from:"Duncan Patton a Campbell"

Re: facts about OpenBSD

2008-01-10 Thread Duncan Patton a Campbell

On Thu, 10 Jan 2008 14:24:33 +0200
Nikns Siankin [EMAIL PROTECTED] wrote:

 On Thu, Jan 10, 2008 at 09:56:01PM +1100, Rod Whitworth wrote:
 On Thu, 10 Jan 2008 12:00:53 +0200, Nikns Siankin
 [EMAIL PROTECTED] wrote:
 [..]
 
 We have had several pointless trolls too many lately. As a result your
 pointless humour does not raise a laugh.
 
 
 Stay on-topic or fuck off like jacob does.
 

Who *pays* you for this?  I'd need to be paid, and well.

Dhu

 
 Rod/
 /earth: write failed, file system is full
 cp: /earth/creatures: No space left on device

Sermon on Open Systems

2008-01-15 Thread Duncan Patton a Campbell

Ladies and Gentlemen, lend me your eyes for a brief moment 
for some feeble words of praise for your efforts. 

The other day a friend of mine, for whom I have installed an OpenBSD 
system, mentioned that he had costly experience in the past with small 
shops and proprietary systems that cannot benefit from economies of 
scale.  I told him that this was not the case with the machine I put 
together for him, that many hundreds of thousands of people over many 
years had worked on what I gave him for little more than a song and a 
dance.

Yesterday I installed a Vista machine in my doctor's office, because 
that's what they bought.  While I was able to make it talk internet 
right off the bat, for the life of me I could not convince it to see 
some XP boxes in a local workgroup (Link Layer Topology Discovery be
damned).  A  Windows Guru was able to make it talk today with no 
more effort than a magic incantation MS had given him. 

Over fifteen years ago I worked a stint for MS, ostensibly to build 
a test suite to demonstrate the conformance of their email(MAPI) 
product to RFC 822 etc.  I couldn't because it wasn't.  I did manage 
to find some deep problems in their compiler and discovered they were 
using and early gcc (on SCO) to build it with.  I then wrote a tool in 
Prolog to generate  test basic code for their systems and promply found 
myself fired for Software Piracy.  They use similar tools today to 
test their products.  

What I'm saying here is not exclusive to MS, but common to many 
proprietary systems groups.  I've worked for companies like Motorola, 
Lockheed, Lear and Mikoyan.  MS had no engineering culture.  No 
documents more than some sketchty design docs and running code.  
Because of this their systems have an 18-month half life: every year 
or two they _must_ reinvent the wheel because they've lost the human 
skill that made the previous version.  So it's ASP or .NET or some 
reinvention of the internet that's shiney and new every few years.  
And it may make them rich but does nothing good for their customers' 
businesses: just another tax on their resources.

Contrast this with OpenBSD and kin like Net/FreeBSD. I can make a machine 
running a 15 year old version of BSDI or SunOS interoperate with the 
latest revisions of these.  Nobody has chopped slots in the roof beams 
to make way for a fancy doorway that's 13 centimeters taller than the building 
codes.  And the bearing walls still touch the floor and footings that they 
bear on.  

Why is this?  Many reasons, I suppose, but at the bottom of it there's 
your personal pride.  And everyone else who has ever worked on this stuff 
from the some long-gone guys who worked on the first Berkley systems to 
people in places like Mumbai, Shanghai and Novosibirsk.  Their names 
are on their work.  Even long dead guys like Al Turing are acknowledged 
in this: none here says his work was for nothing, that fuzzy logic 
means his head was soft (yeah, I've heard that, no shit:)  No one 
here needs to erase the past to make themselves look good. 

You know, after MS fired me, calling me a thief didn't stick.  So I had 
to be a closet pervert, and sociopath and worse.  My taxes were audited 
and my driver's license deleted.  People jumped out of bushes to beat me
up for things I've never heard of.  On Sept. 11 2001, I spent the night 
in Gaol, under suspicion of something or other that didn't stick either. 
And my personal life makes The Crying Game look like Leave it to Beaver. 

So I have some idea about what you all must face, motivating yourselves 
each day to do the right thing.  But let me give you some assurances. 
MS employs mebbe 70k people, and another hundred K or so in dependant 
groups.  That sounds big, but it's a little job-shop compared to you all.  

There's a hundred million who know something of open source systems and 
the brightest minds on the planet are among you.  This is the Big House 
you are building with standards and sources that are open to the critical 
thought of every bright girl and boy on planet. 

Even the dead are with you, for this is God's work you do. 


Duncan (Dhu) Campbell

Re: most secure graphical browser

2008-01-21 Thread Duncan Patton a Campbell

On Fri, 18 Jan 2008 15:14:05 + (UTC)
Alexey Vatchenko [EMAIL PROTECTED] wrote:

 On 2008-01-18, Tony Abernethy [EMAIL PROTECTED] wrote:
  Alexey Vatchenko wrote:
  On 2008-01-18, Douglas A. Tutty [EMAIL PROTECTED] wrote:
   On Thu, Jan 17, 2008 at 06:24:16PM -0700, Clint Pachl wrote:
   If you want security, get rid of X.
   
   Even if it's OpenBSD's X?  The one that you need should you need to
   build any ports (including if you follow current and need 
  security fixes
   to any ports)?
  
  http://marc.info/?l=openbsd-miscm=114738577123893w=2
 
  Making X and no-X versions of everything has gotta be a pain.
  The security problem with X is that the (blobby?) video 
  card has got better access to memory than the OS.
 
 The problem is not in blobbyness (all drivers that come with OpenBSD are open
 sourced), the problem is that the userland program (X server) has access to 
 the
 things that must be allowed only to kernel.
 
 -- 
 Alexey Vatchenko
 http://www.bsdua.org
 
 

I assume that anything I run X on is insecure.  In fact, I don't believe
you can keep anything meaningful secret.  Just the same, I use OpenBSD 
because it offers a more stable platform, not because I've got dirty
underwear to hide.

Dhu

Re: What is our ultimate goal??

2008-02-19 Thread Duncan Patton a Campbell

On Sun, 17 Feb 2008 17:33:12 +0530
Mayuresh Kathe [EMAIL PROTECTED] wrote:

 It just led me to ponder, what is OpenBSD's ultimate goal?

What, exactly, is yours?  

I've read thru this thread and you are remarkably obscure 
about your intentions, but it seems to me that OBSD somehow
does not fit your marketing plan, which seems to have a lot
in common with New, Improved, Diamond-shaped Shreddies.

Dhu

Re: What is our ultimate goal??

2008-02-19 Thread Duncan Patton a Campbell

On Wed, 20 Feb 2008 08:47:54 +0530
Mayuresh Kathe [EMAIL PROTECTED] wrote:

 On Feb 20, 2008 2:59 AM, Ted Unangst [EMAIL PROTECTED] wrote:
  On Feb 19, 2008 4:50 AM, Mayuresh Kathe [EMAIL PROTECTED] wrote:
   That's the reason I've been gathering good C developers, so that they
   could either;
   1. take up complex projects like FireEngine/DTrace,
   2. write replacements for as many GNU tools/utilities as possible,
   3. be a landing stage for newer developers who get intimidated by the
   intensity of the core developers.
 
  good luck with that.  be sure to let us know when it's all done, ok?  
  thanks.
 
 If thats sarcasm its really not warranted.
 If its not sarcasm, then we'll be posting to the list about our progress.
 
 Also, Ted, I'm sorry if you felt offended by my ranting about you not
 completing kernel threads, but the loss of those developers really
 felt bad.
 
 ~Mayuresh
 

Looks to me like your Tivo Box project might need to actually pay someone
to write a threads library.  

Dhu

Re: What is our ultimate goal??

2008-02-20 Thread Duncan Patton a Campbell

On Wed, 20 Feb 2008 15:11:34 +0530
Mayuresh Kathe [EMAIL PROTECTED] wrote:

 On Feb 20, 2008 12:52 PM, Duncan Patton a Campbell [EMAIL PROTECTED] wrote:
  On Wed, 20 Feb 2008 08:47:54 +0530
  Mayuresh Kathe [EMAIL PROTECTED] wrote:
 
   On Feb 20, 2008 2:59 AM, Ted Unangst [EMAIL PROTECTED] wrote:
On Feb 19, 2008 4:50 AM, Mayuresh Kathe [EMAIL PROTECTED] wrote:
 That's the reason I've been gathering good C developers, so that they
 could either;
 1. take up complex projects like FireEngine/DTrace,
 2. write replacements for as many GNU tools/utilities as possible,
 3. be a landing stage for newer developers who get intimidated by the
 intensity of the core developers.
   
good luck with that.  be sure to let us know when it's all done, ok?  
thanks.
  
   If thats sarcasm its really not warranted.
   If its not sarcasm, then we'll be posting to the list about our progress.
  
   Also, Ted, I'm sorry if you felt offended by my ranting about you not
   completing kernel threads, but the loss of those developers really
   felt bad.
  
   ~Mayuresh
  
 
  Looks to me like your Tivo Box project might need to actually pay someone
  to write a threads library.
 
 This is the second time someone has mentioned about a project that
 does not exist.
 What's gotten into you people?
 
 ~Mayuresh
 

It's a question of the alienability of the BSD License.  Unlike Linux, the 
BSD license allows you the freedom of moving the software into a proprietary
configuration which permits a conventional profit model.

You are ragging on Ted for not having provided you with a feature for your 
project which is not seen to be of the widest possible utility, and which 
might adversley influence some of OBSD's more crucial feature if not 
implemented 
with enormous care.  

Basically you are asking him to provide your 4profit model with free work that
would not necessarily benefit the project OR other 4profit models.  

Mebbe if you really need threads (because some code you intend to import uses 
them)
then you should offer to PAY Ted to do this (for the project?).  This would 
likely 
provide him with the kind of incentive he needs to do something seen as not 
crucial
by his peers.

Dhu

Re: anoncvs asking for password

2008-02-25 Thread Duncan Patton a Campbell

On Sun, 24 Feb 2008 14:18:15 -0500
Chris Smith [EMAIL PROTECTED] wrote:

 On Sunday 24 February 2008, Constantine A. Murenin wrote:
  anoncvs.ca.openbsd.org is being rebuild, and currently asks for
  password.
 
 Also tried anoncvs1.usa.openbsd.org and anoncvs1.ca.openbsd.org (which 
 apparently is the same host as anoncvs.ca.openbsd.org).
 
 Looks like waiting is the right idea.
 
 -- 
 Chris
 
 
Might this have something to do with it:?

Begin forwarded message:

Date: Sun, 24 Feb 2008 01:34:51 -0700
From: Theo de Raadt [EMAIL PROTECTED]
To: Rumen Yotov [EMAIL PROTECTED]
Cc: misc@openbsd.org
Subject: Re: anoncvs.ca.openbsd.org - RSA host key has just been changed 


 Anybody knows if the key really changed or not ?
 The fingerprint for the RSA key sent by the remote host is
 e0:9d:c4:c0:31:7d:84:ec:67:9c:a3:7a:70:54:eb:20.

It did change.  The machine was reinstalled from scratch, in fact.

Re: Cardbus bad Vcc request error with OpenBSD 4.2

2008-03-02 Thread Duncan Patton a Campbell

Does your laptop have USB2?  If so, it's the easy fix.  I, also,
have had small luck with cardbus on Toshibas up to the 2510 CDS, 
whereupon they begin to work (from dmesg):

(
cpu0: Intel Pentium/MMX (GenuineIntel 586-class) 267 MHz
...
cardslot1 at cbb1 slot 1 flags 0
cardbus1 at cardslot1: bus 21 device 0 cacheline 0x0, lattimer 0x0
pcmcia1 at cardslot1
re0 at cardbus1 dev 0 function 0 NETGEAR, GA511: RTL8169/8110SB (0x1000), irq 
11, address 00:14:6c:2e:85:19
)

A 2500 and Satpro 4300 both didn't work and were cardbus too.  Unfortunately, 
the 2510 was also when they introduced USB2 that worked.

Dhu

On Sat, 1 Mar 2008 21:51:39 -0500
Vikas N Kumar [EMAIL PROTECTED] wrote:

 Hi All
 
 This is the first time I am trying OpenBSD (version 4.2) on my Pentium II
 laptop (yes a very old laptop).
 Everything has installed smoothly and fast, except that the cardbus is not
 working, and since there is no in-built ethernet port in the laptop as  it
 is quite old, my only choice is to use a cardbus based pcmcia ethernet card.
 But the cardbus slot itself gives an error  when OpenBSD boots up. When I
 use Linux on the same laptop, the cardbus slot and the card work just fine.
 I tried googling for solutions but could not find any that worked. There is
 nothing in the BIOS to turn on or off the cardbus since Linux does not
 require it. I want to use OpenBSD on the laptop.
 
 Here are the details of my laptop, and card and some lines from dmesg
 command. Unfortunately I cannot paste the dmesg since there is no way I can
 get that off the laptop without using floppy drives etc.
 
 Laptop : HP Omnibook 4100
 CPU: Intel Pentium II 686-class 512KB L2 cache, 266 MHz
 RAM : 64MB
 Cardbus cbb0 : TI PCI1250 Cardbus
 Cardbus cbb1 : TI PCI1250 Cardbus
 Cardbus ethernet card : D-Link DFE-690TXD
 
 error from cbb0 and cbb1 while booting is as follows :
 
 cbb0: bad Vcc request. sock_ctrl 0xff88, sock_status 0x
 cardslot0 at cbb0 slot 0 flags 0
 cardbus0 at cardslot0: bus 1 device 0 cacheline 0x8, lattimer 0x20
 pcmcia0 at cardslot0
 cbb1: bad Vcc request. sock_ctrl 0xff88, sock_status 0x
 cardslot1 at cbb1 slot 1 flags 0
 cardbus1 at cardslot1: bus 2 device 0 cacheline 0x8, lattimer 0x20
 pcmcia1 at cardslot1
 
 Any help will be greatly appreciated.
 
 Thanks and Regards
 Vikas Kumar
 
 http://www.vikaskumar.org/

Re: PC Camera?

2008-03-24 Thread Duncan Patton a Campbell

Hmm.  I didn't realize there was an open standard for USB webcams.  

From the Wiki: * These devices also have non-UVC equivalents by the same 
name. Please check the product number to confirm UVC compatibility.

So, how common are these devices?  Will they continue to be produced according 
to standard?

I have an application under consideration that would use a webcam and should 
integrate
with an existing OBSD application.  Currently the best bet for this is a web-ip 
cam,
which, in most versions, amounts to a linux-driven ARM system with a webcam as 
part
of the box.  This increases the co$t of the camera subsys from about $40 to 
something
around the $100 dollar mark and also restricts (somewhat) the number of devices 
available (D-Link DCS-G900, SkyIPCam 250W,WVC54GCA,WVC200,Axis 207W).

Writing a driver for a proprietary device has little recuring value, but the 
extance of
a public standard and devices changes things.  Having a USB webcam that 
directly attaches
to an OBSD box has very considerable value from a number of perspectives.

Dhu

On 23 Mar 2008 16:56:16 -0700
Unix Fan [EMAIL PROTECTED] wrote:

 There is a USB standard for USB Cameras among other video devices... It's 
 called USB Video Device Class.
 
 The specific is available to download... if anyone feels brave enough to 
 write a driver for UVC class devices... ;)
 
 @Sunnz, Unsupported USB devices always attach to ugen, read the manual 
 page then you'll realize how silly you are.. ;)
 
 http://en.wikipedia.org/wiki/USB_video_device_class
 
 This seems to be a driver for:
 OpenSolaris: 
 http://www.opensolaris.org/os/community/device_drivers/projects/usb/uvc/ 
 Linux: http://linux-uvc.berlios.de/
 Mac OSX..
 Microsoft's Vista - Which seems to require all vendors implement the 
 standard..
 ...And Sony's Playstation 3.
 
 So who's working on OpenBSD's implementation? get busy!! :D :D :D
 
 
 
 -Nix Fan.

Re: macosx vs winxp: pf packet blocking

2008-04-08 Thread Duncan Patton a Campbell

This sounds like a timing/fragmenting problem.  Google
blasts things out big and smooth.  Most sites you see
a lot more chatter on the tcp layer.  If you have another
machine with a different stack (Sun/Linux..) put it on
the inside of the firewall and see what happens.  Or 
use a sniffer and look.  

Dhu

On Mon, 07 Apr 2008 20:37:10 -0500
Jacob Yocom-Piatt [EMAIL PROTECTED] wrote:

 have spent a fair deal of time working with pf and have just seen what 
 appears to be quite a bizarre problem:
 
 topology is (internet)--pppoe--(openbsd fw - running 
 4.2-release)--switch--(wired/wifi router).
 
 a winxp host connected to the wifi router has no problem viewing 
 webpages, etc, however, a macosx host connected to the wifi router gets 
 packets randomly (AFAICT) dropped by the openbsd fw. google seems to 
 load fine on the macosx machine but other sites will not load with any 
 regularity. the packet dropping has been observed on the firewall using 
 'tcpdump -nettvi pflog0' and packets were being blocked on the internal 
 internal interface, either em2 or vlan2, until the pf rule 'pass on 
 $int_if' was changed to 'pass on $int_if no state'. then packets started 
 getting blocked on the external interface, despite a rule 'pass out on 
 $ext_if' as a catch-all at the end of the ruleset. the rule that shows 
 as being the blocker is 'block log all', the first rule in the set.
 
 so in essence, i see rules that are not being obeyed in the pf ruleset, 
 but only for the macosx host and not the winxp one. the macosx firewall 
 is turned off and i can ssh from the macosx host to the openbsd fw just 
 fine. i can also ping fine from the macosx host, so dns and routing are 
 working.
 
 clues as to wtf is going on would be appreciated. can supply more 
 detailed info on request.
 
 cheers,
 jake
 
 --

Re: softraid corrupted metadata

2008-05-23 Thread Duncan Patton a Campbell

I have just had a similar incident and recovered similarly.  

So now I am wondering about recovery in the event of a real failure.
Could this be accomplished by configuring a softraid with only 1
disk?  e.g. 

bioctl -c 1 -C force -l /dev/sd2a softraid0

given that sd3a suffered the failure?  

Is there any documentation about recovery of failures in a softraid partition?

Thanks,

Dhu

On Fri, 28 Mar 2008 17:12:05 -0500
Marco Peereboom [EMAIL PROTECTED] wrote:

 Adding misc that somehow fell off...
 
 On Fri, Mar 28, 2008 at 08:51:18AM -0500, Marco Peereboom wrote:
  Assuming the drives weren't hurt you can reassemble the RAID 1 with the
  -C force option.  Do something along the lines of:
  
  bioctl -c 1 -C force -l /dev/sd2a,/dev/sd3a softraid0
  
  That will overwrite the current stale metadata with new one.  Make sure
  you fsck the filesystem before mounting it (even if it says it is ok!
  use some force to convince it to check it);
  
  On Fri, Mar 28, 2008 at 02:32:49PM +0100, [EMAIL PROTECTED] wrote:
   Hi,
   
   I'm currently using softraid(4) on my 4.2-stable(*) I386 machine and
   yesterday I ran into a problem: after a system freeze (most probably
   caused by a malfunctioning onboard SATA controller) softraid found
   corrupted metadata on one of my two disks in the RAID1 array I assembled
   (sorry, I don't have the correct error message handy) thus the kernel
   didn't create the softraid0 device.
   
   Don't get me wrong I'm not complaining about that (as the manpage
   already told me that this will be the outcome of a failed chunk) but I'm
   wondering if there's a manual procedure I follow to reassemble the raid
   manually without data loss.
   
   TIA,
   Frank.
   
   *) actually almost stable as I had to build my own softraid enabled
   kernel based on GENERIC
   
   -- 
   What can you use used tampons for?  Tea bags for vampires.
   openBSD - Can't fight the Systemagic. \ber tragic.
   Frank Brodbeck [EMAIL PROTECTED]
   Politicians do it to everyone.

Re: remove any unwanted devices from the kernel.

2008-06-08 Thread Duncan Patton a Campbell

On Fri, 6 Jun 2008 16:50:37 -0700
Scott Learmonth [EMAIL PROTECTED] wrote:

  As someone else who writes code for this fine os would say: removing
  drivers is pure masturbation.
 
 Hah, perfect.
 
 As a first foray into BSD I stumbled upon FreeBSD. To make it do what  
 I wanted, step one was to compile a custom kernel. BOOYAH, I got a  
 geek-on.
 
 A few months later I had chosen OpenBSD, and have never looked back.  
 Sure, tinkering is what we do in may ways (n00b or dev, computer guts  
 are what we like), and what better tinker-tool than 5 minutes picking  
 drivers and a 3 hour compile? But you know what? GENERIC just works.  
 And the REALLY beautiful thing, is that config just works too for  
 kernel configuration. You can even write your changes to the kernel  
 permanently, saving all that compile time. I'm not versed enough to  
 know if a config modified kernel provides the same, um, savings as a  
 custom kernel if you used it to remove drivers however.
 
 Cheers
 

I had an incident with a 4.1+ snapshot where in order to get some
customer config to work I needed to build a GENERIC OBSD system 
from scratch with some patch code.  This was only somewhat more 
complicated than building a custom FreeBSD kernel.  The monolithic
OBSD build methodology is only good most of the time, and when it
isn't, it's a bit of a bear.

Dhu

Routing on source

2008-06-24 Thread Duncan Patton a Campbell

Dear List,

I am trying to figure out if is is possible to route packets
through an OpenBSD firewall on the basis of the packet source.

The situation is that I have two ISPs hooked up to a firewall
and would like to route traffic to these ISPs on the basis of
which NAT client (IP or mask) the traffic is coming from.

Is this possible?  What mechanisms (pf... etc)?  I am also
hoping to work ifstated or something like it into the mess
so that if the normal route for a client fails the traffic 
will go to the secondary connection.  Is this reasonable?

Thanks,

Dhu

Re: Routing on source

2008-06-25 Thread Duncan Patton a Campbell

On Tue, 24 Jun 2008 21:34:00 -0700
Daniel Anderson [EMAIL PROTECTED] wrote:

 The mechanism you seek is the route-to and reply-to. Kindly see this message 
 for an example:
 
 http://marc.info/?l=openbsd-miscm=120665186412690w=2
 

Yes.  Thank you.

Dhu

 As to the concern on redundancy, perhaps someone else will address it for you.
 
 ---
 On Tuesday 24 June 2008 08:29:08 pm Duncan Patton a Campbell wrote:
  Dear List,
 
  I am trying to figure out if is is possible to route packets
  through an OpenBSD firewall on the basis of the packet source.
 
  The situation is that I have two ISPs hooked up to a firewall
  and would like to route traffic to these ISPs on the basis of
  which NAT client (IP or mask) the traffic is coming from.
 
  Is this possible?  What mechanisms (pf... etc)?  I am also
  hoping to work ifstated or something like it into the mess
  so that if the normal route for a client fails the traffic
  will go to the secondary connection.  Is this reasonable?
 
  Thanks,
 
  Dhu

PF route-to questions

2008-06-30 Thread Duncan Patton a Campbell

Dear List,

With help from various people here I've composed a pf ruleset that
allows load splitting between two (or more) ISP connections 
on the basis of the client (internal) IP addressess.

The problem I have with this is when one or more of the ISPs provide 
a DHCP assigned address/route.  While the (ifn) notation provides for 
reading an assigned address for an interface, I can find no way of 
dealing with an assigned (route) gateway for the  

... route-to { ($ext_if $ext_gw) } ...  notation.  


Here's the ruleset.  Let me know if you have a use for it or know
of some way of getting the DHCP gateway.  

Thanks,

Dhu


ext_if1 = re0
ext_if2 = vr0
ext_gw1 = xx.xx.xx.xx
ext_gw2 = xx.xx.xx.xx

int_if  = axe0
int_net = 192.168.117.0/24

int_clS = { 192.168.117.46,192.168.117.45,192.168.117.47 }

# tcp_services provided by this server on the external interface
tcp_services = { 22,123 }
#   22  ssh
#   25  smtp
#   53  dns
#   80  http
#   110 pop
#   123 ntp
#   443 https
#   587 smtp-submit
#   3389rdesk
#   8118privoxy
#   9001tor external
#   9050tor
#   9051tor ctl

# udp_services provided by this server on the external interface
udp_services = { 123 }
#   53  dns
#   69  tftp
#   123 ntp
#   587 smtp_submit

icmp_types = echoreq
set skip on lo0
scrub in

#  nat outgoing connections on each internet interface
nat on $ext_if2 from $int_net to any - ($ext_if2)
nat on $ext_if1 from $int_clS to any - ($ext_if1)

#  default deny
block in  from any to any
block out from any to any

#  pass all outgoing packets on internal interface
pass out log on $int_if from any to $int_net
#  pass in quick any packets destined for the gateway itself
pass in log quick on $int_if from $int_net to $int_if

#  Pass in tcp_services
pass in log on $ext_if1 inet proto tcp from any to ($ext_if1) port 
$tcp_services flags S/SA keep state
pass in log on $ext_if2 inet proto tcp from any to ($ext_if2) port 
$tcp_services flags S/SA keep state
#  Pass in udp_services
pass in log on $ext_if1 inet proto udp from any to ($ext_if1) port 
$udp_services keep state
pass in log on $ext_if2 inet proto udp from any to ($ext_if2) port 
$udp_services keep state

#  Pass in from int_net
pass in log on $int_if route-to { ($ext_if2 $ext_gw2) } proto tcp from $int_net 
to any flags S/SA modulate state
pass in log on $int_if route-to { ($ext_if2 $ext_gw2) } proto { udp, esp, icmp 
} from $int_net to any keep state
#  Pass in from int_clS
pass in log on $int_if route-to { ($ext_if1 $ext_gw1) } proto tcp from $int_clS 
to any flags S/SA modulate state
pass in log on $int_if route-to { ($ext_if1 $ext_gw1) } proto { udp, esp, icmp 
} from $int_clS to any keep state

#  general pass out rules for external interfaces
pass out log on $ext_if1 proto tcp from any to any flags S/SA modulate state
pass out log on $ext_if1 proto { udp, icmp } from any to any keep state
pass out log on $ext_if2 proto tcp from any to any flags S/SA modulate state
pass out log on $ext_if2 proto { udp, icmp } from any to any keep state

#  route packets from any IPs on $ext_if1 to $ext_gw1 and the same for
#  $ext_if2 and $ext_gw2
pass out log on $ext_if1 route-to ($ext_if2 $ext_gw2) from $ext_if2 to any
pass out log on $ext_if2 route-to ($ext_if1 $ext_gw1) from $ext_if1 to any

# Pass ICMPing
pass in log inet proto icmp all icmp-type $icmp_types keep state
pass out log on $ext_if1 proto { icmp } all keep state
pass out log on $ext_if2 proto { icmp } all keep state

Has anyone told BillG about OpenBSD?

2008-07-07 Thread Duncan Patton a Campbell

I ran across this:

http://gizmodo.com/5019516/classic-clips-bill-gates-chews-out-microsoft-over-xp

and was stricken with a horrible sense of dejavoodhu.

Dhu

Re: Routing on source

2008-07-16 Thread Duncan Patton a Campbell

On Thu, 3 Jul 2008 17:10:54 +0200
Henning Brauer [EMAIL PROTECTED] wrote:

 * Henning Brauer [EMAIL PROTECTED] [2008-07-03 15:18]:
  * Daniel Anderson [EMAIL PROTECTED] [2008-06-25 06:39]:
   The mechanism you seek is the route-to and reply-to.
  
  using a seperate routing table (route -T 1 add default 1.2.3.4) and pf 
  to assing packet to that (pass from foo rtable 1) is way cleaner.
 
 to assign packets to that rtable, that is.
 

Don't spose you could point me to any examples of this useage... 
I'd like to be able to, say, route a tor server thru a specific link ;-)

Dhu

 -- 
 Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
 BS Web Services, http://bsws.de
 Full-Service ISP - Secure Hosting, Mail and DNS Services
 Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam

Re: This is what Linus Torvalds calls openBSD crowd

2008-07-20 Thread Duncan Patton a Campbell

On Fri, 18 Jul 2008 17:29:35 +0530
Amarendra Godbole [EMAIL PROTECTED] wrote:

 On Thu, Jul 17, 2008 at 12:40 AM, Aaron Glenn [EMAIL PROTECTED]
wrote:
  On Wed, Jul 16, 2008 at 11:47 AM, Nuno Magalhces
  [EMAIL PROTECTED] wrote:
  Here it's rtfm and chest-thumping.
 
  because here, many people have spent many hours making sure tfm gives
  you all the information you need
 [...]

 Absolutely! I find the OpenBSD man pages to be dead accurate, and
 to-the-point. Typos, and grammar are considered too!

 -Amarendra


This looks like about as good a place as any to stick my 3 worth in,
tho' Nick Guenther also comes close to the mark with his comments about
system correctness.  Linus is obviously worried about something of
more than passing import, and I think that he's begun to realize that
OBSD's correctness extends beyond code quality and technical security.

Linux is a Utopian product that carries substantial ideological baggage
rendering it's use problematic to business/commercial concerns _except_
by the largest of institutions.   *BSD has a license structure that makes
it commercially safe for use by small/medium business...  OpenBSD being
only the most consistent in this purpose with it's development of a genuine
engineering culture and product.

Utopian endevours all fall on their real intent to be all things to all
people, which, because of the inherent logical relationships of things like
consistency and completness, is a fruitless vanity.  Such Complete systems
require the deep hypocrisy of limiting everything and everyone in order
to function at all.  In political systems this is often evidenced by
difficult people just disappearing in ones and twos and droves.

Dhu (carry on in awareness!)

Re: This is what Linus Torvalds calls openBSD crowd

2008-07-20 Thread Duncan Patton a Campbell

On Thu, 17 Jul 2008 21:37:27 +0200
Marc Balmer [EMAIL PROTECTED] wrote:

 * Shizzle Cash wrote:
  On Jul 17, 2008, at 8:42 AM, Giancarlo Razzolini wrote:
 
  agreed. I barely can wait to see Ty Semaka artwork for 4.4. Definitively
  it should include monkeys.  And amoebas too.
 
  I agree, monkeys should definitely be somehow incorporated into the artwork 
  for the next release.
 
 ty draws openbsd developers as fish.  and I think that we, the openbsd
 developers, did enough to warrant a nice topic for the next release.
 no need to resort to that strange monkey business.
 
 or do you want to honour a stupid remark made by l. by making him
 the main theme of our next release?  I don't think so.  we have
 more substantial work that goes into our next release than the
 stupid remark of a wanking fat penguin that all to obviously does
 not understand what we do.
 
 

Wanking Sea Monkeys, then: the oceanic analogue of fleas, 
at least in the area of genital proportion ;-)

Dhu

Re: GPL version 4

2008-07-21 Thread Duncan Patton a Campbell

On Thu, 17 Jul 2008 00:51:53 -0500
Travers Buda [EMAIL PROTECTED] wrote:

 I'd like to present GPL version 10^100^100!  (that's not an
 exclaimation, that's a factorial.)
 
 Over the years, clauses have been _removed_ from BSD-like licenses.
 The GPL keeps getting things _added_.
 
 *insert some sort of wisdom here about how this means BSD-like is better*
 

Less is more.

Dhu

 Reading (and actually understanding) the GPL could easily drive a
 sane man, with no drug abuse or family history of mental illness,
 completely insane due to its ever-increasing complexity.
 
 -- 
 Travers Buda

Re: Can't scp, ssh is slow to authenticate.

2008-07-22 Thread Duncan Patton a Campbell

On Mon, 21 Jul 2008 16:04:59 -0600
Theo de Raadt [EMAIL PROTECTED] wrote:

  These are both local machines, why would DNS be required?
 
 Because in the modern world DNS -- or any other kind of reliable
 name-address + address-name mapping -- is required.
 
 You might as well get used to it.
 

Yes, but why does DNS need to  talk to God above? 

Dhu

pf localhost sevices

2008-07-22 Thread Duncan Patton a Campbell

Howdy List?

Following is a modification of the ruleset at
http://www.openbsd.org/faq/pf/pools.html .

It works to allow routing of client services service_ports on an internal
network onto one external gateway while other services from the internal
network default to another path.  

This works without a default route on the firewall.  

But if I want to run a client on the firewall itself, I need to have 
a default route on it.  How is it possible to avoid this default route
and have clients running on the firewall use the same pf pathways as
those running on machines out on the internal network?  

Is this possible?  

Dhu



int_net = 192.168.1.0/24
int_if  = bge0
ext_if1 = vr0
ext_if2 = axe0
ext_gw1 = 
ext_gw2 = 
service_ports = { 22 }

set skip on lo
scrub in all

#  nat outgoing connections on each internet interface
nat on $ext_if1 from $int_net to any - ($ext_if1)
nat on $ext_if2 from $int_net to any - ($ext_if2)

#  default deny
block in  from any to any
block out from any to any

#  pass all outgoing packets on internal interface
pass out on $int_if from any to $int_net
#  pass in quick any packets destined for the gateway itself
pass in quick on $int_if from $int_net to $int_if

#  outgoing tcp traffic from internal network to ext_gw2
pass in on $int_if route-to { ($ext_if2 $ext_gw2) } proto tcp from $int_net to 
any flags S/SA modulate state

#  outgoing tcp ssh traffic from internal network to ext_gw1
pass in on $int_if route-to { ($ext_if1 $ext_gw1) } proto tcp from $int_net to 
any port $service_ports flags S/SA modulate state

#  outgoing udp and icmp traffic from internal network to ext_gw2
pass in on $int_if route-to { ($ext_if2 $ext_gw2) } proto { udp, icmp } from 
$int_net to any keep state


#  general pass out rules for external interfaces
pass out on $ext_if1 proto tcp from any to any flags S/SA modulate state
pass out on $ext_if1 proto { udp, icmp } from any to any keep state
pass out on $ext_if2 proto tcp from any to any flags S/SA modulate state
pass out on $ext_if2 proto { udp, icmp } from any to any keep state

#  route packets from any IPs on $ext_if1 to $ext_gw1 and the same for
#  $ext_if2 and $ext_gw2
pass out on $ext_if1 route-to ($ext_if2 $ext_gw2) from $ext_if2 to any
pass out on $ext_if2 route-to ($ext_if1 $ext_gw1) from $ext_if1 to any

Re: PF route-to syntax

2008-07-23 Thread Duncan Patton a Campbell

Howdy Bill?

Back in Dec.06 you asked some similar questions about
dynamic update of gateway for route-to rules in pf.conf on dhcp interface.

Did you find a way to do this?  

Thanks,

Dhu

On Mon, 21 Jul 2008 21:16:50 -0700
Bill Meigs [EMAIL PROTECTED] wrote:

 I discovered that rules like
 pass in on $int_if route-to ($ext_if2 $ext_gw2) from any to any
 must route-to an interface and not that interface's ip address. The rule 
 set will load without an error message but the route-to rule will not 
 work if the ip address is specified.
 
 My first question is am I correct in this understanding. And if I am, 
 shouldn't the ruleset fail to load if the route-to rule is not given and 
 interface name?
 
 Thanks.

Is this a bug in PFCTL?

2008-07-23 Thread Duncan Patton a Campbell

Howdy List?

According to the man page on pfctl


 -m  Merge in explicitly given options without resetting those which
 are omitted.  Allows single options to be modified without dis-
 turbing the others:

   # echo set loginterface fxp0 | pfctl -mf -


using the -m parm should allow allow a rule to be merged into the current set,
but when I run it, as spec'd in the man page, my ruleset is deletd.

Dhu

[EMAIL PROTECTED]:/etc] # pfctl -a '*' -sr
scrub in all fragment reassemble
block drop in all
block drop out all
pass out on bge0 inet from any to 192.168.1.0/24 flags S/SA keep state
pass in quick on bge0 inet from 192.168.1.0/24 to 192.168.1.44 flags S/SA keep 
state
pass in on bge0 route-to (axe0 142.59.192.1) inet proto tcp from 192.168.1.0/24 
to any flags S/SA modulate state
pass in on bge0 route-to (vr0 68.148.0.1) inet proto tcp from 192.168.1.46 to 
any flags S/SA modulate state
pass in on bge0 route-to (axe0 142.59.192.1) inet proto udp from 192.168.1.0/24 
to any keep state
pass in on bge0 route-to (axe0 142.59.192.1) inet proto icmp from 
192.168.1.0/24 to any keep state
pass in inet proto icmp all icmp-type echoreq keep state
pass out on axe0 proto icmp all keep state
pass out on vr0 proto tcp all flags S/SA modulate state
pass out on vr0 proto udp all keep state
pass out on vr0 proto icmp all keep state
pass out on axe0 proto tcp all flags S/SA modulate state
pass out on axe0 proto udp all keep state
pass out on axe0 proto icmp all keep state
pass out on vr0 route-to (axe0 142.59.192.1) inet from 142.59.197.37 to any 
flags S/SA keep state
pass out on axe0 route-to (vr0 68.148.0.1) inet from 68.148.0.251 to any flags 
S/SA keep state
[EMAIL PROTECTED]:/etc] # echo 'set skip on lo' | pfctl -mf - 
[EMAIL PROTECTED]:/etc] # pfctl -a '*' -sr
[EMAIL PROTECTED]:/etc] #

Re: Is this a bug in PFCTL?

2008-07-23 Thread Duncan Patton a Campbell

On Thu, 24 Jul 2008 00:00:09 +0200
Henning Brauer [EMAIL PROTECTED] wrote:

 * Duncan Patton a Campbell [EMAIL PROTECTED] [2008-07-23 21:28]:
  Howdy List?
  
  According to the man page on pfctl
  
  
   -m  Merge in explicitly given options without resetting those which
  ^^^
   are omitted.  Allows single options to be modified without dis-
   turbing the others:
  
 # echo set loginterface fxp0 | pfctl -mf -
  
  
  using the -m parm should allow allow a rule to be merged into the current 
  set,
  

Ok, so I go 

echo 'pass out on vr0 proto esp all keep state' | pfctl -mf - 
pfctl -a '*' -sr  
pass out on vr0 proto esp all keep state

so all my previous rules are still gone.  

And 
echo 'pass out on vr0 proto esp all keep state' | pfctl -mf /etc/pf/pf.conf 
pfctl -a '*' -sr
pass out on vr0 proto esp all keep state

which means that the file load is done over top of the echo input and erases it.

Dhu




 
 option != rule
 
 -- 
 Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
 BS Web Services, http://bsws.de
 Full-Service ISP - Secure Hosting, Mail and DNS Services
 Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam

Re: Is this a bug in PFCTL?

2008-07-23 Thread Duncan Patton a Campbell

On Thu, 24 Jul 2008 00:00:09 +0200
Henning Brauer [EMAIL PROTECTED] wrote:

 * Duncan Patton a Campbell [EMAIL PROTECTED] [2008-07-23 21:28]:
  Howdy List?
  
  According to the man page on pfctl
  
  
   -m  Merge in explicitly given options without resetting those which
  ^^^
   are omitted.  Allows single options to be modified without dis-
   turbing the others:
  
 # echo set loginterface fxp0 | pfctl -mf -
  
  
  using the -m parm should allow allow a rule to be merged into the current 
  set,
  
 

I guess I don't see the point in this parameter, as it buys nothing over 
constructing
a new parm file and feeding that to pfctl.  

Dhu


 option != rule
 
 -- 
 Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
 BS Web Services, http://bsws.de
 Full-Service ISP - Secure Hosting, Mail and DNS Services
 Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam

Re: Is this a bug in PFCTL?

2008-07-24 Thread Duncan Patton a Campbell

On Wed, 23 Jul 2008 20:41:05 -0300
Vinicius Vianna [EMAIL PROTECTED] wrote:

 Maybe the only value would be to merge a new rule without returning all 
 tables to default as in the situation that you have changed a table and 
 if you run pfctl -f /etc/pf.conf the table will get back to original values?
 Never had to use it too, but someone may need it sometime?

That's what I was assuming but no.  As Henning sez it sets only options 
and requires a reload of the ruleset anyways... which doesn't buy anything
over writing a new ruleset and loading it.  I'd guess it's some incomplete
functionality that has found no strong justification to finnish.  

 
 Henning Brauer escreveu:
  hmm that is broken.

That turns out to have been finger fumbling on my part...

Dhu

 
  not that i really see value in -m

PF loading question

2008-07-26 Thread Duncan Patton a Campbell

Howdy List?

I'm trying to deal with the problem of dhcp assigned default routes
in a pf config file, and what I've come up with is a script to drive
dhclient on external interfaces and extract the routing info for use
in route-to (interface gateway) rules.

So then I have two ways of feeding this info to pf:

1. compose a new config file containing the new routes and feed it to pf,
in which case I use macros to define the gateways, e.g.

ext_gw1 = 1.2.4.5
ext_gw2 = 5.6.7.8

which gives me a rule like:

pass in on $int_if route-to { ($ext_if1 $ext_gw1) } proto tcp from $int_clients 
to any flags S/SA modulate state

2. use a pf config that carries these routes as table entries:

table ext_gw1 { 1.2.3.4 }
table ext_gw2 { 5.6.7.8 }
which gives rules like:
pass in on $int_if route-to { ($ext_if1 ext_gw1) } proto tcp from 
$int_clients to any flags S/SA modulate state

that can then be modified by

#get and delete the current table value 
pfctl -t ext_gw1 -T show
pfctl -t ext_gw1 -T delete 1.2.3.4

#add the new value derived from dhclient
pfctl -t ext_gw1 -T add 4.3.2.1

So now to the question.. does the use of tables in the rulesets add a lot
of extra cpu load over the use of macros or do either of these approaches
have obvious advantages over the other?

Thanks,

Dhu

PF and DHCP hakz

2008-08-06 Thread Duncan Patton a Campbell

Howdy List?

As some of you may have gathered from previous posts, I have been
working on a pf configuration that will allow a gateway firewall 
machine to talk to two or more ISP services and allow for the
differential routing of data connections from client's services 
both behind the firewall and on it (e.g. a TOR, HTTP server or other proxy).

An additional complexity is introduced in that most prospective
users of such a configuration are small to medium businessess that
engage only DHCP services from ISPs.  This means the IP address,
default route and name servers associated with a particular service
provider can (and do) change over the period the firewall gate 
is up for, moreover the lease times granted can change from time
to time.  Also, nameservers for most ISP are configured to only
answer queries from the ISP's subnet(s) and the standard dhclient-
script does not accomodate this.

In order to make such a configuration work, I introduce some hacks
into the dhclient-script such that when the dhclient processess
associated with a particular interface are triggered to renew 
a lease, a piece of prolog code is called that touches the following
configs:

filedata mod

/etc/pf.confgatewayIP
/etc/resolv.confnameservers (for default route)
/etc/dhclient.conf  nameservers (for dhclient routes)
[routetable]default route for firewall

To do this, I create a directory, /etc/pf, containing the following files:

filepurpose

dhclient-script dhclient-script modified to call replall from
add_new_routes() subroutine, and stub 
add_new_resolv_conf() as resolv.conf must 
only reference nameservers for the default 
route;
slink'd to /sbin/dhclient-script.
dhcpd.cnf.[interface]   one for each internal interface 
to provision dhcpd services
droute.IF   define the firewall's default route interface
pf.cnf  template pf ruleset into which the specific
interface gateways are inserted (replall looks
for lines begining with ext_gw_{IFN} ).
replall slink to compiled gprolog code hooked from 
dhclient-script that does the various 
manipulations.
gplg/Makefile   make for gprolog code
gplg/dlib.plprolog support code -- dlib==duncan's lib;)
gplg/replallgprolog executable
gplg/replall.pl gprolog source


A completed working instance of this scheme can be found at:

http://neotext.ca/RefR/pf.dhcp/

It has been tested on a machine with 1 static and 1 DHCP gateway as
well as on a machine with 2 DHCP gateways.

And yes, I know that most of you will think I'm daft to use prolog for 
a task that could be done in sh/perl/python.  It's really just a matter
of what you are most comfortable with... if a good reason comes up I might
recode it in C.

Dhu

Re: Own keyboard encoding cz (cs)

2008-08-06 Thread Duncan Patton a Campbell

On Wed, 6 Aug 2008 08:23:59 +0100
Tomas Bodzar [EMAIL PROTECTED] wrote:

 Hi all,
 
 I'm reading throw man pages kbd,wsconcs,wsconscfg,looking on Google and so on,
 but can't find some useful kick-of.Do you know about some paper about it?
 I found something from http://www.netbsd.org/docs/guide/en/chap-cons.html .
 I looked in wsksymdef.h ,there is a support for ISO-8859-2 (not for UTF-8),
 but how can I type our national characters if I can use only us or others?
 Can I use codes for these characters?
 
 Thanks a lot for your help
 
 PS: I don't want do this and this,read this and this is enough for me
 
 

See man luit and xorgconfig.

Dhu

PF and DHCP hakz

2008-08-06 Thread Duncan Patton a Campbell

Oddly this does not appear to have made it thru...

Howdy List?

As some of you may have gathered from previous posts, I have been
working on a pf configuration that will allow a gateway firewall 
machine to talk to two or more ISP services and allow for the
differential routing of data connections from client's services 
both behind the firewall and on it (e.g. a TOR, HTTP server or other proxy).

An additional complexity is introduced in that most prospective
users of such a configuration are small to medium businessess that
engage only DHCP services from ISPs.  This means the IP address,
default route and name servers associated with a particular service
provider can (and do) change over the period the firewall gate 
is up for, moreover the lease times granted can change from time
to time.  Also, nameservers for most ISP are configured to only
answer queries from the ISP's subnet(s) and the standard dhclient-
script does not accomodate this.

In order to make such a configuration work, I introduce some hacks
into the dhclient-script such that when the dhclient processess
associated with a particular interface are triggered to renew 
a lease, a piece of prolog code is called that touches the following
configs:

filedata mod

/etc/pf.confgatewayIP
/etc/resolv.confnameservers (for default route)
/etc/dhclient.conf  nameservers (for dhclient routes)
[routetable]default route for firewall

To do this, I create a directory, /etc/pf, containing the following files:

filepurpose

dhclient-script dhclient-script modified to call replall from
add_new_routes() subroutine, and stub 
add_new_resolv_conf() as resolv.conf must 
only reference nameservers for the default 
route;
slink'd to /sbin/dhclient-script.
dhcpd.cnf.[interface]   one for each internal interface 
to provision dhcpd services
droute.IF   define the firewall's default route interface
pf.cnf  template pf ruleset into which the specific
interface gateways are inserted (replall looks
for lines begining with ext_gw_{IFN} ).
replall slink to compiled gprolog code hooked from 
dhclient-script that does the various 
manipulations.
gplg/Makefile   make for gprolog code
gplg/dlib.plprolog support code -- dlib==duncan's lib;)
gplg/replallgprolog executable
gplg/replall.pl gprolog source


A completed working instance of this scheme can be found at:

http://neotext.ca/RefR/pf.dhcp/

It has been tested on a machine with 1 static and 1 DHCP gateway as
well as on a machine with 2 DHCP gateways.

And yes, I know that most of you will think I'm daft to use prolog for 
a task that could be done in sh/perl/python.  It's really just a matter
of what you are most comfortable with... if a good reason comes up I might
recode it in C.

Dhu

Re: PF and DHCP hakz

2008-08-06 Thread Duncan Patton a Campbell

On Tue, 5 Aug 2008 20:34:09 -0600
Duncan Patton a Campbell [EMAIL PROTECTED] wrote:

 Howdy List?
 
 As some of you may have gathered from previous posts, I have been
 working on a pf configuration that will allow a gateway firewall 
 machine to talk to two or more ISP services and allow for the
 differential routing of data connections from client's services 
 both behind the firewall and on it (e.g. a TOR, HTTP server or other proxy).
 
 An additional complexity is introduced in that most prospective
 users of such a configuration are small to medium businessess that
 engage only DHCP services from ISPs.  This means the IP address,
 default route and name servers associated with a particular service
 provider can (and do) change over the period the firewall gate 
 is up for, moreover the lease times granted can change from time
 to time.  Also, nameservers for most ISP are configured to only
 answer queries from the ISP's subnet(s) and the standard dhclient-
 script does not accomodate this.
 
 In order to make such a configuration work, I introduce some hacks
 into the dhclient-script such that when the dhclient processess
 associated with a particular interface are triggered to renew 
 a lease, a piece of prolog code is called that touches the following
 configs:
 
 file  data mod
 
 /etc/pf.conf  gatewayIP
 /etc/resolv.conf  nameservers (for default route)
 /etc/dhclient.confnameservers (for dhclient routes)

This should NOT state dhclient.conf.  It is, in fact dhcpd.conf that
is modified with the nameservers for dhclients on the internal net.

Dhu


 [routetable]  default route for firewall
 
 To do this, I create a directory, /etc/pf, containing the following files:
 
 file  purpose
 
 dhclient-script   dhclient-script modified to call 
 replall from
   add_new_routes() subroutine, and stub 
   add_new_resolv_conf() as resolv.conf must 
   only reference nameservers for the default 
 route;
   slink'd to /sbin/dhclient-script.
 dhcpd.cnf.[interface] one for each internal interface 
   to provision dhcpd services
 droute.IF define the firewall's default route interface
 pf.cnftemplate pf ruleset into which the 
 specific
   interface gateways are inserted (replall looks
   for lines begining with ext_gw_{IFN} ).
 replall   slink to compiled gprolog code hooked 
 from 
   dhclient-script that does the various 
 manipulations.
 gplg/Makefile make for gprolog code
 gplg/dlib.pl  prolog support code -- dlib==duncan's lib;)
 gplg/replall  gprolog executable
 gplg/replall.pl   gprolog source
 
 
 A completed working instance of this scheme can be found at:
 
 http://neotext.ca/RefR/pf.dhcp/
 
 It has been tested on a machine with 1 static and 1 DHCP gateway as
 well as on a machine with 2 DHCP gateways.
 
 And yes, I know that most of you will think I'm daft to use prolog for 
 a task that could be done in sh/perl/python.  It's really just a matter
 of what you are most comfortable with... if a good reason comes up I might
 recode it in C.
 
 Dhu

Re: RFID Reader

2008-08-07 Thread Duncan Patton a Campbell

On Thu, 7 Aug 2008 10:46:40 +0100
Conor [EMAIL PROTECTED] wrote:

 Are there any RFID readers supported by OpenBSD?
 
 Regards,
 Conor.
 
 

This:

http://www.openpcd.org/

claims to be an open design with GPL'd drivers,

but this

http://www.motorola.com/business/v/index.jsp?vgnextoid=1722e90e3ae95110VgnVCM108406b00aRCRD

should be fairly trivial to make work with OBSD, despite being a Windoze CE box 
as
it has numerous open interfaces and claims to talk to SAP and IBM stuff ...

The question of being supported is misleading as most of these devices will
be designed to operate using standard industrial interfaces.

Dhu

Re: tablec - show all addresses in pf table

2008-08-07 Thread Duncan Patton a Campbell

On Wed, 6 Aug 2008 22:04:52 +0200
Joachim Schipper [EMAIL PROTECTED] wrote:

 On Wed, Aug 06, 2008 at 11:32:53AM -0500, John Brooks wrote:
  tablec allows me to add or remove pf table entries with
  an unprivileged userland account. is there a method to
  produce a listing of all addresses in a pf table with
  an unprivileged userland account?
 
 If this is for interactive use, why not just stick with sudo?
 
 Otherwise, a trivial suided wrapper could work. If you have some coding
 skills, extending tabled shouldn't be too hard, either - it appears to
 be a pretty simple program.
 
   Joachim
 
 

Um, what's tablec?  Can't find any refs to it.

Dhu

Re: RFID Reader

2008-08-07 Thread Duncan Patton a Campbell

On Thu, 7 Aug 2008 17:05:19 +0100
Conor [EMAIL PROTECTED] wrote:

 On Thu, Aug 7, 2008 at 1:12 PM, Joachim Schipper [EMAIL PROTECTED]
  wrote:
 
  On Thu, Aug 07, 2008 at 10:46:40AM +0100, Conor wrote:
   Are there any RFID readers supported by OpenBSD?
 
  Don't most readers communicate with the host PC over some common
  protocol, say RS232 (serial), or maybe USB? OpenBSD will allow you to
  access those, so if you find or write a program that can communicate
  with the reader via RS232/USB/whatever, it should work as well on
  OpenBSD as on any other system.
 
 Joachim
 
 
 Not all, some only pop as like this
 
 ugen0 at uhub1 port 1 OMNIKEY AG Smart Card Reader USB rev 2.00/1.00 addr
 2
 
 *This was the only output seen until I plugged it out then I got the generic
 device detached message.
 
 ugen0 detached
 
 In theory they should all emulate/act as a serial interface in some form or
 another. ACG USB readers use an FTDI serial converter although I won't have
 one of those to test for quite sometime as they are a bit too expensive when
 compared to OpenPCD. I don't think the Omnikey readers play as nice as the
 OpenPCD or ACG readers. I'll have a chance to test the OpenPCD reader with
 OpenBSD 4.3 in about a week or so.
 
 Conor.
 

There some trick I don't exactly recall where you need to suppress the ugen
device to allow ucom to grab the device.  I think it involved disableing ugen.

Dhu

Re: RFID Reader

2008-08-07 Thread Duncan Patton a Campbell

On Thu, 7 Aug 2008 15:14:24 +0100
Conor [EMAIL PROTECTED] wrote:

On Thu, Aug 7, 2008 at 1:05 PM, Duncan Patton a Campbell
[EMAIL PROTECTED] wrote:

On Thu, 7 Aug 2008 10:46:40 +0100
Conor [EMAIL PROTECTED] wrote:

Are there any RFID readers supported by OpenBSD?

Regards,
Conor.

This:

http://www.openpcd.org/

claims to be an open design with GPL'd drivers,

but this

http://www.motorola.com/business/v/index.jsp?vgnextoid=1722e90e3ae95110VgnVCM108406b00aRCRD

should be fairly trivial to make work with OBSD, despite being a Windoze CE
box as
it has numerous open interfaces and claims to talk to SAP and IBM stuff ...

The question of being supported is misleading as most of these devices
will
be designed to operate using standard industrial interfaces.

Dhu

Thanks Duncan,

The OpenPCD is what I was hoping would work with OBSD, I just don't have
access to the hardware yet to try it. On a FreeBSD host most of these just
appear with ugen0 and thats about as far as it will go. I'll look into the
Motorola but I'm not willing to committ to buying something that isn't going
to work, however the same could be said for the OpenPCD. Although at least I
know that OpenPCD will unfortunately work with something like Debian or
Slackware as a last resort. If I can get the hardware to work with OpenBSD
it'll just be a case then afterwards of getting librfid to work. At the
moment I'm trying to get the Omnikey 5121 to work while I await the OpenPCD
reader. It is not going well as one might imagine.

You need to get the OpenPCD to talk on ucom/uplcom OR use the Moto which
has RS232 and Ethernet interfaces (as well as USB) which can be used in a
more conventional manner.

Dhu

ATB,
Conor.

Re: RFID Reader

2008-08-08 Thread Duncan Patton a Campbell

On Thu, 7 Aug 2008 15:14:24 +0100
Conor [EMAIL PROTECTED] wrote:

On Thu, Aug 7, 2008 at 1:05 PM, Duncan Patton a Campbell
[EMAIL PROTECTED] wrote:

On Thu, 7 Aug 2008 10:46:40 +0100
Conor [EMAIL PROTECTED] wrote:

Are there any RFID readers supported by OpenBSD?

Regards,
Conor.

This:

http://www.openpcd.org/

claims to be an open design with GPL'd drivers,

but this

http://www.motorola.com/business/v/index.jsp?vgnextoid=1722e90e3ae95110VgnVCM108406b00aRCRD

should be fairly trivial to make work with OBSD, despite being a Windoze CE
box as
it has numerous open interfaces and claims to talk to SAP and IBM stuff ...

The question of being supported is misleading as most of these devices
will
be designed to operate using standard industrial interfaces.

Dhu

Thanks Duncan,

I've been thinking about this, and what is needed is an economic model.
Proprietary supply chains don't have a need to be able to cross-reference
and check their weight and measures so they can tolerate a closed
architecture. Notably, closed architectures can be first to market
but cannot stay that way because they can't be currently (in RT) validated
by more than one party, so they amount to private money. However any
commercial
organization or association with more than one member should be interested
in this because it will allow for multiparty validation of transactions.
Also, quite frankly, I can't see a viable taxation system without such
mechanisms, either.

Dhu

ATB,
Conor.

Re: Software RAID with OpenBSD

2008-08-10 Thread Duncan Patton a Campbell

On Sat, 9 Aug 2008 20:25:59 -0300
Daniel Bareiro [EMAIL PROTECTED] wrote:

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1
 
 On Aug 09, 2008 at 17:22:58 -0300,
 Marco Peereboom wrote:
 
   On Aug 9, 2008, at 10:23 AM, Roberto Pereyra
   [EMAIL PROTECTED] 
   wrote:
  
   Look this link:
  
   http://contenidosonline.blogspot.com/2007/01/raid-1-por-software-con-openbsd.html
 
  All the information regarding softraid is in man bioctl bio  softraid.
 
  Raidframe is a little oldish these days.  I am a few features away  
  before we can start thinking about chunking it in favor if softraid.
 
 And it is already sufficiently robust like being used in stable systems?

Yes, except that it is a recipe for a _fast_ disk only since there is
yet no (to my knowledge) an easy way to recover from an actual hw failure.

Dhu


 What experience you had using it? There is some other guide of softraid
 beyond man pages?
 
 Thanks to both for your replies.
 
 Regards,
 Daniel
 iEYEARECAAYFAkieJ1YACgkQZpa/GxTmHTfamQCeNwirXaW4ckiqfZH3ZQE2ETBQ
 sX0AniyFRqHzGhrNkOZM/+kd7Aau/cUS
 =FVMu
 -END PGP SIGNATURE-

Promise SATA 300 TX4 strangeness

2008-08-29 Thread Duncan Patton a Campbell

Howdy List?

I have a Promise SATA 300 TX4 which I've tested
with 3 different mobos using 4.3 and 4.4.  Two
of the mobos, all of which operate with obsd cleanly
when using on-board disk io, fail to finish booting,
locking tight at the 

mtrr: Pentium Pro MTRR support 

line when booting the cd and at the

softraid0 at root

line when booting from a SATA disk attached to the TX4.

AMD Sempron(tm) Processor 3000+ (1808.33-MHz 686-class CPU)
AMD Sempron(tm) Processor 2600+ (AuthenticAMD 686-class, 128KB L2 cache) 1.61 
GHz

On an

Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz

board (Gigabyte), however, I have no problems booting and running with
the Promise in, either from CD or from disk attached to the Promise.

Any ideas as to what is happening would be appreciated.

Thanks,

Dhu

? Recommended News Server

2008-09-30 Thread Duncan Patton a Campbell

Howdy List?

I'm going to set up a news server on an OpenBSD system
and I would like to know if there is a recommended 
server that I should use.

Thanks,

Dhu

Re: New tcp stack attack

2008-10-01 Thread Duncan Patton a Campbell

On Wed, 01 Oct 2008 14:52:29 +0200
Leon Dippenaar [EMAIL PROTECTED] wrote:

 Hi there,
 
 is there any weight to this new story on slashdot 
 http://it.slashdot.org/it/08/10/01/0127245.shtml
 
 about a new attacker possible to break any tcp stack? Sounds rather 
 shady, so here I am, perhaps you guys have your ears closer to the ground
 
 Regards
 
 

Seems possible.  Here: http://cr.yp.to/syncookies/archive
you will find the passage


   An attack would still need to know our random secret in order to
   spoof a connection without seeing any of our outgoing traffic.
   If an attacker can see our outgoing traffic, then they will be
   able to spoof a connection, but they could have done that anyway,
   even under the secure sequence number scheme we currently use.

and here: http://it.slashdot.org/it/08/10/01/0127245.shtml

Sockstress computes and stores so-called client-side SYN cookies and enables 
Lee and Louis to specify a destination port and IP address. The method allows 
them to complete the TCP handshake without having to store any values, which 
takes time and resources. We can then say that we want to establish X number 
of TCP connections on that address and that we want to use this attack type, 
and it does it, Lee said.


we have the implication(?) that the exploit samples the target server 
for a number of SYN cookies that will allow them to crack the 24-bit
'secret' hash that the server is using.  Once that is done, they
can then forge a large number of packets from random IP addressess
that look like correct client acks of the server's syn cookie.  

A server might counter by using a new secret hash for each session
request (leaving it open to a resource-hog attack) or use a sequential 
mod of it's hash for each new request made...

Dhu

Re: New tcp stack attack

2008-10-01 Thread Duncan Patton a Campbell

On Wed, 1 Oct 2008 15:58:22 +0200
Claudio Jeker [EMAIL PROTECTED] wrote:

 On Wed, Oct 01, 2008 at 03:31:00PM +0200, Stephan A. Rickauer wrote:
  On Wed, 2008-10-01 at 14:52 +0200, Leon Dippenaar wrote:
   Hi there,
   
   is there any weight to this new story on slashdot 
   http://it.slashdot.org/it/08/10/01/0127245.shtml
   
   about a new attacker possible to break any tcp stack? Sounds rather 
   shady, so here I am, perhaps you guys have your ears closer to the ground
  
  A little bit less vage info can be found here
  
  http://tinyurl.com/3hv3kf
  
 
 This article is mostly about exploiting SYN cookies to bring servers into
 resource starvation. OpenBSD does not implement SYN cookies. We have a SYN
 cache with a upper limit of open handshakes. Together with random initial
 sequence numbers it is hard to finish the 3-way handshake without getting
 the SYN/ACK from the server on OpenBSD systems.
 

It seems to me the problem is with SYN cookies.

Dhu

 I'm not too concerned about this fundamental problem with TCP but as
 usual the mentioned article is less informative then the back side of my
 breakfast cereals box.
 -- 
 :wq Claudio

Re: New tcp stack attack

2008-10-01 Thread Duncan Patton a Campbell

On Wed, 01 Oct 2008 12:24:16 -0300
Fernando Gont [EMAIL PROTECTED] wrote:

 At 11:13 a.m. 01/10/2008, Duncan Patton a Campbell wrote:
 
 
 Sockstress computes and stores so-called client-side SYN cookies and 
 enables Lee and Louis to specify a destination port and IP address. 
 The method allows them to complete the TCP handshake without having 
 to store any values, which takes time and resources. We can then 
 say that we want to establish X number of TCP connections on that 
 address and that we want to use this attack type, and it does it, Lee said.
 
 
 This is simply the naphta attack. They don't really need to use syn 
 cookies. They could simply ACK any SYN/ACK they receive, and that's it.
 

The impression I got is that they collect enough SYN cookies from
the server to crack the server's secret (24bit) and THEN they can 
forge any number of acks to the server's syn cookie that contain 
bogus ip/ports but with the correct sequence/hash.  If this is not
the case then it is nothing new.  

Dhu


 The attack is not new, and they are not proposing any counter-measures.
 
 It doesn't mean does this does not need attention... but they are not 
 making any new contribution to the issue.
 
 Kind regards,
 
 --
 Fernando Gont
 e-mail: [EMAIL PROTECTED] || [EMAIL PROTECTED]
 PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

Re: Recommend hardware for video surveillance system?

2008-11-01 Thread Duncan Patton a Campbell

On Fri, 31 Oct 2008 20:28:34 -0700
Brian Keefer [EMAIL PROTECTED] wrote:

 I'm finally getting around to starting my project to build a home- 
 monitoring system.  I'm going to need multiple capture devices inside  
 the home, and at least one outside as well.  I'm looking for  
 recommendations on a video capture card, and wireless video cameras.   
 I don't mind spending  $100 US per cam if it's worth it.
 

Unless you have a good reason not to, use WebCams that implement
an http(s) server on camera.  

The use of a standard protocol makes life much easier.

Dhu



 Also, any software recommendations would be appreciated.
 
 I've searched the archives, and it looks like a few other people have  
 started similar projects, but there aren't too many details about  
 what anyone did.  I'm planning on keeping track of the steps and  
 hopefully documenting things well enough to submit to undeadly,  
 assuming the project is a success.
 
 Thanks in advance for any suggestions.
 
 --
 bk

Re: Modern operating systems are flawed by design, including OpenBSD.

2008-11-02 Thread Duncan Patton a Campbell

And proprietary software, like WinDose, that uses 
bodged standards is the root cause of this insecurity.  

Here you can read about another, possibly more serious, 
danger posed by proprietary systems:

http://www.physorg.com/news144343006.html

Dhu


On Thu, 23 Oct 2008 18:54:27 +0800
mak maxie [EMAIL PROTECTED] wrote:

 http://www.computerworld.com.au/index.php?id=264209080rid=-219
  
 Microsoft Windows is the only operating that supports signed binaries.
 _
 [EMAIL PROTECTED]
 http://msn.com.hk

Re: Recommend hardware for video surveillance system?

2008-11-03 Thread Duncan Patton a Campbell

On Sun, 2 Nov 2008 14:52:58 + (UTC)
Stuart Henderson [EMAIL PROTECTED] wrote:

 On 2008-11-02, Brian Keefer [EMAIL PROTECTED] wrote:
  On Nov 1, 2008, at 10:21 PM, Duncan Patton a Campbell wrote:
 
  On Fri, 31 Oct 2008 20:28:34 -0700
  Brian Keefer [EMAIL PROTECTED] wrote:
 
  I'm finally getting around to starting my project to build a home-
  monitoring system.  I'm going to need multiple capture devices inside
  the home, and at least one outside as well.  I'm looking for
  recommendations on a video capture card, and wireless video cameras.
  I don't mind spending  $100 US per cam if it's worth it.
 
 
  Unless you have a good reason not to, use WebCams that implement
  an http(s) server on camera.
 
  The use of a standard protocol makes life much easier.
 
  Dhu
 
  I was under the impression that the quality would be bad and/or they  
  would require a proprietary client application that only runs on  
  Windows, etc... Am I mistaken?  If the cam has it's own webserver, is  
  it simply serving static frames ever x seconds, or streams video as  
  well?
 
 look at the Axis cameras.
 

Yes, this

http://www.axis.com/products/cam_207w/index.htm

is the sort of thing I was talking about.

Dhu


  Sorry for the basic questions, but I hadn't even considered that
  approach.  I was planning on using bktr(4) with capture cards and
  cameras with coax/rca/s-video out.
 
 that may also be possible, but afaik it's mostly used for watching
 tv, at least the manual page doesn't talk about the multi-input
 cards you'd probably want to use.

Re: I am not a geek ;)

2008-11-03 Thread Duncan Patton a Campbell

On Mon, 3 Nov 2008 10:48:46 -0800 (PST)
Jeff1981 [EMAIL PROTECTED] wrote:

 Hello
 
 I actually am starting the use of OpenBSD thanks to production team.
 Please can you help me to pass this error message when I try to connect my
 NAS an external drive (a network drive). This works on my other computer but
 not from the one on BSD, I have an access error message however the ping to
 the NAS server works and so does the FTP via internal IP, so does the SSH
 connection.
 
 Only the network drive cannot be connected. Any suggest ?
 

The network drive is probably an SMB service.  
Look at SMB/Samba Clients to access these.

Dhu


 Thanks and bye
 Yrs
 Jeff
 -- 
 View this message in context: 
 http://www.nabble.com/I-am-not-a-geek--%29-tp20308280p20308280.html
 Sent from the openbsd user - misc mailing list archive at Nabble.com.

Re: Oddly high load average

2008-11-07 Thread Duncan Patton a Campbell

On Fri, 7 Nov 2008 13:16:38 -0500
Damian Gerow [EMAIL PROTECTED] wrote:

 Theo de Raadt wrote:
 :  The load average on my machine is inexplicably high; when idle, it sits up
 :  between 0.6 and 0.7.
 : 
 : Oh my god, the horror. Nothing is wrong with your machine at all.
 : However, I have a diff which will probably keep you happy.
 
 Not sure if you caught my last paragraph, but I did say that nothing was
 wrong with the system at all, I'm just curious as to why the average is
 high.
 
 

The simple explanation is found in Mark Zimmerman's reply:

I bet you could get your load average to drop if you forced your cpu
to run full speed even when doing nothing. I am guessing that this is
not really what you want.


I guess you are assuming the load average is calculated against some
a-priori max available cpu-cycles when, from Theo's posts, it looks 
like it is being calculated against current available cycles.
When your cpu is in a power-save mode it has less cycles available,
so the minimal load you place on it still consumes a higher fraction
of what is available.

Dhu

Re: Oddly high load average

2008-11-07 Thread Duncan Patton a Campbell

On Fri, 07 Nov 2008 12:30:21 -0700
Theo de Raadt [EMAIL PROTECTED] wrote:

  On Fri, 7 Nov 2008 13:16:38 -0500
  Damian Gerow [EMAIL PROTECTED] wrote:
  
   Theo de Raadt wrote:
   :  The load average on my machine is inexplicably high; when idle, it 
   sits up
   :  between 0.6 and 0.7.
   : 
   : Oh my god, the horror. Nothing is wrong with your machine at all.
   : However, I have a diff which will probably keep you happy.
   
   Not sure if you caught my last paragraph, but I did say that nothing was
   wrong with the system at all, I'm just curious as to why the average is
   high.
   
   
  
  The simple explanation is found in Mark Zimmerman's reply:
  
  I bet you could get your load average to drop if you forced your cpu
  to run full speed even when doing nothing. I am guessing that this is
  not really what you want.
  
 
 Wrong.
 
  I guess you are assuming the load average is calculated against some
  a-priori max available cpu-cycles when, from Theo's posts, it looks 
  like it is being calculated against current available cycles.
 

Ok.  So considering the speed with which this patch appeared I'm going 
to assume there's more here than meets the eye.  Just the same it looked
like a sampling (when/where) issue to me.

 Wrong.
 
  When your cpu is in a power-save mode it has less cycles available,
  so the minimal load you place on it still consumes a higher fraction
  of what is available.
 
 Wrong.

Re: acer aspire one dmesg?

2008-11-23 Thread Duncan Patton a Campbell

On Wed, 6 Aug 2008 16:17:14 +0200
Freddy DISSAUX [EMAIL PROTECTED] wrote:

 Le Wed, Aug 06, 2008 at 11:29:36PM +1000, Jonathan Gray icrivait:
  On Wed, Aug 06, 2008 at 09:23:49AM +0200, Freddy DISSAUX wrote:
   
   Be careful whith re0, no mac address detected:
   re0 [ snip ] address 00:00:00:00:00:00
  
  The mac address should display correctly with a newer snapshot,
  reading out via the EEPROM is now bypassed on these newer PCIE
  re variants.
  
 
 Ok, i'll try newer snapshots and post the dmesg.
 
 

Attached...

[demime 1.01d removed an attachment of type application/octet-stream which had 
a name of dmesg.aone]

Sound problems

2008-12-11 Thread Duncan Patton a Campbell

Howdy list?  

I am having problems with the sound on a 4.3 system 
running Gnome desktop.  

The error that  mplayer gives is:

AO SUN  Can t open audio device /dev/audio, Device busy -  nosound 

This has not always been broken, and there is nothing apparent to
me in the dmesg (following).  If anyone can give me a clue as to
what is wrong here I would greatly appreciate it.

Thanks,

Dhu
 
OpenBSD 4.3-current (GENERIC) #951  Wed Jun 25 10 53 21 MDT 2008 
[EMAIL PROTECTED] /usr/src/sys/arch/i386/compile/GENERIC 
cpu0  AMD Duron(tm) processor (AuthenticAMD 686-class, 64KB L2 cache) 1.40 
GHz 
cpu0  
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE
 
real mem  = 1073250304 (1023MB) 
avail mem = 1029591040 (981MB) 
mainbus0 at root 
bios0 at mainbus0  AT/286  BIOS, date 09/09/03, BIOS32 rev. 0 @ 0xfb7f0, SMBIOS 
rev. 2.2 @ 0xf0800 (33 entries) 
bios0  vendor Phoenix Technologies, LTD version 6.00 PG date 09/09/2003 
bios0  VIA Technologies, Inc. KM266-8235 
apm0 at bios0  Power Management spec V1.2 (slowidle) 
apm0  AC on, battery charge unknown 
acpi at bios0 function 0x0 not configured 
pcibios0 at bios0  rev 2.1 @ 0xf/0xdaa4 
pcibios0  PCI IRQ Routing Table rev 1.0 @ 0xfd9f0/176 (9 entries) 
pcibios0  PCI Exclusive IRQs  5 10 11 12 
pcibios0  PCI Interrupt Router at 000 17 0 (VIA VT82C596A ISA rev 0x00) 
pcibios0  PCI bus #1 is the last bus 
bios0  ROM list  0xc/0x8000 0xc8000/0x8000! 
cpu0 at mainbus0 
pci0 at mainbus0 bus 0  configuration mode 1 (no bios) 
pchb0 at pci0 dev 0 function 0 VIA VT8375 PCI rev 0x00 
ppb0 at pci0 dev 1 function 0 VIA VT8633 AGP rev 0x00 
pci1 at ppb0 bus 1 
vga1 at pci1 dev 0 function 0 ATI Mach64 GZ rev 0x7a 
wsdisplay0 at vga1 mux 1  console (80x25, vt100 emulation) 
wsdisplay0  screen 1-5 added (80x25, vt100 emulation) 
agp0 at vga1  v2, aperture at 0xc000, size 0x1000 
eap0 at pci0 dev 8 function 0 Ensoniq CT5880 rev 0x02  irq 11 
ac97  codec id 0x83847608 (SigmaTel STAC9708/11) 
ac97  codec features 18 bit DAC, 18 bit ADC, SigmaTel 3D 
audio0 at eap0 
midi0 at eap0   AudioPCI MIDI UART  
rl0 at pci0 dev 9 function 0 Accton MPX 5030/5038 rev 0x10  irq 10, address 
00 e0 29 88 90 26 
rlphy0 at rl0 phy 0  RTL internal PHY 
uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x80  irq 11 
uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x80  irq 10 
uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x80  irq 5 
ehci0 at pci0 dev 16 function 3 VIA VT6202 USB rev 0x82  irq 12 
usb0 at ehci0  USB revision 2.0 
uhub0 at usb0 VIA EHCI root hub rev 2.00/1.00 addr 1 
viapm0 at pci0 dev 17 function 0 VIA VT8235 ISA rev 0x00 
iic0 at viapm0 
spdmem0 at iic0 addr 0x50  512MB DDR SDRAM non-parity PC3200CL3.0 
spdmem1 at iic0 addr 0x51  512MB DDR SDRAM non-parity PC3200CL3.0 
pciide0 at pci0 dev 17 function 1 VIA VT82C571 IDE rev 0x06  ATA133, channel 
0 configured to compatibility, channel 1 configured to compatibility 
wd0 at pciide0 channel 0 drive 0   WDC WD800JB-00JJC0  
wd0  16-sector PIO, LBA, 76319MB, 156301488 sectors 
wd1 at pciide0 channel 0 drive 1   WDC WD2500JB-00GVA0  
wd1  16-sector PIO, LBA48, 238475MB, 488397168 sectors 
wd0(pciide0 0 0)  using PIO mode 4, Ultra-DMA mode 5 
wd1(pciide0 0 1)  using PIO mode 4, Ultra-DMA mode 5 
atapiscsi0 at pciide0 channel 1 drive 0 
scsibus0 at atapiscsi0  2 targets, initiator 7 
cd0 at scsibus0 targ 0 lun 0   HL-DT-ST, DVD-RAM GSA-H50N, 1.00  ATAPI 5/cdrom 
removable 
atapiscsi1 at pciide0 channel 1 drive 1 
scsibus1 at atapiscsi1  2 targets, initiator 7 
cd1 at scsibus1 targ 0 lun 0   PIONEER, DVD-RW DVR-105, 1.30  ATAPI 5/cdrom 
removable 
cd0(pciide0 1 0)  using PIO mode 4, Ultra-DMA mode 2 
cd1(pciide0 1 1)  using PIO mode 4, Ultra-DMA mode 2 
vr0 at pci0 dev 18 function 0 VIA RhineII-2 rev 0x74  irq 11, address 00 0d 
87 30 5c 98 
ukphy0 at vr0 phy 1  Generic IEEE 802.3u media interface, rev. 8  OUI 0x004063, 
model 0x0032 
usb1 at uhci0  USB revision 1.0 
uhub1 at usb1 VIA UHCI root hub rev 1.00/1.00 addr 1 
usb2 at uhci1  USB revision 1.0 
uhub2 at usb2 VIA UHCI root hub rev 1.00/1.00 addr 1 
usb3 at uhci2  USB revision 1.0 
uhub3 at usb3 VIA UHCI root hub rev 1.00/1.00 addr 1 
isa0 at mainbus0 
isadma0 at isa0 
com0 at isa0 port 0x3f8/8 irq 4  ns16550a, 16 byte fifo 
pckbc0 at isa0 port 0x60/5 
pckbd0 at pckbc0 (kbd slot) 
pckbc0  using irq 1 for kbd slot 
wskbd0 at pckbd0  console keyboard, using wsdisplay0 
pcppi0 at isa0 port 0x61 
midi1 at pcppi0   PC speaker  
spkr0 at pcppi0 
lpt0 at isa0 port 0x378/4 irq 7 
it0 at isa0 port 0x2e/2  IT8705F rev 0x02, EC port 0x290 
npx0 at isa0 port 0xf0/16  reported by CPUID  using exception 16 
biomask ff6d netmask ff6d ttymask  
mtrr  Pentium Pro MTRR support 
uhidev0 at uhub2 port 1 configuration 1 interface 0 Logitech USB Receiver rev 
1.10/34.10 addr 2 
uhidev0  iclass 3/1 
ums0 at uhidev0  16 buttons, Z dir 
wsmouse0 at ums0 mux 0 
uhidev1 at uhub2 port 2 configuration 1 interface 0 Darfon USB Combo Keyboard

Re: Sound problems

2008-12-11 Thread Duncan Patton a Campbell

On Thu, 11 Dec 2008 18:02:00 +0100
Alexandre Ratchov a...@caoua.org wrote:

 On Thu, Dec 11, 2008 at 09:15:53AM -0700, Duncan Patton a Campbell wrote:
  Howdy list?  
  
  I am having problems with the sound on a 4.3 system 
  running Gnome desktop.  
  
  The error that  mplayer gives is:
  
  AO SUN  Can t open audio device /dev/audio, Device busy -  nosound 
  
  This has not always been broken, and there is nothing apparent to
  me in the dmesg (following).  If anyone can give me a clue as to
  what is wrong here I would greatly appreciate it.
  
 
 try to fstat /dev/audio and/or fstat /dev/sound to see
 which application is using your device. Then you can stop
 the application and try mplayer again.
 
 -- Alexandre
 
 

Turns out to be a hw problem with the sound card:
replace and voila.. 8-/

Thank you.  

Dhu

Re: Sound problems

2008-12-11 Thread Duncan Patton a Campbell

On Thu, 11 Dec 2008 18:02:00 +0100
Alexandre Ratchov a...@caoua.org wrote:

 On Thu, Dec 11, 2008 at 09:15:53AM -0700, Duncan Patton a Campbell wrote:
  Howdy list?  
  
  I am having problems with the sound on a 4.3 system 
  running Gnome desktop.  
  
  The error that  mplayer gives is:
  
  AO SUN  Can t open audio device /dev/audio, Device busy -  nosound 
  
  This has not always been broken, and there is nothing apparent to
  me in the dmesg (following).  If anyone can give me a clue as to
  what is wrong here I would greatly appreciate it.
  
 
 try to fstat /dev/audio and/or fstat /dev/sound to see
 which application is using your device. Then you can stop
 the application and try mplayer again.
 
 -- Alexandre
 
 

Achh.  I spoke too soon.  Anyways, the problem seems to be the
esd sound daemon not getting out of the way when something else
wants to play.

Dhu

Re: Ethernet flow control

2008-12-17 Thread Duncan Patton a Campbell

On Wed, 17 Dec 2008 13:40:35 +0100
Toni Mueller openbsd-m...@oeko.net wrote:

 Hello,
 
 I have question regarding Ethernet flow control. It would be nice to be
 able to see and/or adjust the current flow control configuration for
 individual interfaces from the command line, at 100 and 1000MBit/s. My
 interfaces usually use the fxp(4) or em(4) drivers. I dimly remember
 having seen such a thing somewhere (tx_pause,rx_pause), but can't
 find it right now. Checking my machines did not turn up anything.
 

This sort of thing is usually controlled by firmware and os driver
access is inherently limited to known good parameters.  To play
with this stuff you will prob'ly need cards that allow you download
your own (modded) firmware.

Dhu

 
 Kind regards,
 --Toni++

Re: Strange WLAN issue with ral(4) in hostap mode

2009-01-02 Thread Duncan Patton a Campbell

On Fri, 2 Jan 2009 05:45:45 +0200
Jussi Peltola pe...@pelzi.net wrote:

 Disable power saving on the clients. 
 
 

'zat it?

Dhu

Re: traffic shaping in OpenBSD

2011-11-03 Thread Duncan Patton a Campbell

On Tue, 1 Nov 2011 08:55:07 -0400
Nico Kadel-Garcia nka...@gmail.com wrote:

 On Tue, Nov 1, 2011 at 4:10 AM, Gregory Edigarov
 g...@bestnet.kharkov.ua wrote:
  On Tue, 1 Nov 2011 08:53:46 +0100
  Bret S. Lambert bret.lamb...@gmail.com wrote:
 
  On Tue, Nov 01, 2011 at 09:47:35AM +0200, Gregory Edigarov wrote:
   On Tue, 1 Nov 2011 11:17:56 +0400
   ZZ Wave zzw...@gmail.com wrote:
  
What solution should be used for traffic shaping on real-life,
production gateways with tens and hundreds users? PF queues
seem to be too userspace-ish and CPU consuming.
  
   Pardon?
   What do you mean userspace-ish ?
 
  I believe he wants to communicate with the kernel with the power of
  his mind.
  Where's my brain implant? ;-)
 
 Hold still. (I actually used to design electronics for those: they
 used a *BIG* and wonderfully frightening drill.)
 

Implants seem so, er, unsanitary.  Seems to me 
something like yer basic tinfoil hat would a 
more elegant approach ... 

Dhu

Re: Which version of Firefox most secure?

2011-11-20 Thread Duncan Patton a Campbell

On Sun, 20 Nov 2011 16:18:13 +0100
Tomas Bodzar tomas.bod...@gmail.com wrote:

 On Sun, Nov 20, 2011 at 3:14 PM, Javier Bassi javierba...@gmail.com wrote:
  On Sun, Nov 20, 2011 at 4:17 AM, Tomas Bodzar tomas.bod...@gmail.com 
  wrote:
  7.x.xx actual stable from Mozilla
 
  7.x is no longer supported by Mozilla. 7.0.1 has 3 CVEs
  If you don't have 8.0 on ports, go with 3.6.24
 
 Actually I'm going with xxxterm, but Firefox is as backup only
 

Woohoo.  I just tried xxxterm and I think I'm in lurv... 

Dhu

Re: Narcicism?

2011-12-01 Thread Duncan Patton a Campbell

On Thu, 1 Dec 2011 10:49:23 -0500
Andres Genovez andresgeno...@gmail.com wrote:

 When you are a real Hacker, you don`t call yourself one, people do.

I call myself a hacker.  Others call me a reverse systems engineer, 
systems analyst  programmer, network analyst, repurposing specialist, 
blablabla.  But I've been a hacker since I learned about model railroads
and ham radios from my buddy's dad.  I have an apple 2 in the basement
and know minix, so there ;-)

Dhu

Re: Narcicism?

2011-12-01 Thread Duncan Patton a Campbell

On Thu, 1 Dec 2011 17:37:44 +
Kevin Chadwick ma1l1i...@yahoo.co.uk wrote:

 On Thu, 1 Dec 2011 16:39:24 +0100
 David Coppa wrote:
 
  See the subject: Narcicism
  
  And, btw, the correct spelling is Narcissism: as a guru, this is
  something you should already have known ;)
 
 I prefer narsciscism ;^)
 
 Kc
 

narchischism?

Dhu

Re: locate weirdness

2012-01-12 Thread Duncan Patton a Campbell

On Wed, 11 Jan 2012 13:47:48 -0600
L. V. Lammert l...@omnitec.net wrote:

 At 01:30 PM 1/11/2012, Jeremy O'Brien wrote:
 
 4.3 was released May 1, 2008. That's almost 4 years old software. What
 are you expecting here? Someone to check out the code from that
 version and deeply inspect what may be causing your problem, that is
 more than likely already fixed in a later version?
 
 Another typical reply - the question was has anyone ever seen 
 anything like this, .. or, perhaps, what could be causing it. No 
 need for the off-topic diatribes - a simple no would more than suffice.
 
  Lee
 
Yes.  I have seen problems with locate in all releases that I have run.  
Unfortunately I have never bothered to characterize these problems.

Dhu

Re: locate weirdness

2012-01-15 Thread Duncan Patton a Campbell

On Thu, 12 Jan 2012 02:15:39 -0700
Duncan Patton a Campbell campb...@neotext.ca wrote:

 On Wed, 11 Jan 2012 13:47:48 -0600
 L. V. Lammert l...@omnitec.net wrote:
 
  At 01:30 PM 1/11/2012, Jeremy O'Brien wrote:
  
  4.3 was released May 1, 2008. That's almost 4 years old software. What
  are you expecting here? Someone to check out the code from that
  version and deeply inspect what may be causing your problem, that is
  more than likely already fixed in a later version?
  
  Another typical reply - the question was has anyone ever seen 
  anything like this, .. or, perhaps, what could be causing it. No 
  need for the off-topic diatribes - a simple no would more than suffice.
  
   Lee
  
 Yes.  I have seen problems with locate in all releases that I have run.  
 Unfortunately I have never bothered to characterize these problems.
 
 Dhu
 
I should add that this has happened on deeply nested file systems with  
longpathnames and highbit characters.  

Dhu

5.0 Stable (amd64) build appears broken.

2012-02-20 Thread Duncan Patton a Campbell

I install 5.0 AMD64 base..
# uname -a
OpenBSD jimg.indx.ca 5.0 GENERIC.MP#63 amd64


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

5.0 Stable (amd64) build appears broken.

2012-02-20 Thread Duncan Patton a Campbell

arrrgh. hit the send b4 that was finished, anyways


I install 5.0 AMD64 base..
# uname -a
OpenBSD jimg.indx.ca 5.0 GENERIC.MP#63 amd64

then fetch the patchbranch source..

export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs
cvs -d$CVSROOT checkout -rOPENBSD_5_0 -P src ports xenocara 

then do the kernel make
# cd /usr/src/sys/arch/amd64/conf 
# config GENERIC
config: symlink(machine - ../../../../arch/amd64/include): File exists
config: symlink(amd64 - machine): File exists
*** Stop.
(this is where we start to go sideways, but mebbe file extance is ok..)

# cd ../compile/GENERIC   
# make clean  
# make 
cc  -Werror -Wall -Wstrict-prototypes -Wmissing-prototypes  -Wno-main 
-Wno-uninitialized -Wno-format  -Wstack-larger-than-2047 -mcmodel=kernel 
-mno-red-zone -mno-sse2 -mno-sse -mno-3dnow  -mno-mmx -msoft-float 
-fno-omit-frame-pointer -fno-builtin-printf -fno-builtin-snprintf  
-fno-builtin-vsnprintf -fno-builtin-log  -fno-builtin-log2 -fno-builtin-malloc 
-O2 -pipe -nostdinc -I. -I../../../.. -I../../../../arch -DDDB -DDIAGNOSTIC 
-DKTRACE -DACCOUNTING -DKMEMSTATS -DPTRACE -DCRYPTO -DSYSVMSG -DSYSVSEM 
-DSYSVSHM -DUVM_SWAP_ENCRYPT -DCOMPAT_43 -DCOMPAT_O48 -DLKM -DFFS -DFFS2 
-DFFS_SOFTUPDATES -DUFS_DIRHASH -DQUOTA -DEXT2FS -DMFS -DNFSCLIENT -DNFSSERVER 
-DCD9660 -DUDF -DMSDOSFS -DFIFO -DSOCKET_SPLICE -DTCP_SACK -DTCP_ECN 
-DTCP_SIGNATURE -DINET -DALTQ -DINET6 -DIPSEC -DPPP_BSDCOMP -DPPP_DEFLATE 
-DPIPEX -DMROUTING -DMPLS -DBOOT_CONFIG -DUSER_PCICONF -DAPERTURE -DMTRR -DNTFS 
-DPCIVERBOSE -DUSBVERBOSE -DWSDISPLAY_COMPAT_USL -DWSDISPLAY_COMPAT_RAWKBD 
-DWSDISPLAY_DEFAULTSCREENS=6 -DWS!
 DISPLAY_COMPAT_PCVT -DX86EMU -DONEWIREVERBOSE -DMAXUSERS=80 -D_KERNEL -MD -MP  
-c ioconf.c
cc1: warnings being treated as errors
ioconf.c:803: warning: excess elements in struct initializer
ioconf.c:803: warning: (near initialization for 'cfdata[0]')
ioconf.c:805: warning: excess elements in struct initializer

ioconf.c:1521: warning: (near initialization for 'cfdata[359]')
ioconf.c:1523: warning: excess elements in struct initializer
ioconf.c:1523: warning: (near initialization for 'cfdata[360]')
*** Error code 1

Stop in /usr/src/sys/arch/amd64/compile/GENERIC (line 735 of Makefile).
# 

And thats all.  Same thing happens trying to build 5.0stable on a 4.9 system...

Any help would be appreciated,

Thanks, 

Dhu


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-20 Thread Duncan Patton a Campbell

On Mon, 20 Feb 2012 10:05:19 -0500
Ted Unangst t...@tedunangst.com wrote:

 you are running config from a different version than the source you
 are trying to compile.

Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config 
without
building it?  

d

 
 On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote:
  arrrgh. hit the send b4 that was finished, anyways
  
  
  I install 5.0 AMD64 base..
  # uname -a
  OpenBSD jimg.indx.ca 5.0 GENERIC.MP#63 amd64
  
  then fetch the patchbranch source..
  
  export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs
  cvs -d$CVSROOT checkout -rOPENBSD_5_0 -P src ports xenocara
  
  then do the kernel make
  # cd /usr/src/sys/arch/amd64/conf
  # config GENERIC
  config: symlink(machine - ../../../../arch/amd64/include): File exists
  config: symlink(amd64 - machine): File exists
  *** Stop.
  (this is where we start to go sideways, but mebbe file extance is ok..)
  
  # cd ../compile/GENERIC
  # make clean
  # make
  cc  -Werror -Wall -Wstrict-prototypes -Wmissing-prototypes  -Wno-main
  -Wno-uninitialized -Wno-format  -Wstack-larger-than-2047 -mcmodel=kernel
  -mno-red-zone -mno-sse2 -mno-sse -mno-3dnow  -mno-mmx -msoft-float
  -fno-omit-frame-pointer -fno-builtin-printf -fno-builtin-snprintf
  -fno-builtin-vsnprintf -fno-builtin-log  -fno-builtin-log2
  -fno-builtin-malloc -O2 -pipe -nostdinc -I. -I../../../..
  -I../../../../arch -DDDB -DDIAGNOSTIC -DKTRACE -DACCOUNTING -DKMEMSTATS
  -DPTRACE -DCRYPTO -DSYSVMSG -DSYSVSEM -DSYSVSHM -DUVM_SWAP_ENCRYPT
  -DCOMPAT_43 -DCOMPAT_O48 -DLKM -DFFS -DFFS2 -DFFS_SOFTUPDATES
  -DUFS_DIRHASH -DQUOTA -DEXT2FS -DMFS -DNFSCLIENT -DNFSSERVER -DCD9660
  -DUDF -DMSDOSFS -DFIFO -DSOCKET_SPLICE -DTCP_SACK -DTCP_ECN
  -DTCP_SIGNATURE -DINET -DALTQ -DINET6 -DIPSEC -DPPP_BSDCOMP -DPPP_DEFLATE
  -DPIPEX -DMROUTING -DMPLS -DBOOT_CONFIG -DUSER_PCICONF -DAPERTURE -DMTRR
  -DNTFS -DPCIVERBOSE -DUSBVERBOSE -DWSDISPLAY_COMPAT_USL
  -DWSDISPLAY_COMPAT_RAWKBD -DWSDISPLAY_DEFAULTSCREENS=6 -DWS!
  DISPLAY_COMPAT_PCVT -DX86EMU -DONEWIREVERBOSE -DMAXUSERS=80 -D_KERNEL -MD
  -MP  -c ioconf.c
  cc1: warnings being treated as errors
  ioconf.c:803: warning: excess elements in struct initializer
  ioconf.c:803: warning: (near initialization for 'cfdata[0]')
  ioconf.c:805: warning: excess elements in struct initializer
  
  ioconf.c:1521: warning: (near initialization for 'cfdata[359]')
  ioconf.c:1523: warning: excess elements in struct initializer
  ioconf.c:1523: warning: (near initialization for 'cfdata[360]')
  *** Error code 1
  
  Stop in /usr/src/sys/arch/amd64/compile/GENERIC (line 735 of Makefile).
  #
  
  And thats all.  Same thing happens trying to build 5.0stable on a 4.9
  system...
  
  Any help would be appreciated,
  
  Thanks,
  
  Dhu
  
  
  --
  Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.
 


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Mon, 20 Feb 2012 23:24:56 -0500
Ted Unangst t...@tedunangst.com wrote:

 On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote:
  On Mon, 20 Feb 2012 10:05:19 -0500
  Ted Unangst t...@tedunangst.com wrote:
  
  you are running config from a different version than the source you
  are trying to compile.
  
  Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config
  without
  building it?
 
 I would revisit the assumption you are building 5.0 on 5.0.  You are
 reporting an error nobody else is reporting, that just happens to be
 exactly the error one sees when building with a mismatched config and
 src, so You see where I'm coming from?
 

Yes.  I do.  I can only assume I've buggerd up the src tree somehow.

uname -svmpr
OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics

thanks,

D

-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 09:16:34 -0700
Duncan Patton a Campbell campb...@neotext.ca wrote:

 On Mon, 20 Feb 2012 23:24:56 -0500
 Ted Unangst t...@tedunangst.com wrote:
 
  On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote:
   On Mon, 20 Feb 2012 10:05:19 -0500
   Ted Unangst t...@tedunangst.com wrote:
   
   you are running config from a different version than the source you
   are trying to compile.
   
   Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config
   without
   building it?
  
  I would revisit the assumption you are building 5.0 on 5.0.  You are
  reporting an error nobody else is reporting, that just happens to be
  exactly the error one sees when building with a mismatched config and
  src, so You see where I'm coming from?
  
 
 Yes.  I do.  I can only assume I've buggerd up the src tree somehow.
 
 uname -svmpr
 OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics
 
 thanks,
 

So, the problem appears to be that you cannot check out a 5.0-Stable source 
tree 
directly on a 5.0-Release system, but instead must prime the tree with the 
Release code and then checkout the Stable stuff on top.

thanks,

Dhu

 D
 
 -- 
 Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.
 


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 09:53:48 -0800
Philip Guenther guent...@gmail.com wrote:

 On Tue, Feb 21, 2012 at 8:16 AM, Duncan Patton a Campbell
 campb...@neotext.ca wrote:
  On Mon, 20 Feb 2012 23:24:56 -0500
  Ted Unangst t...@tedunangst.com wrote:
 
  On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote:
   On Mon, 20 Feb 2012 10:05:19 -0500
   Ted Unangst t...@tedunangst.com wrote:
  
   you are running config from a different version than the source you
   are trying to compile.
  
   Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's
 config
   without
   building it?
 
  I would revisit the assumption you are building 5.0 on 5.0.  You are
  reporting an error nobody else is reporting, that just happens to be
  exactly the error one sees when building with a mismatched config and
  src, so You see where I'm coming from?
 
 
  Yes.  I do.  I can only assume I've buggerd up the src tree somehow.
 
  uname -svmpr
  OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics
 
 It's most likely that you're currently running a 5.0 kernel with 4.9
 binaries.  To upgrade from 4.9 to 5.0 by building from source you
 would have needed to follow the steps in the following -current page
 of the FAQ during the run-up to the 5.0 release.  Once 5.0 was
 released, the presumption became that you'll install 5.0 sets and work
 from there.
 
 Probably the simplest way forward is to just follow the steps outlined here:
http://www.openbsd.org/faq/upgrade50.html

There's a minor error in http://www.openbsd.org/faq/faq5.html such that
it specifies that to follow stable you can pull the whole tree with cvs
and run as such.  This is not the case.  The 5.0-Stable tree will not
build without the tree being first primed with the 5.0-Release code.

Dhu
 
 That even documents the other configuration changes you'll need to
 consider as part of the upgrade, something which building from source
 does *not* automatically do for you.
 
 
 Philip Guenther
 


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 18:38:25 +
Miod Vallat m...@online.fr wrote:

  There's a minor error in http://www.openbsd.org/faq/faq5.html such that
  it specifies that to follow stable you can pull the whole tree with cvs
  and run as such.  This is not the case.  The 5.0-Stable tree will not
  build without the tree being first primed with the 5.0-Release code.
 
 Of course it will, BUT you need to build from a 5.0 userland, which
 means that you should not update by extracting the `base' set only.
 

The 5.0-Release userland appears insufficient to this: this was a novel
installation from a 5.0Rel disk image:


previously, after a cd install of the rel image and direct cvs pull 
of the src tree using this kernel:

uname -svmpr
OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics
compilation of the new kernel resulted in the mixed error.  

after priming the /usr/src tree from sys.tar.gz and src.tar.gz, and 
then updating with cvs, this same kernel compiled correctly.  Basically 
it was Ted's obs that tipped me off because most systems he speaks of 
would be incrementally built.

uname -svmpr
OpenBSD 5.0 GENERIC.MP#0 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics
is now compiling userland

Dhu

-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 18:38:25 +
Miod Vallat m...@online.fr wrote:

  There's a minor error in http://www.openbsd.org/faq/faq5.html such that
  it specifies that to follow stable you can pull the whole tree with cvs
  and run as such.  This is not the case.  The 5.0-Stable tree will not
  build without the tree being first primed with the 5.0-Release code.
 
 Of course it will, BUT you need to build from a 5.0 userland, which
 means that you should not update by extracting the `base' set only.

This appears to be essentially correct.  The problem was this:
(from the machine)

ls -l /usr/
total 96
drwxr-xr-x   7 root  wheel   512 Aug 11  2011 X11R6
drwxr-xr-x   2 root  wheel  6144 Feb 20 00:25 bin
drwxr-xr-x   2 root  wheel  1024 Feb 20 00:25 games
drwxr-xr-x  34 root  bin3072 Feb 21 11:35 include
drwxr-xr-x   6 root  wheel  5120 Feb 21 11:55 lib
drwxr-xr-x   6 root  wheel   512 Feb 20 00:25 libdata
drwxr-xr-x   8 root  wheel  1536 Feb 20 00:25 libexec
drwxr-xr-x   2 root  wheel   512 Aug 17  2011 lkm
drwxr-xr-x  11 root  wheel   512 Feb 20 00:31 local
drwxr-xr-x   2 root  wheel   512 Aug 17  2011 mdec
lrwxr-xr-x   1 root  wheel 9 Feb 21 11:33 obj - /dmnt/obj
drwxrwxr-x   2 root  wsrc512 Aug 17  2011 obj.X1
lrwxr-xr-x   1 root  wheel11 Feb 21 10:00 ports - /dmnt/ports
drwxr-xr-x  46 root  wheel  1536 Feb 20 06:47 ports.X1
drwxr-xr-x   3 root  wheel   512 Feb 20 07:30 pub
drwxr-xr-x   2 root  wheel  4096 Feb 20 00:25 sbin
drwxr-xr-x  19 root  wheel   512 Aug 17  2011 share
lrwxr-xr-x   1 root  wheel 9 Feb 21 09:57 src - /dmnt/src
drwxr-xr-x  18 root  wheel   512 Feb 20 06:47 src.X1
lrwxr-xr-x   1 root  wheel14 Feb 21 10:00 xenocara - /dmnt/xenocara
drwxr-xr-x  11 root  wheel   512 Feb 20 06:45 xenocara.X1
lrwxr-xr-x   1 root  wheel10 Feb 21 12:06 xobj - /dmnt/xobj
drwxrwxr-x   2 root  wsrc512 Aug 17  2011 xobj.X1

Rather than update the original sources (I wanted to keep them around)
I sidlined them and linked to a 1T partition where I would build 
using the newly pulled CVS (I'm pretty close to the site, netwise)
sources.  

Dhu



-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 13:52:27 -0600
Carson Chittom car...@wistly.net wrote:

 Duncan Patton a Campbell campb...@neotext.ca writes:
 
  On Tue, 21 Feb 2012 09:16:34 -0700
  Duncan Patton a Campbell campb...@neotext.ca wrote:
 
  On Mon, 20 Feb 2012 23:24:56 -0500
  Ted Unangst t...@tedunangst.com wrote:
  
   On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote:
On Mon, 20 Feb 2012 10:05:19 -0500
Ted Unangst t...@tedunangst.com wrote:

you are running config from a different version than the source you
are trying to compile.

Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's 
config
without
building it?
   
   I would revisit the assumption you are building 5.0 on 5.0.  You are
   reporting an error nobody else is reporting, that just happens to be
   exactly the error one sees when building with a mismatched config and
   src, so You see where I'm coming from?
   
  
  Yes.  I do.  I can only assume I've buggerd up the src tree somehow.
  
  uname -svmpr
  OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics
  
  thanks,
  
 
  So, the problem appears to be that you cannot check out a 5.0-Stable source 
  tree 
  directly on a 5.0-Release system, but instead must prime the tree with 
  the 
  Release code and then checkout the Stable stuff on top.
 
 No.  You're wrong.  At least, I did exactly what you said I cannot
 do.  I installed (from CD) 5.0-release, and then cvs co'd -stable;
 and then installed per the usual directions.  From dmesg:
 

read and weap.  i did.  when you do a cd install, it puts 
src (sys), and xenocara in /usr.  that primes the src/sys
tree.  if you then _move_ those trees out of the way entirely,
and do a cvs checkout of the whole tree, well that what *I* saw
anyways.

Dhu

 OpenBSD 5.0-stable (GENERIC.MP) #0: Mon Jan 30 13:21:14 CST 2012
 r...@jackson.wistly.net:/usr/src/sys/arch/amd64/compile/GENERIC.MP
 
 So unless something very strange has happened since January 30, you
 appear to be Doing Something Wrong.
 


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 18:00:20 -0500
Josh Grosse j...@jggimi.homeip.net wrote:

 My apologies if the redactions cause improper attributions, but
 this has gotten very deep, and Dhu replied to himself.  For readability
 I've tried to wrap lines, too.
 
 On Tue, Feb 21, 2012 at 03:37:25PM -0700, Duncan Patton a Campbell wrote:
  On Tue, 21 Feb 2012 13:52:27 -0600
  Carson Chittom car...@wistly.net wrote:
  
   Duncan Patton a Campbell campb...@neotext.ca writes:
   
On Tue, 21 Feb 2012 09:16:34 -0700
Duncan Patton a Campbell campb...@neotext.ca wrote:
 ...[snip]...
 
So, the problem appears to be that you cannot check out a 5.0-Stable
source tree 
directly on a 5.0-Release system, but instead must prime the 
tree with the 
Release code and then checkout the Stable stuff on top.
   
   No.  You're wrong.  At least, I did exactly what you said I cannot
   do.  I installed (from CD) 5.0-release, and then cvs co'd -stable;
   and then installed per the usual directions.  From dmesg:
   
  
  read and weap.  i did.  when you do a cd install, it puts 
  src (sys), and xenocara in /usr.  that primes the src/sys
  tree.  if you then _move_ those trees out of the way entirely,
  and do a cvs checkout of the whole tree, well that what *I* saw
 
 Many people, for many years, have been able to checkout a tagged working
 directory from CVS.  I believe this is a PEBKAC, but not the one described.
 
 Because the error appeared to be an out-of-sync issue, I would have liked
 to see the output of:  
 
 ls -l `which config`
 cat /usr/src/sys/CVS/Tag
 

# ls -l `which config`
-r-xr-xr-x  1 root  bin  97464 Feb 21 12:29 /usr/sbin/config
# cat /usr/src/sys/CVS/Tag
TOPENBSD_5_0


 That would have at least confirmed if the kernel source tree and the config
 were of appropriate vintages.
 
 Dhu, an additional suggestion: instead of uname -anything, please use 
 sysctl kern.version.  It produces far more useful information about your 
 specific kernel. I sent you a note earlier today via Email, apparently it's 
 still in your MTA queue.

Yes.  I have it... now ;/

 


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: 5.0 Stable (amd64) build appears broken.

2012-02-21 Thread Duncan Patton a Campbell

On Tue, 21 Feb 2012 18:44:19 -0500
Josh Grosse j...@jggimi.homeip.net wrote:

 On Tue, Feb 21, 2012 at 04:28:11PM -0700, Duncan Patton a Campbell wrote:
  On Tue, 21 Feb 2012 18:00:20 -0500
  Josh Grosse j...@jggimi.homeip.net wrote:
  
   Because the error appeared to be an out-of-sync issue, I would have liked
   to see the output of:  
   
   ls -l `which config`
   cat /usr/src/sys/CVS/Tag
   
  
  # ls -l `which config`
  -r-xr-xr-x  1 root  bin  97464 Feb 21 12:29 /usr/sbin/config
 
 That executable was just built... so it is not the executable from
 5.0-release/amd64.  That should have an August 17 date stamp, if memory
 serves from earlier today.
 

Yes.  That's because it built after I untared the src and sys tars and 
cvs up'd them.  

  # cat /usr/src/sys/CVS/Tag
  TOPENBSD_5_0
 
 That's the right tag for 5.0-stable source.
 


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

CD/DVD CDROM support

2012-02-24 Thread Duncan Patton a Campbell

 0x00: apic 4 int 18, 
version 1.0, legacy support
ehci2 at pci0 dev 22 function 2 ATI SB700 USB2 rev 0x00: apic 4 int 17
usb2 at ehci2: USB revision 2.0
uhub2 at usb2 ATI EHCI root hub rev 2.00/1.00 addr 1
pchb1 at pci0 dev 24 function 0 AMD AMD64 10h HyperTransport rev 0x00
pchb2 at pci0 dev 24 function 1 AMD AMD64 10h Address Map rev 0x00
pchb3 at pci0 dev 24 function 2 AMD AMD64 10h DRAM Cfg rev 0x00
pchb4 at pci0 dev 24 function 3 AMD AMD64 10h Misc Cfg rev 0x00
pchb5 at pci0 dev 24 function 4 AMD AMD64 10h Link Cfg rev 0x00
usb3 at ohci0: USB revision 1.0
uhub3 at usb3 ATI OHCI root hub rev 1.00/1.00 addr 1
usb4 at ohci1: USB revision 1.0
uhub4 at usb4 ATI OHCI root hub rev 1.00/1.00 addr 1
usb5 at ohci2: USB revision 1.0
uhub5 at usb5 ATI OHCI root hub rev 1.00/1.00 addr 1
usb6 at ohci3: USB revision 1.0
uhub6 at usb6 ATI OHCI root hub rev 1.00/1.00 addr 1
isa0 at mainbus0
com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
umass0 at uhub0 port 1 configuration 1 interface 0 TE USB rev 2.00/1.00 addr 2
umass0: using SCSI over Bulk-Only
scsibus1 at umass0: 2 targets, initiator 0
sd1 at scsibus1 targ 1 lun 0: TE, USB, PMAP SCSI0 0/direct removable 
serial.12340800FFAF4AC9
sd1: 3932MB, 512 bytes/sector, 8052736 sectors
uhidev0 at uhub4 port 1 configuration 1 interface 0 Logitech USB Optical 
Mouse rev 2.00/54.00 addr 2
uhidev0: iclass 3/1
uhid at uhidev0 not configured
softraid0 at root
scsibus2 at softraid0: 256 targets
root on rd0a swap on rd0b dump on rd0b

-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Re: CD/DVD CDROM support VT6415 IDE

2012-02-26 Thread Duncan Patton a Campbell

On Sun, 26 Feb 2012 17:17:00 -0500
Brynet bry...@gmail.com wrote:

 On Sun, Feb 26, 2012 at 02:07:19AM -0700, Duncan Patton a Campbell wrote:
  I am also wondering if this caused a failure in my raid1 set which 
  kakked out into degraded mode at the same time I upgraded to 
  5.0, as the same ide path may be being used.
 
 The DVD drive is on a seperate IDE controller, so this is clearly
 unrelated. I can't help you with your softraid problems.
 
 On Sun, Feb 26, 2012 at 02:13:46PM -0700, Duncan Patton a Campbell wrote:
  woops no go on the cd.. was looking at the wrong mountpoint ... looks ok, 
  spins up, thats all.
 
 What's in the drive, the installation disk?
 
 # disklabel cd0
 ..
 
 If the drive isn't working with the generic PCI IDE driver, then as
 said, you'll need to find out what needs to be done in the VIA-specific
 code.
 
 There isn't anything else I can do for you, contact the developer that
 committed the change.
 
 -Bryan.

Is the dev for this here on misc or should I go hunting?

Basically the VIA Code (VT6415 IDE) for IDE CD/DVD drives 
appears to be hooped.  Am now gonna try the latest snap..

Dhu


-- 
Duncan Patton a Campbell is Dhu  Ne obliviscaris, vix ea nostro voco.

Kylin

2009-05-17 Thread Duncan Patton a Campbell

I just noticed this:

http://www.physorg.com/news161355225.html

about a secure os that's been under
development in China since around 2k
and is now being deployed by the Chinese
Gov.  

Interestingly, it is built for a hardened
CPU that, I'd guess, lacks many of the advanced
features of iNTel architecture cpus.  

Anybody have any more info on this?

Thanks,

Dhu

Re: Kylin

2009-05-17 Thread Duncan Patton a Campbell

On Sun, 17 May 2009 21:08:57 +0200
TomC!E! BodEC!r tomas.bod...@gmail.com wrote:

 I know,that's why they choose BSD-style licenced OS ;-)
 
 2009/5/17 Cem Kayali cemkay...@eticaret.com.tr:
 
  Do you really think Chineese governmnt make source public? Not all of course
  ;)
 
  Regards,
 
 
 
 
  Jesus Sanchez, 05/17/09 20:58:
 
  TomC!E! BodEC!r escribiC3:
 
  After quick search on web it looks like it's based on FreeBSD 5.3
  (initial version) with Windows like GUI.So it doesn't looks so secure
  now :-) But government agencies must have reason to receive money so
  why don't make wave about dangerous China with their new
  ultra-hyper-super secure system? Ofcourse that there can be
  interesting modifications.Maybe I will try it in Qemu :-)
 
 
  the chinese government really feels so vulnerable against U.S.?
  i mean, they say it like the WWIII will begin soon and we need
  to defend us on the cyberspace with our super-secure OS
 


They're prob'ly as worried about their own hacks as anyone elses,
but given they've built their own chip it's pretty clear they take
the problems with iNtel rom/microcode seriously enough.  Remember
the foo-rah when Sony came up with it's own 64bit chip?  All that
bs about Sadman buying up a gross of playstations 'cause they're
not trojaned with externally modifiable microcode ?

Dhu




  and after all they based it on FreeBSD? I'm a OpenBSD user and
  I really feel that I've enought privacy, don't need a
  super-secret-ultra-secure OS
  nor to say Made In China xD
 
 
  Dne 17. kvD ten 2009 19:28 TomC!E! BodEC!r tomas.bod...@gmail.com
  napsal(a):
 
 
  Everyone can try it
 
 
 
 
  http://www.honeytechblog.com/downlod-kylin-operating-system-by-chinaqingbo-wu
  /
 
 
  2009/5/17 Duncan Patton a Campbell campb...@neotext.ca:
 
 
  I just noticed this:
 
  http://www.physorg.com/news161355225.html
 
  about a secure os that's been under
  development in China since around 2k
  and is now being deployed by the Chinese
  Gov.
 
  Interestingly, it is built for a hardened
  CPU that, I'd guess, lacks many of the advanced
  features of iNTel architecture cpus.
 
  Anybody have any more info on this?
 
  Thanks,
 
  Dhu

Re: Kylin

2009-05-17 Thread Duncan Patton a Campbell

On Sun, 17 May 2009 20:32:59 -0400
(private) HKS hks.priv...@gmail.com wrote:

 2009/5/17 Toma Bodar tomas.bod...@gmail.com:
  I know,that's why they choose BSD-style licenced OS ;-)

 Yes, because China's respect for copyright and intellectual property
 is legendary.

 -HKS


Perhaps this is out of place here, but China's take on IP is that
the flow of ideas has, over the long haul of human history, been
more to the west than anything else.  Consider the economic benefit
accrued by the use of, say pound locks, and you will understand
what I mean.  And then there's gunpowder, invented as a sideline
to research into food preservatives, and then the Gordon Highlanders
show up on their doorstep...

Dhu



  2009/5/17 Cem Kayali cemkay...@eticaret.com.tr:
 
  Do you really think Chineese governmnt make source public? Not all of
 course
  ;)
 
  Regards,
 
 
 
 
  Jesus Sanchez, 05/17/09 20:58:
 
  TomC!E! BodEC!r escribiC3:
 
  After quick search on web it looks like it's based on FreeBSD 5.3
  (initial version) with Windows like GUI.So it doesn't looks so secure
  now :-) But government agencies must have reason to receive money so
  why don't make wave about dangerous China with their new
  ultra-hyper-super secure system? Ofcourse that there can be
  interesting modifications.Maybe I will try it in Qemu :-)
 
 
  the chinese government really feels so vulnerable against U.S.?
  i mean, they say it like the WWIII will begin soon and we need
  to defend us on the cyberspace with our super-secure OS
 
  and after all they based it on FreeBSD? I'm a OpenBSD user and
  I really feel that I've enought privacy, don't need a
  super-secret-ultra-secure OS
  nor to say Made In China xD
 
 
  Dne 17. kvD ten 2009 19:28 TomC!E! BodEC!r tomas.bod...@gmail.com
  napsal(a):
 
 
  Everyone can try it
 
 
 
 
 

http://www.honeytechblog.com/downlod-kylin-operating-system-by-chinaqingbo-wu
  /
 
 
  2009/5/17 Duncan Patton a Campbell campb...@neotext.ca:
 
 
  I just noticed this:
 
  http://www.physorg.com/news161355225.html
 
  about a secure os that's been under
  development in China since around 2k
  and is now being deployed by the Chinese
  Gov.
 
  Interestingly, it is built for a hardened
  CPU that, I'd guess, lacks many of the advanced
  features of iNTel architecture cpus.
 
  Anybody have any more info on this?
 
  Thanks,
 
  Dhu

Re: rt.fm CVS Mirror going funny?

2009-05-18 Thread Duncan Patton a Campbell

On Sun, 17 May 2009 03:29:13 -0400
Jeremy Huiskamp jer...@kamper.ca wrote:

 On 5/17/09 2:07 AM, Aaron W. Hsu wrote:
  Hey All,
  
  Has anyone else noticed issues with pulling src/sbin/ping/ping.c from 
  anon...@rt.fm:/cvs? I get this error 
  
  cvs [server aborted]: EOF while looking for end of string \
  in RCS file /cvs/src/sbin/ping/ping.c,v
  
  Does anyone know what might cause this? I tried removing it and refetching 
  it, as well as using the -C option.
  
 
 Yes, always in that spot.  I stopped using this mirror a while ago 
 because of this.
 
 

Something odd about that hostname rt.fm, I'd say.

Dhu

Re: OpenBSD 3.4 hanging after boot

2009-05-18 Thread Duncan Patton a Campbell

On Sat, 16 May 2009 15:46:35 -0400
Nick Holland n...@holland-consulting.net wrote:

 
 Also...32M would be about the minimum amount of RAM you would want to
 install on at the moment.  If you don't have much of a scrap pile, you
 may have difficulty expanding old machines to the useful minimum.
 
 Nick.
 
 

16M will generally work.

Dhu

Re: Raid controller?

2009-05-18 Thread Duncan Patton a Campbell

On Fri, 15 May 2009 20:40:44 -0600 (MDT)
Theo de Raadt dera...@cvs.openbsd.org wrote:

 On Fri, 15 May 2009, Chuck Robey wrote:
 
  I'm currently trying to verify something, because while I know makefiles 
  really
  well, the ones for the FreeBSD kernel are too indirect for me, so I can't 
  yet
  verify about the twa driver.
 
 Doesn't make any difference, 3Ware was abandoned by the project many years
 ago due to lack of support. There are many compatible cards out there:
 
  http://openbsd.org/i386.html#hardware
 
 Compare the drivers with the with bioctl compatibility list.
 
 No kidding.
 
 If any of the people we talked to at 3ware weren't such
 LYING BAGS OF HYPOCRITICAL SHIT we'd support their hardware

Hard words, Theo.  Do you think anyone you talked to 
could actually understand what you were sayin'?

Dhu

 as well as we support just about everything else in the
 industry.
 
 We did not put them into that lofty position of not being
 supported by OpenBSD.  They put themselves there.  If I
 was angry about it I might say I hope they are happy with
 the result, but the fact is I stopped caring about it ages
 ago.
 
 You came to this mailing list and you brought up 3ware
 because you don't know how to use google.

Re: FW: Raid controller?

2009-05-18 Thread Duncan Patton a Campbell

On Mon, 18 May 2009 10:40:29 -0600
Theo de Raadt dera...@cvs.openbsd.org wrote:

   If any of the people we talked to at 3ware weren't such LYING BAGS OF 
   HYPOCRITICAL SHIT we'd support their hardware
  
  Hard words, Theo.  Do you think anyone you talked to could actually
  understand what you were sayin'?
 
 I was not the only person who talked to 3Ware.  Over the last 10 years
 numerous developers and users have gotten gotten enough hope to try to
 talk to them, and have received promises of forthcoming documentation.
 
 All of those promises were lies.  Every person we talked to at 3ware
 is unaware what a promise means.  And it goes all the way up to
 members of the board and the vice presidential level.  They are LYING
 BAGS OF HYPOCRITICAL SHIT.
 

Ok, a long history... sometimes I find it difficult to
differentiate malice from plain blind incompetence.

Dhu

Re: Kylin

2009-05-18 Thread Duncan Patton a Campbell

On Mon, 18 May 2009 11:08:33 -0400
(private) HKS hks.priv...@gmail.com wrote:

 2009/5/18 Toma Bodar tomas.bod...@gmail.com:
  Common,you think that big western companies which have support from
  western governments care about it?And please don't make white knight
  from western civilization.Everywhere are pros and cons.What type of
  copyright and intellectual property you think?Like Disney which have
  stories based on older stories,but he has law from government on it
  now so original makers has nothing and Disney takes all?And when end
  of this copyright is near some magic happen in government and Disney
  (and others) has next 20 or 50 years.Sounds very respectable for
  copyright and intellectual property of original authors ;-)
 
  Or maybe you think something like we have.When you create your own
  song and sing it to people somewhere outside of your flat you must pay
  to OSA(something like BSA terrorists,but local).WTH is that.Sounds
  really like care about my copyright - I must pay for my own song ;-)
 
  Informations are here for share and we can move forward thanks to
  them.If some idiot have patent on double-click then what?One developer
  must incorporated triple-click to his product,next four-click and so
  on?Sounds like history - Earth is just pancake and everyone who want
  to find another idea must use our idea or he will be killed and who
  use our idea without our licence will be killed too.Really we need
  those times back??

 For Christ's sake, get off your fucking high horse. My quip was in
 response to your implication that China chose a BSD license because it
 fit better with their intentions than GPL or similar. As if they gave
 a shit.


Actually I think their decision was quite telling.  The Chinese
Gove is not unaware of intellectual property concerns, they
just don't give a shit for western idiots who patent wonton balls.

Dhu



 -HKS


 
  2009/5/18 (private) HKS hks.priv...@gmail.com:
  2009/5/17 Toma  Bod ar tomas.bod...@gmail.com:
  I know,that's why they choose BSD-style licenced OS ;-)
 
  Yes, because China's respect for copyright and intellectual property
  is legendary.
 
  -HKS
 
 
  2009/5/17 Cem Kayali cemkay...@eticaret.com.tr:
 
  Do you really think Chineese governmnt make source public? Not all of
  course
  ;)
 
  Regards,
 
 
 
 
  Jesus Sanchez, 05/17/09 20:58:
 
  TomC!E! BodEC!r escribiC3:
 
  After quick search on web it looks like it's based on FreeBSD 5.3
  (initial version) with Windows like GUI.So it doesn't looks so
secure
  now :-) But government agencies must have reason to receive money so
  why don't make wave about dangerous China with their new
  ultra-hyper-super secure system? Ofcourse that there can be
  interesting modifications.Maybe I will try it in Qemu :-)
 
 
  the chinese government really feels so vulnerable against U.S.?
  i mean, they say it like the WWIII will begin soon and we need
  to defend us on the cyberspace with our super-secure OS
 
  and after all they based it on FreeBSD? I'm a OpenBSD user and
  I really feel that I've enought privacy, don't need a
  super-secret-ultra-secure OS
  nor to say Made In China xD
 
 
  Dne 17. kvD ten 2009 19:28 TomC!E! BodEC!r tomas.bod...@gmail.com
  napsal(a):
 
 
  Everyone can try it
 
 
 
 
 
 

http://www.honeytechblog.com/downlod-kylin-operating-system-by-chinaqingbo-wu
  /
 
 
  2009/5/17 Duncan Patton a Campbell campb...@neotext.ca:
 
 
  I just noticed this:
 
  http://www.physorg.com/news161355225.html
 
  about a secure os that's been under
  development in China since around 2k
  and is now being deployed by the Chinese
  Gov.
 
  Interestingly, it is built for a hardened
  CPU that, I'd guess, lacks many of the advanced
  features of iNTel architecture cpus.
 
  Anybody have any more info on this?
 
  Thanks,
 
  Dhu

Re: SMTPD TLS Authentication?

2009-05-31 Thread Duncan Patton a Campbell

On Sat, 30 May 2009 18:15:42 -0700
Ben Goren b...@trumpetpower.com wrote:

 On 2009 May 30, at 5:05 PM, Gilles Chehade wrote:
 
  On Sat, May 30, 2009 at 08:01:49PM -0400, Aaron W. Hsu wrote:
  Hello SMTPD Gurus,
 
  I have noticed some TLS based authentication stuff in the  
  smtpd.conf(5)
  man page. I don't see more details about how it works, though. How
  far along is the TLS based stuff? I'd like to test smtpd with my
  email server on my local machine, which operates as a client to my
  sendmail based server remotely via TLS Authentication. Is this in
  their yet, or does the TLS work differently right now?
 
  Thanks! And, sorry for bugging you if this should be obvious.
 
 
  It should just work :-)
 
  If it doesn't let me know, I'm in an ssl mood right now
 
 Since you're offering
 
 TLS I got to work just by reading starttls(8) and making sure the keys  
 were in the right place.
 
 That doesn't get you SMTP AUTH, though. It's been at least a few weeks  
 since I tried, so I'm afraid I don't remember the details, but I tried  
 installing the Cyrus SASL package without success. That may or may not  
 have been due to my idiocy -- but I figured I'd ask:
 
 What's the preferred method of configuring Sendmail to require a  
 password for relaying mail from popular MUAs like Apple Mail?
 
 A nudge in the proper direction -- man pages, packages, etc. -- to get  
 me started in the right direction would be most welcome.
 

I'd like that.  

Last time I set up a secure mail server there was nothing to talk to...

Dhu

 Cheers,
 
 b
 
 [demime 1.01d removed an attachment of type application/pkcs7-signature which 
 had a name of smime.p7s]

Re: Is Jesus God

2009-06-02 Thread Duncan Patton a Campbell

On Mon, 11 May 2009 16:40:56 -0500
Marco Peereboom sl...@peereboom.us wrote:

 no
 

Well, yes, but only in the Hindu sense, if you want
to maintain consistency ;-)

Dhu


 On Mon, May 11, 2009 at 03:24:15PM -0500, James wrote:
  !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.0 Transitional//EN
  HTMLHEAD
  META http-equiv=Content-Type content=text/html; charset=unicode
  META content=MSHTML 6.00.6001.18226 name=GENERATOR/HEAD
  BODY
  PHere is your Topic of the Month. Please log in at A 
  href=http://www.jesus4athiest.org;www.jesus4athiest.org/A/P
  PTopic: nbsp;Is Jesus God/P
  Ppeace-james/P/BODY/HTML

pf scrub error on upgrade to snapshot-1

2009-06-03 Thread Duncan Patton a Campbell

Howdy List?

I just upgraded to the snapshot-1 because the current, June 3, goes into
an error on encountering a scsi raid.  So I dropped back to the May 31
and now pf doesn't like the scrub syntax..

pfctl -f pf.conf 
pf.conf:63: syntax error
pfctl: Syntax error in config file: pf rules not loaded

on

scrub in all
or
scrub in on ext_if_vr0 all

as line 63.  If commented out, everything seems (so far) to work as before.

Following is the dmesg for this machine.  

Thanks,

Dhu


OpenBSD 4.5-current (GENERIC.MP) #18: Sun May 31 10:35:36 MDT 2009
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.04 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR
real mem  = 2146988032 (2047MB)
avail mem = 2067677184 (1971MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 01/04/06, BIOS32 rev. 0 @ 0xfb180, SMBIOS 
rev. 2.3 @ 0xf0100 (39 entries)
bios0: vendor Award Software International, Inc. version F10 date 01/04/2006
bios0: Gigabyte Technology Co., Ltd. 8I945P-G
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP MCFG APIC
acpi0: wakeup devices PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5) 
HUB0(S5) USB0(S1) USB1(S1) USB2(S1) USB3(S1) USBE(S1) AC97(S5) MC97(S5) 
AZAL(S5) PCI0(S5)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: apic clock running at 200MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz
cpu1: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR
ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 2
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (PEX0)
acpiprt2 at acpi0: bus -1 (PEX1)
acpiprt3 at acpi0: bus 3 (PEX2)
acpiprt4 at acpi0: bus -1 (PEX3)
acpiprt5 at acpi0: bus -1 (PEX4)
acpiprt6 at acpi0: bus -1 (PEX5)
acpiprt7 at acpi0: bus 4 (HUB0)
acpicpu0 at acpi0
acpicpu1 at acpi0
acpibtn0 at acpi0: PWRB
bios0: ROM list: 0xc/0xd000 0xd/0x5800
cpu0: Enhanced SpeedStep disabled by BIOS
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x81
azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 
16 (irq 7)
azalia0: RIRB time out
azalia0: codecs: Realtek ALC882
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 16 
(irq 7)
pci1 at ppb0 bus 1
ppb1 at pci1 dev 0 function 0 vendor PLX, unknown product 0x8111 rev 0x21
pci2 at ppb1 bus 2
ohci0 at pci2 dev 0 function 0 NEC USB rev 0x43: apic 2 int 16 (irq 7), 
version 1.0
ohci1 at pci2 dev 0 function 1 NEC USB rev 0x43: apic 2 int 17 (irq 4), 
version 1.0
ehci0 at pci2 dev 0 function 2 NEC USB rev 0x04: apic 2 int 18 (irq 5)
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 NEC EHCI root hub rev 2.00/1.00 addr 1
usb1 at ohci0: USB revision 1.0
uhub1 at usb1 NEC OHCI root hub rev 1.00/1.00 addr 1
usb2 at ohci1: USB revision 1.0
uhub2 at usb2 NEC OHCI root hub rev 1.00/1.00 addr 1
ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int 18 
(irq 5)
pci3 at ppb2 bus 3
bge0 at pci3 dev 0 function 0 Broadcom BCM5789 rev 0x11, BCM5750 B1 (0x4101): 
apic 2 int 18 (irq 5), address 00:14:85:15:50:b5
brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 
(irq 3)
uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 19 
(irq 10)
uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 18 
(irq 5)
uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 16 
(irq 7)
ehci1 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 
(irq 3)
usb3 at ehci1: USB revision 2.0
uhub3 at usb3 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1
pci4 at ppb3 bus 4
ahc0 at pci4 dev 0 function 0 Adaptec AHA-2940U2 U2 rev 0x00: apic 2 int 20 
(irq 11)
scsibus0 at ahc0: 16 targets, initiator 7
sd0 at scsibus0 targ 0 lun 0: FUJITSU, MAN3184MP, 0108 SCSI3 0/direct fixed
sd0: 17522MB, 512 bytes/sec, 35885448 sec total
vr0 at pci4 dev 1 function 0 VIA VT6105 RhineIII rev 0x86: apic 2 int 19 (irq 
10), address 00:15:e9:87:4a:38
ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 4: OUI 0x004063, 
model 0x0034
vga1 at pci4 dev 2 function 0 ATI Radeon 9200 PRO rev 0x01
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
radeondrm0 at vga1: apic 2 int 18 (irq 5)
drm0 at radeondrm0
ATI Radeon 9200 PRO Sec rev 0x01 at pci4 dev 2 function 1 not configured
ichpcib0

Re: pf scrub error on upgrade to snapshot-1

2009-06-04 Thread Duncan Patton a Campbell

Thanks.  It seems tho' that I might be trying to revert even further...
right now I've frozen up twice using the May 31 snapshot and the 
current install45.iso died on upgrade...  

Dhu

On Wed, 3 Jun 2009 22:51:40 -0700
James Records james.reco...@gmail.com wrote:

 the new match keyword is what your looking for:
 
 http://www.openbsd.org/faq/current.html#20090406
 
 J
 
 On Wed, Jun 3, 2009 at 10:36 PM, Duncan Patton a Campbell 
 campb...@neotext.ca wrote:
 
  Howdy List?
 
  I just upgraded to the snapshot-1 because the current, June 3, goes into
  an error on encountering a scsi raid.  So I dropped back to the May 31
  and now pf doesn't like the scrub syntax..
 
  pfctl -f pf.conf
  pf.conf:63: syntax error
  pfctl: Syntax error in config file: pf rules not loaded
 
  on
 
  scrub in all
  or
  scrub in on ext_if_vr0 all
 
  as line 63.  If commented out, everything seems (so far) to work as before.
 
  Following is the dmesg for this machine.
 
  Thanks,
 
  Dhu
 
 
  OpenBSD 4.5-current (GENERIC.MP) #18: Sun May 31 10:35:36 MDT 2009
 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
  cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.04 GHz
  cpu0:
  FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR
  real mem  = 2146988032 (2047MB)
  avail mem = 2067677184 (1971MB)
  mainbus0 at root
  bios0 at mainbus0: AT/286+ BIOS, date 01/04/06, BIOS32 rev. 0 @ 0xfb180,
  SMBIOS rev. 2.3 @ 0xf0100 (39 entries)
  bios0: vendor Award Software International, Inc. version F10 date
  01/04/2006
  bios0: Gigabyte Technology Co., Ltd. 8I945P-G
  acpi0 at bios0: rev 0
  acpi0: tables DSDT FACP MCFG APIC
  acpi0: wakeup devices PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5)
  HUB0(S5) USB0(S1) USB1(S1) USB2(S1) USB3(S1) USBE(S1) AC97(S5) MC97(S5)
  AZAL(S5) PCI0(S5)
  acpitimer0 at acpi0: 3579545 Hz, 24 bits
  acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
  cpu0 at mainbus0: apid 0 (boot processor)
  cpu0: apic clock running at 200MHz
  cpu1 at mainbus0: apid 1 (application processor)
  cpu1: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz
  cpu1:
  FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR
  ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins
  ioapic0: misconfigured as apic 0, remapped to apid 2
  acpiprt0 at acpi0: bus 0 (PCI0)
  acpiprt1 at acpi0: bus 1 (PEX0)
  acpiprt2 at acpi0: bus -1 (PEX1)
  acpiprt3 at acpi0: bus 3 (PEX2)
  acpiprt4 at acpi0: bus -1 (PEX3)
  acpiprt5 at acpi0: bus -1 (PEX4)
  acpiprt6 at acpi0: bus -1 (PEX5)
  acpiprt7 at acpi0: bus 4 (HUB0)
  acpicpu0 at acpi0
  acpicpu1 at acpi0
  acpibtn0 at acpi0: PWRB
  bios0: ROM list: 0xc/0xd000 0xd/0x5800
  cpu0: Enhanced SpeedStep disabled by BIOS
  pci0 at mainbus0 bus 0: configuration mode 1 (bios)
  pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x81
  azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2
  int 16 (irq 7)
  azalia0: RIRB time out
  azalia0: codecs: Realtek ALC882
  audio0 at azalia0
  ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 16
  (irq 7)
  pci1 at ppb0 bus 1
  ppb1 at pci1 dev 0 function 0 vendor PLX, unknown product 0x8111 rev 0x21
  pci2 at ppb1 bus 2
  ohci0 at pci2 dev 0 function 0 NEC USB rev 0x43: apic 2 int 16 (irq 7),
  version 1.0
  ohci1 at pci2 dev 0 function 1 NEC USB rev 0x43: apic 2 int 17 (irq 4),
  version 1.0
  ehci0 at pci2 dev 0 function 2 NEC USB rev 0x04: apic 2 int 18 (irq 5)
  usb0 at ehci0: USB revision 2.0
  uhub0 at usb0 NEC EHCI root hub rev 2.00/1.00 addr 1
  usb1 at ohci0: USB revision 1.0
  uhub1 at usb1 NEC OHCI root hub rev 1.00/1.00 addr 1
  usb2 at ohci1: USB revision 1.0
  uhub2 at usb2 NEC OHCI root hub rev 1.00/1.00 addr 1
  ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int 18
  (irq 5)
  pci3 at ppb2 bus 3
  bge0 at pci3 dev 0 function 0 Broadcom BCM5789 rev 0x11, BCM5750 B1
  (0x4101): apic 2 int 18 (irq 5), address 00:14:85:15:50:b5
  brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0
  uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23
  (irq 3)
  uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 19
  (irq 10)
  uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 18
  (irq 5)
  uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 16
  (irq 7)
  ehci1 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23
  (irq 3)
  usb3 at ehci1: USB revision 2.0
  uhub3 at usb3 Intel EHCI root hub rev 2.00/1.00 addr 1
  ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1
  pci4 at ppb3 bus 4
  ahc0 at pci4 dev 0 function 0 Adaptec AHA-2940U2 U2 rev 0x00: apic 2 int
  20 (irq 11)
  scsibus0 at ahc0: 16 targets

Re: Radeon 9200 PRO + radeondrm freezes OpenBSD 4.5

2009-06-05 Thread Duncan Patton a Campbell

Howdy Victor?

I appear to be having the same problems with the same card.

Do you have any news?  

Thanks,

Dhu


On Fri, 29 May 2009 10:33:21 +0200
Viktor Varheit viktorvarh...@gmx.de wrote:

 Hi,
 
 according to radeon(4) my graphics card is supported, but I
 cannot get hardware acceleration to work. Booting with
 disable radeondrm in UKC and then running startx works
 fine. Doing the same with enable radeondrm (which is the
 default in the GENERIC kernel) appears to freeze the machine.
 The screen goes blank, and the monitor enters standby mode.
 
 Sometimes the computer shuts down after pressing the power
 button, but most of the time it can only be forced off by
 holding the power button.
 
 Trying several options in xorg.conf did not advance things.
 
 I booted with a serial console to see if any messages appeared
 after entering startx. This is what I got:
 
 radeondrm0: Setting GART location based on new memory map
 radeondrm0: writeback test failed
 radeondrm0: wait idle failed status : 0x80010140 0x
 radeondrm0: wait idle failed status : 0x80010140 0x
 radeondrm0: wait idle failed status : 0x80010140 0x
 ...
 
 The last message is repeated over and over until the machine
 appears to freeze. The time it takes to get to that point
 varies.
 
 After setting 'Option AGPFastWrite on' in xorg.conf
 no messages were output at all, but that was the only
 apparent difference.
 
 Setting AccelMethod to EXA also did not change anything.
 
 Using no xorg.conf at all also did not work.
 
 Anyway, here's my xorg.conf and dmesg. I hope someone
 can give me a hint.
 
 Vic
 
 
 +++ xorg.conf +++
 Section ServerLayout
   Identifier X.org Configured
   Screen  0  Screen0 0 0
   InputDeviceMouse0 CorePointer
   InputDeviceKeyboard0 CoreKeyboard
 EndSection
 
 Section Files
   ModulePath   /usr/X11R6/lib/modules
   FontPath /usr/X11R6/lib/X11/fonts/misc/
   FontPath /usr/X11R6/lib/X11/fonts/TTF/
   FontPath /usr/X11R6/lib/X11/fonts/OTF
   FontPath /usr/X11R6/lib/X11/fonts/Type1/
   FontPath /usr/X11R6/lib/X11/fonts/100dpi/
   FontPath /usr/X11R6/lib/X11/fonts/75dpi/
 EndSection
 
 Section Module
   Load  dbe
   Load  dri
   Load  extmod
   Load  glx
   Load  freetype
 EndSection
 
 Section InputDevice
   Identifier  Keyboard0
   Driver  kbd
 EndSection
 
 Section InputDevice
   Identifier  Mouse0
   Driver  mouse
   Option  Protocol wsmouse
   Option  Device /dev/wsmouse
   Option  ZAxisMapping 4 5 6 7
 EndSection
 
 Section Monitor
   #DisplaySize  340   270 # mm
   Identifier   Monitor0
   VendorName   ENC
   ModelNameL557
   HorizSync24.0 - 80.0
   VertRefresh  50.0 - 75.0
   Option  DPMS
 EndSection
 
 Section Device
   Option AGPMode x4
 Option BusType AGP# [str]
 #Option AGPFastWrite on   # [bool]
 #Option AccelMethod EXA   # str
 Option DRI on # [bool]
   Identifier  Card0
   Driver  radeon
   VendorName  ATI
   BoardName   Radeon 9200 PRO
   BusID   PCI:1:0:0
 EndSection
 
 Section Screen
   Identifier Screen0
   Device Card0
   MonitorMonitor0
   SubSection Display
   Viewport   0 0
   Depth 1
   EndSubSection
   SubSection Display
   Viewport   0 0
   Depth 4
   EndSubSection
   SubSection Display
   Viewport   0 0
   Depth 8
   EndSubSection
   SubSection Display
   Viewport   0 0
   Depth 15
   EndSubSection
   SubSection Display
   Viewport   0 0
   Depth 16
   EndSubSection
   SubSection Display
   Viewport   0 0
   Depth 24
   EndSubSection
 EndSection
 
 +++ dmesg +++
 OpenBSD 4.5-stable (GENERIC) #0: Sun May  3 11:29:20 CEST 2009
 v...@overstolz.my.domain:/usr/src/sys/arch/i386/compile/GENERIC
 cpu0: AMD Athlon(tm) XP 2000+ (AuthenticAMD 686-class, 256KB L2 cache) 1.68 
 GHz
 cpu0: 
 FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE
 real mem  = 804810752 (767MB)
 avail mem = 769404928 (733MB)
 mainbus0 at root
 bios0 at mainbus0: AT/286+ BIOS, date 10/18/06, BIOS32 rev. 0 @ 0xfdb10, 
 SMBIOS rev. 2.3 @ 0xf0630 (21 entries)
 bios0: vendor American Megatrends Inc. version P2.80 date 10/18/2006
 bios0: American Megatrends Inc. K7S41GX
 acpi0 at bios0: rev 0
 acpi0: tables DSDT FACP APIC
 acpi0: wakeup devices PS2M(S4) PS2K(S4) UAR1(S4) USB1(S4) USB2(S4) EHCI(S4) 
 LAN_(S4) MDM_(S4) AUD_(S4) PCI0(S4)
 acpitimer0 at acpi0: 3579545 Hz, 24 bits
 acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
 cpu0 at mainbus0: apid 0 (boot processor)
 cpu0: apic clock running at 268MHz
 ioapic0 at

Re: Radeon 9200 PRO + radeondrm freezes OpenBSD 4.5

2009-06-05 Thread Duncan Patton a Campbell

On Fri, 5 Jun 2009 06:54:05 -0600
Duncan Patton a Campbell campb...@neotext.ca wrote:

 Howdy Victor?
 
 I appear to be having the same problems with the same card.
 
 Do you have any news?  
 
 Thanks,
 
 Dhu
 

I read somewhere to disable the radeondrm driver 
in kernel and this has worked so far.

Dhu

 
 On Fri, 29 May 2009 10:33:21 +0200
 Viktor Varheit viktorvarh...@gmx.de wrote:
 
  Hi,
  
  according to radeon(4) my graphics card is supported, but I
  cannot get hardware acceleration to work. Booting with
  disable radeondrm in UKC and then running startx works
  fine. Doing the same with enable radeondrm (which is the
  default in the GENERIC kernel) appears to freeze the machine.
  The screen goes blank, and the monitor enters standby mode.
  
  Sometimes the computer shuts down after pressing the power
  button, but most of the time it can only be forced off by
  holding the power button.
  
  Trying several options in xorg.conf did not advance things.
  
  I booted with a serial console to see if any messages appeared
  after entering startx. This is what I got:
  
  radeondrm0: Setting GART location based on new memory map
  radeondrm0: writeback test failed
  radeondrm0: wait idle failed status : 0x80010140 0x
  radeondrm0: wait idle failed status : 0x80010140 0x
  radeondrm0: wait idle failed status : 0x80010140 0x
  ...
  
  The last message is repeated over and over until the machine
  appears to freeze. The time it takes to get to that point
  varies.
  
  After setting 'Option AGPFastWrite on' in xorg.conf
  no messages were output at all, but that was the only
  apparent difference.
  
  Setting AccelMethod to EXA also did not change anything.
  
  Using no xorg.conf at all also did not work.
  
  Anyway, here's my xorg.conf and dmesg. I hope someone
  can give me a hint.
  
  Vic
  
  
  +++ xorg.conf +++
  Section ServerLayout
  Identifier X.org Configured
  Screen  0  Screen0 0 0
  InputDeviceMouse0 CorePointer
  InputDeviceKeyboard0 CoreKeyboard
  EndSection
  
  Section Files
  ModulePath   /usr/X11R6/lib/modules
  FontPath /usr/X11R6/lib/X11/fonts/misc/
  FontPath /usr/X11R6/lib/X11/fonts/TTF/
  FontPath /usr/X11R6/lib/X11/fonts/OTF
  FontPath /usr/X11R6/lib/X11/fonts/Type1/
  FontPath /usr/X11R6/lib/X11/fonts/100dpi/
  FontPath /usr/X11R6/lib/X11/fonts/75dpi/
  EndSection
  
  Section Module
  Load  dbe
  Load  dri
  Load  extmod
  Load  glx
  Load  freetype
  EndSection
  
  Section InputDevice
  Identifier  Keyboard0
  Driver  kbd
  EndSection
  
  Section InputDevice
  Identifier  Mouse0
  Driver  mouse
  Option  Protocol wsmouse
  Option  Device /dev/wsmouse
  Option  ZAxisMapping 4 5 6 7
  EndSection
  
  Section Monitor
  #DisplaySize  340   270 # mm
  Identifier   Monitor0
  VendorName   ENC
  ModelNameL557
  HorizSync24.0 - 80.0
  VertRefresh  50.0 - 75.0
  Option  DPMS
  EndSection
  
  Section Device
  Option AGPMode x4
  Option BusType AGP  # [str]
  #Option AGPFastWrite on # [bool]
  #Option AccelMethod EXA # str
  Option DRI on   # [bool]
  Identifier  Card0
  Driver  radeon
  VendorName  ATI
  BoardName   Radeon 9200 PRO
  BusID   PCI:1:0:0
  EndSection
  
  Section Screen
  Identifier Screen0
  Device Card0
  MonitorMonitor0
  SubSection Display
  Viewport   0 0
  Depth 1
  EndSubSection
  SubSection Display
  Viewport   0 0
  Depth 4
  EndSubSection
  SubSection Display
  Viewport   0 0
  Depth 8
  EndSubSection
  SubSection Display
  Viewport   0 0
  Depth 15
  EndSubSection
  SubSection Display
  Viewport   0 0
  Depth 16
  EndSubSection
  SubSection Display
  Viewport   0 0
  Depth 24
  EndSubSection
  EndSection
  
  +++ dmesg +++
  OpenBSD 4.5-stable (GENERIC) #0: Sun May  3 11:29:20 CEST 2009
  v...@overstolz.my.domain:/usr/src/sys/arch/i386/compile/GENERIC
  cpu0: AMD Athlon(tm) XP 2000+ (AuthenticAMD 686-class, 256KB L2 cache) 
  1.68 GHz
  cpu0: 
  FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE
  real mem  = 804810752 (767MB)
  avail mem = 769404928 (733MB)
  mainbus0 at root
  bios0 at mainbus0: AT/286+ BIOS, date 10/18/06, BIOS32 rev. 0 @ 0xfdb10, 
  SMBIOS rev. 2.3 @ 0xf0630 (21 entries)
  bios0: vendor American Megatrends Inc. version P2.80 date 10/18/2006
  bios0: American Megatrends Inc. K7S41GX
  acpi0 at bios0: rev 0
  acpi0: tables DSDT FACP APIC
  acpi0: wakeup devices PS2M(S4) PS2K(S4) UAR1(S4) USB1(S4) USB2

Re: Cannot Boot with Intel D201GLY Motherboard

2009-07-04 Thread Duncan Patton a Campbell

On Sat, 4 Jul 2009 20:21:12 -0400
Hendrickson, Kenneth khend...@harris.com wrote:

 Disabling acpi (in OpenBSD 4.5) does not work.
 
 Any help would be appreciated.  I do *not* want to lose my old data!
 

Buy a new /root disk.  They are cheap.

Dhu

 Thanks,
 Ken Hendrickson
 
 
 
 
 -Original Message-
 From: Mike Belopuhov [mailto:mi...@lucifier.net]
 Sent: Sat 7/4/2009 6:39 PM
 To: Hendrickson, Kenneth
 Subject: Re: Cannot Boot with Intel D201GLY Motherboard
 
 
 you have to put a PCI video card in. it's SiS video that blows things up.
 though, as RAMDISK kernel works, surely it's openbsd defficiency. nobody
 has figured out what's actually is a problem because of the lack of this
 hardware.
 
 On Sat, Jul 04, 2009 at 17:00 -0400, Hendrickson, Kenneth wrote:
  Cannot Boot with Intel D201GLY Motherboard
 
  Disk is 120GB PATA IDE
 
  dmesg, fdisk output, and disklabel output are all attached
  OpenBSD.PDR is also attached
 
  I have Googled for problems/answers, and still run into a dead end.
 
  There must be a requirement which is not stated in the documentation,
  which I am not following.  Please help.
 
  (I am an experienced OpenBSD user, having used OpenBSD continuously
  since 1998, and having built my own kernels/userland, and also have
  built OpenBSD for embedded systems.)
 
  The instructions for booting from NTLDR (Windows 2000) do not work.
  As soon as the messages get to the CPU, the system reboots.  Booting
  never works, either from the OpenBSD partition, or from NTLDR from
  Windows 2000.  I have included my OpenBSD.PDR file for examination.
 
  Originally, my OpenBSD partition was #4 in fdisk.  I added the #1
  partition, and had both #1 and #4 set to a6 for OpenBSD.  That
  didn't work.  I then chose only #1 partition to be a6 for OpenBSD,
  and #4 partition was set to da for No Filesystem.  That also
  didn't work.  Please note that my entire OpenBSD / filesystem is
  within the 1024 cylinder boundary.  The /boot file is totally
  contained within the 1024 cylinder boundary.  It still won't boot.
  It won't boot on its own, nor will it boot from the Windows 2000
  NTLDR bootloader.
 
  Also note that while my fdisk and disklabel indicates Linux
  partitions, none of them have yet been installed.  I installed
  Windows 2000 first, then OpenBSD.  Since I could never get OpenBSD
  to boot, I have not yet installed Linux.
 
  Please help if you can.
 
  Thank you,
  Kenneth J. Hendrickson
 
  [demime 1.01d removed an attachment of type application/octet-stream which
 had a name of dmesg]
 
  [demime 1.01d removed an attachment of type application/octet-stream which
 had a name of fdisk]
 
  [demime 1.01d removed an attachment of type application/octet-stream which
 had a name of disklabel]
 
  [demime 1.01d removed an attachment of type application/octet-stream which
 had a name of OpenBSD.PDR]

Re: freetds and iodbc to access Microsoft SQL Server 2005

2009-07-16 Thread Duncan Patton a Campbell

On Tue, 14 Jul 2009 18:13:56 -0500
Vijay Sankar vsan...@foretell.ca wrote:

 I am trying to access a database hosted on a Microsoft SQL Server 2005 
 using FreeTDS and iodbc from OpenBSD 4.5 -stable (also tried OpenBSD 
 -current as of today). Unfortunately none of the documents I have read 
 so far or the various trials/tests have helped. I can use tsql and 
 access the SQL Server but I am not able to use iodbcadm-gtk to add a DSN 
 etc.
 
 The standard package as well as the msdblib flavor did not work for me 
 and as a result I made a few changes to the Makefile
 
 Looks like I made some small progress however, I get the error
 
 HYC00 [FreeTDS][SQL Server]Driver not capable
 08001: [FreeTDS][SQL Server]Unable to connect to data source
 
[]
 
 I hope the list can give me any advice or pointers on what is the best 
 way to access data from a SQL Server 2005 database from OpenBSD
 
 Thanks very much,
 
 Vijay
 
 -- 
 Vijay Sankar, M.Eng., P.Eng.
 ForeTell Technologies Limited
 59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6
 Phone: (204) 885-9535, E-Mail: vsan...@foretell.ca
 
 

Here is a trivialized interface to mssql using freetds and php.
It supports reads and writes.

Dhu

?php
/*
Copyright (C) 2005  Duncan Patton a Campbell aka Duncan Duibh (Bzerkley 
terms)

Duncan Patton a Campbell can be contacted at campb...@neotext.ca, or 
campb...@indx.ca.
sqNdhu.php -- general purpose access to SQL databases .. here implemented for 
commandline operations
php -f sqNdhu.php
line one on stdin == MSSQL/MSHOST:1433/Uname/Upass/Dbname/
line one on stdin == MYSQL/MYHOST:3306/Uname/Upass/Dbname/
line two thru n-1 == select/insert/replace...
line n == \n

uses http://www.freetds.org/ libraries 

*/

$stdinline = trim(fgets(STDIN));

list($stype,$hnp,$dbu,$dbp,$dbn) = split(/, $stdinline) ;

switch ($stype)
{

caseMSSQL:
{
$db =   mssql_connect($hnp,$dbu,$dbp);
if(!$db)
{
$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not connect); 
fwrite($handle, \n\n); fclose($handle);
exit(Could not connect);
}
if(!mssql_select_db($dbn,$db))
{
$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not select 
database); fwrite($handle, \n\n); fclose($handle);
exit(Could not select database);
}
/* Performing SQL query */
while($squery= trim(fgets(STDIN)))
{
//$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, MySqery:.$squery); 
fwrite($handle, \n\n); fclose($handle);
$result = mssql_query($squery) or die(Query failed :  . 
$squery);
if(is_resource($result))
{
$num_results = mssql_num_rows($result);
echo \n . $num_results;
if($num_results == 0) echo \n;
for ($i=0; $i $num_results; $i++)
{
while($myrow = mssql_fetch_row($result))
{
$colcnt = count($myrow);
echo \n . $colcnt;
for($x=0; $x  $colcnt; $x++)
{
echo sprintf(\n%d 
,strlen($myrow[$x])) . $myrow[$x];
}
}
}
mssql_free_result($result);
}
else
{
echo \n1\n1\n1 !;
}
}
mssql_close($db);
}
break;

caseMYSQL:
{
$db =   mysql_connect($hnp,$dbu,$dbp);
if(!$db)
{
$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not connect); 
fwrite($handle, \n\n); fclose($handle);
exit(Could not connect);
}
if(!mysql_select_db($dbn,$db))
{
$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not select 
database); fwrite($handle, \n\n); fclose($handle);
exit(Could not select database);
}
/* Performing SQL query */
while($squery= trim(fgets(STDIN)))
{
//$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, MySqery:.$squery); 
fwrite($handle, \n\n); fclose($handle);
$result = mysql_query($squery) or die(Query failed :  . 
$squery);
if(is_resource($result))
{
$num_results = mysql_num_rows($result);
echo \n . $num_results;
if($num_results == 0) echo \n

Re: New disklable doesn't keep old partitions if requested

2009-07-17 Thread Duncan Patton a Campbell

On Mon, 6 Jul 2009 14:40:32 +0200
Tor Houghton t...@bogus.net wrote:

 On Mon, Jul 06, 2009 at 04:15:51AM +, Miod Vallat wrote:
  This whole thread is actually one more proof that nobody ever reads the
  installation notes (INSTALL.*).
  
  Miod
 
 Oooh, you've just identified a space-saving measure! 
 
 *ducks*
 
 

It also proves I'm stupid enough to read to the end
only to know if anything useful was said b4 I nuke 
this drivel.

Dhu

Re: Radeon 9200 PRO + radeondrm freezes OpenBSD 4.5

2009-07-18 Thread Duncan Patton a Campbell

On Tue, 9 Jun 2009 01:02:43 +0200
varheit varh...@gmx.de wrote:

 On Fri, 5 Jun 2009 08:21:47 -0600
 Duncan Patton a Campbell campb...@neotext.ca wrote:
 
  On Fri, 5 Jun 2009 06:54:05 -0600
  Duncan Patton a Campbell campb...@neotext.ca wrote:
  
   Howdy Victor?
   
   I appear to be having the same problems with the same card.
   
   Do you have any news?  
   
   Thanks,
   
   Dhu
   
  
  I read somewhere to disable the radeondrm driver 
  in kernel and this has worked so far.
 
 Well, that might not be the best solution if it is hardware
 acceleration that you are after...
 
 Anyway, after some more testing, I can finally start the X server
 without disabling radeondrm and without freezing the machine by
 adding
 Option BusType PCI
 to xorg.conf. This setting forces my AGP graphics card to PCI mode.
 

Hmm.  Might not work 4 me as I'm actually running an actual 9200 
PCI card (HIS?), not an AGP, and there is no video on the mb.

Dhu

 But 3D acceleration is still somewhat peculiar. Running glxgears
 yields significantly less FPS than without acceleration (that is,
 like 1 FPS with hardware acceleration and ~60 FPS without).
 
 Strange. Blender feels faster though unless textures are displayed.
 Stellarium runs OK (= smooth) in windowed mode, but unpredictable
 in full resolution (1280x1024).
 
 Maybe it needs some more tweaking...
 
 Vic
 
 
   On Fri, 29 May 2009 10:33:21 +0200
   Viktor Varheit viktorvarh...@gmx.de wrote:
   
Hi,

according to radeon(4) my graphics card is supported, but I
cannot get hardware acceleration to work. Booting with
disable radeondrm in UKC and then running startx works
fine. Doing the same with enable radeondrm (which is the
default in the GENERIC kernel) appears to freeze the machine.
The screen goes blank, and the monitor enters standby mode.

Sometimes the computer shuts down after pressing the power
button, but most of the time it can only be forced off by
holding the power button.

Trying several options in xorg.conf did not advance things.

I booted with a serial console to see if any messages appeared
after entering startx. This is what I got:

radeondrm0: Setting GART location based on new memory map
radeondrm0: writeback test failed
radeondrm0: wait idle failed status : 0x80010140 0x
radeondrm0: wait idle failed status : 0x80010140 0x
radeondrm0: wait idle failed status : 0x80010140 0x
...

The last message is repeated over and over until the machine
appears to freeze. The time it takes to get to that point
varies.

After setting 'Option AGPFastWrite on' in xorg.conf
no messages were output at all, but that was the only
apparent difference.

Setting AccelMethod to EXA also did not change anything.

Using no xorg.conf at all also did not work.

Anyway, here's my xorg.conf and dmesg. I hope someone
can give me a hint.

Vic


+++ xorg.conf +++
Section ServerLayout
Identifier X.org Configured
Screen  0  Screen0 0 0
InputDeviceMouse0 CorePointer
InputDeviceKeyboard0 CoreKeyboard
EndSection

Section Files
ModulePath   /usr/X11R6/lib/modules
FontPath /usr/X11R6/lib/X11/fonts/misc/
FontPath /usr/X11R6/lib/X11/fonts/TTF/
FontPath /usr/X11R6/lib/X11/fonts/OTF
FontPath /usr/X11R6/lib/X11/fonts/Type1/
FontPath /usr/X11R6/lib/X11/fonts/100dpi/
FontPath /usr/X11R6/lib/X11/fonts/75dpi/
EndSection

Section Module
Load  dbe
Load  dri
Load  extmod
Load  glx
Load  freetype
EndSection

Section InputDevice
Identifier  Keyboard0
Driver  kbd
EndSection

Section InputDevice
Identifier  Mouse0
Driver  mouse
Option  Protocol wsmouse
Option  Device /dev/wsmouse
Option  ZAxisMapping 4 5 6 7
EndSection

Section Monitor
#DisplaySize  340   270 # mm
Identifier   Monitor0
VendorName   ENC
ModelNameL557
HorizSync24.0 - 80.0
VertRefresh  50.0 - 75.0
Option  DPMS
EndSection

Section Device
Option AGPMode x4
Option BusType AGP  # [str]
#Option AGPFastWrite on # [bool]
#Option AccelMethod EXA # str
Option DRI on   # [bool]
Identifier  Card0
Driver  radeon
VendorName  ATI
BoardName   Radeon 9200 PRO
BusID   PCI:1:0:0
EndSection

Section Screen
Identifier Screen0

Re: systrace

2009-07-23 Thread Duncan Patton a Campbell

On Wed, 15 Jul 2009 09:57:33 -0600
Bob Beck b...@obtuse.com wrote:

   Now it's not to say that *theoretically* systrace can't be a help.
 I'm certain it could if you knew 100% what you were doing and knew the
 inside and outs of the code.  but really that's a job for the
 developers, not the sysadmin running it. If the developer is going to
 do it, well, at that point your best bet is simply to privsep the code
 properly - that has been show to actually work, and doesn't require
 insanity on the part of the system admin to pull wild guesses out of
 his ass about what system calls this should use and why and when and
 what the impact of allowing something is. 
 

Systrace is a development/test tool that has been miscast.  In a
corporate/collective environment this would be a useful testbed
tool to validate programmer claims.  This would NOT be part of
the delivered product but maintained in a lab as part of an
automated sw test cycle.  Do I detect here a problem involved in
GPL-thinking?  It does tend to require that end users be delivered
of reams of Makefiles and other coder desiderata... why not
test tools too? ... and while we're at it ...

Dhu

Sun Sparc64 problems

2009-07-25 Thread Duncan Patton a Campbell

Howdy?

I recently got hold of an Ultra-5 with 128mb.  By various
means I've managed to upgrad the prom to *latest and
everything appeared to install ok.  So now I simply 
cannot boot from the IDE disk I installed it on. 

I can boot from the install cd and mount this disk
as can be seen from the included files (seperated 
here with the token asdf are devls.txt, disklabel.txt, 
dmesg.txt, ifconfig-a.txt, mount.txt)

If anyone can shed some light on this for me I'd appreciate it.

Thanks,

Dhu

devls.txt

total 20
-rw-r--r--  1 root  wheel 9297 Mar  1 01:22 MAKEDEV
crw---  1 root  wheel 120,   0 Mar  1 01:22 bio
crw---  1 root  wheel 105,   0 Mar  1 01:22 bpf0
brw-r-  1 root  operator   18,   0 Mar  1 01:22 cd0a
brw-r-  1 root  operator   18,   2 Mar  1 01:22 cd0c
crw---  1 root  wheel   0,   0 Jul 26 00:48 console
crw-rw  1 root  operator   18,   3 Mar  1 01:22 enrst0
brw-rw  1 root  operator   11,   3 Mar  1 01:22 enst0
crw-rw  1 root  operator   18,   2 Mar  1 01:22 erst0
brw-rw  1 root  operator   11,   2 Mar  1 01:22 est0
brw-r-  1 root  operator   16,   0 Mar  1 01:22 fd0a
brw-r-  1 root  operator   16,   1 Mar  1 01:22 fd0b
brw-r-  1 root  operator   16,   2 Mar  1 01:22 fd0c
brw-r-  1 root  operator   16,   8 Mar  1 01:22 fd0i
crw---  1 root  wheel  16,   0 Mar  1 01:22 klog
crw-r-  1 root  kmem3,   1 Mar  1 01:22 kmem
crw-r-  1 root  kmem   76,   0 Mar  1 01:22 ksyms
crw-r-  1 root  kmem3,   0 Mar  1 01:22 mem
crw-rw  1 root  operator   18,   1 Mar  1 01:22 nrst0
brw-rw  1 root  operator   11,   1 Mar  1 01:22 nst0
crw-rw-rw-  1 root  wheel   3,   2 Mar  1 01:22 null
crw-r-  1 root  kmem   70,   0 Mar  1 01:22 openprom
crw-r-  1 root  operator   58,   0 Mar  1 01:22 rcd0a
crw-r-  1 root  operator   58,   2 Mar  1 01:22 rcd0c
brw-r-  1 root  operator5,   0 Mar  1 01:22 rd0a
brw-r-  1 root  operator5,   2 Mar  1 01:22 rd0c
crw-r-  1 root  operator   54,   0 Mar  1 01:22 rfd0a
crw-r-  1 root  operator   54,   1 Mar  1 01:22 rfd0b
crw-r-  1 root  operator   54,   2 Mar  1 01:22 rfd0c
crw-r-  1 root  operator   54,   8 Mar  1 01:22 rfd0i
crw-r-  1 root  operator   61,   0 Mar  1 01:22 rrd0a
crw-r-  1 root  operator   61,   2 Mar  1 01:22 rrd0c
crw-r-  1 root  operator   17,   0 Mar  1 01:22 rsd0a
crw-r-  1 root  operator   17,   1 Mar  1 01:22 rsd0b
crw-r-  1 root  operator   17,   2 Mar  1 01:22 rsd0c
crw-r-  1 root  operator   17,   3 Mar  1 01:22 rsd0d
crw-r-  1 root  operator   17,   4 Mar  1 01:22 rsd0e
crw-r-  1 root  operator   17,   5 Mar  1 01:22 rsd0f
crw-r-  1 root  operator   17,   6 Mar  1 01:22 rsd0g
crw-r-  1 root  operator   17,   7 Mar  1 01:22 rsd0h
crw-r-  1 root  operator   17,   8 Mar  1 01:22 rsd0i
crw-r-  1 root  operator   17,   9 Mar  1 01:22 rsd0j
crw-r-  1 root  operator   17,  10 Mar  1 01:22 rsd0k
crw-r-  1 root  operator   17,  11 Mar  1 01:22 rsd0l
crw-r-  1 root  operator   17,  12 Mar  1 01:22 rsd0m
crw-r-  1 root  operator   17,  13 Mar  1 01:22 rsd0n
crw-r-  1 root  operator   17,  14 Mar  1 01:22 rsd0o
crw-r-  1 root  operator   17,  15 Mar  1 01:22 rsd0p
crw-r-  1 root  operator   17,  16 Mar  1 01:22 rsd1a
crw-r-  1 root  operator   17,  17 Mar  1 01:22 rsd1b
crw-r-  1 root  operator   17,  18 Mar  1 01:22 rsd1c
crw-r-  1 root  operator   17,  19 Mar  1 01:22 rsd1d
crw-r-  1 root  operator   17,  20 Mar  1 01:22 rsd1e
crw-r-  1 root  operator   17,  21 Mar  1 01:22 rsd1f
crw-r-  1 root  operator   17,  22 Mar  1 01:22 rsd1g
crw-r-  1 root  operator   17,  23 Mar  1 01:22 rsd1h
crw-r-  1 root  operator   17,  24 Mar  1 01:22 rsd1i
crw-r-  1 root  operator   17,  25 Mar  1 01:22 rsd1j
crw-r-  1 root  operator   17,  26 Mar  1 01:22 rsd1k
crw-r-  1 root  operator   17,  27 Mar  1 01:22 rsd1l
crw-r-  1 root  operator   17,  28 Mar  1 01:22 rsd1m
crw-r-  1 root  operator   17,  29 Mar  1 01:22 rsd1n
crw-r-  1 root  operator   17,  30 Mar  1 01:22 rsd1o
crw-r-  1 root  operator   17,  31 Mar  1 01:22 rsd1p
crw-r-  1 root  operator   17,  32 Mar  1 01:22 rsd2a
crw-r-  1 root  operator   17,  33 Mar  1 01:22 rsd2b
crw-r-  1 root  operator   17,  34 Mar  1 01:22 rsd2c
crw-r-  1 root  operator   17,  35 Mar  1 01:22 rsd2d
crw-r-  1 root  operator   17,  36 Mar  1 01:22 rsd2e
crw-r-  1 root  operator   17,  37 Mar  1 01:22 rsd2f
crw-r-  1 root  operator   17,  38 Mar  1 01:22 rsd2g
crw-r-  1 root  operator   17,  39 Mar  1 01:22 rsd2h
crw-r-  1 root  operator   17,  40 Mar  1 01:22 rsd2i
crw-r-  1 root  operator   17,  41 Mar  1 01:22 rsd2j
crw-r-  1 root  operator   17,  42 Mar  1 01:22 rsd2k
crw-r-  1 root  operator   17,  43 Mar  1 01:22 rsd2l
crw-r-  1 root  operator   17,  44 Mar  1 01:22 rsd2m
crw-r-  1 root

Re: Sun Sparc64 problems

2009-07-26 Thread Duncan Patton a Campbell

So as it turns out, Sparc64 IDE circuitry behaves a 
little different than PC IDE (I've only used sbus 
sparcs b4).  You can install the software, and mount
the disk with the IDE Slave/Master/CableSelect set
WRONG, but you cannot boot it.  Hm.

Dhu

On Sat, 25 Jul 2009 18:44:18 -0600
Duncan Patton a Campbell campb...@neotext.ca wrote:

 Howdy?
 
 I recently got hold of an Ultra-5 with 128mb.  By various
 means I've managed to upgrad the prom to *latest and
 everything appeared to install ok.  So now I simply 
 cannot boot from the IDE disk I installed it on. 
 
 I can boot from the install cd and mount this disk
 as can be seen from the included files (seperated 
 here with the token asdf are devls.txt, disklabel.txt, 
 dmesg.txt, ifconfig-a.txt, mount.txt)
 
 If anyone can shed some light on this for me I'd appreciate it.
 
 Thanks,
 
 Dhu
 
 devls.txt
 
 total 20
 -rw-r--r--  1 root  wheel 9297 Mar  1 01:22 MAKEDEV
 crw---  1 root  wheel 120,   0 Mar  1 01:22 bio
 crw---  1 root  wheel 105,   0 Mar  1 01:22 bpf0
 brw-r-  1 root  operator   18,   0 Mar  1 01:22 cd0a
 brw-r-  1 root  operator   18,   2 Mar  1 01:22 cd0c
 crw---  1 root  wheel   0,   0 Jul 26 00:48 console
 crw-rw  1 root  operator   18,   3 Mar  1 01:22 enrst0
 brw-rw  1 root  operator   11,   3 Mar  1 01:22 enst0
 crw-rw  1 root  operator   18,   2 Mar  1 01:22 erst0
 brw-rw  1 root  operator   11,   2 Mar  1 01:22 est0
 brw-r-  1 root  operator   16,   0 Mar  1 01:22 fd0a
 brw-r-  1 root  operator   16,   1 Mar  1 01:22 fd0b
 brw-r-  1 root  operator   16,   2 Mar  1 01:22 fd0c
 brw-r-  1 root  operator   16,   8 Mar  1 01:22 fd0i
 crw---  1 root  wheel  16,   0 Mar  1 01:22 klog
 crw-r-  1 root  kmem3,   1 Mar  1 01:22 kmem
 crw-r-  1 root  kmem   76,   0 Mar  1 01:22 ksyms
 crw-r-  1 root  kmem3,   0 Mar  1 01:22 mem
 crw-rw  1 root  operator   18,   1 Mar  1 01:22 nrst0
 brw-rw  1 root  operator   11,   1 Mar  1 01:22 nst0
 crw-rw-rw-  1 root  wheel   3,   2 Mar  1 01:22 null
 crw-r-  1 root  kmem   70,   0 Mar  1 01:22 openprom
 crw-r-  1 root  operator   58,   0 Mar  1 01:22 rcd0a
 crw-r-  1 root  operator   58,   2 Mar  1 01:22 rcd0c
 brw-r-  1 root  operator5,   0 Mar  1 01:22 rd0a
 brw-r-  1 root  operator5,   2 Mar  1 01:22 rd0c
 crw-r-  1 root  operator   54,   0 Mar  1 01:22 rfd0a
 crw-r-  1 root  operator   54,   1 Mar  1 01:22 rfd0b
 crw-r-  1 root  operator   54,   2 Mar  1 01:22 rfd0c
 crw-r-  1 root  operator   54,   8 Mar  1 01:22 rfd0i
 crw-r-  1 root  operator   61,   0 Mar  1 01:22 rrd0a
 crw-r-  1 root  operator   61,   2 Mar  1 01:22 rrd0c
 crw-r-  1 root  operator   17,   0 Mar  1 01:22 rsd0a
 crw-r-  1 root  operator   17,   1 Mar  1 01:22 rsd0b
 crw-r-  1 root  operator   17,   2 Mar  1 01:22 rsd0c
 crw-r-  1 root  operator   17,   3 Mar  1 01:22 rsd0d
 crw-r-  1 root  operator   17,   4 Mar  1 01:22 rsd0e
 crw-r-  1 root  operator   17,   5 Mar  1 01:22 rsd0f
 crw-r-  1 root  operator   17,   6 Mar  1 01:22 rsd0g
 crw-r-  1 root  operator   17,   7 Mar  1 01:22 rsd0h
 crw-r-  1 root  operator   17,   8 Mar  1 01:22 rsd0i
 crw-r-  1 root  operator   17,   9 Mar  1 01:22 rsd0j
 crw-r-  1 root  operator   17,  10 Mar  1 01:22 rsd0k
 crw-r-  1 root  operator   17,  11 Mar  1 01:22 rsd0l
 crw-r-  1 root  operator   17,  12 Mar  1 01:22 rsd0m
 crw-r-  1 root  operator   17,  13 Mar  1 01:22 rsd0n
 crw-r-  1 root  operator   17,  14 Mar  1 01:22 rsd0o
 crw-r-  1 root  operator   17,  15 Mar  1 01:22 rsd0p
 crw-r-  1 root  operator   17,  16 Mar  1 01:22 rsd1a
 crw-r-  1 root  operator   17,  17 Mar  1 01:22 rsd1b
 crw-r-  1 root  operator   17,  18 Mar  1 01:22 rsd1c
 crw-r-  1 root  operator   17,  19 Mar  1 01:22 rsd1d
 crw-r-  1 root  operator   17,  20 Mar  1 01:22 rsd1e
 crw-r-  1 root  operator   17,  21 Mar  1 01:22 rsd1f
 crw-r-  1 root  operator   17,  22 Mar  1 01:22 rsd1g
 crw-r-  1 root  operator   17,  23 Mar  1 01:22 rsd1h
 crw-r-  1 root  operator   17,  24 Mar  1 01:22 rsd1i
 crw-r-  1 root  operator   17,  25 Mar  1 01:22 rsd1j
 crw-r-  1 root  operator   17,  26 Mar  1 01:22 rsd1k
 crw-r-  1 root  operator   17,  27 Mar  1 01:22 rsd1l
 crw-r-  1 root  operator   17,  28 Mar  1 01:22 rsd1m
 crw-r-  1 root  operator   17,  29 Mar  1 01:22 rsd1n
 crw-r-  1 root  operator   17,  30 Mar  1 01:22 rsd1o
 crw-r-  1 root  operator   17,  31 Mar  1 01:22 rsd1p
 crw-r-  1 root  operator   17,  32 Mar  1 01:22 rsd2a
 crw-r-  1 root  operator   17,  33 Mar  1 01:22 rsd2b
 crw-r-  1 root  operator   17,  34 Mar  1 01:22 rsd2c
 crw-r-  1 root  operator   17,  35 Mar  1 01:22 rsd2d
 crw-r-  1 root  operator   17,  36 Mar  1 01:22 rsd2e
 crw-r-  1 root  operator   17,  37 Mar  1 01:22

Strangeness with du and install45.iso

2009-07-29 Thread Duncan Patton a Campbell

I have two x86 machines installed with the 4.5 release,
both with the i386 part of the distribution on disk.

When I use du on some files I get different answers from
these machines.  In particular, the install45.iso, thus:

[r...@gate:/home/pub/4.5r/i386] # uname -a
OpenBSD gate.indx.ca 4.5 DGEN#1 i386
[r...@gate:/home/pub/4.5r/i386] # l install45.iso
-r--r--r--  1 root  ftp  239949824 Feb 28 15:41 install45.iso
[r...@gate:/home/pub/4.5r/i386] # md5 install45.iso
MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025
[r...@gate:/home/pub/4.5r/i386] #  which du
/usr/bin/du
[r...@gate:/home/pub/4.5r/i386] # md5 /usr/bin/du
MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d
[r...@gate:/home/pub/4.5r/i386] # du -sk install45.iso
234416  install45.iso

# uname -a
OpenBSD jimg.indx.ca 4.5 GENERIC#1749 i386
# l install45.iso
-r--r--r--  1 root  wheel  239949824 Feb 28 15:41 install45.iso
# md5 install45.iso
MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025
#  which du
/usr/bin/du
# md5 /usr/bin/du
MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d
# du -sk install45.iso
234288  install45.iso

and, if eyes serve correctly, 234416=/=234288

Anyone have a clue what's happening here?

Thanks,

Dhu

Re: Strangeness with du and install45.iso

2009-07-29 Thread Duncan Patton a Campbell

On Wed, 29 Jul 2009 15:31:08 +0100
Andreas Kahari andreas.kah...@gmail.com wrote:

 The two files uses different number of blocks on two different types
 of disks? I see nothing excessively strange with this. Try it again
 with du -k.


Ahh.  Thanks for the explanation.

Dhu

 Andreas

 2009/7/29 Duncan Patton a Campbell campb...@neotext.ca:
  I have two x86 machines installed with the 4.5 release,
  both with the i386 part of the distribution on disk.
 
  When I use du on some files I get different answers from
  these machines.  In particular, the install45.iso, thus:
 
  [r...@gate:/home/pub/4.5r/i386] # uname -a
  OpenBSD gate.indx.ca 4.5 DGEN#1 i386
  [r...@gate:/home/pub/4.5r/i386] # l install45.iso
  -r--r--r--  1 root  ftp  239949824 Feb 28 15:41 install45.iso
  [r...@gate:/home/pub/4.5r/i386] # md5 install45.iso
  MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025
  [r...@gate:/home/pub/4.5r/i386] #  which du
  /usr/bin/du
  [r...@gate:/home/pub/4.5r/i386] # md5 /usr/bin/du
  MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d
  [r...@gate:/home/pub/4.5r/i386] # du -sk install45.iso
  234416  install45.iso
 
  # uname -a
  OpenBSD jimg.indx.ca 4.5 GENERIC#1749 i386
  # l install45.iso
  -r--r--r--  1 root  wheel  239949824 Feb 28 15:41 install45.iso
  # md5 install45.iso
  MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025
  #  which du
  /usr/bin/du
  # md5 /usr/bin/du
  MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d
  # du -sk install45.iso
  234288  install45.iso
 
  and, if eyes serve correctly, 234416=/=234288
 
  Anyone have a clue what's happening here?
 
  Thanks,
 
  Dhu
 
 



 --
 Andreas Kahari
 Somewhere in the general Cambridge area, UK

Re: yt: youtube download issue

2009-08-16 Thread Duncan Patton a Campbell

Howdy?

It would appear that this is back again, and since it has
happened *while* running 4.5 Rel(i386), in which yt initially 
worked, I suspect YouTube has changed something. 

Can anyone else confirm/deny this conjecture?

Thanks

Dhu

On Tue, 18 Dec 2007 20:18:26 +0530
Girish Venkatachalam girishvenkatacha...@gmail.com wrote:

  On Tue, Dec 18, 2007 at 06:33:07PM +1100, Chris wrote:
  yt is giving me the following error while trying to download -
  
  $ yt http://youtube.com/watch?v=huF2mrhTtCwfeature=dir
  
  $ Getting http://youtube.com/watch?v=huF2mrhTtCw ...
  /usr/local/bin/lua: /usr/local/bin/yt:42: assertion failed!
  stack traceback:
  [C]: in function 'assert'
  /usr/local/bin/yt:42: in main chunk
  [C]: ?
  [2]+  Exit 1  yt http://youtube.com/watch?v=huF2mrhTtCw
  
  I have yt-6 and lua-5.1.2p0 installed on 4.2.
  
  Any help would be much appreciated. Thanks.
  
 
 Problem is fixed in -current.
 
 -Girish

Re: spam in misc list.

2009-08-19 Thread Duncan Patton a Campbell

On Tue, 18 Aug 2009 04:53:42 +
4625 4625...@gmail.com wrote:

 On Tue, 18 Aug 2009, Aaron Mason wrote:
 
  Let me answer that question with another: why should we read messages
  about people whining about spam?  It's actually worse than the spam
 It is simple: I do not wanna to see smap/fish message in message index.
 
  itself in some cases.
 
  90% of mail clients have a delete button.  Excercise it.
 No matter have or not. Traffic cost money.

Drop the list ;-)

Dhu

 
  Why we should read this shit?
 
  -- Forwarded message --
  From: Bank of America memberserv...@cua.com
  To: misc@openbsd.org
  Subject: You have 1 new message from Bank of America !
  Dear customer
  We regret to inform you that your Bank of America Online Account
  has been temporarily suspended.
 
 
 
 
 
  -- 
  Aaron Mason - Programmer, open source addict
  - Oh, why does everything I whip leave me?
 
 
 
 --
 4625

Spamd PF milter-spamd

2009-08-26 Thread Duncan Patton a Campbell

Howdy List?

I'm trying to setup spamd on a sparc and wondering
about using PF or the milter redirect mechanism. 

Are there any instruction on using these with sendmail
past the man pages?  I've set up spamd but am clearly
missing something as there's been no abatement of 
crap in my mailboxes ... also I'm getting an error

1 2 3 >

1 - 100 of 278 matches

Mail list logo