On Thu, Oct 18, 2007 at 10:06:42PM +1300, Richard Toohey wrote:
This looks like fun ... 8-) And this is open source, so let's follow
the code and learn something as we go along ...
But first, I guess it IS following your instructions ...
You asked it to copy what's in directory foo,
Hi,
I have a non-urgent problem with OpenBPGD and would like to know
if anybody has a suggestion on what went wrong/I did wrong.
Situation: I replaced an openbgpd based router (R1) with new hardware.
Of course, the mac addresses of the interfaces changed. After
the swap the BGP session with
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
On Thu, Oct 18, 2007 at 10:06:42PM +1300, Richard Toohey wrote:
JUST FOR FUN I have tried to fix this. What I know about C code
can be written on the back of a postage stamp
Did I mention the SIZE of the postage stamp? It's rather small ...
On Fri, Oct 19, 2007 at 11:44:58AM +0200, Luca Corti wrote:
| On Fri, 2007-10-19 at 10:35 +0200, Paul de Weerd wrote:
| Work is being done to add support. How is this 'preliminary' ? Is it
| only not preliminary when the final commit is made that makes WPA
| work ?
|
| Well, I think that's
Mark,
Thanks for replying. I found some material about Squid but I'd really
like also to include authpf.
Cheers,
Ari Constancio
On 10/19/07, Mark Rolen [EMAIL PROTECTED] wrote:
It's been over two years now, so specific steps are fuzzy now (I'd have
to start from scratch to do it again), but I
Replying to myself,
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
the following is nonsense, of course:
Another advantage of that is that when you build some port that requires
e.g. the X11 to be installed, you only need it
On 10/19/07, Jan Stary [EMAIL PROTECTED] wrote:
Replying to myself,
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
the following is nonsense, of course:
Another advantage of that is that when you build some port that
I appeal to the PF masters for some education on how to do something,
because if I can't work out how to do it using PF, I'll have to do it
with iptables. Eep!
We are a small hosting company in a managed building, and we present
ADSL/SDSL-like service over ethernet to other companies in the
Thanks to all for the replies. Everything is clear now; squid with
ntlm auth and authpf with login_ldap will do the trick (sorry, Stuart,
I didn't really read your message - now I have).
Steven, I'm looking for a general gateway setup - not only web traffic.
Cheers,
Ari Constancio
On 10/19/07,
Em Sex, 2007-10-19 C s 13:52 -0400, Douglas A. Tutty escreveu:
On Fri, Oct 19, 2007 at 09:19:21AM -0400, Nick Guenther wrote:
On 10/19/07, Tom Van Looy [EMAIL PROTECTED] wrote:
Richard Toohey wrote:
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
Looks like OpenBSD, FreeBSD, and
Hello,
On Fri, Oct 19, 2007 at 07:59:38PM +0200, ropers wrote:
[...]
pdksh on Linux behaves just like bash on Linux, and unlike pdksh on OpenBSD.
I didn't expect that. So does that error message depend on OS APIs
rather than the shell program and its built-in commands?
cp is part of the
On 19/10/2007, ropers [EMAIL PROTECTED] wrote:
I beat you to trying it on Linux
No I didn't. Others beat me and you to it. Apologies for the unnecessary noise.
(...)
IMHO cp behaving like this is somewhat nicer than its current
behaviour on apparently most or all BSD OSes.
I'm surprised
On 10/19/07, Rimi Bougard [EMAIL PROTECTED] wrote:
Hello,
On Fri, Oct 19, 2007 at 07:59:38PM +0200, ropers wrote:
[...]
pdksh on Linux behaves just like bash on Linux, and unlike pdksh on
OpenBSD.
I didn't expect that. So does that error message depend on OS APIs
rather than the shell
I read that single unix specification thing again because the OpenBSD cp
manpage says it is expected to be IEEE Std 1003.2 (``POSIX.2'') compatible.
quote
For each source_file, the following steps shall be taken:
1) If source_file references the same file as dest_file, cp may write a
On 19/10/2007, ropers [EMAIL PROTECTED] wrote:
I'm surprised now.
I just thought that what I wrote above was stupid, because I thought
that the behaviour of cp was a function of the shell built-in command
cp, not of the OS.
To confirm this, I installed the OpenBSD default shell pdksh on
As Sebastian pointed out, you will need to do some state manipulation to
apply your traffic flows to an up and down queue. You can also do this by
setting your state-policy to be if-bound.
On 10/19/07, Richard Wilson [EMAIL PROTECTED] wrote:
n0g0013 wrote:
On 19.10-15:15, Richard Wilson
On 10/19/07, Aaron W. Hsu [EMAIL PROTECTED] wrote:
From: Tom Van Looy [EMAIL PROTECTED]
Date: Fri, 19 Oct 2007 20:21:56 +
Subject: Re: cp(1) bug ?
it shall do nothing more with source_file and shall go on to any
remaining files.
Doesn't this mean that cp should not do anything
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Folks,
I just noticed 011_openssl.patch and installed it on my 4.1 i386 system.
Does anyone have any idea to what extent I risked being hacked? If the
risk was significant, what is the best way to check if someone's been naughty?
thanks,
Rob
I just noticed 011_openssl.patch and installed it on my 4.1 i386 system.
Does anyone have any idea to what extent I risked being hacked? If the
risk was significant, what is the best way to check if someone's been naughty?
If anyone competent is being naughty, you probably wouldn't
On 10/19/07, Ted Unangst [EMAIL PROTECTED] wrote:
On 10/19/07, Aaron W. Hsu [EMAIL PROTECTED] wrote:
From: Tom Van Looy [EMAIL PROTECTED]
Date: Fri, 19 Oct 2007 20:21:56 +
Subject: Re: cp(1) bug ?
it shall do nothing more with source_file and shall go on to any
remaining
Hi,
Been trying in vain to get daap/mdns traffic through my OpenBSD 4.1
firewall to talk to my mt-daap server.
From tcpdumping I can see the multicast traffic coming into sis1
interface but not coming out of the sis0 interface so I can only assume
that I have missed something.
At present I
On 19/10/2007, Andreas Kahari [EMAIL PROTECTED] wrote:
On 19/10/2007, ropers [EMAIL PROTECTED] wrote:
IMHO cp behaving like this is somewhat nicer than its current
behaviour on apparently most or all BSD OSes. Then again, I STILL
can't code, so I've no right to complain. ;o)
Really?
Landry Breuil wrote:
On 10/19/07, Jan Stary [EMAIL PROTECTED] wrote:
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
/usr/ports/packages .. i'd like it to be
Hello
I am currently in Istanbul attending the 1st International BSD
Conference in Turkey (see www.opencon.tr for details).
This conference is very well organized and on the first day
about 200 people attended. The talks were held in Turkish, but
the nice people of Endersys and Enderunix
On 10/13/07, Floor Terra [EMAIL PROTECTED] wrote:
a small OpenBSD social event in Amsterdam (The Netherlands).
It's nothing official, just a few OpenBSD users getting together. The
date is Friday November 2nd, a perfect date to celebrate the 4.2
release. Cafi De Deugniet is the location, it's
Date: Fri, 19 Oct 2007 20:12:26 +0200
From: Paul de Weerd [EMAIL PROTECTED]
Subject: Re: : cp(1) bug ?
On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
| Conceptually, though, why can't cp look at the source directory and take a
| snapshot, a to-do-list, of everything it
On 10/19/07, Nick Guenther [EMAIL PROTECTED] wrote:
On 10/19/07, Paul de Weerd [EMAIL PROTECTED] wrote:
On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
| Conceptually, though, why can't cp look at the source directory and take a
| snapshot, a to-do-list, of everything it
dear all
i try setup my obsd 4.1 to storage hosting i need advice :
- how to limit user to use server enveroment
- how to quota , they any quota system web base .
- any thing else ?
thq
sonjaya
http://sicute.blogspot.com
Website is up, date are announced.
The Free and Opensource Sofware Developer's European Meeting will, as
usual, take place at the Universiti Libre de Bruxelles, Campus
Solbosh, on the 23 24th february 2008
Website is http://www.fosdem.org/2008/
Event address is
Avenue Franklin D. Roosevelt, 50
On 10/19/07, Paul de Weerd [EMAIL PROTECTED] wrote:
On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
| Conceptually, though, why can't cp look at the source directory and take a
| snapshot, a to-do-list, of everything it has to copy, then do it? That
| way, any recursion
On Fri, Oct 19, 2007 at 03:15:03PM +0100, Richard Wilson wrote:
I appeal to the PF masters for some education on how to do something,
because if I can't work out how to do it using PF, I'll have to do it
with iptables. Eep!
[snip the details]
That's about it really. If I can get it to work,
On 10/19/07, Jan Stary [EMAIL PROTECTED] wrote:
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
/usr/ports/packages .. i'd like it to be shared too, to
On Fri, Oct 19, 2007 at 09:19:21AM -0400, Nick Guenther wrote:
On 10/19/07, Tom Van Looy [EMAIL PROTECTED] wrote:
Richard Toohey wrote:
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
Looks like OpenBSD, FreeBSD, and Mac OS X BSD bits have the same
sort of outcome.
Copy foo
On Fri, Oct 19, 2007 at 09:19:21AM -0400, Nick Guenther wrote:
On 10/19/07, Tom Van Looy [EMAIL PROTECTED] wrote:
[...]
Anyway, it has worked like that since years, and I guess nobody has had
a problem with it before. I don't think it should be changed just
because some bored guy playing
On Fri, 2007-10-19 at 09:14 -0700, Darren Spruell wrote:
It *is* a requirement to comment intelligently on what is or is not
being worked on.
Yeah, sorry for that.
ciao
Luca
On 10/17/07, Steve Shockley [EMAIL PROTECTED] wrote:
Edwards, David (JTS) wrote:
I'm using 250G laptop disks powered from the USB cable.
Maybe you're hitting the limit of the USB power output?
Agreed. Use two separate full-power USB ports (i.e. neither port
shares any of each other's power)
On 2007/10/19 16:03, Ari Constancio wrote:
Hi again,
Sorry if I'm not being clear.
I need this box to be a firewall and a proxy server. Squid, as it
seems, can use NTLM auth to get account info from AD. But what about
pf?
How can I authenticate users from AD to get through pf?
ps: it was a ;-p
Nick Guenther wrote:
On 10/19/07, Tom Van Looy [EMAIL PROTECTED] wrote:
Richard Toohey wrote:
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
Looks like OpenBSD, FreeBSD, and Mac OS X BSD bits have the same
sort of outcome.
Copy foo to foo only once and quit, I think
Steven Surdock wrote:
To perform integrated NTLM auth I believe you'll need winbind from samba
and windbind support for Squid. I'm not sure I understand the authpf
requirement.
http://marc.info/?l=openbsd-portsm=119081356508513w=2
-Steve S.
I have to agree with Steven here, I don't
To perform integrated NTLM auth I believe you'll need winbind from samba
and windbind support for Squid. I'm not sure I understand the authpf
requirement.
http://marc.info/?l=openbsd-portsm=119081356508513w=2
-Steve S.
Ari Constancio wrote:
Mark,
Thanks for replying. I found some material
On 2007/10/19 14:09, Ari Constancio wrote:
Thanks for replying. I found some material about Squid but I'd really
like also to include authpf.
You can massage the output from OpenLDAP's ldapsearch to generate
a master.passwd file, pwd_mkdb, then login_ldap from packages can be
used to
On Oct 18 20:04:18, Landry Breuil wrote:
i'm struggling to make my ports-tree usable on all my machines, it
seems that in my configuration -maproot=root in /etc/exports doesn't
work:
on the server (4.1 stable), /etc/exports contains :
/usr/ports -maproot=root client
perms : drwxrwxr-x 47
On Fri, 2007-10-19 at 12:07 +0200, Paul de Weerd wrote:
I disagree. This is not true from a 'user perspective' at all. Unless
a user is totally ignorant - you don't expect a new building to just
*poof* out of thin air and have it ready for use the same moment ?
Construction takes time. Careful
Hi,
I'm looking for a MS-ISA server replacement, and I'm thinking
specifically in an OpenBSD-based setup with authpf and Squid (NTLM
auth) on Active Directory.
Does anyone have a similar setup?
Thanks in advance,
Ari Constancio
Hi,
I have plenty of time between next 1/11 ~ 5/11; who wants to meet in
Berlin, in Tuffstein to celebrate the 12th birthday of OpenBSD?
(Leberstrasse 2, Schoeneberg):
On Fri, 2007-10-19 at 00:30 -0600, Stephen Bosch wrote:
Hi, folks:
Here's a good one for you.
I have an IPsec tunnel running between two OpenBSD boxes. One is still
running 3.8 (yes, it needs to be updated) and the other is running 4.1.
There is a functioning tunnel running between the
On Fri, Oct 19, 2007 at 10:07:36AM +0200, Luca Corti wrote:
| On Thu, 2007-10-18 at 22:43 -0400, Nick Guenther wrote:
| WPA is not supported. AFAIK noone is working on it.
| http://www.openbsd.org/plus42.html
| search for WPA.
|
| Lots of 802.11 improvements and code in preparation for WPA and
Hi, folks:
Here's a good one for you.
I have an IPsec tunnel running between two OpenBSD boxes. One is still
running 3.8 (yes, it needs to be updated) and the other is running 4.1.
There is a functioning tunnel running between the two devices.
Hosts on one end can see hosts on the other,
On Thu, 2007-10-18 at 22:43 -0400, Nick Guenther wrote:
WPA is not supported. AFAIK noone is working on it.
http://www.openbsd.org/plus42.html
search for WPA.
Lots of 802.11 improvements and code in preparation for WPA and other
auth styles.
This says pretty nothing about actual
On Fri, 19 Oct 2007, RW wrote:
I have a GENERIC 4.1 box running ntpd as a server that is now part of
au.pool.ntp.org and suddenly (once the world discovered it) the logs
began to fill with entries like:
Oct 19 16:46:05 freya ntpd[12012]: malformed packet received from
121.216.235.111
Oct 19
Pierre Riteau wrote:
On Thu, Oct 18, 2007 at 04:35:38PM +0200, Markus Bergkvist wrote:
Even though bios0 reports ASUS A7N8X Deluxe ACPI BIOS during boot, I
see no acpi0 in the dmesg, w/o acpi enabled. Unsupported, or am I just not
supposed to see a acpi0 device?
disable apm0 if you want to
From: Tom Van Looy [EMAIL PROTECTED]
Date: Fri, 19 Oct 2007 20:21:56 +
Subject: Re: cp(1) bug ?
it shall do nothing more with source_file and shall go on to any
remaining files.
Doesn't this mean that cp should not do anything when, for example, the
following command is run?
$ cp
n0g0013 wrote:
On 19.10-15:15, Richard Wilson wrote:
[ ... ]
altq on $ext_if cbq bandwidth 9.1Mb queue { adsl_up, sdsl_up }
altq on $client_if cbq bandwidth 9.1Mb queue { adsl_dn, sdsl_dn }
queue adsl_up bandwidth 256Kb cbq
queue adsl_dn bandwidth 2Mb cbq
is there a reason that these
cp on linux is part of gnu coreutils (http://www.gnu.org/software/coreutils/)
the error can be found in /coreutils-6.9/tests/cp/into-self
So it is not a part of bash or ksh (also on OpenBSD it is not part of the
shell, the code is in /usr/src/bin/cp/).
I beat you to trying it on Linux
No I
On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
| Conceptually, though, why can't cp look at the source directory and take a
| snapshot, a to-do-list, of everything it has to copy, then do it? That
| way, any recursion would be completed before the target directory
| appeared in
knitti wrote:
On 10/19/07, Stephen Bosch [EMAIL PROTECTED] wrote:
Other things I've tried:
- moving the Jetdirect to a different port on the same physical switch
- a variety of static and dynamic IPs in the subnet
I also forwarded the external port 9100 to this print server and tried
to
On 10/19/07, Luca Corti [EMAIL PROTECTED] wrote:
AFAIK noone is working on it.
...
Sure I am not following source changes regularly, I don't believe this
is a requirement to just use the system.
It *is* a requirement to comment intelligently on what is or is not
being worked on.
DS
Ari Constancio wrote:
Hi again,
Sorry if I'm not being clear.
I need this box to be a firewall and a proxy server. Squid, as it
seems, can use NTLM auth to get account info from AD. But what about
pf?
How can I authenticate users from AD to get through pf?
Thanks,
Ari Constancio
Jussi Peltola wrote:
Does the print server have the right gateway configured?
Yeah. Checked that.
Does scrub have any effect (fragments get dropped in some cases if scrub
is off - that bit me once with openvpn)?
I think scrub is on, though -- I'll have to look again.
Wouldn't tcpdump
Il giorno 19/ott/07, alle 17:03, Ari Constancio ha scritto:
How can I authenticate users from AD to get through pf?
I'm unsure I've correclty understood your request.
If you mean How can I make my authpf users authenticate against AD
then use login_ldap from ports (you probably have to do
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
/usr/ports/packages .. i'd like it to be shared too, to install the
same package on various sparc64 for
Hi again,
Sorry if I'm not being clear.
I need this box to be a firewall and a proxy server. Squid, as it
seems, can use NTLM auth to get account info from AD. But what about
pf?
How can I authenticate users from AD to get through pf?
Thanks,
Ari Constancio
On 10/19/07, Mark Rolen [EMAIL
On 10/19/07, Tom Van Looy [EMAIL PROTECTED] wrote:
Richard Toohey wrote:
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
Looks like OpenBSD, FreeBSD, and Mac OS X BSD bits have the same
sort of outcome.
Copy foo to foo only once and quit, I think that's the correct
behaviour. I
On Debian, you also end up with a directory structure consisting of
one new 'foo' directory within the original 'foo' directory, which is
contradicting the message about not being able to copy foo into
itself...
$ mkdir foo
$ touch foo/bar
$ cp -R foo foo
cp: cannot copy a directory, `foo', into
On Fri, 2007-10-19 at 10:35 +0200, Paul de Weerd wrote:
Work is being done to add support. How is this 'preliminary' ? Is it
only not preliminary when the final commit is made that makes WPA
work ?
Well, I think that's correct from a user perspective. The question was
by a user and about WPA
Does the print server have the right gateway configured?
Does scrub have any effect (fragments get dropped in some cases if scrub
is off - that bit me once with openvpn)?
Wouldn't tcpdump tell you more about the packets coming back from it?
I'd probably just use rdr and a TCP proxy on some
On the October 17, at 10:39 (-0700), Bryan Irvine wrote:
[...]
looks like a feature to me. ;)
Agreed, although it does not seem to exists on GNU/Linux since GNU's cp
is different from BSD's. The feature is present on {Net,Open,Free}BSD.
It's not that a big deal, is it? Eventually, the
On 19/10/2007, Edd Barrett [EMAIL PROTECTED] wrote:
On 18/10/2007, Richard Toohey [EMAIL PROTECTED] wrote:
$ mkdir foo
$ cp -R foo foo
Ill try this on a solaris box and a linix box tomorrow at work :P
I beat you to trying it on Linux (Ubuntu Gutsy Gibbon 7.10):
[EMAIL PROTECTED]:~$
On 19.10-15:15, Richard Wilson wrote:
[ ... ]
altq on $ext_if cbq bandwidth 9.1Mb queue { adsl_up, sdsl_up }
altq on $client_if cbq bandwidth 9.1Mb queue { adsl_dn, sdsl_dn }
queue adsl_up bandwidth 256Kb cbq
queue adsl_dn bandwidth 2Mb cbq
is there a reason that these have no child queues
On 10/19/07, Stephen Bosch [EMAIL PROTECTED] wrote:
Other things I've tried:
- moving the Jetdirect to a different port on the same physical switch
- a variety of static and dynamic IPs in the subnet
I also forwarded the external port 9100 to this print server and tried
to access it from a
I have a GENERIC 4.1 box running ntpd as a server that is now part of
au.pool.ntp.org and suddenly (once the world discovered it) the logs
began to fill with entries like:
Oct 19 16:46:05 freya ntpd[12012]: malformed packet received from
121.216.235.111
Oct 19 16:46:19 freya ntpd[12012]: malformed
penguin's behaviour:
elachistos| cp -R foo foo
cp: cannot copy a directory, `foo', into itself, `foo/foo'
:)
2007/10/19, Arnaud Berthomier [EMAIL PROTECTED]:
On the October 17, at 10:39 (-0700), Bryan Irvine wrote:
[...]
looks like a feature to me. ;)
Agreed, although it does not seem
correction: hard links are not allowed on directory's, ...
that being said, comparing inodes seems the best solution
only, don't give an error but copy once
maybe if I have time this weekend I'll try code that behaviour
Anyway, it has worked like that since years, and I guess nobody has had
a
Claudiu Pruna wrote:
hi Stephen,
No offense, but did you check JetDirect's ip settings about the default
gateway ?
None taken. Yes, I did actually check that, and it was correct.
Try an tcpdump on the ethernet interface at site A while trying to print
from site B and check if you see
Re
I'll add to that debug session that it works if i add spud to exports
line and locally mount /usr/ports :
[EMAIL PROTECTED]:~/ #mount -t nfs spud:/usr/ports /tmp/blah/
[EMAIL PROTECTED]:~/ #touch /tmp/blah/test
And tcpdump log on lo0 :
[EMAIL PROTECTED]:~/ #tcpdump -s 65000 -i lo0 port nfsd
75 matches
Mail list logo