Re: tmux mutt and f1
On 26 August 2014, frantisek holop wrote: > Tobias Ulmer, 26 Aug 2014 15:41: > > On Mon, Aug 25, 2014 at 10:42:57PM +0200, frantisek holop wrote: > > > does anyone know of a way to make urxvt > > > play together nicely with mutt (and tmux) > > > regarding the f1 key? it works in xterm... > > > > > > macro index,pager "less > > > /usr/local/share/doc/mutt/manual.txt" "help" > > > > Works in urxvt for me. You're probably using the wrong TERM/termName > > setting. > > Should be rxvt-256color and screen inside tmux > > hmm. > > .tmux.conf: > set -g default-terminal screen-256color > > .Xdefaults: > urxvt.termName: screen-256color > ... > XTerm.termName: screen-256color > > > you are right. changing it to > > urxvt.termName: rxvt-256color > > makes it work. (xterm works with screen-256color) > what kept confusing me is that other programs like > midnight commander and vim had no problems. shrug. > thank you. Midnight Commander and Vim have mechanisms to override termcap / terminfo, Mutt doesn't. The termcap / terminfo clusterfuck was much worse 20+ years ago. It has slowly improved over time, but IMO things like Vim and Midnight Commander mostly working out of the box have kept people from fixing it sooner. Regards, Liviu Daia
Re: What to do about wordexp(3)?
On Tue, Aug 26, 2014 at 01:41:17PM -0700, Philip Guenther wrote: > In this case, the code only uses wordexp() to expand a path in a config > file variable, the path to the file holding > > your google reader password! > > [...] That is funny. I guess I should have looked at the code before complaining but even so, wordexp() is still a problem (maybe a smaller one, in this case, than I thought). While the code for 2.8 can be easily patched to compile on OpenBSD, there have been several commits since then that added even more usage of wordexp(). I will contact the author and ask him if he will stop using wordexp() in the future. If not, I suppose he'll have lost a user. Thanks for the reassurance that wordexp() is still bad. -- Kaashif Hymabaccus GPG: 2048R/3E810B04
Re: tmux mutt and f1
Tobias Ulmer, 26 Aug 2014 15:41: > On Mon, Aug 25, 2014 at 10:42:57PM +0200, frantisek holop wrote: > > does anyone know of a way to make urxvt > > play together nicely with mutt (and tmux) > > regarding the f1 key? it works in xterm... > > > > macro index,pager "less > > /usr/local/share/doc/mutt/manual.txt" "help" > > Works in urxvt for me. You're probably using the wrong TERM/termName setting. > Should be rxvt-256color and screen inside tmux hmm. .tmux.conf: set -g default-terminal screen-256color .Xdefaults: urxvt.termName: screen-256color ... XTerm.termName: screen-256color you are right. changing it to urxvt.termName: rxvt-256color makes it work. (xterm works with screen-256color) what kept confusing me is that other programs like midnight commander and vim had no problems. shrug. thank you. -f -- life is like... an analogy.
Re: What to do about wordexp(3)?
On Tue, Aug 26, 2014 at 1:20 PM, Ingo Schwarze wrote: > Kaashif Hymabaccus wrote on Tue, Aug 26, 2014 at 01:09:41PM +0100: > > > I tried to update www/newsbeuter to 2.8, and I thought it would be easy, > > considering that all of the patches to 2.7 had been merged upstream, so > > there was no need for any of them. I updated the Makefile and tried to > > compile newsbeuter 2.8, only to find it uses the libc function wordexp, > > which is not implemented in OpenBSD. > ... > > Isn't there something else that can be done, or is getting everyone > > to stop using it the only option? > > Ultimately, the only thing you can do about low-quality software > is stop using it and use (or write or fork) something better. > In this case, the code only uses wordexp() to expand a path in a config file variable, the path to the file holding your google reader password! Yes, the current version of this software was released almost two months after google reader was shut down, which was in turn over a year ago. I don't think you're going to be missing anything if you just disable that code... Philip Guenther
Re: What to do about wordexp(3)?
Hi, Kaashif Hymabaccus wrote on Tue, Aug 26, 2014 at 01:09:41PM +0100: > I tried to update www/newsbeuter to 2.8, and I thought it would be easy, > considering that all of the patches to 2.7 had been merged upstream, so > there was no need for any of them. I updated the Makefile and tried to > compile newsbeuter 2.8, only to find it uses the libc function wordexp, > which is not implemented in OpenBSD. > > I found this mail on the matter from 2010: > http://marc.info/?l=openbsd-tech&m=127058619519298&w=2 > > Has the situation changed since then? No, the specification of the function did not change. And POSIX 2008 is still the latest standard. The specification is still as ill-designed in the same (large) number of respects as it always was, and the function is still as dangerous as it always was. The specific implementation doesn't even matter, the misguided definition of the interface itself is the problem here. In OpenBSD, we strive to implement standards where they make sense. We try to not be gratuitiously different. Even when parts of a standard make rather little sense, we often sacrifice a bit of code and interface quality merely to be compatible. But there is a limit. If an aspect of a standard is so outrageously bad that implementing it would seriously jeopardize project goals, we stand up to it and do not implement it. There are several such cases in various areas. This one is a textbook example. > There seem to be a lot of projects > using wordexp now, what can be done about it? Tell them to stop using it. > To me, it looks like the only option is to send patches to all > of the projects using wordexp and get them to stop using it, > but that's not practical. If you want to help a project you care about by providing patches, that's certainly fine. But if some project does not understand why wordexp(3) is a bad interface, or does not care, and continues to use it, or does not make it a priority to replace it with something better, you should probably not use code from that project in the first place: It's obvious the project does not understand secure coding practices or doesn't care about security. > Isn't there something else that can be done, or is getting everyone > to stop using it the only option? Ultimately, the only thing you can do about low-quality software is stop using it and use (or write or fork) something better. Yours, Ingo
Re: Bad performance with re(4)
On 8/26/2014 at 1:02 PM, "Brent Cook" wrote: >That sounds really familiar. I had a random sparc machine show >very similar behavior with multiple operating systems. It turned >out it did not like to play nicely with my gigabit switch and was >constantly renegotiating link speed. I think it had something to >do with the power efficient ethernet support. > >I bought a new switch, and everything worked properly. > I did the initial install as a PXE boot from another computer, I was busy doing something else at the time but I remember thinking it was taking a really long time to tftp bsd.rd (this was via a crossover cable). Because of that I'm hesitant to believe it's related to my networking gear but perhaps something is borked with the power settings. After reading jsg's "Driver Architecture and Implementation in OpenBSD" I ran the following commands while ftping a large file: $ netstat -i NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls re0 150000:21:cc:50:2e:32 7513 0 4637 0 0 re0 1500 10.0.0/24 10.0.0.48 7513 0 4637 0 0 ... 10 seconds go by ... re0 150000:21:cc:50:2e:32 7711 0 4780 0 0 re0 1500 10.0.0/24 10.0.0.48 7711 0 4780 0 0 ... 10 seconds go by ... re0 150000:21:cc:50:2e:32 7910 0 4928 0 0 re0 1500 10.0.0/24 10.0.0.48 7910 0 4928 0 0 ... 10 seconds go by ... re0 150000:21:cc:50:2e:32 8110 0 5084 0 0 re0 1500 10.0.0/24 10.0.0.48 8110 0 5084 0 0 $ netstat -m 93 mbufs in use: 84 mbufs allocated to data 4 mbufs allocated to packet headers 5 mbufs allocated to socket names and addresses 17/48/6144 mbuf 2048 byte clusters in use (current/peak/max) 64/72/6144 mbuf 4096 byte clusters in use (current/peak/max) 0/8/6144 mbuf 8192 byte clusters in use (current/peak/max) 0/8/6144 mbuf 9216 byte clusters in use (current/peak/max) 0/8/6144 mbuf 12288 byte clusters in use (current/peak/max) 0/8/6144 mbuf 16384 byte clusters in use (current/peak/max) 0/8/6144 mbuf 65536 byte clusters in use (current/peak/max) 596 Kbytes allocated to network (52% in use) 0 requests for memory denied 0 requests for memory delayed 0 calls to protocol drain routines $ sysstat vm (wasn't able to capture the output very cleanly) ... 259 interrupts, 200 clock, 8 ipi, 49 re0 and 2 ahci0 I don't see anything there that appears to be out of order... -Chester "See? Kids love pizza, and they love squalor." - James Madison
Re: Postfix and SASL authentication.
Hi. On 26.08.14, 12:25, Craig R. Skinner wrote: > On 2014-08-25 Mon 21:40 PM |, giacomo wrote: > > > > > > Join the Postfix users mailing list (http://www.postfix.org/lists.html) > > > > > > Send them a problem description & the output of both: > > > $ postconf -nf > > > $ postconf -Mf > > REALLY: Join the Postfix users mailing list and send them the output. Excuse me I don't read carefully this part. Ok, I send it on postfix mailing list. > > > > > > > Sorry I can help further as I don't use SSL with SMTP as it can't be > > > enforced throughout a message's life - therefore I consider it a false > > > sense of security. > > > > Which is a solution, for you, to increase the security for connections from > > the outside > > , for example with a portable device (laptop,smartphone, etc) using a > > OpenBSD system? > > > > SMTP is not a point to point protocol, it is a redundant store & forward > protocol. SSL/TLS was an afterthought, and may be optionally negotiated > for each hop. The security of the channel is never guaranteed for each > leg of the journey. And the next hop never promises to encrypt the > onward connection. > > Mail gateways may accept an encrypted connection & forward it in clear > text to a LAN M$ exchange, Solaris or Loonix box. You don't know. Some > organisations also use 3rd party off-site MX backup boxes as well. Who > knows what they do with mail, and what route they forward it onwards by. > > Want proof? Send me a mail from your SSL/TLS MTA & watch the logs as the > message is sent in clear text to Scotland. I'll reply and you'll see > from your logs that your fancy SSL set up is ignored, and the message is > accepted by your box in plain text. > > Even if the message does (by random chance) happen to travel via an > encrypted channel, it then sits in clear text on Goatmail, Snotmail, > Yahtwits or AOL.con's servers for government agencies around the world > to read - years after it is 'deleted'. > > SMTP is resilient, but insecure. > > The best that can be done is to have the user PGP encrypt their message > before sending. To protect the user's authentication credentials on port > 587 is to use rather weak digest auth. > e.g: > 250-AUTH CRAM-MD5 > > NOT: > 250-AUTH PLAIN > 250-AUTH LOGIN > > Using SSL for SMTP-submission, IMAP or POP is to deceive users into > thinking their mail is secure. It is a lie. > > Otherwise, both ssh to a box & chat locally. > > Or use something like SILC: > http://en.wikipedia.org/wiki/SILC_%28protocol%29 Many thanks for the explanation. -- Isaia Luciano -- Le informazioni contenute nella presente e-mail e nei documenti/files eventualmente allegati sono confidenziali. Essi sono riservati esclusivamente al destinatario della stessa. La loro eventuale comunicazione, diffusione o, comunque, rivelazione a terzi, nonche' la copiatura e/o conservazione e' vietata. Se avete ricevuto questa e-mail per errore, Vi preghiamo cortesemente di informare immediatamente il mittente della stessa e di distruggerla o, comunque, cancellarla dal Vostro sistema. This e-mail contains confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error), please notify the sender immediately and destroy this e-mail. Any unauthorised communication, diffusion, disclosure and copy of the material in this e-mail is strictly forbidden. --
Re: Bad performance with re(4)
On Aug 25, 2014, at 11:37 AM, Chester T. Field wrote: > Hi friends, > > I'm experiencing really poor network performance via the Realtek 8101E (re) > Ethernet card on my HP Mini 110. Using the default setting of tcpbench > I'm getting an average Mbps of 0.172 versus a compatible machine (Asus > Eee PC (alc)) where I'm getting 92.690 Mbps. > > I suspect this class of card might just not be supported very well > or perhaps is just a big smelly meatball but I figured I'd ask in case > someone has run into similar problems with this NIC. Any suggestions? That sounds really familiar. I had a random sparc machine show very similar behavior with multiple operating systems. It turned out it did not like to play nicely with my gigabit switch and was constantly renegotiating link speed. I think it had something to do with the power efficient ethernet support. I bought a new switch, and everything worked properly. > OpenBSD 5.6-current (GENERIC.MP) #344: Sun Aug 24 16:18:23 MDT 2014 >dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP > RTC BIOS diagnostic error 80 > real mem = 1044639744 (996MB) > avail mem = 1008156672 (961MB) > mpath0 at root > scsibus0 at mpath0: 256 targets > mainbus0 at root > bios0 at mainbus0: SMBIOS rev. 2.6 @ 0xe6c10 (20 entries) > bios0: vendor Hewlett-Packard version "F.15" date 01/14/2011 > bios0: Hewlett-Packard HP Mini 110-3000 > acpi0 at bios0: rev 2 > acpi0: sleep states S0 S3 S4 S5 > acpi0: tables DSDT FACP HPET APIC MCFG SLIC BOOT SSDT SSDT SSDT WDAT > acpi0: wakeup devices PWRB(S4) LID0(S4) P32_(S4) UHC1(S3) UHC2(S3) ECHI(S3) > EXP1(S4) PXSX(S4) EXP2(S4) AZAL(S4) MODM(S4) > acpitimer0 at acpi0: 3579545 Hz, 24 bits > acpihpet0 at acpi0: 14318179 Hz > acpimadt0 at acpi0 addr 0xfee0: PC-AT compat > cpu0 at mainbus0: apid 0 (boot processor) > cpu0: Intel(R) Atom(TM) CPU N450 @ 1.66GHz, 1662.99 MHz > cpu0: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,NXE,LONG,LAHF,PERF > cpu0: 512KB 64b/line 8-way L2 cache > cpu0: smt 0, core 0, package 0 > mtrr: Pentium Pro MTRR support, 7 var ranges, 88 fixed ranges > cpu0: apic clock running at 166MHz > cpu0: mwait min=64, max=64, C-substates=0.2.2.0.2, IBE > cpu1 at mainbus0: apid 1 (application processor) > cpu1: Intel(R) Atom(TM) CPU N450 @ 1.66GHz, 1662.68 MHz > cpu1: > FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,DTES64,MWAIT,DS-CPL,EST,TM2,SSSE3,CX16,xTPR,PDCM,MOVBE,NXE,LONG,LAHF,PERF > cpu1: 512KB 64b/line 8-way L2 cache > cpu1: smt 1, core 0, package 0 > ioapic0 at mainbus0: apid 4 pa 0xfec0, version 20, 24 pins > ioapic0: misconfigured as apic 0, remapped to apid 4 > acpimcfg0 at acpi0 addr 0xe000, bus 0-255 > acpiprt0 at acpi0: bus 0 (PCI0) > acpiprt1 at acpi0: bus 3 (P32_) > acpiprt2 at acpi0: bus 1 (EXP1) > acpiprt3 at acpi0: bus 2 (EXP2) > acpiec0 at acpi0 > acpicpu0 at acpi0: C2, C1, PSS > acpicpu1 at acpi0: C2, C1, PSS > acpipwrres0 at acpi0: FN00 > acpitz0 at acpi0: critical temperature is 87 degC > acpibtn0 at acpi0: PWRB > acpibtn1 at acpi0: LID0 > acpibat0 at acpi0: BAT0 not present > acpiac0 at acpi0: AC unit online > acpivideo0 at acpi0: OVGA > acpivout0 at acpivideo0: DD02 > cpu0: Enhanced SpeedStep 1662 MHz: speeds: 1666, 1333, 1000 MHz > pci0 at mainbus0 bus 0 > pchb0 at pci0 dev 0 function 0 "Intel Pineview DMI" rev 0x00 > vga1 at pci0 dev 2 function 0 "Intel Pineview Video" rev 0x00 > intagp0 at vga1 > agp0 at intagp0: aperture at 0x4000, size 0x1000 > inteldrm0 at vga1 > drm0 at inteldrm0 > inteldrm0: 1024x600 > wsdisplay0 at vga1 mux 1: console (std, vt100 emulation) > wsdisplay0: screen 1-5 added (std, vt100 emulation) > "Intel Pineview Video" rev 0x00 at pci0 dev 2 function 1 not configured > azalia0 at pci0 dev 27 function 0 "Intel 82801GB HD Audio" rev 0x02: msi > azalia0: codecs: IDT/0x7667 > audio0 at azalia0 > ppb0 at pci0 dev 28 function 0 "Intel 82801GB PCIE" rev 0x02: msi > pci1 at ppb0 bus 1 > re0 at pci1 dev 0 function 0 "Realtek 8101E" rev 0x04: RTL8401E (0x2400), > msi, address 00:21:cc:50:2e:32 > rlphy0 at re0 phy 7: RTL8201L 10/100 PHY, rev. 1 > vendor "Realtek", unknown product 0x5288 (class undefined unknown subclass > 0x00, rev 0x01) at pci1 dev 0 function 1 not configured > ppb1 at pci0 dev 28 function 1 "Intel 82801GB PCIE" rev 0x02: msi > pci2 at ppb1 bus 2 > athn0 at pci2 dev 0 function 0 "Atheros AR9285" rev 0x01: apic 4 int 17 > athn0: AR9285 rev 2 (1T1R), ROM rev 13, address 00:25:d3:d1:37:16 > uhci0 at pci0 dev 29 function 0 "Intel 82801GB USB" rev 0x02: apic 4 int 16 > uhci1 at pci0 dev 29 function 1 "Intel 82801GB USB" rev 0x02: apic 4 int 18 > uhci2 at pci0 dev 29 function 2 "Intel 82801GB USB" rev 0x02: apic 4 int 17 > uhci3 at pci0 dev 29 function 3 "Intel 82801GB USB" rev 0x02: apic 4 int 19 > ehci0 at pci0 dev 29 function 7 "Inte
Re: Bad performance with re(4)
chester.t.fi...@hushmail.com [chester.t.fi...@hushmail.com] wrote: > On 8/26/2014 at 12:27 PM, "Chris Cappuccio" wrote:Chester > T. Field [chester.fi...@hushmail.com] wrote: > >> Hi friends, > >> > > >Have you verified it's an openbsd-only problem? This driver is well supported > >and provides good performance in my experience. > > I tried it under Linux and I'm seeing the same crappy speeds, I haven't > checked with Windows to see if the problem exists > with proprietary drivers vs this being a hardware issue. > That might be interesting to know. Other BSDs as well.
Re: Bad performance with re(4)
On 8/26/2014 at 12:27 PM, "Chris Cappuccio" wrote:Chester T. Field [chester.fi...@hushmail.com] wrote: >> Hi friends, >> >Have you verified it's an openbsd-only problem? This driver is well supported >and provides good performance in my experience. I tried it under Linux and I'm seeing the same crappy speeds, I haven't checked with Windows to see if the problem exists with proprietary drivers vs this being a hardware issue. I have experienced something similar with alc(4) on a Toshiba C640D, both OpenBSD and Linux would cause weird lockups under high(-ish) network activity. I don't know if this was the cause but the ACPI implementation on that machine was really messed up, I tried to view the tables in Windows and the machine would just blue screen... I digress... Sorry about the new e-mail address, I Googled "how to make money" so the Secret Service tasered my cat and reset my password. -Chester "Chickens are a vital link in nature's chain and that's why we use them to play chicken-ball in the house!" - Susan B. Anthony
Re: How to log in automatically to GUI?
yes, slim won.. Thanks! On 2014. 08. 25. at 10:51 PM, "Todd" wrote:I think the port x11 /slim can do auto logins On Mon, Aug 25, 2014 at 2:54 PM, wrote: > I installed an OpenBSD desktop and in the /etc: > > rc.conf.local:xdm_flags=# enabled during install > > How can I set the automatic login for a user without prompting for > password? > > Many thanks!
Re: Did anyone tried WPA&WPA2 Enterprise / LEAP on OpenBSD 5.5?
This script worked, many thanks!! On 2014. 08. 25. at 10:10 PM, "Christopher Zimmermann" wrote:On Mon, 25 Aug 2014 21:58:58 +0200 somelooser3...@hushmail.com wrote: > How can I configure (via console, not using GUI) on OpenBSD to connect > to a > > WPA&WPA2 Enterprise / LEAP > > wireless connection? Does anybody has any scripts for this? echo -n 'setting up wlan: ' ifconfig iwn0 scan |sed -nEe 's/^[[:space:]]*nwid "?([^"]*)"? chan .*$/1/p' | while read nwid do case "$nwid" in eduroam) echo "$nwid." route delete default ifconfig iwn0 inet -inet6 media autoselect -bssid -chan -nwkey nwid "$nwid" wpa wpaprotos wpa2 wpaakms 802.1x wpaciphers ccmp wpagroupcipher ccmp up rm -f rm /var/run/wpa_supplicant/iwn0 wpa_supplicant -B -c /etc/wpa_supplicant.conf -D openbsd -i iwn0 dhclient iwn0 break 1 ;; esac [...] done /etc/wpa_supplicant.conf: ctrl_interface=/var/run/wpa_supplicant ctrl_interface_group=wheel ap_scan=0 network={ ssid="eduroam" key_mgmt=WPA-EAP eap=PEAP identity="x...@d.tld" password="XXX" } -- http://gmerlin.de OpenPGP: http://gmerlin.de/christopher.pub F190 D013 8F01 AA53 E080 3F3C F17F B0A1 D44E 4FEE
Re: The rant about browsers
Hi, > I don't like it but it has its uses. In this case I was using it to test > because it is a heavily interactive page and does not load ads that may > require flash. To test what? A browser? > I gave a quick comparison about memory usage between Windows and > FreeBSD, that was an informal test but still a clue that it is not only > a limit problem, but also a resource usage problem This is OpenBSD list, you know! > This is not an attack against your favourite OS and saying that in > certain scenarios an app on windows runs better is not an endorsement > for that operating system. > It only shows that there is space for improvement. Second time, this list is not about Windows! I don't have a 'favorite' OS. > The fact that I am a heavy user is no kind of proof, it was just a mean > tosay that I am not an occasional browser user, but that I eran my daly > bread with stuff in a browser, so I have experience with the beast. Then earn it nice. Do not create monster sites for weak browsers and hardware. Look at the www.openbsd.org pages, please. > My suspect is that at least on all BSDs, Seamonkey (but surely other > browsers too) use more memory. If you add the stricter limits, it's easy. This is not news, many people are complaining browsers are becoming giants eating your memory. > I will perform a better comparison, including linux and write a blog > entry about it. Third time, this is not a list about linux. > It could be a detendent library, it could be gtk, cairo... whatever. It could be the universe expanding or solar radiation. OR much better, the Schroedinger's cat. > A long time ago, on Linux I did run the same version of Mozilla (!) with > GTK and with win32 over wine. The latter was faster and used less >resources. Fourth time, it's about OpenBSD for OS' sake! > Riccardo So, it was a thread about browsers now, and all I was hopping was that some people will step in and offer some mitigations. Do not hijack the thread, please. Your tests are not helpful. I'm available on the email, let's not abuse the list. Thanks.
[www/faq/current.html] rm -f /etc/rc.d/named
Isn't there forgotten named's rcscript? j. Index: current.html === RCS file: /cvs/www/faq/current.html,v retrieving revision 1.539 diff -u -p -u -p -r1.539 current.html --- current.html25 Aug 2014 07:40:35 - 1.539 +++ current.html26 Aug 2014 16:27:15 - @@ -746,6 +746,7 @@ however users with some configurations ( DNS) may find it simpler to continue with BIND (which is available in packages). The old binaries and manual pages should be removed: + rm -f /etc/rc.d/named rm -f /usr/sbin/dnssec-keygen rm -f /usr/sbin/dnssec-signzone rm -f /usr/sbin/named
Re: Bad performance with re(4)
Chester T. Field [chester.fi...@hushmail.com] wrote: > Hi friends, > > I'm experiencing really poor network performance via the Realtek 8101E (re) > Ethernet card on my HP Mini 110. Using the default setting of tcpbench > I'm getting an average Mbps of 0.172 versus a compatible machine (Asus > Eee PC (alc)) where I'm getting 92.690 Mbps. > > I suspect this class of card might just not be supported very well > or perhaps is just a big smelly meatball but I figured I'd ask in case > someone has run into similar problems with this NIC. Any suggestions? > Have you verified it's an openbsd-only problem? This driver is well supported and provides good performance in my experience.
Re: The rant about browsers
Do not want to interfare into os discussion. Just want to ask about status of uzbl browser in packages? It was there some time ago. Then disappeared. I use it on my freebsd nodes and find it just perfect for my needs. Best regards all Zoran
What to do about wordexp(3)?
Hello misc@, I tried to update www/newsbeuter to 2.8, and I thought it would be easy, considering that all of the patches to 2.7 had been merged upstream, so there was no need for any of them. I updated the Makefile and tried to compile newsbeuter 2.8, only to find it uses the libc function wordexp, which is not implemented in OpenBSD. I found this mail on the matter from 2010: http://marc.info/?l=openbsd-tech&m=127058619519298&w=2 Has the situation changed since then? There seem to be a lot of projects using wordexp now, what can be done about it? To me, it looks like the only option is to send patches to all of the projects using wordexp and get them to stop using it, but that's not practical. Isn't there something else that can be done, or is getting everyone to stop using it the only option? -- Kaashif Hymabaccus GPG: 2048R/3E810B04
Re: tmux mutt and f1
On Mon, Aug 25, 2014 at 10:42:57PM +0200, frantisek holop wrote: > does anyone know of a way to make urxvt > play together nicely with mutt (and tmux) > regarding the f1 key? it works in xterm... > > macro index,pager "less > /usr/local/share/doc/mutt/manual.txt" "help" Works in urxvt for me. You're probably using the wrong TERM/termName setting. Should be rxvt-256color and screen inside tmux > > -f > -- > on a scale of 1 to 10, 4 is about 7.
Re: Help, please, understanding AHCI error on amd64
Hi, Dave Anderson wrote: Yup, time for a new disk. I'm off to do some research on who makes the most reliable ones these days. [Suggestions from anyone knowledgable are welcome.] the companies merge and merge :) For a magnetic disc, there's Hitachi global storage and Toshiba left for example. Western digital too, I used to love it, but I had two external drives (which are essentially laptop drives and carried around like laptops) which suffered sector damage after just 2-3 years. I might just be unlucky, but now I am on my second Toshiba external drive. The power consumption of WD was very good (start off a standard USB port without any additional power or over-driving the port, which certain older ports do not allow and require external power like 99% of the disks I tested) Riccardo
Re: The rant about browsers
Hi, Chuck Burns wrote: On Monday, August 25, 2014 5:08:36 PM Mihai Popescu wrote: Actually, I can somewhat understand his reaction. Let's not be so quick to judge here. Yes, many "windows-primary" web browsers -DO- seem to be less-than-capable under Unix. Thanks. I just did a quick and dirty comparison, since I felt similar problems as the original poster, although I experience less crashes, I notice high resource usage. However, is that a problem with Unix? Or is that a problem with the browsers being -first developed- for Windows, and then ported to the other OSs. There are also more restrictions on UNIX than on Windows, so when you - do- exceed the limits on UNIX, apps misbehave because they aren't expecting to be told "No. You can't have more RAM" because on Windows, they ask for more RAM, they get more RAM. Now, does this mean that windows is better? No. Not really. What it means is, those browsers are not written with limits in mind. That's one thing for sure. However if you add that browsers "leek" RAM everywhere (even my quick test showed that after a couple of task, turning back to the original page lost a lot of memory) and that in addition the memory usage is higher, it is easy to see that we are worse on Unix than on Windows. What needs to be done is find the leaks and patch the leaks.. OR use browsers that are lighter and/or smarter about their memory usage. Patching the leaks will benefit any OS, perhaps we can work with on upstream. However, getting the same memory usage on Unix as on Windows would be a first step, at least we are "no worse" when using our favourite BSD! Many mainstream browsers simply require more cpu and RAM than they really should, especially on older systems. I bet all those custom interfaces, like the latest Firefox, do not help. That is why Seamonkey, which is actually a suite, is often quite lighter than Firefox. However, I can still do quite some decent browsing on an aging WinXP laptop with 1G of ram. My FreeBSD machine has twice the RAM and two cores... and feels slower, the OpenBSD machine has about the same spec and problem. Riccardo
Re: The rant about browsers
Hi, Mihai Popescu wrote: Go to Windows only then, it is a simple choice. You make me laugh: you don't touch Chromium because it is from Google, but you are using Gmail! I don't like it but it has its uses. In this case I was using it to test because it is a heavily interactive page and does not load ads that may require flash. Show me your study about browsers' stability and resources usage on OSes, please. No, the fact that you are a heavy user doesn't count! I gave a quick comparison about memory usage between Windows and FreeBSD, that was an informal test but still a clue that it is not only a limit problem, but also a resource usage problem This is not an attack against your favourite OS and saying that in certain scenarios an app on windows runs better is not an endorsement for that operating system. It only shows that there is space for improvement. The fact that I am a heavy user is no kind of proof, it was just a mean tosay that I am not an occasional browser user, but that I eran my daly bread with stuff in a browser, so I have experience with the beast. My suspect is that at least on all BSDs, Seamonkey (but surely other browsers too) use more memory. If you add the stricter limits, it's easy. I will perform a better comparison, including linux and write a blog entry about it. It could be a detendent library, it could be gtk, cairo... whatever. A long time ago, on Linux I did run the same version of Mozilla (!) with GTK and with win32 over wine. The latter was faster and used less resources. Riccardo
pflogd uses high cpu.
Hi list, On OpenBSD 5.4 (32 bit) gateway, Today, I found pflogd uses high cpu. When I run top command, it takes a whole a lot of resources. I searched on the web. But I could NOT find things related to OpenBSD. But for Freebsd, I found this. http://lists.freebsd.org/pipermail/freebsd-current/2009-March/004206.html Can you guys have any comment on this? -- cat /etc/motd Thank you Indunil Jayasooriya http://www.theravadanet.net/ http://www.siyabas.lk/sinhala_how_to_install.html - Download Sinhala Fonts
[5.5] 007_sendmail.patch.sig - a little fix
http://ftp.openbsd.org/pub/OpenBSD/patches/5.5/common/007_sendmail.patch.sig And then rebuild and install sendmail: - cd gnu/usr.sbin/sendmail + cd /usr/src/gnu/usr.sbin/sendmail make obj make depend make -- ax
Re: Postfix and SASL authentication.
On 2014-08-25 Mon 21:40 PM |, giacomo wrote: > > > > Join the Postfix users mailing list (http://www.postfix.org/lists.html) > > > > Send them a problem description & the output of both: > > $ postconf -nf > > $ postconf -Mf REALLY: Join the Postfix users mailing list and send them the output. > > > > Sorry I can help further as I don't use SSL with SMTP as it can't be > > enforced throughout a message's life - therefore I consider it a false > > sense of security. > > Which is a solution, for you, to increase the security for connections from > the outside > , for example with a portable device (laptop,smartphone, etc) using a OpenBSD > system? > SMTP is not a point to point protocol, it is a redundant store & forward protocol. SSL/TLS was an afterthought, and may be optionally negotiated for each hop. The security of the channel is never guaranteed for each leg of the journey. And the next hop never promises to encrypt the onward connection. Mail gateways may accept an encrypted connection & forward it in clear text to a LAN M$ exchange, Solaris or Loonix box. You don't know. Some organisations also use 3rd party off-site MX backup boxes as well. Who knows what they do with mail, and what route they forward it onwards by. Want proof? Send me a mail from your SSL/TLS MTA & watch the logs as the message is sent in clear text to Scotland. I'll reply and you'll see from your logs that your fancy SSL set up is ignored, and the message is accepted by your box in plain text. Even if the message does (by random chance) happen to travel via an encrypted channel, it then sits in clear text on Goatmail, Snotmail, Yahtwits or AOL.con's servers for government agencies around the world to read - years after it is 'deleted'. SMTP is resilient, but insecure. The best that can be done is to have the user PGP encrypt their message before sending. To protect the user's authentication credentials on port 587 is to use rather weak digest auth. e.g: 250-AUTH CRAM-MD5 NOT: 250-AUTH PLAIN 250-AUTH LOGIN Using SSL for SMTP-submission, IMAP or POP is to deceive users into thinking their mail is secure. It is a lie. Otherwise, both ssh to a box & chat locally. Or use something like SILC: http://en.wikipedia.org/wiki/SILC_%28protocol%29
Re: OpenBSD 5.5-STABLE: Full Disk Encryption (bioctl) and Smard Cards
On Tue, Aug 26, 2014 at 12:03:52AM + or thereabouts, Stuart Henderson wrote: > On 2014-08-23, Zach Leslie wrote: > > All yubikeys have the two slots, to my knowledge, which can be set either > > static or otp. > > Yes 2 slots - the gui and cli programming tools are in packages. > Not sure about newer ones, but older yubikeys are quite limited in > maximum static password length (16 chars iirc). > Yubikey 2.2+ static passwords went up to 38 characters and changeable by the user. Yubikey Neo is not changeable. Later this year there is supposed to be a public release of the NEO with U2F, Universal 2nd Factor including wireless support. It has been tested inside Google and elsewhere. NEO is twice the price now.
/etc/mail/sendmail.cf not found when building release from 24 Aug amd64 snapshot
Beginning with the installation of the 24 August amd64 snapshot, I received the following error when building a release: 8<--- ... install -C -o root -g bin -m 0444 /usr/src/usr.sbin/nginx/html/50x.html /usr/dest/var/www/htdocs/ cd ../usr.sbin/npppd && exec make distribution install -C -o root -g wheel -m 0640 /usr/src/usr.sbin/npppd/npppd/npppd.conf /usr/dest/etc/npppd/npppd.conf install -C -o root -g wheel -m 0600 /usr/src/usr.sbin/npppd/npppd/npppd-users /usr/dest/etc/npppd/npppd-users cd mail && exec make distribution install -c -o root -g wheel -m 644 Makefile /usr/dest/etc/mail/Makefile install -c -o root -g wheel -m 644 README /usr/dest/etc/mail/README install -c -o root -g wheel -m 644 access /usr/dest/etc/mail/access /usr/libexec/sendmail/makemap hash /usr/dest/etc/mail/access < access makemap: /etc/mail/sendmail.cf: No such file or directory *** Error 66 in mail (Makefile:29 'distribution') *** Error 1 in . (Makefile:209 'distribution-etc-root-var') *** Error 1 in /usr/src/etc (Makefile:221 'distribution') $ 8<--- /etc/mail/sendmail.cf does not exist, however find(1) does find /usr/dest/etc/mail/sendmail.cf. Copying this file back to /etc/mail appears to allow building the release to continue. Thanks. Jim