Re: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
On Tuesday 14 November 2006 18:13, Scott Schappell wrote: > The writing is on the wall and all that stuff. I've put this off long > enough. > > What needs to be done to upgrade from 4.11 to 6.x? I have an extensive > amount of ports installed and in googling and searching the list, it seems > I need to make a jump to 5.2 then from there to 6. I'm about to do this, but I've opted for a clean install, as others have suggested - but with a twist. I've installed an additional drive the same size as the original (80GB) - I'm going to install on the new drive, transplant data as needed from the old drive, and when I'm happy with everything, use gmirror to turn both drives into a little RAID-1 plex. I'm also trying to do it remotely, with ssh access to the distant box and one right next to it, and a null-modem cable between them to give me serial console access during the upgrade. If it works I'll detail the steps here, as I wasn't able to find a quick and easy guide to this process anywhere. Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: multiple ports trees
On Wednesday 15 November 2006 01:24, Greg 'groggy' Lehey wrote: > On Thursday, 9 November 2006 at 8:46:00 -0600, Christopher M. Hobbs wrote: [sharing ports tree] > > Also, what about user accounts between machines? > > With NFS you typically have the same user ID on all related machines. > > > I got to thinking that because some of the servers have the same > > user accounts, would it be possible to share a password file or home > > directories? > > Yes, again with some caveats. The biggest ones are configuration > files in the home directory that contain references to the system > you're working on. My biggest problem is the .emacs file: it refers > to packages that I have installed on some systems only. The issue which bit me when doing this was that many ports add a user using pw(8) (as indeed the Porter's handbook advises them to), and this uses the ``next available'' uid. In my case, on one server I added net/isc-dhcp3-server from ports before setting up LDAP: the result was a uid clash between the dhcpd user created by the port, and a human user in LDAP. Even if LDAP had been set up, I would still have had to note, the next time I needed to add a human user, that the ``next available'' uid was being used by a port on one particular server. I'm now in the process of creating two ranges of user numbers: one available to pw(1) and ports (through pw.conf(5) settings) and a separate range for human users - see my earlier post to this list (12 Oct 2006) for more. Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Building Ports w/ Options, Env
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Now, if this could only be used *within* a ports Makefile to affect other ports
that it depends on while building ... that would be most cool ...
- --On Monday, November 13, 2006 10:40:57 -0800 Rachel Florentine
<[EMAIL PROTECTED]> wrote:
> Hi;
> Would someone kindly simply edit the following, if that's possible (if I'm
> not too far off how it should be done) so that I can have an example of how
> to build OpenLDAP with the options and env I want?
>
> Here's what I have so far. I don't know if it's correct or not...
>
> 1. Edit /usr/local/etc/pkgtools.conf and enable it to read
> /usr/local/etc/pkgtools.local 2. Create the local file and add something like
> this:
>
> MAKE_ENV = {
> '/usr/ports/net/openldap23-server' => [
> 'CC=gcc',
> 'CPPFLAGS="-I/usr/local/include/openssl/"'
> 'LDFLAGS="-L/usr/local/lib/"'
> ],
> }
>
> That would set up the environment, and might actually be correct as written
> ;) I'm a whole lot less confident of the following:
>
> MAKE_ARGS = {
> '/usr/ports/net/openldap23-server'=> [
> '--localstatedir=/var/run/slapd',
> '--enable-spasswd',
> etc, etc
> ],
> }
>
> TIA,
> Rachel
>
>
>
>
>
>
-
Marc G. Fournier Hub.Org Networking Services (http://www.hub.org)
Email . [EMAIL PROTECTED] MSN . [EMAIL PROTECTED]
Yahoo . yscrappy Skype: hub.orgICQ . 7615664
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (FreeBSD)
iD8DBQFFWpFZ4QvfyHIvDvMRAqFoAJ9TdMEZpqghLogn072hnr/NQIc0dgCg3ZQL
/qhPwi6NLdjBNEXb5j3dqjs=
=9H8Y
-END PGP SIGNATURE-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
TV card on freebsd
Hi, this is a follow-up to what I posted before, about choosing a TV card to use on freebsd6.2. Okay, so the card I got "A VerMedia M-500" ...DOES NOT work!! Indeed!!! It uses Philip chip. shoot but I have windows xp installed on another HD, after downloading the driver and all, that seemed to work well, except my cable signal is weak, i only get like 13 channels :-( get ready to bid (anybody wants a TV capture card that works on windows?? call me!!) TFC ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
Is a stock kernel config the 'fast' way to go on these CPUs? Sure wish there was an 'options I_WANNA_GO_FAST' or an 'options RICKY_BOBBY' that would just do all the right things. Still not sure which scheduler to go with.. On 11/14/06, Juha Saarinen <[EMAIL PROTECTED]> wrote: On 11/15/06, Jeff Mohler <[EMAIL PROTECTED]> wrote: > I thought that since we both had HTT tags in the CPU ID, that we had it. Yeah, well... that's a funny thing that tag. Got it on my first-generation 1.3GHz Pentium 4 as well. Makes me wonder if Intel had that feature in the processors very early on, but only enabled it in the later cores. -- Juha http://www.geekzone.co.nz/juha ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
On 11/15/06, Jeff Mohler <[EMAIL PROTECTED]> wrote: I thought that since we both had HTT tags in the CPU ID, that we had it. Yeah, well... that's a funny thing that tag. Got it on my first-generation 1.3GHz Pentium 4 as well. Makes me wonder if Intel had that feature in the processors very early on, but only enabled it in the later cores. -- Juha http://www.geekzone.co.nz/juha ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Network Monitoring Application Help, What do you use?
Im am _loving_ zabbix for this. 1.1 in ports works, 1.1.3 from the site works, 1.3 doesnt compile for me cleanly at all..but what does work..does ALL of those things very easily. On 11/14/06, Sean Murphy <[EMAIL PROTECTED]> wrote: I was looking into a Network/Server monitoring application that would do the following Must have features email/page/sms if one of the rules fail has the ability to of course ping the device, ssh into or have someway of checking if a daemon is running. Optional but nice features reporting statistics and system status (web based) restart a failed daemon syslog parsing remote administration Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
I thought that since we both had HTT tags in the CPU ID, that we had it. ;) On 11/14/06, Juha Saarinen <[EMAIL PROTECTED]> wrote: On 11/15/06, Jeff Mohler <[EMAIL PROTECTED]> wrote: > My dmesg matches yours Juha.. > > Would enabling Hyperthreading increase any of my processing power? Well, if you have the D830, no, because it doesn't have HTT support. :) As a general question, the answer is yes and no. Depends on your application basically, as well as the operating system itself. It's one of those questions that'll lead to long and detailed flame wars, unfortunately. -- Juha http://www.geekzone.co.nz/juha ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Network Monitoring Application Help, What do you use?
I was looking into a Network/Server monitoring application that would do the following Must have features email/page/sms if one of the rules fail has the ability to of course ping the device, ssh into or have someway of checking if a daemon is running. Optional but nice features reporting statistics and system status (web based) restart a failed daemon syslog parsing remote administration Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD 6.0/AMD64 server crash
Hey wojtek. Did you find a fix for this error...? I receive this error today went i try to cp some backups files from my server to the external hard disk(USB 2.0): cp -P -R -v /backups/backups /ext/ After some minutes i receive this error in my console: Nov 14 16:36:09 bacula kernel: umass0: at uhub4 port 7 (addr 2) disconnected Nov 14 16:36:09 bacula kernel: (da0:umass-sim0:0:0:0): lost device Nov 14 16:36:09 bacula kernel: (pass0:umass-sim0:0:0:0): lost device Nov 14 16:36:09 bacula kernel: (pass0:umass-sim0:0:0:0): removing device entry Nov 14 16:36:09 bacula kernel: (da0:dead_sim0:0:0:0): error 22 Nov 14 16:36:09 bacula kernel: (da0:dead_sim0:0:0:0): Unretryable Error Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162190848, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162321920, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162452992, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162584064, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162715136, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162059776, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: g_vfs_done():da0s1[WRITE(offset=17162846208, length=131072)]error = 6 Nov 14 16:36:09 bacula kernel: umass0: detached And boom receive the same error you wirite below. This is one smp kernel P4 3Ghz Dual Core, i have one mirror 1 with gmirror, some have any solution to this problem, did i need to slice the disk in 2 slices because linux have the some problem, it cannot use the whole disk, them maybe freebsd to need to slice the disk in 2...? Thanks. On 10/22/06, Wojciech Puchar <[EMAIL PROTECTED]> wrote: Sleeping thread (tid 100168, pid 56693) owns a non-sleepable lock panic: sleeping thread Uptime: 23h56m57s Sleeping thread (tid 100168, pid 56693) owns a non-sleepable lock panic: sleeping thread Uptime: 23h56m57s kernel trap 12 with interrupts disabled Fatal trap 12: page fault while in kernel mode fault virtual address = 0x48 fault code = supervisor read, page not present instruction pointer = 0x8:0x8025217e stack pointer = 0x10:0xae3e39a0 frame pointer = 0x10:0xff0002ac5000 code segment= base 0x0, limit 0xf, type 0x1b = DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags= resume, IOPL = 0 current process = 14 (swi1: net) trap number = 12 panic: page fault Uptime: 23h56m57s GEOM_MIRROR: Device swap: provider mirror/swap destroyed. any idea why? second crash like this and i have no idea why? help please Wojtek ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to " [EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
On 2006/11/14 15:13, Jeff Mohler seems to have typed: > My dmesg matches yours Juha.. > > Would enabling Hyperthreading increase any of my processing power? It depends on load and so forth, most reports I saw vary from a minimal increase to a large decrease. The first few links from a google search return: http://librenix.com/?inode=3837 http://www.2cpu.com/articles/43_3.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
On 11/15/06, Jeff Mohler <[EMAIL PROTECTED]> wrote: My dmesg matches yours Juha.. Would enabling Hyperthreading increase any of my processing power? Well, if you have the D830, no, because it doesn't have HTT support. :) As a general question, the answer is yes and no. Depends on your application basically, as well as the operating system itself. It's one of those questions that'll lead to long and detailed flame wars, unfortunately. -- Juha http://www.geekzone.co.nz/juha ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
My dmesg matches yours Juha.. Would enabling Hyperthreading increase any of my processing power? On 11/14/06, Juha Saarinen <[EMAIL PROTECTED]> wrote: On 11/15/06, Robert Fitzpatrick <[EMAIL PROTECTED]> wrote: > Looks like my hyperthreading is enabled and it is in the BIOS. I was > told there was a dual-core in the machine, but not confirmed. But there > should be two with HT anyway as seen, correct? This is a dmesg from an Intel D830 box: CPU: Genuine Intel(R) CPU 3.20GHz (3217.43-MHz 686-class CPU) Origin = "GenuineIntel" Id = 0xf47 Stepping = 7 Features=0xbfebfbff Features2=0x649d> AMD Features=0x2010 AMD Features2=0x1 Cores per package: 2 I think you do have a single processor with hyperthreading (logical CPUs) and not a dual-core model. To get hyperthreading up and running, you need to add: machdep.hyperthreading_allowed=1 to /etc/sysctl.conf or change it manually. Please google for the security implications of doing this first though. -- Juha http://www.geekzone.co.nz/juha ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
On 11/15/06, Robert Fitzpatrick <[EMAIL PROTECTED]> wrote: Looks like my hyperthreading is enabled and it is in the BIOS. I was told there was a dual-core in the machine, but not confirmed. But there should be two with HT anyway as seen, correct? This is a dmesg from an Intel D830 box: CPU: Genuine Intel(R) CPU 3.20GHz (3217.43-MHz 686-class CPU) Origin = "GenuineIntel" Id = 0xf47 Stepping = 7 Features=0xbfebfbff Features2=0x649d> AMD Features=0x2010 AMD Features2=0x1 Cores per package: 2 I think you do have a single processor with hyperthreading (logical CPUs) and not a dual-core model. To get hyperthreading up and running, you need to add: machdep.hyperthreading_allowed=1 to /etc/sysctl.conf or change it manually. Please google for the security implications of doing this first though. -- Juha http://www.geekzone.co.nz/juha ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sysv semaphores
On Tue, Nov 14, 2006 at 11:56:45PM +, Robin Becker wrote: [snip] > thanks very much all very useful info. Someone else recommended looking > at these options > > kern.ipc.semmap=180 > kern.ipc.semmni=160 > kern.ipc.semmns=210 > kern.ipc.semmnu=180 > kern.ipc.semmsl=210 > kern.ipc.semopm=250 > kern.ipc.semume=160 > > kern.ipc.semusz=92 > kern.ipc.semvmx=32767 > kern.ipc.semaem=16384 > > > and on my 6.1 system I see these with sysctl -a | grep ipc, however, > > # sysctl -a | grep seminfo > /usr/RL_HOME/users/robin: > # > > I guess they've been renamed. > -- > Robin Becker No, it's my fault; I checked things on the wrong system. OpenBSD uses seminfo, FreeBSD uses ipc. -Damian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sysv semaphores
Damian Wiest wrote: . You'll want to use either sysctl(8) to change the settings dynamically, or use /etc/sysctl.conf to modify the settings permanently. I'm not sure if there's a benefit to rolling a new kernel versus using sysctl.conf, or if things even work that way anymore. # sysctl -a | grep seminfo kern.seminfo.semmni=10# number of semaphore identifiers kern.seminfo.semmns=60# number of semaphores in system kern.seminfo.semmnu=30# number of undo structures in system kern.seminfo.semmsl=60# max number of semaphores per id kern.seminfo.semopm=100 # max number of operations per semop call kern.seminfo.semume=10# max number of undo entries per process kern.seminfo.semusz=100 # size in bytes of undo structure kern.seminfo.semvmx=32767 # semaphore maximum value kern.seminfo.semaem=16384 # adjust on exit max value Those comments are from /usr/include/sys/sem.h -Damian Sorry, I forgot to mention a few things. You should become familiar with ipcs(1) as it will allow you to query the current state of SysV IPC facilities. You'll probably find yourself manually deleting semaphores depending on how well that extension cleans up after itself during testing. IIRC, the kernel maintains some in-memory datastructures to keep track of semaphores. I believe increasing the maximum number of semaphores will take up a negligible amount of main memory. If you're interested, the "Design and Implementation of the 4.4 BSD Operating System" (ISBN # 0201549794) has great coverage of this stuff. thanks very much all very useful info. Someone else recommended looking at these options kern.ipc.semmap=180 kern.ipc.semmni=160 kern.ipc.semmns=210 kern.ipc.semmnu=180 kern.ipc.semmsl=210 kern.ipc.semopm=250 kern.ipc.semume=160 kern.ipc.semusz=92 kern.ipc.semvmx=32767 kern.ipc.semaem=16384 and on my 6.1 system I see these with sysctl -a | grep ipc, however, # sysctl -a | grep seminfo /usr/RL_HOME/users/robin: # I guess they've been renamed. -- Robin Becker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
On Tue, 2006-11-14 at 15:04 -0800, Josh Carroll wrote: > > up in the 'C' column of top after I've rebooted with the newly compiled > > kernel. > > Run top with the -S argument. You should then see two "idle" > processes, one for each CPU: > >11 root 1 171 52 0K 8K CPU0 0 72.1H 91.70% idle: cpu0 >10 root 1 171 52 0K 8K RUN1 72.2H 90.97% idle: cpu1 > > Can you confirm whether you see that or not? I do not have APIC_IO in > my kernel either, and it is showing both cores in top (Core 2 Duo > CPU). > Thanks, yes, I see both cpu0 and cpu1 and cpu1 is 100% idle compared to cpu0 only 45-50% idle at this time. I did some googling for hyperthreadin after reading Bill's response and checked sysctl to find these settings: esmtp# sysctl machdep.hlt_logical_cpus machdep.hlt_logical_cpus: 0 esmtp# sysctl machdep.smp_cpus sysctl: unknown oid 'machdep.smp_cpus' esmtp# sysctl machdep.hlt_cpus machdep.hlt_cpus: 2 Looks like my hyperthreading is enabled and it is in the BIOS. I was told there was a dual-core in the machine, but not confirmed. But there should be two with HT anyway as seen, correct? -- Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: multiple ports trees
On Thursday, 9 November 2006 at 8:46:00 -0600, Christopher M. Hobbs wrote: > Hello, list! > > I've got about six production servers and a couple of workstations > running FreeBSD 6.1-STABLE and 6.2-PRERELEASE. Some of these machines > are sitting in DMZ, the others are internal. Currently, each of them > has their own ports tree. > > How terrible of an idea would it be to take one of the production > servers that isn't really doing a whole lot of work, and make it's > /usr/ports available over NFS to the other machines? Am I headed in a > bad direction here? This is what I do. It's not completely without its problems, though: - Some programs, notably GNU autotools, get upset if you run across NFS. I've worked around this problem by copying the tree where necessary; it's not as bad as it seems. - The ports collection stores build information in the work directory. For example: $ ls -lart work3 -rw-r--r-- 1 root wheel 0 Nov 14 13:29 .patch_done.mythtv._usr_local -rw-r--r-- 1 root wheel 0 Nov 14 13:29 .extract_done.mythtv._usr_local -rw-r--r-- 1 root wheel 0 Nov 14 13:44 .configure_done.mythtv._usr_local -rw-r--r-- 1 root wheel 0 Nov 14 15:56 .build_done.mythtv._usr_local drwxr-xr-x 3 root wheel 512 Nov 14 15:56 . drwxr-xr-x 7 grog lemis 512 Nov 14 17:14 .. drwxr-xr-x 13 root wheel 1024 Nov 14 21:56 mythtv-0.20 If you build a package on one system, and then try on another, the Ports Collection will find these files and assume that there is nothing to do. You need to do a 'make clean' first to get it to do the process again, including dependency checks, on the new machine. > Also, what about user accounts between machines? With NFS you typically have the same user ID on all related machines. > I got to thinking that because some of the servers have the same > user accounts, would it be possible to share a password file or home > directories? Yes, again with some caveats. The biggest ones are configuration files in the home directory that contain references to the system you're working on. My biggest problem is the .emacs file: it refers to packages that I have installed on some systems only. > Should I build another box strictly for this purpose? I get by quite happily with a separate tree on one of my existing systems. Greg -- When replying to this message, please copy the original recipients. If you don't, I may ignore the reply or reply to the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address and phone numbers. pgpjznRodtVeC.pgp Description: PGP signature
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Peter N. M. Hansteen wrote: Erik Norgaard <[EMAIL PROTECTED]> writes: Honestly, I wouldn't worry about it: review your config and make some simple choices to reduce the noise, see this article: One other noise reduction method which is really easy to implement is to use pf and write arule set which to uses the overload feature, see eg http://home.nuug.no/~peter/pf/en/bruteforce.html (part of my EuroBSDCon and other places tutorial). See http://home.nuug.no/~peter/pf/ for a choice of formats and languages. Neat! Thanks, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Laptop Wireless
On Mon, 13 Nov 2006, Damian Wiest wrote: The OP replied off-list with his output from dmesg. I'm sending it back to the list in the off-chance that someone knows more about this wireless adapter. -Damian - Forwarded message from Rem P Roberti <[EMAIL PROTECTED]> - On Sun, Nov 05, 2006 at 07:57:03AM -0800, Rem P Roberti wrote: Would someone point me in the right direction here. I have an old Compaq Presario 1692 that my sister-in-law gave to me after she upgraded. I installed FreeBSD 6.1 and everything is working fine. However, the laptop also came with a Belkin Wireless G (F5D7011) notebook card, and I would like to learn how to install the appropriate drivers for the card to work. I am new to FreeBSD, and have glanced at the Handbook section dealing with wireless. It's a little daunting at this time, and I haven't yet been able to make sense out of it with respect to this laptop and wireless card. Any help in making the process understandable would be much appreciated. Rem Can you post the dmesg? Assuming that particular device has a working driver, you can probably use ifconfig for most of the wireless settings. -Damian Thanks for the reply, Damian. Here is the dmesg: Copyright (c) 1992-2006 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD 6.1-RELEASE #2: Fri Nov 3 08:22:20 PST 2006 rem@:/usr/src/sys/i386/compile/REMKERNEL Timecounter "i8254" frequency 1193182 Hz quality 0 CPU: AMD-K6(tm) 3D processor (432.98-MHz 586-class CPU) Origin = "AuthenticAMD" Id = 0x58c Stepping = 12 Features=0x8021bf AMD Features=0x8800 real memory = 201261056 (191 MB) avail memory = 187408384 (178 MB) kbd1 at kbdmux0 K6-family MTRR support enabled (2 registers) ACPI disabled by blacklist. Contact your BIOS vendor. cpu0 on motherboard pcib0: pcibus 0 on motherboard pir0: on motherboard pci0: on pcib0 agp0: mem 0xe000-0xe3ff at device 0.0 on pci0 pcib1: at device 1.0 on pci0 pci1: on pcib1 pci1: at device 0.0 (no driver attached) isab0: at device 7.0 on pci0 isa0: on isab0 pcm0: port 0x1080-0x10bf,0x1070-0x107f,0x1060-0x106f,0x10c4 -0x10c7,0x10c0-0x10c3 irq 5 at device 9.0 on pci0 cbb0: at device 10.0 on pci0 cardbus0: on cbb0 pccard0: <16-bit PCCard bus> on cbb0 pci0: at device 15.0 (no driver attached) atapci0: port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xfc 90-0xfc9f at device 16.0 on pci0 ata0: on atapci0 ata1: on atapci0 pci0: at device 17.0 (no driver attached) ohci0: mem 0xfc00-0xfc000fff irq 5 at dev ice 20.0 on pci0 ohci0: [GIANT-LOCKED] usb0: OHCI version 1.0, legacy support usb0: on ohci0 usb0: USB revision 1.0 uhub0: AcerLabs OHCI root hub, class 9/0, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered pmtimer0 on isa0 orm0: at iomem 0xc-0xcb7ff,0xdc000-0xd on isa0 atkbdc0: at port 0x60,0x64 on isa0 atkbd0: irq 1 on atkbdc0 kbd0 at atkbd0 atkbd0: [GIANT-LOCKED] psm0: irq 12 on atkbdc0 psm0: [GIANT-LOCKED] psm0: model Generic PS/2 mouse, device ID 0 fdc0: at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0 fdc0: [FAST] fd0: <1440-KB 3.5" drive> on fdc0 drive 0 ppc0: at port 0x378-0x37f irq 7 on isa0 ppc0: Generic chipset (EPP/NIBBLE) in COMPATIBLE mode ppbus0: on ppc0 plip0: on ppbus0 lpt0: on ppbus0 lpt0: Interrupt-driven port ppi0: on ppbus0 sc0: at flags 0x100 on isa0 sc0: VGA <16 virtual consoles, flags=0x300> sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0 sio0: type 16550A sio1: configured irq 3 not in bitmap of probed irqs 0 sio1: port may not be enabled vga0: at port 0x3c0-0x3df iomem 0xa-0xb on isa0 speaker0: at port 0x61 on isa0 unknown: can't assign resources (memory) unknown: can't assign resources (port) unknown: can't assign resources (memory) psmcpnp0: irq resource info is missing; assuming irq 12 unknown: can't assign resources (port) unknown: can't assign resources (port) unknown: can't assign resources (port) ulpt0: Hewlett-Packard DeskJet 840C, rev 1.00/1.00, addr 2, iclass 7/1 ulpt0: using bi-directional mode Timecounter "TSC" frequency 432983113 Hz quality 800 Timecounters tick every 1.000 msec cardbus0: CIS pointer is 0! cardbus0: Resource not specified in CIS: id=10, size=2000 cardbus0: at device 0.0 (no driver attached) ad0: 6194MB at ata0-master UDMA33 acd0: DVDROM at ata1-master UDMA33 Trying to mount root from ufs:/dev/ad0s1a As you can see, it does not recognize the card. Indeed, when I looked at the list of wireless cards in the hardware list the Belkin wireless card was nowhere to be found. It may be that there is no driver for this particular card, and that I may just have to get another card. What do you think? Rem - End forwarded message - A couple of strange things (to me) in the dmesg. 1) ACPI disabled by blacklist. Contact your BIOS vendor ACPI is much preferred to APM. I have never seen this message but assume i
Re: sysv semaphores
On Tue, Nov 14, 2006 at 04:46:52PM -0600, Damian Wiest wrote: > On Tue, Nov 14, 2006 at 03:22:33PM +, Robin Becker wrote: > > I'm trying to test a python extension (POSH) that uses semaphores. When > > testing I get a run time error that indicates it requires too many > > semaphores. Is it possible to adjust the allowed number of semaphores > > without rebuilding the kernel? > > > > What are the costs of having semaphores ie are they memory/cpu intensive? > > -- > > Robin Becker > > You'll want to use either sysctl(8) to change the settings dynamically, or > use /etc/sysctl.conf to modify the settings permanently. I'm not sure if > there's a benefit to rolling a new kernel versus using sysctl.conf, or if > things even work that way anymore. > > # sysctl -a | grep seminfo > > kern.seminfo.semmni=10# number of semaphore identifiers > kern.seminfo.semmns=60# number of semaphores in system > kern.seminfo.semmnu=30# number of undo structures in system > kern.seminfo.semmsl=60# max number of semaphores per id > kern.seminfo.semopm=100 # max number of operations per semop call > kern.seminfo.semume=10# max number of undo entries per process > kern.seminfo.semusz=100 # size in bytes of undo structure > kern.seminfo.semvmx=32767 # semaphore maximum value > kern.seminfo.semaem=16384 # adjust on exit max value > > Those comments are from /usr/include/sys/sem.h > > -Damian Sorry, I forgot to mention a few things. You should become familiar with ipcs(1) as it will allow you to query the current state of SysV IPC facilities. You'll probably find yourself manually deleting semaphores depending on how well that extension cleans up after itself during testing. IIRC, the kernel maintains some in-memory datastructures to keep track of semaphores. I believe increasing the maximum number of semaphores will take up a negligible amount of main memory. If you're interested, the "Design and Implementation of the 4.4 BSD Operating System" (ISBN # 0201549794) has great coverage of this stuff. -Damian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
up in the 'C' column of top after I've rebooted with the newly compiled kernel. Run top with the -S argument. You should then see two "idle" processes, one for each CPU: 11 root 1 171 52 0K 8K CPU0 0 72.1H 91.70% idle: cpu0 10 root 1 171 52 0K 8K RUN1 72.2H 90.97% idle: cpu1 Can you confirm whether you see that or not? I do not have APIC_IO in my kernel either, and it is showing both cores in top (Core 2 Duo CPU). Regards, Josh ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Dual core processors
In response to Robert Fitzpatrick <[EMAIL PROTECTED]>: > I have a server with 6.1 and one dual-core processor and the SMP option > was built in the kernel according to the doc below, but only zeros show > up in the 'C' column of top after I've rebooted with the newly compiled > kernel. > > http://www.freebsddiary.org/smp.php > > I did not add APIC_IO as the doc suggested as it complains the option is > invalid, plus I did not do this for my other 5.4 server which shows all > processors in top. Both configs have a device of apic, neither has the > APIC_IO option. However, the other server is running 2 physical CPU's > and I see 0 thru 3 in the C column in top. Also, dmesg shows CPU #1 > Launched along with everything else: > > esmtp# dmesg|grep CPU > CPU: Intel(R) Pentium(R) 4 CPU 3.00GHz (3010.67-MHz 686-class CPU) > Logical CPUs per core: 2 > FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs > cpu0: on acpi0 > acpi_throttle0: on cpu0 > cpu1: on acpi0 > SMP: AP CPU #1 Launched! > > Why would I not see any other CPU numbers under top like I do in my > other server? Based on your dmesg, I don't believe you have a dual-cored CPU. It looks as if it's hyperthreaded, which is different. Hyperthreading is disabled in FreeBSD by default because of possible security issues. It can be enabled by setting a sysctl ... I recommend you do a bit of reading on the sysctl mechanism or it's behaviour might confuse you. -- Bill Moran Collaborative Fusion Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: linksys WPC54G | WPA-TKIP | FreeBSD 6.1
On Tue, 2006-11-14 at 11:40 -0800, probsd org wrote: > Anyone know of a good HOWTO on setting up networking in 6.1-RELEASE using a > Linksys WPC54G v2 PCMIA card to connect to a wireless linksys router doing > WPA-TKIP encryption? > > michael > I would also take a look at 'man ath' and the link below. Both helped me to get my wireless card going http://www.freebsdmall.com/~loader/en_US.ISO8859-1/articles/wireless/article.html -- Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Dual core processors
I have a server with 6.1 and one dual-core processor and the SMP option was built in the kernel according to the doc below, but only zeros show up in the 'C' column of top after I've rebooted with the newly compiled kernel. http://www.freebsddiary.org/smp.php I did not add APIC_IO as the doc suggested as it complains the option is invalid, plus I did not do this for my other 5.4 server which shows all processors in top. Both configs have a device of apic, neither has the APIC_IO option. However, the other server is running 2 physical CPU's and I see 0 thru 3 in the C column in top. Also, dmesg shows CPU #1 Launched along with everything else: esmtp# dmesg|grep CPU CPU: Intel(R) Pentium(R) 4 CPU 3.00GHz (3010.67-MHz 686-class CPU) Logical CPUs per core: 2 FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs cpu0: on acpi0 acpi_throttle0: on cpu0 cpu1: on acpi0 SMP: AP CPU #1 Launched! Why would I not see any other CPU numbers under top like I do in my other server? -- Robert ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: sysv semaphores
On Tue, Nov 14, 2006 at 03:22:33PM +, Robin Becker wrote: > I'm trying to test a python extension (POSH) that uses semaphores. When > testing I get a run time error that indicates it requires too many > semaphores. Is it possible to adjust the allowed number of semaphores > without rebuilding the kernel? > > What are the costs of having semaphores ie are they memory/cpu intensive? > -- > Robin Becker You'll want to use either sysctl(8) to change the settings dynamically, or use /etc/sysctl.conf to modify the settings permanently. I'm not sure if there's a benefit to rolling a new kernel versus using sysctl.conf, or if things even work that way anymore. # sysctl -a | grep seminfo kern.seminfo.semmni=10# number of semaphore identifiers kern.seminfo.semmns=60# number of semaphores in system kern.seminfo.semmnu=30# number of undo structures in system kern.seminfo.semmsl=60# max number of semaphores per id kern.seminfo.semopm=100 # max number of operations per semop call kern.seminfo.semume=10# max number of undo entries per process kern.seminfo.semusz=100 # size in bytes of undo structure kern.seminfo.semvmx=32767 # semaphore maximum value kern.seminfo.semaem=16384 # adjust on exit max value Those comments are from /usr/include/sys/sem.h -Damian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
Robert Huff wrote: Jerry McAllister writes: I believe there are also some file system improvements that you will miss if you do not rebuild the file systems at the 6.xxx level. Particularly, 4.x does not have UFS2/MAC which is the wave of the future. Robert Huff Yes. UFS2's softupdates are a really wonderful thing and a lifesaver. -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
Jerry McAllister writes: > I believe there are also some file system improvements that you > will miss if you do not rebuild the file systems at the 6.xxx > level. Particularly, 4.x does not have UFS2/MAC which is the wave of the future. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Erik Norgaard wrote: Leo L. Schwab wrote: On Mon, Nov 13, 2006 at 09:16:35PM +0100, Erik Norgaard wrote: Honestly, I wouldn't worry about it: review your config and make some simple choices to reduce the noise, see this article: http://www.securityfocus.com/infocus/1876 But I rather thought that was the point of 'bruteblock' -- it reduces the noise by blackholing the offending IPs for an hour or so. This blackholing doesn't appear to be happening, and I don't understand why. Could it be a permission problem -- syslog doesn't have permission to change the firewall rules? I wouldn't worry about "bruteblock" - try create a perl script and see if you can see a system in the attacks: Do the same host come back? If so does it continue from where it left? The annoyance of these brute force attacks is that your log is larger that it would be without them. That is unless ofcourse you have made yourself vulnerable! - do you use bad passwords? - do you allow root login? - have you disabled system accounts? If the answers are no, no and yes, then you can largely ignore. For more on this - read the linked article, read the old thread. Cheers, Erik jumping into this thread late, but denyhosts works great and also does a distributed thing where, if you opt in, you can get updates from other people who run denyhosts. These are then added to your deny list and if your box is scanned the attempts will be blocked. think if it like a spamhaus list for SSH brute force attacks. it works well. in short: 1. use denyhosts 2. do not use password based authentication for ssh. rather, use keys that are password protected 3. never allow root ssh logins and everything should be swell Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Building Ports w/ Options, Env
83
- Original Message
From: Eric Schuele <[EMAIL PROTECTED]>
> I'm no expert here but...
>
> 1) MAKE_ARGS (and MAKE_ENV) is a hash... so it would be curly braces.
> 2) Use MAKE_ENV. (from the man page)
> MAKE_ENV = {
>
>'databases/mysql41-*' => [
> 'WITH_LINUXTHREADS=1',
> 'SKIP_DNS_CHECK=1',
>],
> }
Thanks (and HAND ;)!
Rachel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
On Tue, Nov 14, 2006 at 02:31:26PM -0500, Jay Gordon wrote: > That's the way I would go about it. > > Jay Gordon > Unix Systems Administrator > DataPipe Managed Hosting Services > - What It Means To Be Sure - > [EMAIL PROTECTED] | http://www.datapipe.com > Tel: 201.792.1918 x2402 | Fax: 201-792-3090 > > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Scott > Schappell > Sent: Tuesday, November 14, 2006 11:14 AM > To: FreeBSD Questions > Subject: It's time to bite the bullet and do a major upgrade from 4.11 > to 6.0 > > The writing is on the wall and all that stuff. I've put this off long > enough. > > What needs to be done to upgrade from 4.11 to 6.x? I have an extensive > amount of ports installed and in googling and searching the list, it > seems I > need to make a jump to 5.2 then from there to 6. > > My thinking is the best way to do this would be to cvsup, do the > rebuilding > of the world thing boot it to the 5 version then cvsup to 6. > > The server is continuously backed up so rolling back won't be a problem > if I > need to. > > Am I on the right track by doing source upgrades? If so, what > intermediate > jump(s) do I need to make to get from 4.11 to 6? Well, it might depend a lot on what sort of stuff you have accumulated by using those ports. If it is basically compatible with the ports versions that go along with 6.2 (same file formats, etc) and if you have your own data well separated from OS and ports working storage, then the whole process might be easier as a clean new install - even on a clean new (bigger - might as well now when it is easy) disk. Mainly, I think it will take less time to do the single new install than to do multiple upgrades and builds to bring things up to date. I believe there are also some file system improvements that you will miss if you do not rebuild the file systems at the 6.xxx level. If some of your third party stuff or ports make incompatible changes in formats of data that you want to keep, then you might have to make incremental steps to make sure it uses whatever conversions are put in the upgrade processes along the way. I don't know of any off hand, but I use only a limited set of ports so just may not run across them. You would need to make handy copies of config files which you may have to hand merge to get everything up and running - not so much for the main OS as possibly for some ports, but you might have to do that anyway - which ever way you do it. Once you get things up and running at 6.2 or whatever, then import the data you want to keep and you should be OK. A clean install is also a possibly good time to reorganize where things are kept and how they are organized if you have felt the need. I did a couple of clean install jumps from 4.xx to 6.1 and really had no problem a while back. Have fun, jerry > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Building Ports w/ Options, Env
On 11/14/06 13:32, Rachel Florentine wrote:
- Original Message
From: Eric Schuele <[EMAIL PROTECTED]>
MAKE_ARGS = {
'www/squid' => 'CONFIGURE_ARGS+=--enable-delay-pools
--enable-snmp --enable-ssl --enable-ipf-transparent
--enable-removal-policies',
'mail/imp' => 'WITH_HTML=yes WITH_COURIER-IMAP=yes',
}
Okay, that makes sense! Is it, then, the same thing with env variables? Just put
everything between the cury braces (or are they brackets??) in the
MAKE_ARGS definition?
Eric, two questions:
1) Are they brackets [] or curly braces {} or does it matter?
2) Can you give me an example of how to include env vars? That would be
different than 'CONFIGURE_ARGS+=--...', right?
I'm no expert here but...
1) MAKE_ARGS (and MAKE_ENV) is a hash... so it would be curly braces.
2) Use MAKE_ENV. (from the man page)
MAKE_ENV = {
'databases/mysql41-*' => [
'WITH_LINUXTHREADS=1',
'SKIP_DNS_CHECK=1',
],
}
HTH.
TIA,
Rachel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
--
Regards,
Eric
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: linksys WPC54G | WPA-TKIP | FreeBSD 6.1
OK thanks. I'm also assuming I will have to download the windows WPC54G driver and convert it using ndisgen. I didnt see the WPC54G v2 card listed in the hardware compatibility list. Kevin Sanders <[EMAIL PROTECTED]> wrote: On 11/14/06, probsd org wrote: > Anyone know of a good HOWTO on setting up networking in 6.1-RELEASE using a > Linksys WPC54G v2 PCMIA card to connect to a wireless linksys router doing > WPA-TKIP encryption? man wpa_supplicant.conf. - Access over 1 million songs - Yahoo! Music Unlimited. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: MailScanner Ports problems
There was talk about this on the Mailscanner list a while ago. I use the tar.gz to install MailScanner direct (on 4.11), but then I do alot of beta testing and JPK can lag behind in getting releases out. Ask on the main MailScanner list as JPK hangs about there sometime,, -- Martin On 11/14/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: I've been doing cvsup's on ports-all and src-all. After rebuilding world for the second time, I still get errors when building the ports. For example, I'm trying to rebuild MailScanner and I get the following: ===>Verifying install for /usr/local/lib/perl5/site_perl/5.6.2/mach/Filesys/Df.pm in /usr/ports/sysutils/p5-Filesys-Df ===> p5-Filesys-Df-0.92 requires statvfs() which is not available before FreeBSD-5*. *** Error code 1 Stop in /usr/ports/sysutils/p5-Filesys-Df. *** Error code 1 Stop in /usr/ports/mail/mailscanner. Looks like some of the ports expect the code to have V5 routines available although I'm only updating from RELENG-4. The error message is originating from the Makefile which is specifically checking for an OS version >= 5.0. Any ideas? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to " [EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
Leo L. Schwab wrote: On Mon, Nov 13, 2006 at 09:16:35PM +0100, Erik Norgaard wrote: Honestly, I wouldn't worry about it: review your config and make some simple choices to reduce the noise, see this article: http://www.securityfocus.com/infocus/1876 But I rather thought that was the point of 'bruteblock' -- it reduces the noise by blackholing the offending IPs for an hour or so. This blackholing doesn't appear to be happening, and I don't understand why. Could it be a permission problem -- syslog doesn't have permission to change the firewall rules? I wouldn't worry about "bruteblock" - try create a perl script and see if you can see a system in the attacks: Do the same host come back? If so does it continue from where it left? The annoyance of these brute force attacks is that your log is larger that it would be without them. That is unless ofcourse you have made yourself vulnerable! - do you use bad passwords? - do you allow root login? - have you disabled system accounts? If the answers are no, no and yes, then you can largely ignore. For more on this - read the linked article, read the old thread. Cheers, Erik -- Ph: +34.666334818 web: http://www.locolomo.org X.509 Certificate: http://www.locolomo.org/crt/8D03551FFCE04F0C.crt Key ID: 69:79:B8:2C:E3:8F:E7:BE:5D:C3:C3:B1:74:62:B8:3F:9F:1F:69:B9 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
Jay Gordon wrote: That's the way I would go about it. Jay Gordon Unix Systems Administrator DataPipe Managed Hosting Services - What It Means To Be Sure - [EMAIL PROTECTED] | http://www.datapipe.com Tel: 201.792.1918 x2402 | Fax: 201-792-3090 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Scott Schappell Sent: Tuesday, November 14, 2006 11:14 AM To: FreeBSD Questions Subject: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0 The writing is on the wall and all that stuff. I've put this off long enough. What needs to be done to upgrade from 4.11 to 6.x? I have an extensive amount of ports installed and in googling and searching the list, it seems I need to make a jump to 5.2 then from there to 6. My thinking is the best way to do this would be to cvsup, do the rebuilding of the world thing boot it to the 5 version then cvsup to 6. The server is continuously backed up so rolling back won't be a problem if I need to. Am I on the right track by doing source upgrades? If so, what intermediate jump(s) do I need to make to get from 4.11 to 6? That's a major set of version jumps though, so you may want to consider a clean install of 6.x via binaries, then source upgrade to 6.2 in a couple of weeks using cvsup once it's made stable; besides, reinstalling would be trivial if you copy down your /etc files you need to keep, as well as your packages / ports db (/var/db/ports), and home directories. Besides, if you do a clean reinstall at least you might claim back some space that was being used by leftover cruft from packages, uninstalled packages, or 'ancient' :) OS features. -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
linksys WPC54G | WPA-TKIP | FreeBSD 6.1
Anyone know of a good HOWTO on setting up networking in 6.1-RELEASE using a Linksys WPC54G v2 PCMIA card to connect to a wireless linksys router doing WPA-TKIP encryption? michael - Cheap Talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Building Ports w/ Options, Env
- Original Message
From: Eric Schuele <[EMAIL PROTECTED]>
>> MAKE_ARGS = {
>> 'www/squid' => 'CONFIGURE_ARGS+=--enable-delay-pools
>> --enable-snmp --enable-ssl --enable-ipf-transparent
>> --enable-removal-policies',
>> 'mail/imp' => 'WITH_HTML=yes WITH_COURIER-IMAP=yes',
>> }
>
> Okay, that makes sense! Is it, then, the same thing with env variables? Just
> put
> everything between the cury braces (or are they brackets??) in the
>
MAKE_ARGS definition?
Eric, two questions:
1) Are they brackets [] or curly braces {} or does it matter?
2) Can you give me an example of how to include env vars? That would be
different than 'CONFIGURE_ARGS+=--...', right?
TIA,
Rachel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
That's the way I would go about it. Jay Gordon Unix Systems Administrator DataPipe Managed Hosting Services - What It Means To Be Sure - [EMAIL PROTECTED] | http://www.datapipe.com Tel: 201.792.1918 x2402 | Fax: 201-792-3090 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Scott Schappell Sent: Tuesday, November 14, 2006 11:14 AM To: FreeBSD Questions Subject: It's time to bite the bullet and do a major upgrade from 4.11 to 6.0 The writing is on the wall and all that stuff. I've put this off long enough. What needs to be done to upgrade from 4.11 to 6.x? I have an extensive amount of ports installed and in googling and searching the list, it seems I need to make a jump to 5.2 then from there to 6. My thinking is the best way to do this would be to cvsup, do the rebuilding of the world thing boot it to the 5 version then cvsup to 6. The server is continuously backed up so rolling back won't be a problem if I need to. Am I on the right track by doing source upgrades? If so, what intermediate jump(s) do I need to make to get from 4.11 to 6? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Rescuing mangled RAID5 array
Hello I'm trying to recover data from a broken RAID5 array (drive removed whilst array was rebuilding!). What's the best way to get an image of the corrupted partition and how would I run fsck -y on the image. The corrupted partition is 1.3TB, /dev/da1s1d, usually mounted as /raid. I have another empty 2TB partition handy, /dev/da2s1d currently mounted as /raid2. Following this thread http://lists.freebsd.org/pipermail/freebsd-questions/2006-November/ 134984.html I'm trying dd if=/dev/da1s1d of=/raid2/rescueimage but it's proceeding very slowly (2MB/sec) and I'm not entirely sure I'm going to be able to mount and fix the resulting image with fsck at the end of it. So is there a faster way to clone a partition (unfortunately the drive array itself doesn't offer this functionality) and can you fsck an md mounted image. assuming i should use md to mount the image? There's nothing wrong with the drives physically, just mangled metadata I think. I can actually mount the partition readonly but many directories are missing or listed as 'Bad file descriptor'. I've copied about 20% of the data off but the most important 50% doesn't even have it's directory listed any more :( Thanks in advance for any help Greg. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Building Ports w/ Options, Env
- Original Message
From: Eric Schuele <[EMAIL PROTECTED]>
>> MAKE_ARGS = {
>> 'www/squid' => 'CONFIGURE_ARGS+=--enable-delay-pools
>> --enable-snmp --enable-ssl --enable-ipf-transparent
>> --enable-removal-policies',
>> 'mail/imp' => 'WITH_HTML=yes WITH_COURIER-IMAP=yes',
>> }
>
> Okay, that makes sense! Is it, then, the same thing with env variables? Just
> put
> everything between the cury braces (or are they brackets??) in the
> MAKE_ARGS definition?
Eric, two questions:
1) Are they brackets [] or curly braces {} or does it matter?
2) Can you give me an example of how to include env vars? That would be
different than 'CONFIGURE_ARGS+=--...', right?
TIA,
Rachel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: win32 codecs not fixed?
Hello: > >2) make rmconfig > > Thanks. Never heard of that option before. Note also "make showconfig". Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
Scott Schappell writes:
> Am I on the right track by doing source upgrades?
Source upgrades are certainly possible; I'll let others address
the sequence of steps.
However: were this my problem, I would get a clean disk and
install from scratch. Advantages:
ability to adjust partition sizes
old disk is available _in toto_ to copy data (and executables
if necessary) from
leave behind unused {system, user} {code, data} which
accumulate no matter how hard you try to find them
you're going to have to rebuild the ports anyway; this way
they're guaranteed to build against the most recent
headers/libraries
if the install fails, you can change the cable/jumpers and boot
from the old disk in minutes
Robert Huff
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: MAC OS X connection to FreeBSD?
David Kelly wrote: On Mon, Nov 13, 2006 at 10:56:17PM -0600, Chuck Remes wrote: Also, please recall I said "most software" and not 100% of software. I am certain there are outliers that don't compile cleanly on OSX, but that hardly proves that OSX is not a good UNIX target. The vast majority of software compiles and runs just fine on the latest OSX release. Can't say that I find compiling other's applications on MacOS X any harder than on FreeBSD (without /usr/ports/ assistance). Only disappointment has been trying to run FreeBSD-hosted X11 apps using Apple's X11 server. Apple has updated a couple of times since I last tried so this isn't an entirely fair comparison. Well, I still don't like the fact that the X11 packaged by Apple is XFree 4.8.xx.. Serious improvements and some security issues have been addressed since the majority of the XFree86 group moved to X.org.. Yay for ports / fink though (depending on what you use), cause you can easily upgrade to X.org 6.9 under fink with after a few steps. -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
MailScanner Ports problems
I've been doing cvsup's on ports-all and src-all. After rebuilding world for the second time, I still get errors when building the ports. For example, I'm trying to rebuild MailScanner and I get the following: ===>Verifying install for /usr/local/lib/perl5/site_perl/5.6.2/mach/Filesys/Df.pm in /usr/ports/sysutils/p5-Filesys-Df ===> p5-Filesys-Df-0.92 requires statvfs() which is not available before FreeBSD-5*. *** Error code 1 Stop in /usr/ports/sysutils/p5-Filesys-Df. *** Error code 1 Stop in /usr/ports/mail/mailscanner. Looks like some of the ports expect the code to have V5 routines available although I'm only updating from RELENG-4. The error message is originating from the Makefile which is specifically checking for an OS version >= 5.0. Any ideas? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: [OT]two networks, one nic
On Mon, Nov 13, 2006 at 09:52:32PM -0800, jekillen wrote: > Hello FreeBSD users, > I have been operating under the assumption that > the same network interface card cannot handle two > different networks. But then I seem to have seen > an example in one of the OReill? books on networking > that had one interface with one assigned inet address > and also aliased with another address that could only > be on another network. If I understood that right, it > seems to imply that I can use one Network interface > card for at least two different networks, like so; > 192.168.1. and > alias 172.0.0. > or; > 192.168.1. > alias 192.168.2. Alias works fine. You have one primary address and many aliases. Put the ifconfig alias variable setting in your /etc/rc.conf or possibly rc.conf.local file. The syntax is: # Main (first) if config: ifconfig_xl0="inet 192.168.1.something netmask 255.248.0.0" The netmask needs to be whatever is correct for your situation. # All subsequent ifconfig variable setting are aliases as follows: ifconfig_xl0_alias0="192.168.2.something netmask 255.255.255.255" The 'xl0' is the NIC device. Each alias needs to have a unique number on it and then must be sequential starting with '0' - so the next alias would be 'alias1', etc. The netmask for aliases should be 255.255.255.255 > If this is possible is it accomplished via a special routing? Nope, standard stuff. > My concern is that I have a laptop with one network > interface, built in, but would like to access it both at > a public static address and a private network address. > Is this possible? Well, in this case you are really talking about two physical networks. So, for that you need two separate NICs. But, your NIC can respond to more than one network address on any given physical network by using aliases as mentioned above. jerry > > Thanks in advance for time and attention; > Jeff K > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: win32 codecs not fixed?
Yousef Adnan Raffah wrote: > I have tried to portsnap this morning in order to see if the security > issue with the multimedia/win32-codecs was resolved, which seems like it > is not. > What does usually happen when such a thing is happening, does the > package/port stay restricted until the developer/port owner fix the > security issue or does something else happens? Run portaudit -F to fetch the most current database. The Issue has been removed some time ago by adding the option to not install quicktime (see http://www.freshports.org/multimedia/win32-codecs ) -- Armin Pirkovitsch [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
multiple ports trees
Hello, list! I've got about six production servers and a couple of workstations running FreeBSD 6.1-STABLE and 6.2-PRERELEASE. Some of these machines are sitting in DMZ, the others are internal. Currently, each of them has their own ports tree. How terrible of an idea would it be to take one of the production servers that isn't really doing a whole lot of work, and make it's /usr/ports available over NFS to the other machines? Am I headed in a bad direction here? Also, what about user accounts between machines? I got to thinking that because some of the servers have the same user accounts, would it be possible to share a password file or home directories? Should I build another box strictly for this purpose? If so, could you point me to some documentation for achieving such a goal? Thank you for your time! cmh -- Christopher M. Hobbs IS Technician, City of Siloam Springs [EMAIL PROTECTED], (479).524.5136 pgpWyyPbo7vWx.pgp Description: PGP signature
win32 codecs not fixed?
I have tried to portsnap this morning in order to see if the security issue with the multimedia/win32-codecs was resolved, which seems like it is not. What does usually happen when such a thing is happening, does the package/port stay restricted until the developer/port owner fix the security issue or does something else happens? signature.asc Description: This is a digitally signed message part
Re: net-snmp and 6.1 (confusion)
thanks bill: no, i did "cat > /var/log/snmpd.log" every time i restarted the server. here is the error message after i disabled snmpd in rc.conf (with entry "bsnmpd="NO"): [EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED]@[EMAIL PROTECTED] TERM or STOP signal... shutting down... here is the result of "sockstat -4l": root sshd 440 4 tcp4 *:22 *:* root httpd 350 3 tcp46 *:80 *:* root httpd 350 4 tcp4 *:* *:* root syslogd290 7 udp4 *:514 *:* --- Bill Moran <[EMAIL PROTECTED]> wrote: > In response to gahn <[EMAIL PROTECTED]>: > > > the entry "bsnmpd_enable="NO"" does works and the > > result from "sockstat" showed there is no snmpd > > running. then i added following entries in > rc.conf: > > > > snmpd_enable="YES" > > snmpd_flags="-a -p /var/run/snmpd.pid" > > snmptrapd_enable="YES" > > snmptrapd_flags="-a -p /var/run/snmptrapd.pid" > > snmpd_conffile="/usr/local/etc/snmp/snmpd.conf" > > > > well, they started snmpd alright, but i am not > sure > > which one: bsnmpd or net-snmpd since i still have > > error messages in snmpd.log: > > > > [init_smux] bind failed: Address already in use > > Error opening specified endpoint "udp:161" > > Server Exiting with code 1 > > Are you sure those messages aren't old, from before > you disabled bsnmpd? > > sockstat -4 should show you what is listening on > that port. net-snmpd > starts a process called "snmpd", so you should be > able to tell which > one is running by the process name. If bsnmpd is > still running, a > "killall" should shut it down. > > -- > Bill Moran > Collaborative Fusion Inc. > > > > IMPORTANT: This message contains confidential > information and is intended only for the individual > named. If the reader of this message is not an > intended recipient (or the individual responsible > for the delivery of this message to an intended > recipient), please be advised that any re-use, > dissemination, distribution or copying of this > message is prohibited. Please notify the sender > immediately by e-mail if you have received this > e-mail by mistake and delete this e-mail from your > system. > > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > Do you Yahoo!? Everyone is raving about the all-new Yahoo! Mail beta. http://new.mail.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blank screen after using X
On Mon, 13 Nov 2006 Christian Walther wrote: > I forgot to mention that the machine is an IBM Thinkpad T23 with S3 > Savage chip, max. resolution is at 1024x768. Ok, now your first problem becomes one that I've had :) > > I'm using FreeBSD 6.x for a couple of month now, and I'm quite happy with > > it. > > Since the beginning I've a problem that I was unable to fix: When I > > quit X, or X dies for some reason, the screen remains black. I can > > type blindly, starting X again, or doing a shutdown. I tried quite a few things to fix this on my T23, and wound up having in /etc/sysctl.conf: hw.acpi.reset_video=0 hw.syscons.sc_no_suspend_vtswitch=1 and in /boot/loader.conf: acpi_ibm_load-"YES" hint.psm.0.flags="0x3000" vesa_load="YES" VESA may or may not be relevant; it seemed to help here. Getting screen restoration through suspend/resume, from either X or vty, was my goal. > > I searched the net a found an older thread from another FreeBSD-User, > > posted to this mailing list. Link to the initial message: > > http://docs.freebsd.org/cgi/getmsg.cgi?fetch=195067+0+archive/2006/freebsd-questions/20060723.freebsd-questions > > > > It was suggested that this would be a configuration problem, that > > something has to be changed in xorg.conf. But there isn't any solution > > provided, so I hope that someone here can help me. > > > > I'll attach Xorg.0.log with the latest crash information (it complains > > a segfault at the end), and my current xorg.conf. Can't help with that. I'll look through these later; if your conf was autodetected it's a bit different to mine. I just added stuff from a config given on the FLCL, and may have some refresh rates and such non optimal, but it's been working ok on 6.1-R here. Hope the above helps with the blank screen problem. Caveat: my T23's still running an ancient BIOS and EC that can't be updated until I find an external USB floppy drive - or go mad and install Windows or freedos? to get that done - which might also be relevant. Cheers, Ian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: net-snmp and 6.1 (confusion)
In response to gahn <[EMAIL PROTECTED]>: > the entry "bsnmpd_enable="NO"" does works and the > result from "sockstat" showed there is no snmpd > running. then i added following entries in rc.conf: > > snmpd_enable="YES" > snmpd_flags="-a -p /var/run/snmpd.pid" > snmptrapd_enable="YES" > snmptrapd_flags="-a -p /var/run/snmptrapd.pid" > snmpd_conffile="/usr/local/etc/snmp/snmpd.conf" > > well, they started snmpd alright, but i am not sure > which one: bsnmpd or net-snmpd since i still have > error messages in snmpd.log: > > [init_smux] bind failed: Address already in use > Error opening specified endpoint "udp:161" > Server Exiting with code 1 Are you sure those messages aren't old, from before you disabled bsnmpd? sockstat -4 should show you what is listening on that port. net-snmpd starts a process called "snmpd", so you should be able to tell which one is running by the process name. If bsnmpd is still running, a "killall" should shut it down. -- Bill Moran Collaborative Fusion Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
sysv semaphores
I'm trying to test a python extension (POSH) that uses semaphores. When testing I get a run time error that indicates it requires too many semaphores. Is it possible to adjust the allowed number of semaphores without rebuilding the kernel? What are the costs of having semaphores ie are they memory/cpu intensive? -- Robin Becker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD UFS "vulnerability": Is NIST off its medication, or am I missing something?
In response to Colin Percival <[EMAIL PROTECTED]>: > Bill Moran wrote: > > http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5824 > > > > Following the links around, it seems that you would have to mount a > > "corrupt" or > > "malicious" filesystem in order to exploit this "vulnerability". > > > > Yes, NIST claims there is no authentication required to exploit? Are new > > versions > > of FreeBSD suddenly allowing unauthenticated users to mount filesystems by > > default? > > If so, something's wrong with my 6.1 workstation! > > > > It seems like this is the 2nd or 3rd "vulnerability" I've seen that's been > > blown > > out of proportion by NIST, or am I missing something? > > CVE names are assigned, and NIST creates an entry in its database, whenever > someone claims that a security problem exists; their purpose is to provide > a consistent name for whatever people are talking about, not to decide what > exactly constitutes a security issue (as I explained in my BSDCan'06 paper, > different vendors have many different policies about what constitute security > issues). > > In this case (and another very similar bug found by the MoKB people), the > FreeBSD security team has no intention to handle the bug as a security issue; > obviously this is a kernel bug and deserves to be fixed, but no more so than > any other kernel bug, and in fact this bug seems far less important than most. That was my thought. In my opinion, anything that requires root access to exploit doesn't constitute a security issue, since someone with root privvies can do whatever they want anyway, by definition. It looks as if MoKB has an axe to grind ... I expect we'll see a lot more exaggerated "security problems" come out of them before November is over ... Thanks for the feedback, Colin. -- Bill Moran Collaborative Fusion Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
deleting automatically the oldest file from a harddisk
On Mon, 13 Nov 2006 Koen de Wijs wrote: > I have a ftp -server. I use a harddisk of 9 Gb for the ftp-directory. > > This isn't very big so I want to throw away the oldest file if the disc > is full. I'd tend to define 'full' as perhaps 8GB in that situation, and likely protect at least some ftp directories from purely date-based purging. > I can write a cronjob that checks every minute. But isn't there another > solution; If you leave enough headroom then hourly might be often enough? > Can't I just write a C program that listens to some systemcalls and > automatically deletes the oldest file if the harddisk is full??? Well you can do anything in C if you know how and have the time :) but a small script using existing utilities would be a lot easier. Sounds like a job for find(1) to me. Search for the numerous primaries matching 'time' or 'newer', also see -size and maybe others useful for generating a list of pathnames of your candidate(s) to feed to rm(1) Cheers, Ian ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: win32 codecs not fixed?
> > Yousef Adnan Raffah wrote: > > I have tried to portsnap this morning in order to see if the security > > issue with the multimedia/win32-codecs was resolved, which seems like it > > is not. > > What does usually happen when such a thing is happening, does the > > package/port stay restricted until the developer/port owner fix the > > security issue or does something else happens? > > Run portaudit -F to fetch the most current database. The Issue has been > removed some time ago by adding the option to not install quicktime (see > http://www.freshports.org/multimedia/win32-codecs ) > Probably needs to remove /var/db/ports/win32-codecs/options and then reconfigure it w/o Quicktime. Then it won't give the error anymore. Is there a better way to have a port "forget" its previous options? Thanks, Tuc ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: MAC OS X connection to FreeBSD?
On Mon, Nov 13, 2006 at 10:56:17PM -0600, Chuck Remes wrote: > > Also, please recall I said "most software" and not 100% of software. > I am certain there are outliers that don't compile cleanly on OSX, > but that hardly proves that OSX is not a good UNIX target. The vast > majority of software compiles and runs just fine on the latest OSX > release. Can't say that I find compiling other's applications on MacOS X any harder than on FreeBSD (without /usr/ports/ assistance). Only disappointment has been trying to run FreeBSD-hosted X11 apps using Apple's X11 server. Apple has updated a couple of times since I last tried so this isn't an entirely fair comparison. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
It's time to bite the bullet and do a major upgrade from 4.11 to 6.0
The writing is on the wall and all that stuff. I've put this off long enough. What needs to be done to upgrade from 4.11 to 6.x? I have an extensive amount of ports installed and in googling and searching the list, it seems I need to make a jump to 5.2 then from there to 6. My thinking is the best way to do this would be to cvsup, do the rebuilding of the world thing boot it to the 5 version then cvsup to 6. The server is continuously backed up so rolling back won't be a problem if I need to. Am I on the right track by doing source upgrades? If so, what intermediate jump(s) do I need to make to get from 4.11 to 6? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Building Ports w/ Options, Env
71- Original Message
From: Nils Vogels <[EMAIL PROTECTED]>
> What you put between the brackets [], is passed to make ans should
be
> options that make recognizes.
>
> A small example:
>
> MAKE_ARGS = {
> 'www/squid' => 'CONFIGURE_ARGS+=--enable-delay-pools
> --enable-snmp --enable-ssl --enable-ipf-transparent
> --enable-removal-policies',
> 'mail/imp' => 'WITH_HTML=yes WITH_COURIER-IMAP=yes',
> }
Okay, that makes sense! Is it, then, the same thing with env variables? Just
put everything between the cury braces (or are they brackets??) in the
MAKE_ARGS definition?
> HTH & HAND
Now that's a new one. "HTH" I understand, but what's "HAND" stand for?
TIA,
Rachel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Inquiry about using FreeBSD logo
http://www.freebsd.org/art.html#USE On Nov 14, 2006, at 7:02 PM, Sher Shah Farooq wrote: Dear FreeBSD My name is Sher Shah Farooq, working in Ministry of IT and Telecom as Open Source Security Expert. I am a great fan of FreeBSD Operating System and using FreeBSD from the last 6 years. I have introduced FreeBSD in Government as well as in hundreds of Private organizations. I want to create a user group for FreeBSD User in my country and also want your permission that can I use FreeBSD logos?. Please let me know as soon as possible. Sincerely Yours, Sher Shah Farooq Security Expert (OSRC) Pakistan Software Export Board (G) Ltd. Ministry of IT&T 2nd Floor, Evacuee Trust Building, Agha Khan Road, Islamabad, Pakistan. Tel: 92-51-9204074 Ext: 124 Fax: 92-51-9204075 Cell:92-321-9138528 E-Mail: [EMAIL PROTECTED], [EMAIL PROTECTED] URL: www.pseb.org.pk ; www.osrc.org.pk ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions- [EMAIL PROTECTED]" !DSPAM:1084,4559a2db6575674931299! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: error while building lang/p5-Error
James Long <[EMAIL PROTECTED]> writes: > How to fix? > > > > ns : 20:53:22 /root# portupgrade lang/p5-Error > ---> Upgrading 'p5-Error-0.17.004' to 'p5-Error-0.17.007' (lang/p5-Error) > ---> Building '/usr/ports/lang/p5-Error' > ===> Cleaning for perl-5.8.8 > ===> Cleaning for p5-Error-0.17.007 > ===> Extracting for p5-Error-0.17.007 > => MD5 Checksum OK for Error-0.17007.tar.gz. > => SHA256 Checksum OK for Error-0.17007.tar.gz. > ===> p5-Error-0.17.007 depends on file: /usr/local/bin/perl5.8.7 - found > ===> Patching for p5-Error-0.17.007 > ===> p5-Error-0.17.007 depends on file: /usr/local/bin/perl5.8.7 - found > ===> p5-Error-0.17.007 depends on file: /usr/local/bin/perl5.8.7 - found > ===> Configuring for p5-Error-0.17.007 > Checking if your kit is complete... > Looks good > Writing Makefile for Error > ===> Building for p5-Error-0.17.007 > cp lib/Error.pm blib/lib/Error.pm > cp lib/Error/Simple.pm blib/lib/Error/Simple.pm > Manifying blib/man3/Error.3 > Manifying blib/man3/Error::Simple.3 > /usr/local/bin/perl5.8.7 "-Iblib/arch" "-Iblib/lib" Build.PL Build > Too early to specify a build action 'Build'. Do 'Build Build' instead. > *** Error code 2 > > Stop in /usr/ports/lang/p5-Error/work/Error-0.17007. > *** Error code 1 > > Stop in /usr/ports/lang/p5-Error. > ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade.76239.0 > env PORT_UPGRADE=yes make > ** Fix the problem and try again. > ** Listing the failed packages (*:skipped / !:failed) > ! lang/p5-Error (p5-Error-0.17.004) (unknown build error) > ---> Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed Your perl installation seems to be out of synch with the other port. That doesn't look like it should matter, but it's one thing to look at. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: net-snmp and 6.1 (confusion)
the entry "bsnmpd_enable="NO"" does works and the result from "sockstat" showed there is no snmpd running. then i added following entries in rc.conf: snmpd_enable="YES" snmpd_flags="-a -p /var/run/snmpd.pid" snmptrapd_enable="YES" snmptrapd_flags="-a -p /var/run/snmptrapd.pid" snmpd_conffile="/usr/local/etc/snmp/snmpd.conf" well, they started snmpd alright, but i am not sure which one: bsnmpd or net-snmpd since i still have error messages in snmpd.log: [init_smux] bind failed: Address already in use Error opening specified endpoint "udp:161" Server Exiting with code 1 any ideas? --- Frank Staals <[EMAIL PROTECTED]> wrote: > gahn wrote: > > thanks. > > > > i didn't recall that i activated any snmp but > there is > > a bsnmpd running though: > > > > root snmpd 414 13 tcp4 *:199 > > >*:* > > root snmpd 414 14 udp4 *:161 > > >*:* > > root snmptrapd 408 10 udp4 *:162 > > >*:* > > > > how could i remove it? in rc.conf? or else? > > > > thanks > > > > > > > > --- Frank Staals <[EMAIL PROTECTED]> wrote: > > > > > >> gahn wrote: > >> > >>> hi: > >>> > >>> is a generic snmp running with 6.1? i installed > >>> net-snmp on 6.1 and it seems to have conflict > with > >>> some another snmp process: > >>> > >>> [init_smux] bind failed: Address already in use > >>> Error opening specified endpoint "udp:161" > >>> Server Exiting with code 1 > >>> > >>> i have no anothe snmp application running except > >>> > >> the > >> > >>> net-snmp. > >>> > >>> any ideas? > >>> > >>> > >>> > >>> > >>> > >>> > >>> > > > > > > >>> Cheap talk? > >>> Check out Yahoo! Messenger's low PC-to-Phone > call > >>> > >> rates. > >> > >>> http://voice.yahoo.com > >>> ___ > >>> freebsd-questions@freebsd.org mailing list > >>> > >>> > > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > > >>> To unsubscribe, send any mail to > >>> > >> "[EMAIL PROTECTED]" > >> > >>> > >>> > >> I believe there is no smnp daemon running by > >> default. Maybe you > >> accidentally allready started it ? You might > check > >> it with sockstat -4 > >> | grep 161 > >> > >> -- > >> -Frank Staals > >> > >> > >> > >> > > > > > > > > > > > > > Cheap talk? > > Check out Yahoo! Messenger's low PC-to-Phone call > rates. > > http://voice.yahoo.com > > > > > > > Hmm apparantly there IS a bsndmp running. Didn't see > that one on my > server, anyway on my laptop it wasn't running as I > apparantly disabled it: > > [EMAIL PROTECTED] cat /etc/rc.conf | grep snmpd > bsnmpd_enable="NO" > > that might help I guess > > -- > -Frank Staals > > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Inquiry about using FreeBSD logo
Dear FreeBSD My name is Sher Shah Farooq, working in Ministry of IT and Telecom as Open Source Security Expert. I am a great fan of FreeBSD Operating System and using FreeBSD from the last 6 years. I have introduced FreeBSD in Government as well as in hundreds of Private organizations. I want to create a user group for FreeBSD User in my country and also want your permission that can I use FreeBSD logos?. Please let me know as soon as possible. Sincerely Yours, Sher Shah Farooq Security Expert (OSRC) Pakistan Software Export Board (G) Ltd. Ministry of IT&T 2nd Floor, Evacuee Trust Building, Agha Khan Road, Islamabad, Pakistan. Tel: 92-51-9204074 Ext: 124 Fax: 92-51-9204075 Cell:92-321-9138528 E-Mail: [EMAIL PROTECTED], [EMAIL PROTECTED] URL: www.pseb.org.pk ; www.osrc.org.pk ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: net-snmp and 6.1
gahn wrote: hi: is a generic snmp running with 6.1? i installed net-snmp on 6.1 and it seems to have conflict with some another snmp process: [init_smux] bind failed: Address already in use Error opening specified endpoint "udp:161" Server Exiting with code 1 i have no anothe snmp application running except the net-snmp. any ideas? Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" I believe there is no smnp daemon running by default. Maybe you accidentally allready started it ? You might check it with sockstat -4 | grep 161 -- -Frank Staals ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: [OT]two networks, one nic
Its certainly possible. In fact on FreeBSD you can only have multiple addresses in one interface if they are in different broadcast domains (although one can be a subset (say /32) of the other. I have 10.0.0.1/25 and 10.10.10.1/24 on my wireless interface at home. Its often a good idea to separate networks physically but by no means a requirement. Vince jekillen wrote: > Hello FreeBSD users, > I have been operating under the assumption that > the same network interface card cannot handle two > different networks. But then I seem to have seen > an example in one of the OReill¥ books on networking > that had one interface with one assigned inet address > and also aliased with another address that could only > be on another network. If I understood that right, it > seems to imply that I can use one Network interface > card for at least two different networks, like so; > 192.168.1. and > alias 172.0.0. > or; > 192.168.1. > alias 192.168.2. > If this is possible is it accomplished via a special routing? > My concern is that I have a laptop with one network > interface, built in, but would like to access it both at > a public static address and a private network address. > Is this possible? > > Thanks in advance for time and attention; > Jeff K > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: net-snmp and 6.1
thanks. it definitely helped...-:) really i can't recall i ever activate the "bsnmpd". best --- Frank Staals <[EMAIL PROTECTED]> wrote: > gahn wrote: > > thanks. > > > > i didn't recall that i activated any snmp but > there is > > a bsnmpd running though: > > > > root snmpd 414 13 tcp4 *:199 > > >*:* > > root snmpd 414 14 udp4 *:161 > > >*:* > > root snmptrapd 408 10 udp4 *:162 > > >*:* > > > > how could i remove it? in rc.conf? or else? > > > > thanks > > > > > > > > --- Frank Staals <[EMAIL PROTECTED]> wrote: > > > > > >> gahn wrote: > >> > >>> hi: > >>> > >>> is a generic snmp running with 6.1? i installed > >>> net-snmp on 6.1 and it seems to have conflict > with > >>> some another snmp process: > >>> > >>> [init_smux] bind failed: Address already in use > >>> Error opening specified endpoint "udp:161" > >>> Server Exiting with code 1 > >>> > >>> i have no anothe snmp application running except > >>> > >> the > >> > >>> net-snmp. > >>> > >>> any ideas? > >>> > >>> > >>> > >>> > >>> > >>> > >>> > > > > > > >>> Cheap talk? > >>> Check out Yahoo! Messenger's low PC-to-Phone > call > >>> > >> rates. > >> > >>> http://voice.yahoo.com > >>> ___ > >>> freebsd-questions@freebsd.org mailing list > >>> > >>> > > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > > >>> To unsubscribe, send any mail to > >>> > >> "[EMAIL PROTECTED]" > >> > >>> > >>> > >> I believe there is no smnp daemon running by > >> default. Maybe you > >> accidentally allready started it ? You might > check > >> it with sockstat -4 > >> | grep 161 > >> > >> -- > >> -Frank Staals > >> > >> > >> > >> > > > > > > > > > > > > > Cheap talk? > > Check out Yahoo! Messenger's low PC-to-Phone call > rates. > > http://voice.yahoo.com > > > > > > > Hmm apparantly there IS a bsndmp running. Didn't see > that one on my > server, anyway on my laptop it wasn't running as I > apparantly disabled it: > > [EMAIL PROTECTED] cat /etc/rc.conf | grep snmpd > bsnmpd_enable="NO" > > that might help I guess > > -- > -Frank Staals > > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: [OT]two networks, one nic
On Tuesday 14 November 2006 07:52, jekillen wrote: > Hello FreeBSD users, > I have been operating under the assumption that > the same network interface card cannot handle two > different networks. But then I seem to have seen > an example in one of the OReill¥ books on networking > that had one interface with one assigned inet address > and also aliased with another address that could only > be on another network. If I understood that right, it > seems to imply that I can use one Network interface > card for at least two different networks, like so; > 192.168.1. and > alias 172.0.0. > or; > 192.168.1. > alias 192.168.2. or you can keep your secondary addresses to a loopback interface: ifconfig create lo1 ifconfig lo1 200.200.200.1/24 ifconfig lo1 alias 200.200.201.1/24 ifconfig lo1 alias 200.200.202.1/24 ifconfig lo1 alias 200.200.203.1/24 ifconfig lo1 alias 200.200.204.1/24 etc > If this is possible is it accomplished via a special routing? No, nothing special. Your box has: network1.address1 network2.address1 your upstream router has: network1.address2 network2.address2 If your router is willing to forward packets to/from your addresses, everything will be correct(read bellow though). > My concern is that I have a laptop with one network > interface, built in, but would like to access it both at > a public static address and a private network address. > Is this possible? > Your private network address will not be routed by your ISP. You have to use "real", routable addresses. These are routable across the internet, the private addresses aren't. They are for private use and should be filtered. Please give more information, if I didn't cover your questions. HTH, Nikos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Question about Ventrilo port at startup
Hi Lowell, The port maintainer wasn't able to reply to my first email, however, he included the following in a reply to my post in questions which I've included in case you should find it useful: Check to make sure your /usr/local/etc/ventrilo_srv.ini file can be read by the ventrilo user/group. chgrp ventrilo /usr/local/etc/ventrilo_srv.ini Also make sure that the log file is writable by the ventrilo user. chown /usr/local/ventrilo-server/ventrilo_srv.log I still am having no luck with it starting up by itself on a reboot, which is my main goal, however, I'll keep on trying and have asked another question. Not sure what else is to be done other than enable it in /etc/rc.conf Thanks Miles On 11/13/06, Lowell Gilbert <[EMAIL PROTECTED]> wrote: Miles <[EMAIL PROTECTED]> writes: > Running 6.1 installed from the most recent .iso CD and sync'd ports > through CVS, I wish to have the Ventrilo port start up as a daemon > upon reboot, however, I'm not having any success in having this > happen. I did some searching with Google and found little information > specific to FreeBSD for Ventrilo at all, let alone a start up > script. The port has one, but it seems to not work, rather it is that > I do not know how to make it work properly. Trying to run it results > in it exiting out without anything starting. > Searching the Handbook, I found that section on rc.d, and modifying a > sample script there I was able to get Ventrilo to start from the > script, however, it still wouldn't work if I put a line in > /etc/rc.conf > ventrilo_enable="YES" That should be enough. Can you try calling the script by hand, giving the "forcestart" parameter? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: net-snmp and 6.1
gahn wrote: thanks. i didn't recall that i activated any snmp but there is a bsnmpd running though: root snmpd 414 13 tcp4 *:199 *:* root snmpd 414 14 udp4 *:161 *:* root snmptrapd 408 10 udp4 *:162 *:* how could i remove it? in rc.conf? or else? thanks --- Frank Staals <[EMAIL PROTECTED]> wrote: gahn wrote: hi: is a generic snmp running with 6.1? i installed net-snmp on 6.1 and it seems to have conflict with some another snmp process: [init_smux] bind failed: Address already in use Error opening specified endpoint "udp:161" Server Exiting with code 1 i have no anothe snmp application running except the net-snmp. any ideas? Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" I believe there is no smnp daemon running by default. Maybe you accidentally allready started it ? You might check it with sockstat -4 | grep 161 -- -Frank Staals Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com Hmm apparantly there IS a bsndmp running. Didn't see that one on my server, anyway on my laptop it wasn't running as I apparantly disabled it: [EMAIL PROTECTED] cat /etc/rc.conf | grep snmpd bsnmpd_enable="NO" that might help I guess -- -Frank Staals ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
net-snmp and 6.1
hi: is a generic snmp running with 6.1? i installed net-snmp on 6.1 and it seems to have conflict with some another snmp process: [init_smux] bind failed: Address already in use Error opening specified endpoint "udp:161" Server Exiting with code 1 i have no anothe snmp application running except the net-snmp. any ideas? Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: net-snmp and 6.1
thanks. i didn't recall that i activated any snmp but there is a bsnmpd running though: root snmpd 414 13 tcp4 *:199 *:* root snmpd 414 14 udp4 *:161 *:* root snmptrapd 408 10 udp4 *:162 *:* how could i remove it? in rc.conf? or else? thanks --- Frank Staals <[EMAIL PROTECTED]> wrote: > gahn wrote: > > hi: > > > > is a generic snmp running with 6.1? i installed > > net-snmp on 6.1 and it seems to have conflict with > > some another snmp process: > > > > [init_smux] bind failed: Address already in use > > Error opening specified endpoint "udp:161" > > Server Exiting with code 1 > > > > i have no anothe snmp application running except > the > > net-snmp. > > > > any ideas? > > > > > > > > > > > > > > > Cheap talk? > > Check out Yahoo! Messenger's low PC-to-Phone call > rates. > > http://voice.yahoo.com > > ___ > > freebsd-questions@freebsd.org mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" > > > > > > > I believe there is no smnp daemon running by > default. Maybe you > accidentally allready started it ? You might check > it with sockstat -4 > | grep 161 > > -- > -Frank Staals > > > Cheap talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. http://voice.yahoo.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
On Mon, Nov 13, 2006 at 10:10:58AM +0100, Frank Staals wrote: > I had the same 'problem'. As said it's not realy a problem since FreeBSD > will hold just fine if you don't have any rather stupid user + pass > combinations. While FreeBSD and OpenSSH are very good, I'm not prepared to rely solely on that. I'd also prefer that the script kiddies not consume my gaming bandwidth by trying to crack my box, so best to just block them at the firewall and make them go somewhere else. Schwab ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
NFS export - how no_root_squash with -maproot=
Hi, I need to set up a NFS export for a client, I have created the dir /export/data I have chown nobody:nogroup and acess chmod 755 on /export/data the requrements are that the export for Linux is /export/data x.x.x.x (rw, no_root_squash) should this be like this when it is configured in FreeBSD /export/data x.x.x.x -maproot=nobody:nogroup -- Klaus ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Blocking SSH Brute-Force Attacks: What Am I Doing Wrong?
On Mon, Nov 13, 2006 at 09:16:35PM +0100, Erik Norgaard wrote: > Honestly, I wouldn't worry about it: review your config and make some > simple choices to reduce the noise, see this article: > > http://www.securityfocus.com/infocus/1876 > But I rather thought that was the point of 'bruteblock' -- it reduces the noise by blackholing the offending IPs for an hour or so. This blackholing doesn't appear to be happening, and I don't understand why. Could it be a permission problem -- syslog doesn't have permission to change the firewall rules? Schwab ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: win32 codecs not fixed?
Tuc at T-B-O-H.NET wrote: >> Yousef Adnan Raffah wrote: >>> I have tried to portsnap this morning in order to see if the security >>> issue with the multimedia/win32-codecs was resolved, which seems like it >>> is not. >>> What does usually happen when such a thing is happening, does the >>> package/port stay restricted until the developer/port owner fix the >>> security issue or does something else happens? >> Run portaudit -F to fetch the most current database. The Issue has been >> removed some time ago by adding the option to not install quicktime (see >> http://www.freshports.org/multimedia/win32-codecs ) >> > Probably needs to remove /var/db/ports/win32-codecs/options and > then reconfigure it w/o Quicktime. Then it won't give the error anymore. > > Is there a better way to have a port "forget" its previous > options? "make config" in the ports' directory (eg multimedia/win32-codecs) will show you the configuration menu (if available) -- Armin Pirkovitsch [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: v6 speed compared to previous versions
On Tue, Nov 14, 2006 at 10:57:01AM +0300, John Smith wrote: > On 11/14/06, Kris Kennaway <[EMAIL PROTECTED]> wrote: > >> When was this corrected? Is 6.2 going to be faster than 6.1? > > > >As I said earlier, some of the most important changes that went into > >6.0 were fixing performance problems in 5.x. Since then it's been a > >process of polishing and improving, instead of architectural changes. > >So 6.2 is expected to be "better" than 6.1 but probably not measurably > >faster for general workloads. > > > >> Did the guys port the libthr changes into 6.2 or not? > > > >Dunno what you mean here. > > > >Kris > > I mean the libthr threading library, MySQL works better with it in 6.1 > so I hope the last changes done by David Xu is ported to 6.2 Dunno, you can check CVS or ask David. Kris pgpv6QjvlnY6h.pgp Description: PGP signature
