Re: playing flash videos
Jacob Yocom-Piatt writes: > oops, it's 13.11 in the FAQ. sorry for tha noise Don't do that. :) There are other options besides what's in the FAQ. ,[ from an undeadly comment ] | There are free options for playing Flash on OpenBSD. | | Check out Gnash (http://www.gnu.org/software/gnash). The Firefox | plugin from CVS works with OpenBSD's Firefox port; I haven't | tried the kde one. Gnash is under heavy development, and can't | yet play flv, but for that you can use multimedia/xine-ui or | x11/mplayer. | | The two standalones can be combined with Firefox extensions such | as VideoDownloader, which extracts the links from places like | youtube and google video, and allows you to download the files | somewhat painlessly. ` Gnash CVS was stable on OpenBSD as of yesterday, if you want to try that, or you could wait a few weeks for the next alpha release. Current Gnash CVS just needs one small patch : http://deanna.freeshell.org/patch-plugin_Makefile_am
Re: Managed UPS on OpenBSD
Thanks. I didn't know if there where any OpenBSD specific things I should consider. Thanks for answering anyway! Floor Terra On Sep 19, 2006, at 2:31 AM, Matthew Weigel wrote: Floor Terra wrote: Not an OpenBSD question. That said, it sure looks like http://www.networkupstools.org/compat/stable.html lists a lot of Back-UPS product ranges from APC... -- Matthew Weigel
Re: Faster SBC
I think that one beat my wrap :) Do you have any price information? /B On 19/09/06, Stuart Henderson <[EMAIL PROTECTED]> wrote: I thought these look interesting, has anyone tried them already? http://www.win-ent.com/MB-06047.htm
Re: Mysql in replication setup
Okay... but by looking in iostat, it looks like pretty low traffic. 1 to 2 MB/sec. A higher number of transfers per second, though. You are right! Yes But the question is also, is there something else then... A few ideas below. Sure not all apply for sure, but just to show you that assuming it's the same setup and from 4.1 to 5.0 makes no difference, or have no impact might not always be true. Well... it's getting data from the master all the time, so I guess, it will be in waiting for i/o all the time. However, this is by "design" (if you like to speak of design in regards to MySQL). And still I should be able to connect to mysql and do a show slave status\G quite fast (not waiting 6 seconds to complete that task...). It gets even worse, if I try to do a select on some database. Yeah, the database could be locked while I do that, but since there are 50 queries / second coming in, the database still should have enough time to answer (in between being locked). May be. But it may depend on many things including file system use too. Does you Linux version actually writes the data to the drive, or to cache and flush time to time. Meaning faster to process locks if you do use any? If it crash, do you actually lost some data that were not written to disk in that case? If it crash on OpenBSD, the data will/should be there. I am not saying this is THE reason, but consider it however. Also some design in MySQL might affect you too if you do use locks and you might here, I don't know the data you use: "WRITE locks normally have higher priority than READ locks to ensure that updates are processed as soon as possible. This means that if one thread obtains a READ lock and then another thread requests a WRITE lock, subsequent READ lock requests wait until the WRITE thread has gotten the lock and released it. You can use LOW_PRIORITY WRITE locks to allow other threads to obtain READ locks while the thread is waiting for the WRITE lock. You should use LOW_PRIORITY WRITE locks only if you are sure that eventually there will be a time when no threads have a READ lock." Also something that may well apply to you as you refer to timezone table that you do not replicate over. Did you consider this when mixing 4.1 to 5.0: #If the master uses MySQL 4.1, the same system time zone should be set for both master and slave. Otherwise some statements will not be replicated properly, such as statements that use the NOW() or FROM_UNIXTIME() functions. You can set the time zone in which MySQL server runs by using the --timezone=timezone_name option of the mysqld_safe script or by setting the TZ environment variable. Both master and slave should also have the same default connection time zone setting; that is, the --default-time-zone parameter should have the same value for both master and slave. Note that this is not necessary when the master is MySQL 5.0 or later. Anyways, many others issues you should/need to consider when mixing, or trying to mix version of master/slave 4.1 to 5.0: http://mysql.speedbone.de/doc/refman/5.0/en/replication-features.html Then do you use trigger as well? I am almost sure this doesn't apply to you, but needs to be consider when mixing version for replications setup. #Known issue: In MySQL 5.0.17, the syntax for CREATE TRIGGER changed to include a DEFINER clause for specifying which access privileges to check at trigger invocation time. (See Section 18.1, "CREATE TRIGGER Syntax", for more information.) However, if you attempt to replicate from a master server older than MySQL 5.0.17 to a slave running MySQL 5.0.17 or up, replication of CREATE TRIGGER statements fails on the slave with a Definer not fully qualified error. A workaround is to create triggers on the master using a version-specific comment embedded in each CREATE TRIGGER statement: Some more issues with mixing 4/1 version as master to 5.0 as slave: If the master uses MySQL 4.1, you must always use the same global character set and collation on the master and the slave, regardless of the MySQL version running on the slave. (These are controlled by the --character-set-server and --collation-server options.) Otherwise, you may get duplicate-key errors on the slave, because a key that is unique in the master character set might not be unique in the slave character set. Note that this is not a cause for concern when master and slave are both MySQL 5.0 or later. Also for speed improvements on slave: http://dev.mysql.com/doc/refman/5.0/en/insert-speed.html and a few more: Q: How can I use replication to improve performance of my system? A: You should set up one server as the master and direct all writes to it. Then configure as many slaves as you have the budget and rackspace for, and distribute the reads among the master and the slaves. You can also start the slaves with the --skip-innodb, --skip-bdb, --low-priority-updates, and --delay-key-write=ALL options to get speed
Getting the latest and greatest X running
Friends, I have connected two VGA cards and here is the scanpci -vv output. I am running OpenBSD 3.9. pci bus 0x cardnum 0x0e function 0x00: vendor 0x5333 device 0x8811 S3 Inc. 86c764/765 [Trio32/64/64V+] STATUS0x0200 COMMAND 0x0003 CLASS 0x03 0x00 0x00 REVISION 0x54 BIST 0x00 HEADER 0x00 LATENCY 0x00 CACHE 0x00 BASE0 0xd400 addr 0xd400 MEM BASEROM 0xe3fb addr 0xe3fb not-decode-enabled MAX_LAT 0x00 MIN_GNT 0x00 INT_PIN 0x01 INT_LINE 0x05 pci bus 0x cardnum 0x0c function 0x00: vendor 0x5333 device 0x8901 S3 Inc. 86c775/86c785 [Trio 64V2/DX or /GX] STATUS0x0200 COMMAND 0x0003 CLASS 0x03 0x00 0x00 REVISION 0x16 BIST 0x00 HEADER 0x00 LATENCY 0x00 CACHE 0x00 BASE0 0xdc00 addr 0xdc00 MEM BASEROM 0x000c addr 0x000c not-decode-enabled MAX_LAT 0x00 MIN_GNT 0x00 INT_PIN 0x01 INT_LINE 0x0b I am hoping that if I get a recent version of x.org running I can get these cards working. How to go about it? Last time around I had compiled XFree86 but recently I compiled x.org on linux but it was PITA since it is maintained in git repositories in a non standard way. I dont want to torture myself. :-) What is your advice? Shall I go by the book and get OpenBSD bundled X and try say by upgrading to -current? Or shud I "make world" with XFree86? Or go the x.org way which I want to avoid? Please advise. Thanks. regards, Girish -- Whenever people agree with me I always feel I am wrong. - Oscar Wilde
Re: Managed UPS on OpenBSD
On 9/18/06, Floor Terra <[EMAIL PROTECTED]> wrote: Which UPS are known to work on OpenBSD and what software do I use to manage it. http://www.networkupstools.org/compat/stable.html I use both a Smart-UPS 620/700 with NUT without any issues. Both are using the apcsmart driver, and a 940-0024C cable. Not sure about the UPS you speak of, but am guessing it uses: newhidups or hidups driver. First I would add NUT from packages, then follow: http://www.networkupstools.org/doc/2.0.0/INSTALL.html This should go through mostly everything you need to configure NUT to work with your UPS.
Re: OpenBSD dedicated hosting
> "Jay" == Jay Truesdale <[EMAIL PROTECTED]> writes: Jay> In the past year they kept having "router problems" with no end of Jay> excuses. After a 12+ hour power outage we had it and went Jay> elsewhere. Elsewhere does not support OpenBSD though. Yes, I suffered those too. However, they're still in the 4 or 5 9's category, even with those outages, and for the price, it's a nice deal. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 http://www.stonehenge.com/merlyn/> Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training!
Cisco/Atheros G card
I've got a "Cisco" Atheros card, it shows up in dmesg as:
ath0 at cardbus1 dev 0 function 0 "Atheros Communications, Inc.,
AR5001--, Wireless LAN Reference Card": irq 11
ath0: AR5213 5.6 phy 4.1 rf5112 3.6, FCC1A, address 00:40:96:a1:49:3c
I can associate and connect to a Linksys AP (802.11b) without WEP, but
when I try to connect to an OpenBSD AP (802.11g, AP has a ral card) I
get "ath0: bogus xmit rate 0x0 (idx 0x7)" and "ath0: unable to reset
hardware; hal status 3819281708". I've tried both 3.9 and -current.
Full dmesg below. Is this a configuration issue, or is something broken
with this card?
hostname.ath0:
dhcp NONE NONE NONE nwid cerberusG nwkey 0xsomething
OpenBSD 4.0 (GENERIC) #1107: Sat Sep 16 19:15:58 MDT 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 Mobile CPU 1.70GHz ("GenuineIntel"
686-class) 1.70 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM
real mem = 267415552 (261148K)
avail mem = 236179456 (230644K)
using 3289 buffers containing 13471744 bytes (13156K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(f5) BIOS, date 07/08/03, BIOS32 rev. 0 @
0xfd7e0, SMBIOS rev. 2.31 @ 0xe0010 (50 entries)
bios0: IBM 2653H6U
apm0 at bios0: Power Management spec V1.2
apm0: battery life expectancy 94%
apm0: AC on, battery charge high
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xfd770/0x890
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdeb0/256 (14 entries)
pcibios0: PCI Interrupt Router at 000:31:0 ("Intel 82371FB ISA" rev 0x00)
pcibios0: PCI bus #6 is the last bus
bios0: ROM list: 0xc/0x1 0xd/0x1000 0xd1000/0x1000
0xdc000/0x4000! 0xe/0x1
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 "Intel 82845 Host" rev 0x04
ppb0 at pci0 dev 1 function 0 "Intel 82845 AGP" rev 0x04
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 vendor "ATI", unknown product 0x4c58 rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
uhci0 at pci0 dev 29 function 0 "Intel 82801CA/CAM USB" rev 0x02: irq 11
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 "Intel 82801CA/CAM USB" rev 0x02: irq 11
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 "Intel 82801CA/CAM USB" rev 0x02: irq 11
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
ppb1 at pci0 dev 30 function 0 "Intel 82801BAM Hub-to-PCI" rev 0x42
pci2 at ppb1 bus 2
cbb0 at pci2 dev 0 function 0 "Ricoh 5C476 CardBus" rev 0xa8: irq 11
cbb1 at pci2 dev 0 function 1 "Ricoh 5C476 CardBus" rev 0xa8: irq 11
"Ricoh 5C552 Firewire" rev 0x00 at pci2 dev 0 function 2 not configured
wi0 at pci2 dev 2 function 0 "Intersil PRISM2.5" rev 0x01: irq 11
wi0: PRISM2.5 ISL3874A(Mini-PCI) (0x8013), Firmware 1.0.7 (primary),
1.3.6 (station), address 00:20:e0:8c:07:9f
fxp0 at pci2 dev 8 function 0 "Intel PRO/100 VE" rev 0x42, i82562: irq
11, address 00:d0:59:c0:16:30
inphy0 at fxp0 phy 1: i82562ET 10/100 PHY, rev. 0
cardslot0 at cbb0 slot 0 flags 0
cardbus0 at cardslot0: bus 3 device 0 cacheline 0x0, lattimer 0xb0
pcmcia0 at cardslot0
cardslot1 at cbb1 slot 1 flags 0
cardbus1 at cardslot1: bus 6 device 0 cacheline 0x0, lattimer 0xb0
pcmcia1 at cardslot1
ichpcib0 at pci0 dev 31 function 0 "Intel 82801CAM LPC" rev 0x02: SpeedStep
pciide0 at pci0 dev 31 function 1 "Intel 82801CAM IDE" rev 0x02: DMA,
channel 0 configured to compatibility, channel 1 configured to compatibility
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA, 57231MB, 117210240 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
atapiscsi0 at pciide0 channel 1 drive 0
scsibus0 at atapiscsi0: 2 targets
cd0 at scsibus0 targ 0 lun 0: SCSI0
5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
ichiic0 at pci0 dev 31 function 3 "Intel 82801CA/CAM SMBus" rev 0x02: irq 11
iic0 at ichiic0
auich0 at pci0 dev 31 function 5 "Intel 82801CA/CAM AC97" rev 0x02: irq
11, ICH3 AC97
ac97: codec id 0x41445348 (Analog Devices AD1881A)
ac97: codec features headphone, Analog Devices Phat Stereo
audio0 at auich0
"Intel 82801CA/CAM Modem" rev 0x02 at pci0 dev 31 function 6 not configured
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
lpt2 at isa0 port 0x3bc/4: polled
npx0 at isa0 port 0xf0/16: using exceptio
Re: OpenBSD dedicated hosting
On 16 Sep 2006 17:30:10 -0700, Randal L. Schwartz wrote: > > > "Gilles" == Gilles Chehade <[EMAIL PROTECTED]> writes: > > Gilles> I am looking for companies that provide OpenBSD-powered dedicated > Gilles> hosting. Currently, I am being hosted by a french company which > Gilles> turned out to be as incompetent as can be, and I am willing to > switch > Gilles> as soon as possible (preferably before the 25th of September). > > stonehenge.com has been on an openbsd-based dedicated box since april of > 2002 > at sprocketdata.com. You can ask me privately about details. > I just dropped SprocketData after having a dedicated server there for about two years. They were really good at first, they helped me track down a bad Ethernet card (in their box) that was giving us problems. Fortunately they had two in the box and it was easy to switch to the other card. In the past year they kept having "router problems" with no end of excuses. After a 12+ hour power outage we had it and went elsewhere. Elsewhere does not support OpenBSD though.
Ruxcon
Anybody going to Ruxcon (30/9-1/10) this year? I'm not sure if I can get there and not all presentations get archived copies, so I'd like to hear what others thought of some of the acts. http://www.ruxcon.org.au >From the land "down under": Australia. Do we look from up over? Do NOT CC me - I am subscribed to the list. Replies to the sender address will fail except from the list-server. Your IP address will also be greytrapped for 24 hours after any attempt. I am continually amazed by the people who run OpenBSD who don't take this advice. I always expected a smarter class. I guess not.
Re: playing flash videos
oops, it's 13.11 in the FAQ. sorry for tha noise
PF Rule
Hi all, Is there a way to write a single rule to cover these 2 rules: no nat on $ext_if inet proto tcp from 192.168.3.204 to any nat on $ext_if from 192.168.3.0/24 to any -> $ext_if Thanks BSD Networking, Microsoft Notworking
playing flash videos
what is the preferred method for playing flash videos on openbsd? i don't see anything definitive when googling and am aware that firefox doesn't have a plugin available since those are closed source.
Faster SBC
I thought these look interesting, has anyone tried them already? http://www.win-ent.com/MB-06047.htm
Re: No Watchdog with Current snapshot/i386/ on Nokia IP120
On 2006/09/17 21:40, Rolf Sommerhalder wrote: > I will check that if I can get access to the datasheet I was interested to see this one: http://tinyurl.com/gl8fr. Seems the PCI IRQ lines are actually using some of the GPIO lines. There are actually quite a few docs to be found, googling with site: and filetype: options works quite well.
Managed UPS on OpenBSD
Hi, I'm searching the internet for a Managed UPS for my OpenBSD server. My main concern is protecting the server from damage caused by sudden power-outages. If the power is gone, the server should have enough time to shut down and power off. It's one server so I wont need a big UPS. The problem is: I have no experience with UPS and I can't find decent documentation on UPS on OpenBSD. The UPS I found is the "APC BackUPS CS 500 USB/Serial", but on the nut website I can't find if it is supported. They support at least partially one APC protocol, but no information on specific models. Which UPS are known to work on OpenBSD and what software do I use to manage it. Floor Terra
Re: Help with chroot
> Connecting to wikidb on localhost as root...failed with error 2002: > Can't connect to local MySQL server through socket '/var/run/mysql/ > mysql.sock' (61). Why not alter to connect to 127.0.0.1? That way you'll connect through TCP sockets instead of UNIX sockets thus avoiding the whole mysql.sock issue. best regards, Reid Nichol President Bush says: War Is Peace Freedom Is Slavery Ignorance Is Strength Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Mysql in replication setup
Marian Hettwer wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Daniel, Daniel Ouellet wrote: Marian Hettwer wrote: As soon as replication starts, mysql gets very unresponsive: - -bash-3.1$ time mysqladmin -uroot -p proc stat Enter password: ++-+---++-+--+---+--+ | Id | User| Host | db | Command | Time | State | Info | ++-+---++-+--+---+--+ | 4 | system user | || Connect | 204 | Waiting for master to send event | | | 5 | system user | || Connect | 8661 | Has read all relay log; waiting for the slave I/O thread to update it | | | 7 | root| localhost || Query | 0| | show processlist | ++-+---++-+--+---+--+ Uptime: 308 Threads: 1 Questions: 6328 Slow queries: 0 Opens: 0 Flush tables: 1 Open tables: 24 Queries per second avg: 20.545 real0m15.463s user0m0.010s sys 0m0.020s 15 bloody seconds to return mysqladmin proc stat ? That ain't good. Wasn't it that your slave actually catch up to the master and replicate all the tables your master had? well, not all tables, but quite a lot of them. Some are ignored. See the my.cnf I provided. You don't provide mysql.err logs, etc and we don't know if it actually replicate your tables or not. I guess from this it did. It is replicating the tables I have. my mysql.err file looks like that: 060915 17:33:29 mysqld started 060915 17:33:29 [Warning] /usr/local/libexec/mysqld: ignoring option '--low-priority-updates' due to invalid value 'ON' 060915 17:33:29 [Warning] /usr/local/libexec/mysqld: ignoring option '--low-priority-updates' due to invalid value 'ON' - --> Seems like that parameter doesn't exist anymore in MySQL 5.0 ... I'll look into it... Starting by looking at errors and then making sure a replication setup doesn't have any errors is always a good thing before saying it doesn't work. So, when no errors happen, may be many things will work just fine. 060915 17:33:29 [Warning] Could not increase number of max_open_files to more than 8096 (request: 8192) - --> You mentioned something about that later in your mail. Could be a problem, eh? Go read it again. I think I pointed it many times so far. I could give you more to work with, but not at this time. If the first reading, and seconds didn't help yet, obviously there is still something to learn and you will always remember it if you dig it up first. But go read the page on the net again about it, see emails I answer not to long ago about that too and even do the very simple test I said to do to test this problem. I don't think I could spell it better. If you still have issue with this, I will be glad to point you in the right direction, but do your homework first and try it out. The answer was provided very clearly and repeated as well and IS in the document about it as well. May be my English is the problem there, but the informations is there. Read a few more times if needed. 060915 17:33:29 [Warning] mysql.user table is not updated to new password format; Disabling new password usage until mysql_fix_privilege_tables is run - --> Yeah well, I could run mysql_fix_privilege_tables, however, I bet it has nothing todo with my problem. That's not fix privilege. Men, go read please. Look for old_password. 060915 17:33:29 [Warning] Can't open and lock time zone table: Table 'mysql.time_zone_leap_second' doesn't exist trying to live without them 060915 17:33:29 [Warning] Neither --relay-log nor --relay-log-index were used; so replication may break when this MySQL server acts as a slave and has his hostname changed!! Please use '--relay-log=babelfish45-relay-bin' to avoid this problem. - --> As I'm not about to change the hostname, I'll fix that problem later. That is not the host name here. Go read the manual. They tell you to configure the my.cnf to use a log file reflecting your host name, not to change your host name. I think spending some time reading will help you work on the software you want to use. This is well explain in the log as well as in the manual. They even tell you what to use: --relay-log=babelfish45-relay-bin Where does it say hostname needs to be changed? 060915 17:33:29 [Note] /usr/local/libexec/mysqld: ready for connections. Version: '5.0.22-log' socket: '/tmp/mysql.sock' port: 3306 OpenBSD port: mysql-server-5.0.22 060915 17:33:29 [Note] Slave SQL thread initialized, starting replication in log 'foo-bin.40' at positi
Re: spews1- i/o error
On 9/18/06, Joachim Schipper <[EMAIL PROTECTED]> wrote: On Mon, Sep 18, 2006 at 10:20:55AM -0400, Frank Bax wrote: > Since 4:00 am EST ... > > spamd-setup: Could not add blacklist spews1: Input/output error ISTR that spews1 is no longer freely available. See the commit logs and/or the archives of this site; it has been removed from the -current configuration for several months. IIRC that was spamhaus, unless spews is going the same way. It seems to work for me, maybe there was a network problem? http://www.spews.org/spews_list_level1.txt
Re: Power Management on Thinkpads (T42p) under X11
On 9/18/06, Theo de Raadt <[EMAIL PROTECTED]> wrote: > > I believe it is available under hw.sensors (see sysctl(8)) for most > > machines. Though I must admit nothing is shown on my 390X; more recent > > models are more likely to be supported. > > On my X31 hw.sensors doesn't show anything. But, 'apm' does tell you that, and > some other things (you may need to run apmd) Some machines have sensors, some don't. And some have sensors available only through ACPI, which mine seems to be one of, as Linux or FreeBSD are able to get the CPU temperature, for example. But for my needs getting battery state from apm is enough. -- viq
Re: Help with chroot
Last night I wiped my drive completely and did a fresh install OpenBSD 3.9 MySQL 5.0.5 PHP5 mediawiki 1.5.6 I followed the instructions presented after each package was added. I didn't setup mediawiki until today at work. After a little bit of messing around I finally got it working though somewhat flakey. It went through the set up and created the database in MySQL but would not go to the main page until I refreshed several times. Finally it went to the main page and I tried a few links and they worked ok. When I created a new user the whole thing died. I removed the LocalSettings.php file and did the setup again but I could not even get to the setup page. I removed MySQL and it's database, PHP and mediawike and added the pacakages again. Again following each of the instructions, but now it won't find the mysq.sock even though it appears to be where it belongs, (/var/www/var/run/mysql/mysql.sock Here is the page I get when I try to set it up. I hope the problem is just that I don't have the socket in the right place. If that is not it I am going to start all over by installing OpenBSD again. MediaWiki 1.5.6 installation Please include all of the lines below when reporting installation problems. Checking environment... PHP 5.0.5: ok PHP server API is apache; ok, using pretty URLs (index.php/Page_Title) Have XML / Latin1-UTF-8 conversion support. PHP is configured with no memory_limit. Have zlib support; enabling output compression. Neither Turck MMCache nor eAccelerator are installed, can't use object caching functions GNU diff3 not found. Found GD graphics library built-in, image thumbnailing will be enabled if you enable uploads. Installation directory: /mediawiki Script URI path: /mediawiki Warning: $wgSecretKey key is insecure, generated with mt_rand(). Consider changing it manually. Connecting to wikidb on localhost as root...failed with error 2002: Can't connect to local MySQL server through socket '/var/run/mysql/ mysql.sock' (61).
Re: OpenBSD dedicated hosting
edgarz wrote: I do it too :) Same answer: http://marc.theaimsgroup.com/?l=openbsd-misc&m=115846012811205&w=2 Daniel
Re: Power Management on Thinkpads (T42p) under X11
> > I believe it is available under hw.sensors (see sysctl(8)) for most > > machines. Though I must admit nothing is shown on my 390X; more recent > > models are more likely to be supported. > > On my X31 hw.sensors doesn't show anything. But, 'apm' does tell you that, > and > some other things (you may need to run apmd) Some machines have sensors, some don't.
Re: chrooted sftponly - how ?
I'm sure the people behind http://chrootssh.sourceforge.net/index.php would argue about it being impossible. Before I saw the light and went OpenBSD I used these patches on an FC1 box and it worked like a charm, doing exactly what your after. I've not tried to replace the OpenSSH install on OpenBSD with a patched version always assuming it would break horribly. If you get it working let me know as I'd love to be able to chroot SSH/SFTP again. Bambero wrote: You can create a systrace policy for a sshd instance dedicated to sftp service This sems to be better way. Whatever, it will be nice to have builtin chroot in sftp-sever. Such in ftpd. But I suppose it's technicaly impossible. Thanks for help Bambero
Re: Power Management on Thinkpads (T42p) under X11
On Monday 18 September 2006 21:10, Joachim Schipper wrote: > On Mon, Sep 18, 2006 at 08:56:32AM -0700, Subcommander l0r3zz wrote: > > Greetz, > > What do people use to do power management on their thinkpads? > > I've google openbsd.org and can't seem to find any tools that work on the > > desktop. > > I run Gnome and it seems that i want gnome-power, but it doesn't seem to > > be incuded in the pors tree. > > > > I'm mostly interested in knowing how much time I have till my battery > > dies. (Not fun when your in the middle of a compile ) > > I believe it is available under hw.sensors (see sysctl(8)) for most > machines. Though I must admit nothing is shown on my 390X; more recent > models are more likely to be supported. On my X31 hw.sensors doesn't show anything. But, 'apm' does tell you that, and some other things (you may need to run apmd) > Joachim -- viq
Re: Kernel Hangs; Supermicro 5015M-MR (Intel E7230)
I was setting up a couple of NetFRAME 1420's this morning with OpenBSD 3.9 and ran into the kernel hang that was mentioned on the list back in June. I just thought I'd let everyone know that the kernel on the current 4.0 snapshot floppies works fine for me. -Damian
Re: Launching the Internet
Re: OpenBSD dedicated hosting
I do it too :) Gilles Chehade wrote: Hi misc@, I am looking for companies that provide OpenBSD-powered dedicated hosting. Currently, I am being hosted by a french company which turned out to be as incompetent as can be, and I am willing to switch as soon as possible (preferably before the 25th of September). I have google-d a bit and found out a few companies, but its hard to know in advance which are competent and which will drive me into depression. So I'm turning to you, if you know of companies that do good work, that aren't too expensive and that provide OpenBSD based services, please mail me off-list so I can start digging their offers. Thanks a lot people ;)
Re: chrooted sftponly - how ?
If you have a spare IP address (outside your firewall), just setup a server with it with default openbsd configurations. Make sure it's only function is for sftp. I would recommend you do the same thing on an ftpd server as well. Make sure you have a policy that all your users are aware of that it's not secure. If you ever get rooted, it's outside your firewall. On Mon, 18 Sep 2006 15:23:37 +0200, Bambero wrote > Hello > > Is there any good way to setup chrooted sftp-server without shell > access ? > > I tried scponly but it's not secure enough (I heard), there is no > port for openbsd, and I had problems to set it up. > > Second way is rssh, but compilation fails becouse of worexp. > > Now I'm using ftpd but I want to change it becouse of text/plain passwords. > > Any suggestions ? > > Bambero
Re: swap mfs in fstab boot warning
Thanks you so much! It's all starting to make sense now. Your info was exactly what I needed! - I'll try the logging to memory-buffers... Thanks! Rhea
Re: Power Management on Thinkpads (T42p) under X11
On Mon, Sep 18, 2006 at 08:56:32AM -0700, Subcommander l0r3zz wrote: > Greetz, > What do people use to do power management on their thinkpads? > I've google openbsd.org and can't seem to find any tools that work on the > desktop. > I run Gnome and it seems that i want gnome-power, but it doesn't seem to be > incuded in the pors tree. > > I'm mostly interested in knowing how much time I have till my battery dies. > (Not fun when your in the middle of a compile ) I believe it is available under hw.sensors (see sysctl(8)) for most machines. Though I must admit nothing is shown on my 390X; more recent models are more likely to be supported. Joachim
Re: spews1- i/o error
On Mon, Sep 18, 2006 at 10:20:55AM -0400, Frank Bax wrote: > Since 4:00 am EST ... > > spamd-setup: Could not add blacklist spews1: Input/output error ISTR that spews1 is no longer freely available. See the commit logs and/or the archives of this site; it has been removed from the -current configuration for several months. Joachim
Re: webbased authpf ?
On Mon, Sep 18, 2006 at 11:23:52AM -0400, Brian Shackelford wrote: > Hello, > > I have been following this thread and am extremely interested in any > solutions to the presented scenarios. We use OpenBSD to build > firewall/Spam filtering boxes customized as needed by our customers. > > I have been working on developing a Python client for Windows that would > open/maintain an SSH connection by reading the windows username OR by > having a configurable username/password that is stored (encrypted) on > the client system. > > If only our customers would use BSD workstations...sigh... > > Alternatively we have looked at writing a small server piece that simply > modifies the tables in PF as needed as well and custom writing a piece > of software for the Win32 clients (again in python) that would do the > same thing as above - just it would communicate with the custom server. > > The only issue we have with the second option is security concerns as we > are not hard-core programmers at heart so I would prefer the simpler > scripted solution. In that light - the first solution would be better > from our point of view - but I am sure there is a flaw in it somewhere. > > As to when the client disconnects - the ssh session will close when the > system is turned off - and we can also have a notification icon on the > taskbar to control the connection. > > While a web-based solution would be more than ideal - I think what I > have will work. What our clients need is a piece of software that > doesn't require much user interaction - even Putty would be hard to > convince them to use. So we hide everything behind a pretty GUI and do > the same things through a custom written app. > > Please feel free to tear my every simple plan to shredsI can take > it. Your first solution is most likely ideal; SSH already has pretty good security, and is sufficiently easy to use that it's hard to make a mistake that will cost (much) security. However, you might need some way to separate your clients from one another. Maybe a switch which simply doesn't route from client a to client b (VLANs could be used), or running everything over some sort of VPN (IPsec, OpenVPN) and blocking all other packets. The latter would require some additional software, though... Joachim
Gnats PR 5231 - Intel Core2 Duo E6400 BOXDP965LTCK
fwiw: With the snapshot of 2006-09-16 I still have this problem. Not that I expected it to be fixed, but just wanted to confirm that I am following the snapshots. -- Jack J. Woehr Director of Development Absolute Performance, Inc. [EMAIL PROTECTED] 303-443-7000 ext. 527
Re: OBSD documentation
You guys really don't get it do you? Adaptec CLAIMS that they support open source projects. In reality they don't. Yes they are free to NOT support open source, no one questions that however theirs mouths say yes but their actions say no. What in the world is wrong with you people to side with vendors that sell shity hardware in the first place and then fail to provide YOU with the tools to make their hardware work. Other disciplines have a governing bodies to ensure quality; think of mechanical, civil, aeronautics engineers etc. Hardware engineers do not have such a body to protect YOU. Why do hardware manufacturers get to get away with faulty designs and sub par quality? I'll tell you why; because people like you let them get away with it. On Mon, Sep 18, 2006 at 06:46:01AM -0700, Subcommander l0r3zz wrote: >On 9/18/06, Marco Peereboom <[EMAIL PROTECTED]> wrote: > > On Sun, Sep 17, 2006 at 08:58:02PM -0700, James C. Cotillier wrote: > > But on Adaptec for a moment, as recalcitrant as find their > > position, I have to remember that, just as we can say > > words to the effect of "anyone who doesn't like the > > behavior of our driver is encouraged to write their own," > > Adaptec is free to say, "anyone who doesn't like our > > draconian policies is free to use another vendor or > > roll their own hardware." The flip side of Free as in > > Freedom, perhaps. > > That is not a valid argument. One pays for Adaptec hardware, conversely > OpenBSD is free. > >Whether one pays or not has nothing to do with the validity of the >argument. One IS free to pay for another vendor's hardware, or build >hardware of your own and offer assistance to open source developers. >Adaptec is within their rights though I don't agree with their position. >We have three choices, either to put pressure on them to provide >documentation, work with vendor's that will support open source drivers or >reverse engineer our own. I believe Adaptec's primary goal is to make >profit, this is not OpenBSD's goal, so there is not much we can do if we >are unwilling to exert the kind of pressure that would translate into >having an effect on their profit margin, seems a waste of time. If indeed >we want to provide drivers to Adaptec hardware because there is so much of >it out there, then i would say the best course is reverse engineering, the >OBSD community wins, and if the reverse engineered driver is good, it will >be adopted by others in the Open Source community, thus there is also a >potential to exert market pressure indirectly without OBSD wasting cycles >trying to solely achieve that aim. Working with open source vendors is a >no-brainer.
Re: webbased authpf ?
Hello, I have been following this thread and am extremely interested in any solutions to the presented scenarios. We use OpenBSD to build firewall/Spam filtering boxes customized as needed by our customers. I have been working on developing a Python client for Windows that would open/maintain an SSH connection by reading the windows username OR by having a configurable username/password that is stored (encrypted) on the client system. If only our customers would use BSD workstations...sigh... Alternatively we have looked at writing a small server piece that simply modifies the tables in PF as needed as well and custom writing a piece of software for the Win32 clients (again in python) that would do the same thing as above - just it would communicate with the custom server. The only issue we have with the second option is security concerns as we are not hard-core programmers at heart so I would prefer the simpler scripted solution. In that light - the first solution would be better from our point of view - but I am sure there is a flaw in it somewhere. As to when the client disconnects - the ssh session will close when the system is turned off - and we can also have a notification icon on the taskbar to control the connection. While a web-based solution would be more than ideal - I think what I have will work. What our clients need is a piece of software that doesn't require much user interaction - even Putty would be hard to convince them to use. So we hide everything behind a pretty GUI and do the same things through a custom written app. Please feel free to tear my every simple plan to shredsI can take it. Thanks, Brian Shackelford -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Lars Hansson Sent: Monday, September 18, 2006 4:10 AM To: misc@openbsd.org Subject: Re: webbased authpf ? On Monday 18 September 2006 16:01, Bryan Irvine wrote: > Yes but does authpf have a mechanism for understanding this? You could insert the Ip address into the authpf_users table (or whatever table you want, really) but you'd still have the good ole problem of reliably detecting user "logout" or disconnection. --- Lars Hansson
Re: chrooted sftponly - how ?
On 9/18/06, Francois Visconte <[EMAIL PROTECTED]> wrote:
Hello,
You can create a chrooted environment for another ssh server:
1/ ldd sshd and sftp-server binaries and copy dependencies
2/ copy
/etc/{group,hosts,passwd,protocols,pwd.db,resolv.conf,services,ttys} and
/bin/{cat,pwd,rm,sh} into your chroot
3/ modify /etc/ files to change users groups ...
3bis/ run pwd_mkdb(8) with appropriate options to regenerate password
db into your chrooted env
4/ create devices /dev/{log,null,random,...} in your chrooted env
5/ configure your ssh server to listen on another port than 22 if there
is already one on this machine
6/ put "chroot /my_chroot /usr/sbin/sshd" in your rc.local
7/ make a script to apply userland upgrades to your chroot env
For each user ? Noo it's not for me.
...Or
You can create a systrace policy for a sshd instance dedicated to sftp
service
This sems to be better way.
Whatever, it will be nice to have builtin chroot in sftp-sever. Such
in ftpd. But I suppose it's technicaly impossible.
Thanks for help
Bambero
Cheers,
Frangois Visconte
Bambero wrote:
> Seems to work fine but it's still not chrooted environment. Users have
> access to a whole system.
>
> On 9/18/06, Francois Visconte <[EMAIL PROTECTED]> wrote:
>
>> Hello,
>> Try changing sftp-only user's shell to /usr/libexec/sftp-server
>>
>> Cheers,
>> Frangois Visconte
>>
>> Bambero wrote:
>>
>> > Hello
>> >
>> > Is there any good way to setup chrooted sftp-server without shell
>> > access ?
>> >
>> > I tried scponly but it's not secure enough (I heard), there is no port
>> > for openbsd,
>> > and I had problems to set it up.
>> >
>> > Second way is rssh, but compilation fails becouse of worexp.
>> >
>> > Now I'm using ftpd but I want to change it becouse of text/plain
>> > passwords.
>> >
>> > Any suggestions ?
>> >
>> > Bambero
Re: webbased authpf ?
* Joachim Schipper <[EMAIL PROTECTED]> [2006-09-18 00:55]: > On Sun, Sep 17, 2006 at 08:46:40PM -0600, Chris Kuethe wrote: > > On 9/17/06, Lars Hansson <[EMAIL PROTECTED]> wrote: > > >On Saturday 16 September 2006 03:33, Bryan Irvine wrote: > > >> Just make a table and write up some script that add to the table. > > >> > > >> Something like nocat would probably what you are looking for. Maybe > > >> nocat would work? I've never used it so I don't know. > > > > > >(This apply to all HTTP fw/authpf solutions...) > > >How do you know when a user has "logged out"? > > > > A nasty ugly hack that I've seen in production is that you have to > > make an https request to the gateway every so often (usually once a > > minute). I can think of lots of ways to subvert such a system. > This is exactly why authpf uses ssh instead of https. ssh connections are for a session, and they stay around. https is not. https just plain blows for this. If you really want a "secure" web based authpf - use authpf - and go find the cheezy java ssh client If you want it insecure and spoofable, make a 3 line cgi that drops users into a pf table after authenticating and use the new dhcp features on the net you're doing it on to clear the table when ip's are released. But this is not the list to talk about insecure spoofable solutions. -Bob
Power Management on Thinkpads (T42p) under X11
Greetz, What do people use to do power management on their thinkpads? I've google openbsd.org and can't seem to find any tools that work on the desktop. I run Gnome and it seems that i want gnome-power, but it doesn't seem to be incuded in the pors tree. I'm mostly interested in knowing how much time I have till my battery dies. (Not fun when your in the middle of a compile ) Thanks, l0r3zz
Re: chrooted sftponly - how ?
Hello,
You can create a chrooted environment for another ssh server:
1/ ldd sshd and sftp-server binaries and copy dependencies
2/ copy
/etc/{group,hosts,passwd,protocols,pwd.db,resolv.conf,services,ttys} and
/bin/{cat,pwd,rm,sh} into your chroot
3/ modify /etc/ files to change users groups ...
3bis/ run pwd_mkdb(8) with appropriate options to regenerate password
db into your chrooted env
4/ create devices /dev/{log,null,random,...} in your chrooted env
5/ configure your ssh server to listen on another port than 22 if there
is already one on this machine
6/ put "chroot /my_chroot /usr/sbin/sshd" in your rc.local
7/ make a script to apply userland upgrades to your chroot env
...Or
You can create a systrace policy for a sshd instance dedicated to sftp
service
Cheers,
Frangois Visconte
Bambero wrote:
Seems to work fine but it's still not chrooted environment. Users have
access to a whole system.
On 9/18/06, Francois Visconte <[EMAIL PROTECTED]> wrote:
Hello,
Try changing sftp-only user's shell to /usr/libexec/sftp-server
Cheers,
Frangois Visconte
Bambero wrote:
> Hello
>
> Is there any good way to setup chrooted sftp-server without shell
> access ?
>
> I tried scponly but it's not secure enough (I heard), there is no port
> for openbsd,
> and I had problems to set it up.
>
> Second way is rssh, but compilation fails becouse of worexp.
>
> Now I'm using ftpd but I want to change it becouse of text/plain
> passwords.
>
> Any suggestions ?
>
> Bambero
Re: chrooted sftponly - how ?
Seems to work fine but it's still not chrooted environment. Users have access to a whole system. On 9/18/06, Francois Visconte <[EMAIL PROTECTED]> wrote: Hello, Try changing sftp-only user's shell to /usr/libexec/sftp-server Cheers, Frangois Visconte Bambero wrote: > Hello > > Is there any good way to setup chrooted sftp-server without shell > access ? > > I tried scponly but it's not secure enough (I heard), there is no port > for openbsd, > and I had problems to set it up. > > Second way is rssh, but compilation fails becouse of worexp. > > Now I'm using ftpd but I want to change it becouse of text/plain > passwords. > > Any suggestions ? > > Bambero
Re: chrooted sftponly - how ?
Hello, Try changing sftp-only user's shell to /usr/libexec/sftp-server Cheers, Frangois Visconte Bambero wrote: Hello Is there any good way to setup chrooted sftp-server without shell access ? I tried scponly but it's not secure enough (I heard), there is no port for openbsd, and I had problems to set it up. Second way is rssh, but compilation fails becouse of worexp. Now I'm using ftpd but I want to change it becouse of text/plain passwords. Any suggestions ? Bambero
spews1- i/o error
Since 4:00 am EST ... spamd-setup: Could not add blacklist spews1: Input/output error
chrooted sftponly - how ?
Hello Is there any good way to setup chrooted sftp-server without shell access ? I tried scponly but it's not secure enough (I heard), there is no port for openbsd, and I had problems to set it up. Second way is rssh, but compilation fails becouse of worexp. Now I'm using ftpd but I want to change it becouse of text/plain passwords. Any suggestions ? Bambero
Re: OpenBSD dedicated hosting
2006/9/18, Jared Solomon <[EMAIL PROTECTED]>: On 9/16/06, Daniel Ouellet <[EMAIL PROTECTED]> wrote: > Gilles Chehade wrote: > > Hi misc@, > > > > I am looking for companies that provide OpenBSD-powered dedicated hosting. > > Currently, I am being hosted by a french company which turned out to be as > > incompetent as can be, and I am willing to switch as soon as possible > > (preferably before the 25th of September). Currently I use http://www.geekisp.com They use OpenBSD, and I have had zero complaints with their service. I recommend New York Internet. http://www.nyi.net Regards, -- Eduardo Alvarenga
Re: OpenBSD dedicated hosting
On 9/16/06, Daniel Ouellet <[EMAIL PROTECTED]> wrote: Gilles Chehade wrote: > Hi misc@, > > I am looking for companies that provide OpenBSD-powered dedicated hosting. > Currently, I am being hosted by a french company which turned out to be as > incompetent as can be, and I am willing to switch as soon as possible > (preferably before the 25th of September). Currently I use http://www.geekisp.com They use OpenBSD, and I have had zero complaints with their service. -j -- Try to do nothing for money that you wouldn't do for free. --Paul Krassner
Re: Mysql in replication setup
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Stuart Henderson wrote: >>25222 _mysql-50 185M 50M sleep/0 biowai 0:14 1.42% mysqld >> >>Well... to me it looks like the box is idle... why is MySQL still pretty >>unresponsive (I tend to say slow). > > > It's not idle, it's waiting for i/o to complete. > > Okay... but by looking in iostat, it looks like pretty low traffic. 1 to 2 MB/sec. A higher number of transfers per second, though. - - -bash-3.1$ iostat 1 ttysd0 cd0 fd0 cpu tin tout KB/t t/s MB/s KB/t t/s MB/s KB/t t/s MB/s us ni sy in id 01 16.85 15 0.25 0.00 0 0.00 0.00 0 0.00 0 0 0 0 99 0 1145 16.09 90 1.41 0.00 0 0.00 0.00 0 0.00 0 0 0 0 99 0 1022 16.52 77 1.24 0.00 0 0.00 0.00 0 0.00 2 0 0 0 97 0 158 16.21 82 1.29 0.00 0 0.00 0.00 0 0.00 0 0 0 0 99 0 213 16.00 92 1.44 0.00 0 0.00 0.00 0 0.00 0 0 0 0100 0 149 16.00 155 2.43 0.00 0 0.00 0.00 0 0.00 0 0 0 0100 0 229 15.93 181 2.81 0.00 0 0.00 0.00 0 0.00 1 0 0 0 99 0 657 16.97 82 1.35 0.00 0 0.00 0.00 0 0.00 1 0 0 0 99 0 217 16.37 85 1.35 0.00 0 0.00 0.00 0 0.00 2 0 1 0 97 0 155 16.71 78 1.27 0.00 0 0.00 0.00 0 0.00 2 0 0 0 97 0 209 16.61 78 1.27 0.00 0 0.00 0.00 0 0.00 1 0 1 0 98 0 257 16.64 74 1.20 0.00 0 0.00 0.00 0 0.00 2 0 0 0 97 0 188 16.00 90 1.40 0.00 0 0.00 0.00 0 0.00 0 0 0 0100 0 149 16.09 95 1.49 0.00 0 0.00 0.00 0 0.00 0 0 0 0100 0 140 16.00 212 3.31 0.00 0 0.00 0.00 0 0.00 0 0 0 0100 0 153 16.06 134 2.10 0.00 0 0.00 0.00 0 0.00 0 0 0 0100 0 150 16.08 99 1.55 0.00 0 0.00 0.00 0 0.00 1 0 0 0 99 0 151 16.72 88 1.43 0.00 0 0.00 0.00 0 0.00 1 0 0 0 98 0 150 16.24 98 1.55 0.00 0 0.00 0.00 0 0.00 1 0 0 0 98 0 221 16.42 75 1.20 0.00 0 0.00 0.00 0 0.00 1 0 1 0 97 Well... it's getting data from the master all the time, so I guess, it will be in waiting for i/o all the time. However, this is by "design" (if you like to speak of design in regards to MySQL). And still I should be able to connect to mysql and do a show slave status\G quite fast (not waiting 6 seconds to complete that task...). It gets even worse, if I try to do a select on some database. Yeah, the database could be locked while I do that, but since there are 50 queries / second coming in, the database still should have enough time to answer (in between being locked). Okay, flame me, but, the same replication setup like it is in use here on a Debian Woody with Linux 2.4.31 takes 0,00 seconds to do a select count(*) foo; while OpenBSD needs from 0,83 to 7,56 seconds to complete the request :-/ Strange... mysql> select count(*) from foo; +--+ | count(*) | +--+ | 1389660 | +--+ 1 row in set (0.83 sec) mysql> select count(*) from foo; +--+ | count(*) | +--+ | 1389665 | +--+ 1 row in set (3.70 sec) mysql> select count(*) from foo; +--+ | count(*) | +--+ | 1389677 | +--+ 1 row in set (7.56 sec) mysql> select count(*) from foo; +--+ | count(*) | +--+ | 1389697 | +--+ 1 row in set (6.52 sec) mysql> select count(*) from foo; +--+ | count(*) | +--+ | 1389699 | +--+ 1 row in set (5.06 sec) mysql> Linux 2.4.31: mysql> select count(*) from foo; +--+ | count(*) | +--+ | 1405115 | +--+ 1 row in set (0.00 sec) The Linux box is running the same hardware like the OpenBSD box. Only difference is that the Linux box is running MySQL 4.1.14 whereas OpenBSD runs 5.0.22 Granted, you can't compare those two systems. On the other hand, the Linux box is in production, taking the 50 queries / second from replication while handling another 50 queries / second due to being in production. Counts up to 100 queries per second avg. Any more ideas? Should it be all related to the replication setup and Disk I/O ? I do know that MySQL is a bitch in regards to I/O and VM. 'tis no fun to handle huge files: - - -bash-3.1$ ls -l /usr/local/mysql/data/*relay* - - -rw-rw 1 _mysql _mysql 197288820 Sep 18 11:45 /usr/local/mysql/data/babelfish45-relay-bin.32 - - -rw-rw 1 _mysql _mysql 31 Sep 18 09:59 /usr/local/mysql/data/babelfish45-relay-bin.index - - -rw-rw 1 _mysql _mysql 72 Sep 18 11:45 /usr/local/mysql/data/relay-log.info - - -bash-3.1$ Yeah, the relay binlog is _that_ big... ./Marian - -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (Darwin) iD8DBQFFDmr7gAq87Uq5FMsRAoYMAKCK8xsX+xsR5s7zlbcAC2bwkA8IKACgpW5v T2G5alP9I5IboDYbURweUEw= =cQNh - -END PGP SIGNATURE- iD8DBQFFDnqigAq87Uq5FMsRAoD1AKCECxcXefdpAD6qPEFS7tfFBBNDQgCfa5L7 ttSmr1SH+VP
Re: Mysql in replication setup
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hej Stuart, Stuart Henderson wrote: > On 2006/09/18 11:46, Marian Hettwer wrote: > >>Okay... but by looking in iostat, it looks like pretty low traffic. 1 to >>2 MB/sec. A higher number of transfers per second, though. > > > You only sent that to me Marian, did you mean to Cc: [EMAIL PROTECTED] looks like I hitted Reply, not Reply All. Sorry! > > Is disk i/o from other processes on the box also slow? I wonder > if there's some more general problem with disk i/o with OpenBSD on > that hardware, rather than some problem with mysql. Well, I did a dd and that looks okay: - -bash-3.1$ dd if=/dev/zero of=mybigimage.dd bs=64k count=2000 2000+0 records in 2000+0 records out 131072000 bytes transferred in 1.826 secs (71743184 bytes/sec) > > I don't know if there's any chance if it will help, but I also > wonder if there would be any improvement with a single-processor > kernel. If there is, at least it gives extra clues... > I can't reboot right now, but I'll keep rebooting and booting a UP kernel in mind. Thanks, Marian iD8DBQFFDnp6gAq87Uq5FMsRAkMxAJ9lMy+o83OKDzSljr06Mz3fHHKG+wCgh0em IuVplRH00qJL4DL711yan/4= =ayrK -END PGP SIGNATURE-
Re: Mysql in replication setup
> 25222 _mysql-50 185M 50M sleep/0 biowai 0:14 1.42% mysqld > > Well... to me it looks like the box is idle... why is MySQL still pretty > unresponsive (I tend to say slow). It's not idle, it's waiting for i/o to complete.
Re: webbased authpf ?
On Monday 18 September 2006 16:01, Bryan Irvine wrote: > Yes but does authpf have a mechanism for understanding this? You could insert the Ip address into the authpf_users table (or whatever table you want, really) but you'd still have the good ole problem of reliably detecting user "logout" or disconnection. --- Lars Hansson
Re: Mysql in replication setup
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Daniel, Daniel Ouellet wrote: > Marian Hettwer wrote: > >> As soon as replication starts, mysql gets very unresponsive: >> - -bash-3.1$ time mysqladmin -uroot -p proc stat >> Enter password: >> ++-+---++-+--+---+--+ >> >> | Id | User| Host | db | Command | Time | State >> | Info | >> ++-+---++-+--+---+--+ >> >> | 4 | system user | || Connect | 204 | Waiting for >> master to send event | >> | >> | 5 | system user | || Connect | 8661 | Has read all >> relay log; waiting for the slave I/O thread to update it | >> | >> | 7 | root| localhost || Query | 0| >> | show processlist | >> ++-+---++-+--+---+--+ >> >> Uptime: 308 Threads: 1 Questions: 6328 Slow queries: 0 Opens: 0 >> Flush tables: 1 Open tables: 24 Queries per second avg: 20.545 >> >> real0m15.463s >> user0m0.010s >> sys 0m0.020s >> >> 15 bloody seconds to return mysqladmin proc stat ? >> That ain't good. > > > Wasn't it that your slave actually catch up to the master and replicate > all the tables your master had? > well, not all tables, but quite a lot of them. Some are ignored. See the my.cnf I provided. > You don't provide mysql.err logs, etc and we don't know if it actually > replicate your tables or not. I guess from this it did. > It is replicating the tables I have. my mysql.err file looks like that: 060915 17:33:29 mysqld started 060915 17:33:29 [Warning] /usr/local/libexec/mysqld: ignoring option '--low-priority-updates' due to invalid value 'ON' 060915 17:33:29 [Warning] /usr/local/libexec/mysqld: ignoring option '--low-priority-updates' due to invalid value 'ON' - --> Seems like that parameter doesn't exist anymore in MySQL 5.0 ... I'll look into it... 060915 17:33:29 [Warning] Could not increase number of max_open_files to more than 8096 (request: 8192) - --> You mentioned something about that later in your mail. Could be a problem, eh? 060915 17:33:29 [Warning] mysql.user table is not updated to new password format; Disabling new password usage until mysql_fix_privilege_tables is run - --> Yeah well, I could run mysql_fix_privilege_tables, however, I bet it has nothing todo with my problem. 060915 17:33:29 [Warning] Can't open and lock time zone table: Table 'mysql.time_zone_leap_second' doesn't exist trying to live without them 060915 17:33:29 [Warning] Neither --relay-log nor --relay-log-index were used; so replication may break when this MySQL server acts as a slave and has his hostname changed!! Please use '--relay-log=babelfish45-relay-bin' to avoid this problem. - --> As I'm not about to change the hostname, I'll fix that problem later. 060915 17:33:29 [Note] /usr/local/libexec/mysqld: ready for connections. Version: '5.0.22-log' socket: '/tmp/mysql.sock' port: 3306 OpenBSD port: mysql-server-5.0.22 060915 17:33:29 [Note] Slave SQL thread initialized, starting replication in log 'foo-bin.40' at position 358083515, relay log './babelfish45-relay-bin.04' position: 37101832 060915 17:33:29 [Note] Slave I/O thread: connected to master '[EMAIL PROTECTED]:3306', replication started in log 'foo-bin.40' at position 358083543 > Let see 308 seconds up only for the server, did 20.5 query per seconds > for that time with would be your 6328 queries there, of witch all finish > based on this show process and also looks like it finish to mirror it > and now is waiting for the master to send more. > That's right. And according to the queries per second it's continuesly getting data from its master (approx. 49 queries per second, all through replication) Uptime: 231027 Threads: 1 Questions: 11540813 Slow queries: 0 Opens: 0 Flush tables: 1 Open tables: 11 Queries per second avg: 49.954 > I have no clue how big your database might be or not. Nor how many > tables, etc. > all in all it's 175 MyISAM files, but only a small part of them are actually open and in use. As you see above, only 11 tables are open. But some of them are rather large (400 - 600 MB). > The only think I know is that you did install from packages. Great. Then > started master/slave and look like it worked. And as I said, access to MySQL itself is pretty slow. As in: getting a "show slave status\G" needs between 4 and 14 seconds, or a "mysqladmin proc stat" needs up to 16 seconds. And this has really nothing to do with "how big is your database" or "how many open tables do you have
Re: starting ifstated at boot
On 2006/09/18 03:23, Nick Guenther wrote: > On 9/18/06, Jay Jesus Amorin <[EMAIL PROTECTED]> wrote: > >hi, > > > >have gud day, how do i configure ifstated to automatically start at boot > >time? > > > >thanks and more power > > man rc.conf ifstated isn't handled by /etc/rc; try rc.local.
Re: webbased authpf ?
On 9/17/06, Chris Kuethe <[EMAIL PROTECTED]> wrote: > > On 9/17/06, Bryan Irvine <[EMAIL PROTECTED]> wrote: > > Or for that matter logged in. Correct me if I'm wrong on this but if you > > were to have some php or other script that runs from an http session > > wouldn't the session originate from the http server itself and therefore > not > > allow even authenticated users to pass? > > $_SERVER['REMOTE_IP'] > $_SERVER['REMOTE_USER'] Yes but does authpf have a mechanism for understanding this? I've never used authpf, but my limited understanding is that user makes ssh connection, authpf looks at ip of connecting machine and adds it to a table. Can you tell authpf to authorize a different ip than that of the original connection (in this case the webservers own ip)? A quick scan of the man page says no, but I'm no authpf expert. --Bryan
Re: starting ifstated at boot
On 9/18/06, Jay Jesus Amorin <[EMAIL PROTECTED]> wrote: hi, have gud day, how do i configure ifstated to automatically start at boot time? thanks and more power man rc.conf
