Re: Sudo
On 2/11/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Tobias Weingartner wrote: I'm outa my depth here, but seems that any implementation of something like sudo that belongs to the shell is an open invitation to security disasters. It takes a deliberate act to enable sudo for users in a default install; as such, this poses a security threat only to the [un|mis]informed. If you feel the default 300 second timeout is too long, or is generally unacceptable, you might consider the following in your /etc/sudoers file: # Defaults specification Defaults timestamp_timeout = 0 This policy will affect sudo users system-wide. You should use /usr/sbin/visudo to edit /etc/sudoers until you have a solid working knowledge of its syntax.
Re: Sun 220R, cdrom problem
Hi, I just thought I should point out the fact that some Sun systems need firmware updates. The 220R specifically needed an update on the system that was used for the initial OpenBSD/sparc64 port, I do not know the details as to why that was necessary. Unfortunately with the change in licensing of Solaris and the way Sun supports Solaris and their systems you can no longer download these updates from the SunSolve FTP site without a support contract. I do not know if its possible to find these updates elsewhere. From INSTALL.sparc64... Updating your firmware: --- If OpenBSD does not boot or install properly on your machine, it might need a firmware update. Updating your firmware is a dangerous operation which may damage your hardware. Be sure to carefully follow these instructions and, if in doubt, please don't do this. You will need to have a working operating system installed on your machine, in order to perform the update. If this is not the case, you might be able to boot the flash updater software via network, but this has not been tested and is not supported by Sun. The firmware update is delivered as a specific patch, depending on your machine: Machine Patch number Blade 100/150 79 Enterprise 220R 106455 Enterprise 250 106503 Enterprise 420R 109082 Enterprise 450 106122 Enterprise 3x00/4x00/5x00/6x00 103346 Netra T1 200111991 Netra X1111952 Ultra 1 104881 Ultra 1E104288 Ultra 2 104169 Ultra 5/10 106121 Ultra 30105930 Ultra 60106455 Ultra 80109082 Get the patch installation notes from SunSolve, as ftp://sunsolve.sun.com/pub/patches/104169.readme (replace 104169 with the correct patch number). Check the Patch-ID# line in this readme file to get the patch filename, for example 104169-08. The patch filename will then be either ftp://sunsolve.sun.com/pub/patches/104169-08.tar.Z or ftp://sunsolve.sun.com/pub/patches/104169-08.zip Follow the patch installation notes very carefully. You will need to open your machine in order to apply this patch.
Re: MIPS CPU
Yes as he says it's not supported. I looked at that board a few months back also and to get it to work you need to port mips32 (there are some from NetBSD that might work) and then get the board to work. It's ALOT of work. It's a nice board though. // Kalle On 2/12/06, Alexander Yurchenko [EMAIL PROTECTED] wrote: On Sat, Feb 11, 2006 at 01:00:30PM +0200, Edgars wrote: I just want to know, is that MIPS cpu supported by openbsd, didn't find info on hw pages. http://www.routerboard.com/rb500.html nope. and since it's mips32 i doubt it will be supported. ** Scanned by MailScan Anti-Virus and Content Security Software. Visit http://www.mwti.net for more info on eScan and MailScan. ** -- Alexander Yurchenko
OpenBGPd-current IPv6
Hi all, I upgraded yesterday to OpenBSD-current and re-ran IPv6 tests. Now, routes are not installed into the kernel. My config : #bgpctl sh int ... vlan97 ok UP Ethernet, active, 100 MBit/s ... #bgpctl sh nexthop ... 2001:xxx:21 valid ... This perhaps shows the problem : for other nexthops, the state of the interface is printed after valid, I'm not sure it should be the case here. And when Updates are received, it turns into : send_rtmsg: action 1, prefix 2001:398::/32: Network is unreachable Currently, no IPv6 routes are installed to the kernel while more than 600 are received. BTW, there is a zebra daemon running. It is not problem for IPv4, could it be for IPv6 ? BR, -- Sylvain COUTANT ADVISEO http://www.adviseo.fr/ http://www.open-sp.fr/
OpenBGPd-current memory
Hi, I upgraded to OpenBGPd-current (09/2/2006 snapshot) and didn't noticed yesterday about the memory usage. But, checking the rde process memory this morning gave surprising results : Box 1 : OpnBSD-current, 1 IPv4 full mesh eBGP, 1 IPv6 eBGP (681 routes), 1 iBGP to Box 2, and 10-12 peers (2 or 3 routes per peer) : 169 MB. Before the upgrade, I was running at something like 60-80 if I remember it well. Box 2 : OpnBSD 3.8, 1 IPv4 full mesh eBGP, 1 iBGP to Box 1, 1 peer (3 routes) : 57 MB. Stable. On Box 1, I play a little with communities : each route is tagged with 2 to 6 communities attributes ;-) Any guess what cause such a high memory load on my first box ? BR, -- Sylvain COUTANT ADVISEO http://www.adviseo.fr/ http://www.open-sp.fr/
Re: OpenBSD USB question
Thank you for all the replies, I appreciate all the cooments and the time you guys take to enlighten me on my question. Everyone subscribed to this mailing list can give themselves a pat on the back from me. You guys really showed your maturity and willingness to expand and make OpenBSD even greater than what it presently is. Thank you very much. (That said, please do not stop your suggestions on my problem :-) ) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of jared r r spiegel Sent: Sunday, February 12, 2006 9:07 AM To: misc@openbsd.org Subject: Re: OpenBSD USB question On Sat, Feb 11, 2006 at 08:07:30PM +0200, Danny wrote: I would like to know if OpenBSD will be able to recognise and access the SanDisk ImageMateR 12-in-1 Reader/Writer SDDR-89. More info on this piece of hardware can be found here: http://www.sandisk.com/Products/Item(1145)-SDDR-89-SanDisk_ImageMate_1 2i n1_ReaderWriter.aspx i have that one. actually shows up as a '14-in-1', iirc. on the PC i tried it on, which is abit KW7 motherboard, it worked. i used the compact flash socket for soekris stuff and the little SD socket to copy pictures out of the digicam's memory card -- jared [ openbsd 3.9-beta GENERIC ( jan 30 ) // i386 ]
Re: OpenBGPd-current memory
On Sun, Feb 12, 2006 at 10:55:23AM +0100, Sylvain Coutant wrote: Hi, I upgraded to OpenBGPd-current (09/2/2006 snapshot) and didn't noticed yesterday about the memory usage. But, checking the rde process memory this morning gave surprising results : Box 1 : OpnBSD-current, 1 IPv4 full mesh eBGP, 1 IPv6 eBGP (681 routes), 1 iBGP to Box 2, and 10-12 peers (2 or 3 routes per peer) : 169 MB. Before the upgrade, I was running at something like 60-80 if I remember it well. Box 2 : OpnBSD 3.8, 1 IPv4 full mesh eBGP, 1 iBGP to Box 1, 1 peer (3 routes) : 57 MB. Stable. On Box 1, I play a little with communities : each route is tagged with 2 to 6 communities attributes ;-) Any guess what cause such a high memory load on my first box ? Softreconfig in. If you modify the path attributes on from rules the will be added twice to the table. You can turn softreconfig in off in -current via the peer directive softreconfig in no. -- :wq Claudio
Re: OpenBGPd-current memory
Softreconfig in. If you modify the path attributes on from rules the will be added twice to the table. You can turn softreconfig in off in -current via the peer directive softreconfig in no. OK. This is just a feature so ;-) Could I try to understand what softreconfig does and not as it is undocumented (or did I search the wrong place ?). As far as I understand it from your mail and CVS comment, if set to on, it will reapply all filters when configuration is reloaded, without the need to restart ? Is that it ? Is it reliable currently ? If I keep it turned on, what will be the memory overhead ? Currently my memory load goes up every hour (between 1 and 2 MB per hour). Will this stop at some point and how could try to approximate the final load ? Thanks for your help. BR, -- Sylvain COUTANT ADVISEO http://www.adviseo.fr/ http://www.open-sp.fr/
Re: Looking Glass for OpenBGP in 3.9?
* [EMAIL PROTECTED] [EMAIL PROTECTED] [2006-02-12 02:20]: I read somewhere that there was a 'Looking Glass' implementaion 'in the works' for OpenBSD/OpenBGP 3.9. I was wondering if that was the case? there is an additional read-only control socket now where bgpctl can attach as well, so all left to do is to hack up a cgi. should be a matter of an hour or so. -- BS Web Services, http://www.bsws.de/ OpenBSD-based Webhosting, Mail Services, Managed Servers, ... Unix is very simple, but it takes a genius to understand the simplicity. (Dennis Ritchie)
Re: higher resolution on tty
Is there a way to programmatically detect whether the hardware supports a particular character mode? I know there's no query option is wsconscfg; will the driver know enough to bail, or is just a trial-and-error scenario? --david On 2/12/06, J.C. Roberts [EMAIL PROTECTED] wrote: On Sun, 12 Feb 2006 02:51:17 +0100, Moritz Lutz [EMAIL PROTECTED] wrote: Hi list, i want to set up my screen resolution on tty to 1024x768 and smaller fonts, because i only work on tty on this maschine and this big fonts are a very bad on a 10,4 display. So is there a way to get this work. Because i don't find anything in the FAQ and with google. mfg eSpo As Constintine pointed out there is a FAQ entry dealing with how to change the character resolution on terminal displays. Unfortunately, not all hardware supports switching character resolution. More importantly, you need to realize that monitors have more than one mode. Though there are some rare specialty monitors out there, usually, a monitor only two modes; (1) character mode and (2) graphics mode. From there, these two modes are further divided into sub-modes, such as graphics resolution (1024x768) and character resolution (80x40). Equally important, you need to realize that not all video output hardware (i.e. commonly called video cards graphics cards or frame buffers) supports all the possible monitor modes and sub-modes. When you say 1024x768 you are talking about a graphics mode measured in dots per inch. Terminals (tty) are almost always character mode, where 80x40 measures the number of character column and character rows. In other words, you are talking about two entirely different things. In most situations, the only thing you can do to the character mode output of tty is change the character resolution and Constintine pointed out the relevant FAQ entry. The most commonly used way to venture into the world of graphics mode is to run an X server and xterm's. I hope this makes things clear. kind regards, JCR
Re: OpenBGPd-current memory
The increase you are seeing might just be fragmentation. I did play a little with my config this afternoon. I ran two reloads and I'm currently eating near 250 MB. I'll continue to monitor in the next hours, but it begins to be a little too much for just one full eBGP and one iBGP ! At some point, I'll reset the sessions or restart the server to try to approx. the amount of memory lost due to fragmentation. BR, -- Sylvain COUTANT ADVISEO http://www.adviseo.fr/ http://www.open-sp.fr/
Re: OpenBGPd-current memory
* Sylvain Coutant [EMAIL PROTECTED] [2006-02-12 16:14]: The increase you are seeing might just be fragmentation. I did play a little with my config this afternoon. I ran two reloads and I'm currently eating near 250 MB. I'll continue to monitor in the next hours, but it begins to be a little too much for just one full eBGP and one iBGP ! that indeed smells like a bug somewhere. -- BS Web Services, http://www.bsws.de/ OpenBSD-based Webhosting, Mail Services, Managed Servers, ... Unix is very simple, but it takes a genius to understand the simplicity. (Dennis Ritchie)
Re: OpenBGPd-current memory
that indeed smells like a bug somewhere. How could I try to track this down ? BR, -- Sylvain COUTANT ADVISEO http://www.adviseo.fr/ http://www.open-sp.fr/
Re: Upgrading 3.6 to 3.8, and compiling -current
Hi, I recommend: http://www.xs4all.nl/~hanb/software/OpenBSD-binary-upgrade/ # Han
OT Re: OpenBSD USB question
Hi, Please continue posting your help and suggestions. (If there is any other way I can do this authentication, I would be too glad to hear about it) don't know how often this device is going to be used every day, but you should pay attention to the lifetime of the card-reader slot. When doing consulting for a company which had chipcard authentication in place, I noticed that they had failure rates even with the high-end readers, with lift contacts instead of sliders. But there they had hundreds of people going through the gates every day, so in your case this might not be a big issue. In any case have them keep the cards in some sort of case, so you get less dirt into the reader. Bye, Siggi.
Re: BSD on x86 and virus
J.C. Roberts wrote: On Sat, 11 Feb 2006 17:35:58 -0500, Daniel Ouellet [EMAIL PROTECTED] wrote: J.C. Roberts wrote: As others have pointed out, you simply misunderstood the article and then posted to the list what many people would consider an inflammatory question. This is not the first time where your reading skills have failed to comprehend the meaning of an article and you posted such questions to the list. Don't feel bad about it because you're not the only one. Heck, Dave Feustel is constantly misreading security stuff and posting questions to the list -and he's an American. ;-) Outch!!! Been put in the same boat... (; I have some problem at times to understand some stuff too, but this one really hurts. Personally I would prefer be called a moron and I have been called so at times too. But it was easier to receive. (; As I said, you should not feel bad about it. Absolutely *everyone* is in the same situation facing these communication problems. As difficult as it may be to imagine, even those who have English as their first language (langue maternelle) regularly fail to completely understand the English words they read. I have tremendous respect for you and Siju and everyone who tries to learn multiple languages so they can communicate with other people from other cultures. It is a very difficult task. Even when you misunderstand something, you should still be proud of the fact you actually tried to understand it. Regardless of your results, the *effort* you put into comprehending deserves respect. The things I pointed out to Siju are simply tools to help him get better results from his efforts. You can consider them leverage since they allow you to understand more with less effort or you can think of them like wearing the glasses that bring the things you read into better focus. kind regards, jcr This is from an outsider. Generally I do not run OpenBSD, but I do follow this list. There are people on this list who actually know what they are talking about. From many years ago, OpenBSD has been willing to take the effort and do what is required to at least head in the direction of what is required to make a secure system. (Long winded and hedged. Notice I didn't say it is secure.) With that, it is safe to assume that all the easy stuff has been done and that most if not all the merely hard stuff has been done. If you need to be secure (actually if there is a faint chance you might need to be secure) you probably need to be aware of OpenBSD. The security of OpenBSD does not come from doing more of what everybody else seems to be doing to try to claim something regarding security. Uber secure, I'll grant that. Secure (without any hedge) probably not, but they are working on it. Some signs. Keeping up with the latest patches. If you are secure, why bother? Secure level -- doesn't make THAT much difference. Now if I want to crack into an OpenBSD installation, seems like the best and fastest way is if I can somehow panic the administrator into installing my trojan while he's thinking he's patching some new-found hole. Fake holes are actually a security threat in themselves. Booby traps are designed to catch boobies. There are a lot of them. Awareness of this even works to secure Windows (kinda sorta) I don't think you can secure anything so you do not need to be aware. You can baby-proof rooms in a house (somewhat) I don't think it works to baby-proof the internet. (Babies ten to put everything in their mouths) The latest sky is falling tends to be received a bit differently here. (But there is a faint possibility that there really is something real and this is the only sign, so responses are a bit hedged) Proactive does not mean keeping up with the latest patches. Probably the main thing is that OpenBSD did not get to where it is now by doing stuff that was easy, or expedient, or popular. Actually it seems to be a friendly place (I haven't been run off yet) but for people who are willing to actually work at whatever as opposed to people who want it done for them. Something to realize is that the OpenBSD folks have their own OS, designed and implemented according to their own priorities. They do not have to listen to anybody else's ideas as to what their priorities should be. This is something you cannot buy. I don't think anybody else has such or could afford it. They are blunt and brutally honest. Few others can afford to be. (Guess why I lurk here)
Re: missing network driver
As a follow up, the copy of hostname.tx0 to hostname.epic0 allowed me to perform the upgrade. The dmesg from the 3.8 bsd.rd as suggested is below. Thanks for the help! OpenBSD 3.8 (RAMDISK_CD) #794: Sat Sep 10 15:58:32 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD cpu0: Intel Pentium II (GenuineIntel 686-class, 512KB L2 cache) 267 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,MMX real mem = 670658560 (654940K) avail mem = 605364224 (591176K) using 4278 buffers containing 33636352 bytes (32848K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(70) BIOS, date 03/03/00, BIOS32 rev. 0 @ 0xf0530 apm0 at bios0: Power Management spec V1.2 apm0: APM power management enable: unrecognized device ID (9) apm0: APM engage (device 1): power management disabled (1) apm0: flags b0102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xf/0xdb2 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xf0d20/144 (7 entries) pcibios0: PCI Interrupt Router at 000:04:0 (Intel 82371FB ISA rev 0x00) pcibios0: PCI bus #1 is the last bus bios0: ROM list: 0xc/0x8000 0xc8000/0x5000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 82443BX AGP rev 0x03 ppb0 at pci0 dev 1 function 0 Intel 82443BX AGP rev 0x03 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Rage Pro rev 0x5c wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) pcib0 at pci0 dev 4 function 0 Intel 82371AB PIIX4 ISA rev 0x02 pciide0 at pci0 dev 4 function 1 Intel 82371AB IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: IBM-DHEA-38451 wd0: 16-sector PIO, LBA, 8063MB, 16514064 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 wd1 at pciide0 channel 1 drive 0: WDC WD600BB-32CCB0 wd1: 16-sector PIO, LBA, 57241MB, 117231408 sectors wd1(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 uhci0 at pci0 dev 4 function 2 Intel 82371AB USB rev 0x01: irq 11 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered Intel 82371AB Power rev 0x02 at pci0 dev 4 function 3 not configured ahc1 at pci0 dev 6 function 0 Adaptec AIC-7890/1 U2 rev 0x00: irq 11 scsibus0 at ahc1: 16 targets cd0 at scsibus0 targ 4 lun 0: YAMAHA, CRW4416S, 1.0g SCSI2 5/cdrom removable epic0 at pci0 dev 9 function 0 SMC 83C170 (EPIC/100) rev 0x06: irq 11, address 00:e0:29:09:3d:42 qsphy0 at epic0 phy 3: QS6612 10/100 PHY, rev. 1 isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 npx0 at isa0 port 0xf0/16: using exception 16 pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec biomask ffe5 netmask ffe5 ttymask ffe7 rd0: fixed, 3800 blocks dkcsum: wd0 matches BIOS drive 0x80 dkcsum: wd1 matches BIOS drive 0x81 root on rd0a rootdev=0x1100 rrootdev=0x2f00 rawdev=0x2f02 Mike Calvi, CHSP, CISSP Bentonville, Ar -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Nick Holland Sent: Friday, February 10, 2006 11:07 PM To: misc Subject: Re: missing network driver [EMAIL PROTECTED] wrote: I tried to upgrade an old server with 3.8 via a floppy. It was running 3.7 with a DB and web server previously. During the upgrade, it did not detect the NIC. As it was a test server, I tried a re-install rather than an upgrade...same thing. The 3.7 install disk works so I know it is not a problem with the card or the floppy. I tried pulling the floppy38.fs several times and running a dd to put the a couple of known good floppies all with the same results. ... OpenBSD 3.7 (GENERIC) #50: Sun Mar 20 00:01:57 MST 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC ... tx0 at pci0 dev 9 function 0 SMC 83C170 (EPIC/100) rev 0x06: irq 11 address 00:e0:29:09:3d:42 qsphy0 at tx0 phy 3: QS6612 10/100 PHY, rev. 1 Apparently, the tx driver was replaced for 3.8, and got a new name: epic(4). The epic(4) driver appears to be in floppy38.fs, bsd.rd and GENERIC. It is not in the B or C floppies. If the the floppy38.fs or bsd.rd are not working properly for you, boot from either, mount a disk partition, drop a dmesg to that partition, then boot normally to show us what you are getting on 3.8. If you try to do a normal upgrade, you will probably have some difficulties due to the change in the driver name (you might be able to fix that by copying your hostname.tx0 to hostname.epic0 before the upgrade media is booted), however a normal install should work fine (assuming you use the right boot disk). Regardless...I'd recommend bsd.rd over a boot floppy... Nick.
OT: Nortel Contivity SA Lifetime
Hello, I'm setting up IPSEC between isakmpd and a Nortel Contivity Extranet Switch and I haven't been able to get the Nortel device's admin to give me this information. Does anyone know what the default IKE/IPSEC SA Lifetime's are for a Nortel device? Thanks, if anyone knows. Sorry to be a little bit off topic. -Matt-
how to wireles login when WEP and SSID are enabled
Hello. Simple question. I can make a wireless connect to a wireless router from a computer with 802.11b adapter running OpenBSD 3.8 RELEASE with no problem when SSID and WEP are disabled. When they are enabled, how can I get it to prompt me for the SSID and WEP so I can enter them manually and connect? I have searched the FAQ, lists, etc. but can't seem to find the answer. Thank you for any advice!
X11 Demo programs
The source and OpenBSD executables for five X11 demo programs is now available at http://dfeustel.home.mindspring.com/e-files.zip. The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. The code and makefiles have been tweaked enough to compile and run on OpenBSD 3.8, but the original unmodified code is contained in the .tgz files in the zip file. Xspy and xkey are key logging programs. I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. Xwatchwin allows you to peek at a window on another X server. Xghostwriter is supposed to make the x11 keyboard seem to be demonically possessed. It doesn't quite work, but probably can be made to work by anyone with a little x11 experience. Xevact is a more complicated program. Read the documentation to see what it does. I took the sound features out of the OpenBSD version of the program to get it to compile since I never use sound effects on my computer. Documentation of these programs is sparse, but adequate to run the programs. Have Fun, Dave Feustel -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Marvell Yukon 8036 Ethernet
Hello misc@, I recently purchased a laptop with a Marvell Yukon 8036 ethernet chip, which I haven't been able to get working (the interface does not appear in ifconfig output). The specific dmesg error looks like: skc0 at pci1 dev 0 function 0 Marvell Yukon 8036 rev 0x10: irq 10 skc0: bad VPD resource id: expected 82 got 0 skc0: unknown media type: 0x32 I have tried to Google the bad VPD resource id error with little success. Any help that you could provide would be appreciated. Thanks, Bill OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Pentium(R) M processor 1.86GHz (GenuineIntel 686-class) 1.87 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF,EST,TM2 cpu0: Enhanced SpeedStep 1400 MHz (1308 mV): unknown EST cpu, no changes possible real mem = 1063755776 (1038824K) avail mem = 964022272 (941428K) using 4278 buffers containing 53288960 bytes (52040K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(e0) BIOS, date 09/06/05, BIOS32 rev. 0 @ 0xfd700 apm0 at bios0: Power Management spec V1.2 apm0: AC on, battery charge unknown apm0: flags 30102 dobusy 0 doidle 1 pcibios0 at bios0: rev 2.1 @ 0xfd700/0x900 pcibios0: PCI BIOS has 11 Interrupt Routing table entries pcibios0: no compatible PCI ICU found pcibios0: PCI bus #3 is the last bus bios0: ROM list: 0xc/0xe800! 0xce800/0x1000 0xdc000/0x4000! cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 915GM/PM/GMS Host rev 0x03 vga1 at pci0 dev 2 function 0 Intel 915GM/GMS Video rev 0x03: aperture at 0xb008, size 0x800 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) Intel 915GM/GMS Video rev 0x03 at pci0 dev 2 function 1 not configured ppb0 at pci0 dev 28 function 0 Intel 82801FB PCIE rev 0x03 pci1 at ppb0 bus 1 skc0 at pci1 dev 0 function 0 Marvell Yukon 8036 rev 0x10: irq 10 skc0: bad VPD resource id: expected 82 got 0 skc0: unknown media type: 0x32 uhci0 at pci0 dev 29 function 0 Intel 82801FB USB rev 0x03: irq 11 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered uhci1 at pci0 dev 29 function 1 Intel 82801FB USB rev 0x03: irq 11 usb1 at uhci1: USB revision 1.0 uhub1 at usb1 uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub1: 2 ports with 2 removable, self powered uhci2 at pci0 dev 29 function 2 Intel 82801FB USB rev 0x03: irq 11 usb2 at uhci2: USB revision 1.0 uhub2 at usb2 uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub2: 2 ports with 2 removable, self powered uhci3 at pci0 dev 29 function 3 Intel 82801FB USB rev 0x03: irq 10 usb3 at uhci3: USB revision 1.0 uhub3 at usb3 uhub3: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub3: 2 ports with 2 removable, self powered ehci0 at pci0 dev 29 function 7 Intel 82801FB USB rev 0x03: irq 11 usb4 at ehci0: USB revision 2.0 uhub4 at usb4 uhub4: Intel EHCI root hub, rev 2.00/1.00, addr 1 uhub4: 8 ports with 8 removable, self powered ppb1 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xd3 pci2 at ppb1 bus 2 iwi0 at pci2 dev 2 function 0 Intel PRO/Wireless 2200BG rev 0x05: irq 11, address 00:13:ce:4b:74:78 cbb0 at pci2 dev 4 function 0 vendor Texas Instruments, unknown product 0x8031 rev 0x00: irq 10 vendor Texas Instruments, unknown product 0x8032 (class serial bus subclass Firewire, rev 0x00) at pci2 dev 4 function 2 not configured vendor Texas Instruments, unknown product 0x8033 (class mass storage subclass miscellaneous, rev 0x00) at pci2 dev 4 function 3 not configured vendor Texas Instruments, unknown product 0x8034 (class system unknown subclass 0x05, rev 0x00) at pci2 dev 4 function 4 not configured cardslot0 at cbb0 slot 0 flags 0 cardbus0 at cardslot0: bus 3 device 0 cacheline 0x8, lattimer 0x24 pcmcia0 at cardslot0 auich0 at pci0 dev 30 function 2 Intel 82801FB AC97 rev 0x03: irq 10, ICH6 AC97 ac97: codec id 0x414c4752 (Avance Logic ALC250A?) ac97: codec features headphone, 20 bit DAC, 18 bit ADC, No 3D Stereo audio0 at auich0 Intel 82801FB Modem rev 0x03 at pci0 dev 30 function 3 not configured pcib0 at pci0 dev 31 function 0 Intel 82801FBM LPC rev 0x03 pciide0 at pci0 dev 31 function 2 Intel 82801FBM IDE rev 0x03: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: HTS541010G9AT00 wd0: 16-sector PIO, LBA48, 95205MB, 194980905 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0 lun 0: MATSHITA, DVD-RAM UJ-841S, 1.50 SCSI0 5/cdrom removable cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2 Intel 82801FB SMBus rev 0x03 at pci0 dev 31 function 3 not configured isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd
Re: X11 Demo programs
On Sun, Feb 12, 2006 at 03:23:06PM -0500, Dave Feustel wrote: I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. ^^^ This is exactly how it is supposed to work. If you explicitely give the world to access your display, don't cry if the world *does* access your display. See xhost(1). And stop trolling by constantly posting non-issues. Ciao, Kili, adjusting filters
Re: X11 Demo programs
On Sun, 12 Feb 2006, Dave Feustel wrote: The source and OpenBSD executables for five X11 demo programs is now available at http://dfeustel.home.mindspring.com/e-files.zip. The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. The code and makefiles have been tweaked enough to compile and run on OpenBSD 3.8, but the original unmodified code is contained in the .tgz files in the zip file. Xspy and xkey are key logging programs. I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. You are a fucking genius! Why didn't I think of that? Security is much harder when you turn it off. -moj Xwatchwin allows you to peek at a window on another X server. Xghostwriter is supposed to make the x11 keyboard seem to be demonically possessed. It doesn't quite work, but probably can be made to work by anyone with a little x11 experience. Xevact is a more complicated program. Read the documentation to see what it does. I took the sound features out of the OpenBSD version of the program to get it to compile since I never use sound effects on my computer. Documentation of these programs is sparse, but adequate to run the programs. Have Fun, Dave Feustel -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Re: how to map private ip to public ip behind NAT
Hello thar, Seems no one else wanted to help you. I'm not surprised, this isn't really the place to ask can someone please explain NAT to me? but here you go anyway: Wait, so you have two connections to the external internet? I don't think you need 61.16.254.20 You should set it up with the server behind the OpenBSD box: 192.168.101.24 192.168.101.1 --NAT-- 61.16.254.18 The first connection is simply connecting the server and the router together physically with an Ethernet cable or whatever. I assume you already have this set up (or at least know how to) since you say that you already have an internal IP 192.168.101.24 To set up the NAT portion, edit /etc/pf.conf and add a line like: nat on $ext_if from any to any port N - 192.168.101.24 port N where N is the port of the the server you're running. I believe, if you simply want to point all incoming connections from outside to the internal server (though I have no idea why you'd do that, and it could expose the internal server to being attacked) you can leave off the port directive. Next time, read pf.conf(5). http://www.openbsd.org/cgi-bin/man.cgi is a good URL, you should memorize it. -Kousu On 2/12/06, Zia Khan [EMAIL PROTECTED] wrote: Dear friends, My server's private IP is 192.168.101.24 and i have public IP 61.16.254.20. This server is behind the open BSD NAT. Open BSD's external IP is 61.16.254.18 and internal IP is 192.168.101.1. I want to map my servers Internal IP 192.168.101.24 to public IP 61.16.254.20. What should be done in Open BSD. Also what should be done on the server i want to make it accessible on internet. Thanks Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: how to wireles login when WEP and SSID are enabled
The older cards are... old, and so are their drivers. If it is a Prism you have to use 2 programs: ifconfig and wicontrol: #ifconfig wi0 nwkey key up #insert the #wicontrol -n SSID -e 1 #insert the key and turn on encryption #dhclient wi0 There is no way to make it 'prompt' you, at least not by default. -Kousu On 2/12/06, Default User [EMAIL PROTECTED] wrote: Hello. Simple question. I can make a wireless connect to a wireless router from a computer with 802.11b adapter running OpenBSD 3.8 RELEASE with no problem when SSID and WEP are disabled. When they are enabled, how can I get it to prompt me for the SSID and WEP so I can enter them manually and connect? I have searched the FAQ, lists, etc. but can't seem to find the answer. Thank you for any advice!
Re: X11 Demo programs
On Sunday 12 February 2006 16:03, Matthias Kilian wrote: On Sun, Feb 12, 2006 at 03:23:06PM -0500, Dave Feustel wrote: I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. ^^^ This is exactly how it is supposed to work. If you explicitely give the world to access your display, don't cry if the world *does* access your display. See xhost(1). And stop trolling by constantly posting non-issues. Ciao, Kili, adjusting filters Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'! -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Re: X11 Demo programs
On Sunday 12 February 2006 16:06, Mats O Jansson wrote: On Sun, 12 Feb 2006, Dave Feustel wrote: The source and OpenBSD executables for five X11 demo programs is now available at http://dfeustel.home.mindspring.com/e-files.zip. The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. The code and makefiles have been tweaked enough to compile and run on OpenBSD 3.8, but the original unmodified code is contained in the .tgz files in the zip file. Xspy and xkey are key logging programs. I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. You are a fucking genius! Why didn't I think of that? Security is much harder when you turn it off. Well, I'm lazy, so I let pf drop all unsolicited incoming traffic. Works Great! Lets me experiment with my system in peace and safety. -moj Xwatchwin allows you to peek at a window on another X server. Xghostwriter is supposed to make the x11 keyboard seem to be demonically possessed. It doesn't quite work, but probably can be made to work by anyone with a little x11 experience. Xevact is a more complicated program. Read the documentation to see what it does. I took the sound features out of the OpenBSD version of the program to get it to compile since I never use sound effects on my computer. Documentation of these programs is sparse, but adequate to run the programs. Have Fun, Dave Feustel -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Re: X11 Demo programs
Dave Feustel wrote: The source and OpenBSD executables for five X11 demo programs is now available at http://dfeustel.home.mindspring.com/e-files.zip. The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. The code and makefiles have been tweaked enough to compile and run on OpenBSD 3.8, but the original unmodified code is contained in the .tgz files in the zip file. Xspy and xkey are key logging programs. I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. Xwatchwin allows you to peek at a window on another X server. Xghostwriter is supposed to make the x11 keyboard seem to be demonically possessed. It doesn't quite work, but probably can be made to work by anyone with a little x11 experience. Xevact is a more complicated program. Read the documentation to see what it does. I took the sound features out of the OpenBSD version of the program to get it to compile since I never use sound effects on my computer. Documentation of these programs is sparse, but adequate to run the programs. Have Fun, Dave Feustel My sister is a bigger threat to my system than these tools are...
Re: X11 Demo programs
On Sunday 12 February 2006 16:28, Grumpy wrote: Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'! I'm looking forward to your slogan being ``I'll keep my mouth shut''. Grumpy Please hold your breath! :-)) -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Re: X11 Demo programs
Dave Feustel wrote: [snip] Well, I'm lazy, so I let pf drop all unsolicited incoming traffic. Works Great! Lets me experiment with my system in peace and safety. Not really. Depends on what you can be conned into soliciting.
frequent disconnects with in-kernel pppoe and ADSL2+
Hello, last week my ISP (Arcor in Germany) finally gave me ADSL2+ with 16mbit down an 800k up. Since that day I suffer from frequent and irregular disconnects (40 in less than a week). Since it is the first time my privider offers ADSL2+ I assume this is more an error on the prividers side, but I want to make sure its not my fault. My router is 3.8 (see dmesg below). I enabled debugging and get this in /var/log/messages. Feb 9 23:30:17 obsd /bsd: pppoe0: lcp output echo-req id=0x60 len=8 e6-bc-9c-27 [...] Feb 9 23:30:37 obsd /bsd: pppoe0: LCP keepalive timeout7pppoe0: lcp close(opened) Feb 9 23:30:37 obsd /bsd: pppoe0: lcp opened-closing Feb 9 23:30:37 obsd /bsd: pppoe0: lcp output term-req id=0x62 len=4 Feb 9 23:30:37 obsd /bsd: pppoe0 (8864) state=3, session=0x1051 output - 00:30:88:01:66:6c, len=12 Feb 9 23:30:37 obsd /bsd: pppoe0: phase terminate Feb 9 23:30:37 obsd /bsd: pppoe0: ipcp down(opened) Feb 9 23:30:37 obsd /bsd: pppoe0: ipcp opened-starting Feb 9 23:30:37 obsd /bsd: pppoe0: ipcp close(starting) Feb 9 23:30:37 obsd /bsd: pppoe0: ipcp starting-initial Feb 9 23:30:37 obsd /bsd: pppoe0: lcp closing-stopped Feb 9 23:30:37 obsd /bsd: pppoe0: timeout Feb 9 23:30:37 obsd /bsd: pppoe0: disconnecting Feb 9 23:30:37 obsd /bsd: pppoe0: lcp down(stopped) Feb 9 23:30:37 obsd /bsd: pppoe0: lcp stopped-starting Feb 9 23:30:37 obsd /bsd: pppoe0: phase establish Feb 9 23:30:37 obsd /bsd: pppoe0 (8863) state=1, session=0x0 output - ff:ff:ff:ff:ff:ff, len=18 Feb 9 23:30:37 obsd /bsd: pppoe0: Down event (carrier loss), taking interface down.7pppoe0: lcp close(starting) Feb 9 23:30:37 obsd /bsd: pppoe0: lcp starting-initial Feb 9 23:30:37 obsd /bsd: pppoe0: phase dead Feb 9 23:30:42 obsd /bsd: pppoe0: timeout As fas as I understand it my peer does not reply to my LCP echo requests. After the disconnect an new connection is esablied immedialtly. The disconnects happen independent of the load on the line (I can not force a disconnect by downloading and uploading at full speed). Do you think, I should try another NIC? Its Realtek 8139 now. Thanks for any hints. MartinD: OpenBSD 3.8 (GENERIC) #138: Sat Sep 10 15:41:37 MDT 2005 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel Pentium/MMX (GenuineIntel 586-class) 166 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,MCE,CX8,MMX cpu0: F00F bug workaround installed real mem = 133799936 (130664K) avail mem = 115466240 (112760K) using 1658 buffers containing 6791168 bytes (6632K) of memory mainbus0 (root) bios0 at mainbus0: AT/286+(af) BIOS, date 12/22/97, BIOS32 rev. 0 @ 0xfd7a0 pcibios0 at bios0: rev 2.1 @ 0xfd7a0/0x860 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf50/144 (7 entries) pcibios0: PCI Interrupt Router at 000:07:0 (Intel 82371SB ISA rev 0x00) pcibios0: PCI bus #0 is the last bus WARNING: can't reserve area for I/O APIC. bios0: ROM list: 0xc/0x8000 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82439TX System rev 0x01 pcib0 at pci0 dev 7 function 0 Intel 82371AB PIIX4 ISA rev 0x01 pciide0 at pci0 dev 7 function 1 Intel 82371AB IDE rev 0x01: DMA, channel 0 wired to compatibility, channel 1 wired to compatibility wd0 at pciide0 channel 0 drive 0: IBM-DTTA-351010 wd0: 16-sector PIO, LBA, 9671MB, 19807200 sectors wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) uhci0 at pci0 dev 7 function 2 Intel 82371AB USB rev 0x01: irq 9 usb0 at uhci0: USB revision 1.0 uhub0 at usb0 uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1 uhub0: 2 ports with 2 removable, self powered Intel 82371AB Power rev 0x01 at pci0 dev 7 function 3 not configured vga1 at pci0 dev 8 function 0 Matrox MGA 1064SG 220MHz rev 0x03 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) fxp0 at pci0 dev 9 function 0 Intel 82557 rev 0x04, i82558: irq 9, address 08:00:06:0c:52:63 inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 0 rl0 at pci0 dev 18 function 0 Realtek 8139 rev 0x10: irq 9 address 00:30:84:28:53:59 rlphy0 at rl0 phy 0: RTL internal phy ne3 at pci0 dev 19 function 0 Compex Compexe rev 0x0a: irq 10 ne3: address 00:80:48:c9:2f:20 isa0 at pcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 sysbeep0 at pcppi0 npx0 at isa0 port 0xf0/16: using exception 16 fdc0 at isa0 port 0x3f0/6 irq 6 drq 2 biomask fbfd netmask fffd ttymask pctr: 586-class performance counters and user-level cycle counter enabled dkcsum: wd0 matches BIOS drive 0x80 root on wd0a rootdev=0x0 rrootdev=0x300 rawdev=0x302 pppoe0: phase establish
Re: X11 Demo programs
On Sunday 12 February 2006 16:43, [EMAIL PROTECTED] wrote: Dave Feustel wrote: [snip] Well, I'm lazy, so I let pf drop all unsolicited incoming traffic. Works Great! Lets me experiment with my system in peace and safety. Not really. Depends on what you can be conned into soliciting. I think I understand what you mean, but could you please elaborate just in case I am wrong? Thanks. -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Re: X11 Demo programs
Continuing to add this garbage to your online resume isn't helping you. I hope for you that your potential new employer never researches you on the web. It'll be an embarrassing interview. On Sun, Feb 12, 2006 at 03:23:06PM -0500, Dave Feustel wrote: The source and OpenBSD executables for five X11 demo programs is now available at http://dfeustel.home.mindspring.com/e-files.zip. The programs are xkey, xspy, xwatchwin, xghostwriter, and xevact. The code and makefiles have been tweaked enough to compile and run on OpenBSD 3.8, but the original unmodified code is contained in the .tgz files in the zip file. Xspy and xkey are key logging programs. I got one of these programs to log kde konsole keystrokes to a different user login running in console mode after I ran xhost + in the kde session. Xwatchwin allows you to peek at a window on another X server. Xghostwriter is supposed to make the x11 keyboard seem to be demonically possessed. It doesn't quite work, but probably can be made to work by anyone with a little x11 experience. Xevact is a more complicated program. Read the documentation to see what it does. I took the sound features out of the OpenBSD version of the program to get it to compile since I never use sound effects on my computer. Documentation of these programs is sparse, but adequate to run the programs. Have Fun, Dave Feustel -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
Re: X11 Demo programs
Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'! I'm looking forward to your slogan being ``I'll keep my mouth shut''. Grumpy
Feb 15, 2006, Las Vegas, USA - Feb 17, 2006, San Diego, USA - Feb 18, 2006, Phoenix, USA
Hey guys, I'll be in the USA for the next week, more specific: Feb 15, 2006, Las Vegas, USA Feb 17, 2006, San Diego, USA Feb 18, 2006, Phoenix, USA If you are around at that time please email me (no email will be read after 13 Feb, yes that is tomorrow) or phone +32 478 21 73 55 to be updated on the specific location and time meetings (read drinks) Wim. -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= https://kd85.com/notforsale.html --
Re: OpenBGPd-current memory
that indeed smells like a bug somewhere. Obviously : my bgpd/rde is now eating 21 more MB than a few ours ago (267 MB total). # bgpctl show rib memory RDE memory statistics 177462 IPv4 network entries using 10.8M of memory 682 IPv6 network entries using 48.0K of memory 355940 prefix entries using 19.0M of memory 70704 BGP path attribute entries using 8.1M of memory 29562 BGP AS-PATH attribute entries using 1.2M of memory, and holding 70704 references 3527 BGP attributes entries using 138K of memory and holding 83977 references 3526 BGP attributes using 21.4K of memory RIB using 39.3M of memory I know deliver a full feed to a downstream customer and it looks each time he resets the session, my memory usage goes up ! It just looks like, I was unable to track this down better. Any idea about how I should handle this ? BR, -- Sylvain COUTANT ADVISEO http://www.adviseo.fr/ http://www.open-sp.fr/
Re: Marvell Yukon 8036 Ethernet
On Sun, Feb 12, 2006 at 03:55:33PM -0500, William Kranec wrote: Hello misc@, I recently purchased a laptop with a Marvell Yukon 8036 ethernet chip, which I haven't been able to get working (the interface does not appear in ifconfig output). The specific dmesg error looks like: skc0 at pci1 dev 0 function 0 Marvell Yukon 8036 rev 0x10: irq 10 skc0: bad VPD resource id: expected 82 got 0 skc0: unknown media type: 0x32 I have tried to Google the bad VPD resource id error with little success. Any help that you could provide would be appreciated. PCI Express Yukons are not supported yet.
Re: X11 Demo programs
On 2006-02-12 16:18:16 -0500, Dave Feustel wrote: Damn! FedGov agencies must LOVE X11! My slogan is now 'block in all'! Please also add a block out all. HTH. HAND Martin -- http://www.tm.oneiros.de
Re: X11 Demo programs
Just in case? Like just in case a moth is drawn to a flame? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Dave Feustel Sent: Sunday, February 12, 2006 4:17 PM To: [EMAIL PROTECTED] Cc: Mats O Jansson; misc@openbsd.org Subject: Re: X11 Demo programs On Sunday 12 February 2006 16:43, [EMAIL PROTECTED] wrote: Dave Feustel wrote: [snip] Well, I'm lazy, so I let pf drop all unsolicited incoming traffic. Works Great! Lets me experiment with my system in peace and safety. Not really. Depends on what you can be conned into soliciting. I think I understand what you mean, but could you please elaborate just in case I am wrong? Thanks. -- Lose, v., experience a loss, get rid of, lose the weight Loose, adj., not tight, let go, free, loose clothing
3.8-STABLE :cvs/XF4 seems to be broken.
Can anyone confirm or deny if XF4-STABLE is broken? I've updated source twice and have had two failed builds of X while following FAQ5. Thanks, JCR
Re: higher resolution on tty
On Sun, 12 Feb 2006 10:02:23 -0500, David Higgs [EMAIL PROTECTED] wrote: Is there a way to programmatically detect whether the hardware supports a particular character mode? I know there's no query option is wsconscfg; will the driver know enough to bail, or is just a trial-and-error scenario? --david David, I know of no hardware query to determine supported character modes and when I think about it, the task might actually be impossible; your system graphics/video/framebuffer card may support some character mode that your monitor/terminal does not support. Since there is no feed back from the latter (other than *you* looking at the screen), there's no way to tell if a particular character mode works (completely). Personally, I keep it simple and just stick to the defaults. JCR -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail?
Re: BSD on x86 and virus
dereck wrote: Not sure, can this be classify as sarcasm? (; May be my sarcasm jokes still need some work! Daniel I _am_ a citizen of the USA (American? -not sure- what is a Canadian if not a North American?), and I've got the proverbial 2cents that all people from USA have about things. [Insert joke here about opinions and a-holes.] I guess I still need to work on it looks like. My reference as I wrote: Outch!!! Been put in the same boat... (; Did refer at been put in the same boat as Dave, not as an American. Reading my post again, I can see it was received as such. So, just to be better understood, I did refer at hurting been put in the same boat as Dave in the joke posted from JC. (; I guess this is even more true today looking at the last series of Dave's posts as well. So, please again, if I make stupid mistakes and I am sure I will, like I did before, just call me a moron! (; Don't put me in the same boat as mister D! Thanks and have a great day.
Re: missing network driver
Michael Calvi wrote: As a follow up, the copy of hostname.tx0 to hostname.epic0 allowed me to perform the upgrade. The dmesg from the 3.8 bsd.rd as suggested is below. Thanks for the help! Thanks for the feedback. I've updated upgrade38.html and faq1.html to mention this non-trivial issue. I'm glad it wasn't a remote upgrade you were doing... Nick.
PF, anchors and macros
Hi all, I'm updating my PF rules to include an anchor for my manual routing rules (using route-to) which can then be updated by ifstated when it notices that one of my links has fallen over. As the documentation says, macros are not visible in anchors. Which means that my (growing and rather extensive) list of macros and tables that I use have to be copied and pasted into the top of each anchor file and my pf.conf. Has anyone found a good way of somehow including macros (macros as an anchor don't seem to be possible) into multiple anchors ?? Cheers Dave
Chegou Cartao pra Voce!
[IMAGE] Cartues Datas Especiais De: Amor eterno Para: Meu Grande Amor [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] [IMAGE] Clique para visualizar o cartco por inteiro Terra networks - Todos os direitos reservados.
ssh remote execution: PATH
Hi, I on 3.8 invoke ssh in order to run a command on a remote host: $ ssh [EMAIL PROTECTED] command The annoyance is that I must specify the absolute path: $ ssh [EMAIL PROTECTED] /usr/local/sbin/command The PATH of the user (given in ~/.profile) contains /usr/local/sbin but evidently this file remains unread. Is there any way to not have to supply the entire path short of recompiling ssh? -- Peter
Re: ssh remote execution: PATH
On Mon, 13 Feb 2006, Peter wrote: $ ssh [EMAIL PROTECTED] /usr/local/sbin/command The PATH of the user (given in ~/.profile) contains /usr/local/sbin but evidently this file remains unread. .profile is only used for interactive sessions. Try .kshrc
Re: ssh remote execution: PATH
On Mon, 13 Feb 2006, Peter wrote: --- Damien Miller [EMAIL PROTECTED] wrote: On Mon, 13 Feb 2006, Peter wrote: $ ssh [EMAIL PROTECTED] /usr/local/sbin/command The PATH of the user (given in ~/.profile) contains /usr/local/sbin but evidently this file remains unread. .profile is only used for interactive sessions. Try .kshrc Ok, so you're saying the user should change shells (from bash) to ksh? No, I'm suggesting that, since you are using a non-default shell and since you didn't bother to mention it, you read you shell's documentation to find the equivalent to .kshrc and use that. -d
Proper way to set login.conf control for application started as root and soon drop privileges
I was trying to control some applications that start as root and soon after are drop privileges to their own user, but looks like I am not very successful. To see if it was possible to do so, I tested with httpd for example, but searching on marc, I came across a posting from Henning on a different subject that however make me wonder what's the proper way to do it in that case? If I take the httpd example, the quote goes as follow: you are mistaken. apache starts as root and drops privileges to www:www, that does not mean it inherits the resource limits from that login class. So, I get it to mean that you can't use the login.conf to actually control their resources. So, this bear the question then as to what other alternative can you use, if any? Obviously, I don't want to change the root limits just for that.
Re: ssh remote execution: PATH
--- Damien Miller [EMAIL PROTECTED] wrote: On Mon, 13 Feb 2006, Peter wrote: $ ssh [EMAIL PROTECTED] /usr/local/sbin/command The PATH of the user (given in ~/.profile) contains /usr/local/sbin but evidently this file remains unread. .profile is only used for interactive sessions. Try .kshrc Ok, so you're saying the user should change shells (from bash) to ksh?
Re: MIPS CPU
I see. so 2xx version is much friendly :] Dunceor . wrote: Yes as he says it's not supported. I looked at that board a few months back also and to get it to work you need to port mips32 (there are some from NetBSD that might work) and then get the board to work. It's ALOT of work. It's a nice board though. // Kalle On 2/12/06, Alexander Yurchenko [EMAIL PROTECTED] wrote: On Sat, Feb 11, 2006 at 01:00:30PM +0200, Edgars wrote: I just want to know, is that MIPS cpu supported by openbsd, didn't find info on hw pages. http://www.routerboard.com/rb500.html nope. and since it's mips32 i doubt it will be supported. ** Scanned by MailScan Anti-Virus and Content Security Software. Visit http://www.mwti.net for more info on eScan and MailScan. ** -- Alexander Yurchenko ** Scanned by MailScan Anti-Virus and Content Security Software. Visit http://www.mwti.net for more info on eScan and MailScan. **