DNS /etc/namedb owner hell
Hello, I have the following problem with bind: it is configured to run as bind:bind and after every reboot of the system all files and directories under /etc/namedb become owned by root:wheel so bind is unable is unable to update it's zone files after dhcpd leases IP to any given client. How to fix either owner, or set somewhere that the owner of this folder, subfolder and files is my DNS server? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
DJ500 dead after >= 16 years.
Guys, I need some input about what kind of _new_ printer to buy for my desktops. I'd like to hang the printer off my FBSD box; my Ubuntu platform is probably too far away. At least 3 meters. Circa '01 or '02 I figured my olden DJ500 had cost ~$45/year. Not counting the ink. It kept chugging around until a month or so ago and by now it really is worm out. It makes it's old, clunking, grinding sounds when I power dowwn, but nothing when I boot up. And a friend stopped by this afternoon and checked. Cabling is fine; printer has power. None of the buttons respond; no reset, no formfeed, nada. Only two of the usual three LED's are lit, so it's probably broken, burn-out, or worn out wires somewhere. The problem with buying New---and my wife is threatening me if I buy some older, junker printer---the problem is getting any of these printers that do everything but shine your shoes is: are there drivers to make them work with FreeBSD? I don't care about fax, or features like scanning and copying. About the same with color since most files are code or essays. Nutshell, I'd like anyone's ideas/experiences with some of these new HP/<<< or whateverbrand>>> printers. I wouldn't *mind* if I could scan in text from a techy paper into HTML or PDF or text. But mostly, like 99.44% plain black text. My old deskjet used gs as a filter to print PostScript. Do we have any such plugin support, or are printers still roll-your-own? [FWIW, I can't seem to get CUPS working... altho it maay be my misssing /dev/lpt0.] gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public Service Unix http://jottings.thought.org http://transfinite.thought.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 32 bit FreeBSD compiled binary coredumps on 64 bit(amd) FreeBSD
Am Mittwoch, 20. Februar 2008 07:17:30 schrieb navneet Upadhyay: >I am compiling the binary on 32 bit FreeBSD and running it on 64 > (amd64)bit FreeBSD . FreeBSD says it is possible to do so. >But my application core dumps . I investigated the reason which is > as follows : > > The problem is in the call retval = sysctl(mib, 4, &kp, &sz, NULL, 0); > where sz is size of kp and where kp is a structure of type kinfo_proc. The > size of this structure on 32bit system is 768 and on 64 bit system is 1088. > > The call works on 32 bit system but when run on 64 bit system it coredumps > , because of the size mismatch of kinfo_proc . > > If i hardcode the sz to 1088 then it works on amd64 systems , how do i deal > with it. I am anticipating lot of coredumps like that, what is a generic > solution for such kinds of problems. Without investigating further whether the structure up to byte 768 is different (wrt. structure member offsets, and thus wrt. to hardcoded constants in the binary file), which would be a real showstopper for the i386"-emulation" on amd64 (and thus I can't see it being that way), see the documentation of sysctl: RETURN VALUES Upon successful completion, the value 0 is returned; otherwise the value -1 is returned and the global variable errno is set to indicate the error. ERRORS [ENOMEM] The length pointed to by oldlenp is too short to hold the requested value. So, basically, you should check in the call whether sysctl returned -1 (with errno set to ENOMEM), and enlarge the buffer if so, until it doesn't return -1 anymore. This should handle i386 and amd64 transparently (if the offsets up to byte 768 are equal/similar). In case you're trying to recompile the application on 64-bit, you should use sizeof() anyway to automatically adapt the initial buffer size reserved for the output buffer depending on the definition of the structure (which will also spare you pain if a FreeBSD upgrade changes the structure). -- Heiko Wundram Product & Application Development ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 32 bit FreeBSD compiled binary coredumps on 64 bit(amd) FreeBSD
If i hardcode the sz to 1088 then it works on amd64 systems , how do i deal with it. I am anticipating lot of coredumps like that, what is a generic solution for such kinds of problems. to compile both versions. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD & Linux distro
AFAIK it just depends of software installed, and it can be both.. Yup. That be the case. I think the poster just meant that FreeBSD tends to get software FreeBSD DOES NOT TEND to install anything more than a base system, doesn't start any services than minimum too. everything else is up to user, which i OK that's all. FreeBSD is just an operating system. and fortunately nothing more. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DJ500 dead after >= 16 years.
Gary Kline wrote: Nutshell, I'd like anyone's ideas/experiences with some of these new HP/<<< or whateverbrand>>> printers. I wouldn't *mind* if I could scan in text from a techy paper into HTML or PDF or text. But mostly, like 99.44% plain black text. My old deskjet used gs as a filter to print PostScript. Do we have any such plugin support, or are printers still roll-your-own? [FWIW, I can't seem to get CUPS working... altho it maay be my misssing /dev/lpt0.] I suggest getting a network printer. Most of them support the IPP printing protocol, and if it eats PostScript then it's pretty much guaranteed to work on every operating system under the sun. Saves you from fiddling with drivers for FreeBSD and setting up CUPS. Erik ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FTPD and IExplore
Hi. My problem is i cannot connect to my ftp server (started from inetd) via IExplore or any other web browser. I've added user ftp to enable anonymous logins on my ftp server and it works when connecting via ftp client such as Total Commander. But it doesn't work via any web browser. no it's not because of freebsd version. it's just internet explorer. it's ftp client may work. or may not ;) that's it. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DNS /etc/namedb owner hell
On Wed, Feb 20, 2008 at 10:09:53AM +0200, Deian Popov typed: > Hello, > > I have the following problem with bind: > > it is configured to run as bind:bind and after every reboot of the system > all files and directories under /etc/namedb become owned by root:wheel so > bind is unable is unable to update it's zone files after dhcpd leases IP to > any given client. How to fix either owner, or set somewhere that the owner > of this folder, subfolder and files is my DNS server? Try setting named_chroot_autoupdate to NO in your rc.conf Ruben ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
FTPD and IExplore
Hi. My problem is i cannot connect to my ftp server (started from inetd) via IExplore or any other web browser. I've added user ftp to enable anonymous logins on my ftp server and it works when connecting via ftp client such as Total Commander. But it doesn't work via any web browser. My OS is FreeBSD 6.2. I had 5.4 before, and i didn't had this problem on previous machine. The problem appeared when i freshly reinstalled the operating system. Any suggestions? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Motherboard: Gigabyte GA-N650SLI-DS4
Hi, I am currently replacing my defunct motherboard, I am unable to test the hardware before purchase and I am seeking advice on which motherboard to get. Upon review I have selected a Gigabyte GA-N650SLI-DS4, does FreeBSD work with this board. It does have a nForce 650i (and I am not sure FreeBSD works with it?) If anyone has an alternative suggestion please let me know. The motherboard will have to support (my budget is about < ZAR2000 ~ USD275): o) Intel Core 2 Quad Q6600 o) 4x 800Mhz DDR2 Ram o) 2x SATA HDD o) 2x IDE CDROM Drive o) 2x nVidia 7600 GT Thank you all for your help David ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FTPD and IExplore
klerfe [Bodegas] wrote: Hi. My problem is i cannot connect to my ftp server (started from inetd) via IExplore or any other web browser. I've added user ftp to enable anonymous logins on my ftp server and it works when connecting via ftp client such as Total Commander. But it doesn't work via any web browser. My OS is FreeBSD 6.2. I had 5.4 before, and i didn't had this problem on previous machine. The problem appeared when i freshly reinstalled the operating system. Any suggestions? You probably just have to activate passive ftp in your browsers. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
>>It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. Please correct me if I'm wrong: GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed by default, but it can be installed during installation process if I want to. If I'm wrong, does this mean that I have to connect to Internet during FreeBSD installation? Thanks. Jerry McAllister <[EMAIL PROTECTED]> wrote: On Tue, Feb 19, 2008 at 01:19:51AM -0800, Lone Wolf wrote: > I'm not going to serve any one, I just want to take a small test drive > with FreeBSD . > Regarding my graphic card, it is 32 MB, is it ok? I suppose it depends on the graphics card model, but probably. Check that hardware compatibility list. In this case it would be compatibility with Xorg since that is the display/graphics system. > Does FreeBSD come bundled with GNOME? It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. > Thanks demons! That is daemon, not demon. There is a big difference. jerry > > Olivier Nicole wrote: > I'm thinking to install FreeBSD on my old PC. > > --- > > Processor: Intel Celeron 1.3 GH > > RAM: 192 MB > > --- > > Is my hard ware sufficient? > > Sufficient to do what? > > Until not so long ago, my DNS server was a PIII 550 MHz, with > something like 120 MB RAM, serving about 150 clients. > > I changed the hardware mostly because I had bigger machines available. > > Olivier > > > > Deep into that darkness peering, long I stood there, wondering, fearing, > Doubting, dreaming dreams no mortal ever dreamed before. > E.A Poe > > > > > > > - > Never miss a thing. Make Yahoo your homepage. > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Looking for last minute shopping deals? Find them fast with Yahoo! Search. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FTPD and IExplore
On Wednesday 20 February 2008, Wojciech Puchar wrote: > > Hi. My problem is i cannot connect to my ftp server (started from inetd) > > via IExplore or any other web browser. I've added user ftp to enable > > anonymous logins on my ftp server and it works when connecting via ftp > > client such as Total Commander. But it doesn't work via any web browser. > > no it's not because of freebsd version. it's just internet explorer. it's > ftp client may work. or may not ;) > that's it. This answer leaves a lot to be desired. If you have something useful to add please do, but otherwise leave it up to other people to answer such questions. -- Pieter de Goeje ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
Hi, Lone Wolf wrote: It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. it is an option depending on your installation menthod. Please correct me if I'm wrong: GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed by default, but it can be installed during installation process if I want to. If I'm wrong, does this mean that I have to connect to Internet during FreeBSD installation? Thanks. There are several ways to install FreeBSD. The simplest would be the download of an ISO image of for the first CD, burn it and boot the machine with it. You can then install all packages from the CD without an Internet connection. Normally, all the things needed to have a decent computer are on this CD. GNOME was earlier always included. After FreeBSD is up and running, you can install the ports system and install any program from the ports collection via an Internet connection. Erich ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
Thank you for explanation :) So, if GNOME/KDE can be installed on FreeBSD, what are the advantages of BSD-based desktop systems like DesktopBSD/PC-BSD over FreeBSD? just the graphical installer? Erich Dollansky <[EMAIL PROTECTED]> wrote: Hi, Lone Wolf wrote: >>> It is not bundled. Almost nothing is bundled. > But it is available in ports and installing it is one of the > special options during a standard installtion. > it is an option depending on your installation menthod. > Please correct me if I'm wrong: > GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed > by default, but it can be installed during installation process if I want to. > If I'm wrong, does this mean that I have to connect to Internet during > FreeBSD installation? > Thanks. There are several ways to install FreeBSD. The simplest would be the download of an ISO image of for the first CD, burn it and boot the machine with it. You can then install all packages from the CD without an Internet connection. Normally, all the things needed to have a decent computer are on this CD. GNOME was earlier always included. After FreeBSD is up and running, you can install the ports system and install any program from the ports collection via an Internet connection. Erich Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
npviewer.bin.core
Hello, From time to time I see in my HOME a file: $ ls -l npviewer.bin.core -rw--- 1 guru wheel 12320768 19 feb 15:09 npviewer.bin.core it seems that it's a core file from some nspluginwrapper: # find /usr -name npviewer.bin -print /usr/local/lib/nspluginwrapper/i386/linux/npviewer.bin Is it worth to file a bug report or just remove it by cron job? Thx matthias -- Matthias Apitz Manager Technical Support - OCLC GmbH Gruenwalder Weg 28g - 82041 Oberhaching - Germany t +49-89-61308 351 - f +49-89-61308 399 - m +49-170-4527211 e <[EMAIL PROTECTED]> - w http://www.oclc.org/ http://www.UnixArea.de/ b http://gurucubano.blogspot.com/ Don't top-post, read RFC1855 http://www.faqs.org/rfcs/rfc1855.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
Hi, Lone Wolf wrote: Thank you for explanation :) So, if GNOME/KDE can be installed on FreeBSD, what are the advantages of BSD-based desktop systems like DesktopBSD/PC-BSD over FreeBSD? just the graphical installer? those projects make FreeBSD easier to install and administer. I never tried one of them. Friends did but faced later smaller problems. They all could be solved the FreeBSD way. So, staying with FreeBSD gives the advantage of working with the real thing and the disadvantage of handling more complex matters in real strange ways. It is all so simple for people working with FreeBSD since years but it looks strange for people coming from different professions ... Erich Erich Dollansky <[EMAIL PROTECTED]> wrote: Hi, Lone Wolf wrote: It is not bundled. Almost nothing is bundled. But it is available in ports and installing it is one of the special options during a standard installtion. it is an option depending on your installation menthod. Please correct me if I'm wrong: GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed by default, but it can be installed during installation process if I want to. If I'm wrong, does this mean that I have to connect to Internet during FreeBSD installation? Thanks. There are several ways to install FreeBSD. The simplest would be the download of an ISO image of for the first CD, burn it and boot the machine with it. You can then install all packages from the CD without an Internet connection. Normally, all the things needed to have a decent computer are on this CD. GNOME was earlier always included. After FreeBSD is up and running, you can install the ports system and install any program from the ports collection via an Internet connection. Erich Deep into that darkness peering, long I stood there, wondering, fearing, Doubting, dreaming dreams no mortal ever dreamed before. E.A Poe - Never miss a thing. Make Yahoo your homepage. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Bad performance of 7.0 nfs client with Solaris nfs server
> > we have a FreeBSD 7.0 NFS client (csup today, built world and kernel). > > It mounts a Solaris 10 NFS share. > > We have bad performance with 7.0 (3MB/s). > > We have tried both UDP and TCP mounts, both sync and async. > > This is our mount: > > > > nest.xx.xx:/data/export/hosts/bsd7.xx.xx/ /mnt/nest.xx.xx nfs > > noatime,async,-i,rw,-T,-3 > > > > Both our server (7.0 and Solaris 10) are Gigabit Ethernet, both are HP > > Proliant DL360 i386 (NIC bge0): I have a solaris 9 nfs-server (on sparc) with som TB on HDS attached to it with two qlogic-hba's. These partitions are shared to our webservers via nfs, according to my mrtg-graph I get approx. 8 MB/s at peak. I can probably get more but the requirement is not there. With four-way-servers and FreeBSD 6.2 I had a read- and write-size of 8192. I ended up with this size by copying to and from the nfs-server until I didn't get "nfs server not responding; is alive again" message. Then I upgraded to FreeBSD 7.0 in October 2007 on a new eight-way-server I started to get "not responding; alive again" during load. So I decreased rw-size to the current 2048. When I decreased the size I also avoided another problem (by accident :-) ). When uploading images I sometimes saw ImageMagick's convert went into an (almost) infinite loop, comsuming 100 % cpu (on one core) until killed. Reducing the rw-size eliminated this issue. fstab-entry: my.nfs.server:/archive /archive nfs rw,nfsv3,-w=2048,-r=20480 0 I'm using udp-mounts, does not appear to change performance for my part. HTH. -- regards Claus When lenity and cruelty play for a kingdom, the gentlest gamester is the soonest winner. Shakespeare ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
porting acx driver from dragonfly to fbsd?
I note DragonFly have acx(4) driver, which supports some acx100 and acx111 wireless chips: http://leaf.dragonflybsd.org/cgi/web-man?command=acx§ion=ANY There is a FBSD port for acx100, which is broken for versions > 6: http://www.freebsd.org/cgi/cvsweb.cgi/ports/net/acx100/ but no FBSD port for acx111, though one can presumably start it from http://dev.kewl.org/acx100+111/ Questions: 1. Any reason why acx driver exists on DragonFly but not on FBSD? 2. Is it possible and practical to port the dragonfly acx(4) driver to FBSD? 3. What is easier - to port acx driver from DragonFly to FBSD, or to develop a port for acx100+111? 4. Provided the acx100+111 FBSD port is available and working, what is more efficient - using a kernel acx module or acx built from ports? many thanks anton -- Anton Shterenlikht Room 2.6, Queen's Building Mech Eng Dept Bristol University University Walk, Bristol BS8 1TR, UK Tel: +44 (0)117 928 8233 Fax: +44 (0)117 929 4423 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DNS /etc/namedb owner hell
Ruben de Groot writes: > > I have the following problem with bind: > > > > it is configured to run as bind:bind and after every reboot of the system > > all files and directories under /etc/namedb become owned by root:wheel so > > bind is unable is unable to update it's zone files after dhcpd leases IP to > > any given client. How to fix either owner, or set somewhere that the owner > > of this folder, subfolder and files is my DNS server? > > Try setting named_chroot_autoupdate to NO in your rc.conf Does this still work if you don't run chrooted? To the OP: does this happen every reboot, or when you update the system? I used to have tha latter problem, and fixed it by adding NO_BIND_ETC= true# Do not install files to /etc/namedb to /etc/make.conf. Upsides: no permission mangling, and no automatic file update. Downside: no automatic file update, though you can deal with this using mergeaster. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: port net/acx100 for usr5410 pcmcia wireless FBSD 6.3
Try ndis, it works for my broadcom wireless adapter. Kemian On 19/02/2008, Anton Shterenlikht <[EMAIL PROTECTED]> wrote: > I tried to contact the port maintainer, but haven't heard anything back. > > I'd like to use US Robotics usr5410 wireless pcmcia card on my FBSD 6.3 > laptop. I understand this card is (was?) supported by port net/acx100. > However, the net/acx100/Makefile has: > > BROKEN= Does not compile on FreeBSD >= 6.x > > In addition the port maintainer's website, dev.kewl.org, states that > acx100 is obsolete, and was replaced by acx100+111. However, there > is no FBSD port for acx100+111. > > Is anybody using net/acx100? On what version of FBSD? > > Is anybody using acx100+111? What is the best way to install it? > > Is anybody using usr5410? With what driver? And what version of FBSD? > > Any other advice on getting usr5410 working on FBSD 6.3? > > many thanks > anton > > -- > Anton Shterenlikht > Room 2.6, Queen's Building > Mech Eng Dept > Bristol University > University Walk, Bristol BS8 1TR, UK > Tel: +44 (0)117 928 8233 > Fax: +44 (0)117 929 4423 > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Bad performance of 7.0 nfs client with Solaris nfs server
Claus Guttesen wrote: we have a FreeBSD 7.0 NFS client (csup today, built world and kernel). It mounts a Solaris 10 NFS share. We have bad performance with 7.0 (3MB/s). We have tried both UDP and TCP mounts, both sync and async. This is our mount: nest.xx.xx:/data/export/hosts/bsd7.xx.xx/ /mnt/nest.xx.xx nfs noatime,async,-i,rw,-T,-3 Both our server (7.0 and Solaris 10) are Gigabit Ethernet, both are HP Proliant DL360 i386 (NIC bge0): I have a solaris 9 nfs-server (on sparc) with som TB on HDS attached to it with two qlogic-hba's. These partitions are shared to our webservers via nfs, according to my mrtg-graph I get approx. 8 MB/s at peak. I can probably get more but the requirement is not there. With four-way-servers and FreeBSD 6.2 I had a read- and write-size of 8192. I ended up with this size by copying to and from the nfs-server until I didn't get "nfs server not responding; is alive again" message. Then I upgraded to FreeBSD 7.0 in October 2007 on a new eight-way-server I started to get "not responding; alive again" during load. So I decreased rw-size to the current 2048. When I decreased the size I also avoided another problem (by accident :-) ). When uploading images I sometimes saw ImageMagick's convert went into an (almost) infinite loop, comsuming 100 % cpu (on one core) until killed. Reducing the rw-size eliminated this issue. fstab-entry: my.nfs.server:/archive /archive nfs rw,nfsv3,-w=2048,-r=20480 0 I'm using udp-mounts, does not appear to change performance for my part. HTH. If FreeBSD is your NFS server, you should increase the number of nfsd threads to help with the "not responding" error. I usually run one nfsd thread per active client. Eric ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: what is the meaning of "optimization changed from TIME to SPACE"
In response to ivan dimitrov <[EMAIL PROTECTED]>: > OK, but maybe this is not my case. I am using about 10% ... > "/dev/md0 3.6M318K3.0M 9%/storage/pub/www/ram" > > But dmesg reports continuously: > /storage/pub/www/ram: optimization changed from TIME to SPACE > /storage/pub/www/ram: optimization changed from SPACE to TIME > > about 10 times per sec. > > so, how can i stop this optimization rock-and-roll? You didn't mention that it was flipping back and forth before. I expect that some program is creating files, then deleting them shortly after, resulting in the partition filling up, switching to space opt, then it's not full so it switches back to time opt. However, unless you look at the partition at exactly the right moment, you don't see those files. For example, was the optimization at space at the moment you took that df? You've got a 3.6M partition. I could fill that up accidentally in less than a second. I stand by my original advice to add space. Bump it up to 16M or 32M and see if the problem goes away. Alternately, if you're _really_ worried about what's taking up an unexpected 3.0M of space, you could enable audit and track what programs are creating files there. > Bill Moran <[EMAIL PROTECTED]> wrote: In response to Brian > : > > > ivan dimitrov wrote: > > > After upgrading from freebsd-5.5-R to 6.3-R, I get the following message > > > in dmesg: > > > > > > "/storage/pub/www/ram: optimization changed from TIME to SPACE" > > > > > > I use a ram disk via the md driver. > > > Here is the line from my fstab file: > > > > > > md /storage/pub/www/rammfs rw,-s4m 2 0 > > > > > > Does this mean that there is some sort of error? ...and is there anything > > > that can be done, so that I don't get this message in dmesg? > > > > > > Any help will be greatly appreciated :) > > UFS normally optimizes file placement for performance. Unfortunately, > in order to do this it has to write files in such a way that it > sometimes wastes some space. When the partition gets close to full, > FreeBSD automatically switches to "space optimization" which doesn't > waste any space, but doesn't perform as well. > > The short answer is, "This is happening because your partition is too > close to full. It's not an error, but you should clean up some files > or add space." > > It also has nothing to do with the difference between 5.5 and 6.3. > > -- > Bill Moran > http://www.potentialtech.com > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > > > > - > Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it > now. > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: what is the meaning of "optimization changed from TIME to SPACE"
OK, but maybe this is not my case. I am using about 10% ... "/dev/md0 3.6M318K3.0M 9%/storage/pub/www/ram" But dmesg reports continuously: /storage/pub/www/ram: optimization changed from TIME to SPACE /storage/pub/www/ram: optimization changed from SPACE to TIME about 10 times per sec. so, how can i stop this optimization rock-and-roll? Bill Moran <[EMAIL PROTECTED]> wrote: In response to Brian : > ivan dimitrov wrote: > > After upgrading from freebsd-5.5-R to 6.3-R, I get the following message in > > dmesg: > > > > "/storage/pub/www/ram: optimization changed from TIME to SPACE" > > > > I use a ram disk via the md driver. > > Here is the line from my fstab file: > > > > md /storage/pub/www/rammfs rw,-s4m 2 0 > > > > Does this mean that there is some sort of error? ...and is there anything > > that can be done, so that I don't get this message in dmesg? > > > > Any help will be greatly appreciated :) UFS normally optimizes file placement for performance. Unfortunately, in order to do this it has to write files in such a way that it sometimes wastes some space. When the partition gets close to full, FreeBSD automatically switches to "space optimization" which doesn't waste any space, but doesn't perform as well. The short answer is, "This is happening because your partition is too close to full. It's not an error, but you should clean up some files or add space." It also has nothing to do with the difference between 5.5 and 6.3. -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" - Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: npviewer.bin.core
Matthias Apitz wrote: $ ls -l npviewer.bin.core -rw--- 1 guru wheel 12320768 19 feb 15:09 npviewer.bin.core [snip] # find /usr -name npviewer.bin -print /usr/local/lib/nspluginwrapper/i386/linux/npviewer.bin Is it worth to file a bug report or just remove it by cron job? I would first try to investigate a little more WHY it dumps core. Perhaps you just have a symlink or permission wrong somewhere, are missing a dependency or who knows what else could be causing this. Hell, it might even be a known problem already. If you can't find the cause - and nobody here can either - there's always time for a bug report. But those are just my thoughts, Alphons -- All right, that does it Bill [Donahue]. I'm pretty sure that killing Jesus is not very Christian. -- pope Benedict XVI, South Park episode #158 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Root User logged in at terminal
Grant Peel wrote: Hi all, I installed a new server this weekend and it appears I did not log out befor disconnection the keyboard and monitor. Is the a way through ssh to force a logout of the root user? -Grant You can hijack the terminal using "watch -W". After taking over a terminal, hit CTRL-C to provoke some output and remove any commands that might be left standing. Then you can simply logout. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Root User logged in at terminal
Hi all, I installed a new server this weekend and it appears I did not log out befor disconnection the keyboard and monitor. Is the a way through ssh to force a logout of the root user? -Grant ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Root User logged in at terminal
On Wed, Feb 20, 2008 at 08:27:13AM -0500, Grant Peel wrote: > Hi all, > > I installed a new server this weekend and it appears I did not log out > befor disconnection the keyboard and monitor. > > Is the a way through ssh to force a logout of the root user? Sure. Find out the pid of the shell running on the tty, and kill it. Dan -- Daniel Bye _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ pgpRa7th0IuWa.pgp Description: PGP signature
Re: Root User logged in at terminal
Grant Peel wrote: Is the a way through ssh to force a logout of the root user? Can't you login (over SSH) as a mortal user (must be in wheel), su to root and kill the offending login session? Alphons -- All right, that does it Bill [Donahue]. I'm pretty sure that killing Jesus is not very Christian. -- pope Benedict XVI, South Park episode #158 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Upgrading from FreeBSD 6.2 to FreeBSD 7.0
Hi, On a test system, I'm trying to upgrade FreeBSD 6.2 to 7.0 using the instructions from Ralf Engelschall. http://people.freebsd.org/~rse/upgrade/freebsd-upgrade-6x-7x.txt I'm stuck at compiling the new kernel. Here are the steps I took: - install backward compatibility files localedata-5.4.tbz compat6x-i386-6.x.xx.mm.tbz from: ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-7-current/All also tried upgrading with the files from: ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-7.0-release/All Same result however - install latest FreeBSD Upgrade Toolkit http://people.freebsd.org/~rse/dist/freebsd-adm-1.2.2.tar.gz - upgrade /usr/src $ cd /usr/src && make cleandir reports an error if there is nothing to clean $ cd /usr/adm && make update runs just fine. - upgrade kernel configuration I've added/checked if the options with ">>" in rse's howto are in /sys/i386/conf/GENERIC (or in my case 'hostname -s' /sys/i386/conf/TESTRABIT) I've removed/checked that the options with "<<" are not in TESTRABIT - prepare the upgrade $ mergemaster -p - build new system $ cd /usr/adm && make world-build runs without problems $ make kernel-build PROBS Building kernel+modules (TESTRABIT) -- >>> Kernel build for TESTRABIT started on Wed Feb 20 16:03:46 CET 2008 -- ===> TESTRABIT mkdir -p /usr/obj/usr/src/sys -- >>> stage 1: configuring the kernel -- cd /usr/src/sys/i386/conf; PATH=/usr/obj/usr/src/tmp/legacy/usr/sbin:/usr/obj/usr/src/tmp/legacy/usr/bi n:/usr/obj/usr/src/tmp/legacy/usr/games:/usr/obj/usr/src/tmp/usr/sbin:/usr/o bj/usr/src/tmp/usr/bin:/usr/obj/usr/src/tmp/usr/games:/sbin:/bin:/usr/sbin:/ usr/bin config -d /usr/obj/usr/src/sys/TESTRABIT /usr/src/sys/i386/conf/TESTRABIT /usr/src/sys/i386/conf/TESTRABIT: unknown option "IPSEC_ESP" *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. kernel build duration: 00:00:00 STUCK My guess is that the ipsec (crypto?) source code is missing? Is this correct? If so, where can I find it and where should I put it? Best regards, Hansa ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DJ500 dead after >= 16 years.
On Wed, Feb 20, 2008 at 12:02:25AM -0800, Gary Kline wrote: > > Nutshell, I'd like anyone's ideas/experiences with some of these > new HP/<<< or whateverbrand>>> printers. I wouldn't *mind* if I > could scan in text from a techy paper into HTML or PDF or text. > But mostly, like 99.44% plain black text. My old deskjet used > gs as a filter to print PostScript. Do we have any such plugin > support, or are printers still roll-your-own? [FWIW, I can't > seem to get CUPS working... altho it maay be my misssing > /dev/lpt0.] I have been pleased with my purchase of a Brother HL-5250DN several years ago. Was $250 at the time, usually can be found on sale now for under $200. Refurbished HL-5240's under $100. This is a 30 ppm (rated) laser with ethernet, USB, HPL-6 and Brother's Postscript-3 clone. Also prints duplex. 3rd party toner refills are $20 for roughly 7,000 pages. Drum is rated at 25,000 pages. If it doesn't last that long a new or refurbished printer is cheaper than a replacement drum. Have fond memories of old HP-4000N, HP-4050N, and HP-5000N printers but nothing used was available as inexpensive as the Brother was. The Brother is better suited for my uses as its very quick to warm up from sleep, maybe as fast as my DJ-990. -- David Kelly N4HHE, [EMAIL PROTECTED] Whom computers would destroy, they must first drive mad. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Upgrading from FreeBSD 6.2 to FreeBSD 7.0
Crossposting to -current and -questions is usually not a good idea. This question belongs to -questions only. Hansa <[EMAIL PROTECTED]> wrote: > On a test system, I'm trying to upgrade FreeBSD 6.2 to 7.0 using the > instructions from Ralf Engelschall. > http://people.freebsd.org/~rse/upgrade/freebsd-upgrade-6x-7x.txt > I'm stuck at compiling the new kernel. > [...] > /usr/src/sys/i386/conf/TESTRABIT: unknown option "IPSEC_ESP" The option IPSEC_ESP was removed when KAME was replaced with the FAST_IPSEC implementation. Please remove that line from your kernel config file. Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing b. M. Handelsregister: Registergericht Muenchen, HRA 74606, Geschäftsfuehrung: secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht Mün- chen, HRB 125758, Geschäftsführer: Maik Bachmann, Olaf Erb, Ralf Gebhart FreeBSD-Dienstleistungen, -Produkte und mehr: http://www.secnetix.de/bsd "I learned Java 3 years before Python. It was my language of choice. It took me two weekends with Python before I was more productive with it than with Java." -- Anthony Roberts ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: npviewer.bin.core
"Alphons \"Fonz\" van Werven" writes: > > -rw--- 1 guru wheel 12320768 19 feb 15:09 npviewer.bin.core > > > > Is it worth to file a bug report or just remove it by cron job? > > I would first try to investigate a little more WHY it dumps > core. Perhaps you just have a symlink or permission wrong > somewhere, are missing a dependency or who knows what else could > be causing this. Hell, it might even be a known problem > already. If you can't find the cause - and nobody here can either > - there's always time for a bug report. There are no PRs - open or otherwise - with "npviewer.bin" or "nsplugginwrapper". I'm also having a issue, which may or may not be related. huff@> ps -cjx | grep viewer huff 7087 7077 7045 70450 S ?? 47:42.51 seamonkey-bin huff 39430 7087 7045 70450 Z ??0:04.23 npviewer.bin huff 49304 7087 7045 70450 Z ??0:00.64 npviewer.bin huff 71938 7087 7045 70450 Z ??0:03.01 npviewer.bin Multiple instances, each consuming resources and slowing down the browser. Sometimes there are as any as 20 copies. Killing then doesn't always work, and sometimes crashes X or even the machine. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Upgrading from FreeBSD 6.2 to FreeBSD 7.0
At 10:10 AM 2/20/2008, Hansa wrote: /usr/src/sys/i386/conf/TESTRABIT: unknown option "IPSEC_ESP" *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. kernel build duration: 00:00:00 STUCK My guess is that the ipsec (crypto?) source code is missing? Is this correct? If so, where can I find it and where should I put it? Hi, The options for IPSEC are different in RELENG_7. The KAME implementation is no longer there as its just FAST_IPSEC. So get rid of IPSEC_ESP and just have options IPSEC device crypto in your kernel. ---Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
mouse works on console, not in Xorg
I thought my mouse was toast, until I ctrl-alt-F2'd back to a console, and it works fine there. I don't see this covered in the handbook. I've got two other FreeBSD systems: one 6.3 and one 7.0-RC1, and with both of those you plug the usb mouse in and 'it just works'. I've tried the new system with both no xorg.conf, as well as an xorg.conf that points at /dev/sysmouse and one that points at /dev/ums0, and I'm having no luck here. My brand-new 1680x1050 monitor 'just works', surprisingly! I didn't even have to do the ModeLine in the handbook until I made a new xorg.conf file. Thanks, Steve ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: port net/acx100 for usr5410 pcmcia wireless FBSD 6.3
> On 19/02/2008, Anton Shterenlikht <[EMAIL PROTECTED]> wrote: > > I tried to contact the port maintainer, but haven't heard anything back. > > > > I'd like to use US Robotics usr5410 wireless pcmcia card on my FBSD 6.3 > > laptop. I understand this card is (was?) supported by port net/acx100. > > However, the net/acx100/Makefile has: > > > > BROKEN= Does not compile on FreeBSD >= 6.x > > > > In addition the port maintainer's website, dev.kewl.org, states that > > acx100 is obsolete, and was replaced by acx100+111. However, there > > is no FBSD port for acx100+111. > > > > Is anybody using net/acx100? On what version of FBSD? > > > > Is anybody using acx100+111? What is the best way to install it? > > > > Is anybody using usr5410? With what driver? And what version of FBSD? > > > > Any other advice on getting usr5410 working on FBSD 6.3? > > On Wed, Feb 20, 2008 at 12:21:22PM +, Kemian Dang wrote: > Try ndis, it works for my broadcom wireless adapter. I added ndis to the kernel and built the kernel module using http://www.linuxant.com/usr11gv40q.zip driver. However, when I load the module: # kldstat -vn usr* Id Refs AddressSize Name 21 0xc216c000 3d000usr11g_sys.ko Contains modules: Id Name 180 pci/usr11g_sys 181 cardbus/usr11g_sys 182 pccard/usr11g_sys 183 uhub/usr11g_sys # I get errors. From dmesg: cardbus1: Expecting link target, got 0xed cardbus1: Resource not specified in CIS: id=10, size=2000 cardbus1: Resource not specified in CIS: id=14, size=2 ndis0: mem 0x8802-0x88021fff,0x8800-0x8801 irq 11 at device 0.0 on cardbus1 ndis0: NDIS API version: 5.1 ndis0: init handler failed device_attach: ndis0 attach returned 6 What am I doing wrong? -- Anton Shterenlikht Room 2.6, Queen's Building Mech Eng Dept Bristol University University Walk, Bristol BS8 1TR, UK Tel: +44 (0)117 928 8233 Fax: +44 (0)117 929 4423 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FTPD and IExplore
that's it. This answer leaves a lot to be desired. If you have something useful to add please do, but otherwise leave it up to other people to answer such questions. -- Pieter de Goeje already added - it is not FreeBSD FTPD's fault. so what else? ask microsoft for more ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DNS /etc/namedb owner hell
Thank you both, you solved the problem! On Wed, Feb 20, 2008 at 3:17 PM, Robert Huff <[EMAIL PROTECTED]> wrote: > Ruben de Groot writes: > > > > I have the following problem with bind: > > > > > > it is configured to run as bind:bind and after every reboot of the > system > > > all files and directories under /etc/namedb become owned by > root:wheel so > > > bind is unable is unable to update it's zone files after dhcpd leases > IP to > > > any given client. How to fix either owner, or set somewhere that the > owner > > > of this folder, subfolder and files is my DNS server? > > > > Try setting named_chroot_autoupdate to NO in your rc.conf > > Does this still work if you don't run chrooted? >To the OP: does this happen every reboot, or when you update the > system? I used to have tha latter problem, and fixed it by adding > > NO_BIND_ETC= true# Do not install files to /etc/namedb > >to /etc/make.conf. Upsides: no permission mangling, and no > automatic file update. Downside: no automatic file update, though > you can deal with this using mergeaster. > > >Robert Huff > > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
On Wed, Feb 20, 2008 at 03:34:31AM -0800, Lone Wolf wrote: > >>It is not bundled. Almost nothing is bundled. > But it is available in ports and installing it is one of the > special options during a standard installtion. > > Please correct me if I'm wrong: > GNOME (or KDE) in included in FreeBSD downloaded file but it isn't installed > by default, but it can be installed during installation process if I want to. > If I'm wrong, does this mean that I have to connect to Internet during > FreeBSD installation? > Thanks. This depends on which ISO you use and your method of installation. I normally just use the cd to load the installation programs - sysinstall - and download everything over the net during installation. But, you can install from the stuff on the CD set and Gnome and KDE are in that set as well as many other things. Note that ports are continuously updated, so the one you install over the net could be newer than the one from the CD. jerry > > Jerry McAllister <[EMAIL PROTECTED]> wrote: On Tue, Feb 19, 2008 at > 01:19:51AM -0800, Lone Wolf wrote: > > > I'm not going to serve any one, I just want to take a small test drive > > with FreeBSD . > > Regarding my graphic card, it is 32 MB, is it ok? > > I suppose it depends on the graphics card model, but probably. > Check that hardware compatibility list. In this case it would > be compatibility with Xorg since that is the display/graphics system. > > > Does FreeBSD come bundled with GNOME? > > It is not bundled. Almost nothing is bundled. > But it is available in ports and installing it is one of the > special options during a standard installtion. > > > Thanks demons! > > That is daemon, not demon. > There is a big difference. > > jerry > > > > > Olivier Nicole wrote: > I'm thinking to install FreeBSD on my old PC. > > > --- > > > Processor: Intel Celeron 1.3 GH > > > RAM: 192 MB > > > --- > > > Is my hard ware sufficient? > > > > Sufficient to do what? > > > > Until not so long ago, my DNS server was a PIII 550 MHz, with > > something like 120 MB RAM, serving about 150 clients. > > > > I changed the hardware mostly because I had bigger machines available. > > > > Olivier > > > > > > > > Deep into that darkness peering, long I stood there, wondering, > > fearing, Doubting, dreaming dreams no mortal ever dreamed before. > > E.A Poe > > > > > > > > > > > > > > - > > Never miss a thing. Make Yahoo your homepage. > > ___ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > > > > > > Deep into that darkness peering, long I stood there, wondering, fearing, > Doubting, dreaming dreams no mortal ever dreamed before. > E.A Poe > > > > > > > - > Looking for last minute shopping deals? Find them fast with Yahoo! Search. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
security of a new installation / steps to take
Dear all, In a matter of weeks we will be moving our office "server" replacing it with a dedicated server machine functioning at an ISP's location. I have spoken to them and they use Fedora so they won't be able to help me much (besides we're not really prepared to pay them for administrative work). Obviously, I want to keep using FreeBSD so they promised to set up a basic installation so that I can remotely connect to the server, configure it, install userland, etc. So far I have had FreeBSD systems only in office so I used my hardware firewall (Dlink DFL 700) to block access to services on ports 22, etc. Now, at the ISP I won't be able to do this so I will need to be a lot more careful about security issues. I am planning to make a list of steps I need to take to configure the OS to my liking and install applications I need. However, I would really, really love to have some advice from you re the basic steps. For example, I guess I will need to make friends with pf firewall (I did use it but not extensively due to the hardware router in place). I will need to disallow direct (3306) access to mysql database (again pf thing?) and the like. In any case, many thanks for your hints, tips, links to get started (I actually plan to use an old box in office to test-install everything and only then do the same remotely). I have been using FreeBSD for 1,5 year but I know how little I know so I'm ready to learn. Thanks for FreeBSD and your help! -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
PF connection pool + squid 3 oddity
Hello, I have very odd problem with pf connection pool(2 ISPs) and squid 3. Just to mention, I support 3 other networks without connection pool. All of them work using squid and pf but do not use connection pool. If I setup my browser to use proxy (e.g. gateway port 3128), all traffic passes through squid. If I use rdr rule (as I should) I am unable to browse web. My question is what is the difference between the request from browser instructed to use proxy, and the rdr rule of pf. Why are my requests dying? I will not attach squid.conf since I have changed just the allowed network and have added "transparent".Here is my sample pf.conf: lan_net = "192.168.0.0/24" int_if = "rl0" ext_if1 = "dc0" ext_if2 = "rl1" ext_gw1 = "X1" ext_gw2 = "X2" local_host = "127.0.0.1" # define ports ports_in = "{9000}" ports_out = "{21, 25, 53, 80, 110, 443, 1863, 1194, 5190, 5222, 9000}" # define allowed hosts table persist file "/etc/allowed" # skip l0 set skip on lo0 # default block policy set block-policy drop # normalize packets scrub in all fragment reassemble # squid it #rdr on $int_if inet proto tcp to port 80 -> $local_host port 3128 # nat outgoing connections on each internet interface # nat on $ext_if1 from $lan_net to any -> ($ext_if1) # nat on $ext_if2 from $lan_net to any -> ($ext_if2) nat on $ext_if1 from to any -> ($ext_if1) nat on $ext_if2 from to any -> ($ext_if2) # spoof protection antispoof quick for {$int_if, $ext_if1, $ext_if2} # default deny block in log from any to any block out log from any to any # pass all outgoing packets on internal interface pass out on $int_if from any to $lan_net # pass in quick any packets destined for the gateway itself pass in quick on $int_if from $lan_net to $int_if pass out quick on $int_if from $int_if to $lan_net # load balance outgoing tcp traffic from internal network. pass in on $int_if route-to \ { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin \ proto tcp from $lan_net to any flags S/SA modulate state # load balance outgoing udp and icmp traffic from internal network pass in on $int_if route-to \ { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin \ proto { udp, icmp } from $lan_net to any keep state # general "pass in" rules for external interfaces pass in on $ext_if1 proto tcp from any to $ext_if1 port $ports_in pass in on $ext_if2 proto tcp from any to $ext_if2 port $ports_in # general "pass out" rules for external interfaces pass out on $ext_if1 proto tcp from any to any port $ports_out flags S/SA modulate state pass out on $ext_if1 proto udp from any to any port $ports_out keep state pass out on $ext_if1 proto icmp from any to any keep state pass out on $ext_if2 proto tcp from any to any port $ports_out flags S/SA modulate state pass out on $ext_if2 proto udp from any to any port $ports_out keep state pass out on $ext_if2 proto icmp from any to any keep state # route packets from any IPs on $ext_if1 to $ext_gw1 and the same for # $ext_if2 and $ext_gw2 pass out on $ext_if1 route-to ($ext_if2 $ext_gw2) from $ext_if2 to any pass out on $ext_if2 route-to ($ext_if1 $ext_gw1) from $ext_if1 to any Thanks in advance. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: security of a new installation / steps to take
On Feb 20, 2008 11:02 AM, Zbigniew Szalbot <[EMAIL PROTECTED]> wrote: > Dear all, > > In a matter of weeks we will be moving our office "server" replacing > it with a dedicated server machine functioning at an ISP's location. I > have spoken to them and they use Fedora so they won't be able to help > me much (besides we're not really prepared to pay them for > administrative work). Obviously, I want to keep using FreeBSD so they > promised to set up a basic installation so that I can remotely connect > to the server, configure it, install userland, etc. > > So far I have had FreeBSD systems only in office so I used my hardware > firewall (Dlink DFL 700) to block access to services on ports 22, etc. > Now, at the ISP I won't be able to do this so I will need to be a lot > more careful about security issues. I am planning to make a list of > steps I need to take to configure the OS to my liking and install > applications I need. However, I would really, really love to have some > advice from you re the basic steps. > > For example, I guess I will need to make friends with pf firewall (I > did use it but not extensively due to the hardware router in place). I > will need to disallow direct (3306) access to mysql database (again pf > thing?) and the like. > > In any case, many thanks for your hints, tips, links to get started (I > actually plan to use an old box in office to test-install everything > and only then do the same remotely). I have been using FreeBSD for 1,5 > year but I know how little I know so I'm ready to learn. > > Thanks for FreeBSD and your help! > > -- > Zbigniew Szalbot For PF, see: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-pf.html and http://www.openbsd.org/faq/pf/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: mouse works on console, not in Xorg
Steve Franks wrote: I thought my mouse was toast, until I ctrl-alt-F2'd back to a console, and it works fine there. I don't see this covered in the handbook. I've got two other FreeBSD systems: one 6.3 and one 7.0-RC1, and with both of those you plug the usb mouse in and 'it just works'. I've tried the new system with both no xorg.conf, as well as an xorg.conf that points at /dev/sysmouse and one that points at /dev/ums0, and I'm having no luck here. My brand-new 1680x1050 monitor 'just works', surprisingly! I didn't even have to do the ModeLine in the handbook until I made a new xorg.conf file. If it works on the console, /dev/sysmouse aught to be the right one. Please post the InputDevice section for your mouse. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
> I normally just use the cd to load the installation programs - sysinstall - > and download everything over the net during installation. I have v6.2 cd but I am going to try 7.0, but I don't mind if the KDE/app is latest. So do you think I can: 1. boot with 6.2CD, run sysinstall, then install v7.0 over the network 2. install kde or other app to v7.0 installation from a 6.2 CD Thanks. Arthur ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
On Wed, Feb 20, 2008 at 11:14:52AM -0500, arthur wrote: > > I normally just use the cd to load the installation programs - > sysinstall - > > and download everything over the net during installation. > > I have v6.2 cd but I am going to try 7.0, but I don't mind if the KDE/app is > latest. > > So do you think I can: > > 1. boot with 6.2CD, run sysinstall, then install v7.0 over the network > > 2. install kde or other app to v7.0 installation from a 6.2 CD No. You really want to download the 7.0 ISO and burn it and install the applications intended for that level. You could make it work, but you don't want to. jerry > > Thanks. > > Arthur > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Root User logged in at terminal
yes ps axt|grep bash (or sh or csh or what shell you use as root) and find what is on local terminal (these beginning with "v") and then kill -HUP process number On Wed, 20 Feb 2008, Grant Peel wrote: Hi all, I installed a new server this weekend and it appears I did not log out befor disconnection the keyboard and monitor. Is the a way through ssh to force a logout of the root user? -Grant ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: security of a new installation / steps to take
On Wed, 20 Feb 2008 17:02:22 +0100 "Zbigniew Szalbot" <[EMAIL PROTECTED]> wrote: > > In a matter of weeks we will be moving our office "server" replacing > it with a dedicated server machine functioning at an ISP's location. I > have spoken to them and they use Fedora so they won't be able to help > me much (besides we're not really prepared to pay them for > administrative work). Obviously, I want to keep using FreeBSD so they > promised to set up a basic installation so that I can remotely connect > to the server, configure it, install userland, etc. > > So far I have had FreeBSD systems only in office so I used my hardware > firewall (Dlink DFL 700) to block access to services on ports 22, etc. > Now, at the ISP I won't be able to do this so I will need to be a lot > more careful about security issues. I am planning to make a list of > steps I need to take to configure the OS to my liking and install > applications I need. However, I would really, really love to have some > advice from you re the basic steps. > > For example, I guess I will need to make friends with pf firewall (I > did use it but not extensively due to the hardware router in place). I > will need to disallow direct (3306) access to mysql database (again pf > thing?) and the like. Build a "deny by default" firewall. There are lots of advantages to it. See my explanation of my personal server: http://www.potentialtech.com/cms/node/16 Don't apply that technique blindly, the policy I use there is not appropriate for everyone. Rather, read through that to understand more about how to create a deny by default ruleset and adjust the details to meet your needs. Another thing that's extremely powerful is integrity monitoring using something like Tripwire or Samhain. If you're building a firewall remotely, create a cron job that disables the firewall every 30 minutes. (i.e. pfctl -d). Then, if you tweak your firewall rules in such a way that you lock yourself out, you just need to wait 30 minutes before you can get back in. Once you're sure your rules are working as you want, disable the cron job. Always leave yourself a back door (see the whitelist rule I have in the link above) so you don't accidentally get locked out. If your hosting provider can give you a serial console into the machine, that's the best option, but it's getting less commonly available these days. And don't be afraid to ask specific questions if you get stuck on details while you're setting it up. > In any case, many thanks for your hints, tips, links to get started (I > actually plan to use an old box in office to test-install everything > and only then do the same remotely). I have been using FreeBSD for 1,5 > year but I know how little I know so I'm ready to learn. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: port net/acx100 for usr5410 pcmcia wireless FBSD 6.3
Try add it to the /boot/loader.conf and restart to see whether it works. My ndis0 can not get response from "ifconfig ndis0 scan", but I can give it the ssid manually and make it work. kemian On 20/02/2008, Anton Shterenlikht <[EMAIL PROTECTED]> wrote: > > On 19/02/2008, Anton Shterenlikht <[EMAIL PROTECTED]> wrote: > > > I tried to contact the port maintainer, but haven't heard anything back. > > > > > > I'd like to use US Robotics usr5410 wireless pcmcia card on my FBSD 6.3 > > > laptop. I understand this card is (was?) supported by port net/acx100. > > > However, the net/acx100/Makefile has: > > > > > > BROKEN= Does not compile on FreeBSD >= 6.x > > > > > > In addition the port maintainer's website, dev.kewl.org, states that > > > acx100 is obsolete, and was replaced by acx100+111. However, there > > > is no FBSD port for acx100+111. > > > > > > Is anybody using net/acx100? On what version of FBSD? > > > > > > Is anybody using acx100+111? What is the best way to install it? > > > > > > Is anybody using usr5410? With what driver? And what version of FBSD? > > > > > > Any other advice on getting usr5410 working on FBSD 6.3? > > > > On Wed, Feb 20, 2008 at 12:21:22PM +, Kemian Dang wrote: > > Try ndis, it works for my broadcom wireless adapter. > > I added ndis to the kernel and built the kernel module using > http://www.linuxant.com/usr11gv40q.zip driver. > > However, when I load the module: > > # kldstat -vn usr* > Id Refs AddressSize Name > 21 0xc216c000 3d000usr11g_sys.ko > Contains modules: > Id Name > 180 pci/usr11g_sys > 181 cardbus/usr11g_sys > 182 pccard/usr11g_sys > 183 uhub/usr11g_sys > # > > I get errors. From dmesg: > > cardbus1: Expecting link target, got 0xed > cardbus1: Resource not specified in CIS: id=10, size=2000 > cardbus1: Resource not specified in CIS: id=14, size=2 > ndis0: mem > 0x8802-0x88021fff,0x8800-0x8801 irq 11 at device 0.0 on cardbus1 > ndis0: NDIS API version: 5.1 > ndis0: init handler failed > device_attach: ndis0 attach returned 6 > > > What am I doing wrong? > > -- > Anton Shterenlikht > Room 2.6, Queen's Building > Mech Eng Dept > Bristol University > University Walk, Bristol BS8 1TR, UK > Tel: +44 (0)117 928 8233 > Fax: +44 (0)117 929 4423 > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is my hard ware sufficient?
Got it. Looks I will go with the floppy boot (don't want burn too many CD's, and burning CDRW is slower than boot from floppy). Thank you for the quick response. Arthur - Original Message - From: "Jerry McAllister" <[EMAIL PROTECTED]> To: "arthur" <[EMAIL PROTECTED]> Cc: "Jerry McAllister" <[EMAIL PROTECTED]>; "Lone Wolf" <[EMAIL PROTECTED]>; Sent: Wednesday, February 20, 2008 11:13 AM Subject: Re: Is my hard ware sufficient? > On Wed, Feb 20, 2008 at 11:14:52AM -0500, arthur wrote: > > > > I normally just use the cd to load the installation programs - > > sysinstall - > > > and download everything over the net during installation. > > > > I have v6.2 cd but I am going to try 7.0, but I don't mind if the KDE/app is > > latest. > > > > So do you think I can: > > > > 1. boot with 6.2CD, run sysinstall, then install v7.0 over the network > > > > 2. install kde or other app to v7.0 installation from a 6.2 CD > > No. You really want to download the 7.0 ISO and burn it > and install the applications intended for that level. > You could make it work, but you don't want to. > > jerry > > > > > Thanks. > > > > Arthur > > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Computers that us FreeBSD. HELP!!
On Tue, Feb 19, 2008 at 09:38:12AM -0700, Ryan Jenkins wrote: > Jerry, > > The function of the machines we are looking for is a Tower and an All-in-One > computer that will run a tracking software and only tracking software. The > software is based off the FreeBSD operating system. The software is a > general program and doesn't really have any fancy to it. For instance a > customer uses an i-Button to log into a machine and from there the software > tracks the customers time and allocates promotion points to the Customer > based on time spend on the machines. > > I have attached a sheet to this email that shows the basic components of the > current systems we are using right now. The Software Programmers have told > me that this program will run on a machine with components from at least 8 > years ago, so the system is fancy. > > The peripherals that are connected to these systems are POS Thermal Printer, > i-Button Reader, 15" ELo Touch Screen Monitor, Simple Laser Printer and a > Keyboard with a mouse if needed. First of all, always keep the list in the reply. Don't just continue asking one person or responder, unless you and they have some side thing to discuss and agree to take it off list. This is both the polite thing and has a very big practical aspect. The person responding to one part of the question, may not be the one who can respond to the rest of it. You want the whole list to see and be able to respond. Also, the list is archived in a number of places and if a solution is posted, it can assist persons in the future who can search one of the archives. Second, I don't know anything about the applications you are interested in running. If they run under FreeBSD now, then they will run on a new machine as long as it has the needed connectors perripherals and drivers.Almost any of the machines that are currently made can be configured with most peripherals and connectors. Since you want a tower, then just look at the vendors listed in that great URL Ted posted and pick an appropriately configured tower model. Any of them will work. Just get enough memory and disk and components to suit your applications. jerry > > > Ryan Jenkins > > P.O. Box 21138 > P: 406 896-9900 > F: 406 896-0045 > C: 406 208-8193 > Email: > [EMAIL PROTECTED] > > Confidentiality Statement: > This e-mail contains confidential information which also may be privileged. > Unless you are the addressee (or authorized to receive for the addressee), > you may not copy, use, disclose, or distribute the e-mail message or any > information contained in the message. If you have received this e-mail > message in error, please advise the sender by replying to this message or by > telephone and then promptly delete it. > > -Original Message- > From: Jerry McAllister [mailto:[EMAIL PROTECTED] > Sent: Tuesday, February 19, 2008 8:30 AM > To: Ted Mittelstaedt > Cc: [EMAIL PROTECTED]; freebsd-questions@freebsd.org > Subject: Re: Computers that us FreeBSD. HELP!!! > > On Mon, Feb 18, 2008 at 11:19:57PM -0800, Ted Mittelstaedt wrote: > > > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] Behalf Of Ryan > > > Jenkins > > > Sent: Monday, February 18, 2008 4:20 PM > > > To: freebsd-questions@freebsd.org > > > Subject: Computers that us FreeBSD. HELP!!! > > > Importance: Low > > > > > > > > > Hello, > > > > > > I currently have a Computer System that is based off the FreeBSD > > > Operating System and I am trying to find a new supplier of hardware. > > > Right now I am having a hard time finding a Computer Manufacture > > > that can make a system that uses FreeBSD. > > > > Hi Ryan, > > > > Please go here: > > > > http://www.freebsd.org/commercial/hardware.html > > > > Several of the hardware vendors on this list can supply you with > > ready-to-run FreeBSD workstations and servers, loaded to your > > specifications. > > Very good link. Covers all the ones I know of and a lot more. > > jerry > > > > > Ted Mittelstaedt > > > > ___ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Computers that us FreeBSD. HELP!!
Jerry, The first section you have below. I am a little confused because I am not sure what you refer to? In my emails to you I have just done Reply's instead of Reply to All, but I think that is what you may be talking about. Where are you located, I see your email is MSU.edu, what University are you with? Ryan Jenkins P.O. Box 21138 P: 406 896-9900 F: 406 896-0045 C: 406 208-8193 Email: [EMAIL PROTECTED] Confidentiality Statement: This e-mail contains confidential information which also may be privileged. Unless you are the addressee (or authorized to receive for the addressee), you may not copy, use, disclose, or distribute the e-mail message or any information contained in the message. If you have received this e-mail message in error, please advise the sender by replying to this message or by telephone and then promptly delete it. -Original Message- From: Jerry McAllister [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 20, 2008 10:12 AM To: Ryan Jenkins Cc: [EMAIL PROTECTED] Subject: Re: Computers that us FreeBSD. HELP!! On Tue, Feb 19, 2008 at 09:38:12AM -0700, Ryan Jenkins wrote: > Jerry, > > The function of the machines we are looking for is a Tower and an > All-in-One computer that will run a tracking software and only > tracking software. The software is based off the FreeBSD operating > system. The software is a general program and doesn't really have any > fancy to it. For instance a customer uses an i-Button to log into a > machine and from there the software tracks the customers time and > allocates promotion points to the Customer based on time spend on the machines. > > I have attached a sheet to this email that shows the basic components > of the current systems we are using right now. The Software > Programmers have told me that this program will run on a machine with > components from at least 8 years ago, so the system is fancy. > > The peripherals that are connected to these systems are POS Thermal > Printer, i-Button Reader, 15" ELo Touch Screen Monitor, Simple Laser Printer and a > Keyboard with a mouse if needed. First of all, always keep the list in the reply. Don't just continue asking one person or responder, unless you and they have some side thing to discuss and agree to take it off list. This is both the polite thing and has a very big practical aspect. The person responding to one part of the question, may not be the one who can respond to the rest of it. You want the whole list to see and be able to respond. Also, the list is archived in a number of places and if a solution is posted, it can assist persons in the future who can search one of the archives. Second, I don't know anything about the applications you are interested in running. If they run under FreeBSD now, then they will run on a new machine as long as it has the needed connectors perripherals and drivers.Almost any of the machines that are currently made can be configured with most peripherals and connectors. Since you want a tower, then just look at the vendors listed in that great URL Ted posted and pick an appropriately configured tower model. Any of them will work. Just get enough memory and disk and components to suit your applications. jerry > > > Ryan Jenkins > > P.O. Box 21138 > P: 406 896-9900 > F: 406 896-0045 > C: 406 208-8193 > Email: > [EMAIL PROTECTED] > > Confidentiality Statement: > This e-mail contains confidential information which also may be privileged. > Unless you are the addressee (or authorized to receive for the > addressee), you may not copy, use, disclose, or distribute the e-mail > message or any information contained in the message. If you have > received this e-mail message in error, please advise the sender by > replying to this message or by telephone and then promptly delete it. > > -Original Message- > From: Jerry McAllister [mailto:[EMAIL PROTECTED] > Sent: Tuesday, February 19, 2008 8:30 AM > To: Ted Mittelstaedt > Cc: [EMAIL PROTECTED]; freebsd-questions@freebsd.org > Subject: Re: Computers that us FreeBSD. HELP!!! > > On Mon, Feb 18, 2008 at 11:19:57PM -0800, Ted Mittelstaedt wrote: > > > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] Behalf Of Ryan > > > Jenkins > > > Sent: Monday, Feb
Re: security of a new installation / steps to take
Hello, 2008/2/20, Matthew Seaman <[EMAIL PROTECTED]>: > Make sure you track [EMAIL PROTECTED] and apply any system patches > in a timely manner. Also make full use of portaudit(1) and generally ensure > that you are running up to date versions of any ported software. Thaaanks! Ah... this brings me to one more question. I love 6.3 but should I wait to install 7.0? I mean I'd hate having to update a few months after the server is up and running. Especially, that any updates will be remotely handled (fortunately the ISP promises to help if need be - they are excellent and very responsive in this respect). -- Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: security of a new installation / steps to take
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Zbigniew Szalbot wrote: > So far I have had FreeBSD systems only in office so I used my hardware > firewall (Dlink DFL 700) to block access to services on ports 22, etc. > Now, at the ISP I won't be able to do this so I will need to be a lot > more careful about security issues. I am planning to make a list of > steps I need to take to configure the OS to my liking and install > applications I need. However, I would really, really love to have some > advice from you re the basic steps. The important mantra to remember when securing a machine that is exposed to the internet is: What does not listen on the network cannot be used to compromise you. In practice, this means run sockstat and look for all the processes that are listening for connections on your external network interfaces. If you don't need it, then don't run it. If you don't need external access to it, then bind it to the loopback interface[1] or use it via a Unix domain socket (eg. 'skip-networking' in MySQL configuration) If you do need it, then strongly prefer encrypted versions of network protocols: IMAPS rather than IMAP, HTTPS instead of HTTP. This is particularly important if people are using password based authentication - -- otherwise you'ld be transmitting those passwords over the net in plain, where they are vulnerable to snooping. Ensure that any software that does listen on the network runs as an unprivileged UID. Ensure that the login accounts used for such daemons do not have real shells (/usr/sbin/nologin is a good choice) and preferably either have a non-existent home directory, or a home directory that the process does not own and cannot write to. The current working directory of the process (frequently /, but you can use 'fstat -p pid' and look for the 'wd' entry to find this) should similarly be unwritable by the process. If the process can run chrooted or jailed then it's a good idea to make it so. Be very wary of many web based applications, particularly those written in PHP. Sad to say, but many web developers just don't have a clue about security and commit some enormous howlers. They also love writing web- accessible configuration scripts, which you should take care to disable by changing filesystem permissions once you've done the configuring parts and also block or severely restrict access to by your webserver configuration. If anyone proposes running any PHP code that requires you to set 'register_globals' to 'on' in php.ini; well, suffice it to say, no sensible jury would convict should that person come to an ... unfortunate ... end. Make sure you track [EMAIL PROTECTED] and apply any system patches in a timely manner. Also make full use of portaudit(1) and generally ensure that you are running up to date versions of any ported software. If you can do all the above effectively, then your machine should be pretty secure as is, even without running any severe filtering through the built in firewalls. Cheers, Matthew [1] People that understand the implications of the weak routing model as commonly seen in Unix servers (and certainly those that cannot control access to the same layer-2 network their server is on) will want to protect the loopback against spoofing attacks. The following 3-line pf.conf will do the trick: scrub in pass all antispoof log quick for lo0 - -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHvGG68Mjk52CukIwRCNfQAJ9yaAXQzhNgfF31V+AtArEyDvdPigCffAuG afcraoWgVfPnUlSj4S8Zswk= =uZ1e -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: diskLabelCommit fails within a sysinstall script?
On Tue, Feb 19, 2008 at 5:33 PM, Jerry McAllister <[EMAIL PROTECTED]> wrote: > Just to be clear; I am not suggesting deleting that 'c' partition. Thanks for the warning. I never manually delete the ad0s1c partition, but I'm using Qemu so I do usually rebuild the underlying image to clear previous state. That doesn't make things work. (I also tried *not* doing so, but the results aren't any different.) How would I check what the fstype of a bsdlabel partition is? Something I've just noticed is that even invoking sysinstall interactively doesn't change the outcome. I believe this means the FreeSBIE environment I've got set up is bad in some way. I don't understand why sysinstall would care but apparently it does. Does anyone else use mediaSetUFS or equivalent for installation? Jeff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: diskLabelCommit fails within a sysinstall script?
On Wed, Feb 20, 2008 at 12:17:49PM -0500, Jeff Gold wrote: > On Tue, Feb 19, 2008 at 5:33 PM, Jerry McAllister <[EMAIL PROTECTED]> wrote: > > Just to be clear; I am not suggesting deleting that 'c' partition. > > Thanks for the warning. I never manually delete the ad0s1c partition, > but I'm using Qemu so I do usually rebuild the underlying image to > clear previous state. That doesn't make things work. (I also tried > *not* doing so, but the results aren't any different.) How would I > check what the fstype of a bsdlabel partition is? > > Something I've just noticed is that even invoking sysinstall > interactively doesn't change the outcome. I believe this means the > FreeSBIE environment I've got set up is bad in some way. I don't > understand why sysinstall would care but apparently it does. Does > anyone else use mediaSetUFS or equivalent for installation? You are beyond my experience here. And I have never tried FreeSBIE [yet]. jerry > >Jeff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Getting FreeBSD 5.2.1
Hello, I would like to get the FreeBSD 5.2.1 iso image for PowerPC. Please let me know where I can get them. -- Thank you, Karthick Jayaraman ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: security of a new installation / steps to take
On Wed, Feb 20, 2008 at 05:22:02PM +, Matthew Seaman wrote: This is a very nice summary. I will steal it and post it on the wall in our cube-maze hallway. Thanks, jerry > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Zbigniew Szalbot wrote: > > > So far I have had FreeBSD systems only in office so I used my hardware > > firewall (Dlink DFL 700) to block access to services on ports 22, etc. > > Now, at the ISP I won't be able to do this so I will need to be a lot > > more careful about security issues. I am planning to make a list of > > steps I need to take to configure the OS to my liking and install > > applications I need. However, I would really, really love to have some > > advice from you re the basic steps. > > The important mantra to remember when securing a machine that is exposed > to the internet is: > > What does not listen on the network cannot be used to compromise you. > > In practice, this means run sockstat and look for all the processes > that are listening for connections on your external network interfaces. > > If you don't need it, then don't run it. > > If you don't need external access to it, then bind it to the loopback > interface[1] or use it via a Unix domain socket (eg. 'skip-networking' in > MySQL configuration) > > If you do need it, then strongly prefer encrypted versions of network > protocols: IMAPS rather than IMAP, HTTPS instead of HTTP. This is > particularly important if people are using password based authentication > - -- otherwise you'ld be transmitting those passwords over the net in plain, > where they are vulnerable to snooping. > > Ensure that any software that does listen on the network runs as an > unprivileged UID. Ensure that the login accounts used for such daemons do > not have real shells (/usr/sbin/nologin is a good choice) and preferably > either have a non-existent home directory, or a home directory that the > process does not own and cannot write to. The current working directory > of the process (frequently /, but you can use 'fstat -p pid' and look > for the 'wd' entry to find this) should similarly be unwritable by > the process. If the process can run chrooted or jailed then it's a good > idea to make it so. > > Be very wary of many web based applications, particularly those written > in PHP. Sad to say, but many web developers just don't have a clue about > security and commit some enormous howlers. They also love writing web- > accessible configuration scripts, which you should take care to disable by > changing filesystem permissions once you've done the configuring parts > and also block or severely restrict access to by your webserver configuration. > If anyone proposes running any PHP code that requires you to set > 'register_globals' > to 'on' in php.ini; well, suffice it to say, no sensible jury would > convict should that person come to an ... unfortunate ... end. > > Make sure you track [EMAIL PROTECTED] and apply any system patches > in a timely manner. Also make full use of portaudit(1) and generally ensure > that you are running up to date versions of any ported software. > > If you can do all the above effectively, then your machine should be pretty > secure as is, even without running any severe filtering through the built in > firewalls. > > Cheers, > > Matthew > > [1] People that understand the implications of the weak routing model > as commonly seen in Unix servers (and certainly those that cannot control > access to the same layer-2 network their server is on) will want to protect > the loopback against spoofing attacks. The following 3-line pf.conf > will do the trick: > > scrub in > pass all > antispoof log quick for lo0 > > - -- > Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard > Flat 3 > PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate > Kent, CT11 9PW > -BEGIN PGP SIGNATURE- > Version: GnuPG v2.0.4 (FreeBSD) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFHvGG68Mjk52CukIwRCNfQAJ9yaAXQzhNgfF31V+AtArEyDvdPigCffAuG > afcraoWgVfPnUlSj4S8Zswk= > =uZ1e > -END PGP SIGNATURE- > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: security of a new installation / steps to take
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Zbigniew Szalbot wrote: > Hello, > > 2008/2/20, Matthew Seaman <[EMAIL PROTECTED]>: >> Make sure you track [EMAIL PROTECTED] and apply any system patches >> in a timely manner. Also make full use of portaudit(1) and generally ensure >> that you are running up to date versions of any ported software. > > Thaaanks! Ah... this brings me to one more question. I love 6.3 but > should I wait to install 7.0? I mean I'd hate having to update a few > months after the server is up and running. Especially, that any > updates will be remotely handled (fortunately the ISP promises to help > if need be - they are excellent and very responsive in this respect). Well, the 7.0 release candidates available now seem to run very stably wherever I've tried them. The make a big difference to performance, especially if you're running highly contended, multi-threaded applications. On the other hand, I've done a number of remote 6.x -> 7.0 upgrades without any huge difficulty. You run a risk of thinks screwing up if your 7.0 kernel doesn't boot properly, for which you'ld need remote hands to get you unstuck. Also, you /will/ need to recompile everything you've installed on the machine -- applications compiled under 6.x will run just fine so long as you don't do the 'delete-old-libs' step of the upgrade procedure too soon, and you can install the compat6x libs to survive even that. However having a lot of 6.x software installed will make it exceeding difficult to maintain your ports, plus the new compiler in 7.0 can get you some useful performance enhancements. That mega-recompilation step does tend to lead to some non-neglible periods of service downtime, but apart from the time consumption it's pretty routine stuff. Cheers, Matthew - -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHvGuQ8Mjk52CukIwRCA1hAJ4jvOra+2jdgpOp9zS/DSNMOYjkDwCfYWRN HEQws1mEcw5DOsMx7ofsL8k= =i1jL -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Ports question
James Harrison wrote: On Wed, 2008-02-20 at 12:02 -0600, Darryl Hoar wrote: Greetings, I am looking to install a CMS system (something like postnuke) and want to have a blog component. Anybody have any recommendations ? If it is in the ports, it would be even better. thanks, Darryl I've been using git a fair bit; it's fast as all hell. It's what the linux kernel guys use, though I'm considering moving over to bazaar because it archives more metadata. http://en.wikipedia.org/wiki/Bazaar_(software) The BSDs traditionally use CVS, so at the very least you know that's good over long term for a lot of files. Uhh, CMS != CVS. The OP needs to give more information. What are the requirements? Is it just a blog and a couple of static pages, and very few users? Go with Wordpress. If you're building a community site or a company site with lots of pages, customers. editors etc? Drupal is great for that. $100.000 government site with customizations galore? Use Plone. All three are in the ports tree. Erik ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: diskLabelCommit fails within a sysinstall script?
On Tue, 2008-02-19 at 16:32 -0500, Jerry McAllister wrote: > I don't know about all you ask, but the 'c' partition should always > be there and be set to identify the whole slice eg start at 0 and > the size be the size of the slice. The system uses it to identify its a damn shame that this is still the case. defeats / undermines the whole purpose of /dev/[as][d##][s#][a-z] /dev/[as][d##][s#] alone can represent entire BIOS partitions /dev/[as][d##] alone can represent entire disk Not sure why we still need a 'c' slice for legacy ?! -- Brian A. Seklecki <[EMAIL PROTECTED]> Collaborative Fusion, Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: security of a new installation / steps to take
--On Wednesday, February 20, 2008 17:22:02 + Matthew Seaman <[EMAIL PROTECTED]> wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Zbigniew Szalbot wrote: So far I have had FreeBSD systems only in office so I used my hardware firewall (Dlink DFL 700) to block access to services on ports 22, etc. Now, at the ISP I won't be able to do this so I will need to be a lot more careful about security issues. I am planning to make a list of steps I need to take to configure the OS to my liking and install applications I need. However, I would really, really love to have some advice from you re the basic steps. The important mantra to remember when securing a machine that is exposed to the internet is: What does not listen on the network cannot be used to compromise you. In practice, this means run sockstat and look for all the processes that are listening for connections on your external network interfaces. If you don't need it, then don't run it. What an outstanding answer. Matthew has covered all the correct bases. I can only add one further suggestion. Consider using /etc/hosts.allow to protect daemons that must listen on ports to restrict access even further. -- Paul Schmehl ([EMAIL PROTECTED]) Senior Information Security Analyst The University of Texas at Dallas http://www.utdallas.edu/ir/security/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Ports question
On Wed, 2008-02-20 at 12:02 -0600, Darryl Hoar wrote: > Greetings, > I am looking to install a CMS system (something like postnuke) and want to > have a blog component. > > Anybody have any recommendations ? If it is in the ports, it would be even > better. > > thanks, > Darryl I've been using git a fair bit; it's fast as all hell. It's what the linux kernel guys use, though I'm considering moving over to bazaar because it archives more metadata. http://en.wikipedia.org/wiki/Bazaar_(software) The BSDs traditionally use CVS, so at the very least you know that's good over long term for a lot of files. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Ports question
Greetings, I am looking to install a CMS system (something like postnuke) and want to have a blog component. Anybody have any recommendations ? If it is in the ports, it would be even better. thanks, Darryl ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Shutdown anomaly
Robert Huff wrote: Jonathan Chen writes: > I am seeing the following messages, which appear to indicate a memory > overwrite: > Waiting (max 60 seconds) for system processs 'vnlru' to stop...done > Waiting (max 60 seconds) for system processs 'bufdaemon' to stop...done > a > iStyinncgi n(gm adxi s6k0s ,s evcnoonddess) rfeomra isnyisntge.m. .pr0o > cess 'syncer' to stop...0 0 done > All buffers synced. > Uptime: 8m9s It's an interleaved buffer messages on SMP systems. The problem is known, but I haven't heard of a proposed solution yet. There is no fix. The workaround is to increase the size of the kernel printf() buffer. I don't remember how you do that ... but this is not a new issue - chech the archives for details. I would like to propose a fix. Care to test it? Just apply this patch and add the following line to your /etc/rc.conf file. shutdown_clean_enable="YES" --- rc.shutdown 2008-02-20 19:28:45.0 +0100 +++ /etc/rc.shutdown2008-02-20 19:59:03.0 +0100 @@ -43,10 +43,21 @@ PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin export HOME PATH +# The next three lines belong into /etc/defaults/rc.conf. +shutdown_clean_enable="NO" # Set to YES to stop all but the first CPU + # core to prevent mixed buffer output + # upon shutdown. + . /etc/rc.subr load_rc_config 'XXX' +# Fall back to single core mode to guarantee clean output. +if checkyesno shutdown_clean_enable; then + bitmask="$(jot -s '' -b1 $(expr $(sysctl -n hw.ncpu) - 1))0" + sysctl machdep.hlt_cpus=$bitmask +fi + # reverse_list list # print the list in reverse order # ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
_devname in src/usr.sbin/sysinstall/devices.c
All: Does anyone know the relationship between this structure (major, minor, delta, etc.) and real device IDs? Obviously devd(8) isn't running in the MFS install kernel, but I assume the magic still happens. Also, I don't see that major/minors indexed here actually matching a booted SMP kernel? $ ls /dev/mfi* crw-r- 1 root operator0, 32 Dec 14 13:16 /dev/mfi0 crw-r- 1 root operator0, 85 Dec 14 13:16 /dev/mfid0 crw-r- 1 root operator0, 87 Dec 14 13:16 /dev/mfid0s1 crw-r- 1 root operator0, 95 Dec 14 13:16 /dev/mfid0s1a [...snip...] crw-r- 1 root operator0, 101 Dec 14 13:16 /dev/mfid0s1g crw-r- 1 root operator0, 86 Dec 14 13:16 /dev/mfid1 But devices.c lists the major as: { DEVICE_TYPE_DISK, "mfid%d", "LSI MegaRAID SAS", 254, 65538, 8, 4 }, I'm pretty sure neither 254 and/or 32/85 are match the major on the boot/install MFS kernel. They don't seem to be related, yet when i screw with struct{} _devname, I break device detection, so it is still used in some way. I'm fuzzy on how these M/M are used in FreeBSD -- I missed the whole auto-magic assignment period during the 5x days. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: diskLabelCommit fails within a sysinstall script?
On Wed, Feb 20, 2008 at 01:48:53PM -0500, Brian A. Seklecki wrote: > > On Tue, 2008-02-19 at 16:32 -0500, Jerry McAllister wrote: > > I don't know about all you ask, but the 'c' partition should always > > be there and be set to identify the whole slice eg start at 0 and > > the size be the size of the slice. The system uses it to identify > > its a damn shame that this is still the case. defeats / undermines the > whole purpose of /dev/[as][d##][s#][a-z] > > /dev/[as][d##][s#] alone can represent entire BIOS partitions > /dev/[as][d##] alone can represent entire disk > > Not sure why we still need a 'c' slice for legacy ?! Probably. I don't really know how it gets used, but the system still seems to expect it somewhere. jerry > -- > Brian A. Seklecki <[EMAIL PROTECTED]> > Collaborative Fusion, Inc. > > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Shutdown anomaly
Dominic Fandrey writes: > >> It's an interleaved buffer messages on SMP systems. The problem is > >> known, but I haven't heard of a proposed solution yet. > > > >There is no fix. > >The workaround is to increase the size of the kernel printf() > > buffer. I don't remember how you do that ... but this is not a new > > issue - chech the archives for details. > > I would like to propose a fix. Care to test it? Me personally? No. Don't have an SMP machine available. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Getting FreeBSD 5.2.1
Karthick Jayaraman wrote: I would like to get the FreeBSD 5.2.1 iso image for PowerPC. Please let me know where I can get them. Are you sure that 5.2.1 even exists for the PowerPC? The FTP-archive starts with 6.0 and according to the release announcement back then (http://www.freebsd.org/releases/5.2.1R/announce.html): [begin quote] FreeBSD 5.2.1-RELEASE supports the i386, pc98, alpha, sparc64, amd64, and ia64 architectures [end quote] It doesn't mention powerpc. Just a thought, I could be way off though. Alphons -- All right, that does it Bill [Donahue]. I'm pretty sure that killing Jesus is not very Christian. -- pope Benedict XVI, South Park episode #158 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DNS /etc/namedb owner hell
Deian Popov wrote: Hello, I have the following problem with bind: it is configured to run as bind:bind and after every reboot of the system all files and directories under /etc/namedb become owned by root:wheel so bind is unable is unable to update it's zone files after dhcpd leases IP to any given client. How to fix either owner, or set somewhere that the owner of this folder, subfolder and files is my DNS server? See /etc/rc.d/named and /etc/mtree/BIND.chroot.dist. And please, next time don't be so quick on mailing [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: diskLabelCommit fails within a sysinstall script?
> > > > /dev/[as][d##][s#] alone can represent entire BIOS partitions > > /dev/[as][d##] alone can represent entire disk > > > > Not sure why we still need a 'c' slice for legacy ?! > > Probably. I don't really know how it gets used, but the system > still seems to expect it somewhere. That kind of uncertainly is likely why the other projects haven't adopted the new model, which is a shame, but pragmatically speaking... I'll be happy when they do, either way. > > jerry > > > -- > > Brian A. Seklecki <[EMAIL PROTECTED]> > > Collaborative Fusion, Inc. > > > > ___ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > ___ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" -- Brian A. Seklecki <[EMAIL PROTECTED]> Collaborative Fusion, Inc. IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: RELENG_6_3 build fail -- signal 13 consistently
On Thu, 2008-01-24 at 09:17 -0500, Brian A. Seklecki wrote: > This is 6.3/amd64 release as a guest inside a vmware server (free) host: > It happens randomly. First time I've seen it. amd64 and i386 under vmware 1.x "server" (Free Version). I guess I'll use physical hardware for build farms. ~BAS IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Solved: Problem building loader in RELENG_7
Erik Norgaard wrote: Just updated my source tree, I'm on FreeBSD bifrost 7.0-PRERELEASE FreeBSD 7.0-PRERELEASE #1: Tue Feb 12 09:52:32 CET 2008. Then I did # cd /usr/src # make -DLOADER_TFTP_SUPPORT=YES I have just updated my source tree and the loader builds nicely again. Erik -- Erik Nørgaard Ph: +34.666334818 http://www.locolomo.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: RELENG_6_3 build fail -- signal 13 consistently
On Wed, 2008-02-20 at 14:33 -0500, Brian A. Seklecki wrote: > On Thu, 2008-01-24 at 09:17 -0500, Brian A. Seklecki wrote: > > This is 6.3/amd64 release as a guest inside a vmware server (free) > host: > > > > It happens randomly. First time I've seen it. amd64 and i386 under > vmware 1.x "server" (Free Version). > > I guess I'll use physical hardware for build farms. > This could have been two things: 1) The VM was originally "FreeBSD 32bit" -- so it emulated lnc(4), it was then switched to "FreBSD64" -- em(4), then back to 32 -- who knows -- it's commercial software. 2) The VM had a non exponent/power of 2 sized RAM allocation (it was set to 216mb -- probably a GUI blooper) -- although this generally hasn't been a problem for 10 years since video cards started arbitrarily stealing physical DRAM for their frame-buffer. lnc(4) problem originates from this error: kernel: lnc0: Missed packet -- no receive buffer ~BAS IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DNS /etc/namedb owner hell
Hi there, On 20/02/2008, Jordan Gordeev <[EMAIL PROTECTED]> wrote: [...] > See /etc/rc.d/named and /etc/mtree/BIND.chroot.dist. > And please, next time don't be so quick on mailing [EMAIL PROTECTED] IMO questions is exactly dedicated for this purpose. Of course the OP could've solved the problem on his own, but maybe he just came across FreeBSD recently and does not now all of FreeBSDs specialties. Maybe the OP isn't used to reading shell scripts (not everyone dealing with Unix system is capable of reading or even writing scripts). I think discouraging a user of asking questions he/she is unable to solve on his/her own is not that usefull. Just my $0.02 Christian PS: I had to deal with this "problem" and it took me longer than expected. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Shutdown anomaly
Steven Friedrich wrote: > I am seeing the following messages, which appear to indicate a memory > overwrite: > Waiting (max 60 seconds) for system processs 'vnlru' to stop...done > Waiting (max 60 seconds) for system processs 'bufdaemon' to stop...done > a > iStyinncgi n(gm adxi s6k0s ,s evcnoonddess) rfeomra isnyisntge.m. .pr0o > cess 'syncer' to stop...0 0 done > All buffers synced. > Uptime: 8m9s I don't know if this is relevant. Anyway, I used to see this error on 7.0-RC1, at any rate when using xdm. I no longer see it on 7.0-RC2. -- Tore ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Shutdown anomaly
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Tore Lund > Sent: Thursday, 21 February 2008 9:32 a.m. > To: Steven Friedrich; freebsd-questions@freebsd.org > Subject: Re: Shutdown anomaly > > Steven Friedrich wrote: > > iStyinncgi n(gm adxi s6k0s ,s evcnoonddess) rfeomra > isnyisntge.m. .pr0o > > cess 'syncer' to stop...0 0 done > > All buffers synced. > > Uptime: 8m9s > > I don't know if this is relevant. Anyway, I used to see this error on > 7.0-RC1, at any rate when using xdm. I no longer see it on 7.0-RC2. I see it on my RC2 machine. It comes and goes on my machine, and isn't always present on shutdown. Not running xdm, just a plain vanilla box with no X. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: esx 3.0.2 update1 BTX Halted issue
Hello It was my bad not to enable the VT feature of the CPU so esx wasn't supporting the 64 bit systems. This error is taken just because of that. Fixed the issue and now I can happily install fbsd amd64 to esx3.0.2 update1 Tuesday, February 19, 2008, 8:07:53 PM, you wrote: > Hi, > I am trying to install amd64 version of the freebsd 6.2 (also 6.3 gives the > same error). > After options presented in the loader whatever I choose ( safe > mode, wo acpi...) it directly goes to BTX Halted mode. > Has anyone in this list installed fbsd 6.2 or 6.3 to esx 3.0.2 > update 1 ?(I have also tried esx 3.0.2 without update 1 and has > taken the same error message). If yes have you done anything special for this > system ? > BTW: This system is upgraded from first 2.5.4 > Regards. > -- > Omer Faruk Sen > http://www.faruk.net -- Best regards, Omermailto:[EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DJ500 dead after >= 16 years.
David Kelly wrote: On Wed, Feb 20, 2008 at 12:02:25AM -0800, Gary Kline wrote: Nutshell, I'd like anyone's ideas/experiences with some of these new HP/<<< or whateverbrand>>> printers. I wouldn't *mind* if I could scan in text from a techy paper into HTML or PDF or text. But mostly, like 99.44% plain black text. My old deskjet used gs as a filter to print PostScript. Do we have any such plugin support, or are printers still roll-your-own? [FWIW, I can't seem to get CUPS working... altho it maay be my misssing /dev/lpt0.] Why don't you check http://www.linux-foundation.org/en/OpenPrinting for the most comprehensive information available. Just couple a comments. I would keep native LPD spooling system instead installing CUPS unless you need to use something like HPLIP drivers. To stay on the same note, you should ask yourself firstly what is printer for. If you are doing intensive black and white document printing like in an academic environment Laser Printers will give you the greatest millage and cost per copy ratio. In that case you should definitely try to buy a printer that speaks Post Script language and avoid any drivers. The mentioned Brother HL series is wonderful. I have just good words for Lexmark Optra series. HP Laser jet above the 1300 do speak full Post Script. Always a good decision. Be careful with HP 1000-1200 they might be problematic as they do not even speak PCL. See above link for the full explanation. If you are using printing at home and need occasional color printing I would suggest you go with the HP deskjet/officejest or even better with all-in-one device. HPLIP http://hplip.sourceforge.net/ will unlock full functionality of all-in-one devices including scanning via hpaio scanner drivers included in HPLIP. There are couple Epson all-in-one devices that are fully supported with Gutenprint for the printer driver and sane-backhands for the printing. Something like CX-3800 or similar. Check the SANE web-site for full list. Note that SANE has released new backhands two weeks ago and I am not sure if the FreeBSD port has been updated to 1.19 version. If you decide that you do NOT need scanner stick with the printer that speak full PCL and which are listed in the foomatic-db or/and ghostscript. Personally, I have HP laser jet 4L. Speaks PCL and listed in foomatic-db. I have Office Jet R60 all-in-one speaks PCL and listed in foomatic -db. In order to unlock scanning it has to be attached separately to network as HPLIP doesn't support parallel port devices despite their claims that they do. It does but over the network. Photosmart C5250 all-in-one. This is my wife printer for her photos but is also a scanner and copier. Full functionality unlocked with HPLIP drivers. I hope that this helps Predrag P. S. You may also check the following couple articles. How to edit printcap file and use foomatic filter http://www.onlamp.com/pub/a/bsd/2004/07/08/FreeBSD_Basics.html?page=1 How to use apsfilter http://www.onlamp.com/pub/a/bsd/2003/11/06/Big_Scary_Daemons.html How to use ghostscript as a input filter and lots of other goodies by our own Ted http://www.freebsd.org/doc/en_US.ISO8859-1/books/corp-net-guide/index.html How to set up HPLIP on FreeBSD http://dsteinbrook.googlepages.com/hpliponfreebsd Note that the Handbook is more than enough to set up Post Script printer. You may also want to read man pages for printcap. Nice info. If you I have been pleased with my purchase of a Brother HL-5250DN several years ago. Was $250 at the time, usually can be found on sale now for under $200. Refurbished HL-5240's under $100. This is a 30 ppm (rated) laser with ethernet, USB, HPL-6 and Brother's Postscript-3 clone. Also prints duplex. 3rd party toner refills are $20 for roughly 7,000 pages. Drum is rated at 25,000 pages. If it doesn't last that long a new or refurbished printer is cheaper than a replacement drum. Have fond memories of old HP-4000N, HP-4050N, and HP-5000N printers but nothing used was available as inexpensive as the Brother was. The Brother is better suited for my uses as its very quick to warm up from sleep, maybe as fast as my DJ-990. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Shutdown anomaly
On Wed, Feb 20, 2008 at 08:06:36PM +0100, Dominic Fandrey wrote: > Robert Huff wrote: > >Jonathan Chen writes: > > > >> > I am seeing the following messages, which appear to indicate a memory > >> > overwrite: > >> > Waiting (max 60 seconds) for system processs 'vnlru' to stop...done > >> > Waiting (max 60 seconds) for system processs 'bufdaemon' to stop...done > >> > a > >> > iStyinncgi n(gm adxi s6k0s ,s evcnoonddess) rfeomra isnyisntge.m. > >> .pr0o > cess 'syncer' to stop...0 0 done > >> > All buffers synced. > >> > Uptime: 8m9s > >> > >> It's an interleaved buffer messages on SMP systems. The problem is > >> known, but I haven't heard of a proposed solution yet. > > > > There is no fix. > > The workaround is to increase the size of the kernel printf() > >buffer. I don't remember how you do that ... but this is not a new > >issue - chech the archives for details. > > I would like to propose a fix. Care to test it? > > Just apply this patch and add the following line to your /etc/rc.conf file. > shutdown_clean_enable="YES" I'm not too keen on the fix, as it only pushes the problem under the carpet just for the sake of nice output on shutdown. There's still tons of mangled output in the logs (esp. if you run a logging firewall). Here's hoping for a kernel-fix sometime in the future. Cheers. -- Jonathan Chen <[EMAIL PROTECTED]> -- "Beer. Now there's a temporary solution." - Homer Simpson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Cambio de DNS
Como puedo cambiar o dar de alta DNS en FreeBSD Saludos Edgar ** The information contained in this electronic communication and any accompanying document is confidential, may be attorney-client privileged, and is intended only for the use of the addressee. It is the property of Ryder System, Inc. Unauthorized use, disclosure or copying of this communication, or any part of it, is strictly prohibited and may be unlawful. If you have received this communication in error, please notify the sender immediately by return email, and destroy this communication and all copies of it, including all attachments. Electronic communication may be susceptible to data corruption, interception and unauthorized tampering and Ryder disclaims all liability of any kind for such actions or any consequences that may arise directly or indirectly therefrom. ** ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Cambio de DNS
Tuenes que ser mas especifico? El DNS que usas como usuario se utiliza en el file de /etc/resolv.conf Aqui pondrias los DNS servers que utilizaz para hacer tus queries o si estas implementando tu propio server tienes que usar los files dentro /var/named/etc/named Que es lo que quieres hacer? David Alanis Quoting [EMAIL PROTECTED]: Como puedo cambiar o dar de alta DNS en FreeBSD Saludos Edgar ** The information contained in this electronic communication and any accompanying document is confidential, may be attorney-client privileged, and is intended only for the use of the addressee. It is the property of Ryder System, Inc. Unauthorized use, disclosure or copying of this communication, or any part of it, is strictly prohibited and may be unlawful. If you have received this communication in error, please notify the sender immediately by return email, and destroy this communication and all copies of it, including all attachments. Electronic communication may be susceptible to data corruption, interception and unauthorized tampering and Ryder disclaims all liability of any kind for such actions or any consequences that may arise directly or indirectly therefrom. ** ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" This message was sent using IMP, the Internet Messaging Program. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FTPD and IExplore
On Wed, 20 Feb 2008 12:15:13 +0200 "klerfe [Bodegas]" <[EMAIL PROTECTED]> wrote: > Hi. My problem is i cannot connect to my ftp server (started from > inetd) via IExplore or any other web browser. I've added user ftp to > enable anonymous logins on my ftp server and it works when connecting > via ftp client such as Total Commander. But it doesn't work via any > web browser. My OS is FreeBSD 6.2. I had 5.4 before, and i didn't had > this problem on previous machine. The problem appeared when i freshly > reinstalled the operating system. Any suggestions? I run pure-ftpd for my FTP server, and it has no problems with IE or Firefox. Then again, it is not started from 'inetd' so that might have something to to with it. Since you stated that no web browser can make a connection, that kind of rules out IE as the culprit. Do you receive any type of error message? What does it say? I just tried accessing ftp.stereo.lt, I hope that is your FTP site, and it asked for log-in credentials. -- Gerard [EMAIL PROTECTED] PARTY: A gathering where you meet people who drink so much you can't even remember their names. signature.asc Description: PGP signature
Re: problem while creating a package
On Wednesday 20 February 2008 08:06:52 lokesh babu wrote: > hi, > > i am facing a problem while extracting a package > > 1)i created a package using pkg_create > > command used is : > *pkg_create -f cwd/filelist -p cwd/avamar -c cwd/comments -d cwd/desc* > package is getting created and it is in cwd > > 2)extracting it using pkg_add > > command used is :*pkg_add packagename.tbz* > here package is getting extracted but it is extracted into cwd/avamar now > what i want is i want to extract it into a default location > /usr/local/avamar > can u please help me in doing this Add a @cwd /usr/local/avamar to your packinglist. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: libc5 on freebsd 6.3
On Tuesday 19 February 2008 04:17:22 [EMAIL PROTECTED] wrote: > /usr/local/cyrus/bin/timsieved: > libdb-4.2.so.2 => /usr/local/lib/libdb-4.2.so.2 (0x881fb000) > libc.so.5 => /lib/libc.so.5 (0x8851c000) There's your problem. Rebuild databases/db42. -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: network not performing - where to start?
On Monday 18 February 2008 10:23:58 Boldra wrote: > ed1: flags=8843 mtu 1500 > inet 192.168.1.5 netmask 0xff00 broadcast 192.168.1.255 > ether 00:a0:0c:40:32:a3 > media: Ethernet autoselect (100baseTX ) > status: active It takes two to tango: is the other nic running 100Mbit? > So my questions are: > How do I check the network performance from within freebsd? Excellent tool: http://www.freshports.org/net/bmon/ -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: The configuration could not be loaded --- Gnome
On Monday 18 February 2008 04:31:53 E. J. Cerejo wrote: > (users-admin:51143): Liboobs-WARNING **: Failed to connect to socket > /var/run/dbus/system_bus_socket: No such file or directory echo 'dbus_enable="YES"' >>/etc/rc.conf && /usr/local/etc/rc.d/dbus start -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
KQueue and EVFILT_TIMER question
Hi, I'm using a kqueue(2) that installs a timer into the queue when a certain condition has happened. This timer waits for another condition at intervals (specifically, it watches for a file to be created). Every 500ms it does a stat(2) for a given filename and when stat succeeds, I do the following: changes[0].flags |= EV_ONESHOT; changes[0].udata = (void*)1; changes[0].flags |= EV_ADD; Problem is, that this timer now never disappears, even if I replace changes[0] with a completely different event (specifically, EVFILT_VNODE on the file we now know is created). I suspect that: "This filter automatically sets the EV_CLEAR flag internally." is the culprit. So how would I go about terminating the timer? Or is the only way to initialize it as EV_ONESHOT and keep reinstalling a new one when required? Or close the kq all together and start a new one? EV_DELETE? On a related note, is the ident for a timer really used and should I increment it (all examples I've seen simply set ident to 1). -- Mel ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD & Linux distro
On Wed, Feb 20, 2008 at 10:44:37AM +1000, Da Rock wrote: > On Tue, 2008-02-19 at 08:49 -0700, Chad Perrin wrote: > > > > The way you phrased it makes it sound like FreeBSD is simply unsuited to > > use as a desktop system. Contrary to that impression, I'm sending this > > from a Thinkpad laptop with FreeBSD on it, and it's by far the best > > "desktop" OS I've ever had the pleasure to use. > > Me too. But you have to be more enabled to get a lot of the software the > is wanted on a desktop system working. Case in point: Gnome is not > automatically installed (or kde or any other wm). Web browsing can be > tricky because you have to get wrappers for plugins and so on. For you > and me- we don't mind because we know the result will be fantastic, but > others who just want to get on with it it can be a pain. More enabled . . . ? You have to be "more enabled" to use *anything* that isn't preinstalled by the hardware vendor. That basically means anything that isn't MS Windows or MacOS X. After all, Linux, FreeBSD, Plan 9 . . . none of them are "automatically installed" on any computer, with rare exceptions. > > Therefore, I'd say a desktop version of FreeBSD would be better > described as a workstation. Considering we're comparing to Ubuntu, I'd > say thats a fair statement. I'm not sure what you're trying to say here. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] McCloctnick the Lucid: "The first rule of magic is simple. Don't waste your time waving your hands and hopping when a rock or a club will do." ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD & Linux distro
On Wed, 2008-02-20 at 16:50 -0700, Chad Perrin wrote: > On Wed, Feb 20, 2008 at 10:44:37AM +1000, Da Rock wrote: > > On Tue, 2008-02-19 at 08:49 -0700, Chad Perrin wrote: > > > > > > The way you phrased it makes it sound like FreeBSD is simply unsuited to > > > use as a desktop system. Contrary to that impression, I'm sending this > > > from a Thinkpad laptop with FreeBSD on it, and it's by far the best > > > "desktop" OS I've ever had the pleasure to use. > > > > Me too. But you have to be more enabled to get a lot of the software the > > is wanted on a desktop system working. Case in point: Gnome is not > > automatically installed (or kde or any other wm). Web browsing can be > > tricky because you have to get wrappers for plugins and so on. For you > > and me- we don't mind because we know the result will be fantastic, but > > others who just want to get on with it it can be a pain. > > More enabled . . . ? > > You have to be "more enabled" to use *anything* that isn't preinstalled > by the hardware vendor. That basically means anything that isn't MS > Windows or MacOS X. After all, Linux, FreeBSD, Plan 9 . . . none of them > are "automatically installed" on any computer, with rare exceptions. > > Considering the original question of the OP wouldn't you agree that this might be their background? > > > > Therefore, I'd say a desktop version of FreeBSD would be better > > described as a workstation. Considering we're comparing to Ubuntu, I'd > > say thats a fair statement. > > I'm not sure what you're trying to say here. > ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Motherboard: Gigabyte GA-N650SLI-DS4
Frank Shute wrote: On Wed, Feb 20, 2008 at 01:06:30PM +0200, David Naylor wrote: Hi, I am currently replacing my defunct motherboard, I am unable to test the hardware before purchase and I am seeking advice on which motherboard to get. Upon review I have selected a Gigabyte GA-N650SLI-DS4, does FreeBSD work with this board. It does have a nForce 650i (and I am not sure FreeBSD works with it?) I just built a workstation with a Gigabyte GA-P35-DS3L (P35/ICH9) board and am running a core 2 duo on it with AMD 7.0RC1. Everything works including ACPI which is very important if you want to run more than 1 core. If anyone has an alternative suggestion please let me know. The motherboard will have to support (my budget is about < ZAR2000 ~ USD275): o) Intel Core 2 Quad Q6600 Mine supports that with up to 1333MHz FSB. o) 4x 800Mhz DDR2 Ram Yep. I've got 4GB, don't know whether it will go to 8, the handbook is no help. o) 2x SATA HDD Yep. 4 Channels. o) 2x IDE CDROM Drive Yes. Only 1 IDE channel but supports 2 devices o) 2x nVidia 7600 GT I guess that's SLI which I don't know a lot about or whether FreeBSD (X) can make any use of it. Only 1 PCI-E x 16 on my board so I guess not for me. Thank you all for your help I don't know anything about your nForce650i chipset but as a rule of thumb, if the technology is more than 6 months old, it's likely to work unless there's non-disclosure by the manufacturer (I think Nvidia are quite good in that respect). May be somebody else can comment on whether it will work. Or if you can drop one of the video cards you can use the same motherboard as me since I've tested it (apart from sound). And it's probably cheaper! About 65 quid (130 USD). Just to add additional information for the OP. I too have a Gigabyte P35-DS3R (slight difference in model, but nearly the same) rev. 2.1 board, and it works like a champ. My specs (whether relavant or not to you): o) Core 2 Q6600 Quad Core OC'd to 1333 FSB. o) 4x 1066Mhz DDR2 Ram o) IDE channel(s) not in use. o) 4 SATA drives in raid 0+1 in use, 1 SATA CDROM drive in use o) Floppy Controller / Drive in use. o) nVidia 8800 GTX obviously in use. Like Frank mentioned, my video card doesn't run in Sli mode, however I've had nothing but luck thus far. I hope this little bit helps. Maybe next time if otherwise. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Is there any print enabled graphic design software?
I'm trying to get away from Adobe products (which are becoming rather agressive towards OSS), but I need to find a graphic software that can handle CMYK properly. I've tried GIMP (which has great tools) but it doesn't handle CMYK files- it only uses sRGB. I've tried Krita, but it doesn't work as well as GIMP tool wise, and I can't specify images sizes very well at all- it only works on pixel size, not inches or dpi/ppi. Therefore both are great for designing screen images, but not printed images. I even tried using GIMP to design (using CMYK colours here), and reformatting to a CMYK file with Krita. Problem with this is that the image size doesn't work once reformatted, plus I need to export to pdf which neither do and so printing to pdf means the final image size is an A4 and god knows what dpi. Anything better out there? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD & Linux distro
On Tue, Feb 19, 2008 at 01:27:49PM -0700, Chad Perrin wrote: > > > > On Tue, Feb 19, 2008 at 09:14:04AM -0700, Chad Perrin wrote: > [ snip a bunch of stuff ] > > On Tue, Feb 19, 2008 at 11:36:34AM -0500, Jerry McAllister wrote: > > > > A good rundown of some of the differences. > > Maybe you can put this on a web page and get it added to lists > > of comparrisons. > > Sure. I'll polish it up and post it somewhere in that polished form, > then reply here. If not today, I'll aim to get it done tomorrow. Okay, posted: http://arc.apotheon.org/freebsd/vs_linux.html If anyone has suggestions for how to fix it up further, let me know. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] Paul Graham: "Real ugliness is not harsh-looking syntax, but having to build programs out of the wrong concepts." ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Your message to Aacc-ccgen-div awaits moderator approval
Your mail to 'Aacc-ccgen-div' with the subject Message could not be delivered Is being held until the list moderator can review it for approval. The reason it is being held: ClamAV identified this message as a virus (Worm.Mydoom.M) Either the message will get posted to the list, or you will receive notification of the moderator's decision. If you would like to cancel this posting, please visit the following URL: https://my.binhost.com/lists/confirm/aacc-ccgen-div/8b424798d41f8f0879d9cc1ceb47c42ddc83b416 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Motherboard: Gigabyte GA-N650SLI-DS4
On Wed, Feb 20, 2008 at 01:06:30PM +0200, David Naylor wrote: > > Hi, > > I am currently replacing my defunct motherboard, I am unable to test > the hardware before purchase and I am seeking advice on which > motherboard to get. > > Upon review I have selected a Gigabyte GA-N650SLI-DS4, does FreeBSD > work with this board. It does have a nForce 650i (and I am not sure > FreeBSD works with it?) I just built a workstation with a Gigabyte GA-P35-DS3L (P35/ICH9) board and am running a core 2 duo on it with AMD 7.0RC1. Everything works including ACPI which is very important if you want to run more than 1 core. > > If anyone has an alternative suggestion please let me know. The > motherboard will have to support (my budget is about < ZAR2000 ~ > USD275): > o) Intel Core 2 Quad Q6600 Mine supports that with up to 1333MHz FSB. > o) 4x 800Mhz DDR2 Ram Yep. I've got 4GB, don't know whether it will go to 8, the handbook is no help. > o) 2x SATA HDD Yep. 4 Channels. > o) 2x IDE CDROM Drive Yes. Only 1 IDE channel but supports 2 devices > o) 2x nVidia 7600 GT I guess that's SLI which I don't know a lot about or whether FreeBSD (X) can make any use of it. Only 1 PCI-E x 16 on my board so I guess not for me. > > Thank you all for your help I don't know anything about your nForce650i chipset but as a rule of thumb, if the technology is more than 6 months old, it's likely to work unless there's non-disclosure by the manufacturer (I think Nvidia are quite good in that respect). May be somebody else can comment on whether it will work. Or if you can drop one of the video cards you can use the same motherboard as me since I've tested it (apart from sound). And it's probably cheaper! About 65 quid (130 USD). -- Frank Contact info: http://www.esperance-linux.co.uk/misc/contact.html ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Mounting FS read-only for specific user (or root)
Hi all, I'm trying to set up a mounted filesystem that is read-write for root, but read-only for anyone else. It will be mounted as a backup directory, so files listed in that directory will be owned by current users on the system but can't be writeable, regardless of the file permissions. Example hd2 mounted rw in /root/backup-rw hd2 mounted ro in /backups Only root should be able to write to anything under /root/backup-rw/ even though normal users will own files in that directory. Normal users should be able to read anything that permissions allow in /backups so that they can restore files from the backup. I was planning on using the nullfs fs type to achieve the second mountpoint for the fs. Is this possible? Thanks, Andrew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Unicode Console?
Fellow FreeBSD Fans, I've been running FreeBSD on a web/mail server, which I only have remote access to, for a while now. At home I've been running Linux since the 1.xx kernel days but am considering switching my desktop box to FreeBSD. I never given much thought to my locale setting until recently. I'm about to start participating in an online Spanish study group, via e-mail, and might also be following along with an Old English study group. I'm an old fashioned kinda user and prefer to do as much as I can via the text console. I compose/read e-mail via Alpine. After some trial and error I finally convinced my Linux box, currently running Arch Linux, to handle all of the "special" characters I need via the console. In the end, it amounted to: 1. Add "en_US.UTF-8 UTF-8" to /etc/locale.gen 2. run locale-gen 3. set LANG to en_US.UTF-8 4. Switch to a font that contains the symbols I need. I'm currently using one of the Terminus console fonts. For some reason I had to switch to a framebuffer console otherwise after executing unicode_start the font was way too dim. 5. run unicode_start(added to my .cshrc file) After the above I'm able to display various accented characters such as á, é, ì, ö, û, ç, etc. along with the Spanish ñ, inverted punctuation marks ¡, ¿, Old English thorn(þ), eth(ð), ash(æ), etc. Also, from reading mail from various mailing lists I've noticed that it also handles the Cyrillic alphabet and part of the Greek alphabet. From what I've seen of FreeBSD I'd expect it to have console capabilities that are superior to those of Linux. But, I haven't managed to figure out how to achieve similar functionality via the FreeBSD text consoles. I'm currently testing FreeBSD(7.0-RC2) under VMware. Can anyone point me in the right direction? Kevin http://www.RawFedDogs.net http://www.WacoAgilityGroup.org Bruceville, TX Si hoc legere scis nimium eruditionis habes. Longum iter est per praecepta, breve et efficax per exempla!!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Unicode Console?
On Wed, Feb 20, 2008 at 07:28:52PM -0600, Kevin Monceaux wrote: > Fellow FreeBSD Fans, > > I've been running FreeBSD on a web/mail server, which I only have remote > access to, for a while now. At home I've been running Linux since the 1.xx > kernel days but am considering switching my desktop box to FreeBSD. > > I never given much thought to my locale setting until recently. I'm about > to start participating in an online Spanish study group, via e-mail, and > might also be following along with an Old English study group. I'm an old > fashioned kinda user and prefer to do as much as I can via the text > console. I compose/read e-mail via Alpine. After some trial and error I > finally convinced my Linux box, currently running Arch Linux, to handle all > of the "special" characters I need via the console. In the end, it > amounted to: > > 1. Add "en_US.UTF-8 UTF-8" to /etc/locale.gen > > 2. run locale-gen > > 3. set LANG to en_US.UTF-8 > > 4. Switch to a font that contains the symbols I need. I'm currently > using one of the Terminus console fonts. For some reason I had to > switch to a framebuffer console otherwise after executing > unicode_start the font was way too dim. > > 5. run unicode_start(added to my .cshrc file) > > After the above I'm able to display various accented characters such as á, > é, ì, ö, û, ç, etc. along with the Spanish ñ, inverted punctuation > marks ¡, ¿, Old English thorn(þ), eth(ð), ash(æ), etc. Also, from > reading mail from various mailing lists I've noticed that it also handles > the Cyrillic alphabet and part of the Greek alphabet. > > From what I've seen of FreeBSD I'd expect it to have console capabilities > that are superior to those of Linux. But, I haven't managed to figure out > how to achieve similar functionality via the FreeBSD text consoles. I'm > currently testing FreeBSD(7.0-RC2) under VMware. Can anyone point me in > the right direction? > > > > > Kevin > http://www.RawFedDogs.net > http://www.WacoAgilityGroup.org > Bruceville, TX > > Si hoc legere scis nimium eruditionis habes. > Longum iter est per praecepta, breve et efficax per exempla!!! Unicode isn't supported in syscons at all (AFAIK). Check http://opal.com/jr/freebsd/unicode/ for more complete overview. HTH, Yuri ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Is there any print enabled graphic design software?
Da Rock <[EMAIL PROTECTED]> wrote: > > I'm trying to get away from Adobe products (which are becoming rather > agressive towards OSS), but I need to find a graphic software that can > handle CMYK properly. > > I've tried GIMP (which has great tools) but it doesn't handle CMYK > files- it only uses sRGB. > > I've tried Krita, but it doesn't work as well as GIMP tool wise, and I > can't specify images sizes very well at all- it only works on pixel > size, not inches or dpi/ppi. > > Therefore both are great for designing screen images, but not printed > images. I even tried using GIMP to design (using CMYK colours here), and > reformatting to a CMYK file with Krita. Problem with this is that the > image size doesn't work once reformatted, plus I need to export to pdf > which neither do and so printing to pdf means the final image size is an > A4 and god knows what dpi. > > Anything better out there? Might Scribus suit your needs? -- Bill Moran http://www.potentialtech.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Unicode Console?
Yuri, On Thu, 21 Feb 2008, Yuri Pankov wrote: Unicode isn't supported in syscons at all (AFAIK). Check http://opal.com/jr/freebsd/unicode/ for more complete overview. Thanks for the info. According to the info at the above URL the FreeBSD syscons doesn't currently support unicode, but work is in progress. That page was last updated on 07/06/2007, so perhaps there has been some progress since then. I'll be watching for updates. Kevin http://www.RawFedDogs.net http://www.WacoAgilityGroup.org Bruceville, TX Si hoc legere scis nimium eruditionis habes. Longum iter est per praecepta, breve et efficax per exempla!!! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD & Linux distro
Chad Perrin wrote: On Tue, Feb 19, 2008 at 01:27:49PM -0700, Chad Perrin wrote: On Tue, Feb 19, 2008 at 09:14:04AM -0700, Chad Perrin wrote: [ snip a bunch of stuff ] On Tue, Feb 19, 2008 at 11:36:34AM -0500, Jerry McAllister wrote: A good rundown of some of the differences. Maybe you can put this on a web page and get it added to lists of comparrisons. Sure. I'll polish it up and post it somewhere in that polished form, then reply here. If not today, I'll aim to get it done tomorrow. Okay, posted: http://arc.apotheon.org/freebsd/vs_linux.html If anyone has suggestions for how to fix it up further, let me know. Hi Chad, Here is my honest opinion. I hope it will help you improve the post :-) I didn't like very much the tone of the article as well as some pejorative conclusion. If you are going to post something even as a FreeBSD advocacy the tone of the article should be neutral and all claims verifiable. Do not get me wrong. I do not like Linux and more over I have never used it in my life but I would have hard time to swallow some of your claims. How would you feel if I tell you that I use mostly OpenBSD because it is easier for work than FreeBSD and in my experience much more stable than FreeBSD. Those are my subjective feelings and probably have little to do with the reality. If anything statement like that are irritating and have no value to a person who is deciding between using OpenBSD or FreeBSD. Try to find on the internet couple of advocacy articles by Greg Lehey. They are very well-written. Example: Statement of the type BSD appears more stable than Linux is non-verifiable. Statement of the type FreeBSD is direct decedent of the BSD flavor of Unix started in mid seventies at the University of California Berkley while the Linux kernel is Unix clone started in 1993 based on the mixture of System V and BSD Unix is verifiable. Or 80% of all servers with longest up time run FreeBSD is something that can be verified. You should definitely address the following things 1. FreeBSD is longer in the development than Linux. 2. Probably 80% of the servers with the longest UP time run FreeBSD. Give a link. Easy to find. 3. FreeBSD is a COMPLETE operating system GNU/Linux is not. 4. It has different development and engineering process than Linux. 5. It has better quality control at least because Linux has no quality control at all. 6. The Largest FTP sever on the world run FreeBSD (your beloved freebsd.org) 7. FreeBSD has one of the best systems for the installation of the third party software (ports and do not forget packages as some people will jump at you and make a claim that Debian has better packaging system as it is more efficient than compiling things from ports) 8. Most extensive collection of third party software (over 18000 ) only second to Debian. 9. One of the best documented systems 10. Mention the advantage of the BSD license comparing to GPL for the commercial use. 11. It is philosophically different than most Linux distros as all services are turned of by default. 12. Unlike Linux it doesn't claim that is the best and most suitable for everything. If you need security then Open is better choice. If you need something for embedded devices probably Net is better choice. 13. More secure than Linux if for no other reason but for PF which is ported from OpenBSD. Note that PF is not ported for Linux. 14. Kernel security level concept doesn't exist in Linux. Try to disperse common myth that BSD doesn't support hardware but do not be shy to admit that lack support for things like video conferencing. Do not be shy to admit that virtualization is poor and maybe intensionally as quite of few people do not believe that putting somebody's else cra*p on the top of FreeBSD will not make that cra*p working better or be more secure. If you need Window's application run Windows. Does it make a good Desktop system? Depends what do you mean by that. If you need everything working out of box for your grandmother Mily probably not. If you need Flash and Java plug-ins probably not. But if you need ROCK solid workstation for academic work, occasional multimedia and want to be 100% in control of your computer like me it is the best desktop OS around. Most Kind Regards, Predrag ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"