Re: NOOP and Spamd

2007-03-19 Thread Shawn K. Quinn
On Mon, 2007-03-19 at 14:04 +0800, Lars Hansson wrote:
 He probably mean MS Mail, an ancient Microsoft mail system
 that no sane person should be running in 2007.

Regardless, if NOOP is in the SMTP standard, and spamd does not handle
it correctly, that is a bug that needs to be fixed.

-- 
Shawn K. Quinn [EMAIL PROTECTED]



cat.c includes

2007-03-19 Thread hiren
hi all,

i found it interesting that cat.c compiles after removing these
includes:

#include ctype.h
#include err.h
#include errno.h
#include string.h
#include unistd.h

im just curious to hear opinions and learn something ;)

-- 
Hiren Patel
[EMAIL PROTECTED]



PF: Redirect traffic to server in public internet

2007-03-19 Thread Matiss Miglans

Hi !

Maybe this is newbie question, but i cant find answer.
I try to make redirection, the destination server is not in Lan, but in 
public Internet.


Public Internet  Router/PF with 
real IP Server with real IP in Public Internet
|--|  
|-|  |- -|
| |  |  111.111.111.111 
 |-- |222.222.222.222|
|--|  
|-|  | --|


I try to do that with PF,  but that not work.
rdr proto tcp from any to any port 22 - 222.222.222.222 port 22
If  the destination server are in lan (with virtual IP 192.168.x.x. ), 
then all works fine.

What I do wrong, or maybe that is impossible ?
Maybe there are some better ways to do this ?
Thanks



Re: Is OpenBSD VuXML broken?

2007-03-19 Thread Markus Bergkvist

http://flirble.disruptiveproactivity.com/rss/

/Markus


Siju George wrote:

Hi,

The latest entry in

http://www.vuxml.org/openbsd/

is

2006-01-10 clamav -- heap overflow in the UPX code

more than a year now?

is there any other place to get updated RSS feed for the same thing?

Thankyou so much

Kind Reagrds
Siju




adjusting mbuf

2007-03-19 Thread Gustavo Rios

Dear list members,

how could i adjust my mbuf size? Need i to compile a news kernel ?



Re: NOOP and Spamd

2007-03-19 Thread Sid Carter
Shawn K. Quinn [EMAIL PROTECTED] writes:

 On Mon, 2007-03-19 at 14:04 +0800, Lars Hansson wrote:
 He probably mean MS Mail, an ancient Microsoft mail system
 that no sane person should be running in 2007.

 Regardless, if NOOP is in the SMTP standard, and spamd does not handle
 it correctly, that is a bug that needs to be fixed.

A typical response from spamd:

# telnet shear.ucar.edu smtp
Trying 192.43.244.163...
Connected to shear.ucar.edu.
Escape character is '^]'.
220 shear.ucar.edu ESMTP spamd IP-based SPAM blocker; Mon Mar 19
02:42:20 2007
helo openbsd.org
250 Hello, spam sender. Pleased to be wasting your time.
noop
451 Temporary failure, please try again later.
Connection closed by foreign host.
#

And this one from the SMTP RFC 821:
NOOP (NOOP)

This command does not affect any parameters or previously
entered commands.  It specifies no action other than that
the receiver send an OK reply.

This command has no effect on any of the reverse-path
buffer, the forward-path buffer, or the mail data buffer.


Sid



Re: No Blob without Puffy

2007-03-19 Thread Artur Grabowski
SW [EMAIL PROTECTED] writes:

 Free as in FreeBSD (and NetBSD and DragonFly BSD etc.). 

War is peace, freedom is freebsd...

//art



Re: spamlogd (how to specify port?)

2007-03-19 Thread Joachim Schipper
On Sun, Mar 18, 2007 at 05:56:04PM -0600, Bob Beck wrote:
 
 * Joachim Schipper [EMAIL PROTECTED] [2007-03-18 16:16]:
  On Sun, Mar 18, 2007 at 08:57:32PM +, Stuart Henderson wrote:
   On 2007/03/18 16:35, Peter wrote:
On OpenBSD 4.0, how do I specify what port spamlogd should consider 
SMTP?  My 
MTA is running on a non-standard port.
   
   edit /usr/src/libexec/spamlogd/spamlogd.c and recompile -
   it's hardcoded ip and port 25 ...
  
  Would something like the following not do the trick?

 diff: add -p option

   Sorry, Absolutely not. I am not putting in a knob for this
 
   If you're crazy enough to run an MTA on a non-standard port
 you know enough to recompile.

Hmmm... yes, you are right. Oh well, I suppose the OP can now try
either.

Joachim



Re: NOOP and Spamd

2007-03-19 Thread Sid Carter
Darren Spruell [EMAIL PROTECTED] writes:
 On 3/18/07, Sid Carter [EMAIL PROTECTED] wrote:
 greylisting. On further investigation, we found out that the MS Mail
 servers send a NOOP before they start sending other SMTP commands and
 spamd returns a 451 even for a NOOP causing the SMTP connection to
 terminate and the connecting mail server doesn't even get greylisted,
 since it hasn't even sent a MAIL FROM and RCPT TO.

 Might be useful if you would include details, and lots of them, on a
 subject like this. MS Mail Servers is generic and meaningless; is it
 Exchange? Is it the SMTP Server? Something else? What software
 version(s)? OSes and versions?

I would just connect back to the IP which was showing this sympton and
those gave me the greeting as Microsoft Mail Server.  I could be wrong
though.

 More than anything, packet captures illustrating the behavior would be
 useful too.

Packet capture enclosed, taken on March 16th, before we applied the NOOP
patch.

Sid
11:05:23.401112 IP mail.client.57542  spamd.server.smtp: . ack 3849587282 win 
5840 nop,nop,timestamp 8504300 1654958060
[EMAIL PROTECTED]
R.A.

b...
11:05:24.086139 IP spamd.server.smtp  mail.client.57542: P 1:2(1) ack 0 win 
17376 nop,nop,timestamp 1654958062 8504300
[EMAIL PROTECTED]@.3..*..1...t
RB.C..%.

b... 
11:05:24.127337 IP mail.client.57542  spamd.server.smtp: . ack 2 win 5840 
nop,nop,timestamp 8504373 1654958062
[EMAIL PROTECTED]
S...

...5b...
11:05:25.075553 IP spamd.server.smtp  mail.client.57542: P 2:3(1) ack 0 win 
17376 nop,nop,timestamp 1654958064 8504373
[EMAIL PROTECTED]@.*..1...t
SB.C

b..5b
11:05:25.119287 IP mail.client.57542  spamd.server.smtp: . ack 3 win 5840 
nop,nop,timestamp 8504472 1654958064
[EMAIL PROTECTED]
T...

b...
11:05:26.012268 IP spamd.server.smtp  mail.client.57542: P 3:4(1) ack 0 win 
17376 nop,nop,timestamp 1654958066 8504472
[EMAIL PROTECTED]@.3,..*..1...t
TB.C..s.

b...a
11:05:26.052768 IP mail.client.57542  spamd.server.smtp: . ack 4 win 5840 
nop,nop,timestamp 8504565 1654958066
[EMAIL PROTECTED]
U./.

b...
11:05:27.137071 IP spamd.server.smtp  mail.client.57542: P 4:5(1) ack 0 win 
17376 nop,nop,timestamp 1654958068 8504565
[EMAIL PROTECTED]@.5...*..1...t
UB.C.x..

b...s
11:05:27.180269 IP mail.client.57542  spamd.server.smtp: . ack 5 win 5840 
nop,nop,timestamp 8504678 1654958068
[EMAIL PROTECTED]
V...

...fb...
11:05:28.072700 IP spamd.server.smtp  mail.client.57542: P 5:6(1) ack 0 win 
17376 nop,nop,timestamp 1654958070 8504678
[EMAIL PROTECTED]@.*..1...t
VB.C

b..fi
11:05:28.112502 IP mail.client.57542  spamd.server.smtp: . ack 6 win 5840 
nop,nop,timestamp 8504771 1654958070
[EMAIL PROTECTED]
W.[.

b...
11:05:29.037260 IP spamd.server.smtp  mail.client.57542: P 6:7(1) ack 0 win 
17376 nop,nop,timestamp 1654958072 8504771
[EMAIL PROTECTED]@. ...*..1...t
WB.C.~?.

b...l
11:05:29.078219 IP mail.client.57542  spamd.server.smtp: . ack 7 win 5840 
nop,nop,timestamp 8504868 1654958072
[EMAIL PROTECTED]
X...

...$b...
11:05:30.037350 IP spamd.server.smtp  mail.client.57542: P 7:8(1) ack 0 win 
17376 nop,nop,timestamp 1654958074 8504868
[EMAIL PROTECTED]@.;...*..1...t
XB.C

b..$i
11:05:30.077915 IP mail.client.57542  spamd.server.smtp: . ack 8 win 5840 
nop,nop,timestamp 8504968 1654958074
[EMAIL PROTECTED]
Y...

b...
11:05:31.027281 IP spamd.server.smtp  mail.client.57542: P 8:86(78) ack 0 win 
17376 nop,nop,timestamp 1654958076 8504968
[EMAIL PROTECTED]@..m..*..1...t
YB.C

b...sk.boing.org.nz ESMTP spamd I
11:05:31.069865 IP mail.client.57542  spamd.server.smtp: . ack 86 win 5840 
nop,nop,timestamp 8505067 1654958076
[EMAIL PROTECTED]


b...
11:05:31.069867 IP mail.client.57542  spamd.server.smtp: P 0:30(30) ack 86 win 
5840 nop,nop,timestamp 8505067 1654958076
[EMAIL PROTECTED]

b...NOOP

11:05:31.070423 IP spamd.server.smtp  mail.client.57542: P 86:134(48) ack 30 
win 17376 nop,nop,timestamp 1654958076 8505067
[EMAIL PROTECTED]@..2..*..1...t
.B.C

b...451 Temporary failure, please 
11:05:31.070541 IP spamd.server.smtp  mail.client.57542: F 134:134(0) ack 30 
win 17376 nop,nop,timestamp 1654958076 8505067
[EMAIL PROTECTED]@.:3..*..1...t
.B.C..}.

b...
11:05:31.111720 IP mail.client.57542  spamd.server.smtp: P 30:36(6) ack 134 
win 5840 nop,nop,timestamp 8505071 1654958076
E..:[EMAIL PROTECTED]
.m..
b...QUIT

11:05:31.111764 IP spamd.server.smtp  mail.client.57542: R 
3849587415:3849587415(0) win 0
E..([EMAIL PROTECTED]@.*..1...t
.
P...
11:05:31.111843 IP mail.client.57542  

Re: SCSI, LUNs, and volume sizes

2007-03-19 Thread daniele . pilenga
[EMAIL PROTECTED] wrote on 03/18/2007 02:22:39 PM:

 I'm running an OpenBSD 4.0 system (generic kernel), fitted with an 
Adaptec
 29160 SCSI card (so using the ahc driver), with the intention of running 
an
 external 3Tb RAID5 array (a Nexsan ATAboy). The intention is to setup a
 variety of partitions, the largest of which is 900Gb. So far, so good.
[...]
 However, at boot my system only sees the first lun (lun0, as sd0). How 
do I
 get my system to recognise the other LUNs? Is it a limitation of the 
Adaptec
 card, or the ahc driver, or something else? I've tried adding the
 SCSIFORCELUN_BUSES and SCSIFORCELUN_TARGETS options to the kernel, so 
far
 without success. I've also tried explicit sd0-3 targets and luns, also
 without success.

I had the same problem with one of my servers when I tried the upgrade 
from 3.9. I'm using a Qlogic ISP 23xx connected to a NetAPP filer, but the 
symptoms were the same.

First, those SCSIFORCELUN* options are no longer used in 4.0... this cost 
me a few days to figure out! :-\

Second, it seems that krw@ removed some code not needed in revision 1.108 
of sys/scsi/scsiconf.c. Not needed by anyone but us... grin! :-)

All I was able to do was make my server see the first lun, but not the 
other two, until I realized I could remap the luns to be 1, 2 and 3, 
without 0. With that trick the kernel sees all the three.

I wasn't able to boot from my first lun, though, until I upgraded my 
Qlogic firmware, but that's another story... :-)

HTH,
D.



Re: cat.c includes

2007-03-19 Thread Vincent GROSS

On 3/19/07, hiren [EMAIL PROTECTED] wrote:

hi all,

i found it interesting that cat.c compiles after removing these
includes:

#include ctype.h
#include err.h
#include errno.h
#include string.h
#include unistd.h

im just curious to hear opinions and learn something ;)



Have you tried to run it ?


--
Hiren Patel
[EMAIL PROTECTED]





--
Vincent GROSS



Re: No Blob without Puffy

2007-03-19 Thread Henning Brauer
* SW [EMAIL PROTECTED] [2007-03-19 03:21]:
 Free as in FreeBSD

ahh, I finally get it.

dry like water
hot like ice
free like freebsd

-- 
Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam



whats wrong with my iwi still ieee80211: nwid -50dBm

2007-03-19 Thread Jay Jesus Amorin

#dmesg

OpenBSD 4.0 (GENERIC) #1: Mon Mar 19 00:36:34 PHT 2007
   [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Celeron(R) M processor 1.50GHz (GenuineIntel
686-class) 1.50 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,TM,SBF
real mem  = 795308032 (776668K)
avail mem = 716935168 (700132K)
using 4256 buffers containing 39866368 bytes (38932K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(ff) BIOS, date 07/08/05, BIOS32 rev. 0 @
0xfd710, SMBIOS rev. 2.31 @ 0xdf010 (19 entries)
bios0: Hewlett-Packard Presario M2000 (PV328PA#UUF)
pcibios0 at bios0: rev 2.1 @ 0xfd710/0x8f0
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfdf20/192 (10 entries)
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82371FB ISA rev 0x00)
pcibios0: PCI bus #2 is the last bus
bios0: ROM list: 0xc/0xf200! 0xcf800/0x1000 0xdf000/0x800! 0xe/0x4000!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 82915GM/PM/GMS Host rev 0x03
vga1 at pci0 dev 2 function 0 Intel 82915GM/GMS Video rev 0x03:
aperture at 0xb008, size 0x1000
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
Intel 82915GM/GMS Video rev 0x03 at pci0 dev 2 function 1 not configured
uhci0 at pci0 dev 29 function 0 Intel 82801FB USB rev 0x03: irq 3
usb0 at uhci0: USB revision 1.0
uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 Intel 82801FB USB rev 0x03: irq 3
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 Intel 82801FB USB rev 0x03: irq 4
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered
uhci3 at pci0 dev 29 function 3 Intel 82801FB USB rev 0x03: irq 10
usb3 at uhci3: USB revision 1.0
uhub3 at usb3
uhub3: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub3: 2 ports with 2 removable, self powered
ehci0 at pci0 dev 29 function 7 Intel 82801FB USB rev 0x03: irq 3
usb4 at ehci0: USB revision 2.0
uhub4 at usb4
uhub4: Intel EHCI root hub, rev 2.00/1.00, addr 1
uhub4: 8 ports with 8 removable, self powered
ppb0 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xd3
pci1 at ppb0 bus 1
rl0 at pci1 dev 0 function 0 Realtek 8139 rev 0x10: irq 10, address
00:c0:9f:90:0f:6f
rlphy0 at rl0 phy 0: RTL internal PHY
iwi0 at pci1 dev 6 function 0 Intel PRO/Wireless 2200BG rev 0x05:
irq 4, address 00:12:f0:c7:30:a9
cbb0 at pci1 dev 9 function 0 TI PCI7XX1 CardBus rev
0x00pci_intr_map: no mapping for pin A
: couldn't map interrupt
TI PCI7XX1 FireWire rev 0x00 at pci1 dev 9 function 2 not configured
TI PCI7XX1 Flash rev 0x00 at pci1 dev 9 function 3 not configured
sdhc0 at pci1 dev 9 function 4 TI PCI7XX1 Secure Data rev 0x00: irq 11
sdmmc0 at sdhc0
sdmmc1 at sdhc0
sdmmc2 at sdhc0
auich0 at pci0 dev 30 function 2 Intel 82801FB AC97 rev 0x03: irq 5, ICH6 AC97
ac97: codec id 0x43585430 (Conexant CX?)
ac97: codec features reserved, headphone, 18 bit DAC, 18 bit ADC, No 3D Stereo
audio0 at auich0
Intel 82801FB Modem rev 0x03 at pci0 dev 30 function 3 not configured
ichpcib0 at pci0 dev 31 function 0 Intel 82801FBM LPC rev 0x03: PM disabled
pciide0 at pci0 dev 31 function 1 Intel 82801FB IDE rev 0x03: DMA,
channel 0 configured to compatibility, channel 1 configured to
compatibility
wd0 at pciide0 channel 0 drive 0: FUJITSU MHV2080AT
wd0: 16-sector PIO, LBA, 76319MB, 156301488 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
pciide0: channel 1 ignored (disabled)
ichiic0 at pci0 dev 31 function 3 Intel 82801FB SMBus rev 0x03: irq 3
iic0 at ichiic0
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: using exception 16
biomask efdd netmask efdd ttymask ffdf
pctr: 686-class user-level performance counters enabled
mtrr: Pentium Pro MTRR support
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
auich0: measured ac97 link rate at 48007 Hz, will use 48000 Hz
uhidev0 at uhub1 port 1 configuration 1 interface 0
uhidev0: Logitech USB-PS/2 Optical Mouse, rev 2.00/20.00, addr 2, iclass 3/1
ums0 at uhidev0: 3 buttons and Z dir.
wsmouse1 at ums0 mux 0
umass0 at uhub4 port 1 configuration 1 interface 0
umass0: vendor 0x0457 product 0x0151, rev 2.00/1.00, addr 2
umass0: using SCSI over Bulk-Only
scsibus0 at umass0: 2 targets
sd0 at scsibus0 targ 1 lun 0: USBest, USB2FlashStorage, 0.00 SCSI2
0/direct removable
sd0: 1000MB, 1000 cyl, 64 

Net PF default behavior

2007-03-19 Thread Renaud Allard
Hello,

In the changelog from 4.0 to 4.1, I read:
# In pf.conf(5), make 'flags S/SA keep state' the implicit default for
filter rules.

Does this only apply to tcp (as suggested by the flags) or to all
protocols? Also, is there a way to specify that there should be no state
kept?

I am trying to make pptp VPN pass through my nat firewall, it worked
great with 3.9 and is not working anymore with 4.1. I know that when I
put a keep state for GRE protocol it didn't work and without the keep
state it worked, but that may be unrelated.

Regards



Re: Net PF default behavior

2007-03-19 Thread Stuart Henderson
On 2007/03/19 12:09, Renaud Allard wrote:
 In the changelog from 4.0 to 4.1, I read:
 # In pf.conf(5), make 'flags S/SA keep state' the implicit default for
 filter rules.
 
 Does this only apply to tcp (as suggested by the flags) or to all
 protocols?

you can see for yourself with pfctl -vf /etc/pf.conf how this change
affects your ruleset; 'flags s/sa keep state' is added to TCP rules,
'keep state' to others.

 Also, is there a way to specify that there should be no state
 kept?

yes: 'flags any no state'



Re: Net PF default behavior

2007-03-19 Thread Renaud Allard
Renaud Allard wrote:
 Hello,
 
 In the changelog from 4.0 to 4.1, I read:
 # In pf.conf(5), make 'flags S/SA keep state' the implicit default for
 filter rules.
 
 Does this only apply to tcp (as suggested by the flags) or to all
 protocols? Also, is there a way to specify that there should be no state
 kept?
 
Sorry for the too fast post on the second question, no state is the
way to not keep state.



Re: Net PF default behavior

2007-03-19 Thread Henning Brauer
* Renaud Allard [EMAIL PROTECTED] [2007-03-19 12:22]:
 In the changelog from 4.0 to 4.1, I read:
 # In pf.conf(5), make 'flags S/SA keep state' the implicit default for
 filter rules.
 
 Does this only apply to tcp (as suggested by the flags) or to all
 protocols?

all protocols.
flags only apply to tcp of course, ignored for other protocols.

of course pf.conf(5) has all you'd ever want to know about that.

 Also, is there a way to specify that there should be no state kept?

sure.

of course, pf.conf(5) discusses that at legth, right where you'd expect 
it, in the PACKET FILTERING section right after the initial description 
of the pass keyword.

-- 
Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam



Re: Net PF default behavior

2007-03-19 Thread Peter N. M. Hansteen
Renaud Allard [EMAIL PROTECTED] writes:

 I am trying to make pptp VPN pass through my nat firewall, it worked
 great with 3.9 and is not working anymore with 4.1. I know that when I
 put a keep state for GRE protocol it didn't work and without the keep
 state it worked, but that may be unrelated.

if you want stateless filtering in 4.1, you need to explicitly specify 'no 
state'

-- 
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
First, we kill all the spammers The Usenet Bard, Twice-forwarded tales
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.



configuration options of openNTPD

2007-03-19 Thread lorenz . feldmann
Hi,

Can anybody tell me, what configuration options openNTPD supports?
Does it support anything additional to the documentations of ntpd and
ntpd.conf on openntpd.org?

especially im interested in the option peer known with NTPD.

Thanks and regards,
Lorenz





_
__

This e-mail communication (and any attachment/s) may contain confidential
or privileged information and is intended only for the individual(s) or
entity named above and to others who have been specifically authorized to
receive it. If you are not the intended recipient, please do not read,
copy, use or disclose the contents of this communication to others. Please
notify the sender that you have received this e-mail in error by reply
e-mail, and delete the e-mail subsequently. Please note that in order to
protect the security of our information systems an AntiSPAM solution is in
use and will browse through incoming emails.
Thank you.
_



Ce message (ainsi que le(s) fichier/s), transmis par courriel, peut
contenir des renseignements confidentiels ou protigis et est destini `
l?usage exclusif du destinataire ci-dessus. Toute autre personne est par
les prisentes avisie qu?il est strictement interdit de le diffuser, le
distribuer ou le reproduire. Si vous l?avez regu par inadvertance,
veuillez nous en aviser et ditruire ce message. Veuillez prendre note
qu'une solution antipollupostage (AntiSPAM) est utilisie afin d'assurer la
sicuriti de nos systems d'information et qu'elle furhtera les courriels
entrant.
Merci.
_




Re: No Blob without Puffy

2007-03-19 Thread Jacob Yocom-Piatt
Artur Grabowski wrote:
 SW [EMAIL PROTECTED] writes:

   
 Free as in FreeBSD (and NetBSD and DragonFly BSD etc.). 
 

 War is peace, freedom is freebsd...

   

freedom is regime change, war is profit.

 //art



Re: cat.c includes

2007-03-19 Thread hiren
On Mon, Mar 19, 2007 at 11:14:00AM +0100, Vincent GROSS wrote:
 On 3/19/07, hiren [EMAIL PROTECTED] wrote:
 hi all,
 
 i found it interesting that cat.c compiles after removing these
 includes:
 
 #include ctype.h
 #include err.h
 #include errno.h
 #include string.h
 #include unistd.h
 
 im just curious to hear opinions and learn something ;)
 
 
 Have you tried to run it ?

i have just tryed running it, it seems to behave as normal cat does, i
also tryed using it with flags 'vent', and it behaves normally..
any specific reason we have those 'include's included?
thanks :)

 
 --
 Hiren Patel
 [EMAIL PROTECTED]
 
 
 
 
 -- 
 Vincent GROSS

-- 
Hiren Patel
[EMAIL PROTECTED]



Re: cat.c includes

2007-03-19 Thread Nick !

On 3/19/07, hiren [EMAIL PROTECTED] wrote:

hi all,

i found it interesting that cat.c compiles after removing these
includes:

#include ctype.h
#include err.h
#include errno.h
#include string.h
#include unistd.h

im just curious to hear opinions and learn something ;)


That's probably because all these files are implicitly included by
some other include files. However, it is more correct to keep them all
here explicitly because cat.c uses them directly; you should want
someone reading the code to have a list of 'libraries' it relies on.

Good question.

-Nick



sendto: No buffer space available

2007-03-19 Thread Walter Doerr
Hello,

I am using an OpenBSD 4.0 box connected to a 2Mbit SDSL line in
Germany (using user space PPP).

When pinging a host across the SDSL line, I get an occasional   
sendto: No buffer space available message:


64 bytes from xxx.xxx.xxx.xxx: icmp_seq=566 ttl=254 time=62.674 ms
64 bytes from xxx.xxx.xxx.xxx: icmp_seq=568 ttl=254 time=38.090 ms
ping: sendto: No buffer space available
ping: wrote xxx.xxx.xx 64 chars, ret=-1
64 bytes from xxx.xxx.xxx.xxx: icmp_seq=569 ttl=254 time=1320.651 ms
64 bytes from xxx.xxx.xxx.xxx: icmp_seq=571 ttl=254 time=35.792 ms

Does this message point to a problem within OpenBSD or is this a
problem with the SDSL line?

Why is the ping packet not simply dropped but rather delayed?

I have googled for the error message and some replies indicated that
it is a problem within some ethernet card drivers, so I switched from
fxp to em but the problem persists.


This is the output of netstat -m in case it matters:

443 mbufs in use:
437 mbufs allocated to data
3 mbufs allocated to packet headers
3 mbufs allocated to socket names and addresses
436/552/6144 mbuf clusters in use (current/peak/max)
1248 Kbytes allocated to network (78% in use)
0 requests for memory denied
0 requests for memory delayed
0 calls to protocol drain routines


Any help is greatly appreciated.


Regards,

-Walter Doerr



Re: Have a OpenBSD store in Asia? Is it possible?

2007-03-19 Thread Nick !

On 3/19/07, Rafael Almeida [EMAIL PROTECTED] wrote:

On 3/19/07, Lars Hansson [EMAIL PROTECTED] wrote:

 http://www.genesis.com.hk/

 Uh, doesn't look like they're selling OpenBSD reallly...

Nonetheless when I enter the site my account was created and I could
access my website right away using my  IP address 76.162.118.181.
Unfortunately my site looked a lot like theirs :(.

Your account has been created. You can access your website right away
using your IP address: 76.162.118.181. Over the next few days DNS
servers all across the internet will update themselves with your new
domain name. Once that is done you will be able to access your site at
its permanent address.



...what? What does this have to do with OpenBSD?

-Nick



Re: OpenBSD speed on desktops

2007-03-19 Thread Karel Kulhavy
On Sat, Feb 17, 2007 at 10:06:43PM +0100, Joachim Schipper wrote:
 On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:
  Hello,
  
  I am using OpenBSD on server since few years now, and I am very happy
  with it's easy maintenance and it's stability. I want to try on
  desktop, and I am having trouble.
  
  Everything is much slower than existing Linux system. For example,
  Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
  OpenBSD on same machine!
  
  I tried compiler optimizations but those didn't help. Any suggestions?
  Please cc replies to me also as I am not on misc. Thanks.
  
  Fumione
  
  (Note: please do not tell me change to lighter window manager. I
  would like to use same environment or stay with Linux. Thanks.)
 
 I believe the standard response to any comparison use Linux if you're
 happy with it. Since you've already received that, here is an attempt
 to do the question a little more justice. (However, it boils down to 'it
 doesn't matter if FF loads a little slower, as long as it runs equally
 fast').
 
 Most modern Linux distributions optimize dynamic library load using
 prelinking; 4.0 and later have a comparable idea implemented
 ('prebind'), but in a way that does not interfere with OpenBSD's
 security features. This is not enabled by default (I'm not sure why not,
 and would be very grateful if anybody would tell me, BTW), but can be
 enabled using `ldconfig -P /usr/bin /usr/sbin /usr/local/bin
 /usr/local/sbin /usr/X11R6/bin'. This should result in a noticeable
 speed increase, especially on programs with lots of loaded libraries -
 and look in /usr/local/mozilla-firefox to see that FF does have 'lots of
 loaded libraries'!
 Of course, it would be a good idea to know why it's not the default
 first. Also note that, if I remember correctly, prebind won't help if
 you use a nonstandard LD_LIBRARY_PATH, as FF does... so the command
 listed before is likely to work for just about every *other* program.
 
 Another aspect is that Linux is much more aggressive in caching data
 from disk; if the amount of data read, the amount of work done in
 between, and the amount of RAM is such that Linux can get most data from
 its memory cache while OpenBSD has to read most of it from disk, Linux
 will be a *lot* faster. Of course, you would only see this effect if you
 started Firefox twice without doing much in between.
 
 Both of those could explain why FF loads slower. If either of those is
 the big culprit, though, FF should run just as fast (slow) as it ever
 did, and since you're not likely to start it that often, I'd be inclined
 to say it isn't that big an issue.
 
 If a comparable slowdown is found in running FF, that would be a
 problem. There are many variables there, of course... a dmesg might be
 helpful, for instance.
 
 Aggressive compiler optimizations are not generally a good idea. The
 developers believe they are an unnecessary source of bugs, and since

I would like to point out here that the idea of optimization is that an
equivalent code that executes faster is produced. Optimizations don't
permit generating code that is not equivalent, unless specifically stated
in the flag description (-ffast-math).

It's therefore not the responsibility of the programmer to check whether the
result of optimization is correct. Therefore it's not the optimizations that
are source of bugs, but bugs in GCC.

CL
 many optimizations are not enabled by default, there is not quite as
 much opportunity to find bugs in them. Plus, no amount of fiddling is
 likely to double speed.
 
 Since you didn't mention what you are using at the moment, I can't very
 well tell you to switch to a lighter window manager, can I? Ion *is*
 nice, though... ;-)
 
   Joachim



Re: OT? Is this bad news?

2007-03-19 Thread Karel Kulhavy
On Wed, Feb 14, 2007 at 07:31:14PM +0200, Marius ROMAN wrote:
 Programming documentation is restricted also because the hardware is
 full of bugs and like Theo said there is no errata for a lot of
 hardware.

On the other hand, some vendors go as far as releasing even the schematics and
gerbers for their hardware:

http://wiki.emqbit.com/free-ecb-at91

CL



Re: cat.c includes

2007-03-19 Thread Otto Moerbeek
On Mon, 19 Mar 2007, Nick ! wrote:

 On 3/19/07, hiren [EMAIL PROTECTED] wrote:
  hi all,
  
  i found it interesting that cat.c compiles after removing these
  includes:
  
  #include ctype.h
  #include err.h
  #include errno.h
  #include string.h
  #include unistd.h
  
  im just curious to hear opinions and learn something ;)
 
 That's probably because all these files are implicitly included by
 some other include files. However, it is more correct to keep them all
 here explicitly because cat.c uses them directly; you should want
 someone reading the code to have a list of 'libraries' it relies on.
 
 Good question.

Compile with -Wall and draw your conclusions. 

While it's legal to call a undeclared function, it is not wise to do
so. 

-Otto



Re: firefox compiling dependence

2007-03-19 Thread Karel Kulhavy
On Sun, Feb 25, 2007 at 12:38:02AM +0800, ronald jiang wrote:
 I want to compiling firefox in obsd4.0.
 I've installed obsd fully.
 What else do I need to compile firefox?

If you want to compile and not install from binary, read about the ports
on openbsd.org faq page I think it's section 5. Be careful to install the
proper version of ports. Then, you should be able to compile with a simple
command that's explained there.

CL
 Thanks.



Re: Sony laptop sound problems with auich0 and openbsd 3.9, 4.0, 4.1-beta.

2007-03-19 Thread Karel Kulhavy
On Sun, Feb 18, 2007 at 10:34:52PM -0800, zion wrote:
 Hello list,
 
 Having serious problems with Sony PCG-V505EX laptop.
 Basically, sound doesn't work unless there is some activity (traffic) on
 fxp0 or iwi0 interfaces. Even if there is some traffic, sound grinds to
 a halt after few seconds. It doesn't matter what source sound is coming
 from: cd, dvd, mp3, ogg.
 
 First thing that comes to my mind is IRQ issue. there are 5 devices
 using the same irq 9 by looking at dmesg. BIOS settings are really
 limited on this laptop.
 
 Same exact problem occurs when using 3.9 4.0 releases, with of course
 GENERIC kernel.
 
 Any help is greatly appreciated.

I have problem with auich0 on Dell Inspiron 510m with Pentium III that time to
time the audio deadlocks in the kernel and I have to reboot. Only the audio
deadlocks, the rest of system functionality is still present. Killing the app
doesn't help.

CL



Re: whats wrong with my iwi still ieee80211: nwid -50dBm

2007-03-19 Thread Kurt Miller
On Monday 19 March 2007 6:51:37 am Jay Jesus Amorin wrote:
 iwi0: flags=8802BROADCAST,SIMPLEX,MULTICAST mtu 1500
 lladdr 00:12:f0:c7:30:a9
 media: IEEE802.11 autoselect
 status: no network
 ieee80211: nwid my_net nwkey 0x1deadbeef1 -50dBm
 inet 192.168.1.1 netmask 0xff00 broadcast 192.168.1.255
 inet6 fe80::212:f0ff:fec7:30a9%iwi0 prefixlen 64 scopeid 0x2

It not 'UP' but I doubt that's the problem. I've noticed
iwi has trouble after changing nwid and/or nwkey. Rebooting
works. This weekend I noticed an access point scan also seems
to kick the card into recognizing the changed values. Try:

ifconfig iwi0 up
ifconfig -M iwi0

-Kurt



Re: OpenBSD speed on desktops

2007-03-19 Thread Claudio Jeker
On Mon, Mar 19, 2007 at 01:48:44PM +0100, Karel Kulhavy wrote:
 On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:
  Hello,
  
  I am using OpenBSD on server since few years now, and I am very happy
  with it's easy maintenance and it's stability. I want to try on
  desktop, and I am having trouble.
  
  Everything is much slower than existing Linux system. For example,
  Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
  OpenBSD on same machine!
 
 I have the same problem. The FFS doesn't seem to be as fast as ext2.
 

On the other hand I never lost data on ffs while a crashing linux box
likes to eat up file systems. If you like to get ext2 speed just mount
your filesystems async and hope for the best (that's what linux is doing).

-- 
:wq Claudio



Re: OpenBSD speed on desktops

2007-03-19 Thread Jason Beaudoin
snip


  Everything is much slower than existing Linux system. For example,
  Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
  OpenBSD on same machine!

 I have the same problem. The FFS doesn't seem to be as fast as ext2.


The issue is not filesystem speed, but rather prelinking and the differences
in how libraries are loaded. Trying comparing transfer times for a given set
of (differing) files on both filesystems..


Regards,

~J


-- 
IEEE Student Branch President
Wentworth Institute of Technology
550 Huntington Ave.
Boston, MA. 02115
401.837.8417
[EMAIL PROTECTED]



Re: OpenBSD speed on desktops

2007-03-19 Thread Karel Kulhavy
On Sat, Feb 17, 2007 at 10:23:28PM +0100, Vim Visual wrote:
 Agreed. It's not the lawsuit that makes people use Linux instead of the
 BSD's; it's the holier-than-thou,
 fuck-'em-if-they-dare-question-our-judgement attitude.
 
 Jeff
 
 indeed...
 
 actually, I was curious to see what answers fumione would get
 
 Mine is: I have been using GNU/Linux for years and I have also noticed
 that o'bsd is a _bit_ slower on the desktop, sometimes. But no that
 slower.
 
 In any case, I'd recommend you that you try to think in a different
 way. Don't try to make OpenBSD be like your linux, because it isn't
 (it's much better ;) ) Look for other possibilities.
 
 For instance: Have you tried to go back to mozilla? In my case firefox
 was behaving very buggy and consuming too much cpu. It's supposed to
 be a light-weight version of mozilla but I find that mozilla itself is
 much faster than firefox and doesn't consume almost anything (and the
 fonts are looking better too)

It goes like this for me: I want to google something, start up Firefox, then
realize it will take long. So while Firefox is loading I start Links, type
www.google.com, type the query, read the answer, close Links. Then Firefox pops
up and I just kill it. Seriously.

I can recommend using Links for general browsing and firing up Firefox only
when Javascript or CSS is needed, if you are concerned about Firefox execution
speed. Extra benefit: Links has an image autoscale feature which is perfect for
viewing online pictures. You can also calibrate Links for your monitor gamma,
aspect ratio and LCD optimization, and Links has a fast bilinear rescaler, so
the result are much better pictures than Firefox.

CL
 
 Let us (at least me) know
 
 Cheers,
 
 Pau



Re: FreeBSD Announces Intel Approval for Redistribution of Wireless Firmware

2007-03-19 Thread Karel Kulhavy
On Thu, Mar 08, 2007 at 10:43:27AM +0100, Alexander Farber wrote:
 FYI (sorry if this already been mentioned here):
 http://www.prweb.com/releases/2007/03/prweb509818.htm
 
 In order to use the firmware provided by Intel, FreeBSD users must
 first agree with the license. FreeBSD developers have added a simple
 mechanism to the operating system to agree to the license by defining
 an easy-to-use system variable.

On the other hand, OpenBSD developers have added a simple mechanism to the
operating system to disagree to the license by defining a To: e-mail address in
their Mail User Agent:

[EMAIL PROTECTED]:~$ man ipw | grep @intel
 state your views to about this issue is [EMAIL PROTECTED] at

;-)

CL
 
 ;-)
 
 Regards
 Alex
 
 --
 http://preferans.de



Re: adjusting mbuf

2007-03-19 Thread Darren Spruell

On 3/19/07, Gustavo Rios [EMAIL PROTECTED] wrote:

Dear list members,

how could i adjust my mbuf size? Need i to compile a news kernel ?



kern.maxclusters allows setting new limits for mbufs.

This would supposedly go out with the same tuning warnings as usual;
you may find you need a very good reason to adjust that, if it should
be adjusted at all. Does 'netstat -m' show that you're hitting limits?

This advice may apply to your situation as well:

http://archives.neohapsis.com/archives/openbsd/2004-07/1783.html

DS



Re: OpenBSD speed on desktops

2007-03-19 Thread Timo Schoeler
In epistula a Karel Kulhavy [EMAIL PROTECTED] die horaque Mon, 19
Mar 2007 13:53:00 +0100:

 On Sat, Feb 17, 2007 at 10:06:43PM +0100, Joachim Schipper wrote:
  On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:

(...)
 
 I would like to point out here that the idea of optimization is that
 an equivalent code that executes faster is produced. Optimizations
 don't permit generating code that is not equivalent, unless
 specifically stated in the flag description (-ffast-math).
 
 It's therefore not the responsibility of the programmer to check
 whether the result of optimization is correct. Therefore it's not the
 optimizations that are source of bugs, but bugs in GCC.
 
 CL

so, it's not the rain that makes you wet, but the water, right?

(ges)



Re: configuration options of openNTPD

2007-03-19 Thread Nico Meijer
Hi Lorenz,

 Can anybody tell me, what configuration options openNTPD supports?

First guess:
http://www.openbsd.org/cgi-bin/man.cgi?query=ntpd.confsektion=5arch=i386apropos=0manpath=OpenBSD+Current

For the latest and greatest.

Normally, around here the mantra is something like If it's not in the
docs, it just ain't there.

HTH... Nico



Re: SCSI, LUNs, and volume sizes - SOLVED

2007-03-19 Thread Steve Fairhead
daniele.pilenga wrote:
 First, those SCSIFORCELUN* options are no longer used in 4.0... this cost
me a few days to figure out! :-\ 

I did wonder about that; those options are missing from the manpage, but
used to be there...

 All I was able to do was make my server see the first lun, but not the
other two, until I realized I could remap the luns to be 1, 2 and 3, without
0. With that trick the kernel sees all the three. 

Wahay! Just did the same, and it's now detecting them all (with the generic
kernel). Thanks a million ;).

Steve
http://www.fivetrees.com



Re: OpenBSD speed on desktops

2007-03-19 Thread Marco Peereboom
 I have the same problem. The FFS doesn't seem to be as fast as ext2.

Since OpenBSD sucks so hard it might be time to upgrade to something
much more feature rich.  I suggest Linux or OSX or Vista.

Suggesting things is fun!



DNS, bind9, and other

2007-03-19 Thread JOHN LUCKEY
Anyone have or know of a good beginner's tutorial on how to
setup/configure a openBSD box to do DNS on a local network?
The more concrete/cookbook the examples, the better.

TIA
John



Re: OpenBSD speed on desktops

2007-03-19 Thread Timo Schoeler

Karel Kulhavy wrote:

On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:

Hello,

I am using OpenBSD on server since few years now, and I am very happy
with it's easy maintenance and it's stability. I want to try on
desktop, and I am having trouble.

Everything is much slower than existing Linux system. For example,
Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
OpenBSD on same machine!


I have the same problem. The FFS doesn't seem to be as fast as ext2.

CL


Most interestingly, after I moved from NetBSD to FreeBSD 
(performance-wise) on my Web cluster, I found that FreeBSD, being 
_faster_ than GNU/Linux, was not that much faster.


Being totally pissed off of FreeBSDs and NetBSDs opinion about 'free' 
software and selling themselves as cheap whores to companies (read: 
deploying BLOB) I moved (again) to OpenBSD (on _all_ machines, not just 
on the crucial ones like firewalls etc).


Surprise: Performance is on par. Security is much better. Karma is 
perfect :)




Re: No Blob without Puffy

2007-03-19 Thread Karel Kulhavy
On Mon, Mar 19, 2007 at 11:35:14AM +0100, Henning Brauer wrote:
 * SW [EMAIL PROTECTED] [2007-03-19 03:21]:
  Free as in FreeBSD
 
 ahh, I finally get it.
 
 dry like water
 hot like ice
 free like freebsd

FreeBSD is released under BSD licence and therefore is free software, see
http://en.wikipedia.org/wiki/Free_software

CL
 
 -- 
 Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
 BS Web Services, http://bsws.de
 Full-Service ISP - Secure Hosting, Mail and DNS Services
 Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam



Re: OpenBSD speed on desktops

2007-03-19 Thread Darrin Chandler
On Mon, Mar 19, 2007 at 01:53:00PM +0100, Karel Kulhavy wrote:
 It's therefore not the responsibility of the programmer to check whether the
 result of optimization is correct. Therefore it's not the optimizations that
 are source of bugs, but bugs in GCC.

But if you write a program and the user finds it full of bugs, are they
going to care that you can say that it's GCC's fault? The burden falls
on the developers to make code that works, including working around
problems in the compiler. Sad, but true.

-- 
Darrin Chandler   |  Phoenix BSD Users Group
[EMAIL PROTECTED]  |  http://bsd.phoenix.az.us/
http://www.stilyagin.com/darrin/  |



Re: OpenBSD speed on desktops

2007-03-19 Thread Open Phugu

On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:

On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:
 Hello,

 I am using OpenBSD on server since few years now, and I am very happy
 with it's easy maintenance and it's stability. I want to try on
 desktop, and I am having trouble.

 Everything is much slower than existing Linux system. For example,
 Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
 OpenBSD on same machine!

I have the same problem. The FFS doesn't seem to be as fast as ext2.


Instead of making vague, unprovable statements like that, we would
like to see some solid benchmarks (bonnie, bonnie++), to back this up.
Making such statements helps nobody.



Re: OpenBSD speed on desktops

2007-03-19 Thread RedShift

Claudio Jeker wrote:

On Mon, Mar 19, 2007 at 01:48:44PM +0100, Karel Kulhavy wrote:

On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:

Hello,

I am using OpenBSD on server since few years now, and I am very happy
with it's easy maintenance and it's stability. I want to try on
desktop, and I am having trouble.

Everything is much slower than existing Linux system. For example,
Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
OpenBSD on same machine!

I have the same problem. The FFS doesn't seem to be as fast as ext2.



On the other hand I never lost data on ffs while a crashing linux box
likes to eat up file systems. If you like to get ext2 speed just mount
your filesystems async and hope for the best (that's what linux is doing).



That's what transactional filesystems like ext3 and reiserfs are for. I 
can highly recommend reiserfs.


Glenn



Re: No Blob without Puffy

2007-03-19 Thread Karel Kulhavy
On Mon, Mar 19, 2007 at 12:06:31AM +0100, SW wrote:

I have a feeling that the campaign means We don't want vendors to require
us to use a blob but we'll ocassionally use them when we have to other way,
while Theo means I don't want vendors to require us to use a blob and I refuse
to use them even when no other way.

And that the heated words stem from the subtle difference. Politics instead of
developing. It's the vendors who decide about the blobs and they may or may not
take your complaints into account. Your invested time may or may not return.

If you don't like the blobs, here are the tools to get rid of them:

http://geda.seul.org/tools/gschem/index.html
http://geda.seul.org/tools/pcb/index.html
http://datasheetarchive.com/
http://www.ribbonsoft.com/qcad.html
http://www.brlcad.org/

There's not really much difference between writing software or writing
hardware, it's merely a psychological barrier, software hackers are scared of
tampering with hardware because they are not used to. The costs of prototypes
are negligible compared to the cost of time involved - and this time is high
both in software and hardware hacking.

With these tools, your invested time will return for sure.

CL
 Hi,
 
 this is the conversation I had with Theo:
 
 1. mail, 12.03.2007 01:29
 
 Dear Theo,
 
 allBSD is currently prepairing for the Stop Blob! campaign
 an we have a poster ready here:
 
 http://www.allbsd.de/src/Kampagnen/StopBlob/StopBlob-en-Poster.pdf
 
 This is already translated into some languages, more are to come
 soon and I'm currently writing a flyer that will be translated
 too in as many languages as possible.
 
 Any objections/ideas?
 
 Best regadrs,
 
 Daniel
 
 
 2. mail from Theo, 12.03.2007 02:34:
 
 I don't know why you are using a BSD daemon, when the two BSD's
 that use Daemon imagery are the ones that ACCEPT blobs, in particular,
 Sam Leffler's atheros driver.
 
 So I absolutely do not see how you think you can go stealing our
 campaign for your own use!
 
 WE are the only people of the ones that you claim to represent
 who are actually standing up for this issue.  If you put those other
 project's names on there, that's unbelieveably disrespectful of
 our efforts.
 
 FreeBSD *specifically* has vendor drivers in it, and has developers
 who work at vendors.  Not just Sam, but they also have an employee
 of NVidia who they consider a developer, and who now makes changes
 to the ethernet driver everyone got from us, without even replying
 to mails from our developers who wrote it!
 
 No.  I entirely object to what you are doing here.  You are trying
 to make it look like those other projects are anti-blob, when they
 are NOT.
 
 
 3. mail from Theo, 12.03.2007 03:00:
 
 Did you even think about the fact that there are only two operating
 systems that ship without blobs?
 
   OpenBSD
 
   Debian (and derived systems)
 
 FreeBSD and NetBSD are not on the list of blob-less operating systems.
 Both of them ship with at least one blob, compiled directly into the
 kernel.  Their developers have NEVER helped us fight for
 documentation, or fight the blob.  They've made a couple vague words
 sometimes, but then gone back to their American ways and talked about
 the need to sometimes compromise.  They have UNDERMINED our efforts to
 fight the blob, and now you want to include them in a poster about it?
 
 I think you are not thinking your campaign through very well at all.
 
 
 4. mail from me to Theo, 13.03.2007 01:16:
 
 Theo de Raadt qrote:
   I don't know why you are using a BSD daemon, when the two BSD's
   that use Daemon imagery are the ones that ACCEPT blobs, in particular,
   Sam Leffler's atheros driver.
   
   So I absolutely do not see how you think you can go stealing our
   campaign for your own use!
   
   WE are the only people of the ones that you claim to represent
   who are actually standing up for this issue.  If you put those other
   project's names on there, that's unbelieveably disrespectful of
   our efforts.
   
   FreeBSD *specifically* has vendor drivers in it, and has developers
   who work at vendors.  Not just Sam, but they also have an employee
   of NVidia who they consider a developer, and who now makes changes
   to the ethernet driver everyone got from us, without even replying
   to mails from our developers who wrote it!
   
   No.  I entirely object to what you are doing here.  You are trying
   to make it look like those other projects are anti-blob, when they
   are NOT.
 
 
 Hi Theo,
 
 in short: This campaign was startet after a long discussion internally
 and we couldn't find ANY BSD-guy from whatever BSD that claimed Blobs
 or NDAs are a good idea.
 
 We have a large number of individuals using and contributing to all
 BSDs and this is not a campaign pointing fingers to certain people
 using Blobs.
 
 This is a campaign to rise public awareness that Blobs are a bad idea
 and they should support ALL BSDs fighting against it. We all need free
 documentation 

Re: No Blob without Puffy

2007-03-19 Thread Pawel Jakub Dawidek
On Fri, Mar 16, 2007 at 12:38:05PM -0600, Theo de Raadt wrote:
 So isn't it rather hypocritical to have a anti-Blob campaign, backed
 by projects which embrace the Blob?

So isn't it rather hypocritical to claim GPL license is bad and BSD
license is good and ship operating system with GPLed code?
How do you feel about having pro-GPL operating system? Why do you lie to
your users by having 'BSD' in operating system's name?

I'm sure you get the point, but I'm also sure you won't admit it.
Anyway, I just had to do it, because...

 Daniel Seuffert got very angry, and instead of removing operating
 systems which are pro-Blob from an anti-Blob posted, they instead
 deleted us.

 Isn't that just incredible?

The only incredible thing I find in this thread is how easy for you is
to insult such a great BSD advocate as Daniel Seuffert is.

PS. This e-mail is for Theo. The only reason I'm sending it to the list
is to publicly support Daniel, who is doing a great job for BSD systems
in many areas. Feel free not to respond.

--
Pawel Jakub Dawidek   http://www.wheel.pl
[EMAIL PROTECTED]   http://www.FreeBSD.org
FreeBSD committer Am I Evil? Yes, I Am!

[demime 1.01d removed an attachment of type application/pgp-signature]



Re: OpenBSD speed on desktops

2007-03-19 Thread Artur Grabowski
Karel Kulhavy [EMAIL PROTECTED] writes:

 It's therefore not the responsibility of the programmer to check whether the
 result of optimization is correct. Therefore it's not the optimizations that
 are source of bugs, but bugs in GCC.

Good thing we're not just programmers, but actually developers. It's
our job to make system that works, not just write code.

//art



Re: No Blob without Puffy

2007-03-19 Thread Marco Peereboom
Not if he makes his saving throw!  I bet you he has a cloak of infinite
karma too.  So not hit-points lost!

On Mon, Mar 19, 2007 at 01:57:58AM +, Jason George wrote:
 Hi,
 
 this is the conversation I had with Theo:
 
 
 You just made private emails public, almost certainly without the permission 
 of the other parties involved.
 
 Please deduct any and all karma points you thought you had.



Re: OpenBSD speed on desktops

2007-03-19 Thread Karel Kulhavy
On Mon, Mar 19, 2007 at 07:23:43AM -0700, Darrin Chandler wrote:
 On Mon, Mar 19, 2007 at 01:53:00PM +0100, Karel Kulhavy wrote:
  It's therefore not the responsibility of the programmer to check whether the
  result of optimization is correct. Therefore it's not the optimizations that
  are source of bugs, but bugs in GCC.
 
 But if you write a program and the user finds it full of bugs, are they
 going to care that you can say that it's GCC's fault? The burden falls

When I write a program then I specify the language - say ISO/IEC 9899:1999. If
the compiler is buggy then it doesn't conform to ISO/IEC 9899:1999 - the
compiled program behaviour breaches the ISO/IEC 9899:1999 spec. Then it's the
user's problem that he compiled with a compiler that doesn't meet requirements
I clearly stated.

CL

 on the developers to make code that works, including working around
 problems in the compiler. Sad, but true.
 
 -- 
 Darrin Chandler   |  Phoenix BSD Users Group
 [EMAIL PROTECTED]  |  http://bsd.phoenix.az.us/
 http://www.stilyagin.com/darrin/  |



Re: OpenBSD speed on desktops

2007-03-19 Thread Karel Kulhavy
On Mon, Mar 19, 2007 at 09:26:56AM -0400, Nick ! wrote:
 On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:
 On Sat, Feb 17, 2007 at 10:06:43PM +0100, Joachim Schipper wrote:
 
  Aggressive compiler optimizations are not generally a good idea. The
  developers believe they are an unnecessary source of bugs, and since
 
 I would like to point out here that the idea of optimization is that an
 equivalent code that executes faster is produced. Optimizations don't
 permit generating code that is not equivalent, unless specifically stated
 in the flag description (-ffast-math).
 
 It's therefore not the responsibility of the programmer to check whether 
 the
 result of optimization is correct. Therefore it's not the optimizations 
 that
 are source of bugs, but bugs in GCC.
 
 But the practical fact is that GCC has these bugs and so optimizations
 are an unnecessary source of bugs.

But the proper way to handle these bugs is not work around them, but report
them to the GCC developer so they can fix it. Otherwise we'll never get rid
of them.

CL
 
 -Nick



Re: sendto: No buffer space available

2007-03-19 Thread Stefan Sperling
On Mon, Mar 19, 2007 at 01:40:02PM +0100, Walter Doerr wrote:
 Hello,

 I am using an OpenBSD 4.0 box connected to a 2Mbit SDSL line in
 Germany (using user space PPP).

 When pinging a host across the SDSL line, I get an occasional
 sendto: No buffer space available message:


 64 bytes from xxx.xxx.xxx.xxx: icmp_seq=566 ttl=254 time=62.674 ms
 64 bytes from xxx.xxx.xxx.xxx: icmp_seq=568 ttl=254 time=38.090 ms
 ping: sendto: No buffer space available
 ping: wrote xxx.xxx.xx 64 chars, ret=-1
 64 bytes from xxx.xxx.xxx.xxx: icmp_seq=569 ttl=254 time=1320.651 ms
 64 bytes from xxx.xxx.xxx.xxx: icmp_seq=571 ttl=254 time=35.792 ms

That happens to me when I use ppp for VPN in conjunction with pptp.
If the VPN server cannot be reached for a while, e.g. because the link
the VPN tunnel runs on top of is suddenly brought down, ppp will
continue to buffer packets until its buffer is full. Then I see
that message when I try to send more packets.

 Does this message point to a problem within OpenBSD or is this a
 problem with the SDSL line?

No clue. You could enable very verbose logging (set log All)
and see if you find some indication in the logs.

If you use pppoe for your SDSL, you might want to give pppoe(4) a try.
It's in-kernel and has less overhead because it does not context switch
as much as user-ppp.

--
stefan
http://stsp.in-berlin.de PGP Key: 0xF59D25F0

[demime 1.01d removed an attachment of type application/pgp-signature]



Re: adjusting mbuf

2007-03-19 Thread mickey
On Mon, Mar 19, 2007 at 06:41:06AM -0700, Darren Spruell wrote:
 On 3/19/07, Gustavo Rios [EMAIL PROTECTED] wrote:
 Dear list members,
 
 how could i adjust my mbuf size? Need i to compile a news kernel ?
 
 
 kern.maxclusters allows setting new limits for mbufs.

this will set a new limit for mbuf clusters.
mbufs 'emselves have no limit except for the kernel virtual space.
this should go w/ a usual tuning advice -- be accurate about
what you are describing.

 This would supposedly go out with the same tuning warnings as usual;
 you may find you need a very good reason to adjust that, if it should
 be adjusted at all. Does 'netstat -m' show that you're hitting limits?
 
 This advice may apply to your situation as well:
 
 http://archives.neohapsis.com/archives/openbsd/2004-07/1783.html
 
 DS
 

-- 
paranoic mickey   (my employers have changed but, the name has remained)



Re: No Blob without Puffy

2007-03-19 Thread Artur Grabowski
Karel Kulhavy [EMAIL PROTECTED] writes:

 On Mon, Mar 19, 2007 at 11:35:14AM +0100, Henning Brauer wrote:
  * SW [EMAIL PROTECTED] [2007-03-19 03:21]:
   Free as in FreeBSD
  
  ahh, I finally get it.
  
  dry like water
  hot like ice
  free like freebsd
 
 FreeBSD is released under BSD licence and therefore is free software, see
 http://en.wikipedia.org/wiki/Free_software

FreeBSD contributes to the blobification of the world and contains
non-free drivers, see: http://www.blahonga.org/UnfreeSoftware.html

//art



Re: No Blob without Puffy

2007-03-19 Thread Matthew Weigel
Jason George wrote:

 This was sabre-rattling.  Daniel made a pre-emptive tactical strike.
 There's a big difference.

No, there's not a difference.  Theo said he was willing to take the
emails public; this Daniel guy took him at his word, and made them
public.  The only foul I see is Theo threatening to take Daniel's emails
public in the first place.
-- 
 Matthew Weigel
 hacker
 [EMAIL PROTECTED]



Re: No Blob without Puffy

2007-03-19 Thread Chris Black
Karel Kulhavy wrote:
 On Mon, Mar 19, 2007 at 12:06:31AM +0100, SW wrote:

 I have a feeling that the campaign means We don't want vendors to require
 us to use a blob but we'll ocassionally use them when we have to other way,
 while Theo means I don't want vendors to require us to use a blob and I 
 refuse
 to use them even when no other way.
   
Here is the root of the problem/disagreement/difference as I see it.
OS's that accept blobs are giving the vendors proof that supplying blobs
only rather than true documentation is enough to get their hardware
supported in free OSes. I think that statement is enough, but to
restate: FreeBSD, by accepting blobs to enable hardware support via any
vendor or any developer, is hurting the anti-blob movement because the
vendors now have less incentive to release real documentation since the
blob was enough to get their hardware supported under FreeBSD.

Best,
Chris



Re: No Blob without Puffy

2007-03-19 Thread Dan Farrell
I thought it was free as in beer, but because of the blobs, not
necessarily free as in you can do whatever you want with it...

Because what can you do with a blob? Are you allowed to use a blob
anywhere you want, in any situation? Are you allowed to crack open a
blob and use parts of its code to re-write your own software/drivers?
Are you even allowed to have documentation regarding a blob? These are
all defined by license restrictions... that restrict your freedom
concerning the use of the blob.

So IMHO FreeBSD is only free to obtain... but not fully 'free' to use
in any way you want.

Please follow the simple formula-

License Restriction = Not Free.

You've been so involved in this discussion I thought you wouldn't need
this simplistic review... or maybe you're just trolling.


Danno


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of Karel Kulhavy
Sent: Monday, March 19, 2007 10:27 AM
To: OpenBSD
Subject: Re: No Blob without Puffy

On Mon, Mar 19, 2007 at 11:35:14AM +0100, Henning Brauer wrote:
 * SW [EMAIL PROTECTED] [2007-03-19 03:21]:
  Free as in FreeBSD

 ahh, I finally get it.

 dry like water
 hot like ice
 free like freebsd

FreeBSD is released under BSD licence and therefore is free software,
see
http://en.wikipedia.org/wiki/Free_software

CL

 --
 Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
 BS Web Services, http://bsws.de
 Full-Service ISP - Secure Hosting, Mail and DNS Services
 Dedicated Servers, Rootservers, Application Hosting - Hamburg 
Amsterdam



Re: DNS, bind9, and other

2007-03-19 Thread Gregory Edigarov

JOHN LUCKEY wrote:

Anyone have or know of a good beginner's tutorial on how to
setup/configure a openBSD box to do DNS on a local network?
The more concrete/cookbook the examples, the better.

  
It isn't different from any UNIX system with BIND. So just google for 
the words dns howto, links to tldp.org site should satisfy you.


--
With best regards,
   Gregory Edigarov



Re: NOOP and Spamd

2007-03-19 Thread Bob Beck
* Sid Carter [EMAIL PROTECTED] [2007-03-19 03:25]:

  Regardless, if NOOP is in the SMTP standard, and spamd does not handle
  it correctly, that is a bug that needs to be fixed.

Bullshit. that's not a good enough reason  - spamd does not
implement all of smtp, and never will. saying it's in the smtp
standard is the wrong way to get anything into spamd :) 

OTOH, if there is real stuff from the century of the fruit bat
that uses this I'll put it in.  If it's someone's BBS mailer from
the century of Def Leppard and Mullets I'm not bloating the code one line
to deal with it. I've asked the poster for details. Anyone else who
can confirm real stuff needing NOOP please let me know.

-Bob



Re: No Blob without Puffy

2007-03-19 Thread Nick !

On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:

On Mon, Mar 19, 2007 at 12:06:31AM +0100, SW wrote:

I have a feeling that the campaign means We don't want vendors to require
us to use a blob but we'll ocassionally use them when we have to other way,
while Theo means I don't want vendors to require us to use a blob and I refuse
to use them even when no other way.



This is a very good summary of the situation Karel.

With this summary in mind: is it worth it for either side to get as
worked up as they have been?

-Nick



Re: OpenBSD speed on desktops

2007-03-19 Thread Manuel Ravasio
Really?
I have a completely different experience: I never managed to completely loose
a filesystem, except by on OpenBSD...

I've been using slackware linux on reiserfs and xfs for many years now, on my
home PCs and company laptop (so, no real production environment) and I'm
happy with both their speed and reliability. I caused many crashes, mostly by
suddenly turning the PCs off in the middle of data transfer and I never lost
a single file.
Recently I decided to give OpenBSD a try, just to taste something different,
and I'm really enthusiastic about it as firewall/proxy/DNS/DHCP server as
well as desktop environment for my laptop. I really love the solidity and
internal coherence of the system, its ease of management and the general
impression of good, old, solid computing for real men that most current
linux distributions completely lack (that's why I stick to slackware :-) ).

The only shortcomings I found up to now are FFS fragility with respect to
sudden poweroffs (I've already lost root filesystem twice, beyond fsck
recovery capabilities, so I had to reinstall/restore from scratch), and a
general sluggishness of X11 lacking DRI support.

Probably it all depends on my lack of experience, so maybe my boxes are far
from perfectly tuned up; I hope that spending more and more time tampering
with OpenBSD and following this mailing list, I will eventually get
proficient enough to tune up my systems as well as I got to do with linux :-)
.


Thank you all,
byee

Manuel



--- Claudio Jeker [EMAIL PROTECTED] wrote:
 
 On the other hand I never lost data on ffs while a crashing linux box
 likes to eat up file systems. If you like to get ext2 speed just mount
 your filesystems async and hope for the best (that's what linux is doing).
 
 -- 
 :wq Claudio



 

8:00? 8:25? 8:40? Find a flick in no time 
with the Yahoo! Search movie showtime shortcut.
http://tools.search.yahoo.com/shortcuts/#news



Re: No Blob without Puffy

2007-03-19 Thread Marco Peereboom
You are so uninformed that it isn't even funny to pick on you.


On Mon, Mar 19, 2007 at 03:04:46PM +0100, Karel Kulhavy wrote:
 On Mon, Mar 19, 2007 at 12:06:31AM +0100, SW wrote:
 
 I have a feeling that the campaign means We don't want vendors to require
 us to use a blob but we'll ocassionally use them when we have to other way,
 while Theo means I don't want vendors to require us to use a blob and I 
 refuse
 to use them even when no other way.
 
 And that the heated words stem from the subtle difference. Politics instead of
 developing. It's the vendors who decide about the blobs and they may or may 
 not
 take your complaints into account. Your invested time may or may not return.
 
 If you don't like the blobs, here are the tools to get rid of them:
 
 http://geda.seul.org/tools/gschem/index.html
 http://geda.seul.org/tools/pcb/index.html
 http://datasheetarchive.com/
 http://www.ribbonsoft.com/qcad.html
 http://www.brlcad.org/
 
 There's not really much difference between writing software or writing
 hardware, it's merely a psychological barrier, software hackers are scared of
 tampering with hardware because they are not used to. The costs of prototypes
 are negligible compared to the cost of time involved - and this time is high
 both in software and hardware hacking.
 
 With these tools, your invested time will return for sure.
 
 CL
  Hi,
  
  this is the conversation I had with Theo:
  
  1. mail, 12.03.2007 01:29
  
  Dear Theo,
  
  allBSD is currently prepairing for the Stop Blob! campaign
  an we have a poster ready here:
  
  http://www.allbsd.de/src/Kampagnen/StopBlob/StopBlob-en-Poster.pdf
  
  This is already translated into some languages, more are to come
  soon and I'm currently writing a flyer that will be translated
  too in as many languages as possible.
  
  Any objections/ideas?
  
  Best regadrs,
  
  Daniel
  
  
  2. mail from Theo, 12.03.2007 02:34:
  
  I don't know why you are using a BSD daemon, when the two BSD's
  that use Daemon imagery are the ones that ACCEPT blobs, in particular,
  Sam Leffler's atheros driver.
  
  So I absolutely do not see how you think you can go stealing our
  campaign for your own use!
  
  WE are the only people of the ones that you claim to represent
  who are actually standing up for this issue.  If you put those other
  project's names on there, that's unbelieveably disrespectful of
  our efforts.
  
  FreeBSD *specifically* has vendor drivers in it, and has developers
  who work at vendors.  Not just Sam, but they also have an employee
  of NVidia who they consider a developer, and who now makes changes
  to the ethernet driver everyone got from us, without even replying
  to mails from our developers who wrote it!
  
  No.  I entirely object to what you are doing here.  You are trying
  to make it look like those other projects are anti-blob, when they
  are NOT.
  
  
  3. mail from Theo, 12.03.2007 03:00:
  
  Did you even think about the fact that there are only two operating
  systems that ship without blobs?
  
  OpenBSD
  
  Debian (and derived systems)
  
  FreeBSD and NetBSD are not on the list of blob-less operating systems.
  Both of them ship with at least one blob, compiled directly into the
  kernel.  Their developers have NEVER helped us fight for
  documentation, or fight the blob.  They've made a couple vague words
  sometimes, but then gone back to their American ways and talked about
  the need to sometimes compromise.  They have UNDERMINED our efforts to
  fight the blob, and now you want to include them in a poster about it?
  
  I think you are not thinking your campaign through very well at all.
  
  
  4. mail from me to Theo, 13.03.2007 01:16:
  
  Theo de Raadt qrote:
I don't know why you are using a BSD daemon, when the two BSD's
that use Daemon imagery are the ones that ACCEPT blobs, in particular,
Sam Leffler's atheros driver.

So I absolutely do not see how you think you can go stealing our
campaign for your own use!

WE are the only people of the ones that you claim to represent
who are actually standing up for this issue.  If you put those other
project's names on there, that's unbelieveably disrespectful of
our efforts.

FreeBSD *specifically* has vendor drivers in it, and has developers
who work at vendors.  Not just Sam, but they also have an employee
of NVidia who they consider a developer, and who now makes changes
to the ethernet driver everyone got from us, without even replying
to mails from our developers who wrote it!

No.  I entirely object to what you are doing here.  You are trying
to make it look like those other projects are anti-blob, when they
are NOT.
  
  
  Hi Theo,
  
  in short: This campaign was startet after a long discussion internally
  and we couldn't find ANY BSD-guy from whatever BSD that claimed Blobs
  or NDAs are a good idea.
  
  We have a large number of individuals using and 

Re: DNS, bind9, and other

2007-03-19 Thread Joel Dinel
On 03/19/07 at  7:33, JOHN LUCKEY wrote:
Anyone have or know of a good beginner's tutorial on how to
setup/configure a openBSD box to do DNS on a local network?
The more concrete/cookbook the examples, the better.

http://www.kernel-panic.it/openbsd/dns/index.html



Re: DNS, bind9, and other

2007-03-19 Thread Adam PAPAI

JOHN LUCKEY wrote:

Anyone have or know of a good beginner's tutorial on how to
setup/configure a openBSD box to do DNS on a local network?
The more concrete/cookbook the examples, the better.


bind is part of the base system @ OpenBSD (default install).

These manuals should help.

man named
man named.conf
BIND 9 Adminstrators Reference Manual.

Google for them.


--
Adam PAPAI
D i g i t a l Influence
http://www.digitalinfluence.hu
E-mail: [EMAIL PROTECTED]
Phone: +36 30 33-55-735 (Hungary)



Re: Have a OpenBSD store in Asia? Is it possible?

2007-03-19 Thread Wim Vandeputte
Hey Michael,

 I use OpenBSD from 3.6, when every release is pre-ordered, i can't find a
 easy way to
 own a set.
 
 I live in China, Is it possible to have a OpenBSD store in Asia?
 China? Japan? Korean? or other coutries?

Did you contact http://www.genesis.com.hk/ in Hong Kong?

Or should we remove them from the list of resellers?
Their website looks like they've been taken over by a US webfarmer.

I've sent CDs via regular mail to China before but never got a confirmation
if they ever made it through customs.

Your best bet is to have one shipped from Canada:

https://https.openbsd.org/cgi-bin/order

With kind regards,

Wim.

-- 
   =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=   
https://kd85.com/notforsale.html
 --



multichannel sound

2007-03-19 Thread Dmitry

Hi,

FreeBSD sysctl supports hw.snd.pcm0.vchans and hw.snd.maxautovchans.
With this variables user may hear sound from many apps at one time.
How I can do this in OpenBSD.

My friend says that this possible only when current app link with
lossaudio(3). Maybe there is another way?

Sorry for my English.

my audio device is

azalia0: host: High Definition Audio rev. 1.0
azalia0: codec: Realtek ALC882 (rev. 1.1), HDA version 1.0
audio0 at azalia0

my OpenBSD version is

4.1-current GENERIC.MP i386



Re: No Blob without Puffy

2007-03-19 Thread Dave Anderson
** Reply to message from Karel Kulhavy [EMAIL PROTECTED] on Mon, 19
Mar 2007 15:04:46 +0100

On Mon, Mar 19, 2007 at 12:06:31AM +0100, SW wrote:

I have a feeling that the campaign means We don't want vendors to require
us to use a blob but we'll ocassionally use them when we have to other way,
while Theo means I don't want vendors to require us to use a blob and I refuse
to use them even when no other way.

And that the heated words stem from the subtle difference. Politics instead of
developing. It's the vendors who decide about the blobs and they may or may not
take your complaints into account. Your invested time may or may not return.

You've left out the extremely important fact that many vendors
interpret acceptance of blobs by any free OS as validating their
position of not releasing adequate documentation -- so accepting blobs
(even when there's no other choice) actively harms the anti-blob
campaign.

Dave

-- 
Dave Anderson
[EMAIL PROTECTED]



Re: DNS, bind9, and other

2007-03-19 Thread Mispunt

On 3/19/07, JOHN LUCKEY [EMAIL PROTECTED] wrote:

Anyone have or know of a good beginner's tutorial on how to
setup/configure a openBSD box to do DNS on a local network?
The more concrete/cookbook the examples, the better.

TIA
John


an unofficial source, but it was very usefull to me..

http://www.kernel-panic.it/openbsd/dns/

Mispunt



Re: OpenBSD speed on desktops

2007-03-19 Thread Nick !

On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:

I have also a feeling that deleting huge files or large directories with
loads of tiny files in subdirectories is slower.


A feeling?? Entirely subjective readings like this mean nothing and
are at best noise and at worst FUD. Come on, be scientific now. Stop
trolling.

-Nick



Re: OpenBSD speed on desktops

2007-03-19 Thread Marco Peereboom
If you like losing data ext3 and reiserfs work just fine.  I manage to
lose Linux installations pretty often by doing crazy things like
rebooting.

On Mon, Mar 19, 2007 at 03:41:05PM +0100, RedShift wrote:
 Claudio Jeker wrote:
 On Mon, Mar 19, 2007 at 01:48:44PM +0100, Karel Kulhavy wrote:
 On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:
 Hello,
 
 I am using OpenBSD on server since few years now, and I am very happy
 with it's easy maintenance and it's stability. I want to try on
 desktop, and I am having trouble.
 
 Everything is much slower than existing Linux system. For example,
 Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
 OpenBSD on same machine!
 I have the same problem. The FFS doesn't seem to be as fast as ext2.
 
 
 On the other hand I never lost data on ffs while a crashing linux box
 likes to eat up file systems. If you like to get ext2 speed just mount
 your filesystems async and hope for the best (that's what linux is doing).
 
 
 That's what transactional filesystems like ext3 and reiserfs are for. I 
 can highly recommend reiserfs.
 
 Glenn



Re: DNS, bind9, and other

2007-03-19 Thread Darrin Chandler
On Mon, Mar 19, 2007 at 05:42:26PM +0200, Gregory Edigarov wrote:
 JOHN LUCKEY wrote:
 Anyone have or know of a good beginner's tutorial on how to
 setup/configure a openBSD box to do DNS on a local network?
 The more concrete/cookbook the examples, the better.
 
   
 It isn't different from any UNIX system with BIND. So just google for 
 the words dns howto, links to tldp.org site should satisfy you.

Hi, John!

And, as usual for OpenBSD, you can find out a lot without leaving your
own computer. Besides the man pages (which have perhaps more info than a
beginner is looking for), there are the stock config files in
/var/named/etc/ to work from. Out of the box they'll give you a caching
name server, and have examples (commented out) for both master and slave
zones.

To get it started on boot:
# echo named_flags=  /etc/rc.conf.local

Then have your dhcp server give out the right address to clients.

Besides web tutorials, there's the ORA book DNS  BIND and others.

-- 
Darrin Chandler   |  Phoenix BSD Users Group
[EMAIL PROTECTED]  |  http://bsd.phoenix.az.us/
http://www.stilyagin.com/darrin/  |



Re: OpenBSD speed on desktops

2007-03-19 Thread Karel Kulhavy
On Mon, Mar 19, 2007 at 07:23:43AM -0700, Darrin Chandler wrote:
 On Mon, Mar 19, 2007 at 01:53:00PM +0100, Karel Kulhavy wrote:
  It's therefore not the responsibility of the programmer to check whether the
  result of optimization is correct. Therefore it's not the optimizations that
  are source of bugs, but bugs in GCC.
 
 But if you write a program and the user finds it full of bugs, are they
 going to care that you can say that it's GCC's fault? The burden falls
 on the developers to make code that works, including working around
 problems in the compiler. Sad, but true.

We can analogically use this argument for ocassional errors in memory, too. If
I write a program and the user finds it crashing all the time, are they going
to care that you can say that their hardware may be unstable?

OpenBSD then should be written with Hamming, Golay, or Reed-Solomon codes in
all the internal structures, to automatically recover from flipped bits in data
structures. Similar protection should be done to the code. The code should be
periodically CRC-ed and the process image snapshotted. If it were revealed the
code is corrupted, a rollback would be done and the process restarted.

CL
 
 -- 
 Darrin Chandler   |  Phoenix BSD Users Group
 [EMAIL PROTECTED]  |  http://bsd.phoenix.az.us/
 http://www.stilyagin.com/darrin/  |



Re: OpenBSD speed on desktops

2007-03-19 Thread Nick !

On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:

On Mon, Mar 19, 2007 at 09:26:56AM -0400, Nick ! wrote:
 On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:
 On Sat, Feb 17, 2007 at 10:06:43PM +0100, Joachim Schipper wrote:
 
  Aggressive compiler optimizations are not generally a good idea. The
  developers believe they are an unnecessary source of bugs, and since
 
 It's therefore not the responsibility of the programmer to check whether
 the
 result of optimization is correct. Therefore it's not the optimizations
 that
 are source of bugs, but bugs in GCC.

 But the practical fact is that GCC has these bugs and so optimizations
 are an unnecessary source of bugs.

But the proper way to handle these bugs is not work around them, but report
them to the GCC developer so they can fix it. Otherwise we'll never get rid
of them.


I agree, but in the meantime we have to make do.

-Nick



Re: Google's Perftools and tcmalloc - Worth the risk?

2007-03-19 Thread Tobias Weingartner
In article [EMAIL PROTECTED], Richard Wilson wrote:
 
  I dunno. Am I being overly paranoid, or should I stick with nice 
  dependable old-fashioned malloc?

I usually take dependable and slightly slower over faster and nastier
any day.  Especially if it's fast enough.

-- 
 [100~Plax]sb16i0A2172656B63616820636420726568746F6E61207473754A[dZ1!=b]salax



Re: No Blob without Puffy

2007-03-19 Thread Jacob Yocom-Piatt

Pawel Jakub Dawidek wrote:

On Fri, Mar 16, 2007 at 12:38:05PM -0600, Theo de Raadt wrote:
  

So isn't it rather hypocritical to have a anti-Blob campaign, backed
by projects which embrace the Blob?



So isn't it rather hypocritical to claim GPL license is bad and BSD
license is good and ship operating system with GPLed code?
How do you feel about having pro-GPL operating system? Why do you lie to
your users by having 'BSD' in operating system's name?

I'm sure you get the point, but I'm also sure you won't admit it.
Anyway, I just had to do it, because...

  


wow, this is an unbelievably dumb statement.

the whole obsession with the drivers as opposed to the userland stuff is 
due to the extent to which an exploit can run amok. if you don't trust 
some GPL userland code, you can systrace it, etc, and be relatively sure 
you're not going to get blasted. this is why you don't hear ppl ranting 
about GPL code in the packages, etc. your whole analogy is irrelevant.



Daniel Seuffert got very angry, and instead of removing operating
systems which are pro-Blob from an anti-Blob posted, they instead
deleted us.

Isn't that just incredible?



The only incredible thing I find in this thread is how easy for you is
to insult such a great BSD advocate as Daniel Seuffert is.

PS. This e-mail is for Theo. The only reason I'm sending it to the list
is to publicly support Daniel, who is doing a great job for BSD systems
in many areas. Feel free not to respond.

  


nobody is questioning how great a BSD advocate Daniel is, only that his 
effort with this poster and the related advocacy is deeply flawed. to 
include OSes on such a poster which foster continued blob generation is 
absurd. nobody's perfect and this happens to have been a mistake on 
Daniel's part, IMO.



--
Pawel Jakub Dawidek   http://www.wheel.pl
[EMAIL PROTECTED]   http://www.FreeBSD.org
FreeBSD committer Am I Evil? Yes, I Am!

[demime 1.01d removed an attachment of type application/pgp-signature]




Re: OpenBSD speed on desktops

2007-03-19 Thread Timo Schoeler
In epistula a Manuel Ravasio [EMAIL PROTECTED] die horaque Mon,
19 Mar 2007 07:47:46 -0700 (PDT):

 Really?
 I have a completely different experience: I never managed to
 completely loose a filesystem, except by on OpenBSD...
 
 I've been using slackware linux on reiserfs and xfs for many years
 now, on my home PCs and company laptop (so, no real production
 environment) and I'm happy with both their speed and reliability. I
 caused many crashes, mostly by suddenly turning the PCs off in the
 middle of data transfer and I never lost a single file.
 Recently I decided to give OpenBSD a try, just to taste something
 different, and I'm really enthusiastic about it as
 firewall/proxy/DNS/DHCP server as well as desktop environment for my
 laptop. I really love the solidity and internal coherence of the
 system, its ease of management and the general impression of good,
 old, solid computing for real men that most current linux
 distributions completely lack (that's why I stick to slackware :-) ).
 
 The only shortcomings I found up to now are FFS fragility with
 respect to sudden poweroffs (I've already lost root filesystem twice,
 beyond fsck recovery capabilities, so I had to reinstall/restore from
 scratch), and a general sluggishness of X11 lacking DRI support.
 
 Probably it all depends on my lack of experience, so maybe my boxes
 are far from perfectly tuned up; I hope that spending more and more
 time tampering with OpenBSD and following this mailing list, I will
 eventually get proficient enough to tune up my systems as well as I
 got to do with linux :-) .
 
 
 Thank you all,
 byee
 
 Manuel

interestingly, i just had an experience at a customer's site i want to
share in this respect:

they use *cough* GNU/Linux *cough*, RHEL. and XFS. XFS is pretty cool.
however, they lost data. but it was not only about 'losing' data, it
was about a hidden data loss. some data was lost, some not. some had
weird ctime, some not. this is surely thanks to the most perfect
implementation of an *opened* FS (here: XFS) by the GNU/Linux guys.
pretty well done. what happened? a server had a backplane crash, an
externally mounted XFS volume was shut down 'unclean'. although it was
not that big (1TByte), the desaster happened.

in more than ten years of using IRIX (and thusly, XFS) i never lost one
single sucking file.

:)



acx on soekris with openbsd 4.0

2007-03-19 Thread Steve Glaus
Sorry, I've asked this before and didn't get a response.. am I asking 
this incorrectly - or in the wrong place?


Hello all,

I'm trying to get a mini pci card working on OpenBSD 4.0. I ripped this
card out of a dlink router that we weren't using. From what I understand
it's supposed to use the acx driver.

When I try to do an 'ifconfig acx0 up' it gives me 'Device no configured'

I'm assuming that this is because OpenBSD didn't detect the card. I
scoured the dmesg output but didn't find anything that looks like a
wireless card. I'm not overly familiar with the way openbsd handles
hardware so is there a way to 'force' openbsd to find the card?

I've already installed the firmware as specified in the man-page, but I
don't know where to go from here..

I have a feeling I'm SOL with this card


Thanks!

I've appended the dmesg output in case there's something I'm missing:


OpenBSD 4.0 (GENERIC) #1107: Sat Sep 16 19:15:58 MDT 2006
   [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by Nataonal Semi (Geode by NSC
586-class) 267 MHz
cpu0: FPU,TSC,MSR,CX8,CMOV,MMX
cpu0: TSC disabled
real mem  = 268005376 (261724K)
avail mem = 236724224 (231176K)
using 3297 buffers containing 13504512 bytes (13188K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(00) BIOS, date 20/50/29, BIOS32 rev. 0 @ 0xf7840
pcibios0 at bios0: rev 2.0 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc8000/0x9000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Cyrix GXm PCI rev 0x00
sis0 at pci0 dev 6 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a0
nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
sis1 at pci0 dev 7 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a1
nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
sis2 at pci0 dev 8 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a2
nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1
gscpcib0 at pci0 dev 18 function 0 NS SC1100 ISA rev 0x00
gpio0 at gscpcib0: 64 pins
NS \M-[C1100 SMI rev 0x00 at pci0 dev 18 function 1 not configured
pciide0 at pci0 dev 18 function 2 NS SCx200 IDE rev 0x01: DMA, channel
0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: TOSHIBA THNCF2G04QG
wd0: 1-sector PIO, LBA, 1946MB, 3985632 sectors
wd0(pciide0:0:0): using PIO mode 4
geodesc0 at pci0 dev 18 function 5 NS SC1100 X-Bus rev 0x00: iid 6
revision 3 wdstatus 0
ohci0 at pci0 dev 19 function 0 Compaq USB OpenHost rev 0x08: irq 11,
version 1.0, legacy support
usb0 at ohci0: USB revision 1.0
uhub0 at usb0
uhub0: Compaq OHCI root hub, rev 1.00/1.00, addr 1
uhub0: 3 ports with 3 removable, self powered
isa0 at gscpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
nsclpcsio0 at isa0 port 0x2e/2: NSC PC87366 rev 9: GPIO VLM TMS
gpio1 at nsclpcsio0: 29 pins
gscsio0 at isa0 port 0x15c/2: SC1100 SIO rev 1:
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom0: console
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
biomask fbe5 netmask ffe5 ttymask ffe7
pctr: no performance counters in CPU
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
syncing disks... done
OpenBSD 4.0 (GENERIC) #1107: Sat Sep 16 19:15:58 MDT 2006
   [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by National Semi (Geode by NSC
586-class) 267 MHz
cpu0: FPU,TSC,MSR,CX8,CMOV,MMX
cpu0: TSC disabled
real mem  = 268005376 (261724K)
avail mem = 236724224 (231176K)
using 3297 buffers containing 13504512 bytes (13188K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(00) BIOS, date 20/50/29, BIOS32 rev. 0 @ 0xf7840
pcibios0 at bios0: rev 2.0 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc8000/0x9000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Cyrix GXm PCI rev 0x00
sis0 at pci0 dev 6 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a0
nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
sis1 at pci0 dev 7 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a1
nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
sis2 at pci0 dev 8 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a2
nsphyter2 at sis2 phy 0: DP83815 10/1p0 PHY, rev. 1
gscpcib0 at pci0 dev 18 function 0 NS SC1100 ISA rev 0x00
gpio0 

Re: No Blob without Puffy

2007-03-19 Thread Timo Schoeler
In epistula a Matthew Weigel [EMAIL PROTECTED] die horaque Mon, 19
Mar 2007 10:54:24 -0500:

 Jason George wrote:
 
  This was sabre-rattling.  Daniel made a pre-emptive tactical strike.
  There's a big difference.
 
 No, there's not a difference.  Theo said he was willing to take the
 emails public; this Daniel guy took him at his word, and made them
 public.  The only foul I see is Theo threatening to take Daniel's
 emails public in the first place.

there really *was* (in ancient times? where the term 'politician' was
not an insult?) and should be a difference.

people with a total lack of so called 'soft skills' won't see them,
tho, but that is neither Theo's problem nor anyone else's.

 -- 
  Matthew Weigel
  hacker
  [EMAIL PROTECTED]



Re: No Blob without Puffy

2007-03-19 Thread Jason George
Jason George wrote:

 This was sabre-rattling.  Daniel made a pre-emptive tactical strike.
 There's a big difference.

No, there's not a difference.  Theo said he was willing to take the
emails public; this Daniel guy took him at his word, and made them
public.  The only foul I see is Theo threatening to take Daniel's emails
public in the first place.

No, you should re-read the thread.

Willingness to release emails is significantly different that actually 
releasing.

The willingness to use a tactical nuclear weapon on an adversarial nation 
state is significantly different that actually pushing the button to launch 
said device.  The exposed willingness and the clout to back it up is 
invariably meant to cause the other side to back down.  Yes, it is clearly a 
scare tactic.

There's a fundamental concept in negotiations and it's allowing the other 
party to opportunity to save face.  This happens all the time in business, 
legal and geopolitical discussions.  Even the most hardcore lawyers and 
diplomats know this.  

Daniel's immediate out was to either not release the poster or to use other 
language in the promotion of his cause.  That was his opportunity to save 
face.  He chose not to try to negotiate to a compromised solution when clearly 
his tack was going to have a negative impact on at least one other party.



acx on soekris with openbsd 4.0 - Re-post

2007-03-19 Thread mail-lists

Sorry, I've asked this before and didn't get a response.. am I asking
this incorrectly - or in the wrong place?

Hello all,

I'm trying to get a mini pci card working on OpenBSD 4.0. I ripped this
card out of a dlink router that we weren't using. From what I understand
it's supposed to use the acx driver.

When I try to do an 'ifconfig acx0 up' it gives me 'Device no configured'

I'm assuming that this is because OpenBSD didn't detect the card. I
scoured the dmesg output but didn't find anything that looks like a
wireless card. I'm not overly familiar with the way openbsd handles
hardware so is there a way to 'force' openbsd to find the card?

I've already installed the firmware as specified in the man-page, but I
don't know where to go from here..

I have a feeling I'm SOL with this card


Thanks!

I've appended the dmesg output in case there's something I'm missing:


OpenBSD 4.0 (GENERIC) #1107: Sat Sep 16 19:15:58 MDT 2006
   [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by Nataonal Semi (Geode by NSC
586-class) 267 MHz
cpu0: FPU,TSC,MSR,CX8,CMOV,MMX
cpu0: TSC disabled
real mem  = 268005376 (261724K)
avail mem = 236724224 (231176K)
using 3297 buffers containing 13504512 bytes (13188K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(00) BIOS, date 20/50/29, BIOS32 rev. 0 @ 0xf7840
pcibios0 at bios0: rev 2.0 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc8000/0x9000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Cyrix GXm PCI rev 0x00
sis0 at pci0 dev 6 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a0
nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
sis1 at pci0 dev 7 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a1
nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
sis2 at pci0 dev 8 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a2
nsphyter2 at sis2 phy 0: DP83815 10/100 PHY, rev. 1
gscpcib0 at pci0 dev 18 function 0 NS SC1100 ISA rev 0x00
gpio0 at gscpcib0: 64 pins
NS \M-[C1100 SMI rev 0x00 at pci0 dev 18 function 1 not configured
pciide0 at pci0 dev 18 function 2 NS SCx200 IDE rev 0x01: DMA, channel
0 wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: TOSHIBA THNCF2G04QG
wd0: 1-sector PIO, LBA, 1946MB, 3985632 sectors
wd0(pciide0:0:0): using PIO mode 4
geodesc0 at pci0 dev 18 function 5 NS SC1100 X-Bus rev 0x00: iid 6
revision 3 wdstatus 0
ohci0 at pci0 dev 19 function 0 Compaq USB OpenHost rev 0x08: irq 11,
version 1.0, legacy support
usb0 at ohci0: USB revision 1.0
uhub0 at usb0
uhub0: Compaq OHCI root hub, rev 1.00/1.00, addr 1
uhub0: 3 ports with 3 removable, self powered
isa0 at gscpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
nsclpcsio0 at isa0 port 0x2e/2: NSC PC87366 rev 9: GPIO VLM TMS
gpio1 at nsclpcsio0: 29 pins
gscsio0 at isa0 port 0x15c/2: SC1100 SIO rev 1:
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom0: console
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
biomask fbe5 netmask ffe5 ttymask ffe7
pctr: no performance counters in CPU
dkcsum: wd0 matches BIOS drive 0x80
root on wd0a
rootdev=0x0 rrootdev=0x300 rawdev=0x302
syncing disks... done
OpenBSD 4.0 (GENERIC) #1107: Sat Sep 16 19:15:58 MDT 2006
   [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Geode(TM) Integrated Processor by National Semi (Geode by NSC
586-class) 267 MHz
cpu0: FPU,TSC,MSR,CX8,CMOV,MMX
cpu0: TSC disabled
real mem  = 268005376 (261724K)
avail mem = 236724224 (231176K)
using 3297 buffers containing 13504512 bytes (13188K) of memory
mainbus0 (root)
bios0 at mainbus0: AT/286+(00) BIOS, date 20/50/29, BIOS32 rev. 0 @ 0xf7840
pcibios0 at bios0: rev 2.0 @ 0xf/0x1
pcibios0: pcibios_get_intr_routing - function not supported
pcibios0: PCI IRQ Routing information unavailable.
pcibios0: PCI bus #0 is the last bus
bios0: ROM list: 0xc8000/0x9000
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Cyrix GXm PCI rev 0x00
sis0 at pci0 dev 6 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a0
nsphyter0 at sis0 phy 0: DP83815 10/100 PHY, rev. 1
sis1 at pci0 dev 7 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a1
nsphyter1 at sis1 phy 0: DP83815 10/100 PHY, rev. 1
sis2 at pci0 dev 8 function 0 NS DP83815 10/100 rev 0x00, DP83816A:
irq 10, address 00:00:24:c8:01:a2
nsphyter2 at sis2 phy 0: DP83815 10/1p0 PHY, rev. 1
gscpcib0 at pci0 dev 18 function 0 NS SC1100 ISA rev 0x00
gpio0 

Re: OpenBSD speed on desktops

2007-03-19 Thread Artur Grabowski
Karel Kulhavy [EMAIL PROTECTED] writes:

 On Mon, Mar 19, 2007 at 07:23:43AM -0700, Darrin Chandler wrote:
  On Mon, Mar 19, 2007 at 01:53:00PM +0100, Karel Kulhavy wrote:
   It's therefore not the responsibility of the programmer to check whether 
   the
   result of optimization is correct. Therefore it's not the optimizations 
   that
   are source of bugs, but bugs in GCC.
  
  But if you write a program and the user finds it full of bugs, are they
  going to care that you can say that it's GCC's fault? The burden falls
 
 When I write a program then I specify the language - say ISO/IEC 9899:1999. If
 the compiler is buggy then it doesn't conform to ISO/IEC 9899:1999 - the
 compiled program behaviour breaches the ISO/IEC 9899:1999 spec. Then it's the
 user's problem that he compiled with a compiler that doesn't meet requirements
 I clearly stated.

Can you please try to loudly say: I think, therefore I am?

//art



Re: No Blob without Puffy

2007-03-19 Thread Timo Schoeler
In epistula a Pawel Jakub Dawidek [EMAIL PROTECTED] die horaque Mon, 19
Mar 2007 15:02:47 +0100:

 On Fri, Mar 16, 2007 at 12:38:05PM -0600, Theo de Raadt wrote:
  So isn't it rather hypocritical to have a anti-Blob campaign, backed
  by projects which embrace the Blob?
 
 So isn't it rather hypocritical to claim GPL license is bad and BSD
 license is good and ship operating system with GPLed code?
 How do you feel about having pro-GPL operating system? Why do you lie
 to your users by having 'BSD' in operating system's name?
 
 I'm sure you get the point, but I'm also sure you won't admit it.
 Anyway, I just had to do it, because...
 
  Daniel Seuffert got very angry, and instead of removing operating
  systems which are pro-Blob from an anti-Blob posted, they instead
  deleted us.
 
  Isn't that just incredible?
 
 The only incredible thing I find in this thread is how easy for you is
 to insult such a great BSD advocate as Daniel Seuffert is.

did i miss the sarcasm tags here?

Daniel Seuffert shoots himself as well as others, both sympathising and
not sympathising people, into the foot. mid-term as well as long-term.

so where's the 'great BSD advocate'? is everything here *(-1)?
 
 PS. This e-mail is for Theo. The only reason I'm sending it to the
 list is to publicly support Daniel, who is doing a great job for BSD
 systems in many areas. Feel free not to respond.

i felt more than *FREE* (in the *real* sense of freedom) to respond.
and i see the need for spam filters to get some algorithms to react to
nonsense, too.

in the sense of freedom, FreeBSD (among others) is a ultra-cheap whore,
as this fat pengiun is.

accept it and live with it, or leave crying. nobody will care.

 --
 Pawel Jakub Dawidek   http://www.wheel.pl
 [EMAIL PROTECTED]   http://www.FreeBSD.org
 FreeBSD committer Am I Evil? Yes, I Am!



Re: DNS, bind9, and other

2007-03-19 Thread Joachim Schipper
On Mon, Mar 19, 2007 at 07:33:42AM -0700, JOHN LUCKEY wrote:
 Anyone have or know of a good beginner's tutorial on how to
 setup/configure a openBSD box to do DNS on a local network?
 The more concrete/cookbook the examples, the better.

Sure, I have that exact setup running. I've pasted a slightly anonymized
version at the end. There are many tools and tutorials for writing zone
files, so I'll assume you can find those yourself.

This, of course, uses BIND. There are other DNS servers, but BIND
doesn't suck too badly, is well-tested, and is in base.

Joachim

/var/named/etc/named.conf:

acl local {
127.0.0.0/8;
192.168.0.0/24;
::1;
}

acl othernet {
192.168.1.0/24;
}

options {
version ; // remove this to allow version queries

listen-on{ local; othernet; }
listen-on-v6 { local; othernet; }

# Limit access
allow-recursion { local; };
allow-query { local; othernet; };
allow-transfer { local; };

# Don't allow too many lookups at once, and limit memory usage
recursive-clients 100;
max-cache-size 48M;

# Explicitly set hostname
hostname myhostname;

# Ask the ISP nameservers first; they are close,
# network-topology wise, and why not let them do most of our
# caching for us?
forwarders { $IP_DNS_SERVER1; $IP_DNS_SERVER2; };
};

logging {
category lame-servers { null; };
};

// Standard zones
//
zone . {
type hint;
file standard/root.hint;
};

zone localhost {
type master;
file standard/localhost;
allow-transfer { localhost; };
};

zone 127.in-addr.arpa {
type master;
file standard/loopback;
allow-transfer { localhost; };
};
zone
0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa
{
type master;
file standard/loopback6.arpa;
allow-transfer { localhost; };
};

zone com {
type delegation-only;
};

zone net {
type delegation-only;
};

// Master zones
//
//zone myzone.net {
//  type master;
//  file master/myzone.net;
//};

zone local.net {
type master;
file master/local.net;
};

// Reverse DNS, adapt this to whatever your local net is
zone 0.168.192.in-addr.arpa {
type master;
file master/0.168.192-in-addr.arpa;
};



Re: No Blob without Puffy

2007-03-19 Thread Ingo Schwarze
Hi Pawel,

Pawel Jakub Dawidek schrieb am Mon, Mar 19, 2007 at 03:02:47PM +0100:
 On Fri, Mar 16, 2007 at 12:38:05PM -0600, Theo de Raadt wrote:

 So isn't it rather hypocritical to have a anti-Blob campaign, backed
 by projects which embrace the Blob?

 So isn't it rather hypocritical to claim GPL license is bad and BSD
 license is good and ship operating system with GPLed code?
 How do you feel about having pro-GPL operating system? Why do you lie to
 your users by having 'BSD' in operating system's name?

Your analogy does not apply at all:

 - The proclaimed aim of the 'No blobs!' campaign is getting
   hardware documentation, thus ultimately enabling all free
   operating systems to become or remain blob-free: So it is
   about abolishing blobs.  It is not just about the personal
   opinion whether blobs are free enough or about the personal
   choice whether to use blobs or not.
   A hardware manufacturer pressing blobs on his client is
   disrespectful with respect to his clients.  An operating
   system shipping with the blobs enabled is endangering its
   users, and it is encouraging vendors to ship blobs.

 - There is no 'No GPL!' campaign whatsoever.  I'm not aware of
   any plans to get all free software GPL-free.  Or to abolish
   GPL code.  To the contrary, i do remember Theo acknowledging
   that he is building on RMS' and other's work, and that it
   will stay like that for now, if not for good.  A full, working
   toolchain is not easily dismissed without good reason.
   Indeed many of the OpenBSD developers hold the opinion that
   the GPL is not free enough and personally choose to use an
   other license for their code.  But that's all there is to it.
   A software author writing GPL code is not being disrespectful
   againt anybody (though he could make his code more useful with
   a less contorted license).  An operating system being built
   on a GNU toolchain is not endangering its users.

Please try to not view conflicts in a fried and enemy-style,
but take care to precisely address the point at hand.

Yours,
  Ingo



Re: DNS, bind9, and other

2007-03-19 Thread Frank Tegtmeyer
JOHN LUCKEY [EMAIL PROTECTED] writes:

 setup/configure a openBSD box to do DNS on a local network?
 The more concrete/cookbook the examples, the better.

Assuming that you don't need dynamic updates, Dan Bernstein has EXACT
guidelines for his djbdns:

http://cr.yp.to/djbdns.html

Look for How to run a DNS server.

Regards, Frank



Re: OpenBSD speed on desktops

2007-03-19 Thread RedShift

Marco Peereboom wrote:

If you like losing data ext3 and reiserfs work just fine.  I manage to
lose Linux installations pretty often by doing crazy things like
rebooting.

On Mon, Mar 19, 2007 at 03:41:05PM +0100, RedShift wrote:

Claudio Jeker wrote:

On Mon, Mar 19, 2007 at 01:48:44PM +0100, Karel Kulhavy wrote:

On Sat, Feb 17, 2007 at 12:36:00PM -0500, R. Fumione wrote:

Hello,

I am using OpenBSD on server since few years now, and I am very happy
with it's easy maintenance and it's stability. I want to try on
desktop, and I am having trouble.

Everything is much slower than existing Linux system. For example,
Firefox takes 3-5 seconds to start on Linux but ~10 seconds on
OpenBSD on same machine!

I have the same problem. The FFS doesn't seem to be as fast as ext2.


On the other hand I never lost data on ffs while a crashing linux box
likes to eat up file systems. If you like to get ext2 speed just mount
your filesystems async and hope for the best (that's what linux is doing).

That's what transactional filesystems like ext3 and reiserfs are for. I 
can highly recommend reiserfs.


Glenn





Do you have some evidence to back up your pretty bold statement?



Re: OpenBSD speed on desktops

2007-03-19 Thread Jason George
  It's therefore not the responsibility of the programmer to check whether 
  the
  result of optimization is correct. Therefore it's not the optimizations 
  that
  are source of bugs, but bugs in GCC.
 
 But if you write a program and the user finds it full of bugs, are they
 going to care that you can say that it's GCC's fault? The burden falls

When I write a program then I specify the language - say ISO/IEC 9899:1999. If
the compiler is buggy then it doesn't conform to ISO/IEC 9899:1999 - the
compiled program behaviour breaches the ISO/IEC 9899:1999 spec. Then it's the
user's problem that he compiled with a compiler that doesn't meet requirements
I clearly stated.

I remember back in university there were computing assignments where 50% of 
the marks were whether or not the program compiled or not.  There were lots of 
student submissions that came in syntactically-correct, compiled but did 
not solve the actual problem that was the purpose of the assignment.  50% 
guaranteed rate of return on basically no effort?  That's what the economics 
students might call an optimization, especially so if you knew that the prof 
or TA wasn't going to look at the source.  Make the program core out 
immediately after execution and they'd optimize their own time, give you the 
50% and move on.

So following in that line of thought, what about bugs that are procedural in 
nature but are otherwise syntactically-correct?  Just because code compiles 
doesn't mean that it isn't wrong because of the methods used to come up with 
it...

Since I answered my own rhetorical question, no one else needs to respond.

Man, the signal-to-noise ratio of this list sure is bad lately



Re: OpenBSD speed on desktops

2007-03-19 Thread Timo Schoeler
In epistula a Karel Kulhavy [EMAIL PROTECTED] die horaque Mon, 19
Mar 2007 15:59:06 +0100:

 On Mon, Mar 19, 2007 at 09:15:16AM -0400, Jason Beaudoin wrote:
  snip
  
  
   Everything is much slower than existing Linux system. For
   example, Firefox takes 3-5 seconds to start on Linux but ~10
   seconds on OpenBSD on same machine!
  
  I have the same problem. The FFS doesn't seem to be as fast as
  ext2.
  
  
  The issue is not filesystem speed, but rather prelinking and the
  differences in how libraries are loaded. Trying comparing transfer
  times for a given set of (differing) files on both filesystems..
 
 I have also a feeling that deleting huge files or large directories
 with loads of tiny files in subdirectories is slower.
 
 CL

Y slower than JFS2, XFS, ext3 or X than ReiserFS 4, HPFS or what?
'feeling'? huh? this is about zeroes and ones, or what happened to IT?



OpenBGPD and private-as

2007-03-19 Thread Jon Morby

Might be a dumb question, but what's the equivalent of

neighbor ip address  remove-private-as

in OpenBGPD

I've just noticed we're advertising prefixes 65xxx to our upstream  
providers when we should be stripping them from our advertisements.



--
Jon Morby
FidoNet Registration Services Ltd
tel: 0845 004 3050 / fax: 0845 004 3051
web: http://www.fido.net/



Re: No Blob without Puffy

2007-03-19 Thread Timo Schoeler
In epistula a Karel Kulhavy [EMAIL PROTECTED] die horaque Mon, 19
Mar 2007 15:27:29 +0100:

 On Mon, Mar 19, 2007 at 11:35:14AM +0100, Henning Brauer wrote:
  * SW [EMAIL PROTECTED] [2007-03-19 03:21]:
   Free as in FreeBSD
  
  ahh, I finally get it.
  
  dry like water
  hot like ice
  free like freebsd
 
 FreeBSD is released under BSD licence and therefore is free software,
 see http://en.wikipedia.org/wiki/Free_software
 
 CL

ah, then Wikipedia's definition of 'free' is wrong.

The US is a democracy, isn't it? does the majority back the Iraq
invasion? :)

FreeBSD may be -- as GNU/Linux -- 'free as in beer', you can get it
(almost) for free (you have to pay your DSL line/electricity to
download it, or media and shipping, etc).

But try to brew your own beer -- then GNU/Linux and FreeBSD biogenetic
engineers will teach you what 'freedom' is.

SCNR



Re: OpenBSD speed on desktops

2007-03-19 Thread Timo Schoeler
In epistula a Karel Kulhavy [EMAIL PROTECTED] die horaque Mon, 19
Mar 2007 16:00:49 +0100:

 On Mon, Mar 19, 2007 at 09:26:56AM -0400, Nick ! wrote:
  On 3/19/07, Karel Kulhavy [EMAIL PROTECTED] wrote:
  On Sat, Feb 17, 2007 at 10:06:43PM +0100, Joachim Schipper wrote:
  
   Aggressive compiler optimizations are not generally a good idea.
   The developers believe they are an unnecessary source of bugs,
   and since
  
  I would like to point out here that the idea of optimization is
  that an equivalent code that executes faster is produced.
  Optimizations don't permit generating code that is not equivalent,
  unless specifically stated in the flag description (-ffast-math).
  
  It's therefore not the responsibility of the programmer to check
  whether the
  result of optimization is correct. Therefore it's not the
  optimizations that
  are source of bugs, but bugs in GCC.
  
  But the practical fact is that GCC has these bugs and so
  optimizations are an unnecessary source of bugs.
 
 But the proper way to handle these bugs is not work around them, but
 report them to the GCC developer so they can fix it. Otherwise we'll
 never get rid of them.
 
 CL

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=30785

no comment required, as 'it rains outside -- you get wet'. ;D



Re: No Blob without Puffy

2007-03-19 Thread Dan Farrell
Yeah but what die is he rolling? I'm tired of rolling a six-sided die
against blobs and hobgoblins when all the level 23 developer-clerics are
using a 20-sided die... simply not fair!!!


danno

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of Marco Peereboom
Sent: Monday, March 19, 2007 11:00 AM
To: Jason George
Cc: misc@openbsd.org
Subject: Re: No Blob without Puffy

Not if he makes his saving throw!  I bet you he has a cloak of infinite
karma too.  So not hit-points lost!

On Mon, Mar 19, 2007 at 01:57:58AM +, Jason George wrote:
 Hi,
 
 this is the conversation I had with Theo:


 You just made private emails public, almost certainly without the
permission
 of the other parties involved.

 Please deduct any and all karma points you thought you had.



Re: acx on soekris with openbsd 4.0

2007-03-19 Thread Stuart Henderson
On 2007/03/19 11:14, Steve Glaus wrote:
 I'm trying to get a mini pci card working on OpenBSD 4.0. I ripped this
 card out of a dlink router that we weren't using. From what I understand
 it's supposed to use the acx driver.

Knowing that minipci can be fiddly, I would double-check it's
inserted correctly; it's not listed at all in dmesg and this...

 NS \M-[C1100 SMI rev 0x00 at pci0 dev 18 function 1 not configured

...looks a bit odd.



Re: DNS, bind9, and other

2007-03-19 Thread Dan Farrell
Are you looking to make the DNS server a caching-only DNS server or are
you going to have be authoritative for a domain (or set of domains?) (If
you don't know the answer to this question then any 'examples' are going
to be lost on the ignorant... no offense, you should understand this
before delving further if you are truly going to take responsibility for
it.)

My guess is that you are looking for a simple caching-only DNS server...
but this page lists a variety of different examples with lots of
notation-

http://www.zytrax.com/books/dns/ch6/


Here's another from my Google query ;) -

http://www.isc.org/sw/bind/arm94/Bv9ARM.ch03.html   - from the
people that wrote the software, and the page that the openbsd named man
page is referring to. The rest of the manual is pretty nifty, too.


Next time, friend, please do your own Googling first,

danno



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of JOHN LUCKEY
Sent: Monday, March 19, 2007 10:34 AM
To: misc openBSD
Subject: DNS, bind9, and other

Anyone have or know of a good beginner's tutorial on how to
setup/configure a openBSD box to do DNS on a local network?
The more concrete/cookbook the examples, the better.

TIA
John



Re: Google's Perftools and tcmalloc - Worth the risk?

2007-03-19 Thread Chris 'Xenon' Hanson

Tobias Weingartner wrote:

In article [EMAIL PROTECTED], Richard Wilson wrote:
 I dunno. Am I being overly paranoid, or should I stick with nice 
 dependable old-fashioned malloc?

I usually take dependable and slightly slower over faster and nastier
any day.  Especially if it's fast enough.


  Optimally, you could switch between allocators as a compile-time define. Use a tougher 
allocator for debugging and stress testing. Use a lighter, faster one in situations where 
you are confident that the code is solid and needs speed more than bullet-resistance.


 In a perfect world, you would always have enough power to run the bulletproof allocator. 
In the real world, that might mean 25% (statistic chosen randomly) more server farm 
horsepower.



  Good, fast, cheap. Pick any two.


--
 Chris 'Xenon' Hanson | Xenon @ 3D Nature | http://www.3DNature.com/
 I set the wheels in motion, turn up all the machines, activate the programs,
  and run behind the scenes. I set the clouds in motion, turn up light and 
sound,
  activate the window, and watch the world go 'round. -Prime Mover, Rush.



Re: OpenBSD speed on desktops

2007-03-19 Thread Darrin Chandler
On Mon, Mar 19, 2007 at 04:19:11PM +0100, Karel Kulhavy wrote:
 We can analogically use this argument for ocassional errors in memory, too. If

We can, but we won't.

Yes, the GCC bugs should be fixed. Yes, it's important to communicate
with the GCC people that -O2 breaks things sometimes.

This is a separate issue from producing code that works right in the
real world, which is where MY code has to run. If there are memory
errors nothing else will run, either. If I report an error, do I sit
around and not write code until it's fixed? Or do I continue to write
broken code and tell the users it's not my fault?

You're being stupid arguing things like that. How many more people are
going to have to tell you?

-- 
Darrin Chandler   |  Phoenix BSD Users Group
[EMAIL PROTECTED]  |  http://bsd.phoenix.az.us/
http://www.stilyagin.com/darrin/  |



Re: cat.c includes

2007-03-19 Thread Marc Espie
On Mon, Mar 19, 2007 at 02:07:25PM +0100, Otto Moerbeek wrote:
 On Mon, 19 Mar 2007, Nick ! wrote:
 
  On 3/19/07, hiren [EMAIL PROTECTED] wrote:
   hi all,
   
   i found it interesting that cat.c compiles after removing these
   includes:
   
   #include ctype.h
   #include err.h
   #include errno.h
   #include string.h
   #include unistd.h
   
   im just curious to hear opinions and learn something ;)
  
  That's probably because all these files are implicitly included by
  some other include files. However, it is more correct to keep them all
  here explicitly because cat.c uses them directly; you should want
  someone reading the code to have a list of 'libraries' it relies on.
  
  Good question.
 
 Compile with -Wall and draw your conclusions. 
 
 While it's legal to call a undeclared function, it is not wise to do
 so. 

Let me guess, that guy is running on i386. Usually, this kind of stunt
works badly on fun arches like alpha or sparc64...



Re: adjusting mbuf

2007-03-19 Thread Gustavo Rios

Ok,

Here is my output of netstat:
$ netstat -m
331 mbufs in use:
   326 mbufs allocated to data
   2 mbufs allocated to packet headers
   3 mbufs allocated to socket names and addresses
72/152/6144 mbuf clusters in use (current/peak/max)
420 Kbytes allocated to network (53% in use)
0 requests for memory denied
0 requests for memory delayed
0 calls to protocol drain routines
$

But rusers still gives that warning message, as also rup:
$ rusers
rusers: can't send broadcast packet: No buffer space available
$ rup
rup: RPC: Unable to send
$

How could i fix it?

On 3/19/07, Darren Spruell [EMAIL PROTECTED] wrote:

On 3/19/07, Gustavo Rios [EMAIL PROTECTED] wrote:
 Dear list members,

 how could i adjust my mbuf size? Need i to compile a news kernel ?


kern.maxclusters allows setting new limits for mbufs.

This would supposedly go out with the same tuning warnings as usual;
you may find you need a very good reason to adjust that, if it should
be adjusted at all. Does 'netstat -m' show that you're hitting limits?

This advice may apply to your situation as well:

http://archives.neohapsis.com/archives/openbsd/2004-07/1783.html

DS




Re: acx on soekris with openbsd 4.0 - Re-post

2007-03-19 Thread Nick !

On 3/19/07, mail-lists [EMAIL PROTECTED] wrote:

Sorry, I've asked this before and didn't get a response.. am I asking
this incorrectly - or in the wrong place?


This is the right place, you just haven't done your research so no one
bothered to answer. You might want to look into
[EMAIL PROTECTED]



Hello all,

I'm trying to get a mini pci card working on OpenBSD 4.0. I ripped this
card out of a dlink router that we weren't using. From what I understand
it's supposed to use the acx driver.

When I try to do an 'ifconfig acx0 up' it gives me 'Device no configured'

I'm assuming that this is because OpenBSD didn't detect the card. I
scoured the dmesg output but didn't find anything that looks like a
wireless card.


If $dmesg | grep acx gives you nothing then ifconfig acx0 won't work.

Where does your information that it's supposed to be acx(4) come from?


I'm not overly familiar with the way openbsd handles
hardware so is there a way to 'force' openbsd to find the card?


No. Everything your kernel can load is loaded. OpenBSD is not like linux :)



I've already installed the firmware as specified in the man-page, but I
don't know where to go from here..

I have a feeling I'm SOL with this card


If it's from a dlink, probably. Get a ral(4), they are from a nice
taiwanese company that is friendly to open source.

[snip dmesg]

-Nick



Re: Important OpenBSD errata

2007-03-19 Thread Kyle George

On Sat, 17 Mar 2007, Karel Kulhavy wrote:


What about Charlie Root testing something remotely through cron and then


Ok, I'll bite.  This is not hard.  Here's something I did real quick. 
Use at your own risk.  Replace XXX with your closest ftp mirror from 
http://www.openbsd.org/ftp.html.  Read the comments.


As root:

patch -p0  [extract patch from below my sig]
mkdir -m 755 /var/errata
chown root:wheel /etc/errata
chmod 644 /etc/errata

sh /etc/errata to test as non-root.  You can forego the patch to 
/etc/daily and run as needed standalone, otherwise root will get daily 
errata output emails.


--
Kyle George

--- /usr/src/etc/daily  Tue Dec  6 15:18:56 2005
+++ /etc/daily  Sun Mar 18 00:52:35 2007
@@ -20,8 +20,13 @@
rm -f ${TMP}
exit 1
 }
+OUT2=`mktemp /tmp/_errata.XX` || {
+rm -f ${TMP}
+rm -f ${OUT}
+exit 1
+}

-trap 'rm -f $TMP $OUT' 0 1 15
+trap 'rm -f $TMP $OUT $OUT2' 0 1 15

 echo 
 echo Removing scratch and junk files:
@@ -174,3 +179,9 @@
 if [ -s $OUT ]; then
 mail -s `hostname` daily insecurity output root  $OUT
 fi
+
+sh /etc/errata 21  $OUT2
+if [ -s $OUT2 ]; then
+mail -s `hostname` daily errata output root  $OUT2
+fi
+
--- /usr/src/etc/changelist Tue Dec 27 23:57:28 2005
+++ /etc/changelist Mon Mar 19 13:58:18 2007
@@ -27,6 +27,7 @@
 /etc/dhcpd.interfaces
 /etc/disktab
 /etc/distfile
+/etc/errata
 /etc/ethers
 /etc/exports
 /etc/fbtab
--- /dev/null   Mon Mar 19 15:33:55 2007
+++ /etc/errata Mon Mar 19 15:20:10 2007
@@ -0,0 +1,146 @@
+#!/bin/sh -
+#
+# Check for available/changed OpenBSD errata.
+#
+# Description and Usage:
+#
+#   Replace ftp.openbsd.org/pub/OpenBSD with your favorite mirror from
+#   the list: http://www.openbsd.org/ftp.html.
+#
+#   Check for available errata by looking at the errata X.Y.tar.gz from
+#   the OpenBSD ftp site (or preferrably, a mirror).  Also check for
+#   errata that may have been revised since first issued or applied.
+#   This works by comparing the listing of /var/errata and the contents
+#   of non-empty patch files in /var/errata to the available errata in 
+#   the errata archive.

+#
+#   Let ${PNNN} be the three digit patch number and ${PNAME} be the
+#   patch filename:  After applying a patch or to ignore a particular
+#   erratum, cp the patch to /var/errata, cp the patch to
+#   /var/errata/${PNNN}, touch /var/errata/${PNAME}, or touch
+#   /var/errata/${PNNN}.
+#
+#   Example: After applying erratum 010 for 4.0, cp 010_m_dup1.patch
+#   to /var/errata, cp 010_m_dup1.patch to /var/errata/010, touch
+#   /var/errata/010_m_dup1.patch, or touch /var/errata/010 to indicate
+#   that erratum 010 has been applied.
+# 
+#   It's strongly recommended to copy the full patch so this script can

+#   detect future patch revisions.
+#
+# Caveats:
+#
+#   Dependent on the structure and location of X.Y.tar.gz.
+#   Does not check for errata from the ports collection.
+#   Does not handle errata that do not have associated .patch files.
+#   Remember to remove /var/errata/* after upgrading.
+#
+# Copyright (c) 2007 Kyle George [EMAIL PROTECTED]
+#
+# Permission to use, copy, modify, and distribute this software for any
+# purpose with or without fee is hereby granted, provided that the above
+# copyright notice and this permission notice appear in all copies.
+#
+# THE SOFTWARE IS PROVIDED AS IS AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+
+PATH=/bin:/usr/bin:/sbin:/usr/sbin
+
+# Cleanup temporaries
+cleanup()
+{
+  test -f ${ERRATA_TGZ_TMP_FILE}  \
+rm -f ${ERRATA_TGZ_TMP_FILE}
+  test -d ${ERRATA_TGZ_TMP_DIR}  \
+test $(dirname ${ERRATA_TGZ_TMP_DIR}) = /tmp  \
+  rm -Rf ${ERRATA_TGZ_TMP_DIR}
+}
+
+# Terminate from error
+error()
+{
+  if [ X$1 != X ] ; then
+echo error: $1
+  else
+echo error: unexpected error
+  fi
+  exit 1
+}
+
+# Setup: Build file/path names/URLs and make temporary files/directories
+
+trap cleanup 0 1 2 3 13 15
+
+ERRATA_DIR=/var/errata
+ERRATA_TGZ_URL=ftp://XXX/pub/OpenBSD/patches/$(uname -r).tar.gz
+ERRATA_TGZ_TMP_DIR=$(mktemp -d /tmp/_errata_tgz_tmp_dir.XX) || error
+ERRATA_TGZ_TMP_FILE=$(mktemp /tmp/_errata_tgz_tmp_file.XX) || error
+
+# Make ERRATA_DIR if it doesn't exist
+
+if [ ! -d ${ERRATA_DIR} ] ; then
+  mkdir -m 755 ${ERRATA_DIR} || \
+error could not make errata directory
+fi
+
+# Download X.Y.tar.gz and extract
+
+lynx -source ${ERRATA_TGZ_URL}  ${ERRATA_TGZ_TMP_FILE} 2 /dev/null
+
+if [ $? -ne 0 ] ; then
+  # Failed; maybe X.Y.tar.gz doesn't exist; let's check
+  ERRATA_TGZ_COUNT=$(($(
+lynx 

  1   2   >