RE: no SMP without ACPI? (amd64)
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Chad Leigh -- Shire.Net LLC Sent: Tuesday, September 04, 2007 10:20 PM To: User Questions Subject: no SMP without ACPI? (amd64) Hi I have a 6.2R system (amd64) with the latest patch level. The motherboard is a Tyan S5197 i3110 based board with a Core 2 Quad 2.4 ghz processor. There is 4GB of memory and an Areca ARC-1231ML raid card. The problem is that I have to boot without ACPI or the system will randomly reboot itself when doing something. It will sit idle for ages but if I do a system build (make buildworld for example), it usually will not make it through without rebooting. If I boot without ACPI support (#2 in the boot loader), then the system is fine, I can do a billion builds without incident, except that I only get 1 CPU. (Yes, the kernel has SMP option built in). I would really like to run with all 4 cores but cannot run with ACPI at the moment due to instability. Any suggestions? Any way to get old-style SMP detection working (ie, without ACPI)? Join the club - I think all of us with a lot of systems have a few around in that same boat. I know I do. All I can say is fill out as detailed a PR as you possibly can and hope for the best. And don't forget to add screaming at Tyan to the list - if these stupid motherboard manufacturers never hear from us they don't pay attention to us. You can also try changing BIOS versions, and dicking around with BIOS settings, sometimes that helps. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Samba type question
Greetings, I have an ageing NT4 file server that is the PDC (windows speak for primary domain controller) for my windows network. I have roughly 40 networked pc's connected to this network and most of the clients are running XP Pro. I have one client running windows 2000 pro, and one client running Vista Ultimate (gag, puke). I would like to know if I can replace that NT4 PDC with Freebsd and Samba. I would like real world feedback from people who are actually running it. thanks, Darryl ___ We are running Samba on FreeBSD 6.2 as a PDC with LDAP as a backend. For user management we use ldap-account-manager and the ldapsmb-tools all from ports. It works fine for us. We have 30 clients all WinXP except one Win2k We also use roaming profiles and ACL. It all works like it should. The only thing I can not get to work is the USRMGR.EXE utility. It errors out with an error that a device on the system is not working, but the user is added to the ldap database?? A good howto to setup this is here: http://wiki.unixboard.de/index.php/FreeBSD_-_Samba We also use bind and isc-dhcp3 to get an up to date DNS on the LAN. Regards, Johan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Version of top included in FreeBSD
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Bruce Cran Sent: Tuesday, September 04, 2007 2:08 PM To: [EMAIL PROTECTED] Subject: Version of top included in FreeBSD I've noticed that the version of top included in FreeBSD is 3.5beta12 and a new version 3.6 was released last year (see http://sourceforge.net/projects/unixtop). I realise fixes and improvements have been made locally in the 3 years since 3.5 was released, but are there any plans to merge in a newer version, or will improvements continue to be made locally? This is an excellent opportunity for you as (I assume) a freeBSD newbie to make a contribution to the system Download the new version of top. Read the license and make sure some bozo hasn't GNUified it. Compile it on FreeBSD 6.2-RELEASE. Test it out to see if everything works fine. Compare it's output to that of the existing top to make sure it matches. If it does, then send in a PR that states you have tested it out, where to get it, that it's still under a BSD license, and what if anything you did to get it to compile. You see, even if you cannot do anything fancy like port the changes from the old version of top into the 3.6 version, the fact that the new version of top hasn't introduced some bogosity that makes it a pain in the arse to deal with under FreeBSD is of immense value. After all your talking about an hour of developer time just to see if the new version works at all, and produces output that isn't far out in left field. If a core developer knows the new top version works and is license-compatible they are going to be much more willing to spend the time porting the FreeBSD-specific changes over to it than if it is a big unknown. And if your more advanced, you can compare the original beta version of top that was used against the BSD system one, see what changes were made, check to see if they were fed back to the top maintainers and if they were implemented in the top code, and if not, submit them to the top maintainers so the source gets updated. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: mail server setup questions
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Russell E. Meek Sent: Tuesday, September 04, 2007 5:20 PM To: Jim Stapleton Cc: freebsd-questions@freebsd.org Subject: Re: mail server setup questions Quoting Jim Stapleton [EMAIL PROTECTED]: I need a mail server to take incoming mail, and provide a pop3 (or better yet, SSLed POP3) connection. I've tried akpop3d and qmail, but have had less than brilliant success getting them functional. Could you all suggest to me what you use and a good web site for configuring it as it would be done in FreeBSD? Please cc me, as I have the list subscribed in digest mode. Thanks, -Jim Stapleton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] http://www.tnpi.biz/internet/mail/toaster/ Perfection - and qmail based also. No, this isn't perfection. Jim (and Russell) let me point out one thing about solutions like this. Something like this is designed for people who don't know how to build a mailserver, to download some files, pull the trigger, and Blammo - instant mailserver. In short, a big black box that works as a mailserver. The problem is, however, that the only guy that really and truly knows how everthing works in that black box is the guy that wrote the black box - the author of toaster, himself. You, being the clueless admin who pulled the trigger, are not going to be instantly converted into a knowledgeable mail server admin by pulling the trigger. You are just going to be a clueless admin who now has a big powerful black box that can go kill people, just as easily as explode in his face. Kind of like the country of Iraq buying a nuclear device - they don't know what they have, don't know how to build it, and are not qualified at all to use it. If something in that black box goes kablooie - which sooner or later it will, since all mail systems have problems - you are going to be screwed over. If you have a small home mailserver with a couple of friends on it, a system like Toaster can be a real help - IF you install it, then spend months picking it apart, to learn how to not be a clueless admin. However if you install it then spend the next 3 months watching reruns of Lost, then assume you now know all there is to know about a mailserver, you are then a stupid fool. Or, if your an admin with a big string of mailservers already under your belt who is looking for interesting code bits he can steal to incorporate into his own mailservers, then Toaster is also of value. But if your just a guy looking for a quick gun to shoot a problem so he can go on to the next thing, then your just going to screw yourself with something like Toaster. You would be much better advised to build the mailserver from scratch. Sure, your mailserver won't have all the pretty graphs and admin interfaces that something like Toaster has. But, you will know how it works and the day you get a phone call and 400 users now can't get mail, you will know how to fix it. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Tue, 4 Sep 2007 23:21:47 -0700 Ted Mittelstaedt [EMAIL PROTECTED] wrote: [...] Kind of like the country of Iraq buying a nuclear device - they don't know what they have, don't know how to build it, and are not qualified at all to use it. [...] Please save us from these words of wisdom. Your opinions about them and about competence and collective knowledge of world states are off-topic here. Such arrogancy and ignorance are very miserable. Nikola Lečić ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically
On Wednesday 05 September 2007 04:48:53 Ian Smith wrote: On Wed, 5 Sep 2007 01:47:47 + Pollywog [EMAIL PROTECTED] wrote: I have to manually set the loopback interface after each reboot on one machine (it is a laptop): ifconfig lo0 127.0.0.1 netmask 255.0.0.0 Then everything is fine. I added ifconfig_lo0=127.0.0.1 netmask 255.0.0.0 to /etc/rc.conf but for unknown reasons it now looks like this and I still need to set lo0 manually after reboots: ifconfig_lo0=inet 127.0.0.1 netmask 255.0.0.0 Any ideas? I am running FreeBSD 7 I noticed before when you posted your ifconfig with missing localhost IPv4 address. You shouldn't have had to add it to rc.conf in the first place, as you should find this line existing in /etc/defaults/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. Check that nothing has messed with /etc/defaults/rc.conf, and also that you have no later ifconfig_lo0 entry in rc.conf. The last one found there is the one that applies, later entries overriding earlier ones. Apart from that, I can't imagine what might be deleting your default localhost configuration, unless you're using rc.local? Otherwise I'd be searching any active scripts in /usr/local/etc/rc.d/ for any oddnesses that may hae been installed by some port or other? Cheers, Ian I am not using rc.local and I will check /etc/defaults/rc.conf I forgot to check there first. thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Tue, 4 Sep 2007 18:03:20 -0400 Jim Stapleton [EMAIL PROTECTED] wrote: I need a mail server to take incoming mail, and provide a pop3 (or better yet, SSLed POP3) connection. Jim, - incoming email + delivery : postfix . Really well documented. Haven't found a feature not implemented. As secure as you configure it (unlike qmail which implements a lot of security by axing features, so u need to add dubious hacks...) - dovecot : POP + IMAP, works quite well with ssl too - webmail : i use roundcube, but there are plenty of options. All u need is something that talks IMAP to your imap server - amavis-new as glue for Spam assassin / other spam tagging system + clamav. B _ {Beto|Norberto|Numard} Meijome Sysadmins can't be sued for malpractice, but surgeons don't have to deal with patients who install new versions of their own innards. I speak for myself, not my employer. Contents may be hot. Slippery when wet. Reading disclaimers makes you go blind. Writing them is worse. You have been Warned. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically
On Wednesday 05 September 2007 04:48:53 Ian Smith wrote: On Wed, 5 Sep 2007 01:47:47 + Pollywog [EMAIL PROTECTED] wrote: I have to manually set the loopback interface after each reboot on one machine (it is a laptop): ifconfig lo0 127.0.0.1 netmask 255.0.0.0 Then everything is fine. I added ifconfig_lo0=127.0.0.1 netmask 255.0.0.0 to /etc/rc.conf but for unknown reasons it now looks like this and I still need to set lo0 manually after reboots: ifconfig_lo0=inet 127.0.0.1 netmask 255.0.0.0 Any ideas? I am running FreeBSD 7 I noticed before when you posted your ifconfig with missing localhost IPv4 address. You shouldn't have had to add it to rc.conf in the first place, as you should find this line existing in /etc/defaults/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. Check that nothing has messed with /etc/defaults/rc.conf, and also that you have no later ifconfig_lo0 entry in rc.conf. The last one found there is the one that applies, later entries overriding earlier ones. Apart from that, I can't imagine what might be deleting your default localhost configuration, unless you're using rc.local? Otherwise I'd be searching any active scripts in /usr/local/etc/rc.d/ for any oddnesses that may hae been installed by some port or other? Cheers, Ian I did find it in /etc/default/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically [SOLVED]
On Wednesday 05 September 2007 07:25:42 Pollywog wrote: On Wednesday 05 September 2007 04:48:53 Ian Smith wrote: On Wed, 5 Sep 2007 01:47:47 + Pollywog [EMAIL PROTECTED] wrote: I have to manually set the loopback interface after each reboot on one machine (it is a laptop): ifconfig lo0 127.0.0.1 netmask 255.0.0.0 Then everything is fine. I added ifconfig_lo0=127.0.0.1 netmask 255.0.0.0 to /etc/rc.conf but for unknown reasons it now looks like this and I still need to set lo0 manually after reboots: ifconfig_lo0=inet 127.0.0.1 netmask 255.0.0.0 Any ideas? I am running FreeBSD 7 I noticed before when you posted your ifconfig with missing localhost IPv4 address. You shouldn't have had to add it to rc.conf in the first place, as you should find this line existing in /etc/defaults/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. Check that nothing has messed with /etc/defaults/rc.conf, and also that you have no later ifconfig_lo0 entry in rc.conf. The last one found there is the one that applies, later entries overriding earlier ones. Apart from that, I can't imagine what might be deleting your default localhost configuration, unless you're using rc.local? Otherwise I'd be searching any active scripts in /usr/local/etc/rc.d/ for any oddnesses that may hae been installed by some port or other? Cheers, Ian I did find it in /etc/default/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. I found the problem. lo0 was not listed in network_interfaces in rc.conf Adding it fixed the problem. thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
sysinstall, packages, ports q.s
{ this is my second attempt to post, first one over Gmane did not appear in list. Sorry if you get this twice. } Hi, I'm a bit new to FreeBSD, and have few questions challenging my Gentoo Linux mindset: 1. I performed a Minimal 6.2 installation (it boots OK). Then I selected Post installation tasks - Distributions. There I see base (required), it appears unselected. Does this install anything more than what Minimal install did at the first place? 2. I see pkg_add, pkg_delete, pkg_info but no pkg_update. How am I supposed to keep my system up to date, unless I revert to ports? 3. Minimal install provides a number of commands by default like pkg_*, portsnap, gcc, ls, vi, etc but pkg_info does not list any of their packages, which means they're not managed under /var/db/pkg. Then, how am I supposed to upgrade them without ending up with multiple versions? 4. I want to avoid the -CURRENT branch and want to stay with -STABLE branch for now. The page http://www.freebsd.org/ports/index.html says: The Ports Collection supports the latest release on the FreeBSD-CURRENT and FreeBSD-STABLE branches. This not clear to me: If I start using ports, am I on -STABLE or not? 5. make.conf is blank by default. Does CPU_TYPE default to i386 in this case? I hope I'm not too confused and sound silly. TIA. Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV. http://tv.yahoo.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: questions on setting up a mail server
On Wednesday 05 September 2007 06:25, Ted Mittelstaedt wrote: [Jim Stapleton] I figured I'd try cyrus, I remember hearing that one is a good mail server. But I'm new to the mail server thing, and I'm not even sure where to look for some of this stuff if anyone can help. Also, I plan on just doing POP3, and only allowing secure connections - if anyone can reccomend a good, simple server for that, that they think is better than Cyrus, I won't object. My main question is on authentication. I was looking at authentication types in kmail to get an idea of what I can use, and I found: Clear text LOGIN PLAIN CRAM-MD5 Digest-MD5 NTLM GSSAPI APOP I know clear text is not what I want - if I remember, that's unencrypted. Does TLS/SSL make this a non-issue? What about the other methdods? Much of this depends on the mail clients that your going to be hitting the server with. The first group does encryption of the password only. Not sure what's meant by ``the first group'' here. The TLS/SSL stuff does encryption of everything - password, mail contents, etc. The TLS stuff requires you put a SSL cert into the client. Most people, not wanting to pay Verisign for this, make their own self-signed certs. There is a large amount of arcane magic to do this, and to get it accepted into Windows, so that an Outlook client will do SSL. This isn't true, in my experience. The first group is a different story. If you want to get Outlook to work with that, you can only use NTLM. This is also not true, in my experience. The honest to god truth of the matter is that encrypting your POP3 and SMTP auth passwords is difficult to do on a large scale no matter what road you pick to do it, so there is really not a lot of point to doing it unless your in a rather limited environment. I'm not sure I would agree with this statement either. I've just recently moved a network of 100 users scattered all over South Africa, about half of whom are highly mobile and using multiple forms of connectivity (6 office LANS, an OpenVPN, ADSL and cellular datacards), to an encrypted/authenticated email system. I'm using sendmail and cyrus. I set up a certificate authority (not hard - there are plenty of howtos all over the 'web) and gave the SMTP and IMAP/POP servers their own certificates. All the authentication options you mention after plain text (which is the standard method built in to the protocol) require Cyrus SASL. This isn't as scary to set up as the docs make it sound. PLAIN and LOGIN can both use your existing user passwords (which is what I do). GSSAPI requires Kerberos, and the digest methods (the -MD5 ones) need a separate file of passwords held in plain text - the sasldb. Of the passwd-based methods, PLAIN is the preferred protocol according to the docs and RFCs - LOGIN is the one Microsoft uses (go figure). I've configured sendmail and cyrus to use SASL, offering LOGIN and PLAIN, and to use TLS. sendmail uses STARTTLS on the submission port (587), and cyrus imapd/popd uses STARTTLS on imap and pop3 (143 and 110), plus SSL/TLS on pop3s (995). They are both configured not to offer LOGIN or PLAIN (or plain text login) without a TLS layer in place. Clients are kmail (me), Outlook 2003 (everyone else), and a webmail system using Squirrelmail with up-imapproxy (which is a caching proxy, and also does the STARTTLS stuff for Squirrelmail because Squirrelmail can't). Outlook 2003 uses LOGIN for authentication, and won't do STARTTLS on a pop3 connection (which is where you connect in clear and negotiate encryption, as opposed to connecting to pop3s which is encrypted from the start). The Outlook clients are configured to require authentication for SMTP using the same settings as POP, and to require encryption on both POP and SMTP, with ports 587 for SMTP and 995 for POP. The first time someone collects email with Outlook, they get a warning that the certificate isn't trusted, but also the option to install it. Half a dozen clicks later the certificate is in place. Granted, if you have clients using older versions of Outlook or dozens of different email clients, you may have issues finding working combinations of TLS/STARTTLS/port numbers and authentication methods, but by and large it's just putting a few slightly scary-sounding pieces together on the server - all of which are either in the base system (sendmail: most of the objections to sendmail haven't had any basis in reality for several years. It's now as easy to configure as Postfix, IMHO, and hooking Mimedefang in as a milter gives you the ability to reject a lot of junk during the connection rather than after the fact) or easily added from ports. Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Bonded multilink ADSL connection
On Tuesday 04 September 2007 19:08, Steve Bertrand wrote: With a tiny bit of tweaking, it works like a charm!!! Defined bundles: Bundle Links -- - saml0[Opened/UP] l1[Initial/DOWN] Since I don't have the second link connected to this box yet, I suspect it will come up as soon as I do. Hopefully :) Thank you so much! You are welcome. Nikos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: mail server setup questions
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Nikola Lecic Sent: Tuesday, September 04, 2007 11:41 PM To: Ted Mittelstaedt Cc: Russell E. Meek; Jim Stapleton; freebsd-questions@freebsd.org Subject: Re: mail server setup questions On Tue, 4 Sep 2007 23:21:47 -0700 Ted Mittelstaedt [EMAIL PROTECTED] wrote: [...] Kind of like the country of Iraq buying a nuclear device - they don't know what they have, don't know how to build it, and are not qualified at all to use it. [...] Please save us from these words of wisdom. Your opinions about them and about competence and collective knowledge of world states are off-topic here. Such arrogancy and ignorance are very miserable. Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. In any case, please rest assured I was not talking about nuclear weapons or Iraq, merely incompetent admins running mailservers that were beyond their capabilities. It was merely a metaphor. I would encourage you to get beyond your instinctual knee-jerk reaction against the metaphor, as it is widely used language device in virtually all languages and cultures in use by mankind today. No serious person would ever argue for the proposition that a non-nuclear country be allowed to purchase nuclear weapons, much less use them. As, no serious person should ever argue for clueless admins to run mailservers that they know nothing about. Never forget when you or anyone sets up a mailserver on the Internet you are putting a server online that can be used to cause a tremendous amount of damage to other mailservers on the Internet. It is a responsibility that should never be taken lightly. Far too many Windoze admins do this already. We as FreeBSD users do not need to emulate such disgusting behavior. Jim posted here asking for help, using words and language that gives serious doubt that he is competent to run a mailserver of any kind. It would be irresponsible in the extreme to tell him to run pell-mell into fielding a system that is way beyond his capabilities. His goal should be to gain competence as well as a mailserver, lest he cause serious problems on the Internet. We do NOT need one more misconfigured server on the Internet that is a spam or virus source. The best way for him to do this - and be a responsible network admin - is to start small, with individual pieces, and learn each subsystem. The worst way would be to drop a canned package in that he doesen't understand. It is to the list's credit that the vast majority of responses to Jim were to direct him to the individual packages - NOT to a toaster approach that would likely teach him nothing. Hopefully next time you will stick to addressing the topic of the responses and not get hung up on attacking an alliteration or some other language device that someone might use. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: no SMP without ACPI? (amd64)
Chad Leigh -- Shire.Net LLC wrote: Hi I have a 6.2R system (amd64) with the latest patch level. The motherboard is a Tyan S5197 i3110 based board with a Core 2 Quad 2.4 ghz processor. There is 4GB of memory and an Areca ARC-1231ML raid card. The problem is that I have to boot without ACPI or the system will randomly reboot itself when doing something. It will sit idle for ages but if I do a system build (make buildworld for example), it usually will not make it through without rebooting. If I boot without ACPI support (#2 in the boot loader), then the system is fine, I can do a billion builds without incident, except that I only get 1 CPU. (Yes, the kernel has SMP option built in). I would really like to run with all 4 cores but cannot run with ACPI at the moment due to instability. Any suggestions? Any way to get old-style SMP detection working (ie, without ACPI)? Maybe not, I think ACPI is required by the amd64 spec. Note that this may well be hardware related: without acpi you are only using one CPU, etc, so if one of the others is bad it will only fail when you have ACPI enabled -- even if ACPI itself is not to blame. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: questions on setting up a mail server
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Jonathan McKeown Sent: Wednesday, September 05, 2007 1:13 AM To: freebsd-questions@freebsd.org Cc: Jim Stapleton Subject: Re: questions on setting up a mail server On Wednesday 05 September 2007 06:25, Ted Mittelstaedt wrote: [Jim Stapleton] I figured I'd try cyrus, I remember hearing that one is a good mail server. But I'm new to the mail server thing, and I'm not even sure where to look for some of this stuff if anyone can help. Also, I plan on just doing POP3, and only allowing secure connections - if anyone can reccomend a good, simple server for that, that they think is better than Cyrus, I won't object. My main question is on authentication. I was looking at authentication types in kmail to get an idea of what I can use, and I found: Clear text LOGIN PLAIN CRAM-MD5 Digest-MD5 NTLM GSSAPI APOP I know clear text is not what I want - if I remember, that's unencrypted. Does TLS/SSL make this a non-issue? What about the other methdods? Much of this depends on the mail clients that your going to be hitting the server with. The first group does encryption of the password only. Not sure what's meant by ``the first group'' here. CRAM-MD5, Digest-MD5, NTLM, GSSAPI, and APOP are associated with password encryption on SMTP auth and POP3 as you well know, so please do not try to be deliberately stupid to make a point. Just make your point and get on with it. Most people won't understand anyway. The TLS/SSL stuff does encryption of everything - password, mail contents, etc. The TLS stuff requires you put a SSL cert into the client. Most people, not wanting to pay Verisign for this, make their own self-signed certs. There is a large amount of arcane magic to do this, and to get it accepted into Windows, so that an Outlook client will do SSL. This isn't true, in my experience. Your experience is limited then. Sorry, but if you think it is simple, please post a couple pointers. Don't forget to include all versions of Windows and Outlook in current use - that includes Outlook Express 6, and regular Outlook 98, 2000, 2003 that are part of Office, as well as Internet Explorer 5 and 6 and 7. Don't forget to include the scripts needed to generate the keys too. Sure it is simple - when ALL clients are running the same version of Windows, IE, and Outlook. Perhaps true in a small network. Very not true in a large network. The first group is a different story. If you want to get Outlook to work with that, you can only use NTLM. This is also not true, in my experience. Hmm - earlier you said you didn't know what I was referring to when I was talking about first group now you seem certain that you do - as you are including LOGIN and PLAIN (the non-encrypted ones) in the same list as the encrypted ones? Caught you there. Everyone supports LOGIN and PLAIN. (at least I never met a mail program that didn't - perhaps there is one) But, you cannot get password encryption with Outlook Express unless you do NTLM. It supports nothing else, except for SSL which is encryption of the entire channel. If you know of a way to get OE to support CRAM-MD5 then do tell. The honest to god truth of the matter is that encrypting your POP3 and SMTP auth passwords is difficult to do on a large scale no matter what road you pick to do it, so there is really not a lot of point to doing it unless your in a rather limited environment. I'm not sure I would agree with this statement either. I perhaps should have explained this more. Encryption of e-mail is absolutely pointless unless done from mail client to mail client a-la PGP or some such. If the cracker can't get the mail sniffed from client to server he can simply go to the server and get it when it's transmitted to the other mailserver via SMTP which is not encrypted. It is only useful for protecting passwords from wire sniffing. But in most cases, the wire isn't sniffable. Your certainly not going to be able to do it in most corporate networks as ethernet switching has been in use for a long time now. Your grandpa's 10baseT ethernet switches would protect as well from casual sniffing as your modern gigabit ones do today. And if your in a corporate environment that still uses hubs you might as well go home since your in an environment that is such an antique that it's going to have a hundred holes even easier to go through than that. Ditto for unencrypted wi-fi, it does not belong in a corporate network. password sniffing only becomes a concern when you have road warriors who are NOT connecting into the mailserver via a VPN (many companies do not allow outside connections that aren't inside a VPN even for popping e-mail) and are NOT using a HTTPS webmail interface - which is going to be the norm if the road warriors are using kiosks. And if the road
RE: no SMP without ACPI? (amd64)
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Kris Kennaway Sent: Wednesday, September 05, 2007 1:57 AM To: Chad Leigh -- Shire.Net LLC Cc: User Questions Subject: Re: no SMP without ACPI? (amd64) Note that this may well be hardware related: without acpi you are only using one CPU, etc, so if one of the others is bad it will only fail when you have ACPI enabled -- even if ACPI itself is not to blame. Easily testable by running that Other Operating system on the thing which I would have expected Chad to have done. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: ports/115885: misc/help2man: help2man ignores installed gettext
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of snowcrash+freebsd Sent: Monday, September 03, 2007 10:33 AM To: freebsd-questions@freebsd.org Subject: Re: ports/115885: misc/help2man: help2man ignores installed gettext note(s) to self: help2man port is borked. every other port with perl-module dependencies is fine ... freebsd folks not interested in fix. do a manual install instead. problem solved. outa here. Ya know, all of this has been real interesting to read - but since none of it (that I could see) was CCed to the gnats PR submitter e-mail address, none of it will be considered by anyone who might have this future problem and be searching the PR database for a fix, much less anyone who might be looking through the PR database history for preparing their own PR on a similar issue. Not to mention anyone on the actual bugs team. (even if a PR is closed you can still add comments to it, ding dong) You might say it was a big exercise in linguistic and technical masterbation. I hope it was as good for you as it was for us! Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: gmirror and booting one and/or the other of the twins, then rebuilding raid 1
On Wednesday 05 September 2007 06:09, John Crawford wrote: I'd like to be able to boot either of the two drives. That's up to your BIOS. FreeBSD will mount / from the gmirror, which will be backed by one or more disks. Earlier stages will use BIOS to load the kernel, etc. May I suggest {{{ When I configured gmirror on a server, I felt safer pulling the plug than disabling it the normal way. That way I could evaluate that: 1) my BIOS settings are correct regarding booting from both disks. 2) gmirror is doing what I wanted it to do. }}} I suppose I could use kernel.conf and di ad0 or di ad2 to suppress drive hardware detection, but I'm hoping to do something simple (with a few keystrokes) during one of the boot stages to suppress one or another of the drive detections. I don't recall how to disable a given device during the an interactive boot procedure. You can detach an ATA channel using atacontrol detach. Since your disks are on different channels, that's probably what you asked for. Not all controllers/controller drivers support this. Nikos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On 05.09.2007 11:22, Ted Mittelstaedt wrote: [...] Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. This is clearly off topic on a technical list. [...] Hopefully next time you will stick to addressing the topic Good advice. I am sure you could have written your response without mentioning nuclear weapons, Iraq et al. -- Eray of the responses and not get hung up on attacking an alliteration or some other language device that someone might use. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On 05.09.2007 11:22, Ted Mittelstaedt wrote: [...] Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. I thought were discussing the configuration of the mail server not your hatred toward us Serbs, Iraqis and God knows whom else. But then on the second thought maybe you are trying to teach us how to configure the spam filter. So how high should we set it? Only Serbs from Serbia can not send emails or even we Serbs who live in U. S? Are you coding now MailScanner-antiSerb version or MailScanner-antiIraqi version? [...] Hopefully next time you will stick to addressing the topic. We Serbs are certainly hopping for that! Sincerely, Predrag Punosevac Arizona ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Please, I didn't intend this to be a flame war - though thinking back, I guess I should have expected strong views on this. This is not the place for such agressiveness. The rest of this is for everyone Thank all of you for your suggestions, I'll look at them. This is a mail server for me and maybe a few friends. I plan on running incoming SMTP, maybe at some point outgoing (requiring authentication/SSL, definetly no relay), no relay, no webmail, POP, if possible only under SSL. I think there's enough here for me to do my research and get what I need. Thank you, -Jim Stapleton On 9/5/07, Ted Mittelstaedt [EMAIL PROTECTED] wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Nikola Lecic Sent: Tuesday, September 04, 2007 11:41 PM To: Ted Mittelstaedt Cc: Russell E. Meek; Jim Stapleton; freebsd-questions@freebsd.org Subject: Re: mail server setup questions On Tue, 4 Sep 2007 23:21:47 -0700 Ted Mittelstaedt [EMAIL PROTECTED] wrote: [...] Kind of like the country of Iraq buying a nuclear device - they don't know what they have, don't know how to build it, and are not qualified at all to use it. [...] Please save us from these words of wisdom. Your opinions about them and about competence and collective knowledge of world states are off-topic here. Such arrogancy and ignorance are very miserable. Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. In any case, please rest assured I was not talking about nuclear weapons or Iraq, merely incompetent admins running mailservers that were beyond their capabilities. It was merely a metaphor. I would encourage you to get beyond your instinctual knee-jerk reaction against the metaphor, as it is widely used language device in virtually all languages and cultures in use by mankind today. No serious person would ever argue for the proposition that a non-nuclear country be allowed to purchase nuclear weapons, much less use them. As, no serious person should ever argue for clueless admins to run mailservers that they know nothing about. Never forget when you or anyone sets up a mailserver on the Internet you are putting a server online that can be used to cause a tremendous amount of damage to other mailservers on the Internet. It is a responsibility that should never be taken lightly. Far too many Windoze admins do this already. We as FreeBSD users do not need to emulate such disgusting behavior. Jim posted here asking for help, using words and language that gives serious doubt that he is competent to run a mailserver of any kind. It would be irresponsible in the extreme to tell him to run pell-mell into fielding a system that is way beyond his capabilities. His goal should be to gain competence as well as a mailserver, lest he cause serious problems on the Internet. We do NOT need one more misconfigured server on the Internet that is a spam or virus source. The best way for him to do this - and be a responsible network admin - is to start small, with individual pieces, and learn each subsystem. The worst way would be to drop a canned package in that he doesen't understand. It is to the list's credit that the vast majority of responses to Jim were to direct him to the individual packages - NOT to a toaster approach that would likely teach him nothing. Hopefully next time you will stick to addressing the topic of the responses and not get hung up on attacking an alliteration or some other language device that someone might use. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: questions on setting up a mail server
All the authentication options you mention after plain text (which is the standard method built in to the protocol) require Cyrus SASL. This isn't as scary to set up as the docs make it sound. PLAIN and LOGIN can both use your existing user passwords (which is what I do). GSSAPI requires Kerberos, and the digest methods (the -MD5 ones) need a separate file of passwords held in plain text - the sasldb. Of the passwd-based methods, PLAIN is the preferred protocol according to the docs and RFCs - LOGIN is the one Microsoft uses (go figure). Thanks, that's almost all of what I needed there. You insinuated (but I don't think explicitly stated) that LOGIN is in fact encrypted in some form? Thanks, -Jim Stapleton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Jim posted here asking for help, using words and language that gives serious doubt that he is competent to run a mailserver of any kind. Knowledgeable and competant are two different things. If I were not competant, I would not bother attempting to get that knowledge that I lack. I don't know the nitty gritty details about exactly what and how mail servers are encrypted. I don't know all the nitty gritty details about how everything talks and intercommunicates. I do know that that any time a password goes over the internet (not just LAN) it needs to be encrypted as securly as possible. I do know that mail (and other) servers should live in jails. I do know not to run an open relay (take email from any server to deliver to any server, without authentication, and plan to achieve this by only allowing incoming mail). I do know that there is no such thing as too much paranoia when setting up a server. I know to find out and learn what I don't know, rather than to just stumble along blindly. There, that about covers everything that I do/don't know. -Jim Stapleton ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Predrag Punosevac wrote: On 05.09.2007 11:22, Ted Mittelstaedt wrote: [...] Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. I thought were discussing the configuration of the mail server not your hatred toward us Serbs, Iraqis and God knows whom else. But then on the second thought maybe you are trying to teach us how to configure the spam filter. So who high should we set it. Only Serbs from Serbia can not send emails or even we Serbs who live in U. S? Are you coding now MailScanner-antiSerb version or MailScanner-antiIraqi version? [...] Hopefully next time you will stick to addressing the topic. We Serbs are certainly hopping for that! Sincerely, Predrag Punosevac Arizona ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Wednesday 05 September 2007 12:34:45 Jim Stapleton wrote: Thank all of you for your suggestions, I'll look at them. This is a mail server for me and maybe a few friends. I plan on running incoming SMTP, maybe at some point outgoing (requiring authentication/SSL, definetly no relay), no relay, no webmail, POP, if possible only under SSL. I think there's enough here for me to do my research and get what I need. Thank you, Don't rule out good old mail/qpopper just yet. Also, be aware that whichever solution you choose, there are scanners out there that won't hesitate to query port 110 with an account guesser, which can spawn many daemons depending on how fast your pop server handles it. You may wanna limit access to port 110 to you and your friends if that's possible or look into a pop server that can limit ammount of requests/second it accepts from host. -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
umount in shell script
Hi all, I have the following script: #!/bin/sh mnt_path='//[EMAIL PROTECTED]/archive' mnt_ip='xxx.xxx.xxx.xxx' mkdir /usr/tmp_mnt mount_smbfs -N -I $mnt_ip $mnt_path /usr/tmp_mnt #rotate files #dump mysql database #gzip #encrypt #copy to /usr/tmp_mnt umount /usr/tmp_mnt EOF Sometimes /usr/tmp_mnt is still mounted. It's random behavior. I didn't noticed any logic when it is unmounted or not. OS: FreeBSD 6.2-RELEASE Thank you! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Version of top included in FreeBSD
On 2007-09-04 22:08, Bruce Cran [EMAIL PROTECTED] wrote: I've noticed that the version of top included in FreeBSD is 3.5beta12 and a new version 3.6 was released last year (see http://sourceforge.net/projects/unixtop). I realise fixes and improvements have been made locally in the 3 years since 3.5 was released, but are there any plans to merge in a newer version, or will improvements continue to be made locally? It's probably too late to 'merge' the top-3.6 updates for RELENG_7 now, but I'm in the process of doing that. The local FreeBSD improvements are quite extensive and many of them are introducing new useful features, so it would be a shame to lose anything :) ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: umount in shell script
On Wednesday 05 September 2007 13:15:34 George Vanev wrote: Hi all, I have the following script: #!/bin/sh mnt_path='//[EMAIL PROTECTED]/archive' mnt_ip='xxx.xxx.xxx.xxx' mkdir /usr/tmp_mnt mount_smbfs -N -I $mnt_ip $mnt_path /usr/tmp_mnt #rotate files #dump mysql database #gzip #encrypt #copy to /usr/tmp_mnt umount /usr/tmp_mnt EOF Sometimes /usr/tmp_mnt is still mounted. It's random behavior. I didn't noticed any logic when it is unmounted or not. Unmounts don't work when device is busy, ie: someone using a file or with cwd within the filesystem. umount -f will take care of it, or use fstat -f /usr/tmp_mnt to check before unmounting. -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: questions on setting up a mail server
On Wednesday 05 September 2007 12:46, Jim Stapleton wrote: All the authentication options you mention after plain text (which is the standard method built in to the protocol) require Cyrus SASL. This isn't as scary to set up as the docs make it sound. PLAIN and LOGIN can both use your existing user passwords (which is what I do). GSSAPI requires Kerberos, and the digest methods (the -MD5 ones) need a separate file of passwords held in plain text - the sasldb. Of the passwd-based methods, PLAIN is the preferred protocol according to the docs and RFCs - LOGIN is the one Microsoft uses (go figure). Thanks, that's almost all of what I needed there. You insinuated (but I don't think explicitly stated) that LOGIN is in fact encrypted in some form? No, it's just obfuscated. Both PLAIN and LOGIN send the username and password base64-encoded, which doesn't provide any security - it just protects the mailserver from funny characters in passwords. The only difference between PLAIN and LOGIN is that PLAIN combines the username and password into a single string and sends that, whereas LOGIN waits for a prompt, sends the username, waits for another prompt and sends the password. If you enable the option to prevent plaintext methods except under a security layer, both methods will be disabled. If you do decide to use cyrus, there's a useful tool called imtest which connects to the server, negotiates a TLS connection and lets you type IMAP commands at it. You can see the actual exchange of authentication details, and you can use openssl base64 -d to decode the base64 string to see what's sent (man enc for details). You can also test a secured connection using openssl s_client, which has an option for doing STARTTLS against smtp and pop3 servers (man s_client for details). Jonathan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sadly, my tinker-time has run out....
On Wednesday 05 September 2007 00:35:35 Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Michael Hauber Sent: Saturday, September 01, 2007 11:22 PM To: freebsd-questions@freebsd.org Subject: Sadly, my tinker-time has run out Hey, all... Because I've put so much time into getting this FreeBSD install where it is now (and because I favor the BSDs), I'm still a bit hesitant... Has anyone here had much experience with ubunu as a desktop? Negatives/positives? Different strokes for different folks. There's nothing to be ashamed of for choosing a different OS because it fits your needs better than FreeBSD. However there is a lot to be ashamed of if your announcing this to the FreeBSD mailing list as a veiled attempt to spur the FreeBSD developers to make FreeBSD more ubuntu-like, or to trigger a flame war between ubuntu and FreeBSD supporters. Your post to me kind of seems rather passive-agressive, your praising and condemming FreeBSD at the same time, in the same sentences. I can't figure out if your trying to flame-bait or not, so I'll assume the best, that your not. Basically, dude, what you need to do is shit and get off the pot. Every OS under the sun including Winblows is going to suck up tinker-time. If you want a computer (or a happy wife I guess) then you need to accept that and quit whining that you don't have enough time. Here's a thought - unplug your TV set for a month and I'll bet you get a lot more tinker time. Anyway, you need to load ubuntu and load windows and load debian, and load red hat and so on and so on and make your own decision as to which meets your needs. None of us here can read minds and you haven't stated what your needs are - other than you want more time, which as I explained is a mirage - there isn't going to be more time freed up by replacing FreeBSD with something else, your just going to spend the same time with a different set of problems - so if you honest-to-god need more time, then give up something in your life that is consuming time that you gain less from than your computer. It could be anything from TV to your daily commute, to smoking, to drinking beer, you name it, whatever. Ted Flamer-bait, no. Lazy tv addict, no. Go back to windows, hell no. Have time, no. Trying to be negative about any BSD, absolutely not. I asked out of respect for this board, not out of frustration for FreeBSD or OpenBSD. The FreeBSD and OpenBSD will probably always be my favorites. Now... As to why I asked this board Who better to ask than folks that have some of the preferences? I needed something that I could take on the road without having to spend a lot of time upgrading/tweaking. Ubuntu is turning out to be fine for that. Giving something up... I did (for the time being), and I'll miss it. My overall response for all that bullshit you just wrote... Go find someone else to jerk off. Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
gmail fs
Does anyone know how to usw gmail fs in FreeBSD? Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV. http://tv.yahoo.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Booting to root on gmirror with disk failure, is it even possible?
Modulok schrieb: Before I invest significantly more time into my current gmirror issues, I have but two simple questions for anyone out there: 1. Has anyone used gmirror for the root partition and been able to successfully boot with one failed (or un-plugged) disk? It's the latter part of the question that is the real issue for me. I'm just looking for a confirmed it's possible. Yes, it is possible. IBM xSeries 346, FreeBSD 6.2-RELEASE, amd64. U360 hard drives. More specs are available from IBM. Using gmirror because we only have an Adaptec HostRAID (aka FakeRAID) controller and not a real ServerRaid, i.e. our SCSI controller basically has no useful RAID capabilities built in. My test case is to unplug any one disk while the system is running. (Don't do this with your system unless your hardware is specified for hot plugging!). FreeBSD detects a bus reset, marks the gmirror as degraded and continues operating normally, and I can also reboot the degraded gmirror without any problems. The more conservative test case is to power down the system, unplug any one disk, and restart the system. No problems with that either. In fact, the absolutely robust behaviour of gmirror was one of my key arguments for switching from Linux to FreeBSD :-). Of course there are a zillion ways to fail your hard disk, and there could be cases where one hard disk might start behaving erratically, and gmirror might not be able to detect all such cases and might try to continue using the failed disk. This could theoretically lead to some nasty data integrity issues in the worst case. But this is true for any RAID, even when implemented in hardware IMO. Regards Tobias -- Universität Stuttgart|Fakultät für Architektur und Stadtplanung|casinoIT 70174 Stuttgart Geschwister-Scholl-Straße 24D T +49 (0)711 121-4228 F +49 (0)711 121-4276 E [EMAIL PROTECTED] I http://www.casino.uni-stuttgart.de ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically [SOLVED]
On Wed, Sep 05, 2007 at 07:35:26AM +, Pollywog wrote: I did find it in /etc/default/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. I found the problem. lo0 was not listed in network_interfaces in rc.conf Adding it fixed the problem. Do you have this line in your /etc/defaults/rc.conf? network_interfaces=auto # List of network interfaces (or auto). Given your problems, I am highly suspicious that something has spammed your /etc/defaults/rc.conf... -- Daniel Bye PGP Key: http://www.slightlystrange.org/pgpkey-dan.asc PGP Key fingerprint: D349 B109 0EB8 2554 4D75 B79A 8B17 F97C 1622 166A pgpV9z6WOjh89.pgp Description: PGP signature
Re: questions on setting up a mail server
I've edited ruthlessly to reduce the length of this message. On Wednesday 05 September 2007 11:07, you wrote: My main question is on authentication. I was looking at authentication types in kmail to get an idea of what I can use, and I found: [list of SASL methods plus question what to use] Much of this depends on the mail clients that your going to be hitting the server with. The first group does encryption of the password only. Not sure what's meant by ``the first group'' here. CRAM-MD5, Digest-MD5, NTLM, GSSAPI, and APOP are associated with password encryption on SMTP auth and POP3 as you well know, so please do not try to be deliberately stupid to make a point. Just make your point and get on with it. Most people won't understand anyway. I wasn't trying to be stupid: I saw a single list of SASL authc methods and wasn't sure where you had drawn the line to divide them into two groups. [...certificates] There is a large amount of arcane magic to do this, and to get it accepted into Windows, so that an Outlook client will do SSL. This isn't true, in my experience. Your experience is limited then. Yes, it is: but with Windows 2000/XP and Outlook 2003, it's not magic. In fact I was pleasantly surprised how easy it was. Sure it is simple - when ALL clients are running the same version of Windows, IE, and Outlook. Perhaps true in a small network. Very not true in a large network. I'll bow to your experience on that. All I can say is that my own view is that the bigger the network, the more important it is to get software standardised across the organisation to reduce your support costs, and the cheaper it is to do through volume licensing. We're a small, donor-funded, African NGO, and we have two versions of Windows (2000 and XP) and one version of Office (2003). We will use Microsoft's down-licensing provision to stick with what we have until we're ready to upgrade everyone. Everyone supports LOGIN and PLAIN. (at least I never met a mail program that didn't - perhaps there is one) But, you cannot get password encryption with Outlook Express unless you do NTLM. It supports nothing else, except for SSL which is encryption of the entire channel. If you know of a way to get OE to support CRAM-MD5 then do tell. No, Outlook 2003 doesn't support PLAIN - at least I couldn't get it to. That's why I enabled LOGIN. It's true that NTLM is the only encrypted password protocol supported by Microsoft - that's why I'm using an encryption layer with cleartext authentication. The honest to god truth of the matter is that encrypting your POP3 and SMTP auth passwords is difficult to do on a large scale no matter what road you pick to do it, so there is really not a lot of point to doing it unless your in a rather limited environment. I'm not sure I would agree with this statement either. I perhaps should have explained this more. Encryption of e-mail is absolutely pointless unless done from [end to end] It is only useful for protecting passwords from wire sniffing. True up to a point. It can also offer integrity - an assurance that the message is from the authenticated identity. Although that assurance is only valid at the first server (the MSA), that may be enough to prevent injection of a variety of kinds of junk with forged sender information. But in most cases, the wire isn't sniffable. Given that, certainly in my case, the ``wire'' may be cellular, radio, satellite, wireless LAN, or a government, academic or hotel/airport network providing temporary connectivity, I can't say that with confidence. password sniffing only becomes a concern when you have road warriors who are NOT connecting into the mailserver via a VPN Again true - but now you're talking about another method of protecting passwords, and another technology to master. In practice, even though I run a VPN as well, I still use TLS at the individual service level to protect passwords ``in flight''. And even if you have valid concerns on password sniffing well that's simple enough to address - don't be an idiot and use the same user name and password for your e-mail clients as you use for your network and windows logins. I would dispute that this is idiotic. You do need to protect the password much more carefully, but there are advantages to having a single password, easily changed by the user and easily cancelled when the user leaves. [certificate authority not hard] I didn't say doing that was hard. The problem is that the entire SSL picture is hard for a newbie. [...] It's only after digging for a long while will they come across some pointers that will shed the light. That's certainly true. The longest part of the design, implementation and rollout of our new mail system was finding all the bits and pieces and working out how to put them together. [of SASL authc methods] Of the passwd-based methods, PLAIN is the
Re: gmail fs
Danielisz Laszlo wrote: Does anyone know how to usw gmail fs in FreeBSD? If there is a FUSE module that does it, you might get it to work. It's always going to be a big hack though. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sysinstall, packages, ports q.s
Sur Demir wrote: { this is my second attempt to post, first one over Gmane did not appear in list. Sorry if you get this twice. } Hi, I'm a bit new to FreeBSD, and have few questions challenging my Gentoo Linux mindset: Welcome to the FreeBSD club! May I first suggest you read the handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ I will attempt to give you some quick hints to get you started, but you will find a lot of details for all this stuff in the handbook, and also googling and searching the list archives. 1. I performed a Minimal 6.2 installation (it boots OK). Then I selected Post installation tasks - Distributions. There I see base (required), it appears unselected. Does this install anything more than what Minimal install did at the first place? I believe the minimal install just installs the base system. I usually perform a custom installation and select absolutely everything but the Xorg distribution, which has been updated anyway and there is no real reason to install from CD at this point. 2. I see pkg_add, pkg_delete, pkg_info but no pkg_update. How am I supposed to keep my system up to date, unless I revert to ports? There are ways to keep your system updated using binary packages if you prefer. Most people however tend to compile from source (the ports system). I use portupgrade (which you can install from /usr/ports/ports-mgmt/portupgrade or portupgrade-devel port), and there is an option in it to use binary packages. I can do something like: portupgrade -PP -a to upgrade all my apps using binary packages. However I much prefer to use ports (except for large apps like openoffice that may - depending on your hardware - take even days to compile). In fact for some ports you may not get a binary package at all, or it may be outdated. Ports always offer the latest version. There are quite a few port management utilities except portupgrade as well. 3. Minimal install provides a number of commands by default like pkg_*, portsnap, gcc, ls, vi, etc but pkg_info does not list any of their packages, which means they're not managed under /var/db/pkg. Then, how am I supposed to upgrade them without ending up with multiple versions? That is because you have not installed any packages really! You just have the base system, which is not managed by these utilities. Pkg_info is for third party apps you install from ports (or binary packages). If you need to upgrade the base system there are quite a few options: 1. Run the freebsd-update utility to get your system up to date by downloading binary patches for the main system. You will still be running a -RELEASE version, albeit a patched one (e.g. 6.2-RELEASE-p7). These are mostly security patches. 2. Use csup to get the sources from -STABLE or -CURRENT, compile and install kernel and world. You will get either a STABLE or a CURRENT system. The process is well described in the handbook. If you are a beginner I suggest you stay with the RELEASE (+freebsd-update) version for a while. This is painless (just two commands: freebsd-update fetch followed by freebsd-update install). As an intermediate step, learn how to configure compile your own custom kernel (it is easier than it sounds, and also well described in the handbook). 3. Upgrade from CD/DVD when a new release is out. 4. I want to avoid the -CURRENT branch and want to stay with -STABLE branch for now. The page http://www.freebsd.org/ports/index.html says: The Ports Collection supports the latest release on the FreeBSD-CURRENT and FreeBSD-STABLE branches. This not clear to me: If I start using ports, am I on -STABLE or not? You will be using STABLE only if you use csup to get the sources for the base system, and perform (2) above. It is perfectly valid to install updated ports on a RELEASE system. For this, you will have to update your ports tree using csup. A quick start for this: - copy the file /usr/share/examples/ports-supfile to a convenient place (e.g. /root) - Edit the copied file and change the host line (CHANGE_THIS) to a mirror near you. - Run a command like csup -g -L 2 /root/ports-supfile to upgrade your ports tree Many beginners are confused by the idea that csup (or cvsup) can be used to upgrade both the ports tree (for applications) and the src tree (base system upgrades). Yes, it is the same utility, but you will be using different configuration files. 5. make.conf is blank by default. Does CPU_TYPE default to i386 in this case? Assuming you installed the 32bit version of FreeBSD, I guess so. Someone else may be able to give you a better answer on this one. I hope I'm not too confused and sound silly. TIA. Nope. You are just overwhelmed by information that has not yet settled in your CPU... er I mean mind :) Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV.
Re: Booting to root on gmirror with disk failure, is it even possible?
On Sep 4, 2007, at 9:31 PMSep 4, 2007, Modulok wrote: Before I invest significantly more time into my current gmirror issues, I have but two simple questions for anyone out there: 1. Has anyone used gmirror for the root partition and been able to successfully boot with one failed (or un-plugged) disk? It's the latter part of the question that is the real issue for me. I'm just looking for a confirmed it's possible. 2. If yes, what version of FreeBSD, what brand/model of hard disks, and what mainboard was used? We have been using gmirror on some Dell systems for a while now, and we put it through it's paces before we deployed it to production. We pulled drives while the system was running, rebooted, the works. We found gmirror to be pretty fault tolerant and were not able to get it to fail. If you pull your main drive, the system was always able to successfully boot from the second drive. Rebuilding was always possible, as well. Our tests were done on older Dell PowerEdge 1650's with Fujitsu SCSI drives. I don't know specifically what model/manufacturer the motherboard is. If there's any other questions, feel free to ask! - Eric F Crist Secure Computing Networks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: questions on setting up a mail server
On Sep 5, 2007, at 5:46 AMSep 5, 2007, Jim Stapleton wrote: All the authentication options you mention after plain text (which is the standard method built in to the protocol) require Cyrus SASL. This isn't as scary to set up as the docs make it sound. PLAIN and LOGIN can both use your existing user passwords (which is what I do). GSSAPI requires Kerberos, and the digest methods (the -MD5 ones) need a separate file of passwords held in plain text - the sasldb. Of the passwd-based methods, PLAIN is the preferred protocol according to the docs and RFCs - LOGIN is the one Microsoft uses (go figure). Thanks, that's almost all of what I needed there. You insinuated (but I don't think explicitly stated) that LOGIN is in fact encrypted in some form? Thanks, Only across SSL/TLS connections. - Eric F Crist Secure Computing Networks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: doubts about the freebsd devil
On Sep 5, 2007, at 12:10 AM, Erich Dollansky wrote: Hi, Ted Mittelstaedt wrote: Them's fighting words - don't you realize an entire subgroup of the FreeBSD developers spent untold amounts of time and effort setting up a rigged contest to attempt to convince the userbase that there was such a difference, in order to replace the logo with a round red sex toy? oh no. I always thought this glow in the eyes of women when mentioning FreeBSD came from the operating system's performance. Erich Believe you me, performance has everything to do with it... and FreeBSD just performs better... :D ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sadly, my tinker-time has run out....
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Michael Hauber Sent: Wednesday, September 05, 2007 4:44 AM To: Ted Mittelstaedt Cc: freebsd-questions@freebsd.org Subject: Re: Sadly, my tinker-time has run out Now... As to why I asked this board Who better to ask than folks that have some of the preferences? Why on earth would you think FreeBSD folks would be out advocating for Ubuntu? I didn't realize this mailing list was renamed freebsd-questions-about-other-oses-i-want-to-switch-to I needed something that I could take on the road without having to spend a lot of time upgrading/tweaking. Ubuntu is turning out to be fine for that. More flame bait, you just can't give up trying eh? Note -I- wasn't the only one that said Ubuntu wouldn't be any better than FreeBSD. My overall response for all that bullshit you just wrote... But it looks like I -was- the only one that outed you, ya troll. No wonder you saved your (weak) flaming for me. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: gmail fs
thank you Kris! - Original Message From: Kris Kennaway [EMAIL PROTECTED] To: Danielisz Laszlo [EMAIL PROTECTED] Cc: FreeBSD Questions freebsd-questions@freebsd.org Sent: Wednesday, September 5, 2007 3:10:22 PM Subject: Re: gmail fs Danielisz Laszlo wrote: Does anyone know how to usw gmail fs in FreeBSD? If there is a FUSE module that does it, you might get it to work. It's always going to be a big hack though. Kris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Sick sense of humor? Visit Yahoo! TV's Comedy with an Edge to see what's on, when. http://tv.yahoo.com/collections/222 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically [SOLVED]
On Wed, Sep 05, 2007 at 12:48:12PM +0100, Daniel Bye wrote: Given your problems, I am highly suspicious that something has spammed your /etc/defaults/rc.conf... Or a mergemaster gone wrong (or forgotten to be run). Craig ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sadly, my tinker-time has run out....
I apologize for that last comment... That was uncalled for. My time is limited because of my having to juggle so many things at once, and working on the road isn't helping me any (as much as I like the work). My wife is now travelling with me, so that was also part of the equation. Things will slow down eventually, and I'll be back then. I basically took your response as your calling me a lazy whiner... To that, I must say that I save lazy for Sundays (or until I pass out). The whiner part... I'm not much for the drink... :) I appreciate you, Ted. Over the years, I've learned a lot from you, and hell I even have your book... But I'll be damned if you don't parse me off sometimes. :) Anyway... A public apology for a public ass-showing... And I don't want to leave the board with the impression that I'm an ass (or at least a complete one), Cheers, Mike ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Wed, Sep 05, 2007 at 03:14:37AM -0700, Predrag Punosevac wrote: I thought were discussing the configuration of the mail server not your hatred toward us Serbs, Iraqis and God knows whom else. But then on the second thought maybe you are trying to teach us how to configure the spam filter. So who high should we set it. Only Serbs from Serbia can not send emails or even we Serbs who live in U. S? Are you coding now MailScanner-antiSerb version or MailScanner-antiIraqi version? This discussion has gotten thoroughly bizarre rather quickly. -- CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] Larry Wall: A script is what you give the actors. A program is what you give the audience. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
errors after running make
I'm trying to install ndiswrapper from a .tar.gz file. I'm running make for the first time, so I am unfamiliar with it. But I have read instructions for installing ndiswrapper. I keep getting errors, but I'm not sure what I'm doing wrong. Here's what I did. I copied the ndiswrapper-1.47.tar.gz file from cdrom to /usr/src directory. Then: # cd /usr/src # tar -xvf ndiswrapper-1.47.tar.gz # cd ndiswrapper-1.47 # make After running the make command, I get an error message which goes line by line like this: ... Makefile, line 57: Need an operator Makefile, line 60: Need an operator Makefile, line 67: Need an operator ... Makefile, line 109: Missing dependency operatpr Makefile, line 111: Need an operator Makefile, line 112: Missing dependency operator ... Error expanding embedded variable. *** Error code 2 Stop in /usr/src/ndiswrapper-1.47. After this, the root command prompt returns. Am I working with a makefile that needs editing or has errors; or what else I am doing wrong? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically [SOLVED]
On Wednesday 05 September 2007 11:48:12 Daniel Bye wrote: On Wed, Sep 05, 2007 at 07:35:26AM +, Pollywog wrote: I did find it in /etc/default/rc.conf: ifconfig_lo0=inet 127.0.0.1 # default loopback device configuration. I found the problem. lo0 was not listed in network_interfaces in rc.conf Adding it fixed the problem. Do you have this line in your /etc/defaults/rc.conf? network_interfaces=auto # List of network interfaces (or auto). Yes, I have that. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
samba / remote windows machine / nagios
does anyone knows how i can monitor for a date file on a remote windows machine from my freebsd through samba client i guess, so result can be reported to nagios? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically [SOLVED]
On Wednesday 05 September 2007 14:36:04 Craig Boston wrote: On Wed, Sep 05, 2007 at 12:48:12PM +0100, Daniel Bye wrote: Given your problems, I am highly suspicious that something has spammed your /etc/defaults/rc.conf... Or a mergemaster gone wrong (or forgotten to be run). This is a possibility ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Wed, 5 Sep 2007 01:22:12 -0700 Ted Mittelstaedt [EMAIL PROTECTED] wrote: Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. Congratulations. This is an international project and not your parochial meeting where you can discuss the knowledge gleaned from TV end enjoy such fascinating vocabulary and deductions related to someone's TLD. Please learn how to behave appropriately before you post. (A friendly advice: _please_ take some literature lessons in order to learn what is metaphor.) Nikola Lečić, Belgrade, Serbia ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: errors after running make
Terrence Wilson wrote: I'm trying to install ndiswrapper from a .tar.gz file. I'm running make for the first time, so I am unfamiliar with it. But I have read instructions for installing ndiswrapper. I keep getting errors, but I'm not sure what I'm doing wrong. Here's what I did. I copied the ndiswrapper-1.47.tar.gz file from cdrom to /usr/src directory. Then: # cd /usr/src # tar -xvf ndiswrapper-1.47.tar.gz # cd ndiswrapper-1.47 # make After running the make command, I get an error message which goes line by line like this: ... Makefile, line 57: Need an operator Makefile, line 60: Need an operator Makefile, line 67: Need an operator ... Makefile, line 109: Missing dependency operatpr Makefile, line 111: Need an operator Makefile, line 112: Missing dependency operator ... Error expanding embedded variable. *** Error code 2 Stop in /usr/src/ndiswrapper-1.47. After this, the root command prompt returns. Am I working with a makefile that needs editing or has errors; or what else I am doing wrong? Have you tried gmake instead of make? (ports/devel/gmake) HTH, Bahman ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
6.2 Hangs Probing Floppy During Boot
I recently noted this problem and thought it was related to a new MOBO I'd just installed. I've now seen the exact same problem with an old MOBO when I loaded FBSD 6.2. IOW, the following appears to be a 6.2 artifact: During the boot probe, FreeBSD 6.2 (Release or -STABLE) hangs for several minutes while probing the floppy. Eventually, it does get through it, but it takes a lng time. Disabling the floppy in the machine BIOS makes the problem go away because FBSD sees no floppy to probe, but that's not an optimal soltion. I DAGS and saw that others have seen this same problem but could not find a solution anywhere ... TIA, ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: doubts about the freebsd devil
On Wed, Sep 05, 2007 at 12:10:50PM +0800, Erich Dollansky wrote: Hi, Ted Mittelstaedt wrote: Them's fighting words - don't you realize an entire subgroup of the FreeBSD developers spent untold amounts of time and effort setting up a rigged contest to attempt to convince the userbase that there was such a difference, in order to replace the logo with a round red sex toy? oh no. I always thought this glow in the eyes of women when mentioning FreeBSD came from the operating system's performance. Well, 'performance' maybe. Not sure about the operating system part. jerry Erich ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Hi, 2007/9/5, Nikola Lecic [EMAIL PROTECTED]: On Wed, 5 Sep 2007 01:22:12 -0700 Ted Mittelstaedt [EMAIL PROTECTED] wrote: Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. Congratulations. This is an international project and not your parochial meeting where you can discuss the knowledge gleaned from TV end enjoy such fascinating vocabulary and deductions related to someone's TLD. I wonder if all thread participants can relax a bit? I have always been impressed how friendly this list is. Have been watching this thread and cannot understand how it came that such a flame war broke out. Please cool down and stop sending rubbish to everyone's inbox. Continue off list if you really have to. Warm regards, Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sadly, my tinker-time has run out....
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Michael Hauber Sent: Wednesday, September 05, 2007 7:38 AM To: Ted Mittelstaedt Cc: freebsd-questions@freebsd.org Subject: Re: Sadly, my tinker-time has run out I apologize for that last comment... That was uncalled for. My time is limited because of my having to juggle so many things at once, and working on the road isn't helping me any (as much as I like the work). My wife is now travelling with me, so that was also part of the equation. Things will slow down eventually, and I'll be back then. I basically took your response as your calling me a lazy whiner... To that, I must say that I save lazy for Sundays (or until I pass out). The whiner part... I'm not much for the drink... :) I appreciate you, Ted. Over the years, I've learned a lot from you, and hell I even have your book... Thank you! But I'll be damned if you don't parse me off sometimes. :) That is my job. The ONLY way to get someone to re-examine their assumptions is to piss them off. It's why politicians get more votes rabble-rousing than telling everyone how great things are. And naturally, those that don't want to re-examine their own ass-umptions don't like being pissed off, don't like rabble-rousers, and bitch when they see rabble-rousing. But, change never happens easy. Your not going to get a Windows users switched over to Open Source unless you piss him off - force him to defend his ass-umption that Windows is the greatest operating system since sliced bread. Doing this is what gets him to re-examine his assumptions. And that is after all the name of the game here - to get the people away from the unhealthy MS monopolizing of the computer business that are salvagable. Anyway... A public apology for a public ass-showing... And I don't want to leave the board with the impression that I'm an ass (or at least a complete one), No problem Mike - and I apologize as well for saying you were whining. As I said, I didn't take your post originally as a troll's post. But I do take exception to the implication - perhaps unintended - that Ubuntu takes less tinker-time. Ubuntu is configured a certain way - if your needs align with how it is configured it is going to take less time -for you- to tweak. As is, Windows is configured a certain way, if it aligns with someone's needs then it will take less time for -that- person to tweak. This is how it is with all the canned configuration operating systems. Right now Ubuntu is growing very fast since it's canned configuration is the closest alignment with Windows among the Linuxes, so it's really easy to get dissatisfied Windows users who aren't willing to expend a lot of effort migrating. And it's natural for new users of any OS to wax poetic about it's good points - after all that's why they moved over - so I have to remember that right now there's going to be a lot of Ubuntu new users waxing poetic about how great Ubuntu is. But it is trying to have to read the same thing over and over on the public mailing lists and message boards. As I said, don't apologize for using an OS that matches your needs better than FreeBSD. Just don't assume that everyone's needs are the same as yours, and we would all be spending less time tinkering with Ubuntu, or even FreeBSD for that matter. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: mail server setup questions
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Predrag Punosevac Sent: Wednesday, September 05, 2007 3:24 AM To: [EMAIL PROTECTED] Subject: Re: mail server setup questions On 05.09.2007 11:22, Ted Mittelstaedt wrote: [...] Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. I thought were discussing the configuration of the mail server not your hatred toward us Serbs, Iraqis and God knows whom else. Amazing you find hatred where none exists. Perhaps your only reflecting your own biases? Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: mail server setup questions
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Eray Aslan Sent: Wednesday, September 05, 2007 2:05 AM To: freebsd-questions@freebsd.org Subject: Re: mail server setup questions Good advice. I am sure you could have written your response without mentioning nuclear weapons, Iraq et al. Sure - and I'm sure you could write an instruction manual that nobody would want to read, either, unless as a sleep aid. Metaphors are a legitimate literary device. If your unfamiliar with them I would suggest you review what is known as classic literature Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: errors after running make
On Wednesday 05 September 2007 17:16:39 Terrence Wilson wrote: I'm trying to install ndiswrapper from a .tar.gz file. I'm running make for the first time, so I am unfamiliar with it. But I have read instructions for installing ndiswrapper. I keep getting errors, but I'm not sure what I'm doing wrong. Here's what I did. I copied the ndiswrapper-1.47.tar.gz file from cdrom to /usr/src directory. Then: # cd /usr/src # tar -xvf ndiswrapper-1.47.tar.gz # cd ndiswrapper-1.47 # make You're probably trying to use debian's version. However: http://lists.freebsd.org/pipermail/freebsd-mobile/2005-March/005947.html -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Wed, 5 Sep 2007 17:44:15 +0200 Zbigniew Szalbot [EMAIL PROTECTED] wrote: Hi, 2007/9/5, Nikola Lecic [EMAIL PROTECTED]: On Wed, 5 Sep 2007 01:22:12 -0700 Ted Mittelstaedt [EMAIL PROTECTED] wrote: Your reaction is facinating considering the location implied by your e-mail reply address. I can perhaps understand your adversion to the use of metaphors in language - God know the Serbian propagandists warped the metaphor beyond the breaking point in your history and perhaps now, there is a horror of them there that will take generations to dissipate. Congratulations. This is an international project and not your parochial meeting where you can discuss the knowledge gleaned from TV end enjoy such fascinating vocabulary and deductions related to someone's TLD. I wonder if all thread participants can relax a bit? I have always been impressed how friendly this list is. Have been watching this thread and cannot understand how it came that such a flame war broke out. [...] Please cool down and stop sending rubbish to everyone's inbox. Zbigniew, please don't teach me lessons in politeness. Ted posted two very offensive mails and everyone has a right to publicly reply to publicly posted offence. If that's problem for you, then ignore this thread. Be careful when using word rubbish. Nikola Lečić ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: mail server setup questions
-Original Message- From: Jim Stapleton [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 05, 2007 3:55 AM To: Ted Mittelstaedt Cc: Nikola Lecic; Russell E. Meek; freebsd-questions@freebsd.org Subject: Re: mail server setup questions Jim posted here asking for help, using words and language that gives serious doubt that he is competent to run a mailserver of any kind. Knowledgeable and competant are two different things. If I were not competant, I would not bother attempting to get that knowledge that I lack. Of course. The fact you posted at all indicates your aware that competence is learned and that you want to become competent. A far more admirable attitude than the people that assume that everyone is completely competent at everything and calling someone incompetent is the same as calling them a baby-killer. I don't know the nitty gritty details about exactly what and how mail servers are encrypted. I don't know all the nitty gritty details about how everything talks and intercommunicates. I do know that that any time a password goes over the internet (not just LAN) it needs to be encrypted as securly as possible. Only if there is a possiblity that the communication channel can be tapped. The phrase going over the Internet is so broad as to be completely meaningless. You can mean just about everything from completely unencrypted wireless to an untappable OC3 between providers. Most password cracking takes place on the client - all the encryption in the world won't protect you from clueless users who click on URLs in e-mails they get. I do know that mail (and other) servers should live in jails. They can if you want. However I have never done so and never had a mailserver rooted. Of course, I have kept stuff reasonably up to date - that is the other part of the issue. In any case running in a jail does not really address the biggest problems with mailservers - their hijacking by spammers and other criminals. By definition a mailserver transfers mail. Putting it's programs in a jail does not make it cease to transfer mail. If such mail transfer happens between the people you want it to happen between, then great. But if you misconfigure the stuff you have jailed, the mailserver will happily transfer mail between the people you don't want it transferring mail from and everyone else. I do know not to run an open relay (take email from any server to deliver to any server, without authentication, and plan to achieve this by only allowing incoming mail). I would submit you think you do. For example, are you planning on putting a webmail interface on the server? A lot of people do. Well if you do and you put a scrap of CGI on there that has a hole in it a spammer can come along and cause that to relay mail from incoming http right into your mail queue. He doesen't need root access to do this. I do know that there is no such thing as too much paranoia when setting up a server. Then you know 90% of what you need to know. Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: errors after running make
On Wed, 5 Sep 2007, Terrence Wilson wrote: I'm trying to install ndiswrapper from a .tar.gz file. I'm running make for the first time, so I am unfamiliar with it. But I have read instructions for installing ndiswrapper. I keep getting errors, but I'm not sure what I'm doing wrong. Here's what I did. I copied the ndiswrapper-1.47.tar.gz file from cdrom to /usr/src directory. Then: # cd /usr/src # tar -xvf ndiswrapper-1.47.tar.gz # cd ndiswrapper-1.47 # make After running the make command, I get an error message which goes line by line like this: ... Makefile, line 57: Need an operator Makefile, line 60: Need an operator Makefile, line 67: Need an operator ... Makefile, line 109: Missing dependency operatpr Makefile, line 111: Need an operator Makefile, line 112: Missing dependency operator ... Error expanding embedded variable. *** Error code 2 Stop in /usr/src/ndiswrapper-1.47. After this, the root command prompt returns. Am I working with a makefile that needs editing or has errors; or what else I am doing wrong? I do not know anything about this application, but you are almost certainly using the wrong flavor of make. Odds are good you want gmake, especially if this it GNUish application, but there are also other flavors. -- Lars Eighner http://www.larseighner.com/index.html 8800 N IH35 APT 1191 AUSTIN TX 78753-5266 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Hello, Zbigniew, please don't teach me lessons in politeness. Ted posted two very offensive mails and everyone has a right to publicly reply to publicly posted offence. If that's problem for you, then ignore this thread. Be careful when using word rubbish. My apologies. I shoudn't have used the word rubbish. But please take into account that: 1. I am interested in the subject of mail server setup so I generally follow such threads 2. For the whole day I have been opening emails where you exchange opinions that have nothing to do with mail server setup. 3. I have no intention of teaching anyone lessons in politness. If this has been your impression, I need to apologize again. Regards, Zbigniew Szalbot ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: bootable CDs on FreeBSD-6.1-R amd64
On Tue, Sep 04, 2007 at 08:50:21PM -0300, [EMAIL PROTECTED] wrote: Dear Sirs Burning CDs is becoming a coastier task to me on FBSD-6.1-R amd64. I've lost five of them...and the question is how to make bootable CDs by using cdrecord? I've already read man cdrecord but the question is not clearer. Better not use 6.1. 6.2 has been out for some time now. The following works for me; 1) Make sure that the CD/DVD rewriter is controlled as a SCSI device instead of an ATAPI device. Build a kernel with the following devices: # ATA and ATAPI devices # Do _not_ include the atapicd driver! device ata device atadisk # ATA disk srives device ataraid # RAID drives # The atapicam device is not included in the GENERIC amd64 kernel! device atapicam# Emulate ATAPI devices as SCSI via CAM options ATA_STATIC_ID # Static device numbering # SCSI peripherals device scbus # SCSI bus (required for SCSI) device cd # Compact Disc device da # Direct Access (disks) device pass# Passthrough device (direct SCSI access) 2) Set the device permissions correctly # Give members of group cdrom access to the CD/DVD-ROM and DVD+RW via the # SCSI interface own xpt0root:cdrom permxpt00660 own cd0 root:cdrom permcd0 0660 own cd1 root:cdrom permcd1 0660 linkcd1 cdrom linkcd1 dvd My user-id is part of the cdrom group. 3) Use 'cdrecord -scanbus' to determine which device to use; Cdrecord-ProDVD-Clone 2.01.01a11 (amd64-unknown-freebsd6.2) Copyright (C) 1995-2006 Jörg Schilling Using libscg version 'schily-0.8'. scsibus1: 1,0,0 100) 'HL-DT-ST' 'DVD-ROM GDR8163B' '0L23' Removable CD-ROM 1,1,0 101) 'PLEXTOR ' 'DVDR PX-716A ' '1.08' Removable CD-ROM So I'm using 1,1,0. 4) Burn the image; cdrecord -v -eject -dao speed=32 driveropts=burnfree dev=1,1,0 -pad \ -data 6.2-RELEASE-amd64-disc1.iso HTH, Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgpmTO8TMBER0.pgp Description: PGP signature
installing on gjournal
Hello, I just said to ask for thoughts the community about the above subject, after having waisted two hours trying to install 7-CURRENT... Do you know a relatively easy way to install a new system with gjournal? What I am seeing is: GEOM_JOURNAL: Journal $JournalID: ad0s2a contains data. GEOM_JOURNAL: Journal $JournalID: ad0s2d contains journal. Trying to mount root from ufs:/dev/ad0s2a.journal Then I get to the famous mountroot kernel prompt... /dev/ad0s2a is also not accessible anymore, which makes perfect sence, since gjournal has locked it. I also did tunefs -J enable /dev/ad0s2a.journal. What I never did is adding -J to newfs opts during installation(sysinstall). Where am I doing wrong? Thanks in advance. Nikos ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically
On Wed, Sep 05, 2007 at 01:47:47AM +, Pollywog wrote: I have to manually set the loopback interface after each reboot on one machine (it is a laptop): ifconfig lo0 127.0.0.1 netmask 255.0.0.0 Then everything is fine. I added ifconfig_lo0=127.0.0.1 netmask 255.0.0.0 to /etc/rc.conf but for unknown reasons it now looks like this and I still need to set lo0 manually after reboots: Have you tried setting network_interfaces? Here's the relevant part of my rc.conf: # Network settings network_interfaces=lo0 rl0 rl1 ifconfig_lo0=inet 127.0.0.1 ifconfig_rl0=inet 10.0.0.150/24 polling ifconfig_rl1=inet 192.168.0.1/24 polling HTH, Roland -- R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) pgpOydMwIEN1B.pgp Description: PGP signature
Re: mail server setup questions
* Jim Stapleton [EMAIL PROTECTED] [2007-09-04 18:03:20 -0400]: I need a mail server to take incoming mail, and provide a pop3 (or better yet, SSLed POP3) connection. I would second the recommendation for Postfix -- and Dovecot for POP. Could you all suggest to me what you use and a good web site for configuring it as it would be done in FreeBSD? The Postfix documentation is very thorough and complete, and that is all you should need. Their website has some links to various HOWTOs: http://www.postfix.org/docs.html Thomas -- N.J. Thomas [EMAIL PROTECTED] Etiamsi occiderit me, in ipso sperabo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Wed, Sep 05, 2007 at 08:51:18AM -0700, Ted Mittelstaedt wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Eray Aslan Sent: Wednesday, September 05, 2007 2:05 AM To: freebsd-questions@freebsd.org Subject: Re: mail server setup questions Good advice. I am sure you could have written your response without mentioning nuclear weapons, Iraq et al. Sure - and I'm sure you could write an instruction manual that nobody would want to read, either, unless as a sleep aid. Metaphors are a legitimate literary device. If your unfamiliar with them I would suggest you review what is known as classic literature Come on folks. You'll never get anywhere in a flame war with Ted. He changes the ground under you any time it is convenient. Much better to teach him to spell you're, distinguish between your and you're and use them correctly. Now that would be helpful. jerry Ted ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
temporary su login
My collocation supplier is about to move our FreeBSD box and wants some way to shut it down cleanly. Is there a simple way to allow a non-root user to have shutdown rights without just giving them the world. At present I don't even allow login via ssh on that box ie it's purely key based. -- Robin Becker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
On Sep 5, 2007, at 11:37 AM, Robin Becker wrote: My collocation supplier is about to move our FreeBSD box and wants some way to shut it down cleanly. Is there a simple way to allow a non-root user to have shutdown rights without just giving them the world. At present I don't even allow login via ssh on that box ie it's purely key based. -- Robin Becker look @ sudo in the ports ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
Robin Becker wrote: My collocation supplier is about to move our FreeBSD box and wants some way to shut it down cleanly. Is there a simple way to allow a non-root user to have shutdown rights without just giving them the world. At present I don't even allow login via ssh on that box ie it's purely key based. I'm wondering how would you want to change a system to which you don't have access? Or did I misunderstood something? Bahman ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
ports collection background-fetch
Is it possible to do automatic fetching of source files in the background while other parts are being compiled? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
After installing sudo read sudoers.sample (/usr/local/etc/sudoers.sample) - Original Message From: Robin Becker [EMAIL PROTECTED] To: freebsd-questions@freebsd.org Sent: Wednesday, September 5, 2007 6:37:51 PM Subject: temporary su login My collocation supplier is about to move our FreeBSD box and wants some way to shut it down cleanly. Is there a simple way to allow a non-root user to have shutdown rights without just giving them the world. At present I don't even allow login via ssh on that box ie it's purely key based. -- Robin Becker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] Be a better Globetrotter. Get better travel answers from someone who knows. Yahoo! Answers - Check it out. http://answers.yahoo.com/dir/?link=listsid=396545469 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
-rwxr-xr-x 1 root operator 15728 30 pa# 2006 /sbin/shutdown chmod 4710 /sbin/shutdown and add user to operator group On Wed, 5 Sep 2007, Robin Becker wrote: My collocation supplier is about to move our FreeBSD box and wants some way to shut it down cleanly. Is there a simple way to allow a non-root user to have shutdown rights without just giving them the world. At present I don't even allow login via ssh on that box ie it's purely key based. -- Robin Becker ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
On Wednesday 05 September 2007 18:50:21 Bahman M. wrote: Robin Becker wrote: At present I don't even allow login via ssh on that box ie it's purely key based. I'm wondering how would you want to change a system to which you don't have access? Or did I misunderstood something? He's using ssh pub/private keys - not hashed system passwords, so no passwords (even if hashed form) travels the network. And yes, sudo is the way to go. -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
[EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Just login on multiple consoles or use multiple x terminals (if running X) and on each one run 'make' for the port you want to compile. The port(s) will be fetched and compiled simultaneously. Then all you need to do is to run 'make install' for each port. Note: I'm not sure but I think it's not a good practice to issue more than one 'make install' at a time. Bahman ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
On Wednesday 05 September 2007 18:46:39 [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Not automatically, but if you know which ports need to be done next, nothing stops you from doing: cd /usr/ports/category/port make fetch on a different terminal. -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
/usr/ports portupgrade when only using packages
I need to set up a system that can only use packages. I've always used ports, so I'm not exactly sure if I'm doing things properly. Should I (do I need to) use portsnap to populate /usr/ports? Unless I really need something that doesn't have a pkg available, I will not be using ports. I've always used portupgrade, and plan to do so, using -PP (only packages) for this setup. My first question is should I? Doing'pkg_add -r portupgrade' and it installed fine. Using pkgdb -F however, resulted in these messages: bsd# pkgdb -F cd: can't cd to /usr/ports cd: can't cd to /usr/ports/ports-mgmt/portupgrade cd: can't cd to /usr/ports Chcecking the package registry database Any help appreciated. Thanks, MikeC ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
Mel wrote: On Wednesday 05 September 2007 18:50:21 Bahman M. wrote: Robin Becker wrote: At present I don't even allow login via ssh on that box ie it's purely key based. I'm wondering how would you want to change a system to which you don't have access? Or did I misunderstood something? He's using ssh pub/private keys - not hashed system passwords, so no passwords (even if hashed form) travels the network. You're right! I don't know why but I thought by key based he meant keyboard based, i.e. no net access! Should have read the question more carefully. Bahman ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
and on each one run 'make' for the port you want to compile. The port(s) will be fetched and compiled simultaneously. Then all you need to do is to run 'make install' for each port. Note: I'm not sure but I think it's not a good practice to issue more than i do many but only one at normal priority, and other with nice -n 20 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sadly, my tinker-time has run out....
That is my job. The ONLY way to get someone to re-examine their assumptions is to piss them off. What a breathtakingly arrogant ponce! Perhaps THIS will piss YOU off enough to get you to reexamine YOUR assumption. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
Bahman M. wrote: [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Just login on multiple consoles or use multiple x terminals (if running X) and on each one run 'make' for the port you want to compile. The port(s) will be fetched and compiled simultaneously. Then all you need to do is to run 'make install' for each port. Note: I'm not sure but I think it's not a good practice to issue more than one 'make install' at a time. This is fine unless 2 ports depend on the same one -- i.e the glib related ones esp. The makes will rm -f the .o files and confuse one another. If this happens no biggie, just rerun the make for that port in one window. -- Philip M. Gollucci ([EMAIL PROTECTED]) 323.219.4708 Senior System Admin - Riderway, Inc. http://riderway.com 1024D/EC88A0BF 0DE5 C55C 6BF3 B235 2DAB B89E 1324 9B4F EC88 A0BF Work like you don't need the money, love like you'll never get hurt, and dance like nobody's watching. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: loopback won't enable automatically
On Wednesday 05 September 2007 16:12:07 Roland Smith wrote: On Wed, Sep 05, 2007 at 01:47:47AM +, Pollywog wrote: I have to manually set the loopback interface after each reboot on one machine (it is a laptop): ifconfig lo0 127.0.0.1 netmask 255.0.0.0 Then everything is fine. I added ifconfig_lo0=127.0.0.1 netmask 255.0.0.0 to /etc/rc.conf but for unknown reasons it now looks like this and I still need to set lo0 manually after reboots: Have you tried setting network_interfaces? Here's the relevant part of my rc.conf: # Network settings network_interfaces=lo0 rl0 rl1 ifconfig_lo0=inet 127.0.0.1 ifconfig_rl0=inet 10.0.0.150/24 polling ifconfig_rl1=inet 192.168.0.1/24 polling Yes, that is how I fixed the problem, but I don't know why the problem occurred in the first place, since in /etc/default/rc.conf I have: network_interfaces=auto Setting network_interfaces=lo0 vr0 in /etc/rc.conf fixed the problem thanks HTH, Roland ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: temporary su login
On Sep 5, 2007, at 10:37 AMSep 5, 2007, Robin Becker wrote: My collocation supplier is about to move our FreeBSD box and wants some way to shut it down cleanly. Is there a simple way to allow a non-root user to have shutdown rights without just giving them the world. At present I don't even allow login via ssh on that box ie it's purely key based. I'm sure nobody will mention this, so I will. On most systems with support ACPI, your colo provider can simply press the power button on the front of your server. FreeBSD's kernel will pick up the signal and shut down cleanly. Once you're moved, they can press the same button to power the system on. There is *NO* need to give them login access to the box. Also, they could simply call you to have you shut it down. - Eric F Crist Secure Computing Networks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
On Wed, 5 Sep 2007 12:28:51 -0400 Jerry McAllister [EMAIL PROTECTED] wrote: Come on folks. You'll never get anywhere in a flame war with Ted. He changes the ground under you any time it is convenient. Jerry, I appreciate your good will, but he doesn't change ground. And this is not a flame war but a reaction to the rude and arrogant posts. His (obviously well-known) character cannot be an excuse to speak whatever he wishes. I'm very disappointed that more official people on this list didn't say something like Ted, please respect our users from all countries, including those two countries you have mentioned (as they did couple of times in the near past). Nikola Lečić ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
On Wed, 05 Sep 2007 20:39:06 +0330 Bahman M. [EMAIL PROTECTED] wrote: [...] Note: I'm not sure but I think it's not a good practice to issue more than one 'make install' at a time. [...] This is not good practice at all, since both (all) chains of make jobs deal with the same /var/db/pkg/pkgdb.db (and other files), so you can damage the database or at least you will get a complaint from one of (de)installs. Please read this: http://www.freebsd.org/projects/ideas/#p-ports-parallel Nikola Lečić ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: a quick jails question
Jonathan Horne wrote: will a NFS server run in a jail? im guessing no, that it falls into the funny services category (like snmp) that wont run right in a jail. thanks, Hi Jonathan. Forgive my curiosity, but why would you run NFS in a jail? Regards, Adam J Richardson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Find top IT jobs through 2nd largest...
My name is K= im Hartman and I am with Computerwork.com. We are one of the leading nati= onal niche job sites for the computer industry and we would like to invit= e you to visit our site. The site is 100% free for job seekers an= d I just thought you might like to stay on top of job openings in Oracle = and related fields! Computerwork.com has designed start pages that fo= cus on your specific skill set and highlights openings making it easy to = apply and track your progress! Just click here to get started: Oracle J= obs We also have start pages for the following skill sets: ASP Jobs | [1]= SAP Jobs | [2]Cobol Jobs | [3]e-Commerce Jobs | [4]C++ Jobs | = [5]Java = Jobs | [6]Networki= ng Jobs | [7]Object-Oriented Jobs | [8]Perl Jobs | [9]SQL Jobs | [10]Telecom Jobs | [11]Unix Jobs | [12]Visual Basic Jobs | = a href=http://windows.computerwork.com/index.cfm?infogist=1;Wi n= dows Jobs | [13]XML Jobs If you have problems with any of the links abo= ve, please cut and paste the following into your browser window: [14]http://www.comp uterwork.com Sincerely, Kim Hartman Computerwork.com _ You have received this email because your resume or profile is posted on the Internet. To remove yourself from future emails from our website,= please reply back with Remove in the subject line! References 1. 3Dhttp://sap.computerwork.com/index.cfm?infogist=1; 2. 3Dhttp://cobol.computerwork.com/index.cfm?inf 3. 3Dhttp://ecommerce.computerwor=/ 4. file://localhost/tmp/3Dhttp 5. 3Dhttp://java.computerwork.com/index.cfm?infogist=1; 6. 3Dhttp://networking.computerwork.com/; 7. 3Dhttp://objectoriented.computerwork.com/index 8. 3Dhttp://per=/ 9. file://localhost/tmp/3D 10. 3Dhttp://telecommunications.computerwork.com/index.cfm?infogi 11. 3Dhttp://unix.computerwork.com/ 12. 3Dhttp://visualbas=/ 13. 3Dhttp://xml.computerwork.com/index.cfm?info 14. file://localhost/tmp/3D___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
Bahman M. wrote: [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Just login on multiple consoles or use multiple x terminals (if running X) and on each one run 'make' for the port you want to compile. The port(s) will be fetched and compiled simultaneously. Then all you need to do is to run 'make install' for each port. Note: I'm not sure but I think it's not a good practice to issue more than one 'make install' at a time. Bahman Mel wrote: On Wednesday 05 September 2007 18:46:39 [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Not automatically, but if you know which ports need to be done next, nothing stops you from doing: cd /usr/ports/category/port make fetch on a different terminal. OK... Downloading should never interference with compiling (other than faster consumption of disk space :) ), so this is an improvement that can/should be made. Send the recommendation to the commiters? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: a quick jails question
Quoting Adam J Richardson [EMAIL PROTECTED]: Jonathan Horne wrote: will a NFS server run in a jail? im guessing no, that it falls into the funny services category (like snmp) that wont run right in a jail. thanks, Hi Jonathan. Forgive my curiosity, but why would you run NFS in a jail? Regards, Adam J Richardson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] well, right now i have one physical server, running 4 jails (my web, mail, and 2 dns). my file server, is actually my desktop. i would like to transfer this data to my server (so that the data lives on the RAID), and just do a new jail that i serve my files from (also, transferring build duties over to this physical server, via the file-server jail). i still need to test if it still works the same (im guessing yes, but i really dont know until i try it) to build my world and kernels that i need from a jailed host, but i have a long way to go on that project. also need to make sure samba still works as expected, and a couple other things. all, so i dont have to make sure my desktop is onlie if i need to access some files :). cheers, (and first list-post, from my new horde install! woot!) -- Jonathan Horne http://dfwlpiki.dfwlp.org [EMAIL PROTECTED] This message was sent using IMP, the Internet Messaging Program. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
Philip M. Gollucci wrote: Bahman M. wrote: [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Wouldn't portupgrade --fetch-only work? Run this first to grab everything, then build. Not exactly what you asked for, but close MikeC ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /usr/ports portupgrade when only using packages
Michael C. Cambria wrote: I need to set up a system that can only use packages. I've always used ports, so I'm not exactly sure if I'm doing things properly. Should I (do I need to) use portsnap to populate /usr/ports? Unless I really need something that doesn't have a pkg available, I will not be using ports. I've always used portupgrade, and plan to do so, using -PP (only packages) for this setup. My first question is should I? Doing'pkg_add -r portupgrade' and it installed fine. Using pkgdb -F however, resulted in these messages: bsd# pkgdb -F cd: can't cd to /usr/ports cd: can't cd to /usr/ports/ports-mgmt/portupgrade cd: can't cd to /usr/ports Chcecking the package registry database Any help appreciated. Hi Mike. Let me see if I've got this... you want to be able to install packages, but not ports. Well, that's easy... # rm -R /usr/ports Saves you a load of disk space, too. The only downside is you get slightly older versions of software with packages. Oh, and don't use portsnap, it'll undo that rm -R for you. Using portupgrade -PP works perfectly well on those rare occasions when I want to install a package rather than a port. I guess you could delete all executables matching port*, but that might be going too far. You could get rid of two of those error messages by doing a: # mkdir /usr/ports Regards, Adam J Richardson ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /usr/ports portupgrade when only using packages
On Wednesday 05 September 2007 17:42:55 Michael C. Cambria wrote: I need to set up a system that can only use packages. I've always used ports, so I'm not exactly sure if I'm doing things properly. Should I (do I need to) use portsnap to populate /usr/ports? Unless I really need something that doesn't have a pkg available, I will not be using ports. I've always used portupgrade, and plan to do so, using -PP (only packages) for this setup. My first question is should I? It needs the ports tree to know which packages to *upgrade*. I know of no ports management system that is able to use only binary and no ports tree. If you need to save space, consider mounting /usr/ports via nfs. Now, whether you should use portupgrade...I'm not very positive about it and currently writing my own tools to do just that. I found that portupgrade uses a lot of things it shouldn't need to when in -PP mode (most notably running make all-depends-list before installing a new port and unpacking the entire package just to read it's +CONTENTS file for dependencies). With an ever growing ports tree and the recent Xorg split, adding ~200 new packages to the basic install, I find it to become very slow. If you're going to be using packages you build yourself on a build machine, like I'm doing, you're even in for a bigger surprise, because they are built using the 'packages' target. This target creates plist, which then becomes the packages' +CONTENTS file, on many occasions different from what has been installed on your build machine. You could manage with pkg_add/pkg_delete, but then: 1) *You* have to find out which packages are eligible for upgrading 2) Upgrading a package will mean delete the old version before installing the new one 3) *You* will have to backup libraries manually. (Yes, I realize portupgrade does this) -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /usr/ports portupgrade when only using packages
On Wednesday 05 September 2007 20:34:56 Adam J Richardson wrote: Well, that's easy... # rm -R /usr/ports Saves you a load of disk space, too. The only downside is you get slightly older versions of software with packages. Oh, and don't use portsnap, it'll undo that rm -R for you. Using portupgrade -PP works perfectly well on those rare occasions when I want to install a package rather than a port. I'm really interested in seeing the output of portupgrade -PP after rm -R /usr/ports mkdir /usr/ports. -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: /usr/ports portupgrade when only using packages
Mel wrote: On Wednesday 05 September 2007 17:42:55 Michael C. Cambria wrote: I need to set up a system that can only use packages. I've always used ports, so I'm not exactly sure if I'm doing things properly. Should I (do I need to) use portsnap to populate /usr/ports? Unless I really need something that doesn't have a pkg available, I will not be using ports. I've always used portupgrade, and plan to do so, using -PP (only packages) for this setup. My first question is should I? It needs the ports tree to know which packages to *upgrade*. I know of no ports management system that is able to use only binary and no ports tree. If you need to save space, consider mounting /usr/ports via nfs. My goal isn't to save space. I don't have the cpu power to build all these (and multiple times) on each machine. Reading the man pages and the handbook about using packages didn't say anything about needing /usr/ports, so before I went and used portsnap etc. I thought I'd ask first. [deleted] You could manage with pkg_add/pkg_delete, but then: 1) *You* have to find out which packages are eligible for upgrading 2) Upgrading a package will mean delete the old version before installing the new one 3) *You* will have to backup libraries manually. (Yes, I realize portupgrade does this) Yup, that's the point of my wanting to use portupgrade ;-) It's worked OK for me since it's inception. Thanks, MikeC ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: errors after running make
On Wed, 5 Sep 2007, Terrence Wilson wrote: I'm trying to install ndiswrapper from a .tar.gz file. I'm running make for the first time, so I am unfamiliar with it. But I have read instructions for installing ndiswrapper. I keep getting errors, but I'm not sure what I'm doing wrong. Here's what I did. I copied the ndiswrapper-1.47.tar.gz file from cdrom to /usr/src directory. Then: # cd /usr/src # tar -xvf ndiswrapper-1.47.tar.gz # cd ndiswrapper-1.47 # make After running the make command, I get an error message which goes line by line like this: ... Makefile, line 57: Need an operator Makefile, line 60: Need an operator Makefile, line 67: Need an operator ... Makefile, line 109: Missing dependency operatpr Makefile, line 111: Need an operator Makefile, line 112: Missing dependency operator ... Error expanding embedded variable. *** Error code 2 Stop in /usr/src/ndiswrapper-1.47. After this, the root command prompt returns. Am I working with a makefile that needs editing or has errors; or what else I am doing wrong? As someone else said it's been in base for a while and the ndiswrapper you downloaded only works with the linux kernel since the one in base had to be modified to work ont he freebsd kernel, oh yeah it's not called project evil for nothing :) it might panic your kernel and it might not. Just so you know before it happens ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Hi, I'm trying to set up a home mailserver with imap/web access. But I was going to use exim. Several people mentioned postfix here, but nobody named exim. Is it a matter of personal preference or is exim not suitable for this task? Thanks, Andrey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Sadly, my tinker-time has run out....
I apologize for that last comment... That was uncalled for. Ted brings out the best in people. snip an unnecessary explanation But I'll be damned if you don't parse me off sometimes. :) Ted brings out the best in people. That is my job. The ONLY way to get someone to re-examine their assumptions is to piss them off. Really? Funny, not one of my college professor's ever pissed me off with rude, arrogant, offensive and generally hasty sweeping statements in an attempt to get me to open my mind and examine my thought process. It's why politicians get more votes rabble-rousing than telling everyone how great things are. If you say so... And naturally, those that don't want to re-examine their own ass-umptions don't like being pissed off, don't like rabble-rousers, and bitch when they see rabble-rousing. I question my own thoughts and motives all the time, and I don't typically enjoy being pissed off, but I do like to raise hell from time to time. So, by your logic Ted; I'm an enigma? But, change never happens easy. Yeah, people have been trying to teach you some manners for years Ted, and YOUR right; it's never been easy or accomplished as evidenced by your ability to simultaneously piss off various people from various parts of the world on two different threads at once. Good Job. Your not going to get a Windows users switched over to Open Source unless you piss him off - force him to defend his ass-umption that Windows is the greatest operating system since sliced bread. Doing this is what gets him to re-examine his assumptions. And that is after all the name of the game here - to get the people away from the unhealthy MS monopolizing of the computer business that are salvagable. Anyway... A public apology for a public ass-showing... And I don't want to leave the board with the impression that I'm an ass (or at least a complete one), That's not the impression I was left with. No problem Mike - and I apologize as well for saying you were whining. You should, that's one of your sweeping hasty generalizations about someone you've never even met. snipped the rest of the blah, blah, blah, blah lecture as I've wasted enough bandwidth already Bob ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
On Wednesday 05 September 2007 20:09:46 [EMAIL PROTECTED] wrote: Bahman M. wrote: [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Just login on multiple consoles or use multiple x terminals (if running X) and on each one run 'make' for the port you want to compile. The port(s) will be fetched and compiled simultaneously. Then all you need to do is to run 'make install' for each port. Note: I'm not sure but I think it's not a good practice to issue more than one 'make install' at a time. Bahman Mel wrote: On Wednesday 05 September 2007 18:46:39 [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Not automatically, but if you know which ports need to be done next, nothing stops you from doing: cd /usr/ports/category/port make fetch on a different terminal. OK... Downloading should never interference with compiling (other than faster consumption of disk space :) ), so this is an improvement that can/should be made. Send the recommendation to the commiters? I think the logic of what ports need to be done next is hard to work into the basic ports system. You could request the feature from the various ports in /usr/ports/ports-mgmt - software like portupgrade should be able to build a list of ports that need updating and start fetching in background. -- Mel People using reply to all on lists, must think I need 2 copies. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: ports collection background-fetch
[EMAIL PROTECTED] wrote: Bahman M. wrote: [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Just login on multiple consoles or use multiple x terminals (if running X) and on each one run 'make' for the port you want to compile. The port(s) will be fetched and compiled simultaneously. Then all you need to do is to run 'make install' for each port. Note: I'm not sure but I think it's not a good practice to issue more than one 'make install' at a time. Bahman Mel wrote: On Wednesday 05 September 2007 18:46:39 [EMAIL PROTECTED] wrote: Is it possible to do automatic fetching of source files in the background while other parts are being compiled? Not automatically, but if you know which ports need to be done next, nothing stops you from doing: cd /usr/ports/category/port make fetch on a different terminal. OK... If you know the full list of leaf ports you want installed, you could do something like this for each port, which should fetch and allow you to config all your ports. You could run this on a seperate terminal for each port. # cd /usr/ports/category/port make config-recursive fetch-recursive Downloading should never interference with compiling (other than faster consumption of disk space :) ), so this is an improvement that can/should be made. Send the recommendation to the commiters? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[Fwd: Re: mail server setup questions]
---BeginMessage--- Andrey Shuvikov wrote: Hi, I'm trying to set up a home mailserver with imap/web access. But I was going to use exim. Several people mentioned postfix here, but nobody named exim. Is it a matter of personal preference or is exim not suitable for this task? Thanks, Andrey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] We have a exim at the University of Arizona and works really well (but I am just a user not a sysadmin). I had the same question since I have use sendmail as my home server but I am really curious what more knowledgeable people have to say on this topic. Regards Predrag P. S. I apologize for my previous mail that was of topic but I was truly offended. ---End Message--- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: mail server setup questions
Andrey Shuvikov wrote: Hi, I'm trying to set up a home mailserver with imap/web access. But I was going to use exim. Several people mentioned postfix here, but nobody named exim. Is it a matter of personal preference or is exim not suitable for this task? Thanks, Andrey ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] We have a exim at the University of Arizona and works really well (but I am just a user not a sysadmin). I had the same question since I have used sendmail as my home mail server but I am really curious what more knowledgeable people have to say on this topic. Regards Predrag P. S. I apologize to everyone for my previous mail on this thread that was of topic but I was truly offended. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]