Re: ports question
On Sun, Feb 01, 2004 at 04:44:19PM -0800, Gary Kline wrote: Well, to answer my own posting, I hacked the /distfile and removed the (SIZE) = line. Now openldap21-* is flowing across. Dunno why the port assumed the file or parts of it were here. Next to rm the old version and update... . --Well, once it builds and installs! Odd. I updated the OpenlDAP 2.1.26 ports on my system last week, and it all worked perfectly. The tarball it pulled down is exactly as specified in the distfile: % ls -la /usr/ports/distfiles/openldap-2.1.26.tgz -rw-r--r-- 1 root wheel 2042658 Jan 23 06:48 /usr/ports/distfiles/openldap-2.1.26.tgz % md5 /usr/ports/distfiles/openldap-2.1.26.tgz MD5 (/usr/ports/distfiles/openldap-2.1.26.tgz) = e3388c021b1029c15cfbd462d3bfcc9d and the tarball on ftp.openldap.org hasn't changed: ftp dir openldap-2.1.26* 229 Entering Extended Passive Mode (|||50188|) 150 Opening ASCII mode data connection for '/bin/ls'. -rw-rw-r-- 1 2000 20 61 Jan 23 06:48 openldap-2.1.26.md5 -rw-rw-r-- 1 2000 20 2042658 Jan 23 06:48 openldap-2.1.26.tgz 226 Transfer complete. Perhaps the OpenLDAP mirrors you're trying to access aren't being properly updated -- I'd suggest ftp'ing down the openldap sources manually from ftp.openldap.org and placing them in /usr/ports/distfiles before you start building the port. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
Re: volumecontrol does not work on 5.2
On Monday 02 February 2004 07:34, Sebastian Kutsch wrote: On Mon, 2 Feb 2004 00:39:27 +0100 Melvyn Sopacua [EMAIL PROTECTED] wrote: On Sunday 01 February 2004 21:59, Sebastian Kutsch wrote: On Sun, 1 Feb 2004 20:49:11 +0100 Melvyn Sopacua [EMAIL PROTECTED] wrote: On Sunday 01 February 2004 16:17, Sebastian Kutsch wrote: I have a onboard soundcard with a sis 7012 soundchipset. I have compiled the kernel with the pcm device-driver and the chipset gets recogniced as you can see at the dmesg output: pcm0: SiS 7012 port 0xd800-0xd87f,0xdc00-0xdcff irq 18 at device 2.7 on pci0 pcm0: C-Media Electronics CMI9739 AC97 Codec I get sound but can't control the volume. I can turn the volume off or on, but that all I can do. Has anyone an Idea what the problem is? What is the output of the mixer command without any arguments? I have got all mixer-devices and they have the standard values. [cut defaults] These values are very device dependant. For instance, mixer vol does nothing if I plugin the headphone on this laptop, I should use mixer ogain for the headphone. ogain, vol, speaker are all output volume controllers and pcm is for volume control for the input stream, generated by the computer. So try ogain and speaker and see if they work for you. My problem is that none but pcm does anything. With the following mixer values I have the max. volume I can get. setting mixer pcm to 0 would turn the volum off. I googled some - seems like the card has some oddities: http://www.mail-archive.com/[EMAIL PROTECTED]/msg10573.html http://mythtv.org/pipermail/mythtv-dev/2003-December/016309.html And even one freebsd specific (unanswered): http://lists.freebsd.org/pipermail/freebsd-current/2003-September/010976.html -- Melvyn === FreeBSD sarevok.webteckies.org 5.2-CURRENT FreeBSD 5.2-CURRENT #0: Wed Jan 28 18:01:18 CET 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/SAREVOK_NOAPM_NODEBUG i386 === pgp0.pgp Description: signature
problem in kernel compiling with netgraph option
when i add these line in my kernel file options NETGRAPH options NETGRAPH_ETHER options NETGRAPH_SOCKET after using ngctl show i see ed0 as ethernet node but when i attempt to insert a tee node between lower and upper hook y using ngctl mkpeer ed0: tee lower right i am facing this problem module-register : module netgraph already exist linker_file_sysinit netgraph.ko failed to register Yahoo! India Mobile: Ringtones, Wallpapers, Picture Messages and more.Download now. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portsdb -U fails
On Sun, Feb 01, 2004 at 01:23:48PM -0800, Kris Kennaway wrote: On Sat, Jan 31, 2004 at 10:03:30PM +0100, r t g tan wrote: portsdb -U is broken - I sent mail to the author the other day, but didn't receive a reply yet. In the meantime, you can edit /usr/local/sbin/make_describe_pass1 and change the 'make -j3' to 'make'. Kris Hi Kris, The following line from /usr/local/sbin/make_describe_pass1: open(|cd #{dir} make -k -j3 -f -, 'w') do |w| I changed to: open(|cd #{dir} make -, 'w') do |w| now portsdb -U is running for quite some time. I have no idea what it is doing though. No, that's not quite what I said..just remove the -j3 and leave the other arguments untouched. Kris Hi Kris, I did that at first but the problem still remained. At this time I just cvsupped my ports again, and tried it again with: open(|cd #{dir} make -k -f -, 'w') do |w| Still nu luck, Robert pgp0.pgp Description: PGP signature
kernel build did not go 'by the book'
Procedure 1. Building a kernel the ``traditional'' way 1. Run config(8) to generate the kernel source code. # /usr/sbin/config MYKERNEL that's how the handbook shows how to do it and this is how I did it #/usr/sbin/config GWYNETH | that's what I named my custom kernel but I got this #config../../compile/GWYNETH:No such file or directory that's what I got the first time, so, I tried again and got this ##config /GWYNETH:No such file or directory what went wrong and is more info needed -- If all the world's economists were laid end to end, we wouldn't reach a conclusion. -- William Baumol ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Adding Packages and Ports
On Sun, Feb 01, 2004 at 11:21:13PM -0500, Krikket wrote: Please correct me if I'm wrong, but the various versions of freeBSD (3.x, 4.x, and 5.x) are still being worked. Needless to say, 5.x is the bleeding edge, but 4.x hasn't been left to go stale. (Or else how would security patches get done, when needed?) FreeBSD 3.x isn't actively supported or worked on any more, although very occasionally some critical security fixes have been committed to that branch. But otherwise, yes, you're right. Therefore, the thought was to get the latest and greatest from the net. No, it's not as bleeding edge as the 5.2 stuff, but if a patch was done since the 4.9 iso's were made, it would be a good idea to have that on hand. So I thought it would be a good thing to use -r as a default option. Or am I just using an incorrect line of thinking, due to the flux that I got used to (and wish to avoid) from when I was dealing with the Linux world? Ports are developed independantly of the base system. It's a continuous process of development as new ports get added, updates to current ports are made to accomodate upstream changes to port distfiles or to fix bug, and generally as new features appear in the ports make system. Testing on ports is done using the currently supported versions of the OS -- viz. 4.9 and 5.2 -- and while ports should work on older systems, that cannot be guarranteed. Each time a release is made, a full set of packages are built from the ports tree: there's a short period of code freeze before that on the ports tree when extra effort is put into bug fixing and making everything work as well as possible together, rather than introducing new code. Those packages are what goes onto the FTP sites, and a sample of the most popular ones go into the install CDs -- there's *far* too much stuff to fit all of it onto a 4 CD distribution set. Between releases, where a port is updated, an updated pkg tarball is eventually uploaded to the ftp servers into the 'Latest' directory, for each Tier-1 architecture and for both supported OS versions. pkg_add -r will download that 'Latest' version where available, or else the version from the release set. However, pkg building isn't instantaneous, and you can get hold of the newest stuff much quicker by building out of the ports tree yourself. So, given that I should have the ports installed from my initial install phase, all I have to do is the make install clean? Too cool. Thank you for the pointer! Absolutely. Lots of people instinctively head towards the installing precompiled packages route, but generally I find that installing through ports is just as easy, usually doesn't take that much more time (except for some really big compilations, like OpenOffice or jdk14), and lets you tweak various build options and so forth. Even so, it's perfectly fine to mix up stuff installed via packages and stuff installed via ports -- it all comes down to the same package database in the end. Using ports also makes it a lot easier to keep everything maintained and up to date, especially by using the portupgrade(1) tools. There are some ports which aren't available as packages, usually for licensing reasons. Note that the ports tree you installed is a snapshot of the state at the time your release was created. The ports tree has undergone a great deal of development since then. There's been a lot of updates to the 3rd party ported software as well, and some versions current at that time may not be available any more. You can track the current state of the ports tree using cvsup(1) -- exactly as you'ld track the current state of the system sources. Details of how to do that are available in the Handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html Nb. the cheats method of getting cvsup(1) working is very quick: Step 1: Install the cvsup-without-gui package using pkg_add. Type 'rehash' if you're using tcsh(1) as your shell, so that it becomes aware of the newly installed binaries. Step 2: Edit /etc/make.conf -- create the file if it doesn't exist. You need to add the following: SUP_UPDATE= yes SUP=/usr/local/bin/cvsup SUPFLAGS= -g -L 2 SUPHOST=cvsup.XX.FreeBSD.org [1] SUPFILE=/usr/share/examples/cvsup/standard-supfile [2] PORTSSUPFILE= /usr/share/examples/cvsup/ports-supfile where [1] should be a cvsup server local to you, and [2] as shown will get you the system sources for the same OS -RELEASE branch as you installed: eg. 4.9-RELEASE-pN or 5.2-RELEASE-pN. You can replace that by 'stable-supfile' to switch to the 4-STABLE branch, although once you've updated to 4-STABLE, the standard-supfile will be replaced by one pulling down the 4-STABLE sources. Step 3: Update the ports
Re: Adding Packages and Ports
I'm going to hold off on replying for a day, while I give this stuff a shot, but this part does raise a question for me... On Mon, 2 Feb 2004, Matthew Seaman wrote: Those packages are what goes onto the FTP sites, and a sample of the most popular ones go into the install CDs -- there's *far* too much stuff to fit all of it onto a 4 CD distribution set. I got my copy of FreeBSD by downloading the isos. CD 1 2 and mini. That's all that was available. CD #1 was the only CD that was ever asked for by the system. Where do the other CD's come into play? What's the difference between the isos and the 4 cd set? (Aside from the number of CDs...) I haven't seen anything that directly answers this. I'm more than willing to support the BSD project, assuming the OS meets my needs (and so far it looks like it probably will) I was just planning on starting with the BSD stuffie. 8^) And the BSD books... Krikket ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Squid questrion
Dear list friends, please, do you have some experience with Squid 2-4 ? I just installed it, and try to start. It runs 6 childs and each exits eith exit code 6, writing: failed to find or read error text file. Of course, I run squid -z to create the cache, edit squid.conf. I searched the web, but there was only results about Solaris, I do not have experience with it. But I realize, it is something with rights. I have my umask set to 077, so I can not find proper modes for its files/folders. Please help me. Peter Rosa ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: NFS performances on 5.1
On a same Ethernet 100 LAN, I have several Unix and an NFS Solaris fileserver. On these Unix, I tried: time dd=/fileserver/aFile of=/fileserver/otherFile bs=32768 On each try, I use new files, to avoid the impact of file caching. I measured the time spent and the number of Ethernet packets (with snoop). I found: NFS client time# pkts === === == Solaris3.11s 2296 Linux Redhat9 2.42s 1929 FreeBSD 5.119.72s 14887 !!! FreeBSD 4.93.04s 6380 FreeBSD 5.22.98s 5941 The best way to tune 5.1 is to update it to 5.2 (I'm sure you read all the documentation that states that the 5.x branch is a new technology release with performance not being an initial goal). Of course, but I have 60+ stations tu upgrade... However, those numbers still look excessive, so I wonder if you forgot to turn off some of the debugging options like WITNESS. I have the kernel from the distribution. -- Jacques Beigbeder| [EMAIL PROTECTED] Service de Prestations Informatiques | http://www.spi.ens.fr Ecole normale supérieure | 45 rue d'Ulm |Tel : (+33 1)1 44 32 37 96 F75230 Paris cedex 05|Fax : (+33 1)1 44 32 20 75 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
imp and mysql
Hello, I have problems with imp and mysql. I have a very high traffic web mail server. after 3 weeks happens that mysql stop responding and imp gives an error when it tries to access the database. I compiled mysql with LINUX_THREADS enabled. The only solution is to restart mysql from time to time. anyone has a better solution ? thanks Rick ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
proxies and firewalls
greetings all i often come across proxies and firewalls under the security section of tutorials and guides, i have read that one can create proxies of any internet service like ftp www etc. my question is what exactly is a proxy and how does it play a role in security, why and how does it replace NATing, and how does it play a role in security with regard to NAT. what services can be proxied, is it worth having and general advice. thanks all Hiren. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kernel build did not go 'by the book'
On Mon, Feb 02, 2004 at 02:06:21AM +, victor.lamberty wrote: Procedure 1. Building a kernel the ``traditional'' way Don't do this then..use the method involving buildkernel, which is more foolproof. Kris pgp0.pgp Description: PGP signature
Re: proxies and firewalls
When one is connected to a proxy server, the proxy server makes a connection to the outside world and transports the data to the computer who is requesting that information. So the client computer won't make a true connection to the outside world, but it only connects to the proxy server. In there the administrator can give several rules to the proxy server what to allow/dissalow. For example you can disable that clients connect to the MSN port. If you use a proxy server your internal IP address will almost always be shown on sites that show your IP address rather then your true external IP address. Also, a proxy server caches files it collects from the net, thus making it accessable faster. NAT (Network Address Translator) does nothing more then translating your internal IP address to an external one. So there is a direct connection to the internet like that, and there is no caching done by the NAT server NAT is handy for home use, since you don't have to really tight up your security as you do with your company. So if you got a big company then you should definitely use a proxy server to let your people connect to the outside world. Cheers, Jorn On Monday 02 February 2004 10:38, Hiren wrote: greetings all i often come across proxies and firewalls under the security section of tutorials and guides, i have read that one can create proxies of any internet service like ftp www etc. my question is what exactly is a proxy and how does it play a role in security, why and how does it replace NATing, and how does it play a role in security with regard to NAT. what services can be proxied, is it worth having and general advice. thanks all Hiren. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: portsdb -U fails
On Mon, Feb 02, 2004 at 08:55:12AM +0100, r t g tan wrote: At this time I just cvsupped my ports again, and tried it again with:open(|cd #{dir} make -k -f -, 'w') do |w| OK, please verify that you are cvsupping the entire ports collection (i.e. ports-all), and if so then post the error you receive. kris pgp0.pgp Description: PGP signature
Re: portsdb -U fails
On Sunday 01 February 2004 11:55 pm, r t g tan wrote: On Sun, Feb 01, 2004 at 01:23:48PM -0800, Kris Kennaway wrote: On Sat, Jan 31, 2004 at 10:03:30PM +0100, r t g tan wrote: portsdb -U is broken - I sent mail to the author the other day, but didn't receive a reply yet. In the meantime, you can edit /usr/local/sbin/make_describe_pass1 and change the 'make -j3' to 'make'. Kris Hi Kris, The following line from /usr/local/sbin/make_describe_pass1: open(|cd #{dir} make -k -j3 -f -, 'w') do |w| I changed to: open(|cd #{dir} make -, 'w') do |w| now portsdb -U is running for quite some time. I have no idea what it is doing though. No, that's not quite what I said..just remove the -j3 and leave the other arguments untouched. Kris Hi Kris, I did that at first but the problem still remained. At this time I just cvsupped my ports again, and tried it again with:open(|cd #{dir} make -k -f -, 'w') do |w| Still nu luck, Then why not quit banging you head on a wall and use make index. Your failure to adapt is spamming the list. Portsdb -U has not produced totally clean INDEX runs since I can remember. Make index, on the other hand, is currently producing clean makes. There are times when one doesn't work and the other does. You just have to not refuse anything but ports/INDEX. Kent -- Kent Stewart Richland, WA http://users.owt.com/kstewart/index.html ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Newbie firewall
Hello. I want to use FreeBSD 5.2 on a standalone deskto I am trying to put up a firewall. For now i have been trying to use the client version in rc.firewall. I have a LAN connection with dynamic ip adress. How do I get the rc.firewall to know that I have dynamic adresses? It worked yesterday but when I turned my computer on today the ip adress had changed. The only changes I made in rc.firewall client was to put in my net: mask: ip: I made some changes also to rc.conf. It looks like this: firewall_enable=YES firewall_script=/etc/rc.firewall firewall_type=client hostname=Moak.prisma.fbsd ifconfig_sis0=DHCP kern_securelevel_enable=NO keymap=swedish.cp850 linux_enable=YES lpd_enable=YES moused_enable=YES named_enable=YES network_interfaces=auto nfs_reserved_port_only=YES router_enable=NO sendmail_enable=YES sendmail_flags=-bd sendmail_outbound_enable=NO sendmail_submit_enable=NO sendmail_msp_queue_enable=NO sshd_enable=YES syslogd_enable=YES usbd_enable=YES Hope that somebody wants to waste some time on my question. Many thanks Nicolas. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: kernel build did not go 'by the book'
On Mon, Feb 02, 2004 at 01:51:12AM -0800, Kris Kennaway wrote: On Mon, Feb 02, 2004 at 02:06:21AM +, victor.lamberty wrote: Procedure 1. Building a kernel the ``traditional'' way Actually, you didn't read the Handbook properly. You need to have the kernel config file in /usr/src/sys/i386/conf, and you need to do the config MYKERNEL in that directory as well. -- Jonathan Chen [EMAIL PROTECTED] -- Do not take life too seriously. You will never get out of it alive. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
diskless operation: swapfile setup
Hi, I had trouble to get the swapfile setup, as explained in the handbook (chapter diskless operation). I failed and then decided to do it in a more manual fashion: The diskless rc.conf has a line 'swapfile=/home/swapfile', where home is a read/write nfs filesystem from the server. This seems to work fine. Of course on the server, I have created a /home/swapfile of 64 Mb. The good thing is here, that no start-up script needs to know the size of this swapfile! Now my question is: Is my setup so much worse than the one suggested in the handbook, where /etc/bootptab sets the two T128 and T129 variables (note that in this case I need to tell /etc/bootptab the exact size of the swapfile via T129) ? Any ideas? Thanks, Rob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie firewall
Vikash Badal - PCS wrote: Greetings, -Original Message- From: Nicolas [mailto:[EMAIL PROTECTED] Sent: 02 February 2004 12:28 To: [EMAIL PROTECTED] Subject: Newbie firewall SNIP /SNIP Hope that somebody wants to waste some time on my question. Many thanks Nicolas. If you have a look at /etc/rc.firewall, under the [Cc][Ll][Ii][Ee][Nn][Tt]) config, you will see : # set these to your network and netmask and ip net=192.0.2.0 mask=255.255.255.0 ip=192.0.2.1 The firewall rules are based these values. You could try replacing the net= ... with the network address and ip=... with the word me Vikash Hello. Thanks for responding. I have put all the right values in net, mask and ip. It was working yesterday. But then I changed in rc.conf and this morning it did not work. It could be the changes in rc.conf , the change in ip adress or both. I will try to put ip=me. Thanks again. Nicolas ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Newbie firewall
Thank you again. Now it works fine. Nicolas ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
customize set prompt question
Hi, I would like to colorize this prompt: set prompt=@%m:%~# How do I have to modify the prompt so that the entire prompt is of red color. Only the prompt should be red, not what is typed or the results of any output. many thanks ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Rockwell Modem
Hi All Can anyone please help me with instruction or point me to doc's on how to install a pnp external Rockwell 56K modem in FreeBSD 5.1 Regards Extech ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: diskless operation: swapfile setup
Rob wrote: Hi, I had trouble to get the swapfile setup, as explained in the handbook (chapter diskless operation). I failed and then decided to do it in a more manual fashion: Maybe I should illustrate also what actually failed with the swapfile setup from the handbook. When my /etc/bootptab is as follows: #- Start --- .default:\ :hn:ht=1:vm=rfc1048:\ :sm=255.255.255.0:\ :sa=147.46.44.181:\ :gw=147.46.44.1:\ :hd=/tftpboot:\ :bf=/kernel:\ :rp=147.46.44.181:/tftpboot:\ :T128=147.46.44.181:/home:\ :T129=64000: diskless:ha=0050fce9306f:tc=.default: #- End --- I get in /var/log/messages, the following lines: bootpd[19916]: in entry named .default, symbol T129: bad syntax When I remove the T129 line, I get similar complaint about T128. So somehow this does not seem to be the right way, is it? Thanks for help. Rob. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Rockwell Modem
Extech wrote: Hi All Can anyone please help me with instruction or point me to doc's on how to install a pnp external Rockwell 56K modem in FreeBSD 5.1 Are you having a specific problem? If so, please say what it is. If not, the FreeBSD handbook is your best bet. But in short, you'll need to plug it in to a suitable port, then edit /etc/ppp/ppp.conf to suit your details. PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Rockwell Modem
On Mon, 2 Feb 2004, Extech wrote: Hi All Can anyone please help me with instruction or point me to doc's on how to install a pnp external Rockwell 56K modem in FreeBSD 5.1 In # man ppp (don't be upset by the length of this manpage, but ppp has many features), scroll for the section Manual Dialing, which will help you to test and set up your modem manually. Once you found your settings you can write them into your /etc/ppp/ppp.conf and automatize things. Regards, Uli. Regards Extech ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] +---+ |Peter Ulrich Kruppa| | Wuppertal | | Germany | +---+ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Rockwell Modem
Can anyone please help me with instruction or point me to doc's on how to install a pnp external Rockwell 56K modem in FreeBSD 5.1 http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ppp-and-slip.html HTH Simon ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
fetch fails, ftp works question
Hi, I have the feeling this is in some FAQ, but I don't understand it. I have a ftp server on which I have the distfiles and I'm using it as MASTER_SITE_OVERRIDE=ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/${DIST_SUBDIR+DIST_SUBDIR/} It usually work ok on make fetch. But sometimes it doesn't, e.g. fetch ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz fetch: ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz: File unavailable (e.g., file not found, no access) However the following works: ftp ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz Can somebody enlighten me ? -- IOnut Unregistered ;) FreeBSD user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Rockwell Modem
Here is my plroblem in short... I'm using a external Rockwell 56K modem on Freebsd 5.1. When starting up, the modem is quiried by freebsd (the DT light comes on just before the Login prompt is displayed), if I do a ps -aux it seems if the modem is up ns3# ps -aux root 476 0.0 1.4 1232 832 ?? I 11:26AM 0:00.03 /usr/libexec/getty std.9600 ttyd0 but when I run cu -lttyd0 the connection just hangs ns3# cu -lttyd0 Connected At this point I cannot do any thing and have to cancel cu out of a different session. I also have the following messages in /var/log/message Feb 2 11:25:52 ns3 kernel: unknown: PNP0303 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0501 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0700 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0401 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0501 can't assign resources (port) I'm trying to setup the modem to use as a fax modem with Hylafax. Regards Extech *** REPLY SEPARATOR *** On 2004/02/02 at 12:16 Peter Risdon wrote: Extech wrote: Hi All Can anyone please help me with instruction or point me to doc's on how to install a pnp external Rockwell 56K modem in FreeBSD 5.1 Are you having a specific problem? If so, please say what it is. If not, the FreeBSD handbook is your best bet. But in short, you'll need to plug it in to a suitable port, then edit /etc/ppp/ppp.conf to suit your details. PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Which interface do I put natd and ipfw
Dear friends, I need help to set up firewall on my freebsd 5.1 box. I have built new kernel with ipfw enabled and is working fine. I need to know which of the 3 interfaces do I put the natd and ipfw. My freebsd 5.1 box has 2 nic cards. ed0 connects to LAN and ed1 connects to adsl modem. I use user ppp to setup the connection to the isp who assigns dynamic ip address to the tun0 interface. I have no ip address assigned to ed1. I have traffc coming in through the tun0 from outside to the LAN. Which of the interfaces do I use to block unwanted traffic from the internet.- ed1 or tun0? How do I configure the tun0 interface for the firewall since I do not know the interface address before hand? Secondly which interface do I place natd? If anyone has configured adsl with dynamic ip address assigned to tun0 I will like to have some info about how it was configured with ipfw. regds ed -- email: [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Wishing to sell FreeBSD CDs
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, I sell various free/OSS products on CD, which I produce myself. I'm wishing to sell FreeBSD too. Is it possible to do this using discs manufactured myself? If this is possible, how can I be added to the list of CD vendors on the FreeBSD website? Thanks for your help, James Holden fastdiscs.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFAHkjkmHdHQoNYhjoRAoT5AKCVBkm8MNbTplzLv8ek9+rdHnVYvQCgyXHB NWCn4erKcWwTpSCAgPiBec8= =8Nry -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Rockwell Modem
Extech wrote: Here is my plroblem in short... I'm using a external Rockwell 56K modem on Freebsd 5.1. When starting up, the modem is quiried by freebsd (the DT light comes on just before the Login prompt is displayed), if I do a ps -aux it seems if the modem is up ns3# ps -aux root 476 0.0 1.4 1232 832 ?? I 11:26AM 0:00.03 /usr/libexec/getty std.9600 ttyd0 but when I run cu -lttyd0 the connection just hangs ns3# cu -lttyd0 Connected At this point I cannot do any thing and have to cancel cu out of a different session. I also have the following messages in /var/log/message Feb 2 11:25:52 ns3 kernel: unknown: PNP0303 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0501 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0700 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0401 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0501 can't assign resources (port) I'm trying to setup the modem to use as a fax modem with Hylafax. What does the hylafax script faxaddmodem report when it tries to set up the modem? PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Which interface do I put natd and ipfw
Check this doc out: http://www.schlacter.net/public/FreeBSD-STABLE_and_IPFILTER.html Extech *** REPLY SEPARATOR *** On 2004/02/02 at 23:44 Emmanuel Dwamena wrote: Dear friends, I need help to set up firewall on my freebsd 5.1 box. I have built new kernel with ipfw enabled and is working fine. I need to know which of the 3 interfaces do I put the natd and ipfw. My freebsd 5.1 box has 2 nic cards. ed0 connects to LAN and ed1 connects to adsl modem. I use user ppp to setup the connection to the isp who assigns dynamic ip address to the tun0 interface. I have no ip address assigned to ed1. I have traffc coming in through the tun0 from outside to the LAN. Which of the interfaces do I use to block unwanted traffic from the internet.- ed1 or tun0? How do I configure the tun0 interface for the firewall since I do not know the interface address before hand? Secondly which interface do I place natd? If anyone has configured adsl with dynamic ip address assigned to tun0 I will like to have some info about how it was configured with ipfw. regds ed -- email: [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Strange Samba problem(FreeBSD)
Hi, I have two machines one FreeBSD(netbios name= Backup) and one RH9(netbiosname = Redhat) I can see all the shares on both backup and Redhat (Refer to the below) when I am using my FreeBSD machine smbclient -L //redhat added interface ip=192.168.1.195 bcast=192.168.1.255 nmask=255.255.255.0 Got a positive name query response from 192.168.1.191 ( 192.168.1.191 ) Password: Domain=[X] OS=[Unix] Server=[Samba 2.2.7a] Sharename Type Comment - --- IPC$ IPC IPC Service (RH9 Server) ADMIN$ Disk IPC Service (RH9 Server) dannyhoDisk Home Directories Server Comment ---- REDHAT RH9 Server WorkgroupMaster ---- XREDHAT smbclient -L //backup added interface ip=192.168.1.195 bcast=192.168.1.255 nmask=255.255.255.0 Got a positive name query response from 192.168.1.195 ( 192.168.1.195 ) Password: Domain=[X] OS=[Unix] Server=[Samba 2.2.3a] Sharename Type Comment - --- homes Disk Home Directories dannyhoDisk Danny's Home Directory However when I am trying I am trying to view all the shares from my RH9 box I cant view the shares on the backup server (refer to the email below) [EMAIL PROTECTED] dannyho]$ smbclient -L //backup added interface ip=192.168.1.191 bcast=192.168.1.255 nmask=255.255.255.0 Connection to backup failed [EMAIL PROTECTED] dannyho]$ smbclient -L //redhat added interface ip=192.168.1.191 bcast=192.168.1.255 nmask=255.255.255.0 Password: Domain=[X] OS=[Unix] Server=[Samba 2.2.7a] Sharename Type Comment - --- IPC$ IPC IPC Service (RH9 Server) ADMIN$ Disk IPC Service (RH9 Server) dannyhoDisk Home Directories Server Comment ---- REDHAT RH9 Server WorkgroupMaster ---- XREDHAT Any ideas?? Yours faithfully, Danny Ho ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Rockwell Modem
It also just hangs when it try to query the modem. *** REPLY SEPARATOR *** On 2004/02/02 at 12:55 Peter Risdon wrote: Extech wrote: Here is my plroblem in short... I'm using a external Rockwell 56K modem on Freebsd 5.1. When starting up, the modem is quiried by freebsd (the DT light comes on just before the Login prompt is displayed), if I do a ps -aux it seems if the modem is up ns3# ps -aux root 476 0.0 1.4 1232 832 ?? I 11:26AM 0:00.03 /usr/libexec/getty std.9600 ttyd0 but when I run cu -lttyd0 the connection just hangs ns3# cu -lttyd0 Connected At this point I cannot do any thing and have to cancel cu out of a different session. I also have the following messages in /var/log/message Feb 2 11:25:52 ns3 kernel: unknown: PNP0303 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0501 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0700 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0401 can't assign resources (port) Feb 2 11:25:52 ns3 kernel: unknown: PNP0501 can't assign resources (port) I'm trying to setup the modem to use as a fax modem with Hylafax. What does the hylafax script faxaddmodem report when it tries to set up the modem? PWR. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: fetch fails, ftp works question
On Mon, 2004-02-02 at 14:25, Ion-Mihai Tetcu wrote: Hi, I have the feeling this is in some FAQ, but I don't understand it. I have a ftp server on which I have the distfiles and I'm using it as MASTER_SITE_OVERRIDE=ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/${DIST_SUBDIR+DIST_SUBDIR/} It usually work ok on make fetch. But sometimes it doesn't, e.g. fetch ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz fetch: ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz: File unavailable (e.g., file not found, no access) However the following works: ftp ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz Can somebody enlighten me ? Try using the FTP_LOGIN and FTP_PASSWORD variables. If all else fails you can try the FETCH_CMD variable in /etc/make.conf and change it to use ftp, wget etc. Oh, not sure if that was a typo above but it should be: MASTER_SITE_OVERRIDE?= ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/${DIST_SUBDIR}/ Regards, -- Nelis Lamprecht PGP: http://www.8ball.co.za/pgp/nelis.key Unix IS user friendly.. It's just selective about who its friends are. signature.asc Description: This is a digitally signed message part
Re: Make Syntax
On Fri, 30 Jan 2004 21:38:54 -0800 Rishi Chopra [EMAIL PROTECTED] wrote: Is there any way to run a 'clean' command to remove 'WORK' directories from the ports tree after the fact? If you want to remove *all* the WORK dirs you can use: find /usr/ports -type d -name 'work' -print | xargs rm which is a lot faster. -- IOnut Unregistered ;) FreeBSD user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Removing Ports
My understanding is that 'make deinstall' only removes the port from the ports database - is there any way to actually remove all of the files associated with a particular port? -- Rishi Chopra http://www.ocf.berkeley.edu/~rchopra ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Removing Ports
On Mon, 2 Feb 2004, Rishi Chopra wrote: My understanding is that 'make deinstall' only removes the port from the ports database - is there any way to actually remove all of the files associated with a particular port? You can do pkg_delete name Rus -- e: [EMAIL PROTECTED] t: 1-888-327-6330 www.jvds.com - Root on your own box www.vpscolo.com - Your next hosting company ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Removing Ports
On Mon, Feb 02, 2004 at 05:12:04AM -0800, Rishi Chopra wrote: My understanding is that 'make deinstall' only removes the port from the ports database - is there any way to actually remove all of the files associated with a particular port? See the ports(7) manpage. 'make deinstall' effectively 'uninstalls' the application and all associated files and dirs, but only if those files/dirs haven't changed since the application was first installed. To make sure you clean out the port's working directory (where the port is built etc), as well as uninstalling the application - add the 'clean' target to the make command: make clean deinstall -- Jez Hancock - System Administrator / PHP Developer http://munk.nu/ http://jez.hancock-family.com/ - Another FreeBSD Diary http://ipfwstats.sf.net/- ipfw peruser traffic logging ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Removing Ports
Rishi Chopra [EMAIL PROTECTED] writes: My understanding is that 'make deinstall' only removes the port from the ports database - is there any way to actually remove all of the files associated with a particular port? 'make deinstall' does a few other things as well; among them, a pkg_delete(1). This will remove the files installed by the port (barring a bug in the port...). Note that the 'make deinstall' will only delete the port if the port skeleton is still for the same version installed. -- Lowell Gilbert, embedded/networking software engineer, Boston area: resume/CV at http://be-well.ilk.org:8088/~lowell/resume/ username/password public ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Which interface do I put natd and ipfw
Emmanuel Dwamena [EMAIL PROTECTED] writes: I need help to set up firewall on my freebsd 5.1 box. I have built new kernel with ipfw enabled and is working fine. I need to know which of the 3 interfaces do I put the natd and ipfw. My freebsd 5.1 box has 2 nic cards. ed0 connects to LAN and ed1 connects to adsl modem. I use user ppp to setup the connection to the isp who assigns dynamic ip address to the tun0 interface. I have no ip address assigned to ed1. I have traffc coming in through the tun0 from outside to the LAN. Which of the interfaces do I use to block unwanted traffic from the internet.- ed1 or tun0? tun0 How do I configure the tun0 interface for the firewall since I do not know the interface address before hand? You have two choices; either don't use the address in the firewall setup at all (it isn't really useful...) or use the me keyword for the address (see ipfw(8)). Secondly which interface do I place natd? tun0 -- Lowell Gilbert, embedded/networking software engineer, Boston area: resume/CV at http://be-well.ilk.org:8088/~lowell/resume/ username/password public ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
NAT and IPFW rules
Hallo! Out from reading the manpage for natd, I have a question about how to restrict IPFW access for NAT for the case when I have one computer connected directly to another one (having two NICs installed into it)? That means that I don't have to care about big private network, but rather want to narrow down the access to single private IP address. For NAT to work, two rules need to be added: ipfw add divert natd all from any to any via xl0 Can this rule be restricted (is it possible to divert not every packets)? Right now, every packet that enters/leaves the system is diverted, sometimes natd process eats quite a lot of processor resources. Can this be avoided? How? ipfw add pass all from any to any How can this be restricted? I basically need only outgoing stuff working, that's all, and silently passing any packets from whatever location to any destination is insecure to me. Can someone post a live examples of such setup? Waiting to hear from some gurus ;) -- Eugene - 25 ! - http://ngs.ru/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mirror
I am interested in becoming a mirror for FreeBSD. How much bandwidth is required/recommended? Thanks ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mirror
On Mon, 2004-02-02 at 06:16, [EMAIL PROTECTED] wrote: I am interested in becoming a mirror for FreeBSD. How much bandwidth is required/recommended? Thanks see http://www.freebsd.org/doc/en_US.ISO8859-1/articles/hubs/index.html -- Nelis Lamprecht PGP: http://www.8ball.co.za/pgp/nelis.key Unix IS user friendly.. It's just selective about who its friends are. signature.asc Description: This is a digitally signed message part
Re: fetch fails, ftp works question
On Mon, 02 Feb 2004 15:02:40 +0200 Nelis Lamprecht [EMAIL PROTECTED] wrote: On Mon, 2004-02-02 at 14:25, Ion-Mihai Tetcu wrote: Hi, I have the feeling this is in some FAQ, but I don't understand it. I have a ftp server on which I have the distfiles and I'm using it as MASTER_SITE_OVERRIDE=ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfil es/${DIST_SUBDIR+DIST_SUBDIR/} It usually work ok on make fetch. But sometimes it doesn't, e.g. fetch ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz fetch: ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz: File unavailable (e.g., file not found, no access) However the following works: ftp ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14.tar.gz Can somebody enlighten me ? Try using the FTP_LOGIN and FTP_PASSWORD variables. The odd thing is that for some ports it works and for some it doesn't, so I don't think is an authentication problem. If all else fails you can try the FETCH_CMD variable in /etc/make.conf and change it to use ftp, wget etc. Yes, I'm trying that also; the problem is that, if I use: FETCH_CMD=/usr/bin/ftp FETCH_BEFORE_ARGS=-v some fetching fails because ftp gets passed an -S option (I presume for the files that have the new SIZE in the distinfo). The same for axel, etc. The hole infrastructure is based on the assumption FETCH_CMD=/usr/bin/fetch ( and FETCH_BEFORE_ARGS=ARr ) and I found no way to override passing '-S'. Oh, not sure if that was a typo above but it should be: MASTER_SITE_OVERRIDE?= ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/${DIST_SUBDIR}/ Why ? ${DIST_SUBDIR+DIST_SUBDIR/} will expand in DIST_SUBDIR with an ending '/' if $DIST_SUBDIR is set and will be blank otherwise. If I use ${DIST_SUBDIR}/ the ending slash will be added even if the distfile is in /usr/ports/distfiles/ (== pub/FreeBSD/ports/distfiles/) e.g. pub/FreeBSD/ports/distfiles//my_distfile and the fetch will fail. Theoretically on the 'host' machine I should have all the distfiles, so I want all downloads to be made from there. I don't remember what the '?=' means. Thanks, -- IOnut Unregistered ;) FreeBSD user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chrooted ssh/scp
Evan Sayer [EMAIL PROTECTED] writes: Does anyone know how to make it so that users can ssh in and get a normal shell or scp in and get or send files but only within their own home directories via chroot? The commercial ssh server has that capability built in, but the free ones don't, last I checked. You should be able to hook up jail(8) or chroot(8) to the account itself, though... -- Lowell Gilbert, embedded/networking software engineer, Boston area: resume/CV at http://be-well.ilk.org:8088/~lowell/resume/ username/password public ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dhclient: send_packet: Permission denied
Edward Carmody [EMAIL PROTECTED] writes: I'm seeing the following over and over in /var/log/messages Feb 1 13:54:17 Oberon dhclient: send_packet: Permission denied Any idea what this is? Thanks! Firewall rejecting the outgoing DHCP packet? -- Lowell Gilbert, embedded/networking software engineer, Boston area: resume/CV at http://be-well.ilk.org:8088/~lowell/resume/ username/password public ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: mirror
Have a look here: http://www.freebsd.org/doc/en_US.ISO8859-1/articles/hubs/ Regards Didier -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: lundi 2 février 2004 05:17 To: [EMAIL PROTECTED] Subject: mirror I am interested in becoming a mirror for FreeBSD. How much bandwidth is required/recommended? Thanks ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
failed to change NIS password
Hey All Got an odd one here - have set up a few FreeBSD NIS environments and they've not done this to me before. FreeBSD 4.9-RELEASE NIS master, trying to change password for NIS user on same machine. One other client - Red Hat 7.3 All works fine, can log in to both machines, can ypcat all the maps, etc. However when I try and change password on the FreeBSD box I get this: passwd: failed to change NIS password: RPC: Server can't decode arguments I've done some reading and even though it shouldn't make a difference since the same FreeBSD box is NIS server client I have tried: changing default password from md5 to des in /etc/login.conf setting up a /etc/securenets running rpc.yppasswdd with a -u but no joy. I have even tried copying yppasswd (which was identical) and rpc.yppasswdd (which was not) from a working FreeBSD 4.8 system. Any ideas anyone? Cheers TIA, Irvine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: failed to change NIS password
On Mon, 2 Feb 2004, Irvine Short wrote: Sorry, below: setting up a /etc/securenets was actually /var/yp/securenets Irvine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: One of your employees are very rude.
FreeBSD is developed by a group of volunteers. There are no employees. I would suggest that if you want help, try this list :). IRC can be a little rough at times due to inflated egos and such. If you're not on-topic and/or appear to be causing trouble to the OP, you *will* be kicked. In your chat log you appeared a little bit rude. You didn't have to remind the OP of what his channel's purpose is. If you were asking a real newbie question, you'll get no other answer than RTFM, trust me :) If you're dead set on IRC, try irc.freenode.net #freebsd. There's some nice people there who are more than willing to help. Jason ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: fetch fails, ftp works question
FBSD Friend Since the fetch command does function for you, but some times you get this message, File unavailable (e.g., file not found, no access) The file not found part you know is not true, because you have used the same command where it does get the same named package. SO it must be the no access part of the message that has meaning for this execution of the command. That means that the FTP server you are using is busy right them when you are trying to access it. Like in max users exceeded. Those FTP servers are being beat on right now by people trying to get the bug infested 5.2 .iso files. I know the error message is not very clear, but that 's what it means in your case. Bottom line is since the fetch command works some times, it can not be fetch command syntax, ether the targeted server is busy and just try again in 10 seconds, or the you have the package name typed wrong and it's really not found as you have it spelled. The package names with the version number appended as an suffix is intended for internal ftp server use. The pkg_add -rv command uses the fetch command to get the latest version of the package by just using the package name without the version number suffix. The only sure way to find the correct spelling of the pkg_add package name is to FTP to the same path location as the pkg_add command uses and manually find it your self. You will see that all the category directories contain links to the all directory which contains the packages with names that have the version suffix. The Latest directories which is where pkg_add is pointed, points back to the ALL directory. The same directory tree architecture is used for all the package-FBSD version directories. That way only an single All directory is created and all FBSD version package directories end up using the most current package available with the least amount of work for the ftp site administrator. It's all done using link file commands. One other gotya, for native FBSD without any FTP environment overrides, ftp defaults to active mode and fetch ftp defaults to passive mode. You will get the File unavailable (e.g., file not found, no access) message if your firewall is blocking FTP access. Check out this web site for real good explanation of the 2 FTP access modes http://www.slacksite.com/other/ftp.html I hope this gives you the insight you were desiring. Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Ion-Mihai Tetcu Sent: Monday, February 02, 2004 7:26 AM To: [EMAIL PROTECTED] Subject: fetch fails, ftp works question Hi, I have the feeling this is in some FAQ, but I don't understand it. I have a ftp server on which I have the distfiles and I'm using it as MASTER_SITE_OVERRIDE=ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfile s/${DIST_SUBDIR+DIST_SUBDIR/} It usually work ok on make fetch. But sometimes it doesn't, e.g. fetch ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14 .tar.gz fetch: ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14 .tar.gz: File unavailable (e.g., file not found, no access) However the following works: ftp ftp://user:[EMAIL PROTECTED]/pub/FreeBSD/ports/distfiles/MailScanner-4.25-14 .tar.gz Can somebody enlighten me ? -- IOnut Unregistered ;) FreeBSD user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: customize set prompt question
On Mon, Feb 02, 2004 at 11:48:13AM +0100, Didier WIROTH wrote: Hi, I would like to colorize this prompt: set prompt=@%m:%~# How do I have to modify the prompt so that the entire prompt is of red color. Only the prompt should be red, not what is typed or the results of any output. many thanks Does csh understand ansi escape sequences? If so you could try this: $ set prompt=\[\e[1;[EMAIL PROTECTED]:%~# \[\e[m\] I don't know if this will work in csh, but it definitely works in bash. For bash it would be: $ export PS1=\[\e[1;[EMAIL PROTECTED]:%~# \[\e[m\] Nathan -- gpg --keyserver pgp.mit.edu --recv-keys D8527E49 pgp0.pgp Description: PGP signature
Re: failed to change NIS password
OK, got it! On Mon, 2 Feb 2004, Irvine Short wrote: FreeBSD 4.9-RELEASE NIS master, trying to change password for NIS user on same machine. One other client - Red Hat 7.3 All works fine, can log in to both machines, can ypcat all the maps, etc. However when I try and change password on the FreeBSD box I get this: passwd: failed to change NIS password: RPC: Server can't decode arguments I had all the user's login shells set to /bin/bash with an appropriate symlink on the 'BSD box so they could have the same login shell on Linux FreeBSD. I had neglected to update /etc/shells... TIA (thanks in absence?) Irvine ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Softc structure linkage problem
I am using FreeBSD Version 5.1. I am having problem to use the softc structure variables to assign the pointer to make_dev and bus_alloc_resource functions. When I declare dev_t sdev as global variable and assign to make_dev as follows: int unit = device_get_unit(device); sdev = make_dev(sy_cdevsw, 0, UID_ROOT, GID_WHEEL, 0600, sy3c%d, unit); I am able to create device node, load the kld and unload the kld. When I declare dev_t dev as part of sy_softc structure and assign the scp-dev pointer to make_dev function as shown above, the code compiles ok. When I load the kld with kldload -v ./sy3c.ko command, it flags error. The errors log file err_log is attached. I have also attached the driver code for reference. Would you please advise a.s.a.p to resolve this problem. Regards Gurdial Chandra sy3c.c Description: Binary data err_log Description: Binary data ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: customize set prompt question
FWIW this is what I use in my .bashrc. The contol codes are for an ANSI terminal, the shell doesn't care what to use. The \[ and \] are bash specific, you'll want to remove them for csh. BLACK=\[\e[0;30m\] BLUE=\[\e[0;34m\] GREEN=\[\e[0;32m\] CYAN=\[\e[0;36m\] RED=\[\e[0;31m\] PURPLE=\[\e[0;35m\] BROWN=\[\e[0;33m\] LIGHT_GRAY=\[\e[0;37m\] DARK_GRAY=\[\e[1;30m\] LIGHT_BLUE=\[\e[1;34m\] LIGHT_GREEN=\[\e[1;32m\] LIGHT_CYAN=\[\e[1;36m\] LIGHT_RED=\[\e[1;31m\] LIGHT_PURPLE=\[\e[1;35m\] YELLOW=\[\e[1;33m\] WHITE=\[\e[1;37m\] NO_COLOR=\[\e[0m\] who am i | grep '^root' /dev/null if [ $? = 0 ] ;then COLOR=$RED else COLOR=$LIGHT_GREEN fi export PS1=$COLOR\u$NO_COLOR:$YELLOW\w$NO_COLOR\$ Nathan Kinkade wrote: On Mon, Feb 02, 2004 at 11:48:13AM +0100, Didier WIROTH wrote: Hi, I would like to colorize this prompt: set prompt=@%m:%~# How do I have to modify the prompt so that the entire prompt is of red color. Only the prompt should be red, not what is typed or the results of any output. many thanks Does csh understand ansi escape sequences? If so you could try this: $ set prompt=\[\e[1;[EMAIL PROTECTED]:%~# \[\e[m\] I don't know if this will work in csh, but it definitely works in bash. For bash it would be: $ export PS1=\[\e[1;[EMAIL PROTECTED]:%~# \[\e[m\] Nathan ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: NAT and IPFW rules
Hello Friend First I agree with you the FBSD handbook documentation on firewall software sucks big time. It leads the reader into believing that ipfw is the only solution when it is not. FBSD is delivered with ipfw and IPFILTER which are both firewall software applications. The second thing that the sparse ipfw documentation falls to say, is an firewall that does not use stateful rules is not very secure. The real show stopper is ipfw with stateful rules using the 'keep state' option does not work when used with the divert/nated legacy sub-routine. What this means is ipfw with stateful rules can only be used if 'user ppp -nat' is how you connect to the public internet. IPFILTER 's stateful rules work fine, and it has it's own external ipnat function. I strongly recommend you drop ipfw and instead use IPFILTER as it's the superior firewall software solution from the ease of use of stateful rules. If you use 'user ppp to connect to the public internet and want to continue to use ipfw, I have ipfw stateful rule set I can send you. If you want to use IPFILTER, I can sent of an rule set for it also along with links to doc sites. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Eugene Panchenko Sent: Sunday, February 01, 2004 11:15 AM To: [EMAIL PROTECTED] Subject: NAT and IPFW rules Hallo! Out from reading the manpage for natd, I have a question about how to restrict IPFW access for NAT for the case when I have one computer connected directly to another one (having two NICs installed into it)? That means that I don't have to care about big private network, but rather want to narrow down the access to single private IP address. For NAT to work, two rules need to be added: ipfw add divert natd all from any to any via xl0 Can this rule be restricted (is it possible to divert not every packets)? Right now, every packet that enters/leaves the system is diverted, sometimes natd process eats quite a lot of processor resources. Can this be avoided? How? ipfw add pass all from any to any How can this be restricted? I basically need only outgoing stuff working, that's all, and silently passing any packets from whatever location to any destination is insecure to me. Can someone post a live examples of such setup? Waiting to hear from some gurus ;) -- Eugene - 25 ! - http://ngs.ru/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: fetch fails, ftp works question
On Mon, 2 Feb 2004 09:40:12 -0500 JJB [EMAIL PROTECTED] wrote: FBSD Friend Thanks for your time, Since the fetch command does function for you, but some times you get this message, File unavailable (e.g., file not found, no access) The file not found part you know is not true, because you have used the same command where it does get the same named package. SO it must be the no access part of the message that has meaning for this execution of the command. That means that the FTP server you are using is busy right them when you are trying to access it. Like in max users exceeded. Those FTP servers are being beat on right now by people trying to get the bug infested 5.2 .iso files. From that machine's inetd.conf: ftp stream tcp nowait root/usr/libexec/ftpd ftpd -d -l -l -t 120 -T 120 and I don't remember setting any other limits, in other places. I know the error message is not very clear, but that 's what it means in your case. Bottom line is since the fetch command works some times, it can not be fetch command syntax, ether the targeted server is busy and just try again in 10 seconds, or the you have the package name typed wrong and it's really not found as you have it spelled. The second can be, as it is a part of make fetch make checksum from a script. The package names with the version number appended as an suffix is [..] link file commands. I'm talking about distfiles, not packages, so that is not the problem. There can be cases when my host has a newer distinfo the the server, but I've triple-checked that it is not the case here. One other gotya, for native FBSD without any FTP environment overrides, ftp defaults to active mode and fetch ftp defaults to passive mode. From ftp(1) it defaults to passive. But fetch defaults indeed to active, so this could be a reason; I still don't understand why it works on some ports and not on others. You will get the File unavailable (e.g., file not found, no access) message if your firewall is blocking FTP access. Check out this web site for real good explanation of the 2 FTP access modes http://www.slacksite.com/other/ftp.html I hope this gives you the insight you were desiring. Joe -- IOnut Unregistered ;) FreeBSD user ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
True IMAP Trash Folder
Does anyone know of a mail client that supports a true IMAP trash folder? Evolution doesn't, and so I use evolution on three different machines and if I have deleted messages I have to check all three machines sometimes to find it. Thanks! -Matt ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: True IMAP Trash Folder
Hi Matt, On Mon, 02 Feb 2004 10:20:09 -0500 UTC (2/2/2004, 9:20 AM -0600 UTC my time), Matt Juszczak wrote: M Does anyone know of a mail client that supports a true IMAP trash M folder? Evolution doesn't, and so I use evolution on three different M machines and if I have deleted messages I have to check all three M machines sometimes to find it. There is no trash folder in the IMAP protocol itself.. Removing mail is a two step process, first of deleting it, and second of purging the deleted mail. -- Gary TEAMWORK...means never having to take all the blame yourself. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: True IMAP Trash Folder
Gary wrote: Gary, Hi Matt, On Mon, 02 Feb 2004 10:20:09 -0500 UTC (2/2/2004, 9:20 AM -0600 UTC my time), Matt Juszczak wrote: M Does anyone know of a mail client that supports a true IMAP trash M folder? Evolution doesn't, and so I use evolution on three different M machines and if I have deleted messages I have to check all three M machines sometimes to find it. There is no trash folder in the IMAP protocol itself.. Removing mail is a two step process, first of deleting it, and second of purging the deleted mail. I understand now. Thanks. So do you know of a mail client that supports Deleting Items to a folder called Trash on the IMAP server? Right now I have evolution and if I delete mail it puts it into a local trash folder, but I dont see an option to Copy deleted mail to folder blah on mail server or something like that. Thanks! -- Gary TEAMWORK...means never having to take all the blame yourself. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
SATA RAID 5 controller for FreeBSD
Hi! I am looking for supported RAID 5 controller for FreeBSD and I am very puzzled after reading all the specs and descrioptions. I haven't found any SATA RAID 5 controller in the FreeBSD supported Hardware list, but some manufacturer claim they support FreeBSD. SO far i have found 1) Promise FastTrak SX4 (around 200$) 2) HighPoint RocketRaid 1640 (aorund 150$ hard to find) 3) EscaladeR 8506 4-port one (around 500$) HightPoint and Escalade AFAIK are well supported by FreeBSD. FreeBSD 4.8 support is promised in Promise :) FastTrak. Here is the dilema: As i have read SX4 is not a hardware raid, it uses server's CPU to do XOR calculations. Which is not good, because it means if CPU is loaded RAID permonace will degrade. But SX4 has HUGE cache memory (up to 256MB SDRAM) and FRAM for internal queue storage. I could not find out if RocketRaid is a true hardware RAID 5 or partly software. Also, no infromation on the size of a cache on 1640. Review state that RAID 5 perfomance is not very good. However, I currently use just one huge SCSI disk with 4MB cache. Will i gain in speed with RAID 5 or loose? (it is a web server, many small file reads). Af for Escalde 6506 i again did not find any info on Cache size. However, the specs clearly state that it is a hardware raid5. But if does not have any significats amount of cache and IF rocketraid is too hardware raid 5 then why the heck escalade is so much more espansive? Please, help me to decide which to pick and maybe someone has info on cache size and ability to do hardware XOR for RAID5 for each controller? Regards, Artem Kuchin General Director of IT Legion Ltd. Russia, Moscow www.itlegion.ru [EMAIL PROTECTED] +7 095 232-0338 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: 5.2.1 ?
ext Andrew Boothman ([EMAIL PROTECTED]) wrote: 5.2.1-RC1 still gives piles of arp warnings when you use an ADSL router in half-bridge mode. I wish I knew of a way to disable this. For now, I did some tuning to syslog and fixed it so that junk only goes to ttyv3 instead of filling up /var. What arp warnings are you getting? There are ARP sysctls that you might be able to tweak in order to stop getting these. Hi, The adsl router is set to 10.0.0.2, offering via DHCP it's WAN IP address to the FreeBSD box. PPP half-bridge mode is something strange, but very useful anyway. So, the FreeBSD box gets a live internet IP from the router and since the router is on a different network, the logfiles fill with arp errors that 10.0.0.2 can't be arp'ed because it's not on the same network, blah, blah, blah. Read this to understand the setup of my networking: http://www.adslnation.com/phpapps/phpBB2/viewtopic.php?t=402sid=7f658e15ff642da866cd437cc7f0b841 You see that I have to force the subnet mask to something other than the one that the adsl router uses, in order to get routing working at all. Strangely enough, this problem doesn't exist at all on linux. It's a FreeBSD peculiarity. Anyway, I wouldn't consider using linux for my firewall/gateway. BR, -- Mike Jackson ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Which interface do I put natd and ipfw
Hello Friend You only NAT the public internet facing interface, tun0 is your case. You should turn on user ppp -nat function and not use the ipfw divert rule command because, ipfw stateful rules does not work when used with ipfw's legacy divert rule which launches the sub-routine call to NATD. FBSD also comes with IPFILTER, another firewall software application. It's stateful rules work correctly with it's external ipnat function and can be configured to use tun0. I have sample if you are interested. Here is an ipfw stateful Inclusive Rule Set The following rule set is an complete very secure 'inclusive' type of firewall rule set that I have used on my system. You can not go wrong using this rule set for you own. Just comment out any pass rules for services to don't want. If you see messages in your log that you want to stop seeing just add an deny rule in the inbound section. You will see the pattern in the usage of these rules. 1. All statements that are a request to start an session to the public internet use keep-state. 2. All the authorized services that originate from the public internet have the limit option to stop flooding. 3. All rules use in or out to clarify direction. 4. All rules use via interface name to specify the interface the packet is traveling over. Add the following statements to /etc/ipfw.rules Start of IPFW rules file ### # Flush out the list before we begin. ipfw -q -f flush # Set rules command prefix cmd=ipfw -q add pif=tun0# interface name # facing the public internet # # No restrictions on Inside Lan Interface for private network # Not needed unless you have Lan. # Change xl0 to your Lan Nic card interface name # $cmd 5 allow all from any to any via ed0 # # No restrictions on Loopback Interface # $cmd 00010 allow all from any to any via lo0 # # Allow the packet through if it has previous been added to the # the dynamic rules table by an allow keep-state statement. # $cmd 00015 check-state # # Interface facing Public internet (Outbound Section) # Interrogate session start requests originating from behind the # firewall on the private network or from this gateway server # destine for the public internet. # # Allow out access to my ISP's Domain name server. # xxx.xxx.xxx.xxx must be the IP address of your ISP's DNS # Dup these lines if your ISP has more than one DNS server # Get the IP addresses from /etc/resolv.conf file $cmd 00110 allow tcp from any to xxx.xxx.xxx.xxx 53 out via $pif setup keep-state $cmd 00111 allow udp from any to xxx.xxx.xxx.xxx 53 out via $pif keep-state # Allow out access to my ISP's DHCP server for cable or DSL configurations. # This rule is not needed for 'user ppp' type connection to the public internet. # so you can delete this whole group. # Use the following rule and check log for IP address. # Then put IP address in commented out rule delete first rule $cmd 00120 allow log udp from any to any 67 out via $pif keep-state #$cmd 00120 allow udp from any to xxx.xxx.xxx.xxx 67 out via $pif keep-state # Allow out non-secure standard www function $cmd 00200 allow tcp from any to any 80 out via $pif setup keep-state # Allow out secure www function https over TLS SSL $cmd 00220 allow tcp from any to any 443 out via $pif setup keep-state # Allow out send get email function $cmd 00230 allow tcp from any to any 25 out via $pif setup keep-state $cmd 00231 allow tcp from any to any 110 out via $pif setup keep-state # Allow out FBSD (make install CVSUP) functions # Basically give user root GOD privileges. $cmd 00240 allow tcp from me to any out via $pif setup keep-state uid root # Allow out ping $cmd 00250 allow icmp from any to any out via $pif keep-state # Allow out Time $cmd 00260 allow tcp from any to any 37 out via $pif setup keep-state # Allow out nntp news (IE: news groups) $cmd 00270 allow tcp from any to any 119 out via $pif setup keep-state # Allow out secure FTP, Telnet, and SCP # This function is using SSH (secure shell) $cmd 00280 allow tcp from any to any 22 out via $pif setup keep-state # Allow out whois $cmd 00290 allow tcp from any to any 43 out via $pif setup keep-state # deny and log everything else that's trying to get out. # This rule enforces the block all by default logic. $cmd 00299 deny log all from any to any out via $pif # # Interface
Re[2]: True IMAP Trash Folder
Hi Matt, On Mon, 02 Feb 2004 10:27:41 -0500 UTC (2/2/2004, 9:27 AM -0600 UTC my time), Matt Juszczak wrote: There is no trash folder in the IMAP protocol itself.. Removing mail is a two step process, first of deleting it, and second of purging the deleted mail. M I understand now. Thanks. So do you know of a mail client that M supports Deleting Items to a folder called Trash on the IMAP M server? No, because it is not part of the IMAP protocol. M Right now I have evolution and if I delete mail it puts it into M a local trash folder, but I dont see an option to Copy deleted mail to M folder blah on mail server or something like that. Right, not part of the protocol, so there would be no option for that. You can either manually drag-N-drop deleted mail, before you purge it, to a new folder you create on the server, called Trash, or whatever. Or... perhaps you can set up a filter to move/copy deleted mail to your new Trash folder, etc... this might work. -- Gary Department of Redundancy Department. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
transparrent cvsup cache
Hi, I'm just gettting started using FreeBSD and I've got two FreeBSD clients and a server on my lan, and I'm thinking instead of having both clients cvsup to a public site, I'd make the machine I use for a file server a cvscache. But I'm wondering whats the best way to do so, I'm thinking as a bridge, and using firewall rules on the interface with a ip address redirrecting the packets to localhost and running net/cvsup-mirror on the server box? I'd be interested in a similar solution for port distfiles, and I guess squid will do this for me with a bit of configuring? But if anyone has a better idea I'd be interested! Ideas are welcome! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: chrooted ssh/scp
sshd2 will do this and if you read the license I believe it is legal to use for most users. Else you can use sudo to make a ssh chroot. google groups has some explainations of how to do this. Michael Clark Nemschoff Chairs Inc mclark at nemschoff dot com CompTIA A+, MCP Voice: (920) 457 7726 x294 Fax: (920) 453 6594 -Original Message- From: Lowell Gilbert [mailto:[EMAIL PROTECTED] Sent: Monday, February 02, 2004 8:11 AM To: Evan Sayer Cc: [EMAIL PROTECTED] Subject: Re: chrooted ssh/scp Evan Sayer [EMAIL PROTECTED] writes: Does anyone know how to make it so that users can ssh in and get a normal shell or scp in and get or send files but only within their own home directories via chroot? The commercial ssh server has that capability built in, but the free ones don't, last I checked. You should be able to hook up jail(8) or chroot(8) to the account itself, though... -- Lowell Gilbert, embedded/networking software engineer, Boston area: resume/CV at http://be-well.ilk.org:8088/~lowell/resume/ username/password public ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] CONFIDENTIALITY NOTE: This electronic transmission, including all attachments, is directed in confidence solely to the person(s) to whom it is addressed, or an authorized recipient, and may not otherwise be distributed, copied or disclosed. The contents of the transmission may also be subject to intellectual property rights and all such rights are expressly claimed and are not waived. If you have received this transmission in error, please notify the sender immediately by return electronic transmission and then immediately delete this transmission, including all attachments, without copying, distributing or disclosing same. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Recommendation for proxy server that does Nat function
I just read an post that said some proxy server do Nat function. Searched the ports collection and did not see an proxy servers that said they did nat function. Does anyone on this list know of an proxy or squid server that also does NAT function? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: proxies and firewalls
Friend Jorn Are you saying you know of an proxy server that does the nat function? Please point me to it. Thanks -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Jorn Argelo Sent: Monday, February 02, 2004 5:04 AM To: Hiren Cc: [EMAIL PROTECTED] Subject: Re: proxies and firewalls When one is connected to a proxy server, the proxy server makes a connection to the outside world and transports the data to the computer who is requesting that information. So the client computer won't make a true connection to the outside world, but it only connects to the proxy server. In there the administrator can give several rules to the proxy server what to allow/dissalow. For example you can disable that clients connect to the MSN port. If you use a proxy server your internal IP address will almost always be shown on sites that show your IP address rather then your true external IP address. Also, a proxy server caches files it collects from the net, thus making it accessable faster. NAT (Network Address Translator) does nothing more then translating your internal IP address to an external one. So there is a direct connection to the internet like that, and there is no caching done by the NAT server NAT is handy for home use, since you don't have to really tight up your security as you do with your company. So if you got a big company then you should definitely use a proxy server to let your people connect to the outside world. Cheers, Jorn On Monday 02 February 2004 10:38, Hiren wrote: greetings all i often come across proxies and firewalls under the security section of tutorials and guides, i have read that one can create proxies of any internet service like ftp www etc. my question is what exactly is a proxy and how does it play a role in security, why and how does it replace NATing, and how does it play a role in security with regard to NAT. what services can be proxied, is it worth having and general advice. thanks all Hiren. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
uname -a was(Cvsup and RELENG_4 or RLENG_4_9)
This is a follow-up question regarding uname -a. After CVSup, making world, making a new kernel etc, when I run uname -a it reports 4.9-RELEASE #0. Should the #0 portion be a higher number? Also what exactly does that number represent? I assume an RC Thanks -- Bob Play is the work of children. It's very serious stuff. And if it's properly structured in a developmental program, children can blossom. -Bob Keeshan aka `Captain Kangaroo' ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: proxies and firewalls
Are you saying you know of an proxy server that does the nat function? Actually, the point of having proxies is *not* having to route. Your proxy machine should not be able to forward packets. Roughly, there a two different sub-groups: Circuit layer and application layer proxies, names should be self explaining. Example for an app layer gateway: Port: fwtk-2.1 Path: /usr/ports/security/fwtk Info: A toolkit used for building firewalls based on proxy services Example for a circuit level proxy: Port: nylon-1.2 Path: /usr/ports/net/nylon Info: A Unix SOCKS 4 and 5 proxy server Socks5 is already app layer, too, IIRC. Cheers, J. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chrooted ssh/scp
On Mon, 2 Feb 2004 10:02:32 -0600 Michael Clark [EMAIL PROTECTED] granted us these pearls of wisdom: sshd2 will do this and if you read the license I believe it is legal to use for most users. Else you can use sudo to make a ssh chroot. google groups has some explainations of how to do this. Michael Clark Nemschoff Chairs Inc mclark at nemschoff dot com CompTIA A+, MCP Voice: (920) 457 7726 x294 Fax: (920) 453 6594 -Original Message- From: Lowell Gilbert [mailto:[EMAIL PROTECTED] Sent: Monday, February 02, 2004 8:11 AM To: Evan Sayer Cc: [EMAIL PROTECTED] Subject: Re: chrooted ssh/scp Evan Sayer [EMAIL PROTECTED] writes: Does anyone know how to make it so that users can ssh in and get a normal shell or scp in and get or send files but only within their own home directories via chroot? The commercial ssh server has that capability built in, but the free ones don't, last I checked. You should be able to hook up jail(8) or chroot(8) to the account itself, though... excuse me if this seems off topic but a quick check over at ssh.com revealed no obvious links to a downloadable version that would not require a license. Pray tell where I might find the binaries. I would like to give sshd2 a run and see if it might fix a problem that has been nagging at me for a bit. TIA LukeK ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: chrooted ssh/scp
its in ports... -Original Message- From: Luke Kearney [mailto:[EMAIL PROTECTED] Sent: Monday, February 02, 2004 10:34 AM To: Michael Clark Cc: '[EMAIL PROTECTED]'; Evan Sayer Subject: Re: chrooted ssh/scp On Mon, 2 Feb 2004 10:02:32 -0600 Michael Clark [EMAIL PROTECTED] granted us these pearls of wisdom: sshd2 will do this and if you read the license I believe it is legal to use for most users. Else you can use sudo to make a ssh chroot. google groups has some explainations of how to do this. Michael Clark Nemschoff Chairs Inc mclark at nemschoff dot com CompTIA A+, MCP Voice: (920) 457 7726 x294 Fax: (920) 453 6594 -Original Message- From: Lowell Gilbert [mailto:[EMAIL PROTECTED] Sent: Monday, February 02, 2004 8:11 AM To: Evan Sayer Cc: [EMAIL PROTECTED] Subject: Re: chrooted ssh/scp Evan Sayer [EMAIL PROTECTED] writes: Does anyone know how to make it so that users can ssh in and get a normal shell or scp in and get or send files but only within their own home directories via chroot? The commercial ssh server has that capability built in, but the free ones don't, last I checked. You should be able to hook up jail(8) or chroot(8) to the account itself, though... excuse me if this seems off topic but a quick check over at ssh.com revealed no obvious links to a downloadable version that would not require a license. Pray tell where I might find the binaries. I would like to give sshd2 a run and see if it might fix a problem that has been nagging at me for a bit. TIA LukeK CONFIDENTIALITY NOTE: This electronic transmission, including all attachments, is directed in confidence solely to the person(s) to whom it is addressed, or an authorized recipient, and may not otherwise be distributed, copied or disclosed. The contents of the transmission may also be subject to intellectual property rights and all such rights are expressly claimed and are not waived. If you have received this transmission in error, please notify the sender immediately by return electronic transmission and then immediately delete this transmission, including all attachments, without copying, distributing or disclosing same. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: True IMAP Trash Folder
On 02/02/04 10:27 AM, Matt Juszczak sat at the `puter and typed: Gary wrote: Gary, Hi Matt, On Mon, 02 Feb 2004 10:20:09 -0500 UTC (2/2/2004, 9:20 AM -0600 UTC my time), Matt Juszczak wrote: M Does anyone know of a mail client that supports a true IMAP trash M folder? Evolution doesn't, and so I use evolution on three different M machines and if I have deleted messages I have to check all three M machines sometimes to find it. There is no trash folder in the IMAP protocol itself.. Removing mail is a two step process, first of deleting it, and second of purging the deleted mail. I understand now. Thanks. So do you know of a mail client that supports Deleting Items to a folder called Trash on the IMAP server? Right now I have evolution and if I delete mail it puts it into a local trash folder, but I dont see an option to Copy deleted mail to folder blah on mail server or something like that. I use mutt with an imap server. I've tied macros to specific keys that save messages to INBOX.trash, which effectively deletes them from the current folder. I go to the .trash folder and use 'D' to clean it out on a regular basis, sometimes finding one or two that I didn't want to delete. It requires folder hooks to change the underlying behavior for the 'd', '^d' and 'D' keys based on the current folder, but it works like a charm. The mutt site documents how to do most of this, but if you like, I can dig up my macros for you. HTH Lou -- Louis LeBlanc [EMAIL PROTECTED] Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org ԿԬ The universe does not have laws -- it has habits, and habits can be broken. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: named question...
On Sun, Feb 01, 2004 at 04:41:02PM -0500, Xpression wrote: Hi list, I have running named/BIND as DNS server, recently I have some problems and I don't know the source of it, I have checked the logs and config files but there is nothing unusual, here is my configs files, any suggestion ??? State the problems that you are having, and don't obscure your IP addresses - it gains you nothing in the way of security and makes trying to help you more difficult. Ceri -- pgp0.pgp Description: PGP signature
Re: Acu Cobol 6.0 for Linux
I realised that the ktrace log was rubbish; most of the syscalls names were not properly mapped. I tried to track down the exact spot were the Linux executable gets the SEGV signal, running strace on a Debian system and comparing the values passed to the system calls. Here is an extract: rt_sigaction(SIGTSTP, {0x8072ce0, [TSTP], SA_RESTART|0x400}, {SIG_IGN}, 8) = 0 rt_sigaction(SIGHUP, {0x8072ca0, [HUP], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGTERM, {0x8072bf0, [TERM], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGFPE, {0x804f910, [FPE], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGBUS, {0x804f940, [BUS], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGSEGV, {0x804f910, [SEGV], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGILL, {0x804f910, [ILL], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGSYS, {0x804f910, [SYS], SA_RESTART|0x400}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGPIPE, {SIG_IGN}, {SIG_DFL}, 8) = 0 rt_sigaction(SIGALRM, NULL, {SIG_DFL}, 8) = 0 rt_sigaction(SIGALRM, {SIG_DFL}, NULL, 8) = 0 brk(0x81c2000) = 0x81c2000 ^^--- SEGV on FreeBSD! brk(0x81c3000) = 0x81c3000 brk(0x81c4000) = 0x81c4000 brk(0x81c5000) = 0x81c5000 brk(0x81c6000) = 0x81c6000 So it was rt_sigaction() and not pwrite(); brk() and not ktrace(). Does this shed a new light? -- walter pelissero http://www.pelissero.de ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: proxies and firewalls
Thanks for your reply, But I must be thick headed this morning, because what you say below makes no sense to me. I checked out the 2 referenced descriptions and they say nothing about doing nat. I have Lan with private ip address that send packets to public internet. How does an proxy server solve the private ip address versus my public ip address problem? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of [EMAIL PROTECTED] Sent: Monday, February 02, 2004 11:28 AM To: JJB Cc: Jorn Argelo; [EMAIL PROTECTED] Subject: Re: proxies and firewalls Are you saying you know of an proxy server that does the nat function? Actually, the point of having proxies is *not* having to route. Your proxy machine should not be able to forward packets. Roughly, there a two different sub-groups: Circuit layer and application layer proxies, names should be self explaining. Example for an app layer gateway: Port: fwtk-2.1 Path: /usr/ports/security/fwtk Info: A toolkit used for building firewalls based on proxy services Example for a circuit level proxy: Port: nylon-1.2 Path: /usr/ports/net/nylon Info: A Unix SOCKS 4 and 5 proxy server Socks5 is already app layer, too, IIRC. Cheers, J. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: proxies and firewalls
I have Lan with private ip address that send packets to public internet. How does an proxy server solve the private ip address versus my public ip address problem? Simply through not routing / NATting at all. Instead of just forwarding the packets rewriting the IP headers like a NAT device does, an application layer proxy does the connections to the outside world *INSTEAD* of the client. To use the popular example of HTTP: While a NAT device will just forward and rewrite your query to a server's port 80/TCP and then forward and rewrite the reply according to its connection table, an application layer proxy will do the query *itself*. It will then process the reply, identify whether it looks like HTML that matches its quality/security requirements and then give a friendly reply to the client that originally did the query. Again, the proxy itself plays client on the application layer. This of course means that all outgoing connections are also done with the external IP address of the application level proxy machine. Clear now? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: proxies and firewalls
Proxy doesn't necessarily solve the privateIP-to-publicIP problem. NAT does: http://www.cablemodemhelp.com/proxy_vs_nat.htm Proxy is application level. NAT is address translation. HTH, Christopher Hollow JJB wrote: Thanks for your reply, But I must be thick headed this morning, because what you say below makes no sense to me. I checked out the 2 referenced descriptions and they say nothing about doing nat. I have Lan with private ip address that send packets to public internet. How does an proxy server solve the private ip address versus my public ip address problem? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of [EMAIL PROTECTED] Sent: Monday, February 02, 2004 11:28 AM To: JJB Cc: Jorn Argelo; [EMAIL PROTECTED] Subject: Re: proxies and firewalls Are you saying you know of an proxy server that does the nat function? Actually, the point of having proxies is *not* having to route. Your proxy machine should not be able to forward packets. Roughly, there a two different sub-groups: Circuit layer and application layer proxies, names should be self explaining. Example for an app layer gateway: Port: fwtk-2.1 Path: /usr/ports/security/fwtk Info: A toolkit used for building firewalls based on proxy services Example for a circuit level proxy: Port: nylon-1.2 Path: /usr/ports/net/nylon Info: A Unix SOCKS 4 and 5 proxy server Socks5 is already app layer, too, IIRC. Cheers, J. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
fm801 based sound card and FreeBSD5.2
On Tue, Jan 27, 2004 at 08:44:30PM +0300, grint wrote: Sorry I forget about subject Hello, I can't use my sound card based on fm801 (Genius Sound Maker) on FreeBSD5.2 On FreeBSD5.1 I download older fm801.c and build new kernel. And all work fine. But when I try do it on FreeBSD5.2 I have errors when try compile kernel: somthing like structurs changes format. Native fm801.c for FreeBSD5.2 dosn't work too. How can I use my sound card? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: chrooted ssh/scp
ext Luke Kearney ([EMAIL PROTECTED]) wrote: excuse me if this seems off topic but a quick check over at ssh.com revealed no obvious links to a downloadable version that would not require a license. Pray tell where I might find the binaries. I would like to give sshd2 a run and see if it might fix a problem that has been nagging at me for a bit. Hi, You can find the license here (FreeBSD is expressly mentioned): ftp://ftp.ssh.com/pub/ssh/LICENSE And the source code for the non-commercial version (missing PKI) here: ftp://ftp.ssh.com/pub/ssh/ssh-3.2.9.1.tar.gz Or like somebody else mentioned, you can use the port. But there were no problems compiling on BSD last time I tried a few months ago. BR, Mike ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
cups-base and cups-lpr - installing from ports
I have satisfactory use of cups-base and cups-lpr, but I believe it should be possible to install them somewhat more correctly, so that the following happen: 1) The system's standard lpr command is replaced by the cups one, without any manual alteration to the PATH being required. 2) portupgrade -a ceases displaying the messages: ** 'print/cups-lpr' is marked as IGNORE: is forbidden: Changes ownership of system directories (and the same for cups-base) Naturally, it will be necessary to prevent make world installing the standard lpr but I can already see how to do that. Any advice would be appreciated. -- Phil Reynolds o mail: [EMAIL PROTECTED] |L_ \ / Web: http://www.tinsleyviaduct.com/phil/ (_)- \/ Waltham 67, Emley Moor 69, Droitwich 79, Windows 95 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: conf/62230: log-in-vain issues it's msg every time 'mail' command is used.
I disagree with you on this. Log-in-vain purpose in life is to interrogate attempts from the external interface, not the localhost internal functions, which this clearly is what is happening. Sure there are work around solutions for this bug. If you think this is such an trivial annoyance bug that it's does not warrant attention, then just come out and say so, and not beat around the bush with work around solutions in an poor effort to conceal your reluctance to perform system maintenance activities. From what little documentation is published on Log-in-vain, it is not functioning correctly, period. Anybody look at the percentage of bug reports that get closed right out of hand to the ones that really get serious attention? Maybe there is some thing wrong with the evaluation criteria you people use to evaluate bug reports like this one. This is not an single event but an attitude that is too common among the people who review newly filed bug reports. It does nothing to foster confidence in the bug report system, or for that matter in the quality of the overall FBSD system. Just my observations of the over all bug reporting system, it stinks and needs to be readdressed so it's more amiable to really getting bugs fixed and not passing the buck, offering work around solutions. Just because there are many work around solutions does not warrant not fixing the bug causing the problem in the first place. No use beating an dead horse who can't hear what being said anyway. -Original Message- From: Ceri Davies [mailto:[EMAIL PROTECTED] Sent: Monday, February 02, 2004 11:22 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: conf/62230: log-in-vain issues it's msg every time 'mail' command is used. Synopsis: log-in-vain issues it's msg every time 'mail' command is used. State-Changed-From-To: open-closed State-Changed-By: ceri State-Changed-When: Mon Feb 2 08:20:36 PST 2004 State-Changed-Why: This is not a problem with the log in vain code, which is doing exactly as it's supposed to do, but rather with the configuration of your mail related daemons. As suggested by Bjoern A. Zeeb, you should sent a post to [EMAIL PROTECTED] asking for help on configuring your system to resolve these issues. http://www.freebsd.org/cgi/query-pr.cgi?pr=62230 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ftp/fetch/cvsup behind a firewall
I'm trying to get this to work with a non-Linux firewall. Mozilla can access the ftp site with the proxy server configured, but I haven't been able to get ftp to work with a proxy server. Any help would be greatly appreciated. Thanks, Anthony _ Check out the new MSN 9 Dial-up fast reliable Internet access with prime features! http://join.msn.com/?pgmarket=en-uspage=dialup/homeST=1 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Colors in VIM
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I've got a question for you all since I've been banging my head against a wall with this for some time now. I'm trying to get vim to do syntax highlighting for php/html files, along with scripts. It seams like it would be fairly straight forward, but I can't figure it out. I started by looking at a RedHat server (which does it by default) and located all of the .vimrc files, and mine were identical. I even had one in my home directory as well. All of the language files were there, it just did not want to work. Can someone offer me some help here? Here's my .vimrc file from my home dir as it stands now: set nocp set digraph ek hidden ruler sc vb wmnu set noeb noet nosol set bs=2 fo=cqrt ls=2 shm=at Thanks in advance, - --Brian McCann -BEGIN PGP SIGNATURE- Version: PGPfreeware 6.5.8 for non-commercial use http://www.pgp.com iQA/AwUBQB6PF0RPmxonqOz6EQJcTgCgjYzJ2+q5TlYw+5vwr5v6k5uVSfMAoMwl eYsqzXqUdiQsl4Ubj7Bg+VES =a7lz -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: SATA RAID 5 controller for FreeBSD
On Jan 29, 2004, at 5:12 AM, Artem Koutchine wrote: Hi! I am looking for supported RAID 5 controller for FreeBSD and I am very puzzled after reading all the specs and descrioptions. I haven't found any SATA RAID 5 controller in the FreeBSD supported Hardware list, but some manufacturer claim they support FreeBSD. SO far i have found 1) Promise FastTrak SX4 (around 200$) 2) HighPoint RocketRaid 1640 (aorund 150$ hard to find) 3) EscaladeR 8506 4-port one (around 500$) HightPoint and Escalade AFAIK are well supported by FreeBSD. FreeBSD 4.8 support is promised in Promise :) FastTrak. I have the Adaptec 2410SA. It supports 4 drives, has its own CPU and 64mb cache, and runs with the aac controller under 5.2. It seems to run pretty well. (Note: this is a totally different beast than the 2400A ATA controller) Chad ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: proxies and firewalls
Thanks for the detailed explanation. The light bulb has turned on in my head. I learn something new all the time on this list. So let me put this in my own words to verify I understand correctly. Lets say I have gateway box running 5 PCs on LAN behind it, with cable dhcp connection to ISP. The gateway box runs IPFILTER firewall and IPNAT to do NAT function. I can discontinue using IPNAT and install an application level proxy server on my gateway box and it will by default intercept all LAN and gateway originating packet traffic destine for the public internet after it's processed by my firewall and handle the bi-directional traffic transparently? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, February 02, 2004 12:02 PM To: JJB Cc: Jorn Argelo; [EMAIL PROTECTED] Subject: Re: proxies and firewalls I have Lan with private ip address that send packets to public internet. How does an proxy server solve the private ip address versus my public ip address problem? Simply through not routing / NATting at all. Instead of just forwarding the packets rewriting the IP headers like a NAT device does, an application layer proxy does the connections to the outside world *INSTEAD* of the client. To use the popular example of HTTP: While a NAT device will just forward and rewrite your query to a server's port 80/TCP and then forward and rewrite the reply according to its connection table, an application layer proxy will do the query *itself*. It will then process the reply, identify whether it looks like HTML that matches its quality/security requirements and then give a friendly reply to the client that originally did the query. Again, the proxy itself plays client on the application layer. This of course means that all outgoing connections are also done with the external IP address of the application level proxy machine. Clear now? ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Colors in VIM
On Mon, 2004-02-02 at 12:55 -0500, Brian McCann wrote: set nocp set digraph ek hidden ruler sc vb wmnu set noeb noet nosol set bs=2 fo=cqrt ls=2 shm=at Add this: syntax enable -- You keep using that word. I do not think it means what you think it means. FreeBSD 5.2-CURRENT i386 2:04am up 45 mins, 5 users, load averages: 2.53, 2.51, 2.23 signature.asc Description: This is a digitally signed message part
Strange GRE packet flows...
I have a 4.9 box (router1) running IPFW: /sbin/natd -interface rl0 -s ipfw add 999 divert natd all from any to any via rl0 ipfw add pipe 1 ip from any to any in recv vr0 ipfw add pipe 2 ip from any to any out xmit vr0 ipfw pipe 1 config mask src-ip 0x bw 512kbits/s ipfw pipe 2 config mask dst-ip 0x bw 512kbits/s And on this box I have some GRE tunnels: ifconfig gre8 create ifconfig gre8 tunnel x.x.x.x y.y.y.y ifconfig gre8 inet 172.20.1.13 172.20.1.14 netmask 255.255.255.252 ifconfig gre8 up route add -net 10.0.100.0 -netmask 255.255.255.0 172.20.1.14 The tunnels terminate on a Cisco 1720 or a box running FreeBSD 4.8 or 4.9. (Same config as above reversed). The Cisco or the BSD box are running NAT on their side. If I ping a box behind the remote side from my desktop which is behind the router1 box I drop 3 out of 5 packets. Now for the strange part - If I get a ping going to that same node from the router1 box and then ping from my desktop I drop no packets. If I kill the ping on the router1 box the pings from the desktop start dropping packets. This also works if I ping the external interface on the remote router. BTW, I have just changed the router1 box from Gentoo Linux using the IPROTUE package for the tunnels to FreeBSD 4.9. It worked just fine with the router1 running Linux. I would hate to have to change back as I hate Linux and think IPTABLES was written as a replacement for pulling finger nails out with pliers. Thoughts? Thanks! ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Colors in VIM
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 That gave me BW highlighting...getting closer. :) Thanks, - --Brian McCann - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Khairil Yusof Sent: Monday, February 02, 2004 1:05 PM To: Brian McCann Cc: [EMAIL PROTECTED] Subject: Re: Colors in VIM On Mon, 2004-02-02 at 12:55 -0500, Brian McCann wrote: set nocp set digraph ek hidden ruler sc vb wmnu set noeb noet nosol set bs=2 fo=cqrt ls=2 shm=at Add this: syntax enable - -- You keep using that word. I do not think it means what you think it means. FreeBSD 5.2-CURRENT i386 2:04am up 45 mins, 5 users, load averages: 2.53, 2.51, 2.23 -BEGIN PGP SIGNATURE- Version: PGPfreeware 6.5.8 for non-commercial use http://www.pgp.com iQA/AwUBQB6R2ERPmxonqOz6EQLj9QCfRVLxzjASO2WukdhHghVDbalTjpUAn1ry Q7yGi9nRF7SSetRLt26gFoWq =4mLr -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Colors in VIM
On Mon, 2004-02-02 at 13:07, Brian McCann wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 That gave me BW highlighting...getting closer. :) Have a look at http://www.marcuscom.com/downloads/marcus.vimrc Be careful with copy and paste, though, as some of those characters are actually escape sequences. Joe Thanks, - --Brian McCann - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Khairil Yusof Sent: Monday, February 02, 2004 1:05 PM To: Brian McCann Cc: [EMAIL PROTECTED] Subject: Re: Colors in VIM On Mon, 2004-02-02 at 12:55 -0500, Brian McCann wrote: set nocp set digraph ek hidden ruler sc vb wmnu set noeb noet nosol set bs=2 fo=cqrt ls=2 shm=at Add this: syntax enable - -- You keep using that word. I do not think it means what you think it means. FreeBSD 5.2-CURRENT i386 2:04am up 45 mins, 5 users, load averages: 2.53, 2.51, 2.23 -BEGIN PGP SIGNATURE- Version: PGPfreeware 6.5.8 for non-commercial use http://www.pgp.com iQA/AwUBQB6R2ERPmxonqOz6EQLj9QCfRVLxzjASO2WukdhHghVDbalTjpUAn1ry Q7yGi9nRF7SSetRLt26gFoWq =4mLr -END PGP SIGNATURE- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- PGP Key : http://www.marcuscom.com/pgp.asc signature.asc Description: This is a digitally signed message part
Re: ftp/fetch/cvsup behind a firewall
On Mon, 2004-02-02 at 09:55 -0800, Anthony Discolo wrote: Mozilla can access the ftp site with the proxy server configured, but I haven't been able to get ftp to work with a proxy server. For fetch via proxy see: /usr/share/examples/etc/defaults/make.conf Copy this file to /etc and edit the FETCH_ENV to point to your proxy For cvsup, if you only have access via the proxy server, you can ftp the entire cvs tree (not efficient). I would ask your admin to either setup a local mirror , or add a dynamic rule for outgoing cvsup connections. -- You keep using that word. I do not think it means what you think it means. FreeBSD 5.2-CURRENT i386 2:05am up 46 mins, 4 users, load averages: 1.53, 2.23, 2.15 signature.asc Description: This is a digitally signed message part
RE: Colors in VIM
On Mon, 2004-02-02 at 13:07 -0500, Brian McCann wrote: That gave me BW highlighting...getting closer. :) What's your env variable for TERM? Is it xterm-color? (assuming you're in X, not in console) -- You keep using that word. I do not think it means what you think it means. FreeBSD 5.2-CURRENT i386 2:20am up 1:01, 4 users, load averages: 2.18, 2.12, 1.96 signature.asc Description: This is a digitally signed message part
Re: ports question
On Mon, Feb 02, 2004 at 07:21:56AM +, Matthew Seaman wrote: On Sun, Feb 01, 2004 at 04:44:19PM -0800, Gary Kline wrote: Well, to answer my own posting, I hacked the /distfile and removed the (SIZE) = line. Now openldap21-* is flowing across. Dunno why the port assumed the file or parts of it were here. Next to rm the old version and update... . --Well, once it builds and installs! Odd. I updated the OpenlDAP 2.1.26 ports on my system last week, and it all worked perfectly. The tarball it pulled down is exactly as specified in the distfile: % ls -la /usr/ports/distfiles/openldap-2.1.26.tgz -rw-r--r-- 1 root wheel 2042658 Jan 23 06:48 /usr/ports/distfiles/openldap-2.1.26.tgz % md5 /usr/ports/distfiles/openldap-2.1.26.tgz MD5 (/usr/ports/distfiles/openldap-2.1.26.tgz) = e3388c021b1029c15cfbd462d3bfcc9d and the tarball on ftp.openldap.org hasn't changed: ftp dir openldap-2.1.26* 229 Entering Extended Passive Mode (|||50188|) 150 Opening ASCII mode data connection for '/bin/ls'. -rw-rw-r-- 1 2000 20 61 Jan 23 06:48 openldap-2.1.26.md5 -rw-rw-r-- 1 2000 20 2042658 Jan 23 06:48 openldap-2.1.26.tgz 226 Transfer complete. Perhaps the OpenLDAP mirrors you're trying to access aren't being properly updated -- I'd suggest ftp'ing down the openldap sources manually from ftp.openldap.org and placing them in /usr/ports/distfiles before you start building the port. My work-around did the job, but to be sure after I pkg_delete'd -2.1.23, I did make deinstall/reinstall. My cvsup script runs portsdb -Uu nightly ... so unclear where the bug is. You may be right re the mirror sites; this is what happens when I try to get the most recent gcc fixes: === Cleaning for gcc-3.3.3_20040126 Making GCC 3.3.3 for FreeBSD 4.7 elftarget i386-portbld-freebsd4.7 gcc-core-3.3-20040126.tar.bz2 doesn't seem to exist in /usr/ports/distfiles/. Attempting to fetch from http://mirrors.rcn.net/pub/sourceware/gcc/snapshots/3.3-20040126/. fetch: invalid size ( 9784532) It's a headscratch. bonne journée! gary -- Gary Kline [EMAIL PROTECTED] www.thought.org Public service Unix ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: proxies and firewalls
On Monday 02 February 2004 19:04, you wrote: Thanks for the detailed explanation. The light bulb has turned on in my head. I learn something new all the time on this list. So let me put this in my own words to verify I understand correctly. Lets say I have gateway box running 5 PCs on LAN behind it, with cable dhcp connection to ISP. The gateway box runs IPFILTER firewall and IPNAT to do NAT function. I can discontinue using IPNAT and install an application level proxy server on my gateway box and it will by default intercept all LAN and gateway originating packet traffic destine for the public internet after it's processed by my firewall and handle the bi-directional traffic transparently? Well, at home I'm using both NAT and a proxy server, but that's because I can't play some online games by means of the proxy server, and the MSN clients are refusing to work my proxy server as well, but for browsing all four the computers are using the proxy server. I'm not running a firewall, because the proxy server provides decent security for home use here. All the ports are closed except those which are needed. (Webserver, Mail server etc) If you're at a small company then the current situation you describe seems just fine to me. If you're at home then you can use this as well, but if you got a gamer at home he isn't going to be happy since you can't really use a proxy for online gaming. So it depends a bit Hope this helped a bit. Cheers, Jorn ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Vhost... use Apache
Exactly. Learning Faster is a no go. It never happens. The secret is : It's in the ports, and apache2 is the best (in my opinion) In other words, build the port, then read the documentation. (from the http://httpd.apache.org/ website). Joe Charlie Schluting wrote: Mr Kitt wrote: To whom it may concern, pls provide me the cmds as well... u may give me an example so that i can learn faster n understand better... Nobody is going to give you commands for basic things. It would just take too long. Read the manual. It sounds like you're wanting to set up apache. It wasn't clear from your request. Ok, read the Apache documentation. Don't ask the same question more than once. Please wrap your lines at 72 chars. -Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dhclient: send_packet: Permission denied
Do you have the firewall turned on with a default of deny? It sounds like a firewall problem. Joe Edward Carmody wrote: I'm seeing the following over and over in /var/log/messages Feb 1 13:54:17 Oberon dhclient: send_packet: Permission denied Any idea what this is? Thanks! Ed C. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: conf/62230: log-in-vain issues it's msg every time 'mail' command is used.
On Mon, Feb 02, 2004 at 12:39:08PM -0500, JJB wrote: I disagree with you on this. Log-in-vain purpose in life is to interrogate attempts from the external interface, not the localhost internal functions, which this clearly is what is happening. That's simply not true. $ grep vain /etc/defaults/rc.conf log_in_vain=0 # =1 to log connects to ports w/o listeners. If you think this is such an trivial annoyance bug that it's does not warrant attention, then just come out and say so, and not beat around the bush with work around solutions in an poor effort to conceal your reluctance to perform system maintenance activities. It's not that I don't think it's a bug that warrants attention; I don't think it's a bug at all. Thanks also for your diatribe. I don't agree with any of that either. Ceri -- ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Grub problem
Errors on the root will still occur. Grub does that. With BSD, you can set the menu option such as : root (hd0,2) chainloader +1 And it will load the MBR from the BSD partition, which will load the loader, which will load the kernel (the best way, really). Joe Robert Storey wrote: Use the chainloader command to start FBSD, like this: root (hd0,2,a) chainloader +1 boot best regards, Robert On Mon, 02 Feb 2004 01:42:02 -0300 Roy Fokker [EMAIL PROTECTED] wrote: Hi, i have installed in my computer FBSD 5.1, and RH9. The thing is, when i try to get GRUB to boot FBSD, i get the following error message: root (hd0,2,a) Filesystem type unknown, partition type 0xa5 Then, in the GRUB-shell, i get this from auto-completion. Partition num: 2, [BSD sub-partitions immediately follow] BSD Partition num:'a', Filesystem type unknown, partition type 0xa5 BSD Partition num:'b', Filesystem type unknown, partition type 0xa5 BSD Partition num:'d', Filesystem type unknown, partition type 0xa5 BSD Partition num:'e', Filesystem type unknown, partition type 0xa5 BSD Partition num:'f', Filesystem type unknown, partition type 0xa5 And i'm guessing that it is because of this, it then grub kernel /boot/loader ro root=/dev/hda3 Error 17: Cannot mount selected partition This is an extract of my grub.conf. I looked for info about this, and found no other reference. title FreeBSD 5.1 Release root (hd0,2,a) kernel/boot/loader ro root=/dev/hda3 I will appreciate any input. Thanks. Alejandro, from BA, Argentina. _ Nuevo MSN Messenger [1]Una forma rápida y divertida de enviar mensajes References 1. http://g.msn.com/8HMBESAR/2728??PS= ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
FreeBSD and Grub
On my laptop, I have one hard drive. Slice 4 holds my FreeBSD partition. I used the defaults during the install of 5.2, so /boot lives on slice 4, part a. I have Grub configured as such: root(hd0,3,a) kernel /boot/loader Upon boot attempt, I see: Filesystem type unknown, partition type 0xa5 Error 17: Cannot mount selected partition. Any ideas? Thanks :) Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]