Re: Small Database Software Recommendation
the file system and associated tools is exactly what you need man join man sort man cut man awk ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: how to view and open file.db & file.mdb?
Marlon Corleone wrote: hi, im running 4.8 do do i open this type of file extension, file.db and file.mdb is there in ports collection that can manage to view and open this type of file? looks to me like Microsoft DataBase - afaik you'll need Microsoft Access for that Open Office lays claim to opening them : http://dba.openoffice.org/FAQ/index.html#msaccess ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Xfree86 Config Problems
On Sun, 22 Jun 2003 [EMAIL PROTECTED] wrote: > http://cgisleve.tripod.com/bsd/xfreebad.html is a web page of this info. > > XFree86 Configuration Problems > by Steve LeBlanc © 2003.6.22 > Installed FreeBSD for first time. Text login was fine. NIC worked. Did a telnet and > ftp to computers on the Internet. All seemed to work except for configuring XFree86. > No screen found when I did startx. Below are the details: > > The full commented files: XF86Config.txt and XFreelog.txt > > Settings > XFree86 Ver:4.2.1 (protocol Version 11, revision 0, vendor release 6600) > Release Date: 3 September 2002 > Motherboard: ECS K7S5A, 40GB drive, 256 Ram > OS: FreeBSD 5.0 RELEASE > Video: S3 Savage2000 (generic) 64MB, 3D > Monitor: Cornea MT1700 17" LCD H: 31.5-80, V: 56-75 > > > After install I tried both: xf86cfg -textmode and xf86config to > reconfigure. I read the docs deeply and redid this 15 times, using the > various command line tools. Each of the last 10 times, I typed in my > settings and selected my Graphics card from the list. I just can't get > startx to work. Below are my XF86Config file and my XFree log file, with > comments removed. > > Fatal server error: > no screens found Check the handbook: 5.4.2 Configuring XFree86 4.X Configuration of XFree86 4.X is a multi-step process. The first step is to build an initial configuration file with the -configure option to XFree86. As the super user, simply run: # XFree86 -configure Cheers, Viktor ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
About Patches
Hi List, I need to apply some security patches to my FreeBSD(i386) 4.7-RELEASE box and I am concerned about the possibility that I could actually harm my system while trying to apply this patches. (I am not a Unix guru actually) 1) Do I have to apply the security patches in a specific order? 2) Is there a chance were a patch requires a previous one? (In my case some patches are not applicable) 3) What if the code is not in the state that the patch requires? (For instance if I have updated that port) 4) Are the patches clever enough to protect me from harming my system? 5) Is there a safe way to undo a patch? Thank you very much for your time Jim Xochellis ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
once again palm tungsten t + usb
hi, i am having problems getting my brand new tungsten t to hotsync with my freebsd box. i followed the instructions in this http://www.freebsd.org/cgi/getmsg.cgi?fetch=1561893+0+/usr/local/www/db/text/2003/freebsd-questions/20030615.freebsd-questions posting, but with no luck. it seems that my problem is the usb configuration. running "usbd -vvv -d" shows the following: usbd: doing discovery on /dev/usb0 usbd: processing event queue on /dev/usb usbd: device-attach event at 1056316780.907798000, Palm-Handheld, Palm, Inc.: vndr=0x0830 prdct=0x0060 rlse=0x0100 clss=0x subclss=0x prtcl=0x usbd: Found action 'USB device' for Palm-Handheld, Palm, Inc. usbd: action 0: USB device my usbd.conf has the following entries: device "Palm-Handheld" devname "ucom0" vendor 0x0830 product 0x0060 attach "/usr/bin/ppp -auto palm" detach "/usr/bin/killall ppp && /usr/bin/killall pi-csd" device "USB device" so shouldn't the action be 'Palm-Handheld'? my kernel, usb and ppp config is exactly as in the posting above. had anyone more luck with his tungsten? or should i buy the serial hotsync cable? thanks for your time toni -- Behandle die Menschen, als wären sie, was sie sein | toni at stderror dot at sollten, und du wirst ihnen helfen, zu werden, was | Toni Schmidbauer sie sein können. - Johann Wolfgang von Goethe | pgp0.pgp Description: PGP signature
Re: About Patches
On Mon, Jun 23, 2003 at 11:54:54AM +0300, Jim Xochellis wrote: > I need to apply some security patches to my FreeBSD(i386) 4.7-RELEASE > box and I am concerned about the possibility that I could actually harm > my system while trying to apply this patches. (I am not a Unix guru > actually) i would recommend updating with cvsup: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html and following the patch-branch: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvs-tags.html in your case RELENG_4_7. but i do not know if the latest security patches are backported to RELENG_4_7. maybe someone else on the list is more familiar with the various cvs branches. if the patches are _not_ backported i would recomment upgrading to RELENG_4_8 as mentioned in the excellent handbook. hth, toni -- Behandle die Menschen, als wären sie, was sie sein | toni at stderror dot at sollten, und du wirst ihnen helfen, zu werden, was | Toni Schmidbauer sie sein können. - Johann Wolfgang von Goethe | pgp0.pgp Description: PGP signature
Re: About Patches
On Mon, Jun 23, 2003 at 11:54:54AM +0300, Jim Xochellis wrote: > Hi List, > > I need to apply some security patches to my FreeBSD(i386) 4.7-RELEASE > box and I am concerned about the possibility that I could actually harm > my system while trying to apply this patches. (I am not a Unix guru > actually) Fear not: security patches are very well tested and should do what they claim without unpleasant side effects. Even if there were problems with a patch in the early stages, it would soon be detected and corrected -- as there hasn't been a security patch since FreeBSD-SA-03:07.sendmail at the end of March, I don't think you have to worry on that score. > 1) Do I have to apply the security patches in a specific order? Preferably in the order that they were issued, although you can probably get away with a different order for patches that apply to distinct parts of the sources. > 2) Is there a chance were a patch requires a previous one? (In my case > some patches are not applicable) Source patches will generally be made against the previous patch level of which ever release branch is involved. So, yes, you will have to apply pre-requisite patches in some circumstances. Any necessary prerequisites will be documented in the advisory: Eg. see ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03%3A06.openssl.asc which states: 2) To patch your present system: The following patches have been verified to apply to FreeBSD 4.6, 4.7, and 5.0 systems which have already been patched for the issues resolved in FreeBSD-SA-03:02.openssl. > 3) What if the code is not in the state that the patch requires? (For > instance if I have updated that port) FreeBSD security advisories generally only apply to the base system, and patches will only be issued for the system sources. Security problems to do with ported software are usually announced via security notices. In general, you should use cvsup(1) to update your ports tree and a tool like portupgrade(1) to update any ports software. Note that ports don't follow the same -CURRENT, -STABLE, -RELEASE structure as the system sources. At most, all that happens is the ports tree will be tagged in CVS as a record of it's state when a particular release was made. When updating, you should simply aim to install the latest available versions of ported software. In fact, as a general mechanism to keep your system sources up to date, I'd recommend that you use cvsup(1) to track the RELENG_4_7 branch. This will effectively act as an automated mechanism to apply the same security patches as released separately, but with less chance of operator error. See http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html for instructions -- you should base any supfile you use on /usr/share/examples/cvsup/standard-supfile, which apart from not specifying which cvsup server to use is pretty much all you need to keep your 4.7-RELEASE sources up to date. (The ports-supfile in the same directory will do the equivalent for the ports sources.) > 4) Are the patches clever enough to protect me from harming my system? No. You need to take care and think about what you're doing while updating the system. Having said that, the patches aren't unduely difficult to use, and if you follow the instructions you'll be just fine. > 5) Is there a safe way to undo a patch? Make sure you have good backups, which you have tested to ensure you can recover the system. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
Re: About Patches
On Mon, Jun 23, 2003 at 11:16:44AM +0200, Toni Schmidbauer wrote: > i do not know if the latest security > patches are backported to RELENG_4_7. maybe someone else on the > list is more familiar with the various cvs branches. if the > patches are _not_ backported i would recomment upgrading to > RELENG_4_8 as mentioned in the excellent handbook. Security patches are generated for all supported -RELEASE branches, and optionally for older releases if the committer has time and the severity of the problem warrants it. I believe at least three release branches will be considered "supported" at any one time -- generally it's the last three releases branched from -STABLE, which at the moment corresponds to 4.6.2-RELEASE, 4.7-RELEASE and 4.8-RELEASE. As new releases are made approximately every 4 months that implies that each branch will be supported for up to 12 months. The situation is somwhat complicated at the moment, with the existence of the 5.x-RELEASE New Technology branches. See http://www.freebsd.org/releng/index.html for details, although that page is overdue for updating now that 5.1 has actually been released. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
Re: Xfree86 Config Problems
On Mon, 23 Jun 2003 01:44:46 -0700 (PDT), Viktor Lazlo <[EMAIL PROTECTED]> wrote: On Sun, 22 Jun 2003 [EMAIL PROTECTED] wrote: http://cgisleve.tripod.com/bsd/xfreebad.html is a web page of this info. XFree86 Configuration Problems by Steve LeBlanc © 2003.6.22 Installed FreeBSD for first time. Text login was fine. NIC worked. Did a telnet and ftp to computers on the Internet. All seemed to work except for configuring XFree86. No screen found when I did startx. Below are the details: The full commented files: XF86Config.txt and XFreelog.txt Settings XFree86 Ver:4.2.1 (protocol Version 11, revision 0, vendor release 6600) Release Date: 3 September 2002 Motherboard: ECS K7S5A, 40GB drive, 256 Ram OS: FreeBSD 5.0 RELEASE Video: S3 Savage2000 (generic) 64MB, 3D Monitor: Cornea MT1700 17" LCD H: 31.5-80, V: 56-75 After install I tried both: xf86cfg -textmode and xf86config to reconfigure. I read the docs deeply and redid this 15 times, using the various command line tools. Each of the last 10 times, I typed in my settings and selected my Graphics card from the list. I just can't get startx to work. Below are my XF86Config file and my XFree log file, with comments removed. Fatal server error: no screens found Check the handbook: 5.4.2 Configuring XFree86 4.X Configuration of XFree86 4.X is a multi-step process. The first step is to build an initial configuration file with the -configure option to XFree86. As the super user, simply run: # XFree86 -configure Cheers, Viktor Check as well to see if you have multiple config files and are working hard to alter the one the system *isn't* using. Jud ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
error in buildworld.
hi i received this error when im about to do a buildworld after upgrading my src and ports collection. im running 4.8-RELEASE, heres the logs of the errors: i hope anyone can explain what and where is the the line that causes the error, thanks all. ===> bin/ln ===> bin/ls cc -O -pipe -DCOLORLS -Wall -Wformat -static -o ls cmp.o ls.o print.o util.o -lm -ltermcap /usr/obj/usr/src/i386/usr/lib/libtermcap.a: could not read symbols: Malformed archive *** Error code 1 Stop in /usr/src/bin/ls. *** Error code 1 Stop in /usr/src/bin. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. Nobunaga# - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
error in buildworld.
hi i received this error when im about to do a buildworld after upgrading my src and ports collection. im running 4.8-RELEASE, heres the logs of the errors: i hope anyone can explain what and where is the the line that causes the error, thanks all. ===> bin/ln ===> bin/ls cc -O -pipe -DCOLORLS -Wall -Wformat -static -o ls cmp.o ls.o print.o util.o -lm -ltermcap /usr/obj/usr/src/i386/usr/lib/libtermcap.a: could not read symbols: Malformed archive *** Error code 1 Stop in /usr/src/bin/ls. *** Error code 1 Stop in /usr/src/bin. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. Nobunaga# - Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: About Patches
Many thanks Matthew, you have been very helpful. Regards, Jim Xochellis On Monday, June 23, 2003, at 12:44 PM, Matthew Seaman wrote: On Mon, Jun 23, 2003 at 11:54:54AM +0300, Jim Xochellis wrote: Hi List, I need to apply some security patches to my FreeBSD(i386) 4.7-RELEASE box and I am concerned about the possibility that I could actually harm my system while trying to apply this patches. (I am not a Unix guru actually) Fear not: security patches are very well tested and should do what they claim without unpleasant side effects. Even if there were problems with a patch in the early stages, it would soon be detected and corrected -- as there hasn't been a security patch since FreeBSD-SA-03:07.sendmail at the end of March, I don't think you have to worry on that score. 1) Do I have to apply the security patches in a specific order? Preferably in the order that they were issued, although you can probably get away with a different order for patches that apply to distinct parts of the sources. 2) Is there a chance were a patch requires a previous one? (In my case some patches are not applicable) Source patches will generally be made against the previous patch level of which ever release branch is involved. So, yes, you will have to apply pre-requisite patches in some circumstances. Any necessary prerequisites will be documented in the advisory: Eg. see ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA- 03%3A06.openssl.asc which states: 2) To patch your present system: The following patches have been verified to apply to FreeBSD 4.6, 4.7, and 5.0 systems which have already been patched for the issues resolved in FreeBSD-SA-03:02.openssl. 3) What if the code is not in the state that the patch requires? (For instance if I have updated that port) FreeBSD security advisories generally only apply to the base system, and patches will only be issued for the system sources. Security problems to do with ported software are usually announced via security notices. In general, you should use cvsup(1) to update your ports tree and a tool like portupgrade(1) to update any ports software. Note that ports don't follow the same -CURRENT, -STABLE, -RELEASE structure as the system sources. At most, all that happens is the ports tree will be tagged in CVS as a record of it's state when a particular release was made. When updating, you should simply aim to install the latest available versions of ported software. In fact, as a general mechanism to keep your system sources up to date, I'd recommend that you use cvsup(1) to track the RELENG_4_7 branch. This will effectively act as an automated mechanism to apply the same security patches as released separately, but with less chance of operator error. See http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html for instructions -- you should base any supfile you use on /usr/share/examples/cvsup/standard-supfile, which apart from not specifying which cvsup server to use is pretty much all you need to keep your 4.7-RELEASE sources up to date. (The ports-supfile in the same directory will do the equivalent for the ports sources.) 4) Are the patches clever enough to protect me from harming my system? No. You need to take care and think about what you're doing while updating the system. Having said that, the patches aren't unduely difficult to use, and if you follow the instructions you'll be just fine. 5) Is there a safe way to undo a patch? Make sure you have good backups, which you have tested to ensure you can recover the system. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 5.1 ssh hang (i have rtfm and googled) long
ביום שני, 23 ביוני 2003, 02:15, Kris Kennaway כתב: > On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: > > generic install of 5.1 release. sshd version > > OpenSSH_3.6.1p1. i have /etc/hosts set up . all > > systems are "RFC 1597" networks and i do not have a > > bind server. every connect takes over a minute to > > complete; using passwords. > > sshd needs to be able to perform forward and reverse DNS queries of > the incoming host. /etc/hosts isn't enough. > I don't think so... > Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
All PCMCIA devices fail in 5.1-RELEASE
I just tried 5.1-RELEASE on a Tecra 720 that ran fine with 4.5-RELEASE. All my pcmcia cards worked OK on 4.5. On 5.1 nothing works. If I try to boot with a NIC card plugged in it panics and crash dumps. If I boot up with no card in and plug the card in later it locks up solid. I still have the HD with 4.5 loaded on it so I am back running on 4.5 until I can find an answer to this problem. Terry Todd On Thu, Apr 17, 2003 at 07:12:10PM -0400, taxman wrote: > On Thursday 17 April 2003 05:44 pm, Scott Simmons wrote: > > All pcmcia cards inserted into the laptop display on 5.0-RELEASE #0 > > http://mired.org:8080/5.0-not-production.html > > have fun :) > > > pccard0: Card has not functions! > > cbb0: PC Card card activation failed. > > > > The laptop is a IBM Thinkpad 600x and I am using the SMC 2632W. I have > > also tried 3Com adpaters also. I verified that both are supported via the > > web. From what I can tell it appears that the pccard services are not > > loading even though they appear to in the messages file. > > > > It appears that both cbb0 and cbb1 load as they are recognized as TI1450 > > PCI-CardBus Bridge as well as both slots pccard0 and pccard1. > > > > Please let me know the correct list to send these type of questions to > > also. > > well check the list charters, -current for issues with the -current tree > otherwise here for other general things > > Tim > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: 5.1 ssh hang (i have rtfm and googled) long
Hi, Make sure you have valid nameservers in your /etc/resolv.conf !! That will sort your problem out. Doron Shmaryahu -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Benzi Mizrahi Sent: 23 June 2003 12:56 PM To: Kris Kennaway; jon Cc: [EMAIL PROTECTED] Subject: Re: 5.1 ssh hang (i have rtfm and googled) long áéåí ùðé, 23 áéåðé 2003, 02:15, Kris Kennaway ëúá: > On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: > > generic install of 5.1 release. sshd version > > OpenSSH_3.6.1p1. i have /etc/hosts set up . all > > systems are "RFC 1597" networks and i do not have a > > bind server. every connect takes over a minute to > > complete; using passwords. > > sshd needs to be able to perform forward and reverse DNS queries of > the incoming host. /etc/hosts isn't enough. > I don't think so... > Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: creating ftp users!
How to create users for Ftp server(inetd)? You just use the 'adduser' command normally, to add a "normal" user. If they are just going to be doing ftp, you can use the /sbin/nologin for their shell, so they can't login. -- Jonathan Arnold (mailto:[EMAIL PROTECTED]) Daemon Dancing in the Dark, a FreeBSD blog: http://freebsd.amazingdev.com/blog ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 5.1 ssh hang (i have rtfm and googled) long
Not just that... When OpenSSH runs in the jail environment, it expects resolv.conf in it's own jail... for instance, if the jail is /var/jail, then a copy of resolv.conf needs to exist /var/jail/etc/resolv.conf. Don't ask me why, but this should solve your hanging problem. Of course, the other option is to remove the priveledge seperation parameter in /etc/ssh/sshd_config, then ssh will use the standard /etc/resolv.conf Doron Shmaryahu wrote: Hi, Make sure you have valid nameservers in your /etc/resolv.conf !! That will sort your problem out. Doron Shmaryahu -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Benzi Mizrahi Sent: 23 June 2003 12:56 PM To: Kris Kennaway; jon Cc: [EMAIL PROTECTED] Subject: Re: 5.1 ssh hang (i have rtfm and googled) long áéåí ùðé, 23 áéåðé 2003, 02:15, Kris Kennaway ëúá: On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: generic install of 5.1 release. sshd version OpenSSH_3.6.1p1. i have /etc/hosts set up . all systems are "RFC 1597" networks and i do not have a bind server. every connect takes over a minute to complete; using passwords. sshd needs to be able to perform forward and reverse DNS queries of the incoming host. /etc/hosts isn't enough. I don't think so... Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: creating ftp users!
Hi, I would also suggest limiting ftp users to their respective home dir. You can do this simply by creating a file /etc/ftpchroot and putting all the usernames in there. Doron Shmaryahu -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jonathan Arnold Sent: 23 June 2003 01:38 PM To: [EMAIL PROTECTED] Subject: Re: creating ftp users! > How to create users for Ftp server(inetd)? You just use the 'adduser' command normally, to add a "normal" user. If they are just going to be doing ftp, you can use the /sbin/nologin for their shell, so they can't login. -- Jonathan Arnold (mailto:[EMAIL PROTECTED]) Daemon Dancing in the Dark, a FreeBSD blog: http://freebsd.amazingdev.com/blog ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
IPSec+VPN+ipfw questions
Hi! I wish to use IPSec to provide secure channels between some LAN machines (Windows 2000) and a FreeBSD gateway which acts as a NAT router to the Internet upstream provider. Each channel works in IPSec transport mode (no tunnel, host-to-host only). FreeBSD runs racoon to provide IKE services for IPSec. FreeBSD 4.8, ipfw2. The questions are: 1) Is it possible to use ipfw rules to count different kinds of traffic from legitimate computers, divert it to natd and block all other packets across the LAN? There are ESP protocol packets which I can filter, but it seems they are not processed after decryption by ipwf rules. So, no counters, no divert, etc. 2) What is the best solution for IKE daemon? I've tried racoon (it works but there are some strange situations with Windows 2000 machines which are mentioned somewhere), and isakmpd (it has not very obvious syntax for their policy and conf files - how to create a minimal working configuration for a number of peer machines which use different preshared keys for IKE exchange)? 3) In fact, it is not required for me to use VPN solutions. All I need is to authenticate each legitimate machine (or user - that is better). IP+MAC addresses may be forged. I can use socks proxy, but there is no standard secured authentication which is suported by number of different internet tools. And I don't wish to have a complicated setup of each client machine. So, VPN seems to be the best solution as their policies for W2K clients may be specified via Active Directory. Thanks! OS ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
[no subject]
dear : team freebsd i have some questions 1 . i want help on freebsd 2 . how i make cd bootable from freebsd 3. what files i put on the cd to boot it _ Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Updating FBSD on one slice from another slice
Hello all. I've got two similarly-sized, bootable, FBSD slices on a machine, one with 4.5 and the other with 4.2. My intention was/is to run the newer of the two, and upgrade the older by 'cvsup' and 'make [build|install][world|kernel]' _from_ the newer. So, I'm running the newer installation now, and I want to upgrade the older installation to 4.8. Doing the 'cvsup' seems straight-forward enough; just change the "base" and "prefix" defines in my supfile from "/usr" to "/mnt/s2/usr" (the mountpoint of the older /usr partition), bump the value of the "tag" define to "RELENG_4_8", and run 'cvsup' as usual. Anything deleted or downloaded will occur in the mounted path of the other, older slice, right? What I'm stumped with is how to tell 'make [build|install][world|kernel]' to do their thing from the OS in the slice I'm running (the newer), but do the reads and writes on the other, older slice. Same conundrum with 'mergemaster'; how do I tell it to do it's thing on that older slice? A mountpoint on the newer slice I'm running, "/mnt/s2", is the older slice's "/", so the entire other, older slice is visible. Please CC me on replies to the list, as I'm not subscribed to it. TIA, Dave -- __ __ \__ \D. J. HAWKEY JR. / __/ \/\ [EMAIL PROTECTED]/\/ http://www.visi.com/~hawkeyd/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: creating ftp users!
I have not inetd running, but instead only allow secure connections with ssh and sftp. However, the hints given here seem to only apply to ftpd server and not the sftp connection. /sbin/nologin disables both, ssh and sftp. Is there a way to disable ssh, but allow sftp access only? Can I do the /etc/ftpchroot for sftp as well? Thanks, Rob. Jonathan Arnold wrote: >> How to create users for Ftp server(inetd)? > > You just use the 'adduser' command normally, to add a "normal" > user. If they are just going to be doing ftp, you can use the > /sbin/nologin for their shell, so they can't login. Doron Shmaryahu wrote: > > I would also suggest limiting ftp users to their respective home dir. You > can do this simply by creating a file /etc/ftpchroot and putting all the > usernames in there. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: creating ftp users!
Rob, You can try setting the user's shell to /usr/libexec/sftp-server (or wherever the sftp-server binary exists under FreeBSD). This will give the user ability to SFTP into the box, but without a normal shell. /usr/lib/exec/sftp-server should be added to /etc/shells, too. Rob Lahaye wrote: I have not inetd running, but instead only allow secure connections with ssh and sftp. However, the hints given here seem to only apply to ftpd server and not the sftp connection. /sbin/nologin disables both, ssh and sftp. Is there a way to disable ssh, but allow sftp access only? Can I do the /etc/ftpchroot for sftp as well? Thanks, Rob. Jonathan Arnold wrote: How to create users for Ftp server(inetd)? You just use the 'adduser' command normally, to add a "normal" user. If they are just going to be doing ftp, you can use the /sbin/nologin for their shell, so they can't login. Doron Shmaryahu wrote: I would also suggest limiting ftp users to their respective home dir. You can do this simply by creating a file /etc/ftpchroot and putting all the usernames in there. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: creating ftp users!
Raymond Sundland wrote: > Rob, > > You can try setting the user's shell to /usr/libexec/sftp-server (or > wherever the sftp-server binary exists under FreeBSD). > > This will give the user ability to SFTP into the box, but without a > normal shell. /usr/lib/exec/sftp-server should be added to /etc/shells, > too. Almost works ;). Doing what you suggest, I can sftp to the account, but when I do ssh to that account, I get the regular login message but no prompt. Something seems to hang. When I type something and hit return, I get: bad message Connection to foo.bar.com closed. $ It somehow blocks ssh login indeed, but it's not very nice! BTW will sftp also work with the /etc/chroot file? Thanks, Rob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: BTX halted when installing on a HP Proliant DL360 G3
David Landgren wrote: Replying to myself, for the sake of the archives. List, I just received a new batch of servers to deploy. Among the lot I have 3 HP Proliant DL360 G3 servers that refuse to run the installation CD. I think this is because HP have switched to Ultra 320 drives and I don't think FreeBSD has caught up with that. I have two 18Gb 15000rpm drives mounted in RAID-1. The BIOS says "Proliant System BIOS - P31 (03/01/2003)". I've tried various BIOS options, but the boot always goes like this: Miniboot 4.1 Attempting Boot From CD-ROM CD Loader 1.01 Building the boot loader arguments Lookup up /BOOT/LOADER... Found Relocating the loader and the BTX Starting the BTX loader BTX Loader 1.00 BTX version is 1.01 Console: internal video/keyboard BIOS CD is cd0 BIOS drive A: is disk0 inf=000d err= efl=00030006 ... BTX halted I.e.: it looks like it's when it hunts for hard disks. I trawled the archives and learnt that people had similar problems on Compaq hardware, although with Adaptec controllers. The solution there was to create a DOS partition on the disk beforehand. I tried this, with no success. I've tried booting from 4.8-RELEASE, 5.1-RELEASE and the 5.1 miniloader, all with similar results. I also tried booting of an OpenBSD 3.3 CD. It gets a bit further, but when it comes to choosing I for Install, it reports that there are no hard disks available. It seems like FreeBSD simply hasn't caught up yet. I had a look at the Testdrive machines offered by HP, but they're still running 4.8 on a DL360 G2. If anyone has some idea as to how to proceed, I'd be really grateful. The only alternative would be to try and install Linux. But I've been unhappy with Linux performance under load in the past (and it's these servers I'm replacing) so it would be sad to continue in that vein. Thanks for the clues, Daisuke Koike got me onto the right track by pointing me to http://www.freebsd.org/cgi/getmsg.cgi?fetch=61247+63991+/usr/local/www/db/text/2003/freebsd-stable/20030525.freebsd-stable The thread there talks about disabling a BIOS setting named "Virtual boot device". Unfortunately my BIOS doesn't have that option. I had another look, and found a different option named "Virtual install disk" and this one was enabled. I set it to disabled, rebooted, and FreeBSD booted successfully from the CD-ROM. Hope this helps someone in the future. Thanks again Daisuke-san. David ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
changing setup
I have just changed my motherboard and consequently drive assignments and peripherals as well. The old board or processor crashed. :(( So the new board is an MSI 875-FISR - top of the line with a 3ghz pentium IV and Intel Gigabit lan card and kGEforce FX5200 video card. The previous system was a dual pentium II with 450mhz processors. The problem is the following: how do I boot and reconfigure the system? What is installed is FBSD 4.8 stable. When I boot up using the kernel.GENERIC, I get version 4.5 with limited functions... so, I don't really know what todo with it. Whe I boot up with the 4.8 SMP kernel, kit freezes just after the network card is not recognized. I am hoping I don't have to reinstall everything as that tends to be a PITA. Also, I don't know if FBSD supports the built-in Intel Gigabit network adapter; the hardware.txt does not show it. And what about serial ATA and Promise Fasttrack 378? Any help would be appreciated... Thanks in advance, Pippo ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Eliminating "noise" from secondary MX
We have a FreeBSD machine, running Sendmail, that's set up as a secondary MX for several domains. Lately, as the tide of spam continues to increase, this machine is sending large volumes of messages to "Postmaster", and this is interfering with normal monitoring of the server. Here's more detail. A spammer sends to a nonexistent address in a domain for which the host is a secondary mail exchanger. Many spammers' software is actually set up to use secondary mail exchangers rather than primaries, because they're less likely to have effective antispam software running. (Even if they use public blacklists, they rarely use a blacklist or whitelist provided by the domain for which they're a secondary.) The secondary mail exchanger tries to send the message on to its destination, but the mail is bounced by the primary mail host (either as spam or because it has been sent to an invalid address). So, the secondary dutifully tries to notify the sender that the message didn't get through. Of course, the "From:" and "Reply-to:" headers of the spam contain either a completely bogus address or one that has quickly been shut down due to spamming. So, the host, not knowing what else to do, sends a notice to Postmaster, saying that the notice to the sender could not be delivered. What's the easiest way to suppress this resource-consuming, mailbox clogging chain reaction? --Brett Glass ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: LTmodem port
On Sat, Jun 21, 2003 at 09:25:40AM +0200, Gianmarco Giovannelli wrote: > At 16.55 20/06/2003 -0400, Dr. Richard E. Hawkins wrote: > >On Fri, Jun 20, 2003 at 01:27:13PM -0700, anonymous wrote: > >> I recently installed FreeBSD 4.8 and I have a Lucent > >> WinModem. > >> Are there any detailed instructions on installing the > >> LTModem port for FreeBSD? > >They aren't needed; it should just work. > Mine doesn't work even if the port. Even I kldload a freshly build port it > doesn't see it. > It is a minipci combo card (wifi + modem) from Fujitsu. > The modem part is seen by windows like Lucent Tecnologies soft modem AMR. > If someone want to give a try on it I can send the pciconf output. I hacked my way through with someone's instructions about two years ago (before the port existed, or before it used a reasonably current version. You may need some kernel options to use that card. For that matter, does freebsd even handle that type of card. What you probably want to offer those who would understand such things (which doesn't include me :) is the typescript (use the script command) of make *after* a "make clean" and your dmesg output (to see if freebsd even sees the card). hawk -- Richard E. Hawkins, Asst. Prof. of Economics/"\ ASCII ribbon campaign [EMAIL PROTECTED] Smeal 178 (814) 375-4700 \ / against HTML mail These opinions will not be those of Xand postings. Penn State until it pays my retainer. / \ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
fatal trap 12 (SMP related)
Hello, I have installed 4.8-stable on my dual processor HP system. I reconfigured the kernel, and everything worked fine. Except now after a period of time (even Idle time, see below) my system has this error: Fatal trap 12: page fault while in kernel mode mp_lock = 0103; cpuid = 1; lapic.id = fault virtual address = 0x30 fault code = supervisor read, page not present instruction number = 0x8:0xc0205661 stack pointer = 0x10:0xff80fcd0 frame pointer = 0x10:0xff80fcd0 code segment= base 0x0, limit 0xf, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags= interrupt enabled, resume, IOPL = 0 current process = Idle interrupt mask = tty bio <- SMP: XXX trap number = 12 panic: page fault mp_lock = 0103; cpuid = 1; lapic.id = boot() called on cpu#1 Uptime: 36m17s I can see that this is a problem with the SMP config. What I don't know is what to do with it, is it hardware, software. I am not sure. This is the first time I have ever been presented with this. I do prefer maybe a point in the right direction rather than the answer as I learn a lot more reading up on it. I just haven't been able to find anything, especially not knowing what I am looking for. Can anyone point me in the right direction? -- //curt ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Problem recreating Virtual Hosts settings from Windows to BSD
william nova wrote: I was using Apache 2 on Windows 2003 server. I had 2 virtual hosts running, using no-ip for DNS resolution along with a NO-IP referral entry for each (since my ISP blocks port 80) The virtual hosts config portion of httpd.conf looked like: NameVirtualHost * DocumentRoot "C:\Program Files\Apache Group\Apache2\htdocs\site1" ServerName site1.no-ip.com DocumentRoot "C:\Program Files\Apache Group\Apache2\htdocs\site2" ServerName site2no-ip.com Very simple. And it worked. Now I'm using Apache 1.3.27_4 on FreeBSD 4.8 I am trying to recreate the same exact configuration on my new box. It just won't work, even though the config is identical, barring the path to the files. NameVirtualHost * DocumentRoot /usr/local/www/data/site1 ServerName site1.no-ip.com DocumentRoot /usr/local/www/data/site2 ServerName site2.no-ip.com This looks fine to me. Exactly what mine looks like.. only a few more domains. Take a look at the httpd* logs in /var/log as you try to navigate to the pages. Make sure the permissions are correct. Make sure that you aren't getting any warnings when you start httpd. Sorry, that's probably not very helpful ;) --Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: error in buildworld.
michael Corleone wrote: hi i received this error when im about to do a buildworld after upgrading my src and ports collection. im running 4.8-RELEASE, heres the logs of the errors: i hope anyone can explain what and where is the the line that causes the error, thanks all. ===> bin/ln ===> bin/ls cc -O -pipe -DCOLORLS -Wall -Wformat -static -o ls cmp.o ls.o print.o util.o -lm -ltermcap /usr/obj/usr/src/i386/usr/lib/libtermcap.a: could not read symbols: Malformed archive The line that you pasted is the one causing the error. With the limited information you provided, I would say that you need to either run make cleandir (two times) in /usr/src and delete /usr/src/obj, or to be safe, cd /usr/src && mrm -rf * After that, you'll have to run cvsup again, then attempt the make buildworld again. If that doesn't work, please include the following info: Hardware, the lines in your cvsup file that say tag= --Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
SB AWE 64 on 5.1
hi, I'm trying to install sb awe64 isa pnp on freebsd 5.1 I've added device pcm and device sbc to my kernel and config, make depend, make, make install it. rebooted. dmesg output on pcm and sbc: pcm0: on sbc 1 sbc1: at port .(some ports). irq 5 drq 5,1 on isa0 it seem everyting is corect but xamp aint playing nothing. suggestions welcome thank you martin ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Eliminating "noise" from secondary MX
In the last episode (Jun 23), Brett Glass said: > Here's more detail. A spammer sends to a nonexistent address in a > domain for which the host is a secondary mail exchanger. Many > spammers' software is actually set up to use secondary mail > exchangers rather than primaries, because they're less likely to have > effective antispam software running. (Even if they use public > blacklists, they rarely use a blacklist or whitelist provided by the > domain for which they're a secondary.) > > The secondary mail exchanger tries to send the message on to its > destination, but the mail is bounced by the primary mail host (either > as spam or because it has been sent to an invalid address). So, the > secondary dutifully tries to notify the sender that the message > didn't get through. > > Of course, the "From:" and "Reply-to:" headers of the spam contain > either a completely bogus address or one that has quickly been shut > down due to spamming. So, the host, not knowing what else to do, > sends a notice to Postmaster, saying that the notice to the sender > could not be delivered. > > What's the easiest way to suppress this resource-consuming, mailbox > clogging chain reaction? I make sure my secondary MX has the same filtering setup as the primary, and set it up so email from one MX to the other isn't checked again. You can set spamassassin up so it uses a SQL backend for its user rules which makes it easy for multiple machines to filter mail the same way. I've never done this, though, so I don't know how easy it is to make it work when you're secondarying for multiple domains. You could always make the secondary run with much tighter spam checks than the primaries, as a penalty for spammers that try it first :) -- Dan Nelson [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: how to view and open file.db & file.mdb?
Sorry if this question has been answered. You can use the file command to figure out what type of file it is. " file filename " or you can use the ls command. If its a text file, use your fav text editor like VI. Pete --- Matt Heath <[EMAIL PROTECTED]> wrote: > Marlon Corleone wrote: > > >hi, im running 4.8 do do i open this type of file > >extension, file.db and file.mdb is there in ports > >collection that can manage to view and open this > type > >of file? > > > > > > > > looks to me like Microsoft DataBase - afaik you'll > need Microsoft Access > for that > > Open Office lays claim to opening them : > > http://dba.openoffice.org/FAQ/index.html#msaccess > > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" __ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: changing setup
man em for Intel Gigabit adapters: "The em driver provides support for PCI gigabit Ethernet adapters based on the Intel 82540, 82542, 82543, 82544 and 82546 Ethernet controller chips." I believe there is Serial ATA support for some chipsets in 5.1. No idea on the Fasttrack 378. Problems are likely to occur when your kernel doesn't match your userland. I'm guessing your initial install was 4.5, and you updated directly to 4.8? I would recommend that you try to boot with a 4.8 GENERIC kernel, off a 4.8 CD or floppy. Then try mounting your partitions manually from single user mode, and editing /etc/fstab to match your drive configuration. Han Hwei Woo http://www.argosy.ca/~hhw - Original Message - From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, June 23, 2003 11:39 AM Subject: changing setup > I have just changed my motherboard and consequently drive assignments and > peripherals as well. The old board or processor crashed. :(( > So the new board is an MSI 875-FISR - top of the line with a 3ghz pentium > IV and Intel Gigabit lan card and kGEforce FX5200 video card. > The previous system was a dual pentium II with 450mhz processors. > The problem is the following: how do I boot and reconfigure the system? > What is installed is FBSD 4.8 stable. > When I boot up using the kernel.GENERIC, I get version 4.5 with limited > functions... so, I don't really know what todo with it. > Whe I boot up with the 4.8 SMP kernel, kit freezes just after the network > card is not recognized. > I am hoping I don't have to reinstall everything as that tends to be a PITA. > Also, I don't know if FBSD supports the built-in Intel Gigabit network > adapter; the hardware.txt does not show it. > And what about serial ATA and Promise Fasttrack 378? > Any help would be appreciated... > Thanks in advance, > Pippo > > > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: creating ftp users!
Rob, If you want a nice message, I suggest creating a class in /etc/logins.conf which point to a /etc/issues.sftponly file where the user gets a nice message, which you deem appropriate. Secondly, as far as chroot, I don't believe OpenSSH supports chroot natively, however I know there is a patch floating around (I believe in the contrib/ directory of the openssh portable tarball) which will patch openssh to support chroot'd environments. You will need to recompile the openssh portable distribution, however. Rob Lahaye wrote: Raymond Sundland wrote: Rob, You can try setting the user's shell to /usr/libexec/sftp-server (or wherever the sftp-server binary exists under FreeBSD). This will give the user ability to SFTP into the box, but without a normal shell. /usr/lib/exec/sftp-server should be added to /etc/shells, too. Almost works ;). Doing what you suggest, I can sftp to the account, but when I do ssh to that account, I get the regular login message but no prompt. Something seems to hang. When I type something and hit return, I get: bad message Connection to foo.bar.com closed. $ It somehow blocks ssh login indeed, but it's not very nice! BTW will sftp also work with the /etc/chroot file? Thanks, Rob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Updating FBSD on one slice from another slice
On Mon, Jun 23, 2003 at 08:43:07AM -0500, D J Hawkey Jr wrote: > What I'm stumped with is how to tell 'make [build|install][world|kernel]' > to do their thing from the OS in the slice I'm running (the newer), but > do the reads and writes on the other, older slice. Same conundrum with > 'mergemaster'; how do I tell it to do it's thing on that older slice? > A mountpoint on the newer slice I'm running, "/mnt/s2", is the older > slice's "/", so the entire other, older slice is visible. You'll have to copy /mnt/s2/etc/make.conf temporarily in place of /etc/make.conf, if there's any significant difference between the two systems. Then you can just do: # cd /mnt/s2/usr/src # make installkernel installworld KERNCONF=FOO DESTDIR=/mnt/s2 # mergemaster -m /mnt/s2/usr/src -D /mnt/s2 Alternatively, take a look at the chroot(8) or jail(8) man pages... Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
Re: Eliminating "noise" from secondary MX
--On 23 June 2003 08:48 -0600 Brett Glass <[EMAIL PROTECTED]> wrote: [snip] The secondary mail exchanger tries to send the message on to its destination, but the mail is bounced by the primary mail host (either as spam or because it has been sent to an invalid address). So, the secondary dutifully tries to notify the sender that the message didn't get through. Of course, the "From:" and "Reply-to:" headers of the spam contain either a completely bogus address or one that has quickly been shut down due to spamming. So, the host, not knowing what else to do, sends a notice to Postmaster, saying that the notice to the sender could not be delivered. What's the easiest way to suppress this resource-consuming, mailbox clogging chain reaction? Carefully check out the sendmail "Double Bounce Address" option, with a view to piping it to /dev/null [Like I said, 'carefully' check this out :)] Or, secondly - as was cleverly suggested to me a while ago - setup a 3rd MX that has a IN A PTR to your primary MX, and make it the highest priority... e.g. mx0.mydomain.com PRI 20 mx1.mydomain.com PRI 30 mx2.mydomain.com PRI 40 (Which is really just a different name for mx0) That way, you'll probably find most the spam hits the highest priority MX (which is, in reality your primary MX). -Kp ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
bsd video streaming
Hello, Does anyone know off hand if there is a port that can assist in streaming mpeg or asf files from a web page (apache) ? bsd version 4.7. regards, -- Matthew Bettinger System Administrator Champion Elevators, Inc. Houston, Texas 77061 713.640.8500 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: bsd video streaming
- Original Message - From: "Matthew Bettinger" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, June 23, 2003 12:24 PM Subject: bsd video streaming > Hello, > > Does anyone know off hand if there is a port that can assist in > streaming mpeg or asf files from a web page (apache) ? > > bsd version 4.7. > > regards, > > -- > Quicktime Streaming Server should work if you have Linux Compatability installed. It's a free download from Apple, if you register. Adam ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
ATA Modes & Kernel Config
I have a pentium 133 running FBSD 4.8. In this system I have three ide disks, ad0, ad1, & ad2. ad0 is a 850 mb drive and contains the root. ad2 is a 4 GB drive and contains the usr. ad1 is unused. ad0 and ad1 are on the primary ide and are master and slave, respectively. ad2 is the master on the secondary ide. Recently, the power supply failed so I replaced it. While I had the box open, I pulled the 10 mb Linksys network cards that used the ed driver and replaced them with NetGear 10/100 cards that use the dc driver. Because my kernel was only compiled with the ed driver, the netgear cards were not recognized. So I booted with a 4.4 GENERIC kernel I had on the system and then edited my kernel conf and rebuilt my kernel. Before, ad0, ad1, and ad2 were all seen as BIOSPIO during boot. Now when the system boots, ad0 and ad1 are seen as PIO3 and are OK. However, when it's probing ad2 the bus resets then ad2 is seen as WDMA2. Then the bus resets two more times and the kernel panics with a trap '12'. I have since updated my source and rebuilt world and kernel by booting from both the 4.4 GENERIC kernel and my original 4.8 kernel. I have even tried building the GENERIC 4.8 kernel. However any kernel except the 4.4 GENERIC or my original 4.8 with ed support has the problem described above. Any ideas on how I can get my system running again would be greatly appreciated. Please cc me at this address as I am not receiving the list due to this problem. Thanks for your help!!! Drew ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
newbie: weekly tape backup advice
Hi, I need some help setting up a tape backup system. I have two FreeBSD machines and on external SCSI Onstream ADR50. Got any clues how I can start a weekly back up plan here? Thanks in advance, Noah ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: newbie: weekly tape backup advice
admin wrote: Hi, I need some help setting up a tape backup system. I have two FreeBSD machines and on external SCSI Onstream ADR50. Got any clues how I can start a weekly back up plan here? Thanks in advance, Noah ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" The key would be, a tape a day? Just kidding. If you ca fit it all on one tape, and it's not a long backup - why not do a full backup apposed to some sort of incremental one. A cron once a day should do the trick (man cron and man crontab) and I would think using dump (man dump) would also do the archiving. -- Best regards, Chris __ PGP Fingerprint = D976 2575 D0B4 E4B0 45CC AA09 0F93 FF80 C01B C363 PGP Mail encouraged / preferred - keys available on common key servers __ 01010010011101100011011001010111001001011000 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: fatal trap 12 (SMP related)
On Mon, Jun 23, 2003 at 10:55:20AM -0400 or thereabouts, Asenchi seemed to write: > Hello, > > I have installed 4.8-stable on my dual processor HP system. I reconfigured the > kernel, and everything worked fine. Except now after a period of time (even Idle > time, see below) my system has this error: > > Fatal trap 12: page fault while in kernel mode > mp_lock = 0103; cpuid = 1; lapic.id = > fault virtual address = 0x30 > fault code= supervisor read, page not present > instruction number= 0x8:0xc0205661 > stack pointer = 0x10:0xff80fcd0 > frame pointer = 0x10:0xff80fcd0 > code segment = base 0x0, limit 0xf, type 0x1b > = DPL 0, pres 1, def32 1, gran 1 > processor eflags = interrupt enabled, resume, IOPL = 0 > current process = Idle > interrupt mask= tty bio <- SMP: XXX > trap number = 12 > panic: page fault > mp_lock = 0103; cpuid = 1; lapic.id = > boot() called on cpu#1 > Uptime: 36m17s > > I can see that this is a problem with the SMP config. What I don't know is what to > do with it, is it hardware, software. I am not sure. This is the first time I have > ever been presented with this. You need to resolve the 'instruction pointer' value and preferably give us a coredump. Here are your options, in order of best for us to worst for us: 1) Compile a new kernel with 'options DDB' and try to reproduce the panic. When the kernel panics, you'll get thrown into DDB; enter 'trace' (w/o quotes) and you will get a backtrace. Send this to us. Then type 'continue' whenever the prompt appears so it'll keep panicking :-) -- You should use this with #2 2) First, you need to compile a debug kernel. Check your kernel config file for the line 'makeoptions -g' or similar. If that exists, skip this part. Otherwise, add that line, recompile your kernel and reboot. Put dumpdev="/dev/myswapdev" (with the quotes) in /etc/rc.conf, replacing myswapdev with your swap device (e.g. ad0s2b). Also run: # dumpon /dev/myswapdev When you get the panic next, you should see something like "dumping 256 MB" in the output. When you reboot, savecore(1) will be run and you'll get the coredump in /var/crash. Do this to get the backtrace: # cd /var/crash # cp /usr/src/sys/compile/GENERIC/kernel.debug . # <-- replace GENERIC with your kernel # script gdb.out gdb -k vmcore.0 kernel.debug # <-- replace 0 with the highest numbered vmcore (gdb) bt [snip] (gdb) quit Now send us the file gdb.out. 3) If neither of the above is feasible, then you can resolve the symbols listed above. This is easiest because you don't have to reproduce the panic. Taking the "instruction pointer" above > instruction number= 0x8:0xc0205661 you do this: # nm /kernel | grep c0205661 If that doesn't produce any output (and it probably won't), then chop off the last digit and try again, e.g. # nm /kernel | grep c020566 Continue until you get some output; send it to us. > > I do prefer maybe a point in the right direction rather than the answer as I learn a > lot more reading up on it. I just haven't been able to find anything, especially > not knowing what I am looking for. > > Can anyone point me in the right direction? Sure, see above. -- Josh > > -- > //curt > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
using bind() call on FreeBSD
Hi Folks :) I am trying to write a simple a server process which follows this sequence... socket() bind() listen() accept() . . . close( descriptor from accept() ) close( descriptor from socket() ) But I am getting error 99 (Cannot assign requested address) from bind(). I am trying to bind the socket on 127.0.0.1: (This works on Linux though) Are there any special/extra things I need to do in /etc or elsewhere to make this program run on FreeBSD ? I am running FreeBSD 4.7-RELEASE Any help/pointers from you folks would be great :) Thanks in advance :) Regards, Gagan. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: bsd video streaming
- Original Message - From: "Matthew Bettinger" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, June 23, 2003 11:24 AM Subject: bsd video streaming > Hello, > > Does anyone know off hand if there is a port that can assist in > streaming mpeg or asf files from a web page (apache) ? > > bsd version 4.7. > > regards, > > -- > Matthew Bettinger > System Administrator > Champion Elevators, Inc. > Houston, Texas 77061 > 713.640.8500 > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > http://www.freebsd.org/cgi/url.cgi?ports/multimedia/ffmpeg045/pkg-descr ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
bus error
I'm afraid I'm getting a nasty error when I try to do some very fundamental things. Not sure what's back of all the problems. For example when I try to start vim or even xinit, I get: Jun 23 12:00:12 juno /kernel: pid 2700 (vim), uid 0: exited on signal 10 (I happened to be root at the time, but same applies to any user.) When I try to startx, I get: Bus error uname -a shows: FreeBSD juno.dsj.net 4.5-STABLE FreeBSD 4.5-STABLE #7: Sun Apr 28 15:23:53 EDT 2002: [EMAIL PROTECTED]:/usr/src/sys/compile/JUNO i386 I do find .core files for proggies I cannot start, though. I went gdb vim vim.core and got the following: ***snip*** (no debugging symbols found) Core was generated by 'vim'. Program terminated with signal 10, Bus error. Reading symbo9ls from /usr/X11R6/lib/libgtk12.so.2... (no debugging symbols found)...done Reading symbols from /usr/X11R6/lib/libgdk12.so.2... (no debugging symbols found)...done Reading symbols from /usr/X11R6/lib/libgmodule12.so.3... (no debugging symbols found)...done Reading symbols from /usr/X11R6/lib/libglib12.so.3... (no debugging symbols found)...done Reading symbols from /usr/local/lib/compat/pkg/libintl.so.2... (no debugging symbols found)...done Reading symbols from /usr/libexec/ld-elf.so.1...(no debugging symbols found)...done #0 0x2815a26b in memset () from /usr/libexec/ld-elf.so.1 (gdb) ***snip*** Here's the same thing for xinit.core ***snip*** This GDB was configured as "i386-unknown-freebsd"... (no debugging symbols found)... Core was generated by 'xinit'. Program terminated with signal 10, Bus error. Reading symbols from /usr/X11R6/lib/libXmu.so.6... (no debugging symbols found)... Reading symbols from /usr/X11R6/lib/libXt.so.6... (no debugging symbols found)... Reading symbols from /usr/libexec/ld-elf.so.1...(no debugging symbols found)...done #0 0x2805826b in memset () from /usr/libexec/ld-elf.so.1 (gdb) ***snip*** Mind you, I typed this while looking at the screen of the other box. Hope I got it correctly. Any idea what is back of this? Does it look like some file corruption to ld-elf.so.1? How the heck do I fix that if so? I tried to remake a kernel a while back and couldn't even complete that process. (sniff, sniff) What type of stuff uses ld-elf.so.1 anyway? Everything? TIA. -- David S. Jackson[EMAIL PROTECTED] =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= I never forget a face, but in your case I'll make an exception. -- Groucho Marx ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: bus error
On Mon, Jun 23, 2003 at 01:24:39PM -0400 or thereabouts, David S. Jackson seemed to write: > > I'm afraid I'm getting a nasty error when I try to do some very > fundamental things. Not sure what's back of all the problems. > > For example when I try to start vim or even xinit, I get: > > Jun 23 12:00:12 juno /kernel: pid 2700 (vim), uid 0: exited on signal 10 > > > (I happened to be root at the time, but same applies to any user.) > > > When I try to startx, I get: > > Bus error > > uname -a shows: FreeBSD juno.dsj.net 4.5-STABLE FreeBSD > 4.5-STABLE #7: Sun Apr 28 15:23:53 EDT 2002: > [EMAIL PROTECTED]:/usr/src/sys/compile/JUNO i386 > > I do find .core files for proggies I cannot start, though. I went gdb vim vim.core > and got the following: > > ***snip*** > (no debugging symbols found) > Core was generated by 'vim'. > Program terminated with signal 10, Bus error. > Reading symbo9ls from /usr/X11R6/lib/libgtk12.so.2... > (no debugging symbols found)...done > Reading symbols from /usr/X11R6/lib/libgdk12.so.2... > (no debugging symbols found)...done > Reading symbols from /usr/X11R6/lib/libgmodule12.so.3... > (no debugging symbols found)...done > Reading symbols from /usr/X11R6/lib/libglib12.so.3... > (no debugging symbols found)...done > Reading symbols from /usr/local/lib/compat/pkg/libintl.so.2... > (no debugging symbols found)...done > Reading symbols from /usr/libexec/ld-elf.so.1...(no debugging symbols found)...done > #0 0x2815a26b in memset () from /usr/libexec/ld-elf.so.1 > (gdb) Type 'bt', press enter. > > ***snip*** > > Here's the same thing for xinit.core > > ***snip*** > This GDB was configured as "i386-unknown-freebsd"... > (no debugging symbols found)... > Core was generated by 'xinit'. > Program terminated with signal 10, Bus error. > Reading symbols from /usr/X11R6/lib/libXmu.so.6... > (no debugging symbols found)... > Reading symbols from /usr/X11R6/lib/libXt.so.6... > (no debugging symbols found)... > Reading symbols from /usr/libexec/ld-elf.so.1...(no debugging symbols found)...done > #0 0x2805826b in memset () from /usr/libexec/ld-elf.so.1 > (gdb) Type 'bt', press enter. > > ***snip*** > > > Mind you, I typed this while looking at the screen of the other > box. Hope I got it correctly. > > Any idea what is back of this? Just clutching at straws here... What does ls -l /etc/malloc.conf say? > > Does it look like some file corruption to ld-elf.so.1? How the > heck do I fix that if so? I tried to remake a kernel a while back > and couldn't even complete that process. (sniff, sniff) > > What type of stuff uses ld-elf.so.1 anyway? Everything? Everything in /usr/local/[s]bin, most things in /usr/bin. -- Josh > > TIA. > > -- > David S. Jackson[EMAIL PROTECTED] > =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= > I never forget a face, but in your case I'll make > an exception. > -- Groucho Marx > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
swap_pager_getswapspace: failed
I keep getting the following in /var/log/messages every time I run mysqld: Jun 23 03:04:14 franky /kernel: swap_pager_getswapspace: failed Jun 23 03:04:14 franky last message repeated 26 times Jun 23 03:04:15 franky /kernel: pid 189 (mysqld), uid 88, was killed: out of swap space Jun 23 11:19:39 franky /kernel: swap_pager_getswapspace: failed Jun 23 11:19:41 franky last message repeated 48 times Is this a problem with mysql, or do I need to get more swap space? The machine has 32MB RAM and a swap space of 128M, I am running apache 1.3.27, mysql 4, postfix and courier-imap. The problem appeared when I began using a mysql database with postfix for virtual domains. BTW, courier-imap doesn´t work with mysql yet. Thanks in advance, Alfonso ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: swap_pager_getswapspace: failed
Alfonso Romero wrote: I keep getting the following in /var/log/messages every time I run mysqld: Jun 23 03:04:14 franky /kernel: swap_pager_getswapspace: failed Jun 23 03:04:14 franky last message repeated 26 times Jun 23 03:04:15 franky /kernel: pid 189 (mysqld), uid 88, was killed: out of swap space Jun 23 11:19:39 franky /kernel: swap_pager_getswapspace: failed Jun 23 11:19:41 franky last message repeated 48 times Is this a problem with mysql, or do I need to get more swap space? The machine has 32MB RAM and a swap space of 128M, I am running apache 1.3.27, mysql 4, postfix and courier-imap. The problem appeared when I began using a mysql database with postfix for virtual domains. BTW, courier-imap doesn´t work with mysql yet. run: swapinfo Most likely out of swap. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Updating FBSD on one slice from another slice
On Jun 23, at 04:29 PM, Matthew Seaman wrote: > > On Mon, Jun 23, 2003 at 08:43:07AM -0500, D J Hawkey Jr wrote: > > > > What I'm stumped with is how to tell 'make [build|install][world|kernel]' > > to do their thing from the OS in the slice I'm running (the newer), but > > do the reads and writes on the other, older slice. Same conundrum with > > 'mergemaster'; how do I tell it to do it's thing on that older slice? > > You'll have to copy /mnt/s2/etc/make.conf temporarily in place of > /etc/make.conf, if there's any significant difference between the two > systems. Then you can just do: > > # cd /mnt/s2/usr/src > # make installkernel installworld KERNCONF=FOO DESTDIR=/mnt/s2 > # mergemaster -m /mnt/s2/usr/src -D /mnt/s2 All righty, then! You just gotta love these developers. Many thanks, Matthew. Dave -- __ __ \__ \D. J. HAWKEY JR. / __/ \/\ [EMAIL PROTECTED]/\/ http://www.visi.com/~hawkeyd/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: changing setup
At 12:22 PM 6/23/2003 -0300, you wrote: man em for Intel Gigabit adapters: "The em driver provides support for PCI gigabit Ethernet adapters based on the Intel 82540, 82542, 82543, 82544 and 82546 Ethernet controller chips." I believe there is Serial ATA support for some chipsets in 5.1. No idea on the Fasttrack 378. I did check the harware compatibility list, but did not find the exact references for the data given by the manufacturer. :(( My user's guide says the LAN is Intel 82547EI (CSA interface)/Intel 8256EZDual layout (Integrated Fast Ethernet MAC and PHY in one chip. :)) The Fasttrack is 20378. There is also an Intel ICH5/ICH5R chipset - I don't know if this needs some special configuration? Pippo ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: newbie: weekly tape backup advice
> > Hi, > > I need some help setting up a tape backup system. I have two FreeBSD machines > and on external SCSI Onstream ADR50. Got any clues how I can start a weekly > back up plan here? It depends a little on the size of your disk compared to your tape capacity. It also depends on how much - amount and frequency - critical data changes. If you can fit everything you want to back up on one tape, just run a full backup (level 0 dump) each time being once per day or once per week or whatever fits your data change pattern. If your critical data change is a lot and a full backup of it will take more than one tape, pick a convenient day of the week and do a full back up and then do incremental backups (level 1 dump) other days. If your disk is so big and the amount of change so much that a week's worth of incremental backup needs more than one tape, then you will want to do a weekly full backup and then increasing levels of incremental back up (level 1 - 6) on the other days. If your amount of data change is quite low - say it is just hosting a fairly static web site and some information database you look at but don't update very often, you might want to consider doing only a weekly full backup or a monthly full backup and weekly incremental backups. Use enough tapes so you are keeping at least three copies of each part of the rotation before reusing a tape. You may also want to do a quarterly or annual archive dump that you store off site and do not reuse for several rotations. For sure, you want to use dump(8). It is part of the system, does the right things with the files and is reliable and doesn't take any tinkering. Unless you have a lot of very critical files open and being changed all the time, don't bother with the warnings about doing a dump on a non-running system. The dump will work just fine.It only means that some file may change between the time the dump started and when it finishes so that file's backup image might not be good. But, if you are doing regular backups -_and not just reusing the same tape all the time_- you will catch that file in a good backup on another day. The man page explains dump pretty well. Mostly you shouldn't need to worry about block size and all the other special stuff. The defaults work best for most circumstances. Determining the media capacity may be the only difficult thing. If one tape will hold the entire backup, just use the '-a' switch. That can work well also for multiple tape dumps with tape drives that give a good end-of-media indication. But some of them - DDS can be an annoying example - tend to not work well when getting near the end of media and will start getting write/read errors before the end-of-media indication actually happens. Then, the system may not handle things very well and you may want to do some calculating and experimenting with either the '-B nnn' parameter or the '-d nnn' and '-s nnn' parameters to specify a media size and force it to change tapes before the problem area is reached. You need to run dump(8) as root. Eventually you will want to not have to retype the dump commands each time or you will want it to run by cron at some time you are not around, so either make a script and run it while su-ed or logged in as root, or make a compiled program that will do the dump calls and make it suid root and then make it owned by root with a group of the only ids that will be allowed to run it and then give it only 750 permissions. One more thing from experience - do not run the head cleaner cartridge any more often than you absolutely have to. In a very clean environment that can actually mean never. But, you will probably need it now and then. Experience will tell when. Those cleaners cause significant wear on the heads and possibly the rest of the mechanism. It doesn't take much to wear those tiny heads down to nothing. So, using them as infrequently as possible will actually help increase head life, not reduce it as some of the accompanying printed material often likes to imply. I think they just way to sell more replacement tape drives. jerry > > Thanks in advance, > > Noah > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Mount My Creation [ls -c, -t -u etc]
dionysus: {1030} man ls
-d Directories are listed as plain files (not searched
recursively)
and symbolic links in the argument list are not indirected
through.
...
:-)
gr,
Axel Scheepers
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Mount My Creation [ls -c, -t -u etc]
- Original Message -
[snip]
> On Sat, 21 Jun 2003, Joshua Oreman wrote:
> What "ls" command can I do IN THE CURRENT WORKING DIRECTORY to just see
the
> "myfiles/" listing? That is, if I type "ls -alF myfiles" (or myfiles/),
> why does the output delve *into* this directory and list its contents?
>
> The only work around is "ls -alF | grep myfiles" it seems!
>
no, it isn't, try the -d switch:
dionysus: {1022} mkdir testdir
dionysus: {1023} touch testdir/file1
dionysus: {1024} touch testdir/file2
dionysus: {1025} touch testdir/file3
dionysus: {1026} ls -laFd testdir
drwxr-xr-x 2 root users 512 Jun 22 20:14 testdir/
dionysus: {1027} ls -laF testdir
total 4
drwxr-xr-x 2 root users 512 Jun 22 20:14 ./
drwxr-xr-x 3 root users 512 Jun 22 20:14 ../
-rw-r--r-- 1 root users0 Jun 22 20:14 file1
-rw-r--r-- 1 root users0 Jun 22 20:14 file2
-rw-r--r-- 1 root users0 Jun 22 20:14 file3
dionysus: {1028}
Gr,
Axel Scheepers
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: bsd video streaming
- Original Message - > Hello, > > Does anyone know off hand if there is a port that can assist in > streaming mpeg or asf files from a web page (apache) ? > > bsd version 4.7. > > regards, > sure, try ffmpeg/ffserver it's quite fast and supports about any format, I've used for a while to stream my webcam to .asx and .swf, no problems at all ;-) (/usr/ports/multimedia/ffmpeg) gr, Axel Scheepers ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: fatal trap 12 (SMP related)
- Original Message - > Fatal trap 12: page fault while in kernel mode That might be bad ram, you could try to set a lower bus timing (e.g. 133->100). One of my home systems had programs failing like that on a regular basis, when I tried a lower busspeed the problem went away. (should buy some new ram for that box :) gr, Axel Scheepers ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: tkabber wish problem
- Original Message - > hi, > I've tried to install tkabber 0.9.5 beta on freebsd 5.1. > I've downloaded all libraries needed, but it is still > bugging me with message about "wish" that it can be found > under different names and that in my system it is called wish8.3 > and quit. > any suggestions how to get this IM to work? > or should I try another IM? > thanx > martin > Hmm I ran into that once too for some app a long time ago, I just created a symlink to fix it. gr, Axel Scheepers ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
application server
I was wondering if there's port that one can use to create an application server. Basically I want to be able to connect to it and install software from it onto winX computers I can do it now on a winXP computer but it slows down the user when couple people are pulling stuff off. Thanks. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: About Patches
In article <[EMAIL PROTECTED]>, [EMAIL PROTECTED] writes: > Hi List, > > I need to apply some security patches to my FreeBSD(i386) 4.7-RELEASE > box and I am concerned about the possibility that I could actually harm > my system while trying to apply this patches. (I am not a Unix guru > actually) Is there any particular reason you don't want to use cvsup(1) against the "security" or "current" branches? Release 4.7 is still supported by the Security Team, after all. See the Handbook if you don't know what this means. > 1) Do I have to apply the security patches in a specific order? Sometimes, yes, sometimes, no. It will depend on whether any one source module has been updated (or not, more to the point) before. > 2) Is there a chance were a patch requires a previous one? (In my case > some patches are not applicable) Yup; see above, especially where the kernel is concerned. Even if a patch is for source a module that has never been patched before, it might depend on function asdf() in another source module being "proper" from it's (the patch's) own point-of-view. > 3) What if the code is not in the state that the patch requires? (For > instance if I have updated that port) Um, this is a tricky question. The answer could go either way. The nasty situation is when a source module isn't current enough for the patch to apply, but it should have the patch's functionality. > 4) Are the patches clever enough to protect me from harming my system? Yes. If you use the patch(1) utility judiciously (correctly?), it can/will rename the existing file(s) being patched to *.bak. The script(1) utility is a Good Thing(tm) if you're patching things in an ad hoc manner; it'll let you "go back" further than the scroll-back of a console or xterm to see what was actually done. > 5) Is there a safe way to undo a patch? Yup; see above. The patch(1) utility also understands "reverse patches", though I've not used that functionality. Note: I'm not a developer or committer. I'm just another hack who has some experience doing this sort of thing. I have a web page for patching EOL'd kernels against more recent security alerts [and other stuff]. It has a section that you might find helpful: http://www.visi.com/~hawkeyd/freebsd-backports.html You should become familiar with reading a patch file before trying to patch things in an ad hoc fashion, both the contextual and unified diff formats. I can almost guarantee that you'll have to dissect something, somewhere, sometime. Please [re-]evaluate my opening question before proceeding. Please CC me when replying to the list; I'm not subscribed. HTH, Dave -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
versioning file system
years ago I used a VAX VMS system that automatically saved file versions whenever a file name was clobbered. I've seen wrapper scripts for vi to accomplish the same but it would be nice if someone had actually implemented something at the file system level to do this. Anyone know of anything like that for FreeBSD? -- David Bear phone: 480-965-8257 fax:480-965-9189 College of Public Programs/ASU Wilson Hall 232 Tempe, AZ 85287-0803 "Beware the IP portfolio, everyone will be suspect of trespassing" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
What does this mean
I have formatted my hard disk using the floppy that came with it. It is now a 32bit FAT. I ran FIPS and everything seemed to go OK except that I received a message at the end of FIPS that said it could not partition FAT12, but I have no idea where it is getting the FAT12 from. Please note that FIPS reported OK after checking FAT while running. The message I get from the FIPS at the end of everything is that the partition has been created and that I should run scandisk on the smaller partition. Then beneath this it says: Memory allocation error could not load command system halted. The exact msg from trying to install from the image CD I created is: 'Building the boot loader arguments read error: 0x01 could not find primary volume descriptor' Thanks Frank ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: general help (was no subject)
mohamed awad wrote: dear : team freebsd i have some questions 1 . i want help on freebsd http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/index.html If you come across a _specific_ problem/question, ask on this list. 2 . how i make cd bootable from freebsd 3. what files i put on the cd to boot it Grab an ISO image and burn it _as_an_image_ ... see the docs for your burning software on how to do this (each software is different). http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mirrors.html Also read the installation docs in the handbook (link above) on other methods of installing. If English is not your primary language, check here to see if the docs have been translated for you: http://www.freebsd.org/support.html#web -- Bill Moran Potential Technologies http://www.potentialtech.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
jail : strange jid zombies
Hi all, I have a problem with stranges jids (old jail envirronnements) ; when i start the jail, all is done successfully, but when i kill it (killall -j jid) the jail shutdown, but sometimes (when i had a user who was logged on the jail) i have the jail envirronnment which continue to appear in jls command ... # jls 72 10.133.3.9 uxprod13-devel/jail/devel 69 10.133.3.9 uxprod13-devel/jail/devel 64 10.133.3.9 uxprod13-devel/jail/devel 62 10.133.3.9 uxprod13-devel/jail/devel 54 10.133.3.9 uxprod13-devel/jail/devel 51 10.133.3.9 uxprod13-devel/jail/devel 46 10.133.3.9 uxprod13-devel/jail/devel 39 10.133.3.9 uxprod13-devel/jail/devel 36 10.133.3.9 uxprod13-devel/jail/devel 34 10.133.3.9 uxprod13-devel/jail/devel 21 10.133.3.9 uxprod13-devel/jail/devel 14 10.133.3.9 uxprod13-devel/jail/devel 10 10.133.3.9 uxprod13-devel/jail/devel # ps ax | grep J -> no processes ... Is it a bug in jls command ? Thanks in advance... ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: data contained in ipfw show
Andrew Thomson <[EMAIL PROTECTED]> writes: > what's the max bytes ipfw show will record? > > 00010 422 44684 count ip from any to any out xmit tun0 > 00020 509 42556 count ip from any to any in recv tun0 > > i dump and zero them on the hour atm but just curious. A quick look at the source shows that they're 64-bit unsigned counters, so (according to an equally quick back-of-the-envelope calculation) each packet counter should be able to handle a few dozen centuries' worth of the largest possible throughput of a gigabit Ethernet. The byte counters, obviously, are good for a lot less; around half a century is the limit. > also, /(1024*1024.0) would give me my mb yeah?? Right. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
good mass storage backup solution
I have been using tapes for yeares, both DDS/dat and AIT style units. This seems the be cheapest solution for high volume backup. But I'm wondering if anyone has any hardware solution that is really a good backup media. I used ORB disks for a while, at 40$ per 2gig disk of DASD style media I thought it was okay (more expensive than tape but I liked direct access style media) Any votes for DASD style systems? Sequential media is still kind of a pain in the rear so I'm looking for suggestions of new/good/innovative technology. tx -- David Bear phone: 480-965-8257 fax:480-965-9189 College of Public Programs/ASU Wilson Hall 232 Tempe, AZ 85287-0803 "Beware the IP portfolio, everyone will be suspect of trespassing" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: versioning file system
> years ago I used a VAX VMS system that automatically saved file versions > whenever a file name was clobbered. > > I've seen wrapper scripts for vi to accomplish the same but it would be > nice if someone had actually implemented something at the file system > level to do this. Anyone know of anything like that for FreeBSD? Nope, not that I know of... I'm not sure you'll find a lot of people who like this unless they were accustomed to VMS back however long ago. Ken ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: versioning file system
- Original Message - From: "Kenneth Culver" <[EMAIL PROTECTED]> To: "David Bear" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Monday, June 23, 2003 5:23 PM Subject: Re: versioning file system > > years ago I used a VAX VMS system that automatically saved file versions > > whenever a file name was clobbered. > > > > I've seen wrapper scripts for vi to accomplish the same but it would be > > nice if someone had actually implemented something at the file system > > level to do this. Anyone know of anything like that for FreeBSD? > > Nope, not that I know of... I'm not sure you'll find a lot of people who > like this unless they were accustomed to VMS back however long ago. > > Ken It's something Hans Reiser has on his wishlist for ReiserFS, but it's way off, and I think ReiserFS is the only project contemplating it. Would recomend you look at RCS in the meantime. Adam ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: versioning file system
David Bear <[EMAIL PROTECTED]> writes: > years ago I used a VAX VMS system that automatically saved file > versions whenever a file name was clobbered. Among the many clever features of VMS. > I've seen wrapper scripts for vi to accomplish the same but it would > be nice if someone had actually implemented something at the file > system level to do this. Anyone know of anything like that for > FreeBSD? No. Full support of this feature would involve a lot more than just the filesystem, since applications that look at directories directly have to know about about the backup versions in order to use them. Individual applications can do a "poor man's" version of this (e.g., the Gnu 'ls' support for emacs-style backup filenames), but again it's limited by (or to) the applications that know about it. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Threads problem on 5.1-Release sparc64
Hi folks
I'm still having pthreads problems on Sparc64 (5.1 Release):
The program concerned is:
# cat conftest.c
#include
void* routine(void* p){return NULL;}
int main(){
pthread_t p;
if(pthread_create(&p,NULL,routine,NULL)!=0)
return 1;
(void)pthread_detach(p);
return 0;
}
Compiled with:
gcc -o moo -lc_r conftest.c
no errors
Trying to run it:
bash-2.05b# truss ./moo
mmap(0x0,7056,0x3,0x1000,-1,0x0) = 1075978240 (0x40222000)
munmap(0x40222000,0x1b90)= 0 (0x0)
__sysctl(0x7fdf490,0x2,0x40323110,0x7fdf488,0x0,0x0) = 0 (0x0)
mmap(0x0,32768,0x3,0x1002,-1,0x0)= 1075978240 (0x40222000)
geteuid()= 0 (0x0)
getuid() = 0 (0x0)
getegid()= 0 (0x0)
getgid() = 0 (0x0)
mmap(0x0,40960,0x3,0x1002,-1,0x0)= 1076011008 (0x4022a000)
open("/var/run/ld-elf.so.hints",0x0,010010540070) = 3 (0x3)
read(0x3,0x7fdf720,0x80) = 128 (0x80)
lseek(3,0x80,-1) = 128 (0x80)
read(0x3,0x4022e000,0x57)= 87 (0x57)
close(3) = 0 (0x0)
access("/usr/lib/libc_r.so.5",0) = 0 (0x0)
open("/usr/lib/libc_r.so.5",0x0,06) = 3 (0x3)
fstat(3,0x7fdf7e0) = 0 (0x0)
read(0x3,0x7fdd720,0x2000) = 8192 (0x2000)
mmap(0x0,1220608,0x5,0x20002,3,0x0) = 1077043200 (0x40326000)
mprotect(0x40342000,0x2000,0x7) = 0 (0x0)
mprotect(0x40342000,0x2000,0x5) = 0 (0x0)
mmap(0x40442000,16384,0x7,0x12,3,0x0)= 1078206464 (0x40442000)
mmap(0x40446000,40960,0x7,0x1012,-1,0x0) = 1078222848 (0x40446000)
close(3) = 0 (0x0)
access("/usr/lib/libc.so.5",0) = 0 (0x0)
open("/usr/lib/libc.so.5",0x0,0137) = 3 (0x3)
fstat(3,0x7fdf7e0) = 0 (0x0)
read(0x3,0x7fdd720,0x2000) = 8192 (0x2000)
mmap(0x0,2154496,0x5,0x20002,3,0x0) = 1078263808 (0x4045)
mprotect(0x40538000,0x2000,0x7) = 0 (0x0)
mprotect(0x40538000,0x2000,0x5) = 0 (0x0)
mmap(0x40638000,73728,0x7,0x12,3,0x0)= 1080262656 (0x40638000)
mmap(0x4064a000,81920,0x7,0x1012,-1,0x0) = 1080336384 (0x4064a000)
close(3) = 0 (0x0)
mmap(0x0,304,0x3,0x1000,-1,0x0) = 1076051968 (0x40234000)
munmap(0x40234000,0x130) = 0 (0x0)
mmap(0x0,9456,0x3,0x1000,-1,0x0) = 1076051968 (0x40234000)
munmap(0x40234000,0x24f0)= 0 (0x0)
mmap(0x0,43072,0x3,0x1000,-1,0x0)= 1076051968 (0x40234000)
munmap(0x40234000,0xa840)= 0 (0x0)
__sysctl(0x7fdf4f0,0x2,0x4065b218,0x7fdf4e8,0x0,0x0) = 0 (0x0)
getpid() = 28449 (0x6f21)
fcntl(0x0,0x3,0x0) = 2 (0x2)
fcntl(0x1,0x3,0x0) = 2 (0x2)
fcntl(0x2,0x3,0x0) = 2 (0x2)
pipe() = 3 (0x3)
fcntl(0x3,0x3,0x0) = 2 (0x2)
fcntl(0x3,0x4,0x6) = 0 (0x0)
fcntl(0x4,0x3,0x0) = 2 (0x2)
fcntl(0x4,0x4,0x6) = 0 (0x0)
readlink("/etc/malloc.conf",0x7fdf320,63)ERR#2 'No such file or
directory'
issetugid() = 0 (0x0)
getuid() = 0 (0x0)
mmap(0x0,8192,0x3,0x1002,-1,0x0) = 1076051968 (0x40234000)
break(0x200d68) = 0 (0x0)
break(0x200d68) = 0 (0x0)
break(0x204000) = 0 (0x0)
break(0x204000) = 0 (0x0)
break(0x206000) = 0 (0x0)
break(0x206000) = 0 (0x0)
break(0x208000) = 0 (0x0)
break(0x208000) = 0 (0x0)
break(0x20a000) = 0 (0x0)
break(0x20a000) = 0 (0x0)
break(0x20c000) = 0 (0x0)
__sysctl(0x7fdf610,0x2,0x40443370,0x7fdf5c8,0x0,0x0) = 0 (0x0)
mmap(0x7fdffefe000,8192,0x0,0x1000,-1,0x0) = -1056768 (0xffefe000)
break(0x20c000) = 0 (0x0)
break(0x20e000) = 0 (0x0)
gettimeofday(0x40443390,0x0) = 0 (0x0)
sysarch(0x2,0x4063e100) = 0 (0x0)
sigaction(SIGHUP,0x0,0x40449420) = 0 (0x0)
sigaction(SIGINT,0x0,0x40449440) =
Re: Threads problem on 5.1-Release sparc64
On Mon, Jun 23, 2003 at 10:52:19PM +0100, Steven Haywood wrote: > Please help! Mysql won't work, and I think I'm going to have to regress this > box back to 5.0-Release I've also had problems with threads on sparc64 (specifically, mozilla locks up or crashes a lot). > (and please don't tell me to ask on sparc64 - that list seems way too > devoted to deep down hardcore hardware hacking - no-one responded there last > time I asked this...) Er, well, questions is not a bug-reporting channel, and it is not even read by most developers. Bug reports should be submitted via send-pr, and/or reported to the relevant technical mailing lists. sparc64 (and threads) is definitely the place for this mail. Please re-send it there and/or submit a PR, since you have a working test-case that exposes the problem. kris pgp0.pgp Description: PGP signature
web management interface
Hi, are there any good, user easy, web interfaces out there so people can manage their virtually hosted websites. send the recommendations my way please. - Noah ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: web management interface
On Mon, Jun 23, 2003 at 03:24:51PM -0800 or thereabouts, admin seemed to write: > > > Hi, > > are there any good, user easy, web interfaces out there so people can manage > their virtually hosted websites. send the recommendations my way please. Maybe check out Usermin from Webmin. I'm not sure it's what you want though. -- Josh > > - Noah > > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
FW: Transparent Proxy going astray - Help!
Hi all, Has no-one seen this problem? If so, wow, what have I done wrong here? Do you need more info? Cheers, Paul Hamilton -Original Message- From: Paul Hamilton [mailto:[EMAIL PROTECTED] Sent: Saturday, 21 June 2003 1:34 PM To: Freebsd-Questions Subject: Transparent Proxy going astray Hi all, I have watched/lurked on this list for sometime now, and see a Transparent Proxy question every now or then. None of them have answered my problem. I give it a bash every now and then to see if I will trip over the answer. It hasn't worked, so I will try this list again. I run FreeBSD 4.8 on the gateway, Squid Cache: Version 2.4.STABLE4 Squid.conf has the required lines: http_port 8080 httpd_accel_port 80 httpd_accel_host virtual httpd_accel_with_proxy on httpd_accel_uses_host_header on and the required ipfw2 firewall rules: 00050271 27520 allow tcp from 192.168.0.10 to any 00060 3144 fwd 127.0.0.1,8080 tcp from any to any dst-port 80 Interestingly enough when watching the ip traffic on the gateway, I see this on my inside NIC: 08:27:18.735861 192.168.0.2.3276 > 203.10.1.17.53: 1093+ A? www.google.com.au. (35) 08:27:18.922217 203.10.1.17.53 > 192.168.0.2.3276: 1093 2/4/4 CNAME[|domain] 08:27:18.923667 192.168.0.2.3277 > 216.239.39.99.80: S 813553086:813553086(0) win 16384 (DF) 08:27:18.923722 216.239.39.99.80 > 192.168.0.2.3277: R 0:0(0) ack 813553087 win 0 08:27:19.397657 192.168.0.2.3277 > 216.239.39.99.80: S 813553086:813553086(0) win 16384 (DF) 08:27:19.397697 216.239.39.99.80 > 192.168.0.2.3277: R 0:0(0) ack 1 win 0 08:27:19.906095 192.168.0.2.3277 > 216.239.39.99.80: S 813553086:813553086(0) win 16384 (DF) 08:27:19.906153 216.239.39.99.80 > 192.168.0.2.3277: R 0:0(0) ack 1 win 0 and this on my outside NIC: 08:27:18.736970 202.72.147.43.3276 > 203.10.1.17.53: 1093+ A? www.google.com.au. (35) 08:27:18.922026 203.10.1.17.53 > 202.72.147.43.3276: 1093 2/4/4 CNAME www.google.com., (215) The cache_access.log doesn't show any traffic, yet (something) is pretending to be the google website, as there is a reply from 216.239.39.99.80. I have tried to run tcpdump -ni lo0 but there isn't any traffic. Should I be able to see traffic on lo0? Any thoughts on what I am missing? Cheers, Paul Hamilton ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Boot order with firewire 4.8-RELEASE
I've just installed 4.8-RELEASE on an SMP system, making the newbie mistake of running CVSup, then building a new kernel to enable SMP without doing a ``make world'' first. The kernel make worked, and booted -- with the minor problem that ``ps'' and friends didn't work, and booting kernel.old paniced as well. I'm doing a ``make world'' on the new install now while back on my Linux desktop doing e-mail. Be that as it may, when I booted the new kernel with an external firewire disk turned on, the new kernel detected the firewire disk before it did the SCSI on the adaptec controller, and naturally couldn't find a working system on it. The system would boot with the firewire drive off allowing me to determine that I had screwed up the build. My basic question is how does one control the order devices are scanned during the boot process? I would like to be sure that the system will come up after a power failure with no operator intervention if possible. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ ``...I'm not one of those who think Bill Gates is the devil. I simply suspect that if Microsoft ever met up with the devil, it wouldn't need an interpreter.'' -- Nick Petreley ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
KDE VNC server crashes
I'm having a problem with KDE's VNC server under FreeBSD. I can connect to one machine that is running KDE and set to allow uninvited guests, but when I disconnect from that machine the VNC server (krfb) crashes with the following message. The Application unknown (krfb) crashed and caused the signal 11 (SIGSEGV). The trace is: (no debugging symbols found)...(no debugging symbols found)... ...<15 identical lines cut>... (no debugging symbols found)...(no debugging symbols found)... 0x28ce356c in __sys_poll () from /usr/lib/libc_r.so.4 #0 0x28ce356c in __sys_poll () from /usr/lib/libc_r.so.4 #1 0x28ce2ab8 in _thread_kern_sched_state_unlock () from /usr/lib/libc_r.so.4 #2 0x28ce247d in _thread_kern_scheduler () from /usr/lib/libc_r.so.4 #3 0x0 in ?? () versions from portversion kde-3.1.2_1 kdenetwork-3.1.2 XFree86-4.3.0,1 I'm using FreeBSD 4.8-RELEASE #0 Any ideas of what I'm doing wrong? Thanks, ~Rik ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: swap_pager_getswapspace: failed
Thanks, I ran swapinfo and it showed up the following info: franky# swapinfo Device 1K-blocks UsedAvail Capacity Type /dev/ad0s1b 4971245920 379292%Interleaved How can I know what applications are using the swap space? I guess 32MB RAM is too little for MySQL, Apache and Postfix, huh? - Original Message - From: "Charlie Schluting" <[EMAIL PROTECTED]> To: "Alfonso Romero" <[EMAIL PROTECTED]> Cc: "freebsd-questions" <[EMAIL PROTECTED]> Sent: Monday, June 23, 2003 1:20 PM Subject: Re: swap_pager_getswapspace: failed > Alfonso Romero wrote: > > I keep getting the following in /var/log/messages every time I run mysqld: > > > > > > Jun 23 03:04:14 franky /kernel: swap_pager_getswapspace: failed > > Jun 23 03:04:14 franky last message repeated 26 times > > Jun 23 03:04:15 franky /kernel: pid 189 (mysqld), uid 88, was killed: out of swap space > > Jun 23 11:19:39 franky /kernel: swap_pager_getswapspace: failed > > Jun 23 11:19:41 franky last message repeated 48 times > > > > > > Is this a problem with mysql, or do I need to get more swap space? > > > > The machine has 32MB RAM and a swap space of 128M, I am running apache 1.3.27, mysql 4, postfix and courier-imap. The problem appeared when I began using a mysql database with postfix for virtual domains. BTW, courier-imap doesn´t work with mysql yet. > > > > run: swapinfo > Most likely out of swap. > > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Network Performace
I am having some issues with network performance and am wondering if anyone has any suggestions... the box in question has 2 100BT interfaces, and an Intel (em driver) fiber Gigabit. The Gigabit connects to a switch, and the two fast-e are WAN connections to our ISP(s). This box seems to be using an awful lot of CPU cycles relative to the traffic it is pushing, which is around 65-70Mb inbound, and 20-30 Mb/outbound(on average), which seems to be about its limit. This is an Athlon XP 1500 box, 256MB RAM, top shows 90+% interrupt usage, CPU usually has about 5-10% idle. Gigabit is on a 32-bit bus, and Gigabit is on an IRQ shared with unused USB and onboard NIC which is also not used. Should I be able to push more than 100Mb sec with such a system? It is not doing anything else, no NAT, one IPFW rule. OS is FreeBSD 4.7-RELEASE. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: IPSec+VPN+ipfw questions
A few things come quickly to mind... First, you need "gateway_enable=YES" in your rc.conf... I think. I know you need it for MPD (pptp tunneling). Second, you cannot have physical routes to the remote side "private" network. > 1) Is it possible to use ipfw rules to count different kinds > of traffic from legitimate computers, divert it to natd and > block all other packets across the LAN? There are ESP > protocol packets which I can filter, but it seems they are > not processed after decryption by ipwf rules. So, no > counters, no divert, etc. You should use ipfw to, at the very least, only allow legit tunnel traffic to pass to/from the "public" and "private" NICs/ > 2) What is the best solution for IKE daemon? I've tried > racoon (it works but there are some strange situations with > Windows 2000 machines which are mentioned somewhere), and > isakmpd (it has not very obvious syntax for their policy and > conf files - how to create a minimal working configuration > for a number of peer machines which use different preshared > keys for IKE exchange)? Racoon works fine if set up correctly. Most of the FAQ's are wrong, espcially when they discuss setting up gif() and then racoon. You don't need gif(). I seem to remember something about using MD5 as the hash, but its been a while... Maybe it was that my router only supported MD5 for its vpn-passthru stuff... > 3) In fact, it is not required for me to use VPN solutions. > All I need is to authenticate each legitimate machine (or > user - that is better). IP+MAC addresses may be forged. I can > use socks proxy, but there is no standard secured > authentication which is suported by number of different > internet tools. And I don't wish to have a complicated setup > of each client machine. So, VPN seems to be the best solution > as their policies for W2K clients may be specified via Active > Directory. IPSEC is probably the best way. Since the other side is Windows, you may consider using MPD and use PPTP instead of IPSEC. It's a little easier to deal with on the Windows side since setup is all gui-wizards. Cheers, Brent ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
OT: Network admin/Sysadmin help needed
Hello, I need help with administering a small network (about 8 servers running Debian Linux or FreeBSD), mostly updates, security patches, some tidying-up. Systems running Debian can be migrated to FreeBSD if that's your preference. I need someone who has experience with: - Apache, - Postfix, - Cyrus, - LDAP, - MySQL, - some programming/scripting skills. This is not a job, it's sort of a "service contract". You should be able to work from anywhere you like and any time you like. I'm located in Western Pennsylvania. Please e-mail to [EMAIL PROTECTED], not the list. -- Aliquis - This mail sent through IMP: http://horde.org/imp/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: KDE VNC server crashes
Rik Scarborough wrote: I'm having a problem with KDE's VNC server under FreeBSD. I can connect to one machine that is running KDE and set to allow uninvited guests, but when I disconnect from that machine the VNC server (krfb) crashes with the following message. The Application unknown (krfb) crashed and caused the signal 11 (SIGSEGV). My guesses: 1. Bad memory? 2. VNC sucks. Try tightVNC, I've had the best luck with that. Sometimes on some computers I have to muck with the compression setting.. but for the most part it works well. Come to think of it, VNC doesn't really suck, but its pretty hard on bad hardware ;) (I seem to remember the NIC on that box was found to be flakey). --Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re-building sendmail
Folks, What's the best way to rebuild sendmail with DB4? There's a makefile in /usr/src/usr.sbin/sendmail and there also a sendmail port and I'm not sure which is the recommended way to go. FWIW, I want to get milter-sender going (http://www.snert.com/Software/milter-sender/index.shtml). Cheers, Martin -- http://www.fastmail.fm - Access all of your messages and folders wherever you are ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: KDE VNC server crashes
On Mon, 23 Jun 2003, Charlie Schluting wrote: > Rik Scarborough wrote: > >I'm having a problem with KDE's VNC server under FreeBSD. > > > >I can connect to one machine that is running KDE and set to allow > >uninvited guests, but when I disconnect from that machine the VNC server > >(krfb) crashes with the following message. > >The Application unknown (krfb) crashed and caused the signal 11 > >(SIGSEGV). > > My guesses: > 1. Bad memory? Hmm, I may try on another computer to see if I get the same results. > 2. VNC sucks. Try tightVNC, I've had the best luck with that. Sometimes > on some computers I have to muck with the compression setting.. but for > the most part it works well. Come to think of it, VNC doesn't really > suck, but its pretty hard on bad hardware ;) (I seem to remember the > NIC on that box was found to be flakey). It's not VNC itself, this is KDE's implementation of the VNC protocol (although they may share code). I can't go to tightVNC, because I need to control the :0.0 screen. VNC and tightVNC just create new screens. ~Rik ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Re-building sendmail
On Tue, Jun 24, 2003 at 11:56:09AM +1000, Martin Ryan wrote: >Folks, > >What's the best way to rebuild sendmail with DB4? For an excellent fix for sendmail see: http://www.postfix.org/ Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ ``Our Foreign dealings are an Open Book, generally a Check Book.'' Will Rogers ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: swap_pager_getswapspace: failed
On Mon, Jun 23, 2003 at 07:58:07PM -0500, Alfonso Romero wrote: > Thanks, I ran swapinfo and it showed up the following info: > > franky# swapinfo > Device 1K-blocks UsedAvail Capacity Type > /dev/ad0s1b 4971245920 379292%Interleaved > > > How can I know what applications are using the swap space? > I guess 32MB RAM is too little for MySQL, Apache and Postfix, huh? Use ps, top, etc to look for binaries with large memory usage. Kris pgp0.pgp Description: PGP signature
Re: Re-building sendmail
> >What's the best way to rebuild sendmail with DB4? > > For an excellent fix for sendmail see: > http://www.postfix.org/ > > Bill Bill, Have you ever had the experience where you ask a question related to some aspect of FreeBSD and some clever individual advises the best fix is to uninstall FreeBSD and install Linux? If so, what's your opinion of people who offer such "assistance" ? -- http://www.fastmail.fm - Faster than the air-speed velocity of an unladen european swallow ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Compiling Linuxthreads
I'm trying to compile Linuxthreads from ports on my FreeBSD 4.8 system here, and for some reason I keep getting this: You can use an experimental patch to reduce the number of condition variable triggered context switches by defining WITH_CONDWAIT_PATCH Some unsafe calls to exit() can be detected by defining LINUXTHREADS_DETECT_UNSAFE_EXIT, see files/README.FreeBSD for more info. ===> Extracting for linuxthreads-2.2.3_10 >> Checksum OK for glibc-linuxthreads-2.2.3.tar.gz. ===> Patching for linuxthreads-2.2.3_10 ===> Applying FreeBSD patches for linuxthreads-2.2.3_10 ===> Configuring for linuxthreads-2.2.3_10 ===> Building for linuxthreads-2.2.3_10 Warning: Object directory not changed from original /usr/ports/devel/linuxthreads/work/linuxthreads-2.2.3_10/libgcc_r echo '#include '> config.h echo '#include ' >> config.h echo '#include "gansidecl.h"' > tconfig.h echo '#include "i386/xm-i386.h"'>> tconfig.h echo '#include "i386/i386.h"' > tm.h echo '#include "i386/att.h"'>> tm.h echo '#include ' >> tm.h echo '#include "i386/freebsd.h"'>> tm.h echo '#include "i386/perform.h"'>> tm.h make: don't know how to make libgcc1.c. Stop *** Error code 2 Stop in /usr/ports/devel/linuxthreads. I know that Linux binary compatibility is installed, as well as /usr/src/gnu (installed that today, machine was upgraded to 4.8 a couple of months ago) Any ideas on where I should look next? -- Mark P. Hennessy [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Compiling Linuxthreads
On Mon, 2003-06-23 at 10:34, Mark Hennessy wrote: > I know that Linux binary compatibility is installed, as well as > /usr/src/gnu (installed that today, machine was upgraded to 4.8 > a couple of months ago) I thought the package required a *complete* source tree. At the *least* it requires /usr/src/contrib. /Joe ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Re-building sendmail
On Tue, Jun 24, 2003 at 12:58:20PM +1000, Martin Ryan wrote: >> >What's the best way to rebuild sendmail with DB4? >> >> For an excellent fix for sendmail see: >> http://www.postfix.org/ >> >> Bill > >Bill, > >Have you ever had the experience where you ask a question related to some >aspect of FreeBSD and some clever individual advises the best fix is to >uninstall FreeBSD and install Linux? > >If so, what's your opinion of people who offer such "assistance" ? I've had those experiences, and still say that given the security problems and other issues with sendmail, I would strongly recommend replacing it with an MTA that's more secure, easier to configure, and more efficient. When I first connected our systems to the Internet over ten years ago, the CERT advisories on sendmail were about the size of a Manhattan phone book. Over the years, it has proven one of the most common sources of security holes on *ix systems, although BIND had recently been vying for the title. Bill -- INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC UUCP: camco!bill PO Box 820; 6641 E. Mercer Way FAX:(206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676 URL: http://www.celestial.com/ ``It will be of little avail to the people that the laws are made by men of their own choice if the laws be so voluminous that they cannot be read, or so incoherent that they cannot be understood.'' -James Madison, Federalist Paper #62 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
can someone translate these log messages please?
I have a Mylex Acceleraid 160, I seem to be getting these messages in my logs, could someone tell me what they mean? Something I should be worried about? mly0: physical device 0:0 sense data received mly0: sense key 1 asc 03 ascq 01 mly0: info 0251c04f csi mly0: physical device 0:0 sense data received mly0: sense key 1 asc 03 ascq 03 mly0: info 0147609f csi mly0: physical device 0:0 sense data received mly0: sense key 1 asc 03 ascq 01 mly0: info 0251d67f csi Dave ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
g++ warnings
Whenver I include fstream in any program it spits out the following warnings: In file included from load_port.hpp:6, from fui.cpp:2: /usr/include/g++/fstream:304: warning: `typename std::basic_filebuf<_CharT, _Traits>::int_type' is implicitly a typename /usr/include/g++/fstream:304: warning: implicit typename is deprecated, please see the documentation for details /usr/include/g++/fstream:309: warning: `typename std::basic_filebuf<_CharT, _Traits>::int_type' is implicitly a typename /usr/include/g++/fstream:309: warning: implicit typename is deprecated, please see the documentation for details Any suggestions on how to get rid of this? Is anyone else having this problem? -- Mike Atamas [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
g++ warnings
Whenver I include fstream in any program it spits out the following warnings: In file included from load_port.hpp:6, from fui.cpp:2: /usr/include/g++/fstream:304: warning: `typename std::basic_filebuf<_CharT, _Traits>::int_type' is implicitly a typename /usr/include/g++/fstream:304: warning: implicit typename is deprecated, please see the documentation for details /usr/include/g++/fstream:309: warning: `typename std::basic_filebuf<_CharT, _Traits>::int_type' is implicitly a typename /usr/include/g++/fstream:309: warning: implicit typename is deprecated, please see the documentation for details Any suggestions on how to get rid of this? Is anyone else having this problem? -- Mike Atamas [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: OT: Network admin/Sysadmin help needed
in message <[EMAIL PROTECTED]>, wrote Aliquis thusly... > > I need help with administering a small network (about 8 servers > running Debian Linux or FreeBSD), mostly updates, security... The proper list is [EMAIL PROTECTED], created especially for the purpose. - Parv -- A programmer, budding Unix system administrator, and amateur photographer ISO employment... http://www103.pair.com/parv/work/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Question on Installation Instructions
I am interested in running FreeBSD on my system, but I will probably install via floppies, so I was wondering where the bin directory went. Did the files get moved to the base directory? Or is my computer faulty? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Question on Installation Instructions
On Mon, Jun 23, 2003 at 09:13:21PM -0700 or thereabouts, Eric Cho seemed to write: > I am interested in running FreeBSD on my system, but I will probably > install via floppies, so I was wondering where the bin directory went. > Did the files get moved to the base directory? Or is my computer faulty? (version > 5.0) --> (bin moved to base) -- Josh > > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: using bind() call on FreeBSD
On Mon, 23 Jun 2003, Gagan Grewal wrote: > Hi Folks :) > > I am trying to write a simple a server process which follows this sequence... > socket() Assuming a "struct sockaddr_in addr;" around here somewhere, do: memset(&addr, 0, sizeof(addr)); addr.sin_port = htons(blah); etc ... I.e. zero-fill the whole struct before use. $.02, /Mikko > bind() > listen() > accept() > . > . > . > close( descriptor from accept() ) > close( descriptor from socket() ) > > But I am getting error 99 (Cannot assign requested address) from bind(). > > I am trying to bind the socket on 127.0.0.1: > (This works on Linux though) > > Are there any special/extra things I need to do in /etc or elsewhere to make > this program run on FreeBSD ? > > I am running FreeBSD 4.7-RELEASE > > Any help/pointers from you folks would be great :) > > Thanks in advance :) > > Regards, > Gagan. > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: web management interface
On Mon, 23 Jun 2003 16:33:13 -0700, Joshua Oreman wrote > On Mon, Jun 23, 2003 at 03:24:51PM -0800 or thereabouts, admin > seemed to write: > > > > > > Hi, > > > > are there any good, user easy, web interfaces out there so people can manage > > their virtually hosted websites. send the recommendations my way please. > > Maybe check out Usermin from Webmin. I'm not sure it's what you want > though. > if I am understand this thing its much more extravagant then I need. I just need something that allows people to maintain their website via the web. - Noah > -- Josh > > > > > - Noah > > > > ___ > > [EMAIL PROTECTED] mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Sound problems.
My system is a Compaq Deskpro EN P600 machine I installed 4.8STABLE and configured the Kernel for sound option PNPBIOS device pcm make buildkernel KERNCONF=RAINBUILD make installkernel KERNCONF=RAINBUILD Everything worked like a dream Brought up XFree86 then brought up KDE3.1.2. Started ARTS and tested a sound. The sound that croaked out sounded like the input signal was too high. After lots of adjustments I cannot figure out how to reduce the input signal. It sounds like and explosion of white noise. Here is the drivers that loaded: rain# grep pcm /var/run/dmesg.boot pcm0: on sbc0 Can someone help me with the finer points of tweaking here? Every time I press a button this horrendous scratchy noice comes out of my headphones. Brian Duke Level(3) Communication / TCAM ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: IPSec+VPN+ipfw questions
1. I'm using FreeBSD as a gateway+firewall which uses NAT (natd) to connect internal LAN to the Internet. So, gateway_enable=YES is set because it is required to use natd. 2. I prefer to use IPSec, and not a PPTP. As I can configure it on W2K using AD policies, so I don't have to setup it manually using wizards or suchlike. 3. I have a LAN where some machines have to use FreeBSD as gateway to the Internet, and some - no. All machines are in a common subnet, so physical route cannot be disabled for those machines. I think there is no problem here as I can set a VPN transport for some IP/MAC addresses and block all traffic from others. Note there is no tunnel for subnet - W2K-to-FreeBSD peer-to-peer only. The real problem is that I need to look into each IPSec-transported packet on the gateway machine after it is decrypted to divert it to natd. Also, I'm using some of counters such as 'count tcp from me 3128 to peer' (Squid traffic), etc. When all packets from local Squid are tunneled using IPSec the rule above always shows 0 as packets are encapsulated into esp protocol before captured by ipfw. And working rule will be 'count esp from me to peer' which does not give any information about properties of packet (source IP/port and so on). So, the question was: how to look into and count (using ipfw) those packets before they are encrypted by IPSec? 4. racoon is working, and, of course, I don't need the gif interface as I don't create a tunnel for subnet. The problem I mentioned is that when traffic flow stops for some time, and then it resumes, racoon or W2K machine want rekeying, and sometimes there is a long time delay before the rekeying takes place. I read this in FAQs and in fact I see the effect in my setup. I agree that some FAQs are not very accurate. All of them recommend to use only MD5 hash with W2K machines but I really see the SHA1 hash which works. Can you give some working example of racoon configuration which works fine with W2K? Thanks for the answers! OS - Original Message - From: "Brent Wiese" <[EMAIL PROTECTED]> To: "'Oleg Semyonov'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Tuesday, June 24, 2003 4:26 AM Subject: RE: IPSec+VPN+ipfw questions A few things come quickly to mind... First, you need "gateway_enable=YES" in your rc.conf... I think. I know you need it for MPD (pptp tunneling). Second, you cannot have physical routes to the remote side "private" network. > 1) Is it possible to use ipfw rules to count different kinds > of traffic from legitimate computers, divert it to natd and > block all other packets across the LAN? There are ESP > protocol packets which I can filter, but it seems they are > not processed after decryption by ipwf rules. So, no > counters, no divert, etc. You should use ipfw to, at the very least, only allow legit tunnel traffic to pass to/from the "public" and "private" NICs/ > 2) What is the best solution for IKE daemon? I've tried > racoon (it works but there are some strange situations with > Windows 2000 machines which are mentioned somewhere), and > isakmpd (it has not very obvious syntax for their policy and > conf files - how to create a minimal working configuration > for a number of peer machines which use different preshared > keys for IKE exchange)? Racoon works fine if set up correctly. Most of the FAQ's are wrong, espcially when they discuss setting up gif() and then racoon. You don't need gif(). I seem to remember something about using MD5 as the hash, but its been a while... Maybe it was that my router only supported MD5 for its vpn-passthru stuff... > 3) In fact, it is not required for me to use VPN solutions. > All I need is to authenticate each legitimate machine (or > user - that is better). IP+MAC addresses may be forged. I can > use socks proxy, but there is no standard secured > authentication which is suported by number of different > internet tools. And I don't wish to have a complicated setup > of each client machine. So, VPN seems to be the best solution > as their policies for W2K clients may be specified via Active > Directory. IPSEC is probably the best way. Since the other side is Windows, you may consider using MPD and use PPTP instead of IPSEC. It's a little easier to deal with on the Windows side since setup is all gui-wizards. Cheers, Brent ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Sound problems.
On Monday 23 June 2003 10:52 pm, Duke, Brian wrote: > My system is a Compaq Deskpro EN P600 machine > I installed 4.8STABLE and configured the Kernel for sound > > optionPNPBIOS > devicepcm > > make buildkernel KERNCONF=RAINBUILD > make installkernel KERNCONF=RAINBUILD > > Everything worked like a dream > > Brought up XFree86 > then brought up KDE3.1.2. > > Started ARTS and tested a sound. The sound that croaked out sounded like > the input signal was too high. After lots of adjustments I cannot figure > out how to reduce the input signal. It sounds like and explosion of white > noise. Here is the drivers that loaded: > > rain# grep pcm /var/run/dmesg.boot > pcm0: on sbc0 > > Can someone help me with the finer points of tweaking here? Every time I > press a button this horrendous scratchy noice comes out of my headphones. > Did you try using kmixer from the start application button on the bottom left. Kmixer is in the multimedia section. Kent > > > Brian Duke > Level(3) Communication / TCAM > > > > ___ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
