Re: set nano as deafult when editing crontab
On 2010/12/23 4:48 PM, Orestes Leal R. wrote: I want to edit the crontab with nano but by default vi it's invoked when I do 'crontab -e' Did you read crontab(1)?
Re: rt.fm CVS Mirror going funny?
On 5/17/09 2:07 AM, Aaron W. Hsu wrote: Hey All, Has anyone else noticed issues with pulling src/sbin/ping/ping.c from anon...@rt.fm:/cvs? I get this error cvs [server aborted]: EOF while looking for end of string \ in RCS file /cvs/src/sbin/ping/ping.c,v Does anyone know what might cause this? I tried removing it and refetching it, as well as using the -C option. Yes, always in that spot. I stopped using this mirror a while ago because of this.
Re: suexec: disabled; invalid wrapper /usr/sbin/suexec
On 1-Sep-08, at 3:17 AM, Lars Noodin wrote: Jeremy Huiskamp wrote: suexec: disabled; invalid wrapper /usr/sbin/suexec Did you read suexec(8)? I expect you mean this? Because this program is only used internally by httpd(8), there are no other ways to directly invoke suexec. No. I was looking at mod_perl and have no plans in the near future to try suexec. The error makes some sense in the context above. Regards -Lars No, I meant this: In order to work correctly, the suexec binary should be owned by ``root'' and have the SETUID execution bit set. OpenBSD currently does not in- stall suexec with the SETUID bit set, so a change of file mode is neces- sary to enable it...
Re: suexec: disabled; invalid wrapper /usr/sbin/suexec
On 31-Aug-08, at 3:21 PM, Lars Noodin wrote: Listing the modules in Apache/1.3.29 (4.4-current base, i386 snapshot from 29 Aug) gives a warning regarding suexec. Regards -Lars # httpd -l Compiled-in modules: http_core.c mod_env.c . . . mod_ssl.c suexec: disabled; invalid wrapper /usr/sbin/suexec Did you read suexec(8)?
Re: Why Perl for pkg_* tools ?
On 23/05/08 04:21 PM, Han Boetes wrote: Yes but C is written in gcc which is GNU licensed and pkg_utils are written in perl which is a much more libaral language. I really start wondering why the whole of OpenBSD is not rewritten in perl! # Han Ah, but perl is compiled with gcc, so that doesn't really help. ;)
Re: AMD Geode
On 18/03/08 08:15 AM, Henning Brauer wrote: * Nicolas Legrand [EMAIL PROTECTED] [2008-03-18 07:56]: Damien Miller [EMAIL PROTECTED] writes: On Mon, 17 Mar 2008, Dimitri wrote: Hello all. My cuestion is simply. OpenBSD run over AMD Geode, Yes. specificly over Packard Bell S18P?. I've read it's an AMD Geode LX800, so yes. so you are saying that the old cisco catalyst 1924 switches I have somewhere here (that an axe or some explosives and I will have fun with soonish) runs OpenBSD, since it has an 80486 processor? cool. That depends. There's already an axe(4) but: $ man -k explosives explosives: nothing appropriate
Re: Any other Java developers?
On 11/03/08 09:35 AM, Henning Brauer wrote: * Dongsheng Song [EMAIL PROTECTED] [2008-03-11 07:39]: Before jvm use the mpm model like apache2, or OpenBSD implement kernel level pthreads, I don't think there will have many java developers using OpenBSD as their native platform. wow. that statement is utter bullshit. I know several people developing java stuff on OpenBSD. why not? it works just fine. We run serveral very very loaded java application servers on OpenBSD for customers. They work just fine - while they had regular problems on every other platform they have tried, including linux. They outperform any other platform they have used before _easily_. But, you know, java on OpenBSD, that doesn't work. Rright. I so wish people would just shut up when they have nothing to say. I haven't pushed java on openbsd nearly so hard as Henning's example, but I did write some fairly highly threaded java code for a distributed computing course on openbsd once and it worked just fine. However, contrary to the above experience, it also worked just fine when I ran it on the linux machines in the cs lab :) Eclipse ran a hell of a lot faster with 512M of ram on my openbsd machine than it did on my os x machine with 1G too.
Re: Open Source Article Spawns Interesting Ethical Question
On 3-Jan-08, at 8:48 PM, Ioan Nemes wrote: Ask yourself this question. Do you really believe that someone who sells a product which was developed within the lawful frame work is unethical? You confusing the issue! The software market - where you sell your product (i.e., software) is unethical, distorted and manipulated, and not by the ethical software crafters! A `win-win` case? No, I don't think so, it smells like a Fridmanite axiom to me. ioan How can a software market be unethical? It's not unethical for someone to write software and not give away the code because you have the option of not using it. It wouldn't be unethical for Google to hire away every OpenBSD developer and then stop them from writing any more free code because a) we as users have no inherent right to the code and b) even if we did, what we've already got will always be free and c) we have no inherent right to expect the devs to keep giving us code in the future. Nevermind that they would probably mostly quit rather that stop releasing free code anyway. This is so far from infringing on anyone's freedoms, I don't even understand how the word ethics got into the discussion. Jeremy
Re: Getting envolved
On 13-Dec-07, at 11:11 AM, Bob Beck wrote: If you like the current way it works, you should be able to continue with this system. But what if my mum, who has low computer skill, would like to install a free, functional and secure system? I think the software should help her to make the most accurate choices. Because I think my mum too deserves a reliable operating system. :P I disagree. A complex interface implies a lot of code. a lot of code leads to unreliablity, either through bugs or detracting valuable developer time from more important things A simple interface (well designed) imples less code, which leads to reliability. Users who can no invest the effort learn enough to use a simple interface do not deserve a reliable operating system. They deserve windows, and they deserve pop up buttong in their browsers that they click ok blindly for everything. -Bob When I read that, it sounded a lot to me like saying if you're not a skilled medical practitioner, you don't deserve decent health care. Seems to me one of the better aspects of our society is our ability to allow specialists to provide good services to non-specialists (or at least those who can afford to pay for it). So sure, from a practical standpoint people with above average computer skills are always going to have better experiences with computers, but that doesn't mean we can't or shouldn't try to even it out. Jeremy
Re: Getting envolved
On 13-Dec-07, at 10:22 PM, Theo de Raadt wrote: When I read that, it sounded a lot to me like saying if you're not a skilled medical practitioner, you don't deserve decent health care. Seems to me one of the better aspects of our society is our ability to allow specialists to provide good services to non-specialists (or at least those who can afford to pay for it). Yes -- when those specialists are paid. Absolutely. You guys deserve to get paid for what you do (insofar as there are enough people willing to pay you for what you do), nor are you obligated to tailor the operating system for any particular class of user. I don't think either of those mean that non-technical people deserve bad software, it just means they have to find someone who is both a good programmer and has a desire to make simpler interfaces for money. That programmer will probably build on top of your work. Hopefully that'll all fall into place some time in the not-too-distant future.
Re: no 4.2-stable package updates??
On 12-Dec-07, at 5:54 PM, Unix Fan wrote: You really can't expect everyone to use -CURRENT in a production environment.. Wow, I've read an unusual amount of stupid things on this list in the last two days but this takes the cake (hint: it's not about whether or not people run -current or -stable). This would be insulting even to someone with whom you'd signed a contract and paid to provide you with software. Please stop before you give the rest of us casual users a really bad name.
Re: Compliments and Knob Question
On 4-Dec-07, at 10:24 PM, L wrote: Hello, I just plugged in some USB devices into my old 133Mhz laptop with OpenBSD on it and they magically work. These devices would not work and/or had problems on Winblows with the laptop.. yet on the desktop they USB devices worked fine. So as I say.. compliments, and thanks. Question about buttons and knobs.. What exactly is a knob? I ask because on a Door, a knob is very useful for getting the door open.. if the door didn't have a knob I'd have to stick my finger or a credit card into the latch area and get it open. Is a knob an extra feature that doesn't really add anything much better, but is just there for the sake of being trendy? Is a knob a wrapper in some cases? For example is IFUP/IFDOWN a knob? Is a symlink a knob since that is essentially an extra directory that isn't necessarily needed since you could just be simple and use the actual file instead.. I think some 'wrappers' are useful so I hope all wrappers are not knobs.. I think maybe I have the definition of a knob wrong.J Having two knobs on a door is stupid, unless one knob is for a really short person who is 1 foot tall and the other knob is for the 5 foot person). I know I'm being a knob asking what a knob is, but I seriously want to know exactly what a knob or button is. Yes I googled it and basically all I found was a knob is when someone implements something that doesn't seem to be the best solution or the knob doesn't really add any extra enhancement. But on a door, a knob is quite needed.. so.. flamebaits aside.. I'd like technical knob discussion please. As an API author I try to reduce complexity.. but sometimes making wrappers around an API might add a knob around it to make it simpler. For example the CP command is just a knob for copy.. Regards, L505 Knob Student That thing on the door is a handle. A knob would let you adjust how far the door opens, how much it resists being opened, whether or not it shuts itself (and how quickly) and how far you have to turn the handle to get it to start opening. Clearly most doors work just fine without knobs.
Re: when was a pkg installed !!!
On 7-Nov-07, at 6:20 PM, badeguruji wrote: that is true. especially if you notice that installing one pkg install all the other it depends on. there has to be some way in pkg_info to reflect this info that: how and when was 'any' pkg installed? otherwise i would be disappointed. -BG You could hack pkg_add to write a log msg every time it completes an installation and just refer to the log for timestamps.
Re: About Xen: maybe a reiterative question but ..
On 24-Oct-07, at 5:59 PM, L. V. Lammert wrote: At 03:31 PM 10/24/2007 -0600, Theo de Raadt wrote: You must be more qualified with regards to the actual code than I am because I flat out don't believe this at all. Believe what? OBSD is secure? I thought you were proud of the project? Sheesh! If our leader doesn't believe OBSD is secure, we ALL better be running for cover. Linux, anyone? So you judge the security of the operating system by how many (possibly brash) risks its developers are willing to take with it? That's counter-intuitive. If I'm looking for security, I'd rather get my software from a developer who isn't satisfied because (s)he is more likely to work harder to improve it and be much more careful while doing it. If confidence is all that matters, then heck, lets get rid of all the privilege separation and other risk-minimizing techniques because you don't need them when your code is flawless right?
Re: [Newbie] OpenBSD HTTP proxy
On 8-Oct-07, at 8:43 PM, Lars Noodin wrote: Tony Bruguier wrote: ... I would like to install an HTTP proxy. ... Squid is recommended. Read the directions carefully and you will have to make one or two changes to the configuration. Have squid listen localhost and then tunnel to get to it. What's the point of getting squid involved? Putty does SOCKS proxying does it not? Jeremy
Re: Wasting our Freedom
On 15-Sep-07, at 10:57 PM, Daniel Ouellet wrote: Fact #3 Any way you want to look at it, looks like very much a Copyright violation was committed, but then SFLC said it's OK. Front page: http://www.softwarefreedom.org/ No debate and can't be argue. Fact #4 And publish a release to that effect http://www.softwarefreedom.org/news/2007/jul/31/openhal No debate and can't be argue. These 'facts' have absolutely nothing to do with the re-licensing argument. The articles linked deal with potential infringement on Atheros' copyright or intellectual property or whatever and were written almost a full month before the offending patches were published. I'm all for supporting Reyk in this, but don't you think that goal would be better accomplished by using arguments that make sense? Fact 5.6.7 Then the Linux kernel imported the BSD license driver and changed the copyright, three times so far on it, in different variation. No debate and can't be argue. Fact 8 Reyk Floeter maid it public and well known that he didn't want his code to be release under GPL. http://marc.info/?l=openbsd-miscm=118881908304473w=2 No debate and can't be argue. But what does the GPL side reply. That they consulted their lawyers and that's a mess, but that they know what they are doing. Here however, everyone argue on the subject, but the facts remains. In the end, if users, developers, lovers, die hard believers, bias ones, and what not can't see that. I can't help it. I am not a lawyers and sure not interested to be one, or even pretend to understand most of it, but even not be native English, I sure can read and understand what's going on however. Now, I don't know of any case where a by stander were prosecuted for witnessing a crime and not doing anything about it. I only know it was on the news not so long ago when people witness crime committed and just watch and sure could have stop it and did nothing. But, at the same time, if you take position in favor of a committed crime, should there be one, or a violation, should you witness one, I am not expert and do not want to debate that either, however, aren't you becoming accessory to the crime, or doing obstruction to justice by doing so, or trying to deform the facts? Think about it, but don't say anything and don't reply to me please, I am not interested to know what you think. I already got plenty of nonsense emails already from people that I can only conclude didn't spend 5 minutes to get the facts first, but that were replying based on their love/hate relation to GPL vs BSD only, or favorite Linux/GNU distribution, or what not. Just really look at yourself in the mirror deeply and at the fact and then asked yourself if that's really what you want and who you are and will let you these facts define who you really are as a unique person? Are you going to promote that behavior, or voice your objection about it. I don't know, but if I was involve with it, or developing software under the GPL, or contributing back to the GPL/Linux/GNU under these conditions, on my own time, with my own talents, using my own knowledge, as a free will and gift to others, without pressure to do so, in the intention to make it a better place for my fellow users/developers, I would think twice before doing it again under the GPL and be associate with these type of people, or even why I did it in the first place, but that sure may not have been known to be at first. I would have to asked myself this simple question. In face of the facts, I see it wrong and from the top down it's wrong and they do wrong. Do I really want to be part of that? Is it really who I am? Will I let them define my personality and integrity this way? Do, I disregard my fellow users/developers to that level to want to screw them that bad. Do, I let others take advantage of my good will this way. Etc, the list is very long if you have some integrity. And before you say I am way off, or out of line, think about it. You can always define who you are in your life, that's your choice and a freedom you have, or you can let others define it for you. Witch one will it be? If you see wrong and you accept it as is and do not try to correct it when even provided with all the facts, then may be you agree with it? May be you don't want to be involve and be a by stander. Fine, so far that's not a crime and I do not want to debate if that should be or not. It is not relevant here. You sure have that choice and rightfully can choose to do nothing. However, much worst then doing nothing is that if you continue being part of it after all that, aren't you actually endorsing it as well for that point forward? I would say so. You can't clam ignorance for that point forward can you? So, for all that was done before and to all that was said, that this is not a representation of the Linux community at large,
Re: Kuro5hin: OpenBSD Founder Theo deRaadt Has Conflict of Interest With AMD
On 5-Aug-07, at 4:50 PM, chefren wrote: OpenBSD Founder Theo deRaadt Has Conflict of Interest With AMD By David Marcus, 2007-08-05 03:41:29 Section: Technology, Topic: I formerly had a great deal of respect, bordering on admiration, for Theo deRaadt's refusals to compromise his open source principles, even in the face of stiff opposition. Although he has occasionally gone over-the-top, recommended some frankly very dubious changes to OpenBSD, and is regularly arrogant (which is even more annoying because he's so often right!), he's always remained consistent in his devotion to the cause of GNU/Free Software. http://www.kuro5hin.org/story/2007/8/2/15233/84896 Oh yeah, because if there's anything Theo's proven during the lifespan of OpenBSD, surely it's that he's available to the highest bidder and he's willing to say or not say anything to keep the money coming. That was an amusing Sunday afternoon diversion but, all-in-all, I'd rather have my 10 minutes back.
Re: ADVERT: C12G
This is probably not the right place for your software. OpenBSD may be used to drop bombs on Australia, which likely counts as terrorism and conflicts with your licensing goals. On 10-Jul-07, at 4:02 AM, Robin Carey wrote: Ultra-Secure Communications: C12-GAMMA; a free software product for FreeBSD/Linux: http://www.leopard.uk.com/cion Sincerely, R Carey.
Re: Binary kernel updates
If you'd bothered to inspect the headers you would have noticed that the below message was sent before the one that has many replies but it didn't arrive until about 20 hours after it was sent. Probably stuck in the pipes somewhere, that seems to happen with misc@ alot. Rico probably figured it was lost and so he sent another which is fairly reasonable. Jeremy On 10-Apr-07, at 12:44 PM, Bryan wrote: Why post twice? Sending it as different person within 24 hours of one another is not going to get what you want... A couple of people gave you solutions, choose one, or move to Linux... Remember this??? [EMAIL PROTECTED] [EMAIL PROTECTED] to misc@openbsd.org dateApr 9, 2007 4:43 PM subject Binary kernel and base update mailed-by openbsd.org Hi all. I have noticed that the OpenBSD team puts a lot of emphasis on using binary packets rather than building from ports, which I think IMHO is good, but why is it that there is no binary kernel updates, rather than patching the kernel from source? I am asking this not from a point that we find this difficult, rather in OpenBSD its really easy. But sometimes its very time consuming, and yes there exists binpatch and other solutions, but why isn't there an official OpenBSD way? Last week management decided to go back to using Debian on some of our servers due to them being easy to upgrade including kernel and basesystem upgrades. OpenBSD has really made a cool solution with pkg_add -u, but why not kernel and basesystem binary updates as well? Best and kind regards. Rico On 4/9/07, Rico Secada [EMAIL PROTECTED] wrote: Hi all. I have noticed that the OpenBSD team puts a lot of emphasis on using binary packets rather than building from ports, which I think IMHO is good, but why is it that there is no binary kernel updates, rather than patching the kernel from source? I am asking this not from a point that we find this difficult, rather in OpenBSD its really easy. But sometimes its very time consuming, and yes there exists binpatch and other solutions, but why isn't there an official OpenBSD way? Last week management decided to go back to using Debian on some of our servers due to them being easy to upgrade including kernel and basesystem upgrades. OpenBSD has really made a cool solution with pkg_add -u, but why not kernel and basesystem binary updates as well? Best and kind regards. Rico
Re: [OT] Re: Long WEP key
On 30-Mar-07, at 7:03 AM, Sunnz wrote: You mean you can choose an unlimited set of characters as the key?? What I meant was that you're only choosing from [a-f0-9] when you could use characters from the whole alphabet, upper and lowercase as well as punctuation. I can't claim to understand how WPA can be broken but from Damon's post it sounded like brute force. You've saved an attacker from having to try the vast majority of possible keys at your length. Jeremy
Re: [OT] Re: Long WEP key
On 30-Mar-07, at 10:58 AM, Sunnz wrote: But would any hacker actually try to brute force it by 16 character of from length 1 to length 40? Maybe I only used 16 possible characters instead of 60, but it is a really long key. $ bc 16^40 1461501637330902918203684832716283019655932542976 60^30 22107391972073335789977600 This is probably a pointless discussion and I'm sure your password is far better than most (it's better than mine for sure). Jeremy
Re: Long WEP key
On 29-Mar-07, at 9:59 AM, Nick ! wrote: Nick ! wrote: Theo has claimed somewhere that I can never find the link to http://www.tjrforum.com/archive/index.php/t-2513.html gives a quote but I can't find the original source. I'd like to hear an actual developer position on that statement. I read it as a criticism of the way WPA is used more than of the protocol itself. As in, it's of little value to encrypt the traffic if you allow anybody to access it. If Theo was saying that it sucks even when you're using some sufficient form of authentication (other than that it's maybe too complicated), I'd love to have it explained. Jeremy
Re: [OT] Re: Long WEP key
The obvious problem with that is that you're only choosing a limited character and we all know it now ;). Also, what's your definition of random file? Jeremy On 29-Mar-07, at 9:58 PM, Sunnz wrote: Actually I always uses a sha1sum of a random file that I have and I make sure I have that file on all my computers... should be random and long enough? 2007/3/30, Damon McMahon [EMAIL PROTECTED]: From: Nick ! [EMAIL PROTECTED] Date: 29 March 2007 2:16:31 PM To: OpenBSD-Misc misc@openbsd.org Subject: Re: Long WEP key On 3/29/07, Lars Hansson [EMAIL PROTECTED] wrote: Maxime DERCHE wrote: IMHO you should think to configure your AP to provide a WAP- based encryption... WAP-based encryption? Do you mean WPA? And to answer the original question: because OpenBSD doesn't support WPA, and Theo has claimed somewhere that I can never find the link to that WPA gives a false sense of security anyway. -Nick From most of my reading a few months ago WPA-PSK is considered reasonably secure provided the pre-shared key is long enough... for some reason I can't find my references, but from memory depending on the source a minimum of around 34 to 39 random ASCII characters (50+ alphanumeric characters) is quoted. Obviously that's a very long passphrase in anyone's language and that's the problem. Most people (understandably) choose a passphrase at most one-third that length and in this situation WPA-PSK may be considered even less secure than the (deservedly) derided WEP. -- Please avoid sending me Word or PowerPoint attachments. See http://www.gnu.org/philosophy/no-word-attachments.html
Re: [OT] Re: Long WEP key
Um, excuse my poor writing. I meant .. choosing from a limited character set ... On 29-Mar-07, at 10:35 PM, I wrote: The obvious problem with that is that you're only choosing a limited character and we all know it now ;). Also, what's your definition of random file? Jeremy On 29-Mar-07, at 9:58 PM, Sunnz wrote: Actually I always uses a sha1sum of a random file that I have and I make sure I have that file on all my computers... should be random and long enough? 2007/3/30, Damon McMahon [EMAIL PROTECTED]: From: Nick ! [EMAIL PROTECTED] Date: 29 March 2007 2:16:31 PM To: OpenBSD-Misc misc@openbsd.org Subject: Re: Long WEP key On 3/29/07, Lars Hansson [EMAIL PROTECTED] wrote: Maxime DERCHE wrote: IMHO you should think to configure your AP to provide a WAP- based encryption... WAP-based encryption? Do you mean WPA? And to answer the original question: because OpenBSD doesn't support WPA, and Theo has claimed somewhere that I can never find the link to that WPA gives a false sense of security anyway. -Nick From most of my reading a few months ago WPA-PSK is considered reasonably secure provided the pre-shared key is long enough... for some reason I can't find my references, but from memory depending on the source a minimum of around 34 to 39 random ASCII characters (50+ alphanumeric characters) is quoted. Obviously that's a very long passphrase in anyone's language and that's the problem. Most people (understandably) choose a passphrase at most one-third that length and in this situation WPA-PSK may be considered even less secure than the (deservedly) derided WEP. -- Please avoid sending me Word or PowerPoint attachments. See http://www.gnu.org/philosophy/no-word-attachments.html
Re: Important OpenBSD errata
On 16-Mar-07, at 3:51 PM, Karel Kulhavy wrote: On Fri, Mar 16, 2007 at 01:26:39PM +, Karl O. Pinc wrote: It's actually really easy. Follow the first 2 steps in man release. Unfortunately these instructions fail with not being clear if I should use OPENBSD_4_0_BASE or OPENBSD_4_0 in step 1. It doesn't say if I should pick up the version I have currently installed (4_0_BASE in my case) or the version whose kernel I want co compile (4_0 in my case) Do you know the difference between -release and -stable? Read http://www.openbsd.org/faq/faq5.html I can't imagine why you wouldn't want -stable but if you insist on only incorporating the last patch, don't bother with cvs. Unpack the source tarballs that are on your cd, apply the patch and go from there.
Re: Contradictory statement on vulnerability
On 16-Mar-07, at 4:52 PM, Tobias Weisserth wrote: Hi, On Friday, 16. March 2007 21:04, Karel Kulhavy wrote: ... Thanks, this is a much better explanation than in FAQ sec. 5. The explanation in FAQ doesn't mention the fact that not only the - current, but also the -stable is a moving target, though a slowly moving one. Now I have 4.0-release and want to have a fixed kernel (4.0- stable). Which version of sources should I download then? 4.0-release or 4.0-stable? You still haven't got it. This is what the FAQ states: -release: The version of OpenBSD shipped every six months on CD. -stable: Release, plus patches considered critical to security and reliability. -stable is not moving. It's just -release plus the errata from http://www.openbsd.org/errata40.html as stated in he FAQ. Get the sources from your CDs or from the FTP servers. Then apply the errata and you'll have -stable. It's as easy as that. Um, no. If you apply the errata to -release you have -release + errata. There are things in stable that are not in the errata, albeit not much. Tracking -stable requires using cvs which, frankly is much easier than patching -release, unless you're worried about the time spent doing a cvs update and possible extra compilation time. Jeremy
Re: Important OpenBSD errata
On 16-Mar-07, at 9:57 PM, Ray Percival wrote: On Mar 16, 2007, at 5:43 PM, fonkprop wrote: Yet again, we see that although Theo is willing to beg, wheedle and threaten his user community into sending him money when he needs it, he holds them in too much contempt to respond to simple, uncontroversial and valid criticism. No. This is pure bullshit. There was a hole. The patch and the errata had been up for -ages-. Anybody who really cares and really pays attention had patched and been happy for nearly a week. The logic behind the misc posting is so very obvious that to bitch about it is just finding something to complain about. I, of course, don't know the exact numbers but it seems pretty clear that misc has a much larger subscriber base than security-announce. Given that it just makes sense to post this to the list where the most people are going to see it. Actually, I think you're wrong. Majordomo at lists.openbsd.org reports 11323 subscribers to security-announce and only 3866 for misc. It really surprised me when I saw it, I thought misc would have had at least more than ~4000. Whether they're correct or not though, most people probably think security-announce is the important one to watch.
Re: Important OpenBSD errata
On 15-Mar-07, at 11:48 PM, Ray Percival wrote: On Mar 15, 2007, at 7:31 PM, Karl O. Pinc wrote: snip I agree. I'm very annoyed that I have to read about this problem on slashdot. The misc list is not the right place for this announcement, some low-traffic announce list that goes right into my inbox is where this stuff belongs. I rely on having a clear channel for security related problems. You -do- know that this has been on the errata page since Friday, right? Because as worried as you are and as important as this is to you you take the responsibility to check said page every day, of course. Oh wait. No you don't. Come on this is open source it should be a maker's culture. You know where these things are as soon as they hit the tree and it takes all of two whole minutes to glance at it once or twice a day. Step up to the plate and do for yourself. That's what I was going to say. If you did things properly, you would have had this patch applied before you knew that it was a remote hole. I was confused when I read that the patch had been published on the 7th because I didn't think I'd seen it. Then I realized I was already running it. That's called a -6 day bug fix ;) 'Course it seems odd that this isn't on security-announce@ but I don't remember seeing a guarantee of that when I signed the contract... oh wait...
Re: Issues with OpenBSD 4.0 on FSC Amilo Si 1520 notebook
On 20-Feb-07, at 1:33 PM, K-Wizzz wrote: First of all, the system installed without any troubles, X works just fine with 915resolution installed. However, I have some quirky mouse behaviour caused by a aggressively sensitive touchpad: whenever I hit the right edge of the pad, a mouse wheel is emulated which is just too sensitive and gives some errorenous behaviour in firefox (instead of scrolling it goes forward/backward in browsing history). I simply don't want that scrolling behaviour, but removing ZAxisMapping in xorg.conf doesn't help here... Firefox seems to default to using horizontal scroll as back/forward which is kinda dumb (at least it does on os x). Assuming that's what's going on, there is an about:config item to switch it back to sanity: mouse.horizscroll.withnokey.action = 1. Of course, that won't fix the hypersensitivity issue. Jeremy
Re: Flash Player 9 on OpenBSD
On 17-Jan-07, at 4:29 PM, Nick Guenther wrote: Seeing the hardline the devs take against driver binary blobs it's unlikely. Not that this is reason to support it, but there's obviously a monumental difference between a driver and a browser plugin. However, I am looking forward myself to 4.1, because Gnash http://www.gnu.org/software/gnash/ has been added to ports and upon release it will become a package too. -Nick Read [EMAIL PROTECTED] Gnash doesn't appear to be useful at all right now. Jeremy
Re: java on openbsd 4.0?
On 9-Jan-07, at 12:42 PM, J.C. Roberts wrote: The painfully sad truth is if you're doing any serious development and testing in Java, you have to debug everywhere and you normally need to have ton of jre/jdk installations on each of your supported OS/ hardware combinations. You really do need multiple systems as well as multiple installations of java on each system; versions, subversions and sub-subversion (1.4-01, 1.4-02, 1.4-03 and so on as well as 1.5-01, 1.5-02 ... ad infinitum). It's a major pain in the ass. I truly hate it and I won't touch java unless someone is paying me really well to deal with such headaches. Who fed you that load of silliness? I could maybe understand having 1.4 and 1.5 but if you can't keep something stable across the small releases you're doing something seriously stupid.
Re: console switching problem from desktop
On 15-Dec-06, at 8:42 PM, Denny White wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 There are actually 2 problems. First one is, when using ctrl-alt-f1 so forth, it goes to the other console fine, but when I try to switch back, all I see on the screen is the output from the underlying x rather than the desktop. http://www.openbsd.org/faq/faq7.html#SwitchConsole
Re: OpenBSD 4.0 CD Set Package List
On 7-Dec-06, at 10:48 AM, Igor Sobrado wrote: Hi Jeremy. There is probably something wrong in the input to grep -v as a lot of the packages that are not present in the CD really *are* (e.g., xmms, xpdf, abiword...) Cheers, Igor. No, you just misread my somewhat confusing wording. The list I supplied is the packages that *are* on the cd. There was no need for any grepping, what I posted was the simple ls output from the packages/i386 folder on cd1. I think you'll find our lists are identical. Jeremy ps. Sorry for the duplicate Igor, I frequently forget to reply to misc@ instead of the sender.
Re: OpenBSD 4.0 CD Set Package List
On 6-Dec-06, at 11:16 AM, Peter N. M. Hansteen wrote: Kenneth Bond [EMAIL PROTECTED] writes: Is there a published list of the packages that are included on the CD Set? I was going to say http://www.openbsd.org/4.0_packages/ and click your platform, but more than likely some packages have been updated since the release. It will give you an idea, though, and of course once you've installed the packages you want from the CD, pkg_add will let you update the few which have changed. I think he was more curious about which packages are not present on the cd. Here is the list if i386 packages (I assume that's what you're looking for): ImageMagick-6.2.6.1.tgz OpenEXR-1.2.2p2.tgz TRANS.TBL Xaw3d-1.5p0.tgz aalib-1.2p0.tgz abcde-2.3.0.tgz abiword-2.4.5.tgz aide-0.10p0.tgz antiword-0.37.tgz arts-1.5.4.tgz aspell-0.50.5p4.tgz aterm-0.4.2p0.tgz atk-1.10.3p1.tgz autobook-1.5.tgz autoconf-2.59p1.tgz automake-1.4.6.tgz automake-1.8.5.tgz automake-1.9.6p0.tgz bash-3.1.17.tgz bison-2.1p0.tgz blackbox-0.70.1.tgz bsd-airtools-0.2p2.tgz bzip2-1.0.3.tgz cairo-1.0.4p0.tgz cdparanoia-3.a9.8p0.tgz cdrtools-2.01.tgz colorls-3.9.tgz curl-7.15.4.tgz cvsup-16.1h.tgz cvsync-0.24.19.tgz cyrus-sasl-2.1.21p2.tgz db-3.1.17p6.tgz ddd-3.3.11.tgz digikam-0.8.2.tgz digikamimageplugins-0.8.2.tgz dsniff-2.3p2.tgz dvd+rw-tools-5.21.4.10.8.tgz emacs-21.4p1.tgz epic4-2.2.tgz esound-0.2.34p0.tgz ettercap-0.6.bp4.tgz expat-2.0.0.tgz fetchmail-6.3.4.tgz flac-1.1.2p1.tgz freetype-1.3.1p2.tgz fribidi-0.10.4p0.tgz gaim-1.5.0p6.tgz gaim-otr-3.0.0.tgz gettext-0.14.5p1.tgz ghostscript-7.05p7.tgz ghostscript-fonts-6.0p0.tgz gif2png-2.5.1.tgz gimp-2.2.12.tgz glib-1.2.10p1.tgz glib2-2.10.3.tgz glitz-0.4.4.tgz gmake-3.80p1.tgz gnome-icon-theme-2.10.1.tgz gnupg-1.4.5.tgz gphoto-2.1.5.tgz gqview-2.0.1p2.tgz gtar-1.15.1p4.tgz gtk+-1.2.10p4.tgz gtk+2-2.8.20.tgz gv-3.5.8p4.tgz hicolor-icon-theme-0.5p0.tgz icewm-1.2.26.tgz id-utils-3.2dp0.tgz imlib-1.9.14p4.tgz imlib2-1.1.2p3.tgz index.txt ircII-20040820.tgz irssi-0.8.10p0.tgz ispell-3.2.06p1.tgz ispell-french-3.2.06p0.tgz ispell-spanish-3.2.06p0.tgz jasper-1.701.0p1.tgz jbigkit-1.6.tgz jhead-2.6.tgz jpeg-6bp3.tgz kdebase-3.5.4.tgz kdeedu-3.5.4.tgz kdegames-3.5.4.tgz kdelibs-3.5.4.tgz koffice-1.5.2.tgz lcms-1.15.tgz liba52-0.7.4p2.tgz libao-0.8.5p2.tgz libao-esd-0.8.5p3.tgz libart-2.3.17.tgz libaudiofile-0.2.6p0.tgz libdnet-1.10p1.tgz libdvdread-0.9.5p0.tgz libexif-0.6.13p0.tgz libgcrypt-1.2.0p1.tgz libglade2-2.5.1p5.tgz libgnomecanvas-2.10.2p2.tgz libgnomeprint-2.10.3p0.tgz libgnomeprintui-2.10.2p3.tgz libgpg-error-1.1p0.tgz libgphoto-2.1.5p1.tgz libgsf-1.11.1p2.tgz libiconv-1.9.2p3.tgz libid3tag-0.15.1bp0.tgz libidn-0.6.1.tgz libkexif-0.2.2p0.tgz libkipi-0.1.4.tgz libltdl-1.5.22p1.tgz libmad-0.15.1bp1.tgz libmng-1.0.9p1.tgz libnet-1.0.2ap1.tgz libogg-1.1.3.tgz libotr-3.0.0.tgz libpqxx-2.5.3p0.tgz libslang-1.4.9p3.tgz libungif-4.1.4.tgz libusb-0.1.10ap1.tgz libvorbis-1.1.2p0.tgz libwmf-0.2.8.3p2.tgz libxml-2.6.26.tgz libxslt-1.1.17.tgz links-0.99.tgz lyx-1.4.2-qt.tgz magicpoint-1.11bp5.tgz mergemaster-1.46p2.tgz metaauto-0.5.tgz mod_perl-1.29p0.tgz mozilla-firefox-1.5.0.5.tgz mozilla-thunderbird-1.5.0.4.tgz mp3cddb-0.1.tgz mp3info-0.8.4.tgz mpeg_play-2.4.tgz mpg321-0.2.10p0.tgz mutt-1.4.2.2i.tgz mysql-client-5.0.22.tgz nano-1.2.5.tgz nedit-5.5.tgz netpbm-10.26.29.tgz nmap-4.11-no_x11.tgz nsd-2.3.5.tgz ntop-1.1.tgz ogle-0.9.2p2.tgz openldap-client-2.3.24.tgz openldap-server-2.3.24.tgz openmotif-2.1.30.5p1.tgz p5-CDDB-1.17.tgz p5-HTML-Parser-3.54.tgz p5-HTML-Tagset-3.10.tgz p5-MP3-Info-1.13p0.tgz p5-Tk-804.027p0.tgz pango-1.12.3.tgz pcre-6.4p1.tgz pftop-0.5.tgz pkglocatedb png-1.2.12.tgz popt-1.7p0.tgz postgresql-client-8.1.4.tgz procmail-3.22p1.tgz python-2.4.3p0.tgz python-tools-2.4.3p0.tgz qcad-1.5.4.tgz qt3-mt-3.5p6.tgz rdesktop-1.4.1.tgz rsync-2.6.8.tgz ruby-1.8.4p4.tgz rxvt-2.7.10p0.tgz samba-3.0.21bp3.tgz screen-4.0.2.tgz sdl-1.2.9p1-sun.tgz silc-client-1.0.2p1.tgz silc-toolkit-1.0.2p0.tgz slrn-0.9.8.1p1.tgz smpeg-0.4.4p2.tgz snort-2.4.5p0.tgz speex-1.0.5p0.tgz sqlite3-3.3.6.tgz squid-2.5.STABLE13.tgz startup-notification-0.8p0.tgz stunnel-4.15p1.tgz sylpheed-2.2.5p1.tgz t1lib-5.1.0p0.tgz tcpblast-1.1.tgz tcsh-6.14.00p0.tgz teTeX_base-3.0p3.tgz teTeX_base-fmt-3.0p0.tgz teTeX_texmf-3.0p0.tgz ted-2.17.tgz texi2html-1.64.tgz tidy-050921.tgz tiff-3.8.2p0.tgz tphdisk-1.0p0.tgz tpwireless-0.1.tgz transfig-3.2.4p0.tgz transproxy-1.4.tgz unison-2.13.16.tgz unzip-5.52.tgz vim-7.0.42-no_x11.tgz vorbis-tools-1.1.1p0.tgz wget-1.10.2p0.tgz windowmaker-0.92.0p2.tgz windowmaker-extra-0.1p0.tgz wv2-0.2.3.tgz xautolock-2.1.tgz xcdroast-0.98a15p4.tgz xdaliclock-2.23.tgz xfig-3.2.4.tgz xglobe-0.5p23.tgz xkeycaps-2.46.tgz xkobo-1.11p0-harder.tgz xlife-5.3p0.tgz xmms-1.2.10p7.tgz xmms-mad-0.8.tgz xmms-vorbis-1.2.10p5.tgz xpdf-3.01p1.tgz xpostit-3.3.1.tgz zip-2.32.tgz zsh-4.2.6p0.tgz I personally find that it's not quite enough for a full desktop system so I wait 'til release day and do an internet upgrade but at
Re: OpenBSD 4.0 CD Set Package List
On 6-Dec-06, at 8:07 PM, Greg Thomas wrote: On 12/6/06, Andrey Shuvikov [EMAIL PROTECTED] wrote: On 12/6/06, Jeremy Huiskamp [EMAIL PROTECTED] wrote: so I wait 'til release day and do an internet upgrade but at What is release date? According to OpenBSD web-site The current release is OpenBSD 4.0 http://openbsd.org/40.html which was released Nov 1, 2006. Or, do i miss something (I could because I'm new to OpenBSD)? He probably pre-ordered, received CDs before 11/1, and waited until 11/1 to get the packages that aren't on CD. Greg Yep. And I'm sure you can build a decent desktop with what's there. It's just that when I went from 3.8-3.9, a few packages I'd already added via internet couldn't be updated from the cds which resulted in some mismatches and problems. kde's artsd would go into an infinite loop and peg the processor. It was easy to handle but different stuff could have caused bigger problems. But if you start from the cds and/or do stuff after the packages go up, as is the case now, you wouldn't have this problem. Jeremy
Re: [ot] Re: java on openbsd
On 14-Nov-06, at 5:27 PM, Matthias Kilian wrote: On Tue, Nov 14, 2006 at 10:12:31PM +0100, Tobias Weisserth wrote: And regarding the language: Java runs on millions if not billions of devices. It does not run on arm/OpenBSD. It does not run on powerpc/OpenBSD. It does not run on vax/OpenBSD. Heck, it even behaves differently in on i386/Linux, i386/Windows, sparc/Solaris and pSeries/Linux, and to this platform diversity the vendor diversity (Sun vs. IBM) yet adds more subtile differences, especially if it comes to threads or GC behaviour. Then I suspect you're doing something very wrong or making assumptions about specs that are just not guaranteed to be true. I've worked in highly threaded apps that moved perfectly across sun's, bea's and ibm's virtual machines with no modifications. Sure there were large differences in performance, probably due to the threading and gc, but everything still executed properly. Believe it or not: Java is *not* platform independent, at least not in so-called enterprise environments. I've also worked on enterprise apps that were written, built and tested on windows and then moved straight to AIX for deployment with no history of glitches whatsoever. It was all on websphere and I obviously wouldn't consider doing this while moving do a different j2ee server, but the write once, run anywhere phrase refers to the se standard, not ee. I hear this java is not portable stuff from time to time and it just makes me wonder wtf the developers of these supposed problem applications were smoking. It's really not that hard. Jeremy
Re: Looking for HowTo instructions ...
On 1-Oct-06, at 9:28 PM, Marc G. Fournier wrote: Can someone that has installed BSDstats on your server please email me instructions on *how* to install it for your flavor of BSD? I do not believe that either OpenBSD or NetBSD has a 'periodic' system similar to FreeBSDs, and would like to put something up on the site explaining how to install such that it runs once a month, specific to each flavors recommended method ... Thx ... http://www.openbsd.org/cgi-bin/man.cgi?query=periodicapropos=1 Searchable, online man pages. Imagine that!
Fwd: Status of tomcat on OpenBSD
Sorry Leonardo, obviously this was meant for the list :p Begin forwarded message: From: Jeremy Huiskamp [EMAIL PROTECTED] Date: May 29, 2006 11:46:07 PM EDT (CA) To: Leonardo Rodrigues [EMAIL PROTECTED] Subject: Re: Status of tomcat on OpenBSD And failing that, vanilla tomcat usually just requires an unpack and run, so long as you've got java installed properly. In case you wanted to go with something from the 5.5 series... I haven't tried it on openbsd but the packaging changes don't look that extensive so you could probably apply them yourself to any version. On 29-May-06, at 8:21 PM, Leonardo Rodrigues wrote: There are ports and packages for jakarta-tomcat. Latest version being v5.0. On 5/29/06, Jason Murray [EMAIL PROTECTED] wrote: Hello, just inquiring about the current state of tomcat on OpenBSD. I did a search on the list and the only resent mention of tomcat degenerated into a RoR sucks flamewar. -- An OpenBSD user... and that's all you need to know =)
Re: PHP vs Mason vs Ruby vs JSP/Tomcat
*) JSP/Tomcat + chroot + strongly typed + compiled - mostly - complex Possibly my lack of knowledge here, but how are you figuring on having tomcat in chroot? It won't be in apache's.
Re: using torrents for packages?
On 2-May-06, at 12:21 AM, jared r r spiegel wrote: a couple of things spring to mind: A) python would have to be in base then. the license seems to my amateur eyes as a BSD license with a tamed-down djb clause #3. perhaps the license excludes it from consideration in base. bittorrent is a protocol whose first implementation happened to be in python, nothing more... B) making the ports infrastructure make constructive use of the bittorrent concept might be complicated. some packages are quite small; some packages are quite large. people are going to have to sit around seeding forever for some of them for there to be any difference from just going FTP... Obviously the idea of seeding makes integrating bt with the package tools ridiculous. The only way to start would be to download them by hand (which we can all do now apparently, teh yays!) but that makes dependency management hellish. I guess somebody could hack up a bt client that was dependency aware to use alongside the package tools. But the nearest mirror has always been lightning fast for me, much faster than I expect bt would ever be. Out of the thousands of packages, how many people are really going to leave their machines seeding the particular ones that I want? Jeremy
Re: ant-junit and ANT_HOME help
On 28-Mar-06, at 6:35 AM, MikeG wrote: Hi, junit.jar is in the classpath but removing it (once the test classes are built) doesn't help, I get the exact same error. Why are you removing it? It needs to be on the classpath during compile and while you run the tests. How is junit supposed to run if it's not even loaded? Also, I believe ant-junit.jar must be on the classpath *before* you write in the junit task (not within the task itself). Ant can't load the task up if it doesn't have an implementation for it. I'd recommend sticking both junit.jar and ant- junit.jar in ANT_HOME/lib because junit will obviously have to load before ant-junit. And please don't cc me, I'm already on the list. Jeremy I can make it work using the java tag to lanuch junit but this isn't so flexible. The error and the example ant file that produces it is below. build/ classes/hello contains HelloWorld.class and build/testclasses/hello contains HelloWorldTest.class. Hope it's just something trivial I've missed, even if I do get egg on my face. Thanks again. MikeG $ ant -f runjunit.xml Buildfile: runjunit.xml build: buildtests: test: BUILD FAILED /home/mike/demo/runjunit.xml:19: Could not create task or type of type: junit. Ant could not find the task or a class this task relies upon. This is common and has a number of causes; the usual solutions are to read the manual pages then download and install needed JAR files, or fix the build file: - You have misspelt 'junit'. Fix: check your spelling. - The task needs an external JAR file to execute and this is not found at the right place in the classpath. Fix: check the documentation for dependencies. Fix: declare the task. - The task is an Ant optional task and the JAR file and/or libraries implementing the functionality were not found at the time you yourself built your installation of Ant from the Ant sources. Fix: Look in the ANT_HOME/lib for the 'ant-' JAR corresponding to the task and make sure it contains more than merely a META-INF/ MANIFEST.MF. If all it contains is the manifest, then rebuild Ant with the needed libraries present in ${ant.home}/lib/optional/ , or alternatively, download a pre-built release version from apache.org - The build file was written for a later version of Ant Fix: upgrade to at least the latest release version of Ant - The task is not an Ant core or optional task and needs to be declared using taskdef. - You are attempting to use a task defined using presetdef or macrodef but have spelt wrong or not defined it at the point of use Remember that for JAR files to be visible to Ant tasks implemented in ANT_HOME/lib, the files must be in the same directory or on the classpath Please neither file bug reports on this problem, nor email the Ant mailing lists, until all of these causes have been explored, as this is not an Ant bug. Total time: 3 seconds $ cat runjunit.xml project name=demo default=test basedir=. !-- Common property definitions -- property name=build.dir value=build/ property name=lib.dir value=lib/ property name=class.dir value=${build.dir}/classes/ property name=testclass.dir value=${build.dir}/testclasses/ property name=build.source value=1.5/ property name=build.debug value=true/ path id=testclasspath.ref pathelement location=${class.dir}/ pathelement location=${testclass.dir}/ !-- pathelement location=/usr/local/lib/java/ant/ant-junit.jar/ pathelement location=${lib.dir}/junit.jar/ -- /path !-- run all the tests -- target name=test junit printsummary=yes classpath refid=${testclasspath.ref}/ batchtest fileset dir=${testclass.dir} include name=**/*Test.java/ /fileset /batchtest /junit !-- java fork=yes classname=junit.textui.TestRunner taskname=junit classpathref=testclasspath.ref arg value=hello.HelloWorldTest/ /java -- /target /project Jeremy Huiskamp wrote: Please report the specific error printed out. Also, do you have junit.jar on your classpath as well? Jeremy
Re: ant-junit and ANT_HOME help
Please report the specific error printed out. Also, do you have junit.jar on your classpath as well? Jeremy On 27-Mar-06, at 5:29 PM, MikeG wrote: Hi, can anyone help me to get junit to work with ant? Ant and JUnit both work on their own but Ant doesn't recognise the junit tag. According to the ant faq the fix for this is to set ANT_PATH such that $ANT_PATH/lib contains ant-junit.jar but on my system ant- junit.jar is in /usr/local/lib/java/ant/ant-junit.jar I've tried setting ANT_HOME to /usr/local/bin and /usr/local/lib/ java/ant/, I've tried adding ant-junit.jar to my CLASSPATH var, and to the classpaths used within the ant build file but nothing works. Can anyone enlighten me? I can't find anything in the archives or through google. I'm using openbsd 3.8, java 1.5.0-p1, ant 1.6.5, junit 3.8.1p0 installed from ports and packages. Thankyou for your time Mike
Re: XML converting
Imagine you put a fair amount of effort into both the content and the presentation. Then imagine you have one of two situations: -you have numerous sets of data that you want to display the same way -now if you want to change the way they're displayed, you have to change only one file (the xsl), instead of many -you have numerous ways you want to display the same data -now if you want to change some of the data and not the way it's displayed, you have to change only one file (the xml) If you have an app that is generating your data then it is particularly handy because you can write your xsl by hand and not worry about hardcoding into the app logic. Yes, this does seem a little out of place on this list :p Jeremy On 4-Feb-06, at 7:04 PM, [EMAIL PROTECTED] wrote: Hi all! I know this hasn't got anything to do with OpenBSD (other than I am actually doing the work on an OpenBSD driven machine), but the level and advice on this list is so valueable that I am going to ask anyway. Please forgive the direct lack of relation! Many buzzwords exists on the net, as you all know, and sometimes it is actually difficult to differ between what is buzzwords and what would might contain something usefull. Does anyone see any benefit in using XML format for some data, and then using XSL to convert this data into XHTML? Rather than just using XHTML in the first place? I ask because that I might have missed some good reason to do that. I can't see any reason why one would need to do that except if the actual XML data needed to be converted into several different things like both XHTML and WML etc. or perhaps because in the future XML would better serve as a way to contain the data. Any advice is appreciated. Best regards, Rico.