Re: Motherboard Recommendation
Francisco Valladolid wrote: Abit A8XV Pro work fine. I assume you intended to say Abit A8VX Pro. It's a minor nit, until you type it into Google. ;-) On 10/11/05, Simon Morgan [EMAIL PROTECTED] wrote: Hi, I'm interested in building a machine for use as an OpenBSD workstation and would appreciate any recommendations on AMD64 motherboards that are well supported. I assume there are people on this list using OpenBSD as their primary OS and would be interested to hear what you're using. This would be a damned sight easier if manufacturers didn't insist on including everything but the kitchen sink on-board and failing to document which chipsets they're using. Can you even buy desktop motherboards that don't come with on-board sound and network these days? Any advice is appreciated. Simon -- Half Moon tonight. (At least it's better than no Moon at all.) -- --- BSD - Unix simplicity. Francisco Valladolid Hdez. [EMAIL PROTECTED]
Re: Motherboard Recommendation
On Fri, Oct 14, 2005 at 01:25:59PM -0500, Francisco Valladolid wrote: Abit A8XV Pro work fine. Thanks to everyone for their recommendations. I've had 3 for the A8V series of motherboards so I went and bought one. Although the installation boots fine, when it comes time to copy files across I get a bunch of: cd0(atapiscsi0:0:0): Check Condition (error 0x70) on opcode 0x28 SENSE KEY: Hardware Error ASC/ASCQ: ASC 0x08 ASCQ 0x03 errors. I don't suppose anybody has any ideas? I'm assuming it's not the IDE chipset which only leaves the drive itself which has worked perfectly in all other situations. -- A mathematician named Hall Has a hexahedronical ball, And the cube of its weight Times his pecker's, plus eight Is his phone number -- give him a call.
Re: pf tables and interface groups
* Henning Brauer [EMAIL PROTECTED] [2005-10-12 17:17]: no, I managed to miss implementing the static expansion, the way more complicated dynamic expansion for interface groups works fine. I'll add the static one asap. so here's the diff for that. disclaimer: I hacked that at a conference, beeing dead tired, careful reading testing appreciated. Index: pfctl_parser.c === RCS file: /cvs/src/sbin/pfctl/pfctl_parser.c,v retrieving revision 1.220 diff -u -p -r1.220 pfctl_parser.c --- pfctl_parser.c 13 Oct 2005 13:27:06 - 1.220 +++ pfctl_parser.c 13 Oct 2005 14:36:35 - @@ -66,6 +66,7 @@ void print_fromto(struct pf_rule_addr struct pf_rule_addr *, u_int8_t, u_int8_t, int); int ifa_skip_if(const char *filter, struct node_host *p); +struct node_host *ifa_grouplookup(const char *, int); struct node_host *host_if(const char *, int); struct node_host *host_v4(const char *, int); struct node_host *host_v6(const char *, int); @@ -1165,10 +1166,28 @@ struct node_host * ifa_exists(const char *ifa_name) { struct node_host*n; + struct ifgroupreq ifgr; + int s; if (iftab == NULL) ifa_load(); + /* check wether this is a group */ + if ((s = socket(AF_INET, SOCK_DGRAM, 0)) == -1) + err(1, socket); + bzero(ifgr, sizeof(ifgr)); + strlcpy(ifgr.ifgr_name, ifa_name, sizeof(ifgr.ifgr_name)); + if (ioctl(s, SIOCGIFGMEMB, (caddr_t)ifgr) == 0) { + /* fake a node_host */ + if ((n = calloc(1, sizeof(*n))) == NULL) + err(1, calloc); + if ((n-ifname = strdup(ifa_name)) == NULL) + err(1, strdup); + close(s); + return (n); + } + close(s); + for (n = iftab; n; n = n-next) { if (n-af == AF_LINK !strncmp(n-ifname, ifa_name, IFNAMSIZ)) return (n); @@ -1178,11 +1197,56 @@ ifa_exists(const char *ifa_name) } struct node_host * +ifa_grouplookup(const char *ifa_name, int flags) +{ + struct ifg_req *ifg; + struct ifgroupreqifgr; + int s, len; + struct node_host*n, *h = NULL, *hn; + + if ((s = socket(AF_INET, SOCK_DGRAM, 0)) == -1) + err(1, socket); + bzero(ifgr, sizeof(ifgr)); + strlcpy(ifgr.ifgr_name, ifa_name, sizeof(ifgr.ifgr_name)); + if (ioctl(s, SIOCGIFGMEMB, (caddr_t)ifgr) == -1) { + close(s); + return (NULL); + } + + len = ifgr.ifgr_len; + if ((ifgr.ifgr_groups = calloc(1, len)) == NULL) + err(1, calloc); + if (ioctl(s, SIOCGIFGMEMB, (caddr_t)ifgr) == -1) + err(1, SIOCGIFGMEMB); + + for (ifg = ifgr.ifgr_groups; ifg len = sizeof(struct ifg_req); + ifg++) { + len -= sizeof(struct ifg_req); + n = ifa_lookup(ifg-ifgrq_member, flags); + if (h == NULL) + h = n; + else { + for (hn = h; hn-next != NULL; hn = hn-next) + ; /* nothing */ + hn-next = n; + n-tail = hn; + } + } + free(ifgr.ifgr_groups); + close(s); + + return (h); +} + +struct node_host * ifa_lookup(const char *ifa_name, int flags) { struct node_host*p = NULL, *h = NULL, *n = NULL; int got4 = 0, got6 = 0; const char *last_if = NULL; + + if ((h = ifa_grouplookup(ifa_name, flags)) != NULL) + return (h); if (!strncmp(ifa_name, self, IFNAMSIZ)) ifa_name = NULL;
Re: Motherboard Recommendation
On Sat, Oct 15, 2005 at 10:11:08AM +0100, Simon Morgan wrote: cd0(atapiscsi0:0:0): Check Condition (error 0x70) on opcode 0x28 SENSE KEY: Hardware Error ASC/ASCQ: ASC 0x08 ASCQ 0x03 Fixed by switching normal IDE cable for 80-conductor Ultra DMA cable. -- Weinberg's Principle: An expert is a person who avoids the small errors while sweeping on to the grand fallacy.
scponly vs. vsftpd
Hi, I am currently working with one of our file servers. Users need access to the server from where they live and so far I have been using sshd with scponly. I have used scponly because I don't want them to have a shell. The problem with the setup is that not al the users may access all the files. So far it has been handled with chmod to the different directories but this solution isn't working well. I am then currently looking at two solutions. 1. Continue using scponly but with chroot and then linking the directories inside their home directories. 2. Using vsftpd which support ssl both on login and on the data transfer (prefered), and then using the buildin support for jailing users. Then linking the directories inside their home directories. I am unsure which solution is the best, and if there perhaps is another even better solution. Advice and experiences is needed :-) Best regards, Rico.
route problem
Hello, I have a route problem in setting up my home network. Here is the layout of it: internet | obsd3.6 (fw) | 192.168.1.254 | switch (wired) | | 192.168.1.230 (vr0 wired) | obsd-3.8 | | 192.168.2.1 (ral0 wireless) | clients (Xp) My problem is: the XP can ssh to the obsd-3.8 through wirelss. However it cannot access the internet. Thanks clarence ifconfig at 192.168.1.230 = lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33224 groups: lo inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6 ral0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500 lladdr 00:12:17:68:80:74 media: IEEE802.11 autoselect hostap status: active ieee80211: nwid obsd-group chan 6 bssid 00:12:17:68:80:74 100dBm inet 192.168.2.1 netmask 0xff00 broadcast 192.168.2.255 inet6 fe80::212:17ff:fe68:8074%ral0 prefixlen 64 scopeid 0x1 vr0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500 lladdr 00:0d:87:b4:63:8f groups: egress media: Ethernet autoselect (100baseTX full-duplex) status: active inet 192.168.1.230 netmask 0xff00 broadcast 192.168.1.255 inet6 fe80::20d:87ff:feb4:638f%vr0 prefixlen 64 scopeid 0x2 pflog0: flags=0 mtu 33224 pfsync0: flags=0 mtu 1348 enc0: flags=0 mtu 1536 bridge0: flags=41UP,RUNNING mtu 1500 groups: bridge ___ 7Q'Y.I,(l7s email 3q*!H $U8| Yahoo! Messenger http://messenger.yahoo.com.hk
Re: Happy Birthday OpenBSD
Happy dirthday OpenBSD ! Do someting in Czech Republic and I'll be more that glad to pay you a beer (or two :o) Petr R. On 10/14/05, Khalid Ahsein [EMAIL PROTECTED] wrote: HAPPY BIRTHDAY OPENBSD \ ^__^ \ (oo)\___ (__)\ )\/\ ||w | || || 10`s years :) -- Security is decided by quality -- Theo de Raadt
Re: trouble with file system
Ok, I tried to check the file system from single user mode. FSCK said that all mount points had been already marked as clean. But when I boot OS normally I show same problem as before. - Original Message - From: Otto Moerbeek [EMAIL PROTECTED] To: MK [EMAIL PROTECTED] Cc: misc@openbsd.org Sent: Wednesday, October 12, 2005 12:00 PM Subject: Re: trouble with file system On Wed, 12 Oct 2005, MK wrote: This situation is wired for me and I do not understand it. Can somebody help? Thanks a lot Checking a fs while mounted is not very handy, since inconsistencies will be reported: the fs is being modified while fsck runs. fsck is trying to tell you that by reverting to NOWRITE operation. -Otto
Re: route problem
man Chan wrote: Hello, I have a route problem in setting up my home network. Here is the layout of it: internet | obsd3.6 (fw) | 192.168.1.254 | switch (wired) | | 192.168.1.230 (vr0 wired) | obsd-3.8 | | 192.168.2.1 (ral0 wireless) | clients (Xp) My problem is: the XP can ssh to the obsd-3.8 through wirelss. However it cannot access the internet. Thanks clarence ifconfig at 192.168.1.230 = lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33224 groups: lo inet 127.0.0.1 netmask 0xff00 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6 ral0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500 lladdr 00:12:17:68:80:74 media: IEEE802.11 autoselect hostap status: active ieee80211: nwid obsd-group chan 6 bssid 00:12:17:68:80:74 100dBm inet 192.168.2.1 netmask 0xff00 broadcast 192.168.2.255 inet6 fe80::212:17ff:fe68:8074%ral0 prefixlen 64 scopeid 0x1 vr0: flags=8943UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST mtu 1500 lladdr 00:0d:87:b4:63:8f groups: egress media: Ethernet autoselect (100baseTX full-duplex) status: active inet 192.168.1.230 netmask 0xff00 broadcast 192.168.1.255 inet6 fe80::20d:87ff:feb4:638f%vr0 prefixlen 64 scopeid 0x2 pflog0: flags=0 mtu 33224 pfsync0: flags=0 mtu 1348 enc0: flags=0 mtu 1536 bridge0: flags=41UP,RUNNING mtu 1500 groups: bridge ___ 7Q'Y.I,(l7s email 3q*!H $U8| Yahoo! Messenger http://messenger.yahoo.com.hk Hi, do you have ip forwarding enabled? See man afterboot(8) Check routing table section for how to do it. BR Marcus
Re: route problem
On 10/15/05, man Chan [EMAIL PROTECTED] wrote: Hello, I have a route problem in setting up my home network. Here is the layout of it: internet | obsd3.6 (fw) | 192.168.1.254 http://192.168.1.254 | switch (wired) | | 192.168.1.230 http://192.168.1.230 (vr0 wired) | obsd-3.8 | | 192.168.2.1 http://192.168.2.1 (ral0 wireless) | clients (Xp) My problem is: the XP can ssh to the obsd-3.8 through wirelss. However it cannot access the internet. As I mentioned before you probably don't have a route on your 3.6 box to your 192.168.2.0 http://192.168.2.0 network. And do your pf rules on the 3.6 box allow the 192.168.2.0 http://192.168.2.0 network to reach the internet? Greg
Re: route problem
On 10/15/05, Marcus Lindemann [EMAIL PROTECTED] wrote: man Chan wrote: Hello, I have a route problem in setting up my home network. Here is the layout of it: internet | obsd3.6 (fw) | 192.168.1.254 http://192.168.1.254 | switch (wired) | | 192.168.1.230 http://192.168.1.230 (vr0 wired) | obsd-3.8 | | 192.168.2.1 http://192.168.2.1 (ral0 wireless) | clients (Xp) My problem is: the XP can ssh to the obsd-3.8 through wirelss. However it cannot access the internet. Thanks clarence Hi, do you have ip forwarding enabled? See man afterboot(8) Check routing table section for how to do it. As per a previous message of his ip forwarding is enabled. Greg
Re: trouble with file system
On Sat, 15 Oct 2005, MK wrote: Ok, I tried to check the file system from single user mode. FSCK said that all mount points had been already marked as clean. But when I boot OS normally I show same problem as before. Please do not top post. Maybe I did not make myself clear. You should net fsck a file system while it is mounted. It will produce unreliable results. -Otto - Original Message - From: Otto Moerbeek [EMAIL PROTECTED] To: MK [EMAIL PROTECTED] Cc: misc@openbsd.org Sent: Wednesday, October 12, 2005 12:00 PM Subject: Re: trouble with file system On Wed, 12 Oct 2005, MK wrote: This situation is wired for me and I do not understand it. Can somebody help? Thanks a lot Checking a fs while mounted is not very handy, since inconsistencies will be reported: the fs is being modified while fsck runs. fsck is trying to tell you that by reverting to NOWRITE operation. -Otto
cdio playback stops
Hello, Just have a possible bug to report and want to make sure before sending it. I am trying to play an audio cd with cdio and it stops after a little while. The cd plays fine with xcd. dmesg | grep cd0 cd0 at scsibus0 targ 0 lun 0: HL-DT-ST, RW/DVD GCC-4120B, 2.02 SCSI0 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, DMA mode 2 I have turned debug on in cdio but I'm not sure where to read that info. Jeff
回覆: Re: route problem
--- Greg Thomas [EMAIL PROTECTED] ;!!G On 10/15/05, man Chan [EMAIL PROTECTED] wrote: Hello, I have a route problem in setting up my home network. Here is the layout of it: internet | obsd3.6 (fw) | 192.168.1.254 http://192.168.1.254 | switch (wired) | | 192.168.1.230 http://192.168.1.230 (vr0 wired) | obsd-3.8 | | 192.168.2.1 http://192.168.2.1 (ral0 wireless) | clients (Xp) My problem is: the XP can ssh to the obsd-3.8 through wirelss. However it cannot access the internet. As I mentioned before you probably don't have a route on your 3.6 box to your 192.168.2.0 http://192.168.2.0 network. And do your pf rules on the 3.6 box allow the 192.168.2.0 http://192.168.2.0 network to reach the internet? Greg Thanks Greg. I finally fixed all the problems. Since I added another AP machine (192.168.3.1) for testing purpose, I may mesh up something. The next step for my case is to make the wireless channel excrypted. Any pointers ? Thanks. Clarence ___ 7Q'Y.I,(l7s email 3q*!H $U8| Yahoo! Messenger http://messenger.yahoo.com.hk ___ 7Q'Y.I,(l7s email 3q*!H $U8| Yahoo! Messenger http://messenger.yahoo.com.hk
10 years T-shirt
Hi, is there a new t-shirt planned for the 10 years anniversary ? What about a t-shirt with a slogan like : 10 years of loyalty Puffy goes from loyalty to loyalty 10 years devoted to quality ... any fine slogan like those are already in use. (this slogan generator could help ? http://thesurrealist.co.uk/slogan.cgi) Its price could be greater than the others, to make t-shirts more profitable.
wi(4) or wicontrol broken
I upgraded to OPENBSD_3_8_BASE (after first upgrading to the snapshot from 10/14) and wicontrol no longer seems to work: # wicontrol wi0 wicontrol: SIOCGWAVELAN (0xfd0b): Invalid argument I notice that there was one change to sbin/wicontrol/wicontrol.c and a few changes to sys/dev/ic/if_wi.c but I'm not sure which of these is the cause of the problem. Any ideas?