date:20030814

Re: DEBUTANT POUR CONFIG RESEAU

2003-08-14 Thread Matthew Seaman

On Thu, Aug 07, 2003 at 10:38:01PM +0200, jean-pol wrote:
 bonjour,
 je souhaiterai utiliser mon vieux pc(333mhz ,1go)pour relier mes 2 autres pc en 
 reseau pour adsl.qu'il puisse ainsi servir de pare-feu,filtres et donc routeur.je 
 pense que la config soit possible,mais voila...
 je viens d'installer freebsd5.1.mais apres,ou puis-je trouver des info pour 
 configurer tout cela?
 merci d'avance.
 
 un futur freebsdman

http://www.freebsd-fr.org/projects/newbies.html

http://www.freebsd-fr.org/doc/fr_FR.ISO8859-1/books/handbook/index.html

La liste de diffusion du groupe d'utilisateurs francophones de FreeBSD:

[EMAIL PROTECTED]

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614  Bucks., SL7 1TH UK


pgp0.pgp
Description: PGP signature

mfs

2003-08-14 Thread mbaki

Hi all,

I'm trying to setup /var on a mermory file system on Freebsd 5.1, any good documents 
that will 
help me, it's my first time.




Thx
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Hi Quick question

2003-08-14 Thread Thomas Spreng

hi,

On Fri, Aug 08, 2003 at 10:52:33PM -0500, Eric Murphy wrote:
 Is there a command to browse files by pages?  When ever I ls in a big dir, I can't 
 shift page up for some reason.  This is very annoying =(

# ls | more

cheers..
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Oracle 8.1.7

2003-08-14 Thread Tadimeti Keshav

 Install Oracle8i 8.1.7.4 on FreeBSD step by step

http://documents.dhs.net.ru/ru/articles/oracle/article.html
Hi Ivan,
The page is in Russian. I can't read Russian. DO you
plan to do a translation? Google is not able to do a
translation.

Cheers
Keshav

__
Yahoo! Plus - For a better Internet experience
http://uk.promotions.yahoo.com/yplus/yoffer.html
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: executable folder

2003-08-14 Thread Benjamin Walkenhorst

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Donnerstag, 14. August 2003 10:00 Anil Garg wrote:
 Hi,

 As exectuable file means it can be executed by './' ..but whats the
 significance of and executable directory (i.e a director with executable
 rights).

An executable folder can be entered by cd $FOLDER. If you want to do cd 
$FOLDER on a folder without executive permission, you will get cd: no 
permission.

 Thanks and regards
 Anil.

Kind regards,

Benjamin

- -- 
Benjamin Walkenhorst
eMail: [EMAIL PROTECTED]
homepage: http://www.krylon.de
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Public Key available at http://www.krylon.de

iD8DBQE/O1oroYumWdMvhMQRAr4yAJwNcihLdMgGbeJ1Qz/hOCmneCwHMwCgjWX6
xhqiqYSSRnsf1TDVnOw5M0s=
=sP9u
-END PGP SIGNATURE-
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: rc.d jail script

2003-08-14 Thread Clement Laforet

On Wed, 13 Aug 2003 13:21:45 +0200 (MET DST)
Mipam [EMAIL PROTECTED] wrote:

 Thanks for your reply :-)
 I search for Mike Makonnen in the current achives but i didnt find the
 update mentioned above. I would really like to try it out because i need
 it. Even more, it'll be on a dell server running tomorrow as well. :-)
 Perhaps you could tell me the link with the updates?
 
 I presume the man jail is gonna be updated as well after everything is
 through? Maybe it would be nice to add how to active it on boot in jail(8)
 because
 it took me some time before i realised i had to look in rc.conf(5) to see
 how the jail name could be related the dir, ip and hostname.
 Or even more easy, tell ppl to look in rc.conf(5) when wishing to start a
 jail when booting.


Have a look at :
http://lists.freebsd.org/pipermail/freebsd-current/2003-July/007656.html
and 
http://lists.freebsd.org/pipermail/freebsd-arch/2003-August/001146.html

regards,

clem
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: vinum: need help with crash recovery please

2003-08-14 Thread Greg 'groggy' Lehey

On Tuesday, 12 August 2003 at  0:53:06 +0200, Per olof Ljungmark wrote:
 Have production server harddisk problem, initially one disk (da5) was
 down, then replaced. When trying to add a new (hotswap) drive according
 to http://www.vinumvm.org/vinum/replacing-drive.html ,
 the system stopped and came up in the state seen below. Is there a way
 to get it back up or should I just rebuild from scratch, restore latest
 backup and loose a bit of data?

It's difficult to say.  We need more details first.  What do you mean
by system stopped?  Have you read
http://www.vinumvm.org/vinum/how-to-debug.html?

Greg
--
When replying to this message, please copy the original recipients.
If you don't, I may ignore the reply or reply to the original recipients.
For more information, see http://www.lemis.com/questions.html
See complete headers for address and phone numbers


pgp0.pgp
Description: PGP signature

[newbie] All mbuf clusters exhausted - more information

2003-08-14 Thread admin

Hi,


Are there any good links that discuss tuning of All mbuf clusters exhausted. 
Is it possible my box was getting attacked?  What can I do to protect myself
from this in the future?


there are recent log entries before my machine crashed:

Aug  8 04:00:00 typhoon newsyslog[25053]: logfile turned over due to size100K
Aug  8 04:19:03 typhoon /kernel: pmap_collect: collecting pv entries -- suggest
increasing PMAP_SHPGPERPROC
Aug  8 04:29:31 typhoon /kernel: All mbuf clusters exhausted, please see tuning(
7).
Aug  8 04:30:02 typhoon last message repeated 30 times
Aug  8 04:30:43 typhoon last message repeated 37 times
Aug  8 04:42:09 typhoon last message repeated 99 times
Aug  8 04:52:09 typhoon last message repeated 193 times
Aug  8 05:01:09 typhoon last message repeated 88 times
Aug  8 05:10:51 typhoon last message repeated 156 times
Aug  8 05:30:05 typhoon /kernel: All mbuf clusters exhausted, please see tuning(
7).
Aug  8 05:37:45 typhoon last message repeated 206 times
Aug  8 05:37:45 typhoon /kernel: Limiting open port RST response from 336 to
200 packets per second



- Noah

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Monitoring tool

2003-08-14 Thread Alexander Haderer

At 09:23 14.08.2003 -0400, Ben Dover wrote:
I am looking for a monitoring tool that will notify my cell phone when my 
FreeBSD box is down or off line.  It could be as simple as an application 
that runs on another FreeBSD box or Win box and pings the server and when 
it doesn't respond to pings it sends and alert to my cell phone.  I'm sure 
there are more sophisticated programs out there to alert server status and 
I would be interested in those too but something basic to get started 
would be fine.  Thanks
Take a look at Nagios: http://www.nagios.org

It in the ports tree. Their homepage also mention other monitoring tools.

Alexander

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

A little Bash script to help you.

2003-08-14 Thread Matthew Graybosch

On Mon, 2003-08-11 at 17:49, Constantine wrote:
 Hello!
 
 I am writing a script, which involves unzipping some files. I would have 
 to unzip 4 different zip-files from some directory, and I would need to 
 unzip them to the directory, which would have the same name in it as the 
 original zip-file, i.e. I would like to run something like ls *.zip, 
 have each file name recorded in some variable, and do a loop like unzip 
 $filename[$i] -d $filename[$i].unzipped/. Can someone help me with the 
 code? How can I put the results of a command to a variable?

The following assumes you have the bash port installed. Just change the
ARCHIVE_DIR variable to the full path of the directory in which you have
your zip files. Make sure to save this code to a file in ~/bin. I
suggest pasting the following code into ~/bin/munzip.sh.

Then type chmod +x ~/bin/munzip.sh, then rehash, and then
munzip.sh.

**

#!/usr/bin/env bash

ARCHIVE_DIR=~/archive

cd $ARCHIVE_DIR

# you don't need ls *.zip
for zip in *
do
# just for diagnostics
echo $zip
# here's the command you want.
unzip $zip -d $zip.unzipped/
done
exit 0

**

-- 
Matthew Graybosch
http://www.starbreaker.net
If you take a stand on a dead empty hand, 
never let 'em see your cards. --Savatage

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: CUPS w/ gimp-print still prints garbage on Stylus C82 afterreinstall on 5.1-RELEASE

2003-08-14 Thread Matthew Graybosch

While reading the howto at http://www.cups.org/cups-help.html#tell I got
the following information when examining the ppd CUPS is trying to use
for my printer.

I don't see anything untoward, though...

Output of head -n 25 /usr/local/etc/cups/ppd/inkjet0.ppd

*PPD-Adobe: 4.3
*%PPD file for CUPS/Gimp-Print.
*%Copyright 1993-2001 by Easy Software Products, All Rights Reserved.
*%This PPD file may be freely used and distributed under the terms of
*%the GNU GPL.
*FormatVersion: 4.3
*FileVersion:   4.2.5
*LanguageVersion: English
*LanguageEncoding: ISOLatin1
*PCFileName:escp2-c82.ppd
*Manufacturer:  EPSON
*Product:   (Gimp-Print v4.2.5)
*ModelName: escp2-c82
*ShortNickName: EPSON Stylus C82
*NickName:  EPSON Stylus C82, CUPS+Gimp-Print v4.2.5
*PSVersion: (2017.000) 705
*LanguageLevel: 2
*ColorDevice:   True
*DefaultColorSpace: RGB
*FileSystem:False
*LandscapeOrientation: Plus90
*TTRasterizer:  Type42
*cupsVersion:   1.1
*cupsModelNumber: 55
*cupsManualCopies: True

-- 
Matthew Graybosch
http://www.starbreaker.net
If you take a stand on a dead empty hand, 
never let 'em see your cards. --Savatage

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: fdisk: alternate boot code

2003-08-14 Thread Toni Schmidbauer

On Wed, Aug 06, 2003 at 08:22:43AM +, [EMAIL PROTECTED] wrote:
 I'd like to use fdisk and supply an alternate boot code using the -b option.  How do 
 I save the existing boot code within the MBR so as to pass it to fdisk though?  I'm 
 guessing I can use dd but I'm not sure how.

dd if=/dev/ad0 of=/boot/mbr.backup bs=512 count=1

hth,
toni
-- 
Behandle die Menschen, als wären sie, was sie sein | toni at stderror dot at
sollten, und du wirst ihnen helfen, zu werden, was | Toni Schmidbauer
sie sein können.  - Johann Wolfgang von Goethe |


pgp0.pgp
Description: PGP signature

Re: smb network browsing

2003-08-14 Thread Simon Barner

 However, the more I use mount_smbfs or fstab,
 the more I long for a GUI utility that I can
 use to browse the Network Neighborhood and
 mount any shares I desire under /smb or similar.

I think LinNeighbourhood is what you want. You can browse your windows
network with it, and mount shares with a double click.

It's in the ports collection (ports/sysutils/linneighborhood)

You should also apply the following patch to the port:
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/55179 (which fixes
the handling of file systems and mount points with white spaces).

(Save the base64-encoded attachment starting from
Content-Type: application/x-tbz; to a file and run uudeview
(ports/converters/uudeview) on it. After that, you have to extract the
.tar.bz2 archive and apply the patch:

cd /usr/ports/sysutils/linneighborhood
patch  patch to uncompressed patch file
rm *.orig files/*.orig

Regards,
 Simon


signature.asc
Description: Digital signature

Realtek 8201BL PHY $B!!(B10/100 BASE-T Ethernet

2003-08-14 Thread Koji Yamauchi

Realtek 8201BL PHY$B!!(B10/100 BASE-T Ethernet
(Bis being major ethernet chip recently.
(B(ASUS A7N8X-VM etc...)
(B
(Bthis chip is not supportted in FreeBSD 5.1 Release,
(Band I tried to work this chip in 5.1,however,I found 5.1 didn't recognize this chip.
(B
(BSo I do want next 5.2 Release to support this chip.
(B
(BI am proud of FreeBSD.
(BThankyou.
(B___
(B[EMAIL PROTECTED] mailing list
(Bhttp://lists.freebsd.org/mailman/listinfo/freebsd-questions
(BTo unsubscribe, send any mail to "[EMAIL PROTECTED]"

two KEYBOARD LAYOUTS....

2003-08-14 Thread Denis

Hi All!

Does anybody know how can use two keyboard layouts?
I want to change between russian and english keyboard.
Now I do it by click in the tray menu...
And how i can change by... ctrl+shift

Thanking you in anticipation for answers!!!

Denis.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Hi Quick question

2003-08-14 Thread Kevin Kinsey, DaleCo, S.P.

From: Eric Murphy [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, August 08, 2003 10:52 PM
Subject: Hi Quick question

Is there a command to browse files by pages?  When ever I ls in a
big dir, I can't shift page up for some reason.  This is very
annoying =(

Heh, the replies here are good, but there's a humor possibility ...

Think about the old quote Less is More --- ls | morels | less

To Eric, one more thing:  on most terminals you can press the
Scroll Lock key and then use the arrow keys to browse the
terminal output up to the limit of its memory buffer ...

Kevin Kinsey

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: Using bc in bash script

2003-08-14 Thread Charles Howse

 On Thu, Aug 14, 2003 at 10:46:45AM -0500, Charles Howse wrote:
  Hello List,
  
  I've migrated from Redhat Linux 9 to FreeBSD 4.8-RELEASE, 
 character mode
  - no gui.
  
  I'm trying to calculate the number of seconds between 
 $start_time and
  $end_time in a bash script.
  
  Start_time=`date +%s` # Seconds past midnight at start of script
  [ do lots of stuff ]
  End_time=`date +%s`   # Seconds past midnight at end of script
  
  Then I want to: et=`bc $end_time - $start_time` to get the number of
  seconds or fractions of seconds elapsed.
 How about:
 
 et=`echo $end_time - $start_time | bc`

Hi Jez, thanks for the reply!

As my daughter would say, Well, DUHHH!
That worked fine, it reported 0 seconds.
Can I refine it to give me something like: .784 seconds?


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ipfw syntax

2003-08-14 Thread Bob Hall

On Wed, Aug 13, 2003 at 08:59:58AM -0500, eric wrote:
 Just a quickie. Before I go tearing my firewall down, I want to see if
 there is a better way of doing this. What I want to do on my network, is
 limit all my roomates in such a way that doesn't distrupt anything but
 their kazaa usage (I'm really only looking to slow kazaa down). With that

This might help.
http://bandwidthcontroller.com/limit-kazaa-bandwidth.html

Bob Hall
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

mutt and flock

2003-08-14 Thread Jim Freeze

Hi:

I recently attempted to send an email with a large
attachement. During the send process, the disk ran
out of space and I had to Ctl-C out. After clearing
space on the drive, whenever I send mail with mutt, 
I get a message that it fails to flock sent-mail.

I've looked and can't find a lock file or other
artifact that would be causing the problem.

Can someone tell me how to clear the locked file?

Thanks
-- 
Jim Freeze
--
Warning: Do not look directly into laser with remaining eye.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Monitoring tool

2003-08-14 Thread Ben Dover

I am looking for a monitoring tool that will notify my cell phone when my 
FreeBSD box is down or off line.  It could be as simple as an application 
that runs on another FreeBSD box or Win box and pings the server and when it 
doesn't respond to pings it sends and alert to my cell phone.  I'm sure 
there are more sophisticated programs out there to alert server status and I 
would be interested in those too but something basic to get started would be 
fine.  Thanks

_
MSN 8 with e-mail virus protection service: 2 months FREE*  
http://join.msn.com/?page=features/virus

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

All around system hang

2003-08-14 Thread Steve Loftis

(I mentioned this earlier on the newbies list, but I was informed it 
was more of a questions question)

I have FreeBSD 5.1 installed on my box at home. Install worked smoothly 
the second time, we just kind of messed up because it had been awhile 
since my buddy installed his. Well anywho, it works... sorta.

The thing is this: after a number of hours of non-use, the machine just 
quits responding. A movement of the mouse, a few key presses on the 
keyboard don't help. I restart the machine and it during the initial 
boot when I can access the BIOS, the input devices work fine. Once it 
reaches the bootloader, the keyboard doesn't respond.

So I turn it off, unplug both keyboard and mouse (both of which are 
ps/2, btw) and then turn the machine back on. It works after that. 
However, after several hours of non-use, it does the same thing over again.

I would consider myself an intermediate when using Linux (RedHat 
5.x-7.x) and I've printed off the a good amount of the manual from the 
FreeBSD website.

Any suggestions would be appreciated. Thank you.

--Steve-0

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Monitoring tool

2003-08-14 Thread Jeremy D. Pavleck

I'm sure youll get a lot of great answers for what to run on another
FreeBSD box, but if you want something to run on a Win box checkout
Servers Alive! by Woodstone
http://woodstone.nu/salive/

It's free for up to 10 entries, but only $179 to check up to 5000 entries.
Does Ping, TCP services, UDP, DNS IPv6, Win server monitoring, Web
services, databases, netware, snmp, etc etc and sends alerts via
Pager/SMS, email, sound, MSN instant messenger, syslog or it can run a
program, update a web page, restart or reboot a windows box and a lot
more.
Before my home network became more diverse and I learned about
mrtg/nagios/etc it's all I used and it works great.
I dunno how I found it, but I still use it in addition to my other tools.

**
Jeremy D. Pavleck
[EMAIL PROTECTED]



On Thu, 14 Aug 2003, Ben Dover wrote:

 I am looking for a monitoring tool that will notify my cell phone when my 
 FreeBSD box is down or off line.  It could be as simple as an application 
 that runs on another FreeBSD box or Win box and pings the server and when it 
 doesn't respond to pings it sends and alert to my cell phone.  I'm sure 
 there are more sophisticated programs out there to alert server status and I 
 would be interested in those too but something basic to get started would be 
 fine.  Thanks
 
 _
 MSN 8 with e-mail virus protection service: 2 months FREE*  
 http://join.msn.com/?page=features/virus
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking RIP requests on firewall

2003-08-14 Thread Mark Woodson

On Wednesday 13 August 2003 11:27 am, Darryl Hoar wrote:
 -Original Message-
 From: Mark Woodson [mailto:[EMAIL PROTECTED]
 Sent: Wednesday, August 13, 2003 11:54 AM
 To: [EMAIL PROTECTED]
 Subject: Re: Blocking RIP requests on firewall

 On Wednesday 13 August 2003 07:53 am, Darryl Hoar wrote:
  Greetings,
  I have a FreeBSD 4.7S machine that is running
  IPFilter and is configured as a firewall.

  My external interface is xl0.
  I put block in quick on xl0 proto udp from 10.0.0.1 to any port = 520
  reloaded the rules (by rebooting.  I have it locked down).
  it still generates log entries in my firewall_log file.

 Can you show an example of the log entry you're seeing?

  block return-rst in log quick on xl0 proto tcp from any to any
  block return-icmp-as-dest(port-unr) in log quick on xl0

 proto udp from any
 to any

  block in quick on xl0 proto udp from 10.0.0.1 to any port = 520

 if you change this to:
 block in quick on xl0 proto udp from any to any port = 520

 You will drop any packet bound for port 520 without logging,
 not just ones from 10.0.0.1

  block in log quick on xl0 all

 The other entries have the log keyword so will be generating entries.

 here's a couple of the entries:

 Aug 13 13:20:59 darryl ipmon[98]: 13:20:58.166238 xl0 @0:3 b
 10.0.0.1,router - 10.0.0.255,router PR udp len 2
 0 72  IN
 Aug 13 13:21:28 darryl ipmon[98]: 13:21:28.164643 xl0 @0:3 b
 10.0.0.1,router - 10.0.0.255,router PR udp len 2
 0 72  IN

I'm kind of at a loss, since it's using rule 3 (which appears to be the rule 
you've got to not log).  What's the output of ipfstat -in (shows the input 
filter with line #'s).

-Mark

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: FreeBSD as router - performance vs hardware routers

2003-08-14 Thread Bill Campbell

On Thu, Aug 14, 2003, Kenneth Culver wrote:
 As a Note, the top end routers out there, Junipers, run JunOS, which is
 a FreeBSD variant. A Juniper M160 can route OC192's at wire speed
 (That's 10Gb/s folks).

However, the way those are set up, FreeBSD doesn't do the actual routing,
as far as I can remember they upload a routing table to the line cards and
transfer any changes to the routing table to the line cards, so the
routing itself is done by high-speed hardware, and FreeBSD is mainly
managing all the custom hardware. We did a similar thing when I worked for
Ericsson with FreeBSD.

``Real Routing'' is usually not necessary on broadband connections since
they use a single static route for everything outside the LAN.  In fact,
having things like RIP running around on an internal LAN can thoroughly
confuse some things like the routed program on SCO OpenServer.

The average broadband connection simply doesn't have the bandwidth to tax
most PC architecture machines.  Our first routers were MorningStar 501s,
which were '386 based running some BSD clone from flash, and they handled a
T1 adequately.  Our current ``router'' is a PII 266 running Linux with a
Sangoma WAN card connected to our T1.  The load average is pretty constant
at 0.00 with 99.2% idle time even though there are about 400 ipchains rules
in play.

If you're planning on using IPSec VPN tunnelling, then CPU power becomes
important because it requires a fair amount of horsepower to handle then
encryption.

That said, we generally use the LinkSys BEFVP41 VPN boxes at customer DSL
and Cable sites because they're simple, cheap, and easy to configure for
the average user.

Bill
--
INTERNET:   [EMAIL PROTECTED]  Bill Campbell; Celestial Software LLC
UUCP:   camco!bill  PO Box 820; 6641 E. Mercer Way
FAX:(206) 232-9186  Mercer Island, WA 98040-0820; (206) 236-1676
URL: http://www.celestial.com/

``It wasn't raining when Noah built the ark.''
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: FreeBSD as router - performance vs hardware routers

2003-08-14 Thread Mykroft Holmes IV



Kenneth Culver wrote:

As a Note, the top end routers out there, Junipers, run JunOS, which is
a FreeBSD variant. A Juniper M160 can route OC192's at wire speed
(That's 10Gb/s folks).


However, the way those are set up, FreeBSD doesn't do the actual routing,
as far as I can remember they upload a routing table to the line cards and
transfer any changes to the routing table to the line cards, so the
routing itself is done by high-speed hardware, and FreeBSD is mainly
managing all the custom hardware. We did a similar thing when I worked for
Ericsson with FreeBSD.
Ken


That is correct, the routing for the line cards is done on dedicated 
hardware. Now, they also do route via the management interface, which is 
done by the kernel.

Adam

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Using bc in bash script

2003-08-14 Thread Richard Tobin

 I'm trying to calculate the number of seconds between $start_time and
 $end_time in a bash script.

Bash has built-in integer arithmetic:

  et=$[End_time - Start_time]

-- Richard
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Floppy drive confusion

2003-08-14 Thread Peter Elsner

Is there a formatted floppy in the drive?



At 08:37 PM 8/13/2003 -0700, you wrote:
OK, my fist trime trying to mount a floppy under FreebSD (4.8) isn't going so
well.
I've looked over the net and I think I have a problem.

I tried the command:

mount_msdos /dev/fd0 /mnt

and variants with the slices added.  In all cases tried so far I get the
error:
mount_msdos: /dev/fd0: Device not configured

Here's where I think the problem lies:  (from my dmesg.boot)

fdc0: NEC 72065B or clone at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0
fdc0: FIFO enabled, 8 bytes threshold
The significant thing here is, there's no fd0 device after the controller is
detected.  I assume this must be why I can't mount my floppy.  Any idea how I
can get fd0 to show up?
Thanks,

Erick Smith

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
Peter Elsner [EMAIL PROTECTED]
Vice President Of Customer Service (And System Administrator)
1835 S. Carrier Parkway
Grand Prairie, Texas 75051
(972) 263-2080 - Voice
(972) 263-2082 - Fax
(972) 489-4838 - Cell Phone
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Kernel - maxusers, NMBCLUSTERS etc.

2003-08-14 Thread Jack L. Stone

At 03:55 PM 8.13.2003 +0100, Jez Hancock wrote:
On Wed, Aug 13, 2003 at 10:46:59AM -0400, Grant Peel wrote:
 1. Does anyone use the maxusers=0 parm? If so is it safe, ie does it
 dynamicly set maxusers on-the-fly, or does it only set at boot time
based on
 the current number of users?
Yes and Yes, the setting is assigned at boot time and depends on an
algorithm which you can read about in tuning(7) IIRC.

I would say give it a go and see how it fairs.  Check out sysctl -a for
your current settings and see how it changes when you set MAXUSERS to 0.

Also check out fstat(1) to see what open files you currently have and what
is consuming your file descriptors - perhaps you can cut down the number
of open files.


-- 
Jez


132 is WAY too low. And, yes if you set maxusers to zero, this will be set
by the system and will also change as and when it needs too. I have some
servers that shows in excess of 12000, and lowes is at about 8000 (8192).

You can always reset the maxfiles without a reboot via this command:
sysctl -w kern.maxfiles=8192

It can also be placed in the /boot/loader.conf and you don't have to change
the kernel right away.

That can hold you until you rebuild the kernel and reboot

Best regards,
Jack L. Stone,
Administrator

SageOne Net
http://www.sage-one.net
[EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ppp prblem...chat script failed

2003-08-14 Thread Ali Nasseh

hi,
i've done all instructions from the freebsd handbook
to run the ppp accurately. i load the changes... but
what i see is not more than chat script failed. i'm
confused and i can't download the ports. because i
have no internet connection. please help me ...
here's the ppp.conf settings:

#
# PPP  Sample Configuration File
# Originally written by Toshiharu OHNO
# Simplified 5/14/1999 by [EMAIL PROTECTED]
#
# See /usr/share/examples/ppp/ for some examples
#
# $FreeBSD: src/etc/ppp/ppp.conf,v 1.2.2.5 2001/07/13
10:55:23 brian Exp $
#

default:
 set log Phase Chat LCP IPCP CCP tun command
 ident user-ppp VERSION (built COMPILATIONDATE)

 # Ensure that device references the correct serial
port
 # for your modem. (cuaa0 = COM1, cuaa1 = COM2)
 #
 set device /dev/cuaa1

 set speed 115200
 set dial ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5
\\ AT OK-AT-OK ATE1Q0 OK \\dATDT\\T TIMEOUT 40
CONNECT
 set timeout 180# 3 minute idle timer (the default)
 enable dns # request DNS info (for resolv.conf)
 set ifaddr 10.0.0.2 10.0.0.0 255.255.255.255 0.0.0.0
 # set redial 3 10
papchap:
 #
 # edit the next three lines and replace the items in
caps with
 # the values which have been assigned by your ISP.
 #

 set phone 2531400
 set authname afra77300
 set authkey 68125288

 set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0
0.0.0.0
 add default HISADDR# Add a (sticky) default route


### end of ppp.conf #



regds,
ali nasseh


__
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Script help needed please

2003-08-14 Thread Alexander Haderer

At 08:49 14.08.2003 -0500, Jack L. Stone wrote:
...
When we started providing the articles 6-7 years ago, folks used browsers
to read the articles. Now, the trend has become a more lazy approach and
there is an increasing use of those download utilities which can be left
unattended to download entire web sites taking several hours to do so.
Multiply this by a number of similar downloads and there goes the
bandwidth, denying those other normal online readers the speed needed for
loading and browsing in the manner intended. Several hundred will be
reading at a time and several 1000 daily.

A possible solution?
What comes to my mind:

- Offer zip/tar.gz archives via an ftp server to your customers.
- allow customer's server to mirror your ftp-server
- probably: setup a mailing list to inform your customers about changes/updates
Of course you can additionally install some bandwith limitation stuff. (But 
I don't know one, sorry).

Alexander

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: UK keyboard and missing ? character

2003-08-14 Thread Scott Mitchell

On Thu, Aug 14, 2003 at 12:06:05PM +0100, Darren wrote:
 
 Hello Jez,
 
 Thanks for your reply.  Unfortunately this and many variations don't
 allow me to use the ? (UK pound) character.  I've spent some more time
 searching around and hav'nt found a working solution, yet.
 
 Of those UK people with a working ? character, what rc.conf* settings
 do you use?

The only relevant thing I have is

keymap=uk.iso

Which seems to work fine.  Is there something strange about the keyboard
itself?

Scott
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Restricting ICMP

2003-08-14 Thread Mark

- Original Message - 
From: Andy Farkas [EMAIL PROTECTED]
To: Markie [EMAIL PROTECTED]
Cc: Mark [EMAIL PROTECTED]; Ruben de Groot [EMAIL PROTECTED];
[EMAIL PROTECTED]
Sent: Wednesday, August 13, 2003 3:20 PM
Subject: Re: Restricting ICMP

  Is it? I thought it was setuid root for a reason :o)

  I just woke up, so it may well be I am just being stupid :o)

 Well, I didn't know ping needed suid. I stand corrected and
 apologise for any misleadings.

 /me is the stupid one... time to go to bed :)

If it makes you feel any better, I feel rather stupid too. :) Here I was,
thinking: Hmm, chmod g+s, as means of allowing only folks in wheel access,
is not going to work; whereas the glaringly obvious solution: to remove
execution-bits from o using chmod 4550, for some bizarre reason, escaped
me. :)

/me, feeling stupid too.

- Mark

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

umask

2003-08-14 Thread Antoine Jacoutot

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi !

In my way to learn security under FreeBSD, I was wondering if a umask of 066 
in login.conf was a good or bad idea ?
Any thoughs ?
I mean at first, I can't seem to find why this could be wrong, but I'm sure 
there's a reason why the default umask is set to 022.

Thanks in advance.

- -- 
Antoine Jacoutot
[EMAIL PROTECTED]
http://www.lphp.org
PGP/GnuPG key: http://www.lphp.org/ressources/ajacoutot.asc
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (FreeBSD)

iD8DBQE/O5HQY3Hnhkr+5cQRArBzAJ0augtR1of8PZp4jES/0951LNtUZQCfQCjb
go6GiRqK403T0rbU6fjhCdA=
=pb9d
-END PGP SIGNATURE-

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: FreeBSD as router - performance vs hardware routers

2003-08-14 Thread Matthew Bettinger

On Thursday 14 August 2003 12:33 pm, J. Seth Henry wrote:
 Wow, I think you guys have convinced me. I have had very good luck
 with FreeBSD on an 933MHz EPIA board. It has performed well, and
 remained stable for several months now. Nary a single lockup, even
 under load (though it doesn't like floating point math much -
 [EMAIL PROTECTED] crashes immediately)

933???  That's way over kill.  Heck my best intel machine at the house 
is an 750.  You'd be wasting that machine if you ask me.

The 933 would come in handy if you plan on cvsing and building the 
source.  Since my router is onlyan p133 I just reformat the box every 
month or so and install from floppies over the net and then scp my conf 
files back over and i'm back up.  Time to do this: ~45 mins ?

 One quick question, though - how much RAM should I install in this
 beast? I have a 65Mb DIMM laying around, but I could probably pull
 some 128's from my Windows box if need be.

65 is plenty!!

-- 
Matthew Bettinger
System Administrator
Champion Elevators, Inc.
Houston, Texas 77061
713.640.8500
--
Key fingerprint = 1510 343D 41A3 5D55 D3AF 1ED7 72CD 7022 A70A 39F4
http://championelevators.com/~mbettinger/pubkey.htm

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: Using bc in bash script

2003-08-14 Thread Charles Howse

 Charles,
 
 This will set bc precision to 5 decimal places:
 
 et=`echo scale=5 ; $end_time - $start_time | bc`

Ohhh, I was really hoping on that one...but no, it still reports 0
seconds.
Maybe there's something in the script itself that's messing this up.
Here is the entire script:



#!/usr/local/bin/bash
# Daily Report

# Declare variables
start_time=`date +%s`
time1=`date +%R`
month=`date +%b`
day=`date +%e`

# Cleanup files
if [ -a /root/daily.log ] ; then
rm /root/daily.log
fi

# Main report header
echo Daily Report for Larry for `date '+%A, %B %d %Y'`. 
/root/daily.log
echo   /root/daily.log
echo  /root/daily.log 

# OS header
echo Current Operating System  /root/daily.log
echo   /root/daily.log
uname -sr  /root/daily.log 
echo  /root/daily.log 

# Uptime Header
echo Uptime  /root/daily.log
echo   /root/daily.log
uptime  /root/daily.log 
echo  /root/daily.log

# Crontab Header
echo Cron Jobs  /root/daily.log
echo   /root/daily.log
crontab -l  /root/daily.log 
echo  /root/daily.log

# Last Header
echo Logins today  /root/daily.log
echo   /root/daily.log
last | grep $month $day  /root/daily.log 
echo  /root/daily.log

# Superuser Header
echo Accounts with uid = 0 (Superusers)  /root/daily.log
echo   /root/daily.log
awk -F: '( $3 == 0 ) { print $1 }' /etc/passwd  /root/daily.log 
echo  /root/daily.log

# /etc/passwd Header
echo Accounts that have a valid shell  /root/daily.log
echo   /root/daily.log
cat /etc/passwd | egrep -v (nologin|uucico|\#) 
/root/daily.log 
echo  /root/daily.log

# DF Header
echo Disk Free space  /root/daily.log
echo   /root/daily.log
df -h  /root/daily.log 
echo  /root/daily.log

# netstat Header
echo Netstat -an results  /root/daily.log
echo   /root/daily.log
netstat -an  /root/daily.log
echo  /root/daily.log

# ifconfig
echo Status of network interfaces  /root/daily.log
echo   /root/daily.log
ifconfig  /root/daily.log
echo  /root/daily.log

# Compute the elapsed time
echo Elapsed Time  /root/daily.log
echo   /root/daily.log
echo Report completed at: `date +%R`  /root/daily.log
echo Report begun at: $time1  /root/daily.log
end_time=`date +%s`
et=`echo scale=5 ; $end_time - $start_time | bc`
echoElapsed Time:  $et seconds  /root/daily.log
echo  /root/daily.log

# File Modification Date
echo Last modified  /root/daily.log
echo   /root/daily.log
ls -l /root/bin/daily_report | cut -d  -f9,10,11  /root/daily.log

# Mail to Charles
cat /root/daily.log | mail -s Daily Report from Larry charles


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: I forgot my O:line password

2003-08-14 Thread Joshua Oreman

On Wed, Aug 13, 2003 at 05:46:48PM -0700 or thereabouts, Raymond Jimenez wrote:
 Joshua Oreman wrote:
 Hi Raymond,
 
 Do you have my encrypted O:line password for Wsynet?
 
 Or did you drop it when you unlinked me? :-)
 
 -- Josh
 
 
 
 O line? If I'm not mistaken, that's on your server... (I think)
 But for services, no, that's gone.

Ah, okay, thanks for the info :-)

 
 I can relink you if you'd be able to spend some more time in general 
 watching... (as in, don't let a 24-hr netsplit go unnoticed)

Nah, it's okay.

-- Josh

P.S.   `uname -a`: Linux webserver 2.4.20 #3 Wed Jul 16 20:39:31 PDT 2003 i686 
unknown
P.P.S. What channel(s) are you in? (on freenode + Wsynet) You weren't on freenode 
lately.
P.P.P.S.   I'm working on a client-server backup program using Mondo internally. It's 
still in
   the pre-alpha phase but some things (such as module loading and login) are 
working.
   Code @ http://www.get-linux.org/monitas-code/C++/. Some of the classes 
(Command and
   NamedCommand probably) might be useful in other programs. Feel free to rip 
them off :-)
P.P.P.P.S. What do you think of ASM?
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking RIP requests on firewall

2003-08-14 Thread Lowell Gilbert

Darryl Hoar [EMAIL PROTECTED] writes:

 Greetings,
 I have a FreeBSD 4.7S machine that is running
 IPFilter and is configured as a firewall.
 
 My external interface is xl0.
 
 I put block in quick on xl0 proto udp from 10.0.0.1 to any port = 520

All of the packets are coming from 10.0.0.1?
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: smb network browsing

2003-08-14 Thread Jesse Guardiani

Simon Barner wrote:

 However, the more I use mount_smbfs or fstab,
 the more I long for a GUI utility that I can
 use to browse the Network Neighborhood and
 mount any shares I desire under /smb or similar.
 
 I think LinNeighbourhood is what you want. You can browse your windows
 network with it, and mount shares with a double click.

A lot of people sent me private emails with their own
suggestions, but all were unusable (like Komba2 under FreeBSD -
I couldn't get it to compile) or inappropriate (like
one gentleman's suggestions of xsmbrowser, which acts
as a wrapper to Samba's smbclient and doesn't use
mount_smbfs at all).

LinNeighbourhood is perfect! Exactly what I was looking for!
I would have never found it without the suggestion either!


Thanks!

-- 
Jesse Guardiani, Systems Administrator
WingNET Internet Services,
P.O. Box 2605 // Cleveland, TN 37320-2605
423-559-LINK (v)  423-559-5145 (f)
http://www.wingnet.net


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: HP Vectra VL install problems

2003-08-14 Thread Grzegorz Czaplinski

On Tue, Aug 12, 2003 at 01:41:42PM +0100, Steven Haywood wrote:
 Hi folks
 
 I'm trying to install 4.8 on a HP Vectra machine. I don't know the
 precise model number, it's a PII-400 with both PCI and ISA slots. I
 think it's a 5xxx series.
 I've tried both boot floppies and CDrom, with the same results:
 The system boots off the selected media, presents me with the kernel
 loading messages, allows me to config the kernel, then pops up the
 sysinstall screen. Then hangs solid. Not even numlock/caps lock key
 lights are operative.
 I have removed the network card, the Adaptec raid controller, and
 swapped out the RAM. There are currently NO PCI or IDE cards in the
 machine and I still get the same problem
 Unfortunately the boot messages scroll past too quickly for me to note
 them.
 
 Does anyone have any ideas? (or let me know if I can give you any more
 information?)
 

What exactly model is it?
On my list at:
http://prioris.mini.pw.edu.pl/~gregory/FreeBSD/
there is HP Vectra VL 400 DT and the user says it works grat for him.

Cheers,
gregory
--
Grzegorz Czaplinski gregory at prioris.mini.pw.edu.pl
The Power to Serve, Right for the Power Users! - http://www.FreeBSD.org/
 Fingerprint: EB77 E19D CFA2 5736 810F  847C A70F A275 2489 469F


pgp0.pgp
Description: PGP signature

FreeBSD and Sound

2003-08-14 Thread David

I tried adding a driver for my onboard-soundcard Yamaha OPL-3-SAx on P200mmx, FreeBSD 
4.7-Release.

After reading the manual, I put these 2 entries in MYKERNEL:
(copied from LINT):

 device opl0 at isa? port 0x388
 device pcm

Rebuilt the kernel with:

 config MYKERNEL
 cd ../../compile/MYKERNEL
 make depend
 make
 
Now I get this error message after the make command:


Linking kernel
 isa_compat.o(.data+0x4): undefined reference to `opldriver'
 *** Error code 1

 Stop in /usr/src/sys/compile/MYKERNEL.

Any ideas on how to fix?
Any good references to getting sound  going would be greatly appreciated.

Thanks,
David
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: /usr/local/etc/rc.d files not running on reboot

2003-08-14 Thread Brent Wiese

 My machine crashed last night and upon reboot not all the 
 services that are executable in the /usr/local/etc/rc.d ran.  
 Any clues how I can find out why this happened?
 
snip

This happened to me on 4.8 recently too. What it ended up being was the
sendmail-client startup thing. I'd replaced sendmail w/ postfix, but for
some reason, this sendmail-client thing still tried to run, and since I
wasn't running sendmail, it just sat there forever. If I ctrl-c'd on the
console, it would proceed to run all the startup scripts.

I haven't used sendmail in years, but I think this was meant to clear the
queue out. 

I'm not sure if there is a rc.conf entry to stop it (didn't look close
enough, but sendmail_enable=NO didn't do it). I just commented the
sendmail-client stuff out.

Its been a while so I don't remember exactly where this stuff was, but you
can probably find it.

Once I did that, everything ran again.

Cheers,
Brent

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Hi Quick question

2003-08-14 Thread Joshua Oreman

On Fri, Aug 08, 2003 at 10:52:33PM -0500 or thereabouts, Eric Murphy wrote:

 Is there a command to browse files by pages?  When ever I ls in a
 big dir, I can't shift page up for some reason.  This is very
 annoying =(

Option 1) ls | less #-or-#ls | more
Option 2) press ScrollLock and then up/down arrow or pgup/pgdown

-- Josh

 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: UK keyboard and missing ? character

2003-08-14 Thread Matthew Seaman

On Thu, Aug 14, 2003 at 02:14:10PM +0100, Darren wrote:

 Interesting.  I can type £ at the login prompt, but not when I login
 on console or via remotely via ssh.

Yes -- the shell doesn't just accept any character.  If you set your
output to go to a file -- eg by:

% cat  foo

then you can easily insert a £ character into the file, and it will
display quite happily.  The characters that you can successfully
generate from the keyboard seem to be quite dependent on the
application receiving them: I can type £ into emacs under X (as I just
did), but I can't do likewise with emacs on the console.
 
 When I do login, all of the other characters do work, except the £
 character.

What -- even ß or þ or ã?  I can't even generate those on the console
(and I'm feeling too lazy to go an look up how right now) but they
display well enough when I cat a file containing them.
 
 I don't know if this is related or not, but when I type :
 
 -bash-2.05b$ export TERM=cons25
 -bash-2.05b$ reset
 /usr/libexec/ld-elf.so.1: reset: Undefined symbol _nc_rootname
 -bash-2.05b$ export TERM=cons25l1
 -bash-2.05b$ reset
 /usr/libexec/ld-elf.so.1: reset: Undefined symbol _nc_rootname
 
 However when I execute reset on console it works.
 
 Coming back to the £ issue, is there a problem with 4.8-RELEASE UK keymap?

I don't think so.  That character is certainly being generated as
expected by the obvious keystroke.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614  Bucks., SL7 1TH UK


pgp0.pgp
Description: PGP signature

Re[2]: UK keyboard and missing ? character

2003-08-14 Thread Darren

Hello Scott,

Thursday, August 14, 2003, 12:49:22 PM, you wrote:

SM On Thu, Aug 14, 2003 at 12:06:05PM +0100, Darren wrote:
 
 Hello Jez,
 
 Thanks for your reply.  Unfortunately this and many variations don't
 allow me to use the ? (UK pound) character.  I've spent some more time
 searching around and hav'nt found a working solution, yet.
 
 Of those UK people with a working ? character, what rc.conf* settings
 do you use?

SM The only relevant thing I have is

SM keymap=uk.iso

SM Which seems to work fine.  Is there something strange about the keyboard
SM itself?

It's a bog standard PS/2 keyboard which works fine under Linux/OpenBSD/XP/2000.

When I type shift-3 on console, for the £ character, it displays :

#return

I'm not sure if the return is a LR or CR.

I'll experiment with X later, any more suggestions are more than welcome.

-- 
Best regards,
 Darrenmailto:[EMAIL PROTECTED]


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: 4.5-STABLE crash and burn

2003-08-14 Thread acc

On Wed, 13 Aug 2003 18:40:27 -0700 Kris Kennaway [EMAIL PROTECTED] wrote:

 On Wed, Aug 13, 2003 at 03:46:37PM -0600, [EMAIL PROTECTED] wrote:

 I actually just fsck'ed it.  Looks like I lost the /sbin directory but
 it still boots into sysinstall.  What to do now?

 There's not much for it apart from reinstalling the system, restoring
 from a backup, or trying to replace enough of the missing files from
 another system (e.g. the 4.5 live filesystem CD) that you can run
 'make world' to do a full rebuild.

Yep.  That has become clear to me over the last few hours. :-)

Oh well, thanks for the help!

-- 
Anthony Chavez http://www.anthonychavez.org/
mailto:[EMAIL PROTECTED] jabber:[EMAIL PROTECTED]
#secure method=pgpmime mode=sign

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: I have bad sectors.....

2003-08-14 Thread Lowell Gilbert

Denis [EMAIL PROTECTED] writes:

 I have bad sectors on my HDD where is FreeBSD.
 And FreeBSD when i try login i get 'pager' message:
 Ad1: hard error I/O read failure
 It's maybe cause i have bad sectors?

It's some kind of hardware failure on the disk access.  If it's always
the same sectors, then you do have bad sectors, and it's time to
replace the disk.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

How can change udp lenght?

2003-08-14 Thread poltavec


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: after the ppp, nothing doen'n work...

2003-08-14 Thread fbsd_user

I tried to send this email directly to you but your ISP email server
bounced it.

Add this to your rc.conf file to auto start user ppp at boot time


##
#   /etc/rc.conf
# Please make all changes to this file, not to
/etc/defaults/rc.conf.
# This file now contains just the overrides to
/etc/defaults/rc.conf.
#
# JJB 11/15/01

##

gateway_enable=YES# Activate this host to be a
gateway.
hostname=baltnet.ru
# Activate user ppp auto start at boot time
ppp_enable=YES # Start User ppp task
ppp_mode=ddial # ddial, auto, background
ppp_profile=dialisp# section in ppp.conf to exec



# if you have PC's on LAN behind your FBSD box then uncomment next
statements
#ppp_nat=YES# turn off user ppp nat feature


USE THIS PPP.CONF INSTEAD OF THE ONE YOU ARE USING NOW. Replace
login id and password with your own.



##
# /etc/ppp/ppp.conf File for dial out modem to ISP
# Written by Joe Barbish 12/10/2001
#

#

default:

 set log Phase Chat LCP IPCP CCP tun command   #use for testing
#set log Phase tun   #use to avoid excessive
log sizes

 set speed 115200# connection speed
 set timeout 0   # no idle time out, will not disconnect

 disable pred1 deflate lqr  # compression features  line quality
reporting
 denypred1 deflate lqr  # compression features  line quality
reporting


dialisp:

 set device /dev/cuaa1

 set dial ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \
\\ AT OK-AT-OK ATE1Q0 OK \\dATDT\\T TIMEOUT 40
CONNECT

 set phone 144  # only use this phone number
 set authname barbish2
 set authkey bob
 set redial 10 4# if busy redial 4 times with 10 second pause

# get dynamic IP address from ISP.
 set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0


 enable dns # Gets the ISP's DNS IP address  places them
# in resolv.conf for reference by FBSD box.

 disable iface-alias# Stop adding old IP addr as alias when ppp
# redials because line was lost. These old
ips
# showed using  ifconfig -a   on tun0.

 iface clear# Remove all previous IP address

 add default HISADDR# Add a (sticky) default route (Mandatory)


After making these changes, clear out, empty /var/log/ppp.log file
before rebooting your pc.

If it still does not work, post these files. Only test one time so
ppp.log only contains log messages of one test.

/var/run/dmesg.boot
/var/log/ppp.log
/etc/rc.conf
/etc/ppp/ppp.conf

I need the complete contents of the above files to debug problem.

Read all about user ppp command and configuration options at this
link.
http://www.freebsd.org/cgi/man.cgi?query=pppapropos=0sektion=0man
path=FreeBSD+4.8-RELEASEformat=html









___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Using bc in bash script

2003-08-14 Thread Jez Hancock

On Thu, Aug 14, 2003 at 11:08:21AM -0500, Charles Howse wrote:
  On Thu, Aug 14, 2003 at 10:46:45AM -0500, Charles Howse wrote:
   Hello List,
   
   I've migrated from Redhat Linux 9 to FreeBSD 4.8-RELEASE, 
  character mode
   - no gui.
   
   I'm trying to calculate the number of seconds between 
  $start_time and
   $end_time in a bash script.
   
   Start_time=`date +%s` # Seconds past midnight at start of script
   [ do lots of stuff ]
   End_time=`date +%s`   # Seconds past midnight at end of script
   
   Then I want to: et=`bc $end_time - $start_time` to get the number of
   seconds or fractions of seconds elapsed.
  How about:
  
  et=`echo $end_time - $start_time | bc`
 
 Hi Jez, thanks for the reply!
 
 As my daughter would say, Well, DUHHH!
:)

 That worked fine, it reported 0 seconds.
Hah, computers are just too damn fast :)

 Can I refine it to give me something like: .784 seconds?
You could use 'time' perhaps to time whatever it is you're timing - I'm
not overly familiar with the time(1) command though, best to check the man
page :)

-- 
Jez

http://www.munk.nu/
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: 1 server, 1 net, 2 cards

2003-08-14 Thread Simon Dick

On Wed, Aug 13, 2003 at 05:56:32PM +0400, Mikhail E. Zakharov wrote:
 Hi!
 I have two 3com ethernet cards at my FreeBSD server. How to set up them, to
 work together at the same subnet with IP 192.168.1.1 (xl0) and IP
 192.168.1.2(xl1).

Set one of them up with a netmask of 255.255.255.255 as they're both
on the same network. Why not just use one network card and an IP
alias though?

-- 
Simon Dick  [EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

UK keyboard and missing character

2003-08-14 Thread Darren


I can't use the £ (pound) character under FreeBSD 4.8-RELEASE, i've
tried with console and remotely logging in.

I have my keymap set to the uk.cp850, here are some of my rc.conf options

keymap=uk.cp850
keychange=YES
font8x8=YES
keyrate=250.34
allscreens_flags= # Set this vidcontrol mode for all virtual screens
allscreens_kbdflags=  # Set this kbdcontrol mode for all virtual screens


Somebody suggested that this could be due to a font issue? Any idea how to resolve it?

Would I need to load the cp850 font too? If so why can't I load this, I receive this
error and would this actually fix the problem?

When booting up, it says 

font8x8vidcontrol: YES: can't load font file: No such file or directory

$ sudo loadfont -f /usr/share/syscons/fonts/cp850-8x8.fnt -i
loadfont: ioctl VGAGETSCREEN failed: Inappropriate ioctl for device

-- 
Thank you,
 Darren  mailto:[EMAIL PROTECTED]


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Kernel - maxusers, NMBCLUSTERS etc.

2003-08-14 Thread Grant Peel

Kewl,

Thanks for all the help thus far.

On both my productive machines, I have set maxopenfiles to 8192 for the
short term. (Kernel rebuilding wiats until 0300 AM :-).

I found maxusers is read only and can only be set at boot time.

Now, One machine is FBSD 4.4 and the other is 4.8.

I can't use the maxusers setting '0' on the 4.4 box, so what setting would
you all suggest?

This is one of our primary web/mail/sql servers serving about 600 emails,
250 domains, and a number of messageboards. (MySQL based). It should be
noted this machine has been very reliabvle and has suffered no data loss in
1.5 years (so far).


The other machine will be set to maxusers 0 on next boot.


-Grant

Grant W. Peel
Server Admin
[EMAIL PROTECTED]
http://thenetnow.com

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

4.5-STABLE crash and burn

2003-08-14 Thread acc

Friends:

I've got a serious situation here.  I've got a 4.5-STABLE machine that
boots with the following messages:

Mounting root from ufs:/dev/ar0s1a
WARNING: / was not properly dismounted
exec /sbin/init: error 20
exec /sbin/oinit: error 20
exec /sbin/init.bak: error 20
/stand/sysinstall running as init on vty0

As you can see it dumps me into sysinstall, which pops up with Cannot
mount /tmp/.doc: read-only filesystem.

So I start a holographic shell:

# /sbin/mount -fuw /
/sbin/mount: not found
# ls /sbin
ls: /sbin: Bad file descriptor

So I start in single-user mode, which just dumps me back into sysinstall
again.

This is ~not~ good.  Pretty much the heart of the business (database,
DHCP, DNS and other important services) lives on this machine.  So I
would very much appreciate any help that anyone could offer, and of
course, the sooner the better!

-- 
Anthony Chavez http://www.anthonychavez.org/
mailto:[EMAIL PROTECTED] jabber:[EMAIL PROTECTED]


pgp0.pgp
Description: PGP signature

Re: umask

2003-08-14 Thread Joshua Oreman

On Thu, Aug 14, 2003 at 03:42:37PM +0200 or thereabouts, Antoine Jacoutot wrote:
 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1
 
 Hi !
 
 In my way to learn security under FreeBSD, I was wondering if a umask of 066 
 in login.conf was a good or bad idea ?
 Any thoughs ?
 I mean at first, I can't seem to find why this could be wrong, but I'm sure 
 there's a reason why the default umask is set to 022.

066 will be *more* secure than 022.

This is because a umask is deducted from the default permission bits of 666 (or 777
for executables) on new files. So a umask of 022 will cause new files to have a mode
of 600 or 711.

Here are some good (and not-so-good) umasks, in order of least- to most-secure:
* 000  (666 or 777 -- PLEASE DO NOT USE)
* 022  (644 or 755 -- default)
* 027  (640 or 750 -- pretty good)
* 077  (600 or 700 -- most secure)

Usually people don't do umasks with a 6 because this can leave *only* executable bits
on some parts of the mode; this is not very useful.

-- Josh

 
 Thanks in advance.
 
 - -- 
 Antoine Jacoutot
 [EMAIL PROTECTED]
 http://www.lphp.org
 PGP/GnuPG key: http://www.lphp.org/ressources/ajacoutot.asc
 -BEGIN PGP SIGNATURE-
 Version: GnuPG v1.2.2 (FreeBSD)
 
 iD8DBQE/O5HQY3Hnhkr+5cQRArBzAJ0augtR1of8PZp4jES/0951LNtUZQCfQCjb
 go6GiRqK403T0rbU6fjhCdA=
 =pb9d
 -END PGP SIGNATURE-
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Blocking RIP requests on firewall

2003-08-14 Thread Mark Woodson

(top quoting make following threads difficult)
On Wednesday 13 August 2003 12:49 pm, Darryl Hoar wrote:
 ipfstat -in shows:

 @1 pass in quick on xl0 proto udp from 10.0.0.1/32 to any port = 68 keep
 state
 @2 block return-rst in log quick on xl0 proto tcp from any to any
 @3 block return-icmp-as-dest(port-unr) in log quick on xl0 proto udp from
 any to any

This line is blocking the router messages.  Put the rule above it in the list 
and that should take care of it.  That message would seem to be in effect 
just blocking any udp traffic in on that interface.  I'm not sure that the 
rule is working like you expect it to.  Not sure how to fix it, but I don't 
think icmp port-unreach's come in as udp packets.

 @4 block in quick on xl0 proto udp from 10.0.0.1/32 to any port = 520
 @5 block in log quick on xl0 from any to any
 @6 pass in quick on xl1 proto tcp from any to any flags S/FSRPAU
 @7 pass in quick on xl1 proto udp from any to any keep state
 @8 pass in quick on xl1 proto icmp from any to any keep state
 @9 block in quick on xl1 from any to any
 @10 pass in quick on lo0 from any to any

 I don't get it .  the log entries seem to be from rip, but its logging
 at rule 3.

If you ignore the reutnr-icmp-as-dest(port-unr) it make total sense, since it 
is denying any udp from any address coming in on xl0.

-Mark

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: fsck -F

2003-08-14 Thread Joshua Oreman

On Wed, Aug 13, 2003 at 02:51:00PM +1000 or thereabouts, Andy Farkas wrote:
 Joshua Oreman wrote:
 
   fsck already runs at boot.
 
  Yes. But they won't run if the filesystem is marked ``clean''.
 
 Why would you want to fsck a clean disk?  During every boot???
 
  Actually, what shutdown -F does is touch /forcefsck. (In a similar vein,
  shutdown -f touches /fastboot). The rc scripts check this and add appropriate
  flags to the invocation of fsck (or in the case of /fastboot don't invoke it).
 
 You must be talking about another OS. FreeBSD's shutdown doesnt have -F or -f flag.

I was giving the example in Linux that the OP asked about, so they could implement
it under FBSD if they wanted. I said that in my mail, in the part you trimmed.

One would check for the existence of /forcefsck in the rc scripts and, if it was there,
run fsck *for that one boot* even if the filesystems were clean. Then /forcefsck would
be removed so it didn't happen on the next boot.

Shutdown *could* be patched to add an option for this if it was implemented in the rc
scripts.

Why one would want to do this, I don't know. But this was what the OP asked.

-- Josh

 
 --
 
  :{ [EMAIL PROTECTED]
 
 Andy Farkas
 System Administrator
Speednet Communications
  http://www.speednet.com.au/
 
 
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: where can i get freebsd4.8 iso file for ultrasparcarchitectural ? i couldn't see it

2003-08-14 Thread Lowell Gilbert

You can't.

As the release announcement says:
FreeBSD 4.8-RELEASE supports the i386 and alpha architectures.

The entire release announcement is at 
http://www.freebsd.org/releases/4.8R/announce.html
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Hi Quick question

2003-08-14 Thread Vulpes Velox

Just pipe ls into more

On Fri, 8 Aug 2003 22:52:33 -0500
Eric Murphy [EMAIL PROTECTED] wrote:

 Is there a command to browse files by pages?  When ever I ls in a big dir, I
 can't shift page up for some reason.  This is very annoying
 =(___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Restricting ICMP

2003-08-14 Thread Andy Farkas

 Is it? I thought it was setuid root for a reason :o)
...
 I just woke up, so it may well be I am just being stupid :o)

Well, I didn't know ping needed suid. I stand corrected and apologise for
any misleadings.

/me is the stupid one... time to go to bed :)

--

 :{ [EMAIL PROTECTED]

Andy Farkas
System Administrator
   Speednet Communications
 http://www.speednet.com.au/



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: FreeBSD as router - performance vs hardware routers

2003-08-14 Thread Kenneth Culver

 I personally would go with FreeBSD as a router. I have been used both a
 200Mhz P1 and a 300Mhz P2 as routers with out problems. I personally
 have really liked being able to ssh into it su to root and change what
 ever I want to. It makes for a really flexible system.

 BTW I would suggest staying away from rl cards. I have a problems with
 them befor, especially under heavy load. Fxp cards and dc cards have
 done well from my experience.

I have had good experiences with xl based cards too, although they're
overpriced.

Ken
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Hi Quick question

2003-08-14 Thread Benjamin Walkenhorst

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Samstag, 9. August 2003 05:52 Eric Murphy wrote:
 Is there a command to browse files by pages?  When ever I ls in a big dir,
 I can't shift page up for some reason.  This is very annoying =(

ls (-lmo...) | less,
respectively
ls (options) | $PAGER

Kind regards,

Benjamin

- -- 
Benjamin Walkenhorst
eMail: [EMAIL PROTECTED]
homepage: http://www.krylon.de
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Public Key available at http://www.krylon.de

iD8DBQE/O18HoYumWdMvhMQRApkTAJ98/yogN6tZmc/bEeOHlRKyv3UwnwCbBr0a
Y9vghxYXCQa1XAeB4A1UHR8=
=vaZ2
-END PGP SIGNATURE-
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

does xfree86 support sis315 video card?

2003-08-14 Thread zd

hey all:

i have a peice of sis315e video card but don`t know how to make it work at
xfree86.can someone tell me how to do?
thanks in advance.

eagon



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: What version? I am beginner....

2003-08-14 Thread Jesse Guardiani

Denis wrote:

 Hi all!
 
 I am beginner in FreeBSD and in Unix at all.
 I know just Windows:
 Do u recommended me FreeBSD 5.1 Release?

5.1-RELEASE is less stable than 4.8-RELEASE.

Particularly, you may have to do some tweaking
to get the kernel booting on install and thereafter.

However, stability is comparable between the two
after everything is working, and 5.1-RELEASE has
some pretty slick new features.

I'd go with 4.8-RELEASE as a beginner though.



 Or i must start learn FreeBSD
 from 4.8 stable?
 
 Rgrds, Denis.
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 [EMAIL PROTECTED]

-- 
Jesse Guardiani, Systems Administrator
WingNET Internet Services,
P.O. Box 2605 // Cleveland, TN 37320-2605
423-559-LINK (v)  423-559-5145 (f)
http://www.wingnet.net


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: /dev/dsp disappearing

2003-08-14 Thread Lowell Gilbert

Andrew Thomson [EMAIL PROTECTED] writes:

 anyone else noticed /dev/dsp just disappearing..
 
 i switched to esound in an effort to alleviate this problem.. however it
 still pops up after a number of days of uptime.. only cured by reboot.

There have been a number of changes in the device detection code since
the version you're running; it's likely that this behaviour has
changed.  If not, you may need to go to the -CURRENT list.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: /usr/ports/lang/ruby

2003-08-14 Thread bsd

Kris Kennaway writes: 

And I'm curious about dependencies.  For example, portupgrade's own version 
has not changed, and 'pkg_info -r portupgrade*' still shows 
ruby-1.6.8.2003.04.19 as required. 
Yes, as it should.  The port has not been upgraded, it has only moved
location.  The next time it is upgraded, portupgrade will follow the
entry in the MOVED file to the new location, and everything will
continue to be just fine :) 

Kris
Aaahh! - she be very pretty! 

OK - so I should learn a little patience (like my mother always told me - 
something about a virtue.) and in due course the tango will be 
completed. 

Thanks for taking the time out for me Kris. 

Regards,
Patrick. 

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ip filter: already initialized 5.1-RELEASE

2003-08-14 Thread Redmond Militante

hi all

i'm trying to get ipfilter set up on my new 5.1-RELEASE box.  i think i
have everything configured properly

my kernel config looks like

options IPFILTER
options IPFILTER_LOG
options IPFILTER_DEFAULT_BLOCK

my /etc/rc.conf looks like

ipfilter_enable=YES
ipfilter_flags=
ipfilter_rules=/etc/ipfilter.rules
ipmon_enable=YES
ipmon_flags=-Dsvn


does my setup look ok?  or is there additional procedures involved in
setting up ipfilter on 5x?

thanks
redmond


pgp0.pgp
Description: PGP signature

Re: Think outside of the box (Gawd, I hate that term)

2003-08-14 Thread Matt Heath



Just don't try to use it in a commercial product unless you have a
commercial license or a small army of laywers to help you through the
license morass.
Compare the Plan9 license[1] with the OpenBSD license policy[2] and
recommended license[3] sometime.
-d

[1] http://www.cs.bell-labs.com/plan9dist/license.html

It looks pretty straight-forward to me, no lawyers required.

the OSI seemed happy enough and that is good enough for me.



[2] http://www.openbsd.org/policy.html
[3]
http://www.openbsd.org/cgi-bin/cvsweb/src/share/misc/license.template?rev=1.2
 



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

cron question

2003-08-14 Thread Jim Pazarena

I am trying to grep for a record from a crob job...
the entry looks like this:
 58  23 * * *   grep `date +%Y-%m-%d ` /log/fylename | mail admin  

cron complains:
  Syntax error:  EOF in backquote substitution

could someone enlighten me please?

-- 
Jim Pazarena  Box 550 mailto:[EMAIL PROTECTED]
  Queen Charlotte  BC http://www.qcislands.net/paz
  CANADA   V0T 1S0phone:250 559 
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Magicpoint HOWTO

2003-08-14 Thread ODHIAMBO Washington

Hello Users,

I am faced with a presentation and I have no Winblows, just magicpoint.

Does any soul in here know of a good tutorial for mgp? I have googled,
perhaps with flaky search strings, but don't see a good one ;)

tia


-Wash

-- 
Odhiambo Washington   [EMAIL PROTECTED]  The box said 'Requires
Wananchi Online Ltd.  www.wananchi.com  Windows 95, NT, or better,'
Tel: +254 2 313985-9  +254 2 313922 so I installed FreeBSD.   
GSM: +254 72 743223   +254 733 744121   This sig is McQ!  :-)


The chief danger in life is that you may take too may precautions.
-- Alfred Adler
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

RE: Conexant modem HCF

2003-08-14 Thread fbsd_user

Conexant HCF,HSF modems are Microsoft Winmodems manufactured just
for the ms/windows market. FBSD does not support these modems
because they are missing onboard controllers. FBSD works with all
external serial modems and all internal PCI modems that have onboard
controllers.

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Tokarev
Sent: Saturday, August 09, 2003 10:10 AM
To: [EMAIL PROTECTED]
Subject: Conexant modem HCF

In next 4.x,5.x reliases included drivers???
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
[EMAIL PROTECTED]

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

upgrade to 4.8 STABLE - Root mount failed: 6

2003-08-14 Thread Brent Macnaughton

I am trying to upgrade my system from 4.7RELEASE to 4.8STABLE. I have
followed the instructions from the manual:

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html

Right now, I am on step 21.4.8 Reboot into Single User Mode. I have compiled
my new kernel, and I was trying to reboot into single user mode to test the
new kernel. When I do this, I get the following error message:

Mounting root from ufs:/dev/da0s1a 
no such device 'da' 
setrootbyname failed
ffs_mountroot: can't find rootvp 
Root mount failed: 6


I don't understand what is going on here. THe device /dev/da0s1a exists. I
compiled the new kernel using the same kernel config file I used to compile
my 4.7RELEASE kernel. My old kernel boots the system just fine.

Can anyone help?

Thanks

Brent. 
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: 5.1 Compaq Smart Array

2003-08-14 Thread Olaf Hoyer

On Fri, 8 Aug 2003, Raphaël Marmier wrote:

 I'll give a try on a Smart Array 532 with FBSD 5.1 as soon as I can
 (days or weeks). It is working fine with 4.8 now.

 Raphael


Hi!


Generally the compq smartarrays are supported.

But due to quite poor ACPI in the newer machines, 5.x is no fun there.
(Typing this on a compaq evo N610c  notebook with 4.8-stable, also no
fun with acpi etc)


Which exact Compaq box  / generation do you have?

On 360/380 G3 there are some reports that ACPI etc. is broken with 5.x

HTH
Olaf

-- 
Olaf Hoyer[EMAIL PROTECTED]
Fuerchterliche Erlebniss geben zu raten,
ob der, welcher sie erlebt, nicht etwas Fuerchterliches ist.
(Nietzsche, Jenseits von Gut und Boese)

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Darwin

2003-08-14 Thread Kris Kennaway

On Sun, Aug 10, 2003 at 06:45:23PM -0400, Henry Keultjes wrote:
 Supposedly FreeBSD is the basis for Darwin.  Any idea why since FreeBSD 
 does not have a PowerPC port?

Most userland and kernel code is machine-independent.

Kris


pgp0.pgp
Description: PGP signature

are all dsl modems the same?

2003-08-14 Thread David Banning

I am looking at buying a dsl modem used but I am not aware of
the differences from one to the next. I am using a G-net which seems
to work fine, and I used a Nortel Networks one when I was with another
DSL supplier. 

Is the operation of most DSL modems the same, and if so, can a
specific DSL modem used with one DSL service supplier be used with
another DSL service supplier?

-- 
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

kannel-1.2.1, startup script, daemontools - help!

2003-08-14 Thread ODHIAMBO Washington

Hello Users,

I am trying out kannel (/usr/ports/www/kannel) but I don't seem to
see any startup scripts for the modules.

I have kannel running but I don't like seeing those messages that
it spews at the console. I have crafted a startup script which is
less than perfect because it doesn't take care of those ugly console
messages.
I would like some assistance on running it under daemontools, in
case anyone has gone that mileage.

I have googled, but looks like noone ever posted such stuff ;)


-Wash

-- 
Odhiambo Washington   [EMAIL PROTECTED]  The box said 'Requires
Wananchi Online Ltd.  www.wananchi.com  Windows 95, NT, or better,'
Tel: +254 2 313985-9  +254 2 313922 so I installed FreeBSD.   
GSM: +254 72 743223   +254 733 744121   This sig is McQ!  :-)

Don't say yes until I finish talking.
-- Darryl F. Zanuck
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: NATD and PPP problem

2003-08-14 Thread Francesco Casadei

On Tue, Aug 05, 2003 at 05:02:50PM +0200, Jacob Vennervald wrote:
 Hi
 
 I've installed a FreeBSD 4.8 machine, which I wanna use as a 
 NAT/Router/Firewall.
 I have setup the pppoe connection which works perfectly and then I've 
 tried to setup the machine as a NAT Router by setting the following in 
 the rc.conf:
 firewall_enable=YES
 firewall_type=open
 natd_enable=YES
 natd_interface=tun0
 But when I restart the machine it gives me the following error:
 Firewall rules loaded, starting divert daemons: natdnatd: tun0: cannot 
 get interface address
 
 When I log in and type ifconfig I can also see that the tun0 interface 
 doesn't exist, but when I turn off the two natd settings in rc.conf and 
 reboot it does exist.
 
 Can anybody help?
 
 Cheers,
 Jacob Vennervald
 
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]
 end of the original message

Use the -dynamic flag if the tun0 interface is not configured when natd
starts up. From natd(8) manpage:

[...]
 -dynamic
 If the -n or -interface option is used, natd will monitor the
 routing socket for alterations to the interface passed.  If
 the interface's IP number is changed, natd will dynamically
 alter its concept of the alias address.
[...]

Add the following line to /etc/rc.conf:

natd_flags=-dynamic

Even if you solved the problem, you may also want to try this solution.

Francesco Casadei
-- 
You can download my public key from http://digilander.libero.it/fcasadei/
or retrieve it from a keyserver (pgpkeys.mit.edu, wwwkeys.pgp.net, ...)

Key fingerprint is: 1671 9A23 ACB4 520A E7EE  00B0 7EC3 375F 164E B17B



pgp0.pgp
Description: PGP signature

/usr/bin/mail problem

2003-08-14 Thread Steven J. White

Hello,

I have a nagging problem with /usr/bin/mail on a FreeBSD 5.0 system.  When
I attempt to send a message using the mail client at the command line I'm
presented with the following:

ren# Mail -v [EMAIL PROTECTED]
Subject: test 1
testing
.
EOT
can not chdir(/var/spool/clientmqueue/): Permission denied
Program mode requires special privileges, e.g., root or TrustedUser.

As background, I'm running MessageWall as a spam proxy in front of
sendmail but as far as I can recall this was happening before I installed
MessageWall.

I'd appreciate any help.

Regards,

Steve

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ppp woes!!

2003-08-14 Thread Jiger Java

Hi FreeBSD Gurus and users,
   This is my first mail to the list and am a complete stranger to FreeBSD 
so forgive my newbie question. I have just taken the bold step towards 
installing FreeBSD on my machine. I have 1.7GHZ Pentium with 512 MB RAM, 
NVidia TNT2. I did a default install with no kernel customisation etc.
   Now I am trying to connect to Internet. Since it is still time for me to 
growup to console mode connecting, I start KDE and use KPPP to connect to 
the internet. BUT.
   PPP dies unexpectedly as soon as I type in a URL in say Konqueror. 
Sometimes it dies in a second of connecting. It exists with error code 1. 
Then after some thought, I finally made /etc/resolv.conf since it used to 
give me this warning when I stat kppp. This file is currently empty.
  Now PPP seems to connect but still  it is not confirmed but it did not 
exit after I created this file. BUT when I type in any url in browser, it 
simplly say Host not found etc. Why?
Also how do I enable Get DNS Server Automatically as in Windows. Please 
help me I am really stuck.

Awaiting your replies,
Jiger
_
The Six Sigma edge. Give it to your business. 
http://server1.msn.co.in/features/6sigma Stay ahead!

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

How to Merge partitions - Details

2003-08-14 Thread Martin Va

hi,
I'll provide some more info about the problem:
This how it looks like now:

-
disk name:  ad1FDISK Partition
Editor
DISK Geometry:  4863 cyls/255 heads/63 sectors = 78124095 sectors (38146MB)

Offset Size(MB)End Name PType   Desc
SubtypeFlags

   0  0 62-  12
unused0
   6313311   27262304ad1s28
freebsd  165
  27262305  12731   53335799ad1s38 freebsd
165
  53335800  12103   78124094ad1s18 freebsd
165
  78124095  0  78124999-  12
unused0

--
ad1s3 and ad1s1 are packed full (both like 98%)
ad1s2 is empty and can be deleted .

My aim is to join ad1s2 and ad1s3, and I dont have any 30G by hand to move
all data over and
do complete clean up.
Is it possible or should I rather start searching for another disk?

Thank you
Martin

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: sendmail configuration

2003-08-14 Thread Jonathan Chen

On Tue, Aug 05, 2003 at 08:45:49PM +, Kirk R. Wythers wrote:
 On Tue, 2003-08-05 at 20:32, Jonathan Chen wrote:
 
  
  It is *NOT* 'hostname.mc'. It is `hostname`.mc (note the back-tick).
  `hostname`.mc should expand to host.name.of.machine.mc.
 
 So are you saying that that I should type litterally:
 
 cp freebsd.mc `hostname`.mc  (I had used neighborsunited.net.mc)

Yes. And then you should edit the host.name.of.machine.mc file, eg

# vi `hostname`.mc

 and then in my favorite editor, add the lines:
 
 MASQUERADE_AS(`neighborsunited.net')dnl
 FEATURE(masquerade_envelope)dnl
 
 then litterally:

 make
 make install-cf CF=neighborsunited.net
 sh /etc/rc.sendmail restart

I would use:

# make
# make install
# sh /etc/rc.sendmail restart

The CF= stuff is for really odd tweaks.

Cheers.
-- 
Jonathan Chen [EMAIL PROTECTED]
--
 Vini, vidi, velcro...
 I came, I saw, I stuck around
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ISPs blocking SMTP connections from dynamic IP address space

2003-08-14 Thread Roger 'Rocky' Vetterberg

Doug Poland wrote:

Hello,

This isn't so much a FreeBSD topic but a comment and a request for resources.  As a 
long
time FreeBSD admin/user I know this is a large, diverse, and eloquent community of
technical users.  I hope someone can point me to a resource or group of users that
address this policy.
Within the last two months both AOL and Time Warner Road Runner have implemented port 
25
blocks from hosts with IP addresses in the dynamic address space.  Time Warner claims
other major ISPs are/will be implementing the same policy.
I support several smaller organizations computer infrastructures.  The server backbone
in all these orgs is FreeBSD and they all have SMTP servers with IP addresses in the
dynamic space.  More of our outgoing mail is starting to bounce as these ISPs bring
these new policies online.
Is anyone else uneasy with this trend?  Maybe it's just me and I don't like being
discriminated against because I don't have the money to own static IP addresses.  One
would think groups of responsible and technically competent users would be organizing
against this trend and attempting to make their voice heard.
A little help here?

 

Sorry, but I cant help you here, I fully agree with AOL and the big guys.
We have to take some serious action against spam, and it will piss a lot 
of people off, but as they say: you cant make an omelett without 
breaking some eggs.
I say block the dynamic address space, block everything that lacks 
proper reverse dns, and blacklist ISP's that doesnt care enough to hunt 
down and cut off the spammers among their users.
If you ask me spamming should be punished with huge fines, so huge the 
people responsible for spamming could never again afford even a throw 
away dialup account. Maybe a few years in a federal prison wouldnt hurt 
either...or rather, I hope it would hurt...for them.

--
R
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Another FreeBSD/sendmail permissions question

2003-08-14 Thread Kevin Stevens

Not sure where this goes; I'm also posting it to the sendmail Usenet
group.

I've been having what is apparently a fairly common problem with my
sendmail configuration; every time a message is delivered I get a warning
of the type Aug  5 00:25:53 babelfish sendmail[39666]: h757PrRD039666:
forward /data/mail/.forward+: Group writable directory.

After doing some research, I've been able to turn off the warning messages
using the DontBlameSendmail option in my .cf file.  However, I'd really
like to understand why the warning is being generated in the first place.

/data/mail is the user directory to which mail is delivered by my IMAP
server after it is moved from /var/mail/imap.

a)  There is no .forward file in /data/mail
b)  The permissions on the /data/mail directory are:
drwx--  4 imap  wheel  512 Aug  5 10:00 .
c)  The permissions on the *parent* (/data) directory are:
drwxrwxr-x  18 root  staff   512 Aug  2 13:52 ..
d)  Permissions on /var/mail/USERNAME are:
-rw---   1 imap imap   0 Aug  5 10:03 imap
e)  Permissions on /var/mail are:
drwxrwxr-x  2 root  mail  512 Aug  5 10:02 .
f)  And on /var are:
drwxr-xr-x  23 root  wheel  512 May 10 23:23 .

Now, what's confusing to me is that if I remove the group writable
attribute of /data, the messages go away.  WTF?  Why does sendmail care
about the permissions of the *parent* directory?  Is this because someone
in the parent could alter or blow away the /data/mail directory?

I'd think that, if anything, the problem would be the permissions on the
/var/mail directory; but not only is that not where the warning
references; tightening permissions in that area doesn't affect the
warnings.

KeS

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

X error

2003-08-14 Thread mess-mate

Hi list,
when launching X I've an error as :
Xlib: extension GLX missing on display :0.0
and STOPS :(
what can I do ?
mess-mate
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

ipfw / natd does not allow lan traffic to reach external numbers

2003-08-14 Thread Johannes Angeldorff

Hi,

I have a problem with our firewall/NAT, on a FreeBSD 4.7 box... Here 
a list with some details:

*) The FreeBSD box uses natd and ipfw, and have two external IP:s, 
lets say aaa.bbb.ccc.20 and ddd.eee.fff.21.

*) natd is used to redirect access to external IP addresses and ports 
to internal LAN IP:s, for example 192.168.0.20 and 192.168.0.21, 
where for example webservers are located.

*) natd rules:

natd_flags=-redirect_address 192.168.0.20 aaa.bbb.ccc.20
-redirect_port tcp 192.168.0.21:25-52 25-52
-redirect_port udp 192.168.0.21:25-52 25-52
-redirect_port tcp 192.168.0.30:80 80
-redirect_port udp 192.168.0.30:80 80
-redirect_port tcp 192.168.0.21:54-79 54-79
-redirect_port udp 192.168.0.21:54-79 54-79
-redirect_port tcp 192.168.0.21:81-722 81-722
-redirect_port udp 192.168.0.21:81-722 81-722
-redirect_port tcp 192.168.0.21:3306-4559 3306-4559
-redirect_port udp 192.168.0.21:3306-4559 3306-4559
*) ipfw lets things through:

00050 divert 8668 ip from any to any via fxp0
00100 allow ip from any to any via lo0
00200 deny ip from any to 127.0.0.0/8
00300 deny ip from 127.0.0.0/8 to any
65000 allow ip from any to any
65535 allow ip from any to any
Problem:
Most things works just fine, external access are redirected to 
correct ports, and the webservers work just fine. BUT the problem 
comes when a box on the LAN tries to reach a site residing on 
192.168.0.20 using the _external_ IP aaa.bbb.ccc.20. Then I get 
error: Unable to connect to remote host. Connecting from a LAN 
machine to the same site using the _internal_ IP works fine. 
Connecting to other external IPs also works fine.

I want to be able to connect from LAN boxes to the external IP:s, for 
example aaa.bbb.ccc.20. Can anyone lead me on the way...? Very 
thankful for all comments on this matter.

Regards,
Smartnet Sverige AB
Johannes Angeldorff



___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: umask

2003-08-14 Thread Antoine Jacoutot

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On Thursday 14 August 2003 20:19, Joshua Oreman wrote:
 066 will be *more* secure than 022.

I know that :)

 This is because a umask is deducted from the default permission bits of 666
 (or 777 for executables) on new files. So a umask of 022 will cause new
 files to have a mode of 600 or 711.

Yes I know, I was just wondering why the default behaviour was not very 
secure.

 * 077  (600 or 700 -- most secure)

So, if I set umask to 077, this is OK, right ? Is there ANY cons ?

Thanks a lot for your answer Joshua.

Antoine
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2 (FreeBSD)

iD8DBQE/O9QOY3Hnhkr+5cQRAnI6AJ4r4/ChIy/cDAqv2ZHrBCnDu2HotACeK5jx
CBnqmfxoTPvdT4rZIUs8s0U=
=sw1f
-END PGP SIGNATURE-

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Jails

2003-08-14 Thread Grant Peel

Hi all,

My questions are realating to a recent dev install I did with FreeBSD 5.1
The jail was setup on a fresh install, with no other ports or mods
installed.

Q1, If I do another completely fresh installation of 5.1 and then install a
bunch of ports, (Apache, Exim, named etc etc) when its time to build the
jail, will ALL of the things that were installed on the parent server be
automaticaly built for the jail?

Q2, When one installs new things to the main server, how do you add them to
the jail(s)?.

Q3, Are there any available patches that should be installed before any
jails are built?

Q4, If complete servers are built in a jail, and a jailed user is given
shell access VIA ssh, how secure is the jail? Can the jailed user 'break
out' to the main server?

TIA,

-Grant

Grant W. Peel
Server Admin
[EMAIL PROTECTED]
http://thenetnow.com
- Original Message - 
From: Clement Laforet [EMAIL PROTECTED]
To: Grant Peel [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Sunday, August 10, 2003 9:26 AM
Subject: Re: Jails


 On Sun, 10 Aug 2003 09:15:36 -0400
 Grant Peel [EMAIL PROTECTED] wrote:

  Hello all,
 
  I have read all the docs on the FreeBSD site regarding jails and have
one
  working jail setup on my devbox.
 
  Are there any experts who would like to discuss on or off list, as I
still
  have a number of questions.
 
  -Grant

 What do you want to know ?
 just ask on questions@ :)


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

confused by fonts

2003-08-14 Thread Martin Vana

hi,
I've just moved from win and I'm quite confused by bsd font system.
Is there any documentation /for newbies/ how to make czech /german / 
fonts working? I;ve succesfully configured keyboard but some national 
characters are still missing.
Thanx for Help
Martin
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: realpath patch understanding

2003-08-14 Thread Matthew Seaman

On Wed, Aug 06, 2003 at 09:51:39PM +1000, eodyna wrote:
 Hi all,
 
 Im kinda new to FreeBSD (running 4.5 RELEASE) and Im a
 bit confused. Im hoping someone can help me understand
 what I am doing incorrectly, or point me in a
 direction where I can understand what is happening. As
 you are all aware a security advisory was released
 about realpath.
 
 I have followed the instructions.
 downloaded the patch. verified it.
 ran patch  path to patch

Did the patch apply cleanly? If there are any .rej files in the
vicinity, then they didn't

 built KERNCONF
 installed KERNCONF

The kernel is beside the point here: the bug is in the libc shared
library.  As instructed you need to rebuild the world and reinstall.
Not just the kernel: viz

# cd /usr/src
# make buildworld buildkernel KERNCONF=foo
# make installkernel KERNCONF=foo
# shutdown -r now

[ Interrupt the boot process during the 10 second countdown by
pressing any key (other than return) to get to the boot loader
prompt.]

 boot -s
[...various output. Hit return when prompted for the shell to use...]
# fsck -p
# swapon -a
# mount -a
# cd /usr/src
# make installworld
# mergemaster
# exit

After which the system will continue booting to full multi-user mode.
 
 then i went and checked the UPDATING, the realpath.c
 file and the newvers.sh file. According to the email
 these files were meant to be corrected.
 
 The timestamp on the UPDATING and newvers.sh have not
 changed. and the realpath.c file indicates that it is
 version 1.9 2000/01/27 instead of 1.9.8.1 as indicated
 by the advisory.
 
 Have I done something wrong? or missed the point? I
 know i dont really understand it. If someone can
 explain it to me or point me in the right direction it
 would be very much appreciated.

OK.  The patches
(ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:08/realpath.patch)
mentioned in the advisory
(ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-03:08.realpath.asc)
won't alter the UPDATING or newvers.sh files -- as those are
essentially documentation and don't have any effect of the resulting
functionality of the system, that's nothing to worry about.  The patch
only affects the realpath.c file, and in that case, it doesn't alter
the version number at the top of the file -- mostly because the patch
is designed to apply to files from a range of different code branches
and hence different version numbers.

In fact, the patch consists in it's entirety of a two line change to
the realpath.c file:


/tmp:% less realpath.patch 
Index: lib/libc/stdlib/realpath.c
===
RCS file: /home/ncvs/src/lib/libc/stdlib/realpath.c,v
retrieving revision 1.9
diff -c -c -r1.9 realpath.c
*** lib/libc/stdlib/realpath.c  27 Jan 2000 23:06:50 -  1.9
--- lib/libc/stdlib/realpath.c  3 Aug 2003 17:21:20 -
***
*** 138,144 
rootd = 0;
  
if (*wbuf) {
!   if (strlen(resolved) + strlen(wbuf) + rootd + 1  MAXPATHLEN) {
errno = ENAMETOOLONG;
goto err1;
}
--- 138,145 
rootd = 0;
  
if (*wbuf) {
!   if (strlen(resolved) + strlen(wbuf) + (1-rootd) + 1 
!   MAXPATHLEN) {
errno = ENAMETOOLONG;
goto err1;
}


So, unless that patch was rejected, or you have not managed to
recompile and re-install everything, then you will have secured your
system against attack via any dynamically linked program that calls
realpath(1).  As the advisory says, you do need to check for
statically linked programs that use realpath(1). There are none in the
base system, so it's a case of hunting for statically linked programs
installed via ports and re-installing those.

Other than by applying the patch manually as you have done, you could
have used cvsup(1) to update to the latest sources for whatever branch
you prefer.  Even though the security branches before 4.7-RELEASE are
no longer officially supported, patches were applied to them.  In that
case, you would see the updated version numbers on the various files
mentioned.

Note too that 4.5-RELEASE is itself no longer supported and fairly
long in the tooth.  If the system is security critical then you would
be well advised to upgrade it to 4.8-RELEASE-pX as soon as may be:
mostly because you'll need to be able to update ports to counter any
security holes there, and it's not guarranteed that the latest
revisions of the ports system will actually work with older systems.

Cheers,

Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.   26 The Paddocks
  Savill Way
PGP:

Re: I have bad sectors.....

2003-08-14 Thread Jerry McAllister

If a modern hard drive begins to show bad sectors it generally indicates
it is in its final death throws and it is better to just replace it and
not try to make it limp along.

Most modern drives reserve 'spare' sectors that are automatically
used to replace bad sectors.   You don't start seeing bad sector 
messages until those spare sectors are used up.   So, that implies
there there are already even more bad sectors on the drive than it 
is telling you about.

So, don't try to be penny wise only to be dollar foolish.
Get as much of your date as possible on some backup media 
and throw away the bad drive and get a nice big new one.

Good luck,

jerry

 
 Can I use this HDD (with bad sectors) just to keep my files?
 this hard has 10 gb!
 Or i must discard this hard?
 I tried to restore hdd but my attempts was fall:
 When I done format HDD, i get statics:
 4.40mb not free (i don't know how it in english.)
 9.96 mb free...
 But it hard is free but why 4.40?
 
 - Original Message - 
 From: Lowell Gilbert [EMAIL PROTECTED]
 To: Denis [EMAIL PROTECTED]
 Cc: [EMAIL PROTECTED]
 Sent: Wednesday, August 13, 2003 10:32 PM
 Subject: Re: I have bad sectors.
 
 
  Denis [EMAIL PROTECTED] writes:
  
   I have bad sectors on my HDD where is FreeBSD.
   And FreeBSD when i try login i get 'pager' message:
   Ad1: hard error I/O read failure
   It's maybe cause i have bad sectors?
  
  It's some kind of hardware failure on the disk access.  If it's always
  the same sectors, then you do have bad sectors, and it's time to
  replace the disk.
  
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: ISPs blocking SMTP connections from dynamic IP address space

2003-08-14 Thread Mykroft Holmes IV



dick hoogendijk wrote:
On 08 Aug Mykroft Holmes IV wrote:

Just because you have a highspeed connection with a stable or static
IP doesn't mean it's not dynamic. Dynamic simply means assigned by
DHCP or RADIUS (For dialup and some DSL). If you're in this space you
should be relaying through your ISP's mailserver. 90% of people in
this space are precluded from running server daemons by their AUP
anyways.


A *typical* American way of thinking. Hey guys, you're not gods. The
world is larger than just the US. Al lot of ISP's in Holland allow to
run servers on their dynamic space (IF you config them right, that is)
I'm not American. Funny That. Just because you can run servers on IP 
space tagged dynamic doesn't mean you should (And anyways, this only 
affects outgoing SMTP servers.)

It's just fucking wrong to cut these people off running decent servers,
just because they can't (or are not willing) to affort a T1.
Get DSL on non-Dynamic space. It's available, in fact that's what I'm on 
myself. From an ISP with major operations in Holland (Our European NOC 
is in Amsterdam)


It's an easy statement to say you should relay through your ISP
mailserver just because that is true in the States. Again: the world is
larger than that. Don't exclude yourself pretending you control all.
 




Never read a header? Most of that so called 'Hotmail' or 'AOL' spam
doesn't come from either, it either comes from overseas or that
'Dynamic' space you're defending


Fake hotmail adresses are easely blocked. See what I mean. They come
from overseas.. Jesus, as if all bad things come from everyplace on
earth except the states.
Well, considering that Hotmail is an American based service, and the 
vast majority of faked Hotmail headers seem to come out of either 
dynamic space or Russian, Korean or Chinese space. Once again, read what 
I said. Faked Hotmail or AOL spam usually either comes from Dynamic IP 
space, or from foreign (Russian, Korean, Chinese) space. And since both 
are american-based services, this is a valid origination.


If you've got a business connection and a 'Dynamic' IP, complain to
your ISP. Blocking 'Dynamic' space and thus the multitude of idiots
with exploited windoze boxes on their cable/DSL connection is quite
effective, probably more than using spews (Which is notorious for
blocking non-offenders)


Ever wondered how many of these folks run linux or FreeBSD servers on
this so called 'dynamic space' You bloat about exploited windows
machines and 'forget' about the rest of us running decent servers.
I don't know many people running a windows mailserver; I DO know quite
some folks running a *BSD (unix/linux) one.
Problem is that there is a hundred exploited windows boxes for each 
person with clue (And those boxes are usually not intended as mail 
servers). And the world isn't exactly lacking in exploited unix installs.


You don't have as much control as you think, this is just adding one
extra hop into the usual 2-3 hops that your mail is going to take
anyways. If you can't live with that, get a T1.


Wrong attitude, dude.


No. You want to do things right, get the right gear.

Get another ISP then.


This one too.

Nope.



I suggest you rethink your position.


Wake up, get a life outside the states.

 Been living outside the states all my life. Just because I don't buy 
your cop-out doesn't make me a big bad american. Funny how you are so 
eager to blame my position on my nationality, while I never indicated 
anything about it. Once again, why don't you look in the mirror. Seems 
you're the person being bigoted about nationality.

Adam.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

I want to Join

2003-08-14 Thread Morgoth

I love your system, FreeBSD 5.1
It rocks, It kills, It rulezzz

How can I join USER_GROUPS, developers etc... ??


THX vErY mUcH !!
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

recompile php/upgrade apache

2003-08-14 Thread Redmond Militante

hi all

i have a production server running
freebsd4.8-RELEASE/apache1.3.27-modssl/mod_php4

i would like to recompile php4 for gdlib support.  i'd also like to
upgrade apache to 1.3.28.  i'd like to have minimal downtime if
possible.

i was thinking the easiest way of doing this was to

stop apache
backup httpd.conf and php.ini-dist
portupgrade -rR apache13-modssl
make deinstall /usr/ports/lang/php4, make install clean
/usr/ports/lang/php4 with gdlib support
restart apache

i just wanted to run this past the list in case i'm missing something
above, or if anyone can suggest a more efficient way of accomplishing
this

thanks
redmond


pgp0.pgp
Description: PGP signature

RE: Promise FastTrak 100

2003-08-14 Thread Craig Rose

Thanks Kent.

To Everyone, I'm sorry about the additional messages. They were sent over
the past couple of days while we were trying to get our Reverse DNS
corrected to post here. I had assumed that they were dropped and had sent
another message today.

Regards,

Craig Rose


On Tuesday 05 August 2003 09:36 am, Craig Rose wrote:
 I looked on the archives for something about this, but could not find
 anything.

 Are there drivers for this IDE raid card? Or is there a trick I
 should use to get the ver 4.8 to recognize the drives thru this
 controller?

 Any help will be appreciated.


Look at the hardware release notes. For 4.8 they are at
http://www.freebsd.org/releases/4.8R/hardware-i386.html#AEN33

It is listed.

BTW, 3 messages to -questions is really frowned on. Since it is a p2p
forum, you are supposed to wait.

Kent

--
Kent Stewart
Richland, WA

http://users.owt.com/kstewart/index.html

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: fsck -F

2003-08-14 Thread Jerry McAllister

 
 Hi,
 A Related question is how to I defrag my freebsd installation if it says 
 that /dev/adas1 etc is 4.6% fragmented etc?

The word is used to mean something different in UNIX that in MS.
It is a different concept.   Basically don't worry about it.  It
does not mean your disk is working poorly.

If you are interested, study up in the handbook, man pages and other
publications on the process of building a BSD UNIX file system and
what blocks and fragments mean.

jerry

 
 -Jiger
 
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Help with make release from -CURRENT to -STABLE

2003-08-14 Thread Kirk Strauser

At 2003-08-05T12:17:07Z, Kirk Strauser [EMAIL PROTECTED] writes:

Seriously, noone's made release for an older version before?
-- 
Kirk Strauser


pgp0.pgp
Description: PGP signature

Re: kernel-building error

2003-08-14 Thread mess-mate

On Fri, 8 Aug 2003 09:49:08 -0700
Kent Stewart [EMAIL PROTECTED] wrote:

|On Friday 08 August 2003 07:10 am, mess-mate wrote:
| Hi,
| An error occurs when building my kernel :(
| What does this mean ?? :
|
|That you deleted options without reading what is required. Read the 
|requirements for umass in the USB section and reactivate the required 
|pieces.
|
|Kent
|
|
| linking kernel
| umass.o: In function `umass_cam_attach_sim':
| umass.o(.text+0x17c7): undefined reference to `cam_simq_alloc'
| umass.o(.text+0x1818): undefined reference to `cam_sim_alloc'
| umass.o(.text+0x1827): undefined reference to `cam_simq_free'
| umass.o(.text+0x1847): undefined reference to `xpt_bus_register'
| umass.o: In function `umass_cam_rescan_callback':
| umass.o(.text+0x1883): undefined reference to `xpt_free_path'
| umass.o: In function `umass_cam_rescan':
| umass.o(.text+0x18f5): undefined reference to `xpt_periph'
| umass.o(.text+0x1904): undefined reference to `xpt_create_path'
| umass.o(.text+0x1920): undefined reference to `xpt_setup_ccb'
| umass.o(.text+0x193d): undefined reference to `xpt_action'
| umass.o: In function `umass_cam_detach_sim':
| umass.o(.text+0x1a2c): undefined reference to `xpt_bus_deregister'
| umass.o(.text+0x1a48): undefined reference to `cam_sim_free'
| umass.o: In function `umass_cam_action':
| umass.o(.text+0x1ebd): undefined reference to `xpt_done'
| umass.o: In function `umass_cam_cb':
| umass.o(.text+0x202b): undefined reference to `xpt_done'
| umass.o: In function `umass_cam_sense_cb':
| umass.o(.text+0x2191): undefined reference to `xpt_done'
| umass.o: In function `umass_cam_quirk_cb':
| umass.o(.text+0x21bb): undefined reference to `xpt_done'
| *** Error code 1
|
| Thanks for your help.
| mess-mate
|
Thanks for your help.
Problem semi-solved. Disabled 'umass' in the kernel and all 
goes well.
I don't know whar the requirements are for 'umass', what's 
this beast ??
mess-mate
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Error building XFree86-Clients

2003-08-14 Thread Patrick O'Reilly

Hi Folks!

I have a number of XFree86 Font ports which will not upgrade from 4.2 to 4.3, 
and in each case the error is as below.

I'm afraid the error /usr/libexec/elf/ld: cannot find -lXfont does not mean 
much to me!

Can anyone give a pointer here?

snip
---  Installing the new version via the port
===   XFree86-fontEncodings-4.3.0 depends on executable: ucs2any - not found
===Verifying reinstall for ucs2any in /usr/ports/x11/XFree86-4-clients
===  Building for XFree86-clients-4.3.0_2
making all in lib/lbxutil/lbx_zlib...
making all in lib/lbxutil/delta...
making all in lib/lbxutil/image...
making all in programs/appres...
making all in programs/bdftopcf...
rm -f bdftopcf
cc -o bdftopcf -O -pipe -ansi -Dasm=__asm -Wall -Wpointer-arith -Wundef 
-L/u
sr/ports/x11/XFree86-4-clients/work/xc/exports/lib   bdftopcf.o -lXfont 
-lfntstu
bs  -L/usr/X11R6/lib  -lz -lm   -Wl,-rpath,/usr/X11R6/lib
/usr/libexec/elf/ld: cannot find -lXfont
*** Error code 1
Stop in /usr/ports/x11/XFree86-4-clients/work/xc/programs/bdftopcf.
*** Error code 1
/snip

-- 
Regards,
Patrick O'Reilly.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: mysql-server-4.0.10 package

2003-08-14 Thread Clement Laforet

On Sun, 10 Aug 2003 01:04:07 +0300
Mikael Karlsson [EMAIL PROTECTED] wrote:

 I'm trying to install MySQL-server-4.0.10 package in 4.8 release as it
 says right there under Requires: at this link
 http://www.freebsd.org/cgi/ports.cgi?query=mysqlstype=namerelease=4.8-RELEASE%2Fi386#mysql-server-4.0.10
 that it REQUIRES both 3.23.55 and 4.0.10 mysql-clients and when I try
 to install it both are installed along as dependencies!
 I'm not really interested in compiling the port even if it only
 requires one client.

In fact, it's a nasty building related problem :-)
When you build mysql-server-4.x, p5-DBD-mysql is compiled with the
current version of mysql-client, by performing a simple test on MySQL
libs, if no libs are install, default is 3.23.
The main problem with this, is that, when the packages is built,
depedencies are not built, but install via packages,
then you have a nasty conflict.

3.23.x dependencies are added because native p5-DBD-mysql use 3.23 
p5-DBD-mysql-2.1026_1|/usr/ports/databases/p5-DBD-mysql|/usr/local|MySQL
driver for the Perl5 Database Interface 
(DBI)|/usr/ports/databases/p5-DBD-mysql/pkg-descr
|[EMAIL PROTECTED]|databases perl5|mysql-client-3.23.57 
p5-DBI-1.37|mysql-client-3.23.57
p5-DBI-1.37|http://search.cpan.org/dist/DBD-mysql/

It's a big headache to fix this kind of conflict, since the buid cluster
doesn't handle make-time switches.
I've made a patch to test it, and it's quite suboptimal :-)

regards,
clem
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Hang while hardware probing in 4.8

2003-08-14 Thread Bakshi, Sanjay

Hi,
I am installing FreeBSD 4.8 on a P4 and while hardware probing it hangs.

How do I find on which device it is hung on?

The print out stop after displaying
ppi0: generic parallel i/0 on ppbus 0
And I am quite certain that probing gets stuck on whatever the next
device being probed is. Also I don't have conflicts.

I am a brand new user of FreeBSD so if such issues are already
documented somewhere please point me there and I will read up

thanks,
-- sanjay


___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: FreeBSD programming question

2003-08-14 Thread Michael Conlen

select() should work for you, similar to trigering an interrupt. Instead 
of triggering an ISR select() will sleep until there's an event on the 
file descriptors. So you open() the device for the serial port and 
select() on it. When you return from select() the return value will tell 
you why you returned and you handle the situation similar to programing 
for the 8250 (read from the port to see which event).

In any case, you can select() on the file descriptors for the standard 
input and the serial port, though remember that STDIN uses buffered IO 
and open() will return an unbuffered file descriptor, which is what 
select() uses, so you need to find the unbuffered file descriptor for 
the stadard IO, which is either 0, 1 or 2, but I forget which on FreeBSD 
(I've been doing network daemons to much lately).

In any case, you create an FD_SET

fd_set mySet;
FD_ZERO(mySet);
FD_SET(fd, mySet);
where fd is the file descriptor returned from open, or the file 
descriptor for the standard input.

Use the set as a read set with select along iwth a timeout. struct 
timeval is

struct timeval {
   longtv_sec; /* seconds */
   longtv_usec;/* and microseconds */
};
if the pointer to the struct timeval is NULL then it waits forever. (or 
until a signal causes an exit).

(Note, usleep() is often implemented using select on no file descriptors 
and a timeval).

int rc;
struct timeval myTimeout;
rc = select(2, mySet, NULL, NULL, myTimeout);
This call will return when either timeval is up or there's data to read 
on your file descriptors. Be sure to check errno if select returns -1. 
When select returns the fd_set will be set to the descriptors that are 
actionable. Use FD_ISSET(fd, mySet) to see if that file descriptor is 
waiting to be actioned on (read, write, or other) until you've found all 
the ones that are ready (the number returned by select()) and do your thing.

There's a really great book called Advanced Programing in the UNIX 
environment and it will show you all the system calls you ever needed 
to know to work with UNIX, though it's light on the concurrency issues, 
but it doesn't sound like your writing multithreaded memory shared 
programs so it's no worry.

I haven't really looked at the sio driver, but I doubt it, it still 
works with the 8250, which only had one IO address (tell it what you 
want to do, read the result, tell it what you want to do, send it info, 
tell it what you want to know, read the info it has... ...programing was 
much more fun back then).



J. Seth Henry wrote:

It appears that my experience on microcontrollers is throwing me off.
I'm used to having a touch more control at the hardware level.
It sounds like I would be best served by setting up a loop that sleeps
for a certain number of milliseconds, and then looks for new data in the
serial port buffers. Knowing the amount of time per loop, I could handle
the periodic data polling as well. My largest concern was in creating a
CPU hog. I don't want to slow the system down by constantly accessing
the serial port.
It occurred to me that I may be able to deal with this another way. I
can poll the thermostat for MOST things, only the user interface
requires fairly speedy interactions. I can simply listen for the ENTER
button, and then increase the polling rate until the UI exits.
As it were, I'm poking around in the ports to see how other programs
have dealt with this.
Just out of curiousity, since I can check the driver source, does the
sio driver add any additional buffering, or does it simply read the
16byte FIFO on the serial port? Most of the messages I am expecting
should fit in that FIFO anyway.
Thanks,
Seth Henry
On Wed, 2003-08-06 at 09:58, Malcolm Kay wrote:
 

On Wed, 6 Aug 2003 07:00, J. Seth Henry wrote:
   

Not sure if this is the right list or not, but I could really use some
pointers.
How can I code trap serial port interrupts in my C program?

 

For any modern hosted system interrupt trapping and servicing is in the 
province of the system -- it should not be a userland activity.

   

For example, I want to read values from a serial device every
user-specified number of seconds, calculate some stuff and then sit for
a while. Should the serial device decide it wants to send some data
unsolicited, I would like to enter an interrupt service routine, handle
the communication, and then return to the previous loop.
 

There are a number of techniques which may or may not suit your needs;
it is not too clear just what you are trying to do.
Generally the system will provide some buffering of input so it is not usually
important that your code processes each character immediately on arrival.
In many cases using placing the select(2) system call in a loop will meet the 
needs.

In more difficult cases you may need to look at threading pthread(3) or 
forking fork(2) or vfork(2)

   

I can get the loop going by using sleep(n), but I don't know how to
write the ISR in C, and

1 2 3 4 5 6 7 >

1 - 100 of 690 matches

Mail list logo