Re: external hdd
On Mar 28, 2013, at 2:10 PM, Laszlo Danielisz wrote: If I'm sharing an external 1TB HDD with FreeBSD and OS-X (I wan to use Time Machine), what is the best file system to use? Time Machine is only supported on top of journaled HFS+; I'm not sure how fusefs-hfs is doing on FreeBSD, though. Or you could setup multiple partitions and have an exFAT partition for data interchange between other OSes. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: external hdd
Hi-- On Mar 29, 2013, at 3:52 PM, Damien Fleuriot wrote: On 29 March 2013 18:06, Chuck Swiger cswi...@mac.com wrote: Time Machine is only supported on top of journaled HFS+; I'm not sure how fusefs-hfs is doing on FreeBSD, though. Or you could setup multiple partitions and have an exFAT partition for data interchange between other OSes. Now, unless I got things wrong, I believe you're mistaken. The key word above which folks might not be paying enough attention towards-- particularly in the context of a backup solution-- is supported. I, for instance, have a Time Machine server running on top of 10.0-CURRENT with ZFS. http://www.area536.com/projects/ironclad-time-machine-backups-on-freebsd/ Indeed. As one might note on that page: defaults write com.apple.systempreferences TMShowUnsupportedNetworkVolumes 1 ^^^ #include std/disclaimer.h Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Using svn to checkout a deprecated port.
Hi-- On Feb 18, 2013, at 11:23 AM, Christopher Sean Hilton wrote: I need to use svn to checkout the old security/cfs port so I can do a one-time transfer of some data off of a USB drive. At the end of the day, I just need the one port so if the cvs repository is available I could also get it that way. In either case, I'm trying to do the equivalent of: $ cvs co -r '2011/10/01' $FreeBSDportsRepo security/cvs in English, I want to checkout security/cvs from ports as it existed on October 1st, 2011 (the port was deprecated on November 1st 2011. Try following the suggestion for Partial Checkout here: https://wiki.freebsd.org/PortsSubversionPrimer#line-62 Regards, -- -Chuck PS: Reply-To set to freebsd-ports@ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Why ue0 do ARP on non local address when using static route?
On Feb 13, 2013, at 12:35 PM, Jin Guojun wrote: When attached a Trendent TU2-ET100 USB Ether dongle for a second interface, it has no problem to talk to the local network (10.234.37.0/24), but it has problem to talk to a remote network or host (10.227.148.0/24) via eu0 interface. When a remote host ping this host or this host ping that remote host, ARP request is always showing up. A static route is set and remote host is no part of the local sub net, why ARP is going on? You've told the interface that it can reach 10.227.148.52 via 10.234.37.80, which is the IP ue0 was configured to use. It sends ARPOP_REQUESTS to get the MAC address of 10.227.148.52 which is expected to be reachable. Is any sysctl parameter can fix this problem? You can do things like use proxy-arp, or setup /etc/ethers, or NAT, or even configure ue0 to be on the same subnet as 10.227.148.52 instead, perhaps using an alias. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Why ue0 do ARP on non local address when using static route?
On Feb 13, 2013, at 2:17 PM, Jin Guojun wrote: /etc/ethers does not help because there is no way resolve the IP by QFHN in ethers. I'm not sure what QFHN is, but setting up an entry in /etc/ethers provides the IP to MAC address mapping that ARP attempts to provide dynamically. The correct way is to use router IP (10.234.37.1) between 10.234.37.0 and 10.227.148.0 instead of interface IP (10.234.37.80) for static route. Assuming there's a router at 10.234.37.1 which knows how to get to 10.227.148.52, yes. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: svn bdb checkout?
On Jan 16, 2013, at 11:35 AM, Peter Vereshagin wrote: [ ... ] Over again: How could I 'svn checkout' the sources without those '.svn' subdirectories in the each and every repo's subdirectories? If you're using Subversion-1.7 on the client side, there's only one .svn subdirectory at the top level, rather than the older workarea format where each subdirectory has it's own .svn subdir. Another alternative would be to use svn export instead of svn checkout. This will give you the files without .svn directories; however, you won't have a workarea which you can update, see what's changed with svn diff, etc. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Syncing Two Dirs With Rsync
On Jan 10, 2013, at 10:57 AM, Tim Daneliuk wrote: I have used rsync for many years to make sure a destination machine:directory is kept up-to-date with some source master directory. I now need to find a way to keep two different machine:dirs in sync with each other. But for any given file, I don't know which of these is newer so I don't know which way to sync. For example given: machineA::/dir/foo machineB:/dir/foo machineA::/dir/bar machineB:/dir/bar Say the machineA has the newest foo, but machineB has the newest bar. At the end of syncing, I want both machines to have the latest copies of everything. I'm guessing there's a way to do this with rsync but I'm kind of stumped. rsync's --update flag will not overwrite a file at the destination if it was modified more recently then the source location. So you can run rsync twice to sync from A to B and then from B to A. Make very sure both boxes are keeping correct time and/or are mutually sync'ed via NTP or similar. However, if you make different changes to the same file on A and on B, you will lose one of them. (That is what version control systems like SVN and git would resolve. So if you do plan to do 2-way or N-way changes and sync'ing on a regular basis, version control is much less likely to lose changes or otherwise screw up.) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sendmail not working
On Jan 8, 2013, at 9:09 AM, Robert Huff wrote: WHAT HAPPENS when you 'telnet' to your mailserver port(s) and try doing smtp transaction(s) manually? I don't get the SMTP prompt. OK, so sendmail either isn't starting, isn't binding to port 25, or some sort of network/firewall issue is blocking the connection. You should see a log entry like: sendmail[]: starting daemon (8.14.6): SMTP+queueing@01:00:00 ...and netstat -an | grep 25 (or similar with lsof) should find a LISTENing process on the port. What do the sendmail log messages say? Jan 8 10:12:44 jerusalem sm-mta[28896]: r05KsfdB048780: forward /home/huff/.forward.jerusalem+: Group writable directory Jan 8 10:12:44 jerusalem sm-mta[28896]: r05KsfdB048780: forward /home/huff/.forward+: Group writable directory Jan 8 10:12:44 jerusalem sm-mta[28896]: r05KsfdB048780: forward /home/huff/.forward.jerusalem: Group writable directory Jan 8 10:12:44 jerusalem sm-mta[28896]: r05KsfdB048780: forward /home/huff/.forward: Group writable directory Jan 8 10:12:44 jerusalem sm-mta[28896]: r05KsfdB048780: smtpquit: mailer local exited with exit value 1 Jan 8 10:12:44 jerusalem sm-mta[28896]: r05KsfdB048780: to=huff@localhost, delay=2+18:16:27, xdelay=00:00:00, mailer=local, pri=56791038, relay=local, dsn=4.4.2, stat=Deferred: Connection reset by local You either need to fix the permissions by running something like: chmod go-w / /home /home/huff /etc /etc/mail ...or you can add something like the following to your sendmail.cf: O DontBlameSendmail=ForwardFileInGroupWritableDirPath Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Login class and limit
On Dec 6, 2012, at 12:36 PM, Vagner wrote: [ ... ] Either use one of the su/sudo flavors I mention above, or /bin/sh -l to provide a login env to the process? ie means to implement restrictions limits(1) and login.conf(5) for daemons is not possible? Sure, it's possible: run the daemon within a login shell. However, normally, daemons aren't started from a login shell and do not inherit the limits setup by login.conf. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sendmail and Postfix
Hi-- On Jun 22, 2012, at 11:19 AM, Walter Hurry wrote: A little digging around has revealed that there are two 'mailq' executables on my system: /usr/local/bin/mailq and /usr/bin/mailq. The first is part of the mail/postfix-current port which I have installed and use, and the second is presumably part of Sendmail, which I have not installed and do not use. It seems that Sendmail is embedded somehow in the base system. What is the 'approved' way to get rid of /usr/bin/mailq? Or better, remove Sendmail? BSD Unixes have shipped with Sendmail for decades, much as BIND is also included-- so yes, Sendmail is included with the base system by default. The approved way is to simply leave things be. Properly written software will honor the links setup by mailwrapper(8) and use the Postfix MTA which you installed instead: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mail-changingmta.html If you really want to remove sendmail entirely, you can rebuild FreeBSD with NO_SENDMAIL=TRUE ...set in /etc/make.conf, which will avoid building sendmail at all. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Off Topic. DNS, Android.
On Jun 22, 2012, at 8:28 PM, Jorge Biquez wrote: Hello. Hola! I am sorry if the following 2 questions could sound too stupid. a) Normally any Domain name registered has to have 2 Nameservers. Some registry like the one responsible for .ORG requires 2 at least to propagate the domain. In teh case of .COM that is not a requirement, one nameserver could work. It's always a good idea to have at least two nameservers configured for any public domain, and best practice involves having nameservers located on different networks. If for some reason I have 2 of them and one is configured to point to SERVER A , and the other to SERVER B. Differenet places, same configuration. Is there any preference over what is PRIMARY NAMESERVER or SECONDARY NAMESERVER? I mean, Primary is the one used mainly? No, DNS round-robin used on most platforms will rotate fairly evenly. And the traffic can be cached by other nameservers for a long(er) time by upping TTLs, if you wish to reduce network traffic load...at the tradeoff of making DNS changes take longer to be noticed, of course. Bigger sites might adjust DNS traffic onto server pools with a load-balancer which does liveness checks of the nameservers and could be told to adjust traffic routing in various ways. You can also do something similar via ipfw/natd's redirect_address (see RFC 2391). b) I am looking for good list like this one for people developing, learning about Android Development. Any suggestion ? I am trying to setup a Freebsd machine for developing for Android, if possible. Hmm. http://developer.android.com/sdk/index.html suggests that maybe the Linux distribution under FreeBSD's Linux emulation might be a possibility. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 8.3 + MySQL 5.0.95
On Jun 13, 2012, at 11:43 AM, Simon wrote: Possible but extremely unlikely, I always had issues whenever I tried to build MySQL server myself. That by itself is interesting. The hardware where this is running has been very stable. I don't have any issues whatsoever making world, etc... A make world is a decent stress test, but it doesn't take long enough on modern hardware to reliably uncover problems. There is no segfault which is what usually happens when you have memory issues. And why would MySQL community server run stable if it was somehow my hardware? Bottom line, if this was hardware issue, the server would have paniced long ago. I wish I could get some input from someone running MySQL server with 300+ queries a second and what MySQL version/build they are running. By all means-- while I'm quite familiar with busy databases, folks aren't running MySQL for that kind of TPS load. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 8.3 + MySQL 5.0.95
On Jun 13, 2012, at 11:34 AM, Simon wrote: I upgrade to FreeBSD 8.3-p3 and installed MySQL 5.0.95 from ports. It runs fine until it dies silently. Does anyone run a heavy loaded MySQL under such setup? how can I troubleshoot this? I could never compile a stable MySQL server from the ports and always relied on MySQL community server binaries but there is no binary for latest 5.0.xx This sounds like marginal hardware which is failing under load. Make sure you can run something like memtest86 or prime95 overnight without errors Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 8.3 + MySQL 5.0.95
On Jun 13, 2012, at 12:24 PM, Simon wrote: I wish I could get some input from someone running MySQL server with 300+ queries a second and what MySQL version/build they are running. By all means-- while I'm quite familiar with busy databases, folks aren't running MySQL for that kind of TPS load. Why not? it is designed precisely for this. That depends on workload. Table-level or page-level locking is fine for read-only or read-mostly; it wasn't until InnoDB storage that MySQL had row-level locking, which is kinda important when you *aren't* read-mostly. Like I said, whenever I used MySQL project community server built binaries, I never had it crash. But the process from these community server built binaries went away, right? Right now I'm thinking: 1. the port build of 5.0.95 does something incorrectly. 2. it's running out of memory (FreeBSD's kernel still does not report out of memory errors for processes if it kills them; there is no way to know if kernel killed a process due to memory limit, it does not log this) 3. it's hitting some kind of 5.0.95 bug The program termination ought to log something, at least if you enable logging or have a monitor in place which can see mysqld's error status; even mysqld_safe ought to take --log-error flag Maybe I'm contacting wrong mailling list, I can't seem to get ahold of ISP/hosting guys on this list. Truly amazing that for a server OS, there is so little input for something like MySQL server. Perhaps everyone else is still using text files, does 10TPS, or runs linux, don't know what to make of it :\ That's likely to be a valid point; freebsd-ports would be appropriate for discussing the build problems with mysql port. freebsd-isp has a different population oriented towards hosting provider issues etc that you've mentioned. However, I can assure you that some folks here on freebsd-questions do deal with more than 10TPS. :-) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: `ls -l` shows size of file other than of the folder?
Hi-- On Jun 13, 2012, at 1:23 PM, Peter Vereshagin wrote: I have the directory in the file system with 2 regular files each of which is sized as 700M according to 'ls -l'. But the torrent client and 'du -s' and 'ls -l's 'total' show that the directory size is 300M. How can that be? Are there different file sizes stored on a ufs1 in their metadata? It's very likely that these are sparse files. Your torrent client creates a file of the appropriate size via fseek()/lseek() or similar, but the space isn't actually consumed until it writes the data it is obtaining from the network Random link: http://www.unixguide.net/unix/sparse_file.shtml Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Proper Port Forwarding
On Jun 7, 2012, at 10:29 AM, Michael Sierchio wrote: On Thu, Jun 7, 2012 at 10:27 AM, Michael Sierchio ku...@tenebras.com wrote: net.inet.tcp.finwait2_timeout: 6 - ms, ten minutes I can't do arithmetic, but you get the idea. A full minute. Yes; that's already shorter than possible MAXTTL value of packets, which can be anywhere up to 255 seconds (~= 5 minutes). Well, it's usually OK for a webserver to decide that it doesn't need to wait around for clients to properly shutdown their HTTP connections, but one might want to be more careful about zapping sockets early for HTTPS/SSL connections (ie, an online store doing a CC transaction or the like). Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: find date of last boot
On Jun 7, 2012, at 4:15 PM, Fbsd8 wrote: dmesg command does not show date of last boot. Are there some other commands to find date of last boot? Try last | grep reboot. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: find date of last boot
On Jun 7, 2012, at 6:32 PM, Randal L. Schwartz wrote: You must reboot a lot. My last log goes back only to the first of the month, and my uptime is 16 days right now, so I can't see the most recent reboot with last. FreeBSD aggressively rotates the utmp/wtmp databases; most other platforms leave it in place until the sysadmin decides to rotate it per local policy. Tweaking the monthly? periodic entries would change this, I'd imagine Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Is this something we (as consumers of FreeBSD) need to be aware of?
On Jun 6, 2012, at 4:54 PM, Robert Bonomi wrote: [ ... ] It may seem reasonable to you, but is there -legal- basis to do so? Go ask your lawyer. freebsd-questions isn't qualified to provide you with legal advice. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Strange dmesg entry, MCA
On Jun 4, 2012, at 4:13 PM, Rod Person wrote: I'm seen this once or twice and it show up again today, I'm not exactly sure what these MCA lines are telling me. Is this something to worry about? fuse4bsd: version 0.3.9-pre1, FUSE ABI 7.8 pid 90013 (cppunittester), uid 0: exited on signal 11 (core dumped) MCA: Bank 4, Status 0x94454a13 MCA: Global Cap 0x0105, Status 0x MCA: Vendor AuthenticAMD, ID 0x20f12, APIC ID 0 MCA: CPU 0 COR BUSLG Responder RD Memory MCA: Address 0x1d11afcd0 MCA: Bank 2, Status 0xd0004863 MCA: Global Cap 0x0105, Status 0x MCA: Vendor AuthenticAMD, ID 0x20f12, APIC ID 1 MCA: CPU 1 COR OVER BUSLG Source PREFETCH Memory Your CPUs were seeing correctible errors (probably via ECC memory or bus path); if they only happen rarely, it's probably OK to ignore them, but it's likely worth running memtest86 or prime95 overnight and seeing whether they find problems. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Dirty System - openssl problem
On May 22, 2012, at 6:05 AM, Odhiambo Washington wrote: Can someone please tell me how to resolve the following multiplicity of libraries, to ensure I only compile applications against a particular library. I believe this emanates from my installing of openssl from the ports. You could run make deinstall from the openssl port directory, or similar equivalent with pkg_delete. You'd then also need to rebuild anything linked to the openssl port. Why bother, though? FreeBSD isn't Windows; having multiple versions of a shared library around is supported sanely on Unix platforms Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Connect to Clear hub modem
On May 22, 2012, at 8:58 PM, Lars Eighner wrote: But I don't have a clue what to do from here. Try running 'dhclient'. If that works, add this to /etc/rc.conf: ifconfig_re0=DHCP The hub is supposed to have a web page at (imaginary address) 192.168.15.1, but I haven't been able to raise it. If the above doesn't work, try: ifconfig re0 inet 192.168.15.2 netmask 255.255.255.0 route add default 192.168.15.1 Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD Server
Hi-- On May 17, 2012, at 10:22 AM, lpeth wrote: I have a 8core, 32 GB ram server I built myself. AMD cpu, with Supermicro motherboard. I want to use FreeNAS as a database system, and I'm wondering what it will cost to use FreeBSD with FreeNAS. I see the Version I would like is $40 for a four CD set, but that does not mean I get to use the server version of it. What is the server version going to cost? FreeBSD is intended as a server platform; there isn't a different consumer and server version, although you can tune the platform for specific tasks if you like. FreeBSD CD/DVD images are freely available for download; see: http://www.freebsd.org/where.html ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/ISO-IMAGES/9.0/ FreeNAS is a modified version of FreeBSD, which comes preconfigured for ZFS and filesharing; as far as I can tell, their CD/DVD images are also freely available: http://sourceforge.net/projects/freenas/files/FreeNAS-8.0.4/FreeNAS-8.0.4-RELEASE-p2-x64.iso/download ...but you can pay a publisher for a copy instead of downloading, if you prefer. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: problems with networking and route command
Hi-- On May 16, 2012, at 1:08 PM, David Banning wrote: [ ... ] It is machines that connect and receive via DHCP 192.168.1.2 and above that can't connect to the internet though the server. I don't know a whole lot about route - I have been attempting a variation of route commands without success. You need to implement NAT on this box, since 192.168.0.0/16 is an RFC-1918 unrouteable private network range. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: question on SYN_SENT
On May 11, 2012, at 2:09 PM, Chad Leigh Shire.Net LLC wrote:
it is my understanding that SYN_SENT is when MY SIDE sends out a request and
is awaiting a reply?
That's right.
One of the jails we run for a customer had hundreds (if not thousands) of
attempts to connect from the 147. address you see below. It was exhausting
resources so that new tcp connections could not be made until some closed.
You have/had your jail opening connections to the webserver at IP
147.237.76.155, not that IP trying to connect to you.
I added that address to a pf block statement to stop it but now we get a
rolling connections in a netstat -a as show below (host. being a generic
name used in place of actual host on our side). I am wondering if this
shows something on our side trying to connect out? That is what it appears
to me to be, which does not make sense.
tcp4 0 0 host.52562 147.237.76.155.httpSYN_SENT
tcp4 0 0 host.52561 147.237.76.155.httpSYN_SENT
Yes, your side is trying to connect out.
Unless you know better, it seems reasonable to gather that it's doing a DoS
attack against:
% whois 147.237.76.155
[ ... ]
inetnum: 147.237.0.0 - 147.237.255.255
netname: IL-GOVT-NET
descr:Israeli Government Network
country: IL
admin-c: AT979-RIPE
tech-c: TT441-RIPE
status: ASSIGNED PI
mnt-by: GOV-IL-DNS
mnt-lower:GOV-IL-DNS
mnt-routes: AS8867-MNT { ANY }
mnt-routes: AS9116-MNT { 147.237.232.0/24^24-24 }
source: RIPE # Filtered
person: Admin Tehila
address:Israel Ministry Of Finance
address:1 Netanel Lorech st
address:Jerusalem Israel
phone: +972 2 6664666
fax-no: +972 2 6664650
remarks:For ABUSE and security issues please contact
remarks:email: ab...@tehila.gov.il
remarks:or contact CERT.gov.il at rep...@cert.gov.il
nic-hdl:AT979-RIPE
source: RIPE # Filtered
Regards,
--
-Chuck
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Write only directory.
On May 7, 2012, at 11:38 AM, Paul Halliday wrote: Is it possible to let a user write to a directory but not access the file after they write it? The file is being transferred via scp and after the transfer I don't want them to be able to re-fetch or even get a directory listing. A directory with 0300 / 0330 umask permissions will prevent directory listing, but if they know the filename, they can still read from it as a necessary consequence of being able to write to it (think of appending data). It sounds like you are trying to implement the SFTP equivalent of an FTP incoming upload dropbox, so the comments in man ftpd might be helpful. However, it might be easier to setup a cronjob every minute which moves any files in the dropbox location to some other place for review and processing, which will prevent read access as well as making directory listings moot. (People offering anonymous FTP incoming tend to do this, even if their ftpd offers support for blocking read access for anonymous users, etc...) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD vice OS X memory management
On Apr 25, 2012, at 5:31 AM, jb wrote: does OS X kernel share any code with FreeBSD kernel's memory management subsystem ? The simple answer is no. A more complex answer: % grep -ri freebsd xnu-1699.24.23 | wc -l 520 % grep -ril freebsd xnu-1699.24.23 | sort | uniq % grep -ril freebsd xnu-1699.24.23 | sort | uniq ~/Downloads xnu-1699.24.23/EXTERNAL_HEADERS/stdbool.h xnu-1699.24.23/bsd/bsm/audit.h xnu-1699.24.23/bsd/bsm/audit_domain.h xnu-1699.24.23/bsd/bsm/audit_errno.h xnu-1699.24.23/bsd/bsm/audit_fcntl.h xnu-1699.24.23/bsd/bsm/audit_kevents.h xnu-1699.24.23/bsd/crypto/aes/gen/aesopt.h xnu-1699.24.23/bsd/crypto/blowfish/bf_enc.c xnu-1699.24.23/bsd/crypto/blowfish/bf_locl.h xnu-1699.24.23/bsd/crypto/blowfish/bf_pi.h xnu-1699.24.23/bsd/crypto/blowfish/bf_skey.c xnu-1699.24.23/bsd/crypto/blowfish/blowfish.h xnu-1699.24.23/bsd/crypto/cast128/cast128.c xnu-1699.24.23/bsd/crypto/cast128/cast128.h xnu-1699.24.23/bsd/crypto/cast128/cast128_subkey.h xnu-1699.24.23/bsd/crypto/des/des.h xnu-1699.24.23/bsd/crypto/des/des_ecb.c xnu-1699.24.23/bsd/crypto/des/des_enc.c xnu-1699.24.23/bsd/crypto/des/des_locl.h xnu-1699.24.23/bsd/crypto/des/des_setkey.c xnu-1699.24.23/bsd/crypto/des/podd.h xnu-1699.24.23/bsd/crypto/des/sk.h xnu-1699.24.23/bsd/crypto/des/spr.h xnu-1699.24.23/bsd/crypto/rc4/rc4.c xnu-1699.24.23/bsd/crypto/rc4/rc4.h xnu-1699.24.23/bsd/crypto/sha2/sha2.c xnu-1699.24.23/bsd/crypto/sha2/sha2.h xnu-1699.24.23/bsd/dev/dtrace/blist.c xnu-1699.24.23/bsd/dev/dtrace/blist.h xnu-1699.24.23/bsd/dev/memdev.c xnu-1699.24.23/bsd/dev/vn/vn.c xnu-1699.24.23/bsd/hfs/hfs_lookup.c xnu-1699.24.23/bsd/hfs/hfscommon/headers/RedBlackTree.h xnu-1699.24.23/bsd/kern/kern_event.c xnu-1699.24.23/bsd/kern/kern_mib.c xnu-1699.24.23/bsd/kern/kern_newsysctl.c xnu-1699.24.23/bsd/kern/kern_resource.c xnu-1699.24.23/bsd/kern/makesyscalls.sh xnu-1699.24.23/bsd/kern/sys_pipe.c xnu-1699.24.23/bsd/kern/syscalls.master xnu-1699.24.23/bsd/kern/tty.c xnu-1699.24.23/bsd/kern/uipc_socket.c xnu-1699.24.23/bsd/kern/uipc_socket2.c xnu-1699.24.23/bsd/libkern/strsep.c xnu-1699.24.23/bsd/man/man2/aio_cancel.2 xnu-1699.24.23/bsd/man/man2/aio_error.2 xnu-1699.24.23/bsd/man/man2/aio_read.2 xnu-1699.24.23/bsd/man/man2/aio_return.2 xnu-1699.24.23/bsd/man/man2/aio_suspend.2 xnu-1699.24.23/bsd/man/man2/aio_write.2 xnu-1699.24.23/bsd/man/man2/audit.2 xnu-1699.24.23/bsd/man/man2/auditctl.2 xnu-1699.24.23/bsd/man/man2/auditon.2 xnu-1699.24.23/bsd/man/man2/getaudit.2 xnu-1699.24.23/bsd/man/man2/getauid.2 xnu-1699.24.23/bsd/man/man2/getdtablesize.2 xnu-1699.24.23/bsd/man/man2/getlcid.2 xnu-1699.24.23/bsd/man/man2/getpgrp.2 xnu-1699.24.23/bsd/man/man2/getsid.2 xnu-1699.24.23/bsd/man/man2/i386_get_ldt.2 xnu-1699.24.23/bsd/man/man2/issetugid.2 xnu-1699.24.23/bsd/man/man2/kqueue.2 xnu-1699.24.23/bsd/man/man2/mmap.2 xnu-1699.24.23/bsd/man/man2/mprotect.2 xnu-1699.24.23/bsd/man/man2/msync.2 xnu-1699.24.23/bsd/man/man2/read.2 xnu-1699.24.23/bsd/man/man2/semctl.2 xnu-1699.24.23/bsd/man/man2/semget.2 xnu-1699.24.23/bsd/man/man2/semop.2 xnu-1699.24.23/bsd/man/man2/sendfile.2 xnu-1699.24.23/bsd/man/man2/setaudit.2 xnu-1699.24.23/bsd/man/man2/setauid.2 xnu-1699.24.23/bsd/man/man2/setlcid.2 xnu-1699.24.23/bsd/man/man2/setregid.2 xnu-1699.24.23/bsd/man/man2/setreuid.2 xnu-1699.24.23/bsd/man/man2/sigaction.2 xnu-1699.24.23/bsd/man/man2/undelete.2 xnu-1699.24.23/bsd/man/man2/utimes.2 xnu-1699.24.23/bsd/man/man2/write.2 xnu-1699.24.23/bsd/man/man3/queue.3 xnu-1699.24.23/bsd/man/man4/aio.4 xnu-1699.24.23/bsd/man/man4/audit.4 xnu-1699.24.23/bsd/man/man4/auditpipe.4 xnu-1699.24.23/bsd/man/man4/bpf.4 xnu-1699.24.23/bsd/man/man4/divert.4 xnu-1699.24.23/bsd/man/man4/dummynet.4 xnu-1699.24.23/bsd/man/man4/faith.4 xnu-1699.24.23/bsd/man/man4/gif.4 xnu-1699.24.23/bsd/man/man4/ifmib.4 xnu-1699.24.23/bsd/man/man4/inet6.4 xnu-1699.24.23/bsd/man/man4/ipfirewall.4 xnu-1699.24.23/bsd/man/man4/ipsec.4 xnu-1699.24.23/bsd/man/man4/stf.4 xnu-1699.24.23/bsd/man/man4/tty.4 xnu-1699.24.23/bsd/man/man9/copy.9 xnu-1699.24.23/bsd/man/man9/fetch.9 xnu-1699.24.23/bsd/man/man9/intro.9 xnu-1699.24.23/bsd/man/man9/store.9 xnu-1699.24.23/bsd/man/man9/style.9 xnu-1699.24.23/bsd/miscfs/devfs/README xnu-1699.24.23/bsd/miscfs/devfs/devfs.h xnu-1699.24.23/bsd/miscfs/devfs/devfs_tree.c xnu-1699.24.23/bsd/miscfs/devfs/devfs_vfsops.c xnu-1699.24.23/bsd/miscfs/devfs/devfs_vnops.c xnu-1699.24.23/bsd/miscfs/devfs/devfsdefs.h xnu-1699.24.23/bsd/net/bpf.c xnu-1699.24.23/bsd/net/bpf.h xnu-1699.24.23/bsd/net/bpf_compat.h xnu-1699.24.23/bsd/net/bpf_filter.c xnu-1699.24.23/bsd/net/bpfdesc.h xnu-1699.24.23/bsd/net/bridgestp.c xnu-1699.24.23/bsd/net/bridgestp.h xnu-1699.24.23/bsd/net/if.c xnu-1699.24.23/bsd/net/if.h xnu-1699.24.23/bsd/net/if_arp.h xnu-1699.24.23/bsd/net/if_bridge.c xnu-1699.24.23/bsd/net/if_bridgevar.h xnu-1699.24.23/bsd/net/if_dl.h xnu-1699.24.23/bsd/net/if_gif.c xnu-1699.24.23/bsd/net/if_loop.c
Re: ntpd problems after port updates
On Apr 23, 2012, at 11:13 AM, Dean E. Weimer wrote: I am running NTPD built from ports on system that has had world rebuilt without ntp. After doing some port updates this morning to the latest OpenSSL which caused ntp to rebuild as its built against the OpenSSL port. ntpd now core dumps at start, in order to attempt and resolve the issue I tried starting ntpd with the -d switch added, at which point it loads fine without any problems. If you run 'ldd /usr/local/bin/ntpd', that might be informative. Only option checked when doing make config on the port is the with OpenSSL option. Consider not doing this-- OpenSSL has a much worse security history than ntpd itself does. In particular, the ASN.1 parser is infamous for trouble, such as CVE-2012-2110. if I execute: /usr/local/bin/ntpd -p /var/run/ntpd.pid The result is a signal 11 core dump. Run gdb against ntpd and the coredump you've gotten to see the crash backtrace. Or run ntpd under gdb. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ntpd problems after port updates
On Apr 23, 2012, at 12:08 PM, Dean E. Weimer wrote: Tried rebuilding without the with SSL option set, oddly it started once after that, but a restart caused same behavior. gdb doesn't give me anything that I know how to interpret, gdb -c /ntpd.core. (I haven't really used gdb before, so if I am not doing something correctly with it, please feel free to let me know) Ah, you need to build ntpd with -g in CFLAGS LDFLAGS for debugging symbols to be present Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: find -printf
On Apr 20, 2012, at 12:08 PM, Eugen Konkov wrote: checking 'man find' there is no -printf parametr. Does FreeBSD has different version of find utility compare to linux? Yes. Linux comes with GNU find. Maybe some knows workaroud for that? Install GNU find. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: domain required for FreeBSD install and isc dhcp
On Apr 20, 2012, at 12:40 PM, Chris Whitehouse wrote: I've wondered this for ages. When you set up networking as part of installing FreeBSD one of the pieces of information requested is a domain name. Also setting up dhcp.conf one of the fields is domain name. What do you do if you don't have your own domain? There have been a few domains which are permanently reserved and will never be assigned elsewhere: http://www.ietf.org/rfc/rfc2606.txt You can reasonably claim to be part of your ISP's domain, if you prefer. .lan might be reasonable, or .local, although the latter might conflict with Bonjour/Zeroconf. I've never supplied a domain name when installing FreeBSD and it doesn't seem to have been a problem. I'm just setting up dhcp for the first time and I don't know if it matters here. It's mainly used to setup the default search domain which clients use to find local unqualified hosts. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Postfix + Courier IMAP local email problems
On Apr 12, 2012, at 1:01 PM, Ron wrote: If I send email from a local user (while SSH'd in using the command line mail) to another local user (mail t...@mysite.com) on the same machine, but using the full email address, I get the following error and the email bounced back: 553 5.3.5 mail.mysite.com. config error: mail loops back to me (MX problem?) 554 5.3.5 Local configuration error The only thing I can think of is that mysite.com and mail.mysite.com (the mx record) do not point to the same server (which they did on my old machine). I have also tried everything I can think of in how users are listed in postfix's virtual file and in /etc/aliases and server entries in main.cf. You need to tell Postfix that mysite.com and mail.mysite.com are local. See the mydestination keyword in main.cf. The second issue is if (again, SSH'd in an using mail) I send email to a local user without the @mysite.com (mail todd) then the email isn't available via IMAP externally. I can read it using the command line mail, but not externally via IMAP. These two mailboxs are completely separate and have two different lists of waiting email. This implies you might be using a command line mail which does direct delivery to a Unix-style mailbox, but Postfix is using courier via mailbox_transport setting. Postfix ought to come with a sendmail-ish wrapper which does delivery via Courier instead, probably under /usr/local/libexec/postfix/sendmail and linked to /usr/local/sbin/sendmail or similar via mailwrapper(8). Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Reading an unknown DAT Tape
On Mar 15, 2012, at 1:17 PM, Martin McCormick wrote: I opened it with dd files=2 if=/dev/sa0 of=testfile and then did the strings utility on testfile and got: What does file testfile think? (od -ax on the first part of the file might be informative, also.) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Which compiler compiled system?
On Mar 12, 2012, at 12:45 PM, kalth...@googlemail.com wrote:
Is there a way to determine whether a FreeBSD-system was compiled with gcc or
clang?
I thought of some libs or so that might significantly differ.
It's fairly easy to determine whether assembly code was compiled with gcc or
clang from idioms they use-- GCC emits .ascii for strings and then adds a
trailing null; clang uses .asciz, for example. From that you can also figure
out whether a particular executable or shared library was compiled with one or
the other-- gcc is doing a leaf frame caller optimization, where it leave / jmp
to puts() (using the stack frame allocated for main()), whereas clang is doing
normal stack frame handling of %rpb and explicit return.
Regards,
--
-Chuck
% cat h.c
#include stdio.h
int main() {
puts(Hello, world!\n);
}
% gcc -S -O2 -o h-gcc.s h.c
% clang -S -O2 -o h-clang.s h.c
% cat h-gcc.s
.cstring
LC0:
.ascii Hello, world!\12\0
.text
.align 4,0x90
.globl _main
_main:
LFB3:
pushq %rbp
LCFI0:
movq%rsp, %rbp
LCFI1:
leaqLC0(%rip), %rdi
leave
jmp _puts
LFE3:
.section
__TEXT,__eh_frame,coalesced,no_toc+strip_static_syms+live_support
EH_frame1:
.set L$set$0,LECIE1-LSCIE1
.long L$set$0
LSCIE1:
.long 0x0
.byte 0x1
.ascii zR\0
.byte 0x1
.byte 0x78
.byte 0x10
.byte 0x1
.byte 0x10
.byte 0xc
.byte 0x7
.byte 0x8
.byte 0x90
.byte 0x1
.align 3
LECIE1:
.globl _main.eh
_main.eh:
LSFDE1:
.set L$set$1,LEFDE1-LASFDE1
.long L$set$1
LASFDE1:
.long LASFDE1-EH_frame1
.quad LFB3-.
.set L$set$2,LFE3-LFB3
.quad L$set$2
.byte 0x0
.byte 0x4
.set L$set$3,LCFI0-LFB3
.long L$set$3
.byte 0xe
.byte 0x10
.byte 0x86
.byte 0x2
.byte 0x4
.set L$set$4,LCFI1-LCFI0
.long L$set$4
.byte 0xd
.byte 0x6
.align 3
LEFDE1:
.subsections_via_symbols
% cat h-clang.s
.section__TEXT,__text,regular,pure_instructions
.globl _main
.align 4, 0x90
_main: ## @main
Leh_func_begin0:
## BB#0:
pushq %rbp
Ltmp0:
movq%rsp, %rbp
Ltmp1:
leaqL_.str(%rip), %rdi
callq _puts
xorl%eax, %eax
popq%rbp
ret
Leh_func_end0:
.section__TEXT,__cstring,cstring_literals
L_.str: ## @.str
.asciz Hello, world!\n
.section
__TEXT,__eh_frame,coalesced,no_toc+strip_static_syms+live_support
EH_frame0:
Lsection_eh_frame0:
Leh_frame_common0:
Lset0 = Leh_frame_common_end0-Leh_frame_common_begin0 ## Length of Common
Information Entry
.long Lset0
Leh_frame_common_begin0:
.long 0 ## CIE Identifier Tag
.byte 1 ## DW_CIE_VERSION
.asciz zR ## CIE Augmentation
.byte 1 ## CIE Code Alignment Factor
.byte 120 ## CIE Data Alignment Factor
.byte 16 ## CIE Return Address Column
.byte 1 ## Augmentation Size
.byte 16 ## FDE Encoding = pcrel
.byte 12 ## DW_CFA_def_cfa
.byte 7 ## Register
.byte 8 ## Offset
.byte 144 ## DW_CFA_offset + Reg (16)
.byte 1 ## Offset
.align 3
Leh_frame_common_end0:
.globl _main.eh
_main.eh:
Lset1 = Leh_frame_end0-Leh_frame_begin0 ## Length of Frame Information Entry
.long Lset1
Leh_frame_begin0:
Lset2 = Leh_frame_begin0-Leh_frame_common0 ## FDE CIE offset
.long Lset2
Ltmp2: ## FDE initial location
.quad Leh_func_begin0-Ltmp2
Lset3 = Leh_func_end0-Leh_func_begin0 ## FDE address range
.quad Lset3
.byte 0 ## Augmentation size
.byte 4 ## DW_CFA_advance_loc4
Lset4 = Ltmp0-Leh_func_begin0
.long Lset4
.byte 14 ## DW_CFA_def_cfa_offset
.byte 16 ## Offset
.byte 134 ## DW_CFA_offset + Reg (6)
.byte 2 ## Offset
.byte 4 ## DW_CFA_advance_loc4
Lset5 = Ltmp1-Ltmp0
.long Lset5
.byte 13 ## DW_CFA_def_cfa_register
.byte 6 ## Register
.align 3
Leh_frame_end0:
.subsections_via_symbols
...and here's a disassembly of main() from gcc:
_main:
Re: FreeBSD 8.2 - active plus inactive memory leak!?
On 3/6/2012 2:13 PM, Luke Marsden wrote: [ ... ] My current (probably quite simplistic) understanding of the FreeBSD virtual memory system is that, for each process as reported by top: * Size corresponds to the total size of all the text pages for the process (those belonging to code in the binary itself and linked libraries) plus data pages (including stack and malloc()'d but not-yet-written-to memory segments). Size is the amount of the processes' VM address space which has been assigned; the various things you mention indeed are the common things which consume address space, but there are others like shared memory (ie, SysV shmem stuff), memory-mapped hardware like a video card VRAM buffer, thread-local storage, etc. * Resident corresponds to a subset of the pages above: those pages which actually occupy physical/core memory. Notably pages may appear in size but not appear in resident for read-only text pages from libraries which have not been used yet or which have been malloc()'d but not yet written-to. Yes. My understanding for the values for the system as a whole (at the top in 'top') is as follows: * Active / inactive memory is the same thing: resident memory from processes in use. Being in the inactive as opposed to active list simply indicates that the pages in question are less recently used and therefore more likely to get swapped out if the machine comes under memory pressure. Well, they aren't exactly the same thing. The kernel implements a VM working set algorithm which periodically looks at all of the pages that are in memory and notes whether a process has accessed that page recently. If it has, the page is active; if the page has not been used for some time, it becomes inactive. If the system has plenty of memory, it will not page or swap anything out. If it is under mild memory pressure, it will only consider pages which are inactive or cache as candidates for which it might page them out. Only under more severe memory pressure will it start looking to swap out entire processes rather than just page individual pages out. [ Although, the FreeBSD implementation supposedly will try to balance the size of the active, inactive, and cache lists (or queues), so it is looking at the active list also-- but you don't want to page out an active page unless you really have to, and if you have to do that, maybe you might as well free up the whole process and let something have enough room to run. ] * Wired is mostly kernel memory. It's normally all kernel memory; only a rare handful of userland programs such as crypto code like gnupg ever ask for wired memory, AFAIK. * Cache is freed memory which the kernel has decided to keep in case it correspond to a useful page in future; it can be cheaply evicted into the free list. Sort of, although this description fits the inactive memory category also. The major distinction is that the system is actively trying to flush any dirty pages in the cache category, so that they are available for reuse by something else immediately. * Free memory is actually not being used for anything. Yes, although the system likes to have at least a few pre-zeroed pages handy in case an interrupt handler needs them. It seems that pages which occur in the active + inactive lists must occur in the resident memory of one or more processes (or more since processes can share pages in e.g. read-only shared libs or COW forked address space). Everything in the active and inactive (and cache) lists are resident in physical memory. Conversely, if a page *does not* occur in the resident memory of any process, it must not occupy any space in the active + inactive lists. Hmm...if a process gets swapped out entirely, the pages for it will be moved to the cache list, flushed, and then reused as soon as the disk I/O completes. But there is a window where the process can be marked as swapped out (and considered no longer resident), but still has some of it's pages in physical memory. Therefore the active + inactive memory should always be less than or equal to the sum of the resident memory of all the processes on the system, right? No. If you've got a lot of process pages shared (ie, a webserver with lots of httpd children, or a database pulling in a large common shmem area), then your process resident sizes can be very large compared to the system-wide active+inactive count. This missing memory is scary, because it seems to be increasing over time, and eventually when the system runs out of free memory, I'm certain it will crash in the same way described in my previous thread [1]. I don't have enough data to fully evaluate the interactions with ZFS; you can easily get system panics by running out of KVA on a 32-bit system, but that shouldn't apply
Re: Do not work turn-off line to syslogd last message repeated N times'
On Mar 2, 2012, at 2:52 PM, Vladislav V. Prodan wrote: # ps -auxww | grep syslog root 84784 0,0 0,0 12168 1348 ?? Ss ср00 0:03,24 /usr/sbin/syslogd -sc root 24776 0,0 0,0 16408 1364 9 S+2:50 0:00,00 grep syslog Try specifying -c twice. #man syslogd ... -c Disable the compression of repeated instances of the same line into a single line of the form ``last message repeated N times'' when the output is a pipe to another program. If specified twice, disable this compression in all cases. Presumably, you are just logging to a file, rather than to a pipe Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: CPAN hanging on ExtUtils::MakeMaker even if installed
On Feb 22, 2012, at 10:48 AM, Jaime Kikpole wrote: On Feb 22, 2012, at 11:40 AM, Matthew Seaman m.sea...@infracaninophile.co.uk wrote: The remaining port (lang/perl5.8) hasn't been modified in 7 months, and I believe it may well be deprecated and removed fairly soon. Good to know. What version comes with FreeBSD if you don't install a port of Perl? None. Is there some way to just yank the installed port and revert to the default installed version? You can uninstall the port, yes. If you do, there wouldn't be any perl installed. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: apache22 + php5 (package not ports) ~ spawn-fcgi ?
On Feb 21, 2012, at 5:14 PM, alexus wrote: is there a way to make apache22 w/ php5 without using /usr/ports? Yes, you could download and build the sources yourself without using ports. It wouldn't be any faster or easier, though. just using pkg_add -r apache22 pkg_add -r php5 No. The precompiled php5 package doesn't come with mod_php Apache module, in part because there are many apache versions against which it might be compiled. maybe through spawn-fcgi somehow? I suppose, or just normal CGI mechanism. anyone have a good example/docs how to do it? http://www.fastcgi.com/drupal/node/6 Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: apache22 + php5 (package not ports) ~ spawn-fcgi ?
On Feb 21, 2012, at 5:31 PM, alexus wrote: I dont think you really grasping what I was asking.. With respect, of course I understand what you were asking. I am aware that I can build from source, yet I'm trying to stay away from that route due to a lot of overhead going forward... OK. You cannot expect someone else's precompiled binaries to precisely match your particular circumstances, so you're choosing to give that up in favor of convenience, but that is a reasonable decision if the value of configuring the webserver well for the site is less than the value of a few hours of your (or someone's) time. I'm also aware that php5 or actually apache22 doesn't come with mod_php as well, and as alternative I'm willing to go spawn-fcgi route instead, and this is what I'm interested in. OK. I'm looking for some blog/howtos of people already done it on freebsd and not just a general fastcgi.com site :) You haven't indicated anything so far which would suggest the general documentation was insufficient. What have you tried? So, if anyone have an experience or know a good resources that may be useful for me at this point of time, I'd highly appreciate if you can post it here. With respect, I can recall when Brian Behlendorf and Andrew Wilson and some other folks started collecting a bunch of patches to the NCSA webserver, which became known as Apache-0.60 back around 1994, and later was publicly released in 1995 as Apache-0.70 or so. Well, there are other folks who deal with webservers at sites for which the cost of downtime is measured in the millions of dollars per hour from whom you can seek advice Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: One or Four?
On Feb 17, 2012, at 2:05 PM, Robison, Dave wrote: We'd like a show of hands to see if folks prefer the old style default with 4 partitions and swap, or the newer iteration with 1 partition and swap. For a user/desktop machine, I prefer one root partition. For other roles like a server, I prefer multiple partitions which have been sized for the intended usage. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: One or Four?
On Feb 17, 2012, at 3:11 PM, Devin Teske wrote: a. A security issue /tmp is by-default out-of-the-box world-writable (perms 1777). Yes. It works as intended even when /tmp is part of a single root partition; although mounting /tmp as a RAM- or swap-based tmpfs filesystem might be better for many situations. Making this world-writable bucket part of / seems silly both for Desktops and Servers alike. You're welcome to your opinion. However, I suspect you're expecting FreeBSD systems to always be partitioned and administered by knowledgeable BSD Unix sysadmins, and those are not always so readily available as one might assume. b. A nuisance As Da Rock points out, ... recovering your system from a file-system-full-event when using single-/ is just as difficult regardless of Desktop versus Server. Having /tmp alleviates the difficulty. It would if /tmp was mounted on a disk partition, and if it also happened to be where space was being consumed. /var/log and /home tend to be more likely locations in my experience, but YMMV. c. A performance issue I'm surprised nobody has pointed out the physical performance limitations of rotating disks with respect to physical location of partitions on the spindle. Granted, seek times are light years beyond what they used to be, but allocating smaller swap and tmp partitions close to the center of the spindle is a performance-enhancing setup just as much as it is for protecting against file-system-full problems (security events included). I suggest you do some measurements; starting with diskinfo -t, or something like HDTach for Windows: http://en.wikipedia.org/wiki/File:HD_Tach_Hitachi_HTS541616J9S_SB40-screenshot.png It's very typical for the outermost tracks of a disk drive to be up to twice as fast as the innermost tracks due to the greater amount of data available per cylinder on the outer tracks. These outer tracks are most often given LBA 0, and the drive writes data inwards with higher LBA #'s. [ If performance is especially critical, folks will partition the disks so that they only use the outermost third or so of the disk, to maximize read/write performance and minimize seeking; this is known as short stroking a disk... ] I'd argue that there should never be a single-/ unless you are prepared to deal with a truly 100%-full filesystem problem (especially considering that Desktop users whom select the default-everything are often not skilled enough to deal with that situation). If someone truly wants a single / and nothing else, there's manual partitioning (which should prove pretty easy in the event that you're only creating one partition and nothing else). More sophisticated partition schemes certainly can have value in terms of better isolation from unexpected logfile growth (etc), a separation of OS-provided files from user content, a separation of stuff which doesn't change often versus stuff that does, and so forth. However, for whatever reasons, the overwhelming majority of folks using MacOS X don't have problems using a single root partition, and while they sometimes do fill up their disks, that's a situation which they should be able to recover from without needing expert assistance. I don't recall having unusual issues in running a partition out of space under FreeBSD, either, or difficulty fixing things afterwards-- but such doesn't happen very often if you monitor your systems properly, and have time to respond to low-space conditions before they turn into out of space conditions. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: swap space
On Feb 17, 2012, at 3:54 PM, Jim Pazarena wrote: is there a command which can show the size of the hard drive swap? A df seems to avoid the swap area. You're looking for swapinfo Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: One or Four?
On Feb 17, 2012, at 4:11 PM, Devin Teske wrote: However, for whatever reasons, the overwhelming majority of folks using MacOS X don't have problems using a single root partition, and while they sometimes do fill up their disks, that's a situation which they should be able to recover from without needing expert assistance. I don't recall having unusual issues in running a partition out of space under FreeBSD, either, or difficulty fixing things afterwards-- Recipe for disaster: 1. You have a cron-job that pulls down /etc/master.passwd daily 2. Your cron-job also runs pwd_mkdb after SUPing down /etc/master.passwd Yes, I agree that this is a recipe for disaster; the reasons not very correlated to disk space, however. Even twenty years ago, handling this via YP/NIS or NetInfo would have made more sense, and nowadays folks would be far more likely to use LDAP as the network user database, instead of pushing system password database changes via SUP or similar replication mechanism locally to individual hosts. 3. A program fills / 4. cron fires 5. pwd_mkdb can't generate databases because not enough room on filesystem 6. System can no longer be logged into #5 does not imply #6: if pwd_mkdb can't build a temporary version to /etc/pwd.db.tmp /etc/spwd.db.tmp, it will exit with an error rather than invoke rename(2) to replace the working version of the password database with something that might be broken. To be very specific, I would expect one to get: /: write failed, filesystem is full pwd_mkdb: /etc/pwd.db to /etc/pwd.db.tmp: No space left on device 7. System is rebooted 8. Can't log in (not even as root) 9. Go into single-user mode 10. No space to work in Sure... you can call it an edge-case, but it's pretty common and this is only one of a myriad of ways we can reproduce the problem of filling-up / to cause major headaches. I've never heard of such a thing happening to a real FreeBSD system in the past decade or more. The closest match to the issue results in a failure of adduser(8) or pw(8) to add new users, but existing users continued to work fine. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: One or Four?
On Feb 17, 2012, at 4:10 PM, Robison, Dave wrote: On 02/17/2012 15:55, Chuck Swiger wrote: Yes. It works as intended even when /tmp is part of a single root partition; although mounting /tmp as a RAM- or swap-based tmpfs filesystem might be better for many situations. Sure it has its uses, but now you're jumping into new territory where the installer has to either ask the user to create tmpfs or make the decision to do it on its own. That's right. I don't advocate using tmpfs for /tmp under all circumstances, but it is a reasonable choice for some situations, and it would be nice if FreeBSD-9's shiny new installer provided am option to set that up. As has been stated, this is fine if sufficient RAM is available. Personally I don't like using RAM for tmp. OK. Making this world-writable bucket part of / seems silly both for Desktops and Servers alike. You're welcome to your opinion. However, I suspect you're expecting FreeBSD systems to always be partitioned and administered by knowledgeable BSD Unix sysadmins, and those are not always so readily available as one might assume. I'm not sure why someone has to be knowledgeable to select a particular partitioning scheme. Um, because a novice user just going with the default partitioning scheme (whatever that might be) or guessing random values isn't likely to achieve better results than someone knowledgeable making an informed decision about how to partition a disk? Is it better for a novice to have one big / to fill up as opposed to a separate /var or /tmp? That doesn't have a single, simple answer. It may be better to have a single root partition, for which they can notice and understand their disk usage by a single value, compared to having them need to understand df and multiple filesystems mounted as a tree, rather than separate devices (aka Windows disk letters). :-( b. A nuisance As Da Rock points out, ... recovering your system from a file-system-full-event when using single-/ is just as difficult regardless of Desktop versus Server. Having /tmp alleviates the difficulty. It would if /tmp was mounted on a disk partition, and if it also happened to be where space was being consumed. /var/log and /home tend to be more likely locations in my experience, but YMMV. Actually, in my experience I have huge problems with users misusing /tmp as a holding spot for all manner of files. I like keeping /tmp separate and smallish to discourage its use for everyday transfers. Those things belong in a users home directory, not in /tmp. It sounds like these users want some kind of shared folder with relatively open permissions, and I've seen plenty of small office / collaborative environments where such a thing would be of value. However, for whatever reasons, the overwhelming majority of folks using MacOS X don't have problems using a single root partition, and while they sometimes do fill up their disks, that's a situation which they should be able to recover from without needing expert assistance. I don't recall having unusual issues in running a partition out of space under FreeBSD, either, or difficulty fixing things afterwards-- but such doesn't happen very often if you monitor your systems properly, and have time to respond to low-space conditions before they turn into out of space conditions. Previously you said that knowledgeable unix admins aren't as common as might be thought... now you're making the assumption that these same novice users will monitor their systems properly for low-space conditions. Oh, no-- I don't assume that most users will notice and fix a low-space condition beforehand-- I was speaking of what I do, although it hopefully also describes other managed environments. It doesn't describe what end-user support folks [1] generally have to deal with. However this is all superfluous conversation if the installer gives each user a variety of options. You can select your one big partition scheme or go with multiple partitions depending on your preference, and from what I've read so far, this seems to be not only a reasonable idea, but also one which many people would prefer. Having the FreeBSD installer provide a reasonable set of options which include the traditional FreeBSD partition layout and a single root partition would likely be better than the current state. Regards, -- -Chuck [1] Apple Retail calls them geniuses ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: inetd[1081]: ssh/tcp: bind: address already in use
On Feb 8, 2012, at 11:39 AM, Henry Olyer wrote: Second, I am getting: inetd[1081]: ssh/tcp: bind: address already in use. What's the fix, please? Don't try to run sshd via inetd when you're already starting it as a daemon. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ntpd crashes during start - a lot of interfaces
On Feb 5, 2012, at 10:39 PM, Radek Krejča wrote: I have problem with using ntpd on 8.2 amd64 (not tested elsewhere). If I have a lot of interfaces (vlans) ntpd crashes with segmentation fault (core dump). I have tested on my test machine and it really depends on number of interfaces. It try to bind on every of it. I want to reduce it with using some options (like -I em0) but it seems that ntpd ignore it. If I use truss the system calls look same. Is there any way to bind directly on specified interface? -I is supposed to do that, but if it doesn't work right, consider gaining a bit more debugging info (a backtrace from running under gdb or against the corefile) and filing a PR. You could also discuss this with upstream, meaning the NTP mailing list at questi...@lists.ntp.org Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Multiple errors on server -- Where do I start looking?
On Feb 6, 2012, at 8:15 AM, Ryan Merrell wrote: We have an Intel modular blade server. The chassis has 2x 3-disk RAID(5) arrays. Volume 1 is what the OS (FreeBSD 7.2) is installed on and Volume 2 is mounted at /usr. These two volumes are da0 and da1. This doesn't matter directly to your issue, but a 3-disk RAID-5 setup is not a great choice. With six disks available, you'd almost certainly do better either as a 6-disk-wide RAID-5 or a RAID-10. I got email notifications saying the web host I run in a jail hosted on this server was down. I try to SSH into it, but it fails. I ping it and I get a 50% return rate. So I log in to the management blade and start a virtual KVM sessions to get into the blade. Once I'm into the basehost blade, I cat dmesg.today and get a slew of errors. Here we go.. (da3:mpt0:0:6:1): Logical unit not accessible, target port in standby state (da3:mpt0:0:6:1): Retrying Command (per Sense Data) (da3:mpt0:0:6:1): READ(10). CDB: 28 0 0 0 0 0 0 0 1 0 (da3:mpt0:0:6:1): CAM Status: SCSI Status Error (da3:mpt0:0:6:1): SCSI Status: Check Condition (da3:mpt0:0:6:1): ILLEGAL REQUEST asc:4,b (da3:mpt0:0:6:1): Logical unit not accessible, target port in standby state (da3:mpt0:0:6:1): Retrying Command (per Sense Data) (da3:mpt0:0:6:1): READ(10). CDB: 28 0 0 0 0 0 0 0 1 0 (da3:mpt0:0:6:1): CAM Status: SCSI Status Error (da3:mpt0:0:6:1): SCSI Status: Check Condition (da3:mpt0:0:6:1): ILLEGAL REQUEST asc:4,b (da3:mpt0:0:6:1): Logical unit not accessible, target port in standby state (da3:mpt0:0:6:1): Retries Exhausted As mentioned before, our two volumes are da0 and da1. /dev lists da2 and da3 as well, but I have no idea what they are. How do I figure out what da3 is and what do the above error messages say about it? Someone on the forum asked me if the two volumes are on the same controller and the answer is yes, they are. Check a dmesg after a reboot, or take a look at camcontrol devlist or atacontrol list and that ought to provide more information. Since you're also using GEOM labels, glabel status is likely to be informative as well. GEOM_LABEL: Label for provider da0s1a is ufsid/4aeb03874c64d9f1. GEOM_LABEL: Label for provider da0s1d is ufsid/4aeb038ae8ae24cf. GEOM_LABEL: Label for provider da0s1e is ufsid/4aeb0387d41a. GEOM_LABEL: Label for provider da0s1f is ufsid/4aeb038766c4c807. Trying to mount root from ufs:/dev/da0s1a GEOM_LABEL: Label ufsid/4aeb03874c64d9f1 removed. GEOM_LABEL: Label for provider da0s1a is ufsid/4aeb03874c64d9f1. GEOM_LABEL: Label ufsid/4aeb0387d41a removed. GEOM_LABEL: Label ufsid/4bd2077f23a6cc93 removed. GEOM_LABEL: Label for provider da0s1e is ufsid/4aeb0387d41a. GEOM_LABEL: Label for provider da1s1 is ufsid/4bd2077f23a6cc93. GEOM_LABEL: Label ufsid/4aeb038766c4c807 removed. GEOM_LABEL: Label for provider da0s1f is ufsid/4aeb038766c4c807. GEOM_LABEL: Label ufsid/4aeb038ae8ae24cf removed. GEOM_LABEL: Label for provider da0s1d is ufsid/4aeb038ae8ae24cf. GEOM_LABEL: Label ufsid/4aeb03874c64d9f1 removed. GEOM_LABEL: Label ufsid/4aeb0387d41a removed. GEOM_LABEL: Label ufsid/4aeb038766c4c807 removed. GEOM_LABEL: Label ufsid/4aeb038ae8ae24cf removed. GEOM_LABEL: Label ufsid/4bd2077f23a6cc93 removed. Was root unmounted? Whats going on here? Obviously there's some issue with da0, which is mounted at /. The server has been up and running fine, so why am I seeing Trying to mount root from ufs:/dev/da0s1a? These are standard messages from GEOM-- it's trying to look at the disk labels and figure out where to mount the various filesystems. pid 93248 (httpd), uid 80: exited on signal 10 pid 95624 (httpd), uid 80: exited on signal 10 pid 97956 (httpd), uid 80: exited on signal 10 pid 97935 (httpd), uid 80: exited on signal 10 pid 96603 (httpd), uid 80: exited on signal 10 pid 93210 (httpd), uid 80: exited on signal 10 pid 98246 (httpd), uid 80: exited on signal 10 This is apparently whats killing our webserver. Apache receives a signal 10 and quits.. Everything I've read says it's an issue with Apache trying to access RAM that it shouldn't or that doesn't exist.. Is there something else with the above da0 or da3 errors that would cause a SIGBUS on httpd? That's unclear, but normally a failing disk will cause I/O to block and the httpds will simply hang, not crash. Most likely, you've got a bug lurking in one of the Apache modules you use (mod_php is a likely candidate), but run a test instance of httpd under gdb using -X flag, and see whether you can gain better information. Or unlimit coredumpsize, and run gdb against the corefile to see what's causing the crash. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Swap_pager: indefinite wait buffer
Hi-- On Jan 27, 2012, at 12:38 PM, Kévin Hagner wrote: But now, during the compilation, my entire computer has planted, and I noticed that swap_pager emmited message in buckle on the tty1 like him : swap_pager: indefinite wait buffer: bufobj: 0, blkno: 48002, siwe 4096 After a check on the web, I found that it's principally a hardware error which cause this warning: hard drive, or cables... But it's nothing wrong in /var/log/messages, and all other files on the hard disk have, for the moment, no I/O mistakes. Do you have an idea of the source of my problem ? Try running: dd if=/dev/_your_disk_ of=/dev/null bs=64k conv=noerror ...or install sysutils/smartmontools port and use it to run drive diagnostics. I'm running on a FreeBSD 9.0-STABLE, the file system used is UFS, I've 2Gb RAM and no native swap partition. Oh. You should never configure a Unix system without at least some swap space available, and configuring at least as much swap as you have RAM (plus a little bit more) is the minimum recommendation. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Portability of shell scripts from other *nixes
On Jan 25, 2012, at 2:08 PM, Doug Poland wrote: The issue I'm having is the shebang line of the scripts in OS X is #!/bin/sh, and it turns out that is really an instance of bash, and the code contains some bashisms. On FreeBSD I have bash in /usr/local/bin/bash. Is there an easy/best way to have a single shebang that works on both OS's? I'd rather not change FreeBSD's bourne shell to bash with any symlinking of /usr/local/bin/bash to /bin/sh. Try using something like: #!/usr/bin/env bash (If the shell scripts are something written by Apple rather than by third-parties, please also consider filing a bug report.) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Portability of shell scripts from other *nixes
Hi-- On Jan 25, 2012, at 7:24 PM, Da Rock wrote: On 01/26/12 12:55, Doug Poland wrote: This gets me closer, but the scripts behave differently now on OS X. For example, printf's don't output the same. Try searching on google and find out exactly what sh MacOSX is using. Then you'd have a better idea on what you're working with. /bin/sh on MacOSX is: $ /bin/sh --version GNU bash, version 3.2.48(1)-release (x86_64-apple-darwin10.0) Copyright (C) 2007 Free Software Foundation, Inc. ...and it has been using bash as /bin/sh since 10.2 or so. Anyway, running bash as /bin/sh versus as /bin/bash likely affects whether it invokes printf as a builtin(1) command or as an external command. It's possible that invoking /usr/bin/printf instead of just printf in the scripts might resolve the issue(s). Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: database apps that ignore sockets? [was: Solution: mysqld fails to run, can't create/find mysql.sock]
On Jan 14, 2012, at 5:18 PM, Paul Beard wrote: Turns out some applications won't work if you move the socket if they are configured to access localhost. Seems like a misunderstanding of networking if you can specify a port number in a configuration file but the application looks to the filesystem for the socket. There is no way to specify a file location so it seems doomed to fail — as it did. Something looking for a network location specified as a host and port (ie, localhost:3306) is using a TCP socket. Something looking for /tmp/mysqld.sock is using a UNIX domain socket. Changing the path to the UNIX domain socket will have no effect upon the port used by the TCP socket, or vice versa. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: database apps that ignore sockets? [was: Solution: mysqld fails to run, can't create/find mysql.sock]
On Jan 15, 2012, at 8:43 AM, Paul Beard wrote: Useful clarification but a UNIX domain socket sounds less like networking and more like interprocess communication, i.e., something explicitly tied to a single host. Yes, that's right. There is a skip networking option for MySQL that references the domain socket for use by processes on the same host but doesn't accept connections on port 3306. That also sounds familiar. There's no indication that using localhost will default to a domain socket which will explicitly be looked for in /tmp and if you put it anywhere else, you must specify a hostname to access the TCP socket. You're confusing two things which are different. If you specify a path via --socket=/tmp/mysqld.sock, you are describing a UNIX domain socket. While you can also specify --host=localhost, that would be ignored because it it implicit. If you change where the socket lives in mysqld config or CLI options, you need to change where the clients look for the socket as well. If you specify a hostname and port via --host=localhost --port=3306, then you are describing a TCP socket. There is no pathname involved. You could connect regardless of where mysqld is putting the socket. I'll quote your definition in the bug report as it seems crystal clear. I would have said that the documentation seem clear as well: http://dev.mysql.com/doc/refman/5.5/en/multiple-server-clients.html http://dev.mysql.com/doc/refman/5.5/en/multiple-unix-servers.html ...but there's evidently some confusing aspect. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Solution: mysqld fails to run, can't create/find mysql.sock
On Jan 14, 2012, at 10:17 AM, Paul Beard wrote: I would be interested in knowing how those permissions got changed. Someone or something running as root changed them. I rebooted the system early on in the process as I kept seeing messages like this: 120114 9:39:04 [ERROR] Can't start server : Bind on unix socket: Permission denied 120114 9:39:04 [ERROR] Do you already have another mysqld server running on socket: /tmp/mysql.sock ? Those are rubbish as error messages as they don't say the file can't be created or give any indication of the actual problem. The meaning seems obvious enough; mysqld was unable to bind to the socket, which is what perror() meant with Permission denied: 13 EACCES Permission denied. An attempt was made to access a file in a way forbidden by its file access permissions. Either /tmp was unwritable for mysqld due to not having 1777 perms, or /tmp/mysql.sock probably already existed but was owned by root and not the user mysqld runs as. Anyway, doesn't the mysql port want to keep the socket under /var/run/mysql/mysqld.sock or some such, to avoid issues with /tmp? Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: 3.6.13 firefox fonts are blurred on my 8.2 freebsd
Hi-- On Jan 12, 2012, at 11:38 AM, akshay sreeramoju wrote: The image shows, (not sure how bad it is showing for you), more or less the display I get from firefox and emacs. I will try to send a more detailed image tonight. You appear to be running in an 8 or 16-bit color mode; what does xdpyinfo say? Most likely, you want to run in 24/32-bit color mode instead, to avoid apps grabbing a limited palette of colors Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Ports with modern compilers
On Jan 12, 2012, at 8:53 PM, Dmitry Sarkisov wrote: Hello list, I'd like to try building my ports with features and optimizations modern complers provide. A couple of q. here: 1. What's the safest (less painful) way to go - build with fresh gcc or clang/llvm? For portable code, there shouldn't be much difference in terms of getting a working result. Clang tries to have better diagnostics than gcc; gcc has been around for a lot longer, and is much more likely to work with less-portable code due to GNU'isms. 2. Is it ok to build new ports with new compiler, while already having a bunch of them build with default gcc version 4.2.1? Yes. A more complete answer would be mostly, so long as nobody has changed C++ symbol mangling or a host of other details. Have fun, but don't expect too much benefit from recompiling things with a newer compiler. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Ports with modern compilers
Hi-- On Jan 12, 2012, at 8:53 PM, Dmitry Sarkisov wrote: Hello list, I'd hope that you are reading the list; as your address bounces: Begin forwarded message: From: postmas...@mac.com Date: January 12, 2012 9:07:37 PM PST To: cswi...@mac.com Subject: Delivery Notification: Delivery has failed This report relates to a message you sent with the following header fields: Message-id: 467d6fa8-f0fa-45b3-b367-20fe9ad64...@mac.com Date: Thu, 12 Jan 2012 21:07:05 -0800 From: Chuck Swiger cswi...@mac.com To: Dmitry Sarkisov ait_ml...@rocc.ru Subject: Re: Ports with modern compilers Your message cannot be delivered to the following recipients: Recipient address: ait_ml...@rocc.ru Reason: Remote SMTP server has rejected address Diagnostic code: smtp;550 5.7.1 ait_ml...@rocc.ru... Access denied Remote system: dns;mail.rocc.ru (TCP|17.148.16.97|53739|194.84.224.171|25) (mail.rocc.ru ESMTP [peer1]; Fri, 13 Jan 2012 09:07:27 +0400 [MSK];) Original-envelope-id: 0lxq00ais0vuw...@asmtp022.mac.com Reporting-MTA: dns;asmtp022-bge351000.mac.com (tcp-daemon) Arrival-date: Fri, 13 Jan 2012 05:07:06 + (GMT) Original-recipient: rfc822;ait_ml...@rocc.ru Final-recipient: rfc822;ait_ml...@rocc.ru Action: failed Status: 5.7.1 (Remote SMTP server has rejected address) Remote-MTA: dns;mail.rocc.ru (TCP|17.148.16.97|53739|194.84.224.171|25) (mail.rocc.ru ESMTP [peer1]; Fri, 13 Jan 2012 09:07:27 +0400 [MSK];) Diagnostic-code: smtp;550 5.7.1 ait_ml...@rocc.ru... Access denied ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: pkg_add -r and a local package repo
On Jan 11, 2012, at 2:03 PM, Randal L. Schwartz wrote: First, it looks like pkg_add -r needs the full package name. Is there any way to give it zsh instead of zsh-4.3.15? Create a symlink from zsh-4.3.15.tbz to zsh.tbz on the package server. You can also control this at the time of building the package via: www.freebsd.org/doc/en/books/porters-handbook/makefile-naming.html#AEN647 5.2.4 LATEST_LINK LATEST_LINK is used during package building to determine a shortened name to create links that can be used by pkg_add -r. This makes it possible to, for example, install the latest perl version by running pkg_add -r perl without knowing the exact version number. This name needs to be unique and obvious to users. Second, it looks like it won't install dependencies. This is a problem. Can I get it to search and install dependencies somehow? Does the package in question have its dependencies properly specified? Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Mounting (read/write) ext4
On Jan 8, 2012, at 11:57 AM, Chris wrote: Can the upcoming FreeBSD 9 mount ext4 file systems out of the box? Probably no. There's ext2 backwards-compatibility, but from what I recall, as soon as someone uses extents under the ext4 filesystem it is no longer backwards-compatible with ext2/3. On the other hand, installing sysutils/fusefs-ext4fuse or sysutils/e2fsprogs ought to be straightforward. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD9 + PHP
On Jan 9, 2012, at 12:02 PM, alexus wrote: there is no way to make it like that? so it has to be build via ports? The PHP maintainer decides the default options, which is what the precompiled package you got used. While many people want PHP in the form of an Apache module, other folks use it via fastcgi and so forth... Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: failure - write_dma issue
On Jan 6, 2012, at 10:03 AM, John Almberg wrote: My FreeBSD servers have been quite reliable since I started using them 4 or 5 years ago, so I don't have much experience debugging them. Can anyone give me a hint about what might be wrong (I assume with the HD), and how/if it might be fixable? That's a typical sign of a disk failure. Whether it is just a bad sector, or whether the entire drive is toast is the question, and the smartctl utility from sysutils/smartmontools port will let you take a look and run drive self-tests to help answer it. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Apparently conflicting smartctl output
On Jan 5, 2012, at 11:42 AM, Janos Dohanics wrote: - Do I have a bad hard drive (apparently, I do...) - Why are there No Errors Logged by smartctl? You've probably got a bad sector on the drive, anyway. The SMART error log is a funny thing governed by various drive's firmware which have quirks. Some of 'em only have a self-test log, but don't store the error log at all; others will only record an error after they've given up trying to remap a failing sector. You snipped too much of the smartctl output to see what the Error logging capability section says-- the full output would be more informative. You almost certainly want to do a full read-scan of the drive via dd if=/dev/ad4 of=/dev/null bs=64k, which will help the drive notice any other failing sectors. Repeat dd if it aborts early with an error (or add conv=noerror, maybe). Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Same version on binary packages and updated ports
On Dec 29, 2011, at 11:16 AM, Walter Alejandro Iglesias wrote: I am giving my firsts steps with FreeBSD. Greetings and welcome... In a RELEASE fresh install, after updating the ports using i.e. portsnap, the packages downloaded with pkp_add -r are older versions respect their port counterparts, leading to dependencies issues. So, once the ports tree is updated: There are tools like portmaster portupgrade which help manage the issue of changing dependencies. 1) Am I forced to compile all? Mostly, no. There are a few ports which cannot be made available as packages, typically due to licensing issues. 2) Should I use STABLE to get the same versions with pkg_add than compiling up to date ports? Are STABLE packages compiled from this ports? -STABLE refers to the FreeBSD OS. There is no such thing as -STABLE for ports/packages. 3) In case my assumption above is correct; taking in care that in a production system it is advisable (handbook) to stay with RELEASE, should I avoid updating the ports tree in i.e. a server machine? The ports tree and the OS aren't directly related. People ought to be fine running a -RELEASE version of FreeBSD with the latest ports tree (or packages compiled from the ports tree). What to do with broken ports in this case? Fix them? Revert to a working backup? Resuming, is there a default way to install-update the software keeping ports and binary packages in one piece? portupgrade and portmaster (mentioned earlier) do this. They can be told to use precompiled packages in preference to building locally, and you can even set up a local package repository if you want to build your own packages with specific options that you prefer. What is advisable in general terms for a desktop and what for a server? Well, a casual desktop user tends to upgrade whenever they feel motivated to, whereas a server ought to be managed. Part of managing a server is deciding when and how often to update it, based on workload, fault-tolerance, security, and other concerns. You might start by using portaudit, and upgrading ports whenever a security issue is noticed with a port that you have installed. It will be enough for me if someone just point me to documentation. It's not clear whether you'd read the Handbook? http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ports.html Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: anybody know howto do eazy abbrevs?
On Nov 11, 2011, at 3:10 PM, Gary Kline wrote: hw r u gys dng? into: how are you guys doing? Assuming you've got emacs installed: info emacs -s abbrev Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: X server and xinit works excellent....almost.
On Nov 10, 2011, at 2:25 AM, Michael Cardell Widerkrantz wrote: True for PS/2, but not true for USB-- the USB Vendor Product ID can identify different keyboard types and let you infer the country. I'm sorry I was unclear. I meant the USB device doesn't say what physical keyboard layout it has in any standardized way. There is nothing in the USB protocol about it. That's fairly said-- you'd have to query a database of vendor+product ids and see whether you can determine that a particular keyboard is for a given country and/or language. If you don't find a match, there isn't a good way of identifying the region of the device just via USB protocol. The product ID code might tell you something if you have a large database and the USB product ID is indeed different between two physical layouts. It might not be. For instance, while ANSI keyboards and ISO keyboards are bound to have different USB product IDs because of actually physical differences in the number of keys, the only thing that differs between, say, a German keyboard and a Swedish keyboard of the same model is what is printed on the keycaps. A vendor might see these as the same USB product ID. Different keycaps means a different product SKU, at least. If they use the same USB product ID, then you're going to have to define a keymap file / xmodmap / etc to associate the scan codes with the right character that's printed on the keycaps. FreeBSD's users generally are more technically inclined and might be willing to deal with this, but even so, I suspect that most folks would appreciate the system trying to figure out that an AZERTY keyboard layout means French, that JIS means Japanese, that QWERTZ probably indicates German / Swiss / Hungarian, etc. To my mind, though, that's a fallback for when you have a KVM or a PS/2-to-USB converter or suchlike in the way that prevents the device from being correctly recognized. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: X server and xinit works excellent....almost.
On Nov 10, 2011, at 3:57 PM, David Brodbeck wrote: On Thu, Nov 10, 2011 at 11:12 AM, Chuck Swiger cswi...@mac.com wrote: FreeBSD's users generally are more technically inclined and might be willing to deal with this, but even so, I suspect that most folks would appreciate the system trying to figure out that an AZERTY keyboard layout means French, that JIS means Japanese, that QWERTZ probably indicates German / Swiss / Hungarian, etc. I thought I'd mention that OS X takes an interesting approach to this. When you plug in a keyboard it doesn't recognize, it does a little dance where it tells you to press certain keys (e.g., Press the key to the right of the left Shift key, with a little graphic to help you understand which key it means) and from the results it infers the layout. Indeed, yes-- that's KeyboardTypeSection, part of Setup Assistant.app used to perform initial configuration of a new system. While I think it makes a good example, I don't want to evangelize stuff from $REALJOB too strongly. :-) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: X server and xinit works excellent....almost.
Hi-- On Nov 9, 2011, at 12:02 PM, Michael Cardell Widerkrantz wrote: And should HAL have discovered my swedish keyboard automatically in the first place, so there was something going wrong there? How would HAL know that the keyboard had a Swedish layout? No such information is sent through USB or PS/2 when you attach a keyboard. True for PS/2, but not true for USB-- the USB Vendor Product ID can identify different keyboard types and let you infer the country. For example, see: http://www.linux-usb.org/usb.ids At the moment, I happen to be using a: Apple Pro Keyboard: Product ID: 0x020b Vendor ID: 0x05ac (Apple Inc.) Version: 4.20 Speed: Up to 12 Mb/sec Manufacturer: Mitsumi Electric Location ID: 0x3d111300 / 6 Current Available (mA): 250 Current Required (mA): 50 ...and this database would correctly let the system know that I'm using US layout: 020b Pro Keyboard [Mitsumi, A1048/US layout] If you figure out that a Logitech Tangentbord K120 (or an Apple MC184S) is connected, then you've got a Swiss keyboard, and so forth. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: X server and xinit works excellent....almost.
On Nov 9, 2011, at 5:01 PM, Polytropon wrote: In this regards, it's also strange how FreeBSD could forget USB information it once had. On my old 5.x system, I got dmesg lines like that: ukbd0: Sun Microsystems Type 6 USB keyboard, rev 1.00/1.02, addr 3, iclass 3/1 ums0: Sun Microsystems Type 6 USB mouse, rev 1.00/1.02, addr 2, iclass 3/1 A USB standard device descriptor includes iManufacturer and iProduct fields, which are likely the source of the strings displayed above. I guess the new USB stack doesn't bother to display them. Now that I have a type 7 keyboard, the USB information still is not useful: % usbconfig -u 1 -a 3 dump_info ugen1.3: Sun USB Keyboard vendor 0x0430 at usbus1, cfg=0 md=HOST spd=FULL (12Mbps) pwr=ON % usbconfig -u 1 -a 2 dump_info ugen1.2: product 0x100e vendor 0x0430 at usbus1, cfg=0 md=HOST spd=FULL (12Mbps) pwr=SAVE % dmesg | grep ^u[km] ukbd1: vendor 0x0430 Sun USB Keyboard, class 0/0, rev 2.00/1.05, addr 3 on usbus1 ums0: vendor 0x0430 product 0x0100, class 0/0, rev 1.00/1.02, addr 4 on usbus1 ums0: 3 buttons and [XY] coordinates ID=0 You can also see that dmesg logs different data (0x100e vs. 0x0100). The 0x0100 is for the mouse; the 0x100e is probably a USB hub, perhaps within the keyboard if the mouse attaches to the keyboard, although the database suggests it was a USB hub within a monitor. If you figure out that a Logitech Tangentbord K120 (or an Apple MC184S) is connected, then you've got a Swiss keyboard, and so forth. This is fine as long as you're going to keep that language settings. However, there are users who need a non-US language on a US keyboard layout - or vice versa. In such a case, the autodetection doesn't help. The idea is that autodetection provides a suggested default, at least if it can identify a country for the input devices which are connected to the system. But users should be able to set up their own language preferences, which might be different from the system default and from other user's settings. Your example with Apple hardware corresponds to my experience. I also have an older Mac keyboard which works fine on FreeBSD, including proper device identification. My assumption still is: Not _every_ keyboard manufacturer does code the layout into the USB identification. If you tell me I'm wrong with this assumption, I'll be happy. :-) Folks are supposed to use a different product ID for different devices, so you can uniquely identify them. I can't promise that every vendor handles this perfectly, any more than folks always ensured that PCI ids uniquely identified a specific hardware version, but one should blame the vendor for being brain-damaged in such cases; it isn't a fault of the USB standard Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: console-kit daemon
On Nov 7, 2011, at 4:19 PM, ajtiM wrote: I ahve a problem that computer freeze when I compailing ports without error. Sometimes freeze (hard reset help) and sometimes reboot. I did ran memtest 24 hours and there were no errors, I used smartmontools for check hard drive and there are no errors but the problem is here still. Running memtest is a great diagnostic for bad memory. It's good that it passed; so this suggests thermal problems, or less likely, a marginal power supply unit which can't handle full load. prime95 / mprime has a diagnostic mode which lets you fully load up both CPU and memory resources, and might be better suited to identifying a problem if memtest didn't find anything Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Fast personal printing _without_ CUPS
On Oct 28, 2011, at 1:04 PM, Jerry wrote: Check out MOVED in the ports. There are numerous applications that are just abandoned or discontinued. If something breaks I want someone to contact. I realize that is not the Open Source way however. The thought of someone actually being responsible is rare indeed. When you use Open Source software, _you_ are responsible for it, and not the author(s) to the extent that such responsibility can legally be disclaimed. See the Disclaimer in all-caps here, for example: http://www.freebsd.org/copyright/freebsd-license.html Don't like it? Feel free to use something else, or feel free to pay for a level of support that suits you. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Fast personal printing _without_ CUPS
On Oct 27, 2011, at 10:39 AM, Jerry wrote: Printing under MS Windows is a breeze. The *nix community has never gotten printing up to that lever. Of course Unix has had functional printing; the issue is mostly dumb printers which can't accept PostScript or at least PCL, and need an OS-specific driver to rasterize for the device. A secondary problem is X11's imaging model with the dichotomy between on-screen imaging and print imaging. For examples of Unix printing done right, look back to NEXTSTEP twenty years ago, using Display Postscript and Pantone colorimetry to provide true WYSIWYG; also, Sun's NEWS and OpenWindows also had the DPS extension to X. Most of that technology is still around under MacOS X, although DPS has largely been replaced by a PDF imaging model instead. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: [zfs-discuss] ZFS on Dell with FreeBSD
Hi-- On Oct 20, 2011, at 2:57 AM, Damien Fleuriot wrote: Also, what do they mean by SAS 6Gbps External Controller ? SAS is serial attached SCSI; it permits multipath connections to devices and thus is more similar to fibre channel HBAs than SATA, although some SAS controllers will also work with normal SATA drives. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: [zfs-discuss] ZFS on Dell with FreeBSD
On Oct 20, 2011, at 9:59 AM, Damien Fleuriot wrote: SAS is serial attached SCSI; it permits multipath connections to devices and thus is more similar to fibre channel HBAs than SATA, although some SAS controllers will also work with normal SATA drives. I know what SAS stands for. OK. My question was, what do they mean by *external* controller ? It means the connections to the devices are external, rather than being intended for internal devices: http://www.dell.com/content/topics/topic.aspx/global/products/pvaul/topics/en/us/raid_controller?c=usl=encs=555 Do you get to provide your own ? Devices? Yes. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Help! Can't delete files ...
Hi-- On Oct 19, 2011, at 11:23 AM, Andy Wodfer wrote: I need to delete about 20 files, but I can't do it through the CMS nor by command line on this FreeBSD 8.1 STABLE server. There's something with the character encoding/keyboard or server setup I think. Please advice. This is what a file looks like when I ls: 28b Kjoepesenter n?ringsg?rdeier.docx That's probably UTF-8 encoding of the Norwegian string. You'd need to quote the characters in a fashion appropriate for whichever shell you use; but an easier way is likely: rm -i *Kjoepesenter* Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Upgrading from 6.2-RELEASE?
On Oct 19, 2011, at 11:55 AM, Kurt Buff wrote: I have gotten custody of an old machine running the aforementioned, and it's in production. I can take it down for a couple of hours if necessary, but would prefer to have it down as little as possible. The most straightforward solution would be to build out and validate a new system running FreeBSD-7.4 or 8.2, and drop it in place of the old box. If all is good, decommission the old hardware. What are my options for getting it to a supported release - looking at the handbook it doesn't appear the the freebsd-update utility will work in this case, as it's not 6.3? Can I, for instance, boot from a CD of a supported version and do an upgrade, or am I stuck doing a download of sorce for 7.0-RELEASE, compiling that, and then an freebsd-update to 7.4? You can do either. However, it's probably easier to just download and burn the 7.4 or 8.2 image, and do an upgrade directly than it would be do upgrade via source to 7.0-RELEASE and then try freebsd-update. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: small du(1) question
On Oct 19, 2011, at 12:34 PM, Alexander Best wrote: the du(1) man page states the following: -B blocksize Calculate block counts in blocksize byte blocks. This is differ- ent from the -k, -m options or setting BLOCKSIZE and gives an estimate of how much space the examined file hierarchy would require on a filesystem with the given blocksize. Unless in -A mode, blocksize is rounded up to the next multiple of 512. is this a doc bug, or does du(1) really always assume that every filesystem's blocksize == 512? The default blocksize is 512 bytes. The -B option flag lets you tell du to assume a different filesystem blocksize. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Upgrading from 6.2-RELEASE?
On Oct 19, 2011, at 12:45 PM, Kurt Buff wrote: You can do either. However, it's probably easier to just download and burn the 7.4 or 8.2 image, and do an upgrade directly than it would be do upgrade via source to 7.0-RELEASE and then try freebsd-update. Gotta love conflicting answers from you and Adam Well, you did ask for opinions. They tend to not be conflict-free :-) I haven't had problems doing a reinstall from a new ISO image to update a FreeBSD box which was more than a major release out of date. But, I was at pains to verify that I had complete backups and time to rollback if needed, and I also made sure to rebuild all of the ports after doing the OS reinstall/upgrade. I've got an ISO of 7.4. I think I'll do a dump of my data to a remote machine, do the update, and see what that gets me. OK. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: small du(1) question
On Oct 19, 2011, at 1:37 PM, Alexander Best wrote: The default blocksize is 512 bytes. The -B option flag lets you tell du to assume a different filesystem blocksize. so when running freebsd on a hdd with a blocksize of 4k, a simple 'du -h' will always display incorrect results, unless '-B 4096' was also specified? Which blocksize? The filesystem's DEV_BSIZE kept in the superblock info, the logical sector size provided by the device to the BIOS/UEFI/firmware, or the actual physical device blocksize? isn't there a way to automatically query the blocksize of the underlying device, instead of always asuming the blocksize is 512 byte? There is a way to query the blocksize of a physical device-- ie, ATA's IDENTIFY DEVICE, or SCSI's MODE SENSE-- but various drives lie about their actual physical blocksize to work around bugs in BIOS and drivers. Also, while one does prefer to have all of the three blocksizes mentioned above correspond for performance reasons, they aren't always the same. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: USB thumb drives for bootable flash FreeBSD installation...
Hi-- On Oct 17, 2011, at 3:53 PM, Jason Usher wrote: Are they all the same, or are there some USB flash choices that are more durable and fault tolerant than others ? There's fairly significant differences: http://en.wikipedia.org/wiki/Flash_memory#Write_endurance SLC NOR flash tends to last longer than NAND flash; SLC also tends to last longer than MLC. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: somewhat Off topic, Sendmail Issue
Hi--
On Oct 12, 2011, at 8:29 AM, Dean E. Weimer wrote:
I know that setting this option in Apache does the trick for HTTPS, I just
need to figure out how to tell Sendmail to do the same.
SSLCipherSuite ALL:!aNULL:!eNULL:!LOW:!EXP:!ADH:RC4+RSA:+HIGH:+MEDIUM:!SSLv2
If anyone has any idea how to do this, or any idea on what keywords to search
on that might find me the directions it would be a great help.
If you can't find a way of specifying the allowed SSL ciphers via sendmail
config (as someone mentioned, you can test ${cipher_bits} against ENCR:bits,
but that doesn't disable anonymous ciphers like ADH entirely), you can build a
modern flavor of OpenSSL to /usr/local with the ciphers you don't like
disabled, and rebuild sendmail against this OpenSSL.
I believe that the security/openssl already does most of this for you, and
would be easy to tweak a bit more if that's needed.
Regards,
--
-Chuck
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Can't access a music CD
On Oct 12, 2011, at 5:14 PM, Polytropon wrote: On today's disc drives, you typically don't have a 3.5mm headphone connector for direct listening. Also some sound cards (unlike most onboard sound chips) have the ability to connect the CD audio wire inside the machine. This feature is obsolete, but still works. It's typically not part of laptop designs. A fair number of motherboards with integrated audio will take the analog audio output from a CD/DVD drive; the better ones will also accept a 3-pin digital SP/DIF connection as well. Even if they don't, however, it's not uncommon for them to have audio connectivity in the form of a microphone input buried within a 10-pin extension header (AC'97 and Intel's HD Audio front panel connector), rather than have a 4-pin or 3-pin connector which matches the cable which came with the CD/DVD drive. Anyway, none of the above should not be needed with modern SATA devices-- digital audio data goes directly over the SATA cable without a need for a separate audio cable. Any laptop (which isn't obsolete) would use this route. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Bouncing Email
On Sep 28, 2011, at 5:08 AM, Gene wrote: This is probably (ok... IS) off topic, so if anyone knows of a list dealing with policyd-weight please just point me at it. policyd-weight is a port, so maybe freebsd-ports. But mail RBLs are fairly generic and you could use them with sendmail from base system, so discussing here might be as good a place as anywhere. :-) Otherwise, has anyone noticed a sharp upswing in bounced emails due to listings in such places as: multi.surbl.org rhsbl.ahbl.org dsn.rfc-ignorant.org postmaster.rfc-ignorant.org abuse.rfc-ignorant.org I've seen email that has been getting through for ages now bouncing. And all of them seem to be because of these lists. I can't speak for the first two, but I'm active in updating rfc-ignorant.org RBLs. Anyway, it might be that all you want to do is adjust the scoring in your policyd-weight.conf config... Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: rsync over nfs or rsync protocol
On Sep 23, 2011, at 2:04 PM, Jason C. Wells wrote: Is rsync a good choice for a backup tool? It's OK. A versioned backup system (dump/restore, Legato Networker, Amanda, Retrospect, etc) is more efficient at using backup storage. Should I use the rsyncd or should I use NFS? I'm using 100 mbps ethernet. If it's local and you already have NFS in place, that would be fine. If you're backing up over a WAN, rsyncd is probably a better call. What's the better solution I haven't considered? Lots. The handbook has a chapter on backups which is worth reading, also Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD 8.2 Partition Sizing question
On Sep 14, 2011, at 11:27 AM, Jonathan Vomacka wrote: In regards to partitioning, I have a question regarding a rumor that has been told to me by various different linux experts, and I wanted to confirm if this also takes place with FreeBSD Unix. In the past, I have always had the root filesystem (/) and the /usr filesystem all on seperate partitions. I was told that having /usr on a seperate partition is an old way of doing things and actually causes issues when /usr is mounted separately from root (/). Does this play true in FreeBSD or is that thought process nonsense? I was told to create a larger root filesystem and NOT create usr seperately as /usr will mount off the root filesystem anyway. Will there be any issues by having /usr on a separate partition then root? I will like to know any opinions on this, as well as suggestions based on how other FreeBSD guru's have their server setups. There is nothing wrong with having / and /usr on separate partitions; in fact, there are some mild advantages to fine-grained partitioning for folks who pay attention to their filesystem space usage. However, there is nothing wrong with a single root partition (well, and swap partition), either. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Negative ping times with FreeBSD 8.1-RELEASE on older Celeron system
[ ...combining two emails... ] On Sep 13, 2011, at 9:49 AM, Brett Glass wrote: If that's indeed the case, the kernel must be doing the math wrong. While there have undoubtedly have been kernel bugs with timekeeping (and there may be more still present), it's not uncommon for hardware issues to cause one or more of the available time sources to be broken. On a good day, the clock source is broken obviously enough that the kernel notices it during testing during boot and gives it a negative quality score. Other times, the clock becomes broken only after the box suspends and resumes from an ACPI S# state, or does frequency changes for power/thermal management, etc. Ironically, it was the kernel that selected the ACPI timer, scoring it higher than the timestamp counter as a clock source. Perhaps code should be added to ensure that the timer is not chosen if it rolls over in less than a second, since this clearly leads to imprecision and missed rollovers. The kernel attempts to notice problems when it probes for the various clocks during boot (ie, dev/acpica/acpi_hpet.c, dev/acpica/acpi_timer.c, etc); for ACPI, see acpi_timer_probe() acpi_timer_test(). Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: *caution* severely OT!!
On Sep 13, 2011, at 12:34 PM, Gary Kline wrote: can anyone start me on the way of porting a python program to C? Learn Python. Learn C. Analyze the Python program and document its functionality. Use this document as the functional spec for writing the C program. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Crash when copying large files
Hi-- On Sep 12, 2011, at 2:14 PM, Toomas Aas wrote: I've mounted the new FS under /mnt and use tar to transfer the files: cd /mnt tar -c -v -f - -C /docroot . | tar xf - You probably wanted -p flag on the extract side. The manpage recommends one of the following constructs: To move file hierarchies, invoke tar as tar -cf - -C srcdir . | tar -xpf - -C destdir or more traditionally cd srcdir ; tar -cf - . | (cd destdir ; tar -xpf -) However, this isn't going to resolve the system panic'ing. Certainly, that's not a reasonable behavior... :-) It seems that these large files cause a problem. Sometimes when the process reaches one of these files, the machine reboots. It doesn't create a crashdump in /var/crash, which may be because the system has less swap (2 GB) than RAM (8 GB). Fortunately the machine comes back up OK, except that the target FS (/mnt) is corrupt and needs to be fsck'd. I've tried to re-run the process three times now, and caused the machine to crash as it reaches one or another large file. Any ideas what I should do to avoid the crash? Right, a machine with 8GB of RAM isn't going to be able to dump to a 2GB swap area. (Although, I seem to recall some folks working on compressed crash dumps, but I don't know what state that is in.) But you can set hw.physmem in loader.conf to limit the RAM being used to 2GB so you can generate a crash dump if you wanted to debug it further. How big are your multi-GB files, anyway? If you want a workaround to avoid the crash, consider using either rsync or dump/restore to copy the filesystem, rather than using tar. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Negative ping times with FreeBSD 8.1-RELEASE on older Celeron system
On Sep 12, 2011, at 4:50 PM, Brett Glass wrote: What's more, it appears that the negative ping times being shown for pings of localhost are off by about -687 ms, consistently. Any ideas? Your system's timekeeping appears to be busted. Are you running ntpd with tinker step 0.0 or some home-grown mechanism which might be forcibly stepping the clock rather than skewing it, by any chance? Anyway, the output of: sysctl -a kern.timecounter ...is likely to be informative. Try switching to another clock type, especially ACPI-safe if it hasn't been chosen by default. Your CPU is probably too old to have a power-state invariant TSC, but if you disable SpeedStep, powerd and similar which might change the processor frequency, TSC might work OK also. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: looking for a spammer/virii/malware .... on my system
On Aug 18, 2011, at 9:36 AM, alexus wrote: su-3.2# tcpdump -nnAvvvw webmail.west.cox.net 'dst host 68.6.19.1 and (dst port 80 or 443)' tcpdump: listening on bce0, link-type EN10MB (Ethernet), capture size 96 bytes Got 0 let's see what I capture... You're going to capture traffic of people reading webmail from Cox.net. However, as much as that might be interesting, it is not useful for detecting outbound spam from a machine or network Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: unprivledged users (for a service)
On Aug 15, 2011, at 9:37 AM, Chris Brennan wrote: It's been a while since I've had to do this and the drive that contained all of my notes is dead, along with the backup (I was actually lucky to recover my home drive before it also failed but my notes were not there). I cannot for the life of me remember how to properly add an unprivledged user that will only be used for running a specific system service. So it doesn't need a login shell or $HOME. Add a user and set the shell to /bin/false or perhaps /sbin/nologin; for $HOME set it to /var/empty or /tmp, perhaps. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: looking for a spammer/virii/malware .... on my system
On Aug 15, 2011, at 10:05 AM, alexus wrote: what else can I do to find it on my system who's trying to connect to remote webmail.west.cox.net ? Monitor your network for SMTP traffic: tcpdump -nA -s 0 port 25 If malware is sending out spam, you'll see it and can then use lsof or whatever to identify the specific user/process. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Group permissions are broken?
Hi-- On Aug 15, 2011, at 1:06 PM, Yuri wrote: Why does this error occur? Two groups seem identical. Just different group ids. Filesystem is UFS: /dev/ad10s1a on / (ufs, NFS exported, local) How many groups is user john in? There's a limit of MAXGROUPS = 16. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Has anyone been able to configure a Linksys E3000 using freebsd or pcbsd?
Hi-- On Aug 11, 2011, at 5:03 PM, eculp wrote: In a trade with a friend, I ended up with a Linksys E3000. The only windows machine that I have is my wife's 10 laptop that doesn't have a dvd. I use FreeBSD or pcBSD for everything, workstations, servers, etc. I need to configure this thing but can't find any instructions on web based configuration. The FAQ and the dvd all imply that you must run the windows installation programs. I doubt that is true. I've used other Linksys products, printservers, AP's, etc. with no problem. Any help or suggestions would be greatly appreciated. You can do a reasonable job of configuring an E3000 without using the Windows installer-- manually set up the laptop at IP 192.168.1.2 using a direct ethernet cable, and the router ought to be at http://192.168.1.1. Note that most of these Linksys E models, especially the ones with the L prefix are updated variants of the classic WRT54G(L), and you might consider running DD-WRT instead of the stock Cisco/Linksys firmware. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FreeBSD supported versions (UNCLASSIFIED)
Hi-- On Aug 10, 2011, at 4:26 PM, Wright, Jonathon Mr CTR US USA USARPAC wrote: How do I know as an admin of my FreeBSD server that the version I am running is supported via automated fashion? I'm trying to find a way to do this through a script of sorts so that when the date comes, I'm alerted that I need to upgrade. For example on this link: http://www.freebsd.org/security/#sup It has a table with dates / versions. How can I query this through the ports tree / or other means? Hopefully you are familiar with freebsd-update, which provides automated binary updates: http://www.freebsd.org/doc/handbook/updating-freebsdupdate.html If freebsd-update fetch pulls in changes, then a new update exists for your version. The docs mention doing this via daily cron entry which generates mail if an update has been found, so you can then proceed to install it at an appropriate time under human supervision. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to use gui
Hi-- On Aug 9, 2011, at 10:04 AM, Sudhakar K wrote: i'm new to freebsd 8.2, i downloaded full dvd iso. I installed once. But on gui. Can you please tell me how to install this release and use gui desktop. Now its only a dos like environment. Please help me. I'm new to freebsd. Read the fine Handbook documentation on how to setup X11: http://www.freebsd.org/doc/handbook/x11.html Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: build problem trying to upgrade a 7.0 system
On Jul 27, 2011, at 10:55 AM, doug wrote: Some is amiss as: bcr:~# /usr/local/bin/autom4te-2.62 /usr/local/bin/autom4te-2.62: Command not found. How do I find out what the actual error is? What does head -3 /usr/local/bin/autom4te-2.62 say? One guess is that it's pointing to an invalid invocation of perl Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: build problem trying to upgrade a 7.0 system
On Jul 27, 2011, at 11:50 AM, d...@safeport.com wrote: What does head -3 /usr/local/bin/autom4te-2.62 say? One guess is that it's pointing to an invalid invocation of perl #! /usr/bin/perl -w # -*- perl -*- # Generated from autom4te.in; do not edit by hand. exactly - I looked at that and missed the missing local. A mising symlink. Thank you. Ah, you're most welcome. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sio won't compile in 8.2
On Jul 22, 2011, at 9:45 AM, Lars Eighner wrote: Since there does not appear to be any likelihood that uart will be fixed, I figure I will be stuck in 7.4 forever. But what does that mean in the not too distant future when 7.4 is no longer supported? Is there some way to prepare for that eventuality? Sure-- you could provide fixes for uart yourself, or adequately detailed bug reports so that whatever the problem is which you see could be worked on by other people. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Replace A Device Driver In The Media
On Jul 22, 2011, at 10:19 AM, Miller, Vincent (Rick) wrote: Lets say, theoretically, one wishes to replace a device driver in the FreeBSD media so that consequent system installs from that media built with the alternate driver, as opposed to the stock media driver. How would one approach this task? One might consult the fine documentation: http://www.freebsd.org/doc/en/articles/releng/release-build.html http://www.freebsd.org/cgi/man.cgi?query=releasesektion=7 :-) Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Sio won't compile in 8.2
On Jul 22, 2011, at 10:49 AM, Mike Tancsa wrote: Sure-- you could provide fixes for uart yourself, or adequately detailed bug reports so that whatever the problem is which you see could be worked on by other people. I thought this was deja vu all over again. Same issue as in http://lists.freebsd.org/pipermail/freebsd-stable/2011-May/062731.html I am guessing. Seems likely-- and I didn't see a PR mentioned in that thread, either. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Install 8.2-Release AMD64 on Laptop with Raid0
Hi-- On Jul 19, 2011, at 11:20 AM, Thomas D. Dean wrote: sysinstall shows 3 choices for disk drives. ad4(600G), ad6(600G), ar0(RAID0) I want to use RAID0 and use the entire disk, partitioned by 'A'. Which disk do I select for installation? ar0 is the RAID-0 volume. However, I would advise against using Intel's Matrix pseudo-RAID for a boot volume, and I would also advise against using RAID-0 in most cases, unless you keep good backups. RAID-1 or RAID-10 are much safer-- use geom's gmirror. Regards, -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
