Re: openldap with dbv4 crash

[Daniel]

On Sat, 29 Dec 2007 15:49:20 -0600
Vijay Sankar [EMAIL PROTECTED] wrote:

 On December 29, 2007 02:15:15 pm Daniel wrote:
  On Sat, 29 Dec 2007 13:41:06 -0600
 
  Vijay Sankar [EMAIL PROTECTED] wrote:
   On December 29, 2007 11:23:19 am Daniel wrote:
Hi (again, sorry, now with Subject)!
   
Anyone experiencing or experienced segfaults with openldap using
the bdb backed? I'm using -current ports tree, and built the
openldap-{client,server}, dbv4 and cyrus-sasl2 packages from
there.
   
I will certanly provide much more info, I just want to know if
there are other people out there who are experiencing this same
behaviour.
   
Thanks!
   
Daniel
  
   No problems here so far, my test servers are running -current as
   of Thu Dec 27 13:53:57 CST 2007. slapd and slurpd are OK and
   replication is also working well. No seg faults yet.
 
  Can you tell me which FLAVOR are you using with dbv4 and openldap?
 
  Daniel
 
 Hopefully I did not misunderstand your question.
 
 Here is what I did: 
 
 env FLAVOR=bdb make package
 
 ls -l /usr/ports/packages/i386/all/openld*
 
 -rw-r--r--  3 root  wheel  1244876 Dec 27 14:41
 openldap-client-2.3.33p0.tgz -rw-r--r--  3 root  wheel   916837 Dec
 27 14:44 openldap-server-2.3.33p2-bdb.tgz
 
 Then I just did a pkg_add for openldap-server-2.3.33p2-bdb.tgz. The
 db package was db-4.6.21.
 
Same here, but I get reproducible segfault :\
And it is caused by dbv4 unfortunately.
I would have tried with a newer openldap (2.3.40), but from 2.3.39,
openldap doesn't support db-4.6, only 4.2-4.5. So I'm kind of stuck
here. I think I going to have to try out openldap 2.4.

Daniel

Re: backup firewall connectivity

[Otto Moerbeek]

On Sat, Dec 29, 2007 at 03:59:25PM -0600, Aaron wrote:

 Still no connectivity to speak of when a machine has a carp interface set 
 to the BACKUP state.

 Any other ideas?

Hmmm. Th eonly thing I can think of is simplify.

Assign a single address to your fxps, and add a carp interface in the
same net. Much like the simple example in
http://www.countersiege.com/doc/pfsync-carp/. That always worked for
me.  Do away with all aliases, make that work first and then build up. 

Oh, if you are doing NAT, do not NAT the traffic coming from the
(secondary) firewall itself. That won't work. 

-Otto

Re: Ethernet jumbo frames?

[mufurcz]

johan beisser wrote:


Fewer frames get corrupted, means less processing overhead per frame.

Not true at all - if only the payload is changed.
Outside of that, the remaining advantage is fewer frames going over 
the line.
But the same amount of data(!) needs to be transmitted, and only if no 
collision(s) and
retransmission(s) occurs!  Anybody on the same LAN segment - who wants 
to transmit,

will have to wait (be on hold) until the payload gets through.

It's not recommended on the same LAN as systems not using jumbo frames.
I know only a few HP routers which can handle efficiently jumbo frames 
(internally) - IF
enabled.  Ask yourself, what would happen with this jumbo frames outside 
a LAN segment?
How would the rest of  routers/switches/repeaters - like hubs/etc. would 
handle jumbo frames?


mufurcz

Re: User's Supplementary Documents

[Jason McIntyre]

On Sun, Dec 30, 2007 at 12:21:11PM +0530, Karthik Kumar wrote:
 Hi,
 
 The Makefile in /usr/share/doc/usd complains about missing or not
 installed documentation. I talked to a few people and they told me it
 was partly because of copyright reasons. Is that true?
 
 In case it was missing, a google for 02.learn yielded me this
 location: http://stuff.mit.edu/afs/athena/system/usrdoc/usd/
 
 and the Makefile s in those directories indicate they are from a
 Berkeley distribution sometime in 1986.. I wonder if this was removed
 in BSD-Lite intentionally (and eventually it's successors)?
 
 I would like to know if it possible for an unencumbered, complete usd
 documentation in the docs set.
 

in the past there were copyright reasons that prevented some of
these docs from being included. i seem to remember a year or two
ago some changes which made it possible to include more of them,
though i'm not sure if it covered all of them.

but a large reason for some of those documents not being included was
simply that the existing ones were just too out of date, or indeed that
they refer to stuff that openbsd does not even ship with.

jmc

Re: process tree in openbsd.

[Julian Leyh]

On 21:52 Sat 29 Dec , badeguruji wrote:
 for those who need. sorry if you do not.

There is already pstree in ports/packages.

  
 
 ~~aapka kalyan ho~~
 
 - Original Message 
 From: Diana Eichert [EMAIL PROTECTED]
 To: misc@openbsd.org
 Sent: Saturday, December 29, 2007 11:39:05 PM
 Subject: Re: process tree in openbsd.
 
 
 On Sat, 29 Dec 2007, badeguruji wrote:
 
  i found this here:
  http://www.tonns.org/ptree/
  thx.
  -BG
 
 What is the point to your post?
 

-- 
If you don't remember something, it never existed...
If you aren't remembered, you never existed...
I don't quite understand what love is like... But if there
was someone who liked me, I'd be happy.

Re: Hard Drive Speed

[Joachim Schipper]

On Sat, Dec 29, 2007 at 09:03:49PM -0500, Dave Sorg wrote:
 I have a 1TB hard drive in an external box. When I use USB 2.0 to write to it,
 I eventually get read/write errors. When I use USB 1, I don't.
 
 I know that my drive has a reported speed of 7200 rpm, but that it is
 generally advised to only run at 5400 rpm, and I believe that this is the
 problem. My question is: how do I set it up to use USB 2.0 at 5400 rpm?

That is almost certainly drive-specific. Check the manual for your
specific model, search Google, and if that doesn't help try posting
back.

Joachim

-- 
PotD: editors/xemacs21-sumo - complete set of supported XEmacs packages

Re: backup firewall connectivity

[Henning Brauer]

* Aaron [EMAIL PROTECTED] [2007-12-30 00:52]:
 I got rid of the aliases on the parent interfaces and made their addresses 
 part of the
 carp network and things now seem to be working.  This is great, and not so 
 great as
 for my public address space, i'm losing another two addresses that i have 
 to give to
 the firewall. :-(

 Is this the way it was intended or have i bumped into some unfortunate 
 untested 'issue'?

if you think about it, it is the only possible way.
while the carp interface is not master, you cannot reach the networks 
on it. which is not a problem if it is a /32.
how should that work? do you want toestablish a tcp connection where 
you never see the replies, because they go to your other firewall (the 
carp master)?

-- 
Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam

Re: Ethernet jumbo frames?

[L. V. Lammert]

On Sun, 30 Dec 2007, mufurcz wrote:

 johan beisser wrote:
 
  Fewer frames get corrupted, means less processing overhead per frame.
 Not true at all - if only the payload is changed.
  Outside of that, the remaining advantage is fewer frames going over
  the line.
 But the same amount of data(!) needs to be transmitted, and only if no
 collision(s) and retransmission(s) occurs!  Anybody on the same LAN
 segment - who wants to transmit, will have to wait (be on hold) until
 the payload gets through.

Huh? Haven't seen a network in YEARS that didn't use a switch for
interconnect - the 'segments' with most switches have two hosts - machine
 switch.

If you're running 1GB or 10GB, the switches you're using have backbones
well capable of running any framesize you can configure.

Lee

Change of DST [Timezone] at Argentina

[Pablo Halamaj]

Hello misc,

The last week a law created a new Daylight Saving Time at Argentina.

It says:

Increase 1h. from Sunday 30 of December at 0:00 A.M. local time.
Decrease 1 h. at Sunday 16 of March at 0:00 A.M. summer time.

So , reading zic's manual page:

$ vi ART

#Rule   NAME FROMTO  TYPEIN  ON  AT  SAVE
  LETTER/S
RuleAmerica/Argentina/Buenos_Aires  2007max -   Dec
 30  0:00w   1:00S
RuleAmerica/Argentina/Buenos_Aires  2008max -   Mar
 16  0:00w   0:00-

$ zic ART

But nothing happens.

Which are the next steps to install the new TimeZone i create?

Thanks for the help

Pablo

Re: Hard Drive Speed

[Marco Peereboom]

On Sat, Dec 29, 2007 at 09:03:49PM -0500, Dave Sorg wrote:
 I have a 1TB hard drive in an external box. When I use USB 2.0 to write to
it,
 I eventually get read/write errors. When I use USB 1, I don't.

Then it is likely a cable issue.  Try getting a fancy USB 2.0 cable.


 I know that my drive has a reported speed of 7200 rpm, but that it is
 generally advised to only run at 5400 rpm, and I believe that this is the
 problem. My question is: how do I set it up to use USB 2.0 at 5400 rpm?

If it is a 7200 it runs at 7200.  The only time these drives slow down
is low power modes but only very few mfgs actually implement this.

I'd bet money setting the drive speed isn't your problem.  You could
send a dmesg; maybe there are some more hints in there.

 _
 im is proud to present Cause Effect, a series about real people making a
 difference.
 http://im.live.com/Messenger/IM/MTV/?source=text_Cause_Effect

Re: Ethernet jumbo frames?

[Gordon Grieder]

On Sun, Dec 30, 2007 at 08:25:19PM +1100, mufurcz wrote:
 johan beisser wrote:
 
 Fewer frames get corrupted, means less processing overhead per frame.
 Not true at all - if only the payload is changed.

Use NICs capable of TCP checksumming and the appropriate drivers, that
will mean less processing for your CPUs.


 Outside of that, the remaining advantage is fewer frames going over 
 the line.
 But the same amount of data(!) needs to be transmitted, and only if
 no collision(s) and retransmission(s) occurs!  Anybody on the same
 LAN segment - who wants to transmit, will have to wait (be on hold)
 until the payload gets through.

Still using hubs? Fight for a budget increase if this is the case.


 It's not recommended on the same LAN as systems not using jumbo frames.
 I know only a few HP routers which can handle efficiently jumbo
 frames (internally) - IF enabled.  Ask yourself, what would happen
 with this jumbo frames outside a LAN segment? How would the rest of
 routers/switches/repeaters - like hubs/etc. would handle jumbo
 frames?

A router in between jumbo and non-jumbo will break frames down to
non-jumbo sizes if need be. Even a wee Cisco 3750G we tested with does
so with minimal CPU hit (maybe it's done in hardware on those, I don't
know) We had problems when using is on the same segment with 1518 MTUs.
Much of what we read recommened against it but that's like sticking a
DO NOT PUSH sign above a big red button for me. :)

Anyhow to sum it up: jumbo is cool when used correctly. The throughput
difference can be quite impressive, we had a considerable boost in
speed on 4x GigE iSCSI RAID chassis to the front end box and with NFS.


gg

Re: Change of DST [Timezone] at Argentina

[Pablo Halamaj]

On 30/12/2007, Pablo Halamaj [EMAIL PROTECTED] wrote:
 Hello misc,

 The last week a law created a new Daylight Saving Time at Argentina.

 It says:

 Increase 1h. from Sunday 30 of December at 0:00 A.M. local time.
 Decrease 1 h. at Sunday 16 of March at 0:00 A.M. summer time.

 So , reading zic's manual page:

 $ vi ART

 #Rule   NAME FROMTO  TYPEIN  ON  AT  SAVE
   LETTER/S
 RuleAmerica/Argentina/Buenos_Aires  2007max -   Dec
  30  0:00w   1:00S
 RuleAmerica/Argentina/Buenos_Aires  2008max -   Mar
  16  0:00w   0:00-

Reading zic's manual again. ART now looks:

#Rule   NAMEFROMTO  TYPEIN  ON  AT  SAVELETTER/S
RuleBA  19932007-   Nov 30  0:00w   0:00-
RuleBA  2007max -   Dec 30  0:00w   1:00S
RuleBA  2008max -   Mar 16  0:00w   0:00-

# Zone  NAME  GMTOFF
RULES   FORMAT  UNTIL
ZoneAmerica/Argentina/Buenos_Aires  -3:00  BA   BA%sT

 $ zic ART

 But nothing happens.

 Which are the next steps to install the new TimeZone i create?

The changes go great, the time is accurated, but the date is now
displayed as GMT

# date
Sun Dec 30 15:07:15 GMT 2007

What i have to change in order to make date to display ART instead of GMT?
It will display ART or BAT?

 Thanks for the help

 Pablo


Pablo

Re: Hard Drive Speed

[bofh]

On Dec 30, 2007 9:00 AM, Marco Peereboom [EMAIL PROTECTED] wrote:

 On Sat, Dec 29, 2007 at 09:03:49PM -0500, Dave Sorg wrote:
  I have a 1TB hard drive in an external box. When I use USB 2.0 to write
 to
 it,
  I eventually get read/write errors. When I use USB 1, I don't.

 Then it is likely a cable issue.  Try getting a fancy USB 2.0 cable.


Another possible issue - cheap usbshit.  I have a usb sdram reader.  Stick
in a 2G card.  Copy 100MB over.  No problems.  Copy 1GB over.  Get lots of
errors.  Looks like card is defective.  Until I put it in another card
reader.  That copied over all the files without any issues.  Since it was
photos, I would have been in trouble at home... :)


-- 
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
This officer's men seem to follow him merely out of idle curiosity.  --
Sandhurst officer cadet evaluation.
Securing an environment of Windows platforms from abuse - external or
internal - is akin to trying to install sprinklers in a fireworks factory
where smoking on the job is permitted.  -- Gene Spafford
learn french:  http://www.youtube.com/watch?v=j1G-3laJJP0feature=related

error while adding amavisd....

[badeguruji]

root:84# pkg_add amavisd-new-2.3.2p0.tgz
arc-5.21op0: complete   
   
Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
550 Failed to open file.
Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
550 Failed to open file.
Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
550 Failed to open file.
Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
550 Failed to open file.
Can't find freeze-2.5
/usr/sbin/pkg_add: freeze-2.5:Fatal error
root:85# 

what can i do to correct this? i didnt find this file at the specified 
location. i am looking for pre-compiled pkgs only.

thx.
-BG
 

~~aapka kalyan ho~~

Re: error while adding amavisd....

[Darren Spruell]

On Dec 30, 2007 11:00 AM, badeguruji [EMAIL PROTECTED] wrote:
 root:84# pkg_add amavisd-new-2.3.2p0.tgz
 arc-5.21op0: complete
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Can't find freeze-2.5
 /usr/sbin/pkg_add: freeze-2.5:Fatal error

Notice the license(?) on archivers/freeze prohibits FTP distribution:

# None
PERMIT_PACKAGE_CDROM=   No
PERMIT_PACKAGE_FTP= No
PERMIT_DISTFILES_CDROM= No
PERMIT_DISTFILES_FTP=   No

 what can i do to correct this? i didnt find this file at the specified 
 location. i am looking for pre-compiled pkgs only.

Build and install the archivers/freeze package from ports.

DS

Re: error while adding amavisd....

[Okan Demirmen]

On Sun 2007.12.30 at 10:00 -0800, badeguruji wrote:
 root:84# pkg_add amavisd-new-2.3.2p0.tgz
 arc-5.21op0: complete 
  
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Error from ftp://ftp.openbsd.org/pub/OpenBSD/4.2/packages/i386/:
 550 Failed to open file.
 Can't find freeze-2.5
 /usr/sbin/pkg_add: freeze-2.5:Fatal error
 root:85# 
 
 what can i do to correct this? i didnt find this file at the specified 
 location. i am looking for pre-compiled pkgs only.

no license for archivers/freeze:

PERMIT_PACKAGE_CDROM=   No
PERMIT_PACKAGE_FTP= No
PERMIT_DISTFILES_CDROM= No
PERMIT_DISTFILES_FTP=   No

hence, no binary packages are built...

Re: error while adding amavisd....

[Unix Fan]

OpenBSD doesn't have distribution rights for archivers/freeze...



You'll have to build it from ports...



-Nix Fan.

fvwm in base and repository with security issues?

[Jan]

After a discussion on the openbsd irc I am sending this mail, hoping fvwm will 
be removed from base and repo, or updated.

The fvwm version in base is 2.2.5, which is released somewhere in the late 
nighties. 
Every installation using X, does have this program installed on the system.

Then in the repo, there is a version 2.4.19, which is also some years old.

The developer of fvwm is telling me that both versions are way to old, full of 
security issues and 2.2.5 is not even supported anymore in which way ever...

Looking at the news page of fvwm I see a list of security issues and other 
issues solved in newer versions then 2.4.19:

Security fixes in fvwm-menu-directory. (CVE-2006-5969)
Security fixes in FvwmCommand
Security fix for fvwm-menu-directory. See BugTraq id 9161.
Security patch in fvwm-bug. See 
http://securitytracker.com/alerts/2004/Jan/1008781.html
Security fixes in fvwm-menu-directory (BugTraq id 9161)
Security fixes in fvwm_make_directory_menu.sh
Security fixes in fvwm_make_browse_menu.sh
Fixed tempfile vulnerabilities in FvwmCommand.
Fixed detection of safe system version of mkstemp.
Security fix in fvwm-menu-directory. (CVE-2006-5969)

The list of other issues (crashing window managers, race conditions, infinite 
loops etc...) is much longer.

I would suggest to remove all window managers from base except twm. Twm is in 
all default X installations and could be left in as last resort. When someone 
needs a window manager, he can install it from repo or ports, but it should not 
be as now, that a 'left over' which is much to old, full of bugs and 
unmaintained, can be used on the 'most secure operating system ever'.

I hope someone will lead this issue to the people taking decisions about what 
should be in and what not, resulting in or updating or removing fvwm.

Thanks,
Jan

Re: OpenBSD as DSL Router using hostname.pppoe0?

[Heinrich Rebehn]

I forgot to Cc the list, so i resend it:

Dieter Rauschenberger wrote:

On Sat, Dec 29, 2007 at 05:16:11AM +0100, [EMAIL PROTECTED] wrote:

Either no developer uses aDSL at home (with a ISP forcing him to reconnect
every 24 hours) or nobody uses OpenBSD as router or nobody uses the
connection permanently. :-/


I use the following hostname.pppoe:

inet 0.0.0.0 255.255.255.255 NONE \
pppoedev xl0 authproto pap \
authname '[EMAIL PROTECTED]' authkey 'sEcReT' up
dest 0.0.0.1
!/sbin/route add default -ifp pppoe0 0.0.0.1

with xl0 as external interface (the one to which the adsl modem is
connected) and the following lines in pf.conf to do NAT:

ext_if=pppoe0
int_if=rl0
nat on $ext_if from !($ext_if) - ($ext_if:0)

It's exact the setup mentioned in the pppoe(4) EXAMPLES and the pf faq
http://www.openbsd.org/faq/pf/example1.html#allrules

Also my ISP disconnects after 24h, but I have no problem with NAT.
It works perfect!

OT: You did not ask this, but if someone want's to use dyndns in such
a setup ddclient has to run as daemon and do IP detection via pppoe0:

daemon=300  # check all 5 minutes
use=if  # use interface to check for changes (not web, not ip)
if=pppoe0   # use pppoe0 interface for this


Regards
  Dieter


Or use ifstated(8) and net/ipcheck as an alternative. You can also use
it to flush your pf state tables.

* /etc/ifstated.conf *

init-state auto
pppoe_up = pppoe0.link.up
pppoe_down = pppoe0.link.down

state auto{
if ($pppoe_up) set-state pppoe-up
if ($pppoe_down) set-state pppoe-down
}

state pppoe-up{
init{
run logger pppoe up!
run /root/scripts/pppoe-up.sh
}
if ($pppoe_down) set-state pppoe-down
}

state pppoe-down{
init{
run logger pppoe down!
#   run /root/scripts/pppoe-down.sh
}
if ($pppoe_up) set-state pppoe-up
}


 /root/scripts/pppoe-up.sh *
#!/bin/sh
#

logger -t pppoe-up  Updating DynDNS
( cd /root/ipcheck  \
/usr/local/bin/ipcheck.py -i pppoe0 username password \
rebserv.dyndns.org )

# 'pfctl -F states' could go here!   ---


-Heinrich

Re: Hard Drive Speed

[Joel Wiramu Pauling]

Actually probably the sata to usb|ide to usb converter chip. Not all are
made equal.


On 31/12/2007, Joachim Schipper [EMAIL PROTECTED] wrote:

 On Sat, Dec 29, 2007 at 09:03:49PM -0500, Dave Sorg wrote:
  I have a 1TB hard drive in an external box. When I use USB 2.0 to write
 to it,
  I eventually get read/write errors. When I use USB 1, I don't.
 
  I know that my drive has a reported speed of 7200 rpm, but that it is
  generally advised to only run at 5400 rpm, and I believe that this is
 the
  problem. My question is: how do I set it up to use USB 2.0 at 5400 rpm?

 That is almost certainly drive-specific. Check the manual for your
 specific model, search Google, and if that doesn't help try posting
 back.

 Joachim

 --
 PotD: editors/xemacs21-sumo - complete set of supported XEmacs packages

Re: fvwm in base and repository with security issues?

[Douglas A. Tutty]

On Sun, Dec 30, 2007 at 07:36:47PM +0100, Jan wrote:
 
 I would suggest to remove all window managers from base except twm.
 Twm is in all default X installations and could be left in as last
 resort. When someone needs a window manager, he can install it from
 repo or ports, but it should not be as now, that a 'left over' which
 is much to old, full of bugs and unmaintained, can be used on the
 'most secure operating system ever'.

If this is a true issue that applies to OBSD rather than a non-issue
because of custom fixes applied by OBSD, the I would suggest that there
be a more configurable wm other than twm in base.  The reason is
simple.  Anything in base has a good security audit done.  Things in
ports/packages don't.  Personally, I use icewm since its quite
light-weight yet configurable to some extent (e.g. menu and taskbar).

Doug.

Re: fvwm in base and repository with security issues?

[Pau Amaro-Seoane]

please, don't touch fvwm 2.2.5... it's just perfect... not in vain
it's the default wm in obsd... Don't touch t!

2007/12/30, Douglas A. Tutty [EMAIL PROTECTED]:
 On Sun, Dec 30, 2007 at 07:36:47PM +0100, Jan wrote:

  I would suggest to remove all window managers from base except twm.
  Twm is in all default X installations and could be left in as last
  resort. When someone needs a window manager, he can install it from
  repo or ports, but it should not be as now, that a 'left over' which
  is much to old, full of bugs and unmaintained, can be used on the
  'most secure operating system ever'.

 If this is a true issue that applies to OBSD rather than a non-issue
 because of custom fixes applied by OBSD, the I would suggest that there
 be a more configurable wm other than twm in base.  The reason is
 simple.  Anything in base has a good security audit done.  Things in
 ports/packages don't.  Personally, I use icewm since its quite
 light-weight yet configurable to some extent (e.g. menu and taskbar).

 Doug.

NOVOGODISNJA RASPRODAJA MULTIMEDIJALNIH CD KURSEVA ENGLESKOG

[velika rasprodaja multimedijalnih diskova]

 - This mail is a HTML mail. Not all elements could be shown in plain text
mode. -

---MULTIMEDIJALNI CD KURS ENGLESKOG JEZIKA na 8 CD-a-srpska verzija
1. Engleski od A do Z
2. 365 lekcija-jedna lekcija dnevno
3. Englesko srpski recnik sa 100.000 stranih reci i izraza
4. Srpsko engleski recnik sa 100.000 stranih reci i izraza
5. Vizuelni recnik
6. Kurs poslovne komunikacije
7. Kurs Toefl programa
8. Sadrzaj za ucenje za period od 3 meseca do godinu dana,obradjena sva cetiri
novao znanja
Jedinstvena ponuda od 8 CD-a po ceni od 1299 dinara.U cenu jesu uracunati PTT
troskovi slanja paketa
---MULTIMEDIJALNI CD KURS POSLOVNOG ENGLESKOG NA 4CD-a-srpska verzija
1. Kompletan kurs poslovne komunikacija
2. Kompletna baza poslovnih pisama
3. Recnik najcescih reci,fraza i izraza u poslovnom svetu
4. Kompletan program za testiranje naucenog u formi multimedijalnih vezbi
Dakle 4 CD-a po ceni od 999 dinara.U cenu jesu uracunati PTT troskovi slanja
-
---
Ukoliko zelite da porucite neki od ova dva paketa potrebno je da dostavite
Vase ime,prezime,adresu i broj telefona i paket ce biti kod Vas u roku od 48
sati. Porudzbine saljemo iskljucivo pouzecem.
Ukoliko narucite oba CD kursa dobicete ih po jedinstvenoj ceni od 1999,00 sa
placenim PTT troskovima
Porudzbine slati na jednu od sledecih e mail adresa:
[EMAIL PROTECTED]

[EMAIL PROTECTED]

[EMAIL PROTECTED]

Telefon za porudzbinu i sve neophodne informacije je 0640399915.
Ukoliko zelite da se odjavite sa nase mailing liste posaljite mail u formatu
*odjava* na:
[EMAIL PROTECTED]

Re: openbsd router hardware

[Jason George]

It's also rather difficult to find non-x86-based boards.  I was also
reading about these ARM-based units, but haven't ordered samples:
http://www.embeddedarm.com/epc/prod_SBC.htm


FWIW #1 - the port of NetBSD to this ARM platform has already had some cursory 
looks from a couple of developers.  It wasn't given a raving review.

FWIW #2 - I have two of the x86 sister devices (TS-5400) for a 
proof-of-concept project.  They run OpenBSD fine, but some small hacks for A20 
and keyboard controller are required in the boot code in order to get the 
devices going.  Bridged throughput topped out about 5Mbit/sec between the two 
on-board dc devices.  For a -40C rated device, they are reasonably cheap.  
Whether or not I can successfully get (or, really, want to get) PPP working 
over RS-485 over control cable is another question entirely...

--J

General Software 80486 Embedded BIOS (tm) Version 4.3
(C) 2000 General Software, Inc.ware, Inc.
80486-4.3-6E65-6A0E.16
+--+
|  System BIOS Configuration, (C) 2000 General Software, Inc.  |
+---+--+
| System CPU   : 80486  | Low Memory   : 633KB |
| Coprocessor  : Enabled| Extended Memory  : 63MB  |
| Floppy 0 Type: Not installed  | Serial Ports 1-2 : 03F8 02F8 |
| Floppy 1 Type: Not installed  | Serial Ports 3-4 :   |
| Ide 0 Type   : 3  | Parallel Ports   :   |
| Ide 1 Type   : 0  | ROM Shadowing: Enabled   |
| Embedded BIOS Date   : 10/25/04   | Manufacturing Mode   : 02F8 / 38.4K  |
+---+--+

Using drive 0, partition 3.
Loading...
probing: pc0 com0 com1 pci mem[633K 63M a20=on]
disk: hd0+
 OpenBSD/i386 BOOT 3.01
switching console to com0

 

Copyright (c) 1982, 1986, 1989, 1991, 1993
The Regents of the University of California.  All rights reserved.
Copyright (c) 1995-2007 OpenBSD. All rights reserved.  http://www.OpenBSD.org

OpenBSD 4.2-current (RAMDISK_CD) #505: Tue Oct 23 13:44:50 MDT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/RAMDISK_CD
cpu0: AMD Am486DX4 W/B or Am5x86 W/B 150 (AuthenticAMD 486-class)
cpu0: FPU
real mem  = 66674688 (63MB)
avail mem = 57425920 (54MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 10/25/04, BIOS32 rev. 0 @ 0xe7200
pcibios0 at bios0: rev 2.1 @ 0xe7270/0x1000
pcibios0: PCI BIOS has 4 Interrupt Routing table entries
pcibios0: PCI Exclusive IRQs: 9 10 11
pcibios0: no compatible PCI ICU found
pcibios0: Warning, unable to fix up PCI interrupt routing
pcibios0: PCI bus #0 is the last bus
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 AMD ElanSC520 PCI rev 0x00
dc0 at pci0 dev 13 function 0 Davicom DM9102 rev 0x40: irq 11, address 
00:d0:69:12:44:10
amphy0 at dc0 phy 1: DM9102 10/100 PHY, rev. 1
dc1 at pci0 dev 14 function 0 Davicom DM9102 rev 0x40: irq 10, address 
00:d0:69:b2:44:10
amphy1 at dc1 phy 1: DM9102 10/100 PHY, rev. 1
isa0 at mainbus0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
kbc: cmd word write error
wdc0 at isa0 port 0x1f0/8 irq 14
wd0 at wdc0 channel 0 drive 0: SanDisk SDCFB-32
wd0: 1-sector PIO, LBA, 30MB, 62720 sectors
wd0(wdc0:0:0): using BIOS timings
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pccom0: console
pccom1 at isa0 port 0x2f8/8 irq 3: ns16550a, 16 byte fifo
pccom2 at isa0 port 0x3e8/8 irq 5: ns8250, no fifo
pcic1 at isa0 port 0x3e2/2 iomem 0xd4000/16384
pcic1: irq 9, polling enabled
biomask f1c7 netmask fdc7 ttymask ffc7
rd0: fixed, 3800 blocks
dkcsum: wd0 matches BIOS drive 0x80
root on rd0a swap on rd0b dump on rd0b
erase ^?, werase ^W, kill ^U, intr ^C, status ^T
(I)nstall, (U)pgrade or (S)hell?

Re: Embedding OpenBSD

[chefren]

On 12/29/07 5:27 PM, Douglas A. Tutty wrote:


Summary:

I still suggest a heartbeat monitor and a modem.


A heartbeat monitor makes the system seriously more complicated and thus less 
reliable.


If the proposed system boots from a non writable medium (yes there are flash 
devices with a write-protect switch, CD-rom is also OK although dust 
collection on the laser detector is an issue) and works in memory, diskless!, 
unintended log events will be written to memory (that might overflow but who 
cares for this application) and the system always boots the same after power up.


+++chefren

Re: Perpetually Current

[Jason George]

I would like to install OpenBSD *once* and keep it patched and secured for
many years there after (5 - 7 years) in a production environment. Would it
be feasible to get a snapshot today and follow -current for many years w/o
having to reinstall? Basically, this approach would skip -stable and
-release and always be -current. I understand the implications of being
current and that things might change and break and may need re-configuring
on occasion. I'm OK with that... I just don't want to reinstall a -release
every year... although I'll still buy CDs as they are released to support
the project.


This is how a lot of issues get debugged... I've stumbled across a lot of 
stuff by doing this.  

I pretty much only run some variation of -CURRENT on my prod boxes, but to be 
fair, I don't have all my eggs in one basket, so I can handle some breakage 
and downtime. 

Re: fvwm in base and repository with security issues?

[Ted Unangst]

On 12/30/07, Jan [EMAIL PROTECTED] wrote:
 Security fixes in fvwm-menu-directory. (CVE-2006-5969)

i don't get it.  i can make a magic directory name and... run commands
as myself?

 Security fixes in FvwmCommand
 Security fix for fvwm-menu-directory. See BugTraq id 9161.
 Security patch in fvwm-bug. See 
 http://securitytracker.com/alerts/2004/Jan/1008781.html

i don't have this program.

 Security fixes in fvwm-menu-directory (BugTraq id 9161)

is this different than Bugtraq id 9161 above?  for that matter, how is
it different than CVE-2006-5969?

 Security fixes in fvwm_make_directory_menu.sh
 Security fixes in fvwm_make_browse_menu.sh
 Fixed tempfile vulnerabilities in FvwmCommand.
 Fixed detection of safe system version of mkstemp.
 Security fix in fvwm-menu-directory. (CVE-2006-5969)

is this different than CVE-2006-5969 above?

Re: fvwm in base and repository with security issues?

[Edd Barrett]

Hi there,

On 30/12/2007, Jan [EMAIL PROTECTED] wrote:
 I would suggest to remove all window managers from base except twm. Twm is in 
 all default  X installations and could be left in as last resort.

Cwm is very good, but there are some bugs in that too. I notice that
if you hide a window so the pointer falls onto the root window and
then try to search for a window (alt+/ if i remember correctly), then
the search menu is not displayed.To make it start working again one
must move the mouse pointer over a window.

 I hope someone will lead this issue to the people taking decisions about what 
 should be  in and what not, resulting in or updating or removing fvwm.

Many people know and love fvwm. I think they may have something to say
about removing it.

 Pau Wrote
 please, don't touch fvwm 2.2.5... it's just perfect... not in vain
 it's the default wm in obsd... Don't touch t!

Is there anything up with newer versions then? Why should it not be
brought up to date?

 Douglas Wrote
 Personally, I use icewm since its quite
 light-weight yet configurable to some extent (e.g. menu and taskbar).

But no-where as minimal as anything in base. Icewm links imlib, which
would mean importing GPL software into base (big no no). Also it would
make base larger.

I must admit I use a GPL licensed window manager (JWM), but it was my
decision to install it from packages, so it is not a problem.

-- 
Best Regards

Edd

---
http://students.dec.bournemouth.ac.uk/ebarrett

Re: openldap with dbv4 crash

[Stuart Henderson]

   On December 29, 2007 11:23:19 am Daniel wrote:
Hi (again, sorry, now with Subject)!
   
Anyone experiencing or experienced segfaults with openldap using
the bdb backed? I'm using -current ports tree, and built the
openldap-{client,server}, dbv4 and cyrus-sasl2 packages from there.

openldap 2.3 doesn't support newer db 4.6 versions (should fail the
regression tests).

there's support in 2.4 but iirc it's not a simple thing to backport.

Re: Embedding OpenBSD

[Douglas A. Tutty]

On Mon, Dec 31, 2007 at 01:00:24AM +0100, chefren wrote:
 On 12/29/07 5:27 PM, Douglas A. Tutty wrote:
 
 Summary:
 
 I still suggest a heartbeat monitor and a modem.
 
 A heartbeat monitor makes the system seriously more complicated and thus 
 less reliable.
 
 If the proposed system boots from a non writable medium (yes there are 
 flash devices with a write-protect switch, CD-rom is also OK although dust 
 collection on the laser detector is an issue) and works in memory, 
 diskless!, unintended log events will be written to memory (that might 
 overflow but who cares for this application) and the system always boots 
 the same after power up.

How does that help if the computer just crashes or freezes instead of
just spontaneously rebooting?  Sure, there's the version 0.0.1 Human to
push a power button.

Presumably, one can get solid reliable RS-232C heartbeat monitors that
can trigger a power-cycle.  If not, they're not that difficult to make
assuming that you can source some reliable parts.  

I totally agree with the non-writable medium issue.

Doug.

Re: Real men don't attack straw men

[Marco Peereboom]

On Thu, Dec 27, 2007 at 08:42:08AM -0500, Richard Stallman wrote:
 Per that interview you are endorsing an OS that basically won't run
 without proprietary drivers.
 
 I did not know that.  Can you send me a URL for the precise details?
 Once I know the details, I will ask them to post a correction in the
 interview.

I sure can.

Code you wont ever get:
http://www.opensolaris.org/os/about/no_source/

The binary license restrictions are described at:
http://opensolaris.org/os/about/faq/binary_licensing_faq/
Let me try to recap it for you though.  You can't take a blob from
solaris and use it on linux for example.  Not very free.

More pieces of the os that are licensed odd at best:
http://opensolaris.org/os/downloads/on/

Not free development environment that is REQUIRED to compile Solaris.
http://opensolaris.org/os/downloads/devpro/


 
 The CDDL clashes with the GPL; or can you explain why suddenly CDDL is
 GPL compatible?
 
 The CDDL is not GPL-compatible, but it is a free software license.
 The source code of OpenSolaris is indeed free software, just as the
 source code for OpenBSD is free software.  If your information is
 correct, OpenSolaris has a serious problem, and should not be endorsed,
 Those are two different questions.

The CDDL has a patent provision that is not GPL compatible.  Sun
reserves the right to call something you do a patent infringement and
revoke your license.  It is quite an interesting read.

They also retain all patent rights so if you write code that makes their
patented code better they get to claim all IP rights.

The license is a mess; kind of like the GPL.  It is full of legal
pitfalls that are you know, not so free.

Have a read:
http://opensolaris.org/os/licensing/cddllicense.txt

Re: fvwm in base and repository with security issues?

[Okan Demirmen]

On Mon 2007.12.31 at 01:05 +, Edd Barrett wrote:
 Cwm is very good, but there are some bugs in that too. I notice that
 if you hide a window so the pointer falls onto the root window and
 then try to search for a window (alt+/ if i remember correctly), then
 the search menu is not displayed.To make it start working again one
 must move the mouse pointer over a window.

fixed, thanks - but file a bug (or tell someone) next time ;)

 Is there anything up with newer versions then? Why should it not be
 brought up to date?

i believe license is the issue.

Re: Embedding OpenBSD

[Nick Holland]

Steve Shockley wrote:
 [EMAIL PROTECTED] wrote:
 On the other hand, the stash of Compaq iPaqs I came across recently have
 built-in sound, a very capable built-in speaker, nearly silent in
 operation and are easy for Joe Average to understand.  We've got enough
 we could even ship out a spare with the system for spare parts.
 
 Is that one of the handheld Windows Mobile devices, or one of the thin 
 client things they used to sell?

Apparently, Compaq likes to (surprise) reuse product names.
http://www.cl.cam.ac.uk/~pb22/iPAQ/10638_na.html

It's a full i386 computer, though free of expansion slots or 5.25 drive
bays.  It has provisions for a laptop-style CDROM drive (only two of the
20 machines had that), no floppy, unless you got one for the CDROM bay.
i810 chipset.  Celeron 500MHz, though apparently other things can go
in them.  Other than the bottom, not a flat surface on them, which makes
them very difficult to handle, store, stack or relocate.  In fact, while
they are small and light enough that I should be able to carry probably
four or five at a time, the awkward shape pretty well limits it to two
at a time, as there is just nothing to hold onto (and even picking the
two up is a challenge).

However, the form is not at all bad for our project.

HW-wise, it's very solid OpenBSD-compatible stuff, and seems to work
well.  It's got classic annoying Compaq quirks (it wants a keyboard),
but they are able to be worked around.

Interesting test (even more off-topic than the rest, but...)
  With JUST the flash drive, idle OpenBSD power draw was about 21W.
  With added HD, idle OpenBSD power draw was about 26W
  With bc soaking all available processor time, power was up to 44W.
(and you thought those distributed computing projects were free...)
(my Wattmeter reads only to the nearest 1W, so all those figures are
+/-1W on top of whatever the accuracy of the thing is.)

(the hard disk is installed on this thing so I can start imaging
and making additional flash cards on my dev system, not for
production.)

Nick.


OpenBSD 4.2-current (GENERIC) #607: Tue Dec 18 18:36:52 MST 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Celeron (GenuineIntel 686-class, 128KB L2 cache) 499 MHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR
real mem  = 132739072 (126MB)
avail mem = 120451072 (114MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 02/05/99, BIOS32 rev. 0 @ 0xeca00, SMBIOS 
rev. 2.3 @ 0xfbfff (36 entries)
bios0: vendor Compaq version 686J5 v2.05 date 07/07/2000
bios0: Compaq iPaq
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP SSDT SSDT SSDT DBGP SSDT
acpi0: wakeup devices HUB_(S4) USB0(S1) PCI0(S4) SBTN(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (HUB_)
acpibtn0 at acpi0: SBTN
bios0: ROM list: 0xc/0x8000 0xc8000/0x1800 0xe/0x1!
cpu0 at mainbus0
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel 82810E rev 0x03
agp0 at pchb0: aperture at 0x4400, size 0x400
vga1 at pci0 dev 1 function 0 Intel 82810E Graphics rev 0x03
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
ppb0 at pci0 dev 30 function 0 Intel 82801AA Hub-to-PCI rev 0x02
pci1 at ppb0 bus 1
fxp0 at pci1 dev 1 function 0 Intel 8255x rev 0x08, i82559: irq 5, address 
00:d0:b7:c7:f7:de
inphy0 at fxp0 phy 1: i82555 10/100 PHY, rev. 4
ichpcib0 at pci0 dev 31 function 0 Intel 82801AA LPC rev 0x02
pciide0 at pci0 dev 31 function 1 Intel 82801AA IDE rev 0x02: DMA, channel 0 
wired to compatibility, channel 1 wired to compatibility
wd0 at pciide0 channel 0 drive 0: CF 1GB
wd0: 1-sector PIO, LBA, 967MB, 1980720 sectors
wd1 at pciide0 channel 0 drive 1: ST38411A
wd1: 16-sector PIO, LBA, 8063MB, 16514064 sectors
wd0(pciide0:0:0): using PIO mode 4, DMA mode 2
wd1(pciide0:0:1): using PIO mode 4, Ultra-DMA mode 4
pciide0: channel 1 disabled (no drives)
uhci0 at pci0 dev 31 function 2 Intel 82801AA USB rev 0x02: irq 5
auich0 at pci0 dev 31 function 5 Intel 82801AA AC97 rev 0x02: irq 10, ICH AC97
ac97: codec id 0x41445348 (Analog Devices AD1881A)
ac97: codec features headphone, Analog Devices Phat Stereo
audio0 at auich0
isa0 at ichpcib0
isadma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
midi0 at pcppi0: PC speaker
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
usb0 at uhci0: USB revision 1.0
uhub0 at usb0 Intel UHCI root hub rev 1.00/1.00 addr 1
biomask f9fd netmask f9fd ttymask fbff
mtrr: Pentium Pro MTRR support
uhub1 at uhub0 port 2 Texas Instruments TUSB2046 hub rev 1.10/1.25 addr 2
uhidev0 at uhub1 port 3 configuration 1 interface 0 Sun Microsystems Type 6 
Keyboard rev 1.10/2.00 addr 3
uhidev0: iclass 3/1
ukbd0 at uhidev0: 8 modifier keys, 6 key codes, 

Re: Embedding OpenBSD

[Steve Shockley]

Nick Holland wrote:
Apparently, Compaq likes to (surprise) reuse product names. 
http://www.cl.cam.ac.uk/~pb22/iPAQ/10638_na.html


I think that's what I was thinking of, at least the case looks like it. 
 I think at one point they marketed these as a thin client type of 
device.



Interesting test (even more off-topic than the rest, but...) With
JUST the flash drive, idle OpenBSD power draw was about 21W. With
added HD, idle OpenBSD power draw was about 26W With bc soaking all
available processor time, power was up to 44W. (and you thought those
distributed computing projects were free...) (my Wattmeter reads
only to the nearest 1W, so all those figures are +/-1W on top of
whatever the accuracy of the thing is.)


How's that compare to a Mac 68k?  I'm surprised you didn't go with one 
of those... although I suppose a SCSI flash adapter is hard to find.