Hi,
I am using a machine with only a 500Mhz VIA cpu as NAT/IPSEC gateway
here at the har2009.org camp.
Sometimes the internet is hardly usable, loadavg spikes up to 14.
When investigating I see 80-90% of the CPU time is because of interupts.
Almost all interrupts are for the rl0 and rl1
Op 13 aug 2009, om 11:38 heeft Robert Blacquiere het volgende
geschreven:
Hi Wijnand,
Having fun @ HAR? :)
Hell yeah! ;-)
You could try using polling(4) for the rl cards. This could ease
interrupts a bit.
There is no polling(4).
# man polling
man: no entry for polling in the manual.
Op 11 aug 2009, om 23:49 heeft Jeremy Evans het volgende geschreven:
On Tue, Aug 11, 2009 at 12:35 PM, L. V. Lammertl...@omnitec.net
wrote:
Can seem to find anything in the archives, .. I just finished
setting up a
Rails app under Passenger on a Linux box - pretty nice! We have a
Rails
app
Hi,
I am trying to get ypldap working on a very recent snapshot and I
can't figure out what I am doing wrong.
It seems ypldap is working just fine:
# ypldap -dv
startup [debug mode]
configuration starting
applying configuration
connecting to directories
starting directory update
updates are
Op 7 mei 2009, om 08:58 heeft Jacob Meuser het volgende geschreven:
On Thu, May 07, 2009 at 08:25:59AM +0200, Tom?? Bod??r wrote:
Hi all,
I'm trying to bring sound up in connection with Windows XP trough
rdesktop(1),but still no success.Googling recommend solutions which I
tryied yet and no
Hi,
I upgraded to the April 14 snapshot (coming from a old august
snapshot) and I am not able to get any networking, except when I boot
with bsd.rd.
I managed to get at least the needed service running by doing:
/mnt/usr/sbin/chroot /mnt
sh /etc/rc
But that is not something I want to
Richard Daemon schreef:
OpenBSD 4.3 running in VirtualBox? Anyone have it working properly and
if so, how?
Same problems as reported here: http://www.virtualbox.org/ticket/192
When you enable vt-x it works pretty stable for me, with the 1.5.x
series at least.
I did not try 1.6 with
Jonathan Schleifer schreef:
My RIPE handle had an old e-mail
and my MNT wasn't reachable, so I told them that. They responded me
very quickly and said I should talk to RIPE directly and get the mail
changed.
Hmm, I have that same issue (need it just for my SixXS account), I
should talk to
raven schreef:
I still use an Pentium 166 with 64 Mb with FreeBSD 5.2 that handle 400
email accounts without problem :)
a pic of my beast http://raven.lilik.it/foto/im000785.jpg (it's an old pic)
Doesn't matter that much in case of machine pictures, it get's worse
with people when the pics
Sebastian Reitenbach wrote:
cut
Also a http redirect did not work. I get a timeout in the browser. With
tcpdump I see incoming SYN packets to port 80, but they are not answered:
cut
I am having the same problem with Feb 25 snapshot.
It seems no rdr rules are getting loaded into PF.
Hi Reyk,
thank you for your reply.
Reyk Floeter schreef:
On Mon, Mar 03, 2008 at 10:29:30AM +0100, Wijnand Wiersma wrote:
Sebastian Reitenbach wrote:
cut
Also a http redirect did not work. I get a timeout in the browser. With
tcpdump I see incoming SYN packets to port 80
Armin Wolfermann wrote:
If you need a quick workaround duplicate your global timeout in every
forward statement.
That is indeed a working workaround.
However, it seems that nothing is actually loaded.
pfctl -a relayd -s Tables
returns nothing for example.
So maybe there are more things
I don't think bogons are able to complete the TCP handshake since you
don't know how to route back. Filtering those will not make sure there
are less log messages about ssh logins
Wijnand
On Jan 8, 2008 6:47 PM, Andris [EMAIL PROTECTED] wrote:
But you _do_ recommend _Linux_ even when Torvalds' version of Linux
is not free software! And let me put this perfectly clear to you:
Linus Torvalds develops _Linux_. Period. GNU/Linux means GNU
(http://gnu.org/ packages, free software)
Daniel,
Maybe I am about to say something really stupid, but ok, here I go:
are you testing from one location only? Maybe that host is the
bottleneck itself.
Wijnand
Daniel Ouellet tried to tell me:
Wijnand Wiersma wrote:
Daniel,
Maybe I am about to say something really stupid, but ok, here I go:
are you testing from one location only? Maybe that host is the
bottleneck itself.
Nothing is stupid for me right now. I am looking for any ideas that
can help
Or even more important: how is the song?
Wijnand
2007/4/12, Darrin Chandler [EMAIL PROTECTED]:
On Thu, Apr 12, 2007 at 02:18:28AM +0200, Maxime DERCHE wrote:
A recent thread (04/04/2007) on this list showed that the ralink
chipsets are well supported by OpenBSD.
If I recall, there was also talk about lower signal strength with
ralink. For
2007/3/7, Luca Corti [EMAIL PROTECTED]:
On Wed, 2007-03-07 at 17:40 +0100, Christoph Peus wrote:
BTW: Though XenEnterprise is a commercial product, there's a free
version with limited features available too.
HVM is not good for non-Windows guests. Without accelerated guest
drivers disk and
2007/3/1, Subcommander l0r3zz [EMAIL PROTECTED]:
All,
I'm making a Vmware Virtual Appliance using OpenBSD so one can leverage
goodies like pf, bgpd, ipsec, carp, etc in the
VM universe. What should I use to create the few config web pages (these
can be easily turned off once configuration is
Hi All,
I don't know if many of you already tried to run OpenBSD on Xen as a HVM
guest, but here is a small report of my attempts this evening.
The virtual server runs on a debian sarge with xen packages from the
backports debian repository. Hardware is a dell 2950 with cpu
virtualisation
What release are you running?
I don't have supersede rules in my config but my request line is the
same. It works for a firewall with 3 dsl lines with 2 dhcp interfaces.
I had it working on 3.9 and 4.0.
Regards,
Wijnand
2006/11/6, atstake atstake [EMAIL PROTECTED]:
I am running OBSD 4.0-release (i386) on Toshiba Satellite A30.
I started apmd and here's my ps output
root 10023 0.0 0.1 240 316 ?? Ss 5:57AM0:00.00 apmd
But when I do apm it says
Battery state: unknown, 0% remaining, unknown
2006/7/2, Tomasz Zielinski [EMAIL PROTECTED]:
Hello,
Zophie is patch that contains new security features for OpenBSD 3.9. BSD
license. I have not tested it personaly, but probably it's worth to analyze it
and maybe even incorporate. More info: http://www.0penbsd.com/zophie.html,
2006/10/24, Marc Espie [EMAIL PROTECTED]:
There are two perl frameworks, for instance. And ruby-on-rail is known
to rely on java.
Ruby on Rails has AJAX features, it includes some javascript libraries
(if desired).
It does not rely on java..
Wijnand
Congrats OpenBSD.
Nice, on Opencon they are still celebrating 10 years of OpenBSD:
http://www.opencon.org/program.php
Does this mean we get two parties?
Hi all,
I am currently setting up a firewall with multiple adsl lines.
I have 2 interfaces configured now and the box can reach the internet.
When I ping the second adsl line (without the default route) the
packets go back via the first line.
I thought I could solve this with:
pass in quick
Sorry for the noise, it was:
pass in quick on $CAMBRIUMIF reply-to ( $CAMBRIUMIF $CAMBRIUMGW ) keep state
Wijnand
Good job Theo, now we as a community should start spread the word again.
Thank you for being the leader of Openness!
Wijnand
2006/9/8, Will Maier [EMAIL PROTECTED]:
On Fri, Sep 08, 2006 at 11:08:49PM +0200, openbsd misc wrote:
I wasn't able to figure out if it is possible to run openbsd
as xen guest system. Does anyone know?
Short answer: not yet, really.
Longer answer: people are working on it.
The blog post
Hi all,
I am getting sick and tired of all the crap I'm receiving so I decided
to do some spamfiltering on my OpenBSD mailserver. I checked the ports
and see several nice milters so I start installing. Later I find out
that I need to recompile sendmail with milter support, something I
don't like
2006/8/5, Matthias Kilian [EMAIL PROTECTED]:
On Sat, Aug 05, 2006 at 08:22:47PM +0200, Wijnand Wiersma wrote:
What are main the reasons this is not enabled by default? Most
mailservers could use some filtering options by default.
It's enabled for more than two years.
Thanks for your answer
2006/7/29, andrew fresh [EMAIL PROTECTED]:
One thing I ran into is that bioctl needs to run as root to get access
to /dev/bio, even for read only access. Is there a way to query bioctl
without needing root?
Well, I think you only need the status of the drives and that is
availlable using
2006/7/17, Han Boetes [EMAIL PROTECTED]:
Tim Donahue wrote:
I swear, spam keeps getting wierder and wierder
I know a very peculiar fellow named Bob, his health is failing,
but I don't think it's that bad.
It would be better if Blobs health would be failing.
2006/6/13, Hank Cohen [EMAIL PROTECTED]:
Folks,
There has been some discussion of late on this list about Hifn's policy
with respect to releasing documentation to the general public. That
discussion lead to a great deal of uninformed speculation and
unflattering statement's about Hifn's
Hi all,
for a monitoring system I am reading the hw.sensors sysctls using
sysctl(3). To know what that sensor is trying to say to me I check
sensor.desc to see what that sensor is measuring.
lm0 tells me:
hw.sensors.8=lm0, Temp1, temp, 33.00 degC / 91.40 degF
hw.sensors.9=lm0, Temp2, temp,
2006/6/5, Theo de Raadt [EMAIL PROTECTED]:
Is reading the sensor.desc the right way to do this, and if so, is the
information in sensor.desc consistent across all drivers?
When it comes to i2c devices, we have no idea what is a particular pin
on the measuring chip is wired to. There is just
2006/6/5, Theo de Raadt [EMAIL PROTECTED]:
Ok, thank you.
I was just wondering about the strings placed in sensors.desc. If they
are consistent among all drivers I can use that reliably.
We are trying to be somewhat consistant. But don't rely on that. You
can't. And you will see what we
On 5/8/06, Lars Hansson [EMAIL PROTECTED] wrote:
On Sunday 07 May 2006 18:41, Jonathan Glaschke wrote:
If administrators are so dump to use an emtpy password on internet
servers, it wouldn't be usefull to force a password.
That's not necessarily dumb. If your location is physically secure and
Maybe the installer can stay as is but record the components in de
base system as packages in /var/db/pkg so upgrades later on can be
performed with pkg_add, in smaller portions.
But, I have nothing to complain about the current situation, it works great now.
Doing this, and doing it right will
On 4/5/06, Henning Brauer [EMAIL PROTECTED] wrote:
I'm sick and tired of this OpenBSD doesn't perform well FUD. It is
nothing but FUD or over-generalization.
Well, I don't entirely agree.
At some tasks OpenBSD feels sluggish, X performs much slower for
example then on *sigh* Linux *sigh*.
But
On 4/3/06, Josh Caster [EMAIL PROTECTED] wrote:
That is not a . in the sense of the current directory. .profile is a hidden
directory and the . prefix denotes this...
What did you smoke?
.profile is not a directory and that line DOES add . to your PATH.
And I always learned that was a unsafe
On 3/26/06, A Rossi [EMAIL PROTECTED] wrote:
I've been comparing FreeBSD with OpenBSD as of late for the role of web
server. I generally prefer OpenBSD because I find it easier to use (I
like finding the configs for my installed applications in /etc not
/usr/local/etc among other things)
On 3/24/06, Gabriel George POPA [EMAIL PROTECTED] wrote:
It seems to me quite a dangerous discussion. Why not security updates
for money? SuSE has made a lot of money...
I know you already discussed this, but this feature will make OpenBSD
VERY popular.
No, that would decrease popularity.
On 3/12/06, Ramiro Aceves [EMAIL PROTECTED] wrote:
GNOME-PANEL. It crashes very often, so GNOME is not usable.
I had the same problem on 3.8 too, I was hoping this was fixed in 3.9.
I am sure it is not a hardware error, maybe the malloc changes have
something to do with it?
Wijnand
On 3/12/06, Michael Erdely [EMAIL PROTECTED] wrote:
On 3/12/06, Wijnand Wiersma [EMAIL PROTECTED] wrote:
On 3/12/06, Michael Erdely [EMAIL PROTECTED] wrote:
Gnome is too bloated anyway... try out icewm. Much better.
I don't care what you think. You almost sound like some linux kiddo
On 3/12/06, Michael Erdely [EMAIL PROTECTED] wrote:
On 3/12/06, Greg Thomas [EMAIL PROTECTED] wrote:
On 3/12/06, Michael Erdely [EMAIL PROTECTED] wrote:
Gnome is too bloated anyway... try out icewm. Much better.
If we're getting into religious wars here WindowMaker works great for me.
On 3/12/06, Tobias Weingartner [EMAIL PROTECTED] wrote:
On Sunday, March 12, Wijnand Wiersma wrote:
I have a problem with gnome and the gnome guys should just fix it.
So, go bug the gnome guys.
Yes, I know.
I didn't bug the OpenBSD guys about this, it is gnome's fault.
Wijnand
On 3/10/06, Diogin [EMAIL PROTECTED] wrote:
Hello, every one:
I am sorry to ask thus stupid question. I have read the FAQ, but I
couldn't find any way to delete apache totally.
Now I want to use apache 2.0.55, but I'm worry about conflict.
Can some one help me? Thans very much!
You
On 3/10/06, Theo de Raadt [EMAIL PROTECTED] wrote:
But financially we are under strain, and it is not letting us grow any
of our bigger plans.
It sounds like you really have big plans. Maybe it is a good idea to
tell about them, maybe that will make the big companies interested in
On 3/10/06, Ted Unangst [EMAIL PROTECTED] wrote:
On 3/10/06, Wijnand Wiersma [EMAIL PROTECTED] wrote:
Maybe I think too good about people/companies, but maybe if you want
to create and a company really likes that they maybe sponsor. If
you have big plans and need money
I am using a openbrick-e for years now as a home firewall, runs smooth
with openbsd.
http://shopping.hacom.net/catalog/index.php?cPath=22_45
--
No virus was found in this outgoing message as I didn't bother looking.
This is not an automated signature. I type this in to the bottom of every
2006/2/3, Joachim Schipper [EMAIL PROTECTED]:
On Fri, Feb 03, 2006 at 04:37:12PM -0500, Peter Fraser wrote:
Since I believe that everyone agrees that ftp is
horrible, particularly for firewalls. How come
there is no equivalent to an anonymous sftp.
Isn't there?
Anonymous ftp is just
While we are at this, are there any small devices like this that can
firewall at 1000mbit?
I am looking for some nice options for transparant bridges but I don't
like to add 1u servers for this in the racks.
Wijnand
--
No virus was found in this outgoing message as I didn't bother looking.
This
2006/1/28, Anon Y. Mous [EMAIL PROTECTED]:
How do I restore the default permissions for /etc
$ ls -ald /etc/
drwxr-xr-x 22 root wheel 2560 Dec 12 13:58 /etc/
And I don't think this question needed a dmesg ;-)
--
No virus was found in this outgoing message as I didn't bother looking.
This
2005/10/22, Jurvis LaSalle [EMAIL PROTECTED]:
snip
I totally agree!
2005/10/18, Jared Solomon [EMAIL PROTECTED]:
Happy Birthday, Openbsd.
When is someone going to post a Humppa version of Happy Birthday?
Humppa Birthday to you!
Congratulations Theo and the rest of the gang. You guys do a fine job.
Wijnand
2005/10/15, [EMAIL PROTECTED] [EMAIL PROTECTED]:
1. Continue using scponly but with chroot and then linking the directories
inside their home directories.
I thought scponly has chroot functionality builtin.
I have seen this too, but that was a long time ago, I never actually
run nmap anymore :-)
Maybe it has something to do with some nics?
Wijnand
Theo,
this is cool stuff!
Very elegant solution. In Linux you have to hope your vendor has some
kind of management tool, and if there is one, you have to hope it
works.
I hope more devices will be supported soon.
Wijnand
I am using it on OpenBSD. I really like it, but performance is poor.
Wijnand
2005/8/23, imEnsion [EMAIL PROTECTED]:
snip
I wonder what the theme for this release will be...
/snip
hopefully not something political *cough* the 3.4 release
https://https.openbsd.org/images/poster10.jpg
I really really liked that one.
Chroot apache?
I never tried it in OpenBSD, but usually when I already have logged in
graphically I can go to a console, type X :1 -query localhost and get
another xdm login screen.
Wijnand
2005/8/3, Matthias Kilian [EMAIL PROTECTED]:
On Wed, Aug 03, 2005 at 11:01:48PM +0200, Wijnand Wiersma wrote:
The interview is at http://nedbsd.nl/modules/static/page/JorisVinkInterview
| Anything you want to add to this interview?
|
| Humppa!
I wonder wether the 3.8 song will be Humppa
Hi List,
In my network I use a adsl line with 8Mbit down, and 512 Kbit up.
Therefore the www.benzedrine.cx/ackpri.html trick is handy.
But I also have split my network into two different sections: a
UNIXnet, and a Windowsnet.
I want the UNIXnet to have 60% of the availlable bandwidth to the
2005/6/16, Jasper Lievisse Adriaanse [EMAIL PROTECTED]:
Eric Raymond gave an interview on MyFreeBSD.com about the GPL and the BSD
licenses. Though on MyFreeBSD.com, it ain't a FreeBSD specific article.
Nothing to see there, are you sure about the domainname?
Could you provide us with a direct
This morning I noticed the exact same problems.
Funny, I was trying to install Net::Jabber too. But all modules will
fail in the exact same way.
Wijnand
2005/6/3, Bob Beck [EMAIL PROTECTED]:
For example, let's say you have a particular ethernet card,
for which there is support in say, linux, or netbsd, but not in
OpenBSD. Find a card for which there is support in both. Now read
the source code for both device drivers, and compare how
I think OpenCVS will deal with several limitations of CVS. I think the
OpenBSD folks are the right persons to deal with this.
Wijnand
2005/5/25, [EMAIL PROTECTED] [EMAIL PROTECTED]:
[installed pSQL from ports so: aggro offtopic]
That's nice for MySQL..
I'm still waiting until dataloss will be accapted as DoS-Case so that
the PostgreSQL would be updated up to 7.4.8 (but a update to 8.0.3 would
be better anyway)
It seems that increasing openfiles-cur to infinity works the best in
this situation, so I guess this is solved.
Gerardo, I will try your updated port soon.
Regards,
Wijnand
2005/5/24, Gerardo Santana Gsmez Garrido [EMAIL PROTECTED]:
Well, never really looked at it. But I was dissapointed 2.0s4 was in ports.
My fault. I had been away from the computer for a while for strong
reasons, ...hard times.
We all forgive you.
And that port only had mysql support and
2005/5/23, jared r r spiegel [EMAIL PROTECTED]:
On Sun, May 22, 2005 at 06:00:14PM +0200, Wijnand Wiersma wrote:
It really hurts my server performance every 15 minutes or so, and my
statistics aren't very good either:
just a shot in the dark, but are you using apmd?
Nope
It just happened again, so I was wrong about the nic.
Here is a part of the ktrace of jabberd at a busy moment.
Not much to see, this scrolls over my screen very fast.
9519 jabberd RET select 0
9519 jabberd CALL sigprocmask(0x3,0xfffefeff)
9519 jabberd RET sigprocmask
Hi Stefan,
thanks for your reply.
2005/5/23, Stefan Kell [EMAIL PROTECTED]:
[...snip...]
9519 jabberd CALL
select(0x1b,0x3c032d10,0x3c032c90,0x3c032c10,0x3c032a58)
9519 jabberd RET select 0
[...snip...]
9519 jabberd CALL read(0x4,0x3c032d90,0x80)
9519 jabberd
2005/5/23, Stefan Kell [EMAIL PROTECTED]:
Should I raise the openfiles-cur for jabber?
Don't know, I am not the specialist for jabber :-(
Well, just raised it to test.
pth-1.4.1 from the 3.7-RELEASE ports.
ports or packages?
Ports.
I have looked at the pth-code and it seems to me that
I use DBmail with postgresql, and I like it :-)
Too bad sieve is not supported yet, I also like sieve.
Wijnand
Hi all,
this maybe offtopic, but I am almost desparate.
Last night I migrated the nedbsd.nl 3.5 server to a other machine running 3.7.
The specs are the same, except for the network card. On 3.5 I used
fxp0, now I use xl0.
Everything works fine (well, I do miss nullfs but use loopback nfs as
a
2005/5/22, Frank Denis (Jedi/Sector One) [EMAIL PROTECTED]:
On Sun, May 22, 2005 at 05:49:04PM +0200, Wijnand Wiersma wrote:
I use DBmail with postgresql, and I like it :-)
Too bad sieve is not supported yet, I also like sieve.
DBMail supports sieve, but this is still experimental
Lots of mirrors are missing the same files!
Wijnand
81 matches
Mail list logo