BSDCert survey
Hi everyone, This isn't a question about FreeBSD, but about what the FreeBSD community thinks about BSD certification and the most affordable method for delivering the upcoming BSDA certification exam. The BSD Certification Group is hosting a short survey which is available in English, Brazilian Portuguese, French, German, Italian and Polish (the Mexican Spanish version should be available sometime next week). The press releases and links for each language are available here: http://www.bsdcertification.org/index.php?NAV=NewsItem=pr031 Please take a few minutes to complete the survey and feel free to forward the press release to any forums which haven't published it thus far. If you have any questions regarding the upcoming BSDA, email me off list or subscribe to bsdcert@lists.nycbug.org . Cheers, Dru ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
any backup utilities for ACLs?
I've enabled ACL support on a 5.4-RELEASE system and have no problems creating and modifying ACLs. However, I can't seem to find a backup program that will actually restore the ACLs. I've tried bsdtar, pax, and star. Has anyone had any success in backing up and restoring ACLs? If so, what was the magic incantation? Dru ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: copying files with same name
On Mon, 16 Feb 2004, Erik Trulsson wrote: On Mon, Feb 16, 2004 at 04:49:37PM -0500, Dru wrote: Okay, I must be missing something obvious here. How do you do a batch copy while renaming the destination files? I want to copy all of the configure scripts in /usr/ports to ~/scripts. I can get find to find the files, I can get sed to rename them, but I can't get the timing down right. cp -v `find /usr/ports -name configure -print | sed 's:/:=:g'` . renames the files nicely (so they're not all named configure), but does it too soon--the source no longer exists. cp -v `find /usr/ports -name configure -print -exec sed 's:/:=:g' {} \;` . gives a syntax error (missing }) and cp -v `find /usr/ports -name configure -print | sed 's:/:=:g'` . has sed complain of extra characters at the end of a p command, followed by all my destination files being named configure. Is there a way to do this as a one-liner, or does one have to write a shell script with a while loop? First you should note that there are two ways of using cp(1). The first one is of teh form 'cp src-file dst-file' and the second one is of the form 'cp src-file1 src-file2 src-file3 ... dstdir' So if you don't want the dest-file to have the same name as the source, you must invoke cp(1) once for each file. You will have to use some kind of loop to do this. A for loop iterating over the output of find(1) would seem to be better suited for this problem than a while loop. Well, I played some more and piping to cpio did the trick. I couldn't do it in one go as pass mode doesn't support the interactively rename switch, but a temporary copy out followed by an interactive copy in worked. I then tried pax -rwi which was even more efficient as it let me rename while find was creating the list. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: copying files with same name
On Tue, 17 Feb 2004, Erik Trulsson wrote: On Tue, Feb 17, 2004 at 10:16:18AM -0500, Dru wrote: On Mon, 16 Feb 2004, Erik Trulsson wrote: On Mon, Feb 16, 2004 at 04:49:37PM -0500, Dru wrote: Okay, I must be missing something obvious here. How do you do a batch copy while renaming the destination files? I want to copy all of the configure scripts in /usr/ports to ~/scripts. I can get find to find the files, I can get sed to rename them, but I can't get the timing down right. cp -v `find /usr/ports -name configure -print | sed 's:/:=:g'` . renames the files nicely (so they're not all named configure), but does it too soon--the source no longer exists. cp -v `find /usr/ports -name configure -print -exec sed 's:/:=:g' {} \;` . gives a syntax error (missing }) and cp -v `find /usr/ports -name configure -print | sed 's:/:=:g'` . has sed complain of extra characters at the end of a p command, followed by all my destination files being named configure. Is there a way to do this as a one-liner, or does one have to write a shell script with a while loop? First you should note that there are two ways of using cp(1). The first one is of teh form 'cp src-file dst-file' and the second one is of the form 'cp src-file1 src-file2 src-file3 ... dstdir' So if you don't want the dest-file to have the same name as the source, you must invoke cp(1) once for each file. You will have to use some kind of loop to do this. A for loop iterating over the output of find(1) would seem to be better suited for this problem than a while loop. Well, I played some more and piping to cpio did the trick. I couldn't do it in one go as pass mode doesn't support the interactively rename switch, but a temporary copy out followed by an interactive copy in worked. I then tried pax -rwi which was even more efficient as it let me rename while find was creating the list. Doing the renaming interactively sounds a bit cumbersome if there are many files. The following for-loop ought to do the trick nicely and doesn't require any interactive actions: (Assuming you have want to name the destination files as your examples above indicate, and also assuming you want to copy the files to the current directory.) for i in `find /usr/ports -name configure -print` do cp $i ./`echo $i | sed 's:/:=:g'` done You could either put that in a shell-script or type it in directly at the commandline. It works with both /bin/sh and zsh, and ought to work with bash and ksh as well. The above for-loop is actually a bit inefficient since it doesn't start to do any copying until after find has found all the files to be copied, and this can also give a very long command-line after the expansion of find's output which might cause trouble. An better alternative is to do the copying as find(1) goes down the tree with something like the following one-liner: find /usr/ports -name configure -exec sh -c 'cp {} `echo {} | sed s:/:=:g`' \; Thanks. This one and Peder's accomplish the exact same thing :-) Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
copying files with same name
Okay, I must be missing something obvious here. How do you do a batch copy while renaming the destination files? I want to copy all of the configure scripts in /usr/ports to ~/scripts. I can get find to find the files, I can get sed to rename them, but I can't get the timing down right. cp -v `find /usr/ports -name configure -print | sed 's:/:=:g'` . renames the files nicely (so they're not all named configure), but does it too soon--the source no longer exists. cp -v `find /usr/ports -name configure -print -exec sed 's:/:=:g' {} \;` . gives a syntax error (missing }) and cp -v `find /usr/ports -name configure -print | sed 's:/:=:g'` . has sed complain of extra characters at the end of a p command, followed by all my destination files being named configure. Is there a way to do this as a one-liner, or does one have to write a shell script with a while loop? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
KDE3
Okay, who can help an unhappy camper with their KDE3 on 5-1 Release? After 2 days of unsuccessful portupgrading from KDE2 to KDE3, I decided to go the packages route. About that time, I discovered the upgrade FAQ for FreeBSD/KDE which said to get rid of all KDE2 and qt2 cruft. I did. I then installed the kdebase and dependency packages from fruitsalad.org. When that didn't work, I figured, heh, I have too many ports installed anyways. Time for a clean sweep. I uninstalled everything (except pine and fetchmail and lynx and XFree86-4). Installed kdebase, kdelibs and necessary dependencies, all as packages. When I startx, I start with this error: Could not start kdeinit. Check your installation. That one seems to be popular according to Google, but no solutions yet. So, I commented out that section in /usr/local/bin/kdeinit. Now I'm back to the same error message I was at three days ago: ELF interpreter /libexec/ld-elf.so.1 Can't blame it on an old dependency anymore, since I uninstalled pretty near everything. Any suggestions anyone? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: KDE3
Your random fortune: Schnuffel, n.: A dog's practice of continuously nuzzling in your crotch in mixed company. -- Rich Hall, Sniglets On Sun, 8 Feb 2004, Kris Kennaway wrote: On Sun, Feb 08, 2004 at 08:03:06PM -0500, Dru wrote: Okay, who can help an unhappy camper with their KDE3 on 5-1 Release? After 2 days of unsuccessful portupgrading from KDE2 to KDE3, I decided to go the packages route. About that time, I discovered the upgrade FAQ for FreeBSD/KDE which said to get rid of all KDE2 and qt2 cruft. I did. I then installed the kdebase and dependency packages from fruitsalad.org. When that didn't work, I figured, heh, I have too many ports installed anyways. Time for a clean sweep. I uninstalled everything (except pine and fetchmail and lynx and XFree86-4). Installed kdebase, kdelibs and necessary dependencies, all as packages. When I startx, I start with this error: Could not start kdeinit. Check your installation. That one seems to be popular according to Google, but no solutions yet. So, I commented out that section in /usr/local/bin/kdeinit. Now I'm back to the same error message I was at three days ago: ELF interpreter /libexec/ld-elf.so.1 Can't blame it on an old dependency anymore, since I uninstalled pretty near everything. Any suggestions anyone? The packages are built for 5.2. Kris Thanks. (blush) Didn't want to upgrade this system yet. Guess it depends on whether or not I can get KDE2 back on... Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
porteasy error
I successfully created a minimal ports structure using porteasy -a -u. However, when I try to fetch a specific port skeleton, I receive these messages: porteasy -v -u -a lynx-2.8.5d16_3 cvs server: Updating Mk Reading /usr/ports/INDEX-5 9724 ports in index Pass 0: www/lynx-current cd /usr/ports /usr/bin/cvs -f -z3 -R -d:pserver:[EMAIL PROTECTED]:/home/ncvs update -A -P -d -l www cvs [update aborted]: end of file from server (consult above messages if any) /usr/bin/cvs returned exit code 1 error updating the 'www' category. This is a minimal 5.1-RELEASE system. The amount of messages above the first line of output varies depending upon what directory I'm in, but always ends in the same aborted update message. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
removing the first 10 lines of a file
I remember coming across a trick (which I can't find now) which allowed you to page all of a file, except for the first 10 lines. I think it used a combo of head and tail to achieve this. I can't just use tail as the length of the file varies whereas the amount I don't want to see doesn't. Anyone know of a quick way to do this? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: removing the first 10 lines of a file
On Fri, 9 Jan 2004, Dan Nelson wrote: In the last episode (Jan 09), Dru said: I remember coming across a trick (which I can't find now) which allowed you to page all of a file, except for the first 10 lines. I think it used a combo of head and tail to achieve this. I can't just use tail as the length of the file varies whereas the amount I don't want to see doesn't. tail +11 myfile Well, that was certainly easy enough! Thanks. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
pkg_create switches
Has anyone on the list used the -i, -I, -P or -r switches with pkg_create in a real world situation? If so, could you contact me off list? TIA, Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
viewing sgml articles
What's the easiest way for an end-user to view the SGML articles in /usr/doc? Is there a viewer, or do they have to be converted to say, html first? I know they're mirrored online, but it would be nice to have the ability to read off-line. I tried installing textproc/sgmlformat and running: sgmlfmt -d docbook -f html article.sgml but it failed with tons of errors. The same command without -d also failed. Any advice? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: viewing sgml articles
On Mon, 5 Jan 2004, Lowell Gilbert wrote: Ceri Davies [EMAIL PROTECTED] writes: On Mon, Jan 05, 2004 at 09:48:13AM -0500, Dru wrote: What's the easiest way for an end-user to view the SGML articles in /usr/doc? Is there a viewer, or do they have to be converted to say, html first? I know they're mirrored online, but it would be nice to have the ability to read off-line. Install the textproc/docproj-nojadetex port and run cd /usr/doc;make install clean. The formatted docs will then be in /usr/share/doc. Or even just download the pre-built documentation from the FreeBSD FTP sites. Instructions for doing that are at the top of all of the pieces of documentation. Thanks to you both. I think the mist is clearing, let's see if I have this straight. The contents of /usr/share/doc come with the system, and any cvsup'd changes go instead into /usr/doc. If I want to merge the two, I use Ceri's suggestion. Otherwise, I can download direct as per Lowell's suggestion. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
converting manpages to postscript
I'm trying to convert a manpage to postscript and have tried these 3 variants: groff -Tps -mandoc /usr/share/man/man1/ls.1.gz ls.ps groff -Tps -mdoc /usr/share/man/man1/ls.1.gz ls.ps groff -Tps -man /usr/share/man/man1/ls.1.gz ls.ps The file command always shows this: file ls.ps ls.ps: Postscript document text conforming at level 3.0 But the resulting printout is hieroglyphics. What am I doing wrong? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
laptop hardware profile
Is anyone aware of a tutorial/documentation available for creating a hardware profile? I'm thinking of something that allows the user to choose to either configure a wireless or a wired NIC during bootup. I could script it after bootup, but I'd prefer to do it during loader. Will this require learning FORTH or is there a loader.conf or loader.rc tweak that will do the trick? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: dd of mounted filesystem
On Thu, 11 Dec 2003, Dan Nelson wrote: In the last episode (Dec 11), Matthew Seaman said: On Thu, Dec 11, 2003 at 02:54:12PM -0500, Dru wrote: Can anyone describe or point me to resources explaining why it is dangerous to dd a filesystem while it is mounted? Is it still considered to be dangerous if the system is first dropped down to single-user mode? Remember that dd(1) traverses the block device sequentially, but that most FS accesses are random, so any particular change can span either side of dd(1)'s offset. Also that dd'ing from the block device bypasses the usual machinery for doing file IO -- machinery that is designed under the premise that it will have sole control over what gets read or written where and when. On current you can get around the consistency problem by dd'ing a snapshot of the filesystem, just like dump's -L flag does. You mean, run makesnap_ffs first? I've been meaning to play with that one, I'll have to try it out. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
p5 random password ports
Has anyone on the list ever used any of the following to create their own custom random password generator script: /usr/ports/security/p5-Crypt-GeneratePassword /usr/ports/security/p5-Crypt-PassGen /usr/ports/security/p5-Crypt-RandPasswd If so, could you please contact me off list. I may have a small job for you. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
umounting /
Is this the only way to unmount the root filesystem: umount -a When I try umount /, I get this error: umount: unmount of / failed: Invalid argument The manpage doesn't give any hints on why that argument is invalid... Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
dd of mounted filesystem
Can anyone describe or point me to resources explaining why it is dangerous to dd a filesystem while it is mounted? Is it still considered to be dangerous if the system is first dropped down to single-user mode? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: protecting loader
On Thu, 4 Dec 2003, Nathan Kinkade wrote: On Thu, Dec 04, 2003 at 02:20:07PM -0500, Dru wrote: Is there a way to prevent a user from bypassing loader and loading/unloading stuff at the OK prompt? (other than physical security measures) I tried placing /boot/loader -n in /boot.config, but it didn't make a difference. Dru If I understand your question, you could put the following line in your /boot/loader.conf file: autoboot_delay=0 I think this will effectively prevent users from interrupting the loader to make changes. Just make sure that you have some other way to boot the system, such as a floppy, in case you later run into problems. Nathan -- gpg --keyserver pgp.mit.edu --recv-keys D8527E49 Actually, I discovered that password=somevalue in /boot/loader.conf filled the bill quite nicely :-) Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
single-user mode
It's been a while since I've had to enter single-user mode and I've just discovered that boot -s doesn't work at the boot prompt on 5.1-RELEASE. (however, it does work nicely if I interrupt loader at the next boot stage). In fact, I can't get *anything* to work at the boot prompt, or even leave that prompt without doing a CTRL ALT DEL. Am I missing something, or is the boot prompt defunct on 5.x? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
protecting loader
Is there a way to prevent a user from bypassing loader and loading/unloading stuff at the OK prompt? (other than physical security measures) I tried placing /boot/loader -n in /boot.config, but it didn't make a difference. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: startx and numlocks
On Fri, 21 Nov 2003, Chris Pressey wrote: On Fri, 21 Nov 2003 08:38:24 -0500 (EST) Dru [EMAIL PROTECTED] wrote: Does anyone know how to keep numlocks on when using startx? I have numlocks on in all of my terminals, but when I start X, it goes off. Is there a line I can add to .xinitrc? TIA, Dru Hi Dru, Have you looked at /usr/ports/x11/numlockx ? Thanks, that does the trick. For those that want to try it, after you've installed the port, add this line to the beginning of your ~/.xinitrc: exec /usr/X11R6/bin/numlockx Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
splash screensaver
Does anyone know the cure for this behaviour? Splash screen loads nicely and acts as screensaver as it should. However, when I press a key to exit the screensaver, the contents of all of my terminals look like they're running by at a high rate of speed. The only way to get my terminal back is to press ctrl alt F9, then go back to a terminal. I've made the necessary modifications to the splash configuration section of /boot/loader.conf, but haven't put any options in /etc/rc.conf Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: splash screensaver
On Sat, 22 Nov 2003, Nathan Kinkade wrote: On Sat, Nov 22, 2003 at 12:32:00PM -0500, Dru wrote: Does anyone know the cure for this behaviour? Splash screen loads nicely and acts as screensaver as it should. However, when I press a key to exit the screensaver, the contents of all of my terminals look like they're running by at a high rate of speed. The only way to get my terminal back is to press ctrl alt F9, then go back to a terminal. I've made the necessary modifications to the splash configuration section of /boot/loader.conf, but haven't put any options in /etc/rc.conf Dru Is this on a laptop? I have had a similar problem on an old IBM Thinkpad 560. I never have figured out exactly what the problem is, but I feel that it is likely related to the power management on the laptop. Generally, this only happens to me after the machine has sat idle for quite some time. This doesn't answer your question, but I am curious to see that someone else is having this same issue. Are you able to turn off all power management features to see if that makes a difference? Hmmm. Power options made sense, but unfortunately didn't make a difference. I tried booting into without ACPI mode. Same thing. Tried disabling all power features in CMOS. Same thing. I originally thought it was a KDE thing, as the behaviour started after I typed startx. Further tests showed it was just a timing issue. The screensaver is fine for the first 2 minutes after bootup, then it gets weird. Maybe its my bios/cpu/motherboard combo. This is the same system that refused to work with mplayer... Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
startx and numlocks
Does anyone know how to keep numlocks on when using startx? I have numlocks on in all of my terminals, but when I start X, it goes off. Is there a line I can add to .xinitrc? TIA, Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
customized /usr/share/skel
I'd like to customize /usr/share/skel. It's an easy matter to edit /usr/src/share/skel/Makefile and to make my own dot files. However, will my customizations get overwritten when I make my next world? If so, what's the best way to go about preventing my files from being overwritten? e.g. should I place my custom Makefile and dot files in a different directory and rerun my Makefile after a successful install world? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
mapping apps to keys in X Windows
Does any know if there are any tools or configurable scripts that come with X that allow a user to map an application to a shortcut key? Or is one supposed to instead use their window manager or an application in the ports collection (such as xbindkeys). TIA, Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: newbie: access cisco router
On Fri, 4 Apr 2003, Moritz Fromwald wrote: Hello, What is the best methode to access a cisco router via a console cable on freebsd ,like hyperterminal in windoze? are there config tools for cisco routers under freebsd? If you'd like a tutorial, try: www.onlamp.com/pub/a/bsd/2001/10/11/FreeBSD_Basics.html Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
portsdb fails on perl
Anyone else having problems using portsdb this morning? I'm getting the same message on a 4.7 and 5.0 box: Attempt to free unreferenced scalar at Tools/make_index line 44, line 7715. After a few hundred of those: foo kernel: pid 42244 (perl), uid 0: exited on signal 11 (core dumped) [Updating the portsdb format:bdb1_btree in /usr/ports ... - 1 port entries found /usr/ports/INDEX-5:1:Port info line must consist of 10 fields. . done] If I try a portupgrade, I get an endless loop of: Cannot fork: Resource temporarily available Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: using ssh banner
On Mon, 31 Mar 2003, Glenn Johnson wrote: I would like to use the Banner option with openssh (OpenSSH_3.5p1, SSH protocols 1.5/2.0, OpenSSL 0x0090701f) on a FreeBSD-5 CURRENT system. I enabled the Banner option in sshd_config and restarted sshd. I am using protocol 2 but I never see the banner message when logging in via ssh. Is there something else I am missing? Which client are you using? Are you sure the client is using version 2? Version 1 doesn't support banners. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: VERY annoying nmap problem.
On Sat, 29 Mar 2003, jason wrote: This has been going on since version 3.0 of nmap for freebsd.. su-2.05b# uname -a FreeBSD monsterjam.org 4.8-RC FreeBSD 4.8-RC #0: Mon Mar 10 16:54:44 su-2.05b# nmap -sU 10.1.1.10 Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) sendto in send_udp_raw: sendto(3, packet, 28, 0, 10.1.1.10, 16) = Permission denied Sleeping 15 seconds then retrying ^Ccaught SIGINT signal, cleaning up su-2.05b# this is nmap installed from the ports. I have tried it from source and get the same thing. regular port scans work though su-2.05b# nmap 10.1.1.10 Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Interesting ports on bush (10.1.1.10): (The 1595 ports scanned but not shown below are in state: closed) Port State Service 22/tcp openssh 111/tcpopensunrpc 139/tcpopennetbios-ssn 631/tcpopenipp 6000/tcp openX11 32771/tcp opensometimes-rpc5 Nmap run completed -- 1 IP address (1 host up) scanned in 1 second su-2.05b# I emailed fydor a few times and got no help. anyone have any ideas? This used to work fine before 3.0 What firewall are you using and what rules have you created for UDP? Using -sU (UDP scan) sends UDP packets. Whereas not specifying a switch assumes a full connect scan which uses TCP. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: VERY annoying nmap problem. (solved)
On Sat, 29 Mar 2003, jason wrote: yeah, I know the -sU is for UDP scans. Im using ipfw. Im 99.9% sure my firewall rules didnt change from version to version of nmap, but damn, youre right! scanning with my firewall disabled worked. Good catch. I guess ill have to play with my ipfw rules now. Thanks. snip Just don't play too much with your ruleset. Blocking incoming UDP is a _good_ thing. If you want to test the behaviour of the machine in question, it is better to use nmap from another host. That way you can see what the world sees, and ensure that your firewall ruleset isn't leaking anything. If you want to use the machine in question as your main scanner, you can make a rule which allows _outgoing_ UDP to other hosts so you can run nmap. If you're security stance is more paranoid than that, make it a temporary rule that you only use when running nmap. On the other hand, if you only have one machine and just want to know which UDP ports are open on it, netstat -an or sockstat -46 are much better options than nmap, which is designed for remote scanning. I'm sure you're already aware of that, just mentioned it for the benefit of others who may be following the thread. Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
port to convert comma delimited file
Hello, I have a comma delimited file with approximately 7000 rows and 5 columns. I have absolutely no database skills and and almost as much HTML skill, yet I need to convert this file into an HTML table. Is there something in the ports collection that will do this for me, a sort of converter for dummies? Barring that, is there any port that will do this, hopefully with docs so I can learn as I go? Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: port to convert comma delimited file
On Wed, 26 Mar 2003, Martin Karlsson wrote: * Dru [EMAIL PROTECTED] [2003-03-25 20.51 -0500]: Hello, Hi, I have a comma delimited file with approximately 7000 rows and 5 columns. I have absolutely no database skills and and almost as much HTML skill, yet I need to convert this file into an HTML table. Is there something in the ports collection that will do this for me, a sort of converter for dummies? Barring that, is there any port that will do this, hopefully with docs so I can learn as I go? I couldn't find anything like that in the ports collection, but there seems to be alternatives on the web, e.g. csv2html URL:http://watson-wilson.ca/computer/csv2html.html. Hint: search the web for csv (comma separated values) and html. Wow, that was quick. For the curious, the downloadable perl script does the trick nicely :-) Dru ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: sfs UID 71
On Wed, 12 Mar 2003, Volker Kindermann wrote: Hi Dru, I was reading my daily output on a 4.7-RELEASE and noticed the following user was created: sfs:*:71: as well as the following groups: nogroup:*:65533: nobody:*:65534: sfs:*:71: IMHO sfs has nothing to do with tripwire. A quick search on google showed a software sfs (networking file system). Have a look here: http://www.ugcs.caltech.edu/info/sfs/sfs_toc.html I know, that's all I could find myself. So, I have no clue why that user/groups showed up out of the blue. I was sorta hoping it had something to do with tripwire... Anyone heard of any exploits that create the above? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
sfs UID 71
I was reading my daily output on a 4.7-RELEASE and noticed the following user was created: sfs:*:71: as well as the following groups: nogroup:*:65533: nobody:*:65534: sfs:*:71: What was strange was that I hadn't installed or upgraded any applications for at least 2 days. The only thing I had done different was to run tripwire --check for the first time on that system. (I had installed tripwire a few weeks earlier but not used it). Am I correct in assuming that tripwire creates that user/groups the first time it is used (rather than installed), or should I investigate further? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Can't remember how to read binary log files
On Thu, 6 Feb 2003, Roman Neuhauser wrote: # [EMAIL PROTECTED] / 2003-02-06 08:48:20 +: PS. Not to be confused with the mailstat command: % mailstat Most people don't type their own logfiles; but, what do I care? mailstat? what's that? I don't have it on any of my machines. You won't have it unless you've installed /usr/ports/mail/procmail. It's a script procmail uses to show which folders it has sorted your mail into. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Mozilla 1.2.1 and java
On Wed, 22 Jan 2003, Aqua Daemon wrote: Hello, I just upgraded Mozilla (1.1 to 1.2.1). In the 1.1, I had all the plugins working (java, plugger, and Shockwave). After upgrading via portupgrade (WITH_GTK2=yes), all plugins except java loaded fine. The results are the same for both of my 4.7-STABLE and 5.0-RELEASE computers. I tried symlinking (ln -sf), then just copying (cp). Same results. I saw that other people were able to upgrade with no problems. What did I do wrong or what do I need to do? This is the text output of when I loaded the 1.2.1: ___ www% mozilla No running window found. LoadPlugin: failed to initialize shared library /usr/local/jdk1.3.1/jre/plugin/i386/ns600/libjavaplugin_oji.so [/usr/local/jdk1.3.1/jre/plugin/i386/ns600/libjavaplugin_oji.so: Undefined symbol gdk_input_add] LoadPlugin: failed to initialize shared library /usr/X11R6/lib/mozilla/plugins/libjavaplugin_oji.so [Cannot open /usr/X11R6/lib/mozilla/plugins/libjavaplugin_oji.so] Well, you're doing better than I am. I can't get past No running window found. And that error message is literal, I can no longer get Mozilla to come up at all :-( That was from a cvsup this morning on a 4.7-RELEASE. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Problems with IPSec
On Fri, 3 Jan 2003, Scott Penno wrote: Hi all, Wasn't sure where I should ask for help with this problem, so I'm starting here. If there's a more appropriate place, please let me know. I have a FreeBSD box running -STABLE which has had IPSec working with other hosts for quite some time without a problem. I've just setup another FreeBSD box running 5.0-RC1 and am trying to establish a VPN tunnel but am not getting too far. I'm using racoon and when attempting the negotiation with debugging enabled, the following message appears: 2003-01-20 12:00:23: ERROR: pfkey.c:207:pfkey_handler(): pfkey ADD failed: Invalid argument and the following message is logged via syslog: Jan 20 12:00:23 atlas kernel: key_mature: invalid AH key length 160 (128-128 allowed) The relevant section of racoon.conf which is identical on both boxes is: sainfo anonymous { pfs_group 1; lifetime time 86400 sec; encryption_algorithm 3des ; authentication_algorithm hmac_sha1 ; compression_algorithm deflate ; } The box running -STABLE has been working fine with this configuration so I'm assuming the problem is with the box running 5.0-RC1. Interestingly, I've also tried using des as the encryption algorithm and hmac_md5 as the authentication algorithm and I receive the following error message: racoon: failed to parse configuration file. If anyone has any suggestions for a fix, or how I go about further diagnosing this problem, I'd love to hear from you. What's the result of setkey -PD on both boxes? Sanitize the addresses of the public IPs, but leave the private IPs as is. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSec tunnel between Windows XP and FreeBSD: racoon can't actsas the initiator
On Tue, 14 Jan 2003, Andrew Alcheev wrote: Hello. I have setup an IPSec tunnel between FreeBSD 4.7-stable (system 18.11.02)/racoon 20021120a and Windows XP Prof. FreeBSD acts as gateway, tunneling connections from Windows to world. IPSec crypts link between unix and win only. ipsec.conf: spdadd 0.0.0.0/0 192.168.99.10/32 any -P out ipsec esp/tunnel/192.168.99.1-192.168.99.10/require; spdadd 192.168.99.10/32 0.0.0.0/0 any -P in ipsec esp/tunnel/192.168.99.10-192.168.99.1/require; While other side (Windows XP) initiates connect to hosts behind the tunnel, all works fine. If connect arrives from other hosts before SA has been established, then racoon can't initiate Phase 1 tcpdump output: 15:29:13.408122 192.168.99.1.500 192.168.99.10.500: isakmp: phase 1 I agg: [|sa] 15:29:13.409117 192.168.99.10.500 192.168.99.1.500: isakmp: phase 2/others R inf: [|n] racoon.log: ... 2003-01-14 15:29:13: DEBUG: isakmp.c:222:isakmp_handler(): 56 bytes message received from 192.168.99.10[500] ... 2003-01-14 15:29:13: DEBUG: isakmp.c:346:isakmp_main(): malformed cookie received or the initiator's cookies collide. ... What is wrong ? Hard to tell without a bit more information. Are you using a pre-shared secret or digital certificates for authentication? Can you send a sanitized copy of your racoon.conf? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: VPN Newbie has a silly question
On Sun, 12 Jan 2003, Louis LeBlanc wrote: Here's a complicated VPN question: I have one FreeBSD machine behind a firewall (let's call it WORK), only way thru is via VPN - unfortunately, the VPN in use is an old proprietary Cisco deal that has no client ported to FreeBSD. The other machine (also FreeBSD, call it HOME), is on a dynamic IP, but with the dns name served thru Zoneedit.com - so anytime the IP changes, there's maybe an hour or two of lag time while the auto update scripts get the dns back on track. What I want to do is initiate a VPN connection from WORK to HOME, and here's where I show my VPN ignorance, connect thru that VPN connection from HOME to WORK. Basically I want to work from home on a secure connection rather than just getting my work machine to pop a terminal up on the home display over an insecure connection. I suspect this won't work this way, but I figure what the hell. The worst that can happen is someone tells me I'm a dope and it don't work that way. So will it, or not? It should be doable. You may have less hair than you started out with and learn more than you ever cared to about IPSec on the way to getting it to work, but it should work. Now, is this Cisco deal a concentrator, a PIX, or a router? (it makes a difference) Do you have the flexibility of getting its admin to create the necessary IPSec policy and access lists to allow you through? Is your new IP address always within the same network range? (that will make access lists much easier) These will get you started: klub.chip.pl/nolewajk/work/freebsd/FreeBSD-howto.htm www.cisco.com/en/US/products/sw/iosswrel/ps1831/products_configuration_guides_books_list.html you want SC: Part 4: IP Security and Encryption Make sure you create a dynamic crypto map in addition to the regular crypto map. Authentication may prove interesting due to the dynamic IP; you'll want to read up carefully on your possibilities. As a side note, it may prove easier to just configure ssh on the destination computer and create the necessary rule to allow the connection on the access list on the Cisco thingie. Just a thought. Good luck, Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
ipsec and nat
Does anyone have any URLs that explain the order in which the following occur: 1. an outbound packet is NATed, encapsulated by ESP, and compared to an ipfw ruleset 2. the same as above, except for an inbound packet 3. the same as both above, except for an ipf ruleset I remember coming across an URL before which showed (with nice animations) how a packet is processed, but can't remember if it was for ipfw or ipf. Of course, I can't find that URL at the moment either :) Any and all URLs appreciated. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: a Cisco Question
On Wed, 18 Dec 2002, Wayne Swart wrote: lo all you clever ppl i am such a newbie to cisco and all routers for that matter: we have got a 65K diginet leased line to one of our clients. the line has been tested and is deffenatly up, but i get this error when telnetting to the router and doing a show interface: Serial1/7 is up, line protocol is down does it mean that their line is up, but the router on the other side is down ? Hi Wayne, That line in the sh int shows the results of Layer 1 and Layer 2. The first part indicates that the hardware (layer 1) is working. The second part indicates there is a problem with Layer 2. Which could be: clocking mismatch, keepalive mismatch, frame mismatch, wrong signalling type. Did you change the default serial encapsulation of HDLC to something else? Cisco HDLC is proprietary to Cisco and will only let you connect to another Cisco device. HTH, Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPsec on a NAT gateway
On Tue, 10 Dec 2002, Jeff Walters wrote: At home I have a FreeBSD gateway working nicely for NAT and firewall. One of the machines behind this firewall is an OS X iBook running through a WEP-enabled Airport base station in bridged mode (i.e. it only bridges the wireless and the ethernet). WEP has known problems, and I'd like to secure the link between the iBook and the FreeBSD firewall against snooping or malicious neighbors, etc. I think that IPsec is the closest thing to an answer, however after much digging through setkey man pages, the FreeBSD handbook, and other HOWTO web pages nothing clearly describes this configuration. This is not really IPSec transport mode, because it's only secure between host and gateway not host and host, and it's not tunnel mode because I'm not joining two LANs. Has anyone done this? The configuration you describe is still considered tunnel mode, even though it looks part transport / part tunnel mode. Tunnel mode occurs whenever a gateway encrypts on behalf of a network. Typical tunnels have gateways at both ends, however it is possible to have a gateway at one end and a single machine at the other. HTH, Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
isakmpd status
I seem to remember reading somewhere before that isakmpd was available in the base system (not as a port) either in stable or in the upcoming 5.0, but darned if I can find that now. Don't see it in the Status Report or anywhere else on the site. Does anyone else remember this and can point me to the reference, or am I hallucinating on this one? TIA, Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: add users
On Mon, 2 Dec 2002, Brian Henning wrote: Hello, typically when i add users to my machine i use /stand/sysinstall and go through the menu and add users. I usually change the path to the shell to /bin/tcsh. when the user logs in for the first time they get a '' for a prompt. Is there a way i could set a different prompt as a default when i add new users? Of course :) If you're using the C shell/tcsh shell, edit /usr/share/skel/dot.cshrc so it reflects your favourite prompt. For example, since I like to know who I am and where I am, mine says: set prompt = %B${USER}@%~%b: As you create users, the files in /usr/share/skel are copied over to their new home directory, but the word dot is changed to . So I usually create a dot.xinitrc and place it in there as well. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Eirgp
On Mon, 25 Nov 2002, Doron Shmaryahu wrote: Hi, I have been searching around for freebsd and eigrp. I have a BSD box that requires dynamic updating. I know about routed (but it only support rip) can anyone suggest where if possible I could find a daemon that would support eigrp ? I don't think there is such a beast as EIGRP is Cisco proprietary. If OSPF will suit your purposes, check out /usr/ports/net/zebra. HTH, Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
SSH Helper
Not exactly a question, but something that may be of interest to the BSD community... I was approached by a software company to see if there was any interest for a FreeBSD port of their free SSH Helper application: www.gideonsoftworks.com Currently, the application only works on MacOS X. From the howto, it appears to be pretty slick, but I don't have a Mac to test it on. If you're interested in this being ported over to FreeBSD, drop a line to: [EMAIL PROTECTED] with a subject FreeBSD SSH Helper. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: IPSEC ping from other side
On Thu, 31 Oct 2002, Ion Amigdalou wrote: Dear freebsd experts, I have set up a VPN with racoon/ipsec on Freebsd 4.7 using tunneling with ESP transport. By using the setkey -D command, on my side the peer seems connected while on the other direction no connection has been established. Pinging the other side is not possible from my point. If the other peer (currently a CISCO 3662 ROUTER) pings my ip then the VPN connection is instantly established and the whole VPN is up-and-running giving me the ability now to ping the other peer. How can I avoid waiting for a human on the other size to ping me and have the vpn successfully connect without human intervention? This is the default behaviour if you don't make a dynamic crypto map on the Cisco side. If you use a regular crypto map, only the Cisco can initiate the connection as the permit rule requires inbound packets to be encrypted. This means that if the peer (in your case, racoon) initiates Phase 1 negotiations, that clear text packet will be discarded by the Cisco, so that peer can never successfully start the negotiations. Do a search at www.cisco.com for Configuring IPSec Network Security for the article that gives greater details. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: tool for generating pkts with ip precedence
On Sun, 27 Oct 2002, User sl wrote: hi, anyone knows of a tool (in ports may be) that would generate ip packets with a predefined ip precedence? I need that to be able to experiment with cisco and QoS. /net/ipsorc provides a pretty GUI that allows you to set the TOS field. /security/hping is command line, but hping --tos help is helpful Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Event Trigger
On Sun, 6 Oct 2002, Lord Raiden wrote: Hi. I'm looking for a simple way to implement a trap and trigger so to speak. I'm wanting to setup the system so that the moment it detects a certain event in the system, it immediately executes another script or program to do something else, but not before, not after. I thought about Cron, but the thing is, I don't know when these events will happen so since they're so random, I need something to identify them then immediately run another script or program at that exact moment. Any suggestions? I haven't used it myself, but this was what the Expect language was designed for. You'll find it in /usr/ports/devel/expect. These will also get you started if you decide to give it a go: http://expect.nist.gov http://www.samag.com/documents/s=7237/sam0207a/0207a.htm Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Mouse jumping all over the place in X
On Sun, 6 Oct 2002, Nick Slager wrote: Thus spake Lucky Green ([EMAIL PROTECTED]): I just bought a Memorex MX4200 PS/2 optical mouse. When attempting to use X with the new mouse, the pointer jumps all over the place upon the slightest movement of the mouse. The relevant entry of XF86config follows: Section InputDevice Identifier Mouse0 Driver mouse Option Protocol MouseSystems Option Device /dev/sysmouse EndSection MouseSystems is almost certainly not the correct protocol. Try changing it to auto or PS/2. Except use Auto as it is case sensitive. Been bitten by that one before :) Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: OpenOffice User Installation
On Wed, 2 Oct 2002, Scott A. Moberly wrote: On Wed, Oct 02, 2002 at 05:19:30AM -0500, MET wrote: So we are at the same page, I'm following the directions found in the FBSD handbook for installing OpenOffice from the ports. As a super-user I can 'make install clean' the port without any problem whatsoever (but it took forever). Then the directions say that I have to install the program as a user. So I logout of super-user and I run the command 'make install-user'. Since I'm in the KDE environment I get a pop-up warning saying this (not an exact copy - except for the file) === Cannot Find Sciprt and the Installation cannot continue without it. The file was looked for in the following directory: /usr/local/OpenOffice.org1.0/program/setup.ins === Does anyone have any ideas what I might do in order to get this program started? I'm getting the same thing (after a 50 hour make!) This is with ports cvsupped daily. pkg_info |grep openoffice openoffice-1.0.1_3 Integrated wordprocessor/dbase/spreadheet/drawing/chart/bro Any other suggestions? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: OpenOffice User Installation
On Wed, 2 Oct 2002, Scott A. Moberly wrote: On Wed, Oct 02, 2002 at 05:37:34PM -0400, Dru wrote: On Wed, 2 Oct 2002, Scott A. Moberly wrote: On Wed, Oct 02, 2002 at 05:19:30AM -0500, MET wrote: So we are at the same page, I'm following the directions found in the FBSD handbook for installing OpenOffice from the ports. As a super-user I can 'make install clean' the port without any problem whatsoever (but it took forever). Then the directions say that I have to install the program as a user. So I logout of super-user and I run the command 'make install-user'. Since I'm in the KDE environment I get a pop-up warning saying this (not an exact copy - except for the file) === Cannot Find Sciprt and the Installation cannot continue without it. The file was looked for in the following directory: /usr/local/OpenOffice.org1.0/program/setup.ins === Does anyone have any ideas what I might do in order to get this program started? I'm getting the same thing (after a 50 hour make!) This is with ports cvsupped daily. pkg_info |grep openoffice openoffice-1.0.1_3 Integrated wordprocessor/dbase/spreadheet/drawing/chart/bro Any other suggestions? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message Not sure then, I just finished a full build with no problems. Might check your dependencies? pkg_version -v | grep -v \= That comes back clean. (I assume I interpreted that correctly as checking for outdated packages?) Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Mplayer
On Wed, 25 Sep 2002, Greg 'groggy' Lehey wrote: On Tuesday, 24 September 2002 at 20:37:27 +, Weston M. Price wrote: On Tuesday 24 September 2002 11:11 pm, you wrote: On Tuesday, 24 September 2002 at 15:24:00 +, Weston M. Price wrote: Hello, Does anyone have the mplayer gui running. The man page says it is gmplayer but I cannot find a single reference to it on my system. Thanks. Works fine for me, for a recent installation: $ pkg_info -L mplayer-gtk-0.90.0.8 Information for mplayer-gtk-0.90.0.8: In order to get it to work, you also need to install the graphics/mplayer-skins port. Do you get a lot of mplayer crashes. I can't seem to keep this thing up and running for too long. None so far, though I have had a few wierdnesses. I've only been playing with it for a day or so, so it's probably not time to report yet. Did you have to do any special magic to install mplayer in the first place? I've tried on several occasions on a couple of different machines but have never gotten past the configure script. Doesn't matter if I try with or without the gui. Always with the latest ports collection. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: kernel compilation failure, ack!
On Fri, 20 Sep 2002, twig les wrote: Hello *, for weeks I haven't been able to cut a new kernel, which means I can't add my sound driver (pcm0) which means I can't get one more step toward the goal of replacing all windows tasks in my life with BSD. The error I get is thus: L# make buildkernel KERNCONF=FW make: no target to make. /usr/src/Makefile.inc1, line 140: warning: make -f /dev/null -m /usr/src/share/mk CPUTYPE=dummy -V CPUTYPE returned non-zero status -- Kernel build for FW started on Fri Sep 20 16:56:19 PDT 2002 -- === FW mkdir -p /usr/obj/usr/src/sys cd /usr/src/sys/i386/conf; PATH=/usr/obj/usr/src/i386/usr/sbin:/usr/obj/usr/src/i386/usr/bin:/usr/obj/usr/src/i386/usr/games:/sbin:/bin:/usr/sbin:/usr/bin config -d /usr/obj/usr/src/sys/FW /usr/src/sys/i386/conf/FW /usr/src/sys/i386/conf/FW:260: option IPFIREWALL_VERBOSE_LIMIT redefined from 100 to 10 /usr/src/sys/i386/conf/FW:56: unknown option ICMP_BANDLIM *** Error code 1 Stop in /usr/src. *** Error code 1 Stop in /usr/src. L# Now I just cvs'd the source because I was desperate so my new uname -a is: L# uname -a FreeBSD L.liza.com 4.6.2-RELEASE-p2 FreeBSD 4.6.2-RELEASE-p2 #0: Mon Sep 16 13:41:26 PDT 2002 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/FW.safe i386 L# I have no idea why this started happening. I built a custom kernel about 1.5 months ago and it works fine. This FW kernel I'm trying to build is simply GENERIC with some well-known options added for IPFW, plus now I'm adding the pcm0 line. Regardless, when I try to compile GENERIC it fails. Please help me, I've put a ton of time into getting my laptop just where I want it...so close to Valhalla...so close Can you send the list the output of: cd /usr/src/sys/i386/conf diff GENERIC FW Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
cvsup ports
OK, I did something backwards here in my cvsup: more /root/cvs-supfile *default host=cvsup.ee.freebsd.org *default base=/usr/local/etc/cvsup *default prefix=/usr *default tag=RELENG_4_6 *default release=cvs delete use-rel-suffix compress src-all ports-all more /usr/local/etc/cvsup/sup/refuse ports/chinese ports/frenchetc. for the ports I didn't want Everything seemed to go great EXCEPT the only ports I have are the ones in my refuse list! What did I do wrong? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Boot -s doesn't work any other ideas
On Sat, 20 Jul 2002, george rousson wrote: Hi I'm trying to recover a root password however when doing boot -s in the beggining it doesn't work at all . I can mount this disk from another OS (openbsd) and see the files on this hard disk. Is there any other way i can break the password so i can make this work., Describe what you mean by doesn't work at all. When are you using boot -s, at the prompt that says hit enter or any other key? Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: racoon
On Tue, 16 Jul 2002, Hector Villalvazo wrote: hi i hope you can help me i'm installing racoon in my freebsd 4.4 pc but when i invoke the deamon the machine print: failed to parse configuration file or something like that can i make something wrong? what can i do? any suggeston? Did you create a /usr/local/etc/racoon/racoon.conf file? There is a sample file named racoon.conf.dist in the same directory which you can use as a template. man racoon.conf will give you all of the configuration details. Dru To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message