Re: tape device not configured

2008-07-08 Thread Papp Tamas 

Anders Trobäck wrote:

On Mon, 07 Jul 2008 23:21:15 +0200
Papp Tamas <[EMAIL PROTECTED]> wrote:

  

hi All,

I have a new Exabyte VXA-320, I show it in dmesg as sa0.
When I try to access it  for example by mt, it says, "Device not
configured", and of cource is not working.

sa0 at ahd0 bus 0 target 2 lun 0
sa0:  Removable Sequential Access SCSI-3 device
sa0: 160.000MB/s transfers (80.000MHz DT, offset 126, 16bit)


What do I miss?

Thank you very much,

tamas



What is the exact command you are using?


  

mt -f /dev/sa0


Thanks,

tamas
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: tape device not configured

2008-07-08 Thread Papp Tamás 
Papp Tamas wrote: 

mt -f /dev/sa0


I mean mt -f /dev/sa0 status

But actually I recogniozed, it was a cleaning tape.

I'm sorry:)

Thank you,

tamas
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: No serial console input in loader

2008-07-08 Thread Anselm Strauss 

On Jun 28, 2008, at 13:15 , Anselm Strauss wrote:


Hi,

I have a small router that has no video output, it only supports a  
serial console. I configured the serial console in /boot/ 
boot.config, /boot/loader.conf and /etc/ttys. It's working in the  
BIOS, on the boot prompt before the loader starts, and when logging  
in on the getty. The only place where it's not working correctly is  
at the loader prompt. I can see the loader menu and the logo, but I  
can't choose the boot entry or interrupt the timeout. I can't make  
any input at all. What could this be?


Cheers,
Anselm


Don't know what this was, but now it works. I use Grub to directly  
load /boot/loader as kernel. I set the serial console in the BIOS to  
115200 Baud. In Grub's menu.lst I then use:


serial --unit=0 --speed=115200
terminal serial

and in /boot/loader.conf:

console="comconsole"
comconsole_speed="115200"

Seems like this is all that is needed.

Anselm
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: bsdlabel has no effect

2008-07-08 Thread Anselm Strauss 

On Jun 28, 2008, at 13:25 , Anselm Strauss wrote:


Hi,

originally I had the following labels on my ad0 disk (no partitions,  
directly labeled /dev/ad0):


# /dev/ad0:
8 partitions:
#size   offsetfstype   [fsize bsize bps/cpg]
 a: 1048576 04.2BSD 1024  8192 46248
 c: 1048576 0unused0 0 # "raw" part,  
don't edit


Since this was written from a file image the my compact flash card,  
and the card has now 8GB instead of 512MB, I wanted to grow the  
labels after having booted the system, and that worked. So now it is:


# /dev/ad0:
8 partitions:
#size   offsetfstype   [fsize bsize bps/cpg]
 a: 1566230404.2BSD 1024  8192 46248
 c: 156623040unused0 0 # "raw" part,  
don't edit


But unfortunately, I also grew label 'a', although I did not grow  
the filesystem. What I actually wanted was to stay 'a' the size it  
is and add new labels. So I tried to shrink 'a' again, to finally  
have something like:


# /dev/ad0:
8 partitions:
#size   offsetfstype   [fsize bsize bps/cpg]
 a:  104857604.2BSD 1024  8192 46248
 c: 156623040unused0 0 # "raw" part,  
don't edit


before adding new labels. But somehow bsdlabel has no effect when  
shrinking 'a'. No error or verbose message, the labels are just the  
same before running it, whether I use the edit mode or restore mode.


Am I not supposed to shrink a label like that?

Cheers,
Anselm



Okay, this was of course since I tried to resize a partition that is  
mounted. I guess this will never work, even when the filesystem  
actually already has the size the partition should be shrunk to. I  
think there is no other way of resizing the root partition/filesystem  
without booting a different system than the one on this partition.


Anselm

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

how to mount USB drive on system startup

2008-07-08 Thread Zbigniew Szalbot 

Dear all,

I am trying to make sure my USB hard drive will be available when system 
has finished booting. So:

$ grep usbd /etc/rc.conf
usbd_enable="YES"

and
$ grep backup /etc/fstab
/dev/ad3s1d /backup ufs rw  2   2

But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains 
that it cannot mount /backup.


mount: /backup: No such file or directory
Mounting /etc/fstab filesystem failed. Startup aborted.

I am sure there is something very simple that I need to do, so I'll 
appreciate your suggestions! Thanks!


--
Zbigniew Szalbot
www.LCWords.com


smime.p7s
Description: S/MIME Cryptographic Signature

Re: Capturing ATA devices serial numbers

2008-07-08 Thread Gonzalo Nemmi 
On Monday 07 July 2008 19:24:36 Wojciech Puchar wrote:
> atacontrol cap device

_Really_nice_ ...
Will add it to my repertoire :)
thanks for the hint Wojciech !

-- 
Blessings
Gonzalo Nemmi
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: how to mount USB drive on system startup

2008-07-08 Thread Odhiambo Washington 
On Tue, Jul 8, 2008 at 10:45 AM, Zbigniew Szalbot
<[EMAIL PROTECTED]> wrote:
> Dear all,
>
> I am trying to make sure my USB hard drive will be available when system has
> finished booting. So:
> $ grep usbd /etc/rc.conf
> usbd_enable="YES"
>
> and
> $ grep backup /etc/fstab
> /dev/ad3s1d /backup ufs rw  2   2
>
> But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it
> cannot mount /backup.
>
> mount: /backup: No such file or directory
> Mounting /etc/fstab filesystem failed. Startup aborted.
>
> I am sure there is something very simple that I need to do, so I'll
> appreciate your suggestions! Thanks!

mkdir /backup



-- 
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

"Oh My God! They killed init! You Bastards!"
 --from a /. post
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

subversion build problem

2008-07-08 Thread Warren Liddell 
===>  Building package for apr-gdbm-db42-1.3.2
Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz
Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1.
Registering conflicts: apr-*.
Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz'

===>   Returning to build of subversion-1.5.0_1
Error: shared library "apr-1.2" does not exist
*** Error code 1


Any ideas/thoughts appreciated.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: how to mount USB drive on system startup

2008-07-08 Thread Zbigniew Szalbot 

Hello,

Odhiambo Washington:

On Tue, Jul 8, 2008 at 10:45 AM, Zbigniew Szalbot
<[EMAIL PROTECTED]> wrote:

Dear all,

I am trying to make sure my USB hard drive will be available when system has
finished booting. So:
$ grep usbd /etc/rc.conf
usbd_enable="YES"

and
$ grep backup /etc/fstab
/dev/ad3s1d /backup ufs rw  2   2

But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains that it
cannot mount /backup.

mount: /backup: No such file or directory
Mounting /etc/fstab filesystem failed. Startup aborted.

I am sure there is something very simple that I need to do, so I'll
appreciate your suggestions! Thanks!


mkdir /backup


[shaking my head in disbelief...] it should have been so easy! Shame on 
me :)


Many thanks!

--
Zbigniew Szalbot
www.LCWords.com


smime.p7s
Description: S/MIME Cryptographic Signature

Re: automount is not recognizing option longname

2008-07-08 Thread Mel 
On Monday 07 July 2008 17:38:55 Stevan Tiefert wrote:
> Hello list,
>
> I have setup amd and it works fine. Only one special situation is making me
> crazy. When I want to use a USB-Stick without data on it, amd is mounting
> it with the 8.3-limitation. I've added the option longname in my map-file
> but it still ignores this option... Does somebody knows about this
> behavior?
>
> My amd.map:
>
> usb type:=pcfs;opts:=utimout=1,longname;dev:=/dev/da0s1
>

I'm taking a guess here, but if it has 'no data', could it be that it's 
formatted FAT, as in FAT-8, not 16 or 32, cause then longname support is 
rejected by the filesystem itself.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Ivailo Tanusheff 
Hi,

I guess the problem is with your netmask and respectivly the broadcast 
adrresses for the jails.
It should be:

inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255
inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255

Regards,

Ivailo Tanusheff
Deputy Head of IT Department
ProCredit Bank (Bulgaria) AD




Jason Morgan <[EMAIL PROTECTED]> 
Sent by: [EMAIL PROTECTED]
07.07.2008 21:01

To
FreeBSD Questions 
cc

Subject
Re: Jails and IP Aliasing






Hello,

On 2008.07.07 09:51:33, David Allen wrote:
> Unless I'm losing my mind, I'm encountering what seems to yet another
> gotcha with jails.  The following has been dumbed down for clarity and
> brevity.
> 
> -
> # hostname
> jailhost.example.org
> 
> # host jailhost
> jailhost.example.org has address 10.0.1.2
> 
> # ifconfig fxp0
> fxp0: flags=8843 metric 0 mtu 
1500
> options=b
> ether 00:07:e9:c8:2e:32
> inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
> inet 10.0.1.3 netmask 0x broadcast 10.0.1.3
> inet 10.0.1.4 netmask 0x broadcast 10.0.1.4
> media: Ethernet autoselect (100baseTX )
> status: active

This is the output for my jail interface. Notice that your jail
aliases are broadcasting on the jail's IP. I don't know if this is an
issue or not (my jails run on i386 FBSD 6.3), but it's something to
look at. How are you setting the aliases?

sk0: flags=8843 mtu 1500
 options=b
 inet 10.0.0.1 netmask 0xff00 broadcast 10.0.0.255
 inet 10.0.0.101 netmask 0xff00 broadcast 10.0.0.255
 inet 10.0.0.201 netmask 0xff00 broadcast 10.0.0.255
 ether xx:xx:xx:xx:xx:xx
 media: Ethernet autoselect (1000baseTX )
 status: active

Cheers,
~Jason
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
"[EMAIL PROTECTED]"

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

How to disable that an user execute any command

2008-07-08 Thread DSA - JCR 
Hi all

I use FreeBSD 6.2, and GELI

I want to make an user for the only task of remove/insert the usb copy disk.

I have made a new user (operator group), and a shell task that ask for the
GELI password and fsck and mount the USB disk. This work fine under root.

but I think that if he/she want to make CTRL-C to the shell task, he can
stop the task and then enter in the system and look whatever he wants (for
example, how the things are done).

How can I stop him from entering this CTRL-C (and others than could be) ?

I want this because there is intelectual propierty behind this.


Thanks in advance

Juan Coruña
Desarrollo de Software Atlantico




___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Mel 
On Monday 07 July 2008 18:51:33 David Allen wrote:

> Granted, everything is really happening over the loopback address, but a
> connection originating from the jailhost to a jail should appear to be
> using the jailhost's IP address, or so I'd like to think.  If it doesn't,
> then the scenario is awkward at best when trying to understand or debug
> issues.

To debug this, you need to 'add jail support to sockstat'. This sounds hard, 
and it is, but you can fake it, since sockstat gives you the PID. With a 
little creative scripting, you can call `ps -o state' for each PID in the 
list, look for the capital 'J' and if it is, add the 'J' to the line.

> The thought occurred to me, however, that I could add a new network card
> and reserve that for the IP aliases needed by the jails.  But I'm not sure
> whether that will work in telling me who's who, or whether I'll discover
> another gotcha.  ;-)

It will add more gotcha's, unless you put each network card in a different 
network. With the IP's given here, you tell the host that 10.0.1.0/24 is on 
fxp0, so it will never go to fxp1 for 10.0.1.4.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Mel 
On Tuesday 08 July 2008 11:13:04 Ivailo Tanusheff wrote:
> Hi,
>
> I guess the problem is with your netmask and respectivly the broadcast
> adrresses for the jails.
> It should be:
>
> inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
> inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255
> inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255

You guess wrong. Aliases SHOULD (as in IETF RFC should) have 255.255.255.255 
netmask.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: automount is not recognizing option longname

2008-07-08 Thread Stevan Tiefert 
Am Dienstag, 8. Juli 2008 10:57:39 schrieb Mel:
> On Monday 07 July 2008 17:38:55 Stevan Tiefert wrote:
> > Hello list,
> >
> > I have setup amd and it works fine. Only one special situation is making
> > me crazy. When I want to use a USB-Stick without data on it, amd is
> > mounting it with the 8.3-limitation. I've added the option longname in my
> > map-file but it still ignores this option... Does somebody knows about
> > this behavior?
> >
> > My amd.map:
> >
> > usb type:=pcfs;opts:=utimout=1,longname;dev:=/dev/da0s1
>
> I'm taking a guess here, but if it has 'no data', could it be that it's
> formatted FAT, as in FAT-8, not 16 or 32, cause then longname support is
> rejected by the filesystem itself.

No it is not formatted as FAT16. When I use manually:
# mount -t msdosfs -o longnames /dev/da0s1 /mnt
and then copy files on the empty USB-Stick via:
# cp * /mnt
then the longnames are recognized... This problem is only appearing when I use 
amd!

But it was a good guess :-)

Maybe other ideas?
Stevan Tiefert

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Ivailo Tanusheff 
No, I am right.
Try it yourself and you will see that solves the issue. I have several 
jails on different machines and this way the system works without any 
error or problem.
Try it and see it :)

Regards,

Ivailo Tanusheff




Mel <[EMAIL PROTECTED]> 
Sent by: [EMAIL PROTECTED]
08.07.2008 12:38

To
freebsd-questions@freebsd.org
cc

Subject
Re: Jails and IP Aliasing






On Tuesday 08 July 2008 11:13:04 Ivailo Tanusheff wrote:
> Hi,
>
> I guess the problem is with your netmask and respectivly the broadcast
> adrresses for the jails.
> It should be:
>
> inet 10.0.1.2 netmask 0xff00 broadcast 10.0.1.255
> inet 10.0.1.3 netmask 0xff00 broadcast 10.0.1.255
> inet 10.0.1.4 netmask 0xff00 broadcast 10.0.1.255

You guess wrong. Aliases SHOULD (as in IETF RFC should) have 
255.255.255.255 
netmask.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
"[EMAIL PROTECTED]"

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: How to disable that an user execute any command

2008-07-08 Thread Dez Accid 

DSA - JCR wrote:

I want to make an user for the only task of remove/insert the usb copy disk.

I have made a new user (operator group), and a shell task that ask for the
GELI password and fsck and mount the USB disk. This work fine under root.

but I think that if he/she want to make CTRL-C to the shell task, he can
stop the task and then enter in the system and look whatever he wants (for
example, how the things are done).

How can I stop him from entering this CTRL-C (and others than could be) ?


If I understand your question correctly, you want to prevent an 
interactive user running a shell script from breaking out of it via 
CTRL-C and entering the shell directly.


In that case, you can achieve this functionality in your shell script 
with the use of trap command.


E.g. this line will print "Ignoring CTRL-C" on CTRL-C keypress which 
generates an INT (number 2) signal:


trap "echo 'Ignoring INT signal'" 2

This page http://www.shelldorado.com/goodcoding/tempfiles.html describes 
the shell signals quite well, you may want to give it a read.


Thanks!

--
Dez Accid

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: subversion build problem

2008-07-08 Thread Fraser Tweedale 
On Tue, Jul 08, 2008 at 06:26:56PM +1000, Warren Liddell wrote:
> ===>  Building package for apr-gdbm-db42-1.3.2
> Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz
> Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1.
> Registering conflicts: apr-*.
> Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz'
> 
> ===>   Returning to build of subversion-1.5.0_1
> Error: shared library "apr-1.2" does not exist
> *** Error code 1
> 
> 
> Any ideas/thoughts appreciated.

There was an apr version bump.  The subversion port was updated
earlier to day in order to chase this change.  Update your ports
tree and you should find that it will then compile without
problems.

frase



pgpM9KdxJQlDC.pgp
Description: PGP signature

Re: subversion build problem

2008-07-08 Thread Giorgos Keramidas 
On Tue, 8 Jul 2008 20:45:49 +1000, Fraser Tweedale <[EMAIL PROTECTED]> wrote:
> On Tue, Jul 08, 2008 at 06:26:56PM +1000, Warren Liddell wrote:
>> ===>  Building package for apr-gdbm-db42-1.3.2
>> Creating package /usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz
>> Registering depends: libiconv-1.11_1 db42-4.2.52_5 gdbm-1.8.3_3 expat-2.0.1.
>> Registering conflicts: apr-*.
>> Creating bzip'd tar ball in '/usr/ports/packages/All/apr-gdbm-db42-1.3.2.tbz'
>>
>> ===>   Returning to build of subversion-1.5.0_1
>> Error: shared library "apr-1.2" does not exist
>> *** Error code 1
>>
>> Any ideas/thoughts appreciated.
>
> There was an apr version bump.  The subversion port was updated
> earlier to day in order to chase this change.  Update your ports
> tree and you should find that it will then compile without
> problems.

ACK...

I was bitten by the apr-1.2 / apr-1.3 version bump, and I can verify
that the new port builds fine here too.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: difference between loading kernel module during boot and after boot manually?

2008-07-08 Thread Vincent Barus 
On Sun, Jun 22, 2008 at 11:29 PM, Vincent Barus <[EMAIL PROTECTED]> wrote:
> Hi everybody,
>
> is there a difference between loading a kernel module during the boot process
> and loading a module manually after the login?
> I'm asking this on a general basis and because of pr: kern/123563.
> I don't know if it's a problem with if_re because I can't find someone
> out on the net
> having the same problem.
> The driver if_re works after laoding it manually after the login and I
> have no problems
> with it after this manual kldload if_re.
>
> Can you guys give me a hint how to get further with the troubleshooting 
> because
> I can't find any difference with pciconf or the boot -v messages.
>
> Pyun did a nice job with if_re and shame on me for making his driver 
> responsible
> at first but that's the only driver I can reproduce this problem with
> so I don't know
> if there's a hardware / driver / base issue.
>
> The facts about my configuration etc. is in
> http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/123563
>
> If you want more information please write me.
>
> Thanks and kind regards,
>
> Vincent
>

Hi all,

does anyone have an idea what's the difference or what _could_ be the
difference on loading a kernel module during boot or manually?

Regards,

Vincent
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread David Allen 
On Mon, Jul 7, 2008 at 2:01 PM, George Hartzell <[EMAIL PROTECTED]> wrote:
>
> Did you take the necessary steps to restrict the IP addresses on which
> sendmail on the host and the jail listen?  The jail man page only
> says:

I don't think anyone would get too far with jails in general if the
jail host wasn't properly configured beforehand.  To answer your
question, sendmail on the jail host is listening to the loopback
address only.  And to the extent it's not redundant or meaningless,
within each jail, sendmail is configured to listen to the jail's IP
address only.

Regrettably, the problem isn't specific to sendmail or any other
service, as an ssh connection would exhibit identical behaviour.  Put
simply, all connections from the jail host to any jail are reported as
using that jail's IP address only.  Doesn't matter if your viewing the
state from the perspective of the jail host, or from within the jail
itself.   Both ends of the connection have the same IP address.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: How to disable that an user execute any command

2008-07-08 Thread Kirk Strauser 
On Tuesday 08 July 2008, DSA - JCR wrote:

> but I think that if he/she want to make CTRL-C to the shell task, he can
> stop the task and then enter in the system and look whatever he wants
> (for example, how the things are done).

Use "sudo" to allow non-root users to run that script as root.  If they hit 
^C, they get dropped right back to their own account.

> I want this because there is intelectual propierty behind this.

Don't put trade secrets in shell scripts.
-- 
Kirk Strauser


signature.asc
Description: This is a digitally signed message part.

Re: difference between loading kernel module during boot and after boot manually?

2008-07-08 Thread David Gurvich 
I don't know what the difference is, but there is one.  I have a system
that automatically reboots if nvidia is added to /boot/loader.conf on
FreeBSD7. If the module is loaded from the loader prompt the system
boots and xorg works.  I now use solaris on that system as FreeBSD had
all sorts of issues, but I recall adding a kldload statement to a
startup script.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: bsdlabel has no effect

2008-07-08 Thread Jerry McAllister 
On Tue, Jul 08, 2008 at 09:19:09AM +0200, Anselm Strauss wrote:

> On Jun 28, 2008, at 13:25 , Anselm Strauss wrote:
> 
> >Hi,
> >
> >originally I had the following labels on my ad0 disk (no partitions,  
> >directly labeled /dev/ad0):
> >
> ># /dev/ad0:
> >8 partitions:
> >#size   offsetfstype   [fsize bsize bps/cpg]
> > a: 1048576 04.2BSD 1024  8192 46248
> > c: 1048576 0unused0 0 # "raw" part,  
> >don't edit
> >
> >Since this was written from a file image the my compact flash card,  
> >and the card has now 8GB instead of 512MB, I wanted to grow the  
> >labels after having booted the system, and that worked. So now it is:
> >
> ># /dev/ad0:
> >8 partitions:
> >#size   offsetfstype   [fsize bsize bps/cpg]
> > a: 1566230404.2BSD 1024  8192 46248
> > c: 156623040unused0 0 # "raw" part,  
> >don't edit
> >
> >But unfortunately, I also grew label 'a', although I did not grow  
> >the filesystem. What I actually wanted was to stay 'a' the size it  
> >is and add new labels. So I tried to shrink 'a' again, to finally  
> >have something like:
> >
> ># /dev/ad0:
> >8 partitions:
> >#size   offsetfstype   [fsize bsize bps/cpg]
> > a:  104857604.2BSD 1024  8192 46248
> > c: 156623040unused0 0 # "raw" part,  
> >don't edit
> >
> >before adding new labels. But somehow bsdlabel has no effect when  
> >shrinking 'a'. No error or verbose message, the labels are just the  
> >same before running it, whether I use the edit mode or restore mode.
> >
> >Am I not supposed to shrink a label like that?
> >
> >Cheers,
> >Anselm
> >
> 
> Okay, this was of course since I tried to resize a partition that is  
> mounted. I guess this will never work, even when the filesystem  
> actually already has the size the partition should be shrunk to. I  
> think there is no other way of resizing the root partition/filesystem  
> without booting a different system than the one on this partition.

Yes, you have to unmount the partition/filesystem before you can 
modify its configuration.

Just boot the install CD and bring up the fixit.  Then you
can work on it just fine.   Just remember that it may have 
different device addresses (not necessarily, but might) and
that you will need to make mount points if you need to mount
anything to muck with files in a partition.   Also, note that
on a fixit boot, those mount points (and root) are in a memory 
file system and will be gone after the next boot.

I hope you have a good backup of your 'a' partition because it may
now not be happy.

jerry
   
> 
> Anselm
> 
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: how to mount USB drive on system startup

2008-07-08 Thread Jerry McAllister 
On Tue, Jul 08, 2008 at 09:45:55AM +0200, Zbigniew Szalbot wrote:

> Dear all,
> 
> I am trying to make sure my USB hard drive will be available when system 
> has finished booting. So:
> $ grep usbd /etc/rc.conf
> usbd_enable="YES"
> 
> and
> $ grep backup /etc/fstab
> /dev/ad3s1d   /backup ufs rw  2   2
> 
> But when I restart the system (FreeBSD 6.3-RELEASE-p1), it complains 
> that it cannot mount /backup.
> 
> mount: /backup: No such file or directory
> Mounting /etc/fstab filesystem failed. Startup aborted.
> 
> I am sure there is something very simple that I need to do, so I'll 
> appreciate your suggestions! Thanks!

Well, the first thing that comes to mind is, did you make
the /backup mountpoint   eg  'mkdir /backup'  at some time?
Is it really there?

Next question is, did you build a filesystem on the USB?  eg
 [fdisk] bsdlabel and newfs  

Check it by running fdisk and bsdlabel on it just to read what it 
thinks is there, as in:
   fdisk ad3
   bsdlabel ad3s1

I make all my USB stuff as 'noauto' in /etc/fstab and then manually
mount them later when needed and I have never had a problem - with
either ufs or msdos filesystem types.   I don't think you have to
do it that way, but check it out and see if it makes any difference.
eg change 'rw'  to  'rw,noauto'  in fstab, boot and then try to
do the mount.

If it makes a difference, then maybe there is something to file
a PR on, but it would take further investigation to nail it down.

jerry

> 
> -- 
> Zbigniew Szalbot
> www.LCWords.com

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Procmail error

2008-07-08 Thread Frank Shute 
On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote:
>
> > 
> > > Probably the wrong forum for this, but since it's on a freebsd system:
> > > 
> > > I have mutt installed on two other freebsd computers.  I fetch pop
> > > mail via getmail, and procmail puts things where they belong.  I just
> > > installed freebsd 7.0 on another computer with what I thought were the
> > > exact same settings for all of the mail programs involved.  When I try
> > > to retrieve mail I get this error message:
> > > 
> > > Delivery error (command procmail 3695 error (127, exec of command
> > > procmail failed (refuse to invoke external commands as root or GID 0
> > > by default)))
> > > 
> > > I'm a relative newbie here and would appreciate it if someone could
> > > give me a heads up on this.
> > > 
> > > Rem
> > 
> > Are you running getmail as root?
> 
> Boy, I hope not.  And I have this entry in my aliases file: 
> 
> root: rem
> 
> so I'm not collecting mail as root.
> 

What does your getmailrc look like?

I've got this section in there. You should have similar:

[destination]
type = MDA_external
path = /usr/local/bin/procmail
user = frank


-- 

 Frank 


 Contact info: http://www.shute.org.uk/misc/contact.html 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Procmail error

2008-07-08 Thread Rem P Roberti 
On 2008.07.08 16:46:18 +, Frank Shute wrote:
> On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote:
> >
> > > 
> > > > Probably the wrong forum for this, but since it's on a freebsd system:
> > > > 
> > > > I have mutt installed on two other freebsd computers.  I fetch pop
> > > > mail via getmail, and procmail puts things where they belong.  I just
> > > > installed freebsd 7.0 on another computer with what I thought were the
> > > > exact same settings for all of the mail programs involved.  When I try
> > > > to retrieve mail I get this error message:
> > > > 
> > > > Delivery error (command procmail 3695 error (127, exec of command
> > > > procmail failed (refuse to invoke external commands as root or GID 0
> > > > by default)))
> > > > 
> > > > I'm a relative newbie here and would appreciate it if someone could
> > > > give me a heads up on this.
> > > > 
> > > > Rem
> > > 
> > > Are you running getmail as root?
> > 
> > Boy, I hope not.  And I have this entry in my aliases file: 
> > 
> > root:   rem
> > 
> > so I'm not collecting mail as root.
> > 
> 
> What does your getmailrc look like?
> 
> I've got this section in there. You should have similar:
> 
> [destination]
> type = MDA_external
> path = /usr/local/bin/procmail
> user = frank

Here is the entry I use:

[destination]
type = MDA_external
path = /usr/local/bin/procmail
unixfrom = True

This getmailrc file is the same one that I use on two other computers
with not problems.

Rem
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread David Allen 
On Tue, Jul 8, 2008 at 2:24 AM, Mel <[EMAIL PROTECTED]> wrote:
> On Monday 07 July 2008 18:51:33 David Allen wrote:
>
>> Granted, everything is really happening over the loopback address, but a
>> connection originating from the jailhost to a jail should appear to be
>> using the jailhost's IP address, or so I'd like to think.  If it doesn't,
>> then the scenario is awkward at best when trying to understand or debug
>> issues.
>
> To debug this, you need to 'add jail support to sockstat'. This sounds hard,
> and it is, but you can fake it, since sockstat gives you the PID. With a
> little creative scripting, you can call `ps -o state' for each PID in the
> list, look for the capital 'J' and if it is, add the 'J' to the line.

Been there and done that.  When I first stated working with jails, I
discovered that most standard utilities didn't offer any support for
jails, and chaining commands got to be really old fast.   I ended up
writing a few Perl scripts and routinely use those instead.  IIRC,
there's a jail-related port that offers a collection of something
similar.

Still, we're talking about a very limited subset of tools and
functionality.  What about tcpdump?  Or firewall rules?  Or any other
network tool?

There was a post recently (Matthew Seaman's name comes to mind) that
suggested binding jails to addresses in the loopback range and then
using firewall rules to redirect the traffic accordingly.  There's a
possibility that may help in this case, but that layer of added
complexity isn't much of an improvement over seeing connections with
seemingly identical endpoints and interpreting the results in my head.

>> The thought occurred to me, however, that I could add a new network card
>> and reserve that for the IP aliases needed by the jails.  But I'm not sure
>> whether that will work in telling me who's who, or whether I'll discover
>> another gotcha.  ;-)
>
> It will add more gotcha's, unless you put each network card in a different
> network. With the IP's given here, you tell the host that 10.0.1.0/24 is on
> fxp0, so it will never go to fxp1 for 10.0.1.4.

You're probably right.  I'm wondering, though, if by moving the jails
into their own network space and adding routing into the mix, the end
result may be more satisfactory?

Setting aside the fun of mental gymnastics, the conclusion seems to be
don't run anything on the jail host that would initiate a connection
to a service running inside a jail.  Unless, of course, you don't mind
being confused (at least from a networking perspective) by WTF you're
seeing.  ;-)

Either way, thanks very much for the input.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Procmail error

2008-07-08 Thread Frank Shute 
On Tue, Jul 08, 2008 at 08:52:33AM -0700, Rem P Roberti wrote:
>
> On 2008.07.08 16:46:18 +, Frank Shute wrote:
> > On Mon, Jul 07, 2008 at 11:22:19PM -0700, Rem P Roberti wrote:
> > >
> > > > 
> > > > > Probably the wrong forum for this, but since it's on a freebsd system:
> > > > > 
> > > > > I have mutt installed on two other freebsd computers.  I fetch pop
> > > > > mail via getmail, and procmail puts things where they belong.  I just
> > > > > installed freebsd 7.0 on another computer with what I thought were the
> > > > > exact same settings for all of the mail programs involved.  When I try
> > > > > to retrieve mail I get this error message:
> > > > > 
> > > > > Delivery error (command procmail 3695 error (127, exec of command
> > > > > procmail failed (refuse to invoke external commands as root or GID 0
> > > > > by default)))
> > > > > 
> > > > > I'm a relative newbie here and would appreciate it if someone could
> > > > > give me a heads up on this.
> > > > > 
> > > > > Rem
> > > > 
> > > > Are you running getmail as root?
> > > 
> > > Boy, I hope not.  And I have this entry in my aliases file: 
> > > 
> > > root: rem
> > > 
> > > so I'm not collecting mail as root.
> > > 
> > 
> > What does your getmailrc look like?
> > 
> > I've got this section in there. You should have similar:
> > 
> > [destination]
> > type = MDA_external
> > path = /usr/local/bin/procmail
> > user = frank
> 
> Here is the entry I use:
> 
> [destination]
> type = MDA_external
> path = /usr/local/bin/procmail
> unixfrom = True
> 
> This getmailrc file is the same one that I use on two other computers
> with not problems.
> 

The problem is that you're invoking getmail as root on this machine
and not the others.

http://pyropus.ca/software/getmail/troubleshooting.html#error-messages

-- 

 Frank 


 Contact info: http://www.shute.org.uk/misc/contact.html 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

rblsmtpd/qmail-smtpd hung processes

2008-07-08 Thread Brad Mettee 
I've run into a bit of a problem and if I don't solve it soon, I'm going to 
be without e-mail (and so will a lot of other people). This is a bit long, 
I'm trying to include anything that may help.


The problem is that qmail-smtpd and/or rblsmtpd get stuck and don't close. 
After a while the server just quits accepting smtp connections, or will 
connect/disconnect very quickly (connection closed by foreign host). Using 
kill on these processes just opens another instance of them (they're 
managed by /var/service). Since I'm not seeing any log activity that shows 
what's going on, I'm having a hard time figuring it out. I know the 
processes are supposed to be timing out and closing, but don't seem to be 
doing that


Has anyone seen this problem? I've tried searching for info on it, but 
can't find anything that looks similar. I currently have rblsmtpd disabled 
since it sits between the outside world and qmail-smtpd. The errors don't 
occur quickly, it seems to take multiple hours to occur so this is hard to 
debug because I can't create the problem on demand. Any ideas are welcome. 
(hopefully I'll be able to get mail from this address long enough to fix 
this - it's one of the ones that's been moved to this machine already)


uname -a
FreeBSD ns1.pchotshots.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun Feb 24 
10:35:36 UTC 
2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  amd64


Related ports in use:
ucspi-tcp-0.88_2
qmail-1.03_7
qmailadmin-1.2.10,1
vpopmail-5.4.26_1
dovecote-1.0.14

A quick bit of history:
Our email/dns provider is closing up shop in about a week (good friend of 
mine was a small ISP). I only had about 3 weeks notice on this and I've 
been configuring a pair of FreeBSD machines (I posted to the list a couple 
weeks ago, thanks everyone for good replies, ) to take over DNS and E-Mail 
for about a dozen sites. Basically I've been on a crash course of learning 
as I go.


Brad Mettee
PC HotShots, Inc.
Baltimore, MD
(410) 426-7617

 -> Let us bring out the *Power* of your PCs. <-
-> Custom Business Software Solutions since 1991 <-

visit http://www.pchotshots.com for information about our company.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Procmail error

2008-07-08 Thread Rem P Roberti 
> > What does your getmailrc look like?
> > 
> > I've got this section in there. You should have similar:
> > 
> > [destination]
> > type = MDA_external
> > path = /usr/local/bin/procmail
> > user = frank
> 
> Here is the entry I use:
> 
> [destination]
> type = MDA_external
> path = /usr/local/bin/procmail
> unixfrom = True
> 
> This getmailrc file is the same one that I use on two other computers
> with not problems.
>

Problem solved.  I added "allow_root_commands = True" to the
[destination] entries in the getmailrc and that fixed it.

Rem 
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Matthew Seaman 

David Allen wrote:


There was a post recently (Matthew Seaman's name comes to mind) that
suggested binding jails to addresses in the loopback range and then
using firewall rules to redirect the traffic accordingly.  There's a
possibility that may help in this case, but that layer of added
complexity isn't much of an improvement over seeing connections with
seemingly identical endpoints and interpreting the results in my head.


Guilty as charged M'lud.

However what I recommended was a more-than-slightly hacky way to achieve 
three things:


  * Something like a loopback address inside the jail.  It may be
127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
to use it for loopback style things.

  * The ability to map several IPs onto the jailed system by use of
NAT and redirect within firewall rules

  * The ability to have a jail with /no/ external IP for when the
paranoia becomes unbearable[*].

Of course, all this will be immediately obsoleted by Marco Zec's work
on virtualizing the IP stack.  http://imunes.tel.fer.hr/virtnet/

Cheers,

Matthew

[*] Combine this with a Hardware Load Balancer that does Direct Server
Return and you can have a publicly accessible jailed server with /no 
external IP address/.  


--
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
 Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
 Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature

ports

2008-07-08 Thread kalin m 

brand new install of freebsd 7. some httpd and named.
what are these?
udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*


thanks


# netstat -a
Active Internet connections (including servers)
Proto Recv-Q Send-Q  Local Address  Foreign Address(state)
tcp4   0  0  big.sshh-1-2-3-4.51366 ESTABLISHED
tcp4   0  0  big.sshh-74-1-12-15.wi.51362 
ESTABLISHED

tcp4   0  0  big.http   *.*LISTEN
tcp4   0  0  localhost.domain   *.*LISTEN
tcp4   0  0  big.domain *.*LISTEN
tcp4   0  0  localhost.smtp *.*LISTEN
tcp4   0  0  *.ssh  *.*LISTEN
tcp6   0  0  *.ssh  *.*LISTEN
udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*
udp4   0  0  localhost.domain   *.*
udp4   0  0  big.domain *.*
udp4   0  0  *.syslog   *.*
udp6   0  0  *.syslog   *.*
___

freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread Lowell Gilbert 
kalin m <[EMAIL PROTECTED]> writes:

> brand new install of freebsd 7. some httpd and named.
> what are these?

Use sockstat(1) to find out?

> udp6   0  0  *.54168*.*
> udp4   0  0  *.54167*.*
>
> thanks
>
>
> # netstat -a
> Active Internet connections (including servers)
> Proto Recv-Q Send-Q  Local Address  Foreign Address(state)
> tcp4   0  0  big.sshh-1-2-3-4.51366 ESTABLISHED
> tcp4   0  0  big.sshh-74-1-12-15.wi.51362
> ESTABLISHED
> tcp4   0  0  big.http   *.*LISTEN
> tcp4   0  0  localhost.domain   *.*LISTEN
> tcp4   0  0  big.domain *.*LISTEN
> tcp4   0  0  localhost.smtp *.*LISTEN
> tcp4   0  0  *.ssh  *.*LISTEN
> tcp6   0  0  *.ssh  *.*LISTEN
> udp6   0  0  *.54168*.*
> udp4   0  0  *.54167*.*
> udp4   0  0  localhost.domain   *.*
> udp4   0  0  big.domain *.*
> udp4   0  0  *.syslog   *.*
> udp6   0  0  *.syslog   *.*
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "[EMAIL PROTECTED]"
>

-- 
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

RE: Capturing ATA devices serial numbers

2008-07-08 Thread Vaughn Clinton 
Okay - I've tried this against two devices in the system.  The devices
queried are report as ad0 and ad2.  When using the following command against
either device I get the following response: 

"usage: atacontrol  channel [args]"

Now, it must be noted that I am using a ccd device that's has both these
devices configured as member of the ccd configuration.  I'm pretty sure that
this should not interfere with the query but, I thought I would let you
know.

Any further suggestions would be greatly appreciated.

Cheers,



-Original Message-
From: Wojciech Puchar [mailto:[EMAIL PROTECTED] 
Sent: Monday, July 07, 2008 4:25 PM
To: Vaughn Clinton
Cc: [EMAIL PROTECTED]
Subject: Re: Capturing ATA devices serial numbers

atacontrol cap device


On Mon, 7 Jul 2008, Vaughn Clinton wrote:

> All,
>
>
>
> I'm looking for a FreeBSD utility that will allow me to query a disk for
its
> serial number.  Can you point me to such a tool that'll allow me to do so?
>
>
>
> Regards,
>
>
>
>
>
> *
>
> Vaughn E. Clinton
>
> Systems Analyst
>
> Scientific Computing Resources
>
> HPC-3
>
> Los Alamos National Laboratory
>
>
>
> 505-606-2103 - Voice
>
> 505-664-7819 - Pager
>
> *
>
>
>
> ___
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
"[EMAIL PROTECTED]"
>
>


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Daniel Gerzo 

Hello,

>* Something like a loopback address inside the jail.  It may be
>  127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
>  to use it for loopback style things.
> 
>* The ability to map several IPs onto the jailed system by use of
>  NAT and redirect within firewall rules
> 
>* The ability to have a jail with /no/ external IP for when the
>  paranoia becomes unbearable[*].

Most of this is actually implemented by [EMAIL PROTECTED] You can find some 
patches
at http://sources.zabbadoz.net/freebsd/jail.html 

-- 
Best regards,
  Daniel Gerzo

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

ipf question

2008-07-08 Thread ann kok 
Hi all

I am using ipf associated with ippool.  When I need to change 
/etc/ipf/ippool.conf, say add a new member in a group, ippool -F  and ippool -f 
/etc/ipf/ippool.conf doesn't seem to work.  I also tried reloading the ipfilter 
rule by 'ipf -Fa -f /etc/ipf/ipf.conf', but ipf doesn't seem to re-read the 
ippool.conf

The only way that has worked is to 'ipf -D' and then 'ipf -E', manually reload 
ippool and then reload the ipf.conf .  But this is not ideal for me since 
restarting the ipf would flush the state table, thus disconnect existing 
connection.

Is there any way to make change to ippool without dropping connectivity?

Thank you


  
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread Matthew Seaman 

Lowell Gilbert wrote:

kalin m <[EMAIL PROTECTED]> writes:


brand new install of freebsd 7. some httpd and named.
what are these?


Use sockstat(1) to find out?


udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*


Almost certainly named -- it appears to listen on a high numbered
UDP port, but all it is is the next /source/ port for an outgoing
UDP packet.  You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling) by:

   query-source   address 12.34.56.78 port 53;
   query-source-v6address 1999:::::1 port 53;
   transfer-source12.34.56.78 port 53;
   transfer-source-v6 1999:::::1 port 53;
   notify-source  12.34.56.78 port 53;
   notify-source-v6   1999:::::1 port 53;

Cheers,

Matthew

--
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
 Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
 Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature

Re: Jails and IP Aliasing

2008-07-08 Thread Chris St Denis 

Daniel Gerzo wrote:

Hello,

  

   * Something like a loopback address inside the jail.  It may be
 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
 to use it for loopback style things.

   * The ability to map several IPs onto the jailed system by use of
 NAT and redirect within firewall rules

   * The ability to have a jail with /no/ external IP for when the
 paranoia becomes unbearable[*].



Most of this is actually implemented by [EMAIL PROTECTED] You can find some 
patches
at http://sources.zabbadoz.net/freebsd/jail.html 
  
These patches (in various forms) have been around since version 4.x. Why 
has none of this functionality ever been committed to head?

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread Yuri Pankov 
On Tue, Jul 08, 2008 at 12:14:54PM -0400, kalin m wrote:
> brand new install of freebsd 7. some httpd and named.
> what are these?
> udp6   0  0  *.54168*.*udp4   
> 0  0  *.54167*.*
>
> thanks

Try using sockstat(1) to find which app is listening there:
sockstat -6p54168
sockstat -4p54167


HTH,
Yuri
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread Mel 
On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:

> You can configure named to always send packets using a
> fixed port number (which can be helpful for firewalling)

Purely outof interest, which (useful) firewall/nat rules cannot be made with 
dest port 53, that can be made with source port 53. Not talking syntax, 
but "business logically".
-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: difference between loading kernel module during boot and after boot manually?

2008-07-08 Thread Mel 
On Tuesday 08 July 2008 16:48:26 Vincent Barus wrote:

> does anyone have an idea what's the difference or what _could_ be the
> difference on loading a kernel module during boot or manually?

There's one major difference. File systems aren't mounted at loader stage, so 
any reference to modules/libraries that exist on a different partition, will 
fail.

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: quota and sendmail accepts <10k mail size

2008-07-08 Thread Derek Ragona 

At 08:14 PM 7/7/2008, lyd mc wrote:

Greetings,

I setup my mail server on freebsd7.0R and it is working great!

However, I have a problem on quota. It suppose to block any incoming 
message to specific user which is under quota. But sendmail can still send 
to the user under quota if the mail size is ~ less than 10k. Quota only 
works when the mail size is  greater than 13k.


Is there any way to correct this problem? Please help.


By the way, i disable the grace period via quota.h.

   #define MAX_IQ_TIME (0) /* seconds in 1 week */
   #define MAX_DQ_TIME (0) /* seconds in 1 week */


And my mail users authenticate via ldap.

Thank you and more power.


I don't fully understand what you are trying to limit, most sendmail size 
limits are set either globally, or by protocol.  The General setting is set 
in you .mc file with:


confMAX_MESSAGE_SIZEMaxMessageSize  [infinite] The maximum size of messages
that will be accepted (in bytes).

Otherwise read through the page on the options here and you can refine the 
size limit by the protcol/mta:


http://www.sendmail.org/documentation/configurationReadme

-Derek


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread kalin m 

right named...

thanks


Matthew Seaman wrote:

Lowell Gilbert wrote:

kalin m <[EMAIL PROTECTED]> writes:


brand new install of freebsd 7. some httpd and named.
what are these?


Use sockstat(1) to find out?


udp6   0  0  *.54168*.*
udp4   0  0  *.54167*.*


Almost certainly named -- it appears to listen on a high numbered
UDP port, but all it is is the next /source/ port for an outgoing
UDP packet.  You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling) by:

   query-source   address 12.34.56.78 port 53;
   query-source-v6address 1999:::::1 port 53;
   transfer-source12.34.56.78 port 53;
   transfer-source-v6 1999:::::1 port 53;
   notify-source  12.34.56.78 port 53;
   notify-source-v6   1999:::::1 port 53;

Cheers,

Matthew


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: wpa, static ip only on specific networks

2008-07-08 Thread Mel 
On Tuesday 08 July 2008 03:32:10 David Gurvich wrote:

> How does one configure a wireless connection using wpa and dhcp on some
> networks and wpa with a static ip on others?

Tough.
I'd probably configure the interface as "WPA inet 127.0.0.2 netmask 255.0.0.0" 
and then put a script in /usr/local/etc/rc.d that would read out the BSSID 
and make it's descision accordingly.
-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread Mel 
On Tuesday 08 July 2008 11:24:33 Mel wrote:
> On Monday 07 July 2008 18:51:33 David Allen wrote:
> > Granted, everything is really happening over the loopback address, but a
> > connection originating from the jailhost to a jail should appear to be
> > using the jailhost's IP address, or so I'd like to think.  If it doesn't,
> > then the scenario is awkward at best when trying to understand or debug
> > issues.
>
> To debug this, you need to 'add jail support to sockstat'. This sounds
> hard, and it is

It's actually not that hard, though it stretches the output width. Diff 
inlined below sig, for RELENG_7. 

-- 
Mel

Problem with today's modular software: they start with the modules
and never get to the software part.

Index: sockstat.c
===
RCS file: /home/ncvs/src/usr.bin/sockstat/sockstat.c,v
retrieving revision 1.17
diff -u -r1.17 sockstat.c
--- sockstat.c  16 Jun 2007 20:24:55 -  1.17
+++ sockstat.c  8 Jul 2008 19:40:11 -
@@ -94,6 +94,11 @@
struct sock *next;
 };
 
+struct procinfo {
+   const char *procname;
+   int jid;
+};
+
 #define HASHSIZE 1009
 static struct sock *sockhash[HASHSIZE];
 
@@ -513,13 +518,16 @@
return xprintf("%s:%d", addrstr, port);
 }
 
-static const char *
-getprocname(pid_t pid)
+static int
+getprocinfo(pid_t pid, struct procinfo *pi_ptr)
 {
static struct kinfo_proc proc;
size_t len;
int mib[4];
 
+   if( pi_ptr == NULL )
+   return -1;
+
mib[0] = CTL_KERN;
mib[1] = KERN_PROC;
mib[2] = KERN_PROC_PID;
@@ -529,9 +537,12 @@
/* Do not warn if the process exits before we get its name. */
if (errno != ESRCH)
warn("sysctl()");
-   return ("??");
+   return -1;
}
-   return (proc.ki_comm);
+   pi_ptr->procname = proc.ki_comm;
+   pi_ptr->jid = proc.ki_jid;
+
+   return (0);
 }
 
 static int
@@ -564,11 +575,12 @@
struct passwd *pwd;
struct xfile *xf;
struct sock *s;
+   struct procinfo pi;
void *p;
int hash, n, pos;
 
-   printf("%-8s %-10s %-5s %-2s %-6s %-21s %-21s\n",
-   "USER", "COMMAND", "PID", "FD", "PROTO",
+   printf("%-8s %-10s %-5s %-5s %-2s %-6s %-21s %-21s\n",
+   "USER", "COMMAND", "PID", "JID", "FD", "PROTO",
"LOCAL ADDRESS", "FOREIGN ADDRESS");
setpassent(1);
for (xf = xfiles, n = 0; n < nxfiles; ++n, ++xf) {
@@ -583,33 +595,41 @@
if (!check_ports(s))
continue;
pos = 0;
+   if( -1 == getprocinfo(xf->xf_pid, &pi) )
+   {
+   pi.procname = "??";
+   pi.jid = -1;
+   }
if ((pwd = getpwuid(xf->xf_uid)) == NULL)
pos += xprintf("%lu", (u_long)xf->xf_uid);
else
pos += xprintf("%s", pwd->pw_name);
while (pos < 9)
pos += xprintf(" ");
-   pos += xprintf("%.10s", getprocname(xf->xf_pid));
+   pos += xprintf("%.10s", pi.procname);
while (pos < 20)
pos += xprintf(" ");
pos += xprintf("%lu", (u_long)xf->xf_pid);
while (pos < 26)
pos += xprintf(" ");
+   pos += xprintf("%u", pi.jid);
+   while (pos < 32)
+   pos += xprintf(" ");
pos += xprintf("%d", xf->xf_fd);
-   while (pos < 29)
+   while (pos < 35)
pos += xprintf(" ");
pos += xprintf("%s", s->protoname);
if (s->vflag & INP_IPV4)
pos += xprintf("4");
if (s->vflag & INP_IPV6)
pos += xprintf("6");
-   while (pos < 36)
+   while (pos < 42)
pos += xprintf(" ");
switch (s->family) {
case AF_INET:
case AF_INET6:
pos += printaddr(s->family, &s->laddr);
-   while (pos < 58)
+   while (pos < 64)
pos += xprintf(" ");
pos += printaddr(s->family, &s->faddr);
break;
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Jails and IP Aliasing

2008-07-08 Thread David Allen 
On Tue, Jul 8, 2008 at 9:35 AM, Matthew Seaman
<[EMAIL PROTECTED]> wrote:
> David Allen wrote:
>
>> There was a post recently (Matthew Seaman's name comes to mind) that
>> suggested binding jails to addresses in the loopback range and then
>> using firewall rules to redirect the traffic accordingly.  There's a
>> possibility that may help in this case, but that layer of added
>> complexity isn't much of an improvement over seeing connections with
>> seemingly identical endpoints and interpreting the results in my head.
>
> Guilty as charged M'lud.

Stand up, fool, lest I be forced to lower my knee and acknowledge your presence
in a manner befitting a man as yourself.

> However what I recommended was a more-than-slightly hacky way to achieve
> three things:
>
>  * Something like a loopback address inside the jail.  It may be
>127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
>to use it for loopback style things.
>
>  * The ability to map several IPs onto the jailed system by use of
>NAT and redirect within firewall rules
>
>  * The ability to have a jail with /no/ external IP for when the
>paranoia becomes unbearable[*].

It could be said that those three expand into more numerous
achievements.  I'm still debating the "more-than-slightly hacky" aspects
of such an arrangement, but undeniably it's interesting enough.

> Of course, all this will be immediately obsoleted by Marco Zec's work
> on virtualizing the IP stack.  http://imunes.tel.fer.hr/virtnet/

Promising, even exciting, but I'm having trouble deciding whether I
declare a victory for the  triumph of optimism over experience, or
offer the comment that the Real Soon Now schedule is a disappointment?
Seriously, though, jails can be seen as the greatest thing since slide bread,
but I have this nagging feeling I'm at work writing a small book that details
their niggly shortcomings, a book whose completion, I hope, will be cut
short by the addition of New and Improved features.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Load balance for POP3

2008-07-08 Thread scuba 
Hi Vince,

On Mon, 30 Jun 2008, Vince Hoffman wrote:

|> |> I need to switch the users connections between two POP3 servers based 
on
|> |> login information.
|> |> Since the login is part of the pop3 handshake, I'm stuck on how to
|> |> "transfer" the connection and pass the info already sent.
|> 
|would nginx (as described here
|http://highscalability.com/nginx-high-performance-smpt-pop-imap-proxy)
|be more what your after?

Yes, it seems thar Nginx has what I need. Do you have any working 
setup? Thank you,

- Marcelo Souza


- Marcelo

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread David Allen 
On Tue, Jul 8, 2008 at 11:04 AM, Mel
<[EMAIL PROTECTED]> wrote:
> On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:
>
>> You can configure named to always send packets using a
>> fixed port number (which can be helpful for firewalling)
>
> Purely outof interest, which (useful) firewall/nat rules cannot be made with
> dest port 53, that can be made with source port 53. Not talking syntax,
> but "business logically".

Fewer rules for those with a predisposition to being anal?

IIRC, pf offers a policy-based approch which I believe could make use of
such distinctions, but I think the advantages of managing the
source/destination
ports for querries, transfers, etc. are found more in traffic accounting than in
writing rulesets.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Sound on amd64

2008-07-08 Thread Frank Shute 
On Mon, Jul 07, 2008 at 01:41:34PM -0700, Kurt Buff wrote:
>
> First, my apologies - I sent my last missive to Conrad, and not to the
> list. I'm replying to myself with an update. Details below.
> 
> Kurt
> 
> On Sun, Jul 6, 2008 at 2:51 PM, Kurt Buff <[EMAIL PROTECTED]> wrote:
> > On Sun, Jul 6, 2008 at 2:24 PM, Conrad J. Sabatier <[EMAIL PROTECTED]> 
> > wrote:
> >> On Sun, 06 Jul 2008 10:25:58 +0200
> >> Tore Lund <[EMAIL PROTECTED]> wrote:
> >>
> >>> Kurt Buff wrote:
> >>> > On Sat, Jul 5, 2008 at 8:48 PM, Conrad J. Sabatier <[EMAIL PROTECTED]>
> >>> > wrote:
> >>> >> On Sat, 5 Jul 2008 19:02:09 -0700
> >>> >> "Kurt Buff" <[EMAIL PROTECTED]> wrote:
> >>> >> ...
> >>> >> Do you have both the generic sound support (sound) as well as the
> >>> >> specific hardware driver enabled in your kernel config?
> >>> >
> >>> > Sigh. Always something new to learn.
> >>>
> >>> Just wondering, why do people modify the kernel when kernel loadable
> >>> modules can handle the sound card?  Is it necessary on some types of
> >>> hardware?
> >>
> >> Well, probably the main reason most people do it is to strip away any
> >> unneeded functionality.  The GENERIC kernel contains a whole slew of
> >> drivers and options that most people don't need, but are intended to
> >> support a wide range of hardware configurations "out of the box".  You
> >> can greatly reduce the kernel's size by only including the features you
> >> really need.
> >
> > I tried a new kernel, but that didn't work, for whatever reason, but
> > editing loader.conf did, sort of. I tried adding
> >
> > sound_load="YES"
> > snd_hda_load="YES"
> > hint.pcm.0.config="gpio0 gpio1 gpio2 gpio3 gpio4 gpio5 gpio6 gpio7"
> >
> > but while the cd player now works, I'm not getting output from the
> > built-in speakers - it just sounds like it's coming from a long way
> > away - I can barely make it out. I suppose that means it's coming from
> > the headphone setup, but I'm not sure of that.
> >
> > I've been googling, but haven't figured this out yet.
> >
> > Kurt
> 
> More careful reading shows that the hint line goes in
> /boot/device.hints, but placing it there does not improve the
> situation, though the sound does seem to be emitting from the
> speakers. It's just that it's very soft, and I can't get it any
> louder, though using the slider control in gnome will silence it.
> 
> This is a recent Thinkpad T61, and grepping dmesg reveals that the
> sound system is detected as an Intel 82801H, and the codec used seems
> to be the Analog Devices AD1984.
> 
> I'm running 7-STABLE, updated on Saturday.
> 
> Thoughts on how to improve this would be much appreciated.
> Kurt

Have you had a play with mixer(8)?

E.g:

$ mixer vol
Mixer vol  is currently set to  75:75
$ mixer vol 70:70
Setting the mixer vol from 75:75 to 70:70.

Obviously, you'd want to raise the volume rather than reduce it like I
just did.

Regards,

-- 

 Frank 


 Contact info: http://www.shute.org.uk/misc/contact.html 

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: FreeBSD + ZFS on a production server?

2008-07-08 Thread Kris Kennaway 

Wojciech Puchar wrote:


ZFS on FreeBSD is GEOM-ified. While I believe what Wojciech said about
needing a full disk is correct under Solaris, it's not the case in


i never said it requires full disk. but it will work very slow sharing a 
disk with non-ZFS things.


Well, of course if you are loading your disk with too many seeks it will 
be slow.  This has nothing to do with ZFS.



to say more: zfs set copies could be usable to selectively mirror given
data while not mirroring other (using unprotected storage for ZFS).
but it's broken. it writes N copies under write, but don't remake
copies in case of failure!


which make it almost unusable. in case of any failure you have to copy 
and delete every file to make it actually repaired.


Eh?  It happens automatically.

Kris
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: FreeBSD + ZFS on a production server?

2008-07-08 Thread Kris Kennaway 

Wojciech Puchar wrote:

ZFS can be installed on partitions and share disks with other things, 
but the performance will be bad.


There is nothing ZFS-specific about this statement.

ZFS - contrary to every other filesystem that use FreeBSD disk I/O 
scheduler - does it's own I/O scheduling, so it assumes it's the only 
user of physical drive.


This is false.  ZFS uses GEOM along with everything else in FreeBSD, and 
GEOM is the thing that eventually talks to the disk driver to perform I/O.


Kris

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Fwd: Sound on amd64

2008-07-08 Thread Kurt Buff 
On Tue, Jul 8, 2008 at 1:20 PM, Frank Shute <[EMAIL PROTECTED]> wrote:
> On Mon, Jul 07, 2008 at 01:41:34PM -0700, Kurt Buff wrote:
>>
>> First, my apologies - I sent my last missive to Conrad, and not to the
>> list. I'm replying to myself with an update. Details below.
>>
>> Kurt
>>
>> On Sun, Jul 6, 2008 at 2:51 PM, Kurt Buff <[EMAIL PROTECTED]> wrote:
>> > On Sun, Jul 6, 2008 at 2:24 PM, Conrad J. Sabatier <[EMAIL PROTECTED]> 
>> > wrote:
>> >> On Sun, 06 Jul 2008 10:25:58 +0200
>> >> Tore Lund <[EMAIL PROTECTED]> wrote:
>> >>
>> >>> Kurt Buff wrote:
>> >>> > On Sat, Jul 5, 2008 at 8:48 PM, Conrad J. Sabatier <[EMAIL PROTECTED]>
>> >>> > wrote:
>> >>> >> On Sat, 5 Jul 2008 19:02:09 -0700
>> >>> >> "Kurt Buff" <[EMAIL PROTECTED]> wrote:
>> >>> >> ...
>> >>> >> Do you have both the generic sound support (sound) as well as the
>> >>> >> specific hardware driver enabled in your kernel config?
>> >>> >
>> >>> > Sigh. Always something new to learn.
>> >>>
>> >>> Just wondering, why do people modify the kernel when kernel loadable
>> >>> modules can handle the sound card?  Is it necessary on some types of
>> >>> hardware?
>> >>
>> >> Well, probably the main reason most people do it is to strip away any
>> >> unneeded functionality.  The GENERIC kernel contains a whole slew of
>> >> drivers and options that most people don't need, but are intended to
>> >> support a wide range of hardware configurations "out of the box".  You
>> >> can greatly reduce the kernel's size by only including the features you
>> >> really need.
>> >
>> > I tried a new kernel, but that didn't work, for whatever reason, but
>> > editing loader.conf did, sort of. I tried adding
>> >
>> > sound_load="YES"
>> > snd_hda_load="YES"
>> > hint.pcm.0.config="gpio0 gpio1 gpio2 gpio3 gpio4 gpio5 gpio6 gpio7"
>> >
>> > but while the cd player now works, I'm not getting output from the
>> > built-in speakers - it just sounds like it's coming from a long way
>> > away - I can barely make it out. I suppose that means it's coming from
>> > the headphone setup, but I'm not sure of that.
>> >
>> > I've been googling, but haven't figured this out yet.
>> >
>> > Kurt
>>
>> More careful reading shows that the hint line goes in
>> /boot/device.hints, but placing it there does not improve the
>> situation, though the sound does seem to be emitting from the
>> speakers. It's just that it's very soft, and I can't get it any
>> louder, though using the slider control in gnome will silence it.
>>
>> This is a recent Thinkpad T61, and grepping dmesg reveals that the
>> sound system is detected as an Intel 82801H, and the codec used seems
>> to be the Analog Devices AD1984.
>>
>> I'm running 7-STABLE, updated on Saturday.
>>
>> Thoughts on how to improve this would be much appreciated.
>> Kurt
>
> Have you had a play with mixer(8)?
>
> E.g:
>
> $ mixer vol
> Mixer vol  is currently set to  75:75
> $ mixer vol 70:70
> Setting the mixer vol from 75:75 to 70:70.
>
> Obviously, you'd want to raise the volume rather than reduce it like I
> just did.
>
> Regards,
>
> --
>
>  Frank

Well, whaddya know? :)

vol was set to 75:75, pcm to 75:75 and speaker to 81:81.

Cranked it up to 100 across the board, and I'm now rockin'!

ZZTop's greatest hits are now playing just fine...


Thanks!

Now, on to the touchpad/trackstick - but I'll research it first before
asking questions...

Kurt
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "New" user with a possible ZFS problem

2008-07-08 Thread Kris Kennaway 

Kevin Monceaux wrote:


On Wed, 2 Jul 2008, Kevin Monceaux wrote:

Saturday I finally found one of those "round tuits" and switched my 
home PC from Debian to FreeBSD.


I probably should have mentioned that the box in question is a slightly 
older hyperthreaded Intel Pentium 4 box, an HP m260n to be exact, with 
3GB of RAM.


You may be running out of memory.  Increase kmem_size until it goes 
away.  I use 1500M on my systems, which are stable.  Yes, ZFS is a 
memory hog.


Kris
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread Chuck Swiger 

On Jul 8, 2008, at 11:04 AM, Mel wrote:

On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:

You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling)


Purely outof interest, which (useful) firewall/nat rules cannot be  
made with
dest port 53, that can be made with source port 53. Not talking  
syntax,

but "business logically".


Please note that using the same port for answering queries makes it  
vastly easier for somebody to spoof your DNS traffic.  Unless you are  
one of the handful using DNSSEC, that is.


--
-Chuck

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

re: rblsmtpd/qmail-smtpd hung processes

2008-07-08 Thread Brad Mettee 


I've run into a bit of a problem and if I don't solve it soon, I'm going 
to be without e-mail (and so will a lot of other people). This is a bit 
long, I'm trying to include anything that may help.


The problem is that qmail-smtpd and/or rblsmtpd get stuck and don't close. 
After a while the server just quits accepting smtp connections, or will 
connect/disconnect very quickly (connection closed by foreign host). Using 
kill on these processes just opens another instance of them (they're 
managed by /var/service). Since I'm not seeing any log activity that shows 
what's going on, I'm having a hard time figuring it out. I know the 
processes are supposed to be timing out and closing, but don't seem to be 
doing that


Has anyone seen this problem? I've tried searching for info on it, but 
can't find anything that looks similar. I currently have rblsmtpd disabled 
since it sits between the outside world and qmail-smtpd. The errors don't 
occur quickly, it seems to take multiple hours to occur so this is hard to 
debug because I can't create the problem on demand. Any ideas are welcome. 
(hopefully I'll be able to get mail from this address long enough to fix 
this - it's one of the ones that's been moved to this machine already)


uname -a
FreeBSD ns1.pchotshots.com 7.0-RELEASE FreeBSD 7.0-RELEASE #0: Sun Feb 24 
10:35:36 UTC 
2008 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  amd64


Related ports in use:
ucspi-tcp-0.88_2
qmail-1.03_7
qmailadmin-1.2.10,1
vpopmail-5.4.26_1
dovecote-1.0.14

A quick bit of history:
Our email/dns provider is closing up shop in about a week (good friend of 
mine was a small ISP). I only had about 3 weeks notice on this and I've 
been configuring a pair of FreeBSD machines (I posted to the list a couple 
weeks ago, thanks everyone for good replies, ) to take over DNS and E-Mail 
for about a dozen sites. Basically I've been on a crash course of learning 
as I go.


I hate responding to my own message, but I think I've finally found the 
solution.


I'm using Matt Simerson's Mail Toaster package. The file "toaster.conf" 
file needs to be 644 so that when rotating logs, the programs can re-read 
the config. Apparently all of the hanging files were dying because they 
couldn't read the config and crashed. Once crashed the supervisor decided 
it needed to start a new copy, which would crash as soon as something 
connected to it, and so on. This also seems to have fixed a problem where 
some e-mails would get stuck in the queue and never leave. They've all been 
delivered/deleted like they should now.


I got lucky in finding this. I happened to spot the rotated log file 
staying empty within a few minutes of seeing the hung processes starting to 
stack up. It gave me a good starting point to googling for a solution.



___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: "New" user with a possible ZFS problem

2008-07-08 Thread Kevin Monceaux 

Kris,

On Tue, 8 Jul 2008, Kris Kennaway wrote:

You may be running out of memory.  Increase kmem_size until it goes 
away.  I use 1500M on my systems, which are stable.  Yes, ZFS is a 
memory hog.


Boy, ZFS sure does sound like it's earned the title of memory hog.  Oddly 
I'd been running for about a week without problems, and shuffled some 
large files around during that week, and right before I got your e-mail I 
had another hang.  I tried increasing the kmem_size setting and was 
rewarded with a panic on reboot.  I already had it set at 512M.  A little 
Googling tells me I'm going to have to compile a custom kernel to increase 
it beyond that.  Oh well, it's about time I learned how to do that anyway. 
I've compiled many a custom Linux kernel.  I started using Linux in the 
1.xx kernel days before there were loadable kernel modules so almost 
everything involved a kernel recompile.  I've read over the FreeBSD kernel 
compile docs quite a while back but will need to go over them again. 
Anyway, thanks for the tip.  I'll give it a try after a little research 
and a little, or a lot of, compiling.




Kevin
http://www.RawFedDogs.net
http://www.WacoAgilityGroup.org
Bruceville, TX

Si hoc legere scis nimium eruditionis habes.
Longum iter est per praecepta, breve et efficax per exempla!!!

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Firefox/epiphany/galeon all crash

2008-07-08 Thread Kurt Buff 
As soon as I log into my gmail account, and several other sites.
Running 7-STABLE, amd64 - FF is 2.0.0.14, gecko is 20080628. I'm
writing this on my really old Windows laptop

Below are the last few lines from a representative set of output from
session launched from the commandline. Is it flash, or something else,
and is there anything I can do to fix this? Oddly enough, it's not
crashing on the OWA (Outlook Web Access) from my company's Exchange
server - but that's just a lot of javascript, AFAICT.

CSS Error (https://mail.google.com/mail/?ui=2&view=bsp&ver=1qygpcgurkovy
:0.16): Error in parsing value for property 'width'.  Declaration
dropped.
###!!! ASSERTION: bad width: 'metrics.width>=0', file
nsLineLayout.cpp, line 1068
Break: at file nsLineLayout.cpp, line 1068
++DOMWINDOW == 17
WARNING: Moving XPConnect wrappedNative to new scope, but can't fixup
__proto__, file xpcwrappednative.cpp, line 1108
For application/x-shockwave-flash found plugin
/usr/local/lib/browser_plugins/libnpflash.so
LoadPlugin() /usr/local/lib/browser_plugins/libnpflash.so returned 29e4d60
NP_Initialize
New
nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0
nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584
About to create new ws_info...
About to create new xtbin of 100 X 100 from 0x192ccc0...
About to show xtbin(0x7b2e90)...
completed gtk_widget_show(0x7b2e90)
SetWindow
nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0
nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584
SetWindow
nsPluginNativeWindowGtk2: NPPVpluginNeedsXEmbed=0
nsPluginNativeWindowGtk2: call SetWindow with xid=0x2001584
SetWindow
NewStream
WriteReady
Write
decoding...
The program 'gecko' received an X Window System error.
This probably reflects a bug in the program.
The error was 'BadImplementation (server does not implement operation)'.
  (Details: serial 36 error_code 17 request_code 146 minor_code 5)
  (Note to programmers: normally, X errors are reported asynchronously;
   that is, you will receive the error a while after causing it.
   To debug your program, run it with the --sync command line
   option to change this behavior. You can then get a meaningful
   backtrace from your debugger if you break on the gdk_x_error() function.)
nsStringStats
 => mAllocCount:  47580
 => mReallocCount: 7348
 => mFreeCount:   40084  --  LEAKED 7496 !!!
 => mShareCount:  29791
 => mAdoptCount:   4257
 => mAdoptFreeCount:   4072  --  LEAKED 185 !!!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Data loss after power out - fsck: bad inode number to nextinode

2008-07-08 Thread Polytropon 
Hi,

since last week I'm in big trouble: After an power outage my main
system didn't boot up anymore, so I checked its hard disk (FreeBSD
5.4) in my new system (FreeBSD 7.0).

I booted the system in SUM and ran fsck on the partitions. / on
/dev/ad1s1a could be repaired, /var on 1d too, /usr on 1e lost
many directory entries (X11R6, for exmaple), but all files and
directory entry points got restored to lost+found. Okay, that's
as I know it should be. But it doesn't matter, because everything
there could be reinstalled.

Problems occured when checking /home on /dev/ad1s1f. After lot
of

1101472 DUP I=260035
UNEXPECTED SOFT UPDATE INCONSISTENCY

and

EXCESSIVE DUP BLKS I=260039
CONTINUE? yes

and

7310315658325879925 BAD I=260051
UNEXPECTED SOFT UPDATE INCONSISTENCY

fsck ended up this way:

INCORRECT BLOCK COUNT I=290557 (3104 should be 736)
CORRECT? yes

fsck_4.2bsd: bad inode number 306176 to nextinode

The result: The home directories of all other users where present,
but mine (!) - /home/adec - was missing. I may explain this a bit
more precise: When looking at the files using the Midnight Commander,
the name of my home directory was displayed, preceeded by "?", and
in red colour, with a strange date (the epoch?).

|?adec|  0|Jan  1  1970|

So I could not change into this directory and get my files out
of there.

In order not to damage the system more, I made a ddrescue dump
of the partition:

% ddrescue -d -r 3 -n /dev/ad1s1f home.ddrescue logfile

The data could be read without problems. The resulting file seemed
to be an 1:1 copy of the partition.

% file home.ddrescue
home.ddrescue: Unix Fast File system [v2] (little-endian) last mounted on /mnt,
last written at Wed Jul  2 18:51:06 2008,
clean flag 0,
readonly flag 0,
number of blocks 44322272,
number of data blocks 42925108,
number of cylinder groups 472,
block size 16384,
fragment size 2048,
average file size 16384,
average number of files in dir 64,
pending blocks to free 0,
pending inodes to free 0,
system-wide uuid 0,
minimum percentage of free blocks 8,
TIME optimization

When checking it with

% fsck -t ufs -yf /dev/md10

fsck gives the same error message as above.

Then I mounted the image:

% sudo mdconfig -a -t vnode -u 10 -f home.ddrescue
% mount -t ufs -o ro /dev/md10 mnt

And guess what? Same problem: Directory name shown, but directory
not changable.

But then, I noticed something interesting:

% df -h
Filesystem SizeUsed   Avail Capacity  Mounted on
/dev/md10   82G 75G716M99%
/export/home/adec/rescue/mnt

See the size differences? Something seems to be missing. I hope it
is the content of my home directory that's still on the disk. Some
checking:

% sudo du -sch mnt
du: mnt/adec: Bad file descriptor
du: mnt/archiv/cr/clips.w32/s01.wmv: Bad file descriptor
du: mnt/archiv/cr/clips.w32/s02.wmv: Bad file descriptor
 52Gmnt
 52Gtotal

This reveals that it seems to be possible that approx. 30 GB are
not marked as free.

% file mnt/adec
mnt/adec: cannot open `mnt/adec' (Bad file descriptor)

% cd mnt/adec
mnt/adec: Not a directory.

Before bothering anyone here at this list, I checked information on
the net and found that only one (!!!) person except me seemd to have
this problem. And he got no help. Do I? =^_^=

Of course I took the time to read about the FFS architecture. If I did
understand it correctly, fsck stops working, showing the informative
error message "bad inode number 306176 to nextinode" because it cannot
get the next inode from a concatenated list that represents the file
and directory hierarchy, so there must be a "bad pointer". While the
names of the next things represented by inodes reside within a data
structure at level N, the corresponting data entries reside at level
N + 1 where a pointer should lead to. This may be an explaination why
the name "adec" is still in ad1s1f's root directory, but the data that
says "I'm a directory, this is my content" is not referenced anymore.
So fsck cannot continue. The missing inodes need to get reconnected.
In most cases, that's what lost+found usually contains: unreferenced
inodes that are not marked free: their names are gone (N), but their
content is still there (N + 1), and the new file name is "#" plus
their inode number.

What should I do?

Help is VERY welcome! If you have any ideas what to do, I'd be glad
to save the money I would have to spend when sending the disk to a
data recovery service - 1000 Euro and more are nothing I can afford.
And when you're low on money, adequate tape backup systems are too
expensive (allthoug such a device would be my first choice).

By the way, this must be the rev

Re: Data loss after power out - fsck: bad inode number to nextinode

2008-07-08 Thread Anish Mistry 
On Tuesday 08 July 2008, Polytropon wrote:
> Hi,
>
> since last week I'm in big trouble: After an power outage my main
> system didn't boot up anymore, so I checked its hard disk (FreeBSD
> 5.4) in my new system (FreeBSD 7.0).
>
> I booted the system in SUM and ran fsck on the partitions. / on
> /dev/ad1s1a could be repaired, /var on 1d too, /usr on 1e lost
> many directory entries (X11R6, for exmaple), but all files and
> directory entry points got restored to lost+found. Okay, that's
> as I know it should be. But it doesn't matter, because everything
> there could be reinstalled.
>
> Problems occured when checking /home on /dev/ad1s1f. After lot
> of
>
>   1101472 DUP I=260035
>   UNEXPECTED SOFT UPDATE INCONSISTENCY
>
> and
>
>   EXCESSIVE DUP BLKS I=260039
>   CONTINUE? yes
>
> and
>
>   7310315658325879925 BAD I=260051
>   UNEXPECTED SOFT UPDATE INCONSISTENCY
>
> fsck ended up this way:
>
>   INCORRECT BLOCK COUNT I=290557 (3104 should be 736)
>   CORRECT? yes
>
>   fsck_4.2bsd: bad inode number 306176 to nextinode
>
> The result: The home directories of all other users where present,
> but mine (!) - /home/adec - was missing. I may explain this a bit
> more precise: When looking at the files using the Midnight
> Commander, the name of my home directory was displayed, preceeded
> by "?", and in red colour, with a strange date (the epoch?).
>
>   |?adec|  0|Jan  1  1970|
>
> So I could not change into this directory and get my files out
> of there.
>
> In order not to damage the system more, I made a ddrescue dump
> of the partition:
>
>   % ddrescue -d -r 3 -n /dev/ad1s1f home.ddrescue logfile
>
> The data could be read without problems. The resulting file seemed
> to be an 1:1 copy of the partition.
>
> % file home.ddrescue
> home.ddrescue: Unix Fast File system [v2] (little-endian) last
> mounted on /mnt, last written at Wed Jul  2 18:51:06 2008,
> clean flag 0,
> readonly flag 0,
> number of blocks 44322272,
> number of data blocks 42925108,
> number of cylinder groups 472,
> block size 16384,
> fragment size 2048,
> average file size 16384,
> average number of files in dir 64,
> pending blocks to free 0,
> pending inodes to free 0,
> system-wide uuid 0,
> minimum percentage of free blocks 8,
> TIME optimization
>
> When checking it with
>
>   % fsck -t ufs -yf /dev/md10
>
> fsck gives the same error message as above.
>
> Then I mounted the image:
>
>   % sudo mdconfig -a -t vnode -u 10 -f home.ddrescue
>   % mount -t ufs -o ro /dev/md10 mnt
>
> And guess what? Same problem: Directory name shown, but directory
> not changable.
>
> But then, I noticed something interesting:
>
>   % df -h
>   Filesystem SizeUsed   Avail Capacity  Mounted on
>   /dev/md10   82G 75G716M99%   
> /export/home/adec/rescue/mnt
>
> See the size differences? Something seems to be missing. I hope it
> is the content of my home directory that's still on the disk. Some
> checking:
>
>   % sudo du -sch mnt
>   du: mnt/adec: Bad file descriptor
>   du: mnt/archiv/cr/clips.w32/s01.wmv: Bad file descriptor
>   du: mnt/archiv/cr/clips.w32/s02.wmv: Bad file descriptor
>52Gmnt
>52Gtotal
>
> This reveals that it seems to be possible that approx. 30 GB are
> not marked as free.
>
>   % file mnt/adec
>   mnt/adec: cannot open `mnt/adec' (Bad file descriptor)
>
>   % cd mnt/adec
>   mnt/adec: Not a directory.
>
> Before bothering anyone here at this list, I checked information on
> the net and found that only one (!!!) person except me seemd to
> have this problem. And he got no help. Do I? =^_^=
>
> Of course I took the time to read about the FFS architecture. If I
> did understand it correctly, fsck stops working, showing the
> informative error message "bad inode number 306176 to nextinode"
> because it cannot get the next inode from a concatenated list that
> represents the file and directory hierarchy, so there must be a
> "bad pointer". While the names of the next things represented by
> inodes reside within a data structure at level N, the corresponting
> data entries reside at level N + 1 where a pointer should lead to.
> This may be an explaination why the name "adec" is still in
> ad1s1f's root directory, but the data that says "I'm a directory,
> this is my content" is not referenced anymore. So fsck cannot
> continue. The missing inodes need to get reconnected. In most
> cases, that's what lost+found usually contains: unreferenced inodes
> that are not marked free: their names are gone (N), but their
> content is still there (N + 1), and the new file name is "#" plus
> their inode number.
>
> What should I do?
>
> Help is VERY welcome! If you have any ideas what to do, I'd be glad
> to save the money I would have to spend when sending the disk to a
> data

Re: AMD SB700 southbridge sata ahci supported?

2008-07-08 Thread Gobbledegeek 
Thanks for responding. My problem is different.I think it is in boot
stage 2 possibly a problem with the loader. Hence my problem does not
resemble yours. I am able to run the install disk just fine nd
complete installation. Its the installed Os that I cannot boot.

Kind Regards

>
> On Sun, Jul 6, 2008 at 2:28 AM, Rhomel Chinsio <[EMAIL PROTECTED]> wrote:
>> Try disabling USB in the BIOS:
>> http://www.freebsd.org/cgi/query-pr.cgi?pr=kern/122880
>>
>> On Fri, Jun 27, 2008 at 11:21 PM, Gobbledegeek <[EMAIL PROTECTED]>
>> wrote:
>>>
>>> Hi
>>>
>>> I install freebsd 7 i386 twice, installed mbr, both times boot loader
>>> failed to load at 1st stage with cpu register values displayed on
>>> screen.
>>> Mobo - gigabyte GA-MA78GM-S2H, AMD 780G chipset with ATI Radeon3200
>>> IGP, cpu  amd BE-2350, 2GB transcend DR2800 ram, barracuda hdd with
>>> SATA in AHCI mode in bios.
>>>
>>> I could not find this in the i386 or amd64 platform list.
>>>
>>> Anyone has any ideas about support for this?
>>>
>>> Please copy me as I am not subscribed.
>>>
>>> --
>>> Kind Regards
>>> GobbleDeGeek
>>> [For everything Gobbledegook!!]
>>> ___
>>> freebsd-questions@freebsd.org mailing list
>>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>>> To unsubscribe, send any mail to
>>> "[EMAIL PROTECTED]"
>>
>>
>
>
>
> --
> Kind Regards
> GobbleDeGeek
> [For everything Gobbledegook!!]
>



-- 
Kind Regards
GobbleDeGeek
[For everything Gobbledegook!!]
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: Data loss after power out - fsck: bad inode number to nextinode

2008-07-08 Thread perryh 
> What should I do?

In theory,

  clri {special-file} 306176

should wipe the inode containing the bad pointer and allow fsck to
continue, perhaps recovering the files pointed to by that directory
into lost+found.

Definitely try this on a copy first if at all possible.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Re: ports

2008-07-08 Thread Matthew Seaman 

Chuck Swiger wrote:

On Jul 8, 2008, at 11:04 AM, Mel wrote:

On Tuesday 08 July 2008 19:07:02 Matthew Seaman wrote:

You can configure named to always send packets using a
fixed port number (which can be helpful for firewalling)


Purely outof interest, which (useful) firewall/nat rules cannot be 
made with

dest port 53, that can be made with source port 53. Not talking syntax,
but "business logically".


Please note that using the same port for answering queries makes it 
vastly easier for somebody to spoof your DNS traffic.  Unless you are 
one of the handful using DNSSEC, that is.




Yes.  In the light of this, released last night:

  http://www.kb.cert.org/vuls/id/800113

fixing the response port is a bad idea.  A really bad idea.

Matthew

--
Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
 Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
 Kent, CT11 9PW



signature.asc
Description: OpenPGP digital signature

Install Linux in FreeBSD

2008-07-08 Thread Ruel Luchavez 
Hi again list,

Is it possible to run a VM machine in your freebsd server in which inside
that VM you are running on it a Linux environment? coul it be?
You would rather want to know why do I want that set up? Simply because I
want to install a Quickbooks Enterprise solutions Database
manager in Linux, further, Freebsd doesn't support the Quickbooks (also vice
versa) it only runs or support in Linux..thats the reason guys..
Could some one give me some idea how will I do that?

Thanks..


FreeBSD ROCKS...!!!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"