Re: BSD sleep

2013-05-29 Thread Modulok
I'm personally a fan of a forest-green bike shed myself...

 It would still just be doing one thing - sleeping.

I agree. Perfect solution fallacy aside, a sleep option with basic time
increments would be useful for real-world purposes. I'm in favor of computing
it as a multiple of seconds as previously outlined. We don't need to contrive
the sleep function for every possible corner case until it's reduced to
something complicated, buggy and unreliable. As long as it doesn't break
existing code, new and useful options are appreciated.

As a programmer, if I say sleep for 1 hour I expect it to sleep for 3600 local
seconds from the time the call is made until it wakes up again without any
absurd gotchas. If the real-world time elapsed is more or less than 3600
seconds due to an internal clock error - fine. That's a different problem
altogether.

My 2 cents.
-Modulok-

On 5/29/13, RW rwmailli...@googlemail.com wrote:
 On Wed, 29 May 2013 10:01:53 -0400
 Paul Kraus wrote:

 Agreed. When I first started dealing with Unix professionally (1995,
 I started playing with Unix-like OSes almost 10 years earlier) I was
 taught that each Unix command does one thing and does it well.

 It would still just be doing one thing - sleeping. Support for units
 usually comes under  and does it well. I wouldn't want to have to
 pipe df through awk to get MBs, or complicate find with arithmetic.

 Unit support in sleep is a perfectly legitimate thing to ask for, I
 don't think it particularly useful though, and leap-second support is
 close to pointless.
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Case sensitive usernames and sendmail - mystic voodoo

2013-05-26 Thread Modulok
List,

Step1: Make a new user::

root@localhost# pw useradd foo -m -s /bin/tcsh -h 0
password for user foo: (secret)

Step 2: Does sendmail know them::

root@modunix# sendmail -bv foo@localhost
foo@localhost... deliverable: mailer local, user foo

# Good...

Step 3: Make a new user with uppercase 'B'::

root@localhost# pw useradd Bar -m -s /bin/tcsh -h 0
password for user Bar: (secret)

Step 4: Does sendmail know them::

root@modunix# sendmail -bv Bar@localhost
Bar@localhost... User unknown


Curious, why? I know usernames are case-sensitive, I thought emails were
too. Without fighting an epic battle with with the sendmail configs, is
there a simple way to make this work?

The obvious answer is probably, usernames should be lowercase! and for
new users I'll enforce that policy. For existing users however, who may
already have lots of case-sensitive usernames in various config files,
etc this isn't a real option. By just altering their usernames I'm
afraid I'd break the whole damn universe. How can I enable mail for
them?

Cheers!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Case sensitive usernames and sendmail - mystic voodoo

2013-05-26 Thread Modulok
 Everything to the right of the @ is indeed case insensitive, but
 everything
 to the left might be case sensitive, depending on local policy.  This
 means
 you must preserve the case of everything to the left of the @ sign.

 According to the link provided by Erich Dollansky, FreeBSD's
 default sendmail.cf setting of

   Mlocal,   P=/usr/libexec/mail.local, F=lsDFMAw5

 needs to be added the u option to the F= parameter to preserve
 the uppercase letters in the the left side (username) of the
 address. Maybe this additiion is required in other cf files
 containing Mlocal settings too? Of course it would be nice if
 there was a corresponding setting for the mc files which the
 cf files are usually generated from...

So, best practices aside, this would be a bug in the default config?
(i.e. can I celebrate my bug-finding yet?)

Cheers!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Revoke a DHCP lease early?

2013-03-09 Thread Modulok
List,

I'm running isc-dhcpd to serve leases to clients. Is there a way to expire a
lease before it normally would, i.e. force a client to re-negotiate a lease
early? Perhaps some shell command akin to the following (which would be nice,
but obviously doesn't work)::

dhcpd --revoke 192.168.1.24

How do you revoke a client's lease prematurely?

Thanks.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Software raid VS hardware raid

2013-01-30 Thread Modulok
 My other concern is what happens when one drive goes down if we use
 gmirror? Is it completelly transparent
 and bad drive can be hot swapped while server is running and rebuild
 started?
 I am thinking now about gpt+gmirror (including boot and swap)

 Artem


Yes. In fact, you can test this by unplugging the data or power cable to a
drive while the server is running. I've done this with consumer sata drives
and, so far, not had a problem. The server stays up and running and disk access
is not interrupted. I can then plug in a new disk and add it to the gmirror and
the array rebuilds.

I've not tried this with gpt, so I can't comment there.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


LaTeX Error: File `utf8x.def' not found

2013-01-20 Thread Modulok
List,

I installed ``latex`` from packages. That part worked. When using latex
however, it gives me an error::

LaTeX Error: File `utf8x.def' not found.

Where do I get this file? Obviously I'm missing some package of extras or
something. Google reveals linux users solving this problem by installing
``unicode-tex``, but I didn't find a ``unicode-tex`` package in the FreeBSD
packages list on ftp.freebsd.org. Any pointers? I'm using this with Sphinx
on FreeBSD 8.3-RELEASE if that matters.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: LaTeX Error: File `utf8x.def' not found

2013-01-20 Thread Modulok
 In your LaTeX source file, you have \usepackage[utf8x]{inputenc}
 somewhere, and you're using UTF-8 characters for whatever reason.

 You need to install the port latex-ucs (in the print category)
 to make this work. I assume there's also a package for this.

Hmmm. LaTeX is called by sphinx to render some math in my python docs, so I'm
not sure where the utf-8 reference occurs, probably somewhere in the sphinx
framework.

I tried to install latex-ucs as suggested, which itself worked, but some of its
dependents didn't (output shown below). Also, why is teTeX a dependency? I
thought it was no longer maintained?

Thanks!
-Modulok-


Command output shown below:

# pkg_add -r latex-ucs
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/Latest/latex-ucs.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/printproto-1.0.5.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libwww-5.4.0_4.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/tex-texmflocal-1.9.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/font-amsfonts-3.02_1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/teTeX-texmf-3.0_8.tbz...
Done.
pkg_add: package 'teTeX-texmf-3.0_8' conflicts with latex2e-2003.12_1
pkg_add: package 'teTeX-texmf-3.0_8' conflicts with tex-3.14159_3
pkg_add: please use pkg_delete first to remove conflicting package(s)
or -f to force installation
pkg_add: pkg_add of dependency 'teTeX-texmf-3.0_8' failed!
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/texi2html-1.82,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/gd-2.0.35_7,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libXext-1.3.0_1,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libXp-1.0.1,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libXt-1.0.9,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libXmu-1.1.0,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libXpm-3.5.9.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/libXaw-1.0.8,2.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/t1lib-5.1.2_1,1.tbz...
Done.
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/ghostscript9-9.05_3.tbz...
Done.
pkg_add: package 'ghostscript9-9.05_3' conflicts with ghostscript9-nox11-9.05_3
pkg_add: please use pkg_delete first to remove conflicting package(s)
or -f to force installation
pkg_add: pkg_add of dependency 'ghostscript9-9.05_3' failed!
Fetching 
ftp://ftp.freebsd.org/pub/FreeBSD/ports/amd64/packages-8.3-release/All/teTeX-base-3.0_22.tbz...
Done.
pkg_add: package 'teTeX-base-3.0_22' conflicts with latex2e-2003.12_1
pkg_add: package 'teTeX-base-3.0_22' conflicts with tex-3.14159_3
pkg_add: please use pkg_delete first to remove conflicting package(s)
or -f to force installation
pkg_add: pkg_add of dependency 'teTeX-base-3.0_22' failed!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


[no subject]

2013-01-15 Thread Modulok
List,

When I boot the FreeBSD 9.1-RELEASE install CD, everything boots as expected,
except random letters appear in random colors. For example, a pink
'r' or a blue colon :, etc.

What could be causing this?

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


vidcontrol - How do I make these persist?

2012-11-26 Thread Modulok
List,

If I edit things via vidcontrol, e.g: `vidcontrol grey black` where do I put
this to make it persist across reboots on all terminals?

Cheers!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: 0

2012-10-16 Thread Modulok
1

On 10/15/12, abdou massnoue abdoumassnoue2...@gmail.com wrote:

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


pkgconf-0.8.9 conflicts...

2012-09-15 Thread Modulok
List,

I've been seeing a lot of this recently when I try to install new ports. The
following is on a fresh install of FreeBSD 9.0 Release, when I tried to install
linux-f10-flashplugin11 from ports. (It happens with several other packages
too)::

Stop in /usr/ports/www/linux-f10-flashplugin11.

pkgconf-0.8.9 conflicts with installed package(s):
pkg-config-0.25_1

So, I try this::

pkg_delete pkg-config-0.25_1

But of course I can't deinstall it because several hundred already installed
require it.

Suggestions?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: pkgconf-0.8.9 conflicts...

2012-09-15 Thread Modulok
Thanks! Everything works now. I should have read UPDATING before posting.

-Modulok-

On 9/15/12, Mark Felder f...@feld.me wrote:
 On Sat, 15 Sep 2012 10:33:09 -0500, modu...@gmail.com wrote:


 But of course I can't deinstall it because several hundred already
 installed
 require it.

 The required instructions to fix your problem are in /usr/ports/UPDATING.
 Just serarch for pkgconf.


 Cheers!

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Help solving the sysadm's nightmare

2012-07-21 Thread Modulok
 I have inherited a problem that is no cause for envy, the previous
 administrators had no idea what they were doing, so problems with a
 permission denied would be solved by chown -R 777 /whatever! Needless to
 say, it's a mess, and ofcourse everything is critical there is no room
 for interruption of service.

 Now, I have no idea which processes actually require access to those
 files, what privileges these processes run with and which files are
 actually executable or just plain files.

 What I know is that lots of files are on samba shares and lots of files
 are used by uniface9 application, but I don't know much about uniface or
 if this is actually executed on the client or on the server.

 At this moment my project is to migrate servers with these permissions
 to new servers, but those who prepared the OS have maintained the
 permissions from the older version because it's easier than actually
 investigating or understanding what's going on and find a solution. *sigh*

 So, how can I

 - determine if files are actually unix executables or just plain files
 (or windows executables)?
 - determine which users actually need read or write access to these files?

 the second is what I think is the most difficult, I need some lsof
 daemon to log access...



Sounds like a disaster. You're going to have to weigh out the risks of not
doing anything and being compromised vs. trying to fix it and breaking
something. Depending on how involved you want to get, much coffee may be
required. Here's some thorny ideas:

First, take a snap shot of the file system if you can. That way if things get
screwed up you can always revert back to a previous state. That is, if the data
is read-only. (*Evil laugh*) If you can, experiment with this snapshot on a
test box. If not, keep reading...

You could call lsof from a script repeatedly (or use lsof's own reapeat
functionality) for several days/weeks/whatever. Then parse the output to
produce a list of unique files, how they're being accessed and by who. Get
familiar with the lsof manual page, especially the section about 'OUTPUT FOR
OTHER PROGRAMS'. You might insert your results into a file-backed sqlite
database that you can later interrogate from a script via SQL queries.

Also, crawl the file system and generate *another* sql table, or even flat file
of permissions as they currently exist. This way you can, in theory, always go
back to how things were, if needed. Of course, you'll need to write a script to
do this permission-restore business too.

From there, crawl the first SQL table that you made of file access and set
permissions on those files appropriately. e.g: a file being accessed read/write
probably needs to be set read/write. This will be a job for another script. You
can also build a table of file permissions for known files e.g:
/etc/master.passwd should be root read/write and so on. You can build up your
initial database of known permissions by parsing a clean install with the same
scripts you just wrote. Also see the 'file' command to help identify
executables.

Obviously, you're going to have to be very careful. (Again, have the backup and
preferably the script that restores file permissions to what they were, first.)
Sounds like a job for python ;)

Finally, remember to *thoroughly* test your scripts on an dummy system first!
Perhaps a virtual box install where you don't have to worry about screwing
things up. The last thing you want, is to get fired for trying to fix someone
else's mistake. Tread carefully. Talk to the boss/owner/client about the pros,
cons and risks before taking on such a project.

Good luck with your nightmare.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


OT: Robotics or embedded or hardware programming... what is this called?

2012-06-20 Thread Modulok
List,

Sorry for the off-topic post. There are a lot of technically adept people on
this list, so I thought I'd try my luck here:

I want to get started programming for hardware. Motors, sensors, actuators, etc.
I have a programming background, (python, PHP, C++) but no experience with code
that drives hardware. (Motors, sensors, etc.)

I *don't* want closed-source kit robots where the point is to build the robot
the book and thats it. I also don't want ladder logic-based PMC's. Some kind of
micro-controller that runs a *nix flavor (or a BSD flavor!) would be great! (If
that's what I need.) Basically, I want to do stuff like if input1() is True
then apply_voltage_on_output3(), etc. Build my own traffic light, coffee
maker, mars rover, automatic-plant waterer, whatever.

What do you call this? Embedded programming? Generic hardware programming?
Robotics programming? Are there prefabricated, standard embedded boards and
hardware specs that play together like PC parts do? In short, I don't even know
where to start.

Even general pointers to books/websites would be great. Once I know what it's
called I can google much more effectively ;)

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Is this something we (as consumers of FreeBSD) need to be aware of?

2012-06-11 Thread Modulok
This thread has united the open source community into doing something useful
and constructive. Thanks guys. You really showed 'em.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Anyone using freebsd ZFS for large storage servers?

2012-06-02 Thread Modulok
 This thread confused me. Is the conclusion of this thread that ZFS is slow
 and breaks beyond recovery?

I've personally experienced no problems with ZFS. The performance has been on
par with UFS as far as I can tell. Sometimes it's a little faster, sometimes a
little slower depending on the situation, but nothing dramatic on either end.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Trouble installing py-sqlite3 port for python3.x

2012-03-31 Thread Modulok
List,

I'm *guessing* this is more of FreeBSD problem than a python one, so I'll ask
on this list. I'm trying to import sqlite3 in python3.2 on FreeBSD
8.1-RELEASE and ran
into trouble:

$ python3.2
...
 import sqlite3
Traceback (most recent call last):
  File stdin, line 1, in module
  File /usr/local/lib/python3.2/sqlite3/__init__.py, line 23, in module
from sqlite3.dbapi2 import *
  File /usr/local/lib/python3.2/sqlite3/dbapi2.py, line 26, in module
from _sqlite3 import *
ImportError: No module named _sqlite3


I assumed I was missing some operating system dependent sqlite3 package. When I
attempt to install the 'ports/databases/py-sqlite3' port, it worked but it
installed it for python2.6. (Importing sqlite3 works in 2.6) There are no
config options for this port to select a python version. Similarly there's no
sqlite3 related config options for the python3.2 port.

I then tried to use the python specific install tool, 'pip-3.2' to install the
python module:

# pip-3.2 install pysqlite

Unfortunately, it fails:

Downloading/unpacking pysqlite
  Real name of requirement pysqlite is pysqlite
  Downloading pysqlite-2.6.3.tar.gz (74Kb): 74Kb downloaded
  Running setup.py egg_info for package pysqlite
Traceback (most recent call last):
  File string, line 14, in module
  File /usr/local/lib/python3.2/codecs.py, line 300, in decode
(result, consumed) = self._buffer_decode(data, self.errors, final)
UnicodeDecodeError: 'utf8' codec can't decode byte 0xe4 in position 98:
invalid continuation byte
Complete output from command python setup.py egg_info:
Traceback (most recent call last):

  File string, line 14, in module

  File /usr/local/lib/python3.2/codecs.py, line 300, in decode

(result, consumed) = self._buffer_decode(data, self.errors, final)

UnicodeDecodeError: 'utf8' codec can't decode byte 0xe4 in position 98:
invalid continuation byte


Command python setup.py egg_info failed with error code 1
Storing complete log in /root/.pip/pip.log

The complete log file doesn't reveal much else. My environment doesn't contain
any python env var. I don't have any python config files overriding install
locations or anything. My /etc/make.conf file contains no python variables. I
can display UTF-8 characters on the console just fine e.g:

$ pytho3.2
...
 chr(0xe4)
'ä'

Suggestions, thoughts, ideas?


Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Removal of content from the mailing list

2012-02-10 Thread Modulok
On 2/9/12, yt corvusborea...@gmail.com wrote:
 Who should I talk to about removing a thread from the mailing list?

With the countless number of mirrors this list has, it's pretty much
impossible.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: software raid

2012-02-07 Thread Modulok
 Does FreeBSD support any type of software raid?
 I have an old rack mount server which has 8 bays, but all SATA,
 and NO raid. Sure would be nice to have a software raid
 to create a NAS device.

Yes!

An example of setting up a 3 disk raidz might look like this:

zpool create myfancyraid raidz ad4 ad6 ad8
zfs create myfancyraid/foo
zfs set mountpoint=/usr/foo myfancyraid/foo
zfs mount -a
cd /usr/foo
echo hello world  hello.txt

Yay! Then edit /etc/rc.conf to enable zfs at boot time:

echo 'zfs_enable=YES'  /etc/rc.conf


How's my raid doing today? Cake:

zpool status
zfs list

You can even mix and match raid and encryption. Below, I put a raidz on top a
geli encryption layer on three devices. (There are other ways to do this too.)
When it comes time to decommission disks, there's no company data leaks
(depending on your needs):

# Create the geli:
geli init -b -e AES -l 256 /dev/ad4
geli init -b -e AES -l 256 /dev/ad6
geli init -b -e AES -l 256 /dev/ad8

# Attach it or reboot:
geli attach ad4
geli attach ad6
geli attach ad8

# Make the zpool and Z file system:
zpool create myfancyraid raidz ad4.eli ad6.eli ad8.eli
zfs create myfancyraid/foo
zfs set mountpoint=/usr/foo myfancyraid/foo
zfs mount -a

Then edit /boot/loader.conf to load geli at boot time::

echo 'geom_eli_load=YES'  /boot/loader.conf

Finally, add the bit about ZFS to /etc/rc.conf::

echo 'zfs_enable=YES'  /etc/rc.conf

You'll be asked for the password to each provider (disk) at boot time before
the system enters multi-user mode. Make sure you have console access
and a backup copy of the password somewhere!

A word on graid3: For a multi-user file server, serving lots of small requests,
graid3 is about the worst performance you can get due to its raid3 nature.
Requests have to be served sequentially, using all disks in the array.
Slow in my experience.

Good luck!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: 'rm' Can not delete files

2012-02-07 Thread Modulok
On 2/7/12, Коньков Евгений kes-...@yandex.ru wrote:
 # rm *
 /bin/rm: Argument list too long.


 in this directory about 25000 files,
 but actually there is only one argument to rm it is '*' sign.

 Why rm get list of all files in directore instead of deleting one by one?

If you're removing everything, can you just remove the directory and re-create
it? e.g:

cd ..
rm -rf foo
mkdir foo

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


setuid directories - or other option?

2012-02-04 Thread Modulok
List,

I have a media project directory shared with windows users via samba. Every
authenticated samba user that accesses the directory is forced to the same
FreeBSD user, 'foo', regardless. The group also has write-access:

drwxrwxr-x  47 foofoo 2.5K Feb  4 05:42 foo/

Local shell users, however, are a problem. Ideally, I want a simliar behavior
for them too i.e. Any files they create in the directory are also owned by the
user 'foo'. How do I do that? (See below about setuid.)

I wouldn't even care who owns the files, so long as file permission bits in
this directory defaulted to 664 so every member of the group 'foo' could edit
them. Can I do this without changing every user's default umask? (I want to
avoid that.) Is there some kind of 'umask for this directory is blah' feature?

I looked at setuid bit on directories. Sounds perfect! BUT I'll be moving to
ZFS soon and from what I gather, it won't work there. I guess I could have a
cron job run every minute and change offending permission bits, but that feels
hacky.

Any other ideas?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: what are the top python books?

2012-01-25 Thread Modulok
 sorry if this is a re-request and a bit OT, but, it's seriously
 time i got myself in gear and bought or borrowed a book or CD // DVD
 that teaches python.

If you want to learn python, first subscribe to the python tutor
mailing list. It's pretty much just like the FreeBSD list. In fact, I
think it uses the same exact software to run it and is configured on
about the same schedule. (List reminders come the same day.)

tu...@python.org

Next, the best book I've ever read on python was Python Essential
Reference by David M. Beazley. It's a very dry book but he covers
just about everything in the most concise way possible.

For a more basic introduction to the subject I would look at
www.diveintopython.net (The guy gives away his entire book online -
And it's pretty good! He's also a frequenter of the python tutor
list.) Once you get into the flow of things, look at
www.pythonchallenge.com it makes you use the language to solve
problems in an interesting way. Then, once you have mad skills check
out http://projecteuler.net/

Good luck!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


idletime in login.conf

2011-10-30 Thread Modulok
List,

Goal: Automatically logoff users that are idle after 'x' minutes.

Attempt: I added this to /etc/login.conf to the default login class:

:idletime=10m:

I then rebuilt the database:

cap_mkdb /etc/login.conf

Problem: It doesn't work. The 'w' command shows users idle for 20 minutes or
more. I'm missing something. Other than an autologout shell variables, how do I
force idle users to logout?

Thanks.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


How to find out which version of PF a given box is using...

2011-09-21 Thread Modulok
List,

Is there an easy way to find out what version of PF a given FreeBSD version is
using? Currently I'm doing this:

grep -iE '\bpf\b' /usr/src/UPDATING

Just wondering if I'm missing something. I didn't see any '--version'
flag in pfctl.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: copying hard drives

2011-06-10 Thread Modulok
 I would like a way to take peoples windows -or- unix systems and
 store each on portable hard drive as a single file - so that in the
 end I have a large, say 2TB drive with a number of peoples operating
 system backed up - that can later be restored.

Use dd to make a sector-for-sector level copy into a file. It will work
regardless of the operating system you're copying. However, be aware that
some operating systems do not have a hardware abstraction layer. As such
their kernels are optumised to run on the hardware they were installed on.
They can can only be restored to the exact same hardware. This is usually
the case with WindowsXP. (Though you can still mount and extract data
from the dd generated image.)

dd if=/dev/ad6 of=foo.bin bs=1m

 It would be nice to have the operating system on a stick - so I
 could boot into the program from a clients computer, connect a large
 drive, and backup their entire drive.

You can do this with any 'live' operating system. Most UNIX like systems offer
a comparable 'dd' command. For example, you could boot to an Ubuntu CD, or even
Freesbie, if that's still around.

 which I know dd can do - but I wonder if there is a way to do this so that
 clone drive can be smaller that the original.

For this on FreeBSD, use dump(8) and restore(8) commands. Of course, they will
only be suitable for FreeBSD, as they are file system (UFS) dependent.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Long Day's Journey into Bleep

2011-06-09 Thread Modulok
 But I have a general question: have any of
 you wizards who run your own domains or otherwise use a switch [or
 hub] *ever* had it just-quit?!  It is solid-state.

I've had a Linksys switch crap out. I've also had a Netgear switch die. In
fact, there were three Netgear switches that died within a few months of each
other. At first they would simply lock up at random. After that they didn't
work at all. We later discovered it was a capacitor problem. (Google 'capacitor
plague'.) We replaced it with a HP ProCurve switch a few years ago and it has
been rock solid ever since. My only complaint is the proCurve has a very
inaccurate internal clock, but that is easily remedied by configuring ntpd on
it. So yeah, even solid state stuff can die!

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: FreeBSD Python version

2011-05-25 Thread Modulok
On 5/24/11, Patrick Brookings patr...@icebluehost.com wrote:
 Hello,

 Can you please tell me what standard version of Python comes with the latest
 FreeBSD?
 And also, is it possible to upgrade to a newer version without breaking
 other functionalities?

 I am asking because more and more scripts require at least Python 2.5,
 whereas CentOS for example only comes with 2.4.3, and it's pretty much
 impossible to upgrade the system Python without breaking yum and things like
 that.

You can install any version you want. Nothing in the FreeBSD base system
requires python. In fact, I have multiple versions installed on FreeBSD right
now. I'm running python 2.6, 2.7 and 3.2. In your hash bang line, just specify
the version that a specific script should run as. Something like:

#!/usr/bin/env python2.6
'''I'll use python 2.6'''


#!/usr/bin/env python2.7
'''I'll use python 2.7'''


#!/usr/bin/env python3.2
'''I'll use python 3.2'''


#!/usr/bin/env python
'''I'll use whatever version `which python` returns.'''


-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Filename containing French characters ?

2011-05-23 Thread Modulok
Short answer, use a glob pattern. Assume I have a file named 'à fichier.txt':

ls -l
-rw-r--r--  1 Modulok  Modulok   12 May 23 09:01 ?? fichier.txt

mv ?\ fichier.txt aFile.txt

Long answer, for those who want to follow along and fix their terminal to
display UTF-8, keep reading...

Step 1: Make a funky file to play along with this min-tutorial:
===

Create a text file with an editor that supports non-ASCII characters. I
created a file named 'filename' which containing this (no newline!):

à fichier.txt

Step 2: Create the actual file with content
===

I used echo and cat like so in the tcsh shell:

echo hello world  `cat filename`


Step 3: Show the file in ls
===

As you can see below, the first character of the filename is displayed as two
question marks. This is the terminal's way of showing filenames that it cannot
display correctly. There are two question marks, because this is a two-byte
character. This does *not* mean the filename starts with a literal question
mark:


-rw-r--r--  1 Modulok  Modulok   12 May 23 09:01 ?? fichier.txt

Step 4: (optional) Fix the terminal
===

At this point, let's just fix the terminal so that UTF-8 characters are
displayed correctly. We want to see the French accented 'à', and not a bunch of
question marks. To do this, you edit '/etc/login.conf' as root. Add two lines
at the bottom of the 'default' section. My default section now looks like this:


default:\
:passwd_format=md5:\
:copyright=/etc/COPYRIGHT:\

...and so on...

:charset=en_US.UTF-8:\
:lang=en_US.UTF-8:

If you're a French operation yours should probably look like this instead:

default:\
:passwd_format=md5:\
:copyright=/etc/COPYRIGHT:\

...and so on...

:charset=fr_FR.UTF-8:\
:lang=fr_FR.UTF-8:

I'm not certain on these for all countries, but the above examples work. We
then need to rebuild the actual login database. Execute the following command
as root:

cap_mkdb /etc/login.conf

This generates /etc/login.conf.db from /etc/login.conf. Now log out and then
back in!


Step 5: Back to the funky file
==

You should now see the actual accent characters correctly in the terminal.
(Assuming your terminal supports this):

-rw-r--r--  1 Modulok  Modulok   12 May 23 09:01 à fichier.txt

In some ternimals, we cannot type these characters. So you can access the
filename through a shell glob pattern. In most shells, the glob pattern '?'
matches any single character. The forward slash escapes the space in the
filename.

mv ?\ fichier.txt aFile.txt


Hope this helps (and doesn't get too mangled.)
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Piping find into tar...

2011-05-04 Thread Modulok
List,

I've been playing with the find command lately. Is there a way I can pipe the
putput list of files from find, into the tar command to create an archive which
contains the files which find lists? I tried the following, but it didn't work
(obviously).

find -E . '.*\.txt$' -print | tar -cjf result.tgz

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Piping find into tar...

2011-05-04 Thread Modulok
 By the way, in reference to the commands above the -j option is for
bzip2, so the extension should be .tbz o_O

Thanks everyone! I went with the following, because it works regardless of
space characters in filenames. (Thanks for the correction on the extenion. It
should indeed be 'tbz' when using the 'j' flag.)

find -E . -regex '.*\.txt$' -print0 | xargs -0 tar -cjf result.tbz

As for pax, I thought tar could create pax archives too, via the --format pax
option?

Cheers Everyone!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Password theft from memory?

2011-04-27 Thread Modulok
 On Sun, Apr 24, 2011 at 7:10 PM, Modulok modu...@gmail.com wrote:
  I don't know if this is a problem on FreeBSD...
 
  Process A requests memory.
  Process A Stores a plaintext password in memory or other sensitive
  data. Process A terminates and the memory is reclaimed by kernel.
 
  Process B requests a *huge* chunk of memory.
  Process B crawls the uninitialized memory, looking for ProcessA's
  previously stored password.
 
  Does anyone know if this is even possible on FreeBSD?

 AFAIK it's the responsibly of the programmer to avoid  data leaking.
 Passwords are commonly overwritten as soon as they no longer needed. I
 think geli keeps persistent key information in kernel wired-memory.

If you're writing in an language which has direct memory access you can easily
overwrite sensitive regions of memory upon program exit. But what about higher
level, dynamic languages where direct memory access is not available? For
example, if I write program in Python (or a some other language) which
processes plaintext passwords or credit card numbers, on a shared host, can
that data be found in memory by another user's process designed to recognize
such patterns in large allocations? (Patterns like SS numbers, credit cards,
regions near strings like 'password' and so on.)

I know that each process has its own private memory segment, but after a
process exits, it nolonger owns that memory. What happens to it? If it's not
zeroed out by my process, and it doesn't turn into pixie food, and it's not
zeroed out by malloc... it still exists somewhere.

Maybe this would be best on hackers?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Password theft from memory?

2011-04-24 Thread Modulok
I don't know if this is a problem on FreeBSD...

Process A requests memory.
Process A Stores a plaintext password in memory or other sensitive data.
Process A terminates and the memory is reclaimed by kernel.

Process B requests a *huge* chunk of memory.
Process B crawls the uninitialized memory, looking for ProcessA's previously
stored password.

Does anyone know if this is even possible on FreeBSD?

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Is it safe to run tcpdump?

2011-03-05 Thread Modulok
What do you mean by 'safe'?

The only side affects I can think of to running tcpdump on an
interface constantly, is the generation of large log files (if you
re-directed to log files) as well as the fact that it usually puts an
interface into 'promiscuous mode'. (See the -p flag.) This offloads
network traffic onto the cpu which could introduce additional network
latency for high throughput networks in some situations. (As far as
how much latency, if any, and whether it's actually a problem depends
on many factors. Test it.)

Other ways to generate network logs would be via the logging feature
of the PF firewall. You can setup specific rules to capture tcpdump
compatible logs and send them either to a log file or to a pseudo
network interface (the pflog device) for live viewing. There's a
chapter about this covered in Peter Hansteen's The Book of PF.

-Modulok-


On 3/5/11, erikmccaskey64 erikmccaske...@zoho.com wrote:
 Is it safe to always run tcpdump on the server, e.g.: like this:


 tcpdump -qn dst net 192.168.1.0/24


 I need it to audit the network .. :\

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: GELI reliability

2011-02-25 Thread Modulok
 I've used ZFS over GELI in the past, but never had any hardware issues to 
 see how it plays out.

I have no idea on that kind of a setup. If I were you I'd make a test
system, start an scp command to copy some file from another machine,
then start unplugging hard drives. When done, run a diff on the copied
file and the original (or at least a checksum) to see if it worked
out. I'd do it for you and report back, but at the moment I don't have
the hardware to spare.

Let us know how it goes ;-)
-Modulok-

On 2/25/11, Terje Elde te...@elde.net wrote:
 Hi,

 I'm curious about GELIs theoretical behavior when faced with errors, and
 also any experience anyone might have.

 As an example, if I run ZFS with raidz over X drives, then the zpool should
 have no issue surviving the complete loss of a full disk.  Also, the
 familiar FAILURE - READ_DMA or READ_DMA48 errors from a disk having a bad
 day should also be no issue, certainly not an issue that would result in
 crash, or worse still, loss of data.

 What I'm wondering is how much worse off the data would be if I were to
 slide inn a GELI layer between the physical drives, and the zpool.

 That is, if I use GELI directly on the individual drives ( /dev/ada0,
 /dev/ada1 etc), then make a raidz pool on top of the .eli devices (
 /dev/ada0.eli, /dev/ada1.eli etc).

 For READ_DMA type errors, I suppose GELI could just forward the same errors
 up the stack, and that'd be that, the errors wouldn't be any more severe
 than what I'd have anyway?

 One exception could be if GELI sector size is larger than disk sector size.
 Not being too familiar with GELIs internal workings, I'm not sure that has
 to be the case though.  GELI sectors have a new IV pr. sector, but the
 crypto itself is still done in 128 or 256 bit blocks, so given a single
 faulty disk sector, the rest of the GELI sector could still be read and
 decrypted?  Or are entire GELI sectors faulted if a (smaller) underlaying
 sector is unreadable?

 And finally, what if an entire drive dies a cruel and horribly death, all of
 it's data returning to the large bit bucket in the sky?  Would GELI simply
 relay the same errors upstack to ZFS, so ZFS would be able to handle it as
 well as it would have without GELI?


 I've used ZFS over GELI in the past, but never had any hardware issues to
 see how it plays out.

 I'm considering deploying it for more stuff now, and reliability wise, from
 what I know, I could loose very little by using GELI, or it could be time to
 buy napkins, because the risk of a grown man crying while trying to mop up
 spilled bits from the floor is increased significantly.

 (backups should avoid the need for tears though, besides, I don't have a
 mop)

 Terje

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: FreeBSD and SSD drives

2011-02-13 Thread Modulok
So... how about those solid state drives... yup.

-Modulok-

On 2/13/11, Chad Perrin per...@apotheon.com wrote:
 On Sun, Feb 13, 2011 at 07:38:01AM -0500, Jerry wrote:

 Bloat is a purely subjective term. What one user considers bloat
 could very well be a requirement for another use. For example, while
 you might consider it bloat to have drivers for modern wireless N
 protocol cards, many other users have a real need for them.

 If one OS has about a gigabyte installed size and another more like
 fifteen to twenty, and both are suitable to accomplishing everyday tasks
 for a given user, the latter is bloated.  It doesn't matter if your
 favorite 5% of the latter system is different from mine, and we consider
 different parts of the system bloat, it's still bloated to both of us.
 This is why good design concepts like modularity are . . . good design
 concepts.

 Well, it's *one* reason, among many.

 Shame Microsoft never caught on to that concept.



 I have four PC present working in my home. Three are FreeBSD machines
 and one a Win7 one. The Windows machine is essential, if for no other
 reason than there is software that is just not available on a FreeBSD
 platform. Or if it is available, it is of very poor quality.

 You use what you need.  I get that.  I never disputed it.  On the other
 hand, needing something because of a particular couple of requirements
 does not mean it's well designed.



 MS Office is a perfect example. Despite all of the rubbish the FOSS
 community has spewed for over 10 years, OpenOffice is nothing more than
 a poor clone of Office 97. The newly released libreoffice might be
 usable someday; however, it is now only in its infancy. There is no way
 it can be compared to a full blown MS Office 10 suite.

 OpenOffice.org and LibreOffice offer functionality MS Office does not,
 just as MS Office offers functionality they do not.  Different people
 have different needs, and those office suites serve slightly different
 needs.  On the other hand, OpenOffice.org and LibreOffice encompass more
 MS Office functionality than MS Office does of OpenOffice.org and
 LibreOffice functionality.  Since it became a household term (at least in
 the open source community), for instance, OpenOffice.org has supported a
 wider range of MS Office documents than MS Office, thanks to the fact
 that despite its much-ballyhooed adherence to backwards compatibility,
 MS Office has tended to (intentionally?) break file format compatibility
 between release versions.

 Of course, office suites are collectively steaming garbage anyway.



 Until the FOSS can write applications that are not only compatible
 with, but as fully functional as MS Office and similar software, as
 well as provide drivers in a timely manner (and I am still waiting for
 Java to be updated to the latest version so that it will work with the
 FreeBSD version of Firefox, or for acroread9 to actually work and play
 well with others, etc), Microsoft will always be a requirement for many
 end users.

 When your criteria for success are identical to someone else's
 software, you're just creating a rigged game, where the someone else
 is the only possible winner -- because its efforts are in your eyes the
 standard of excellence no matter what its efforts produce, and everyone
 else just has to play catch-up.  It has nothing to do with actual
 quality, usefulness, or productivity.

 It's funny you are complaining about open source developers not doing a
 good job by pointing out that closed source developers aren't doing their
 jobs, by the way.  You are aware that both components of the complete
 Java system and Adobe's PDF reader are both closed source software --
 right?



 This is in no way a condemnation of FreeBSD, or any other open-source
 product.

 . . . aside from the part where you blame open source developers for all
 the ills of the world above.  Okay, so I exaggerate -- but you seem to be
 trolling rather than making a salient point.



 It is just a simple statement of fact. The majority of users, despite
 what they may publicly proclaim, want software and hardware that just
 works. I had installed an older nVidia GeForce GT 220 card in an older
 PC and then discovered that there was no sound being emitted by the
 machine. Wasting valuable time, I finally discovered that I had to
 modify the sysctl.conf file. Crap like that should just not happen.

 I agree that there should be ways to handle such things without forcing
 minimally competent computer users to search documentation for
 information about how to use sysctl to make sound work.  Sane defaults
 and reasonable levels of autoconfiguration, at least as *options*, are
 good things.

 On the other hand, I wish I had the option of searching documentation and
 using a simple tool like sysctl to make graphics work on an MS Windows
 system a few years back.  Instead, I ended up having to just use a
 different 3D graphics adapter because the one I had refused to work

Installing gnome2 problems...

2011-01-26 Thread Modulok
List,

I tried to install gnome2 today, but failed. I first tried using
pkg_add, but ran into a conflict where 'tdb-1.2.0 conflicts with
samba3.0.37_1,1'. I *need* samba3 as I use it for other network
services. So, I tried to build gnome2 from ports after disabling MAPI.
It *almost* worked, but the build still failed. I ran
gnomelogalyzer.sh as instructed, but it said the cause was unknown.

Before I built anything, I updated my ports tree via 'portsnap fetch
 portsnap update'. I'm on FreeBSD 8.1 RELEASE on amd64.

Any suggestions? Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: The book of pf...

2011-01-19 Thread Modulok
On 1/19/11, Peter N. M. Hansteen pe...@bsdly.net wrote:
 Modulok modu...@gmail.com writes:

 This book comes in two editions. The first was published in December
 2007, the second, November, 2010. Does anyone have this? And if so
 would I be correct to get the first edition instead? I know FreeBSD's
 pf lags being openBSD's, so I'm not sure which version of the book to
 get, if either are applicable to the version of pf that FreeBSD runs?
 (FreeBSD 8.1)

 I started updating the text for the 2nd edition due to the changes
 introduced in OpenBSD 4.7, (aka Henning's monster diff) plus a few
 other goodies such as pflow(4) that had turned up since the first
 edition's late 2007 release, but I took some care to keep samples in
 the older syntax where it's relevant.

 That means that for the FreeBSD parts, the second edition is up to
 date per roughly early October 2010 (FreeBSD 8.1-stable), with a not
 that for FreeBSD, we assume the 8 series.  If you're running an older
 release (ie a close descendant of whatever was -stable in late 2007),
 the first edition is likely better suited.

 For other differences between the two, you could probably get an idea
 by comparing the TOCs from the two editions' web pages (at
 http://nostarch.com/pf.htm and http://nostarch.com/pf2.htm
 respectively).  The second edition turned into a more thorough rewrite
 than I'd originally planned with some bits moving around. But if in
 doubt, why not get both? ;)

 But yes, for FreeBSD 8.1, you'll be happier with the second edition.
 FreeBSD's PF syntax is old-style, but some other relevant network
 config details changed between 2007 and 2010, and the second edition
 reflects this.

Peter,

Thanks for taking the time to reply! Your post answers a lot of
questions that I and others had. I have since purchased the second
edition of the book and am working my way through it. Thanks for
writing a book on the subject too. Without books such as yours, it
would be a far more frustrating world.

For anyone else tinkering with firewalls: virtual machines can
simplify the logistics.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: The book of pf...

2011-01-18 Thread Modulok
 No. The second edition also includes the syntax for FreeBSD 8.x.(It
 also includes the old sytnax for OpenBSD as well as the new syntax)

 --
 chs,

Thank you! That's what I needed to know.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


The book of pf...

2011-01-17 Thread Modulok
List,

The Book of PF: A No-Nonsense Guide to the OpenBSD Firewall

This book comes in two editions. The first was published in December
2007, the second, November, 2010. Does anyone have this? And if so
would I be correct to get the first edition instead? I know FreeBSD's
pf lags being openBSD's, so I'm not sure which version of the book to
get, if either are applicable to the version of pf that FreeBSD runs?
(FreeBSD 8.1)

Or perhaps someone could suggest something else? I read the examples
and basic handbook for pf, but wanted a bit more. I'm going to be
tacking a firewall project coming up and need to be well prepared.
Suggested readings appreciated.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: harddrive encryption

2011-01-17 Thread Modulok
On 1/17/11, Roland Smith rsm...@xs4all.nl wrote:
 On Mon, Jan 17, 2011 at 09:30:39PM +0100, Alokat wrote:
 Hi,

 is it possible to encrypt my full harddrive (excluding /boot) during a
 freebsd installation. Or do I have to do this after the installation
 manually?

 Currently you have to do it manually afterwards.

 Personally, I would not bother encrypting the OS data; there is nothing
 secret
 there, and it does have a performance impact. Plus it would provide ample
 material for a known-plaintext attack!


Modern ciphers such as AES are not susceptible to known plaintext
attacks. The advantage to full disk encryption, including operating
system data, is that nothing is ever accidently missed. The hard drive
can safely be thrown out when it fails or is decomissioned, with no
worry that some temporary file or database somewhere you forgot about,
wasn't on the right partition.

Regardless, these are only offline protections from physical theft for
low to moderately motivated attackers. If you had a database of
medical or financial records, disk encryption is probably a good
thing. Otherwise http://xkcd.com/538/

The real danger, is loss or corruption of the decryption keys. Make backups!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: File Listing

2011-01-10 Thread Modulok
On 1/10/11, pe...@vfemail.net pe...@vfemail.net wrote:

 Is there one single-line command I can execute that will list every file in
 every directory on my FreeBSD box?  I've been fussing with the ls and du
 commands, but the output is never quite complete.

You might look into the 'tree(1)' command. It's a third party package
that can be installed as:

# pkg_add -r tree

It has lots of flags to list files in various ways. By default it
lists all files in a tree-like format like this:

tree -a /etc
.
|-- X11
|-- aliases - mail/aliases
|-- amd.map
|-- apmd.conf
|-- auth.conf
|-- bluetooth
|   |-- hcsecd.conf
|   |-- hosts
|   `-- protocols
|-- crontab
... and so on...

You can also list files with full paths without indents and such. See
man tree after its installed. Another example:

tree -aif /etc
/etc
/etc/X11
/etc/aliases - mail/aliases
/etc/amd.map
/etc/apmd.conf
/etc/auth.conf
/etc/bluetooth
/etc/bluetooth/hcsecd.conf
/etc/bluetooth/hosts
/etc/bluetooth/protocols

There's also switches for how to handle symbolic links and staying on
one file system, depth limits, file limits, etc.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Is there a 'Y' (i.e. branch) version of a command pipe?

2011-01-09 Thread Modulok
On 1/8/11, Modulok modu...@gmail.com wrote:
 List,

 Is there a command that lets me send standard input to two different
 places at the same time? (i.e. non-sequentially.) Think of it like a
 pipe character, but with a 'Y' branch instead. Basically, I want to
 record standard input to a log file, but also send it to another
 command for processing.

 For example, let's assume we have a command called 'branch' and it
 copies standard input to the standard input of all arguments. We could
 use it like this:

 cat foo.txt | branch '/bin/echo  log1.txt' '/bin/echo  log2.txt'

 The first 'cat' would read the file, pass it to our theoretical
 'branch' command, which would then start two subprocesses, passing the
 input to both of them. The result result would be two copies of the
 file. (Obviously making copies of files is not my primary goal, just
 an example.)

 I guess another way of explaining it would be two write the same stdin
 to two named pipes and then have two different programs read from each
 pipe, getting the same output.

 I can probably write something in Python, but thought I'd ask first.
 Thanks!
 -Modulok-


Thanks guys! I'll look into the tee(1) command as suggested.

You guys rock :)
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Is there a 'Y' (i.e. branch) version of a command pipe?

2011-01-08 Thread Modulok
List,

Is there a command that lets me send standard input to two different
places at the same time? (i.e. non-sequentially.) Think of it like a
pipe character, but with a 'Y' branch instead. Basically, I want to
record standard input to a log file, but also send it to another
command for processing.

For example, let's assume we have a command called 'branch' and it
copies standard input to the standard input of all arguments. We could
use it like this:

cat foo.txt | branch '/bin/echo  log1.txt' '/bin/echo  log2.txt'

The first 'cat' would read the file, pass it to our theoretical
'branch' command, which would then start two subprocesses, passing the
input to both of them. The result result would be two copies of the
file. (Obviously making copies of files is not my primary goal, just
an example.)

I guess another way of explaining it would be two write the same stdin
to two named pipes and then have two different programs read from each
pipe, getting the same output.

I can probably write something in Python, but thought I'd ask first. Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: ZFS

2011-01-01 Thread Modulok
Probably. I think I've got like 10 of these on and off.

-Modulok-

On 1/1/11, Gabor Illo stagel...@gmail.com wrote:
 Spam?

 2010/12/6 freebsd-questions@freebsd.org

 Dear Sir/Madam,

 Your email was unable reach the intended person that you were sending it
 to.
 For more information on our business please click on the following link:
 Click here for our website http://www.xpbargains.net
 We look forward to your continued business in the future.

 Regards,
 Webmaster

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Terrible Clock Skew

2010-12-08 Thread Modulok
On 12/8/10, Dave Cundiff syshack...@gmail.com wrote:
 Hi everyone,

 I posted this to the forum as well but figured I'd try here since the
 same people might not subscribe to both.

 I've been experiencing some terrible clock skew and just can't figure
 it out. By terrible I mean I'm losing 30 minutes a day. The loss only
 occurs when I bring the system under heavy load. The load is multiple
 Rsync backups to a ZFS pool(with gzip compression) backed by a 16 disk
 Raid50. I'm using a hardware Raid controller for battery backed write
 caching.

 Mobo: Supermicro X8DTL
 CPU: Dual Intel 5620 quad cores
 Raid: Areca 1620

 I have ntp enabled but the skew happens to fast and it stops trying.
 I've tried a bunch of stuff from the various lists. I tried all my
 clock sources. TSC(-100) HPET(900) ACPI-fast(1000) i8254(0). I tried
 changing the kern.hz flag lower. I also tried disabling the enhanced
 speed step feature of this chip as per the FAQ on the site. Nothing
 works.

 Currently I'm defaults except the following settings.

 EIST Disabled in BIOS
 kern.hz=100
 kern.timecounter.hardware=i8254

 Is there anything else I could do to debug this? I can't really blame
 the hardware because I have these same boards/chips running in Linux
 with no clock issues.

In the man page for ntpd, you might look into The huff-n'-puff
Filter. Not saying it will help, but it seems like you've tried
everything else.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Broken port?

2010-11-29 Thread Modulok
List,

I tried to install django with sqlite support from ports and got the
error shown below. What do I do to fix this? Do I email a port
maintainer or something? I used portsnap to update my ports collection
before trying the install. I'm on 8.1-RELEASE amd64.

Thanks!
-Modulok-

Error Below:

===  Installing for py26-django-1.2.3
===   py26-django-1.2.3 depends on file: /usr/local/bin/python2.6 - found
===   py26-django-1.2.3 depends on file:
/usr/local/lib/python2.6/site-packages/mod_python/_psp.so - found
===   py26-django-1.2.3 depends on file:
/usr/local/lib/python2.6/site-packages/psycopg2/_psycopg.so - found
===   py26-django-1.2.3 depends on package: py26-MySQLdb=1.2.2 - found
===   py26-django-1.2.3 depends on file:
/usr/local/lib/python2.6/site-packages/_sqlite3.so - not found
===Verifying install for
/usr/local/lib/python2.6/site-packages/_sqlite3.so in
/usr/ports/databases/py-sqlite3
===  Vulnerability check disabled, database not found
===  License check disabled, port has not defined LICENSE
= Python-2.6.5.tgz is not in /usr/ports/lang/python26/distinfo.
= Either /usr/ports/lang/python26/distinfo is out of date, or
= Python-2.6.5.tgz is spelled incorrectly.
*** Error code 1

Stop in /usr/ports/databases/py-sqlite3.
*** Error code 1

Stop in /usr/ports/www/py-django.
*** Error code 1

Stop in /usr/ports/www/py-django.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Is ZFS ready for prime time?

2010-11-14 Thread Modulok
List,

I'm ready to build a backup server and have two questions...

1) Is ZFS as of 8.1 Release considered to be ready for mission critical?
2) If I put ZFS on top of geli, will this, in any way, (other than
performance) impair ZFS's features? For example would stuff like the
ability to self heal and what not, still work? As I understand it, I
can just treat a geli like a generic block device, right?

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Weird file system corruption or something else?

2010-10-24 Thread Modulok
List,

I have a disk image of a Windows machine I took via dd. It's shared on
the local network from FreeBSD via samba. The disk image is read-only.
I want to access files within the disk image from some Windows boxes,
so I do this:

mdconfig -a -t vnode -f image.bin
mount_ntfs -o ro /dev/md0s1 ./mnt

I then add the appropriate entry in my smb.conf file to share the
'mnt' directory. It worked... almost.

PROBLEM: I can see files from the windows machines, but I cannot
decend into any subdirectories or open any files unless they've first
been listed or opened on FreeBSD. The file permission bits are
correct, but the 'link' column in the 'ls -l' output on all files is
'0', until I open a file or list the contents of a directory on
FreeBSD. Thereafter, its normal i.e. '1' for regular files and so
forth, and I can access the files from Windows as usual.

I can issue a 'tree' command to automate the listing of directories on
FreeBSD, thus changing their link number... so that I can access them
from windows, but this all seems very strange. I don't want to have to
open every file, before I can open any files from windows.

The file system of the disk image wasn't corrupt when I took it, and
dd had zero errors when it was created. I have no problem accessing
files on the local FreeBSD. The disk image still matches the sha256
checksum from when I create it, so it hasn't since become corrupt.

What's going on?! How do I fix this? Is there some mount option I
missed? An mdconfig issue? A mount_ntfs bug?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


dd to clone disks - new disk fails to boot.

2010-10-20 Thread Modulok
Problem: I copied from an old hard drive to a new one via FreeBSD's
dd. The new drive won't boot. The old drive worked fine. (The new
drive is known-to-work.)

Background: I have a system with a 160GB disk in it. It runs windows.
It works. I have a blank 250GB disk. I want to copy the entire 160GB
disk onto the 250GB disk, shuffle the SATA cables and boot to it.
Basically, I'm just replacing the small hard drive with a larger one.
I would then extend the partition using something like gpartd.

I booted to a live FreeBSD disk and used dd like so:

dd if=/dev/ad4 of=/dev/ad8 bs=1m

About an hour later it finished. No errors. I turned the machine off,
unplugged the small disk and connected the big disk into the primary
SATA header. The BIOS chokes on the new disk. It refuses to boot from
it and instead reports 'disk error'. This is bogus because the new big
disk is physically known-to-work. In theory it should be an exact copy
of all of the data that was on the old, small disk. I thought a dd
from one disk to another would be all that was needed. I've done this
before, but only with near identical hard drive models and it worked.
What gives? Is there some kind of partition (aka 'slice' in FreeBSD
terms) table or CHS/LBA black magic going on?

Any ideas? Thanks.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: (no subject)

2010-09-17 Thread Modulok
 I have an old box I want to turn into a file server backup machine.
 Unfortunately, the mainboard has only PATA headers. I do have three
 PCI slots though, so I was looking at a PCI SATA controller card that
 will get along with FreeBSD without a fuss. Nothing fancy, just
 something inexpensive that I can plug a few SATA drives into. Then
 I'll create a graid3 with them, or mess around with ZFS. Anyone using
 something worth a recommendation?

There are IDE to SATA converters. You plug it directly into the IDE connector
and on the other end you have a SATA150 plug.

This is news to me.  I now have two on the way :)

Thank you!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


(no subject)

2010-09-16 Thread Modulok
List,

I have an old box I want to turn into a file server backup machine.
Unfortunately, the mainboard has only PATA headers. I do have three
PCI slots though, so I was looking at a PCI SATA controller card that
will get along with FreeBSD without a fuss. Nothing fancy, just
something inexpensive that I can plug a few SATA drives into. Then
I'll create a graid3 with them, or mess around with ZFS. Anyone using
something worth a recommendation?

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Anybody can use webcam in skype in 8.1?

2010-07-18 Thread Modulok
I had a similar problem under linux the other day, if that helps. I
ended up setting the LD_PRELOAD environment variable to modify how
skype gets linked at runtime. In bash:

LD_PRELOAD=/usr/lib/libv4l/v4l1compat.so
skype

Again that's on linux, so it's probably not relevant, or even if it
is, the shared object file will be in a different location.

Sorry I'm not of much help. Maybe someone else can do better.
-Moduok-

On 7/17/10, Yuri y...@rawbw.com wrote:
 I am trying to make webcam work with skype. webcamd-0.1.14 creates
 functioning device /dev/video0 that works in mplayer and pwcview.

 Skype complained that some VIDIOCAP flag is missing. So I applied the patch:
 I patched kernel with this patch: linux_v4l.diff from
 http://leidinger.net/FreeBSD/linuxolator/ and copied over
 compat/linux/linux_videodev.h from the trunk.

 Skype now says there is vidio0 device, but video test fails and image
 isn't passed to the peers.

 Did you succeed with video in skype?

 Yuri

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Shaping torrent traffic?

2010-07-13 Thread Modulok
How do I catch torrent traffic with a pf.conf rule? It doesn't operate
on any standard port numbers.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Reconstruct meaningful data from tcpdumps?

2010-07-09 Thread Modulok
Is there a way to reconstruct network traffic from a tcpdump file? Or
something similar? As in: analyze the dump file and attempt to
re-construct files transfered though http, ftp, known messenger
protocols, instant message conversations, http requests, web pages,
and so forth?

There's a bunch of tools on Windows that say they do this to some
extent or another, but they require a client-side installation, cost a
lot of money, or are crawling with malicious code. I can read tcpdump
files, (to an extent) but viewing a hex dump of a jpeg is futile.

If that makes any sense.
Thanks guys!
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


VLANs is this right?

2010-07-05 Thread Modulok
Hopefully this doesn't get too garbled by various mail clients:

Internet
  |
FreeBSD router
  |
(tagged frames)
  |
   switch
   ||
vlan1 vlan2
 ||
hostAhostB

Criteria:
- HostA must never directly talk to HostB.
- Both hostA and hostB have an Internet connection.

What I have to work with:
proCurve switch which supports VLANs.
2x Intel NICs in FreeBSD which support VLANs.

I've never messed with VLANs before. This is all new to me. As I
understand so far, this should be a simple matter of creating the
vlans on the switch, assigning ports to their respective vlan in
'untagged' mode, and then assigning the port BSD connects to, as a
'tagged' member of both VLAN's? Then I'd create an IP alias on the
internal FreeBSD NIC, so that it can talk to both networks over the
same wire? Is this right?

I'd do more experimentation but I can't have down time until later
tonight so I thought I'd ask in the mean time.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: VLANs is this right?

2010-07-05 Thread Modulok
It was a simplified diagram of what I thought I needed. ( Which may or
may not be what I actually need! )

Basically, I want a port on the switch that I can plug un-trusted
devices into. Systems wich are known to be just crawling with
malicious software. I need to provide them with an Internet
connection, but otherwise want them separated from everybody else.
Think DMZ isolation, but they're not providing any 'external'
services. I was wondering if this could be done with tagging and
address aliases, instead of buying a third network card for the BSD
machine.

If that makes any sense.


On 7/5/10, David Kelly dke...@hiwaay.net wrote:
 On Mon, Jul 05, 2010 at 10:16:19AM -0600, Modulok wrote:

 Criteria:
 - HostA must never directly talk to HostB.
 - Both hostA and hostB have an Internet connection.

 What I have to work with:
 proCurve switch which supports VLANs.
 2x Intel NICs in FreeBSD which support VLANs.

 Am thinking you are approaching it the wrong way.

 Not familiar with the specifics of a ProCurve switch but that's a high
 end unit, not a Netgear. I would expect you could configure the switch
 to disallow the MAC addresses from talking to each other of hostA and
 hostB.

 Furthermore, it would be even easier to disallow hostB from within
 hostA's firewall. And do the same at hostB.

 --
 David Kelly N4HHE, dke...@hiwaay.net
 
 Whom computers would destroy, they must first drive mad.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: what is /usr/sbin/nmbd

2010-06-19 Thread Modulok
 what is /usr/sbin/nmbd

In a shell type: man nmbd


This program is part of the samba(7) suite.

   nmbd is a server that understands and can reply to NetBIOS over
IP name
   service  requests, like those produced by SMB/CIFS clients such
as Win-
   dows 95/98/ME, Windows NT, Windows  2000,  Windows  XP  and
LanManager
   clients.  It  also participates in the browsing protocols which
make up
   the Windows Network Neighborhood view.
...

-Modulok-


On 6/19/10, Caleb Stein caleb.st...@me.com wrote:
 I constantly get messages telling me that it couldn't be executed.
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Online gaming and file downloads - latency hell!

2010-06-15 Thread Modulok
Yo,

I have a FreeBSD box acting as a router between me and the Internet.
Whenever someone on the local network downloads something, the other
connections have a really high latency. A second or more. For people
who like to download large files and play online games, it's not good.

I tried traffic shaping with PF, which works - almost: I tried the
home example in the PF book, but it doesn't work out so well. I can
throttle users with no trouble, but even so that doesn't seem to help
the latency issue unless I choke the 'big file download' users almost
completely off. It's like nothing helps. I tried a priority based
queue where all traffic on the gaming ports was placed in front of all
other traffic, and while I saw a very mild improvement, latency was
still really pitiful.

Is there anything else I can do? Anyone have a similar setup and wish
to share config files? Are there some sysctl's that would help this
out or something. I'm almost ready to just buy a 'gaming' *gag* router
which implements their own brand of QoS, but don't want to sink to
that level if I don't have to.

Help!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Accessing file from windows or to windows

2010-05-06 Thread Modulok
In order to 'provide' shares to a windows network you would need to
run a daemon on FreeBSD which provides such services. The most popular
solution is 'samba'. I think the package is called 'samba3'. You
install it, edit its config file, which specifies what to share and
how to share it. You then run the daemon and poof, your windows
machines can access the shares you've configured.

On the other hand, if the windows machines are providing a shared
folder you want to access, you can just mount that share via the
'mount_smbfs' command. For example, if I had a windows computer named
'apollo' with username 'guest' and a folder named 'shared' I wanted to
access, I could do this from my FreeBSD machine:

# As root:
mount_smbfs //gu...@apollo/shared /mnt

I would now have the contents of apollo's 'shared' folder available in
my '/mnt' directory. See 'mount_smbfs(8)' for more.

Other options could involve setting up an SSH client/server on the two
machines and use 'sftp' or 'scp' to transfer files, among others.
-Modulok-

On 5/6/10, Tim Daneliuk tun...@tundraware.com wrote:
 On 5/6/2010 3:47 PM, Jean-Paul Natola wrote:

 Hi all,

 I have a file I need in my bsd box, would it be easier, or is it possible,
 to mount an NTFS share , or should I try to map a directory from the
 windows box.


 TIA,

 I have

 Xp
 Win7
 Win2003
 Win2008
 Freebsd 6.4

 thanx


 Same machine or two separate machines?

 Two separate machines is trivial - share
 a directory on the Win machine and use smbfs
 on FBSD to get to it.

 For same machine, boot FBSD, and do a mount
 with -t ntfs as an arg  well, I don't recall
 if 6.4 supported this or not, now that I think about it.


 One-time or frequent transfer?

 There are tons of other options, especially if you're running
 separate machines.  Not all of these are elegant, but they
 all will work and have their place for infrequent transfers:

 - Email the file to yourself from one OS and retrieve it
   from the other.

 - Copy the file to a thumbdrive

 - Copy the file to a private website which can then
   be subsequently retrieved by another machine/OS
   image.





 
 Tim Daneliuk tun...@tundraware.com
 PGP Key: http://www.tundraware.com/PGP/

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Accessing file from windows or to windows

2010-05-06 Thread Modulok
 writing to an NTFS partition may corrupt the partition - I'm guessing this 
 is not the case anymore.

That's only when you have directly mounted an NTFS on the local
machine. Like if you jacked a hard drive out of a windows machine and
plugged it into your BSD machine. If you're accessing it across a
network you're never directly accessing the file system. There is
always an intermediary between you and it; the daemon which handles
file i/o requests. Notice: It handles your *requests*; you never
actually access the underlying file system.

On 5/6/10, Modulok modu...@gmail.com wrote:
 In order to 'provide' shares to a windows network you would need to
 run a daemon on FreeBSD which provides such services. The most popular
 solution is 'samba'. I think the package is called 'samba3'. You
 install it, edit its config file, which specifies what to share and
 how to share it. You then run the daemon and poof, your windows
 machines can access the shares you've configured.

 On the other hand, if the windows machines are providing a shared
 folder you want to access, you can just mount that share via the
 'mount_smbfs' command. For example, if I had a windows computer named
 'apollo' with username 'guest' and a folder named 'shared' I wanted to
 access, I could do this from my FreeBSD machine:

 # As root:
 mount_smbfs //gu...@apollo/shared /mnt

 I would now have the contents of apollo's 'shared' folder available in
 my '/mnt' directory. See 'mount_smbfs(8)' for more.

 Other options could involve setting up an SSH client/server on the two
 machines and use 'sftp' or 'scp' to transfer files, among others.
 -Modulok-

 On 5/6/10, Tim Daneliuk tun...@tundraware.com wrote:
 On 5/6/2010 3:47 PM, Jean-Paul Natola wrote:

 Hi all,

 I have a file I need in my bsd box, would it be easier, or is it
 possible,
 to mount an NTFS share , or should I try to map a directory from the
 windows box.


 TIA,

 I have

 Xp
 Win7
 Win2003
 Win2008
 Freebsd 6.4

 thanx


 Same machine or two separate machines?

 Two separate machines is trivial - share
 a directory on the Win machine and use smbfs
 on FBSD to get to it.

 For same machine, boot FBSD, and do a mount
 with -t ntfs as an arg  well, I don't recall
 if 6.4 supported this or not, now that I think about it.


 One-time or frequent transfer?

 There are tons of other options, especially if you're running
 separate machines.  Not all of these are elegant, but they
 all will work and have their place for infrequent transfers:

 - Email the file to yourself from one OS and retrieve it
   from the other.

 - Copy the file to a thumbdrive

 - Copy the file to a private website which can then
   be subsequently retrieved by another machine/OS
   image.





 
 Tim Daneliuk tun...@tundraware.com
 PGP Key: http://www.tundraware.com/PGP/

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 freebsd-questions-unsubscr...@freebsd.org


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Broken port 'py-sqlite3'... or maybe something else?

2010-04-30 Thread Modulok
List,

I tried to install 'py-sqlite3' with the usual 'make install clean'
routine. Instead, I got this:

===  Vulnerability check disabled, database not found
===  Extracting for py25-sqlite3-2.5.1_1
= No MD5 checksum recorded for python/Python-2.5.1.tgz.
= No SHA256 checksum recorded for python/Python-2.5.1.tgz.
= No suitable checksum found for python/Python-2.5.1.tgz.
*** Error code 1

Stop in /usr/ports/databases/py-sqlite3.


What does it mean? And...how do I go about getting 'py-sqlite3'
installed in light of it?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Unit conversion program?

2010-04-28 Thread Modulok
List,

Is there a command-line program which does unit conversions between SI
and other unit forms? Perhaps something similar to Google's feature?
For example:

f...@bar baz 41.5c to f
106.7

f...@bar baz 190lbs to kg
86.1825503

As well as for other associated units? I could write one in python
pretty easily, but just thought I'd check before re-inventing the
wheel.

Thanks.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Outdoor wireless - has anyone used Ubiquiti power stations?

2010-04-07 Thread Modulok
List,

This might be a little off topic, but it still involves FreeBSD. I
figured this list has many a smart folk, so I'd ask here.

If I buy two of these Ubiquiti power station 2's, I can set them up to
provide a long distance ethernet link to my BSD box right? Has anyone
used these?

Basically, I have an remote office with a FreeBSD box acting as a
router, but no Internet connection. At the other side of the valley
(15 miles) I have a DSL based Internet connection, but no office. In
theory, I should be able to link them via a wireless bridge, right?
That way I'd have local connection at the office on one interface, and
a long distance link which hooks up to an ISP through their DSL router
on the other. If I treat the link between the office and the DSL
router as if it were the public Internet, I shouldn't need any
encryption between me and it, right? Does this all sound like a
reasonable approach?

I just thought I'd get a vote of confidence in my methods before I
finally tackle this project and buy the equipment.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: theme

2010-04-05 Thread Modulok
Could you post a link to an example image?

It sounds like you're describing the features of a window manager of
some sort, in which case that would be a separate program. Examples of
window managers/desktop environments would include fluxbox, gnome,
awesome, kde, etc. It could be any one of them, depending on what the
author of the said picture was using.

-Modulok-

On 4/5/10, tristan tristan.n...@gmail.com wrote:
 In some FreeBSD pictures, i see a dock at the bottom. how do i get this?
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: SSH root login with keys only

2010-04-05 Thread Modulok
You should also consider posting your patch and related content to,
'freebsd-hack...@freebsd.org'.

-Modulok-


On 4/5/10, Marcin Wisnicki mwisnicki+free...@gmail.com wrote:
 On Mon, 05 Apr 2010 10:01:08 +0100, Matthew Seaman wrote:

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 On 04/04/2010 22:04:35, Marcin Wisnicki wrote:
 Is it possible to configure sshd such that both conditions are met:

 1. Root will be able to login only by using keys 2. Normal users will
 still be able to use pam/keyboard-interactive

 Only by running two instances of sshd on different ports / IP numbers.


 Thanks for all reponses.
 I've finally solved it by configuring PAM to deny root.
 Unfortunately all of pam modules in base system that can do it,
 deny login only in account phase which is too late for sshd.
 I've modified pam_securetty to also provide auth facility.

 For anyone interested, here is a patch:

 --- /usr/src/lib/libpam/modules/pam_securetty/pam_securetty.c 2010-02-18
 00:12:28.0 +0100
 +++ pam_securetty/pam_securetty.c 2010-04-05 04:47:21.0 +0200
 @@ -45,2 +45,3 @@

 +#define PAM_SM_AUTH
  #define PAM_SM_ACCOUNT
 @@ -54,2 +55,24 @@
  PAM_EXTERN int
 +pam_sm_authenticate(pam_handle_t *pamh, int flags,
 +int argc, const char *argv[])
 +{
 + const char *user;
 + int r;
 +
 + if ((r = pam_get_user(pamh, user, NULL)) != PAM_SUCCESS)
 + return (r);
 +
 + return (pam_sm_acct_mgmt(pamh, flags, argc, argv));
 +}
 +
 +PAM_EXTERN int
 +pam_sm_setcred(pam_handle_t *pamh __unused, int flags __unused,
 +int argc __unused, const char *argv[] __unused)
 +{
 +
 + return (PAM_SUCCESS);
 +}
 +
 +
 +PAM_EXTERN int
  pam_sm_acct_mgmt(pam_handle_t *pamh __unused, int flags __unused,

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


How to mark an interace as 'down' at boot time?

2010-03-28 Thread Modulok
Trivial question,

Is there an rc.conf way to mark a network interface as being 'down' at
boot time? I could do it with a cron job, or a kernel rebuild, but I
thought there'd be some nifty rc.conf syntax. I tried this:

ifconfig_bge0=down

The interface is marked as down in the dmesg output, but it's still up
when the boot cycle completes.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Wireless access point rc.conf syntax in FreeBSD 8?

2010-03-21 Thread Modulok
I have a wireless network card. But I can't configure it. I read in
UPDATING that this had to do with some split up of the wireless
drivers into software/hardware interfaces? Something to do with me
having to clone the interface before I can configure it? There was no
mention of this in the handbook wireless section that I saw.

Anyway, I want to run it as an access point, not a client. The ral
driver supports this, but I'm not sure on the rc.conf synax for
creating an access point out of it. Could anyone point to some
access-point-like examples?

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Copying mirrored partitions - will this work?

2010-03-20 Thread Modulok
How valuable is your data?

I recommend you make an offline backup. There's a lot of steps in your
procedure which introduce room for error. You could perhaps disconnect
one of the hard drive's data cable (same thing). Also, make a backup
copy of your geom meta data somewhere.

Other than that, your procedure sounds like it should work. Though,
I've never tried it. I do recall, that when updating from 6.2-RELEASE
to 8-RELEASE, the geom meta data was automatically updated. I'm not
sure if there is any change between Release and Stable, though. I'm
also not sure if it was a backward incompatible change, as I never
went back to 6.2. Just something to be aware of.

Sorry I can't be more helpful. Maybe someone else knows more.
-Modulok-

On 3/20/10, Mike Clarke jmc-freeb...@milibyte.co.uk wrote:

 I'm currently running 8.0-RELEASE and am considering experimenting with
 8.0-STABLE. I'd like to preserve my existing system in case things go
 pear-shaped so I'll copy the entire system onto a spare slice and then
 use csup to upgrade the copy to STABLE. Normally I'd go through the
 steps of bsdlabel, newfs and then dump|restore to create the copy but
 I'm wondering if I can take advantage of my recently created gmirror to
 cut down the work.

 I have two 500GB disks, /dev/ad4 and /dev/ad8, each partitioned into 4
 slices of 88, 88, 42 and 259GB. My system is installed on the first
 slices (ad4s1 and ad8s1) which are mirrored as /dev/mirror/gm0. The
 second slices (ad4s2 and ad8s2) are currently unused. My thoughts are
 to temporarily add ad4s2 into gm0 with gmirror insert gm0 ad4s2 and
 wait for the mirror to synchronise. I should then be able to remove the
 temporary addition with gmirror remove gm0 /dev/ad4s2 at which point
 ad4s2 should be a duplicate of the original system and I can then go
 ahead and create a new mirror with gmirror label -b load gm1 ad4s2
 and gmirror insert gm1 ad8s2. After editing /etc/fstab in the new
 mirror to use gm1 instead of gm0 I should then be able to boot into the
 system on slice 2 and upgrade it to STABLE while still keeping my
 original system to fall back to if required.

 Is this approach of moving disks from one mirror to another workable, or
 have I missed something that would lead me into deep trouble? I don't
 mind unduly if I make a mess of the second slice and have to start
 again but I don't want to lose the contents of my original system on
 slice 1.

 --
 Mike Clarke
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Moving master.passwd file between servers... is this correct?

2010-03-11 Thread Modulok
Thanks guys, it worked!
-Modulok-

On 3/11/10, Matthew Seaman m.sea...@infracaninophile.co.uk wrote:
 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 On 11/03/2010 05:41:10, Dan Nelson wrote:
 In the last episode (Mar 10), Modulok said:
 I need to migrate a passwd file from an old 6.2 server to a newer 8.0
 server (different box).  This is what I did:

 copied the  '/etc/master.passwd' from old server to '/etc/master.passwd'
 on new server then ran:

 pwd_mkdb /etc/master.passwd  pwd_mkdb -p /etc/master.passwd

 It seems to work, but is this correct? I'd hate to miss somethign before
 it goes online.

 Yep, that should work.  Don't forget to update /etc/groups too.


 And try running 'mergemaster -p' which should let you merge in any new
 system accounts (ignore all the other bits it looks at).

   Cheers,

   Matthew

 - --
 Dr Matthew J Seaman MA, D.Phil.   7 Priory Courtyard
   Flat 3
 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
   Kent, CT11 9PW
 -BEGIN PGP SIGNATURE-
 Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
 Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

 iEYEARECAAYFAkuYpMsACgkQ8Mjk52CukIxacgCfTxB2WO7JXMu4XQs/M9kcYvWu
 QwIAn0DX0eFW8IrP5N5vOlZR51Eg68FF
 =2qaS
 -END PGP SIGNATURE-

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Moving master.passwd file between servers... is this correct?

2010-03-10 Thread Modulok
I need to migrate a passwd file from an old 6.2 server to a newer 8.0
server (different box). This is what I did:

copied the  '/etc/master.passwd' from old server to
'/etc/master.passwd' on new server
then ran:

pwd_mkdb /etc/master.passwd  pwd_mkdb -p /etc/master.passwd

It seems to work, but is this correct? I'd hate to miss somethign
before it goes online.

Thanks guys!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Newbie gmirror questions

2010-02-05 Thread Modulok
 Does gmirror consider one of the consumers to act as a master for the pair?

No. The order doesn't matter. You could take out your hard drives and
shuffle them like cards and it wouldn't matter. All metadata is stored
in the last sector of the drives themselves. Cable order is
irrelevant.

-Modulok-


On 2/5/10, Mike Clarke jmc-freeb...@milibyte.co.uk wrote:
 On Sunday 17 January 2010, Matthew Seaman wrote:

 However, one of the really amazingly brilliant things about geom is
 that just about any disk / storage related thing can be a geom
 provider, and geom constructs will nest very happily.  Here's a howto
 for setting up gmirror across a pair of slices:

 http://people.freebsd.org/~rse/mirror/

 Thanks for all the advice, my mirrors are now up and running on 2 of the
 4 slices without any problems.

 But just one last dumb question. Does gmirror consider one of the
 consumers to act as a master for the pair? The reason I ask is that
 earlier today I needed to disconnect a few cables inside the PC to get
 better access to a bit of internal hardware and then realised that
 although I knew which two SATA connectors to use for the mirror drives
 I'd failed to make a note of which order the drives were connected. I
 felt about 75% sure I'd paired them up the same way as before so went
 ahead, everything started up OK and gmirror status shows the status
 for both mirrors as COMPLETE. Now I'm wondering if I was just lucky
 or if it just doesn't matter if the order of mirror consumers is
 interchanged after creation.

 --
 Mike Clarke
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Does geli metadata contain sensitive information?

2010-01-27 Thread Modulok
Does a geli metadata backup contain any sensitive information? Like...
should apply the same precations as I do the key and password?

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Program to create/update Windows 'thumbs.db' files?

2010-01-02 Thread Modulok
List,

Is there a program for BSD/linux which will walk a directory tree and
create/update the Windows, 'thumbs.db' files? Something quite the
opposite of vinetto.

I was thinking of doing this on one of our media servers. I'd put said
command in a cron job. Network clients would have faster access to
thumbnails. Everybody is happy. BUT! I can't let the clients do this
themselves, as these network shares are strictly read-only. I don't
really want to sit at a windows computer for the rest of eternity
clicking each folder in turn and waiting for the thumbs file to
update. Just thought there might be something already out there to do
this.

Thanks! Happy new year everyone.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


(no subject)

2009-12-23 Thread Modulok
List,

Is there a software method (not a microwave oven) to destroy a CD-R?
Something like:

dd if=/dev/random of=/dev/acd0?

Obviously the above doesn't work, but the idea is there.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Suggestion for the fdisk(8) manual page...

2009-12-21 Thread Modulok
 As far as I know, the class not found just a warning, not an error.

Perhaps, but I've had situations in which fdisk would not alter a PC
partition (slice) table. Particularly a table on a disk which the
operating itself is running off of. I attempted to delete some unused
slices (not the one FreeBSD was one) and the master boot record
remained unaltered. I tried the same with gpart and everything worked
fine. I wish I would have know about gpart earlier though.

-Modulok-

On 12/20/09, Roland Smith rsm...@xs4all.nl wrote:
 On Sun, Dec 20, 2009 at 12:40:48PM -0700, Modulok wrote:
 Just a suggestion:

 In the 'Bugs' section of the 'fdisk(8)' man page, could we get a note
 that informs users that fdisk is kind of... broken and obsolete?
 Something like:

 fdisk is slowly being replaced by gpart(8). fdisk may not work
 correctly. If you see errors such as fdisk: Class not found, use
 gpart(8) instead.

 As far as I know, the class not found just a warning, not an error. In the
 cases where I've seen it, fdisk still carried out the command it was
 given. I've always just ignored it.

 Roland
 --
 R.F.Smith   http://www.xs4all.nl/~rsmith/
 [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated]
 pgp: 1A2B 477F 9970 BA3C 2914  B7CE 1277 EFB0 C321 A725 (KeyID: C321A725)

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Suggestion for the fdisk(8) manual page...

2009-12-21 Thread Modulok
Just to clarify, when I say 'unused slices', I mean those of other
operating systems I was no longer interested in having around, not as
in 'marked as free space'.

Thanks!
-Modulok-

On 12/21/09, Modulok modu...@gmail.com wrote:
 As far as I know, the class not found just a warning, not an error.

 Perhaps, but I've had situations in which fdisk would not alter a PC
 partition (slice) table. Particularly a table on a disk which the
 operating itself is running off of. I attempted to delete some unused
 slices (not the one FreeBSD was one) and the master boot record
 remained unaltered. I tried the same with gpart and everything worked
 fine. I wish I would have know about gpart earlier though.

 -Modulok-

 On 12/20/09, Roland Smith rsm...@xs4all.nl wrote:
 On Sun, Dec 20, 2009 at 12:40:48PM -0700, Modulok wrote:
 Just a suggestion:

 In the 'Bugs' section of the 'fdisk(8)' man page, could we get a note
 that informs users that fdisk is kind of... broken and obsolete?
 Something like:

 fdisk is slowly being replaced by gpart(8). fdisk may not work
 correctly. If you see errors such as fdisk: Class not found, use
 gpart(8) instead.

 As far as I know, the class not found just a warning, not an error. In
 the
 cases where I've seen it, fdisk still carried out the command it was
 given. I've always just ignored it.

 Roland
 --
 R.F.Smith   http://www.xs4all.nl/~rsmith/
 [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated]
 pgp: 1A2B 477F 9970 BA3C 2914  B7CE 1277 EFB0 C321 A725 (KeyID: C321A725)


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Suggestion for the fdisk(8) manual page...

2009-12-20 Thread Modulok
List,

Just a suggestion:

In the 'Bugs' section of the 'fdisk(8)' man page, could we get a note
that informs users that fdisk is kind of... broken and obsolete?
Something like:

fdisk is slowly being replaced by gpart(8). fdisk may not work
correctly. If you see errors such as fdisk: Class not found, use
gpart(8) instead.

That way, when you're confronted by the initially mysterious, fdisk:
Class not found error, you don't waste tons of time double and triple
checking slice table syntax and what not. Maybe even right at the top
of the man page. Yes, it bit me today. Looking through the archives,
apparently I'm not the only one.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


FreeBSD 8 USB stack - Thank you!

2009-12-13 Thread Modulok
I just installed FreeBSD 8. I'm not sure which developers had a hand
in the new USB stack, but I appreciate the effort put forth. Thank you
all! Finally, I can use my printer without having to hack the ulpt.c
file. I'm so happy!

:-)
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Temporarily halt boot process to enter encryption keys?

2009-12-09 Thread Modulok
Corey,

Umm...write a script perhaps?

Nobody else has taken a shot at this one yet, so I'll try. This is
just what I'd do. That said, it's probably not the best solution. It's
an idea. You may have to work out some bugs along the way.

In regards to interrupting the boot process, I don't think this is
what you're after, unless you have console access. In which case you'd
use geli to set the boot flag on your providers. The boot process will
stop, ask for a password and then continue. The problem is that this
occurs before daemons like sshd are started; Unless you have console
access, you're screwed. Thus, your problem...

You want the system to boot as usual, it's just you don't want it to
start any third party daemons such as samba ...yet!

(This is why runlevels on SysV style startups are useful. It would be
a matter of switching to a custom runlevel.)

You would first disable the various daemons by not having them in your
'rc.conf' file. You'd then write a wrapper script, in your language of
choice. The wrapper simply calls the various '/usr/local/etc/rc.d'
scripts to start all of your third party daemons as usual. ...and
whatever else you need to do. Remember to pass the 'onestart'
argument, because the rc scripts are no longer listed in /etc/rc.conf.
With all that in place you'd ssh in and execute the wrapper as the
root user.

(root) engage

Poof done. You can put the wrapper script anywhere you want. Name it
anything you like. Just make sure it's executable by the root user.
(Thus be careful when writing it!) An example of a python wrapper
might look something like the one below. Change to fit your needs,
obviously. Admittedly it's not he most pythonic code ever written. It
also probably has bugs to work out, but again, it's an idea.

#!/usr/local/bin/python
 Wrapper which executes a bunch of files.

import os
import sys
import subprocess as sp

# Change this to suit your needs:
SCRIPTS_TO_CALL = [
'/usr/local/etc/rc.d/apache22',
'/usr/local/etc/rc.d/samba',
'/etc/rc.d/ntpd'
]

if os.geteuid() != 0:
sys.stderr.write(This script must be executed as the root user.
Aborting.\n)

for script in SCRIPTS_TO_CALL:
if os.path.exists(script):
command = script +  onestart
p = sp.Popen(command, shell=True, stdout=sp.PIPE, stderr=sp.PIPE)

# Now write out any errors/output to their usual places:
sys.stdout.write(p.stdout.read()+\n)
sys.stderr.write(p.stderr.read()+\n)
else:
sys.stderr.write(File, '%s' does not exist. Skipping...\n % script)


Hacky, perhaps buggy, but perhaps useful. Unless anyone has a better
idea? With a little more refinement you could probably even convert
your FreeBSD box into a sysV equivalent, making complex custom
startups easier in the future. Blasphemy, I know!

-Modulok-

On 12/9/09, Corey J. Bukolt 0...@mail.ru wrote:
 Corey J. Bukolt wrote:
 Hello list,

 I have a FreeNAS box with a CF card for root, and 3 drives (soon to
 be 4) set up with encryption and raidz on top of them. A less than
 excellent detailed report of what I did is here:
 http://bit.ly/5BeZq8 This setup is a bit hackish as after the
 system boots I need to attach each drive using geli, run zpool
 import -f primary, and then restart all my services (nfs, samba,
 etc).

 It's become a bit of a chore (especially when doing it all from a
 N810), so I'm looking for a way to temporary halt the boot process
 so that I can ssh in, attach the drives, and then allow the system
 to continue to boot.

 A few ideas come to mind, such as meddling with rc scripts, but I'd
  like to get some suggestions from the more experienced FreeBSD
 hackers before I go off breaking my system.

 Thanks, ~Corey

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions To
 unsubscribe, send any mail to
 freebsd-questions-unsubscr...@freebsd.org



 Anybody at all?

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: recovering data from this disk

2009-12-04 Thread Modulok
You might try freesbie. It's not a fixit shell, it's a full FreeBSD on
a live CD. I've had better luck with it in the past than the fixit
shell. Worth a shot.

-Modulok-

On 12/4/09, Tom Worster f...@thefsb.org wrote:
 On 12/4/09 1:51 PM, Henrik Hudson li...@rhavenn.net wrote:

 On Fri, 04 Dec 2009, Tom Worster wrote:

 any suggestions how to recover data from either of the mirrored disks
 that i
 can't get to boot? the situation is described below.

 If they were indeed mirrored then try a FreeBSD live distro boot CD
 and boot into that then just mount one of the disk partitions that
 you need.

 thanks, henrik,

 but i wasn't able to make the live fs fixit shell work. i get an error
 message when i try to start the live fs shell: ldconfig could not create
 the ld.so hints file and all commands fail to work.

 tom



 (i'm assuming, given the silence on this, that making the system work
 after
 the freebsd-update is a lost cause.)


 On 12/3/09 11:14 AM, Tom Worster f...@thefsb.org wrote:

 after running freebsd-update -r 8.0-RELEASE upgrade my system won't
 boot. it
 gets stuck on mountroot and i can't find the magic word it wants.

 the system used to have two sata drives /dev/ad4 and ad6. they were
 partitioned and sliced using the deafaults that sysinstall suggested.

 at the boot prompt, lsdev says:

 disk devices
   disk0: BIOS drive C:
 disk0s1a: FFS
 disk0s1b: swap
 disk0s1d: FFS
 disk0s1e: FFS
 disk0s1f: FFS
disk1: BIOS drive D:
 disk1s1a: FFS
 disk1s1b: swap
 disk1s1d: FFS
 disk1s1e: FFS
 disk1s1f: FFS

 which looks right, although i'm not familiar with the disk
 nomenclature.

 entering ? at mountroot mentions ad4 and ad6.

 geom_mirror was being used.

 i've tried saying load geom_mirror and/or enable-module geom_mirror
 at
 the
 boot prompt. neither made any difference.

 nothing i've said to mountroot works:

 ufs:/dev/ad4s1a
 ufs:/dev/ad6s1a
 ufs:/dev/mirror/gm0s1a
 ufs:/dev/disk0s1a
 ufs:/dev/disk1s1a

 does anyone know the magic word? i'd be very grateful.

 tom


 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to
 freebsd-questions-unsubscr...@freebsd.org


 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Wester Digital 'deep recovery cycle' and gstripe?

2009-11-17 Thread Modulok
List,

Has anyone used 'Wester Digital Caviar Black' disks in a gstripe?

I'm building a 2TB gstripe, from 3x 1TB disks. My concern, is the
disks are 'consumer grade' disks. Western Digital mention not to use
them with a raid controller as they have a potential, 'deep recovery
cycle', which an last up to 2 minutes. This would theoretically result
in them being dropped from the array. Despite this, I've heard
successful uses of these disks via gmirror. (Granted, not the same as
gstripe). Again, in theory, if one disk enters a 'deep recovery cycle'
and is dropped from the array, and during that time another disks does
the same the array is toast, right?

Umm...what are the odds of this occurring? War stories? (The more I
type this out, the more it's starting to sound like a bad idea.)
Thoughts, ideas?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Wester Digital 'deep recovery cycle' and gstripe?

2009-11-17 Thread Modulok
Correction, it would be a graid3 setup. Sorry.

-Modulok-

On 11/17/09, Adam Vande More amvandem...@gmail.com wrote:
 On Tue, Nov 17, 2009 at 2:49 PM, Modulok modu...@gmail.com wrote:

 List,

 Has anyone used 'Wester Digital Caviar Black' disks in a gstripe?

 I'm building a 2TB gstripe, from 3x 1TB disks. My concern, is the
 disks are 'consumer grade' disks. Western Digital mention not to use
 them with a raid controller as they have a potential, 'deep recovery
 cycle', which an last up to 2 minutes. This would theoretically result
 in them being dropped from the array. Despite this, I've heard
 successful uses of these disks via gmirror. (Granted, not the same as
 gstripe). Again, in theory, if one disk enters a 'deep recovery cycle'
 and is dropped from the array, and during that time another disks does
 the same the array is toast, right?

 Umm...what are the odds of this occurring? War stories? (The more I
 type this out, the more it's starting to sound like a bad idea.)
 Thoughts, ideas?
 -Modulok-

 In a stripe, if one goes it all goes.  However I am not certain it's an
 issue in your case, the gstripe labeling mode with create a persistent
 config.  If there's not a better answer, best thing to do would be to test
 it out.  setting up gstripe takes like 10 minutes.


 --
 Adam Vande More

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: freebsd.org slow?

2009-11-14 Thread Modulok
Chris,

Seems alright now, for me anyway. (Indeed, the ever-irritating works
for me response. Though it seemed the only thing appropriate here.
Sorry. :)~

-Modulok-

On 11/14/09, Chris christopher...@telting.org wrote:
 Anyone else notice how slow freebsd.org is?

 Chris

 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: CMS

2009-10-16 Thread Modulok
On 10/15/09, Paul Schmehl pschmehl_li...@tx.rr.com wrote:
 I manage a couple of FreeBSD servers for a friend.  He's gotten all
 excited about content management and thinks that's the way to go.  The
 system he's familiar with is Windows only.  I've done a little research,
 but I'm wondering if anyone reading the list has experience with a CMS on
 FreeBSD - one that's in ports preferably.

 Pros?  Cons?  Any known security issues?

If it's your server and you're the guy, (or your friends) needing
content management abilities... a simple SSH connection cannot be
beat. But maybe that's not what you had in mind :p
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Tune USB latency...is that the right word?

2009-09-26 Thread Modulok
Aside from hacking ulpt.c, is there any way to tune the USB latency? More...

I have a USB printer, which works, but it takes about 2 minutes before
FreeBSD 7.2 will send it ANY data...during that 2 minutes nothing is
hapenning. It's not a printer warmup issue either, or a cable or
anything like that, as it worked on FreeBSD 6.1 (after applying a
patch to ulpt.c as submitted by someone on this list. (You know who
you are! Thanks!) For lack of a better term is there a, don't wait 2
minutes before you decide the printer is probably not up to USB spec
and start talking to it anyway sysctl or something?

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Is it possible to setup a graid3 on root?

2009-09-25 Thread Modulok
Just wondering if it is possible to setup a striped root partition
(graid3) and still be able to boot from it. Logically, it doesn't
sound promising, but has anyone tried this?

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Is this a kernel memory leak or a process memory leak?

2009-09-22 Thread Modulok
List,

Maybe I'm just not that bright, but I have a question regarding the following:

man 3 getenv
snip
Successive calls to setenv() or putenv() assigning a differently sized
value to the same name will result in a memory leak.  The FreeBSD seman-
tics for these functions (namely, that the contents of value are copied
and that old values remain accessible indefinitely) make this bug
unavoidable.  Future versions may eliminate one or both of these semantic
guarantees in order to fix the bug.
/snip

This is a memory leak within the process which calls sentenv() or
putenv(), not a memory leak in the kernel, right? Like, if I called
putenv() a in a loop and then exited the process, the kernel will
reclaim that cluster-fuck of lost allocated memory, right? (If it's a
kernel leak that would be super retarded as any process could
affectively starve the kernel of memory. ) So it's a userland leak
right?

Anybody?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: internet access from FreeBSD

2009-09-22 Thread Modulok
  Is there a later copy

Not that I'm aware of.

 I searched my copy for the word internet and couldn't find it.

Weird. Did you try Internet?

 Can I access the internet with a currently gettable copy of FreeBSD

If I understand correctly, you're asking if you can use FreeBSD to
access the Internet? If so...yes. Any version will do! If you're
referring to using a web browser and such, then you'll have to install
those yourself, but it's not difficult.


 Since I get my mail via  juno , can I access them nicely from FreeBSD or do 
 I need something to interface to it...

I have no experience with this 'juno', so I can't help there. Perhaps
others will have further advice.

-Modulok-

On 9/22/09, gs_stol...@juno.com gs_stol...@juno.com wrote:
  I have a copy of Greg Lehey's online book about FreeBSD, but
 I believe it is from February 2006.  Is there a later copy, and if so, where
 can I find a copy (URL please)?  I searched my copy for the word internet
 and couldn't find it.  I did access the internet with a take-off copy of
 FreeBSD, but I don't have access to it any more.  Can I access the internet
 with a currently gettable copy of FreeBSD, and if so, for what versions is
 that true (my personal version is old, but it works well so I never
 upgraded)?  Since I get my mail via  juno , can I access them nicely from
 FreeBSD or do I need something to interface to it and present me with my
 mailbox, listing the items in it and telling me the usual stuff about
 envelop mail (sender, subject, when received)?
 
 $5,000 a Week For Life
 Publishers Clearing House winner annouced on NBC. Enter now.
 http://thirdpartyoffers.juno.com/TGL2141/c?cp=NJLnQx9Yu8C9A0FjGKLJHAAAJ1CMuunOdcztR0sdySRQWupwAAQFAArXIzwACQGZAA==
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Is there such thing as a 'soft checksum' tool?

2009-09-07 Thread Modulok
 Modulok modu...@gmail.com writes:

  I'm not even sure such a tool exists, but it's worth asking:
 
  I'm looking for a pseudo-checksum tool for use with catalogging
  images. For example, a strict checksum algorithm, like the sha
  family, will produce a dramatically different checksum for two
  files which differ by only a single bit. I'm looking for
  something where two images images, which are similar, get a
  proportionally similar checksum. When I speak of similarities
  I'm referring to their image patterns. i.e two images of
  differing sizes, which are otherwise identical, would produce
  very similar checksums. So the closer the checksums are, the
  more similar two given images are.
 


  Does anyone know of anything like this?

 See if this ...

   http://www.stonehenge.com/merlyn/LinuxMag/col50.html


 ... fits.


   - parv

*laughs* It makes me feel pretty good after reading how Mr.Schwartz
went about it. Before I got any replies I started to think about how
I'd do it and began to sketch out an algorithm on the kitchen floor.
(Largest black-board in my house.) The general approach was pretty
much the same; Recursive bucketing of pixels and generating averaged
values down to a user-defined finite limit.

Thanks to all who have replied thus far!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Is there such thing as a 'soft checksum' tool?

2009-09-05 Thread Modulok
List,

I'm not even sure such a tool exists, but it's worth asking:

I'm looking for a pseudo-checksum tool for use with catalogging
images. For example, a strict checksum algorithm, like the sha family,
will produce a dramatically different checksum for two files which
differ by only a single bit. I'm looking for something where two
images images, which are similar, get a proportionally similar
checksum. When I speak of similarities I'm referring to their image
patterns. i.e two images of differing sizes, which are otherwise
identical, would produce very similar checksums. So the closer the
checksums are, the more similar two given images are.

Does anyone know of anything like this?
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


SANE configuration ... ideas?

2009-09-04 Thread Modulok
I want a scanner. I found one I like. I then checked the SANE
'Supported Scanners' list. My scanner is there:

Perfection V300 Photo  USB 0x04b8/0x0131   goodrequires DFSG non-free
esci-interpreter-gt-f720broverseas version of the GT-F620

I'm not sure what the 'requires DFSG...' business is about, but lets
get it working on FreeBSD. I followed the handbook section on
scanners. After installing a few ports and tweaking a config file
let's see if 'scanimage' knows about it:

   scanimage -L
   device `epson:libusb:/dev/usb3:/dev/ugen0' is a Epson  flatbed scanner

Yay! Let's scan something:

   scanimage -d epson:libusb:/dev/usb3:/dev/ugen0  foo.pnm
   scanimage: rounded value of br-x from -32768 to 0
   scanimage: rounded value of br-y from -32768 to 0
   scanimage: sane_start: Invalid argument

Maybe the backend just doesn't set a reasonable defaults for
the image width/height? Let's try it manually!

   scanimage -x 640 -y 480 -d epson:libusb:/dev/usb3:/dev/ugen0  foo.pnm
   scanimage: rounded value of br-x from 640 to -32768
   scanimage: rounded value of br-y from 480 to -32768
   scanimage: sane_start: Invalid argument

Somewhere, something is horribly wrong. Maybe it has to do with that
'requires DFSG non-free esci-interpreter-gt-f720' business. What is
that? Where do I get it and how do I use it? ... and more importantly,
how do I go about getting this scanner to work? I'm willing to read
and tweak, but I'm not sure what I'm supposed to tweak anymore.

Thanks!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


SANE epson.conf vs. epson2.conf

2009-09-03 Thread Modulok
There are two SANE backend configuration files for epson scanners,
'epson.conf' and 'epson2.conf'. How do I know which one to use for any
given epson scanner? Does it matter?

The scanner model used was the EPSON Perfection 1650, so we know the
scanner will use the epson2 backend.

How did we know that?

Thanks.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Continuous backup of critical system files

2009-08-25 Thread Modulok
 I'm setting up a firewall using FreeBSD 7.2 and thought that it may
 not be a bad idea to have a continuous backup for important files like
 pf and dnsmasq configurations. By continuous I mean some script that
 would be triggered every few minutes from cron to automatically create
 a backup of any monitored file if it was modified. I also have a full
 system backup in place that is executed daily (dump/restore to a
 compact flash card), so the continuous backup would really be for
 times when someone makes a mistake editing one of the config files and
 needs to revert it to a previous state.

 My initial thought was to create a mercurial repository at the file
 system root and exclude everything except for explicitly added files.
 I'd then run something like hg commit -m `date` from cron every 10
 minutes to record the changes automatically. Can anyone think of a
 better way to do this (existing port specifically for this purpose)?
 Obviously, I need a way to track the history of a file and revert to a
 previous state quickly. The storage of changes should be as
 size-efficient as possible.


Look into 'rsync', available in the ports collection.

Generally for a basic server, you make backup copies manually before
you edit something. It's a good habbit to get into:

# Make a quick backup:
cp rules.pf rules.pf.orig

# Then edit the original:
nano rules.pf

If you're doing some major messing around and don't like the manual
backup solution, look into 'subversion', in the ports collection. It
is a full-featured revision control system. It's used by most
developers (including the FreeBSD team.) You could setup a subversion
repository to store all of your config files. Make changes to them and
committ those changes back to the repository. Then if you make a bunch
of changes you don't like, simply checkout a previous revision. Its a
bit more work to setup, but if you're doing a lot of frequent
tinkering it might be worth it.

For general backups I use rsync on a dedicated backup server. This way
if I have to quickly restore something I can simply scp it back to the
production server in seconds. rsync is fast (after the initial backup)
as it only transvers the deltas (changes) in files. It automatically
sorts out who has changed and who needs backed up. You could configure
a cron job to run an rsync script every few minutes if you wanted.
That script could also contain a command to generate an incremental
copy of the entire backup directory using the -l (lowercase ell) flag.
This generates a hard-linked copy, which consumes no real additional
space. You can read all about it here:

http://www.sanitarium.net/golug/rsync_backups.html

Whatever you decide, best of luck!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Managing encrypted disks

2009-08-14 Thread Modulok
[snip]
 What I'd like to know, is if it's possible to somehow check to see if
 there are any GELI 'attach'ed disks on a given system that have not yet
 been mounted (or, iow, were umount'd, but were left attached).

 #dmesg doesn't say much in this regard, and I couldn't find out by
 listing /dev either.

 Any tricks to find out what GELI knows? I want to automate everything
 except the insertion of the keys, which will always be manual. Knowing
 how to identify what is attached but not mounted would be a good start.
[/snip]

Steve,

If there are no /dev/*.eli devices listed, then there are no geli
providers attached. You can also check the output of the 'geli list'
and 'geli status' commands. If they return nothing, no providers are
attached, otherwise they'll list the providers and algorithms/key
sizes used and so forth.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: FreeBSD for the common man(or woman) (was: upgrade 7.2 overwrites partitions)

2009-08-06 Thread Modulok
[snip]
 In light of this, I would really enjoy seeing a Ubuntu like movement
 in the FreeBSD corner.
 What I mean is that it would be nice for my mother to install and use
 FreeBSD.
 I am not saying that a Windows user should be able to feel right at home
 on a box running FreeBSD, but a computer user should.
 The problem herein, i am afraid, lies not with FreeBSD(or any other BSD
 flavour), nor with it's community, but with the computer user.
 Most computer users see an operating system(and the application they run
 most) as part of a computer.
 How many people say My computer is broken when µ$ Office doesn't start
 anymore.
 They don't care about which kernel they run, or which browser they use,
 they care about typing e-mail, chatting and watching youtube video's.
 (However sad it makes me that most people use less then 10% of the
 features/programs/potential/computing-power the computer came with, they
 do make sure we pay less for our components.)
 Even though I'd feel less cool or nerdy (which is basically the same
 thing ;-) ) if I'd run(or USE) the same OS as my 76 year old
 grandfather, it would be nice for him to be able to buy a computer for
 $20 less because it runs FreeBSD.
 To achieve this, there are two things that should be made easier:
 1. Installing a basic desktop system(next to any currently installed OS)
 2. Keeping the base system and ports up to date.
 And when I mean easier I mean it should be done without bothering the
 user unless you about to rm -rf / as root, so to say.
 Since most people never reinstall their computer, making it easier to
 install a basic desktop system won't help my 76 year old grandpa, but it
 will make it easier for unsatisfied Windows users to try FreeBSD.
 Besides, in making it easy to install a basic desktop system, comes the
 hardest part of any *nix like system: defining a basic desktop and
 collecting the basic/standard applications.
 It's hard just to pick either one Gnome, KDE or XFCE (or iceWM ;-) ) let
 alone mail-clients, internet browsers, IM, etc. etc.
 One of the advantages of using a descent operating system is the freedom
 of choice. However most users don't care!
 I am more then happy to tel anyone which e-mail client not to use (Lotus
 notes, outlook express, anyone else's neck hears standing up?), but I
 don't want to tell people they HAVE to use Thunderbird(I do tell them
 they SHOULD but that's different) or evolution etc.
 The problem is, most people don't want to make this choice either.
 And the circle of life continues.
 So basically, to make sure people will be using freeBSD (or any *nix
 operating system) it needs to be easy to install (So that
 PC-manufacturers will ship their pc's with it), a nicely filled standard
 desktop environment with lot's of youtube/chat/word process capabilities
 and I won't bother you with it but i'm updating functionality.
[/snip]

What you're talking about is indeed needed and does, to an extent,
exist; It's called PC-BSD, Ubuntu (as you mentioned) or even Microsoft
Windows.

I think it's great that such things exist. (Yes, even Windows.) I
think it's great that they can help people, who would otherwise be
helpless, use a computer to get their work done. I even applaud the
efforts of the tyrannical Microsoft for largely accomplishing this
feat. Hats off to all involved! But it doesn't end here...

On the other end of the coin there is also a need for an operating
system which does exactly what I, the user, commands it to do,
regardless of what that could mean. For some things, I need a system
which trusts me, the user, to make the right decisions. Knowing this,
I must be willing to accept the consequences of my actions, should my
choices prove to be incorrect.

If you prevent stupid people from doing stupid things, you prevent
clever people from doing clever things.

While one cannot throw any philosophy, in a blind fashion, at a given
problem, there is some truth to the statement. Both types of systems
are needed, and I sincerely hope that both continue to exist.

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: FreeBSD for the common man(or woman) (was: upgrade 7.2

2009-08-06 Thread Modulok
[snip]
 Once taken the time to set things up, they make you happy running for
 a lifetime. :-)
[/snip]

It's nice to be able to go on vacation, without worrying about the
servers back home craping out :)

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: How to find real CPU temperature?

2009-08-05 Thread Modulok
On 8/5/09, Unga unga...@yahoo.com wrote:

 I'm running FreeBSD 7.2 on Intel P4 computer.

 The lmmon -i shows 21C and when go to BIOS shows 65C! BIOS reading seems
 to be correct as the CPU heat pipe is very hot to the extent cannot touch.

 How do I read the real BIOS temperature readings when FreeBSD is running to
 check whether the computer is over heating?

If your mainboard supports it, and depending on your CPU, you might
look into sysutils/mbmon, found in the ports collection. Aside from
that, what does the following command output?

sysctl -a | grep temp

-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Secure password generation...blasphemy!

2009-08-04 Thread Modulok
Good call on the hashing, reducing the quality of the passwords, Kurt.
The hash generated passwords are for online accounts, as
auto-generated initial passwords and such.

But I'm also looking for a good way to generate high quality crypto
keys. In the later case, the data being protected are disk images of
clients...mountains of sensitive data. These will be on USB
keys, and thus do not need to be memorized. Assuming my clients are
not enemies of a state, /dev/random should be a sufficient source for
this purpose, correct? i.e:

dd if=/dev/random of=foo.key bs=256 count=1

Thanks guys!
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Re: Secure password generation...blasphemy!

2009-08-04 Thread Modulok
As I understand it I would have to double the length of a hashed
password for it to be as secure as an un-hashed one, as each pair of
characters represent one byte. Aye?

-Modulok-

On 8/4/09, RW rwmailli...@googlemail.com wrote:
 On Mon, 3 Aug 2009 22:20:50 -0800
 Mel Flynn mel.flynn+fbsd.questi...@mailing.thruhere.net wrote:

 On Monday 03 August 2009 18:28:52 Modulok wrote:

  I wrote a python script which uses /dev/random, and hashes the
  output with sha256. I then truncate the output to the desired
  length. Blasphemy! According to the superstitious password crowd my
  passwords are not very secure ... maybe.

 They aren't, because you reduce the random to a much less random,
 *because* you are hashing.

 Not in FreeBSD, it's a 256bit PRNG and a 256 bit hash.
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


Secure password generation...blasphemy!

2009-08-03 Thread Modulok
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...

There seems to be a lot of superstition about entropy. People have
come up with quite creative ways at generating passwords using
everything from dice in a shoebox to radio static recorded with a mic,
to dedicated entropy hardware. Most seem to discourage using any
computer program to generate passwords. The reasoning is that
computers employ only pseudo-random number generator (PRNG,
henceforth).

I wrote a python script which uses /dev/random, and hashes the output
with sha256. I then truncate the output to the desired length.
Blasphemy! According to the superstitious password crowd my passwords
are not very secure ... maybe.

However, wouldn't hashing bytes from /dev/random be quite secure? The
hash function would cover any readily apparent patterns, if they were
found to existed. Both sha256 and yarrow are, to date, believed to be
cryptographically secure. (Assuming the implementations are correct.)
Therefore, using a cryptographically secure pseudo-random number
generator and an equally secure hash function should be damn well good
enough, right?

I'd think that listening for cosmic background radiation or
environmental infrared is drifting a little far from being in the
realm of practical. Right?

Just looking for any re-assurances.
-Modulok-
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org


  1   2   3   >