Re: munin related
On Mon, 7 Oct 2013 19:57+0200, Laszlo Danielisz wrote: Yep killing nscd help me to get out of this trouble. I have long suspected nscd to reinitialise the timers whenever an entry is requested while still held in the cache, be it a positive or a negative result. As such the only reasonable solution is to never cache negative results (TTL=0) and keep the positive TTL relatively short, say no more than 60 minutes. Can someone more knowledgeable on nscd internals confirm my suspicion? -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mtree: line 21: unknown user auditdistd
On Tue, 1 Oct 2013 12:19-0400, alexus wrote: I've re-run pwd_mkdb now auditdistd user is there, yet back to mergemaster issues: [root@f9 ~]# pwd_mkdb -p /etc/master.passwd [root@f9 ~]# id auditdistd uid=78(auditdistd) gid=77(audit) groups=77(audit) [root@f9 ~]# mergemaster *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot install: illegal option -- l usage: install [-bCcMpSsv] [-B suffix] [-f flags] [-g group] [-m mode] [-o owner] file1 file2 install [-bCcMpSsv] [-B suffix] [-f flags] [-g group] [-m mode] [-o owner] file1 ... fileN directory install -d [-v] [-g group] [-m mode] [-o owner] directory ... *** FATAL ERROR: Cannot 'cd' to /usr/src and install files to the temproot environment [root@f9 ~]# You need to semi-manually install a new version of mergemaster: cd /usr/src/usr.sbin/mergemaster make install See the 20130430 entry in /usr/src/UPDATING. On Tue, Oct 1, 2013 at 11:52 AM, alexus ale...@gmail.com wrote: I even sort of have that user... f9# grep auditdistd /etc/*passwd /etc/master.passwd:auditdistd:*:78:77::0:0:Auditdistd unprivileged user:/var/empty:/usr/sbin/nologin /etc/passwd:auditdistd:*:78:77:Auditdistd unprivileged user:/var/empty:/usr/sbin/nologin f9# On Tue, Oct 1, 2013 at 11:32 AM, alexus ale...@gmail.com wrote: I've tried upgrading my FreeBSD 9.1 to 9.2 via freebsd-update and I guess I did something wrong and now I'm trying to run mergemaster and I'm unable to do so, although I do remember merging passwd file w/ new user auditdistd how can I re-run mergemaster? f9# mergemaster *** The directory specified for the temporary root environment, /var/tmp/temproot, exists. This can be a security risk if untrusted users have access to the system. Use 'd' to delete the old /var/tmp/temproot and continue Use 't' to select a new temporary root directory Use 'e' to exit mergemaster Default is to use /var/tmp/temproot as is How should I deal with this? [Use the existing /var/tmp/temproot] *** Leaving /var/tmp/temproot intact *** Creating the temporary root environment in /var/tmp/temproot *** /var/tmp/temproot ready for use *** Creating and populating directory structure in /var/tmp/temproot mtree: line 21: unknown user auditdistd *** FATAL ERROR: Cannot 'cd' to /usr/src and install files to the temproot environment f9# -- http://alexus.org/ -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Convincing print/auctex to depend on editors/emacs-nox11
Hi, Is there a way of convincing print/auctex to depend on editors/emacs-nox11 rather than editors/emacs24? -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: persistence in freeBSD
On Wed, 18 Sep 2013 06:30-, Thomas Mueller wrote: On Mon, 16 Sep 2013 10:29:26 -0400 Sam Fourman Jr. sfour...@gmail.com wrote: mount -o rw / That would need to be mount -u -o rw / Steve O'Hara-Smith st...@sohara.org I think you could shorten that to mount -uw / Is that correct? Tom I tend to short it to: mount -u / -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: where to start with PGP/GPG?
On Thu, 15 Aug 2013 13:16+0100, Anton Shterenlikht wrote: I never needed to use pgp till now. So I'm not sure where to start. Is security/gnupg the way to go? Any other advice? Consider the use of security/pinentry for entering passphrases. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sysvipc only for one jail
On Tue, 13 Aug 2013 07:53-0400, Fbsd8 wrote: What 9.3 are you talking about 9.2-RC1 is the newest available. Is 9.3 a typo and you really mean 9.2?? PostgreSQL 9.3beta2, you'll find it in ports as databases/postgresql93-server, etc. http://wiki.postgresql.org/wiki/What's_new_in_PostgreSQL_9.3 Among other things: o Switch to Posix shared memory and mmap(). (DONE) -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sysvipc only for one jail
On Mon, 12 Aug 2013 12:40+0200, David Demelier wrote: 2013/8/11 Maciej Suszko mac...@suszko.eu: Maciej Suszko mac...@suszko.eu wrote: [...] You can specify different params for each jail using _parameters, for example: jail_jailname_params=allow.chflags=1 allow.sysvipc=1 Sorry, my mistake - it should be jail_jailname_parameters= of course. -- regards, Maciej Suszko. Thanks for your message, However, I could not find this setting in the manual of rc.conf(5) neither in /etc/rc.d/jail :(. It does not seems to be applied. Have a look at jail(8) and the last lines of /etc/default/rc.conf. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sysvipc only for one jail
On Mon, 12 Aug 2013 13:57+0200, David Demelier wrote: 2013/8/12 Trond Endrestøl trond.endres...@fagskolen.gjovik.no: On Mon, 12 Aug 2013 12:40+0200, David Demelier wrote: 2013/8/11 Maciej Suszko mac...@suszko.eu: Maciej Suszko mac...@suszko.eu wrote: [...] You can specify different params for each jail using _parameters, for example: jail_jailname_params=allow.chflags=1 allow.sysvipc=1 Sorry, my mistake - it should be jail_jailname_parameters= of course. -- regards, Maciej Suszko. Thanks for your message, However, I could not find this setting in the manual of rc.conf(5) neither in /etc/rc.d/jail :(. It does not seems to be applied. Have a look at jail(8) and the last lines of /etc/default/rc.conf. I see, I've added what Maciej Suszko told me but the sysctls in the jail is not set as it should be : security.jail.param.allow.sysvipc: 0 security.jail.param.allow.chflags: 0 And thus, it's not enabled as postgresql tells: creating template1 database in /usr/local/pgsql/data/base/1 ... FATAL: could not create shared memory segment: Function not implemented I'll look into this by creating a new jail for PostgreSQL 9.2 when I get home. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: sysvipc only for one jail
On Mon, 12 Aug 2013 14:09+0200, Trond Endrestøl wrote:
On Mon, 12 Aug 2013 13:57+0200, David Demelier wrote:
2013/8/12 Trond Endrestøl trond.endres...@fagskolen.gjovik.no:
On Mon, 12 Aug 2013 12:40+0200, David Demelier wrote:
2013/8/11 Maciej Suszko mac...@suszko.eu:
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my mistake - it should be jail_jailname_parameters= of course.
--
regards, Maciej Suszko.
Thanks for your message,
However, I could not find this setting in the manual of rc.conf(5)
neither in /etc/rc.d/jail :(. It does not seems to be applied.
Have a look at jail(8) and the last lines of /etc/default/rc.conf.
I see,
I've added what Maciej Suszko told me but the sysctls in the jail is
not set as it should be :
security.jail.param.allow.sysvipc: 0
security.jail.param.allow.chflags: 0
And thus, it's not enabled as postgresql tells:
creating template1 database in /usr/local/pgsql/data/base/1 ... FATAL:
could not create shared memory segment: Function not implemented
I'll look into this by creating a new jail for PostgreSQL 9.2 when I
get home.
My host is running 9.2-PRERELEASE, r254150, in VirtualBox 4.2.16.
The jails are running world, also at r254150.
I added the following to the host's /etc/rc.conf:
jail_enable=YES
jail_list=postgresql
jail_postgresql_rootdir=/jails/postgresql
jail_postgresql_hostname=postgresql.bsd.net
jail_postgresql_interface=vtnet0
jail_postgresql_fib=0
jail_postgresql_ip=10.0.2.103,2001:db8::103
jail_postgresql_exec_start=/bin/sh /etc/rc
jail_postgresql_exec_stop=/bin/sh /etc/rc.shutdown
jail_postgresql_devfs_enable=YES
jail_postgresql_parameters=enforce_statfs=1 allow.chflags=1 allow.sysvipc=1
allow.mount=1 allow.mount.zfs=1
I added the following to the host's /etc/jail.conf:
postgresql {
path = /jails/postgresql;
enforce_statfs = 1;
allow.chflags;
allow.sysvipc;
allow.mount;
allow.mount.zfs;
mount.devfs;
host.hostname = postgresql.bsd.net;
ip4.addr = 10.0.2.103;
ip6.addr = 2001:db8::103;
interface = vtnet0;
exec.start = /bin/sh /etc/rc;
exec.stop = /bin/sh /etc/rc.shutdown;
}
PostgreSQL 9.2.4 had no problems running initdb nor running postgres
inside the jail:
root@freebsd-jails:/ # jexec 4 csh
root@postgresql:/ # /usr/local/etc/rc.d/postgresql status
pg_ctl: server is running (PID: 46623)
/usr/local/bin/postgres -D /usr/local/pgsql/data
root@postgresql:/ #
If you start the jail manually using jail(8), then /etc/jail.conf
comes into play, whereas the lines in /etc/rc.conf is used during
automatic startup of the jails when the host is rebooted. The whole
arrangement seems unnecessary redundant, and I truly wish this can be
merged sooner rather than later.
--
+---++
| Vennlig hilsen, | Best regards, |
| Trond Endrestøl, | Trond Endrestøl, |
| IT-ansvarlig, | System administrator, |
| Fagskolen Innlandet, | Gjøvik Technical College, Norway, |
| tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, |
| sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Freebsd SVN
On Thu, 1 Aug 2013 13:46+0400, Alexey Smirnov wrote: Hello community. I got a question here. I am trying to get freebsd source code on linux machine using svn. Here is error i got during this proccess. ramyalexis@asmirnov ~ $ svn co https://svn0.eu.FreeBSD.org freebsd svn: E175002: Unable to connect to a repository at URL ' https://svn0.eu.freebsd.org' svn: E175002: The OPTIONS request returned invalid XML in the response: XML parse error at line 1: Extra content at the end of the document (https://svn0.eu.freebsd.org) ramyalexis@asmirnov ~ $ svn co https://svn0.us-west.FreeBSD.org freebsd svn: E175002: Unable to connect to a repository at URL ' https://svn0.us-west.freebsd.org' svn: E175002: The OPTIONS request returned invalid XML in the response: XML parse error at line 1: Extra content at the end of the document (https://svn0.us-west.freebsd.org) ramyalexis@asmirnov ~ $ svn co https://svn0.us-east.FreeBSD.org freebsd svn: E175002: Unable to connect to a repository at URL ' https://svn0.us-east.freebsd.org' svn: E175002: The OPTIONS request returned invalid XML in the response: XML parse error at line 1: Extra content at the end of the document (https://svn0.us-east.freebsd.org) So i would like to know why this was happend and how to fix it. Thank you. Try one of these: svn co https://svn0.eu.FreeBSD.org/base freebsd-all svn co https://svn0.eu.FreeBSD.org/base/head freebsd-head svn co https://svn0.eu.FreeBSD.org/base/stable/8 freebsd-stable-8 svn co https://svn0.eu.FreeBSD.org/base/stable/9 freebsd-stable-9 For the ports collection, use only(!): svn co https://svn0.eu.FreeBSD.org/ports/head freebsd-ports BTW, it's nice to know there's an European svn mirror. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Unable to access http://sane-project.org/
On Thu, 1 Aug 2013 06:58-0400, Jerry wrote: Not really a FreeBSD problem; however, I was wondering if anyone else had been unable to access http://sane-project.org/ in the last 24 hours? Confirmed inaccessible at work, both when URL was fed directly to my web browser and through the use of http://www.downforeveryoneorjustme.com/http://sane-project.org/ Trond. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
portupgrade -fpv devel/bzr fails with po/sv.po:193:13: invalid multibyte sequence
Hi, Is gettext 0.18.3 less forgiving than previous versions? Or are some of the translations encoded wrong? I even tried twice to forcefully upgrade everything depending on converters/libiconv, e.g. portupgrade -fprv converters/libiconv, but that didn't make a difference. Is there anything I can do, or should I wait until the translators catches up? running build_mo creating bzrlib/locale creating bzrlib/locale/my creating bzrlib/locale/my/LC_MESSAGES Compile: po/my.po - bzrlib/locale/my/LC_MESSAGES/bzr.mo msgfmt -o bzrlib/locale/my/LC_MESSAGES/bzr.mo po/my.po creating bzrlib/locale/en_GB creating bzrlib/locale/en_GB/LC_MESSAGES Compile: po/en_GB.po - bzrlib/locale/en_GB/LC_MESSAGES/bzr.mo msgfmt -o bzrlib/locale/en_GB/LC_MESSAGES/bzr.mo po/en_GB.po creating bzrlib/locale/sv creating bzrlib/locale/sv/LC_MESSAGES Compile: po/sv.po - bzrlib/locale/sv/LC_MESSAGES/bzr.mo msgfmt -o bzrlib/locale/sv/LC_MESSAGES/bzr.mo po/sv.po po/sv.po:193:13: invalid multibyte sequence po/sv.po:193:14: invalid multibyte sequence po/sv.po:220:12: invalid multibyte sequence po/sv.po:220:13: invalid multibyte sequence po/sv.po:220:35: invalid multibyte sequence po/sv.po:220:36: invalid multibyte sequence po/sv.po:220:43: invalid multibyte sequence po/sv.po:220:44: invalid multibyte sequence po/sv.po:220:62: invalid multibyte sequence po/sv.po:220:63: invalid multibyte sequence po/sv.po:229:23: invalid multibyte sequence po/sv.po:229:24: invalid multibyte sequence po/sv.po:233:37: invalid multibyte sequence po/sv.po:233:38: invalid multibyte sequence po/sv.po:233:44: invalid multibyte sequence po/sv.po:233:45: invalid multibyte sequence po/sv.po:233:53: invalid multibyte sequence po/sv.po:233:54: invalid multibyte sequence po/sv.po:233:58: invalid multibyte sequence po/sv.po:233:59: invalid multibyte sequence msgfmt: too many errors, aborting error: command 'msgfmt' failed with exit status 1 *** [do-build] Error code 1 Stop in /usr/ports/devel/bzr. *** [build] Error code 1 Stop in /usr/ports/devel/bzr. ** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade20130729-96692-18p61og env UPGRADE_TOOL=portupgrade UPGRADE_PORT=bzr-2.5.1 UPGRADE_PORT_VER=2.5.1 make DEPENDS_TARGET=package ** Fix the problem and try again. --- Build of devel/bzr ended at: Mon, 29 Jul 2013 12:09:28 +0200 (consumed 00:01:25) --- Upgrade of devel/bzr ended at: Mon, 29 Jul 2013 12:09:28 +0200 (consumed 00:01:25) --- ** Upgrade tasks 1: 0 done, 0 ignored, 0 skipped and 1 failed --- Listing the results (+:done / -:ignored / *:skipped / !:failed) ! devel/bzr (bzr-2.5.1) (unknown build error) --- Packages processed: 0 done, 0 ignored, 0 skipped and 1 failed --- Session ended at: Mon, 29 Jul 2013 12:09:28 +0200 (consumed 00:01:27) -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: TRIM and changing mount options
On Thu, 25 Jul 2013 19:25-0700, aurfalien wrote: On Jul 24, 2013, at 12:51 PM, Alexandre Labarre wrote: Le mercredi 24 juillet 2013, aurfalien a écrit : On Jul 24, 2013, at 9:01 AM, Dan Nelson wrote: In the last episode (Jul 23), aurfalien said: On Jul 23, 2013, at 7:55 PM, Dan Nelson wrote: In the last episode (Jul 23), aurfalien said: At any rate, could some one; a) Explain how I am loading my file system as I'm used to fstab? b) How to run tunefs on my zroot c) How to determine if I actually have the needed TRIM support in my kernel I'm not sure if there's a way to query TRIM status on arbitrary geom providers, but you can see whether zfs successfully sent any TRIM requests by watching the output of sysctl kstat.zfs.misc.zio_trim. If .zio_trim.success increments and .unsupported (or .failed) doesn't, then you know that it's working. Looks like I don't have it. I keep reading that I must download the patch and make it which is not an issue. But I can't seem to find it. I've dl'd the 9.2 beta in hopes to check its src and see if its there. Looks like all I really need is the current rel. ZFS TRIM support was MFC'd into the 9 branch in June, so it wasn't in 9.1 but will be available in 9.2: http://svnweb.freebsd.org/base?view=revisionrevision=251419 I actually got the 9.2 src and found what i was looking for so many thanks. Gonna figure out what step are required to compile this in to my current 9.1 rel. Thanks again. - aurf Hi, Why you do not track 9/Stable or wait 9.2-Release? We are at the first Beta stage of 9.2. (9.2-Beta 1). You cannot use freebsd-update to upgrade your 9.1-Release to 9.2-Beta 1 because there was a problem, but this will be resolved for 9.2-Beta 2 in the next days or weeks. Just my .2 cents Kind regards, Alexandre Hi, Whats the best list to submit oddities regarding freeBSD 9.2 Beta 1? Specifically, this line in 9.1 creates and mounts the fs under /mnt; zpool create -o altroot=/mnt -o cachefile=/var/tmp/zpool.cache zroot mirror /dev/gpt/disk0 /dev/gpt/disk1 But in 9.2 beta 1, its under /mnt/zroot. Just seems a bit odd is all. - aurf What does zfs get mountpoint zroot tell you in each case? -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
When is /boot/menu.rc supposed to updated?
Is it the task of: 1. mergemaster, or 2. make installkernel, or 3. make installworld, or 4. the user by manually copying from /usr/src/sys/boot/forth/menu.rc? I upgraded a 9.0-STABLE VM yesterday, it was last touched late in August last year. The VM previously used CVSup for updating /usr/src, but is now using Subversion. Neither mergemaster nor make installkernel nor make installworld detected a new version of menu.rc, not even the change from CVS-Id string to the Subversion-Id string. This a bit strange, but maybe someone can shed some light on this. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Errors building mysql55-client
/mysql55-client. === Cleaning for mysql-client-5.5.32 Any idea why?? Either the file named distinfo is messed up, or the maintainer has access to a different file than the rest of us. Maybe you should wait until the MySQL mirrors catches up. Here's contents of /usr/ports/databases/mysql55-server/distinfo on one of my systems as of r321850: root@enterprise:~cat /usr/ports/databases/mysql55-server/distinfo SHA256 (mysql-5.5.32.tar.gz) = babb19a1e58f6b285ff75e876f550a798d37fb72b5a548ffb411e8a4a51f6890 SIZE (mysql-5.5.32.tar.gz) = 24589274 Here's info on the file itself: root@enterprise:~stat -x /usr/ports/distfiles/mysql-5.5.32.tar.gz File: /usr/ports/distfiles/mysql-5.5.32.tar.gz Size: 24625029 FileType: Regular File Mode: (0644/-rw-r--r--) Uid: (0/root) Gid: (0/ wheel) Device: 129,129302626 Inode: 4958Links: 1 Access: Thu Jun 27 11:03:49 2013 Modify: Fri May 17 07:44:35 2013 Change: Fri Jun 14 09:20:22 2013 root@enterprise:~sha256 /usr/ports/distfiles/mysql-5.5.32.tar.gz SHA256 (/usr/ports/distfiles/mysql-5.5.32.tar.gz) = 20930c3d934937f3863073af0a54cb014a4c6469e5460a81e2ff75062755377e Neither the file's length nor its SHA256 hash matches what's stored in the distinfo file. If you accept the risks, you could perform some surgery on the /usr/ports/databases/mysql55-server/distinfo file, changing its contents to: SHA256 (mysql-5.5.32.tar.gz) = 20930c3d934937f3863073af0a54cb014a4c6469e5460a81e2ff75062755377e SIZE (mysql-5.5.32.tar.gz) = 24625029 You should probably generate/verify these values yourself. I updated both mysql55-server and mysql55-client on June 14th, 2013. root@enterprise:~mysql --version mysql Ver 14.14 Distrib 5.5.32, for FreeBSD9.1 (amd64) using 5.2 -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: freebsd8.2 with /etc mount point can't run correctly
On Tue, 28 May 2013 12:57+0430, s m wrote: hello all, i want to install freebsd8.2 with different partitions. i want to have a separated partition for /etc. therefore this is my partitions: / , /var, /etc. /tmp, /usr, swap. but after installing, freebsd can not run correctly and have problem with fstab. i checked my fstab file (fstab file in /etc partition) and every thing is ok. i think i should do something in order to use fstab file in different mount point. is it true? what should i do to have a freebsd with a separate /etc mount point? any comments are appreciated. SAM If you really want to keep /etc as a separate filesystem, then I would try something like this: 1. Create the file /etc-mount and give it the following contents: #!/bin/sh /sbin/mount /dev/ada0pX /etc exec /etc/rc $* 2. Make sure to substitute the right device file for the mount command. 2. Make /etc-mount executable: chmod a+x /etc-mount 3. On the root filesystem, let /etc/rc be a symlink to /etc-mount. This is just off the top of my head. It may work, or it may not work. HTH. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: freebsd8.2 with /etc mount point can't run correctly
On Tue, 28 May 2013 13:29+0430, saeedeh motlagh wrote:
On Tue, May 28, 2013 at 1:16 PM, Trond Endrestøl
trond.endres...@fagskolen.gjovik.no wrote:
On Tue, 28 May 2013 12:57+0430, s m wrote:
hello all,
i want to install freebsd8.2 with different partitions. i want to have
a separated partition for /etc. therefore this is my partitions: / ,
/var, /etc. /tmp, /usr, swap.
but after installing, freebsd can not run correctly and have problem
with fstab. i checked my fstab file (fstab file in /etc partition) and
every thing is ok. i think i should do something in order to use fstab
file in different mount point. is it true? what should i do to have a
freebsd with a separate /etc mount point?
any comments are appreciated.
SAM
If you really want to keep /etc as a separate filesystem, then I would
try something like this:
1. Create the file /etc-mount and give it the following contents:
#!/bin/sh
/sbin/mount /dev/ada0pX /etc
exec /etc/rc $*
2. Make sure to substitute the right device file for the mount
command.
2. Make /etc-mount executable: chmod a+x /etc-mount
3. On the root filesystem, let /etc/rc be a symlink to /etc-mount.
This is just off the top of my head. It may work, or it may not work.
HTH.
thanks Trond but i think it can not help me.
you know i want to separate my /etc completely from root. for some reasons,
i want to unmount /etc while root is mounted.
by your procedure, i think /etc is dependent to root yet. isn't it?
When the system boots, init(8) fires up a shell to execute the
commands contained in (the real) /etc/rc. At boot only the root file
system is mounted, thus you need a mechanism to mount /etc ahead of
normal startup and pass whatever arguments the fake /etc/rc was
invoked with on to the real /etc/rc.
As long as no processes holds open any files within /etc and you don't
need any of the files, /etc/{,s}pwd.db og /etc/group comes to mind,
you should be able to unmount /etc at your own pace. I guess you
should be in single user mode while doing this.
Why do you need this strange detachment anyway?
Backups? Snapshots?
--
+---++
| Vennlig hilsen, | Best regards, |
| Trond Endrestøl, | Trond Endrestøl, |
| IT-ansvarlig, | System administrator, |
| Fagskolen Innlandet, | Gjøvik Technical College, Norway, |
| tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, |
| sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: freebsd8.2 with /etc mount point can't run correctly
On Tue, 28 May 2013 15:13+0430, s m wrote:
On 5/28/13, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote:
On Tue, 28 May 2013 12:25+0200, Trond Endrestøl wrote:
On Tue, 28 May 2013 13:29+0430, saeedeh motlagh wrote:
On Tue, May 28, 2013 at 1:16 PM, Trond Endrestøl
trond.endres...@fagskolen.gjovik.no wrote:
On Tue, 28 May 2013 12:57+0430, s m wrote:
hello all,
i want to install freebsd8.2 with different partitions. i want to
have
a separated partition for /etc. therefore this is my partitions: /
,
/var, /etc. /tmp, /usr, swap.
but after installing, freebsd can not run correctly and have
problem
with fstab. i checked my fstab file (fstab file in /etc partition)
and
every thing is ok. i think i should do something in order to use
fstab
file in different mount point. is it true? what should i do to have
a
freebsd with a separate /etc mount point?
any comments are appreciated.
SAM
If you really want to keep /etc as a separate filesystem, then I
would
try something like this:
1. Create the file /etc-mount and give it the following contents:
#!/bin/sh
/sbin/mount /dev/ada0pX /etc
exec /etc/rc $*
2. Make sure to substitute the right device file for the mount
command.
2. Make /etc-mount executable: chmod a+x /etc-mount
3. On the root filesystem, let /etc/rc be a symlink to /etc-mount.
This is just off the top of my head. It may work, or it may not work.
HTH.
thanks Trond but i think it can not help me.
you know i want to separate my /etc completely from root. for some
reasons,
i want to unmount /etc while root is mounted.
by your procedure, i think /etc is dependent to root yet. isn't it?
When the system boots, init(8) fires up a shell to execute the
commands contained in (the real) /etc/rc. At boot only the root file
system is mounted, thus you need a mechanism to mount /etc ahead of
normal startup and pass whatever arguments the fake /etc/rc was
invoked with on to the real /etc/rc.
As long as no processes holds open any files within /etc and you
don't need any of the files, /etc/{,s}pwd.db and[!] /etc/group comes
to mind, you should be able to unmount /etc at your own pace. I
guess you should be in single user mode while doing this.
[Typo corrected.]
Why do you need this strange detachment anyway?
Backups? Snapshots?
thanks guys,
you know i have a server and change my pwd files most of the time. i
want to safe my server, so i prefer to mount my root read-only and
because of changes in pwd files, i should mount /etc read-write.
therefore i want to separate my /etc from root.
moreover, if i want to enable journaling on /etc, i should unmount it
(journaling cannot been set for root partition).
To enable journaling, i.e. soft updates, for the root filesystem, do
the exact following:
1. Reboot into single user mode.
2. Run /sbin/tunefs -j enable /dev/ada0pX
3. Issue the reboot command.
now, do you have any suggestion for my status? how can i mount /etc
partition at boot time?
As I said earlier in this thread you need a mechanism for mounting
/etc prior to running the startup scripts.
OK, here's a more detailed list than the previous one, assuming the
root filesystem is currently mounted read-write:
1. Create and edit the file /fake-rc, giving it this contents (the
next 3 lines):
#!/bin/sh
mount /dev/ada0pX /etc
exec /etc/rc $*
2. Don't forget to substitute the right device file corresponding to
the /etc filesystem.
3. Let /fake-rc be executable: chmod a+x /fake-rc
4. Go to single user mode. I'm still assuming the _root_ filesystem is
mounted read-write. Please ensure it is.
5. Unmount /etc.
6. Let /etc/rc be a symbolic link to /fake-rc, by issuing the command:
/bin/ln -s /fake-rc /etc/rc
7. Remount /etc manually, i.e. mount /dev/ada0pX /etc
8. Make the necessary changes to /etc/fstab so that the root file
system is never mounted read-write during startup.
9. Reboot the system and observe to see if the behaviour is the
desired one.
Remember this, because this is important:
When the system boots, init(8) fires up a shell to execute the
commands contained in (the real) /etc/rc.
At boot only the _root_ file system is mounted, thus you need a
mechanism to mount /etc ahead of normal startup and pass whatever
arguments the fake /etc/rc was invoked with on to the real /etc/rc.
This is what you would accomplish by erecting /etc/rc on the _root_
filesystem as a symlink to the fake /fake-rc, also on the _root_
filesystem. The fake /fake-rc takes care of mounting /etc at startup
and resuming running the startup scripts by executing the real
/etc/rc, now that the /etc filesystem is finally mounted (read-write).
Use this opportunity to really learn how FreeBSD behaves during
startup and what its expectations
Re: Fresh installation 9.1
On Thu, 23 May 2013 14:26+0530, hrkesh sahu wrote: Hi Trond, Thanks a lot for your help and Ipv6 routing is working with FreeBSD OS. we want to go for Ipv6 certification for our IPv6 stack. And Ipv6 stack we want to use FreeBSD as one vendor router. Now It will be easy for IPv6 interoperability test with freeBSD. for Ipv6 interoperability test We need another router device and I am planning use Ubuntu as IPv6 router. Please let me your personal view and if you can help me on this, it will be grateful. How to enable gateway for IPv6 in Ubuntu? Router may require to do send Neighbor advertisement for Host Neighbor solicitation . I installed radvd in ubuntu. could you please share radvd.conf of ubuntu? Hmm. I'm not at all familiar with Ubuntu or any other Linux distro for that matter. I admit, I did try out Debian/amd64 7.0.0 a couple of weeks ago, but I have far more experience with FreeBSD than anything else in the *nix world. Truth to be told, I regard most Linux distros as inferior compared to the *BSDs, due to the Linux distros forcing you to install a whole lot of bloat. It probably boils down to what level you are on, be it Joe Public or someone with more experience when it comes to computers and operating systems. Maybe I'm just misinformed and there exists a Linux distro or two letting the user/administrator chose what to install rather well. On Wed, May 22, 2013 at 7:53 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Wed, 22 May 2013 19:34+0530, hrkesh sahu wrote: Hi Trond, Thanks a lot for a clear reply. Could you please tell me Laptop1 ipv6 configuration details? as laptop auto configuration will generate the LL address for a auto ipv6 configuration. For Interface rl0 ipv6 address ifconfig_rl0_ipv6=inet6 fd8f:d6d0:e6e7:100::101 prefixlen 64 , what will be laptop ipv6 address? It depends solely on the operating system and whether IPv6 privacy is in effect. Normally, the client will perform stateless automatic address configuration (SLAAC). It goes pretty much like this: The router announces the 64 bit prefix, usually every 200 seconds, but the client may request a new announcement at any time. The client generates a 64 bit interface identifier based on its 48 bit MAC address. The client then concatenates the supplied prefix with the generated interface identifier. The client then performs duplicate address detection (DAD), and if everythings checks out, the client got its IPv6 address. Given this prefix fd8f:d6d0:e6e7:100::/64, and this MAC address 50:e5:49:41:4d:70. The client would then generated this interface id: 52e5:49ff:fe41:4d70. The Universal/Local bit of the MAC address is inverted, and FF:FE is placed at center. (It really ought to be FF:FF, but way back in time someone misread the IEEE standards regarding conversion from 48 bit MAC addresses to EUI64 format. This oversight doesn't really matter.) The same client would then aqcuire this IPv6 address: fd8f:d6d0:e6e7:100:52e5:49ff:fe41:4d70, and perform DAD. The client gets its IPv6 default route/gateway from the router announcement. Of course, you may configure the IPv6 address and gateway manually on the client, say fd8f:d6d0:e6e7:100::1337/64 (client's address) and fd8f:d6d0:e6e7:100::101 (gateway's address). On Wed, May 22, 2013 at 6:54 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Wed, 22 May 2013 18:21+0530, hrkesh sahu wrote: Hi Trond , Thanks a lot. Now i am able to ping to other network with IPv4 address. For IPv6 I added these lines in rc.conf - first I included - ipv6_gateway_enable=YES ++ Laptop1( Ipv6 address fe80::224:7eff:fee0:6b51) is connected to interface rl0 ( ipv6 address - fe80::21f:b5ff:fe48:9f73) While doing ping6 from fe80::224:7eff:fee0:6b51 to fe80::21f:b5ff:fe48:9f73 - it is working. Neighbor advertisement from fe80::21f:b5ff:fe48:9f73 is happening. while doing from ping6 from fe80::224:7eff:fee0:6b51 to other interface fe80::21f:d0ff:fe40:8bbd , then there is no Neighbor advertisement. After this I included these two lines to rc.conf - rtadvd_enable=YES rtadvd_interfaces=rl0 I have not created any file like /etc/rtadvd.conf . Do i need to create this configuration file? if yes, what should be the input to rtadvd.conf for link local address? please find Ipv6 interface details. Ifconfig re0: flags=8843UP,Broadcast, Running,Simplex,Multicast Metric 0 mtu 1500 options=8209bRXCSUM,TXCSUM, VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE ether 00:1f:d0:40:8b:bd inet6 fe80::21f:d0ff:fe40:8bbd%re0 prefixlen 64 scopeid 0x5 inet 192.168.200.101 netmask 0xff00 broadcast 192.168.200.255
Re: file corruption solution (soft-update or ZFS)
On Thu, 23 May 2013 16:44+0430, saeedeh motlagh wrote: thanks for your reply. you know i have a sensitive server and unfortunately it is located some where that power outage happens much. so i want guarantee my data and avoid data lost and file corruption in my server. Maybe you should also invest in a decent UPS. i do not have any problem in RAM and hardware. i don't know which approach is more suitable for my server. using soft-update or ZFS. please help me to select the best one. thank you so much On Thu, May 23, 2013 at 4:28 PM, Warren Block wbl...@wonkity.com wrote: On Thu, 23 May 2013, saeedeh motlagh wrote: hello every body i have a question about fixing file corruption in freebsd. now i have freebsd8.2 and some times file corruption happened on it. this issue has a heavy cost for me and i want to avoid it or fixit it completely. so my question is: is it better to upgrade my freebsd to 9.1 and use soft update or migrate from UFS to ZFS? That's a judgement call, which means it depends. i heard so much about soft update -that is added in freebsd9.1- which can fix file corruption in acceptable way with low cost but i don't know how much is reliable and efficient. Several things: Soft updates have been around for quite a while. Soft updates journaling is the new addition. Neither of these address file corruption. Their purpose is to make sure the filesystem does not get corrupted, but individual files could still contain bad data. in the other hand, i think migration from UFS to ZFS can be another solution. as i read ZFS is is created to solve all the problems related integrity file system. is it reliable enough in comparison soft-update? now, i want to know which solution is better and why? Again, it depends. Does the target system have enough RAM for ZFS? If the file corruption is due to a hardware problem or an application writing bad data, no filesystem can prevent that. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: netgraph network setup for jail(8) vnet jails.
On Thu, 23 May 2013 09:42-0400, Joe wrote: Teske, Devin wrote: snip... I rendered your output by saving it in a file (joe.dot) and then running: dot -Tsvg -o joe.svg joe.dot I then uploaded joe.svg to my website: http://druidbsd.sf.net/download/joe.svg Compare your output to any of the following: http://druidbsd.sf.net/download/warden0.jbsd.svg http://druidbsd.sourceforge.net/download/folsom.svg It looks like everything is connected properly. A couple thoughts off the top of my head: a. Did you enable promiscuous mode on rl0 via ngctl? (in your script perhaps?) b. Have you tried giving ngeth0 a new MAC address? (I do this through ngctl too, but I imagine ifconfig from within the jail could achieve the same thing) -- Devin Yes I enabled promiscuous mode and setautosrc 0 on rl0 via ngctl. I can find no documentation on why this is done. Can you point me to some? Yes I gave the jail a unique MAC address. I tried to generate my own network map, but having problem. ngctl dot file.dot works. dot -Tsvg -o file.svg file.dot gives me command dot not found. Please install graphics/graphviz, either from ports or from packages. Tried ngctl dot -Tsvg -o file.svg file.dot and -T is illegal option. What am I doing wrong? Thanks for your help Joe -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Fresh installation 9.1
On Wed, 22 May 2013 11:10+0530, hrkesh sahu wrote: Hi All, IPv4 Routing - I disabled the DHCP from rc.conf for both the interface. but still I am not able to route trafic from one interface to another. rc.conf --- hostname=idc-freebsd keymap=hy.armscii-8.kbd #ifconfig_re0=DHCP #ifconfig_rl0=DHCP dumpdev=NO ifconfig_rl0=inet 192.168.100.101 netmask 255.255.255.0 ifconfig_re0=inet 192.168.200.101 netmask 255.255.255.0 Are the two lines above copied straight from your rc.conf file? If so, both lines are missing a at the end. Please check to see if this is needed. Next, the outputs of the ifconfig command and the netstat -r command should reveal something interesting. Would you please post the results from these two commands? ipv6_activate_all_interfaces=YES gateway_enable=YES default_router=192.168.200.1 I am using FreeBSD - 9.1 Release version I need to communicate between two different subnets. Am i missing anything to enable freebsd as router? Do i need to add a route entry? If possible could you please share rc.conf file with IPv4 routing? Regards Hrisikesh On Thu, May 9, 2013 at 2:04 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Thu, 9 May 2013 12:18+0530, hrkesh sahu wrote: HI All, I have a FreeBSD 9.1 Release installed with TWO NIC cards. I was trying to make this FreeBSD machine as a router . This is my rc.conf ifconfig_rl0 = inet 192.168.100.101 netmask 255.255.255.0 ifconfig_re0=inet 192.168.200.101 netmask 255.255.255.0 gateway_enable = YES ifconfig_rl0 = DHCP ifconfig_re0 = DHCP defaultrouter = 192.168.100.1 ipv6_activate_all_interfaces = YES sshd_enable = YES synchronous_dhclient=YES Please help me to establish a IPv4 router. Both the interfaces are connected to to different laptops with a static IP address. You should place a # in front of the two lines: ifconfig_rl0 = DHCP ifconfig_re0 = DHCP Next, you probably shouldn't place spaces before and after the equal signs. Laptop 1 = 192.168.100.102 ( connected to interface rl0) gateway - 192.168.100.1 Laptop 2 = 192.168.200.102 ( connected to interface re0) ping from Laptop1 - rl0 is successful but ping from Laptop1 - re0 is not successful. After this I want to know also How to make this as IPv6 router? See http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ipv6.html . You probably should create a ULA prefix or two, and assign these to your router interfaces. http://www.sixxs.net/tools/grh/ula/ might help you. Something along these lines might help you achieve what you want: ifconfig_rl0_ipv6=inet6 fd8f:d6d0:e6e7:100::1 prefixlen 64 ifconfig_re0_ipv6=inet6 fd44:13de:a366:200::1 prefixlen 64 ipv6_gateway_enable=YES Finally you probably should configure and enable Router Advertisement and Host Auto Configuration as explained in section 32.11.6 of http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ipv6.html . -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Fresh installation 9.1
On Wed, 22 May 2013 12:38+0530, hrkesh sahu wrote: Hi , Thanks a lot for this quick reply. Sorry i missed the in the end while typing. It's a typo. I provided the ouput of nestat -r and ifconfig. netstat -r -- routing tables - internet : --- destination Gateway Flags Refs Use Netif Expire default 192.168.200.1 UGS 0 0 re0 localhost link#12 UH 0 148 lo0 192.168.100.0 link#10 U 0 0 rl0 192.168.100.101 link#10 UHS 0 0 lo0 192.168.200.0 link#5 U 0 0 re0 192.168.200.101 link#5 UHS 0 0 lo0 Internet6: --- Ipv6 details Ifconfig re0: flags=8843UP,Broadcast,Running,Simplex,Multicast Metric 0 mtu 1500 options=8209bRXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE ether 00:1f:d0:40:8b:bd inet6 fe80::21f:d0ff:fe40:8bbd%re0 prefixlen 64 scopeid 0x5 inet 192.168.200.101 netmask 0xff00 broadcast 192.168.200.255 nd6 options=21PERFORMNUD,AUTO_LINKLOCAL media:Enthernet autoselect (none) status: no carrier rl0: flags=8843UP,Broadcast,Running,Simplex,Multicast Metric 0 mtu 1500 options=2008VLAN_MTU,WOL_MAGIC ether 00:10:b5:48:9f:73 inet6 fe80::21f:b5ff:fe48:9f73%rl0 prefixlen 64 scopeid 0xa inet 192.168.100.101 netmask 0xff00 broadcast 192.168.100.255 nd6 options=21PERFORMNUD,AUTO_LINKLOCAL media:Enthernet autoselect (none) status: no carrier there is a plip0 and lo0. Neither NIC is connected to any equipment, e.g. switch, hub, or computer (status: no carrier). Make sure you can use a straight network cable, else you'll need to get a couple of cross wired network cables and use those instead. Next, confirm the sysctl net.inet.ip.forwarding is set to 1 by running the sysctl net.inet.ip.forwarding command. If not, you can set the sysctl to 1 by running the sysctl net.inet.ip.forwarding=1 command, and you probably should inspect the /etc/rc.conf file one more time. Once you connect the computer to the two networks, the IPv4 routing should work. If not, come back. Regards Hrisikesh On Wed, May 22, 2013 at 12:02 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Wed, 22 May 2013 11:10+0530, hrkesh sahu wrote: Hi All, IPv4 Routing - I disabled the DHCP from rc.conf for both the interface. but still I am not able to route trafic from one interface to another. rc.conf --- hostname=idc-freebsd keymap=hy.armscii-8.kbd #ifconfig_re0=DHCP #ifconfig_rl0=DHCP dumpdev=NO ifconfig_rl0=inet 192.168.100.101 netmask 255.255.255.0 ifconfig_re0=inet 192.168.200.101 netmask 255.255.255.0 Are the two lines above copied straight from your rc.conf file? If so, both lines are missing a at the end. Please check to see if this is needed. Next, the outputs of the ifconfig command and the netstat -r command should reveal something interesting. Would you please post the results from these two commands? ipv6_activate_all_interfaces=YES gateway_enable=YES default_router=192.168.200.1 I am using FreeBSD - 9.1 Release version I need to communicate between two different subnets. Am i missing anything to enable freebsd as router? Do i need to add a route entry? If possible could you please share rc.conf file with IPv4 routing? Regards Hrisikesh On Thu, May 9, 2013 at 2:04 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Thu, 9 May 2013 12:18+0530, hrkesh sahu wrote: HI All, I have a FreeBSD 9.1 Release installed with TWO NIC cards. I was trying to make this FreeBSD machine as a router . This is my rc.conf ifconfig_rl0 = inet 192.168.100.101 netmask 255.255.255.0 ifconfig_re0=inet 192.168.200.101 netmask 255.255.255.0 gateway_enable = YES ifconfig_rl0 = DHCP ifconfig_re0 = DHCP defaultrouter = 192.168.100.1 ipv6_activate_all_interfaces = YES sshd_enable = YES synchronous_dhclient=YES Please help me to establish a IPv4 router. Both the interfaces are connected to to different laptops with a static IP address. You should place a # in front of the two lines: ifconfig_rl0 = DHCP ifconfig_re0 = DHCP Next, you probably shouldn't place spaces before and after
Re: Fresh installation 9.1
On Wed, 22 May 2013 18:21+0530, hrkesh sahu wrote: Hi Trond , Thanks a lot. Now i am able to ping to other network with IPv4 address. For IPv6 I added these lines in rc.conf - first I included - ipv6_gateway_enable=YES ++ Laptop1( Ipv6 address fe80::224:7eff:fee0:6b51) is connected to interface rl0 ( ipv6 address - fe80::21f:b5ff:fe48:9f73) While doing ping6 from fe80::224:7eff:fee0:6b51 to fe80::21f:b5ff:fe48:9f73 - it is working. Neighbor advertisement from fe80::21f:b5ff:fe48:9f73 is happening. while doing from ping6 from fe80::224:7eff:fee0:6b51 to other interface fe80::21f:d0ff:fe40:8bbd , then there is no Neighbor advertisement. After this I included these two lines to rc.conf - rtadvd_enable=YES rtadvd_interfaces=rl0 I have not created any file like /etc/rtadvd.conf . Do i need to create this configuration file? if yes, what should be the input to rtadvd.conf for link local address? please find Ipv6 interface details. Ifconfig re0: flags=8843UP,Broadcast, Running,Simplex,Multicast Metric 0 mtu 1500 options=8209bRXCSUM,TXCSUM, VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE ether 00:1f:d0:40:8b:bd inet6 fe80::21f:d0ff:fe40:8bbd%re0 prefixlen 64 scopeid 0x5 inet 192.168.200.101 netmask 0xff00 broadcast 192.168.200.255 nd6 options=21PERFORMNUD,AUTO_ LINKLOCAL media:Enthernet autoselect (none) status:active rl0: flags=8843UP,Broadcast, Running,Simplex,Multicast Metric 0 mtu 1500 options=2008VLAN_MTU,WOL_MAGIC ether 00:10:b5:48:9f:73 inet6 fe80::21f:b5ff:fe48:9f73%rl0 prefixlen 64 scopeid 0xa inet 192.168.100.101 netmask 0xff00 broadcast 192.168.100.255 nd6 options=21PERFORMNUD,AUTO_LINKLOCAL media:Enthernet autoselect (none) status: active Congratz on achieving active carrier wave on your NICs. Right now your system is running with link-local IPv6 addresses. You may view LL addresses as VLAN local. Packets to such addresses will never ever be forwarded by a router. Instead set up either official IPv6 addresses/subnets or create your own Unique Local Addresses (ULA) as I wrote previously about. Augment your /etc/rc.conf file with, say: ifconfig_rl0_ipv6=inet6 fd8f:d6d0:e6e7:100::101 prefixlen 64 You may assign the IPv6 address manually to avoid restarting the networking subsystem or the whole machine: ifconfig rl0 inet6 fd8f:d6d0:e6e7:100::101 prefixlen 64 Next, create /etc/rtadvd.conf with the following contents: rl0:\ :addr=fd8f:d6d0:e6e7:100:::prefixlen#64: If you want IPv6 routing on the re0 interface, you need, say this, in /etc/rc.conf: ifconfig_re0_ipv6=inet6 fd44:13de:a366:200::1 prefixlen 64 Assign the IPv6 address manually using: ifconfig re0 inet6 fd44:13de:a366:200::1 prefixlen 64 And add this to /etc/rtadvd.conf: re0:\ :addr=fd44:13de:a366:200:::prefixlen#64: You'll need to restart rtadvd by issuing /etc/rc.d/rtadvd restart. Happy hacking. Regards Hrisikesh On Wed, May 22, 2013 at 1:03 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Wed, 22 May 2013 12:38+0530, hrkesh sahu wrote: Hi , Thanks a lot for this quick reply. Sorry i missed the in the end while typing. It's a typo. I provided the ouput of nestat -r and ifconfig. netstat -r -- routing tables - internet : --- destination Gateway Flags Refs Use Netif Expire default 192.168.200.1 UGS 0 0 re0 localhost link#12 UH 0 148 lo0 192.168.100.0 link#10 U 0 0 rl0 192.168.100.101 link#10 UHS 0 0 lo0 192.168.200.0 link#5 U 0 0 re0 192.168.200.101 link#5 UHS 0 0 lo0 Internet6: --- Ipv6 details Ifconfig re0: flags=8843UP,Broadcast,Running,Simplex,Multicast Metric 0 mtu 1500 options=8209bRXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE ether 00:1f:d0:40:8b:bd inet6 fe80::21f:d0ff:fe40:8bbd%re0 prefixlen 64 scopeid 0x5 inet 192.168.200.101 netmask 0xff00 broadcast 192.168.200.255 nd6 options=21PERFORMNUD,AUTO_LINKLOCAL media:Enthernet autoselect (none) status: no carrier rl0: flags=8843UP,Broadcast,Running,Simplex,Multicast Metric 0 mtu 1500 options=2008VLAN_MTU,WOL_MAGIC ether 00:10:b5:48:9f:73 inet6 fe80::21f:b5ff:fe48:9f73%rl0 prefixlen 64 scopeid 0xa inet 192.168.100.101 netmask
Re: Fresh installation 9.1
On Wed, 22 May 2013 19:34+0530, hrkesh sahu wrote: Hi Trond, Thanks a lot for a clear reply. Could you please tell me Laptop1 ipv6 configuration details? as laptop auto configuration will generate the LL address for a auto ipv6 configuration. For Interface rl0 ipv6 address ifconfig_rl0_ipv6=inet6 fd8f:d6d0:e6e7:100::101 prefixlen 64 , what will be laptop ipv6 address? It depends solely on the operating system and whether IPv6 privacy is in effect. Normally, the client will perform stateless automatic address configuration (SLAAC). It goes pretty much like this: The router announces the 64 bit prefix, usually every 200 seconds, but the client may request a new announcement at any time. The client generates a 64 bit interface identifier based on its 48 bit MAC address. The client then concatenates the supplied prefix with the generated interface identifier. The client then performs duplicate address detection (DAD), and if everythings checks out, the client got its IPv6 address. Given this prefix fd8f:d6d0:e6e7:100::/64, and this MAC address 50:e5:49:41:4d:70. The client would then generated this interface id: 52e5:49ff:fe41:4d70. The Universal/Local bit of the MAC address is inverted, and FF:FE is placed at center. (It really ought to be FF:FF, but way back in time someone misread the IEEE standards regarding conversion from 48 bit MAC addresses to EUI64 format. This oversight doesn't really matter.) The same client would then aqcuire this IPv6 address: fd8f:d6d0:e6e7:100:52e5:49ff:fe41:4d70, and perform DAD. The client gets its IPv6 default route/gateway from the router announcement. Of course, you may configure the IPv6 address and gateway manually on the client, say fd8f:d6d0:e6e7:100::1337/64 (client's address) and fd8f:d6d0:e6e7:100::101 (gateway's address). On Wed, May 22, 2013 at 6:54 PM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Wed, 22 May 2013 18:21+0530, hrkesh sahu wrote: Hi Trond , Thanks a lot. Now i am able to ping to other network with IPv4 address. For IPv6 I added these lines in rc.conf - first I included - ipv6_gateway_enable=YES ++ Laptop1( Ipv6 address fe80::224:7eff:fee0:6b51) is connected to interface rl0 ( ipv6 address - fe80::21f:b5ff:fe48:9f73) While doing ping6 from fe80::224:7eff:fee0:6b51 to fe80::21f:b5ff:fe48:9f73 - it is working. Neighbor advertisement from fe80::21f:b5ff:fe48:9f73 is happening. while doing from ping6 from fe80::224:7eff:fee0:6b51 to other interface fe80::21f:d0ff:fe40:8bbd , then there is no Neighbor advertisement. After this I included these two lines to rc.conf - rtadvd_enable=YES rtadvd_interfaces=rl0 I have not created any file like /etc/rtadvd.conf . Do i need to create this configuration file? if yes, what should be the input to rtadvd.conf for link local address? please find Ipv6 interface details. Ifconfig re0: flags=8843UP,Broadcast, Running,Simplex,Multicast Metric 0 mtu 1500 options=8209bRXCSUM,TXCSUM, VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC,LINKSTATE ether 00:1f:d0:40:8b:bd inet6 fe80::21f:d0ff:fe40:8bbd%re0 prefixlen 64 scopeid 0x5 inet 192.168.200.101 netmask 0xff00 broadcast 192.168.200.255 nd6 options=21PERFORMNUD,AUTO_ LINKLOCAL media:Enthernet autoselect (none) status:active rl0: flags=8843UP,Broadcast, Running,Simplex,Multicast Metric 0 mtu 1500 options=2008VLAN_MTU,WOL_MAGIC ether 00:10:b5:48:9f:73 inet6 fe80::21f:b5ff:fe48:9f73%rl0 prefixlen 64 scopeid 0xa inet 192.168.100.101 netmask 0xff00 broadcast 192.168.100.255 nd6 options=21PERFORMNUD,AUTO_LINKLOCAL media:Enthernet autoselect (none) status: active Congratz on achieving active carrier wave on your NICs. Right now your system is running with link-local IPv6 addresses. You may view LL addresses as VLAN local. Packets to such addresses will never ever be forwarded by a router. Instead set up either official IPv6 addresses/subnets or create your own Unique Local Addresses (ULA) as I wrote previously about. Augment your /etc/rc.conf file with, say: ifconfig_rl0_ipv6=inet6 fd8f:d6d0:e6e7:100::101 prefixlen 64 You may assign the IPv6 address manually to avoid restarting the networking subsystem or the whole machine: ifconfig rl0 inet6 fd8f:d6d0:e6e7:100::101 prefixlen 64 Next, create /etc/rtadvd.conf with the following contents: rl0:\ :addr=fd8f:d6d0:e6e7:100:::prefixlen#64: If you want IPv6 routing on the re0 interface, you need, say this, in /etc/rc.conf: ifconfig_re0_ipv6=inet6 fd44:13de:a366:200::1 prefixlen 64 Assign the IPv6 address manually using: ifconfig re0 inet6 fd44:13de:a366:200::1 prefixlen 64 And add this to /etc/rtadvd.conf: re0:\ :addr=fd44:13de:a366:200:::prefixlen#64: You'll need to restart rtadvd by issuing
Re: [offtopic] ZFS mirror install /mnt is empty
@freebsd.org List freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions freebsd-questions.freebsd.org List-Unsubscribe: http://lists.freebsd.org/mailman/options/freebsd-questions, mailto:freebsd-questions-requ...@freebsd.org?subject=unsubscribe List-Archive: http://lists.freebsd.org/pipermail/freebsd-questions List-Post: mailto:freebsd-questions@freebsd.org List-Help: mailto:freebsd-questions-requ...@freebsd.org?subject=help List-Subscribe: http://lists.freebsd.org/mailman/listinfo/freebsd-questions, mailto:freebsd-questions-requ...@freebsd.org?subject=subscribe Content-Type: text/plain; charset=iso-8859-1 Errors-To: owner-freebsd-questi...@freebsd.org Sender: owner-freebsd-questi...@freebsd.org X-OriginalArrivalTime: 13 May 2013 13:38:23.0848 (UTC) FILETIME=[23DF9680:01CE4FDF] X-Spam-Status: No, score=-3.4 required=5.0 tests=AWL,BAYES_00, RCVD_IN_DNSWL_NONE autolearn=unavailable version=3.3.2 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on mail.fig.ol.no Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by mail.fig.ol.no id r4F5P8XU045283 -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: lang/gcc47 don't compile
On Wed, 15 May 2013 10:57+0200, Xavier wrote: Hi to all, I try to compile lang/gcc47 and the last lines is: checking for closedir... yes checking for opendir... (cached) yes checking for readdir... yes configure: updating cache .././config.cache configure: creating ./config.status config.status: creating Makefile config.status: creating config.h config.status: executing default-1 commands Adding multilib support to Makefile in ../../.././../gcc-4.7-20130413/libjava/li bltdl with_multisubdir= config.status: executing depfiles commands gmake[1]: Leaving directory `/usr/ports/lang/gcc47/work/build' gmake: *** [bootstrap-lean] Error 2 *** [do-build] Error code 1 Stop in /usr/ports/lang/gcc47. *** [build] Error code 1 Stop in /usr/ports/lang/gcc47. Somebody can help me ? Thanks, see you. Confirmed on FreeBSD/amd64 stable/9 at r250039, with ports tree at r318141: root@enterprise:/usr/ports/lang/gcc47make ... checking dl_iterate_phdr in target C library... unknown Using ggc-page for garbage collection. checking whether to enable maintainer-specific portions of Makefiles... no Links are now set up to build a native compiler for x86_64-portbld-freebsd9.1. checking for exported symbols... yes checking for -rdynamic... yes checking for library containing dlopen... none required checking for -fPIC -shared... yes configure: updating cache ./config.cache configure: creating ./config.status config.status: creating as config.status: creating collect-ld config.status: creating nm config.status: creating Makefile config.status: creating ada/gcc-interface/Makefile config.status: creating ada/Makefile config.status: creating auto-host.h config.status: executing default commands gmake[2]: Leaving directory `/usr/ports/workdirs/usr/ports/lang/gcc47/work/build' gmake[1]: *** [stage1-bubble] Error 2 gmake[1]: Leaving directory `/usr/ports/workdirs/usr/ports/lang/gcc47/work/build' gmake: *** [bootstrap-lean] Error 2 *** [do-build] Error code 1 Stop in /usr/ports/lang/gcc47. *** [build] Error code 1 Stop in /usr/ports/lang/gcc47. root@enterprise:/usr/ports/lang/gcc47 -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS mirror install /mnt is empty
On Mon, 13 May 2013 08:40-0400, Paul Kraus wrote: On May 13, 2013, at 1:58 AM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: Due to advances in hard drive technology, for the worse I'm afraid, i.e. 4K disk blocks, I wouldn't bother enabling compression on any ZFS file systems. I might change my blog posts to reflect this stop gap. If you do happen to have 4K drives, you might want to check out this blog post: https://ximalas.info/2012/01/11/new-server-and-first-attempt-at-running-freebsdamd64-with-zfs-for-all-storage/ I did look, it doesn't explain why not to enable compression on 4k sector drives. I guess it's due to my (mis)understanding that files shorter than 4KB stored on 4K drives never will be subject to compression. And as you state below, the degree of compression depends largely on the data at hand. From discussion on the zfs-discuss lists (both the old one from OpenSolaris and the new one at Illumos) the only issue with 4K sector drives is mixing 0.5K sector and 4K sector drives. You can tunes the zpool offset to handle 4K sector drives just fine, but it is a pool wide tuning. http://zfsday.com/wp-content/uploads/2012/08/Why-4k_.pdf has some 4K background, and the only mention I see of compression and 4K is that you may get less. But? you really need to test your data to see if turning compression on is beneficial with any dataset. There is noticeable computational overhead to enabling compression. If you are CPU bound, then you will get better performance with compression off. If you are limited by the I/O bandwidth to your drives, then *if* your data is highly compressible, then you will get better performance with compression on. I have managed large pools of both data that compresses well and data that does not. http://wiki.illumos.org/display/illumos/ZFS+and+Advanced+Format+disks discusses the issue and presents solutions using Illumos. I could find no such examples for FreeBSD, but I'm sure some of the same techniques would work (manually setting the ashift to 12 for 4K disks). -- Paul Kraus Deputy Technical Director, LoneStarCon 3 Sound Coordinator, Schenectady Light Opera Company -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS mirror install /mnt is empty
On Sun, 12 May 2013 23:11+0200, Roland van Laar wrote: Hello, I followed these[1] step up to the Finishing touches. I'm using a 9.1 Release. After the install I go into the shell and /mnt is empty. The mount command shows that the zfs partitions are mounted. When I reboot the system it can't find the bootloader. What can I do to fix this? Thanks, Roland van Laar [1] https://wiki.freebsd.org/RootOnZFS/GPTZFSBoot/9.0-RELEASE Looking through the wiki notes I would do a couple of things in a different way. Since you're running 9.1-RELEASE you should take into account the need for the /boot/zfs/zpool.cache file until 9.2-RELEASE exist or you switch to the latest 9-STABLE. Create your zpool using a command like this one: zpool create -o cachefile=/tmp/zpool.cache -m /tmp/zroot zroot /dev/gpt/disk0 Copy the /tmp/zpool.cache file to /tmp/zroot/boot/zfs/zpool.cache, or in your case to /mnt/boot/zfs/zpool.cache after extracting the base and kernel stuff. In the wiki section Finishing touches, perform step 4 before step 3. The final command missing in step 3 should be zfs unmount -a once more. Avoid step 5 at all cost! Maybe this recipe is easier to follow, it sure works for 9.0-RELEASE and 9.1-RELEASE, I only hope you're happy typing long commands, and yes, command line editing is available in the shell: https://ximalas.info/2011/10/17/zfs-root-fs-on-freebsd-9-0/ Due to advances in hard drive technology, for the worse I'm afraid, i.e. 4K disk blocks, I wouldn't bother enabling compression on any ZFS file systems. I might change my blog posts to reflect this stop gap. If you do happen to have 4K drives, you might want to check out this blog post: https://ximalas.info/2012/01/11/new-server-and-first-attempt-at-running-freebsdamd64-with-zfs-for-all-storage/ -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Fresh installation 9.1
On Thu, 9 May 2013 12:18+0530, hrkesh sahu wrote: HI All, I have a FreeBSD 9.1 Release installed with TWO NIC cards. I was trying to make this FreeBSD machine as a router . This is my rc.conf ifconfig_rl0 = inet 192.168.100.101 netmask 255.255.255.0 ifconfig_re0=inet 192.168.200.101 netmask 255.255.255.0 gateway_enable = YES ifconfig_rl0 = DHCP ifconfig_re0 = DHCP defaultrouter = 192.168.100.1 ipv6_activate_all_interfaces = YES sshd_enable = YES synchronous_dhclient=YES Please help me to establish a IPv4 router. Both the interfaces are connected to to different laptops with a static IP address. You should place a # in front of the two lines: ifconfig_rl0 = DHCP ifconfig_re0 = DHCP Next, you probably shouldn't place spaces before and after the equal signs. Laptop 1 = 192.168.100.102 ( connected to interface rl0) gateway - 192.168.100.1 Laptop 2 = 192.168.200.102 ( connected to interface re0) ping from Laptop1 - rl0 is successful but ping from Laptop1 - re0 is not successful. After this I want to know also How to make this as IPv6 router? See http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ipv6.html. You probably should create a ULA prefix or two, and assign these to your router interfaces. http://www.sixxs.net/tools/grh/ula/ might help you. Something along these lines might help you achieve what you want: ifconfig_rl0_ipv6=inet6 fd8f:d6d0:e6e7:100::1 prefixlen 64 ifconfig_re0_ipv6=inet6 fd44:13de:a366:200::1 prefixlen 64 ipv6_gateway_enable=YES Finally you probably should configure and enable Router Advertisement and Host Auto Configuration as explained in section 32.11.6 of http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-ipv6.html. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Diskless question
On Wed, 24 Apr 2013 09:07-0400, Lowell Gilbert wrote: Bernt Hansson b...@bananmonarki.se writes: 2013-04-24 12:30, Arthur Chance skrev: On 04/24/13 09:18, Bernt Hansson wrote: Hello list! I have set up a diskless machine with 8.3-stable and i as a user can log in, but when I try to log in as root it won't work. How to resolv that issue. I have tried with and without password but the computer said no. How did it say no? What does the entry for root in /etc/passwd say? $su Sorry root:*:0:0:Charlie :/root:/bin/csh ^ / \ Root has no valid password. You'll need to go into single-user mode and either give it one or install sudo and add your regular user to the sudoers file. Why look at the /etc/passwd file when the key files are: * /etc/master.passwd * /etc/spwd.db * /etc/passwd * /etc/pwd.db -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS mounting failed with error 2
On Wed, 10 Apr 2013 10:16+0200, David Demelier wrote: Hello I have tried to create a GPT partition scheme on my machine. I've created some dataset like that : tank/usr tank/usr/ports tank/usr/src tank/var/ tank/var/log (Please note that is a test on a virtual machine before applying to a real machine). I've tried to generate the zpool.cache like that: zpool import -o cachefile=/tmp/zpool.cache -o altroot=/mnt -f cp /tmp/zpool.cache /mnt/boot/zfs/ And then tried to set mount point to legacy and bootfs with : zfs set bootfs=tank tank zfs set mountpoint=legacy tank The following commands made a lot of warnings : zfs set mountpoint=/usr tank/usr zfs set mountpoint=/var tank/var ... After, the import on the livecd shell generated the error : cannot mount '/mnt/var': failed to create mountpoint. I must say that it is very hard to make a ZFS working machine, there are a lot of pages on the Wiki and most of them are a little bit outdated.. Try to use /tmp/mnt as a temporary altroot. /tmp should be writeable. Not sure about / within the livecd env. When you set mountpoints using the above commands, the filesystems are actually being mounted at their specified mountpoint. Unless the filesystems contain some actual files, more to the point, critical files, i.e. libraries and executables, then you are out of luck. My own blog entry is a bit (out)dated, but maybe it's worth a look: http://ximalas.info/2011/10/17/zfs-root-fs-on-freebsd-9-0/ -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ZFS mounting failed with error 2
On Wed, 10 Apr 2013 11:05+0200, David Demelier wrote: My own blog entry is a bit (out)dated, but maybe it's worth a look: http://ximalas.info/2011/10/17/zfs-root-fs-on-freebsd-9-0/ Now I currently have 504 Gateway Timeout going to your website, I will try at home maybe my corporate firewall is blocking this. The blog is up running, I assure you. Perhaps my choice of the .info TLD is unacceptable for some reason. It could even be the count of four letters, rather than 2 or 3, or all sorts of other crazy. Anyway, best of luck. ZFS is still a manual install, just pick the shell option in the FreeBSD Installer, and type away. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: p5-Bit-Vector SHA256 Checksum mismatch (was PERL problem installing SQLgrey)
- found = SHA256 Checksum mismatch for Bit-Vector-7.2.tar.gz. === Refetch for 1 more times files: Bit-Vector-7.2.tar.gz === p5-Bit-Vector-7.2_2 depends on file: /usr/local/sbin/pkg - found = Bit-Vector-7.2.tar.gz doesn't seem to exist in /usr/ports/distfiles/. = Attempting to fetch ftp://ftp.cpan.org/pub/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: ftp://ftp.cpan.org/pub/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Unknown FTP error = Attempting to fetch http://www.cpan.dk/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://www.cpan.dk/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Requested Range Not Satisfiable = Attempting to fetch ftp://ftp.kddlabs.co.jp/lang/perl/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: Bit-Vector-7.2.tar.gz: local file (137817 bytes) is longer than remote file (135586 bytes) = Attempting to fetch http://ftp.jaist.ac.jp/pub/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://ftp.jaist.ac.jp/pub/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Requested Range Not Satisfiable = Attempting to fetch ftp://ftp.dti.ad.jp/pub/lang/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: Bit-Vector-7.2.tar.gz: local file (137817 bytes) is longer than remote file (135586 bytes) = Attempting to fetch ftp://ftp.sunet.se/pub/lang/perl/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: ftp://ftp.sunet.se/pub/lang/perl/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Unknown FTP error = Attempting to fetch ftp://mirror.hiwaay.net/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: Bit-Vector-7.2.tar.gz: local file (137817 bytes) is longer than remote file (135586 bytes) = Attempting to fetch ftp://ftp.mirrorservice.org/sites/cpan.perl.org/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: Bit-Vector-7.2.tar.gz: local file (137817 bytes) is longer than remote file (135586 bytes) = Attempting to fetch http://at.cpan.org/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://at.cpan.org/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Requested Range Not Satisfiable = Attempting to fetch ftp://ftp.auckland.ac.nz/pub/perl/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: Bit-Vector-7.2.tar.gz: local file (137817 bytes) is longer than remote file (135586 bytes) = Attempting to fetch http://backpan.perl.org/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://backpan.perl.org/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Not Found = Attempting to fetch ftp://ftp.funet.fi/pub/languages/perl/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: ftp://ftp.funet.fi/pub/languages/perl/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Unknown FTP error = Attempting to fetch http://cpan.nctu.edu.tw/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://cpan.nctu.edu.tw/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Requested Range Not Satisfiable = Attempting to fetch http://ftp.twaren.net/Unix/Lang/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://ftp.twaren.net/Unix/Lang/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Requested Range Not Satisfiable = Attempting to fetch ftp://ftp.cpan.org/pub/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: ftp://ftp.cpan.org/pub/CPAN/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Unknown FTP error = Attempting to fetch http://www.cpan.dk/modules/by-module/Bit/Bit-Vector-7.2.tar.gz fetch: http://www.cpan.dk/modules/by-module/Bit/Bit-Vector-7.2.tar.gz: Requested Range Not Satisfiable = Attempting to fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/Bit-Vector-7.2.tar.gz fetch: ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/Bit-Vector-7.2.tar.gz: size mismatch: expected 135586, actual 137817 = Couldn't fetch it - please try to retrieve this = port manually into /usr/ports/distfiles/ and try again. *** [do-fetch] Error code 1 Stop in /usr/ports/math/p5-Bit-Vector. *** [checksum] Error code 1 Stop in /usr/ports/math/p5-Bit-Vector. === Cleaning for p5-Bit-Vector-7.2_2 build of /usr/ports/math/p5-Bit-Vector ended at Fri Mar 1 12:39:17 CET 2013 -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Does anyone know how to install FreeBSD 8.3 under Virtual Box 4.2.6?
On Thu, 28 Feb 2013 23:04-0800, Richard Sharpe wrote: Hi, I booted the FreeBSD 8.3 DVD1 under Virtual Box, but it crashes in VB 4.2.6 under Win 7 and Linux. Seems to install OK on QEMU/VMM under Linux ... Does anyone know how to get it to run under Virtual Box? Ensure firmware settings (i.e. BIOS) allow for hw virtualization. You don't specify if you are attempting i386 or amd64. VB needs to know if you're running a 32 bit or 64 bit guest OS. A higher degree of details would be nice. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: connect to a network printer to be able to print
On Wed, 27 Feb 2013 10:45-0600, Antonio Olivares wrote: Dear folks, I am trying to connect a network printer to be able to print to it. I know the make/model of the printer: HP Color LaserJet CP4520 and the ip address it is on 10.155.135.3 I want to use lpd/lpr to be able to print as is specified in http://www.wonkity.com/~wblock/docs/html/lpdprinting.html I read the instructions on the handbook, but it does not specify how to use the ip address or specify it to print to it. How can I set this printer up? I have setup /etc/printcap with the following: lp:\ :lp=:\ :sh:\ :mx#0:\ :rm=HP_Color_LaserJet_CP4520:\ :rp=raw:\ :sd=/var/spool/lpd/lp:\ :lf=/var/log/lpd-errs: but there is no ip adress where the communication can exist. How can I do this? Do I setup the printer with CUPS? or can it be done with lpr which is what I use with a local HP 1200 printer, but this one is a network printer. Thanks, Antonio Does the name HP_Color_LaserJet_CP4520 resolve to its IP address? What about using a FQDN? Does the name exist in your local DNS zone or does the name exist in the local /etc/hosts file? Either make sure the name is resolvable, or specify the IP address in the /etc/printcap file. Your HP printer should be equipped with a JetDirect card, and you should be able to print a configuration page revealing the current settings. If the settings doesn't match your network, then you need to input the desired settings. I guess this would be possible through the use of the LCD display and the buttons nearby. Best of luck, Trond. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: connect to a network printer to be able to print
On Wed, 27 Feb 2013 11:44-0600, Antonio Olivares wrote: On Wed, Feb 27, 2013 at 11:23 AM, Trond Endrestøl trond.endres...@fagskolen.gjovik.no wrote: On Wed, 27 Feb 2013 10:45-0600, Antonio Olivares wrote: Dear folks, I am trying to connect a network printer to be able to print to it. I know the make/model of the printer: HP Color LaserJet CP4520 and the ip address it is on 10.155.135.3 I want to use lpd/lpr to be able to print as is specified in http://www.wonkity.com/~wblock/docs/html/lpdprinting.html I read the instructions on the handbook, but it does not specify how to use the ip address or specify it to print to it. How can I set this printer up? I have setup /etc/printcap with the following: lp:\ :lp=:\ :sh:\ :mx#0:\ :rm=HP_Color_LaserJet_CP4520:\ :rp=raw:\ :sd=/var/spool/lpd/lp:\ :lf=/var/log/lpd-errs: but there is no ip adress where the communication can exist. How can I do this? Do I setup the printer with CUPS? or can it be done with lpr which is what I use with a local HP 1200 printer, but this one is a network printer. Thanks, Antonio Does the name HP_Color_LaserJet_CP4520 resolve to its IP address? it seems it does not :( grullahighschool# lpq Warning: unable to get address list for remote machine HP_Color_LaserJet_CP4520: hostname nor servname provided, or not known Warning: no daemon present Rank Owner Job Files Total Size 1stolivares 0(standard input) 239208 bytes You have new mail. grullahighschool# What about using a FQDN? Does the name exist in your local DNS zone or does the name exist in the local /etc/hosts file? Either make sure the name is resolvable, or specify the IP address in the /etc/printcap file. how do I do this? any examples out there? Your HP printer should be equipped with a JetDirect card, and you should be able to print a configuration page revealing the current settings. If the settings doesn't match your network, then you need to input the desired settings. I guess this would be possible through the use of the LCD display and the buttons nearby. Best of luck, Trond. Dear Trond, I have run a test using an example by W. Block on another site: http://www.howtofixcomputers.com/forums/printers/printer-without-driver-266629-4.html and I have sent data to the printer and it prints: # printf This is a test\r\n\f | nc 10.155.135.3 9100 How do I set this up in /etc/printcap, so that this printer can be the one? Thanks for your help. I am close to get it to work. The rm (remote machine) property in /etc/printcap should be changed to 10.155.135.3, i.e. :rm=10.155.135.3:\ Then it's simply a matter of restarting lpd, i.e. /etc/rc.d/lpd restart If you're lucky, your first print job should appear as hardcopy. Mind you, lpd uses the LPR/LPD protocol running on TCP port 515, not the HP JetDirect raw submission on TCP port 9100. Normally the LPD protocol would be enabled, but must be reenabled on the printer if this is not the case. The aforementioned configuration page should list such a setting. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Chmod of /dev/ulptN
On Mon, 11 Feb 2013 18:33-0800, Ronald F. Guilmette wrote: I exactly followed the directions here: http://lists.freebsd.org/pipermail/freebsd-questions/2012-February/238118.html Nontheless, my /dev/lpt0 node still only has permissions set to 0644. Why? What did I do wrong? Is this about /dev/ulpt[0-9]+ or about /dev/lpt[0-2]? If the latter is the case, then maybe you should edit /etc/devfs.conf instead. Something along these lines would help: own lpt0 root:wheel perm lpt0 0660 -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Bash history empty on login
On Tue, 8 Jan 2013 09:05-0500, Andre Goree wrote: On Tue, 08 Jan 2013 07:59:51 -0500, Dimitri Yioulos dyiou...@onpointfc.com wrote: Hope I'm not offending you if the following are things you've tried as a matter-of-course: After booting up, is history started, or do you have to do that manually? Have you run set -o to see if history is enabled? If it isn't, then set -o history. Is a clear command being issued from anywhere upon logout or reboot? Just some thoughts. No offense at all, thanks for your suggestions! I'm currently at work so I'll test this when I get home (this is on a desktop running 8.3-stable). I've never had to do anything special when using bash on FreeBSD. I'll be sure to check th output of set -o and report back here. If there's an erroneous 'clear' command somewhere, it must be on logout since I can easily test this problem being that I use tmux. :) I also do not have a .bash_logout file, if that matters. Thanks for the suggestions, I'll let you know what turns up. What are the permissions of ~/.bash_history? Usually they are set to 0600 in octal due to security concerns and rightfully so. Could they be (re)set to 0400 or even ? -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Bash history empty on login
On Tue, 8 Jan 2013 18:49-0500, Andre Goree wrote:
I think I've found the culprit, however:
[agoree@desktop ~]$ echo $HISTFILESIZE
1024000
[agoree@desktop ~]$ echo $HISTFILE
/home/agoree/.bash_history
[agoree@desktop ~]$ ll /home/agoree/.bash_history
-rw--- 1 agoree agoree12k Jan 5 14:09 /home/agoree/.bash_history
[agoree@desktop ~]$ cat /home/agoree/.bash_history
cat: /home/agoree/.bash_history: Input/output error
[agoree@desktop ~]$ file /home/agoree/.bash_history
/home/agoree/.bash_history: ERROR: cannot read
`/home/agoree/.bash_history' (Input/output error)
I suppose I'm in need of a scrub, eh? Or perhaps just a tweak to
$HISTFILE until I have the time (or energy) to deal with the scrub --
probably not a good idea, but sense all my important data is kept on a
NAS... :p
So, yeahhh...:
NAMESTATE READ WRITE CKSUM
zroot ONLINE 0 0 586
ad4s1dONLINE 0 0 0
ad8s1dONLINE 0 0 586
I don't know if this was intentional, but your zroot pool is
configured with absolutely no redundancy unless you have set the
zfs copies property to a value greater than 1 on selected file
systems if not all file systems. The text quoted below does not
indicate any of this.
You should at the very least mirror your zroot pool between no less
than 2 drives/partitions, shouldn't raidz{1,2,3} with the appropriate
number of drives/partitions prove tempting or possible hardwarewise.
errors: Permanent errors have been detected in the following files:
/usr/local/share/icons/hicolor/128x128/apps/vlc.png
zroot/usr:0x11ae0a
zroot/usr:0x109118
zroot/usr:0x11ae18
zroot/usr:0x11ae19
zroot/usr:0x11ae1d
zroot/usr:0x11ae1e
zroot/usr:0x18b61e
zroot/usr:0x18b622
zroot/usr:0x18b62e
zroot/usr:0x18b637
/usr/ports/sysutils/e2fsprogs/work/e2fsprogs-1.42.6/e2fsck/e2fsck.c.bak
zroot/usr:0x18b63c
zroot/usr:0x18b63d
zroot/usr:0x18b641
zroot/usr:0x18b642
zroot/usr:0x109256
/usr/home/agoree/.opera.bak/icons/www.google.com.idx
/usr/home/agoree/.opera.bak/download.dat
/usr/home/agoree/.cache/chromium/Default/Cache/data_1
/usr/home/agoree/.opera.bak/typed_history.xml
/usr/home/agoree/.bash_history
zroot/usr:0x109199
zroot/usr:0x11ad9b
/usr/local/share/locale/fo/LC_MESSAGES/cairo-dock.mo
/usr/local/lib/qt4/plugins/script/libqtscript_core.so.1.0.0
zroot/var:0x98bf
I'm very sorry for your loss, but apparently these files aren't
critical user data.
I'll probably just go ahead and reinstall -- I've been wanting to give
9.1 a try anyways.
Good luck and don't forget about redundancy! :D
--
+---++
| Vennlig hilsen, | Best regards, |
| Trond Endrestøl, | Trond Endrestøl, |
| IT-ansvarlig, | System administrator, |
| Fagskolen Innlandet, | Gjøvik Technical College, Norway, |
| tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, |
| sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Trying to update from 9.0 to 9.1 via svn
On Sat, 5 Jan 2013 10:59+0700, Erich Dollansky wrote: Hi, On Sat, 5 Jan 2013 02:40:13 + (UTC) Helmut Schneider jumpe...@gmx.de wrote: Trond Endrestøl wrote: BTW, do you nuke the contents of /usr/obj prior to recompiling the system? The command rm -Rf /usr/obj/* should accomplish this rather well. That might have been the issue, yes. Works now. Thanks. doesn't this indicate an error in the make file? Shouldn't sources be compiled when their date is newer then the date of the object file? That assumes a lot of things, like the clock is running correctly at all times, e.g. under the control of NTP or some other mechanism. If said computer dual boots Microsoft OS, then most likely the firmware clock (BIOS clock, RTC) runs in local time. Should you then boot FreeBSD straight into single user mode with /etc/wall_cmos_clock present, and you fail to run adjkerntz -i while in single user mode, then the clock will be off by 1 or 2 hours, depending on daylight saving time is in effect or not. Next, svn sets the date and time on each checked out file to the present date and time. If the clock is running in the future at the time of check out/update a lot of things might happen at the time of compilation of the source code. Of course, I'm just speculating, the one who knows most about the issue at hand is Helmut. Or was the last compilation done after the affected file got updated at the server? Shouldn't there be a system in place which automatically deletes all object files automatically? make buildworld does include a step where certain files are wiped. It still doesn't hurt to take matters in your own hands. Either a process is automated 100% or not at all is what I would say. Outer forces may be at play as outlined above. Anyway, this is all part of learning to cope with changes, mistakes, wrong assumptions, etc. Erich -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Trying to update from 9.0 to 9.1 via svn
On Fri, 4 Jan 2013 15:51-, Helmut Schneider wrote: Alexandre wrote: On Fri, Jan 4, 2013 at 2:01 PM, Helmut Schneider jumpe...@gmx.de wrote: I fetched sources via $ sudo svn co svn://svn.freebsd.org/base/releng/9.1 /usr/src/ Checked out revision 244992. $ I then recompiled and installed the kernel according to http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-building.html $ ls -la /boot/kernel/kernel -r-xr-xr-x 1 root wheel 15622342 Jan 3 19:57 /boot/kernel/kernel $ But after reboot uname prints FreeBSD BSDHelmut964 9.0-RELEASE-p5 FreeBSD 9.0-RELEASE-p5 #9 r244992M: Thu Jan 3 19:57:37 CET 2013 root@BSDHelmut964:/usr/obj/usr/src/sys/GENERIC amd64 Why? Thanks, Helmut Have you rebuilt world before compile and install your new 9.1 kernel ? Yes. I have a question: Was /usr/src populated with 9.0 sources prior to the svn operation? If you have the time and bandwidth, I would delete everything inside /usr/src, e.g. rm -Rf /usr/src/* /usr/src/.??* and retry the checkout, i.e. sudo svn co svn://svn.freebsd.org/base/releng/9.1 /usr/src -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Trying to update from 9.0 to 9.1 via svn
On Fri, 4 Jan 2013 16:24-, Helmut Schneider wrote: Trond Endrestøl wrote: On Fri, 4 Jan 2013 15:51-, Helmut Schneider wrote: Alexandre wrote: On Fri, Jan 4, 2013 at 2:01 PM, Helmut Schneider jumpe...@gmx.de wrote: I fetched sources via $ sudo svn co svn://svn.freebsd.org/base/releng/9.1 /usr/src/ Checked out revision 244992. $ I then recompiled and installed the kernel according to http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-building.html $ ls -la /boot/kernel/kernel -r-xr-xr-x 1 root wheel 15622342 Jan 3 19:57 /boot/kernel/kernel $ But after reboot uname prints FreeBSD BSDHelmut964 9.0-RELEASE-p5 FreeBSD 9.0-RELEASE-p5 #9 r244992M: Thu Jan 3 19:57:37 CET 2013 root@BSDHelmut964:/usr/obj/usr/src/sys/GENERIC amd64 Why? Thanks, Helmut Have you rebuilt world before compile and install your new 9.1 kernel ? Yes. I have a question: Was /usr/src populated with 9.0 sources prior to the svn operation? If you have the time and bandwidth, I would delete everything inside /usr/src, e.g. rm -Rf /usr/src/* /usr/src/.??* and retry the checkout, i.e. sudo svn co svn://svn.freebsd.org/base/releng/9.1 /usr/src Did so, too. It's so frustrating, I mean, I compile kernel and world since 6.0 and never had similar issues. What makes me a bit nervous is that this happens on two different machines. And why is the revision (r244992) of the kernel ident higher than the release revision (r243710[1])? Let me use the output of svn info from stable/9 as an example: root@enterprise:/usr/src # svn info Path: . Working Copy Root Path: /usr/src URL: svn://svn.ximalas.info/freebsd/base/stable/9 Repository Root: svn://svn.ximalas.info/freebsd/base Repository UUID: ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f Revision: 245035 Node Kind: directory Schedule: normal Last Changed Author: pfg Last Changed Rev: 245025 Last Changed Date: 2013-01-04 05:03:21 +0100 (Fri, 04 Jan 2013) The uname string of the kernel includes the revision number contained in the Revision line as shown above. svn keeps global revision numbers unlike cvs which uses revision number per each file. All of FreeBSD base source code resides in one giant repository. Thus changes made in, say, /base/head, i.e. -CURRENT, affects other branches, say, /base/releng/9.1. It would make more sense if the uname string referred to the Last Changed Rev line. (Yes, I run my own svn mirror. It saves bandwidth when I issue svn log -v to look at the recent commit logs.) BTW, do you nuke the contents of /usr/obj prior to recompiling the system? The command rm -Rf /usr/obj/* should accomplish this rather well. Out of old habit I like keep everything clean before I issue buildworld + buildkernel with -DNO_CLEAN. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Trying to update from 9.0 to 9.1 via svn
On Fri, 4 Jan 2013 15:51-, Helmut Schneider wrote: Alexandre wrote: On Fri, Jan 4, 2013 at 2:01 PM, Helmut Schneider jumpe...@gmx.de wrote: I fetched sources via $ sudo svn co svn://svn.freebsd.org/base/releng/9.1 /usr/src/ Checked out revision 244992. $ I then recompiled and installed the kernel according to http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-building.html $ ls -la /boot/kernel/kernel -r-xr-xr-x 1 root wheel 15622342 Jan 3 19:57 /boot/kernel/kernel $ But after reboot uname prints FreeBSD BSDHelmut964 9.0-RELEASE-p5 FreeBSD 9.0-RELEASE-p5 #9 r244992M: Thu Jan 3 19:57:37 CET 2013 root@BSDHelmut964:/usr/obj/usr/src/sys/GENERIC amd64 Why? Thanks, Helmut Have you rebuilt world before compile and install your new 9.1 kernel ? Yes. Upon reading the help message of svnversion, I noticed the revision number will contain the capital letter M after the digits if the working copy is modified. Somehow you must have changed one or more of the files kept under version control. If this wasn't your intention, you might want to revert any changes made. svn revert -R /usr/src should do the trick. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: /etc/passwd and char
On Mon, 29 Oct 2012 08:28-, jb wrote: Hi, Question: What is the purpose of the char in GECOS fields, e.g. user's name field, in /etc/passwd file ? $ grep /etc/passwd root:*:0:0:Charlie :/root:/bin/csh operator:*:2:5:System :/:/usr/sbin/nologin svn:*:1002:1002:User :/home/svn:/usr/sbin/nologin From passwd(5): The full name may contain a ampersand (`') which will be replaced by the capitalized login name when the gecos field is displayed or used by vari- ous programs such as finger(1), sendmail(8), etc. The field containing char represents -c comment option in pw(8), which sets up GECOS fields (user's full name, etc). The pw(8) states further: ... The pw utility allows 8-bit characters in the passwd GECOS field ... ... Using 8-bit characters may also affect other programs that transmit the contents of the GECOS field over the Internet, such as fingerd(8), and a small number of TCP/IP clients, such as IRC, where full names specified in the passwd file may be used by default. ... http://en.wikipedia.org/wiki/Ampersand ... Encoding and display ... Programming languages ... The ampersand character is used as a special character in at least some versions of the database software originally created in Denmark under the name Navision (the software has since been acquired by Microsoft). Using this character in either Text or Code fields could create difficulties for performing certain tasks in Navision, such as filtering records (either by the user or by programming). It is also used as described below to indicate shortcuts in menu items and lab els. ... Text markup In SGML, XML, and HTML, ... This creates what is known as the ampersand problem. ... ... Unix shells ... Web standards ... Google search results for character: Special (escape) characters in SGML, HTML and XML documents: amp; #38; ampersand jb -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: rc.conf and loader.conf
On Fri, 26 Oct 2012 03:47+0330, Ashkan Rahmani wrote: hi, what is the best order of items in rc.conf and loader.conf? actually items order is important? Order is not important, as explained by someone else on the list. However, I like to keep the lines in the /etc/rc.conf file in the same order as they appear in the /etc/defaults/rc.conf file, and place local stuff (from /usr/local/etc/rc.d) in alphabetical order at the bottom of the file. Just my $0.02. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: svn vs csup usage question
On Wed, 3 Oct 2012 04:56-0700, Dennis Glatting wrote: I often modify configuration files in the src and ports tree. Normally this isn't a problem becuase csup determines which files changed and pulled fresh copies from the repository. I doin't see a svn mechansim to do that, for example: svn co -verify repo target It appears the contents of .svn is all that is check on checkout and not the files themselves. Do you always checkout a complete source or ports tree? Maybe svn update --accept X, for some useful value of X is what you want? According to PDF manual for svn 1.7, page 251, physical PDF page 272, X can be one of: postpone (p) Take no resolution action at all and instead allow the conflicts to be recorded for future resolution. edit (e) Open each conflicted file in a text editor for manual resolution of line-based conflicts. launch (l) Launch an interactive merge conflict resolution tool for each conflicted file. base Choose the file that was the (unmodified) BASE revision before you tried to integrate changes from the server into your working copy. working Assuming that you've manually handled the conflict resolution, choose the version of the file as it currently stands in your working copy. mine-full (mf) Resolve conflicted files by preserving all local modifications and discarding all changes fetched from the server during the operation which caused the conflict. theirs-full (tf) Resolve conflicted files by discarding all local modifications and integrating all changes fetched from the server during the operation which caused the conflict. mine-conflict (mc) Resolve conflicted files by preferring local modifications over the changes fetched from the server in conflicting regions of each file's content. theirs-conflict (tc) Resolve conflicted files by preferring the changes fetched from the server over local modifications in conflicting regions of each file's content. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: svn vs csup usage question
On Wed, 3 Oct 2012 10:57-0700, Dennis Glatting wrote: On Wed, 2012-10-03 at 14:20 +0200, Trond Endrestøl wrote: On Wed, 3 Oct 2012 04:56-0700, Dennis Glatting wrote: I often modify configuration files in the src and ports tree. Normally this isn't a problem becuase csup determines which files changed and pulled fresh copies from the repository. I doin't see a svn mechansim to do that, for example: svn co -verify repo target It appears the contents of .svn is all that is check on checkout and not the files themselves. Do you always checkout a complete source or ports tree? I run this command: svn co svn://svn.pki2.com/base/stable/9 /disk-2/src The changes I make are quick hacks, such as changing comilation options or minor code changes for test. They are (almost) never meant for permanency. For example, last night I changed the compilation options for the kernel from -O2 to -O simply to see if that has any impact on the kernel/ZFS problems I am having. I suspect not, but it is worth a try. I now want that file restored to its origional state. Then the svn revert command is probably what you want. Maybe svn update --accept X, for some useful value of X is what you want? According to PDF manual for svn 1.7, page 251, physical PDF page 272, X can be one of: postpone (p) Take no resolution action at all and instead allow the conflicts to be recorded for future resolution. edit (e) Open each conflicted file in a text editor for manual resolution of line-based conflicts. launch (l) Launch an interactive merge conflict resolution tool for each conflicted file. base Choose the file that was the (unmodified) BASE revision before you tried to integrate changes from the server into your working copy. working Assuming that you've manually handled the conflict resolution, choose the version of the file as it currently stands in your working copy. mine-full (mf) Resolve conflicted files by preserving all local modifications and discarding all changes fetched from the server during the operation which caused the conflict. theirs-full (tf) Resolve conflicted files by discarding all local modifications and integrating all changes fetched from the server during the operation which caused the conflict. mine-conflict (mc) Resolve conflicted files by preferring local modifications over the changes fetched from the server in conflicting regions of each file's content. theirs-conflict (tc) Resolve conflicted files by preferring the changes fetched from the server over local modifications in conflicting regions of each file's content. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: svn checkout head or stable
On Fri, 28 Sep 2012 11:28+0100, Jamie Paul Griffin wrote: My question is, does it pull in docs for all languages or can I exclude docs in languages that I don't need - I only need en docs. Yes, you can check out a subset/subdirectory, e.g.: svn co svn://svn.freebsd.org/doc/head/en_US.ISO8859-1 /path/to/local/working/copy svn co svn://svn.freebsd.org/doc/release/9.1.0/en_US.ISO8859-1 /path/to/local/working/copy -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to use subversion to keep source, system and doc files up to date?
On Wed, 26 Sep 2012 14:12-0700, Ed Flecko wrote: I see that CVS is being phased out in favor of subversion. I follow the documentation to keep my system up to date by doing: # cd /usr/src # make buildworld # make buildkernel # make installkernel # shutdown -r now and then... # mount -u / # mount -a -t ufs # adjkerntz -i # mergemaster -p # cd /usr/src # make installworld # mergemaster # reboot I've pre-populated my /usr/ports, /usr/src and /usr/src/sys directories when I installed my system. I've installed subversion from package, I want to follow the Stable (same as Patch, right?) branch, and I'm struggling how to best use subversion to update my kernel source, system files, documentation, etc., so I can keep my system up to date. Can someone tell me how to use subversion to keep my /usr/ports, /usr/src and /usr/src/sys directories up to date? This isn't really an answer to your question. I switched from CVSup to Subversion for tracking base/stable/9 and ports/head on one of my computers not long ago. I still use local CVS for tracking my local changes. It works quite well without interfering with each other. Also, CVS is very lightweight, in more than one sense, compared to Subversion. Make sure your /usr/src and /usr/ports directories does not contain files and directories served by Subversion, they will hinder extraction/updating when checking out a Subversion working copy on top of the existing hierarchy. Simply delete all non-local files, rename /usr/src/sys to, say /usr/src/sys0, do the Subversion check out, and move your local files back into place. Depending on your needs, you might wanna set up a local Subversion repo mirror. Here's my writeup on the subject: http://ximalas.info/2012/09/09/making-your-own-freebsd-subversion-repository-mirror/ -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: How to use subversion to keep source, system and doc files up to date?
On Thu, 27 Sep 2012 08:18-0700, Ed Flecko wrote: Thank you all! I'm a little confused by Trond's reply, Make sure your /usr/src and /usr/ports directories does not contain files and directories served by Subversion, they will hinder extraction/updating when checking out a Subversion working copy on top of the existing hierarchy. Simply delete all non-local files, rename /usr/src/sys to, say /usr/src/sys0, do the Subversion check out, and move your local files back into place. 1.) What is meant by deleting all non-local files? What files is he referring to? First, I may have misread your question. Others have provided far better answers to your exact question. I use my local CVS repo to track changes I make to files I create or edit myself, like /etc/rc.conf, /usr/src/sys/amd64/conf/SOMECUSTOMKERNEL, etc. When I switched from CVSup to Subversion, I let the directory /usr/src/sys exist, but only with my own files stored within this hierarchy, e.g. my custom kernel configuration file, /usr/src/sys/amd64/conf/ENTERPRISE. The very existence of the directory /usr/src/sys prohibited Subversion from populating the directory /usr/src/sys with the desired contents. Thus, I had to delete all files and directories made during the intial svn co operation, including the special .svn directory, rename sys to sys0 as described in my previous email, redo the svn co operation, and finally move my own (custom) files back into place. Afterwards, it's simply a matter of running svn update to update source files from the chosen svn repo, and in my case, check in any local changes made to the local CVS repo I use for my configuration management. Maybe me adding CVS to the mix caused or still cause confusion. 2.) If I rename /usr/src/sys to, say /usr/src/sys0, do the Subversion check out, and move your local files back into place, won't that be replacing new files with the older files? I was indirectly referring to local edited files, such as custom kernel configuration files. My bad for not making this clearer. 3.) These steps are just meant for the initial check out, aren't they??? Once I've checked out (i.e., downloaded, right?) the current files, I'll only need to: svn update /usr/ports..., etc. from that point forward and not delete all non-local files, rename /usr/src/sys to, say /usr/src/sys0, do the Subversion check out, and move your local files back into place...Is that right? True. I had to do the rename and move files dance only once. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: svn checkout head or stable
On Thu, 27 Sep 2012 15:03-0700, Ed Flecko wrote: My goal is to simply have a production server that's fully patched, but I will be running custom kernels (which is why I'm not using freebsd-update). I've seen a lot of subversion references to checking out the head branch and the stable branch. I understand the head branch is the most current, so that's the same as the current branch, right? If I understand correctly, most people will not follow the current branch for production servers. My goal is to have all of the files I need to rebuild my kernel and my system after security updates have been released, therefore I should do something like: svn co svn://svn.freebsd.org/base/stable/9 /usr/src svn co svn://svn.freebsd.org/ports/stable/9 /usr/ports The ports tree resides in ports/head no matter what branch from the main source tree you check out, i.e.: svn co svn://svn.freebsd.org/ports/head /usr/ports svn co svn://svn.freebsd.org/doc/stable/9 /usr/doc This will give me everything I need to recompile and have a fully patched system, right? I do not make changes to the src, ports, or doc directories. From that point forward, as new security patches are released, I can simply: svn up /usr/src svn up /usr/ports svn up /usr/doc and once again rebuild my kernel and system. Does this sound correct? Yes. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: svn checkout head or stable
On Thu, 27 Sep 2012 15:39-0700, Ed Flecko wrote: Cool...thank you Trond. NP. Is that true of the docs branch as well, in other words... svn co svn://svn.freebsd.org/doc/head /usr/doc works just fine? Browsing through http://svnweb.freebsd.org/doc/, indicates http://svnweb.freebsd.org/doc/head/ being the current branch of the documentation, with release branches located at http://svnweb.freebsd.org/doc/release/ and below. E.g. http://svnweb.freebsd.org/doc/release/9.1.0/, or svn://svn.freebsd.org/doc/release/9.1.0, for the upcoming 9.1-RELEASE. I've never CVSup'ed nor done any svn co/up ops on doc/head, but you seem to have got it right. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: php5-extensions 1.6 - 1.7
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon, 21 May 2012 10:31+0200, n dhert wrote: In my weekly port-upgrades (FreeBSD 8.3) in a pkg_version -vIL= output I had some 40 upgrades, most of php5, among which: ... php5-extensions-1.6needs updating (index has 1.7) php5-sqlite-5.3.13 ! Comparison failed php5-sqlite3-5.3.13 needs updating (index has 5.4.3) ... --- Checking the package registry database Stale origin: 'databases/php5-sqlite': perhaps moved or obsoleted. - The port 'databases/php5-sqlite' was removed on 2012-05-16 because: Removed from core php - Hint: php5-sqlite-5.3.13 is required by the following package(s): php5-extensions-1.6 - Hint: checking for overwritten files... - No files installed by php5-sqlite-5.3.13 have been overwritten by other pack ages. Deinstall php5-sqlite-5.3.13 ? [no] I choosed the default [no] this updated the 40+ packages, but ended with: ... --- ** Upgrade tasks 42: 41 done, 1 ignored, 1 skipped and 0 failed --- Listing the results (+:done / -:ignored / *:skipped / !:failed) - databases/php5-sqlite (port directory error) ... * lang/php5-extensions (php5-extensions-1.6) ... --- Packages processed: 41 done, 1 ignored, 1 skipped and 0 failed so pgp5-sqlite was ignored, php5-extensions was skipped I tried, # pkgdb -F --- Checking the package registry database Stale origin: 'databases/php5-sqlite': perhaps moved or obsoleted. - The port 'databases/php5-sqlite' was removed on 2012-05-16 because: Removed from core php - Hint: php5-sqlite-5.3.13 is required by the following package(s): php5-extensions-1.6 - Hint: checking for overwritten files... - No files installed by php5-sqlite-5.3.13 have been overwritten by other pack ages. Deinstall php5-sqlite-5.3.13 ? [no] yes this time ... Deinstall php5-sqlite-5.3.13 ? [no] yes --- Deinstalling 'php5-sqlite-5.3.13' pkg_delete: package 'php5-sqlite-5.3.13' is required by these other packages and may not be deinstalled: php5-extensions-1.6 ** Listing the failed packages (-:ignored / *:skipped / !:failed) ! php5-sqlite-5.3.13(pkg_delete failed) Command failed [exit code 1]: /usr/local/sbin/pkg_deinstall php5-sqlite-5.3.13 I understand from looking at www.freebsd.org/ports, Search: php5-sqlite which only lists php5-sqlite3-5.4.3 (no longer php5-sqlite...) that the former php5-sqlite-5.3.13 is replaced by php5-sqlite3-5.4.3, I now do have: # pkg_info | grep php5-sqlite php5-sqlite-5.3.13 The sqlite shared extension for php php5-sqlite3-5.4.3 The sqlite3 shared extension for php so pgp5-sqlite3-5.4.3 is present, but why is the upgrade php5-extensions-1.6 to version -1.7 not done (skipped) how to solve this ? Uninstall php5-extensions using pkg_delete, uninstall php5-sqlite, and finally (re)install php5-extensions from /usr/ports/lang/php5-extensions. HTH. - -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++ -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAk+6ALYACgkQbYWZalUoElsVJgCdEyCsVQbPRxpy7eVcX6yqmEmc k84AnRGyn4xZrmkdjqphQzGj6sNSv4kF =TI52 -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: negative group permissions?
On Fri, 24 Feb 2012 12:54-, Anton Shterenlikht wrote:
On Fri, Feb 24, 2012 at 09:34:02AM +, Matthew Seaman wrote:
On 24/02/2012 09:08, Anton Shterenlikht wrote:
Recently I started seeing this line
in daily security output:
Checking negative group permissions:
70834 -rw-rx 1 root daemon 4 Feb 21 12:54:02 2012
/var/spool/output/lpd/.seq
I've a parallel printer attached to
a 9.9-CURRENT #2 r230787M box.
What does it mean?
This means that non-root users in group daemon have only read
permissions on that file. Users that aren't root and that aren't in
group daemon have execute permission only.
It does look a bit odd, and I believe that file would just contain a job
number (IIRC -- haven't dealt much with lpd or lprng much recently)
so executing it doesn't really achieve anything.
This is the standard idiom to allow access for 'everyone, except members
of a particular group.'
yes, I get this.
One way you can get weird permissions is if you happen to use decimal
for permissions bitmaps rather than octal. A umask of '77' is not the
same thing at all as a umask of '077'. (It's effectively 0115, which
doesn't make much sense to me.) Most shells nowadays will assume you
mean octal whether you include the leading zero or not: the same is not
true if you use umask(2) to set the mask programatically. Ditto for
other places you can set permissions like open(2) with O_CREAT or mkdir(2).
# umask
0022
# pwd
/var/spool/output/lpd
# ls -al
total 8
drwxr-xr-x 2 root daemon 512 Feb 24 12:43 .
drwxr-xr-x 3 root daemon 512 Mar 9 2010 ..
-rw-rw-r-- 1 root daemon 41 Feb 21 12:54 lock
-rw-rw-r-- 1 root daemon 25 Feb 21 12:54 status
#
Then I print something:
% pwd | lpr
Then this .seq file appears with weird permissions:
# ls -al
total 10
drwxr-xr-x 2 root daemon 512 Feb 24 12:46 .
drwxr-xr-x 3 root daemon 512 Mar 9 2010 ..
-rw-rx 1 root daemon4 Feb 24 12:45 .seq
-rw-rw-r-- 1 root daemon 41 Feb 24 12:45 lock
-rw-rw-r-- 1 root daemon 25 Feb 24 12:45 status
#
# cat .seq
001
#
So presumably lpd(8) created this file, but I'm still
unsure why permissions are so strange. But interests
me more, is why I didn't see it until about 1-2 months
ago? Has something chaged in -current, e.g. in open(2)
like you suggest? Or has I messed up with my setup?
Or maybe it was always like this, but the security
check didn't pick it up?
Should I be worried?
No more than a normal level of paranoia is indicated here.
Looking at usr.sbin/lpr/lpr/lpr.c at around line 847 (RELENG_9):
(void) snprintf(buf, sizeof(buf), %s/.seq, pp-spool_dir);
seteuid(euid);
if ((fd = open(buf, O_RDWR|O_CREAT, 0661)) 0) {
printf(%s: cannot create %s\n, progname, buf);
exit(1);
}
if (flock(fd, LOCK_EX)) {
printf(%s: cannot lock %s\n, progname, buf);
exit(1);
}
It remains a mystery why these files are created with mode 0661. Mode
0660 should be more than sufficient. Maybe it's because of flock(2),
but the manpage for flock(2) does not mention the execute bit at all.
The lpc enable/disable commands seem to affect only the group execute
bit of the lock file.
I haven't found any other source files where .seq files are created
or being used. Feel free to prove me wrong. :D
--
+---++
| Vennlig hilsen, | Best regards, |
| Trond Endrestøl, | Trond Endrestøl, |
| IT-ansvarlig, | System administrator, |
| Fagskolen Innlandet, | Gjøvik Technical College, Norway, |
| tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, |
| tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, |
| sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: negative group permissions?
On Fri, 24 Feb 2012 14:04-, Anton Shterenlikht wrote:
On Fri, Feb 24, 2012 at 02:41:44PM +0100, Trond Endrest?l wrote:
On Fri, 24 Feb 2012 12:54-, Anton Shterenlikht wrote:
On Fri, Feb 24, 2012 at 09:34:02AM +, Matthew Seaman wrote:
On 24/02/2012 09:08, Anton Shterenlikht wrote:
Recently I started seeing this line
in daily security output:
Checking negative group permissions:
70834 -rw-rx 1 root daemon 4 Feb 21 12:54:02 2012
/var/spool/output/lpd/.seq
I've a parallel printer attached to
a 9.9-CURRENT #2 r230787M box.
What does it mean?
This means that non-root users in group daemon have only read
permissions on that file. Users that aren't root and that aren't in
group daemon have execute permission only.
It does look a bit odd, and I believe that file would just contain a job
number (IIRC -- haven't dealt much with lpd or lprng much recently)
so executing it doesn't really achieve anything.
This is the standard idiom to allow access for 'everyone, except members
of a particular group.'
yes, I get this.
One way you can get weird permissions is if you happen to use decimal
for permissions bitmaps rather than octal. A umask of '77' is not the
same thing at all as a umask of '077'. (It's effectively 0115, which
doesn't make much sense to me.) Most shells nowadays will assume you
mean octal whether you include the leading zero or not: the same is not
true if you use umask(2) to set the mask programatically. Ditto for
other places you can set permissions like open(2) with O_CREAT or
mkdir(2).
# umask
0022
# pwd
/var/spool/output/lpd
# ls -al
total 8
drwxr-xr-x 2 root daemon 512 Feb 24 12:43 .
drwxr-xr-x 3 root daemon 512 Mar 9 2010 ..
-rw-rw-r-- 1 root daemon 41 Feb 21 12:54 lock
-rw-rw-r-- 1 root daemon 25 Feb 21 12:54 status
#
Then I print something:
% pwd | lpr
Then this .seq file appears with weird permissions:
# ls -al
total 10
drwxr-xr-x 2 root daemon 512 Feb 24 12:46 .
drwxr-xr-x 3 root daemon 512 Mar 9 2010 ..
-rw-rx 1 root daemon4 Feb 24 12:45 .seq
-rw-rw-r-- 1 root daemon 41 Feb 24 12:45 lock
-rw-rw-r-- 1 root daemon 25 Feb 24 12:45 status
#
# cat .seq
001
#
So presumably lpd(8) created this file, but I'm still
unsure why permissions are so strange. But interests
me more, is why I didn't see it until about 1-2 months
ago? Has something chaged in -current, e.g. in open(2)
like you suggest? Or has I messed up with my setup?
Or maybe it was always like this, but the security
check didn't pick it up?
Should I be worried?
No more than a normal level of paranoia is indicated here.
Looking at usr.sbin/lpr/lpr/lpr.c at around line 847 (RELENG_9):
(void) snprintf(buf, sizeof(buf), %s/.seq, pp-spool_dir);
seteuid(euid);
if ((fd = open(buf, O_RDWR|O_CREAT, 0661)) 0) {
printf(%s: cannot create %s\n, progname, buf);
exit(1);
}
if (flock(fd, LOCK_EX)) {
printf(%s: cannot lock %s\n, progname, buf);
exit(1);
}
It remains a mystery why these files are created with mode 0661. Mode
Isn't .seq above has mode 641?
% chmod 641 z
% ls -al z
-rw-rx 1 mexas wheel 0 Feb 24 13:59 z
%
It sure is, in all cases quoted above.
All handling of the .seq files seems to be contained within the
mktemps() function of usr.sbin/lpr/lpr/lpr.c.
The call to open(2) with the mode set to 0661 has been there since CVS
revision 1.1 of usr.sbin/lpr/lpr/lpr.c, see
http://www.freebsd.org/cgi/cvsweb.cgi/src/usr.sbin/lpr/lpr/lpr.c?annotate=1.45.2.1.2.1
No calls to chmod(2) of the .seq files anywhere else, as far as I can
tell.
I usually keep tight permissions on the spool directories, mode 0770.
It's still a mystery. Thus it's time to bring in people with more
knowledge on lpr and friends.
--
+---++
| Vennlig hilsen, | Best regards, |
| Trond Endrestøl, | Trond Endrestøl, |
| IT-ansvarlig, | System administrator, |
| Fagskolen Innlandet, | Gjøvik Technical College, Norway, |
| tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, |
| tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, |
| sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. |
+---++___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail
Re: negative group permissions?
-xr-x 3 root daemon512 Mar 9 2010 output # I meant the printer spool directories, sorry for not being clearer. E.g. /var/spool/output/lpd, as in your case, or in my case, /var/spool/lpd/*. trond@enterprise:~ll /var/spool/lpd total 153 drwxr-xr-x 18 root daemon - 18B Jan 10 14:15 ./ drwxr-xr-x 11 root wheel - 11B Jan 10 14:15 ../ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp1160-223/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp1200-235/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp1320-241/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp1320-a/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp1320-b/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp1320nw/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp2015-154/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp2025-216a/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp2420-104/ drwxrwx--- 2 root daemon -5B Feb 20 10:01 hp2430-226/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp3005-105/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp3505-223/ drwxrwx--- 2 root daemon -5B Mar 22 2010 hp3505-225/ drwxrwx--- 2 root daemon -5B Jan 8 19:38 hp4000-165/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp4v-243/ drwxrwx--- 2 root daemon -2B Oct 1 2009 hp5550-221/ However only these .seq files exist on the particular system shown above: Checking negative group permissions: 94 -rw-rx 1 root daemon 4 Feb 20 10:01:50 2012 /var/spool/lpd/hp2430-226/.seq 98 -rw-rx 1 root daemon 4 Mar 22 13:39:44 2010 /var/spool/lpd/hp3505-225/.seq 103 -rw-rx 1 root daemon 4 Jan 8 19:38:02 2012 /var/spool/lpd/hp4000-165/.seq It's still a mystery. Thus it's time to bring in people with more knowledge on lpr and friends. sure I wouldn't worry about these strange permissions, but I think it's well past the time to clean up lpr.c. Should we submit a PR? -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
mlock(2) results in Resource temporarily unavailable on FreeBSD/amd64 9.0-STABLE
I have a system running FreeBSD/amd64 9.0-STABLE as of Tue Jan 10 16:22:34 CET 2012. Every attempt by the root user to use the mlock(2) system call results in Resource temporarily unavailable (EAGAIN, 35). I'm using bash and ulimit -l says there's no restriction on the amount of locked memory: root@hostname:~ulimit -l unlimited Is this typical for the amd64 arch? Is this documented somewhere? The mlock(2) system call works as expected on the i386 arch. GnuPG and other software would benefit from a useable mlock(2) on the amd64 arch. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mlock(2) results in Resource temporarily unavailable on FreeBSD/amd64 9.0-STABLE
On Thu, 16 Feb 2012 09:47+0100, Trond Endrestøl wrote: I have a system running FreeBSD/amd64 9.0-STABLE as of Tue Jan 10 16:22:34 CET 2012. Every attempt by the root user to use the mlock(2) system call results in Resource temporarily unavailable (EAGAIN, 35). I'm using bash and ulimit -l says there's no restriction on the amount of locked memory: root@hostname:~ulimit -l unlimited Is this typical for the amd64 arch? Is this documented somewhere? The mlock(2) system call works as expected on the i386 arch. The system is question is running ZFS at full steam, and the ARC might be to blame as nearly all physical memory is placed in the Wired category: Mem: 97M Active, 188M Inact, 7175M Wired, 193M Cache, 400K Buf, 249M Free This system has: real memory = 8589934592 (8192 MB) avail memory = 8234950656 (7853 MB) The solution might be to decrease vfs.zfs.arc_max from 7216345088 to a more sane number like 4096M. GnuPG and other software would benefit from a useable mlock(2) on the amd64 arch. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Using sendmail as a client with auth
On Tue, 14 Feb 2012 10:04+0100, Bernt Hansson wrote: On 2012-02-14 08:02, Josh Tolbert wrote: On 2/13/2012 11:12 PM, Bernt Hansson wrote: Thank you for your answer. I wrote this ages ago and it's still valid. You can ignore the IMAP stuff if you like. :) Well, no cigar for me. I'm leaning at this line. And I think it is somehow involed in all this mess sm-mta[37453]: STARTTLS=client, relay=smtp.isp.com., version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256 I'm sorry for jumping into this thread, but verify=FAIL is expected unless you have your ISP's certificate chain stored in the appropriate directory with the appropriate file names. /etc/ssl/certs would be a good place to store the certificates. A command like this one can be used to generate the hashed file names: ln -s certfile `openssl x509 -noout -hash certfile`.0 Any idea about that? The isp does support STARTTLS. telnet smtp.isp.com 25 Trying x.x.x.x... Connected to smtp.bredband2.com. Escape character is '^]'. 220 smtp.isp.com ESMTP Postfix (Ubuntu) ehlo localhost 250-smtp.isp.com 250-PIPELINING 250-SIZE 10240 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN starttls 220 2.0.0 Ready to start TLS http://www.puresimplicity.net/~hemi/freebsd/sendmail.html That is a good site. Learnt me how to build sendmail at least. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Using sendmail as a client with auth
On Tue, 14 Feb 2012 11:11+0100, Bernt Hansson wrote: On 2012-02-14 10:43, Trond Endrestøl wrote: On Tue, 14 Feb 2012 10:04+0100, Bernt Hansson wrote: On 2012-02-14 08:02, Josh Tolbert wrote: On 2/13/2012 11:12 PM, Bernt Hansson wrote: Thank you for your answer. I wrote this ages ago and it's still valid. You can ignore the IMAP stuff if you like. :) Well, no cigar for me. I'm leaning at this line. And I think it is somehow involed in all this mess sm-mta[37453]: STARTTLS=client, relay=smtp.isp.com., version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256 I'm sorry for jumping into this thread, Don't be sorry for that. but verify=FAIL is expected unless you have your ISP's certificate chain stored in the appropriate directory with the appropriate file names. I do not have a certificate from the isp. My tought was more in line of MY sendmail is sending starttls first thing before auth login. Actually, this makes sense. It seems appropriate to establish an encrypted connection before sending the username and password. A parallel would be SSH. At the same time the use of SSL/TLS makes it harder to debug what's going on. Then postfix gets confused. It sounds strange, but there's a slight chance something is odd at the ISP's end. Possible scenario? I don't have any more input at the moment. The next step would be to establish a dialog with your ISP and persua^Wask them to investigate the matter further. /etc/ssl/certs would be a good place to store the certificates. A command like this one can be used to generate the hashed file names: ln -s certfile `openssl x509 -noout -hash certfile`.0 Any idea about that? The isp does support STARTTLS. telnet smtp.isp.com 25 Trying x.x.x.x... Connected to smtp.isp.com. Escape character is '^]'. 220 smtp.isp.com ESMTP Postfix (Ubuntu) ehlo localhost 250-smtp.isp.com 250-PIPELINING 250-SIZE 10240 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN starttls 220 2.0.0 Ready to start TLS http://www.puresimplicity.net/~hemi/freebsd/sendmail.html That is a good site. Learnt me how to build sendmail at least. -- +---++ | Vennlig hilsen, | Best regards, | | Trond Endrestøl, | Trond Endrestøl, | | IT-ansvarlig, | System administrator, | | Fagskolen Innlandet, | Gjøvik Technical College, Norway, | | tlf. dir. 61 14 54 39, | Office.: +47 61 14 54 39, | | tlf. mob. 952 62 567, | Cellular...: +47 952 62 567, | | sentralbord 61 14 54 00. | Switchboard: +47 61 14 54 00. | +---++___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Trying to build Nessus 4 from ports
On Sat, 24 Sep 2011 23:24+0200, Andrei Brezan wrote: On 23/09/2011 23:31, Michael D. Norwick wrote: Good Day Trying to build /usr/ports/security/nessus on FreeBSD 9-beta2 with ports updated via - portsnap fetch update - completed 09/22/2011. The result from #make; === Applying FreeBSD patches for nessus-libraries-2.2.9_1 === nessus-libraries-2.2.9_1 depends on executable: bison - found === nessus-libraries-2.2.9_1 depends on package: libtool=2.4 - found === Configuring for nessus-libraries-2.2.9_1 * W a r n i n g * * * * Nessus needs Berkeley Packet Filter (bpf). * * To use nessus, your kernel must be rebuilt with bpf, * * and make bpf devices on /dev directory. * * * * Be sure to build as many bpf devices as you need.* * For more info on this read files/README.BPF * *** Error code 1 Stop in /usr/ports/security/nessus-libraries. *** Error code 1 Stop in /usr/ports/security/nessus-libnasl. *** Error code 1 Stop in /usr/ports/security/nessus. From an earlier post on freebsd-questions I added; # Historically X depended on this, but version 4.3.0 doesn't seem to anymore #linkttyv0vga # Commonly used by many ports #linkacd0cdrom # Allow a user in the wheel group to query the smb0 device #permsmb00660 # Allow members of group operator to cat things to the speaker #ownspeakerroot:operator #permspeaker0660 own bpf0root:bpf permbpf00640 Sorry for leaping in, but I think you should change bpf0 to bpf only. See below. own bpf1root:bpf permbpf10640 own bpf2root:bpf permbpf20640 ownbpf3root:bpf permbpf30640 ownbpf4root:bpf permbpf40640 to /etc/devfs.conf. But I still get; crw-r- 1 root bpf 0, 11 Sep 22 21:14 bpf lrwxr-xr-x 1 root wheel3 Sep 22 21:14 bpf0 - bpf crw-rw-rw- 1 root wheel 0, 49 Sep 22 21:14 bpsm0 Looking at this listing, bpf0 is a symlink to bpf, thus /etc/devfs.conf should manage /dev/bpf and not /dev/bpf0. in /dev after rebooting. Do I require a statement in rc.conf or loader.conf to activate more bpf devices? Am I editing the right file the wrong way? The proper handbook chapter escapes me right now. Previous to trying to build nessus from ports I built a new kernel with - device bpf enabled. Thank You, Michael I would suggest to get the package from tenable.com and install it via pkg_add. That's how it worked for me but on FreeBSD 8.2-stable. Might worth a shot. Regards, Trond. -- -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.2-STABLE Alpine 2.00___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Mount a ufs partition writable by group wheel?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Fri, 2 Sep 2011 13:01+0200, Michael M wrote: Is it possible to mount a ufs partition writable by group wheel? How would the fstab entry look? It really depends on what you want to achieve. If it's okay that the (local) root directory of said filesystem is (co-)owned by the wheel group, then: mount /filesystem, run chgrp wheel /filesystem, and finally run chmod g+w /filesystem Maybe you should look into POSIX ACLs, etc if you are looking for something more advanced. Trond. - -- - -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.2-STABLE Alpine 2.00 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAk5gv8cACgkQbYWZalUoElvVbgCdHpQGTE9MCypqjD9FxT9FDJQP LvEAnjd1tHBrs9AxSHN84NN3iWNYsGEf =DjyX -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mountroot
On Wed, 29 Jun 2011 20:42+0200, Dick Hoogendijk wrote: I'm a little desperade. I installed a mirrored ZFS freebsd system in a VM the other day and all went well. Now I did the same procedure on a real systrem with two drives and I can't get the system to boot properly. Everytime it halts at the mountroot prompt. If I manually put zfs:zroot at the prompt the system boots to the login screen. I checked the /etc/rc.conf and the /boot/loader.conf for syntax errors but all seems well. What on earth can be the cause of this behaviour? What do I check? Help? Have you specified a bootfs? E.g.: zpool set bootfs=zroot zroot -- -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.2-STABLE Alpine 2.00___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: mountroot
On Wed, 29 Jun 2011 21:18+0200, Dick Hoogendijk wrote: Op 29-6-2011 21:15, Trond Endrestøl schreef: On Wed, 29 Jun 2011 20:42+0200, Dick Hoogendijk wrote: I'm a little desperade. I installed a mirrored ZFS freebsd system in a VM the other day and all went well. Now I did the same procedure on a real systrem with two drives and I can't get the system to boot properly. Everytime it halts at the mountroot prompt. If I manually put zfs:zroot at the prompt the system boots to the login screen. I checked the /etc/rc.conf and the /boot/loader.conf for syntax errors but all seems well. What on earth can be the cause of this behaviour? What do I check? Help? Have you specified a bootfs? E.g.: zpool set bootfs=zroot zroot Yes, I did. And just did it again. Please post your /boot/loader.conf. -- -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.2-STABLE Alpine 2.00___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: MOVED file format error
On Mon, 9 May 2011 09:18+0200, n dhert wrote: It seems the /usr/ports/MOVED file is corrupt ... after portsnap fetch; portsnap update # pkgdb -F replies: MOVED file format error the file is -rw-r--r-- 1 root wheel 176311 May 9 07:28 /usr/ports/MOVED On a system where I haven't done a portsnap fetch; portsnap update since last week the /usr/ports/MOVED is from May 2 and # pkgdb -F doesn't complain. If I do a portupgrade with the corrupted /usr/ports/MOVED file, I get /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:119:in `fill': MOVED file format er ror (PortsDB::MOVEDError) from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:113:in `each' from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:113:in `fill' from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:112:in `open' from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:112:in `fill' from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:107:in `initialize' from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:182:in `new' from /usr/local/lib/ruby/site_ruby/1.8/portsdb.rb:182:in `setup' from /usr/local/lib/ruby/site_ruby/1.8/pkgtools.rb:256:in `init_pkgtools _global' from /usr/local/sbin/portupgrade:523:in `main' from /usr/local/lib/ruby/1.8/optparse.rb:791:in `initialize' from /usr/local/sbin/portupgrade:231:in `new' from /usr/local/sbin/portupgrade:231:in `main' from /usr/local/sbin/portupgrade:2219 # and nothing is updated.. How to get a good /usr/ports/MOVED file ? Re-cvsup, a new MOVED file was just committed, or try this patch: === snip === --- MOVED.orig 2011-05-09 08:23:35.0 +0200 +++ MOVED 2011-05-09 08:52:49.0 +0200 @@ -2169,8 +2169,8 @@ devel/lhs2TeX|textproc/hs-lhs2tex|2011-05-08|Renamed: It has become a Cabal transcript. devel/bnfc|devel/hs-BNFC|2011-05-08|Renamed: It has become a Cabal transcript. graphics/hs-hgl||2011-05-08|deleted: overriden by graphics/hs-HGL -x11-toolkits/hs-GLURaw|2011-05-08|Removed: It has become obsoleted by Haskell Platform. -x11-toolkits/hs-OpenGLRaw|2011-05-08|Removed: It has become obsoleted by Haskell Platform. -net/hs-network-bytestring|2011-05-08|Removed: It is deprecated by net/hs-network. -devel/hs-uvector|2011-05-08|Removed: It is deprecated by devel/hs-vector. -devel/hs-uvector-algorithms|2011-05-08|Removed: It is deprecated by devel/hs-vector-algorithms. +x11-toolkits/hs-GLURaw||2011-05-08|Removed: It has become obsoleted by Haskell Platform. +x11-toolkits/hs-OpenGLRaw||2011-05-08|Removed: It has become obsoleted by Haskell Platform. +net/hs-network-bytestring||2011-05-08|Removed: It is deprecated by net/hs-network. +devel/hs-uvector||2011-05-08|Removed: It is deprecated by devel/hs-vector. +devel/hs-uvector-algorithms||2011-05-08|Removed: It is deprecated by devel/hs-vector-algorithms. === snip === Trond. -- -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.2-STABLE Alpine 2.00___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: Cannot boot from ZFS raidz1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu Apr 21 10:52:49 UTC 2011, Wolfgang Riegler wrote: I have used this setup guide (http://wiki.freebsd.org/RootOnZFS/GPTZFSBoot/RAIDZ1) line by line with the 8.2-RELEASE DVD for amd64 to install a VirtualBox guest for testing. The only difference to the setup guide: I use a SAS controler, so devicename is da0, da1, da2 instead of ad0, etc. I tried it with a SATA controler as well, but no differences. After reboot, I get the following error from the loader: ZFS: i/o error - all block copies unavailable ZFS: can't read MOS object directory Can't find root filesystem - giving up ZFS: unexpected object set type 0 ZFS: unexpected object set type 0 FreeBSD/x86 boot Default: zroot:/boot/kernel/kernel boot: ZFS: unexpected object set type 0 FreeBSD/x86 boot Default: zroot:/boot/kernel/kernel boot: I managed to delete your message before I got a chance to send a reply to the list. Against better judgement I'm going to send this reply to the list, knowing that I might create a new thread with the same subject as your OP. A VirtualBox guest will only see one hard drive at the BIOS level during boot. Thus, you should recreate your system using mirrored drives for booting the OS. Once the OS has gained control over the system, ZFS is able to see all the attached disks. Maybe it's not so bad to separate the OS and your data, with the OS stored on a couple of mirrored disks and your precious data stored on three disks in raidz1 formation. This recipe is a good starting point for setting up the OS: http://wiki.freebsd.org/RootOnZFS/GPTZFSBoot/Mirror I prefer using the remaining disk space for the freebsd-zfs partitions and not limiting them to only 60 GiB. HTH, Trond. - -- - -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.2-STABLE Alpine 2.00 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAk2xSxcACgkQbYWZalUoElve+wCfefbLOdr3xY7YyzbiuMfn4SVT cYIAn1tpdOh921kjkThYVwq83sGYHwEG =N8Ei -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Sleepy MRTG 2.17.1,1 on 8.2-STABLE
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I'm running mrtg-2.17.1,1 on 8.2-STABLE #0: Sun Mar 6 16:31:09 CET 2011 (which is a different system than the one sending this mail). Even with Interval: 5 in mrtg.cfg, it seems MRTG is sleeping double this amount. Has anyone else besides me come across this issue? MRTG (nor mrtg) is not mentioned in ports/UPDATING. I haven't tried lowering the interval, so maybe a value of 3 seconds results in a sleep period of 6 seconds. Trond. - -- - -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 8.1-STABLE Alpine 2.00 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAk2Zsj0ACgkQbYWZalUoEltmCQCfbBhaT1be74co6DOlpCDFJWxE MYUAn3qzJBUG9nqVltOdFp1wpXJePMSM =jzEg -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: dhcpd related issue
to 192.168.1.1 port = bootps keep state 5.. When I start de daemon: # /usr/local/etc/rc.d/isc-dhcpd start Starting dhcpd. Internet Systems Consortium DHCP Server V3.0.7 Copyright 2004-2008 Internet Systems Consortium. All rights reserved. For info, please visit http://www.isc.org/sw/dhcp/ Wrote 0 leases to leases file. Listening on Socket/rl1/192.168.1/24 Sending on Socket/rl1/192.168.1/24 Everythings looks to be ok there but on the client (I tried OS-X and Nokia symbian) I can not obtain the IP address, do you have any idea what should I check? Thanks! Laci - -- - -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 7.2-STABLE Alpine 2.00 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.12 (FreeBSD) iEYEARECAAYFAkrtcXsACgkQbYWZalUoElvP0gCeLU+/YYnZ07hy2K5atOeN35kj yk4Ani+Ip66CWpzIzp8986tIu9Ya172n =ksU6 -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: dhcpd related issue
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sun, 1 Nov 2009 12:30+0100, Trond Endrestøl wrote: On Sun, 1 Nov 2009 02:06-0800, Dánielisz László wrote: I had one more idea: try nmap on my dhcp server, and port 67 does not seems to be opened, after I tried telneting in and my connection was refused: $ telnet 192.168.1.1 67 Trying 192.168.1.1... telnet: connect to address 192.168.1.1: Connection refused telnet: Unable to connect to remote host DHCP uses UDP, telnet uses TCP, no wonder you're getting refused. Do you have bpf (Berkeley packet filter) compiled in the kernel? dhcpd relies on bpf. Just a thought, although dhcpd would probably shut down if bpf is unavailable. As others have suggested, please post the output from ifconfig rl1, and from netstat -rnf inet. Than I disabled pf # pfctl -d No ALTQ support in kernel ALTQ related functions disabled pf disabled Just another (silly) thought, does your pf setup allow UDP from 192.168.1.1:67 to *:68 over the rl1 interface? Initially the DHCP client uses 0.0.0.0 as its IP address and broadcasts the DHCP requests to 255.255.255.255. I know you have disabled pf, but you should later allow the clients and dhcpd to send DHCP messages using the above addresses, i.e. dhcpd will broadcast back the offerings using its own IP-address as source (192.168.1.1 in your case) and the broadcast address 255.255.255.255 as destination. You should probably also allow for the use of 192.168.1.255 as broadcast address in your pf setup with respect to DHCP messages. More ranting on my part, Trond. Than I checked telnet/nmap again but still don't found any 67 port ever there. I checked again that the dhcpd is running, and its up: # ps ax|grep dhcp 958 ?? Is 0:00.00 /usr/local/sbin/dhcpd -cf /usr/local/etc/dhcpd.conf -lf /var/db/dhcpd/dhcpd.lease Any idea? Did you restart dhcpd? What's the output from fstat with respect to dhcpd? The output should be something resembling: dhcpddhcpd 18990 root / 2 drwxr-xr-x1024 r dhcpddhcpd 18990 wd / 6 drwxr-xr-x1024 r dhcpddhcpd 18990 text /usr 10505569 -rwxr-xr-x 595924 r dhcpddhcpd 189900 /dev 14 crw-rw-rw-null rw dhcpddhcpd 189901 /dev 14 crw-rw-rw-null rw dhcpddhcpd 189902 /dev 14 crw-rw-rw-null rw dhcpddhcpd 189903* local dgram c32224b4 - c32228bc dhcpddhcpd 189904* internet raw icmp c32d8b2c dhcpddhcpd 189905* internet dgram udp c3173974 dhcpddhcpd 189906 /var 70999 -rw-r--r-- 93335 w dhcpddhcpd 189907 /dev 7 crw--- bpf rw If you happen to have lsof installed, it should yield something like this: dhcpd 18990 1 dhcpd cwd VDIR 0,98 10246 /root dhcpd 18990 1 dhcpd rtd VDIR 0,98 10242 / dhcpd 18990 1 dhcpd txt VREG 0,106 595924 10505569 /usr/local/sbin/dhcpd dhcpd 18990 1 dhcpd txt VREG 0,98 22013626684 /libexec/ld-elf.so.1 dhcpd 18990 1 dhcpd txt VREG 0,981143792 1327 /lib/libc.so.7 dhcpd 18990 1 dhcpd0u VCHR 0,140t0 14 /dev/null dhcpd 18990 1 dhcpd1u VCHR 0,140t0 14 /dev/null dhcpd 18990 1 dhcpd2u VCHR 0,140t0 14 /dev/null dhcpd 18990 1 dhcpd3u unix 0xc31719a80t0 -0xc3171b44 (QR=0 QS=0 SO=PQLEN=0,QLEN=0,QLIM=0,RCVBUF=32768,SNDBUF=16384 SS=ISCONNECTED) dhcpd 18990 1 dhcpd4u IPv4 0xc32d8b2c0t0 ICMP *:* (QR=0 QS=0 SO=PQLEN=0,QLEN=0,QLIM=0,RCVBUF=73728,SNDBUF=73728) dhcpd 18990 1 dhcpd5u IPv4 0xc31750600t0 UDP *:bootps (QR=0 QS=0 SO=PQLEN=0,QLEN=0,QLIM=0,RCVBUF=262144,REUSEADDR,SNDBUF=73728) dhcpd 18990 1 dhcpd6w VREG 0,104 9406170999 /var (/dev/ufs/var) dhcpd 18990 1 dhcpd7u VCHR0,7 0t267449857 /dev/bpf HTH, Trond. From: Dánielisz László laszlo_daniel...@yahoo.com To: patrick gibblert...@gmail.com Cc: freebsd-questions@freebsd.org Sent: Sun, November 1, 2009 8:34:03 AM Subject: Re: dhcpd related issue It's the same, I still don't got any IP address. From: patrick gibblert...@gmail.com To: Dánielisz László laszlo_daniel...@yahoo.com Cc: freebsd-questions@freebsd.org Sent: Sun, November 1, 2009 6:38:31 AM Subject: Re: dhcpd related issue What happens if you disable pf temporarily? 2009/10/31 Dánielisz László laszlo_daniel...@yahoo.com: Hello, I just configured my dhcpd but it gives no IP-s. What had I done until now: 1. Installed isc-dhcp via ports 2
Re: Using 'USR1' signal in newsyslog.conf file causes error
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sat, 24 Oct 2009 15:26-0400, carmel_ny wrote: Dovecot has a site with information regarding how to rotate it's log-file. http://wiki.dovecot.org/Logging Since I do not have logrotate on my FreeBSD-7.2 system, I thought I could use newsyslog to accomplish the action. I seem to have run into a problem however. newsyslog: illegal signal number in config file: /var/log/dovecot.log root:wheel 0666 1 * $M1D0 CJ /var/run/dovecot/master.pid SIGUSR1 I then changed SIGUSR1 TO USR1'; however, the problem continues. Can someone tell me what I am doing wrong? You're supposed to use a number. Look in /usr/include/sys/signal.h, you'll find SIGUSR1 listed as signal no. 30. Use 30 as opposed to SIGUSR or USR1. Trond. - -- - -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 7.2-STABLE Alpine 2.00 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.12 (FreeBSD) iEYEARECAAYFAkrjVrUACgkQbYWZalUoEltaBwCdEs6UdDe7ZF+YwrcHhC7MWsIL yY0An10HF2z4TeQIdoTyt15P3hPM2ITl =CNF+ -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: gnu tar checkpoint variable expansion
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 21 Oct 2009 08:44-0500, Jay Hall wrote:
[...] Following is how I am using gnu tar
DIR=/home/test
WHATTOBACKUP=/home/somedir
/usr/local/gtar-1.22/bin/tar -cf - ${WHATTOBACKUP} \
--checkpoint-action='echo=Checkpoint #%u'
--checkpoint-action='exec=/usr/local/scripts/check_disk_usage.sh ${DIR}'
Try this:
/usr/local/gtar-1.22/bin/tar -cf - ${WHATTOBACKUP} \
--checkpoint-action='echo=Checkpoint #%u' \
--checkpoint-action=exec=/usr/local/scripts/check_disk_usage.sh ${DIR}
The use of single quotes prohibits the expansion of environment
variables. Use double qoutes instead.
- --
- --
Trond Endrestøl | trond.endres...@fagskolen.gjovik.no
ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 7.2-STABLE Alpine 2.00
-BEGIN PGP SIGNATURE-
Version: GnuPG v2.0.12 (FreeBSD)
iEYEARECAAYFAkrfEg8ACgkQbYWZalUoEltZnACggXsvYV1wq/91nSUabiLEhuBt
9qIAn1FN+EqFu4IdNhQbB9Y5IMtJtnGq
=myOf
-END PGP SIGNATURE-___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Trouble making a Tandberg LTO-2 HH S619 work with AMANDA 2.6.1p1 on 7.2-STABLE as of today
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, I'm having trouble making a Tandberg LTO-2 HH S619 work with AMANDA 2.6.1p1 on 7.2-STABLE i386 cvsup'ed as of today local time. The tape drive is connected to channel A on: ahc0: Adaptec 3960D Ultra160 SCSI adapter port 0xec00-0xecff mem 0xff8ff000-0xff8f irq 17 at device 8.0 on pci1 ahc0: [ITHREAD] aic7899: Ultra160 Wide Channel A, SCSI Id=7, 32/253 SCBs ahc1: Adaptec 3960D Ultra160 SCSI adapter port 0xe800-0xe8ff mem 0xff8fe000-0xff8fefff irq 18 at device 8.1 on pci1 ahc1: [ITHREAD] aic7899: Ultra160 Wide Channel B, SCSI Id=7, 32/253 SCBs During (re)boot the following is recorded in dmesg: (probe5:ahc0:0:5:0): TEST UNIT READY. CDB: 0 0 0 0 0 0 (probe5:ahc0:0:5:0): CAM Status: SCSI Status Error (probe5:ahc0:0:5:0): SCSI Status: Check Condition (probe5:ahc0:0:5:0): UNIT ATTENTION asc:29,2 (probe5:ahc0:0:5:0): SCSI bus reset occurred (probe5:ahc0:0:5:0): Retrying Command (per Sense Data) sa0 at ahc0 bus 0 target 5 lun 0 sa0: TANDBERG LTO-2 HH S619 Removable Sequential Access SCSI-3 device sa0: 160.000MB/s transfers (80.000MHz DT, offset 64, 16bit) Is these messages normal for this drive? A valid tape was present in the drive during reboot. This is a brand new drive and in it's maiden voyage the other night AMANDA complained about running out of tape after a mere 10 GB worth of data. LTO2 tapes usually have a raw capacity of about 200 GB. Next I ran amtapetype to get the new characteristics, but got the following instead: ama...@xxx:~mt -f /dev/sa0 comp off ama...@xxx:~mt -f /dev/sa0 status Mode Density Blocksize bpi Compression Current: 0x42 variable 0disabled - -available modes- 0:0x42 variable 00x1 1:0x42 variable 00x1 2:0x42 variable 00x1 3:0x42 variable 00x1 - - Current Driver State: at rest. - - File Number: 0 Record Number: 0Residual Count 0 ama...@xxx:~/usr/bin/time -l amtapetype -t TANDBERG-LTO2-HH-TANDBERG-200GB-WITHOUT-COMPRESSION /dev/sa0 Applying heuristic check for compression. Wrote random (uncompressible) data at 22260042.3225806 bytes/sec Wrote fixed (compressible) data at 22260042.3225806 bytes/sec Compression: disabled Writing one file to fill the volume. Wrote less than 100MB to the device: Error writing block: Unknown error: 0 9133,58 real 4747,35 user 316,77 sys 11700 maximum resident set size 3 average shared memory size 730 average unshared data size 127 average unshared stack size 1614 page reclaims 1 page faults 0 swaps 18 block input operations 2 block output operations 0 messages sent 0 messages received 0 signals received 44390062 voluntary context switches 26325015 involuntary context switches ama...@xxx:~ I managed to observe the block count rising well into 600 before the abrupt ending which usually indicates the tape being completely filled assuming a block size of 32K which is the default for amtapetype. I can (re)boot the server with verbose logging turned on if that can improve the diagnosis. I've ordered a new Adaptec 39320 to use with this drive. If anyone has a better suggestion please let's have it. Trond. - -- - -- Trond Endrestøl | trond.endres...@fagskolen.gjovik.no ACM, NAS, NUUG, SAGE, USENIX |FreeBSD 7.2-STABLE Alpine 2.00 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.12 (FreeBSD) iEYEARECAAYFAkrTaNkACgkQbYWZalUoElvQUACaAqtSRuAFUJc84NTpZVuqKulY Z4QAn1L0fZzRoXVPXQjA+NBuAgSYtBPZ =6Bl5 -END PGP SIGNATURE-___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
IPv6 with IPsec on FreeBSD 4.10-R with racoon-20040408a
When setting up IPsec at my home using FreeBSD 4.10-RELEASE and
racoon-20040408a, I came across a problem with IPv6 and IPsec.
First, here is the relevant information about my setup.
I have two computers in my network, each assigned a global unicast
address (do not worry about my abuse of these unicast addresses, my
network is completely isolated from the Internet):
Computer A is assigned 2001:0:2:3:20a:5eff:fe47:9709, and
Computer B is assigned 2001:0:2:3:260:8ff:fe7f:68b1
Both computers runs a 4.10-RELEASE kernel compiled with:
options INET
options INET6
options IPSEC
options IPSEC_ESP
options IPSEC_DEBUG
Both computers use racoon-20040408a, installed as a precompiled package,
for dynamical keying.
The racoon.conf on both computers looks like this:
path include /etc/racoon;
path pre_shared_key /etc/racoon/pre_shared_keys;
timer {
counter 20;
interval 25 sec;
phase1 20 sec;
phase2 20 sec;
}
remote anonymous {
exchange_mode main,aggressive,base;
doi ipsec_doi;
situation identity_only;
my_identifier address;
lifetime time 1 hour;
initial_contact on;
passive off;
proposal_check obey;
send_cert off;
send_cr off;
verify_cert off;
proposal {
encryption_algorithm blowfish;
hash_algorithm sha1;
authentication_method pre_shared_key;
dh_group 2;
}
}
sainfo anonymous {
pfs_group 2;
lifetime time 30 min;
encryption_algorithm blowfish 448,rijndael 256,cast128,3des;
authentication_algorithm hmac_sha1,hmac_md5;
compression_algorithm deflate;
}
I have trimmed the IPsec policy rules down to these ones (taken from
computer A):
# Flush the entries.
spdflush;
# ISAKMP between computers A and B may use ESP and AH.
spdadd 2001:0:2:3:20a:5eff:fe47:9709[500] 2001:0:2:3:260:8ff:fe7f:68b1[500]
udp -P out ipsec esp/transport//use ah/transport//use;
spdadd 2001:0:2:3:260:8ff:fe7f:68b1[500] 2001:0:2:3:20a:5eff:fe47:9709[500]
udp -P in ipsec esp/transport//use ah/transport//use;
# Any other traffic between computers A and B must use ESP and AH.
spdadd 2001:0:2:3:20a:5eff:fe47:9709 2001:0:2:3:260:8ff:fe7f:68b1 any -P out
ipsec esp/transport//require ah/transport//require;
spdadd 2001:0:2:3:260:8ff:fe7f:68b1 2001:0:2:3:20a:5eff:fe47:9709 any -P in
ipsec esp/transport//require ah/transport//require;
The policy rules on computer B corresponds to the ones above.
Similar policy rules for IPv4 works like a dream on my network, so why
does not it work for IPv6?
With the policy rules above in effect, racoon on both computers uses
almost infinite time when attempting to negotiate the keying for IPv6.
I.e., racoon is getting nowhere when it tries to initiate phase 1, and
racoon on neither computer seems to care of or even receive the
replies from each other. There are no firewalls between my computers,
nor does any of my computers run a firewall.
Contrast the above with these policy rules in effect:
# Flush the entries.
spdflush;
# Traffic between computers A and B may use ESP and AH.
spdadd 2001:0:2:3:20a:5eff:fe47:9709 2001:0:2:3:260:8ff:fe7f:68b1 any -P out
ipsec esp/transport//use ah/transport//use;
spdadd 2001:0:2:3:260:8ff:fe7f:68b1 2001:0:2:3:20a:5eff:fe47:9709 any -P in
ipsec esp/transport//use ah/transport//use;
It seems that phase 1 completes when I do not force the use of IPsec.
Should I specify require in my IPv6 policy rules and include policy
rules that allow IPv6 ISAKMP to pass unencrypted, phase 1 never
succeeds when the computer has just rebooted.
Should I boot the computer with use in the IPv6 policy rules and
later change use to require while racoon is running, phase 1 has
already completed so all that remains is phase 2. In this case there
are obviously no need for the special ISAKMP policy rules.
Once phase 1 is done, phase 2 completes independently on whether I
specify use or require in the policy rules. And strangely enough,
this only happens with IPv6. As I said before, IPv4 with IPsec works
like a charm, even with require and the special ISAKMP policy rules.
Personally, I can live with use instead of require in my IPv6
policy rules, but it is unbearable for environments where this is not
acceptable.
Hopefully someone will look into this matter and possibly fix it.
Please contact me if I have left out any details you need to know.
--
--
Trond Endrestøl |[EMAIL PROTECTED]
Patron of The Art of Computer Programming| FreeBSD 4.8-S Pine 4.55
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]
portmap forks a multitude of child processes
After portmap has been launched on my 4.10-RELEASE system, it creates a multitude of child processes when mountd or ypserv is being launched. Does someone know what might be the problem? I haven't given you much detail about my setup, but I'm happy to supply whatever information you might need. Please cc me as I'm not regularly subscribed to this list, this message might even bounce due to my lack of subscription. -- -- Trond Endrestøl |[EMAIL PROTECTED] Patron of The Art of Computer Programming| FreeBSD 4.8-S Pine 4.55 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
