Re: Sudo

[NetNeanderthal]

On 2/11/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
 Tobias Weingartner wrote:

 I'm outa my depth here, but seems that any implementation
 of something like sudo that belongs to the shell
 is an open invitation to security disasters.

It takes a deliberate act to enable sudo for users in a default
install; as such, this poses a security threat only to the
[un|mis]informed.

If you feel the default 300 second timeout is too long, or is
generally unacceptable, you might consider the following in your
/etc/sudoers file:

# Defaults specification
Defaults  timestamp_timeout = 0

This policy will affect sudo users system-wide.  You should use
/usr/sbin/visudo to edit /etc/sudoers until you have a solid working
knowledge of its syntax.

Re: Sun 220R, cdrom problem

[Brad]

Hi,

I just thought I should point out the fact that some
Sun systems need firmware updates. The 220R specifically
needed an update on the system that was used for the
initial OpenBSD/sparc64 port, I do not know the details
as to why that was necessary.

Unfortunately with the change in licensing of Solaris and
the way Sun supports Solaris and their systems you can no
longer download these updates from the SunSolve FTP site
without a support contract. I do not know if its possible
to find these updates elsewhere.

From INSTALL.sparc64...


Updating your firmware:
---

If OpenBSD does not boot or install properly on your machine, it might need
a firmware update.

Updating your firmware is a dangerous operation which may damage your
hardware. Be sure to carefully follow these instructions and, if in doubt,
please don't do this.

You will need to have a working operating system installed on your machine,
in order to perform the update.  If this is not the case, you might be able
to boot the flash updater software via network, but this has not been tested
and is not supported by Sun.

The firmware update is delivered as a specific patch, depending on your
machine:

Machine Patch number
Blade 100/150   79
Enterprise 220R 106455
Enterprise 250  106503
Enterprise 420R 109082
Enterprise 450  106122
Enterprise 3x00/4x00/5x00/6x00  103346
Netra T1 200111991
Netra X1111952
Ultra 1 104881
Ultra 1E104288
Ultra 2 104169
Ultra 5/10  106121
Ultra 30105930
Ultra 60106455
Ultra 80109082

Get the patch installation notes from SunSolve, as
ftp://sunsolve.sun.com/pub/patches/104169.readme
(replace 104169 with the correct patch number).
Check the Patch-ID# line in this readme file to get the patch filename, for
example 104169-08. The patch filename will then be either
ftp://sunsolve.sun.com/pub/patches/104169-08.tar.Z
or
ftp://sunsolve.sun.com/pub/patches/104169-08.zip

Follow the patch installation notes very carefully. You will need to open
your machine in order to apply this patch.

Re: MIPS CPU

[Dunceor .]

Yes as he says it's not supported.
I looked at that board a few months back also and to get it to work you need
to port
mips32 (there are some from NetBSD that might work) and then get the board
to work. It's ALOT of work.

It's a nice board though.

// Kalle

On 2/12/06, Alexander Yurchenko [EMAIL PROTECTED] wrote:

 On Sat, Feb 11, 2006 at 01:00:30PM +0200, Edgars wrote:
  I just want to know, is that MIPS cpu supported by openbsd, didn't find
 info on hw pages.
  http://www.routerboard.com/rb500.html

 nope. and since it's mips32 i doubt it will be supported.

 
  **
  Scanned by  MailScan Anti-Virus and Content Security Software.
  Visit http://www.mwti.net for more info on eScan and MailScan.
  **

 --
Alexander Yurchenko

OpenBGPd-current IPv6

[Sylvain Coutant]

Hi all,

I upgraded yesterday to OpenBSD-current and re-ran IPv6 tests.

Now, routes are not installed into the kernel. My config :

#bgpctl sh int
...
vlan97 ok UP Ethernet, active, 100 MBit/s
...


#bgpctl sh nexthop
...
2001:xxx:21 valid
...

This perhaps shows the problem : for other nexthops, the state of the interface 
is printed after valid, I'm not sure it should be the case here. And when 
Updates are received, it turns into :

send_rtmsg: action 1, prefix 2001:398::/32: Network is unreachable


Currently, no IPv6 routes are installed to the kernel while more than 600 are 
received.

BTW, there is a zebra daemon running. It is not problem for IPv4, could it be 
for IPv6 ?


BR,

--
Sylvain COUTANT

ADVISEO
http://www.adviseo.fr/
http://www.open-sp.fr/

OpenBGPd-current memory

[Sylvain Coutant]

Hi,

I upgraded to OpenBGPd-current (09/2/2006 snapshot) and didn't noticed 
yesterday about the memory usage. But, checking the rde process memory this 
morning gave surprising results :

Box 1 : OpnBSD-current, 1 IPv4 full mesh eBGP, 1 IPv6 eBGP (681 routes), 1 iBGP 
to Box 2, and 10-12 peers (2 or 3 routes per peer) : 169 MB. Before the 
upgrade, I was running at something like 60-80 if I remember it well.

Box 2 : OpnBSD 3.8, 1 IPv4 full mesh eBGP, 1 iBGP to Box 1, 1 peer (3 routes) : 
57 MB. Stable.


On Box 1, I play a little with communities : each route is tagged with 2 to 6 
communities attributes ;-) Any guess what cause such a high memory load on my 
first box ?


BR,

--
Sylvain COUTANT

ADVISEO
http://www.adviseo.fr/
http://www.open-sp.fr/

Re: OpenBSD USB question

[Danny]

Thank you for all the replies, 
I appreciate all the cooments and the time you guys take to enlighten me
on my question.

Everyone subscribed to this mailing list can give themselves a pat on
the
back from me. You guys really showed your maturity and willingness
to expand and make OpenBSD even greater than what it presently is.

Thank you very much.

(That said, please do not stop your suggestions on my problem :-) )

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of jared r r spiegel
Sent: Sunday, February 12, 2006 9:07 AM
To: misc@openbsd.org
Subject: Re: OpenBSD USB question


On Sat, Feb 11, 2006 at 08:07:30PM +0200, Danny wrote:
 
 I would like to know if OpenBSD will be able to recognise and access 
 the SanDisk ImageMateR 12-in-1 Reader/Writer SDDR-89.
 
 More info on this piece of hardware can be found here: 
 http://www.sandisk.com/Products/Item(1145)-SDDR-89-SanDisk_ImageMate_1
 2i
 n1_ReaderWriter.aspx

  i have that one.  actually shows up as a '14-in-1', iirc.
  on the PC i tried it on, which is abit KW7 motherboard, it worked.

  i used the compact flash socket for soekris stuff
  and the little SD socket to copy pictures out of the digicam's 
  memory card

-- 

  jared

[ openbsd 3.9-beta GENERIC ( jan 30 ) // i386 ]

Re: OpenBGPd-current memory

[Claudio Jeker]

On Sun, Feb 12, 2006 at 10:55:23AM +0100, Sylvain Coutant wrote:
 Hi,
 
 I upgraded to OpenBGPd-current (09/2/2006 snapshot) and didn't noticed
 yesterday about the memory usage. But, checking the rde process memory
 this morning gave surprising results :
 
 Box 1 : OpnBSD-current, 1 IPv4 full mesh eBGP, 1 IPv6 eBGP (681 routes),
 1 iBGP to Box 2, and 10-12 peers (2 or 3 routes per peer) : 169 MB.
 Before the upgrade, I was running at something like 60-80 if I remember
 it well.
 
 Box 2 : OpnBSD 3.8, 1 IPv4 full mesh eBGP, 1 iBGP to Box 1, 1 peer (3
 routes) : 57 MB. Stable.
 
 
 On Box 1, I play a little with communities : each route is tagged with 2
 to 6 communities attributes ;-) Any guess what cause such a high memory
 load on my first box ?
 
 
Softreconfig in. If you modify the path attributes on from rules the
will be added twice to the table. You can turn softreconfig in off in
-current via the peer directive softreconfig in no.

-- 
:wq Claudio

Re: OpenBGPd-current memory

[Sylvain Coutant]

 Softreconfig in. If you modify the path attributes on from rules the
 will be added twice to the table. You can turn softreconfig in off in
 -current via the peer directive softreconfig in no.

OK. This is just a feature so ;-)

Could I try to understand what softreconfig does and not as it is undocumented 
(or did I search the wrong place ?).

As far as I understand it from your mail and CVS comment, if set to on, it will 
reapply all filters when configuration is reloaded, without the need to restart 
? Is that it ? Is it reliable currently ?

If I keep it turned on, what will be the memory overhead ? Currently my memory 
load goes up every hour (between 1 and 2 MB per hour). Will this stop at some 
point and how could try to approximate the final load ?

Thanks for your help.


BR,

--
Sylvain COUTANT

ADVISEO
http://www.adviseo.fr/
http://www.open-sp.fr/

Re: Looking Glass for OpenBGP in 3.9?

[Henning Brauer]

* [EMAIL PROTECTED] [EMAIL PROTECTED] [2006-02-12 02:20]:
 I read somewhere that there was a 'Looking Glass' implementaion 'in the
 works' for OpenBSD/OpenBGP 3.9. I was wondering if that was the case?

there is an additional read-only control socket now where bgpctl can 
attach as well, so all left to do is to hack up a cgi. should be a 
matter of an hour or so.

-- 
BS Web Services, http://www.bsws.de/
OpenBSD-based Webhosting, Mail Services, Managed Servers, ...
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)

Re: higher resolution on tty

[David Higgs]

Is there a way to programmatically detect whether the hardware
supports a particular character mode?  I know there's no query
option is wsconscfg; will the driver know enough to bail, or is just a
trial-and-error scenario?

--david

On 2/12/06, J.C. Roberts [EMAIL PROTECTED] wrote:
 On Sun, 12 Feb 2006 02:51:17 +0100, Moritz Lutz [EMAIL PROTECTED]
 wrote:

 Hi list,
 
 i want to set up my screen resolution on tty to 1024x768 and smaller
 fonts,
 because i only work on tty on this maschine and this big fonts are a
 very
 bad on a 10,4 display. So is there a way to get this work. Because
 i don't find anything in the FAQ and with google.
 
 mfg
 
 eSpo

 As Constintine pointed out there is a FAQ entry dealing with how to
 change the character resolution on terminal displays. Unfortunately, not
 all hardware supports switching character resolution.

 More importantly, you need to realize that monitors have more than one
 mode. Though there are some rare specialty monitors out there,
 usually, a monitor only two modes; (1) character mode and (2) graphics
 mode. From there, these two modes are further divided into sub-modes,
 such as graphics resolution (1024x768) and character resolution
 (80x40).

 Equally important, you need to realize that not all video output
 hardware (i.e. commonly called video cards graphics cards or frame
 buffers) supports all the possible monitor modes and sub-modes.

 When you say 1024x768 you are talking about a graphics mode measured
 in dots per inch.

 Terminals (tty) are almost always character mode, where 80x40 measures
 the number of character column and character rows.

 In other words, you are talking about two entirely different things.

 In most situations, the only thing you can do to the character mode
 output of tty is change the character resolution and Constintine pointed
 out the relevant FAQ entry.

 The most commonly used way to venture into the world of graphics mode is
 to run an X server and xterm's.

 I hope this makes things clear.

 kind regards,
 JCR

Re: OpenBGPd-current memory

[Sylvain Coutant]

 The increase you are seeing might just be
 fragmentation.

I did play a little with my config this afternoon. I ran two reloads and I'm 
currently eating near 250 MB. I'll continue to monitor in the next hours, but 
it begins to be a little too much for just one full eBGP and one iBGP !

At some point, I'll reset the sessions or restart the server to try to approx. 
the amount of memory lost due to fragmentation.


BR,
 
--
Sylvain COUTANT

ADVISEO
http://www.adviseo.fr/
http://www.open-sp.fr/

Re: OpenBGPd-current memory

[Henning Brauer]

* Sylvain Coutant [EMAIL PROTECTED] [2006-02-12 16:14]:
  The increase you are seeing might just be
  fragmentation.
 
 I did play a little with my config this afternoon. I ran two reloads and I'm 
 currently eating near 250 MB. I'll continue to monitor in the next hours, but 
 it begins to be a little too much for just one full eBGP and one iBGP !

that indeed smells like a bug somewhere.

-- 
BS Web Services, http://www.bsws.de/
OpenBSD-based Webhosting, Mail Services, Managed Servers, ...
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)

Re: OpenBGPd-current memory

[Sylvain Coutant]

 that indeed smells like a bug somewhere.

How could I try to track this down ?


BR,

--
Sylvain COUTANT

ADVISEO
http://www.adviseo.fr/
http://www.open-sp.fr/

Re: Upgrading 3.6 to 3.8, and compiling -current

[Han Boetes]

Hi,

I recommend:

  http://www.xs4all.nl/~hanb/software/OpenBSD-binary-upgrade/


# Han

OT Re: OpenBSD USB question

[Siegbert Marschall]

Hi,

 Please continue posting your help and suggestions.

 (If there is any other way I can do this authentication, I would be
 too glad to hear about it)
don't know how often this device is going to be used every day, but
you should pay attention to the lifetime of the card-reader slot.

When doing consulting for a company which had chipcard authentication in
place, I noticed that they had failure rates even with the high-end
readers, with lift contacts instead of sliders. But there they had
hundreds of people going through the gates every day, so in your case
this might not be a big issue.

In any case have them keep the cards in some sort of case, so you get
less dirt into the reader.

Bye, Siggi.

Re: BSD on x86 and virus

[Tony]

J.C. Roberts wrote:

 On Sat, 11 Feb 2006 17:35:58 -0500, Daniel Ouellet [EMAIL PROTECTED]
 wrote:

 J.C. Roberts wrote:
  As others have pointed out, you simply misunderstood the article and
  then posted to the list what many people would consider an inflammatory
  question. This is not the first time where your reading skills have
  failed to comprehend the meaning of an article and you posted such
  questions to the list. Don't feel bad about it because you're not the
  only one. Heck, Dave Feustel is constantly misreading security
 stuff and
  posting questions to the list -and he's an American. ;-)
 
 Outch!!!
 
 Been put in the same boat... (;
 
 I have some problem at times to understand some stuff too, but this one
 really hurts. Personally I would prefer be called a moron and I have
 been called so at times too. But it was easier to receive. (;
 

 As I said, you should not feel bad about it. Absolutely *everyone* is in
 the same situation facing these communication problems. As difficult as
 it may be to imagine, even those who have English as their first
 language (langue maternelle) regularly fail to completely understand the
 English words they read.

 I have tremendous respect for you and Siju and everyone who tries to
 learn multiple languages so they can communicate with other people from
 other cultures. It is a very difficult task. Even when you misunderstand
 something, you should still be proud of the fact you actually tried to
 understand it. Regardless of your results, the *effort* you put into
 comprehending deserves respect.

 The things I pointed out to Siju are simply tools to help him get better
 results from his efforts. You can consider them leverage since they
 allow you to understand more with less effort or you can think of them
 like wearing the glasses that bring the things you read into better
 focus.

 kind regards,
 jcr

This is from an outsider.
Generally I do not run OpenBSD, but I do follow this list.
There are people on this list who actually know what they are talking about.

From many years ago, OpenBSD has been willing to take the effort and do what
is required to at least head in the direction of what is required to make
a secure system. (Long winded and hedged. Notice I didn't say it is secure.)
With that, it is safe to assume that all the easy stuff has been done and
that most if not all the merely hard stuff has been done.
If you need to be secure (actually if there is a faint chance you might
need to be secure) you probably need to be aware of OpenBSD.

The security of OpenBSD does not come from doing more of what everybody
else seems to be doing to try to claim something regarding security.
Uber secure, I'll grant that.
Secure (without any hedge) probably not, but they are working on it.
Some signs.
Keeping up with the latest patches. If you are secure, why bother?
Secure level -- doesn't make THAT much difference.

Now if I want to crack into an OpenBSD installation, seems like the best
and fastest way is if I can somehow panic the administrator into installing
my trojan while he's thinking he's patching some new-found hole.
Fake holes are actually a security threat in themselves.

Booby traps are designed to catch boobies.
There are a lot of them.
Awareness of this even works to secure Windows (kinda sorta)
I don't think you can secure anything so you do not need to be aware.
You can baby-proof rooms in a house (somewhat)
I don't think it works to baby-proof the internet.
(Babies ten to put everything in their mouths)

The latest sky is falling tends to be received a bit differently here.
(But there is a faint possibility that there really is something real
and this is the only sign, so responses are a bit hedged)
Proactive does not mean keeping up with the latest patches.

Probably the main thing is that OpenBSD did not get to where it is now
by doing stuff that was easy, or expedient, or popular.
Actually it seems to be a friendly place (I haven't been run off yet)
but for people who are willing to actually work at whatever
as opposed to people who want it done for them.

Something to realize is that the OpenBSD folks have their own OS,
designed and implemented according to their own priorities.
They do not have to listen to anybody else's ideas as to what their
priorities should be. This is something you cannot buy. I don't think
anybody else has such or could afford it. They are blunt and brutally
honest. Few others can afford to be. (Guess why I lurk here)

Re: missing network driver

[Michael Calvi]

As a follow up, the copy of hostname.tx0 to hostname.epic0 allowed me to
perform the upgrade.  The dmesg from the 3.8 bsd.rd as suggested is below.
Thanks for the help!

OpenBSD 3.8 (RAMDISK_CD) #794: Sat Sep 10 15:58:32 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: Intel Pentium II (GenuineIntel 686-class, 512KB L2 cache) 267 MHz
cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,MMX
real mem  = 670658560 (654940K)
avail mem = 605364224 (591176K)
using 4278 buffers containing 33636352 bytes (32848K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(70) BIOS, date 03/03/00, BIOS32 rev. 0 @ 0xf0530
apm0 at bios0: Power Management spec V1.2
apm0: APM power management enable: unrecognized device ID (9)
apm0: APM engage (device 1): power management disabled (1)
apm0: flags b0102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0xdb2
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf0d20/144 (7 entries)
pcibios0: PCI Interrupt Router at 000:04:0 (Intel 82371FB ISA rev 0x00)
pcibios0: PCI bus #1 is the last bus
bios0: ROM list: 0xc/0x8000 0xc8000/0x5000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x03
ppb0 at pci0 dev 1 function 0 Intel 82443BX AGP rev 0x03
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 ATI Rage Pro rev 0x5c
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
pcib0 at pci0 dev 4 function 0 Intel 82371AB PIIX4 ISA rev 0x02
pciide0 at pci0 dev 4 function 1 Intel 82371AB IDE rev 0x01: DMA, channel
0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: IBM-DHEA-38451
wd0: 16-sector PIO, LBA, 8063MB, 16514064 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
wd1 at pciide0 channel 1 drive 0: WDC WD600BB-32CCB0
wd1: 16-sector PIO, LBA, 57241MB, 117231408 sectors
wd1(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
uhci0 at pci0 dev 4 function 2 Intel 82371AB USB rev 0x01: irq 11
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
Intel 82371AB Power rev 0x02 at pci0 dev 4 function 3 not configured
ahc1 at pci0 dev 6 function 0 Adaptec AIC-7890/1 U2 rev 0x00: irq 11
scsibus0 at ahc1: 16 targets
cd0 at scsibus0 targ 4 lun 0: YAMAHA, CRW4416S, 1.0g SCSI2 5/cdrom
removable
epic0 at pci0 dev 9 function 0 SMC 83C170 (EPIC/100) rev 0x06: irq 11,
address 00:e0:29:09:3d:42
qsphy0 at epic0 phy 3: QS6612 10/100 PHY, rev. 1
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
biomask ffe5 netmask ffe5 ttymask ffe7
rd0: fixed, 3800 blocks
dkcsum: wd0 matches BIOS drive 0x80
dkcsum: wd1 matches BIOS drive 0x81
root on rd0a
rootdev=0x1100 rrootdev=0x2f00 rawdev=0x2f02

Mike Calvi, CHSP, CISSP
Bentonville, Ar

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Nick Holland
Sent: Friday, February 10, 2006 11:07 PM
To: misc
Subject: Re: missing network driver

[EMAIL PROTECTED] wrote:
 I tried to upgrade an old server with 3.8 via a floppy.  It was
 running 3.7 with a DB and web server previously.
 
 During the upgrade, it did not detect the NIC.  As it was a test
 server, I tried a re-install rather than an upgrade...same thing.
 
 The 3.7 install disk works so I know it is not a problem with the
 card or the floppy.  I tried pulling the floppy38.fs several times
 and running a dd to put the a couple of known good floppies all with
 the same results.
...

 OpenBSD 3.7 (GENERIC) #50: Sun Mar 20 00:01:57 MST 2005
 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
...
 tx0 at pci0 dev 9 function 0 SMC 83C170 (EPIC/100) rev 0x06: irq 11
address 00:e0:29:09:3d:42
 qsphy0 at tx0 phy 3: QS6612 10/100 PHY, rev. 1

Apparently, the tx driver was replaced for 3.8, and got a new name: epic(4).

The epic(4) driver appears to be in floppy38.fs, bsd.rd and GENERIC.  It
is not in the B or C floppies.

If the the floppy38.fs or bsd.rd are not working properly for you, boot
from either, mount a disk partition, drop a dmesg to that partition,
then boot normally to show us what you are getting on 3.8.

If you try to do a normal upgrade, you will probably have some
difficulties due to the change in the driver name (you might be able to
fix that by copying your hostname.tx0 to hostname.epic0 before the
upgrade media is booted), however a normal install should work fine
(assuming you use the right boot disk).

Regardless...I'd recommend bsd.rd over a boot floppy...

Nick.

OT: Nortel Contivity SA Lifetime

[Matthew Closson]

Hello,

I'm setting up IPSEC between isakmpd and a Nortel Contivity Extranet 
Switch and I haven't been able to get the Nortel device's admin to give me 
this information.  Does anyone know what the default IKE/IPSEC SA 
Lifetime's are for a Nortel device?  Thanks, if anyone knows.  Sorry to be 
a little bit off topic.


-Matt-

how to wireles login when WEP and SSID are enabled

[Default User]

Hello. 

Simple question. I can make a wireless connect to a wireless router from
a computer with 802.11b adapter running OpenBSD 3.8 RELEASE with no
problem when SSID and WEP are disabled. When they are enabled, how can I
get it to prompt me for the SSID and WEP so I can enter them manually
and connect?

I have searched the FAQ, lists, etc. but can't seem to find the
answer.  

Thank you for any advice!

X11 Demo programs

[Dave Feustel]

The source and OpenBSD executables for five X11 demo programs 
is now available at http://dfeustel.home.mindspring.com/e-files.zip.
The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. 
The code and makefiles have been tweaked enough to compile 
and run on OpenBSD 3.8, but the original unmodified code is contained 
in the .tgz files in the zip file.

Xspy and xkey are key logging programs. I got one of these programs
to log kde konsole keystrokes to a different user login running in
console mode after I ran xhost + in the kde session.

Xwatchwin allows you to peek at a window on another X server.

Xghostwriter is supposed to make the x11 keyboard seem to be
demonically possessed. It doesn't quite work, but probably can 
be made to work by anyone with a little x11 experience.

Xevact is a more complicated program. Read the documentation
to see what it does. I took the sound features out of the OpenBSD
version of the program to get it to compile since I never use sound 
effects on my computer.

Documentation of these programs is sparse, but adequate to run the programs.

Have Fun,
Dave Feustel
-- 
Lose, v., experience a loss, get rid of, lose the weight
Loose, adj., not tight, let go, free, loose clothing

Marvell Yukon 8036 Ethernet

[William Kranec]

Hello misc@,

I recently purchased a laptop with a Marvell Yukon 8036 ethernet chip, which I 
haven't been able to get working (the interface does not appear in ifconfig 
output).  The specific dmesg error looks like:

skc0 at pci1 dev 0 function 0 Marvell Yukon 8036 rev 0x10: irq 10
skc0: bad VPD resource id: expected 82 got 0
skc0: unknown media type: 0x32

I have tried to Google the bad VPD resource id error with little success.  
Any help that you could provide would be appreciated.

Thanks,

Bill
OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) M processor 1.86GHz (GenuineIntel 686-class) 1.87 
GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF,EST,TM2
cpu0: Enhanced SpeedStep 1400 MHz (1308 mV): unknown EST cpu, no changes 
possible
real mem  = 1063755776 (1038824K)
avail mem = 964022272 (941428K)
using 4278 buffers containing 53288960 bytes (52040K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(e0) BIOS, date 09/06/05, BIOS32 rev. 0 @ 0xfd700
apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xfd700/0x900
pcibios0: PCI BIOS has 11 Interrupt Routing table entries
pcibios0: no compatible PCI ICU found
pcibios0: PCI bus #3 is the last bus
bios0: ROM list: 0xc/0xe800! 0xce800/0x1000 0xdc000/0x4000!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 915GM/PM/GMS Host rev 0x03
vga1 at pci0 dev 2 function 0 Intel 915GM/GMS Video rev 0x03: aperture at 
0xb008, size 0x800
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
Intel 915GM/GMS Video rev 0x03 at pci0 dev 2 function 1 not configured
ppb0 at pci0 dev 28 function 0 Intel 82801FB PCIE rev 0x03
pci1 at ppb0 bus 1
skc0 at pci1 dev 0 function 0 Marvell Yukon 8036 rev 0x10: irq 10
skc0: bad VPD resource id: expected 82 got 0
skc0: unknown media type: 0x32
uhci0 at pci0 dev 29 function 0 Intel 82801FB USB rev 0x03: irq 11
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 Intel 82801FB USB rev 0x03: irq 11
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 Intel 82801FB USB rev 0x03: irq 11
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
uhci3 at pci0 dev 29 function 3 Intel 82801FB USB rev 0x03: irq 10
usb3 at uhci3: USB revision 1.0
uhub3 at usb3
uhub3: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub3: 2 ports with 2 removable, self powered
ehci0 at pci0 dev 29 function 7 Intel 82801FB USB rev 0x03: irq 11
usb4 at ehci0: USB revision 2.0
uhub4 at usb4
uhub4: Intel EHCI root hub, rev 2.00/1.00, addr 1
uhub4: 8 ports with 8 removable, self powered
ppb1 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xd3
pci2 at ppb1 bus 2
iwi0 at pci2 dev 2 function 0 Intel PRO/Wireless 2200BG rev 0x05: irq 11, 
address 00:13:ce:4b:74:78
cbb0 at pci2 dev 4 function 0 vendor Texas Instruments, unknown product 
0x8031 rev 0x00: irq 10
vendor Texas Instruments, unknown product 0x8032 (class serial bus subclass 
Firewire, rev 0x00) at pci2 dev 4 function 2 not configured
vendor Texas Instruments, unknown product 0x8033 (class mass storage subclass 
miscellaneous, rev 0x00) at pci2 dev 4 function 3 not configured
vendor Texas Instruments, unknown product 0x8034 (class system unknown 
subclass 0x05, rev 0x00) at pci2 dev 4 function 4 not configured
cardslot0 at cbb0 slot 0 flags 0
cardbus0 at cardslot0: bus 3 device 0 cacheline 0x8, lattimer 0x24
pcmcia0 at cardslot0
auich0 at pci0 dev 30 function 2 Intel 82801FB AC97 rev 0x03: irq 10, ICH6 
AC97
ac97: codec id 0x414c4752 (Avance Logic ALC250A?)
ac97: codec features headphone, 20 bit DAC, 18 bit ADC, No 3D Stereo
audio0 at auich0
Intel 82801FB Modem rev 0x03 at pci0 dev 30 function 3 not configured
pcib0 at pci0 dev 31 function 0 Intel 82801FBM LPC rev 0x03
pciide0 at pci0 dev 31 function 2 Intel 82801FBM IDE rev 0x03: DMA, channel 0 
wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: HTS541010G9AT00
wd0: 16-sector PIO, LBA48, 95205MB, 194980905 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: MATSHITA, DVD-RAM UJ-841S, 1.50 SCSI0 5/cdrom 
removable
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
Intel 82801FB SMBus rev 0x03 at pci0 dev 31 function 3 not configured
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd 

Re: X11 Demo programs

[Matthias Kilian]

On Sun, Feb 12, 2006 at 03:23:06PM -0500, Dave Feustel wrote:
 I got one of these programs
 to log kde konsole keystrokes to a different user login running in
 console mode after I ran xhost + in the kde session.
   ^^^

This is exactly how it is supposed to work. If you explicitely give
the world to access your display, don't cry if the world *does*
access your display. See xhost(1). And stop trolling by constantly
posting non-issues.

Ciao,
Kili, adjusting filters

Re: X11 Demo programs

[Mats O Jansson]

On Sun, 12 Feb 2006, Dave Feustel wrote:

 The source and OpenBSD executables for five X11 demo programs 
 is now available at http://dfeustel.home.mindspring.com/e-files.zip.
 The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. 
 The code and makefiles have been tweaked enough to compile 
 and run on OpenBSD 3.8, but the original unmodified code is contained 
 in the .tgz files in the zip file.
 
 Xspy and xkey are key logging programs. I got one of these programs
 to log kde konsole keystrokes to a different user login running in
 console mode after I ran xhost + in the kde session.

You are a fucking genius! Why didn't I think of that? Security is much
harder when you turn it off. 

-moj
 
 Xwatchwin allows you to peek at a window on another X server.
 
 Xghostwriter is supposed to make the x11 keyboard seem to be
 demonically possessed. It doesn't quite work, but probably can 
 be made to work by anyone with a little x11 experience.
 
 Xevact is a more complicated program. Read the documentation
 to see what it does. I took the sound features out of the OpenBSD
 version of the program to get it to compile since I never use sound 
 effects on my computer.
 
 Documentation of these programs is sparse, but adequate to run the programs.
 
 Have Fun,
 Dave Feustel
 -- 
 Lose, v., experience a loss, get rid of, lose the weight
 Loose, adj., not tight, let go, free, loose clothing

Re: how to map private ip to public ip behind NAT

[Nick Guenther]

Hello thar,
Seems no one else wanted to help you. I'm not surprised, this isn't
really the place to ask can someone please explain NAT to me? but
here you go anyway:

Wait, so you have two connections to the external internet? I don't
think you need 61.16.254.20

You should set it up with the server behind the OpenBSD box:
192.168.101.24  192.168.101.1 --NAT-- 61.16.254.18

The first connection is simply connecting the server and the router
together physically with an Ethernet cable or whatever. I assume you
already have this set up (or at least know how to) since you say that
you already have an internal IP 192.168.101.24

To set up the NAT portion, edit /etc/pf.conf and add a line like:
nat on $ext_if from any to any port N - 192.168.101.24 port N
where N is the port of the the server you're running. I believe, if
you simply want to point all incoming connections from outside to the
internal server (though I have no idea why you'd do that, and it could
expose the internal server to being attacked) you can leave off the
port directive.

Next time, read pf.conf(5). http://www.openbsd.org/cgi-bin/man.cgi is
a good URL, you should memorize it.

-Kousu

On 2/12/06, Zia Khan [EMAIL PROTECTED] wrote:
 Dear friends,

   My server's private IP is 192.168.101.24 and i have public IP 61.16.254.20.

   This server is behind the open BSD NAT. Open BSD's external IP is 
 61.16.254.18 and internal IP is 192.168.101.1.

   I want to map my servers Internal IP 192.168.101.24 to public IP 
 61.16.254.20.

   What should be done in Open BSD.

   Also what should be done on the server i want to make it accessible on 
 internet.

   Thanks
 Tired of spam?  Yahoo! Mail has the best spam protection around
 http://mail.yahoo.com

Re: how to wireles login when WEP and SSID are enabled

[Nick Guenther]

The older cards are... old, and so are their drivers. If it is a Prism
you have to use 2 programs: ifconfig and wicontrol:

#ifconfig wi0 nwkey key up #insert the
#wicontrol -n SSID -e 1 #insert the key and turn on encryption
#dhclient wi0

There is no way to make it 'prompt' you, at least not by default.

-Kousu

On 2/12/06, Default User [EMAIL PROTECTED] wrote:
 Hello.

 Simple question. I can make a wireless connect to a wireless router from
 a computer with 802.11b adapter running OpenBSD 3.8 RELEASE with no
 problem when SSID and WEP are disabled. When they are enabled, how can I
 get it to prompt me for the SSID and WEP so I can enter them manually
 and connect?

 I have searched the FAQ, lists, etc. but can't seem to find the
 answer.

 Thank you for any advice!

Re: X11 Demo programs

[Dave Feustel]

On Sunday 12 February 2006 16:03, Matthias Kilian wrote:
 On Sun, Feb 12, 2006 at 03:23:06PM -0500, Dave Feustel wrote:
  I got one of these programs
  to log kde konsole keystrokes to a different user login running in
  console mode after I ran xhost + in the kde session.
  ^^^
 
 This is exactly how it is supposed to work. If you explicitely give
 the world to access your display, don't cry if the world *does*
 access your display. See xhost(1). And stop trolling by constantly
 posting non-issues.
 
 Ciao,
   Kili, adjusting filters

Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'!

-- 
Lose, v., experience a loss, get rid of, lose the weight
Loose, adj., not tight, let go, free, loose clothing

Re: X11 Demo programs

[Dave Feustel]

On Sunday 12 February 2006 16:06, Mats O Jansson wrote:
 On Sun, 12 Feb 2006, Dave Feustel wrote:
 
  The source and OpenBSD executables for five X11 demo programs 
  is now available at http://dfeustel.home.mindspring.com/e-files.zip.
  The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. 
  The code and makefiles have been tweaked enough to compile 
  and run on OpenBSD 3.8, but the original unmodified code is contained 
  in the .tgz files in the zip file.
  
  Xspy and xkey are key logging programs. I got one of these programs
  to log kde konsole keystrokes to a different user login running in
  console mode after I ran xhost + in the kde session.
 
 You are a fucking genius! Why didn't I think of that? Security is much
 harder when you turn it off. 

Well, I'm lazy, so I let pf drop all unsolicited incoming  traffic. Works Great!
Lets me experiment with my system in peace and safety.

 -moj
  
  Xwatchwin allows you to peek at a window on another X server.
  
  Xghostwriter is supposed to make the x11 keyboard seem to be
  demonically possessed. It doesn't quite work, but probably can 
  be made to work by anyone with a little x11 experience.
  
  Xevact is a more complicated program. Read the documentation
  to see what it does. I took the sound features out of the OpenBSD
  version of the program to get it to compile since I never use sound 
  effects on my computer.
  
  Documentation of these programs is sparse, but adequate to run the programs.
  
  Have Fun,
  Dave Feustel
  -- 
  Lose, v., experience a loss, get rid of, lose the weight
  Loose, adj., not tight, let go, free, loose clothing
  
  
 
 

-- 
Lose, v., experience a loss, get rid of, lose the weight
Loose, adj., not tight, let go, free, loose clothing

Re: X11 Demo programs

[RedShift]

Dave Feustel wrote:
The source and OpenBSD executables for five X11 demo programs 
is now available at http://dfeustel.home.mindspring.com/e-files.zip.
The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. 
The code and makefiles have been tweaked enough to compile 
and run on OpenBSD 3.8, but the original unmodified code is contained 
in the .tgz files in the zip file.


Xspy and xkey are key logging programs. I got one of these programs
to log kde konsole keystrokes to a different user login running in
console mode after I ran xhost + in the kde session.

Xwatchwin allows you to peek at a window on another X server.

Xghostwriter is supposed to make the x11 keyboard seem to be
demonically possessed. It doesn't quite work, but probably can 
be made to work by anyone with a little x11 experience.


Xevact is a more complicated program. Read the documentation
to see what it does. I took the sound features out of the OpenBSD
version of the program to get it to compile since I never use sound 
effects on my computer.


Documentation of these programs is sparse, but adequate to run the programs.

Have Fun,
Dave Feustel


My sister is a bigger threat to my system than these tools are...

Re: X11 Demo programs

[Dave Feustel]

On Sunday 12 February 2006 16:28, Grumpy wrote:
  Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'!
 
 I'm looking forward to your slogan being ``I'll keep my mouth shut''.
 
 Grumpy

Please hold your breath! :-))

-- 
Lose, v., experience a loss, get rid of, lose the weight
Loose, adj., not tight, let go, free, loose clothing

Re: X11 Demo programs

[Tony]

Dave Feustel wrote:
[snip]
 Well, I'm lazy, so I let pf drop all unsolicited incoming  
 traffic. Works Great!
 Lets me experiment with my system in peace and safety.

Not really.
Depends on what you can be conned into soliciting.

frequent disconnects with in-kernel pppoe and ADSL2+

[Martin Dommermuth]

Hello,

last week my ISP (Arcor in Germany) finally gave me ADSL2+ with
16mbit down an 800k up. Since that day I suffer from frequent and 
irregular disconnects (40 in less than a week). Since it is the 
first time my privider offers ADSL2+ I assume this is more an error 
on the prividers side, but I want to make sure its not my fault. 

My router is 3.8 (see dmesg below). I enabled debugging and get
this in /var/log/messages. 

Feb  9 23:30:17 obsd /bsd: pppoe0: lcp output 
echo-req id=0x60 len=8 e6-bc-9c-27
[...]
Feb  9 23:30:37 obsd /bsd: pppoe0: LCP keepalive
timeout7pppoe0: lcp close(opened)
Feb  9 23:30:37 obsd /bsd: pppoe0: lcp opened-closing
Feb  9 23:30:37 obsd /bsd: pppoe0: lcp output term-req id=0x62 len=4
Feb  9 23:30:37 obsd /bsd: pppoe0 (8864) state=3, session=0x1051
output - 00:30:88:01:66:6c, len=12
Feb  9 23:30:37 obsd /bsd: pppoe0: phase terminate
Feb  9 23:30:37 obsd /bsd: pppoe0: ipcp down(opened)
Feb  9 23:30:37 obsd /bsd: pppoe0: ipcp opened-starting
Feb  9 23:30:37 obsd /bsd: pppoe0: ipcp close(starting)
Feb  9 23:30:37 obsd /bsd: pppoe0: ipcp starting-initial
Feb  9 23:30:37 obsd /bsd: pppoe0: lcp closing-stopped
Feb  9 23:30:37 obsd /bsd: pppoe0: timeout
Feb  9 23:30:37 obsd /bsd: pppoe0: disconnecting
Feb  9 23:30:37 obsd /bsd: pppoe0: lcp down(stopped)
Feb  9 23:30:37 obsd /bsd: pppoe0: lcp stopped-starting
Feb  9 23:30:37 obsd /bsd: pppoe0: phase establish
Feb  9 23:30:37 obsd /bsd: pppoe0 (8863) state=1, session=0x0 
output - ff:ff:ff:ff:ff:ff, len=18
Feb  9 23:30:37 obsd /bsd: pppoe0: Down event (carrier loss), 
taking interface down.7pppoe0: lcp close(starting)
Feb  9 23:30:37 obsd /bsd: pppoe0: lcp starting-initial
Feb  9 23:30:37 obsd /bsd: pppoe0: phase dead
Feb  9 23:30:42 obsd /bsd: pppoe0: timeout

As fas as I understand it my peer does not reply to my LCP echo
requests. After the disconnect an new connection is esablied immedialtly.
The disconnects happen independent of the load on the line (I can
not force a disconnect by downloading and uploading at full speed).

Do you think, I should try another NIC? Its Realtek 8139 now. 

Thanks for any hints.

MartinD:

OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium/MMX (GenuineIntel 586-class) 166 MHz
cpu0: FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,MMX
cpu0: F00F bug workaround installed
real mem  = 133799936 (130664K)
avail mem = 115466240 (112760K)
using 1658 buffers containing 6791168 bytes (6632K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(af) BIOS, date 12/22/97, BIOS32 rev. 0 @ 0xfd7a0
pcibios0 at bios0: rev 2.1 @ 0xfd7a0/0x860
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf50/144 (7 entries)
pcibios0: PCI Interrupt Router at 000:07:0 (Intel 82371SB ISA rev 0x00)
pcibios0: PCI bus #0 is the last bus
WARNING: can't reserve area for I/O APIC.
bios0: ROM list: 0xc/0x8000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel 82439TX System rev 0x01
pcib0 at pci0 dev 7 function 0 Intel 82371AB PIIX4 ISA rev 0x01
pciide0 at pci0 dev 7 function 1 Intel 82371AB IDE rev 0x01: DMA, channel 0 
wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: IBM-DTTA-351010
wd0: 16-sector PIO, LBA, 9671MB, 19807200 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2
pciide0: channel 1 ignored (disabled)
uhci0 at pci0 dev 7 function 2 Intel 82371AB USB rev 0x01: irq 9
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
Intel 82371AB Power rev 0x01 at pci0 dev 7 function 3 not configured
vga1 at pci0 dev 8 function 0 Matrox MGA 1064SG 220MHz rev 0x03
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
fxp0 at pci0 dev 9 function 0 Intel 82557 rev 0x04, i82558: irq 9, address 
08:00:06:0c:52:63
inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 0
rl0 at pci0 dev 18 function 0 Realtek 8139 rev 0x10: irq 9 address 
00:30:84:28:53:59
rlphy0 at rl0 phy 0: RTL internal phy
ne3 at pci0 dev 19 function 0 Compex Compexe rev 0x0a: irq 10
ne3: address 00:80:48:c9:2f:20
isa0 at pcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
sysbeep0 at pcppi0
npx0 at isa0 port 0xf0/16: using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask fbfd netmask fffd ttymask 
pctr: 586-class performance counters and user-level cycle counter enabled
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
pppoe0: phase establish

Re: X11 Demo programs

[Dave Feustel]

On Sunday 12 February 2006 16:43, [EMAIL PROTECTED] wrote:
 Dave Feustel wrote:
 [snip]
  Well, I'm lazy, so I let pf drop all unsolicited incoming  
  traffic. Works Great!
  Lets me experiment with my system in peace and safety.
 
 Not really.
 Depends on what you can be conned into soliciting.

I think I understand what you mean, but could you please
elaborate just in case I am wrong?

Thanks.

-- 
Lose, v., experience a loss, get rid of, lose the weight
Loose, adj., not tight, let go, free, loose clothing

Re: X11 Demo programs

[Marco Peereboom]

Continuing to add this garbage to your online resume isn't helping you.

I hope for you that your potential new employer never researches you on the
web.  It'll be an embarrassing interview.

On Sun, Feb 12, 2006 at 03:23:06PM -0500, Dave Feustel wrote:
 The source and OpenBSD executables for five X11 demo programs 
 is now available at http://dfeustel.home.mindspring.com/e-files.zip.
 The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. 
 The code and makefiles have been tweaked enough to compile 
 and run on OpenBSD 3.8, but the original unmodified code is contained 
 in the .tgz files in the zip file.
 
 Xspy and xkey are key logging programs. I got one of these programs
 to log kde konsole keystrokes to a different user login running in
 console mode after I ran xhost + in the kde session.
 
 Xwatchwin allows you to peek at a window on another X server.
 
 Xghostwriter is supposed to make the x11 keyboard seem to be
 demonically possessed. It doesn't quite work, but probably can 
 be made to work by anyone with a little x11 experience.
 
 Xevact is a more complicated program. Read the documentation
 to see what it does. I took the sound features out of the OpenBSD
 version of the program to get it to compile since I never use sound 
 effects on my computer.
 
 Documentation of these programs is sparse, but adequate to run the programs.
 
 Have Fun,
 Dave Feustel
 -- 
 Lose, v., experience a loss, get rid of, lose the weight
 Loose, adj., not tight, let go, free, loose clothing

Re: X11 Demo programs

[Grumpy]

 Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'!

I'm looking forward to your slogan being ``I'll keep my mouth shut''.

Grumpy

Feb 15, 2006, Las Vegas, USA - Feb 17, 2006, San Diego, USA - Feb 18, 2006, Phoenix, USA

[Wim Vandeputte]

Hey guys,

I'll be in the USA for the next week, more specific:

Feb 15, 2006, Las Vegas, USA 
Feb 17, 2006, San Diego, USA 
Feb 18, 2006, Phoenix, USA

If you are around at that time please email me (no email will be read
after 13 Feb, yes that is tomorrow) or phone +32 478 21 73 55 to be updated
on the specific location and time meetings (read drinks)

Wim.

-- 
   =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=   
https://kd85.com/notforsale.html
 --

Re: OpenBGPd-current memory

[Sylvain Coutant]

  that indeed smells like a bug somewhere.

Obviously : my bgpd/rde is now eating 21 more MB than a few ours ago (267 MB 
total).

# bgpctl show rib memory
RDE memory statistics
177462 IPv4 network entries using 10.8M of memory
   682 IPv6 network entries using 48.0K of memory
355940 prefix entries using 19.0M of memory
 70704 BGP path attribute entries using 8.1M of memory
 29562 BGP AS-PATH attribute entries using 1.2M of memory,
   and holding 70704 references
  3527 BGP attributes entries using 138K of memory
   and holding 83977 references
  3526 BGP attributes using 21.4K of memory
RIB using 39.3M of memory


I know deliver a full feed to a downstream customer and it looks each time he 
resets the session, my memory usage goes up ! It just looks like, I was unable 
to track this down better.

Any idea about how I should handle this ?


BR,

--
Sylvain COUTANT

ADVISEO
http://www.adviseo.fr/
http://www.open-sp.fr/

Re: Marvell Yukon 8036 Ethernet

[Jonathan Gray]

On Sun, Feb 12, 2006 at 03:55:33PM -0500, William Kranec wrote:
 Hello misc@,
 
 I recently purchased a laptop with a Marvell Yukon 8036 ethernet chip, which 
 I haven't been able to get working (the interface does not appear in ifconfig 
 output).  The specific dmesg error looks like:
 
 skc0 at pci1 dev 0 function 0 Marvell Yukon 8036 rev 0x10: irq 10
 skc0: bad VPD resource id: expected 82 got 0
 skc0: unknown media type: 0x32
 
 I have tried to Google the bad VPD resource id error with little success.  
 Any help that you could provide would be appreciated.

PCI Express Yukons are not supported yet.

Re: X11 Demo programs

[Martin Schröder]

On 2006-02-12 16:18:16 -0500, Dave Feustel wrote:
 Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'!

Please also add a block out all.

HTH. HAND
Martin
-- 
http://www.tm.oneiros.de

Re: X11 Demo programs

[Tony]

Just in case?
Like just in case a moth is drawn to a flame?

 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
 Dave Feustel
 Sent: Sunday, February 12, 2006 4:17 PM
 To: [EMAIL PROTECTED]
 Cc: Mats O Jansson; misc@openbsd.org
 Subject: Re: X11 Demo programs
 
 
 On Sunday 12 February 2006 16:43, [EMAIL PROTECTED] wrote:
  Dave Feustel wrote:
  [snip]
   Well, I'm lazy, so I let pf drop all unsolicited incoming  
   traffic. Works Great!
   Lets me experiment with my system in peace and safety.
  
  Not really.
  Depends on what you can be conned into soliciting.
 
 I think I understand what you mean, but could you please
 elaborate just in case I am wrong?
 
 Thanks.
 
 -- 
 Lose, v., experience a loss, get rid of, lose the weight
 Loose, adj., not tight, let go, free, loose clothing

3.8-STABLE :cvs/XF4 seems to be broken.

[J.C. Roberts]

Can anyone confirm or deny if XF4-STABLE is broken? I've updated source
twice and have had two failed builds of X while following FAQ5.

Thanks,
JCR

Re: higher resolution on tty

[J.C. Roberts]

On Sun, 12 Feb 2006 10:02:23 -0500, David Higgs [EMAIL PROTECTED]
wrote:

Is there a way to programmatically detect whether the hardware
supports a particular character mode?  I know there's no query
option is wsconscfg; will the driver know enough to bail, or is just a
trial-and-error scenario?

--david

David,

I know of no hardware query to determine supported character modes and
when I think about it, the task might actually be impossible; your
system graphics/video/framebuffer card may support some character mode
that your monitor/terminal does not support. Since there is no feed back
from the latter (other than *you* looking at the screen), there's no way
to tell if a particular character mode works (completely).

Personally, I keep it simple and just stick to the defaults.

JCR

--
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?

Re: BSD on x86 and virus

[Daniel Ouellet]

dereck wrote:

Not sure, can this be classify as sarcasm? (; May
be my sarcasm jokes 
still need some work!


Daniel


I _am_ a citizen of the USA (American? -not sure- what
is a Canadian if not a North American?), and I've got
the proverbial 2cents that all people from USA have
about things.  [Insert joke here about opinions and
a-holes.]


I guess I still need to work on it looks like. My reference as I wrote:

Outch!!!
Been put in the same boat... (;

Did refer at been put in the same boat as Dave, not as an American. 
Reading my post again, I can see it was received as such.


So, just to be better understood, I did refer at hurting been put in the 
same boat as Dave in the joke posted from JC. (;


I guess this is even more true today looking at the last series of 
Dave's posts as well.


So, please again, if I make stupid mistakes and I am sure I will, like I 
did before, just call me a moron! (; Don't put me in the same boat as 
mister D!


Thanks and have a great day.

Re: missing network driver

[Nick Holland]

Michael Calvi wrote:

As a follow up, the copy of hostname.tx0 to hostname.epic0 allowed me to
perform the upgrade.  The dmesg from the 3.8 bsd.rd as suggested is below.
Thanks for the help!


Thanks for the feedback.  I've updated upgrade38.html and faq1.html to 
mention this non-trivial issue.  I'm glad it wasn't a remote upgrade you 
were doing...


Nick.

PF, anchors and macros

[Dave Harrison]

Hi all,

I'm updating my PF rules to include an anchor for my manual routing rules (using
route-to) which can then be updated by ifstated when it notices that one of my
links has fallen over.

As the documentation says, macros are not visible in anchors.  Which means that
my (growing and rather extensive) list of macros and tables that I use have to
be copied and pasted into the top of each anchor file and my pf.conf.

Has anyone found a good way of somehow including macros (macros as an anchor
don't seem to be possible) into multiple anchors ??


Cheers
Dave

Chegou Cartao pra Voce!

[Cartao Terra]

[IMAGE]

 Cartues  Datas Especiais

De: Amor eterno
Para: Meu Grande Amor

[IMAGE]

[IMAGE]

[IMAGE]

[IMAGE]

[IMAGE]

[IMAGE]

[IMAGE]

[IMAGE]

[IMAGE]
Clique para visualizar o cartco por inteiro

Terra networks - Todos os direitos reservados.

ssh remote execution: PATH

[Peter]

Hi, I on 3.8 invoke ssh in order to run a command on a remote host:

$ ssh [EMAIL PROTECTED] command

The annoyance is that I must specify the absolute path:

$ ssh [EMAIL PROTECTED] /usr/local/sbin/command

The PATH of the user (given in ~/.profile) contains /usr/local/sbin but
evidently this file remains unread.

Is there any way to not have to supply the entire path short of
recompiling ssh?

--
Peter

Re: ssh remote execution: PATH

[Damien Miller]

On Mon, 13 Feb 2006, Peter wrote:

 $ ssh [EMAIL PROTECTED] /usr/local/sbin/command
 
 The PATH of the user (given in ~/.profile) contains /usr/local/sbin but
 evidently this file remains unread.

.profile is only used for interactive sessions. Try .kshrc

Re: ssh remote execution: PATH

[Damien Miller]

On Mon, 13 Feb 2006, Peter wrote:

 
 --- Damien Miller [EMAIL PROTECTED] wrote:
 
  On Mon, 13 Feb 2006, Peter wrote:
  
   $ ssh [EMAIL PROTECTED] /usr/local/sbin/command
   
   The PATH of the user (given in ~/.profile) contains /usr/local/sbin
  but
   evidently this file remains unread.
  
  .profile is only used for interactive sessions. Try .kshrc
 
 Ok, so you're saying the user should change shells (from bash) to ksh?

No, I'm suggesting that, since you are using a non-default shell and since
you didn't bother to mention it, you read you shell's documentation to find
the equivalent to .kshrc and use that.

-d

Proper way to set login.conf control for application started as root and soon drop privileges

[Daniel Ouellet]

I was trying to control some applications that start as root and soon 
after are drop privileges to their own user, but looks like I am not 
very successful.


To see if it was possible to do so, I tested with httpd for example, but 
searching on marc, I came across a posting from Henning on a different 
subject that however make me wonder what's the proper way to do it in 
that case?


If I take the httpd example, the quote goes as follow:

you are mistaken. apache starts as root and drops privileges to
www:www, that does not mean it inherits the resource limits from that
login class.

So, I get it to mean that you can't use the login.conf to actually 
control their resources. So, this bear the question then as to what 
other alternative can you use, if any?


Obviously, I don't want to change the root limits just for that.

Re: ssh remote execution: PATH

[Peter]

--- Damien Miller [EMAIL PROTECTED] wrote:

 On Mon, 13 Feb 2006, Peter wrote:
 
  $ ssh [EMAIL PROTECTED] /usr/local/sbin/command
  
  The PATH of the user (given in ~/.profile) contains /usr/local/sbin
 but
  evidently this file remains unread.
 
 .profile is only used for interactive sessions. Try .kshrc

Ok, so you're saying the user should change shells (from bash) to ksh?

Re: MIPS CPU

[edgarz]

I see. so 2xx version is much friendly :]

Dunceor . wrote:

Yes as he says it's not supported.
I looked at that board a few months back also and to get it to work you need
to port
mips32 (there are some from NetBSD that might work) and then get the board
to work. It's ALOT of work.

It's a nice board though.

// Kalle

On 2/12/06, Alexander Yurchenko [EMAIL PROTECTED] wrote:


On Sat, Feb 11, 2006 at 01:00:30PM +0200, Edgars wrote:


I just want to know, is that MIPS cpu supported by openbsd, didn't find


info on hw pages.


http://www.routerboard.com/rb500.html


nope. and since it's mips32 i doubt it will be supported.



**
Scanned by  MailScan Anti-Virus and Content Security Software.
Visit http://www.mwti.net for more info on eScan and MailScan.
**


--
  Alexander Yurchenko



**
Scanned by  MailScan Anti-Virus and Content Security Software.
Visit http://www.mwti.net for more info on eScan and MailScan.
**