:STR_COPY:variable > > has no > > > value:/usr/src/lib/libcrypto/crypto/../../libssl/src/crypto/conf/conf_def.c:573:line > > 39 > > > > > > line 39 of /usr/local/share/easy-rsa/openssl.cnf > > is > > 39 dir = $ENV::KEY_DIR # Where everything is kept > > This is the config file passed to the openssl(1) tool, /usr/bin/openssl > (which is LibreSSL in OpenBSD). It's using this syntax to try and pass in > a variable via the process environment. You might think that the config > parser for this is in the tool itself, but actually it's in the library(!). > Changing library behaviour based on environment variables is considered > dangerous in some cases, so it's been removed from LibreSSL.
openvpn & ./pkitool --initca error
Hi all . about openvpn ,i follow http://www.kernel-panic.it/openbsd/vpn/vpn4.html cp openssl-0.9.6.cnf openssl.cnf and when # ./pkitool --initca then Using CA Common Name: changeme error on line 39 of /usr/local/share/easy-rsa/openssl.cnf 6496586334084:error:0E065068:configuration file routines:STR_COPY:variable has no value:/usr/src/lib/libcrypto/crypto/../../libssl/src/crypto/conf/conf_def.c:573:line 39 line 39 of /usr/local/share/easy-rsa/openssl.cnf is 39 dir = $ENV::KEY_DIR # Where everything is kept # echo $ENV has no response . how to break through this ? - regards
return qemu.img to real partition
i follow current of openbsd on Linux's kvm of ext2_fs . and return this qemu image to openbsd partition by tar over ssh . ( http://openbsd-akita.blogspot.jp/2015/11/export-kvms-image-to-real-machine.html ) but i hear there is qemu-nbd in Linux. i try it . # modprobe nbd max_part=8 # qemu-nbd --connect=/dev/nbd0 /mnt/sda3/home/yuma/TC-5.img # mount /dev/nbd0p1 /mnt/kvm # ls /mnt/kvm lost+found mydata.tgz tce COPY sudo umount /mnt/kvm sudo qemu-nbd --disconnect /dev/nbd0 this is very convinient . i hope openbsd's qemu-nbd come true . --- regards
Re: how to transfer the image of qemu to real machine
hi all i write **only tentative ** plan . it perhaps has imcompleteness . URL is http://openbsd-akita.blogspot.jp/2015/11/export-kvms-image-to-real-machine.html . - regards
Re: how to transfer the image of qemu to real machine
Hi all . a little progress was made . from FAQ8 boot> boot -s # fsck -p / && mount -uw /<--- ok # fsck -p /usr && mount /usr <--- fail touch /etc/spwd.db and then i can login by root . but login by tuyosi is not possible so i create user TUYOSI . then i can login by TUYOSI . but i cannot start xfce4 . i report now state . regards
Re: how to transfer the image of qemu to real machine
thanks for kind advices . i do 1) ssh root@192.168.100.101 "tar czpf - / | tar xzpf - -C /MNT and 2) installboot -r /MNT sd1 (on openbsd5.8 = sd0a) and then 3) boot by grub perhaps sd1a's current openbsd comes up because [ /dev/sd1a(655d3964e75dc0cc.a): file system is clean ; not checking ] apear . but login passwd is changed . how to cope with this ? a little more effort is neeeded . if completed , i follow current by openbsd of linux's KVM (sd0i), and i export it via openbsd of openbsd's QEMU (sd0a) to real hard disk (sd1a) . - regards
how to transfer the image of qemu to real machine
Hi all . i use only one PC which is dual boot and has USB HDD(sd1) . i write down my procedures . 1)on linux machine , i boot openbsd by kvm and follow current . and so the qcow2 image of OpenBSD-current.img was made . and then i copy OpenBSD-current.img to ext2 area . 2)on openbsd machine , i copy OpenBSD-current.img from ext2 erea fs to openbsd erea. then on openbsd qemu-system-x86_64 -m 1024 -hda OpenBSD-current.img -net nic,vlan=1,model=e1000,macaddr=fe:e1:ba:d3:e7:11 -net tap,vlan=1 then on this virtual machine scp -r / tuyosi@192.168.100.101:/MNT. (here mount /dev/sd1a /MNT ; chown tuyosi /MNT) 3)rewite /MNT/et/fstab /dev/sd1a / ffs rw 1 1 4)/MNT/usr/sbin/installboot sd1 but i cannot boot openbsd of sd1 . there must be wrongs especially about innstalling boot loader . please show them . --- regards
Re: how to transfer the image of qemu to real machine
thanks for advices . i rewrite /MNT/etc/fstab concerning [disklabel sd1] 9f39539222428a90.b none swap sw #9f39539222428a90.a / ffs rw 1 1 # duid: 655d3964e75dc0cc 655d3964e75dc0cc.a / ffs rw 1 1 but i cannot boot sd1's openbsd . # /MNT/usr/sbin/installboot -v sd1 /MNT/usr/mdec/biosboot /MNT/usr/mdec/boot Using / as root installing bootstrap on /dev/rsd1c using first-stage /MNT/usr/mdec/biosboot, second-stage /MNT/usr/mdec/boot installboot: disklabel: sd1: Inappropriate ioctl for device ---> fail # /usr/sbin/installboot -v sd1 /MNT/usr/mdec/biosboot /MNT/usr/mdec/boot Using / as root installing bootstrap on /dev/rsd1c using first-stage /MNT/usr/mdec/biosboot, second-stage /MNT/usr/mdec/boot copying /MNT/usr/mdec/boot to /boot installboot: cross-device install ---> cannot boot sd1 chroot /MNT ---> cannot do anythin namely i cannot boot sd1's openbsd . - follow current by KVM: http://openbsd-akita.blogspot.jp/2015/10/xenocara.html qemu: http://qemuandopenbsd.blogspot.jp/2015/09/qemu.html
follow current by KVM
Hi all . i decide to follow [curent openbsd ] by KVM on linux . how to send virtual space's openbst to real space ? - regards
does src include sys ?
today i first time follow current . # cd /usr # export CVSROOT=anon...@anoncvs.jp.openbsd.org:/cvs # cvs -d$CVSROOT checkout -P src cvs -d$CVSROOT checkout -P sys<--- 1)quetion is [cvs -d$CVSROOT checkout -P sys] needless ? and Faq write about only src not touch sys . # cd /usr/src # export CVSROOT=anon...@anoncvs.jp.openbsd.org:/cvs # cvs -d$CVSROOT up -Pd 2)qustion does src include sys ? - regards
cannot input _ (keyboard layout is jp)
hi all . i start openbsd-snapshots by ***kvm*** . and chose 'keyboad layout' jp(japanese), then i cannot input _(under bar) . so i am obliged to use 'keyboad layout' us . this is a little incovinient . how to cope with this ? --- regards
UEFI graphical ope login
Hi all . i succeed graphical openbsd login by using refind . 1st story is http://openbsd-akita.blogspot.jp/2015/10/openbsd-uefi.html and 2nd + story is * about** http://marc.info/?l=openbsd-misc=144476075929012=2 i do the following using linux # unzip refind-bin-0.8.2.zip # mount_msdos /dev/dk0 /mnt2 # cd /mnt2 # mkdir -p EFI/BOOT # cd EFI/BOOT # cp -r /refind-bin-0.8.2/refind/drivers_x64 . # cp -r /refind-bin-0.8.2/refind/tools_x64 . # cp -r /refind-bin-0.8.2/refind/icons . # cp /refind-bin-0.8.2/refind/refind_x64.efi bootx64.efi # cp /refind-bin-0.8.2/refind/refind.conf.sample refind.conf mkdir OLD mv * OLD now ls OLD/ bootia32.efi bootx64.efi cp OLD/bootx64.efi ./bootx64-openbsd.efi cp icons/os_openbsd.png ./os_openbsd.png <-perhaps unnessessary rewrite refind.conf tail refind.conf menuentry "OpenBSD/amd64 snapshots58" { loader \EFI\Boot\bootx64-openbsd.efi icon \EFI\Boot\icons\os_openbsd.png } in nowstate c260 BOOT # ls -l åè¨ 392 drwx-- 2 yuma yuma 8192 10æ 14 23:45 OLD -rw-r--r-- 1 yuma yuma 120832 10æ 14 23:54 bootx64-openbsd.efi -rw-r--r-- 1 yuma yuma 201416 7æ 6 2014 bootx64.efi drwx-- 2 yuma yuma 8192 7æ 6 2014 drivers_x64 drwx-- 2 yuma yuma 8192 7æ 6 2014 icons -rw-r--r-- 1 yuma yuma 15477 10æ 14 23:52 os_openbsd.png <-perhaps unnessessary -rw-r--r-- 1 yuma yuma 21822 10æ 14 23:55 refind.conf drwx-- 2 yuma yuma 8192 7æ 6 2014 tools_x64 ant then reboot , graphical openbsd logo mark appear . very happy for openbsd fellows . --- tuyosi
solved: UEFI graphical openbsd login
Hi all . i succeed graphical openbsd login by using refind . 1st story is http://openbsd-akita.blogspot.jp/2015/10/openbsd-uefi.html and 2nd + story is * about** http://marc.info/?l=openbsd-misc=144476075929012=2 i do the following using linux # unzip refind-bin-0.8.2.zip # mount_msdos /dev/dk0 /mnt2 # cd /mnt2 # mkdir -p EFI/BOOT # cd EFI/BOOT # cp -r /refind-bin-0.8.2/refind/drivers_x64 . # cp -r /refind-bin-0.8.2/refind/tools_x64 . # cp -r /refind-bin-0.8.2/refind/icons . # cp /refind-bin-0.8.2/refind/refind_x64.efi bootx64.efi # cp /refind-bin-0.8.2/refind/refind.conf.sample refind.conf mkdir OLD mv * OLD now ls OLD/ bootia32.efi bootx64.efi cp OLD/bootx64.efi ./bootx64-openbsd.efi cp icons/os_openbsd.png ./os_openbsd.png <-perhaps unnessessary rewrite refind.conf tail refind.conf menuentry "OpenBSD/amd64 snapshots58" { loader \EFI\Boot\bootx64-openbsd.efi icon \EFI\Boot\icons\os_openbsd.png } in nowstate c260 BOOT # ls -l åè¨ 392 drwx-- 2 yuma yuma 8192 10æ 14 23:45 OLD -rw-r--r-- 1 yuma yuma 120832 10æ 14 23:54 bootx64-openbsd.efi -rw-r--r-- 1 yuma yuma 201416 7æ 6 2014 bootx64.efi drwx-- 2 yuma yuma 8192 7æ 6 2014 drivers_x64 drwx-- 2 yuma yuma 8192 7æ 6 2014 icons -rw-r--r-- 1 yuma yuma 15477 10æ 14 23:52 os_openbsd.png <-perhaps unnessessary -rw-r--r-- 1 yuma yuma 21822 10æ 14 23:55 refind.conf drwx-- 2 yuma yuma 8192 7æ 6 2014 tools_x64 ant then reboot , graphical openbsd logo mark appear . very happy for openbsd fellows . --- tuyosi
Re: solved: UEFI graphical openbsd login
graphical log on is seen in next URL http://openbsd-akita.blogspot.jp/2015/10/openbsd-lives-in-sd1-2gb-usb-stick.html
Re: 'UEFI install to USB' fail
i add photos in convinience . see http://openbsd-akita.blogspot.jp/2015/10/openbsd-uefi.html
'UEFI install to USB' fail
Hi,all . i confess my failure . i read https://blog.jasper.la/openbsd-uefi-bootloader-howto/ the reason why i cannot follow this site is that ' fdisk -i -b 960 sd1' is imposible in my case . i write down my failure --> 1) boot by install58(snapshots).iso 2)install (to USB memory ) 3)keyboad layout 4)use wholedisk custom a i size 960 fstype msdos mount point none a a ... 5)follow instalation 6)when # appers , /mnt/sbin/newfs_msdos sd1i mount /dev/sd1i /mnt2 mkdir -p /mnt2/efi/boot cp /mnt/usr/mdec/BOOTX64.EFI /mnt2/efi/boo 7)halt 8) i stick this USB into *another* PC ,power on , but PC cannot be booted . and more this PC cannot boot even with openbsd CD . bios may die . what process is wrong ? what is correct procedure ? are there any way to re-live this PC even if PC is not respond to push Function Key ? i hesitate to try until UEFI installation is matured tuyosi
Re: 'UEFI install to USB' fail
that PC is a note book. fortunately i remove battern for 30 minites . and power on , windows 10 comes up . bios is not damaged . now PC is 64bit not 32bit , UEFI is important . case reports contribute UEFI of openbsd .
Re: 'UEFI install to USB' fail
sorry mustake . cp /mnt/usr/mdec/BOOT* /mnt2/efi/boot --- now state ls -l ./EFI/BOOT/ total 280 -r-xr-xr-x 1 root root 110592 10æ 13 17:57 bootia32.efi -rwxr-xr-x 1 root root 120832 10æ 13 17:57 bootx64.efi drwxr-xr-x 2 root root 8192 10æ 14 02:07 drivers_x64 drwxr-xr-x 2 root root 8192 10æ 14 02:08 icons -rwxr-xr-x 1 root root 21895 10æ 14 02:51 refind.conf drwxr-xr-x 2 root root 8192 10æ 14 02:08 tools_x64
Re: 'UEFI install to USB' fail
i might manage to sucseed to boot openbsd by UEFI . this try is using USB stick. 1) on LINUX on linux's fdisk fdisk -l /dev/sdb Device Boot Start End Sectors Size Id Type /dev/sdb1 2048 1050623 1048576 512M b W95 FAT32 /dev/sdb4 1050624 3915775 2865152 1.4G a6 OpenBSD and i read https://wiki.netbsd.org/users/ryoon/how_to_install_netbsd_amd64_to_macbook_ai r_11_inch/ ftp> get pub/sourceforge/r/re/refind/0.8.2/refind-bin-0.8.2.zip # unzip refind-bin-0.8.2.zip # mount_msdos /dev/dk0 /mnt2 # cd /mnt2 # mkdir -p EFI/BOOT # cd EFI/BOOT # cp -r /refind-bin-0.8.2/refind/drivers_x64 . # cp -r /refind-bin-0.8.2/refind/tools_x64 . # cp -r /refind-bin-0.8.2/refind/icons . # cp /refind-bin-0.8.2/refind/refind_x64.efi bootx64.efi # cp /refind-bin-0.8.2/refind/refind.conf.sample refind.conf (i use refind-bin-0.8.3.zip***) now my state on linux root@debian:~# ls -l /mnt/sdb1 total 8 drwxr-xr-x 3 root root 8192 10æ 14 02:05 EFI root@debian:~# du /mnt/sdb1 312/mnt/sdb1/EFI/BOOT/drivers_x64 56/mnt/sdb1/EFI/BOOT/tools_x64 800/mnt/sdb1/EFI/BOOT/icons 1432/mnt/sdb1/EFI/BOOT 1440/mnt/sdb1/EFI 1456/mnt/sdb1 root@debian:~# ./comment-out.bat /mnt/sdb1/EFI/BOOT/refind.conf timeout 20 menuentry Linux { icon EFI/refind/icons/os_linux.png volume KERNELS loader bzImage-3.3.0-rc7 initrd initrd-3.3.0.img options "ro root=UUID=5f96cafa-e0a7-4057-b18f-fa709db5b837" disabled } menuentry Ubuntu { loader /EFI/ubuntu/grubx64.efi icon /EFI/refined/icons/os_linux.png disabled } menuentry openbsd {
Re: 'UEFI install to USB' fail
Close to resolution ? i have repeated experiment again . the result is ls -l EFI/BOOT -r-xr-xr-x 1 root root 110592 10æ 13 17:57 bootia32.efi <-- -rwxr-xr-x 1 root root 120832 10æ 13 17:57 bootx64.efi namely information from netbsd is needless . so [refind-bin-0.8.3.zip download] is not required . i recall what i have done for USB memory. 1) boot linux (in my cace deviandog : http://blog.livedoor.jp/hatahatajavq-12/archives/1039108656.html ) fdisk /dev/sdb fdisk -l /dev/sdb Device Boot Start End Sectors Size Id Type /dev/sdb1 2048 1050623 1048576 512M b W95 FAT32 <- /dev/sdb4 1050624 3915775 2865152 1.4G a6 OpenBSD mkfs.vfat /dev/sdb1 < 2)boot PC by openbsd CD op install58(amd64 snapshots) install openbsd by ordinal procedure . when [make dev] ends , # appers . then mount /dev/sd1i /mnt2 mkdir -p /mnt2/efi/boot cp /mnt/usr/mdec/BOOT* /mnt2/efi/boo what about this ? there may be some imcopleteness , then help me. --- regards , tuyosi
Re: solved qemu tap
i organized ' qemu and tap ' on http://qemuandopenbsd.blogspot.jp/2015/09/qemu.html but this is japanese . use translation site , for example . https://translate.google.co.jp/?hl=ja i can run tiny core plus ( with X and japanese input) perhaps there are mistaks . please point out them . regards
Re: solved qemu tap
as homework install run CorePlus-5.1-jaOK(by cdrom)X OK puppy precise571fail perhaps debian should be run as CUI (character base) in slow machine . is very attractive except its slowness . in this vertual space we develop defending power against evil crackers
Re: solved qemu tap
mistake cat /etc/hostname.bridge0 add vether0 add vio0 -> sis0 up but vio0 also work , why ? and instlatin process , tiny-core boot > but i donot know how to save . tiny-core-plus cannot boot again qemu is slow , so i hesitate to run debian or so .
solved qemu tap
Hi all . i manage to work qemu . all i do by root user . my situation -- internet | router(dhcpd server) | sis0 openbsd $ cat /etc/hostname.tun0 link0 up $ cat /etc/hostname.vether0 inet inet 192.168.1.194 255.255.255.0 NONE cat /etc/hostname.bridge0 add vether0 add vio0 up lo0: flags=8049mtu 32768 priority: 0 groups: lo inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff00 sis0: flags=8b43 mtu 1500 lladdr 00:0d:9d:83:1b:92 priority: 0 groups: egress media: Ethernet autoselect (100baseTX full-duplex) status: active inet 192.168.1.194 netmask 0xff00 broadcast 192.168.1.255 ^^ enc0: flags=0<> priority: 0 groups: enc status: active pflog0: flags=141 mtu 33192 priority: 0 groups: pflog vether0: flags=8902 mtu 1500 lladdr fe:e1:ba:d0:9c:4b priority: 0 groups: vether media: Ethernet autoselect status: active tun0: flags=9943 mtu 1500 lladdr fe:e1:ba:d2:eb:15 priority: 0 groups: tun status: active bridge0: flags=41 groups: bridge priority 32768 hellotime 2 fwddelay 15 maxage 20 holdcnt 6 proto rstp vether0 flags=3 port 6 ifpriority 0 ifcost 0 sis0 flags=3 port 1 ifpriority 0 ifcost 0 tun0 flags=3 port 8 ifpriority 0 ifcost 0 #qemu-image create Q.img 1G step1) intall openbsd into qemu cat qemu-1.bat qemu-system-i386 \ -m 256M \ -net nic,vlan=1,model=e1000,macaddr=fe:e1:ba:d3:e7:11 \ -net tap,vlan=1 \ -boot d \ -cdrom /dev/rcd0c \ Q.img and 2)run openbsd in qemu cat qemu-2.bat qemu-system-i386 \ -m 256M \ -net nic,vlan=1,model=e1000,macaddr=fe:e1:ba:d3:e7:11 \ -net tap,vlan=1 \ Q.img and qemu openbsd's addss is 192.168.1.223 . ^ so i ' ssh -l root 192.168.1.223'. then ifconfig -a show lo0: flags=8049 mtu 32768 priority: 0 groups: lo inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff00 em0: flags=8843 mtu 1500 lladdr fe:e1:ba:d3:e7:11 priority: 0 groups: egress media: Ethernet autoselect (1000baseT full-duplex) status: active inet 192.168.1.223 netmask 0xff00 broadcast 192.168.1.255 enc0: flags=0<> priority: 0 groups: enc status: active pflog0: flags=141 mtu 33192 priority: 0 groups: pflog linux may also run in openbsd's qemu. on rental sever , it's dhcpd server give only one address , this method is not good . does any one know how to do in only one adress ? in mint linux , see http://sakurapup.browserloadofcoolness.com/viewtopic.php?f=13=2955. i run both puppy linux and openbsd on mint linux. we make more information about defense by mutual attack . but this site is japanese . please use translaion site , for example google. and qemu is slow , kvm is fast . at present , it is comforatable to run 'openbsd qemu' in linux , - regards
make bootable CD by bootable USB
hi all . i make bootable openbsd USB stick by ordinaly installatin . if i can make bootable CD from this USB , it is very happy . are there any methods ? is linux's isolinux or so possible ? is it very difficult to solve ? === rebards
mediatomb , limits folda to be seen
Hi all . i installed mediatomb and sqlite with pkg_add . it works well . but all folds is seen by filesystem of mediatomb. i want than /MOVIES only is seen by filesystem of mediatomb . what should i do ? --- tuyosi
Re: elementary opensmtpd setting on rental server
thanks koko . for me , nsd is too hard . so i make a tryal to build intranet mail server with unbound , opensmtpd and dovecot without nsd or bind . see http://aoiyuma.mydns.jp/unbound+opensmtpd.html by using proper translation URL . - see you .
Re: elementary opensmtpd setting on rental server
Gilles's advices is essential ! i read http://yama-ga.seesaa.net/article/394367473.html too. so i rewrite smtpd.conf listen on lo0 listen on em0 port 25 listen on em0 port 465 listen on em0 port 587 table aliases db:/etc/mail/aliases.db accept from any for domain aoiyuma.mydns.jp alias aliases deliver to maildir accept from any for domain aoiyuma.mydns.jp deliver to maildir accept for localalias aliases deliver to maildir accept for local deliver to maildir mynetwork = 61.214.236.211/32 accept from source $mynetwork for any relay reject from any for any in this setting , i can send mail to x...@gmail.com and recieve mail from x...@gmail.com. and at http://www.rbl.jp/svcheck.php Mail Relay testing. Connecting to aoiyuma.mydns.jp for test ... 220 aoiyuma.mydns.jp ESMTP OpenSMTPD HELO h.rbl.jp 250 aoiyuma.mydns.jp Hello h.rbl.jp [115.125.246.68], pleased to meet you Relay test 0 RSET 250 2.0.0: Reset state MAIL FROM: rly...@h.rbl.jp 250 2.0.0: Ok RCPT TO: rlyt...@rbl.jp 550 Invalid recipient relay NOT accepted!! Relay test 1 RSET 250 2.0.0: Reset state MAIL FROM: rlychk relay NOT accepted!! Relay test 2 RSET relay NOT accepted!! Relay test 3 RSET relay NOT accepted!! Relay test 4 RSET relay NOT accepted!! Relay test 5 RSET relay NOT accepted!! Relay test 6 RSET relay NOT accepted!! Relay test 7 RSET relay NOT accepted!! Relay test 8 RSET relay NOT accepted!! Relay test 9 RSET relay NOT accepted!! Relay test 10 RSET relay NOT accepted!! Relay test 11 RSET relay NOT accepted!! Relay test 12 RSET relay NOT accepted!! Relay test 13 RSET relay NOT accepted!! Relay test 14 RSET relay NOT accepted!! Relay test 15 RSET relay NOT accepted!! Relay test 16 RSET relay NOT accepted!! Relay test 17 RSET relay NOT accepted!! Relay test 18 RSET relay NOT accepted!! Relay test 19 RSET relay NOT accepted!! Closing connection ... QUIT Relay test result All tests performed, no relays accepted. without fellows helps , i cannot . thanks for all tuyosi
Re: elementary opensmtpd setting on rental server
thanks for Denis |Tell me if I'm wrong but you don't listen on port 25 or 465. your advise is great ! /etc/mail/smtpd.conf is rewriten . listen on lo0 listen on em0 port 25-to recieve mail from gmx listen on em0 port 465 -to recieve mail from gmail table aliases db:/etc/mail/aliases.db accept from any for domain aoiXXX.mydns.jp alias aliases deliver to maildir accept from any for domain aoiXXX.mydns.jp deliver to maildir accept for localalias aliases deliver to maildir accept for local deliver to maildir reject from any for any -- then i can get mails from x...@gmail.com x...@gmx.com . buti cannot send mails to x...@gmail.com x...@gmx.com . but this is great progress .
Re: elementary opensmtpd setting on rental server
i have done my homework buti cannot send mails to x...@gmail.com x...@gmx.com . Do you have any error code or message ? thunderbird says --- An error occurred while sending mail. The mail server responded: Invalid recipient. --- Please check the message recipient n...@gmail.com and try again.Jul 24 04:06:43 aoiyuma /var/log/maillog says -- Jul 24 04:06:43 aoiYYY smtpd[6328]: smtp-in: New session d5af55f155071cfa from host pYYY.akita.ocn.ne.jp [6.2.222.333] Jul 24 04:06:44 aoiYYY smtpd[6328]: smtp-in: Failed command on session d5af55f1 55071cfa: RCPT TO:n...@gmail.com = 550 Invalid recipient - Invalid recipient !! - regards
Re: elementary opensmtpd setting on rental server
Hi all. sorry for my poor english. following may be illusion . but i do experiment . for example Gmail server 3.4.5.6--4.5.6.7PC1 | | aoi server 2.3.4.5 --1.2.3.4PC2 Gmail server reject mail from PC2 because Gmail server thinks that it is relayed by aoi. and aoi server reject mail from PC1 because aoi server thinks that it is relayed by Gmail. so , accordingly i rewrite /etc/mail/smtpd.conf listen on lo0 listen on em0 port 587 table aliases db:/etc/mail/aliases.db accept from any for domain aoi.jp alias aliases deliver to maildir accept from any for domain aoi.jp deliver to maildir accept for localalias aliases deliver to maildir accept for local deliver to maildir accept from local for any relay -- reject from any for any -- and then ssh -l user aoi.jp and directory echo '---mail to Gmail from aoi --'| mail x...@gmail.com then surely Gmail has this mail bcaue it is not relayed but directly . this is the reason 'send mail to Gmail' is easyier than 'recieve from Gmail ' normaly anybody cannot login Gmail server by ssh . pehaps relay setting of smtpd.conf is important . by now i have no good idea to deal it . -- regards
Re: mail server on rental server , cannot send gmail.com
thnks your advice . i shoud study postfix sasl reading following your teaching . http://www.postfix.org/BASIC_CONFIGURATION_README.html#relay_from etc i lookup thunderbird's automatic setting. port 587 connection security :none authentification method: passwd, tranmitted insecurely is it possible to fake IPV4 adress ? if so the internet address system collapsed . regards
Re: mail server on rental server , cannot send gmail.com
Hi,all. perhaps i solved the quize to send and rcieve email . openbsd mail server (this has main cf) | internet | 1.2.3.4 router | dhcp linux(thunderberd) in /etc/postfix/main.cf mynetworks = 127.0.0.0/8, 1.2.3.4/32 1.2.3.4 is obtaind curl ifconfig.me on linux . or show ifonfig.me on firefox details is on http://aoiyuma.mydns.jp/mail-server.html* * --- regards * *
Re: mail server on rental server , cannot send gmail.com
good advice. thanks Michael. tail /var/log/maillog is Jul 11 15:20:52 aoiyuma postfix/smtpd[9635]: warning: smtputf8_enable is true, but EAI support is not compiled in Jul 11 15:20:52 aoiyuma postfix/proxymap[20250]: warning: smtputf8_enable is true, but EAI support is not compiled in Jul 11 15:20:52 aoiyuma postfix/smtpd[9635]: connect from e0109-114-22-25-247.uqwimax.jp[114.22.25.247] Jul 11 15:20:52 aoiyuma postfix/anvil[24095]: warning: smtputf8_enable is true, but EAI support is not compiled in Jul 11 15:20:52 aoiyuma postfix/trivial-rewrite[29959]: warning: smtputf8_enable is true, but EAI support is not compiled in Jul 11 15:20:52 aoiyuma postfix/smtpd[9635]: NOQUEUE: reject: RCPT from e0109-114-22-25-247.uqwimax.jp[114.22.25.247]: 454 4.7.1 nakajin.fu...@gmail.com: Relay access denied; from=tuy...@openbsd.link to=nakajin.fu...@gmail.com proto=SMTP helo= aoiyuma.mydns.jp Jul 11 15:20:57 aoiyuma postfix/smtpd[9635]: lost connection after RCPT from e0109-114-22-25-247.uqwimax.jp[114.22.25.247] Jul 11 15:20:57 aoiyuma postfix/smtpd[9635]: disconnect from e0109-114-22-25-247.uqwimax.jp[114.22.25.247] helo=1 mail=1 rcpt=0/1 commands=2/3 and sylpheed says 'nakajin.fu...@gmail.com: Relay access denied' 114.22.25.247 is internet adress of sylpheed. and internet | 114.22.25.247 wifi router | 192.168.100.101 openbsd(sylpheed) --- regards
mail server on rental server , cannot send gmail.com
Hi ,all . i can send and recieve mail by using mail server on rental server . namely send to tuy...@openbsd.link recieve from tuy...@openbsd.link but now state , i cannot send mail to x...@gmail.com becase of relay host what should i do next ? my /etc/postfix/main.cf is --- myhostname = mail.openbsd.link mydomain = openbsd.link myorigin = $mydomain mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain inet_interfaces = all home_mailbox = Maildir/ mynetworks = 127.0.0.0/8 compatibility_level = 2 queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/man sample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme meta_directory = /etc/postfix shlib_directory = no and dovecot -n is # 2.2.15: /etc/dovecot/dovecot.conf # OS: OpenBSD 5.7 amd64 auth_mechanisms = plain login disable_plaintext_auth = no first_valid_uid = 1000 imap_client_workarounds = delay-newmail tb-extra-mailbox-sep tb-lsub-flags listen = * mail_location = maildir:~/Maildir mbox_write_locks = fcntl mmap_disable = yes namespace inbox { inbox = yes location = mailbox Drafts { special_use = \Drafts } mailbox Junk { special_use = \Junk } mailbox Sent { special_use = \Sent } mailbox Sent Messages { special_use = \Sent } mailbox Trash { special_use = \Trash } prefix = } passdb { driver = bsdauth } pop3_client_workarounds = outlook-no-nuls oe-ns-eoh protocols = imap ssl_cert = /etc/ssl/dovecotcert.pem ssl_key = /etc/ssl/private/dovecot.pem userdb { driver = passwd } details in http://aoiyuma.mydns.jp/mail-server.html . regards
Re: mail server on rental server , cannot send gmail.com
thanks trondd . http://mxtoolbox.com/diagnostic.aspx says smtp:mail.openbsd.link Monitor This Unable to connect after 15 seconds. TestResult SMTP ConnectFailed To ConnectMore Info Session Transcript: Connecting to 157.7.244.194 7/10/2015 5:00:41 PM Connection attempt #1 - Unable to connect after 15 seconds. [15.02 sec] and nslookup 157.7.244.194 - Server: 192.168.100.254 Address:192.168.100.254#53 Non-authoritative answer: 194.244.7.157.in-addr.arpa name = v157-7-244-194.myvps.jp. Authoritative answers can be found from: ah , [adress - name ] is not ready . i retern back to rental server setting . i will try it , but need some time . --- regards
* local * mail server using unbound only
Hi , all . about 1 month ago , i faild to build internet mail server althought many peaple help me . my study is immature , so i give it up , but i managed to build *local* mail server. for me , nsd is too difficult to use for my lack of bind knowledge. so i use unbound only . internet | wifi router | run0 :dhcp openbsd1 : server (mail,dhcpd,pf) bge0 :192.168.11.1 | fxp0 :dhcp openbsd2 and openbsd2 can send and recieve mail. my setteing is the followings URL . http://aoiyuma.mydns.jp/unbound.txt but this may contain mistakes . please point them out . some day , perhaps some day , i hope i will make internet mail server . - regards
Re: how to install OpenBSD in a computer with Linux and Grub2
i found very interesting method that uses linux grub2 to install openbsd . that is written in http://yanmoo.blogspot.jp/2012/04/vpsopenbsd.html. main poin is --- grub kopenbsd /bsd.rd grubboot by this method , i install debian and then oppenbsd in rental server. now openbsd uses whole disk (no debian) and run gui of openbsd . it is very fun!
Re: mail server on rental server ,cannot recieve mail
thanks for many kind advices , but i cannot recieve mail because of limits of my ability . namely pop3d is hard to overcome ssl . dovecot is also hard because it is involved to mx and postfix . i may study bind or so . so i give up dovecot , pop3d and pop3*.. --- but but i can read mail when i login server and use mutt although pkd_delete dovecot . namelyssh -l user rental server and mutt. i can read mail (japanese , of course). the seting to read Maildir/new is the settin of mutt. $ cat .muttrc set mbox_type=Maildir set folder=~/Maildir set mbox=~/Maildir set spoolfile=~/Maildir set mask=!^\\.[^.] set record=+.Sent set postponed=+.Drafts mailboxes `echo -n + ; find ~/Maildir -maxdepth 1 -type d -name .* -printf +'%f' ` - i satisfied this because of conserning managing rental server . in addition , my origin is long (tk0-123-45678.vs.sakura.ne.jp). perhaps by this reason i cannot send mail by postfix2 , can send mail postfix3. my main.cf settig now is - myhostname = abc.vs.sakura.ne.jp mydomain = vs.sakura.ne.jp myorigin = $myhostname mydestination = $myhostname localhost inet_interfaces = all home_mailbox = Maildir/ mynetworks = 127.0.0.0/8 compatibility_level = 2 queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/man sample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme meta_directory = /etc/postfix shlib_directory = no the reason why i do use port 587 instead of 25 (master.cf) is that port 25 blocking exist in test period's . -- regards
mail server on rental server ,cannot recieve mail
Hi,all. reciprocally i can send mail , but i can not recieve mail with sylpheed . all that i do is the next. 1) /usr/local/sbin/dovecot-mkcert.sh 2)/etc/postfix/main.cf - myhostname = abc.vs.sakura.ne.jp mydomain = vs.sakura.ne.jp myorigin = $myhostname mydestination = $myhostname localhost.$myhostname inet_interfaces = all home_mailbox = Maildir/ mynetworks = 127.0.0.0/8 relay_domains = $mydestination relayhost = queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/mansample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme 3)/etc/postfix/master.cf --- smtp inet n - - - - smtpd submission inet n - - - - smtpd pickupunix n - - 60 1 pickup cleanup unix n - - - 0 cleanup qmgr unix n - - 300 1 qmgr tlsmgrunix - - - 1000? 1 tlsmgr rewrite unix - - - - - trivial-rewrite bounceunix - - - - 0 bounce defer unix - - - - 0 bounce trace unix - - - - 0 bounce verifyunix - - - - 1 verify flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp relay unix - - - - - smtp showq unix n - - - - showq error unix - - - - - error retry unix - - - - - error discard unix - - - - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - - - - lmtp anvil unix - - - - 1 anvil scacheunix - - - - 1 scache 4) dovecot.conf -- protocols = imap listen = * dict { } !include conf.d/*.conf !include_try local.conf 5)10-auth.conf auth_mechanisms = plain login disable_plaintext_auth = no !include auth-system.conf.ext 6)10-mail.conf -- mail_location = maildir:~/Maildir namespace inbox { inbox = yes } mmap_disable = yes first_valid_uid = 1000 mail_plugin_dir = /usr/local/lib/dovecot mbox_write_locks = fcntl 7) 10-ssl.conf ssl = no ssl_cert = /etc/ssl/dovecotcert.pem ssl_key = /etc/ssl/private/dovecot.pem 8)pf.conf --- ext_if=vio0 tcp_services={ 22, 80, 143, 587 } icmp_types=echoreq set block-policy return set loginterface $ext_if set skip on lo set reassemble yes no-df block in log pass out quick antispoof quick for { lo } pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port $tcp_services pass in inet proto icmp all icmp-type $icmp_types 9)and then /etc/rc.d/postfix restart /etc/rc.d/dovecot restart 10)sylpheed smtp 587 imap 143 but i can send mail , but cannot recieve mail. A)# netstat -a | grep -w LISTEN is next tcp 0 0 *.ssh *.*LISTEN tcp 0 0 *.submissi *.*LISTEN tcp 0 0 *.imaps*.*LISTEN tcp 0 0 *.imap *.*LISTEN tcp 0 0 *.smtp *.*LISTEN tcp6 0 0 *.smtp *.*LISTEN tcp6 0 0 *.submissi *.*LISTEN tcp6 0 0 *.ssh *.*LISTEN it seems OK. B)as homework # postconf -n command_directory = /usr/local/sbin config_directory = /etc/postfix daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 home_mailbox = Maildir/ html_directory = /usr/local/share/doc/postfix/html inet_interfaces = all inet_protocols = all mail_owner = _postfix
Re: mail server on rental server ,cannot recieve mail
thanks for skinner , i now understand the difficulty of dovecot . it is the area of speciallist. so i return to pop3d. about 5 years ago , i can mail server with it . then # pkg_add pop3d The following new rcscripts were installed: /etc/rc.d/pop3d but # /usr/local/sbin/pop3d -d pop3d ready; type:mbox, path:/var/mail/%u fatal: ssl_load_file: Unable to load /etc/ssl/server.crt: No such file or directory Lost pop3 engine pop3d exiting how to make /etc/ssl/server.crt ? about 5 years ago , perhaps /etc/ssl/server.crt is not nesessary. sylpheed says. --- (sylpheed:4523): LibSylph-WARNING **: sock_read: received EOF (sylpheed:4523): GLib-CRITICAL **: Source ID 14156 was not found when attempting to remove it (sylpheed:4523): LibSylph-WARNING **: [04:28:31] shutdown by remote host.(ãªã¢ã¼ããã¹ãã«ãã£ã¦æ¥ç¶ãåæããã¾ããã) = regards
Re: mail server on rental server ,cannot send mail
sorry , i hide real adress and name for my privacy . Vice versa at my home , i cansentmail but cannot recieve mail . i first doubt dovecot setting . /etc/dovecot/dovecot.conf -- protocols = imap listen = * !include conf.d/*.conf /etc/dovecot/conf.d/10-mail.conf mail_location = maildir:~/Maildir namespace inbox { inbox = yes } mmap_disable = yes first_valid_uid = 1000 mail_plugin_dir = /usr/local/lib/dovecot mbox_write_locks = fcntl /etc/dovecot/conf.d/10-ssl.conf ssl = no # Correction ssl_cert = /etc/ssl/dovecotcert.pem ssl_key = /etc/ssl/private/dovecot.pem in mailer ,sylpheed -- smtp port ;587 imap4 port:143 # -Correction but in my company i can recieve mail by sylpheed with ( {protocols = imap in dovecot.conf} + { imap4 port 993 in sylpheed } ) . 143=imap 993=imaps /var/log/maillog does not show nothing when i recieve mail . to test relaying , i use http://www.rbl.jp/svcheck.php . it says only 'Error: Can't connect to abc.vs.sakura.ne.jp' it shows that the problem may be port closing . so i nmap my home address. result is PORT STATESERVICE 22/tcp open ssh 25/tcp filtered smtp 80/tcp open http namely ports 143 doesnot open. (so cannot revieve) ports 587 also doesnot open. (but can send ? ) i set wifi router at home 1) port forwarding 1 192.168.100.101 22 - 22 TCPUDP effective 2 192.168.100.101 80 - 80 TCPUDP effective 3 192.168.100.101 143 - 143 TCPUDP effective 4 192.168.100.101 587 - 587 TCPUDP effective 5 192.168.100.101 993 - 993 TCPUDP effective 2)pfctl -sr pass in on run0 inet proto tcp from any to (run0:0) port = 22 flags S/SA pass in on run0 inet proto tcp from any to (run0:0) port = 80 flags S/SA pass in on run0 inet proto tcp from any to (run0:0) port = 143 flags S/SA pass in on run0 inet proto tcp from any to (run0:0) port = 587 flags S/SA pass in on run0 inet proto tcp from any to (run0:0) port = 993 flags S/SA are there another point about opening ports ? i think opensmtpd and postfix and sendmail have the power of sending mail . -- regards
Re: mail server on rental server ,cannot send mail
thanks Matthew Martin. you give me important hints . i rewrite main.cf /etc/postfix/main.cf myhostname = abc.vs.sakura.ne.jp mydomain = vs.sakura.ne.jp myorigin = $myhostname inet_interfaces = all home_mailbox = Maildir/ relay_domains = $mydestination #- relayhost = #- mynetworks = 127.0.0.0/8#- mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain #- queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/man sample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme smtp_sasl_auth_enable = yes smtp_sasl_password_maps = hash:/etc/postfix/isp_auth smtp_sasl_security_options = noanonymous disable_dns_lookups = yes then i can send the srver via KEITAI(pocket phone ?) but i cannot send mail by PC . i guess the cause of not sending mail is company's router beause /var/log/maillog says - Jun 23 15:15:47 abc postfix/smtpd[20788]: lost connection after UNKNOWN from p123.akita.ocn.ne.jp[123.189.32.456] Jun 23 15:15:47 abc postfix/smtpd[20788]: disconnect from p123.akita.ocn.ne.jp[123.189.32.456] unknown=0/1 commands=0/1 Jun 23 15:16:32 abc dovecot: imap-login: Login: user=tuyosi, method=PLAIN, rip=123.189.32.456, lip=160.16.114.201, mpid=16847, TLS, session=UkDnVCkZQwDdvSB/ --- regards
mail server on rental server ,cannot send mail
few days ago i rented renal server for coninience . and i made mail server. but i cannot send mail although i receive mail. i think problems is in postfix setting . please point out problems . /etc/postfix/main.cf - myhostname = abc.vs.sakura.ne.jp mydomain = vs.sakura.ne.jp myorigin = $myhostname inet_interfaces = all mydestination = $myhostname localhost.$mydomain home_mailbox = Maildir/ relayhost = mynetworks = 127.0.0.0/8 160.16.123.123 queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/man sample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme smtp_sasl_auth_enable = yes smtp_sasl_password_maps = hash:/etc/postfix/isp_auth smtp_sasl_security_options = noanonymous disable_dns_lookups = yes /etc/postfix/master.cf --- smtp inet n - - - - smtpd submission inet n - - - - smtpd #- pickupunix n - - 60 1 pickup cleanup unix n - - - 0 cleanup qmgr unix n - - 300 1 qmgr tlsmgrunix - - - 1000? 1 tlsmgr rewrite unix - - - - - trivial-rewrite bounceunix - - - - 0 bounce defer unix - - - - 0 bounce trace unix - - - - 0 bounce verifyunix - - - - 1 verify flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp relay unix - - - - - smtp showq unix n - - - - showq error unix - - - - - error retry unix - - - - - error discard unix - - - - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - - - - lmtp anvil unix - - - - 1 anvil scacheunix - - - - 1 scache /etc/pf.conf ext_if=vio0 tcp_services={ 22, 25, 80, 143, 587, 993 } # -submisson port icmp_types=echoreq set block-policy return set loginterface $ext_if set skip on lo match out on $ext_if inet from !($ext_if:network) to any nat-to($ext_if:0) set reassemble yes no-df block in log pass out quick antispoof quick for { lo } pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port $tcp_services pass in inet proto icmp all icmp-type $icmp_types /etc/hosts 127.0.0.1 localhost ::1 localhost 160.16.114.201 abc.vs.sakura.ne.jp abc vs.sakura.ne.jp abc. 300 MX 10 abc.vs.sakura.ne.jp tk2-233-26197. abc300 A 160.16.114.201 /etc/resolv.conf -- lookup file bind nameserver 8.8.8.8 in mailer ,sylpheed -- smtp port ;587 imap4 port:993 erro is 'cannot connect SMTP server: abc.vs.sakura.ne.jp:587' tail /var/log/mail - Jun 23 13:09:41 abc postfix/smtpd[5923]: connect from p123.akita.ocn.ne.jp [210.789.321.123] -- regards
Re: how to restore partion order , openbsd's grub
*Hi Maurice http://marc.info/?a=10990797805r=1w=2* sorry ,PC has 1 ATA HDD(sd0 =sda) and 1 USB HDD(sd1 =sdb). i rsync arch from sdb to sda by linux , and edit it's /etc/fstab . then arch boot by openbsd's grub . i have two boot loader . ATA HDD's one is made by puppy's grub4dos and USB HDD'sone is made by openbsd's grub. now in openbsd cat /grub/menu.lst - default 0 timeout 10 title OpenBSD root (hd0,0) chainloader +1 title Porteus-v3.1 32bit root (hd1,0) kernel/boot/syslinux/vmlinuz changes=/porteus load=003-lxqt;locales-ja initrd/boot/syslinux/initrd.xz title p571-HDD root (hd1,0) kernel /p571/vmlinuz initrd /p571/initrd.gz title ARCH ok in ATA HDD - now can boot root (hd1,0) kernel /boot/vmlinuz-linux root=/dev/sda1 ro initrd /boot/initramfs-linux.img but ATA HDD has only 70GB. so iwant to use USB HDD(500GB). # disklabel sd0 #size offset fstype [fsize bsize cpg] a: 59945120 96356352 4.2BSD 2048 163841 c:1563014880 unused i: 9216 4196352 ext2fs -arch j: 4194304 2048 unknown # disklabel sd1 a: 62914560 2048 4.2BSD 2048 163841 # / c:9767731680 unused i:524288000 62916608 ext2fs -arch j: 8388608587206656 unknown k:251658240595597312 ext2fs -data area l:129515568847257600 ext2fs -ext2 - regards
how to restore partion order , openbsd's grub
Hi all . i can boot OS in sd0 by openbsd's grub . by the way openbsd linux sd0 =sda sd1 =sdb 1 months ago by using linux's fdisk fdisk /dev/sdb - n p 4 - t a6 (for openbsd) and ***then*** fdisk /dev/sdb - n p 1 (for linux) but 1 week ago i carelessly fdisk /dev/sdb by linux and x - f (fix partition disoder) and this after pkg_add grub i can boot openbsd in sd0 by openbsd's grub but i can not boot linux in sd1 by openbsd's grub ( the reason is perhaps i make fix partition disorder .) what should i do in /grub/files ? /grub/menu.lst --- default 0 timeout 10 title OpenBSD - can boot root (hd0,0) chainloader +1 title Porteus-v3.1 32bit - can boot root (hd1,0) kernel/boot/syslinux/vmlinuz changes=/porteus load=003-lxqt;locales-ja initrd/boot/syslinux/initrd.xz title puppy - can boot root (hd1,0) kernel /p571/vmlinuz initrd /p571/initrd.gz title ARCH root (hd0,1) - canNOT boot kernel /boot/vmlinuz-linux root=/dev/sdb2 ro initrd /boot/initramfs-linux.img grub-install /dev/sd1c - regards
expect rsync to recover files on some level
Hi all. i use rsync on *working* openbsd to expect in order to recover some files on some level . because when i rysnc -av /32G-USBmemory/ /harddiskdrive by booting 2G-USBmemory , ibus-anthy and xfce4-terminal die on harddiskdrive(opebsd itself works). and more 'pkg_add ibus-anthy ' does not have effect and 'using (tar -cvpf - .)|(tar -xpf -)' also end ibus-anthy and xfce4-terminal death. is the some difference in memory and harddisk ? --- mount_ext2fs /dev/sd1k /DATA rsync -avHx/.cshrc /DATA/RSYNC-working rsync -avHx/.profile /DATA/RSYNC-working rsync -avHx/altroot /DATA/RSYNC-working rsync -avHx/bin /DATA/RSYNC-working rsync -avHx/boot /DATA/RSYNC-working rsync -avHx/bsd /DATA/RSYNC-working rsync -avHx/bsd.rd /DATA/RSYNC-working rsync -avHx/dev /DATA/RSYNC-working rsync -avHx/etc /DATA/RSYNC-working rsync -avHx --exclude=home/Auser/.cache --exclude=home/Auser/.mozilla /DATA/RSYNC-working rsync -avHx/root /DATA/RSYNC-working rsync -avHx/sbin /DATA/RSYNC-working rsync -avHx/sys /DATA/RSYNC-working rsync -avHx/usr /DATA/RSYNC-working rsync -avHx/var /DATA/RSYNC-working --- regards
Re: japanese character on roxterm
hi all . at last i find the xfce4-terminal as th best japanese terminal . even menu is japanized . see http://openbsd-akita.blogspot.jp/2015/04/56-57-snapshot.html $ ./comment-out.bat .xinitrc export GTK_IM_MODULE=ibus export XMODIFIERS=@im=ibus export QT_IM_MODULE=ibus export LC_CTYPE=en_US.UTF-8 -- related ? /usr/local/bin/ibus-daemon -d -x -r jwm $ ./comment-out.bat .profile PATH=$HOME/bin:/bin:/sbin:/usr/bin:/usr/sbin:/usr/X11R6/bin:/usr/local/bin:/usr/local/sb$ export PATH HOME TERM export LANG=ja_JP.UTF-8 --- related ? export PKG_PATH=http://ftp.jaist.ac.jp/pub/OpenBSD/5.7/packages/i386 --- regards
Re: simple maiserver fail (postfix dovecot)
it is hard to understand even for me only to follow thread . so i write down at http://openbsd-akita.blogspot.jp/2015/05/wifi-router-run0-192.html if there are mistakes , please point them . --- regards
Re: simple maiserver fail (postfix dovecot)
thanks for skinner. owing to you , i manage to send mail at remote PC , 1) dynamic dns' mx problem i set mx following http://www.mhserv.info/co5/mydns.php . (sorry , real name is not a.mydns.jp , but a?.mydns.jp .) so # dig a.mydns.jp MX +short 10 a.mydns.jp. # dig a.mydns.jp MX --- ; DiG 9.4.2-P2 a.mydns.jp MX ;; global options: printcmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NOERROR, id: 49333 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;a.mydns.jp. IN MX ;; ANSWER SECTION: a.mydns.jp. 285 IN MX 10 a.mydns.jp. ;; Query time: 104 msec ;; SERVER: 192.168.100.254#53(192.168.100.254) ;; WHEN: Wed May 27 02:39:36 2015 ;; MSG SIZE rcvd: 50 # host a.mydns.jp --- a.mydns.jp has address 114.22.25.247 a.mydns.jp mail is handled by 10 a.mydns.jp. 2) /etc/dnsmasq.conf - listen-address=192.168.11.1# Example IP interface=bge0 dhcp-range=192.168.11.10,192.168.11.12,12h bind-interfaces3) Outbound port 25 Blocking problem how to solve it 3-1) /etc/pf.conf - ext_if=run0 int_if=bge0 tcp_services={ 22, 80, 143, 587 } #- icmp_types=echoreq set block-policy return set loginterface $ext_if set skip on lo match out on $ext_if inet from ($int_if:network) to any nat-to ($ext_if:0) set reassemble yes no-df block in log pass out quick antispoof quick for { lo $int_if } pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port $tcp_services pass in inet proto icmp all icmp-type $icmp_types pass in on $int_if 3-2) follow http://vine.1-max.net/postfix-OP25B.html namely /etc/postfix/main.cf myhostname = a.mydns.jp mydomain = mydns.jp myorigin = $myhostname inet_interfaces = all mydestination = $myhostname localhost.$mydomain home_mailbox = Maildir/ mynetworks = 192.168.100.0/24, 127.0.0.0/8 queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/man sample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme # --- relayhost = [smtp.gmobb.jp]:587 smtp_sasl_auth_enable = yes smtp_sasl_password_maps = hash:/etc/postfix/isp_auth smtp_sasl_security_options = noanonymous #--- /etc/postfix/isp_auth - [smtp.gmobb.jp]:587 t?@ki.gmobb.jp:S /etc/postfix/master.cf -- smtp inet n - - - - smtpd submission inet n - - - - smtpd #- pickupunix n - - 60 1 pickup cleanup unix n - - - 0 cleanup qmgr unix n - - 300 1 qmgr tlsmgrunix - - - 1000? 1 tlsmgr rewrite unix - - - - - trivial-rewrite bounceunix - - - - 0 bounce defer unix - - - - 0 bounce trace unix - - - - 0 bounce verifyunix - - - - 1 verify flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp relay unix - - - - - smtp showq unix n - - - - showq error unix - - - - - error retry unix - - - - - error discard unix - - - - - discard local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - - - - lmtp anvil unix - - - - 1 anvil scacheunix - - - - 1 scache thanks again for OpenBSD fellow's support. regards tuyosi takesima
Re: simple maiserver fail (postfix dovecot)
Hi all , thanks for good advices of EdgarThomas , i manage to build mailserver . in the condition wifi router | openbsd PC1(mail sever , dnsmasq ) bge0: 192.168.11.1 | openbsd PC2 PC2's sylpheed can send and recieve mail . all my setting is next. 1) tail -10 /etc/login.conf :openfiles-cur=512:\ :tc=daemon: # Dovecot dovecot:\ :openfiles-cur=2048:\ :openfiles-max=4096:\ :tc=daemon: --- http://comments.gmane.org/gmane.os.openbsd.misc/207288 also tells it. 2) /etc/dovecot/dovecot.conf -- protocols = imap listen = * !include conf.d/*.conf 3) /etc/dnsmasq.conf -- listen-address=192.168.11.1# Example IP interface=bge0 dhcp-range=192.168.11.10,192.168.11.12,12h 4) #/etc/dovecot/conf.d/auth-system.conf.ext --- passdb { driver = bsdauth } userdb { driver = passwd } /etc/dovecot/conf.d/10-ssl.conf -- ssl = yes ssl_cert = /etc/ssl/dovecotcert.pem ssl_key = /etc/ssl/private/dovecot.pem sometimes i change pop3d ,but it doesnot run background. akpop3d can not suite for imap . courier-imap is difficult . thanks for all . -- regards , tuyosi
Re: simple maiserver fail (postfix dovecot)
it is very sorry that in the previou setting , from outside(namely not intra-net) sylpheed can recieve mail but can not send mail to u...@a.mydns.jp . and more gmail can not send mail to u...@a.mydns.jp . perhaps dovecot settig is wrong . --- regards tuyosi
Re: simple maiserver fail (postfix dovecot)
Hello. Thomas. thanks your kind advice , so i make some progress , but fail. i focus dovecot . 1)now i do Edit /etc/ssl/dovecot-openssl.cnf (Edit this accordingly!) /usr/local/sbin/dovecot-mkcert.sh 2) telnet a.mydns.jp 143 Trying 192.168.100.101... Connected to a.mydns.jp. Escape character is '^]'. ---no errot (BUT after this what should i do ?) 3) tail /var/log/messages May 24 15:03:52 a dnsmasq[26539]: setting --bind-interfaces option because of OS limitations tail /var/log/maillog May 24 15:03:53 a postfix/postfix-script[10052]: starting the Postfix mail system May 24 15:03:54 a postfix/master[24067]: daemon started -- version 2.11.4, configuration /etc/postfix May 24 15:03:54 a dovecot: master: Dovecot v2.2.15 starting up for imap, pop3, lmtp May 24 15:03:54 a dovecot: master: Error: service(imap-urlauth-worker): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(imap-urlauth): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: open(/var/dovecot/login-master-notify4da6a88940c548de) failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(imap-urlauth-login): safe_mkstemp(/var/dovecot/login-master-notify) failed: Too many open files May 24 15:03:54 a dovecot: master: Error: open(/var/dovecot/login-master-notifye190f0b4219493b5) failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(imap-login): safe_mkstemp(/var/dovecot/login-master-notify) failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(doveadm): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(dns_client): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(director): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(dict): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(config): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(auth): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(auth-worker): pipe() failed: Too many open files May 24 15:03:54 a dovecot: master: Error: service(anvil): command startup failed, throttling for 2 secs May 24 15:04:04 a dovecot: ssl-params: Fatal: Error reading configuration: Timeout reading config from /var/dovecot/config May 24 15:04:04 a dovecot: master: Error: service(ssl-params): command startup failed, throttling for 2 secs May 24 15:04:04 a dovecot: anvil: Fatal: master: service(anvil): child 31420 returned error 89 (Fatal failure 3) /etc/dovecot/conf.d/10-auth.conf auth_mechanisms = plain !include auth-system.conf.ext disable_plaintext_auth = no /etc/dovecot/conf.d/10-mail.conf mail_location = maildir:~/Maildir namespace inbox { inbox = yes } mmap_disable = yes first_valid_uid = 1000 mail_plugin_dir = /usr/local/lib/dovecot mbox_write_locks = fcntl /etc/dovecot/dovecot.conf protocols = imap pop3 lmtp listen = * this is the full output of my dovecot.conf. 4) need not /etc/pam.d/dovecot on OpenBSD - OK /etc/dovecot/conf.d/auth-system.conf.ext --- passdb { driver = bsdauth } userdb { driver = passwd } - regards , tuyosi
simple maiserver fail (postfix dovecot)
Hi all now it is hard to build mail server using postfix and dovecot for me . previously i can do it postpix and pop with ease. now i only can do on mail server telnet a.mydns.jp 25 Trying 192.168.100.101... Connected to a.mydns.jp. Escape character is '^]'. 220 a.mydns.jp ESMTP Postfix but # telnet a.mydns.jp 143 Trying 192.168.100.101... Connected to a.mydns.jp. Escape character is '^]'. Connection closed by foreign host. ~ so , my setting files have mistakes. please give me some advices. i only aim simple setting because of only personal use . /etc/postfix/main.cf --- myhostname = a.mydns.jp - i use dnynamic dns . mydomain = mydns.jp myorigin = $myhostname inet_interfaces = all mydestination = $myhostname localhost.$mydomain home_mailbox = Maildir/ mynetworks = 192.168.100.0/24, 127.0.0.0/8 queue_directory = /var/spool/postfix command_directory = /usr/local/sbin daemon_directory = /usr/local/libexec/postfix data_directory = /var/postfix mail_owner = _postfix inet_protocols = all unknown_local_recipient_reject_code = 550 debug_peer_level = 2 debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id sleep 5 sendmail_path = /usr/local/sbin/sendmail newaliases_path = /usr/local/sbin/newaliases mailq_path = /usr/local/sbin/mailq setgid_group = _postdrop html_directory = /usr/local/share/doc/postfix/html manpage_directory = /usr/local/man sample_directory = /etc/postfix readme_directory = /usr/local/share/doc/postfix/readme /etc/dovecot/dovecot.conf - protocols = imap listen = * mail_location = maildir:~/Maildir /etc/dovecot/conf.d/10-auth.conf - disable_plaintext_auth = no auth_mechanisms = plain !include auth-system.conf.ext /etc/pf.conf - ext_if=run0 int_if=bge0 tcp_services={ 22, 80, 25, imap } icmp_types=echoreq set block-policy return set loginterface $ext_if set skip on lo match out on $ext_if inet from !($ext_if:network) to any nat-to ($ext_if:0) set reassemble yes no-df block in log pass out quick antispoof quick for { lo $int_if } pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port $tcp_services pass in inet proto icmp all icmp-type $icmp_types pass in on $int_if pass in on $ext_if proto tcp to port 21 pass in on $ext_if proto tcp to port 49151: /etc/dnsmasq.conf - is dns not nessesary ? listen-address=127.0.0.1 listen-address=192.168.11.1 mx-host=mydns.jp, a.mydns.jp, 50 to start mail server , cp /etc/resolv.conf-127 /etc/resolv.conf /etc/rc.d/dnsmasq restart /etc/rc.d/postfix restart /etc/rc.d/pop3d stop /etc/rc.d/dovecot restart /etc/resolv.conf-127 --- nameserver 127.0.0.1 nameserver 8.8.8.8 lookup file bind i wonder 2 ponts. 1) in /usr/local/share/doc/dovecot/wiki/PasswordDatabase.PAM.txt but no example about openBSD . 2) in /etc/dovecot/conf.d/auth-system.conf.ext # PAM authentication. Preferred nowadays by most systems. # PAM is typically used with either userdb passwd or userdb static. # REMEMBER: You'll need /etc/pam.d/dovecot file created for PAM # authentication to actually work. doc/wiki/PasswordDatabase.PAM.txt i donot know how to make /etc/pam.d/dovecot regards
report:intranet PXE network install (by nginx...)
hi all . i install 5.7 using intranet (internet is unnesesary) i expense some time . for covinience i report it. sis0 openbsd PXE server ne3 :192.168.11.1 | PC ( openbsd will be installed) 1) dhcpd # cat /etc/hostname.ne3 inet 192.168.11.1 255.255.255.0 # cat /etc/dhcpd.interfaces ne3 # cat /etc/dhcpd.conf option domain-name example.com; option domain-name-servers 8.8.8.8; subnet 192.168.11.0 netmask 255.255.255.0 { option routers 192.168.11.1; filename pxeboot; range 192.168.11.30 192.168.11.31; default-lease-time 86400; max-lease-time 9; } 2)tftpb # ls -l /tftpboot/ total 13860 -rw-r--r-- 1 root wheel 6987854 Apr 30 01:21 bsd.rd drwxr-xr-x 2 root wheel 512 Apr 30 09:04 etc -rw-r--r-- 1 root wheel81108 Apr 30 01:04 pxeboot # cat /tftpboot/etc/boot.conf boot tftp:/bsd.rd AND tftpd /tftpboot 3)nginx -- cat /etc/nginx/nginx.conf worker_processes 1; worker_rlimit_nofile 1024; events { worker_connections 800; } http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; listen [::]:80; server_name 192.168.11.1; root /var/www/htdocs; error_page 500 502 503 504 /50x.html; location = /50x.html { root /var/www/htdocs; } } } ls /var/www/htdocs/pub/5.7 INSTALL.i386 base57.tgz bsd.rd index.txt --- important, i think. xbase57.tgz xshare57.tgz SHA256 bsd comp57.tgz man57.tgzxfont57.tgz SHA256.sig bsd.mp game57.tgz pxeboot xserv57.tgz that is all . i try automatic install , but how to make partition is hard to be controlled . and this method is adopeted in case of upgrade . _ regards in case of /etc/httpd.conf ext_addr=192.168.11.1 server www.intranet.com { listen on $ext_addr port 80 root /htdocs/5.7 }
Re: report:intranet PXE network install (by nginx...)
securiy is most inportant for airplain. my writing unperfect ,so may be dangerous . by the way i have little expirience of domain name server . so, i have three question. in dnsmasq 1) does /etc/hosts alow alias ? 2) is /etc/resolv.conf important ? 3) soft link perhaps fail example cd /var/www/htdocs/pub/OpenBSD/5.7/ ln -s /home/Auser/i386 i386 what should i do ? i use dnsmaq in pxe server ,because it is simple . (/etc/rc.d/dhcpd stop , don't run tftpd) network is next. sis0 openbsd PXE server=dnsmasq ne3 :192.168.11.1 | PC ( openbsd will be installed) A) /etc/dnsmasq.conf listen-address=127.0.0.1 listen-address=192.168.11.1 interface=fxp0 dhcp-range=192.168.11.10,192.168.11.12,12 hdhcp-boot=pxeboot enable-tftp tftp-root=/tftpboot B) /etc/hosts 127.0.0.1 localhost ::1 localhost 192.168.11.101.net 192.168.11.102.net ---alias OK? C)/etc/nginx/nginx.conf worker_processes 1; worker_rlimit_nofile 1024; events { worker_connections 800; } http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; listen [::]:80; server_name 01.net; root /var/www/htdocs; error_page 500 502 503 504 /50x.html; location = /50x.html { root /var/www/htdocs; } } server { listen 80; listen [::]:80; server_name 02.net; root /var/www/htdocs/pub/OpenBSD/5.7/i386; error_page 500 502 503 504 /50x.html; location = /50x.html { root /var/www/htdocs/pub/OpenBSD/5.7/i386; } } shell script - ifconfig fxp0 192.168.11.1/24 /etc/rc.d/dnsmasq restart /etc/rc.d/nginxrestart to upgrade - use 01.net - /pub/OpenBSD/5.7/i386 use 02.net - / this plane fly , but it may drop . - regards
Re: pf.conf something is VERY wrong here, need advice.
your pf.conf is veriy similar to me . perhaps it comes from small office different # increase default state limit from 10'000 states on busy systems #set limit states 10 mine ext_if=urtwn0 int_if=bge0 tcp_services={ 22, 80 } icmp_types=echoreq set block-policy return set loginterface $ext_if set skip on lo match out on $ext_if inet from !($ext_if:network) to any nat-to ($ext_if:0) set reassemble yes no-df block in log pass out quick antispoof quick for { lo $int_if } pass in on $ext_if inet proto tcp from any to ( $ext_if:0 ) port $tcp_services pass in inet proto icmp all icmp-type $icmp_types pass in on $int_if --- regards
Re: Blocking Teamviewer
teamviewer access over all-too-common firewall . it is convinient ,but it is dangerous to company . in my intranet experiment , i manage to prevent access from windows81's teamviewer to linux's teamviewer. i touch squid after long iinterval , so there perhaps are mistakes . the followings may be false illusion . after serching internet ,my setting is next. internet | | wifi router---windows81 | | urtwn0 dhcp openbsd fxp0 192.168.64.1/24(dhcpd) | | dhcp linux (firefox editpreferenceadavancesettinghttp proxy 192.168.64.1 port 3128 1st # ./comment-out.bat /etc/squid/squid.conf acl localnet src 10.0.0.0/8 # RFC1918 possible internal network acl localnet src 172.16.0.0/12 # RFC1918 possible internal network acl localnet src 192.168.0.0/16 # RFC1918 possible internal network acl localnet src fc00::/7 # RFC 4193 local private network range acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow localhost manager http_access deny manager http_access allow localnet http_access allow localhost http_access deny all http_port 3128 coredump_dir /var/squid/cache refresh_pattern ^ftp: 144020% 10080 refresh_pattern ^gopher:14400% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 432 2nd # ./comment-out.bat /etc/pf.conf ext_if=urtwn0 int_if=fxp0 set skip on lo set skip on {pfsync} set reassemble yes no-df pass in quick log on $ext_if inet proto tcp to port 80 divert-to 127.0.0.1 port 3128 pass out quick from 127.0.0.1 divert-reply 3rd linux access internet . --- tuyosi takesima
Re: recommended input methods?
as for japanese , i use ibus-anthy jwm .( roxterm) about the reason of jwm , please look at http://openbsd-akita.blogspot.jp/2015/04/56-57-snapshot.html the icon(right under) show ether japaese anthy state or english state click the icon , then the state can be changed . - how to use ius-anthy is in http://openbsd-akita.blogspot.jp/2014/06/openbsd-nat-box-x.html
Re: japanese character on roxterm
in addtion. in case of japanese file name , uxterm is not OK. namely it cannot ' touch 'japanese-name.txt' roxterm goes well .---touch ã«ã»ãèª.txt and $ cat /usr/local/bin/lll ls $1 | cat - this lll is goes well. --- regards
5.7 snapshots
Hi all . 5.7 snapshots almost go well by using http://mirror.internode.on.net (pkg_add-iu) . but only except is cmixer . so i use xfce4-mixer.
Re: jwm ; speedy window manager
sorry for low level response , about openbox , all know that $ cp -R /etc/xdg/openbox/* ~/.config/openbox $ cat .xinitrc exec openbox-session by the way in linux , i love lxde (speed=xfce4 , but more modern). and i have recieved email. that recommend i3 ( http://i3wm.org/ ) which says that i3 is a tiling window manager, completely written from scratch. The target platforms are GNU/Linux and BSD operating systems, our code is Free and Open Source Software (FOSS) under the BSD license. --- tuyosi takesima
Re: jwm ; speedy window manager
i use ibus-anthy $ pkg_info | grep ibus ibus-1.5.5 intelligent input bus framework ibus-anthy-1.5.4japanese input engine for ibus and start by it /usr/local/bin/ibus-daemon -d -x -r i'll try cwm someday after studing it . thank you. --- tuyosi takesima
Re: jwm ; speedy window manager
thanks fo reply . i understand jwm's state at present. openbsd's default X window manager(i don't know it's name) is difficult to use especially non-english language user . it's defect is that it doesn't show the state of input method. jwm show the state of input method(right under) and speedy . due to http://d.hatena.ne.jp/linuzau/20090201/1233468585 Window manager Memory usageGUI Window placement amiwm Small # Floating awesome Small × Tile type blackboxSmall # Floating dwm Small × Tile type enlightment Small # Floating evilwm Small × Floating fluxbox Small # Floating flwmSmall # Floating fvwm2 Small # Floating gnome Large # Floating jwm Small # Floating kde Large # Floating lwm Small × Floating metacitySmall × Floating olwmSmall # Floating openbox Small # Floating qvwmSmall # Floating ratpoison Small × Tile type sawfish Small × Floating stumpwm Medium × Tile type twm Small # Floating wmii2 Medium × Tile type xfce4 Medium # Floating is there another light X window manager in openbsd ? --- tuyosi takesima
jwm ; speedy window manager
Hi , all . i recommend jwm as window manager . it is light ant easy to use . so it is used on puppy linux . 1) pkg_add jwm 2) .xinitrc jwm 3) startx that all tuyosi takesima
Re: install openbsd to the area made by LINUX's fdisk
finally, i bring previos installed openbsd USB HDD(40G) . boot PC by 2G . and then insert 40G 500G and then clone 40G to 500G rm -rf /mnt-500/* (cd /mnt-40 ; tar cvpf - .)|(cd /mnt-500 ; tar xpf -) cp /etc/fstab /mnt-500/etc reboot boot PC by 500G nano /etc/hostname.run0 at last i enjoy previous installed environment on 500G(openbsd+arch+porteus+puppy+android) see you
Re: install openbsd to the area made by LINUX's fdisk
hi,all. see over the sky CD boot 2GUSB - install openbsd into 2G by install CD boot 2G + 500G - clone 2G to 500GUSB by install -format- command line (if boot load commnd , the next step is unnessesary ) CD boot 500G - load boot loader into 500G by upgrade in the ---past--- not now , i tried the next commnd /usr/sbin/installboot /mnt1/boot /usr/mdec/biosboot sd1 but there was no effect to install openbsd's boot loader . something changed? http://www.openbsd.org/faq/faq14.html suggest show only -- installboot sd0 (for example) -- is this too simple code fact ? --- by tuyosi takesima
Re: install openbsd to the area made by LINUX's fdisk
thanks for comment . i cannot install boot loader of openbsd by command . i want to know it . so i chose step of ---upgrade . by my menu.lst ,OpenBSD is not booted up by grub4dos only . title OpenBSD chainloader (hd0,3)+1 rootnoverify (hd0,3) boot this menu is dependent of openbsd's boot loader . but there should be menu.lst only by gub4dos boot loader . tuyosi takesima , a japanese
install openbsd to the area made by LINUX's fdisk
Hi all. this is my little expirience , it may be useful using openbsd linux in tha same hard disk . I made the openbsd area by LINUX's fdisk. namely fdisk -l /dev/sdb (500GB USB hard disk) Device Boot Start End Sectors Size Id Type sdb1 22528 3891199 3868672 1.9G 82 Linux swap / Solaris sdb2 2048 22527 20480 10M c W95 FAT32 (LBA) sdb3 3891200 842751999 838860800 400G 5 Extended sdb4 842752000 976773167 134021168 63.9G a6 OpenBSD sdb5 3893248 213608447 209715200 100G 83 Linux sdb6 * 213610496 528183295 314572800 150G 83 Linux sdb7 528185344 842751999 314566656 150G 7 HPFS / NTFS / exFAT i want to install openbsd OS into sdb4 . But to install OpenBSD directly is risky . if i fail , i lose all (including linux) . So I changed the strategy. install first on 2G USB. then clone copy to 500G USB sdb4 . After connecting the 2G USB and 500G USB , I boot by openbsd CD . press ctrl + c, I look at the way of 2G and 500G by 'dmesg' . 500G is recognized as sd1. 2G as sd2. i install openbsd OS into ---OpenBSD area---. When sd1 is formatted , i put ctrl + c. my way is always a (/) and b (swap) only . so # mkdir / mnt0 # mkdir / mnt1 # Mount /dev/sd2a / mnt0 # Mount /dev/sd1a / mnt1 # (cd / mnt0;. tar cvpf -) | (cd / mnt1; tar xpf -) clone copy itself is completed. But the boot loader is not . Therefore I will install boot loader . afte unplug the 2G, put 500G only ,then i boot by openbsd CD. Now select the ---upgrade---, When i came to the stage 'bsd.rd etc', i select ---abort---. all is done . by using previos menu.lst , i boot openbsd in 500G by grub4dos . After i launched openbsd , I comment out the xdm in /etc/rc.conf.local. sorry for my poor english --- tuyosi takesima , Japan
Re: nginx how to run first site as open , and second
thanks for einfach's kind advise , i at last do it. final nginx.conf is worker_processes 1; worker_rlimit_nofile 1024; events { worker_connections 800; } #h http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; listen [::]:80; server_name localhost;#-for test root /var/www/d1; auth_basic Restricted; auth_basic_user_file /var/www/1/.htpasswd; } #0 server { listen 80; listen [::]:80; server_name a.mydns.jp; root /var/www/d0; auth_basic Restricted; auth_basic_user_file /var/www/1/.htpasswd; } #1 server { listen 80; listen [::]:80; server_name s.sun.ddns.vc; root /var/www/d1; auth_basic Restricted; auth_basic_user_file /var/www/1/.htpasswd; } #2 server { listen 80; listen [::]:80; server_name k.sun.ddns.vc; root /var/www/d2; auth_basic Restricted; auth_basic_user_file /var/www/2/.htpasswd; } #11 server { listen 80; listen [::]:80; server_name member.planex.ddns.vc; root /var/www/d11; auth_basic Restricted; auth_basic_user_file /var/www/11/.htpasswd; } #12 server { listen 80; listen [::]:80; server_name n.luna.ddns.vc; root /var/www/d12; auth_basic Restricted; auth_basic_user_file /var/www/12/.htpasswd; } #h } and i run openbsd on USB only about 4GB . so i must use hard sisk . Filesystem 512-blocks Used Avail Capacity Mounted on /dev/sd1a 8293692 5045444 283356464%/ /dev/sd0a 58566000 30109240 2548143254%/var/www so # cat /etc/rc.local umount /var/www mount_ext2fs /dev/sd0a /var/www # -ext2fs if [ -x /usr/local/sbin/nginx ]; then echo ' - Starting nginx - '; /etc/rc.d/nginx -f start fi because cat /etc/rc.d/nginx #!/bin/sh # # $OpenBSD: nginx,v 1.1 2012/02/19 11:34:36 robert Exp $ daemon=/usr/local/sbin/nginx #-- . /etc/rc.d/rc.subr pexp=nginx:.*master.*process rc_reload() { ${daemon} -s reload } rc_stop() { ${daemon} -s stop || pkill -f ^${pexp} } rc_cmd $1 and cat /etc/rc.shutdown umount /var/www/ thanks thanks -- tuyosi * http://marc.info/?a=14167909673r=1w=2*
Re: nginx how to run first site as open , and second
Hi ,all . how to compile nginx who has ability of basic auth using ports ? according to http://wiki.nginx.org/Modules , if auth_basic is not wanted, compile nginx --without-http_auth_basic_module . --- i need basic auth because of family privacy photos , i run nginx on arch linux out of need . nginx.conf is worker_processes 1; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; sendfileon; keepalive_timeout 65; # local server { listen 80; server_name localhost; root /mnt-nginx/d3; index index.html index.htm; auth_basic Restricted; auth_basic_user_file /etc/nginx/13/.htpasswd; # 13 insted of require } #-open-mydns server { listen 80; server_name a.mydns.jp; root /mnt-nginx/d1; index index.html index.htm; } #-basic auth---ddns server { listen 80; server_name s.sun.ddns.vc; root /mnt-nginx/htdocs/Fam; index index.html index.htm; auth_basic Restricted; auth_basic_user_file /etc/nginx/1/.htpasswd; # 1 insted of require } } --- tuyosi
Re: nginx how to run first site as open , and second
thanks for good advise . surely no need to compile to obtain basic auth . my test nginx.conf is next . cat /etc/nginx /nginx.conf worker_processes 1; worker_rlimit_nofile 1024; events { worker_connections 800; } http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; listen [::]:80 server_name s.sun.ddns.vc; root /var/www/htdocs; error_page 500 502 503 504 /50x.html; auth_basic Restricted; auth_basic_user_file /var/www/1/.htpasswd; location = /50x.html { root /var/www/htdocs; } } } when intenal server error occur .i overcom by ' chown -R www /var/www ' . is this right ? -- tuyosi
nginx how to run first site as open , and second as basic auth .
hi,all . i use name based virtual host (=server block). i want to run first site as open and second site as ristricted (basic auth), but it is hard to do and there is little information on internet about this . it is easy to run only name based virtualhost (=server block) . nginx.conf is next . worker_processes 1; worker_rlimit_nofile 1024; events { worker_connections 800; } http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; listen [::]:80; server_name a.mydns.jp; --- 1st site root /var/www/htdocs/d1; } server { listen 80; listen [::]:80; server_name s.sun.ddns.vc; --- 2nd site root /var/www/htdocs/d2; } } --- give me some hints .
Re: nginx how to run first site as open , and second
thanks for kind reply . i rewrite /etc/nginx/nginx.conf . worker_processes 1; worker_rlimit_nofile 1024; events { worker_connections 800; } http { include mime.types; default_type application/octet-stream; index index.html index.htm; keepalive_timeout 65; server_tokens off; server { listen 80; listen [::]:80; server_name aoiyuma.mydns.jp; root /var/apache2/d1; } server { listen 80; listen [::]:80; server_name saigyou.sun.ddns.vc; root /var/apache2/d2; auth_basic Test site; auth_basic_user_file /etc/nginx/.htpasswd; } } but by using walking telephone , internal server error happens . about apache2 , ' Require user XXX ' is needed in nginx , is it not nessesary ? --- tuyosi
Re: nginx how to run first site as open , and second
i think , think ,so i try archlinux's nginx . the following /etc/nginx/nginx.conf goes well. -- worker_processes 1; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; sendfileon; keepalive_timeout 65; server { listen 80; server_name a.mydns.jp; root /srv/http; index index.html index.htm; } server { listen 80; server_name s.sun.ddns.vc; root /srv/http/Fam/; index index.html index.htm; auth_basic Restricted; #For Basic Auth auth_basic_user_file /etc/nginx/.htpasswd; #For Basic Auth } } in archlinux 21 nginx -V | tr -- - '\n' | grep _module is next (see http://serverfault.com/questions/223509/how-can-i-see-which-flags-nginx-was-compiled-with ) imap_ssl_module http_dav_module http_gunzip_module http_gzip_static_module http_realip_module http_spdy_module http_ssl_module http_stub_status_module http_addition_module http_degradation_module http_flv_module http_mp4_module http_secure_link_module http_sub_module but in openbsd , there are much less modules by security first policy . so basic auth except ssl is ineffective in openbsd , so i think . - tuyosi
Re: how to , apache's ' AuthType Basic '
i thank you for very nice advise. i will try apache-httpd-2.2.27p4.tgz. translation site is https://translate.google.com/ . please input URL , then the site translate it in english .
Re: how to , apache's ' AuthType Basic '
i managed to work 'Basic Auth' but there may be mistakes . please correct them . www root is /var/apache2/htdocs/ . conf file is /etc/apache2/httpd2.conf . cd /etc/apache2/ htpasswd .htpasswd XXX chmod 644 .htpasswd - correct ? # head /etc/apache2/httpd2.conf Directory /var/apache2/htdocs/YYY AuthType Basic AuthName Secret Zone AuthUserFile /etc/apache2/.htpasswd Require user XXX /Directory --- tuyosi
how to , apache's ' AuthType Basic '
hi ,all . in arch linux , apache's 'AuthType Basic' is easy . i follow http://www.atmarkit.co.jp/flinux/rensai/linuxtips/698apachebasic.html as a whole. detail is a little different . the following . # ls -l /srv/http/ -rw-r--r-- 1 root root 28 12æ 10 12:03 index.html drwxr-xr-x 2 root root 4096 12æ 10 13:09 member # head /etc/httpd/conf/httpd.conf Directory /srv/http/member AuthType Basic AuthName Secret Zone AuthUserFile /etc/httpd/.htpasswd Require user secret /Directory htpasswd -c /etc/httpd/.htpasswd secret but openbsd's apache is defferent . this method is out . there is little iformation on iternet about openbsd's 'AuthType Basic' . what should i do ? the newest is not best . the best is best .
new installed openbsd5.6 's sysctl.conf
hi ,all . the new 5.6 machine's /etc/sysctl.conf is only machdep.lidsuspend=1 # Try to suspend on lid close so i get etc55.tgz . when i do ' tar xvzf etc55.tgz in ETC folda , old sysctl.conf appears . namely head ETC/etc/sysctl.conf # $OpenBSD: sysctl.conf,v 1.54 2012/09/20 12:51:43 yasuoka Exp $ ... #net.inet.ip.forwarding=1 # 1=Permit forwarding (routing) of IPv4 packets ... i use net.inet.ip.forwarding=1 . 5.6 is faster than 5.5 , but this change is a little inconvinient . --- by tuyosi
Re: new installed openbsd5.6 's sysctl.conf
*Jeremy http://marc.info/?a=14150234434r=1w=2's advice is very useful .* *by the way 'pkg_add icedtea_web' is now possible in i386 5.6 .i can do go , by ' javaws cgoban.jnlp* *' .---http://openbsd-akita.blogspot.jp/2014/11/opebsd-upgrade.html http://openbsd-akita.blogspot.jp/2014/11/opebsd-upgrade.html*
report(boot openbsd by puppy's grub4dos)
i make little progress , so report it . I install openbsd first in HDD. then I install puppy linux . 1) use puppy' fdisk ,then # fdisk /dev/sda Device Boot Start End Blocks Id System /dev/sda1 *204810487807 5242880 83 Linux -puppy /dev/sda2104878085583052722671360 83 Linux -ext2 /dev/sda3558305287814015911154816 a6 OpenBSD i will want to use this ext2 from puppy and openbsd . 2)puppy's grub4dos controls ' boot proess openbsd or puppy ' menu.lst in sda1 is next. title OpenBSD chainloader (hd0,2)+1 rootnoverify (hd0,2) boot 3)in openbsd disklabel wd0 is next #size offset fstype [fsize bsize cpg] a: 19426368 56886176 4.2BSD 2048 163841 # / b: 1055637 55830528swap # none c: 781401600 unused namely , ext2 is not shown . because i make ext2 after i install openbsd . therefore i must 'disklabel -e' details is next. good Material is in openbsd's 'fdisk wd0' #fdisk wd0 Disk: wd0 geometry: 4864/255/63 [78140160 Sectors] Offset: 0 Signature: 0xAA55 Starting Ending LBA Info: #: id C H S - C H S [ start:size ] --- *0: 83 0 32 33 -652 213 9 [2048:10485760 # # # ] # # Linux files* 1: 83652 213 10 - 3475 73 54 [10487808:45342720 # ] Linux files* 2: A6 3475 73 55 - 4863 254 63 [55830528:22309632 # ] OpenBSD 3: 00 0 0 0 - 0 0 0 [ 0: 0 ] unused # # # # i remember 10487808 45342720 then command disklabel -e wd0 and then vi editor come up . following openbsd FAQ , i add 'o: line' . see below #size offset fstype [fsize bsize cpg] a: 19426368 56886176 4.2BSD 2048 163841 # / b: 1055637 55830528swap # none c: 781401600 unused o: 45342720 10487808 ext2fs and at last mount_ext2fs /dev/wd0o /EXT2 but this same method 'disklabel -e' donot go well in USB memory . so i boot openbsd and puppy on USB by openbsd's grub . see http://openbsd-akita.blogspot.jp/2014/06/openbsad-runs-on-usb-memory-no-need-hdd.html mis - tuyosi
Re: DVD how to overcome mkisofs
Josh's advise make me forward. i upgrade snapshots . and pkg_add zsh . then '/usr/local/share/zsh/5.0.5/functions/_genisoimage' appear . head /usr/local/share/zsh/5.0.5/functions/_genisoimage is next . #compdef genisoimage _arguments \ '-nobak[do not include backup files]' \ '-no-bak[do not include backup files]' but i do not understand how to make genisoimage . i only imagine _a2ps has the same method . genisoimage make smaller image than mkisofs. so it is useful to burn DVD. --- tuyosi
Re: DVD how to overcome mkisofs (zsh function)
thanks reply . i managed to find http://qiita.com/yuku_t/items/77c23390e52168a2754a . perhaps 1) chsh -s zsh 2) edit .zshrc fpath .or FPATH . /usr/local/share/zsh/5.0.5/functions/ autoload ...genisoimage then genisoimage go but i do not understand now how to use functons of zsh . imaginatin only --- tuyosi
Re: openbsd as debian's pxe server , but dhcp error happens
*Hi , all .* *'original **initrd.gz' doesn't have firmware of * *e100/d101m_ucode.bin .so ifailed .* *i read http://qiita.com/harukasan/items/98db5f4639433e5e40d4 http://qiita.com/harukasan/items/98db5f4639433e5e40d4 .* *then i make *initrd_nonfree.gz . then cd * /tftpdboot/debian-installer/i386/ .* *cp * * initrd.gz initrd.gz-original* *mv * *initrd.gz-original * *initrd.gz* * ls -l /tftpdboot/debian-installer/i386/ total 52096drwxr-xr-x 5 root wheel 512 Jul 20 00:19 boot-screens-rw-r--r-- 1 root wheel 17706681 Aug 12 11:24 initrd.gz-rw-r--r-- 1 root wheel 6683528 Aug 12 11:24 initrd.gz-original-rw-r--r-- 1 root wheel 2195008 Jul 15 12:52 linux-rw-r--r-- 1 root wheel 26816 Jul 15 12:47 pxelinux.0drwxr-xr-x 2 root wheel 512 Jul 15 12:44 pxelinux.cfgcat /etc/dhcpd.conf option domain-name-servers 192.168.1.1;subnet 192.168.11.0 netmask 255.255.255.0 {option routers 192.168.11.1;range 192.168.11.32 192.168.11.33;#host pxe-client {#hardware ethernet 00:00:39:E3:38:99; #debian installing PC's MACfilenamepxelinux.0; next-server 192.168.11.1;#}}--* *and in addition * *i install openbsd by openbsd PXE server.* *this process is much faster and simpler .* *next is only memo .cat /etc/dhcpd.interfaces ne3cat /etc/dhcpd.conf option domain-name-servers 192.168.1.1;subnet 192.168.11.0 netmask 255.255.255.0 {option routers 192.168.11.1;range 192.168.11.32 192.168.11.33;#host pxe-client {# hardware ethernet 00:00:39:E3:38:99; #debian installing PC's MAC filenamepxelinux.0;next-server 192.168.11.1;# }}mkdir /tftpdbootcd /tftpdbootwget http://ftp.openbsd.org/pub/OpenBSD/5.5/i386/pxeboot http://ftp.openbsd.org/pub/OpenBSD/5.5/i386/pxebootwget http://ftp.openbsd.org/pub/OpenBSD/5.5/i386/bsd.rd http://ftp.openbsd.org/pub/OpenBSD/5.5/i386/bsd.rdln -s pxeboot pxelinux.0mkdir etc/cat etc/boot.conf boot tftp:/bsd.rdtftpd /tftpdboot/-* *tuyosi*
Re: openbsd as debian's pxe server , but dhcp error happens
sorry for dirty mail ( becasue on gmail , it is not dirty ) so again send . --- 'original initrd.gz' doesn't have firmware of e100/d101m_ucode.bin . so ifailed . i read http://qiita.com/harukasan/items/98db5f4639433e5e40d4 . then i make initrd_nonfree.gz . cd /tftpdboot/debian-installer/i386/ cp initrd.gz initrd.gz-original mv initrd.gz-original initrd.gz ls -l /tftpdboot/debian-installer/i386/ total 52096 drwxr-xr-x 5 root wheel 512 Jul 20 00:19 boot-screens -rw-r--r-- 1 root wheel 17706681 Aug 12 11:24 initrd.gz -rw-r--r-- 1 root wheel 6683528 Aug 12 11:24 initrd.gz-original -rw-r--r-- 1 root wheel 2195008 Jul 15 12:52 linux -rw-r--r-- 1 root wheel 26816 Jul 15 12:47 pxelinux.0 drwxr-xr-x 2 root wheel 512 Jul 15 12:44 pxelinux.cfg cat /etc/dhcpd.conf option domain-name-servers 192.168.1.1; subnet 192.168.11.0 netmask 255.255.255.0 { option routers 192.168.11.1; range 192.168.11.32 192.168.11.33; filenamepxelinux.0; next-server 192.168.11.1; } -- and in addition i install openbsd by openbsd PXE server. this process is much faster and simpler . next is only memo . mkdir /tftpdboot cd /tftpdboot wget http://ftp.openbsd.org/pub/OpenBSD/5.5/i386/pxeboot wget http://ftp.openbsd.org/pub/OpenBSD/5.5/i386/bsd.rd ln -s pxeboot pxelinux.0 mkdir etc/ cat etc/boot.conf boot tftp:/bsd.rd tftpd /tftpdboot/ - tuyosi
openbsd as debian's pxe server , but dhcp error happens
Hi,all. i use openbsd as pxe server for installing debian but fail . beginnig process is good , but and then at the stage of 'network configuretion ' the message of 'not using DHCP protocol ' happens . surely PC for installing debian was scoled by the ' missing firmware are e100/d101m_ucode.bin' but using debian for PXE server , debian install is no trouble . tha whole image is next internet | wifi rooter 192.168.100.254 | wifi(urtwn0) dhcp openbsd PXE server (USB stick) no trouble access internet bge0(wired) 192.168.11.1 | PC for debian cat /etc/dhcpd.interfaces bge0 cat /etc/dhcpd.conf subnet 192.168.11.0 netmask 255.255.255.0 { option routers 192.168.11.1; range 192.168.11.32 192.168.11.33; host pxe-client { hardware ethernet 00:00:39:E3:38:99; #debian installing PC's MAC filenamepxelinux.0; next-server 192.168.11.1; } } cat /etc/rc.conf.local dhcpd_flags= and last mkdir /tftpboot cd /tftpboot lftp -c open ftp.debian.org:/debian/dists/squeeze/main/installer-i386/current/images/netboot ; mirror then ls -l /tftpboot drwxr-xr-x 3 root wheel 512 Aug 10 12:10 debian-installer drwxr-xr-x 4 root wheel 512 Aug 10 12:10 gtk -rw-r--r-- 1 root wheel 16777216 Aug 9 20:05mini.iso -rw-r--r-- 1 root wheel 8915192 Aug 9 20:05 netboot.tar.gz lrwxr-xr-x 1 root wheel32 Jul 15 12:44 pxelinux.0 - debian-installer/i386/pxelinux.0 drwxr-xr-x 2 root wheel 512 Aug 10 12:10 pxelinux.cfg -rw-r--r-- 1 root wheel69 Jul 15 12:44 version.info drwxr-xr-x 2 root wheel 512 Aug 10 12:10 xen cat /tftpboot/pxelinux.cfg/default # D-I config version 2.0 include debian-installer/i386/boot-screens/menu.cfg default debian-installer/i386/boot-screens/vesamenu.c32 prompt 0 timeout 0 besides cat /etc/pf.conf ext=urtwn0 set loginterface $ext set skip on lo0 match out on $ext inet from !($ext:network) to any nat-to ($ext:0) pass out quick pass in quick more /etc/sysctl.conf net.inet.ip.forwarding=1 ... last commad is tftpd /tftpboot/ but beggining is OK , but dhcp error happens . this same USB stick is good PXE server for openbsd . pleasse give me some hints . --- tuyosi
Re: add a new partition in USB ( clone )
Hi, all . this is a method to make clone USB larger size than original . 1) use linux (because openbsd fdisk is hard to use) by fdisk , make /dev/sdb4 Id:a6 2)then use 'openbsd5.5 install CD disk' for installboot on installing OpenBSD use OpenBSD area - 1) mount point / (because original USB has a and b only) install bsd, bsd.rd, base55 only 3)then openbsd runninng machine, # mkdir /mnt0 # mkdir /mnt1 # mount /dev/sd0a /mnt0 - / partition # mount /dev/sd1a /mnt - / partition # (cd /mnt0; tar cvpf - .)|(cd /mnt1 ; tar xpf -) #umount /mnt0 = cannot #umount /mnt1 = cannot so halt openbsd machine , 4)then goto linux machine fdisk /dev/sdb make bootable flag on sdb4 ( if 1) has this priicedure , this may be needless ) --- this method is perhaps effective to smaller USB clone , or USB to Hard disk clone and so so . --- tuyosi
add a new partition in USB
Hi all . i have 32GB USB memory . and this is clone of ' 2GB live USB '. so i want to extend 'this clone 2GB' to about 8GB . in order to this , i want to make ' partion d ' in 32GB USB . so i do next steps . # fdisk -e sd0 fdisk: 1 edit 0 Partition id ('0' to disable) [0 - FF]: [0] (? for help) 1 fdisk: 1 setpid 0 Partition id ('0' to disable) [0 - FF]: [1] (? for help) A6 fdisk:*1 w fdisk: MBR contains more than one OpenBSD partition! --- attention Write MBR anyway? [n] y now # fdisk -e sd0 fdisk: 1 p Disk: sd0 geometry: 3840/255/63 [61702144 Sectors] Offset: 0 Signature: 0xAA55 Starting Ending LBA Info: #: id C H S - C H S [ start:size ] --- 0: A6243 0 1 - 1000 0 1 [ 3903795:12161206 ] OpenBSD 1: 00 0 0 0 - 0 0 0 [ 0: 0 ] unused 2: 00 0 0 0 - 0 0 0 [ 0: 0 ] unused *3: A6 0 1 2 -242 254 63 [ 64: 3903731 ] OpenBSD i want to make partition d in ' #0 243 0 1 - 1000 0 1 OpenBSD ' . -- i try # disklabel -E sd0 p OpenBSD area: 3903795-16065001; size: 12161206; free: 12161206 #size offset fstype [fsize bsize cpg] c: 617021440 unused this is strange to me because i already had a in ' #3: A6 0 1 2 -242 254 63 OpenBSD '. but thre is no ' partition a ' what should i do next to make ' partion d' in 32GB USB ? and where is ' partition a ' ? tuyosi