Re: facts about OpenBSD
On Thu, 10 Jan 2008 14:24:33 +0200 Nikns Siankin [EMAIL PROTECTED] wrote: On Thu, Jan 10, 2008 at 09:56:01PM +1100, Rod Whitworth wrote: On Thu, 10 Jan 2008 12:00:53 +0200, Nikns Siankin [EMAIL PROTECTED] wrote: [..] We have had several pointless trolls too many lately. As a result your pointless humour does not raise a laugh. Stay on-topic or fuck off like jacob does. Who *pays* you for this? I'd need to be paid, and well. Dhu Rod/ /earth: write failed, file system is full cp: /earth/creatures: No space left on device
Sermon on Open Systems
Ladies and Gentlemen, lend me your eyes for a brief moment for some feeble words of praise for your efforts. The other day a friend of mine, for whom I have installed an OpenBSD system, mentioned that he had costly experience in the past with small shops and proprietary systems that cannot benefit from economies of scale. I told him that this was not the case with the machine I put together for him, that many hundreds of thousands of people over many years had worked on what I gave him for little more than a song and a dance. Yesterday I installed a Vista machine in my doctor's office, because that's what they bought. While I was able to make it talk internet right off the bat, for the life of me I could not convince it to see some XP boxes in a local workgroup (Link Layer Topology Discovery be damned). A Windows Guru was able to make it talk today with no more effort than a magic incantation MS had given him. Over fifteen years ago I worked a stint for MS, ostensibly to build a test suite to demonstrate the conformance of their email(MAPI) product to RFC 822 etc. I couldn't because it wasn't. I did manage to find some deep problems in their compiler and discovered they were using and early gcc (on SCO) to build it with. I then wrote a tool in Prolog to generate test basic code for their systems and promply found myself fired for Software Piracy. They use similar tools today to test their products. What I'm saying here is not exclusive to MS, but common to many proprietary systems groups. I've worked for companies like Motorola, Lockheed, Lear and Mikoyan. MS had no engineering culture. No documents more than some sketchty design docs and running code. Because of this their systems have an 18-month half life: every year or two they _must_ reinvent the wheel because they've lost the human skill that made the previous version. So it's ASP or .NET or some reinvention of the internet that's shiney and new every few years. And it may make them rich but does nothing good for their customers' businesses: just another tax on their resources. Contrast this with OpenBSD and kin like Net/FreeBSD. I can make a machine running a 15 year old version of BSDI or SunOS interoperate with the latest revisions of these. Nobody has chopped slots in the roof beams to make way for a fancy doorway that's 13 centimeters taller than the building codes. And the bearing walls still touch the floor and footings that they bear on. Why is this? Many reasons, I suppose, but at the bottom of it there's your personal pride. And everyone else who has ever worked on this stuff from the some long-gone guys who worked on the first Berkley systems to people in places like Mumbai, Shanghai and Novosibirsk. Their names are on their work. Even long dead guys like Al Turing are acknowledged in this: none here says his work was for nothing, that fuzzy logic means his head was soft (yeah, I've heard that, no shit:) No one here needs to erase the past to make themselves look good. You know, after MS fired me, calling me a thief didn't stick. So I had to be a closet pervert, and sociopath and worse. My taxes were audited and my driver's license deleted. People jumped out of bushes to beat me up for things I've never heard of. On Sept. 11 2001, I spent the night in Gaol, under suspicion of something or other that didn't stick either. And my personal life makes The Crying Game look like Leave it to Beaver. So I have some idea about what you all must face, motivating yourselves each day to do the right thing. But let me give you some assurances. MS employs mebbe 70k people, and another hundred K or so in dependant groups. That sounds big, but it's a little job-shop compared to you all. There's a hundred million who know something of open source systems and the brightest minds on the planet are among you. This is the Big House you are building with standards and sources that are open to the critical thought of every bright girl and boy on planet. Even the dead are with you, for this is God's work you do. Duncan (Dhu) Campbell
Re: most secure graphical browser
On Fri, 18 Jan 2008 15:14:05 + (UTC) Alexey Vatchenko [EMAIL PROTECTED] wrote: On 2008-01-18, Tony Abernethy [EMAIL PROTECTED] wrote: Alexey Vatchenko wrote: On 2008-01-18, Douglas A. Tutty [EMAIL PROTECTED] wrote: On Thu, Jan 17, 2008 at 06:24:16PM -0700, Clint Pachl wrote: If you want security, get rid of X. Even if it's OpenBSD's X? The one that you need should you need to build any ports (including if you follow current and need security fixes to any ports)? http://marc.info/?l=openbsd-miscm=114738577123893w=2 Making X and no-X versions of everything has gotta be a pain. The security problem with X is that the (blobby?) video card has got better access to memory than the OS. The problem is not in blobbyness (all drivers that come with OpenBSD are open sourced), the problem is that the userland program (X server) has access to the things that must be allowed only to kernel. -- Alexey Vatchenko http://www.bsdua.org I assume that anything I run X on is insecure. In fact, I don't believe you can keep anything meaningful secret. Just the same, I use OpenBSD because it offers a more stable platform, not because I've got dirty underwear to hide. Dhu
Re: What is our ultimate goal??
On Sun, 17 Feb 2008 17:33:12 +0530 Mayuresh Kathe [EMAIL PROTECTED] wrote: It just led me to ponder, what is OpenBSD's ultimate goal? What, exactly, is yours? I've read thru this thread and you are remarkably obscure about your intentions, but it seems to me that OBSD somehow does not fit your marketing plan, which seems to have a lot in common with New, Improved, Diamond-shaped Shreddies. Dhu
Re: What is our ultimate goal??
On Wed, 20 Feb 2008 08:47:54 +0530 Mayuresh Kathe [EMAIL PROTECTED] wrote: On Feb 20, 2008 2:59 AM, Ted Unangst [EMAIL PROTECTED] wrote: On Feb 19, 2008 4:50 AM, Mayuresh Kathe [EMAIL PROTECTED] wrote: That's the reason I've been gathering good C developers, so that they could either; 1. take up complex projects like FireEngine/DTrace, 2. write replacements for as many GNU tools/utilities as possible, 3. be a landing stage for newer developers who get intimidated by the intensity of the core developers. good luck with that. be sure to let us know when it's all done, ok? thanks. If thats sarcasm its really not warranted. If its not sarcasm, then we'll be posting to the list about our progress. Also, Ted, I'm sorry if you felt offended by my ranting about you not completing kernel threads, but the loss of those developers really felt bad. ~Mayuresh Looks to me like your Tivo Box project might need to actually pay someone to write a threads library. Dhu
Re: What is our ultimate goal??
On Wed, 20 Feb 2008 15:11:34 +0530 Mayuresh Kathe [EMAIL PROTECTED] wrote: On Feb 20, 2008 12:52 PM, Duncan Patton a Campbell [EMAIL PROTECTED] wrote: On Wed, 20 Feb 2008 08:47:54 +0530 Mayuresh Kathe [EMAIL PROTECTED] wrote: On Feb 20, 2008 2:59 AM, Ted Unangst [EMAIL PROTECTED] wrote: On Feb 19, 2008 4:50 AM, Mayuresh Kathe [EMAIL PROTECTED] wrote: That's the reason I've been gathering good C developers, so that they could either; 1. take up complex projects like FireEngine/DTrace, 2. write replacements for as many GNU tools/utilities as possible, 3. be a landing stage for newer developers who get intimidated by the intensity of the core developers. good luck with that. be sure to let us know when it's all done, ok? thanks. If thats sarcasm its really not warranted. If its not sarcasm, then we'll be posting to the list about our progress. Also, Ted, I'm sorry if you felt offended by my ranting about you not completing kernel threads, but the loss of those developers really felt bad. ~Mayuresh Looks to me like your Tivo Box project might need to actually pay someone to write a threads library. This is the second time someone has mentioned about a project that does not exist. What's gotten into you people? ~Mayuresh It's a question of the alienability of the BSD License. Unlike Linux, the BSD license allows you the freedom of moving the software into a proprietary configuration which permits a conventional profit model. You are ragging on Ted for not having provided you with a feature for your project which is not seen to be of the widest possible utility, and which might adversley influence some of OBSD's more crucial feature if not implemented with enormous care. Basically you are asking him to provide your 4profit model with free work that would not necessarily benefit the project OR other 4profit models. Mebbe if you really need threads (because some code you intend to import uses them) then you should offer to PAY Ted to do this (for the project?). This would likely provide him with the kind of incentive he needs to do something seen as not crucial by his peers. Dhu
Re: anoncvs asking for password
On Sun, 24 Feb 2008 14:18:15 -0500 Chris Smith [EMAIL PROTECTED] wrote: On Sunday 24 February 2008, Constantine A. Murenin wrote: anoncvs.ca.openbsd.org is being rebuild, and currently asks for password. Also tried anoncvs1.usa.openbsd.org and anoncvs1.ca.openbsd.org (which apparently is the same host as anoncvs.ca.openbsd.org). Looks like waiting is the right idea. -- Chris Might this have something to do with it:? Begin forwarded message: Date: Sun, 24 Feb 2008 01:34:51 -0700 From: Theo de Raadt [EMAIL PROTECTED] To: Rumen Yotov [EMAIL PROTECTED] Cc: misc@openbsd.org Subject: Re: anoncvs.ca.openbsd.org - RSA host key has just been changed Anybody knows if the key really changed or not ? The fingerprint for the RSA key sent by the remote host is e0:9d:c4:c0:31:7d:84:ec:67:9c:a3:7a:70:54:eb:20. It did change. The machine was reinstalled from scratch, in fact.
Re: Cardbus bad Vcc request error with OpenBSD 4.2
Does your laptop have USB2? If so, it's the easy fix. I, also, have had small luck with cardbus on Toshibas up to the 2510 CDS, whereupon they begin to work (from dmesg): ( cpu0: Intel Pentium/MMX (GenuineIntel 586-class) 267 MHz ... cardslot1 at cbb1 slot 1 flags 0 cardbus1 at cardslot1: bus 21 device 0 cacheline 0x0, lattimer 0x0 pcmcia1 at cardslot1 re0 at cardbus1 dev 0 function 0 NETGEAR, GA511: RTL8169/8110SB (0x1000), irq 11, address 00:14:6c:2e:85:19 ) A 2500 and Satpro 4300 both didn't work and were cardbus too. Unfortunately, the 2510 was also when they introduced USB2 that worked. Dhu On Sat, 1 Mar 2008 21:51:39 -0500 Vikas N Kumar [EMAIL PROTECTED] wrote: Hi All This is the first time I am trying OpenBSD (version 4.2) on my Pentium II laptop (yes a very old laptop). Everything has installed smoothly and fast, except that the cardbus is not working, and since there is no in-built ethernet port in the laptop as it is quite old, my only choice is to use a cardbus based pcmcia ethernet card. But the cardbus slot itself gives an error when OpenBSD boots up. When I use Linux on the same laptop, the cardbus slot and the card work just fine. I tried googling for solutions but could not find any that worked. There is nothing in the BIOS to turn on or off the cardbus since Linux does not require it. I want to use OpenBSD on the laptop. Here are the details of my laptop, and card and some lines from dmesg command. Unfortunately I cannot paste the dmesg since there is no way I can get that off the laptop without using floppy drives etc. Laptop : HP Omnibook 4100 CPU: Intel Pentium II 686-class 512KB L2 cache, 266 MHz RAM : 64MB Cardbus cbb0 : TI PCI1250 Cardbus Cardbus cbb1 : TI PCI1250 Cardbus Cardbus ethernet card : D-Link DFE-690TXD error from cbb0 and cbb1 while booting is as follows : cbb0: bad Vcc request. sock_ctrl 0xff88, sock_status 0x cardslot0 at cbb0 slot 0 flags 0 cardbus0 at cardslot0: bus 1 device 0 cacheline 0x8, lattimer 0x20 pcmcia0 at cardslot0 cbb1: bad Vcc request. sock_ctrl 0xff88, sock_status 0x cardslot1 at cbb1 slot 1 flags 0 cardbus1 at cardslot1: bus 2 device 0 cacheline 0x8, lattimer 0x20 pcmcia1 at cardslot1 Any help will be greatly appreciated. Thanks and Regards Vikas Kumar http://www.vikaskumar.org/
Re: PC Camera?
Hmm. I didn't realize there was an open standard for USB webcams. From the Wiki: * These devices also have non-UVC equivalents by the same name. Please check the product number to confirm UVC compatibility. So, how common are these devices? Will they continue to be produced according to standard? I have an application under consideration that would use a webcam and should integrate with an existing OBSD application. Currently the best bet for this is a web-ip cam, which, in most versions, amounts to a linux-driven ARM system with a webcam as part of the box. This increases the co$t of the camera subsys from about $40 to something around the $100 dollar mark and also restricts (somewhat) the number of devices available (D-Link DCS-G900, SkyIPCam 250W,WVC54GCA,WVC200,Axis 207W). Writing a driver for a proprietary device has little recuring value, but the extance of a public standard and devices changes things. Having a USB webcam that directly attaches to an OBSD box has very considerable value from a number of perspectives. Dhu On 23 Mar 2008 16:56:16 -0700 Unix Fan [EMAIL PROTECTED] wrote: There is a USB standard for USB Cameras among other video devices... It's called USB Video Device Class. The specific is available to download... if anyone feels brave enough to write a driver for UVC class devices... ;) @Sunnz, Unsupported USB devices always attach to ugen, read the manual page then you'll realize how silly you are.. ;) http://en.wikipedia.org/wiki/USB_video_device_class This seems to be a driver for: OpenSolaris: http://www.opensolaris.org/os/community/device_drivers/projects/usb/uvc/ Linux: http://linux-uvc.berlios.de/ Mac OSX.. Microsoft's Vista - Which seems to require all vendors implement the standard.. ...And Sony's Playstation 3. So who's working on OpenBSD's implementation? get busy!! :D :D :D -Nix Fan.
Re: macosx vs winxp: pf packet blocking
This sounds like a timing/fragmenting problem. Google blasts things out big and smooth. Most sites you see a lot more chatter on the tcp layer. If you have another machine with a different stack (Sun/Linux..) put it on the inside of the firewall and see what happens. Or use a sniffer and look. Dhu On Mon, 07 Apr 2008 20:37:10 -0500 Jacob Yocom-Piatt [EMAIL PROTECTED] wrote: have spent a fair deal of time working with pf and have just seen what appears to be quite a bizarre problem: topology is (internet)--pppoe--(openbsd fw - running 4.2-release)--switch--(wired/wifi router). a winxp host connected to the wifi router has no problem viewing webpages, etc, however, a macosx host connected to the wifi router gets packets randomly (AFAICT) dropped by the openbsd fw. google seems to load fine on the macosx machine but other sites will not load with any regularity. the packet dropping has been observed on the firewall using 'tcpdump -nettvi pflog0' and packets were being blocked on the internal internal interface, either em2 or vlan2, until the pf rule 'pass on $int_if' was changed to 'pass on $int_if no state'. then packets started getting blocked on the external interface, despite a rule 'pass out on $ext_if' as a catch-all at the end of the ruleset. the rule that shows as being the blocker is 'block log all', the first rule in the set. so in essence, i see rules that are not being obeyed in the pf ruleset, but only for the macosx host and not the winxp one. the macosx firewall is turned off and i can ssh from the macosx host to the openbsd fw just fine. i can also ping fine from the macosx host, so dns and routing are working. clues as to wtf is going on would be appreciated. can supply more detailed info on request. cheers, jake --
Re: softraid corrupted metadata
I have just had a similar incident and recovered similarly. So now I am wondering about recovery in the event of a real failure. Could this be accomplished by configuring a softraid with only 1 disk? e.g. bioctl -c 1 -C force -l /dev/sd2a softraid0 given that sd3a suffered the failure? Is there any documentation about recovery of failures in a softraid partition? Thanks, Dhu On Fri, 28 Mar 2008 17:12:05 -0500 Marco Peereboom [EMAIL PROTECTED] wrote: Adding misc that somehow fell off... On Fri, Mar 28, 2008 at 08:51:18AM -0500, Marco Peereboom wrote: Assuming the drives weren't hurt you can reassemble the RAID 1 with the -C force option. Do something along the lines of: bioctl -c 1 -C force -l /dev/sd2a,/dev/sd3a softraid0 That will overwrite the current stale metadata with new one. Make sure you fsck the filesystem before mounting it (even if it says it is ok! use some force to convince it to check it); On Fri, Mar 28, 2008 at 02:32:49PM +0100, [EMAIL PROTECTED] wrote: Hi, I'm currently using softraid(4) on my 4.2-stable(*) I386 machine and yesterday I ran into a problem: after a system freeze (most probably caused by a malfunctioning onboard SATA controller) softraid found corrupted metadata on one of my two disks in the RAID1 array I assembled (sorry, I don't have the correct error message handy) thus the kernel didn't create the softraid0 device. Don't get me wrong I'm not complaining about that (as the manpage already told me that this will be the outcome of a failed chunk) but I'm wondering if there's a manual procedure I follow to reassemble the raid manually without data loss. TIA, Frank. *) actually almost stable as I had to build my own softraid enabled kernel based on GENERIC -- What can you use used tampons for? Tea bags for vampires. openBSD - Can't fight the Systemagic. \ber tragic. Frank Brodbeck [EMAIL PROTECTED] Politicians do it to everyone.
Re: remove any unwanted devices from the kernel.
On Fri, 6 Jun 2008 16:50:37 -0700 Scott Learmonth [EMAIL PROTECTED] wrote: As someone else who writes code for this fine os would say: removing drivers is pure masturbation. Hah, perfect. As a first foray into BSD I stumbled upon FreeBSD. To make it do what I wanted, step one was to compile a custom kernel. BOOYAH, I got a geek-on. A few months later I had chosen OpenBSD, and have never looked back. Sure, tinkering is what we do in may ways (n00b or dev, computer guts are what we like), and what better tinker-tool than 5 minutes picking drivers and a 3 hour compile? But you know what? GENERIC just works. And the REALLY beautiful thing, is that config just works too for kernel configuration. You can even write your changes to the kernel permanently, saving all that compile time. I'm not versed enough to know if a config modified kernel provides the same, um, savings as a custom kernel if you used it to remove drivers however. Cheers I had an incident with a 4.1+ snapshot where in order to get some customer config to work I needed to build a GENERIC OBSD system from scratch with some patch code. This was only somewhat more complicated than building a custom FreeBSD kernel. The monolithic OBSD build methodology is only good most of the time, and when it isn't, it's a bit of a bear. Dhu
Routing on source
Dear List, I am trying to figure out if is is possible to route packets through an OpenBSD firewall on the basis of the packet source. The situation is that I have two ISPs hooked up to a firewall and would like to route traffic to these ISPs on the basis of which NAT client (IP or mask) the traffic is coming from. Is this possible? What mechanisms (pf... etc)? I am also hoping to work ifstated or something like it into the mess so that if the normal route for a client fails the traffic will go to the secondary connection. Is this reasonable? Thanks, Dhu
Re: Routing on source
On Tue, 24 Jun 2008 21:34:00 -0700 Daniel Anderson [EMAIL PROTECTED] wrote: The mechanism you seek is the route-to and reply-to. Kindly see this message for an example: http://marc.info/?l=openbsd-miscm=120665186412690w=2 Yes. Thank you. Dhu As to the concern on redundancy, perhaps someone else will address it for you. --- On Tuesday 24 June 2008 08:29:08 pm Duncan Patton a Campbell wrote: Dear List, I am trying to figure out if is is possible to route packets through an OpenBSD firewall on the basis of the packet source. The situation is that I have two ISPs hooked up to a firewall and would like to route traffic to these ISPs on the basis of which NAT client (IP or mask) the traffic is coming from. Is this possible? What mechanisms (pf... etc)? I am also hoping to work ifstated or something like it into the mess so that if the normal route for a client fails the traffic will go to the secondary connection. Is this reasonable? Thanks, Dhu
PF route-to questions
Dear List, With help from various people here I've composed a pf ruleset that allows load splitting between two (or more) ISP connections on the basis of the client (internal) IP addressess. The problem I have with this is when one or more of the ISPs provide a DHCP assigned address/route. While the (ifn) notation provides for reading an assigned address for an interface, I can find no way of dealing with an assigned (route) gateway for the ... route-to { ($ext_if $ext_gw) } ... notation. Here's the ruleset. Let me know if you have a use for it or know of some way of getting the DHCP gateway. Thanks, Dhu ext_if1 = re0 ext_if2 = vr0 ext_gw1 = xx.xx.xx.xx ext_gw2 = xx.xx.xx.xx int_if = axe0 int_net = 192.168.117.0/24 int_clS = { 192.168.117.46,192.168.117.45,192.168.117.47 } # tcp_services provided by this server on the external interface tcp_services = { 22,123 } # 22 ssh # 25 smtp # 53 dns # 80 http # 110 pop # 123 ntp # 443 https # 587 smtp-submit # 3389rdesk # 8118privoxy # 9001tor external # 9050tor # 9051tor ctl # udp_services provided by this server on the external interface udp_services = { 123 } # 53 dns # 69 tftp # 123 ntp # 587 smtp_submit icmp_types = echoreq set skip on lo0 scrub in # nat outgoing connections on each internet interface nat on $ext_if2 from $int_net to any - ($ext_if2) nat on $ext_if1 from $int_clS to any - ($ext_if1) # default deny block in from any to any block out from any to any # pass all outgoing packets on internal interface pass out log on $int_if from any to $int_net # pass in quick any packets destined for the gateway itself pass in log quick on $int_if from $int_net to $int_if # Pass in tcp_services pass in log on $ext_if1 inet proto tcp from any to ($ext_if1) port $tcp_services flags S/SA keep state pass in log on $ext_if2 inet proto tcp from any to ($ext_if2) port $tcp_services flags S/SA keep state # Pass in udp_services pass in log on $ext_if1 inet proto udp from any to ($ext_if1) port $udp_services keep state pass in log on $ext_if2 inet proto udp from any to ($ext_if2) port $udp_services keep state # Pass in from int_net pass in log on $int_if route-to { ($ext_if2 $ext_gw2) } proto tcp from $int_net to any flags S/SA modulate state pass in log on $int_if route-to { ($ext_if2 $ext_gw2) } proto { udp, esp, icmp } from $int_net to any keep state # Pass in from int_clS pass in log on $int_if route-to { ($ext_if1 $ext_gw1) } proto tcp from $int_clS to any flags S/SA modulate state pass in log on $int_if route-to { ($ext_if1 $ext_gw1) } proto { udp, esp, icmp } from $int_clS to any keep state # general pass out rules for external interfaces pass out log on $ext_if1 proto tcp from any to any flags S/SA modulate state pass out log on $ext_if1 proto { udp, icmp } from any to any keep state pass out log on $ext_if2 proto tcp from any to any flags S/SA modulate state pass out log on $ext_if2 proto { udp, icmp } from any to any keep state # route packets from any IPs on $ext_if1 to $ext_gw1 and the same for # $ext_if2 and $ext_gw2 pass out log on $ext_if1 route-to ($ext_if2 $ext_gw2) from $ext_if2 to any pass out log on $ext_if2 route-to ($ext_if1 $ext_gw1) from $ext_if1 to any # Pass ICMPing pass in log inet proto icmp all icmp-type $icmp_types keep state pass out log on $ext_if1 proto { icmp } all keep state pass out log on $ext_if2 proto { icmp } all keep state
Has anyone told BillG about OpenBSD?
I ran across this: http://gizmodo.com/5019516/classic-clips-bill-gates-chews-out-microsoft-over-xp and was stricken with a horrible sense of dejavoodhu. Dhu
Re: Routing on source
On Thu, 3 Jul 2008 17:10:54 +0200 Henning Brauer [EMAIL PROTECTED] wrote: * Henning Brauer [EMAIL PROTECTED] [2008-07-03 15:18]: * Daniel Anderson [EMAIL PROTECTED] [2008-06-25 06:39]: The mechanism you seek is the route-to and reply-to. using a seperate routing table (route -T 1 add default 1.2.3.4) and pf to assing packet to that (pass from foo rtable 1) is way cleaner. to assign packets to that rtable, that is. Don't spose you could point me to any examples of this useage... I'd like to be able to, say, route a tor server thru a specific link ;-) Dhu -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: This is what Linus Torvalds calls openBSD crowd
On Fri, 18 Jul 2008 17:29:35 +0530 Amarendra Godbole [EMAIL PROTECTED] wrote: On Thu, Jul 17, 2008 at 12:40 AM, Aaron Glenn [EMAIL PROTECTED] wrote: On Wed, Jul 16, 2008 at 11:47 AM, Nuno Magalhces [EMAIL PROTECTED] wrote: Here it's rtfm and chest-thumping. because here, many people have spent many hours making sure tfm gives you all the information you need [...] Absolutely! I find the OpenBSD man pages to be dead accurate, and to-the-point. Typos, and grammar are considered too! -Amarendra This looks like about as good a place as any to stick my 3 worth in, tho' Nick Guenther also comes close to the mark with his comments about system correctness. Linus is obviously worried about something of more than passing import, and I think that he's begun to realize that OBSD's correctness extends beyond code quality and technical security. Linux is a Utopian product that carries substantial ideological baggage rendering it's use problematic to business/commercial concerns _except_ by the largest of institutions. *BSD has a license structure that makes it commercially safe for use by small/medium business... OpenBSD being only the most consistent in this purpose with it's development of a genuine engineering culture and product. Utopian endevours all fall on their real intent to be all things to all people, which, because of the inherent logical relationships of things like consistency and completness, is a fruitless vanity. Such Complete systems require the deep hypocrisy of limiting everything and everyone in order to function at all. In political systems this is often evidenced by difficult people just disappearing in ones and twos and droves. Dhu (carry on in awareness!)
Re: This is what Linus Torvalds calls openBSD crowd
On Thu, 17 Jul 2008 21:37:27 +0200 Marc Balmer [EMAIL PROTECTED] wrote: * Shizzle Cash wrote: On Jul 17, 2008, at 8:42 AM, Giancarlo Razzolini wrote: agreed. I barely can wait to see Ty Semaka artwork for 4.4. Definitively it should include monkeys. And amoebas too. I agree, monkeys should definitely be somehow incorporated into the artwork for the next release. ty draws openbsd developers as fish. and I think that we, the openbsd developers, did enough to warrant a nice topic for the next release. no need to resort to that strange monkey business. or do you want to honour a stupid remark made by l. by making him the main theme of our next release? I don't think so. we have more substantial work that goes into our next release than the stupid remark of a wanking fat penguin that all to obviously does not understand what we do. Wanking Sea Monkeys, then: the oceanic analogue of fleas, at least in the area of genital proportion ;-) Dhu
Re: GPL version 4
On Thu, 17 Jul 2008 00:51:53 -0500 Travers Buda [EMAIL PROTECTED] wrote: I'd like to present GPL version 10^100^100! (that's not an exclaimation, that's a factorial.) Over the years, clauses have been _removed_ from BSD-like licenses. The GPL keeps getting things _added_. *insert some sort of wisdom here about how this means BSD-like is better* Less is more. Dhu Reading (and actually understanding) the GPL could easily drive a sane man, with no drug abuse or family history of mental illness, completely insane due to its ever-increasing complexity. -- Travers Buda
Re: Can't scp, ssh is slow to authenticate.
On Mon, 21 Jul 2008 16:04:59 -0600 Theo de Raadt [EMAIL PROTECTED] wrote: These are both local machines, why would DNS be required? Because in the modern world DNS -- or any other kind of reliable name-address + address-name mapping -- is required. You might as well get used to it. Yes, but why does DNS need to talk to God above? Dhu
pf localhost sevices
Howdy List? Following is a modification of the ruleset at http://www.openbsd.org/faq/pf/pools.html . It works to allow routing of client services service_ports on an internal network onto one external gateway while other services from the internal network default to another path. This works without a default route on the firewall. But if I want to run a client on the firewall itself, I need to have a default route on it. How is it possible to avoid this default route and have clients running on the firewall use the same pf pathways as those running on machines out on the internal network? Is this possible? Dhu int_net = 192.168.1.0/24 int_if = bge0 ext_if1 = vr0 ext_if2 = axe0 ext_gw1 = ext_gw2 = service_ports = { 22 } set skip on lo scrub in all # nat outgoing connections on each internet interface nat on $ext_if1 from $int_net to any - ($ext_if1) nat on $ext_if2 from $int_net to any - ($ext_if2) # default deny block in from any to any block out from any to any # pass all outgoing packets on internal interface pass out on $int_if from any to $int_net # pass in quick any packets destined for the gateway itself pass in quick on $int_if from $int_net to $int_if # outgoing tcp traffic from internal network to ext_gw2 pass in on $int_if route-to { ($ext_if2 $ext_gw2) } proto tcp from $int_net to any flags S/SA modulate state # outgoing tcp ssh traffic from internal network to ext_gw1 pass in on $int_if route-to { ($ext_if1 $ext_gw1) } proto tcp from $int_net to any port $service_ports flags S/SA modulate state # outgoing udp and icmp traffic from internal network to ext_gw2 pass in on $int_if route-to { ($ext_if2 $ext_gw2) } proto { udp, icmp } from $int_net to any keep state # general pass out rules for external interfaces pass out on $ext_if1 proto tcp from any to any flags S/SA modulate state pass out on $ext_if1 proto { udp, icmp } from any to any keep state pass out on $ext_if2 proto tcp from any to any flags S/SA modulate state pass out on $ext_if2 proto { udp, icmp } from any to any keep state # route packets from any IPs on $ext_if1 to $ext_gw1 and the same for # $ext_if2 and $ext_gw2 pass out on $ext_if1 route-to ($ext_if2 $ext_gw2) from $ext_if2 to any pass out on $ext_if2 route-to ($ext_if1 $ext_gw1) from $ext_if1 to any
Re: PF route-to syntax
Howdy Bill? Back in Dec.06 you asked some similar questions about dynamic update of gateway for route-to rules in pf.conf on dhcp interface. Did you find a way to do this? Thanks, Dhu On Mon, 21 Jul 2008 21:16:50 -0700 Bill Meigs [EMAIL PROTECTED] wrote: I discovered that rules like pass in on $int_if route-to ($ext_if2 $ext_gw2) from any to any must route-to an interface and not that interface's ip address. The rule set will load without an error message but the route-to rule will not work if the ip address is specified. My first question is am I correct in this understanding. And if I am, shouldn't the ruleset fail to load if the route-to rule is not given and interface name? Thanks.
Is this a bug in PFCTL?
Howdy List? According to the man page on pfctl -m Merge in explicitly given options without resetting those which are omitted. Allows single options to be modified without dis- turbing the others: # echo set loginterface fxp0 | pfctl -mf - using the -m parm should allow allow a rule to be merged into the current set, but when I run it, as spec'd in the man page, my ruleset is deletd. Dhu [EMAIL PROTECTED]:/etc] # pfctl -a '*' -sr scrub in all fragment reassemble block drop in all block drop out all pass out on bge0 inet from any to 192.168.1.0/24 flags S/SA keep state pass in quick on bge0 inet from 192.168.1.0/24 to 192.168.1.44 flags S/SA keep state pass in on bge0 route-to (axe0 142.59.192.1) inet proto tcp from 192.168.1.0/24 to any flags S/SA modulate state pass in on bge0 route-to (vr0 68.148.0.1) inet proto tcp from 192.168.1.46 to any flags S/SA modulate state pass in on bge0 route-to (axe0 142.59.192.1) inet proto udp from 192.168.1.0/24 to any keep state pass in on bge0 route-to (axe0 142.59.192.1) inet proto icmp from 192.168.1.0/24 to any keep state pass in inet proto icmp all icmp-type echoreq keep state pass out on axe0 proto icmp all keep state pass out on vr0 proto tcp all flags S/SA modulate state pass out on vr0 proto udp all keep state pass out on vr0 proto icmp all keep state pass out on axe0 proto tcp all flags S/SA modulate state pass out on axe0 proto udp all keep state pass out on axe0 proto icmp all keep state pass out on vr0 route-to (axe0 142.59.192.1) inet from 142.59.197.37 to any flags S/SA keep state pass out on axe0 route-to (vr0 68.148.0.1) inet from 68.148.0.251 to any flags S/SA keep state [EMAIL PROTECTED]:/etc] # echo 'set skip on lo' | pfctl -mf - [EMAIL PROTECTED]:/etc] # pfctl -a '*' -sr [EMAIL PROTECTED]:/etc] #
Re: Is this a bug in PFCTL?
On Thu, 24 Jul 2008 00:00:09 +0200 Henning Brauer [EMAIL PROTECTED] wrote: * Duncan Patton a Campbell [EMAIL PROTECTED] [2008-07-23 21:28]: Howdy List? According to the man page on pfctl -m Merge in explicitly given options without resetting those which ^^^ are omitted. Allows single options to be modified without dis- turbing the others: # echo set loginterface fxp0 | pfctl -mf - using the -m parm should allow allow a rule to be merged into the current set, Ok, so I go echo 'pass out on vr0 proto esp all keep state' | pfctl -mf - pfctl -a '*' -sr pass out on vr0 proto esp all keep state so all my previous rules are still gone. And echo 'pass out on vr0 proto esp all keep state' | pfctl -mf /etc/pf/pf.conf pfctl -a '*' -sr pass out on vr0 proto esp all keep state which means that the file load is done over top of the echo input and erases it. Dhu option != rule -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: Is this a bug in PFCTL?
On Thu, 24 Jul 2008 00:00:09 +0200 Henning Brauer [EMAIL PROTECTED] wrote: * Duncan Patton a Campbell [EMAIL PROTECTED] [2008-07-23 21:28]: Howdy List? According to the man page on pfctl -m Merge in explicitly given options without resetting those which ^^^ are omitted. Allows single options to be modified without dis- turbing the others: # echo set loginterface fxp0 | pfctl -mf - using the -m parm should allow allow a rule to be merged into the current set, I guess I don't see the point in this parameter, as it buys nothing over constructing a new parm file and feeding that to pfctl. Dhu option != rule -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: Is this a bug in PFCTL?
On Wed, 23 Jul 2008 20:41:05 -0300 Vinicius Vianna [EMAIL PROTECTED] wrote: Maybe the only value would be to merge a new rule without returning all tables to default as in the situation that you have changed a table and if you run pfctl -f /etc/pf.conf the table will get back to original values? Never had to use it too, but someone may need it sometime? That's what I was assuming but no. As Henning sez it sets only options and requires a reload of the ruleset anyways... which doesn't buy anything over writing a new ruleset and loading it. I'd guess it's some incomplete functionality that has found no strong justification to finnish. Henning Brauer escreveu: hmm that is broken. That turns out to have been finger fumbling on my part... Dhu not that i really see value in -m
PF loading question
Howdy List? I'm trying to deal with the problem of dhcp assigned default routes in a pf config file, and what I've come up with is a script to drive dhclient on external interfaces and extract the routing info for use in route-to (interface gateway) rules. So then I have two ways of feeding this info to pf: 1. compose a new config file containing the new routes and feed it to pf, in which case I use macros to define the gateways, e.g. ext_gw1 = 1.2.4.5 ext_gw2 = 5.6.7.8 which gives me a rule like: pass in on $int_if route-to { ($ext_if1 $ext_gw1) } proto tcp from $int_clients to any flags S/SA modulate state 2. use a pf config that carries these routes as table entries: table ext_gw1 { 1.2.3.4 } table ext_gw2 { 5.6.7.8 } which gives rules like: pass in on $int_if route-to { ($ext_if1 ext_gw1) } proto tcp from $int_clients to any flags S/SA modulate state that can then be modified by #get and delete the current table value pfctl -t ext_gw1 -T show pfctl -t ext_gw1 -T delete 1.2.3.4 #add the new value derived from dhclient pfctl -t ext_gw1 -T add 4.3.2.1 So now to the question.. does the use of tables in the rulesets add a lot of extra cpu load over the use of macros or do either of these approaches have obvious advantages over the other? Thanks, Dhu
PF and DHCP hakz
Howdy List? As some of you may have gathered from previous posts, I have been working on a pf configuration that will allow a gateway firewall machine to talk to two or more ISP services and allow for the differential routing of data connections from client's services both behind the firewall and on it (e.g. a TOR, HTTP server or other proxy). An additional complexity is introduced in that most prospective users of such a configuration are small to medium businessess that engage only DHCP services from ISPs. This means the IP address, default route and name servers associated with a particular service provider can (and do) change over the period the firewall gate is up for, moreover the lease times granted can change from time to time. Also, nameservers for most ISP are configured to only answer queries from the ISP's subnet(s) and the standard dhclient- script does not accomodate this. In order to make such a configuration work, I introduce some hacks into the dhclient-script such that when the dhclient processess associated with a particular interface are triggered to renew a lease, a piece of prolog code is called that touches the following configs: filedata mod /etc/pf.confgatewayIP /etc/resolv.confnameservers (for default route) /etc/dhclient.conf nameservers (for dhclient routes) [routetable]default route for firewall To do this, I create a directory, /etc/pf, containing the following files: filepurpose dhclient-script dhclient-script modified to call replall from add_new_routes() subroutine, and stub add_new_resolv_conf() as resolv.conf must only reference nameservers for the default route; slink'd to /sbin/dhclient-script. dhcpd.cnf.[interface] one for each internal interface to provision dhcpd services droute.IF define the firewall's default route interface pf.cnf template pf ruleset into which the specific interface gateways are inserted (replall looks for lines begining with ext_gw_{IFN} ). replall slink to compiled gprolog code hooked from dhclient-script that does the various manipulations. gplg/Makefile make for gprolog code gplg/dlib.plprolog support code -- dlib==duncan's lib;) gplg/replallgprolog executable gplg/replall.pl gprolog source A completed working instance of this scheme can be found at: http://neotext.ca/RefR/pf.dhcp/ It has been tested on a machine with 1 static and 1 DHCP gateway as well as on a machine with 2 DHCP gateways. And yes, I know that most of you will think I'm daft to use prolog for a task that could be done in sh/perl/python. It's really just a matter of what you are most comfortable with... if a good reason comes up I might recode it in C. Dhu
Re: Own keyboard encoding cz (cs)
On Wed, 6 Aug 2008 08:23:59 +0100 Tomas Bodzar [EMAIL PROTECTED] wrote: Hi all, I'm reading throw man pages kbd,wsconcs,wsconscfg,looking on Google and so on, but can't find some useful kick-of.Do you know about some paper about it? I found something from http://www.netbsd.org/docs/guide/en/chap-cons.html . I looked in wsksymdef.h ,there is a support for ISO-8859-2 (not for UTF-8), but how can I type our national characters if I can use only us or others? Can I use codes for these characters? Thanks a lot for your help PS: I don't want do this and this,read this and this is enough for me See man luit and xorgconfig. Dhu
PF and DHCP hakz
Oddly this does not appear to have made it thru... Howdy List? As some of you may have gathered from previous posts, I have been working on a pf configuration that will allow a gateway firewall machine to talk to two or more ISP services and allow for the differential routing of data connections from client's services both behind the firewall and on it (e.g. a TOR, HTTP server or other proxy). An additional complexity is introduced in that most prospective users of such a configuration are small to medium businessess that engage only DHCP services from ISPs. This means the IP address, default route and name servers associated with a particular service provider can (and do) change over the period the firewall gate is up for, moreover the lease times granted can change from time to time. Also, nameservers for most ISP are configured to only answer queries from the ISP's subnet(s) and the standard dhclient- script does not accomodate this. In order to make such a configuration work, I introduce some hacks into the dhclient-script such that when the dhclient processess associated with a particular interface are triggered to renew a lease, a piece of prolog code is called that touches the following configs: filedata mod /etc/pf.confgatewayIP /etc/resolv.confnameservers (for default route) /etc/dhclient.conf nameservers (for dhclient routes) [routetable]default route for firewall To do this, I create a directory, /etc/pf, containing the following files: filepurpose dhclient-script dhclient-script modified to call replall from add_new_routes() subroutine, and stub add_new_resolv_conf() as resolv.conf must only reference nameservers for the default route; slink'd to /sbin/dhclient-script. dhcpd.cnf.[interface] one for each internal interface to provision dhcpd services droute.IF define the firewall's default route interface pf.cnf template pf ruleset into which the specific interface gateways are inserted (replall looks for lines begining with ext_gw_{IFN} ). replall slink to compiled gprolog code hooked from dhclient-script that does the various manipulations. gplg/Makefile make for gprolog code gplg/dlib.plprolog support code -- dlib==duncan's lib;) gplg/replallgprolog executable gplg/replall.pl gprolog source A completed working instance of this scheme can be found at: http://neotext.ca/RefR/pf.dhcp/ It has been tested on a machine with 1 static and 1 DHCP gateway as well as on a machine with 2 DHCP gateways. And yes, I know that most of you will think I'm daft to use prolog for a task that could be done in sh/perl/python. It's really just a matter of what you are most comfortable with... if a good reason comes up I might recode it in C. Dhu
Re: PF and DHCP hakz
On Tue, 5 Aug 2008 20:34:09 -0600 Duncan Patton a Campbell [EMAIL PROTECTED] wrote: Howdy List? As some of you may have gathered from previous posts, I have been working on a pf configuration that will allow a gateway firewall machine to talk to two or more ISP services and allow for the differential routing of data connections from client's services both behind the firewall and on it (e.g. a TOR, HTTP server or other proxy). An additional complexity is introduced in that most prospective users of such a configuration are small to medium businessess that engage only DHCP services from ISPs. This means the IP address, default route and name servers associated with a particular service provider can (and do) change over the period the firewall gate is up for, moreover the lease times granted can change from time to time. Also, nameservers for most ISP are configured to only answer queries from the ISP's subnet(s) and the standard dhclient- script does not accomodate this. In order to make such a configuration work, I introduce some hacks into the dhclient-script such that when the dhclient processess associated with a particular interface are triggered to renew a lease, a piece of prolog code is called that touches the following configs: file data mod /etc/pf.conf gatewayIP /etc/resolv.conf nameservers (for default route) /etc/dhclient.confnameservers (for dhclient routes) This should NOT state dhclient.conf. It is, in fact dhcpd.conf that is modified with the nameservers for dhclients on the internal net. Dhu [routetable] default route for firewall To do this, I create a directory, /etc/pf, containing the following files: file purpose dhclient-script dhclient-script modified to call replall from add_new_routes() subroutine, and stub add_new_resolv_conf() as resolv.conf must only reference nameservers for the default route; slink'd to /sbin/dhclient-script. dhcpd.cnf.[interface] one for each internal interface to provision dhcpd services droute.IF define the firewall's default route interface pf.cnftemplate pf ruleset into which the specific interface gateways are inserted (replall looks for lines begining with ext_gw_{IFN} ). replall slink to compiled gprolog code hooked from dhclient-script that does the various manipulations. gplg/Makefile make for gprolog code gplg/dlib.pl prolog support code -- dlib==duncan's lib;) gplg/replall gprolog executable gplg/replall.pl gprolog source A completed working instance of this scheme can be found at: http://neotext.ca/RefR/pf.dhcp/ It has been tested on a machine with 1 static and 1 DHCP gateway as well as on a machine with 2 DHCP gateways. And yes, I know that most of you will think I'm daft to use prolog for a task that could be done in sh/perl/python. It's really just a matter of what you are most comfortable with... if a good reason comes up I might recode it in C. Dhu
Re: RFID Reader
On Thu, 7 Aug 2008 10:46:40 +0100 Conor [EMAIL PROTECTED] wrote: Are there any RFID readers supported by OpenBSD? Regards, Conor. This: http://www.openpcd.org/ claims to be an open design with GPL'd drivers, but this http://www.motorola.com/business/v/index.jsp?vgnextoid=1722e90e3ae95110VgnVCM108406b00aRCRD should be fairly trivial to make work with OBSD, despite being a Windoze CE box as it has numerous open interfaces and claims to talk to SAP and IBM stuff ... The question of being supported is misleading as most of these devices will be designed to operate using standard industrial interfaces. Dhu
Re: tablec - show all addresses in pf table
On Wed, 6 Aug 2008 22:04:52 +0200 Joachim Schipper [EMAIL PROTECTED] wrote: On Wed, Aug 06, 2008 at 11:32:53AM -0500, John Brooks wrote: tablec allows me to add or remove pf table entries with an unprivileged userland account. is there a method to produce a listing of all addresses in a pf table with an unprivileged userland account? If this is for interactive use, why not just stick with sudo? Otherwise, a trivial suided wrapper could work. If you have some coding skills, extending tabled shouldn't be too hard, either - it appears to be a pretty simple program. Joachim Um, what's tablec? Can't find any refs to it. Dhu
Re: RFID Reader
On Thu, 7 Aug 2008 17:05:19 +0100 Conor [EMAIL PROTECTED] wrote: On Thu, Aug 7, 2008 at 1:12 PM, Joachim Schipper [EMAIL PROTECTED] wrote: On Thu, Aug 07, 2008 at 10:46:40AM +0100, Conor wrote: Are there any RFID readers supported by OpenBSD? Don't most readers communicate with the host PC over some common protocol, say RS232 (serial), or maybe USB? OpenBSD will allow you to access those, so if you find or write a program that can communicate with the reader via RS232/USB/whatever, it should work as well on OpenBSD as on any other system. Joachim Not all, some only pop as like this ugen0 at uhub1 port 1 OMNIKEY AG Smart Card Reader USB rev 2.00/1.00 addr 2 *This was the only output seen until I plugged it out then I got the generic device detached message. ugen0 detached In theory they should all emulate/act as a serial interface in some form or another. ACG USB readers use an FTDI serial converter although I won't have one of those to test for quite sometime as they are a bit too expensive when compared to OpenPCD. I don't think the Omnikey readers play as nice as the OpenPCD or ACG readers. I'll have a chance to test the OpenPCD reader with OpenBSD 4.3 in about a week or so. Conor. There some trick I don't exactly recall where you need to suppress the ugen device to allow ucom to grab the device. I think it involved disableing ugen. Dhu
Re: RFID Reader
On Thu, 7 Aug 2008 15:14:24 +0100 Conor [EMAIL PROTECTED] wrote: On Thu, Aug 7, 2008 at 1:05 PM, Duncan Patton a Campbell [EMAIL PROTECTED] wrote: On Thu, 7 Aug 2008 10:46:40 +0100 Conor [EMAIL PROTECTED] wrote: Are there any RFID readers supported by OpenBSD? Regards, Conor. This: http://www.openpcd.org/ claims to be an open design with GPL'd drivers, but this http://www.motorola.com/business/v/index.jsp?vgnextoid=1722e90e3ae95110VgnVCM108406b00aRCRD should be fairly trivial to make work with OBSD, despite being a Windoze CE box as it has numerous open interfaces and claims to talk to SAP and IBM stuff ... The question of being supported is misleading as most of these devices will be designed to operate using standard industrial interfaces. Dhu Thanks Duncan, The OpenPCD is what I was hoping would work with OBSD, I just don't have access to the hardware yet to try it. On a FreeBSD host most of these just appear with ugen0 and thats about as far as it will go. I'll look into the Motorola but I'm not willing to committ to buying something that isn't going to work, however the same could be said for the OpenPCD. Although at least I know that OpenPCD will unfortunately work with something like Debian or Slackware as a last resort. If I can get the hardware to work with OpenBSD it'll just be a case then afterwards of getting librfid to work. At the moment I'm trying to get the Omnikey 5121 to work while I await the OpenPCD reader. It is not going well as one might imagine. You need to get the OpenPCD to talk on ucom/uplcom OR use the Moto which has RS232 and Ethernet interfaces (as well as USB) which can be used in a more conventional manner. Dhu ATB, Conor.
Re: RFID Reader
On Thu, 7 Aug 2008 15:14:24 +0100 Conor [EMAIL PROTECTED] wrote: On Thu, Aug 7, 2008 at 1:05 PM, Duncan Patton a Campbell [EMAIL PROTECTED] wrote: On Thu, 7 Aug 2008 10:46:40 +0100 Conor [EMAIL PROTECTED] wrote: Are there any RFID readers supported by OpenBSD? Regards, Conor. This: http://www.openpcd.org/ claims to be an open design with GPL'd drivers, but this http://www.motorola.com/business/v/index.jsp?vgnextoid=1722e90e3ae95110VgnVCM108406b00aRCRD should be fairly trivial to make work with OBSD, despite being a Windoze CE box as it has numerous open interfaces and claims to talk to SAP and IBM stuff ... The question of being supported is misleading as most of these devices will be designed to operate using standard industrial interfaces. Dhu Thanks Duncan, The OpenPCD is what I was hoping would work with OBSD, I just don't have access to the hardware yet to try it. On a FreeBSD host most of these just appear with ugen0 and thats about as far as it will go. I'll look into the Motorola but I'm not willing to committ to buying something that isn't going to work, however the same could be said for the OpenPCD. Although at least I know that OpenPCD will unfortunately work with something like Debian or Slackware as a last resort. If I can get the hardware to work with OpenBSD it'll just be a case then afterwards of getting librfid to work. At the moment I'm trying to get the Omnikey 5121 to work while I await the OpenPCD reader. It is not going well as one might imagine. I've been thinking about this, and what is needed is an economic model. Proprietary supply chains don't have a need to be able to cross-reference and check their weight and measures so they can tolerate a closed architecture. Notably, closed architectures can be first to market but cannot stay that way because they can't be currently (in RT) validated by more than one party, so they amount to private money. However any commercial organization or association with more than one member should be interested in this because it will allow for multiparty validation of transactions. Also, quite frankly, I can't see a viable taxation system without such mechanisms, either. Dhu ATB, Conor.
Re: Software RAID with OpenBSD
On Sat, 9 Aug 2008 20:25:59 -0300 Daniel Bareiro [EMAIL PROTECTED] wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Aug 09, 2008 at 17:22:58 -0300, Marco Peereboom wrote: On Aug 9, 2008, at 10:23 AM, Roberto Pereyra [EMAIL PROTECTED] wrote: Look this link: http://contenidosonline.blogspot.com/2007/01/raid-1-por-software-con-openbsd.html All the information regarding softraid is in man bioctl bio softraid. Raidframe is a little oldish these days. I am a few features away before we can start thinking about chunking it in favor if softraid. And it is already sufficiently robust like being used in stable systems? Yes, except that it is a recipe for a _fast_ disk only since there is yet no (to my knowledge) an easy way to recover from an actual hw failure. Dhu What experience you had using it? There is some other guide of softraid beyond man pages? Thanks to both for your replies. Regards, Daniel iEYEARECAAYFAkieJ1YACgkQZpa/GxTmHTfamQCeNwirXaW4ckiqfZH3ZQE2ETBQ sX0AniyFRqHzGhrNkOZM/+kd7Aau/cUS =FVMu -END PGP SIGNATURE-
Promise SATA 300 TX4 strangeness
Howdy List? I have a Promise SATA 300 TX4 which I've tested with 3 different mobos using 4.3 and 4.4. Two of the mobos, all of which operate with obsd cleanly when using on-board disk io, fail to finish booting, locking tight at the mtrr: Pentium Pro MTRR support line when booting the cd and at the softraid0 at root line when booting from a SATA disk attached to the TX4. AMD Sempron(tm) Processor 3000+ (1808.33-MHz 686-class CPU) AMD Sempron(tm) Processor 2600+ (AuthenticAMD 686-class, 128KB L2 cache) 1.61 GHz On an Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz board (Gigabyte), however, I have no problems booting and running with the Promise in, either from CD or from disk attached to the Promise. Any ideas as to what is happening would be appreciated. Thanks, Dhu
? Recommended News Server
Howdy List? I'm going to set up a news server on an OpenBSD system and I would like to know if there is a recommended server that I should use. Thanks, Dhu
Re: New tcp stack attack
On Wed, 01 Oct 2008 14:52:29 +0200 Leon Dippenaar [EMAIL PROTECTED] wrote: Hi there, is there any weight to this new story on slashdot http://it.slashdot.org/it/08/10/01/0127245.shtml about a new attacker possible to break any tcp stack? Sounds rather shady, so here I am, perhaps you guys have your ears closer to the ground Regards Seems possible. Here: http://cr.yp.to/syncookies/archive you will find the passage An attack would still need to know our random secret in order to spoof a connection without seeing any of our outgoing traffic. If an attacker can see our outgoing traffic, then they will be able to spoof a connection, but they could have done that anyway, even under the secure sequence number scheme we currently use. and here: http://it.slashdot.org/it/08/10/01/0127245.shtml Sockstress computes and stores so-called client-side SYN cookies and enables Lee and Louis to specify a destination port and IP address. The method allows them to complete the TCP handshake without having to store any values, which takes time and resources. We can then say that we want to establish X number of TCP connections on that address and that we want to use this attack type, and it does it, Lee said. we have the implication(?) that the exploit samples the target server for a number of SYN cookies that will allow them to crack the 24-bit 'secret' hash that the server is using. Once that is done, they can then forge a large number of packets from random IP addressess that look like correct client acks of the server's syn cookie. A server might counter by using a new secret hash for each session request (leaving it open to a resource-hog attack) or use a sequential mod of it's hash for each new request made... Dhu
Re: New tcp stack attack
On Wed, 1 Oct 2008 15:58:22 +0200 Claudio Jeker [EMAIL PROTECTED] wrote: On Wed, Oct 01, 2008 at 03:31:00PM +0200, Stephan A. Rickauer wrote: On Wed, 2008-10-01 at 14:52 +0200, Leon Dippenaar wrote: Hi there, is there any weight to this new story on slashdot http://it.slashdot.org/it/08/10/01/0127245.shtml about a new attacker possible to break any tcp stack? Sounds rather shady, so here I am, perhaps you guys have your ears closer to the ground A little bit less vage info can be found here http://tinyurl.com/3hv3kf This article is mostly about exploiting SYN cookies to bring servers into resource starvation. OpenBSD does not implement SYN cookies. We have a SYN cache with a upper limit of open handshakes. Together with random initial sequence numbers it is hard to finish the 3-way handshake without getting the SYN/ACK from the server on OpenBSD systems. It seems to me the problem is with SYN cookies. Dhu I'm not too concerned about this fundamental problem with TCP but as usual the mentioned article is less informative then the back side of my breakfast cereals box. -- :wq Claudio
Re: New tcp stack attack
On Wed, 01 Oct 2008 12:24:16 -0300 Fernando Gont [EMAIL PROTECTED] wrote: At 11:13 a.m. 01/10/2008, Duncan Patton a Campbell wrote: Sockstress computes and stores so-called client-side SYN cookies and enables Lee and Louis to specify a destination port and IP address. The method allows them to complete the TCP handshake without having to store any values, which takes time and resources. We can then say that we want to establish X number of TCP connections on that address and that we want to use this attack type, and it does it, Lee said. This is simply the naphta attack. They don't really need to use syn cookies. They could simply ACK any SYN/ACK they receive, and that's it. The impression I got is that they collect enough SYN cookies from the server to crack the server's secret (24bit) and THEN they can forge any number of acks to the server's syn cookie that contain bogus ip/ports but with the correct sequence/hash. If this is not the case then it is nothing new. Dhu The attack is not new, and they are not proposing any counter-measures. It doesn't mean does this does not need attention... but they are not making any new contribution to the issue. Kind regards, -- Fernando Gont e-mail: [EMAIL PROTECTED] || [EMAIL PROTECTED] PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
Re: Recommend hardware for video surveillance system?
On Fri, 31 Oct 2008 20:28:34 -0700 Brian Keefer [EMAIL PROTECTED] wrote: I'm finally getting around to starting my project to build a home- monitoring system. I'm going to need multiple capture devices inside the home, and at least one outside as well. I'm looking for recommendations on a video capture card, and wireless video cameras. I don't mind spending $100 US per cam if it's worth it. Unless you have a good reason not to, use WebCams that implement an http(s) server on camera. The use of a standard protocol makes life much easier. Dhu Also, any software recommendations would be appreciated. I've searched the archives, and it looks like a few other people have started similar projects, but there aren't too many details about what anyone did. I'm planning on keeping track of the steps and hopefully documenting things well enough to submit to undeadly, assuming the project is a success. Thanks in advance for any suggestions. -- bk
Re: Modern operating systems are flawed by design, including OpenBSD.
And proprietary software, like WinDose, that uses bodged standards is the root cause of this insecurity. Here you can read about another, possibly more serious, danger posed by proprietary systems: http://www.physorg.com/news144343006.html Dhu On Thu, 23 Oct 2008 18:54:27 +0800 mak maxie [EMAIL PROTECTED] wrote: http://www.computerworld.com.au/index.php?id=264209080rid=-219 Microsoft Windows is the only operating that supports signed binaries. _ [EMAIL PROTECTED] http://msn.com.hk
Re: Recommend hardware for video surveillance system?
On Sun, 2 Nov 2008 14:52:58 + (UTC) Stuart Henderson [EMAIL PROTECTED] wrote: On 2008-11-02, Brian Keefer [EMAIL PROTECTED] wrote: On Nov 1, 2008, at 10:21 PM, Duncan Patton a Campbell wrote: On Fri, 31 Oct 2008 20:28:34 -0700 Brian Keefer [EMAIL PROTECTED] wrote: I'm finally getting around to starting my project to build a home- monitoring system. I'm going to need multiple capture devices inside the home, and at least one outside as well. I'm looking for recommendations on a video capture card, and wireless video cameras. I don't mind spending $100 US per cam if it's worth it. Unless you have a good reason not to, use WebCams that implement an http(s) server on camera. The use of a standard protocol makes life much easier. Dhu I was under the impression that the quality would be bad and/or they would require a proprietary client application that only runs on Windows, etc... Am I mistaken? If the cam has it's own webserver, is it simply serving static frames ever x seconds, or streams video as well? look at the Axis cameras. Yes, this http://www.axis.com/products/cam_207w/index.htm is the sort of thing I was talking about. Dhu Sorry for the basic questions, but I hadn't even considered that approach. I was planning on using bktr(4) with capture cards and cameras with coax/rca/s-video out. that may also be possible, but afaik it's mostly used for watching tv, at least the manual page doesn't talk about the multi-input cards you'd probably want to use.
Re: I am not a geek ;)
On Mon, 3 Nov 2008 10:48:46 -0800 (PST) Jeff1981 [EMAIL PROTECTED] wrote: Hello I actually am starting the use of OpenBSD thanks to production team. Please can you help me to pass this error message when I try to connect my NAS an external drive (a network drive). This works on my other computer but not from the one on BSD, I have an access error message however the ping to the NAS server works and so does the FTP via internal IP, so does the SSH connection. Only the network drive cannot be connected. Any suggest ? The network drive is probably an SMB service. Look at SMB/Samba Clients to access these. Dhu Thanks and bye Yrs Jeff -- View this message in context: http://www.nabble.com/I-am-not-a-geek--%29-tp20308280p20308280.html Sent from the openbsd user - misc mailing list archive at Nabble.com.
Re: Oddly high load average
On Fri, 7 Nov 2008 13:16:38 -0500 Damian Gerow [EMAIL PROTECTED] wrote: Theo de Raadt wrote: : The load average on my machine is inexplicably high; when idle, it sits up : between 0.6 and 0.7. : : Oh my god, the horror. Nothing is wrong with your machine at all. : However, I have a diff which will probably keep you happy. Not sure if you caught my last paragraph, but I did say that nothing was wrong with the system at all, I'm just curious as to why the average is high. The simple explanation is found in Mark Zimmerman's reply: I bet you could get your load average to drop if you forced your cpu to run full speed even when doing nothing. I am guessing that this is not really what you want. I guess you are assuming the load average is calculated against some a-priori max available cpu-cycles when, from Theo's posts, it looks like it is being calculated against current available cycles. When your cpu is in a power-save mode it has less cycles available, so the minimal load you place on it still consumes a higher fraction of what is available. Dhu
Re: Oddly high load average
On Fri, 07 Nov 2008 12:30:21 -0700 Theo de Raadt [EMAIL PROTECTED] wrote: On Fri, 7 Nov 2008 13:16:38 -0500 Damian Gerow [EMAIL PROTECTED] wrote: Theo de Raadt wrote: : The load average on my machine is inexplicably high; when idle, it sits up : between 0.6 and 0.7. : : Oh my god, the horror. Nothing is wrong with your machine at all. : However, I have a diff which will probably keep you happy. Not sure if you caught my last paragraph, but I did say that nothing was wrong with the system at all, I'm just curious as to why the average is high. The simple explanation is found in Mark Zimmerman's reply: I bet you could get your load average to drop if you forced your cpu to run full speed even when doing nothing. I am guessing that this is not really what you want. Wrong. I guess you are assuming the load average is calculated against some a-priori max available cpu-cycles when, from Theo's posts, it looks like it is being calculated against current available cycles. Ok. So considering the speed with which this patch appeared I'm going to assume there's more here than meets the eye. Just the same it looked like a sampling (when/where) issue to me. Wrong. When your cpu is in a power-save mode it has less cycles available, so the minimal load you place on it still consumes a higher fraction of what is available. Wrong.
Re: acer aspire one dmesg?
On Wed, 6 Aug 2008 16:17:14 +0200 Freddy DISSAUX [EMAIL PROTECTED] wrote: Le Wed, Aug 06, 2008 at 11:29:36PM +1000, Jonathan Gray icrivait: On Wed, Aug 06, 2008 at 09:23:49AM +0200, Freddy DISSAUX wrote: Be careful whith re0, no mac address detected: re0 [ snip ] address 00:00:00:00:00:00 The mac address should display correctly with a newer snapshot, reading out via the EEPROM is now bypassed on these newer PCIE re variants. Ok, i'll try newer snapshots and post the dmesg. Attached... [demime 1.01d removed an attachment of type application/octet-stream which had a name of dmesg.aone]
Sound problems
Howdy list? I am having problems with the sound on a 4.3 system running Gnome desktop. The error that mplayer gives is: AO SUN Can t open audio device /dev/audio, Device busy - nosound This has not always been broken, and there is nothing apparent to me in the dmesg (following). If anyone can give me a clue as to what is wrong here I would greatly appreciate it. Thanks, Dhu OpenBSD 4.3-current (GENERIC) #951 Wed Jun 25 10 53 21 MDT 2008 [EMAIL PROTECTED] /usr/src/sys/arch/i386/compile/GENERIC cpu0 AMD Duron(tm) processor (AuthenticAMD 686-class, 64KB L2 cache) 1.40 GHz cpu0 FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE real mem = 1073250304 (1023MB) avail mem = 1029591040 (981MB) mainbus0 at root bios0 at mainbus0 AT/286 BIOS, date 09/09/03, BIOS32 rev. 0 @ 0xfb7f0, SMBIOS rev. 2.2 @ 0xf0800 (33 entries) bios0 vendor Phoenix Technologies, LTD version 6.00 PG date 09/09/2003 bios0 VIA Technologies, Inc. KM266-8235 apm0 at bios0 Power Management spec V1.2 (slowidle) apm0 AC on, battery charge unknown acpi at bios0 function 0x0 not configured pcibios0 at bios0 rev 2.1 @ 0xf/0xdaa4 pcibios0 PCI IRQ Routing Table rev 1.0 @ 0xfd9f0/176 (9 entries) pcibios0 PCI Exclusive IRQs 5 10 11 12 pcibios0 PCI Interrupt Router at 000 17 0 (VIA VT82C596A ISA rev 0x00) pcibios0 PCI bus #1 is the last bus bios0 ROM list 0xc/0x8000 0xc8000/0x8000! cpu0 at mainbus0 pci0 at mainbus0 bus 0 configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 VIA VT8375 PCI rev 0x00 ppb0 at pci0 dev 1 function 0 VIA VT8633 AGP rev 0x00 pci1 at ppb0 bus 1 vga1 at pci1 dev 0 function 0 ATI Mach64 GZ rev 0x7a wsdisplay0 at vga1 mux 1 console (80x25, vt100 emulation) wsdisplay0 screen 1-5 added (80x25, vt100 emulation) agp0 at vga1 v2, aperture at 0xc000, size 0x1000 eap0 at pci0 dev 8 function 0 Ensoniq CT5880 rev 0x02 irq 11 ac97 codec id 0x83847608 (SigmaTel STAC9708/11) ac97 codec features 18 bit DAC, 18 bit ADC, SigmaTel 3D audio0 at eap0 midi0 at eap0 AudioPCI MIDI UART rl0 at pci0 dev 9 function 0 Accton MPX 5030/5038 rev 0x10 irq 10, address 00 e0 29 88 90 26 rlphy0 at rl0 phy 0 RTL internal PHY uhci0 at pci0 dev 16 function 0 VIA VT83C572 USB rev 0x80 irq 11 uhci1 at pci0 dev 16 function 1 VIA VT83C572 USB rev 0x80 irq 10 uhci2 at pci0 dev 16 function 2 VIA VT83C572 USB rev 0x80 irq 5 ehci0 at pci0 dev 16 function 3 VIA VT6202 USB rev 0x82 irq 12 usb0 at ehci0 USB revision 2.0 uhub0 at usb0 VIA EHCI root hub rev 2.00/1.00 addr 1 viapm0 at pci0 dev 17 function 0 VIA VT8235 ISA rev 0x00 iic0 at viapm0 spdmem0 at iic0 addr 0x50 512MB DDR SDRAM non-parity PC3200CL3.0 spdmem1 at iic0 addr 0x51 512MB DDR SDRAM non-parity PC3200CL3.0 pciide0 at pci0 dev 17 function 1 VIA VT82C571 IDE rev 0x06 ATA133, channel 0 configured to compatibility, channel 1 configured to compatibility wd0 at pciide0 channel 0 drive 0 WDC WD800JB-00JJC0 wd0 16-sector PIO, LBA, 76319MB, 156301488 sectors wd1 at pciide0 channel 0 drive 1 WDC WD2500JB-00GVA0 wd1 16-sector PIO, LBA48, 238475MB, 488397168 sectors wd0(pciide0 0 0) using PIO mode 4, Ultra-DMA mode 5 wd1(pciide0 0 1) using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0 channel 1 drive 0 scsibus0 at atapiscsi0 2 targets, initiator 7 cd0 at scsibus0 targ 0 lun 0 HL-DT-ST, DVD-RAM GSA-H50N, 1.00 ATAPI 5/cdrom removable atapiscsi1 at pciide0 channel 1 drive 1 scsibus1 at atapiscsi1 2 targets, initiator 7 cd1 at scsibus1 targ 0 lun 0 PIONEER, DVD-RW DVR-105, 1.30 ATAPI 5/cdrom removable cd0(pciide0 1 0) using PIO mode 4, Ultra-DMA mode 2 cd1(pciide0 1 1) using PIO mode 4, Ultra-DMA mode 2 vr0 at pci0 dev 18 function 0 VIA RhineII-2 rev 0x74 irq 11, address 00 0d 87 30 5c 98 ukphy0 at vr0 phy 1 Generic IEEE 802.3u media interface, rev. 8 OUI 0x004063, model 0x0032 usb1 at uhci0 USB revision 1.0 uhub1 at usb1 VIA UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci1 USB revision 1.0 uhub2 at usb2 VIA UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci2 USB revision 1.0 uhub3 at usb3 VIA UHCI root hub rev 1.00/1.00 addr 1 isa0 at mainbus0 isadma0 at isa0 com0 at isa0 port 0x3f8/8 irq 4 ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0 using irq 1 for kbd slot wskbd0 at pckbd0 console keyboard, using wsdisplay0 pcppi0 at isa0 port 0x61 midi1 at pcppi0 PC speaker spkr0 at pcppi0 lpt0 at isa0 port 0x378/4 irq 7 it0 at isa0 port 0x2e/2 IT8705F rev 0x02, EC port 0x290 npx0 at isa0 port 0xf0/16 reported by CPUID using exception 16 biomask ff6d netmask ff6d ttymask mtrr Pentium Pro MTRR support uhidev0 at uhub2 port 1 configuration 1 interface 0 Logitech USB Receiver rev 1.10/34.10 addr 2 uhidev0 iclass 3/1 ums0 at uhidev0 16 buttons, Z dir wsmouse0 at ums0 mux 0 uhidev1 at uhub2 port 2 configuration 1 interface 0 Darfon USB Combo Keyboard
Re: Sound problems
On Thu, 11 Dec 2008 18:02:00 +0100 Alexandre Ratchov a...@caoua.org wrote: On Thu, Dec 11, 2008 at 09:15:53AM -0700, Duncan Patton a Campbell wrote: Howdy list? I am having problems with the sound on a 4.3 system running Gnome desktop. The error that mplayer gives is: AO SUN Can t open audio device /dev/audio, Device busy - nosound This has not always been broken, and there is nothing apparent to me in the dmesg (following). If anyone can give me a clue as to what is wrong here I would greatly appreciate it. try to fstat /dev/audio and/or fstat /dev/sound to see which application is using your device. Then you can stop the application and try mplayer again. -- Alexandre Turns out to be a hw problem with the sound card: replace and voila.. 8-/ Thank you. Dhu
Re: Sound problems
On Thu, 11 Dec 2008 18:02:00 +0100 Alexandre Ratchov a...@caoua.org wrote: On Thu, Dec 11, 2008 at 09:15:53AM -0700, Duncan Patton a Campbell wrote: Howdy list? I am having problems with the sound on a 4.3 system running Gnome desktop. The error that mplayer gives is: AO SUN Can t open audio device /dev/audio, Device busy - nosound This has not always been broken, and there is nothing apparent to me in the dmesg (following). If anyone can give me a clue as to what is wrong here I would greatly appreciate it. try to fstat /dev/audio and/or fstat /dev/sound to see which application is using your device. Then you can stop the application and try mplayer again. -- Alexandre Achh. I spoke too soon. Anyways, the problem seems to be the esd sound daemon not getting out of the way when something else wants to play. Dhu
Re: Ethernet flow control
On Wed, 17 Dec 2008 13:40:35 +0100 Toni Mueller openbsd-m...@oeko.net wrote: Hello, I have question regarding Ethernet flow control. It would be nice to be able to see and/or adjust the current flow control configuration for individual interfaces from the command line, at 100 and 1000MBit/s. My interfaces usually use the fxp(4) or em(4) drivers. I dimly remember having seen such a thing somewhere (tx_pause,rx_pause), but can't find it right now. Checking my machines did not turn up anything. This sort of thing is usually controlled by firmware and os driver access is inherently limited to known good parameters. To play with this stuff you will prob'ly need cards that allow you download your own (modded) firmware. Dhu Kind regards, --Toni++
Re: Strange WLAN issue with ral(4) in hostap mode
On Fri, 2 Jan 2009 05:45:45 +0200 Jussi Peltola pe...@pelzi.net wrote: Disable power saving on the clients. 'zat it? Dhu
Re: traffic shaping in OpenBSD
On Tue, 1 Nov 2011 08:55:07 -0400 Nico Kadel-Garcia nka...@gmail.com wrote: On Tue, Nov 1, 2011 at 4:10 AM, Gregory Edigarov g...@bestnet.kharkov.ua wrote: On Tue, 1 Nov 2011 08:53:46 +0100 Bret S. Lambert bret.lamb...@gmail.com wrote: On Tue, Nov 01, 2011 at 09:47:35AM +0200, Gregory Edigarov wrote: On Tue, 1 Nov 2011 11:17:56 +0400 ZZ Wave zzw...@gmail.com wrote: What solution should be used for traffic shaping on real-life, production gateways with tens and hundreds users? PF queues seem to be too userspace-ish and CPU consuming. Pardon? What do you mean userspace-ish ? I believe he wants to communicate with the kernel with the power of his mind. Where's my brain implant? ;-) Hold still. (I actually used to design electronics for those: they used a *BIG* and wonderfully frightening drill.) Implants seem so, er, unsanitary. Seems to me something like yer basic tinfoil hat would a more elegant approach ... Dhu
Re: Which version of Firefox most secure?
On Sun, 20 Nov 2011 16:18:13 +0100 Tomas Bodzar tomas.bod...@gmail.com wrote: On Sun, Nov 20, 2011 at 3:14 PM, Javier Bassi javierba...@gmail.com wrote: On Sun, Nov 20, 2011 at 4:17 AM, Tomas Bodzar tomas.bod...@gmail.com wrote: 7.x.xx actual stable from Mozilla 7.x is no longer supported by Mozilla. 7.0.1 has 3 CVEs If you don't have 8.0 on ports, go with 3.6.24 Actually I'm going with xxxterm, but Firefox is as backup only Woohoo. I just tried xxxterm and I think I'm in lurv... Dhu
Re: Narcicism?
On Thu, 1 Dec 2011 10:49:23 -0500 Andres Genovez andresgeno...@gmail.com wrote: When you are a real Hacker, you don`t call yourself one, people do. I call myself a hacker. Others call me a reverse systems engineer, systems analyst programmer, network analyst, repurposing specialist, blablabla. But I've been a hacker since I learned about model railroads and ham radios from my buddy's dad. I have an apple 2 in the basement and know minix, so there ;-) Dhu
Re: Narcicism?
On Thu, 1 Dec 2011 17:37:44 + Kevin Chadwick ma1l1i...@yahoo.co.uk wrote: On Thu, 1 Dec 2011 16:39:24 +0100 David Coppa wrote: See the subject: Narcicism And, btw, the correct spelling is Narcissism: as a guru, this is something you should already have known ;) I prefer narsciscism ;^) Kc narchischism? Dhu
Re: locate weirdness
On Wed, 11 Jan 2012 13:47:48 -0600 L. V. Lammert l...@omnitec.net wrote: At 01:30 PM 1/11/2012, Jeremy O'Brien wrote: 4.3 was released May 1, 2008. That's almost 4 years old software. What are you expecting here? Someone to check out the code from that version and deeply inspect what may be causing your problem, that is more than likely already fixed in a later version? Another typical reply - the question was has anyone ever seen anything like this, .. or, perhaps, what could be causing it. No need for the off-topic diatribes - a simple no would more than suffice. Lee Yes. I have seen problems with locate in all releases that I have run. Unfortunately I have never bothered to characterize these problems. Dhu
Re: locate weirdness
On Thu, 12 Jan 2012 02:15:39 -0700 Duncan Patton a Campbell campb...@neotext.ca wrote: On Wed, 11 Jan 2012 13:47:48 -0600 L. V. Lammert l...@omnitec.net wrote: At 01:30 PM 1/11/2012, Jeremy O'Brien wrote: 4.3 was released May 1, 2008. That's almost 4 years old software. What are you expecting here? Someone to check out the code from that version and deeply inspect what may be causing your problem, that is more than likely already fixed in a later version? Another typical reply - the question was has anyone ever seen anything like this, .. or, perhaps, what could be causing it. No need for the off-topic diatribes - a simple no would more than suffice. Lee Yes. I have seen problems with locate in all releases that I have run. Unfortunately I have never bothered to characterize these problems. Dhu I should add that this has happened on deeply nested file systems with longpathnames and highbit characters. Dhu
5.0 Stable (amd64) build appears broken.
I install 5.0 AMD64 base.. # uname -a OpenBSD jimg.indx.ca 5.0 GENERIC.MP#63 amd64 -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
5.0 Stable (amd64) build appears broken.
arrrgh. hit the send b4 that was finished, anyways I install 5.0 AMD64 base.. # uname -a OpenBSD jimg.indx.ca 5.0 GENERIC.MP#63 amd64 then fetch the patchbranch source.. export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs cvs -d$CVSROOT checkout -rOPENBSD_5_0 -P src ports xenocara then do the kernel make # cd /usr/src/sys/arch/amd64/conf # config GENERIC config: symlink(machine - ../../../../arch/amd64/include): File exists config: symlink(amd64 - machine): File exists *** Stop. (this is where we start to go sideways, but mebbe file extance is ok..) # cd ../compile/GENERIC # make clean # make cc -Werror -Wall -Wstrict-prototypes -Wmissing-prototypes -Wno-main -Wno-uninitialized -Wno-format -Wstack-larger-than-2047 -mcmodel=kernel -mno-red-zone -mno-sse2 -mno-sse -mno-3dnow -mno-mmx -msoft-float -fno-omit-frame-pointer -fno-builtin-printf -fno-builtin-snprintf -fno-builtin-vsnprintf -fno-builtin-log -fno-builtin-log2 -fno-builtin-malloc -O2 -pipe -nostdinc -I. -I../../../.. -I../../../../arch -DDDB -DDIAGNOSTIC -DKTRACE -DACCOUNTING -DKMEMSTATS -DPTRACE -DCRYPTO -DSYSVMSG -DSYSVSEM -DSYSVSHM -DUVM_SWAP_ENCRYPT -DCOMPAT_43 -DCOMPAT_O48 -DLKM -DFFS -DFFS2 -DFFS_SOFTUPDATES -DUFS_DIRHASH -DQUOTA -DEXT2FS -DMFS -DNFSCLIENT -DNFSSERVER -DCD9660 -DUDF -DMSDOSFS -DFIFO -DSOCKET_SPLICE -DTCP_SACK -DTCP_ECN -DTCP_SIGNATURE -DINET -DALTQ -DINET6 -DIPSEC -DPPP_BSDCOMP -DPPP_DEFLATE -DPIPEX -DMROUTING -DMPLS -DBOOT_CONFIG -DUSER_PCICONF -DAPERTURE -DMTRR -DNTFS -DPCIVERBOSE -DUSBVERBOSE -DWSDISPLAY_COMPAT_USL -DWSDISPLAY_COMPAT_RAWKBD -DWSDISPLAY_DEFAULTSCREENS=6 -DWS! DISPLAY_COMPAT_PCVT -DX86EMU -DONEWIREVERBOSE -DMAXUSERS=80 -D_KERNEL -MD -MP -c ioconf.c cc1: warnings being treated as errors ioconf.c:803: warning: excess elements in struct initializer ioconf.c:803: warning: (near initialization for 'cfdata[0]') ioconf.c:805: warning: excess elements in struct initializer ioconf.c:1521: warning: (near initialization for 'cfdata[359]') ioconf.c:1523: warning: excess elements in struct initializer ioconf.c:1523: warning: (near initialization for 'cfdata[360]') *** Error code 1 Stop in /usr/src/sys/arch/amd64/compile/GENERIC (line 735 of Makefile). # And thats all. Same thing happens trying to build 5.0stable on a 4.9 system... Any help would be appreciated, Thanks, Dhu -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Mon, 20 Feb 2012 10:05:19 -0500 Ted Unangst t...@tedunangst.com wrote: you are running config from a different version than the source you are trying to compile. Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config without building it? d On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote: arrrgh. hit the send b4 that was finished, anyways I install 5.0 AMD64 base.. # uname -a OpenBSD jimg.indx.ca 5.0 GENERIC.MP#63 amd64 then fetch the patchbranch source.. export CVSROOT=anon...@anoncvs1.ca.openbsd.org:/cvs cvs -d$CVSROOT checkout -rOPENBSD_5_0 -P src ports xenocara then do the kernel make # cd /usr/src/sys/arch/amd64/conf # config GENERIC config: symlink(machine - ../../../../arch/amd64/include): File exists config: symlink(amd64 - machine): File exists *** Stop. (this is where we start to go sideways, but mebbe file extance is ok..) # cd ../compile/GENERIC # make clean # make cc -Werror -Wall -Wstrict-prototypes -Wmissing-prototypes -Wno-main -Wno-uninitialized -Wno-format -Wstack-larger-than-2047 -mcmodel=kernel -mno-red-zone -mno-sse2 -mno-sse -mno-3dnow -mno-mmx -msoft-float -fno-omit-frame-pointer -fno-builtin-printf -fno-builtin-snprintf -fno-builtin-vsnprintf -fno-builtin-log -fno-builtin-log2 -fno-builtin-malloc -O2 -pipe -nostdinc -I. -I../../../.. -I../../../../arch -DDDB -DDIAGNOSTIC -DKTRACE -DACCOUNTING -DKMEMSTATS -DPTRACE -DCRYPTO -DSYSVMSG -DSYSVSEM -DSYSVSHM -DUVM_SWAP_ENCRYPT -DCOMPAT_43 -DCOMPAT_O48 -DLKM -DFFS -DFFS2 -DFFS_SOFTUPDATES -DUFS_DIRHASH -DQUOTA -DEXT2FS -DMFS -DNFSCLIENT -DNFSSERVER -DCD9660 -DUDF -DMSDOSFS -DFIFO -DSOCKET_SPLICE -DTCP_SACK -DTCP_ECN -DTCP_SIGNATURE -DINET -DALTQ -DINET6 -DIPSEC -DPPP_BSDCOMP -DPPP_DEFLATE -DPIPEX -DMROUTING -DMPLS -DBOOT_CONFIG -DUSER_PCICONF -DAPERTURE -DMTRR -DNTFS -DPCIVERBOSE -DUSBVERBOSE -DWSDISPLAY_COMPAT_USL -DWSDISPLAY_COMPAT_RAWKBD -DWSDISPLAY_DEFAULTSCREENS=6 -DWS! DISPLAY_COMPAT_PCVT -DX86EMU -DONEWIREVERBOSE -DMAXUSERS=80 -D_KERNEL -MD -MP -c ioconf.c cc1: warnings being treated as errors ioconf.c:803: warning: excess elements in struct initializer ioconf.c:803: warning: (near initialization for 'cfdata[0]') ioconf.c:805: warning: excess elements in struct initializer ioconf.c:1521: warning: (near initialization for 'cfdata[359]') ioconf.c:1523: warning: excess elements in struct initializer ioconf.c:1523: warning: (near initialization for 'cfdata[360]') *** Error code 1 Stop in /usr/src/sys/arch/amd64/compile/GENERIC (line 735 of Makefile). # And thats all. Same thing happens trying to build 5.0stable on a 4.9 system... Any help would be appreciated, Thanks, Dhu -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco. -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Mon, 20 Feb 2012 23:24:56 -0500 Ted Unangst t...@tedunangst.com wrote: On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote: On Mon, 20 Feb 2012 10:05:19 -0500 Ted Unangst t...@tedunangst.com wrote: you are running config from a different version than the source you are trying to compile. Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config without building it? I would revisit the assumption you are building 5.0 on 5.0. You are reporting an error nobody else is reporting, that just happens to be exactly the error one sees when building with a mismatched config and src, so You see where I'm coming from? Yes. I do. I can only assume I've buggerd up the src tree somehow. uname -svmpr OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics thanks, D -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 09:16:34 -0700 Duncan Patton a Campbell campb...@neotext.ca wrote: On Mon, 20 Feb 2012 23:24:56 -0500 Ted Unangst t...@tedunangst.com wrote: On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote: On Mon, 20 Feb 2012 10:05:19 -0500 Ted Unangst t...@tedunangst.com wrote: you are running config from a different version than the source you are trying to compile. Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config without building it? I would revisit the assumption you are building 5.0 on 5.0. You are reporting an error nobody else is reporting, that just happens to be exactly the error one sees when building with a mismatched config and src, so You see where I'm coming from? Yes. I do. I can only assume I've buggerd up the src tree somehow. uname -svmpr OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics thanks, So, the problem appears to be that you cannot check out a 5.0-Stable source tree directly on a 5.0-Release system, but instead must prime the tree with the Release code and then checkout the Stable stuff on top. thanks, Dhu D -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco. -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 09:53:48 -0800 Philip Guenther guent...@gmail.com wrote: On Tue, Feb 21, 2012 at 8:16 AM, Duncan Patton a Campbell campb...@neotext.ca wrote: On Mon, 20 Feb 2012 23:24:56 -0500 Ted Unangst t...@tedunangst.com wrote: On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote: On Mon, 20 Feb 2012 10:05:19 -0500 Ted Unangst t...@tedunangst.com wrote: you are running config from a different version than the source you are trying to compile. Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config without building it? I would revisit the assumption you are building 5.0 on 5.0. You are reporting an error nobody else is reporting, that just happens to be exactly the error one sees when building with a mismatched config and src, so You see where I'm coming from? Yes. I do. I can only assume I've buggerd up the src tree somehow. uname -svmpr OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics It's most likely that you're currently running a 5.0 kernel with 4.9 binaries. To upgrade from 4.9 to 5.0 by building from source you would have needed to follow the steps in the following -current page of the FAQ during the run-up to the 5.0 release. Once 5.0 was released, the presumption became that you'll install 5.0 sets and work from there. Probably the simplest way forward is to just follow the steps outlined here: http://www.openbsd.org/faq/upgrade50.html There's a minor error in http://www.openbsd.org/faq/faq5.html such that it specifies that to follow stable you can pull the whole tree with cvs and run as such. This is not the case. The 5.0-Stable tree will not build without the tree being first primed with the 5.0-Release code. Dhu That even documents the other configuration changes you'll need to consider as part of the upgrade, something which building from source does *not* automatically do for you. Philip Guenther -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 18:38:25 + Miod Vallat m...@online.fr wrote: There's a minor error in http://www.openbsd.org/faq/faq5.html such that it specifies that to follow stable you can pull the whole tree with cvs and run as such. This is not the case. The 5.0-Stable tree will not build without the tree being first primed with the 5.0-Release code. Of course it will, BUT you need to build from a 5.0 userland, which means that you should not update by extracting the `base' set only. The 5.0-Release userland appears insufficient to this: this was a novel installation from a 5.0Rel disk image: previously, after a cd install of the rel image and direct cvs pull of the src tree using this kernel: uname -svmpr OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics compilation of the new kernel resulted in the mixed error. after priming the /usr/src tree from sys.tar.gz and src.tar.gz, and then updating with cvs, this same kernel compiled correctly. Basically it was Ted's obs that tipped me off because most systems he speaks of would be incrementally built. uname -svmpr OpenBSD 5.0 GENERIC.MP#0 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics is now compiling userland Dhu -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 18:38:25 + Miod Vallat m...@online.fr wrote: There's a minor error in http://www.openbsd.org/faq/faq5.html such that it specifies that to follow stable you can pull the whole tree with cvs and run as such. This is not the case. The 5.0-Stable tree will not build without the tree being first primed with the 5.0-Release code. Of course it will, BUT you need to build from a 5.0 userland, which means that you should not update by extracting the `base' set only. This appears to be essentially correct. The problem was this: (from the machine) ls -l /usr/ total 96 drwxr-xr-x 7 root wheel 512 Aug 11 2011 X11R6 drwxr-xr-x 2 root wheel 6144 Feb 20 00:25 bin drwxr-xr-x 2 root wheel 1024 Feb 20 00:25 games drwxr-xr-x 34 root bin3072 Feb 21 11:35 include drwxr-xr-x 6 root wheel 5120 Feb 21 11:55 lib drwxr-xr-x 6 root wheel 512 Feb 20 00:25 libdata drwxr-xr-x 8 root wheel 1536 Feb 20 00:25 libexec drwxr-xr-x 2 root wheel 512 Aug 17 2011 lkm drwxr-xr-x 11 root wheel 512 Feb 20 00:31 local drwxr-xr-x 2 root wheel 512 Aug 17 2011 mdec lrwxr-xr-x 1 root wheel 9 Feb 21 11:33 obj - /dmnt/obj drwxrwxr-x 2 root wsrc512 Aug 17 2011 obj.X1 lrwxr-xr-x 1 root wheel11 Feb 21 10:00 ports - /dmnt/ports drwxr-xr-x 46 root wheel 1536 Feb 20 06:47 ports.X1 drwxr-xr-x 3 root wheel 512 Feb 20 07:30 pub drwxr-xr-x 2 root wheel 4096 Feb 20 00:25 sbin drwxr-xr-x 19 root wheel 512 Aug 17 2011 share lrwxr-xr-x 1 root wheel 9 Feb 21 09:57 src - /dmnt/src drwxr-xr-x 18 root wheel 512 Feb 20 06:47 src.X1 lrwxr-xr-x 1 root wheel14 Feb 21 10:00 xenocara - /dmnt/xenocara drwxr-xr-x 11 root wheel 512 Feb 20 06:45 xenocara.X1 lrwxr-xr-x 1 root wheel10 Feb 21 12:06 xobj - /dmnt/xobj drwxrwxr-x 2 root wsrc512 Aug 17 2011 xobj.X1 Rather than update the original sources (I wanted to keep them around) I sidlined them and linked to a 1T partition where I would build using the newly pulled CVS (I'm pretty close to the site, netwise) sources. Dhu -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 13:52:27 -0600 Carson Chittom car...@wistly.net wrote: Duncan Patton a Campbell campb...@neotext.ca writes: On Tue, 21 Feb 2012 09:16:34 -0700 Duncan Patton a Campbell campb...@neotext.ca wrote: On Mon, 20 Feb 2012 23:24:56 -0500 Ted Unangst t...@tedunangst.com wrote: On Mon, Feb 20, 2012, Duncan Patton a Campbell wrote: On Mon, 20 Feb 2012 10:05:19 -0500 Ted Unangst t...@tedunangst.com wrote: you are running config from a different version than the source you are trying to compile. Ok, but if I've started with 5.0 Release, how do I get 5.0 Stable's config without building it? I would revisit the assumption you are building 5.0 on 5.0. You are reporting an error nobody else is reporting, that just happens to be exactly the error one sees when building with a mismatched config and src, so You see where I'm coming from? Yes. I do. I can only assume I've buggerd up the src tree somehow. uname -svmpr OpenBSD 5.0 GENERIC.MP#63 amd64 AMD A6-3670 APU with Radeon(tm) HD Graphics thanks, So, the problem appears to be that you cannot check out a 5.0-Stable source tree directly on a 5.0-Release system, but instead must prime the tree with the Release code and then checkout the Stable stuff on top. No. You're wrong. At least, I did exactly what you said I cannot do. I installed (from CD) 5.0-release, and then cvs co'd -stable; and then installed per the usual directions. From dmesg: read and weap. i did. when you do a cd install, it puts src (sys), and xenocara in /usr. that primes the src/sys tree. if you then _move_ those trees out of the way entirely, and do a cvs checkout of the whole tree, well that what *I* saw anyways. Dhu OpenBSD 5.0-stable (GENERIC.MP) #0: Mon Jan 30 13:21:14 CST 2012 r...@jackson.wistly.net:/usr/src/sys/arch/amd64/compile/GENERIC.MP So unless something very strange has happened since January 30, you appear to be Doing Something Wrong. -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 18:00:20 -0500 Josh Grosse j...@jggimi.homeip.net wrote: My apologies if the redactions cause improper attributions, but this has gotten very deep, and Dhu replied to himself. For readability I've tried to wrap lines, too. On Tue, Feb 21, 2012 at 03:37:25PM -0700, Duncan Patton a Campbell wrote: On Tue, 21 Feb 2012 13:52:27 -0600 Carson Chittom car...@wistly.net wrote: Duncan Patton a Campbell campb...@neotext.ca writes: On Tue, 21 Feb 2012 09:16:34 -0700 Duncan Patton a Campbell campb...@neotext.ca wrote: ...[snip]... So, the problem appears to be that you cannot check out a 5.0-Stable source tree directly on a 5.0-Release system, but instead must prime the tree with the Release code and then checkout the Stable stuff on top. No. You're wrong. At least, I did exactly what you said I cannot do. I installed (from CD) 5.0-release, and then cvs co'd -stable; and then installed per the usual directions. From dmesg: read and weap. i did. when you do a cd install, it puts src (sys), and xenocara in /usr. that primes the src/sys tree. if you then _move_ those trees out of the way entirely, and do a cvs checkout of the whole tree, well that what *I* saw Many people, for many years, have been able to checkout a tagged working directory from CVS. I believe this is a PEBKAC, but not the one described. Because the error appeared to be an out-of-sync issue, I would have liked to see the output of: ls -l `which config` cat /usr/src/sys/CVS/Tag # ls -l `which config` -r-xr-xr-x 1 root bin 97464 Feb 21 12:29 /usr/sbin/config # cat /usr/src/sys/CVS/Tag TOPENBSD_5_0 That would have at least confirmed if the kernel source tree and the config were of appropriate vintages. Dhu, an additional suggestion: instead of uname -anything, please use sysctl kern.version. It produces far more useful information about your specific kernel. I sent you a note earlier today via Email, apparently it's still in your MTA queue. Yes. I have it... now ;/ -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: 5.0 Stable (amd64) build appears broken.
On Tue, 21 Feb 2012 18:44:19 -0500 Josh Grosse j...@jggimi.homeip.net wrote: On Tue, Feb 21, 2012 at 04:28:11PM -0700, Duncan Patton a Campbell wrote: On Tue, 21 Feb 2012 18:00:20 -0500 Josh Grosse j...@jggimi.homeip.net wrote: Because the error appeared to be an out-of-sync issue, I would have liked to see the output of: ls -l `which config` cat /usr/src/sys/CVS/Tag # ls -l `which config` -r-xr-xr-x 1 root bin 97464 Feb 21 12:29 /usr/sbin/config That executable was just built... so it is not the executable from 5.0-release/amd64. That should have an August 17 date stamp, if memory serves from earlier today. Yes. That's because it built after I untared the src and sys tars and cvs up'd them. # cat /usr/src/sys/CVS/Tag TOPENBSD_5_0 That's the right tag for 5.0-stable source. -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
CD/DVD CDROM support
0x00: apic 4 int 18, version 1.0, legacy support ehci2 at pci0 dev 22 function 2 ATI SB700 USB2 rev 0x00: apic 4 int 17 usb2 at ehci2: USB revision 2.0 uhub2 at usb2 ATI EHCI root hub rev 2.00/1.00 addr 1 pchb1 at pci0 dev 24 function 0 AMD AMD64 10h HyperTransport rev 0x00 pchb2 at pci0 dev 24 function 1 AMD AMD64 10h Address Map rev 0x00 pchb3 at pci0 dev 24 function 2 AMD AMD64 10h DRAM Cfg rev 0x00 pchb4 at pci0 dev 24 function 3 AMD AMD64 10h Misc Cfg rev 0x00 pchb5 at pci0 dev 24 function 4 AMD AMD64 10h Link Cfg rev 0x00 usb3 at ohci0: USB revision 1.0 uhub3 at usb3 ATI OHCI root hub rev 1.00/1.00 addr 1 usb4 at ohci1: USB revision 1.0 uhub4 at usb4 ATI OHCI root hub rev 1.00/1.00 addr 1 usb5 at ohci2: USB revision 1.0 uhub5 at usb5 ATI OHCI root hub rev 1.00/1.00 addr 1 usb6 at ohci3: USB revision 1.0 uhub6 at usb6 ATI OHCI root hub rev 1.00/1.00 addr 1 isa0 at mainbus0 com0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 umass0 at uhub0 port 1 configuration 1 interface 0 TE USB rev 2.00/1.00 addr 2 umass0: using SCSI over Bulk-Only scsibus1 at umass0: 2 targets, initiator 0 sd1 at scsibus1 targ 1 lun 0: TE, USB, PMAP SCSI0 0/direct removable serial.12340800FFAF4AC9 sd1: 3932MB, 512 bytes/sector, 8052736 sectors uhidev0 at uhub4 port 1 configuration 1 interface 0 Logitech USB Optical Mouse rev 2.00/54.00 addr 2 uhidev0: iclass 3/1 uhid at uhidev0 not configured softraid0 at root scsibus2 at softraid0: 256 targets root on rd0a swap on rd0b dump on rd0b -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Re: CD/DVD CDROM support VT6415 IDE
On Sun, 26 Feb 2012 17:17:00 -0500 Brynet bry...@gmail.com wrote: On Sun, Feb 26, 2012 at 02:07:19AM -0700, Duncan Patton a Campbell wrote: I am also wondering if this caused a failure in my raid1 set which kakked out into degraded mode at the same time I upgraded to 5.0, as the same ide path may be being used. The DVD drive is on a seperate IDE controller, so this is clearly unrelated. I can't help you with your softraid problems. On Sun, Feb 26, 2012 at 02:13:46PM -0700, Duncan Patton a Campbell wrote: woops no go on the cd.. was looking at the wrong mountpoint ... looks ok, spins up, thats all. What's in the drive, the installation disk? # disklabel cd0 .. If the drive isn't working with the generic PCI IDE driver, then as said, you'll need to find out what needs to be done in the VIA-specific code. There isn't anything else I can do for you, contact the developer that committed the change. -Bryan. Is the dev for this here on misc or should I go hunting? Basically the VIA Code (VT6415 IDE) for IDE CD/DVD drives appears to be hooped. Am now gonna try the latest snap.. Dhu -- Duncan Patton a Campbell is Dhu Ne obliviscaris, vix ea nostro voco.
Kylin
I just noticed this: http://www.physorg.com/news161355225.html about a secure os that's been under development in China since around 2k and is now being deployed by the Chinese Gov. Interestingly, it is built for a hardened CPU that, I'd guess, lacks many of the advanced features of iNTel architecture cpus. Anybody have any more info on this? Thanks, Dhu
Re: Kylin
On Sun, 17 May 2009 21:08:57 +0200 TomC!E! BodEC!r tomas.bod...@gmail.com wrote: I know,that's why they choose BSD-style licenced OS ;-) 2009/5/17 Cem Kayali cemkay...@eticaret.com.tr: Do you really think Chineese governmnt make source public? Not all of course ;) Regards, Jesus Sanchez, 05/17/09 20:58: TomC!E! BodEC!r escribiC3: After quick search on web it looks like it's based on FreeBSD 5.3 (initial version) with Windows like GUI.So it doesn't looks so secure now :-) But government agencies must have reason to receive money so why don't make wave about dangerous China with their new ultra-hyper-super secure system? Ofcourse that there can be interesting modifications.Maybe I will try it in Qemu :-) the chinese government really feels so vulnerable against U.S.? i mean, they say it like the WWIII will begin soon and we need to defend us on the cyberspace with our super-secure OS They're prob'ly as worried about their own hacks as anyone elses, but given they've built their own chip it's pretty clear they take the problems with iNtel rom/microcode seriously enough. Remember the foo-rah when Sony came up with it's own 64bit chip? All that bs about Sadman buying up a gross of playstations 'cause they're not trojaned with externally modifiable microcode ? Dhu and after all they based it on FreeBSD? I'm a OpenBSD user and I really feel that I've enought privacy, don't need a super-secret-ultra-secure OS nor to say Made In China xD Dne 17. kvD ten 2009 19:28 TomC!E! BodEC!r tomas.bod...@gmail.com napsal(a): Everyone can try it http://www.honeytechblog.com/downlod-kylin-operating-system-by-chinaqingbo-wu / 2009/5/17 Duncan Patton a Campbell campb...@neotext.ca: I just noticed this: http://www.physorg.com/news161355225.html about a secure os that's been under development in China since around 2k and is now being deployed by the Chinese Gov. Interestingly, it is built for a hardened CPU that, I'd guess, lacks many of the advanced features of iNTel architecture cpus. Anybody have any more info on this? Thanks, Dhu
Re: Kylin
On Sun, 17 May 2009 20:32:59 -0400 (private) HKS hks.priv...@gmail.com wrote: 2009/5/17 Toma Bodar tomas.bod...@gmail.com: I know,that's why they choose BSD-style licenced OS ;-) Yes, because China's respect for copyright and intellectual property is legendary. -HKS Perhaps this is out of place here, but China's take on IP is that the flow of ideas has, over the long haul of human history, been more to the west than anything else. Consider the economic benefit accrued by the use of, say pound locks, and you will understand what I mean. And then there's gunpowder, invented as a sideline to research into food preservatives, and then the Gordon Highlanders show up on their doorstep... Dhu 2009/5/17 Cem Kayali cemkay...@eticaret.com.tr: Do you really think Chineese governmnt make source public? Not all of course ;) Regards, Jesus Sanchez, 05/17/09 20:58: TomC!E! BodEC!r escribiC3: After quick search on web it looks like it's based on FreeBSD 5.3 (initial version) with Windows like GUI.So it doesn't looks so secure now :-) But government agencies must have reason to receive money so why don't make wave about dangerous China with their new ultra-hyper-super secure system? Ofcourse that there can be interesting modifications.Maybe I will try it in Qemu :-) the chinese government really feels so vulnerable against U.S.? i mean, they say it like the WWIII will begin soon and we need to defend us on the cyberspace with our super-secure OS and after all they based it on FreeBSD? I'm a OpenBSD user and I really feel that I've enought privacy, don't need a super-secret-ultra-secure OS nor to say Made In China xD Dne 17. kvD ten 2009 19:28 TomC!E! BodEC!r tomas.bod...@gmail.com napsal(a): Everyone can try it http://www.honeytechblog.com/downlod-kylin-operating-system-by-chinaqingbo-wu / 2009/5/17 Duncan Patton a Campbell campb...@neotext.ca: I just noticed this: http://www.physorg.com/news161355225.html about a secure os that's been under development in China since around 2k and is now being deployed by the Chinese Gov. Interestingly, it is built for a hardened CPU that, I'd guess, lacks many of the advanced features of iNTel architecture cpus. Anybody have any more info on this? Thanks, Dhu
Re: rt.fm CVS Mirror going funny?
On Sun, 17 May 2009 03:29:13 -0400 Jeremy Huiskamp jer...@kamper.ca wrote: On 5/17/09 2:07 AM, Aaron W. Hsu wrote: Hey All, Has anyone else noticed issues with pulling src/sbin/ping/ping.c from anon...@rt.fm:/cvs? I get this error cvs [server aborted]: EOF while looking for end of string \ in RCS file /cvs/src/sbin/ping/ping.c,v Does anyone know what might cause this? I tried removing it and refetching it, as well as using the -C option. Yes, always in that spot. I stopped using this mirror a while ago because of this. Something odd about that hostname rt.fm, I'd say. Dhu
Re: OpenBSD 3.4 hanging after boot
On Sat, 16 May 2009 15:46:35 -0400 Nick Holland n...@holland-consulting.net wrote: Also...32M would be about the minimum amount of RAM you would want to install on at the moment. If you don't have much of a scrap pile, you may have difficulty expanding old machines to the useful minimum. Nick. 16M will generally work. Dhu
Re: Raid controller?
On Fri, 15 May 2009 20:40:44 -0600 (MDT) Theo de Raadt dera...@cvs.openbsd.org wrote: On Fri, 15 May 2009, Chuck Robey wrote: I'm currently trying to verify something, because while I know makefiles really well, the ones for the FreeBSD kernel are too indirect for me, so I can't yet verify about the twa driver. Doesn't make any difference, 3Ware was abandoned by the project many years ago due to lack of support. There are many compatible cards out there: http://openbsd.org/i386.html#hardware Compare the drivers with the with bioctl compatibility list. No kidding. If any of the people we talked to at 3ware weren't such LYING BAGS OF HYPOCRITICAL SHIT we'd support their hardware Hard words, Theo. Do you think anyone you talked to could actually understand what you were sayin'? Dhu as well as we support just about everything else in the industry. We did not put them into that lofty position of not being supported by OpenBSD. They put themselves there. If I was angry about it I might say I hope they are happy with the result, but the fact is I stopped caring about it ages ago. You came to this mailing list and you brought up 3ware because you don't know how to use google.
Re: FW: Raid controller?
On Mon, 18 May 2009 10:40:29 -0600 Theo de Raadt dera...@cvs.openbsd.org wrote: If any of the people we talked to at 3ware weren't such LYING BAGS OF HYPOCRITICAL SHIT we'd support their hardware Hard words, Theo. Do you think anyone you talked to could actually understand what you were sayin'? I was not the only person who talked to 3Ware. Over the last 10 years numerous developers and users have gotten gotten enough hope to try to talk to them, and have received promises of forthcoming documentation. All of those promises were lies. Every person we talked to at 3ware is unaware what a promise means. And it goes all the way up to members of the board and the vice presidential level. They are LYING BAGS OF HYPOCRITICAL SHIT. Ok, a long history... sometimes I find it difficult to differentiate malice from plain blind incompetence. Dhu
Re: Kylin
On Mon, 18 May 2009 11:08:33 -0400 (private) HKS hks.priv...@gmail.com wrote: 2009/5/18 Toma Bodar tomas.bod...@gmail.com: Common,you think that big western companies which have support from western governments care about it?And please don't make white knight from western civilization.Everywhere are pros and cons.What type of copyright and intellectual property you think?Like Disney which have stories based on older stories,but he has law from government on it now so original makers has nothing and Disney takes all?And when end of this copyright is near some magic happen in government and Disney (and others) has next 20 or 50 years.Sounds very respectable for copyright and intellectual property of original authors ;-) Or maybe you think something like we have.When you create your own song and sing it to people somewhere outside of your flat you must pay to OSA(something like BSA terrorists,but local).WTH is that.Sounds really like care about my copyright - I must pay for my own song ;-) Informations are here for share and we can move forward thanks to them.If some idiot have patent on double-click then what?One developer must incorporated triple-click to his product,next four-click and so on?Sounds like history - Earth is just pancake and everyone who want to find another idea must use our idea or he will be killed and who use our idea without our licence will be killed too.Really we need those times back?? For Christ's sake, get off your fucking high horse. My quip was in response to your implication that China chose a BSD license because it fit better with their intentions than GPL or similar. As if they gave a shit. Actually I think their decision was quite telling. The Chinese Gove is not unaware of intellectual property concerns, they just don't give a shit for western idiots who patent wonton balls. Dhu -HKS 2009/5/18 (private) HKS hks.priv...@gmail.com: 2009/5/17 Toma Bod ar tomas.bod...@gmail.com: I know,that's why they choose BSD-style licenced OS ;-) Yes, because China's respect for copyright and intellectual property is legendary. -HKS 2009/5/17 Cem Kayali cemkay...@eticaret.com.tr: Do you really think Chineese governmnt make source public? Not all of course ;) Regards, Jesus Sanchez, 05/17/09 20:58: TomC!E! BodEC!r escribiC3: After quick search on web it looks like it's based on FreeBSD 5.3 (initial version) with Windows like GUI.So it doesn't looks so secure now :-) But government agencies must have reason to receive money so why don't make wave about dangerous China with their new ultra-hyper-super secure system? Ofcourse that there can be interesting modifications.Maybe I will try it in Qemu :-) the chinese government really feels so vulnerable against U.S.? i mean, they say it like the WWIII will begin soon and we need to defend us on the cyberspace with our super-secure OS and after all they based it on FreeBSD? I'm a OpenBSD user and I really feel that I've enought privacy, don't need a super-secret-ultra-secure OS nor to say Made In China xD Dne 17. kvD ten 2009 19:28 TomC!E! BodEC!r tomas.bod...@gmail.com napsal(a): Everyone can try it http://www.honeytechblog.com/downlod-kylin-operating-system-by-chinaqingbo-wu / 2009/5/17 Duncan Patton a Campbell campb...@neotext.ca: I just noticed this: http://www.physorg.com/news161355225.html about a secure os that's been under development in China since around 2k and is now being deployed by the Chinese Gov. Interestingly, it is built for a hardened CPU that, I'd guess, lacks many of the advanced features of iNTel architecture cpus. Anybody have any more info on this? Thanks, Dhu
Re: SMTPD TLS Authentication?
On Sat, 30 May 2009 18:15:42 -0700 Ben Goren b...@trumpetpower.com wrote: On 2009 May 30, at 5:05 PM, Gilles Chehade wrote: On Sat, May 30, 2009 at 08:01:49PM -0400, Aaron W. Hsu wrote: Hello SMTPD Gurus, I have noticed some TLS based authentication stuff in the smtpd.conf(5) man page. I don't see more details about how it works, though. How far along is the TLS based stuff? I'd like to test smtpd with my email server on my local machine, which operates as a client to my sendmail based server remotely via TLS Authentication. Is this in their yet, or does the TLS work differently right now? Thanks! And, sorry for bugging you if this should be obvious. It should just work :-) If it doesn't let me know, I'm in an ssl mood right now Since you're offering TLS I got to work just by reading starttls(8) and making sure the keys were in the right place. That doesn't get you SMTP AUTH, though. It's been at least a few weeks since I tried, so I'm afraid I don't remember the details, but I tried installing the Cyrus SASL package without success. That may or may not have been due to my idiocy -- but I figured I'd ask: What's the preferred method of configuring Sendmail to require a password for relaying mail from popular MUAs like Apple Mail? A nudge in the proper direction -- man pages, packages, etc. -- to get me started in the right direction would be most welcome. I'd like that. Last time I set up a secure mail server there was nothing to talk to... Dhu Cheers, b [demime 1.01d removed an attachment of type application/pkcs7-signature which had a name of smime.p7s]
Re: Is Jesus God
On Mon, 11 May 2009 16:40:56 -0500 Marco Peereboom sl...@peereboom.us wrote: no Well, yes, but only in the Hindu sense, if you want to maintain consistency ;-) Dhu On Mon, May 11, 2009 at 03:24:15PM -0500, James wrote: !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.0 Transitional//EN HTMLHEAD META http-equiv=Content-Type content=text/html; charset=unicode META content=MSHTML 6.00.6001.18226 name=GENERATOR/HEAD BODY PHere is your Topic of the Month. Please log in at A href=http://www.jesus4athiest.org;www.jesus4athiest.org/A/P PTopic: nbsp;Is Jesus God/P Ppeace-james/P/BODY/HTML
pf scrub error on upgrade to snapshot-1
Howdy List? I just upgraded to the snapshot-1 because the current, June 3, goes into an error on encountering a scsi raid. So I dropped back to the May 31 and now pf doesn't like the scrub syntax.. pfctl -f pf.conf pf.conf:63: syntax error pfctl: Syntax error in config file: pf rules not loaded on scrub in all or scrub in on ext_if_vr0 all as line 63. If commented out, everything seems (so far) to work as before. Following is the dmesg for this machine. Thanks, Dhu OpenBSD 4.5-current (GENERIC.MP) #18: Sun May 31 10:35:36 MDT 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.04 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 2146988032 (2047MB) avail mem = 2067677184 (1971MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/04/06, BIOS32 rev. 0 @ 0xfb180, SMBIOS rev. 2.3 @ 0xf0100 (39 entries) bios0: vendor Award Software International, Inc. version F10 date 01/04/2006 bios0: Gigabyte Technology Co., Ltd. 8I945P-G acpi0 at bios0: rev 0 acpi0: tables DSDT FACP MCFG APIC acpi0: wakeup devices PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5) HUB0(S5) USB0(S1) USB1(S1) USB2(S1) USB3(S1) USBE(S1) AC97(S5) MC97(S5) AZAL(S5) PCI0(S5) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 200MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 2 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 1 (PEX0) acpiprt2 at acpi0: bus -1 (PEX1) acpiprt3 at acpi0: bus 3 (PEX2) acpiprt4 at acpi0: bus -1 (PEX3) acpiprt5 at acpi0: bus -1 (PEX4) acpiprt6 at acpi0: bus -1 (PEX5) acpiprt7 at acpi0: bus 4 (HUB0) acpicpu0 at acpi0 acpicpu1 at acpi0 acpibtn0 at acpi0: PWRB bios0: ROM list: 0xc/0xd000 0xd/0x5800 cpu0: Enhanced SpeedStep disabled by BIOS pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x81 azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 16 (irq 7) azalia0: RIRB time out azalia0: codecs: Realtek ALC882 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 16 (irq 7) pci1 at ppb0 bus 1 ppb1 at pci1 dev 0 function 0 vendor PLX, unknown product 0x8111 rev 0x21 pci2 at ppb1 bus 2 ohci0 at pci2 dev 0 function 0 NEC USB rev 0x43: apic 2 int 16 (irq 7), version 1.0 ohci1 at pci2 dev 0 function 1 NEC USB rev 0x43: apic 2 int 17 (irq 4), version 1.0 ehci0 at pci2 dev 0 function 2 NEC USB rev 0x04: apic 2 int 18 (irq 5) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 NEC EHCI root hub rev 2.00/1.00 addr 1 usb1 at ohci0: USB revision 1.0 uhub1 at usb1 NEC OHCI root hub rev 1.00/1.00 addr 1 usb2 at ohci1: USB revision 1.0 uhub2 at usb2 NEC OHCI root hub rev 1.00/1.00 addr 1 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int 18 (irq 5) pci3 at ppb2 bus 3 bge0 at pci3 dev 0 function 0 Broadcom BCM5789 rev 0x11, BCM5750 B1 (0x4101): apic 2 int 18 (irq 5), address 00:14:85:15:50:b5 brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 3) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 19 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 18 (irq 5) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 16 (irq 7) ehci1 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 3) usb3 at ehci1: USB revision 2.0 uhub3 at usb3 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 ahc0 at pci4 dev 0 function 0 Adaptec AHA-2940U2 U2 rev 0x00: apic 2 int 20 (irq 11) scsibus0 at ahc0: 16 targets, initiator 7 sd0 at scsibus0 targ 0 lun 0: FUJITSU, MAN3184MP, 0108 SCSI3 0/direct fixed sd0: 17522MB, 512 bytes/sec, 35885448 sec total vr0 at pci4 dev 1 function 0 VIA VT6105 RhineIII rev 0x86: apic 2 int 19 (irq 10), address 00:15:e9:87:4a:38 ukphy0 at vr0 phy 1: Generic IEEE 802.3u media interface, rev. 4: OUI 0x004063, model 0x0034 vga1 at pci4 dev 2 function 0 ATI Radeon 9200 PRO rev 0x01 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) radeondrm0 at vga1: apic 2 int 18 (irq 5) drm0 at radeondrm0 ATI Radeon 9200 PRO Sec rev 0x01 at pci4 dev 2 function 1 not configured ichpcib0
Re: pf scrub error on upgrade to snapshot-1
Thanks. It seems tho' that I might be trying to revert even further... right now I've frozen up twice using the May 31 snapshot and the current install45.iso died on upgrade... Dhu On Wed, 3 Jun 2009 22:51:40 -0700 James Records james.reco...@gmail.com wrote: the new match keyword is what your looking for: http://www.openbsd.org/faq/current.html#20090406 J On Wed, Jun 3, 2009 at 10:36 PM, Duncan Patton a Campbell campb...@neotext.ca wrote: Howdy List? I just upgraded to the snapshot-1 because the current, June 3, goes into an error on encountering a scsi raid. So I dropped back to the May 31 and now pf doesn't like the scrub syntax.. pfctl -f pf.conf pf.conf:63: syntax error pfctl: Syntax error in config file: pf rules not loaded on scrub in all or scrub in on ext_if_vr0 all as line 63. If commented out, everything seems (so far) to work as before. Following is the dmesg for this machine. Thanks, Dhu OpenBSD 4.5-current (GENERIC.MP) #18: Sun May 31 10:35:36 MDT 2009 dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP cpu0: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.04 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR real mem = 2146988032 (2047MB) avail mem = 2067677184 (1971MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/04/06, BIOS32 rev. 0 @ 0xfb180, SMBIOS rev. 2.3 @ 0xf0100 (39 entries) bios0: vendor Award Software International, Inc. version F10 date 01/04/2006 bios0: Gigabyte Technology Co., Ltd. 8I945P-G acpi0 at bios0: rev 0 acpi0: tables DSDT FACP MCFG APIC acpi0: wakeup devices PEX0(S5) PEX1(S5) PEX2(S5) PEX3(S5) PEX4(S5) PEX5(S5) HUB0(S5) USB0(S1) USB1(S1) USB2(S1) USB3(S1) USBE(S1) AC97(S5) MC97(S5) AZAL(S5) PCI0(S5) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 200MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Pentium(R) 4 CPU 3.00GHz (GenuineIntel 686-class) 3.02 GHz cpu1: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,EST,CNXT-ID,CX16,xTPR ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 0, remapped to apid 2 acpiprt0 at acpi0: bus 0 (PCI0) acpiprt1 at acpi0: bus 1 (PEX0) acpiprt2 at acpi0: bus -1 (PEX1) acpiprt3 at acpi0: bus 3 (PEX2) acpiprt4 at acpi0: bus -1 (PEX3) acpiprt5 at acpi0: bus -1 (PEX4) acpiprt6 at acpi0: bus -1 (PEX5) acpiprt7 at acpi0: bus 4 (HUB0) acpicpu0 at acpi0 acpicpu1 at acpi0 acpibtn0 at acpi0: PWRB bios0: ROM list: 0xc/0xd000 0xd/0x5800 cpu0: Enhanced SpeedStep disabled by BIOS pci0 at mainbus0 bus 0: configuration mode 1 (bios) pchb0 at pci0 dev 0 function 0 Intel 82945G Host rev 0x81 azalia0 at pci0 dev 27 function 0 Intel 82801GB HD Audio rev 0x01: apic 2 int 16 (irq 7) azalia0: RIRB time out azalia0: codecs: Realtek ALC882 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 Intel 82801GB PCIE rev 0x01: apic 2 int 16 (irq 7) pci1 at ppb0 bus 1 ppb1 at pci1 dev 0 function 0 vendor PLX, unknown product 0x8111 rev 0x21 pci2 at ppb1 bus 2 ohci0 at pci2 dev 0 function 0 NEC USB rev 0x43: apic 2 int 16 (irq 7), version 1.0 ohci1 at pci2 dev 0 function 1 NEC USB rev 0x43: apic 2 int 17 (irq 4), version 1.0 ehci0 at pci2 dev 0 function 2 NEC USB rev 0x04: apic 2 int 18 (irq 5) usb0 at ehci0: USB revision 2.0 uhub0 at usb0 NEC EHCI root hub rev 2.00/1.00 addr 1 usb1 at ohci0: USB revision 1.0 uhub1 at usb1 NEC OHCI root hub rev 1.00/1.00 addr 1 usb2 at ohci1: USB revision 1.0 uhub2 at usb2 NEC OHCI root hub rev 1.00/1.00 addr 1 ppb2 at pci0 dev 28 function 2 Intel 82801GB PCIE rev 0x01: apic 2 int 18 (irq 5) pci3 at ppb2 bus 3 bge0 at pci3 dev 0 function 0 Broadcom BCM5789 rev 0x11, BCM5750 B1 (0x4101): apic 2 int 18 (irq 5), address 00:14:85:15:50:b5 brgphy0 at bge0 phy 1: BCM5750 10/100/1000baseT PHY, rev. 0 uhci0 at pci0 dev 29 function 0 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 3) uhci1 at pci0 dev 29 function 1 Intel 82801GB USB rev 0x01: apic 2 int 19 (irq 10) uhci2 at pci0 dev 29 function 2 Intel 82801GB USB rev 0x01: apic 2 int 18 (irq 5) uhci3 at pci0 dev 29 function 3 Intel 82801GB USB rev 0x01: apic 2 int 16 (irq 7) ehci1 at pci0 dev 29 function 7 Intel 82801GB USB rev 0x01: apic 2 int 23 (irq 3) usb3 at ehci1: USB revision 2.0 uhub3 at usb3 Intel EHCI root hub rev 2.00/1.00 addr 1 ppb3 at pci0 dev 30 function 0 Intel 82801BA Hub-to-PCI rev 0xe1 pci4 at ppb3 bus 4 ahc0 at pci4 dev 0 function 0 Adaptec AHA-2940U2 U2 rev 0x00: apic 2 int 20 (irq 11) scsibus0 at ahc0: 16 targets
Re: Radeon 9200 PRO + radeondrm freezes OpenBSD 4.5
Howdy Victor? I appear to be having the same problems with the same card. Do you have any news? Thanks, Dhu On Fri, 29 May 2009 10:33:21 +0200 Viktor Varheit viktorvarh...@gmx.de wrote: Hi, according to radeon(4) my graphics card is supported, but I cannot get hardware acceleration to work. Booting with disable radeondrm in UKC and then running startx works fine. Doing the same with enable radeondrm (which is the default in the GENERIC kernel) appears to freeze the machine. The screen goes blank, and the monitor enters standby mode. Sometimes the computer shuts down after pressing the power button, but most of the time it can only be forced off by holding the power button. Trying several options in xorg.conf did not advance things. I booted with a serial console to see if any messages appeared after entering startx. This is what I got: radeondrm0: Setting GART location based on new memory map radeondrm0: writeback test failed radeondrm0: wait idle failed status : 0x80010140 0x radeondrm0: wait idle failed status : 0x80010140 0x radeondrm0: wait idle failed status : 0x80010140 0x ... The last message is repeated over and over until the machine appears to freeze. The time it takes to get to that point varies. After setting 'Option AGPFastWrite on' in xorg.conf no messages were output at all, but that was the only apparent difference. Setting AccelMethod to EXA also did not change anything. Using no xorg.conf at all also did not work. Anyway, here's my xorg.conf and dmesg. I hope someone can give me a hint. Vic +++ xorg.conf +++ Section ServerLayout Identifier X.org Configured Screen 0 Screen0 0 0 InputDeviceMouse0 CorePointer InputDeviceKeyboard0 CoreKeyboard EndSection Section Files ModulePath /usr/X11R6/lib/modules FontPath /usr/X11R6/lib/X11/fonts/misc/ FontPath /usr/X11R6/lib/X11/fonts/TTF/ FontPath /usr/X11R6/lib/X11/fonts/OTF FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath /usr/X11R6/lib/X11/fonts/100dpi/ FontPath /usr/X11R6/lib/X11/fonts/75dpi/ EndSection Section Module Load dbe Load dri Load extmod Load glx Load freetype EndSection Section InputDevice Identifier Keyboard0 Driver kbd EndSection Section InputDevice Identifier Mouse0 Driver mouse Option Protocol wsmouse Option Device /dev/wsmouse Option ZAxisMapping 4 5 6 7 EndSection Section Monitor #DisplaySize 340 270 # mm Identifier Monitor0 VendorName ENC ModelNameL557 HorizSync24.0 - 80.0 VertRefresh 50.0 - 75.0 Option DPMS EndSection Section Device Option AGPMode x4 Option BusType AGP# [str] #Option AGPFastWrite on # [bool] #Option AccelMethod EXA # str Option DRI on # [bool] Identifier Card0 Driver radeon VendorName ATI BoardName Radeon 9200 PRO BusID PCI:1:0:0 EndSection Section Screen Identifier Screen0 Device Card0 MonitorMonitor0 SubSection Display Viewport 0 0 Depth 1 EndSubSection SubSection Display Viewport 0 0 Depth 4 EndSubSection SubSection Display Viewport 0 0 Depth 8 EndSubSection SubSection Display Viewport 0 0 Depth 15 EndSubSection SubSection Display Viewport 0 0 Depth 16 EndSubSection SubSection Display Viewport 0 0 Depth 24 EndSubSection EndSection +++ dmesg +++ OpenBSD 4.5-stable (GENERIC) #0: Sun May 3 11:29:20 CEST 2009 v...@overstolz.my.domain:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD Athlon(tm) XP 2000+ (AuthenticAMD 686-class, 256KB L2 cache) 1.68 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE real mem = 804810752 (767MB) avail mem = 769404928 (733MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 10/18/06, BIOS32 rev. 0 @ 0xfdb10, SMBIOS rev. 2.3 @ 0xf0630 (21 entries) bios0: vendor American Megatrends Inc. version P2.80 date 10/18/2006 bios0: American Megatrends Inc. K7S41GX acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC acpi0: wakeup devices PS2M(S4) PS2K(S4) UAR1(S4) USB1(S4) USB2(S4) EHCI(S4) LAN_(S4) MDM_(S4) AUD_(S4) PCI0(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: apic clock running at 268MHz ioapic0 at
Re: Radeon 9200 PRO + radeondrm freezes OpenBSD 4.5
On Fri, 5 Jun 2009 06:54:05 -0600 Duncan Patton a Campbell campb...@neotext.ca wrote: Howdy Victor? I appear to be having the same problems with the same card. Do you have any news? Thanks, Dhu I read somewhere to disable the radeondrm driver in kernel and this has worked so far. Dhu On Fri, 29 May 2009 10:33:21 +0200 Viktor Varheit viktorvarh...@gmx.de wrote: Hi, according to radeon(4) my graphics card is supported, but I cannot get hardware acceleration to work. Booting with disable radeondrm in UKC and then running startx works fine. Doing the same with enable radeondrm (which is the default in the GENERIC kernel) appears to freeze the machine. The screen goes blank, and the monitor enters standby mode. Sometimes the computer shuts down after pressing the power button, but most of the time it can only be forced off by holding the power button. Trying several options in xorg.conf did not advance things. I booted with a serial console to see if any messages appeared after entering startx. This is what I got: radeondrm0: Setting GART location based on new memory map radeondrm0: writeback test failed radeondrm0: wait idle failed status : 0x80010140 0x radeondrm0: wait idle failed status : 0x80010140 0x radeondrm0: wait idle failed status : 0x80010140 0x ... The last message is repeated over and over until the machine appears to freeze. The time it takes to get to that point varies. After setting 'Option AGPFastWrite on' in xorg.conf no messages were output at all, but that was the only apparent difference. Setting AccelMethod to EXA also did not change anything. Using no xorg.conf at all also did not work. Anyway, here's my xorg.conf and dmesg. I hope someone can give me a hint. Vic +++ xorg.conf +++ Section ServerLayout Identifier X.org Configured Screen 0 Screen0 0 0 InputDeviceMouse0 CorePointer InputDeviceKeyboard0 CoreKeyboard EndSection Section Files ModulePath /usr/X11R6/lib/modules FontPath /usr/X11R6/lib/X11/fonts/misc/ FontPath /usr/X11R6/lib/X11/fonts/TTF/ FontPath /usr/X11R6/lib/X11/fonts/OTF FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath /usr/X11R6/lib/X11/fonts/100dpi/ FontPath /usr/X11R6/lib/X11/fonts/75dpi/ EndSection Section Module Load dbe Load dri Load extmod Load glx Load freetype EndSection Section InputDevice Identifier Keyboard0 Driver kbd EndSection Section InputDevice Identifier Mouse0 Driver mouse Option Protocol wsmouse Option Device /dev/wsmouse Option ZAxisMapping 4 5 6 7 EndSection Section Monitor #DisplaySize 340 270 # mm Identifier Monitor0 VendorName ENC ModelNameL557 HorizSync24.0 - 80.0 VertRefresh 50.0 - 75.0 Option DPMS EndSection Section Device Option AGPMode x4 Option BusType AGP # [str] #Option AGPFastWrite on # [bool] #Option AccelMethod EXA # str Option DRI on # [bool] Identifier Card0 Driver radeon VendorName ATI BoardName Radeon 9200 PRO BusID PCI:1:0:0 EndSection Section Screen Identifier Screen0 Device Card0 MonitorMonitor0 SubSection Display Viewport 0 0 Depth 1 EndSubSection SubSection Display Viewport 0 0 Depth 4 EndSubSection SubSection Display Viewport 0 0 Depth 8 EndSubSection SubSection Display Viewport 0 0 Depth 15 EndSubSection SubSection Display Viewport 0 0 Depth 16 EndSubSection SubSection Display Viewport 0 0 Depth 24 EndSubSection EndSection +++ dmesg +++ OpenBSD 4.5-stable (GENERIC) #0: Sun May 3 11:29:20 CEST 2009 v...@overstolz.my.domain:/usr/src/sys/arch/i386/compile/GENERIC cpu0: AMD Athlon(tm) XP 2000+ (AuthenticAMD 686-class, 256KB L2 cache) 1.68 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE real mem = 804810752 (767MB) avail mem = 769404928 (733MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 10/18/06, BIOS32 rev. 0 @ 0xfdb10, SMBIOS rev. 2.3 @ 0xf0630 (21 entries) bios0: vendor American Megatrends Inc. version P2.80 date 10/18/2006 bios0: American Megatrends Inc. K7S41GX acpi0 at bios0: rev 0 acpi0: tables DSDT FACP APIC acpi0: wakeup devices PS2M(S4) PS2K(S4) UAR1(S4) USB1(S4) USB2
Re: Cannot Boot with Intel D201GLY Motherboard
On Sat, 4 Jul 2009 20:21:12 -0400 Hendrickson, Kenneth khend...@harris.com wrote: Disabling acpi (in OpenBSD 4.5) does not work. Any help would be appreciated. I do *not* want to lose my old data! Buy a new /root disk. They are cheap. Dhu Thanks, Ken Hendrickson -Original Message- From: Mike Belopuhov [mailto:mi...@lucifier.net] Sent: Sat 7/4/2009 6:39 PM To: Hendrickson, Kenneth Subject: Re: Cannot Boot with Intel D201GLY Motherboard you have to put a PCI video card in. it's SiS video that blows things up. though, as RAMDISK kernel works, surely it's openbsd defficiency. nobody has figured out what's actually is a problem because of the lack of this hardware. On Sat, Jul 04, 2009 at 17:00 -0400, Hendrickson, Kenneth wrote: Cannot Boot with Intel D201GLY Motherboard Disk is 120GB PATA IDE dmesg, fdisk output, and disklabel output are all attached OpenBSD.PDR is also attached I have Googled for problems/answers, and still run into a dead end. There must be a requirement which is not stated in the documentation, which I am not following. Please help. (I am an experienced OpenBSD user, having used OpenBSD continuously since 1998, and having built my own kernels/userland, and also have built OpenBSD for embedded systems.) The instructions for booting from NTLDR (Windows 2000) do not work. As soon as the messages get to the CPU, the system reboots. Booting never works, either from the OpenBSD partition, or from NTLDR from Windows 2000. I have included my OpenBSD.PDR file for examination. Originally, my OpenBSD partition was #4 in fdisk. I added the #1 partition, and had both #1 and #4 set to a6 for OpenBSD. That didn't work. I then chose only #1 partition to be a6 for OpenBSD, and #4 partition was set to da for No Filesystem. That also didn't work. Please note that my entire OpenBSD / filesystem is within the 1024 cylinder boundary. The /boot file is totally contained within the 1024 cylinder boundary. It still won't boot. It won't boot on its own, nor will it boot from the Windows 2000 NTLDR bootloader. Also note that while my fdisk and disklabel indicates Linux partitions, none of them have yet been installed. I installed Windows 2000 first, then OpenBSD. Since I could never get OpenBSD to boot, I have not yet installed Linux. Please help if you can. Thank you, Kenneth J. Hendrickson [demime 1.01d removed an attachment of type application/octet-stream which had a name of dmesg] [demime 1.01d removed an attachment of type application/octet-stream which had a name of fdisk] [demime 1.01d removed an attachment of type application/octet-stream which had a name of disklabel] [demime 1.01d removed an attachment of type application/octet-stream which had a name of OpenBSD.PDR]
Re: freetds and iodbc to access Microsoft SQL Server 2005
On Tue, 14 Jul 2009 18:13:56 -0500 Vijay Sankar vsan...@foretell.ca wrote: I am trying to access a database hosted on a Microsoft SQL Server 2005 using FreeTDS and iodbc from OpenBSD 4.5 -stable (also tried OpenBSD -current as of today). Unfortunately none of the documents I have read so far or the various trials/tests have helped. I can use tsql and access the SQL Server but I am not able to use iodbcadm-gtk to add a DSN etc. The standard package as well as the msdblib flavor did not work for me and as a result I made a few changes to the Makefile Looks like I made some small progress however, I get the error HYC00 [FreeTDS][SQL Server]Driver not capable 08001: [FreeTDS][SQL Server]Unable to connect to data source [] I hope the list can give me any advice or pointers on what is the best way to access data from a SQL Server 2005 database from OpenBSD Thanks very much, Vijay -- Vijay Sankar, M.Eng., P.Eng. ForeTell Technologies Limited 59 Flamingo Avenue, Winnipeg, MB, Canada R3J 0X6 Phone: (204) 885-9535, E-Mail: vsan...@foretell.ca Here is a trivialized interface to mssql using freetds and php. It supports reads and writes. Dhu ?php /* Copyright (C) 2005 Duncan Patton a Campbell aka Duncan Duibh (Bzerkley terms) Duncan Patton a Campbell can be contacted at campb...@neotext.ca, or campb...@indx.ca. sqNdhu.php -- general purpose access to SQL databases .. here implemented for commandline operations php -f sqNdhu.php line one on stdin == MSSQL/MSHOST:1433/Uname/Upass/Dbname/ line one on stdin == MYSQL/MYHOST:3306/Uname/Upass/Dbname/ line two thru n-1 == select/insert/replace... line n == \n uses http://www.freetds.org/ libraries */ $stdinline = trim(fgets(STDIN)); list($stype,$hnp,$dbu,$dbp,$dbn) = split(/, $stdinline) ; switch ($stype) { caseMSSQL: { $db = mssql_connect($hnp,$dbu,$dbp); if(!$db) { $handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not connect); fwrite($handle, \n\n); fclose($handle); exit(Could not connect); } if(!mssql_select_db($dbn,$db)) { $handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not select database); fwrite($handle, \n\n); fclose($handle); exit(Could not select database); } /* Performing SQL query */ while($squery= trim(fgets(STDIN))) { //$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, MySqery:.$squery); fwrite($handle, \n\n); fclose($handle); $result = mssql_query($squery) or die(Query failed : . $squery); if(is_resource($result)) { $num_results = mssql_num_rows($result); echo \n . $num_results; if($num_results == 0) echo \n; for ($i=0; $i $num_results; $i++) { while($myrow = mssql_fetch_row($result)) { $colcnt = count($myrow); echo \n . $colcnt; for($x=0; $x $colcnt; $x++) { echo sprintf(\n%d ,strlen($myrow[$x])) . $myrow[$x]; } } } mssql_free_result($result); } else { echo \n1\n1\n1 !; } } mssql_close($db); } break; caseMYSQL: { $db = mysql_connect($hnp,$dbu,$dbp); if(!$db) { $handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not connect); fwrite($handle, \n\n); fclose($handle); exit(Could not connect); } if(!mysql_select_db($dbn,$db)) { $handle=fopen('/tmp/perror.err', 'a');fwrite($handle, Could not select database); fwrite($handle, \n\n); fclose($handle); exit(Could not select database); } /* Performing SQL query */ while($squery= trim(fgets(STDIN))) { //$handle=fopen('/tmp/perror.err', 'a');fwrite($handle, MySqery:.$squery); fwrite($handle, \n\n); fclose($handle); $result = mysql_query($squery) or die(Query failed : . $squery); if(is_resource($result)) { $num_results = mysql_num_rows($result); echo \n . $num_results; if($num_results == 0) echo \n
Re: New disklable doesn't keep old partitions if requested
On Mon, 6 Jul 2009 14:40:32 +0200 Tor Houghton t...@bogus.net wrote: On Mon, Jul 06, 2009 at 04:15:51AM +, Miod Vallat wrote: This whole thread is actually one more proof that nobody ever reads the installation notes (INSTALL.*). Miod Oooh, you've just identified a space-saving measure! *ducks* It also proves I'm stupid enough to read to the end only to know if anything useful was said b4 I nuke this drivel. Dhu
Re: Radeon 9200 PRO + radeondrm freezes OpenBSD 4.5
On Tue, 9 Jun 2009 01:02:43 +0200 varheit varh...@gmx.de wrote: On Fri, 5 Jun 2009 08:21:47 -0600 Duncan Patton a Campbell campb...@neotext.ca wrote: On Fri, 5 Jun 2009 06:54:05 -0600 Duncan Patton a Campbell campb...@neotext.ca wrote: Howdy Victor? I appear to be having the same problems with the same card. Do you have any news? Thanks, Dhu I read somewhere to disable the radeondrm driver in kernel and this has worked so far. Well, that might not be the best solution if it is hardware acceleration that you are after... Anyway, after some more testing, I can finally start the X server without disabling radeondrm and without freezing the machine by adding Option BusType PCI to xorg.conf. This setting forces my AGP graphics card to PCI mode. Hmm. Might not work 4 me as I'm actually running an actual 9200 PCI card (HIS?), not an AGP, and there is no video on the mb. Dhu But 3D acceleration is still somewhat peculiar. Running glxgears yields significantly less FPS than without acceleration (that is, like 1 FPS with hardware acceleration and ~60 FPS without). Strange. Blender feels faster though unless textures are displayed. Stellarium runs OK (= smooth) in windowed mode, but unpredictable in full resolution (1280x1024). Maybe it needs some more tweaking... Vic On Fri, 29 May 2009 10:33:21 +0200 Viktor Varheit viktorvarh...@gmx.de wrote: Hi, according to radeon(4) my graphics card is supported, but I cannot get hardware acceleration to work. Booting with disable radeondrm in UKC and then running startx works fine. Doing the same with enable radeondrm (which is the default in the GENERIC kernel) appears to freeze the machine. The screen goes blank, and the monitor enters standby mode. Sometimes the computer shuts down after pressing the power button, but most of the time it can only be forced off by holding the power button. Trying several options in xorg.conf did not advance things. I booted with a serial console to see if any messages appeared after entering startx. This is what I got: radeondrm0: Setting GART location based on new memory map radeondrm0: writeback test failed radeondrm0: wait idle failed status : 0x80010140 0x radeondrm0: wait idle failed status : 0x80010140 0x radeondrm0: wait idle failed status : 0x80010140 0x ... The last message is repeated over and over until the machine appears to freeze. The time it takes to get to that point varies. After setting 'Option AGPFastWrite on' in xorg.conf no messages were output at all, but that was the only apparent difference. Setting AccelMethod to EXA also did not change anything. Using no xorg.conf at all also did not work. Anyway, here's my xorg.conf and dmesg. I hope someone can give me a hint. Vic +++ xorg.conf +++ Section ServerLayout Identifier X.org Configured Screen 0 Screen0 0 0 InputDeviceMouse0 CorePointer InputDeviceKeyboard0 CoreKeyboard EndSection Section Files ModulePath /usr/X11R6/lib/modules FontPath /usr/X11R6/lib/X11/fonts/misc/ FontPath /usr/X11R6/lib/X11/fonts/TTF/ FontPath /usr/X11R6/lib/X11/fonts/OTF FontPath /usr/X11R6/lib/X11/fonts/Type1/ FontPath /usr/X11R6/lib/X11/fonts/100dpi/ FontPath /usr/X11R6/lib/X11/fonts/75dpi/ EndSection Section Module Load dbe Load dri Load extmod Load glx Load freetype EndSection Section InputDevice Identifier Keyboard0 Driver kbd EndSection Section InputDevice Identifier Mouse0 Driver mouse Option Protocol wsmouse Option Device /dev/wsmouse Option ZAxisMapping 4 5 6 7 EndSection Section Monitor #DisplaySize 340 270 # mm Identifier Monitor0 VendorName ENC ModelNameL557 HorizSync24.0 - 80.0 VertRefresh 50.0 - 75.0 Option DPMS EndSection Section Device Option AGPMode x4 Option BusType AGP # [str] #Option AGPFastWrite on # [bool] #Option AccelMethod EXA # str Option DRI on # [bool] Identifier Card0 Driver radeon VendorName ATI BoardName Radeon 9200 PRO BusID PCI:1:0:0 EndSection Section Screen Identifier Screen0
Re: systrace
On Wed, 15 Jul 2009 09:57:33 -0600 Bob Beck b...@obtuse.com wrote: Now it's not to say that *theoretically* systrace can't be a help. I'm certain it could if you knew 100% what you were doing and knew the inside and outs of the code. but really that's a job for the developers, not the sysadmin running it. If the developer is going to do it, well, at that point your best bet is simply to privsep the code properly - that has been show to actually work, and doesn't require insanity on the part of the system admin to pull wild guesses out of his ass about what system calls this should use and why and when and what the impact of allowing something is. Systrace is a development/test tool that has been miscast. In a corporate/collective environment this would be a useful testbed tool to validate programmer claims. This would NOT be part of the delivered product but maintained in a lab as part of an automated sw test cycle. Do I detect here a problem involved in GPL-thinking? It does tend to require that end users be delivered of reams of Makefiles and other coder desiderata... why not test tools too? ... and while we're at it ... Dhu
Sun Sparc64 problems
Howdy? I recently got hold of an Ultra-5 with 128mb. By various means I've managed to upgrad the prom to *latest and everything appeared to install ok. So now I simply cannot boot from the IDE disk I installed it on. I can boot from the install cd and mount this disk as can be seen from the included files (seperated here with the token asdf are devls.txt, disklabel.txt, dmesg.txt, ifconfig-a.txt, mount.txt) If anyone can shed some light on this for me I'd appreciate it. Thanks, Dhu devls.txt total 20 -rw-r--r-- 1 root wheel 9297 Mar 1 01:22 MAKEDEV crw--- 1 root wheel 120, 0 Mar 1 01:22 bio crw--- 1 root wheel 105, 0 Mar 1 01:22 bpf0 brw-r- 1 root operator 18, 0 Mar 1 01:22 cd0a brw-r- 1 root operator 18, 2 Mar 1 01:22 cd0c crw--- 1 root wheel 0, 0 Jul 26 00:48 console crw-rw 1 root operator 18, 3 Mar 1 01:22 enrst0 brw-rw 1 root operator 11, 3 Mar 1 01:22 enst0 crw-rw 1 root operator 18, 2 Mar 1 01:22 erst0 brw-rw 1 root operator 11, 2 Mar 1 01:22 est0 brw-r- 1 root operator 16, 0 Mar 1 01:22 fd0a brw-r- 1 root operator 16, 1 Mar 1 01:22 fd0b brw-r- 1 root operator 16, 2 Mar 1 01:22 fd0c brw-r- 1 root operator 16, 8 Mar 1 01:22 fd0i crw--- 1 root wheel 16, 0 Mar 1 01:22 klog crw-r- 1 root kmem3, 1 Mar 1 01:22 kmem crw-r- 1 root kmem 76, 0 Mar 1 01:22 ksyms crw-r- 1 root kmem3, 0 Mar 1 01:22 mem crw-rw 1 root operator 18, 1 Mar 1 01:22 nrst0 brw-rw 1 root operator 11, 1 Mar 1 01:22 nst0 crw-rw-rw- 1 root wheel 3, 2 Mar 1 01:22 null crw-r- 1 root kmem 70, 0 Mar 1 01:22 openprom crw-r- 1 root operator 58, 0 Mar 1 01:22 rcd0a crw-r- 1 root operator 58, 2 Mar 1 01:22 rcd0c brw-r- 1 root operator5, 0 Mar 1 01:22 rd0a brw-r- 1 root operator5, 2 Mar 1 01:22 rd0c crw-r- 1 root operator 54, 0 Mar 1 01:22 rfd0a crw-r- 1 root operator 54, 1 Mar 1 01:22 rfd0b crw-r- 1 root operator 54, 2 Mar 1 01:22 rfd0c crw-r- 1 root operator 54, 8 Mar 1 01:22 rfd0i crw-r- 1 root operator 61, 0 Mar 1 01:22 rrd0a crw-r- 1 root operator 61, 2 Mar 1 01:22 rrd0c crw-r- 1 root operator 17, 0 Mar 1 01:22 rsd0a crw-r- 1 root operator 17, 1 Mar 1 01:22 rsd0b crw-r- 1 root operator 17, 2 Mar 1 01:22 rsd0c crw-r- 1 root operator 17, 3 Mar 1 01:22 rsd0d crw-r- 1 root operator 17, 4 Mar 1 01:22 rsd0e crw-r- 1 root operator 17, 5 Mar 1 01:22 rsd0f crw-r- 1 root operator 17, 6 Mar 1 01:22 rsd0g crw-r- 1 root operator 17, 7 Mar 1 01:22 rsd0h crw-r- 1 root operator 17, 8 Mar 1 01:22 rsd0i crw-r- 1 root operator 17, 9 Mar 1 01:22 rsd0j crw-r- 1 root operator 17, 10 Mar 1 01:22 rsd0k crw-r- 1 root operator 17, 11 Mar 1 01:22 rsd0l crw-r- 1 root operator 17, 12 Mar 1 01:22 rsd0m crw-r- 1 root operator 17, 13 Mar 1 01:22 rsd0n crw-r- 1 root operator 17, 14 Mar 1 01:22 rsd0o crw-r- 1 root operator 17, 15 Mar 1 01:22 rsd0p crw-r- 1 root operator 17, 16 Mar 1 01:22 rsd1a crw-r- 1 root operator 17, 17 Mar 1 01:22 rsd1b crw-r- 1 root operator 17, 18 Mar 1 01:22 rsd1c crw-r- 1 root operator 17, 19 Mar 1 01:22 rsd1d crw-r- 1 root operator 17, 20 Mar 1 01:22 rsd1e crw-r- 1 root operator 17, 21 Mar 1 01:22 rsd1f crw-r- 1 root operator 17, 22 Mar 1 01:22 rsd1g crw-r- 1 root operator 17, 23 Mar 1 01:22 rsd1h crw-r- 1 root operator 17, 24 Mar 1 01:22 rsd1i crw-r- 1 root operator 17, 25 Mar 1 01:22 rsd1j crw-r- 1 root operator 17, 26 Mar 1 01:22 rsd1k crw-r- 1 root operator 17, 27 Mar 1 01:22 rsd1l crw-r- 1 root operator 17, 28 Mar 1 01:22 rsd1m crw-r- 1 root operator 17, 29 Mar 1 01:22 rsd1n crw-r- 1 root operator 17, 30 Mar 1 01:22 rsd1o crw-r- 1 root operator 17, 31 Mar 1 01:22 rsd1p crw-r- 1 root operator 17, 32 Mar 1 01:22 rsd2a crw-r- 1 root operator 17, 33 Mar 1 01:22 rsd2b crw-r- 1 root operator 17, 34 Mar 1 01:22 rsd2c crw-r- 1 root operator 17, 35 Mar 1 01:22 rsd2d crw-r- 1 root operator 17, 36 Mar 1 01:22 rsd2e crw-r- 1 root operator 17, 37 Mar 1 01:22 rsd2f crw-r- 1 root operator 17, 38 Mar 1 01:22 rsd2g crw-r- 1 root operator 17, 39 Mar 1 01:22 rsd2h crw-r- 1 root operator 17, 40 Mar 1 01:22 rsd2i crw-r- 1 root operator 17, 41 Mar 1 01:22 rsd2j crw-r- 1 root operator 17, 42 Mar 1 01:22 rsd2k crw-r- 1 root operator 17, 43 Mar 1 01:22 rsd2l crw-r- 1 root operator 17, 44 Mar 1 01:22 rsd2m crw-r- 1 root
Re: Sun Sparc64 problems
So as it turns out, Sparc64 IDE circuitry behaves a little different than PC IDE (I've only used sbus sparcs b4). You can install the software, and mount the disk with the IDE Slave/Master/CableSelect set WRONG, but you cannot boot it. Hm. Dhu On Sat, 25 Jul 2009 18:44:18 -0600 Duncan Patton a Campbell campb...@neotext.ca wrote: Howdy? I recently got hold of an Ultra-5 with 128mb. By various means I've managed to upgrad the prom to *latest and everything appeared to install ok. So now I simply cannot boot from the IDE disk I installed it on. I can boot from the install cd and mount this disk as can be seen from the included files (seperated here with the token asdf are devls.txt, disklabel.txt, dmesg.txt, ifconfig-a.txt, mount.txt) If anyone can shed some light on this for me I'd appreciate it. Thanks, Dhu devls.txt total 20 -rw-r--r-- 1 root wheel 9297 Mar 1 01:22 MAKEDEV crw--- 1 root wheel 120, 0 Mar 1 01:22 bio crw--- 1 root wheel 105, 0 Mar 1 01:22 bpf0 brw-r- 1 root operator 18, 0 Mar 1 01:22 cd0a brw-r- 1 root operator 18, 2 Mar 1 01:22 cd0c crw--- 1 root wheel 0, 0 Jul 26 00:48 console crw-rw 1 root operator 18, 3 Mar 1 01:22 enrst0 brw-rw 1 root operator 11, 3 Mar 1 01:22 enst0 crw-rw 1 root operator 18, 2 Mar 1 01:22 erst0 brw-rw 1 root operator 11, 2 Mar 1 01:22 est0 brw-r- 1 root operator 16, 0 Mar 1 01:22 fd0a brw-r- 1 root operator 16, 1 Mar 1 01:22 fd0b brw-r- 1 root operator 16, 2 Mar 1 01:22 fd0c brw-r- 1 root operator 16, 8 Mar 1 01:22 fd0i crw--- 1 root wheel 16, 0 Mar 1 01:22 klog crw-r- 1 root kmem3, 1 Mar 1 01:22 kmem crw-r- 1 root kmem 76, 0 Mar 1 01:22 ksyms crw-r- 1 root kmem3, 0 Mar 1 01:22 mem crw-rw 1 root operator 18, 1 Mar 1 01:22 nrst0 brw-rw 1 root operator 11, 1 Mar 1 01:22 nst0 crw-rw-rw- 1 root wheel 3, 2 Mar 1 01:22 null crw-r- 1 root kmem 70, 0 Mar 1 01:22 openprom crw-r- 1 root operator 58, 0 Mar 1 01:22 rcd0a crw-r- 1 root operator 58, 2 Mar 1 01:22 rcd0c brw-r- 1 root operator5, 0 Mar 1 01:22 rd0a brw-r- 1 root operator5, 2 Mar 1 01:22 rd0c crw-r- 1 root operator 54, 0 Mar 1 01:22 rfd0a crw-r- 1 root operator 54, 1 Mar 1 01:22 rfd0b crw-r- 1 root operator 54, 2 Mar 1 01:22 rfd0c crw-r- 1 root operator 54, 8 Mar 1 01:22 rfd0i crw-r- 1 root operator 61, 0 Mar 1 01:22 rrd0a crw-r- 1 root operator 61, 2 Mar 1 01:22 rrd0c crw-r- 1 root operator 17, 0 Mar 1 01:22 rsd0a crw-r- 1 root operator 17, 1 Mar 1 01:22 rsd0b crw-r- 1 root operator 17, 2 Mar 1 01:22 rsd0c crw-r- 1 root operator 17, 3 Mar 1 01:22 rsd0d crw-r- 1 root operator 17, 4 Mar 1 01:22 rsd0e crw-r- 1 root operator 17, 5 Mar 1 01:22 rsd0f crw-r- 1 root operator 17, 6 Mar 1 01:22 rsd0g crw-r- 1 root operator 17, 7 Mar 1 01:22 rsd0h crw-r- 1 root operator 17, 8 Mar 1 01:22 rsd0i crw-r- 1 root operator 17, 9 Mar 1 01:22 rsd0j crw-r- 1 root operator 17, 10 Mar 1 01:22 rsd0k crw-r- 1 root operator 17, 11 Mar 1 01:22 rsd0l crw-r- 1 root operator 17, 12 Mar 1 01:22 rsd0m crw-r- 1 root operator 17, 13 Mar 1 01:22 rsd0n crw-r- 1 root operator 17, 14 Mar 1 01:22 rsd0o crw-r- 1 root operator 17, 15 Mar 1 01:22 rsd0p crw-r- 1 root operator 17, 16 Mar 1 01:22 rsd1a crw-r- 1 root operator 17, 17 Mar 1 01:22 rsd1b crw-r- 1 root operator 17, 18 Mar 1 01:22 rsd1c crw-r- 1 root operator 17, 19 Mar 1 01:22 rsd1d crw-r- 1 root operator 17, 20 Mar 1 01:22 rsd1e crw-r- 1 root operator 17, 21 Mar 1 01:22 rsd1f crw-r- 1 root operator 17, 22 Mar 1 01:22 rsd1g crw-r- 1 root operator 17, 23 Mar 1 01:22 rsd1h crw-r- 1 root operator 17, 24 Mar 1 01:22 rsd1i crw-r- 1 root operator 17, 25 Mar 1 01:22 rsd1j crw-r- 1 root operator 17, 26 Mar 1 01:22 rsd1k crw-r- 1 root operator 17, 27 Mar 1 01:22 rsd1l crw-r- 1 root operator 17, 28 Mar 1 01:22 rsd1m crw-r- 1 root operator 17, 29 Mar 1 01:22 rsd1n crw-r- 1 root operator 17, 30 Mar 1 01:22 rsd1o crw-r- 1 root operator 17, 31 Mar 1 01:22 rsd1p crw-r- 1 root operator 17, 32 Mar 1 01:22 rsd2a crw-r- 1 root operator 17, 33 Mar 1 01:22 rsd2b crw-r- 1 root operator 17, 34 Mar 1 01:22 rsd2c crw-r- 1 root operator 17, 35 Mar 1 01:22 rsd2d crw-r- 1 root operator 17, 36 Mar 1 01:22 rsd2e crw-r- 1 root operator 17, 37 Mar 1 01:22
Strangeness with du and install45.iso
I have two x86 machines installed with the 4.5 release, both with the i386 part of the distribution on disk. When I use du on some files I get different answers from these machines. In particular, the install45.iso, thus: [r...@gate:/home/pub/4.5r/i386] # uname -a OpenBSD gate.indx.ca 4.5 DGEN#1 i386 [r...@gate:/home/pub/4.5r/i386] # l install45.iso -r--r--r-- 1 root ftp 239949824 Feb 28 15:41 install45.iso [r...@gate:/home/pub/4.5r/i386] # md5 install45.iso MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025 [r...@gate:/home/pub/4.5r/i386] # which du /usr/bin/du [r...@gate:/home/pub/4.5r/i386] # md5 /usr/bin/du MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d [r...@gate:/home/pub/4.5r/i386] # du -sk install45.iso 234416 install45.iso # uname -a OpenBSD jimg.indx.ca 4.5 GENERIC#1749 i386 # l install45.iso -r--r--r-- 1 root wheel 239949824 Feb 28 15:41 install45.iso # md5 install45.iso MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025 # which du /usr/bin/du # md5 /usr/bin/du MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d # du -sk install45.iso 234288 install45.iso and, if eyes serve correctly, 234416=/=234288 Anyone have a clue what's happening here? Thanks, Dhu
Re: Strangeness with du and install45.iso
On Wed, 29 Jul 2009 15:31:08 +0100 Andreas Kahari andreas.kah...@gmail.com wrote: The two files uses different number of blocks on two different types of disks? I see nothing excessively strange with this. Try it again with du -k. Ahh. Thanks for the explanation. Dhu Andreas 2009/7/29 Duncan Patton a Campbell campb...@neotext.ca: I have two x86 machines installed with the 4.5 release, both with the i386 part of the distribution on disk. When I use du on some files I get different answers from these machines. In particular, the install45.iso, thus: [r...@gate:/home/pub/4.5r/i386] # uname -a OpenBSD gate.indx.ca 4.5 DGEN#1 i386 [r...@gate:/home/pub/4.5r/i386] # l install45.iso -r--r--r-- 1 root ftp 239949824 Feb 28 15:41 install45.iso [r...@gate:/home/pub/4.5r/i386] # md5 install45.iso MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025 [r...@gate:/home/pub/4.5r/i386] # which du /usr/bin/du [r...@gate:/home/pub/4.5r/i386] # md5 /usr/bin/du MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d [r...@gate:/home/pub/4.5r/i386] # du -sk install45.iso 234416 install45.iso # uname -a OpenBSD jimg.indx.ca 4.5 GENERIC#1749 i386 # l install45.iso -r--r--r-- 1 root wheel 239949824 Feb 28 15:41 install45.iso # md5 install45.iso MD5 (install45.iso) = fbf83cf24d2649299d55ee482accc025 # which du /usr/bin/du # md5 /usr/bin/du MD5 (/usr/bin/du) = 773853bcf1b4abb6fdca6dacb6f9888d # du -sk install45.iso 234288 install45.iso and, if eyes serve correctly, 234416=/=234288 Anyone have a clue what's happening here? Thanks, Dhu -- Andreas Kahari Somewhere in the general Cambridge area, UK
Re: yt: youtube download issue
Howdy? It would appear that this is back again, and since it has happened *while* running 4.5 Rel(i386), in which yt initially worked, I suspect YouTube has changed something. Can anyone else confirm/deny this conjecture? Thanks Dhu On Tue, 18 Dec 2007 20:18:26 +0530 Girish Venkatachalam girishvenkatacha...@gmail.com wrote: On Tue, Dec 18, 2007 at 06:33:07PM +1100, Chris wrote: yt is giving me the following error while trying to download - $ yt http://youtube.com/watch?v=huF2mrhTtCwfeature=dir $ Getting http://youtube.com/watch?v=huF2mrhTtCw ... /usr/local/bin/lua: /usr/local/bin/yt:42: assertion failed! stack traceback: [C]: in function 'assert' /usr/local/bin/yt:42: in main chunk [C]: ? [2]+ Exit 1 yt http://youtube.com/watch?v=huF2mrhTtCw I have yt-6 and lua-5.1.2p0 installed on 4.2. Any help would be much appreciated. Thanks. Problem is fixed in -current. -Girish
Re: spam in misc list.
On Tue, 18 Aug 2009 04:53:42 + 4625 4625...@gmail.com wrote: On Tue, 18 Aug 2009, Aaron Mason wrote: Let me answer that question with another: why should we read messages about people whining about spam? It's actually worse than the spam It is simple: I do not wanna to see smap/fish message in message index. itself in some cases. 90% of mail clients have a delete button. Excercise it. No matter have or not. Traffic cost money. Drop the list ;-) Dhu Why we should read this shit? -- Forwarded message -- From: Bank of America memberserv...@cua.com To: misc@openbsd.org Subject: You have 1 new message from Bank of America ! Dear customer We regret to inform you that your Bank of America Online Account has been temporarily suspended. -- Aaron Mason - Programmer, open source addict - Oh, why does everything I whip leave me? -- 4625
Spamd PF milter-spamd
Howdy List? I'm trying to setup spamd on a sparc and wondering about using PF or the milter redirect mechanism. Are there any instruction on using these with sendmail past the man pages? I've set up spamd but am clearly missing something as there's been no abatement of crap in my mailboxes ... also I'm getting an error