Re: rc daemon_timeout

2020-04-23 Thread Raf Czlonka
On Thu, Apr 23, 2020 at 12:00:59PM BST, Thomas de Grivel wrote:
> Hello,
> 
> I have some trouble starting up a daemon on OpenBSD 6.6 stable using rc :
> 
> in /etc/rc.d/my_daemon :
> 
> > #!/bin/ksh
> >
> > daemon="/home/my-user/start"
> > daemon_user=my-user
> > daemon_timeout=600
> >
> > . /etc/rc.d/rc.subr
> >
> > echo "daemon_timeout ${daemon_timeout}"
> > rc_cmd $1
> 
> Then I run the following command :
> 
> > # time /etc/rc.d/my_daemon
> > daemon_timeout 600
> > seuldanslenoir_staging(timeout)
> > 0m30.54s real 0m00.04s user 0m00.05s system
> 
> So the actual timeout is still 30 seconds which is the default in
> /etc/rc.d/rc.subr
> 
> What did I do wrong ?

Order - move the source ('.) line to the top.

R.

> Is this a known issue ? I could not find an
> evident answer to this problem looking at /etc/rc.d/rc.subr
> 
> -- 
>  Thomas de Grivel
>  kmx.io
> 



Re: MIdnight Commander won't run

2020-04-23 Thread Raf Czlonka
On Thu, Apr 23, 2020 at 04:42:34AM BST, Aaron Mason wrote:
> On Wed, Apr 22, 2020 at 11:17 AM Jay Hart  wrote:
> >
> > Upgraded my router from 6.5 to 6.6.  Followed the upgrade guide and 
> > installed most, not all, of
> > the file sets.  I did not install the games set or several of the X sets.
> >
> > I ran pkg_add -u and also used sysclean to find and remove all unneeded 
> > files.
> >
> > Afterwards, trying to run 'mc' results in:
> >
> > tangerine# mc
> > ld.so can't load library libpcre.so.3.0
> > Killed
> >
> > libpcre.so.3.0 is in /usr/local/lib
> >
> > Not sure how to go about fixing this, google searches did not turn up 
> > anything on this.
> >
> > Looking for a bit of help.
> >
> > Thanks,
> >
> > Jay
> >
> 
> I find it rare that an upgrade ever goes smoothly for any OS.  Have
> you tried running ldconfig(8)?
> 

This is part of rc(8) so, like sthen@ already mentioned, this isn't
necessary.

Would this by any chance be related to the fact that pcre has been
removed from WANTLIB[0][1] but the package still pulls in libpcre?

$ ldd /usr/local/bin/mc | grep pcre
1b530c236000 1b530c27c000 rlib  01   0 
/usr/local/lib/libpcre.so.3.0

[0] https://cvsweb.openbsd.org/ports/misc/mc/Makefile?only_with_tag=OPENBSD_6_6
[1] https://cvsweb.openbsd.org/ports/misc/mc/Makefile.diff?r1=1.67=1.68=h

P.S. From personal experience, OpenBSD upgrades are as smooth as they come.
P.P.S. sysclean(8) works great so shout-out to semarie@ o/ :^)

Regards,

Raf



Re: Ports: how to install dependencies from binaries?

2020-04-07 Thread Raf Czlonka
On Wed, Apr 08, 2020 at 04:12:54AM BST, Stuart Longland wrote:
> Hi all,
> 
> Silly question… how do you install the dependencies of a port from
> binaries automatically?
> 
> Situation is this: I'm wanting to add OPUS support to Asterisk as I have
> an ATA that supports this CODEC, it'd nice to be able to transcode this
> to other formats.  I have a work-in-progress patch to the 'asterisk'
> port for doing this (modelled on what's being done for 'asterisk-speex')
> that I'll share once I've done some testing on both versions.
> 
> I have two VMs running, one with OpenBSD 6.6 (which I am running on my
> router) and one with OpenBSD current (snapshot made on Monday).
> 
> `make install-all` in the `asterisk` port seems to want to drag in the
> kitchen sink.  The only thing I really want to compile is Asterisk
> itself (with my patch).
> 
> Is there a command that installs the ports' build dependencies via
> `pkg_add` or do I need to extract the dependencies by other means and
> manually install them?
> 

Hi Stuart,

>From bsd.port.mk(5):

FETCH_PACKAGES

User settings, defaults to ‘No’.  Set to pkg_add(1)
options.  Instruct the package target to download
packages missing from the repository from locations
in ${PKG_PATH} and place them into
${PACKAGE_REPOSITORY}/${MACHINE_ARCH}/cache/, only
building them if no suitable packages are found.
For instance,

make FETCH_PACKAGES=

to use without any options, or

make FETCH_PACKAGES=-Dsnap

to use close to release.

This should do what you need (for -current):

$ echo FETCH_PACKAGES=-Dsnap >> /etc/mk.conf

Regards,

Raf



Re: trunk(4) driver with optional interface?

2020-03-13 Thread Raf Czlonka
On Fri, Mar 13, 2020 at 12:13:45PM GMT, David Demelier wrote:
> Hello,
> 
> I'm using trunk(4) pseudo device to aggregate my wireless iwm(4) and my
> dock ethernet interface ure(4) together.
> 
> Since my laptop is not always connected to my dock, when booting I get a
> trunk error if the interface is not available:
> 
> ifconfig: SIOCTRUNKPORT: Invalid argument
> 
> Hopefully, this is not a big deal as my iwm(4) is still available and
> used nevertheless.
> 
> Do you have any other recommandations or advises in my case? Because if
> I plug my laptop into the dock after the creation of the trunk interface
> I must use ifconfig by hand to attach it. If there is a way to detect
> the attachment of a new interface, I could create an automatic script
> too.

Hi David,

hotplugd(8) might help here.

Regards,

Raf

> Content of my /etc/hostname.trunk0, /etc/hostname.iwm0 and
> /etc/hostname.ure0:
> 
> # /etc/hostname.trunk0
> trunkproto failover trunkport ure0
> trunkport iwm0
> dhcp
> 
> # /etc/hostname.iwm0
> join myssid wpakey p
> up
> 
> # /etc/hostname.ure0
> up
> 
> I'm using OpenBSD-current at the moment.
> 
> Regards,
> 
> -- 
> David
> 



Re: Attempting to configure syslogd for logging doas

2020-02-26 Thread Raf Czlonka
On Wed, Feb 26, 2020 at 08:59:40PM GMT, b...@0x1bi.net wrote:
> I'm attempting to configure syslogd via syslog.conf. I've added two
> lines which log all doas events:
> 
>   default configuration here...
> 
>   !doas
>   *.* /var/log/doas
> 
> However, after restarting syslogd and attempting to running commands
> through doas, /var/log/doas is not being created.
> 
> Am I missing something? Is this exclusive to doas? Thank you in
> advance.
> 
> Ben Raskin.
> 

Hi Ben,

After syslogd(8) manual page:

CAVEATS
 syslogd does not create files, it only logs to existing ones.

So, in general, after you make your changes to syslog.conf(5), i.e.:

# install -m 0600 /dev/null /var/log/doas && rcctl reload syslogd

Also, don't forget about newsyslog(8)!

BTW, in case you aren't aware, doas usage is already logged into
/var/log/secure.

Regards,

Raf



Re: wpa_supplicant error

2020-02-03 Thread Raf Czlonka
On Sun, Feb 02, 2020 at 09:42:52PM GMT, Charlie Burnett wrote:
> Hey @misc,
> I've used OpenBSD on my desktop and server for a while, however they both
> have an Ethernet connection. I recently got my hands on a thinkpad x1 6th
> gen in order to ensure compatibility with OpenBSD. I can connect fine via
> the /etc/hostname.if with /etc/netstart, however I need to be able to
> connect to eduroam for class. I was using linux on my past laptop, however
> I connected through wpa_supplicant on it. I copied my wpa_supplicant.conf
> over, however whenever I try to connect to a network I get hung up in the
> same spot. The conf works fine on linux, so the credentials are correct.
> I've also ensured the interface was up with "doas ifconfig iwm0 up" Here's
> the output from attempting to connect with "doas wpa_supplicant -i iwm0 -c
> /etc/wpa_supplicant.conf -D openbsd -dd":
> wpa_supplicant v2.9
> Successfully initialized wpa_supplicant
> Initializing interface 'iwm0' conf '/etc/wpa_supplicant.conf' driver
> 'openbsd' ctrl_interface 'N/A' bridge 'N/A'
> Configuration file '/etc/wpa_supplicant.conf' -> '/etc/wpa_supplicant.conf'
> Reading configuration file '/etc/wpa_supplicant.conf'
> ctrl_interface='/var/run/wpa_supplicant'
> ctrl_interface_group='wheel'
> eapol_version=2
> ap_scan=1
> fast_reauth=1
> update_config=1
> Line: 11 - start of a new network block
> ssid - hexdump_ascii(len=): HOME
> key_mgmt: 0x2
> PSK - hexdump(len=): [REMOVED]
> Line: 19 - start of a new network block
> ssid - hexdump_ascii(len=7): eduroam
> scan_ssid=1 (0x1)
> key_mgmt: 0x1
> eap methods - hexdump(len=): 00 00 00 00 19 00 00 00 00 00 00 00 00 00 00 00
> phase2 - hexdump_ascii(len=):
>  61 75 74 68 3d 4d 53 43 48 41 50 56 32auth=MSCHAPV2
> auth_alg: 0x1
> identity - hexdump_ascii(len=):
> ca_cert - hexdump_ascii(len=):
>  2f 65 74 63 2f 73 73 6c 2f 63 65 72 74 73 2f 41   /etc/ssl/certs/A
>  64 64 54 72 75 73 74 5f 45 78 74 65 72 6e 61 6c   ddTrust_External
>  5f 52 6f 6f 74 2e 70 65 6d_Root.pem
> password - hexdump_ascii(len=): [REMOVED]
> Line: 32 - start of a new network block
> ssid - hexdump_ascii(len=):   HOME2
> PSK - hexdump(len=): [REMOVED]
> Priority group 0
>id=0 ssid='HOME'
>id=1 ssid='eduroam'
>id=2 ssid='HOME2'
> Add interface iwm0 to a new radio N/A
> iwm0: Failed to attach pkt_type filter
> iwm0: Own MAC address: 38:00:25:6c:76:6d
> iwm0: RSN: flushing PMKID list in the driver
> iwm0: Setting scan request: 0.10 sec
> ENGINE: Loading builtin engines
> ENGINE: Loading builtin engines
> EAPOL: SUPP_PAE entering state DISCONNECTED
> EAPOL: Supplicant port status: Unauthorized
> EAPOL: KEY_RX entering state NO_KEY_RECEIVE
> EAPOL: SUPP_BE entering state INITIALIZE
> EAP: EAP entering state DISABLED
> ctrl_interface_group=0 (from group name 'wheel')
> iwm0: Added interface iwm0
> iwm0: State: DISCONNECTED -> DISCONNECTED
> iwm0: Using OpenBSD - overriding ap_scan configuration
> EAPOL: disable timer tick
> 
> Here is the output after sending a ctrl-C to the terminal:
>  ^Ciwm0: Removing interface iwm0
> iwm0: Request to deauthenticate - bssid=00:00:00:00:00:00
> pending_bssid=00:00:00:00:00:00 reason=3 (DEAUTH_LEAVING) state=DISCONNECTED
> iwm0: State: DISCONNECTED -> DISCONNECTED
> EAPOL: External notification - portEnabled=0
> EAPOL: External notification - portValid=0
> iwm0: WPA: Clear old PMK and PTK
> iwm0: Cancelling scan request
> iwm0: Cancelling authentication timeout
> Remove interface iwm0 from radio
> Remove radio
> iwm0: CTRL-EVENT-TERMINATING
> 

Hi Charlie,

eduroam works just fine on OpenBSD with wpa_supplicant.

However, you hadn't followed the information provided in the
pkg-readme file:

/usr/local/share/doc/pkg-readmes/wpa_supplicant

Namely:

# ifconfig iwm0 join "Laakista Humppa" wpa wpaakms 802.1x

as well as:

Do not enable "ap_scan" - it is not supported by the OpenBSD
support code.

scan_ssid=1 isn't necessary either - eduroam APs shouldn't reject
broadcast SSID.

fast_reauth=1 is the default so there's no need to use it, unless you
want/need to disable it with '0'.

Can't recall whether it is at all necessary, but I also have phase1
in my config:

phase1="peaplabel=0"

as well as anonymous identity:

anonymous_identity="..."

Also, depending on the APs, EAPOL version might need to be set to 1:

eapol_version=1

>From the above, it looks like you have actually copied
/etc/ssl/certs/AddTrust_External_Root.pem" file (and created the
directory structure) from Linux. How about simply changing that
line to:

ca_cert="/etc/ssl/cert.pem"

All that being said, I've been to places where I couldn't get eduroam
connection even on my phone.

Anyway, please try with the above changes and report back.

Cheers,

Raf

> 
> And here's my wpa_supplicant.conf (with ssid's and psk's removed):
> ctrl_interface=/var/run/wpa_supplicant
> ctrl_interface_group=wheel
> 

Game controller / gamepad recommendation

2020-01-21 Thread Raf Czlonka
Hi all,

I'm in a search for a game controller / gamepad for OpenBSD and
found an old article on OpenBSD Journal[0] regarding (support for)
an Xbox 360 one.

Good ol' Logitech has two gamepads - one wired[1] and one wireless[2]
- and, according to the comments linked in a reddit thread[3] I found,
both seem to work fine. So does Sony's DualShock 4.

Has anyone tried Xbox One controller or Valve's, recently discontinued,
Steam Controller?

I'd prefer a wireless one but a wired one will be just fine if it
"just works" and/or is superior to a wireless one. Yes, I'm well
aware that there's no Bluetooth support on OpenBSD but am thinking
of a wireless Logitech-style, i.e. with a wireless USB dongle.

So far, I've been playing only "native" games and hadn't tried any
emulators yet but will probably get to it eventually. Mentioning
it here as, from what I understand, some emulators/games require
analogue control.

Information from people with any experience in the matter would be
greatly appreciated, i.e. also "don't buy that!".

I'm running -current.

[0] https://undeadly.org/cgi?action=article;sid=20131106082821
[1] 
https://www.logitechg.com/en-gb/products/gamepads/f310-gamepad.html#940-000138
[2] 
https://www.logitechg.com/en-gb/products/gamepads/f710-wireless-gamepad.html#940-000142
[3] 
https://www.reddit.com/r/openbsd_gaming/comments/a6f7f4/request_advice_for_controllergamepads_fnaify/

Cheers,

Raf



Re: resolving addresses in smtpd and T-mobile addresses I login on with SSH being used

2019-12-03 Thread Raf Czlonka
On Tue, Dec 03, 2019 at 04:41:27PM GMT, Chris Bennett wrote:
> 
> [...]
> Dec  2 22:36:28 freedomforlife smtpd[78001]: cd3e9bc4ab696630 smtp connected 
> address=172.58.46.253 host=
> Dec  2 22:36:28 freedomforlife smtpd[78001]: cd3e9bc4ab696630 smtp 
> failed-command command="" result="550 no rDNS is so 80s"
> Dec  2 22:36:28 freedomforlife smtpd[78001]: cd3e9bc4ab696630 smtp 
> disconnected reason=quit
> [...]
> 
On Tue, Dec 03, 2019 at 05:57:24PM GMT, Chris Bennett wrote:
> 
> [...]
>  filter check_rdns phase connect match !rdns \
>  disconnect "550 no rDNS is so 80s"
> [...]
> 

Chris,

That'd be it.

You're using a filter which disconnects a session with a message
"550 no rDNS is so 80s", for every IP address which doesn't resolve
to a reverse DNS.

Regards,

Raf



Re: resolving addresses in smtpd and T-mobile addresses I login on with SSH being used

2019-12-03 Thread Raf Czlonka
On Tue, Dec 03, 2019 at 04:41:27PM GMT, Chris Bennett wrote:
> I have been fixing some problems with emails between two of my servers.
> At the time I had /etc/hosts file empty except for localhost.
> 
> While sending emails, I got several of errors in maillog like these:
> 
> Dec  2 22:36:28 freedomforlife smtpd[78001]: cd3e9bc4ab696630 smtp connected 
> address=172.58.46.253 host=
> Dec  2 22:36:28 freedomforlife smtpd[78001]: cd3e9bc4ab696630 smtp 
> failed-command command="" result="550 no rDNS is so 80s"
> Dec  2 22:36:28 freedomforlife smtpd[78001]: cd3e9bc4ab696630 smtp 
> disconnected reason=quit
> 
> 172.58.46.253 is an IP for T-mobile. Which I use the WiFi hotspot to use SSH 
> from.
> This was a previous IP I had used before, not on the session in progress.
> I found several other T-Mobile addresses being used in maillog that were not 
> current sessions.
> 
> I don't know what to make of this. I rebooted both servers after emptying 
> /etc/hosts.
> 
> resolv.conf has:
> 
> lookup file bind
> nameserver 8.8.8.8
> nameserver 8.8.4.4
> 
> on this server.
> 
> What is going on here? How could this possibly be happening?
> 
> Chris Bennett
> 

Hi Chris,

Is rdns anywhere in your smtpd.conf? You forgot to attach, so only
guessing here...

Regards,

Raf



Re: Softdep and noatime

2019-12-03 Thread Raf Czlonka
On Tue, Dec 03, 2019 at 11:25:23AM GMT, Stuart Henderson wrote:
> On 2019-11-30, Raymond, David  wrote:
> > I am switching to OpenBSD from Linux and I have questions about the
> > use of softdep and noatime in mounting disks.  I have a variety of
> > systems with a mix of SSDs and rotating disks.
> >
> > Softdep seems to have some advantages in speeding file access, but it
> > is not the default.  Are there any downsides in using softdep?
> 
> Yes, that's why it's not on by default. Uses more memory, delays freeing
> space when removing files, tends to cause a kernel panic if the drive
> goes unresponsive (which the drive might have otherwise recovered from
> after a delay). It's not that much of an improvement with SSDs anyway,
> it's most useful with drives that are slow at random writes (higher
> seek times).
> 
> > On SSDs in particular, is it worth setting noatime to reduce the
> > number of disk writes?
> 
> In general, not really unless your drives are slow, or you often do
> reads across a large set of files and don't have anything that cares
> about access times on those files.
> 

I second that - an old Asus Eee PC got quite usable once I've enabled
softdep. I don't enable it on anything else any more, though.

Regards,

Raf



Re: how to configure directory in which X server logfile is written?

2019-11-24 Thread Raf Czlonka
On Sun, Nov 24, 2019 at 02:10:15AM GMT, Jonathan Thornburg wrote:
> In a fresh install of 6.6/amd64, if I login on a console as a non-root
> user and start X via 'startx', the X server tries to write log information
> in the file
>   $HOME/.local/share/xorg/Xorg.0.log
> 
> I have two questions:
> 1. Is there any way to change the directory
>  $HOME/.local/share/xorg/
>in which the X server logfile is written?
> 2. This being OpenBSD, is there a Fine Manual in which this configuration
>is documented?
> 
> None of
>   man Xorg
>   man Xserver
>   man startx
>   man xinit
>   man xorg.conf
>   man xorg.conf.d
>   man -k log|egrep '^X'
>   cd /etc/ && find . -type f | xargs fgrep share/xorg
>   cd /usr/X11R6/share/X11/xorg.conf.d/ \
>&& find . -type f | xargs fgrep share/xorg
>   cd /usr/X11R6/share/X11/ \
>&& find . -type f | xargs fgrep share/xorg
>   cd /usr/X11R6/share/ \
>&& find . -type f | xargs fgrep share/xorg
> or grepping my (minimal) /etc/x11/xorg.conf have thus far yielded any
> relevant info.
> 
> (The reason I'd like to change this directory is that in my setup
> $HOME/.local is a symlink to a different filesystem which may not yet
> be mounted at the time when 'startx' is run.)
> 

Hi Jonathan,

The right places, but the wrong string:

$ man 1 Xorg
[...]
-logfile filename
Use the file called filename as the Xorg server log
file.  The default log file when running as root
is /var/log/Xorg.n.log and for non root it is
$XDG_DATA_HOME/xorg/Xorg.n.log where n is the display
number of the Xorg server.  The default may be in
a different directory on some platforms.  This
option is only available when the server is run as
root (i.e, with real- uid 0).
[...]

The '.local/share' should have hinted at $XDG_DATA_HOME[0] :^)

[0] https://specifications.freedesktop.org/basedir-spec/basedir-spec-latest.html

Regards,

Raf



Re: Cron not executing @reboot command in crontab

2019-11-17 Thread Raf Czlonka
On Sun, Nov 17, 2019 at 11:57:44AM GMT, Unicorn wrote:
> Hello,
> 
> I apologize if this is trivial, I genuinely read through all the cron-
> related manpages and tried several things, but this is my issue:
> 
> I want to use 'autossh' to automatically establish reverse port
> forwarding on boot, so (as root) I can 'crontab -e' and added this line
> to the bottom:
> 
> @reboot autossh [all my options]
> 
> After adding the line, running 'crontab -l' shows that the line was
> correctly added; I have also confirmed that the 'autossh ...' part
> works perfectly when I just execute it in a terminal. When I reboot the
> system though, nothing happens.
> 
> Even if I restart cron with rcctl, nothing happens. I even confirmed
> that sshd is started before cron in rc, I have tried everything I could
> come up with, I just have no clue what I'm missing.
> 
> Since I am new to OpenBSD, I would appreciate your advice or any clues
> on what I have done wrong. Regarding system setup, this is a completely
> bare system, I have just run 'sysupgrade -s' and installed autossh.
> 
> Thank you in advance!
> 

At the top of the file you'll see:

PATH=/bin:/sbin:/usr/bin:/usr/sbin

Either {pre,ap}pend /usr/local/{,s}bin or use the full command path.

Regards,

Raf



Re: Home NAS

2019-11-15 Thread Raf Czlonka
On Fri, Nov 15, 2019 at 08:54:54AM GMT, Andrew Luke Nesbit wrote:
> On 15/11/2019 10:11, gwes wrote:
> 
> > The backup(8) program can assist this by storing deltas so that
> > more frequent backups only contain deltas from the previous
> > less frequent backup.
> 
> I've not used backup(8) before, thanks for the suggestion.  I will have a
> look.
> 

Hi Andrew,

There is no backup(8) - gwes either meant a generic "backup" software,
or dump(8), and restore(8), specifically.

Regards,

Raf



Re: Questions regarding unwind.conf (block list)

2019-11-14 Thread Raf Czlonka
On Wed, Nov 13, 2019 at 11:14:11PM GMT, Felix Maschek wrote:
> Hi,
> 
> I'm using unwind for a time and it is running perfect for me.
> 
> Now with the upcoming new plugin api of chrome with limited support for
> uBlock I'm looking for an alternative.
> 
> Unfortunately I'm not able to specify a valid block list in unwind.conf.
> I've added
> 
>     block list /etc/unwind.blocklist
> 
> My blocklist file contains (for testing purpose)
> 
>     heise.de
>     stern.de
> 
> But there seems to be a syntax error I can't solve. In the log I have the
> following entries:
> 
>     Nov 14 00:09:29 vatrox unwind[52933]: /etc/unwind.conf:4: syntax error
>     Nov 14 00:09:29 vatrox unwind[52933]: configuration reload failed
> 
> So, what is wrong here?
> 
> And a follow-up question: is it possible to load a huge blocklist (with, say
> 200.000) entries to replace the blocking within chrome?
> 
> Kind regards
> 
> Felix
> 

Hi Felix,

I find this to be a fairly common syntax in OpenBSD - if you get
this type of error message, double-quote file/directory paths.

block list "/etc/unwind.blocklist"

works just fine.

Regards,

Raf



Re: pkg_info -Q bug?

2019-11-08 Thread Raf Czlonka
On Fri, Nov 08, 2019 at 05:45:23PM GMT, Dumitru Moldovan wrote:
> 
> Hi misc,
> 
> I see pkg_info's man page says:
> 
>-Q query
>Show all packages in $PKG_PATH which match the given query.
> 
> Trying in 6.6 to find the Python module "mysqlclient", I get the
> following puzzling results:
> 
> $ pkg_info -Q mysql
> php-mysqli-7.2.24
> php-mysqli-7.3.11
> php-pdo_mysql-7.2.24
> php-pdo_mysql-7.3.11
> 
> $ pkg_info -Q py-mysql
> py-mysql-1.2.5p6
> py-mysqlclient-1.4.2p0
> 
> Am I doing something wrong?  Why is "py-mysqlclient" not matched for
> the first query?
> 

Hi Dumitru,

Not only isn't "py-mysqlclient" matched, but also over 40 other
packages with "mysql" string.

How does your $PKG_PATH look like?

Regards,

Raf



Re: Pkg_add completes installurl with bad openbsd version number

2019-11-04 Thread Raf Czlonka
On Mon, Nov 04, 2019 at 05:16:35PM GMT, Bruno Martin wrote:
> Hi Raf
> 
> My PKG_PATH is empty.
> But actually, by Dsnaping, I fixed the problem.
> Regards
> 
>  Bruno
> 

Hi Bruno,

Are you absolutely sure it is empty? pkg_add(1) is getting the wrong
URL from somewhere, and the usual suspects are: TRUSTED_PKG_PATH,
the aforementioned PKG_PATH, and installurl(5). Is the latter in order?

Check your user's, and root's env(1) for PKG_PATH again, please.

Well, if, like you said, you have upgraded to OpenBSD 6.6, and then
used:

# pkg_add -Dsnap -u

Then you didn't actually *fix* the problem, but potentially introduced
a new one ;^)

Regards,

Raf



Re: Pkg_add completes installurl with bad openbsd version number

2019-11-04 Thread Raf Czlonka
On Mon, Nov 04, 2019 at 08:24:04AM GMT, Bruno Martin wrote:
> Hello,
> 
> I'm running openbsd 6.6 generic.mp#427 amd64
> After the 6.6 upgrade I had troubles with pkg_add -u.
> I did several new upgrades to 6.6, removed all packages and now when I want 
> to pkg_add something, it looks to the 6.4 tree.
> # pkg_add wget
> HTTPS://ftp.fr.openbsd.org/pub/OpenBSD/6.4/packages/amd64/: no such dir
> Can't find wget
> How can I find the 6.6 tree to upgrade my packages?
> 
> Sorry if I don't follow the good way to address the question, but I am on a 
> tablet to write.
> 
> 
>   Bruno
> 

Hi Bruno,

What does:

$ echo $PKG_PATH

return?

Regards,

Raf



Re: Disable ftp in pkg_add syspatch sysupgrade

2019-10-28 Thread Raf Czlonka
On Mon, Oct 28, 2019 at 06:43:03PM GMT, Andy Lemin wrote:
> Hi guys,
> 
> Does anyone know if it is possible to completely disable ftp in the package 
> management utilities; pkg_add, syspatch, sysupgrade etc?
> 
> My PKG_PATH references http:// urls, as does /etc/install. But I cannot stop 
> these tools trying to use ftp which does not work! :(
> 
> Every time I try and install a bunch of packages, some work fine via http, 
> and then some will fall back to ftp, which of course fails. 
> 
> However when I test the url for the package it reports it could not download, 
> due to the ftp connect timeout, the download works fine via http etc. So it 
> is very frustrating.
> 
> We cannot use ftpproxy as we use rdomains, and running the ftpproxy daemon 
> within the rdomain that has the default route to the internet doesn’t seem to 
> work. And generally speaking no one in my last two companies has ever asked 
> me to make ftp work.
> 
> As ftp is very much dead in most cases, could we please stop using it for 
> package management tools? :( I cannot update any of my OpenBSD servers which 
> reside inside the firewall. Only the firewall itself get et updates because 
> of the ftp dependence :(
> 
> Thanks for your time.
> Andy.
> 
> 
> Sent from a teeny tiny keyboard, so please excuse typos
> 

Hi Andy,

If, like you say, PKG_PATH and installurl(5) both reference HTTP(S),
then you're getting confused - warning/error messages come from ftp(1).
It has nothing to do with FTP (the protocol).

Regards,

Raf



Re: Requesting vi tips

2019-10-18 Thread Raf Czlonka
On Fri, Oct 18, 2019 at 03:39:41PM BST, cho...@jtan.com wrote:
> Raf Czlonka writes:
> > On Fri, Oct 18, 2019 at 03:12:37PM BST, cho...@jtan.com wrote:
> > Is this what you had in mind?
> >
> > set editor="EXINIT='set wraplen=72' /usr/bin/vi"

I forgot to mention - this is the line in my muttrc(5).

> I'm not sure that I'm happy with it doing it mid-insert. I'd prefer an
> explicit action or insert mode itself being adapted so that it includes
> a final reformat (ie. when I press escape (if the appropriate flag is
> enabled)).

Then I clearly misunderstood what you meant.

> Also it has the fault that if, say, the 4th character of a word causes a
> line break, then reducing that word to less than 4 characters doesn't
> remove it (although the newline can be deleted as though it were
> inserted as usual, which is good).
> 
> Matthew
> 

As others have already mentioned - fmt(1) from base... or par(1)
from ports.

Regards,

Raf



Re: Requesting vi tips

2019-10-18 Thread Raf Czlonka
On Fri, Oct 18, 2019 at 03:12:37PM BST, cho...@jtan.com wrote:
> OK this has started to get on my nerves now.
> 
> I use vi to enter emails despite using evil emacs for development and
> other general editing. Rather than linking them together (they're on
> seperate machines) to enter emails in emacs I'd rather figure out
> something interesting about vi.
> 
> At the moment I limit lines to 72 characters through a laborious process
> of finding the appropriate space character myself and replacing it with
> a ^M. Obviously nonsense which is why I sometimes don't bother. (Sorry).
> 
> I know about fmt and could easily concoct the pipeline to format each
> paragraph but I wonder if there's something that can correctly parse the
> whole email and format the entire thing en masse without me writing what
> would undoubtedly be Yet Another Poor Implementation.
> 
> Alternatively is there something that would make vi do it on the fly, or
> something akin to emacs' C-q or vim's gq. Although I appreciate the fact
> that vi doesn't try to be clever.
> 
> Thanks,
> 
> Matthew
> 

Is this what you had in mind?

set editor="EXINIT='set wraplen=72' /usr/bin/vi"

Regards,

Raf



Re: sysmerge at scale

2019-10-06 Thread Raf Czlonka
On Sun, Oct 06, 2019 at 07:34:41PM BST, Daniel Jakots wrote:
> Hi,
> 
> I run a bunch of -current VM and I manage them with ansible. When
> there's a file that gets updated in src/etc, I check if it matters for
> me and if it doesn't, I ignore it. Then, eventually I sync the file in
> my ansible repo with upstream's one. But even then sysmerge keeps
> nagging me with:
> Subject: example.com rc.sysmerge output
> 
>  /etc/login.conf unhandled, re-run sysmerge to merge the new version
> 
> and I usually end up running sysmerge manually with 'd'.
> 
> Any advice on how to deal with that? How do you do it?
> 
> Cheers,
> Daniel
> 

Hi Daniel,

Any files, that sysmerge(8) would complain about that I modified
by hand, I put into /etc/sysmerge.ignore[0].

Every now and again, I run 'sysmerge -d' on one of my machines and
then update the config files in SaltStack, which I use to manage
them with.

[0] https://man.openbsd.org/sysmerge#FILES

Hope that helps.

Cheers,

Raf



Re: Errors when I try to configure multiple DNS search suffixes in dhcpd.conf

2019-09-24 Thread Raf Czlonka
On Tue, Sep 24, 2019 at 11:43:02AM BST, Rudolf Leitgeb wrote:
> 
> I was unable to figure out, what exactly is meant with RFC1035 type
> string, but came to the conclusion, that dhcpd in its current iteration
> only supports one domain name here. Oh well.
> 
> Cheers,
> 
> Rudi
> 

Hi Rudi,

It does support more that one domain name, at least according to
this commit[0]:

The
.Ar rfc1035
data type specifies a list of domain names compressed
as described in Section 4.1.4 of RFC 1035.
The compressed list takes the form of a series of
octets specified in hexadecimal, separated by colons.

You can find the limits on the RFC 1035 page[1] - section 2.3.4.

BTW, in OpenBSD 6.6, domain-119 option has been renamed to domain-search[2]
and does not have the above limitation[3].

[0] 
https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/dhcpd/dhcp-options.5.diff?r1=1.27=1.28=date=h
[1] https://tools.ietf.org/html/rfc1035
[2] 
https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/dhcpd/dhcp-options.5.diff?r1=1.29=1.30=date=h
[3] 
https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/dhcpd/dhcp-options.5.diff?r1=1.30=1.31=date=h

Regards,

Raf



Re: recent troubles with iwn(4)

2019-09-11 Thread Raf Czlonka
On Mon, Sep 09, 2019 at 10:38:25AM BST, Stefan Sperling wrote:
> On Mon, Sep 09, 2019 at 10:26:37AM +0100, Raf Czlonka wrote:
> > Your email prompted me today to have a look at what is happening
> > while the laptop loses connectivity - it's been disconnected for 3
> > days after about 30 minutes of being connected (enough time to run
> > 'pkg_add -u'). After putting the interface into debug modes:
> > 
> > # ifconfig iwn0 debug
> > 
> > /var/log/messages shows:
> > 
> > iwn0: AUTH -> SCAN
> > iwn0: end active scan
> > iwn0: - [...]
> > iwn0: - 12:34:56:12:34:56   11  +212 54M ess  privacy   rsn  "MYNWID2"!
> > iwn0: + 12:34:56:12:34:57   44  +203 54M ess  privacy   rsn  "MYNWID5"
> > iwn0: - [...]
> > iwn0: SCAN -> AUTH
> > iwn0: sending auth to 12:34:56:12:34:57 on channel 44 mode 11a
> 
> This small part of the log is not useful by itself, unfortunately.
> You need to show debug output where iwn left RUN state in the first place. 

After 10 hours of running without issues it had a similar blip but
managed to reconnect fine:

Sep 10 20:44:35 host /bsd: iwn0: RUN -> AUTH
Sep 10 20:44:35 host /bsd: iwn0: sending action to 12:34:56:12:34:57 on 
channel 44 mode 11n
Sep 10 20:44:35 host /bsd: iwn0: sending action to 12:34:56:12:34:57 on 
channel 44 mode 11n
Sep 10 20:44:35 host /bsd: iwn0: sending auth to 12:34:56:12:34:57 on 
channel 44 mode 11n
Sep 10 20:44:39 host /bsd: iwn0: AUTH -> SCAN
Sep 10 20:44:42 host /bsd: iwn0: end active scan
Sep 10 20:44:42 host /bsd: iwn0: - 12:34:56:12:34:56   11  +214 54M   
ess  privacy   rsn  "MYNWID2"!
Sep 10 20:44:42 host /bsd: iwn0: + 12:34:56:12:34:57   44  +198 54M   
ess  privacy   rsn  "MYNWID5"
Sep 10 20:44:42 host /bsd: iwn0: SCAN -> AUTH
Sep 10 20:44:42 host /bsd: iwn0: sending auth to 12:34:56:12:34:57 on 
channel 44 mode 11a
Sep 10 20:44:47 host /bsd: iwn0: AUTH -> SCAN
Sep 10 20:44:50 host /bsd: iwn0: end active scan
Sep 10 20:44:50 host /bsd: iwn0: - 12:34:56:12:34:56   11  +214 54M   
ess  privacy   rsn  "MYNWID2"!
Sep 10 20:44:50 host /bsd: iwn0: + 12:34:56:12:34:57   44  +198 54M   
ess  privacy   rsn  "MYNWID5"
Sep 10 20:44:50 host /bsd: iwn0: SCAN -> AUTH
Sep 10 20:44:50 host /bsd: iwn0: sending auth to 12:34:56:12:34:57 on 
channel 44 mode 11a
Sep 10 20:44:50 host /bsd: iwn0: AUTH -> ASSOC
Sep 10 20:44:50 host /bsd: iwn0: sending assoc_req to 12:34:56:12:34:57 
on channel 44 mode 11a
Sep 10 20:44:50 host /bsd: iwn0: ASSOC -> RUN
Sep 10 20:44:50 host /bsd: iwn0: associated with 12:34:56:12:34:57 ssid 
"MYNWID5" channel 44 start MCS 0 long preamble short slot time HT enabled
Sep 10 20:44:50 host /bsd: iwn0: missed beacon threshold set to 7 
beacons, beacon interval is 100 TU
Sep 10 20:44:50 host /bsd: iwn0: received msg 1/4 of the 4-way 
handshake from 12:34:56:12:34:57
Sep 10 20:44:50 host /bsd: iwn0: sending msg 2/4 of the 4-way handshake 
to 12:34:56:12:34:57
Sep 10 20:44:50 host /bsd: iwn0: received msg 3/4 of the 4-way 
handshake from 12:34:56:12:34:57
Sep 10 20:44:50 host /bsd: iwn0: sending msg 4/4 of the 4-way handshake 
to 12:34:56:12:34:57
Sep 10 20:44:50 host /bsd: iwn0: sending action to 12:34:56:12:34:57 on 
channel 44 mode 11n
Sep 10 20:44:51 host last message repeated 3 times
Sep 10 20:44:54 host /bsd: iwn0: RUN -> AUTH
Sep 10 20:44:54 host /bsd: iwn0: sending action to 12:34:56:12:34:57 on 
channel 44 mode 11n
Sep 10 20:44:54 host /bsd: iwn0: sending auth to 12:34:56:12:34:57 on 
channel 44 mode 11n
Sep 10 20:44:59 host /bsd: iwn0: AUTH -> SCAN
Sep 10 20:45:02 host /bsd: iwn0: end active scan
Sep 10 20:45:02 host /bsd: iwn0: - 12:34:56:12:34:56   11  +214 54M   
ess  privacy   rsn  "MYNWID2"!
Sep 10 20:45:02 host /bsd: iwn0: + 12:34:56:12:34:57   44  +197 54M   
ess  privacy   rsn  "MYNWID5"
Sep 10 20:45:02 host /bsd: iwn0: SCAN -> AUTH
Sep 10 20:45:02 host /bsd: iwn0: sending auth to 12:34:56:12:34:57 on 
channel 44 mode 11a
Sep 10 20:45:07 host /bsd: iwn0: AUTH -> SCAN
Sep 10 20:45:10 host /bsd: iwn0: end active scan
Sep 10 20:45:10 host /bsd: iwn0: - 12:34:56:12:34:56   11  +214 54M   
ess  privacy   rsn  "MYNWID2"!
Sep 10 20:45:10 host /bsd: iwn0: + 12:34:56:12:34:57   44  +197 54M   
ess  privacy   rsn  "MYNWID5"
Sep 10 20:45:10 host /bsd: iwn0: SCAN -> AUTH
Sep 10 20:45:10 host /bsd: iwn0: sending auth to 12:34:56:12:34:57 on 
channel 44 mode 11a
Sep 10 20:45:15 host /bsd: iwn0: AUTH -> 

Re: recent troubles with iwn(4)

2019-09-09 Thread Raf Czlonka
On Sun, Sep 08, 2019 at 09:31:55PM BST, Bryan Stenson wrote:
> Hi all -
> 
> I'm writing to "misc" rather than "bugs" as I'm not yet sure this is a
> bug.  I'm hoping to help triage this with assistance from this list.
> 
> I'm running -CURRENT and the iwn(4) driver for my wireless card.  Over
> the past year, this has been working great, but recently (within the
> last month or so), I've had issues where the NIC just stops working
> after a few hours of usage.  I don't have a solid steps for
> reproduction.
> 
> I realize "stops working" is not a very accurate account here...but
> I'm confused on how to get more descriptive information of the
> problem.  When it stops, "ifconfig" shows iwn0 with an IP address, but
> I'm unable to ping.  Additionally, I'm not seeing any
> warnings/messages in "dmesg" about the device...so I'm confused.
> 
> A simple "ifconfig iwn0 down; sh /etc/netstart iwn0" seems to fix the
> problem, but I haven't had to do that in the past...it just feels like
> a recent change (iwn(4) work?) has put me in this state.
> 

Hi Bryan,

I've noticed exactly the same(?) behaviour since about July but
hadn't used the machine enough and, despite some changes to the
iwn(4) and/or ieee80211, I thought it might have had something to
do with the new AP I got.

Your email prompted me today to have a look at what is happening
while the laptop loses connectivity - it's been disconnected for 3
days after about 30 minutes of being connected (enough time to run
'pkg_add -u'). After putting the interface into debug modes:

# ifconfig iwn0 debug

/var/log/messages shows:

iwn0: AUTH -> SCAN
iwn0: end active scan
iwn0: - [...]
iwn0: - 12:34:56:12:34:56   11  +212 54M ess  privacy   rsn  "MYNWID2"!
iwn0: + 12:34:56:12:34:57   44  +203 54M ess  privacy   rsn  "MYNWID5"
iwn0: - [...]
iwn0: SCAN -> AUTH
iwn0: sending auth to 12:34:56:12:34:57 on channel 44 mode 11a

What seems strange there is the mode - after a very brief look, it
seems like the laptop is "stuck" trying to use 11a mode.

After forcing the 11n mode:

# ifconfig iwn0 mode 11n

it connects instantaneously:

iwn0: SCAN -> INIT
iwn0: begin active scan
iwn0: INIT -> SCAN
iwn0: end active scan
iwn0: AP 12:34:56:12:34:56 "MYNWID5" score 52
iwn0: best AP 12:34:56:12:34:57 "MYNWID2" score 52
iwn0: switching to network "MYNWID2"
iwn0: [...]
iwn0: + 12:34:56:12:34:56   11  +216 54M   ess  privacy   rsn "MYNWID2"
iwn0: - 12:34:56:12:34:57   44+0 54M   ess  privacy   rsn "MYNWID5"!
iwn0: [...]
iwn0: SCAN -> AUTH
iwn0: sending auth to 12:34:56:12:34:56 on channel 11 mode 11g
iwn0: AUTH -> ASSOC
iwn0: sending assoc_req to 12:34:56:12:34:56 on channel 11 mode 11g
iwn0: ASSOC -> RUN
iwn0: associated with 12:34:56:12:34:56 ssid "MYNWID2" channel 11
start MCS 0 short preamble long slot time HT enabled
iwn0: missed beacon threshold set to 7 beacons, beacon interval is 100 
TU
iwn0: received msg 1/4 of the 4-way handshake from 12:34:56:12:34:56
iwn0: sending msg 2/4 of the 4-way handshake to 12:34:56:12:34:56
iwn0: received msg 3/4 of the 4-way handshake from 12:34:56:12:34:56
iwn0: sending msg 4/4 of the 4-way handshake to 12:34:56:12:34:56
iwn0: sending action to 12:34:56:12:34:56 on channel 11 mode 11n

MYNWID2 and MYNWID5 are the two NWIDs I use - 2.4 and 5GHz respectively.

I use the same hostname.if on all of my laptops:

join MYNWID5 wpakey ...
join MYNWID2 wpakey ...
[...]
dhcp

BTW, after reboot (upgrade to a new snapshot) and ~1h run, it
disconnected again.

Any thoughts, Stefan?

Regards,

Raf



Re: USB speakers, no sound

2019-08-13 Thread Raf Czlonka
On Sun, Aug 11, 2019 at 03:14:25PM BST, Doug Moss wrote:
> 
> To make sure I understand correctly / and possible help others in future 
> reading thread:
> (OpenBSD 6.5, amd64)
> 
> /etc/rc.conf.local
> sndiod_flags="-f rsnd/1"
> (This tells the sndiod daemon to configure the first _raw_ audio device = 
> 'audio1' in dmesg = 'rsnd/1',
 ^
Second - remember, the devices are 0[zero]-indexed.

> and this becomes exposed as the first sndiod device 'snd/0')

Cheers,

Raf



Re: Sysmerge

2019-07-06 Thread Raf Czlonka
On Sat, Jul 06, 2019 at 01:57:49PM BST, Jay Hart wrote:
> > On Sat, Jul 06, 2019 at 11:56:32AM BST, Jay Hart wrote:
> >> Good Morning,
> >>
> >> What is the simple way to have sysmerge "keep" all custom changes to the 
> >> config files, during a
> >> system update from one stable release to the next? I seem to struggle with 
> >> this every release...
> >>
> >> Thanks for your time.
> >>
> >> Jay
> >>
> >
> > Hi Jay,
> >
> > $ man 8 sysmerge
> > [...]
> > FILES
> >  /etc/sysmerge.ignoreFiles and directories to ignore from 
> > comparison.
> > [...]
> >
> > Is this what you have in mind?
> >
> > Regards,
> >
> > Raf
> >
> >
> 
> I think its more like when diff asks to keep current config vs new config. I 
> want to keep my
> current config files (or at least those custom portions).
> 
> Jay
> 

Jay,

Well, if you want to keep the current config, then surely sysmerge
asking you whether you want to or not, is unnecessary, isn't it? ;^)

I use -current and this is what I do:

1. I modify the files (either by hand or using config management system).

2. I have a /etc/sysmerge.ignore file managed by SaltStack:

/etc/acme-client.conf
/etc/mail/aliases
/etc/mail/smtpd.conf
/etc/mail/spamd.conf
/etc/newsyslog.conf
/etc/ntpd.conf
/etc/pf.conf
/etc/syslog.conf
/etc/X11/xenodm/Xsetup_0
/var/cron/tabs/root

3. Let sysmerge deal with any other files upon booting into a new
   snapshot.

4. Every so often, usually when there's something new of interest on
   "Following -current"[0], or I read about it on tech@ or source-changes@,
   I delete the above file and simply run:

# sysmerge -d

   and merge the new bits in (if they're not in conflict with my own
   modifications).

5. Config management recreates the file.

The above 'sysmerge -d' line is actually part of my post-upgrade
script (and is being run with the above file in place), i.e.:

/usr/sbin/sysmerge -d
/usr/sbin/pkg_add -Dsnap -u 
/usr/sbin/pkg_delete -a
/usr/local/sbin/checkrestart
/usr/local/sbin/sysclean

The last two are available from ports.

[0] https://www.openbsd.org/faq/current.html

Hope this helps.

Cheers,

Raf



Re: Sysmerge

2019-07-06 Thread Raf Czlonka
On Sat, Jul 06, 2019 at 11:56:32AM BST, Jay Hart wrote:
> Good Morning,
> 
> What is the simple way to have sysmerge "keep" all custom changes to the 
> config files, during a
> system update from one stable release to the next? I seem to struggle with 
> this every release...
> 
> Thanks for your time.
> 
> Jay
> 

Hi Jay,

$ man 8 sysmerge
[...]
FILES
 /etc/sysmerge.ignoreFiles and directories to ignore from 
comparison.
[...]

Is this what you have in mind?

Regards,

Raf



Re: Autostart of ssh-agent in root's .profile prevents startup

2019-07-05 Thread Raf Czlonka
On Fri, Jul 05, 2019 at 07:52:55AM BST, Rosselur Rossen wrote:
> Hi!
> 
> I have the following added to root's .profile:
> 
> --snip--
>   env=~/.ssh/agent.env
>   agent_load_env () { test -f "$env" && . "$env" >| /dev/null ; }
>   agent_start () {
>   (umask 077; ssh-agent >| "$env")
>   . "$env" >| /dev/null ; }
>   agent_load_env
>   # agent_run_state: 0=agent running w/ key; 1=agent w/o key; 2= agent
> not running
>   agent_run_state=$(ssh-add -l >| /dev/null 2>&1; echo $?)
>   if [ ! "$SSH_AUTH_SOCK" ] || [ $agent_run_state = 2 ]; then
>   agent_start
>   ssh-add
>   elif [ "$SSH_AUTH_SOCK" ] && [ $agent_run_state = 1 ]; then
>   ssh-add
>   fi
>   unset env
> --snip--
> 
> OpenBSD 6.4 amd64.
> When I reboot the machine, it asks for my id_rsa password during
> system startup, which prevents most services from starting. Eventually
> all the password prompts time out and I am able to log in on the
> console, but most services including sshd have failed to start.
> The desired behaviour would be for the id_rsa password prompt to
> appear only when I am actually interactively logging in, and not
> during system boot.
> Is there any way I could achieve this for the root account? What am I
> doing wrong (apart from interactively logging in as root, I am well
> aware)?
> 

Hi Rosselur,

$ man 1 ksh

[...] In order to have an interactive (as opposed to login)
shell process a startup file, ENV may be set and exported
(see below) in $HOME/.profile [...]

I won't quote all of it here - search for ENV.

Regards,

Raf



Re: how to install bsd.sp on a multiprocessor machine?

2019-05-12 Thread Raf Czlonka
On Sun, May 12, 2019 at 06:30:59AM BST, Jonathan Thornburg wrote:
> [...]
> I rebooted the laptop from the i386 install65.fs, verified that I
> had the correct sdN for the CF card, and did a normal (i386) install
> onto the CF card.
> [...]

Hi Jonathan,

During installation you can select sets you need - simply prepend
bsd.mp with a dash ('-'). Since you're selecting it, the installer
naturally uses it as the default (bsd) kernel.

Regards,

Raf



Re: How do you deal with many disks?

2017-09-02 Thread Raf Czlonka
On Fri, Sep 01, 2017 at 10:46:05PM BST, Paul de Weerd wrote:
> I make extensive use of softraid crypto on two internal and a bunch of
> external disks.  This results in up to 32 sd(4) devices attaching to
> my machine.  However, by default MAKEDEV only creates 10 sd device
> nodes in /dev.
> 
> How do people deal with this?  For now, I've got the following in
> /etc/rc.local:
> 
>   # Create extra entries in /dev for all (softraid) disks
>   cd /dev
>   for X in `jot 25 10`
>   do
>   [ -f sd${X}c ] || sh MAKEDEV sd${X}
>   done
> 
> Does anyone have a better approach?

Hi Paul,

Using /dev/MAKEDEV.local is the standard way to do this.

Raf

> Cheers,
> 
> Paul 'WEiRD' de Weerd
> 
> OpenBSD 6.2-beta (GENERIC.MP) #44: Fri Aug 25 19:16:21 MDT 2017
> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
> real mem = 34243919872 (32657MB)
> avail mem = 33199071232 (31661MB)
> mpath0 at root
> scsibus0 at mpath0: 256 targets
> mainbus0 at root
> bios0 at mainbus0: SMBIOS rev. 2.7 @ 0xec410 (88 entries)
> bios0: vendor Dell Inc. version "A12" date 05/06/2015
> bios0: Dell Inc. OptiPlex 9020
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S3 S4 S5
> acpi0: tables DSDT FACP APIC FPDT SLIC LPIT SSDT SSDT SSDT HPET SSDT MCFG 
> SSDT ASF! DMAR
> acpi0: wakeup devices UAR1(S3) PXSX(S4) RP01(S4) PXSX(S4) PXSX(S4) PXSX(S4) 
> RP05(S4) PXSX(S4) PXSX(S4) PXSX(S4) GLAN(S4) EHC1(S3) EHC2(S3) XHC_(S4) 
> HDEF(S4) PEG0(S4) [...]
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, 3392.59 MHz
> cpu0: 
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SENSOR,ARAT
> cpu0: 256KB 64b/line 8-way L2 cache
> cpu0: TSC frequency 3392585040 Hz
> cpu0: smt 0, core 0, package 0
> mtrr: Pentium Pro MTRR support, 10 var ranges, 88 fixed ranges
> cpu0: apic clock running at 99MHz
> cpu0: mwait min=64, max=64, C-substates=0.2.1.2.4, IBE
> cpu1 at mainbus0: apid 2 (application processor)
> cpu1: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, 3392.15 MHz
> cpu1: 
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SENSOR,ARAT
> cpu1: 256KB 64b/line 8-way L2 cache
> cpu1: smt 0, core 1, package 0
> cpu2 at mainbus0: apid 4 (application processor)
> cpu2: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, 3392.15 MHz
> cpu2: 
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SENSOR,ARAT
> cpu2: 256KB 64b/line 8-way L2 cache
> cpu2: smt 0, core 2, package 0
> cpu3 at mainbus0: apid 6 (application processor)
> cpu3: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, 3392.15 MHz
> cpu3: 
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SENSOR,ARAT
> cpu3: 256KB 64b/line 8-way L2 cache
> cpu3: smt 0, core 3, package 0
> cpu4 at mainbus0: apid 1 (application processor)
> cpu4: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, 3392.15 MHz
> cpu4: 
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,SDBG,FMA3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,DEADLINE,AES,XSAVE,AVX,F16C,RDRAND,NXE,PAGE1GB,RDTSCP,LONG,LAHF,ABM,PERF,ITSC,FSGSBASE,BMI1,AVX2,SMEP,BMI2,ERMS,INVPCID,SENSOR,ARAT
> cpu4: 256KB 64b/line 8-way L2 cache
> cpu4: smt 1, core 0, package 0
> cpu5 at mainbus0: apid 3 (application processor)
> cpu5: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz, 3392.15 MHz
> cpu5: 
> 

Re: resolve.conf overwritten woes

2017-08-12 Thread Raf Czlonka
On Sat, Aug 12, 2017 at 07:12:52AM BST, jungle boogie wrote:
> Hi All,
> 
> From this page:
> https://www.openbsd.org/faq/faq6.html#Setup
> 
> Once the interface is configured, the /etc/resolv.conf file will be
> overwritten.
> You can customize the resolver configuration by using settings in
> dhclient.conf(5)
> and using resolv.conf.tail(5). To prevent the DHCP server from overriding
> the
> DNS server you configured in /etc/resolv.conf.tail, add ignore
> domain-name-servers;
> to your /etc/dhclient.conf.
> 
> $ cat /etc/dhclient.conf
> 
> send host-name "puffer.in.example.net";
> ignore domain-name-servers;
> 
> $ cat /etc/resolv.conf.tail
> 
> search in.example.net
> nameserver 192.168.0.17
> lookup file bind
> 
> $ cat /etc/resolv.conf
> 
> $
> 
> $ cat /etc/hosts
> 
> 127.0.0.1   localhost puffer.in.example.net
> ::1 localhost
> 
> What am I doing wrong? I just want a search domain and a couple NS is
> resolv.conf
> 
> Thanks!
> 

Hi,

I don't think there's anything you're doing wrong - I've tested it
myself just now and the option doesn't seem to be doing what it is
supposed to, at least as described in the FAQ.

In order to achieve the same, I simply use 'supersede', i.e.:

send host-name "host";
supersede domain-name-servers 127.0.0.1;

Regards,

Raf



Re: smtpd doesn't start

2017-05-29 Thread Raf Czlonka
On Mon, May 29, 2017 at 09:16:20PM BST, Choose a display name wrote:
> > Try defining your hostname in /etc/hosts
> > If you have a static address, define it with that address. If
> > it's a dynamic address, define it as 127.0.1.1
> 
> Thank you, it worked, but I also had to add "lookup file bind"
> to the resolv.conf.

If you're using DHCP, add it to /etc/resolv.conf.tail

Regards,

Raf



Re: xenodm and .kshrc

2017-04-14 Thread Raf Czlonka
Hi Paolo,

Check before you post - it *is* in /etc/skel/.Xdefaults[0] :^)

[0] 
http://cvsweb.openbsd.org/cgi-bin/cvsweb/~checkout~/src/etc/skel/dot.Xdefaults?rev=1.3=text/plain

Regards,

Raf

On Fri, Apr 14, 2017 at 10:19:44AM BST, Paolo Aglialoro wrote:
> Wouldn't the inclusion of this config (e.g. in skel) account for sane
> defaults?
> 
> On Fri, Apr 14, 2017 at 7:01 AM, Theo Buehler  wrote:
> 
> > On Fri, Apr 14, 2017 at 11:45:05AM +0800, Adam Steen wrote:
> > > Hi
> > >
> > > I used to start X using startx and when opening terminal my .kshrc
> > > would get run,
> > >
> > > but now i have switched to xenodm, my .kshrc is not being executed.
> > >
> > > my .profile has "export ENV=$HOME/.kshrc"
> > >
> > > what i am i missing?
> >
> > Assuming that you use xterm: does your .Xdefaults contain
> >
> > XTerm*loginShell: true
> >
> > I removed the following somewhat outdated section from the FAQ because
> > by default it does:
> >
> > https://cvsweb.openbsd.org/cgi-bin/cvsweb/~checkout~/www/
> > faq/faq8.html?rev=1.308=text/html#ksh
> >
> > See also this post:
> >
> > https://marc.info/?l=openbsd-misc=142829426523976=2
> >
> > and the other posts in that thread.



Re: Question about bsd.rd

2017-03-31 Thread Raf Czlonka
On Fri, Mar 31, 2017 at 02:51:47AM BST, Steven Schneider wrote:
> Hi @misc,
> 
> I've noticed that bsd.rd wants to download the install base packages from
> /pub/OpenBSD/6.1/i386. Is this an error or some sort of alias for the path
> to the snapshots of the install base? bsd.rd seems to find the install base
> packages alright. pkg_add has trouble finding the application packages
> though using the entry in /etc/installurl. As a result I thought I had
> screwed up my upgrade royally. XD
> 
> Anyhow, I'm just curious as to what's going on. Thanks.

In term of packages, for the time being use:

# pkg_add -D snap -u

Regards,

Raf



Re: better way to detect new display

2017-03-01 Thread Raf Czlonka
On Wed, Mar 01, 2017 at 10:14:39AM GMT, Marcus MERIGHI wrote:
> sc...@ggr.com (Scott Bonds), 2017.02.28 (Tue) 02:21 (CET):
> > I'm polling using xrandr to check whether a new display was plugged
> > in, so I can run a script to switch to it, i.e. plug in an external
> > VGA monitor and it lights up automatically, unplug it and my laptop
> > automatically switches back to using its internal display. 
> 
> I have wanted the same and found no way to avoid polling xrandr(1).
> 
> If you find a way, would you be so kind to share the solution?
> 
> > But, every time I run xrandr my (USB connected) audio stutters, which
> > makes me sad because I was hoping to poll for a new display every 5
> > seconds, but that's not so great while listening to music.
> 
> Does the --nograb parameter of xrandr(1) help?
> 
> Marcus
> 
> > Does anyone know of a better way to notice a newly plugged in
> > display...perhaps one that's more passive/efficient so as not to
> > provoke stuttering audio? I don't see any output from hotplugd that I
> > could use unfortunately, that seemed like the right place to look
> > first. I didn't notice anything I could use in the Xorg log either.
> >
> > !DSPAM:58b4d0ab225251121513987!
> 

Hi all,

A while ago, Keith Packard wrote small display configuration tool
called x-on-resize[0] which might be exactly what you are looking
for but I have no idea how much effort would it be to get it
working/ported on/to OpenBSD.

[0] https://keithp.com/blogs/x-on-resize/

Regards,

Raf



Re: accessing webcam as normal user

2017-02-13 Thread Raf Czlonka
On Mon, Feb 13, 2017 at 01:22:30PM GMT, Neil Telford wrote:
> Hi,
> 
> I'm wondering how to access my webcam as a normal user. I verified that it
> does work, but I can only access it as root. Therefore, it is currently not
> available for web-based video calls.
> 
> If I run ls -la /dev/video0, it shows:
> 
> crw-r-  1 root  wheel   44,   0 Feb  5 13:35 /dev/video
> 
> As I am a member of the wheel group, I should in theory be able to access
> it, What am I missing here ?

Group write permission.

> Thanks, Neil,.

Raf



Re: autoinstall with local file

2017-01-13 Thread Raf Czlonka
On Fri, Jan 13, 2017 at 07:21:12PM GMT, Theo de Raadt wrote:
> > Given that there is no official supported way to put an
> > auto_upgrade.conf onto an existing bsd.rd, what would be a suggested
> > way to achieve the same end result - in this case, an automated
> > non-interactive, off-line upgrade?
> 
> Hack up a solution however you like.
> 
> But understand it isn't within our mandate to keep your hack working.

Sure, I understand that.

> So basically, it will break because it is relying on behaviours which
> are not a mainline requirement.

Yes, I'm prepared to deal with it.

> It will break, like it just did.
> 

Oh, no - it works absolutely fine, had been since day one.
I'm must've not been very clear, sorry.

Cheers,

Raf



Re: autoinstall with local file

2017-01-13 Thread Raf Czlonka
On Fri, Jan 13, 2017 at 06:14:16PM GMT, Theo de Raadt wrote:
> > On Fri, Jan 13, 2017 at 06:20:25AM -0600, Ed Ahlsen-Girard wrote:
> > > The man page seems to indicate that autoinstall will work with an
> > > auto_upgrade.conf file on the local machine, but specifying the path as:
> > > 
> > > /auto_upgrade.conf
> > > or
> > > file://auto_upgrade.conf
> > > or
> > > file:auto_upgrade.conf
> > > 
> > > do not work.
> > > 
> > > Is this still a "watch this space!" feature?
> > 
> > It does work. However, / is the root of bsd.rd, not the root of the
> > system you want to upgrade (this would have to be guessed and the
> > upgrade script doesn't do guessing without asking for confirmation).
> > It's a bit of a pain to get the file there, and I don't think there's
> > any official documentation. semarie@ wrote some instructions a while
> > back:
> > https://marc.info/?l=openbsd-misc=141552533922277=2
> > see also:
> > https://marc.info/?l=openbsd-misc=146890249418788=2
> > where he indicates that there are more posts to be found on misc (but I
> > don't know where).
> 
> I would be very surprised to hear that people are using
> vnconfig+mount+vnconfig+mount, to add such a file.  And while doing so
> potentially running low on space issues (it isn't just a matter of
> the file fitting, there must be some slop left over because the
> installer needs a bit of /tmp)
> 
> Should everything work in every way?  I'm not so sure.  My truck
> still doesn't fly.
> 

OK, so I'll admit that I've been using Sebastien's tip for a couple of
years now but, it seem that, I have been lucky it always worked -
probably due to the fact that my auto_upgrade.conf file is only
three lines long (it was two-line long for a while):

Location of sets = disk
Is the disk partition already mounted = yes
Pathname to the sets = $DIR

Given that there is no official supported way to put an
auto_upgrade.conf onto an existing bsd.rd, what would be a suggested
way to achieve the same end result - in this case, an automated
non-interactive, off-line upgrade?

Cheers,

Raf



Re: PC-Engines apu2c4 install reboot loop :(

2017-01-10 Thread Raf Czlonka
On Tue, Jan 10, 2017 at 10:56:32PM GMT, Damian McGuckin wrote:

> I would send the 'dmesg' boot messages but 'pf' keeps printing messages like
> 
>   pf: state reuse TCP in wire
> or
>   pf: state reuse TCP out wire
> 
> and it has filled up the /var/log/messages* so that dmesg no longer has any
> of the system boot configuration messages. I have to address that problem
> another day.
> 
> Anyway, the box is running live now so I cannot reboot for a while to get
> the 'dmesg'. Sorry.

Try /var/run/dmesg.boot

Raf



Re: openbsd -current: can't find firefox

2016-11-29 Thread Raf Czlonka
On Tue, Nov 29, 2016 at 10:53:30PM GMT, jungle Boogie wrote:
> Hi All,
> On 29 November 2016 at 07:57, Carlin Bingham  wrote:
> > On Tue, Nov 29, 2016 at 07:30:42AM -0800, jungle boogie wrote:
> >> You mean like this:
> >> $ cat /etc/doas.conf
> >> permit persist :wheel
> >> permit persist keepenv jungle as root
> >>
> >> $ doas pkg_add base64
> >> doas (jungle@host) password:
> >> quirks-2.270 signed on 2016-11-26T13:32:57Z
> >> base64-1.5: ok
> >>
> >
> > Ah, sorry. The problem is that there's no package for standard firefox
> > there. What's there is firefox-esr and the il8n packages.
> >
> 
> How do I install any firefox version?

pkg_add firefox{,-esr}

> At the least, should I not have a list of available options, like with python:
> 
> $ doas pkg_add python
> quirks-2.270 signed on 2016-11-26T13:32:57Z
> Ambiguous: choose package for python
> a   0: 
> 1: python-2.7.12p1
> 2: python-3.4.5p1
> 3: python-3.5.2p1
> Your choice: 0

Nope, firefox-esr is not a flavour (AKA flavor).

As per Carlin's email above - firefox package simply didn't get
built but you had the option to install firefox-esr.

At the time of writing this email, firefox package is available again.

Cheers,

Raf



Re: Serverkeybits, protocol 2

2016-11-02 Thread Raf Czlonka
On Wed, Nov 02, 2016 at 06:39:59PM GMT, Jonathan Paquet wrote:
> Hi,
>  I am working as VMware SME, and I need to update the security template
> that we are using.
> 
> One of the settings that we have is the Serverkeybits. By default this
> setting is not present on the sshd config file.
> 
> The protocol is set to 2 by default.
> 
> I am a little confused, because some website on the net say that
> serverkeybits only apply when using protocol 1, and other say that it apply
> no matter what.
> 
> Basically, I would need to know if I need to integrate this setting if we
> use protocol 2 or if this is not needed?

Hi Jonathan,

No, this setting only applies to protocol version 1.

Regards,

Raf

> The minimum key encryption that we want to allow is 1024, and the version
> of openssh on esxi 6 is 7.1p1. Openssl 1.0.1p.
> 
> Thanks
> 
> Jonathan



Re: configure ethernet and wireless

2016-09-14 Thread Raf Czlonka
On Wed, Sep 14, 2016 at 06:59:49PM BST, George Pediaditis wrote:

> then i followed the instructions on faq to setup a trunk interface.
> 
> I created the files
> /etc/hostname.re0 that contains:
> "up"
> 
> /etc/hostname.iwm0 that contains:
> "nwid (ssid)
> wpakey (wpa psk)
> wpaakms (psk)
> up"
> 
> and /etc/hostname.trunk0 that contains:
> 
> "trunkproto failover trunkport bge0
> trunkport iwn0
> dhcp"

Hi George,

You have you used bge(4) and iwn(4) - interfaces which you don't
have - instead of re(4) and iwm(4)?

;^)

Regards,

Raf



Re: fresh install of 6.0 - cvs

2016-09-09 Thread Raf Czlonka
On Fri, Sep 09, 2016 at 01:04:44PM BST, Stephen Trotter wrote:
> Raf,
> 
> Yes I was attempting to follow the instructions and was logged in as my
> user, not as root. And I was pulling the src from cvs (for the first time)
> and using the -r option for the stable version.

Well, in order to avoid root privileges, first you need to run at
least one command as root :^)

> Theo,
> 
> The user is a member of wsrc. That was part of the reason I was so confused
> at the time. (I can't verify with id at the moment, but I did check
> /etc/group to ensure the user was listed under wsrc.)

If you had added the user to the 'wsrc' group using su(1) or using
another terminal, then the change will obviously get reflected in
the /etc/group file but it won't take immediate effect if the user
is already logged on, so the easiest way is to simply re-logon.

> I suspect that /usr is not owned by wsrc possibly, and that cvs was trying
> to write to /usr but I cannot confirm right now. When I am able to, I will
> run cvs again without the -q option and see if there is any extra detail I
> can include.

/usr does not and should not have the group set to 'wsrc'.

If you had followed the information from FAQ then the cvs(1) command
should only write to /usr/src directory, whose group is already set
to 'wsrc'.

Regards,

Raf



Re: fresh install of 6.0 - cvs

2016-09-08 Thread Raf Czlonka
On Fri, Sep 09, 2016 at 05:54:05AM BST, Stephen Trotter wrote:
> hi,
> i was attempting a fresh install of 6.0 and got to the part where you pull
> the source tree and update the system to stable.
> i was stuck because the faq states you can (should) use a regular user with
> cvs, and i kept getting a permission error from cvs when attempting to run
> from /usr
> so, just wondering if anyone else was getting this, or if there is
> something that i missed.
> 

Hi Stephen,

Your description is very vague and you're not giving any details of
which command you ran and what error messages you got.

I'm trying to mind-read here - after issuing the commands described
under "Avoiding root privileges", have you logged on as the user
whom you just added to the 'wsrc' group?

Regards,

Raf



Re: System monitor in base?

2016-09-02 Thread Raf Czlonka
On Fri, Sep 02, 2016 at 11:46:27PM BST, Aioi Yuuko wrote:
> Hi,
> 
> I'm trying to wean myself off external packages as much as possible.
> Is there a common, accepted way of viewing, for instance, battery
> life, with only included programs?

Hi Aioi,

There's the already mentioned apm(8) (i.e. -l, -m options) or you
could run something like this:

#!/bin/sh

sysctl -n hw.sensors.acpiac0.indicator0 \
hw.sensors.acpibat0.watthour0 \
hw.sensors.acpibat0.watthour3 | awk 'NR == 1 { ac = $1 }
NR == 2 { full = $1 }
NR == 3 { remaining = $1 }
END { if ( ac == "On" )
state = "charging"
else
state = "discharging"
printf("%s %d%s %s%s\n", "Remaining battery life is",
remaining/full*100, "% and it is", state, "\.") }'

Regards,

Raf



Re: write all files in /mnt to usb using dd

2016-08-04 Thread Raf Czlonka
Hi,

What are you trying to do?

If you're after files which are on the ISO image, then cp(1) will
do just fine - simply mount the USB disk and copy the files.

Unless of course, you're trying to create a bootable USB stick out
of a bootable ISO image - neither cp(1) nor tar(1) will do the job
in this case and you will need to use dd(1).

Again, if this is indeed the case, *and* you are trying to create
a bootable OpenBSD USB install medium, ISO won't work in this case
- you'll need to use either the minirootXX.fs or installXX.fs images[0]

Regards,

Raf

[0] http://www.openbsd.org/faq/faq4.html#MkInsMedia

On Thu, Aug 04, 2016 at 02:43:20AM BST, Teng Zhang wrote:
> hi, i want to write all files in /mnt to usb,so i issued the command:
> 
> doas dd if=/mnt of=/dev/rsd1c bs=5M
> 
> but it failed. I'm not pretty understand the way to operate dd, so
> could you please tell me how can i operate it to write the files to
> usb?
> Some information about my system:
> 
> the files in /mnt is created like this:
> 
> $ doas vnconfig vnd0 01.iso
> $ doas mount /dev/vnd0c /mnt
> 
> $ uname -a
> OpenBSD zhangteng.my.domain 5.9 GENERIC.MP#1888 amd64
> 
> $ mount
> /dev/sd0a on / type ffs (local)
> /dev/sd0m on /home type ffs (local, nodev, nosuid)
> /dev/sd0d on /tmp type ffs (local, nodev, nosuid)
> /dev/sd0f on /usr type ffs (local, nodev)
> /dev/sd0g on /usr/X11R6 type ffs (local, nodev)
> /dev/sd0h on /usr/local type ffs (local, nodev)
> /dev/sd0l on /usr/obj type ffs (local, nodev, nosuid)
> /dev/sd0k on /usr/src type ffs (local, nodev, nosuid)
> /dev/sd0e on /var type ffs (local, nodev, nosuid)
> /dev/vnd0c on /mnt type cd9660 (local, read-only)
> 
> dmesg:
> umass0 at uhub2 port 1 configuration 1 interface 0 "SanDisk Cruzer Edge" rev
> 2.10/1.00 addr 3
> umass0: using SCSI over Bulk-Only
> scsibus2 at umass0: 2 targets, initiator 0
> sd1 at scsibus2 targ 1 lun 0:  SCSI4 0/direct
> removable serial.0781556b970715105252
> sd1: 7632MB, 512 bytes/sector, 15630336 sectors



Re: resolv.conf with dhcp when upgrading with bsd.rd

2016-08-01 Thread Raf Czlonka
On Mon, Aug 01, 2016 at 01:14:27PM BST, Solène RAPENNE wrote:
> Hello,
> 
> Using -current with unbound as a local dns resolver. dhclient.conf is set to
> supersede the dhcp nameserver to use my unbound server
> 
> /etc/dhclient.conf
> send host-name "solene";
> supersede domain-name-servers 127.0.0.1;
> 
> When upgrading with bsd.rd, dhclient will use this dhclient.conf with
> unbound stopped, the system won't resolve names and won't download packages
> through http.
> 
> How can I use dhcp and keep 127.0.0.1 as domain name server except if I'm
> using bsd.rd ?
> 
> If it's not possible or too complicated, is there a better way than
> downloading the packages in the same time I download bsd.rd and not use
> network during the upgrade ?

Yep - simply download the sets before and use 'disk' instead of 'http'.

http://marc.info/?l=openbsd-misc=141552533922277

and something like this before you put the ramdisk back:

SETSDIR=/path/to/directory/with/sets
echo "Location of sets = disk
Is the disk partition already mounted = yes
Pathname to the sets = $SETSDIR" > /mnt/auto_upgrade.conf

I've been using a home-grown script based on the above for over a
year with snapshots - and it works just fine.

Regards,

Raf



Re: Weird errors during install.site

2016-07-29 Thread Raf Czlonka
On Fri, Jul 29, 2016 at 03:13:16AM BST, James Pole wrote:
> > On 29/07/2016, at 12:59 AM, trondd  wrote:
> > I do most everything in rc.firsttime.  I think you're going to be better
> > off just moving your stuff to rc.firsttime rather than trying to
> > manipulate the rd environment.  Is that really going to be easier than
> > copy/pasting lines out of a script?
> >
> > I have an rc.firsttime.tail file in the site tarball, and in install.site,
> > I 'cat' it onto the end of any existing rc.firsttime assuming that the
> > official install process might want to use it sometimes and I don't want
> > to blow it away.
> 
> My initial thought was I would have to echo all the scripted commands I wanted
> to make to >> rc.firsttime. But your suggestion of creating a separate
> rc.firstime.tail script and then appending the whole thing to rc.firsttime at
> once seems like an elegant solution which I will adopt.

Hi James,

FYI, ld.so.hints file removal is deliberate[0].

Regards,

Raf

[0] 
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/distrib/miniroot/install.sub?f=h#rev1.645



Re: wifind(8) find your wifi

2016-06-03 Thread Raf Czlonka
On Fri, Jun 03, 2016 at 01:59:08PM BST, Etienne wrote:
> On 06/03/16 05:12, Ray Lai wrote:
> > > 
> > > #!/bin/sh
> > > 
> > > if [[ $1 == "home" ]]; then
> > > doas ifconfig run0 nwid foonet wpa wpakey ultrasecret
> > > doas dhclient run0
> > > fi
> > Yup. The goal of wifind is to do exactly this, the moment I resume my 
> > laptop,
> > without my interaction.
> > 
> May I know what's triggering it? I have something similar, but I need to
> click on a button to run it.

/etc/apm/resume I presume :^)

man 8 apmd

Regards,

Raf



Re: Why can I ping but not curl google.com?

2016-05-30 Thread Raf Czlonka
On Sun, May 29, 2016 at 11:01:14PM BST, Murk Fletcher wrote:

This:

> This is my Windows 10 VirtualBox set to Bridged Networking.

and this:

> It's been working flawlessly for years.

is a direct contradiction.

> I recently upgraded to OpenBSD 5.9, I think that's when the problems started.
^
I *think* this is a crucial bit here ;^) 

You had obviously tested without any of your own PF rules?

Raf



Re: can't find books.html link

2016-05-22 Thread Raf Czlonka
On Sun, May 22, 2016 at 04:53:24AM BST, Teng Zhang wrote:
> Could you please tell me where can i find the link which corresponding to
> books.html on the www.openbsd.org.
> thanks
> 

What happens if you swap these two around... like so:

http://www.openbsd.org/books.html

;^)

R



Re: Secure PKG_PATH for doas

2016-05-21 Thread Raf Czlonka
On Sat, May 21, 2016 at 08:55:37AM BST, Marc Espie wrote:
> On Fri, May 20, 2016 at 03:37:48PM +0100, Raf Czlonka wrote:
> > On Fri, May 20, 2016 at 12:39:46PM BST, Igor Mironov wrote:
> > 
> > > Thank you Mart, Ted and Stuart--I understood that installpath in
> > > pkg.conf provides a secure default, and PKG_PATH should probably
> > > be used for overrides only (if at all).
> > 
> > Hi Igor,
> > 
> > PKG_PATH is essential - installpath= in pkg.conf(5) won't suffice
> > - if you don't want to build ports' dependencies and prefer to
> > simply have them install as packages, by using:
> > 
> > FETCH_PACKAGES=Yes
> > 
> > in mk.conf(5).
> > 
> > Regards,
> > 
> > Raf
> 
> But that one completely does not require doas since it's run in -n mode.

Sure, me reply was to the "if at all" part and I was merely pointing
out that 'installpath' doesn't work everywhere and sometimes one must
set PKG_PATH.

Raf



Re: Secure PKG_PATH for doas

2016-05-20 Thread Raf Czlonka
On Fri, May 20, 2016 at 12:39:46PM BST, Igor Mironov wrote:

> Thank you Mart, Ted and Stuart--I understood that installpath in
> pkg.conf provides a secure default, and PKG_PATH should probably
> be used for overrides only (if at all).

Hi Igor,

PKG_PATH is essential - installpath= in pkg.conf(5) won't suffice
- if you don't want to build ports' dependencies and prefer to
simply have them install as packages, by using:

FETCH_PACKAGES=Yes

in mk.conf(5).

Regards,

Raf



Re: Mount NTFS , Fat32 USB flash!

2016-05-18 Thread Raf Czlonka
On Wed, May 18, 2016 at 09:19:00AM BST, Mohammad BadieZadegan wrote:
> Hi everybody,
> I have a Patriot 32GB Flash USB and at first I formated it as FAT32 and it
> detected in my university PC correctly but when I mounted it by these
> commands it notified me:
> 
> # mount /dev/sd1i /mnt
> mount_msdos: /dev/sd1i on /mnt: Inappropriate file type or format
> 
> Then I reformated it by NTFS but still I could not mounted it and notified
> me:
> 
> # ntfs-3g /dev/sd1i /mnt
> Failed to read bootsector (size=0)
> Failed to mount '/dev/sd1i': Invalid argument
> The device '/dev/sd1i' doesn't seem to have a valid NTFS.
> Maybe the wrong device is used? Or the whole disk instead of a
> partition (e.g. /dev/sda, not /dev/sda1)? Or the other way around?
> 
> Also my last dmesg message is:
> 
> umass0 at uhub0 port 1 configuration 1 interface 0 " Patriot Memory" rev
> 2.10/1.00 addr 4
> umass0: using SCSI over Bulk-Only
> scsibus5 at umass0: 2 targets, initiator 0
> sd1 at scsibus5 targ 1 lun 0: <, Patriot Memory, PMAP> SCSI4 0/direct
> removable serial.13fe550044A22CCE7139
> sd1: 30160MB, 512 bytes/sector, 61767680 sectors
> 
> How can I mounted this?
> Thanks in advance..
> 

Hi Mohammad,

What does 'disklabel sd1' say?

Raf



Re: dhclient.conf and hostname.if

2016-05-06 Thread Raf Czlonka
On Fri, May 06, 2016 at 11:35:47AM BST, Duncan Patton a Campbell wrote:
> 
> Back when the script tag was removed from dhclient.conf the 
> functionality to do external commands was ostensibly moved
> into hostname.if via the
> 
> !command mechanism.  
> 
> in man hostname.if it says 
> 
> "It is worth noting that ``\$if'' in a command
>  line will be replaced by the interface name" 
> 
> Is there any similar tag to access the addess assigned by dhcp?
> What other mechanisms exist to update dynamic dns assignments?

Hi Duncan,

Not sure if I understood you correctly but doesn't

send host-name ...

in dhclient.conf(5) do what you want?

Regards,

Raf



Re: Difference between 5.9 vs 5.7

2016-04-24 Thread Raf Czlonka
On Sun, Apr 24, 2016 at 11:29:41PM BST, Muhammad Muntaza wrote:
> On Apr 24, 2016 8:53 PM, "Mohammad BadieZadegan" 
> wrote:
> >
> > Hi everybody,
> Hi,
> 
> > /home/user/.xinitrc[2]: startxfce4: not found
> 
> $ echo $PATH
> $ which startxfce4

Hi Muhammad,

You have to set your $PATH first.

Whichever $SHELL you have been using (assuming it all worked fine),
something got borked.

Regards,

Raf

> $ echo 'exec startxfce4' > ~/.xinitrc
> $ startx
> 
> 
> Muhammad Muntaza bin Hatta



Re: Syntax error in pf rules

2016-03-30 Thread Raf Czlonka
On Wed, Mar 30, 2016 at 04:47:03PM BST, Adam Smith wrote:
> Hi Marko
> 
> Thank you for your detailed clarification. I really benefited from it.
> 
> >--- marko.cu...@mimar.rs wrote:
> >
> >From: Marko Cupać 
> >To: "Adam Smith" 
> >Cc: 
> >Subject: Re: Syntax error in pf rules
> >Date: Wed, 30 Mar 2016 16:53:38 +0200
> >
> >
> >
> >There. I hope by posting this I didn't turn openbsd's misc@ into
> >askubuntu :)
> 
> Does it matter if misc@openbsd.org is an askubuntu of sorts?
> 
> I hope the person(s) in charge of this mailing list believes in
> democracy and freedom of speech and expression, provided that
> questions asked in the list pertain to OpenBSD and how to use it.
> 
> If people here are offended because they find my questions to be
> noobish, elementary, etc...they are welcome to press the "Delete"
> key to trash it.

Hi Adam,

Well, OpenBSD mailing lists have their own netiquette[0] so it would
be nice if one did one's homework before posting such basic questions.

Documentation (manual pages[1] and the FAQ[2]) is there for a reason
and people work hard to write it all down and keep it up to date.

Minimum effort is a requirement.

> Just so you know when I graduated from high school back in the
> early 70s, the personal computer, the pager or beeper, mobile or
> cell phone, internet, smartphones, Microsoft Windows, Mac OS, Linux,
> OpenBSD weren't invented yet. And in those days computing or IT
> wasn't taught in the high school curriculum.

Being an "old-timer" is not excuse for being a bit lazy ;^)

> Regards.
> 
> Adam
> http://www.DCpages.com

Regards,

Raf

[0] http://www.openbsd.org/mail.html
[1] http://man.openbsd.org/
[2] http://www.openbsd.org/faq/



Re: Firefox's trouble on snapshot #1960

2016-03-25 Thread Raf Czlonka
On Fri, Mar 25, 2016 at 02:50:26AM GMT, Alex Shupikov wrote:
> Hello misc@
> 
> Firefox doesn't run on snapshot.
> 
> shupikov@balamut:~$ uname -a
> OpenBSD balamut.td.kms 5.9 GENERIC.MP#1960 amd64
> 
> shupikov@balamut:~$
> firefox
> XPCOMGlueLoad error for file /usr/local/lib/firefox-45.0.1/libxul.so.63.0:
> Cannot load specified object
> Couldn't load XPCOM.
> 
> shupikov@balamut:~$ firefox-esr
> XPCOMGlueLoad error for file
> /usr/local/lib/firefox-esr-38.7.1/libxul.so.2.0:
> Cannot load specified object
> Couldn't load XPCOM.
> 
> I need help. Thanks for any ideas.

Hi Alex,

For anything ports-related, you may want to check ports@ archives
or even subscribe to the list.

These[0][1] are from yesterday :^)

Regards,

Raf

[0] http://marc.info/?t=14588324908
[1] http://marc.info/?t=14588336348



Re: Search with regex in nvi

2016-02-26 Thread Raf Czlonka
On Fri, Feb 26, 2016 at 03:39:59AM GMT, Артур Истомин wrote:
> Suppose I have file with next lines among others:
> 
> Omsa Attiva 40 cioccolato 2
> Omsa Attiva 40 blue XXL
> Omsa Attiva 40 milk S
> Omsa Attiva 40 sierra XXL
> Omsa Attiva 40 nero M
> Omsa Attiva 40 nero XXL
> 
> I need to find lines, where size is XXL. I can do it with "Attiva\&.*XXL" in 
> vim
> but it doesn't work in nvi. Are there any general way to do it in both 
> editors?
> 
> Thank you.
> 

Hi Артур,

That's because Vim's "branch" ("\&") in a pattern is not part of POSIX
regular expressions (neither basic, nor extended).

man ex

REGULAR EXPRESSIONS
 ex/vi supports regular expressions (REs), as documented in re_format(7),
 for line addresses, as the first part of the ex substitute, global and v
 commands, and in search patterns.  Basic regular expressions (BREs) are
 enabled by default; extended regular expressions (EREs) are used if the
 extended option is enabled.  The use of regular expressions can be
 largely disabled using the magic option.

Drop it and you'll have a BRE :^)

Regards,

Raf

[0] http://vimdoc.sourceforge.net/htmldoc/pattern.html#pattern



Re: no bandwidthd src pkd in /usr/ports

2016-02-25 Thread Raf Czlonka
On Thu, Feb 25, 2016 at 10:25:38AM GMT, Peter N. M. Hansteen wrote:
> On 02/25/16 07:26, Indunil Jayasooriya wrote:
> > I have OpenBSD 5.5 64 bit gateway.
> 
> As Raf pointed out already, you're way overdue for an upgrade.
> 
> > I want to install  bandwidthd. But I can't find a src pkg in
> > /usr/ports
> > 
> > is there a Binary pkg?
> > 
> > what about this ?
> > 
> > https://sourceforge.net/projects/bandwidthd/files/bandwidthd/bandwidthd%202.0.1/bandwidthd-2.0.1.tgz/download
> >
> >  Any comment?
> 
> It's not available as an OpenBSD port or package now, and I'm not sure
> it ever was. Then again, the code was last updated in 2005, so this
> looks like abandonware.

Hi Peter,

I hope I'm not being pedantic here - the code *has* been updated "only"
5 years ago[0] - yes, I know ;^) The fact that the software had not seen
a *release* for over 11 years is the main issue here as OpenBSD ports
maintainers don't tend to do ports which rely on vcs snapshots - a fact
which has been mentioned not so long ago[1].
 
> Try browsing the ports tree for something similar (make search or
> http://openports.se come to mind as useful methods), more likely than
> not you can find roughly equivalent functionality in other packages.

Ahh..., yes - that's the actual link I had in mind :^)

Regards,

Raf

[0] 
http://bandwidthd.cvs.sourceforge.net/viewvc/bandwidthd/bandwidthd/?sortby=date#dirlist
[1] http://marc.info/?l=openbsd-ports=143575822211626



Re: no bandwidthd src pkd in /usr/ports

2016-02-25 Thread Raf Czlonka
On Thu, Feb 25, 2016 at 07:01:58AM GMT, Indunil Jayasooriya wrote:

> > > I want to install bandwidthd. But I can't find a src pkg in
> > > /usr/ports
> > >
> > > is there a Binary pkg?
> >
> > There's neither a package nor a port.
>
> Thanks for this.

No worries - it is easy to check yourself[0] even if you don't have the
ports tree on your system.

> > > what about this ? > >
> >
> > https://sourceforge.net/projects/bandwidthd/files/bandwidthd/bandwidthd%202.0.1/bandwidthd-2.0.1.tgz/download
> >
> > This is just the program's source tarball.
>
> ok
>
> > > Any comment?
> >
> > Look for something with a similar functionality which is both in
> > ports and, preferably, in active development - this software hasn't
> > seen a release in over 11 years.
>
> What about darkstat ( /usr/ports/net/darkstat/ ) or something else you
> can recommend?

I haven't used either - I do have experience with MRTG, but it is
clearly not what you want.

BTW, in terms of ports and packages, ports@ is the best place to start.

Regards,

Raf

[0] http://ports.su/



Re: no bandwidthd src pkd in /usr/ports

2016-02-24 Thread Raf Czlonka
On Thu, Feb 25, 2016 at 06:26:10AM GMT, Indunil Jayasooriya wrote:

> Hi Misc,

Hi Indunil,

> I have OpenBSD 5.5 64 bit gateway.

It is in need of an update, then ;^)

> I want to install bandwidthd. But I can't find a src pkg in /usr/ports
>
> is there a Binary pkg?

There's neither a package nor a port.

> what about this ?
>
> https://sourceforge.net/projects/bandwidthd/files/bandwidthd/bandwidthd%202.0.1/bandwidthd-2.0.1.tgz/download

This is just the program's source tarball.

> Any comment?

Look for something with a similar functionality which is both in ports
and, preferably, in active development - this software hasn't seen a
release in over 11 years.

Regards,

Raf



Re: How to configure the domain used by default by OpenSMTPD

2016-02-22 Thread Raf Czlonka
On Mon, Feb 22, 2016 at 10:09:25AM GMT, Jiri B wrote:

> On Mon, Feb 22, 2016 at 09:40:00AM +, ML mail wrote:
>
> > Hello,
> >
> > How do one configure the domain which OpenSMTPD uses by default
> > to speak with other mail servers? The problem is that my default
> > it takes the internal domain name of my OpenBSD 5.8 server and
> > therefore other mail servers reject it with the error:
> >
> > Sender address rejected: Domain not found
> >
> > So in fact it sends mails with u...@internal.lan and I would like it
> > to send mails with u...@realdomain.tld, how can I achieve that? I
> > did not find the config parameter in smtpd.conf for that purpose.
>
> See 'hostname' in relay part in smtpd.conf(5).

Also:

$ man smtpd|grep name
 /etc/mail/mailname   Alternate server name to use.

Regards,

Raf



Re: pkg.conf edit on -current #1870

2016-02-15 Thread Raf Czlonka
On Mon, Feb 15, 2016 at 06:17:39PM GMT, Andrew wrote:
> GENERIC.MP #1870 amd64
> 
> FWIW: Last night did a clean (re) installl using the toronto.edu mirror.
> 
> boot> boot hd0a:/bsd.rd
> 
> Puffy  loaded up fine -- but no packages.
> 
> I edited my /etc/pkg.conf
> 
> from:
> 
>  ... toronto.edu/pub/OpenBSD/%c/packages/%a/
> 
> to:
> 
>  toronto.edu/pub/OpenBSD/snapshots/packages/%a/
> 
> ---
> 
> Thanks as always to Theo and to all the past and current devs -- have
> a great week ahead !!
> 

Hi Andrew,

You're not the first and, most likely, not the last either ;^)
https://marc.info/?l=openbsd-tech=142554965809503

Read: "this snapshot, or whereabouts, will be the new release".

Regards,

Raf



Re: Upgrade from snapshot to release.

2016-02-10 Thread Raf Czlonka
On Wed, Feb 10, 2016 at 03:58:38PM GMT, Ville Valkonen wrote:
> On Feb 10, 2016 5:16 PM, "Paco Esteban"  wrote:
> >
> > Hi misc@,
> >
> > I've one machine that has 5.8-current (20th of October snapshot).
> > This is a "hardly-ever-touched" machine and I would prefer to have it
> > following -stable.
> > Is it possible to go from 5.8-current to 5.9 (when it's available) using
> > the installer ?
> >
> > I've been using OpenBSD since 3.4 but never really played with -current
> > (with the exception of some tests playing with crappy SSD performance).
> >
> > Cheers,
> >
> > --
> > Paco Esteban.
> > GnuPG key: https://onna.be/44CA735E.html
> >
> > [demime 1.01d removed an attachment of type application/pgp-signature
> which had a name of signature.asc]
> >
> 
> Hi,
> 
> downgrading is not supported.

That snapshot is from *before* the snapshot which is to become 5.9, so
that's *not* downgrading.

If you take enough care, i.e. make sure you follow current.html[0] and
the update guide once it becomes available[1] after 5.9 gets released,
then it should work just fine - at the end of the day it's no different
to upgrading to a snapshot which is to become 5.9.

Obviously, this is *not* a supported upgrade path so, if anything goes
wrong, you're on your own.

> Anyway, if it's barely touched, why not to just spin a fresh install?
> 
> --
> Regards,
> Ville
> 

Regards,

Raf

[0] http://www.openbsd.org/faq/current.html
[1] http://www.openbsd.org/faq/upgrade59.html

P.S. If you don't mind occasional glitches - a price to pay for running
bleeding edge - then just carry on using snapshots.



Re: Upgrade from snapshot to release.

2016-02-10 Thread Raf Czlonka
On Wed, Feb 10, 2016 at 04:18:45PM GMT, Adam Wolk wrote:

> Everything else is unknown state. You won't be sure which following
> current steps to execute. Your current base OS could be well past or
> before the snapshot used for the release.

Technically, that's not true - STATUS changes[0][1] are a clear
indicator at what stage the tree currently is, so 5.8-current is
*before* both -beta and "release".

OP, do not take this as an encouragement - I only wanted to clarify
Adam's above statement.

Regards,

Raf

[0] 
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/conf/newvers.sh.diff?r1=1.140=1.141=h
[1] 
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/sys/conf/newvers.sh.diff?r1=1.142=1.143=h



Re: Upgrade from snapshot to release.

2016-02-10 Thread Raf Czlonka
On Wed, Feb 10, 2016 at 05:29:51PM GMT, Ingo Schwarze wrote:
> Hi Raf,

Hi Ingo,

> Raf Czlonka wrote on Wed, Feb 10, 2016 at 04:51:12PM +:
> 
> > If you take enough care, i.e. make sure you follow current.html[0]
> > and the update guide once it becomes available[1] after 5.9 gets
> > released,
> 
> To go to 5.9-release or 5.9-stable, upgrade59.html is sufficient.
> There is no need to bother with current.html.

I'm aware of that. I only mentioned current.html "just in case" anyone
reads this email in the future, when one snapshot introduced a change
and, some time later, next one reversed it. If you were to upgrade
from the *earlier* snapshot (the one which introduced a change) to
-release, you would need to make sure to make sure you upgrade to the
later snapshot (the one which reverted the change) or, if possible, do
it "by hand", prior to upgrading to -release as you wouldn't see the
change ever taking place if you simply followed -release/stable ->
-release. But, as you can see, this is a bit verbose and, probably,
too far-fetched a edge case - wanted to keep it short :^)

> You always need current.html when building -current from source,
> and you often need it when upgrading to a new -current snapshot.
> 
> > Obviously, this is *not* a supported upgrade path so, if anything
> > goes wrong, you're on your own.
> 
> Not true.  Upgrading from X-current to (X+1)-stable is supported.

The fact that it's not mentioned as an option in the install or upgrade
part of the FAQ[0] and a paragraph in the FAQ[1] (which admittedly I had
read ages ago and then, it seems, misunderstood):

 One should also understand that the upgrade process is supported
 in only one direction: from older to newer, and from -stable to
 -current. You can not run -current (or a snapshot), then decide you are
 living too dangerously, and step back to -stable. You are on your own
 if you choose any path other than the supported option of reloading
 your system from scratch. Do not expect assistance from the OpenBSD
 development team.

both made me think it is not - I stand corrected.

> The amount of confusion here is amazing...  :-(

Probably because the documentation isn't particularly clear about
it - sure, I can do it without any problems, but the fact that it
isn't explicitly mentioned made me thing it is not, at the very least,
"endorsed".

> Yours,
>   Ingo

Thanks for clarifying,

Raf

[0] http://www.openbsd.org/faq/faq5.html#BldBinary
[1] http://www.openbsd.org/faq/faq5.html#Flavors



Re: puppet and cross-platform password hashes

2016-02-05 Thread Raf Czlonka
On Fri, Feb 05, 2016 at 03:48:02PM GMT, Joshua Smith wrote:
> On Fri, Feb 05, 2016 at 04:04:47PM +0100, Joerg Jung wrote:
> > > On 05 Feb 2016, at 08:33, Peter N. M. Hansteen  wrote:
> > >
> > > I'm assuming I'm not the first to encounter this -
> > >
> > > the scenario is a group of admins who have so far run mainly Linux and 
> > > some
> > Solaris,
> > > and who have a fairly well developed Puppet setup for maintaining among
> > other things
> > > local users for admins to log in and fix, running sudo as required. For
> > non-admin role
> > > users, LDAP (AD) is considered good enough, but that's out of scope here.
> > >
> > > The interesting part is when we start introducing OpenBSD machines to the
> > mix, and
> > > creating users with the password hashes from Linux or Solaris fails,
> > apparently because
> > > the hashes are not bcrypt hashes.
> > >
> > > I see two obvious solutions to this. Either
> > >
> > > 1) skip password logins, require key logins for all local users (they're
> > >   admins after all), tackle any extra privilege needs via specific sudo or
> > >   doas config, or
> > >
> > > 2) maintain a separate set of user definitions with bcrypt hashes for the
> > OpenBSD
> > >   boxes in the puppet setup. Then supplement as before with sudo or doas
> > tricks.
> > >
> > > My next question is, what other workable options are there? When you found
> > yourself
> > > in a similar situation, introducing OpenBSD to an existing environment of
> > other
> > > unixes, what did you do? Are there other solutions out there, possibly 
> > > with
> > more
> > > sophisticated approaches than the ones I've mentioned here?
> > 
> > There is: 3) dynamically chose the pass hash string depending on OS.
> > Last time I used puppet was with 2.x release, so I do not know the exact
> > syntax,
> > but something like this should work:
> > 
> > @user {
> > myuser:
> > comment => “my user”,
> > ensure = “present”,
> > password => case $operatingsystem {
> > OpenBSD: { “$2b$….” },
> > RedHat: { “$6$...” },
> > Solaris: { “...” }
> >}
> > }
> > 
> > I do similar in Ansible, setting a dynamic variable “user_hash” to either
> > “blowfish” or “sha512”
> > depending on the OS, and the use this variable to choose the right hash 
> > string
> > from an dict,
> > which looks like this:
> > 
> > users:
> >   root:
> > blowfish: $2b$...
> > sha512: $6$…
> > 
> > …referencing it later (in loops), like this:
> > 
> > user: name=root password=users[root][user_hash]
> > 
> > > Good suggestions may merit a beverage of choice (within reason) at the
> > first
> > > possible opportunity.
> > > --
> > > Peter N. M. Hansteen, member of the first RFC 1149 implementation team
> > > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
> > > "Remember to set the evil bit on all malicious network traffic"
> > > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
> 
> +1 for Joerg's suggestion, he beat me to typing it but we do something
> similar here.  We have a "local_user" wrapper class that has some logic
> built in to determine the proper password hash to apply based on the OS
> and some other things.

I also use case statement for this and other, not necessarily
OS-dependant, bits.

Raf



Re: Daily cron error in 5.7

2016-01-25 Thread Raf Czlonka
On Mon, Jan 25, 2016 at 08:17:15PM GMT, Luciano wrote:
> Hello,
> But Exim isn't installed on the system.
> 
> pkg_info shows:
> 
> [...]
> 
> Why this message is shown?
> 
> Thanks.
> 
> Luciano
> 
> 
> Il 24/01/2016 22:10, Janne Johansson ha scritto:
> >
> > I dont think open comes eith exim. Check your exim conf.
> >
> > Den 24 jan 2016 20:04 skrev "Luciano"  > >:
> >
> > Hello,
> > I upgrade the old version 5.6 in the 5.7. The daily cron log send
> > on mail show:
^^^
Are getting emails from another system, perhaps?

Raf

> >
> >  /etc/cron.daily/logrotate:
> > error: error creating output file /var/log/exim4/mainlog.1.gz:
> > File already exists
> > error: error creating output file /var/log/syslog.1.gz: File
> > already exists
> > run-parts: /etc/cron.daily/logrotate exited with return code 1
> >
> > The daily file in /var/log exist. Why it ins't send by mail?
> > Thanks.
> >
> >
> > Luciano.



Re: VAX - are we dropping support in 5.9?

2016-01-23 Thread Raf Czlonka
On Sat, Jan 23, 2016 at 08:00:09PM GMT, Bryan C. Everly wrote:

> Hi everyone,

Hi Bryan,

> I just noticed that the VAX packages directory was missing on
> openbsd.cs.toronto.edu and the other mirrors I checked.

http://openbsd.cs.toronto.edu/pub/OpenBSD/5.8/packages/vax/

Not from where I'm sitting. And 5.9 hasn't been released yet so packages
for it haven't been built.

> I searched the MARC.info archives and didn't see anything announcing
> that the VAX was going away but perhaps I missed something?
>
> I also checked the http://build-failures.rhaalovely.net/ site to see
> if perhaps there was a failure in the build that I could take a look
> at but the VAX directory was missing there as well.
>
> Sorry if I've missed a post but if someone could fill me in, I'd
> appreciate it.
> 
> Thanks,
> Bryan
> 

What gave you that idea?

Raf



Re: VAX - are we dropping support in 5.9?

2016-01-23 Thread Raf Czlonka
On Sat, Jan 23, 2016 at 09:33:21PM GMT, Bryan C. Everly wrote:

> I run 5.9-current on my other machines so when i didn't see packages
> in /pub/OpenBSD/snapshots/packages I jumped to that conclusion given
> that the other architectures were under that directory and VAX was
> absent.

As you can see from the primary site[0], there's only a handful of
architectures for which package snapshots are available, i.e. arm is not
amongst them either.

> Glad to hear that isn't the case.

I never claimed to be an authoritative source and that it isn't indeed
the case. I haven't noticed anything bar one comment on cvs@[1] which
would point to that conclusion - and indeed, aviion is gone[2]...

> Any idea why they aren't building packages in 5.9-current snapshots
> for that architecture?

As with anything - time, resources, etc.

Raf

[0] http://ftp.openbsd.org/pub/OpenBSD/snapshots/packages/
[1] https://marc.info/?l=openbsd-cvs=144887159202054
[2] https://marc.info/?l=openbsd-cvs=144895627013585



Re: Mismatch between config and documentation for dhcpd?

2016-01-22 Thread Raf Czlonka
On Fri, Jan 22, 2016 at 12:00:56AM GMT, Etienne wrote:
> On 2016-01-21 12:28, Raf Czlonka wrote:
> 
> >>I didn't add a prefix, it's been added in the log by the program itself.
> >>My
> >>config file looked like below:
> >>
> >>option domain-name-servers 192.168.0.71, 192.168.0.149;
> >>option classless-static-routes 192.168.32/24 192.168.0.1;
> > ^
> >Is this by any chance because the above is not valid CIDR and should
> >have been, 192.168.32.0/24?
> 
> I just tried, I'm afraid it doesn't make any change.

Hi Étienne,

I don't think you've mentioned the release version of
OpenBSD you are running - code for classless-static-routes and
classless-ms-static-routes has been added two years ago and first
appeared in OpenBSD 5.5.

Raf



Re: Mismatch between config and documentation for dhcpd?

2016-01-21 Thread Raf Czlonka
On Thu, Jan 21, 2016 at 11:15:42AM GMT, Etienne wrote:
> On 2016-01-21 00:27, Stuart Henderson wrote:
> 
> >>man dhcp-options(5) shows the option classless-static-routes, however,
> >>when I use it, dhcpd fails to start and returns:
> >>
> >>dhcpd: /etc/dhcpd.conf line 49: unknown option
> >>dhcp.classless-static-routes
> >
> >It looks like it should just be "classless-static-routes" without a
> >dhcp. prefix.
> 
> I didn't add a prefix, it's been added in the log by the program itself. My
> config file looked like below:
> 
> option domain-name-servers 192.168.0.71, 192.168.0.149;
> option classless-static-routes 192.168.32/24 192.168.0.1;
 ^
Is this by any chance because the above is not valid CIDR and should
have been, 192.168.32.0/24?

Regards,

Raf

> deny unknown-clients;
> 
> For the moment, I'll go with the following config, which works:
> 
> option domain-name-servers 192.168.0.71, 192.168.0.149;
> option static-routes 192.168.32.7 192.168.0.1, 192.168.32.15
> 192.168.0.1;
> deny unknown-clients;
> 
> Cheers,
> 
> -- 
> Étienne



Re: unbound(8) generating too many log messages

2016-01-14 Thread Raf Czlonka
On Thu, Jan 14, 2016 at 07:26:32AM GMT, Philippe Meunier wrote:
> Hello,
> 
> I have a laptop computer configured to use unbound(8) and ntpd(8) but
> which does not have any network interface configured by default
> (except lo0, obviously) since which interface needs to be configured
> and how depends on where I'm using the computer.
> 
> After booting, unbound(8) and ntpd(8) both start without problem.
> Then ntpd(8) automatically starts trying to contact NTP servers from
> pool.ntp.org, which triggers DNS queries.  In turn unbound(8) tries to
> contact root DNS servers and fails since no network interface is
> configured.  Unbound(8) then logs messages to syslog:
> 
> Jan 14 10:07:58 mycomputer unbound: [2824:0] notice: sendto failed: Can't 
> assign requested address
> Jan 14 10:07:58 mycomputer unbound: [2824:0] notice: remote address is 
> 192.5.5.241 port 53
> 
> The problem is that unbound(8) generates such a pair of messages up to
> 20 times for each root server!  That's 2 lines * 20 times * 13 root
> servers = 520 lines that end up going to syslog.  Then 15 seconds
> later ntpd(8) tries again and you get another 520 lines, and so on.
> This continues until a network interface is configured.  The result is
> that I've accumulated over 16000 lines of log messages like the ones
> above over just the past three days...
> 
> So is there a way to make unbound(8) more quiet (short of sending the
> log messages to /dev/null)?

Hi Philippe,

How about simply disabling unbound at boot:

# rcctl disable unbound

and then have something like this in your /etc/hostname.if:

rcctl -f start unbound

> For info, this is the unbound(8) version 1.5.4 from OpenBSD
> 5.8-release.
> 
> Thank you,
> 
> Philippe

Regards,

Raf



Re: [DIFF] New Year's calendar

2016-01-12 Thread Raf Czlonka
On Tue, Jan 12, 2016 at 09:41:47PM GMT, Craig Skinner wrote:
> Hi Raf,

Hi Craig,

> On 2016-01-11 Mon 20:33 PM |, Raf Czlonka wrote:
> > On Mon, Jan 11, 2016 at 07:35:50PM GMT, Craig Skinner wrote:
> > > 
> > > This isn't _perfect_, but it could be a resonable starting point:
> > > 
> > > +04/01April Fool's Day
> > 
> > This I'm not entirely sure of but both Google and Wikipedia use plural
> > possessive - "April Fools' Day".
> > 
> 
> The Canadian file was used as a starting point, & the U.S. file has the
> same entry:
> 
> $ fgrep -iR Fool *
> calendar.canada:04/01   April Fool's Day
> calendar.united-kingdom:04/01   April Fool's Day
> calendar.usholiday:04/01April Fool's Day

As Jason already mentioned, singular possessive "Fool's" seems to be
chiefly North American, whereas in UK plural possessive "Fools'" appears
to be more common.

> > > +11/05Guy Fawkes' Day
> > 
> > If Google search results are anything to go by, then "Guy Fawkes Night"
> > might be a bit better as it returns slightly more results. Regardless
> > how you call it, however, it's neither possessive, nor plural.
> > 
> 
> Night it is, thanks!
> 
> The .history file has it as:
> Guy Fawkes' Plot, 1605
> 
> "Fawkes" was his surname, with the 's' included.
> 
> http://en.wikipedia.org/wiki/Guy_Fawkes_Night
> 

Sure, I'm aware of that. What I was referring to was that usually the
apostrophe is omitted and it is written "Guy Fawkes Day/Night", which I
said that it's not possessive and Jason corrected me, as it obviously
is - it's simply doesn't appear as such when written that way. The way
you wrote it (Fawkes') is usual for plural possessive and at first it
would seem that, if using an apostrophe, Fawkes's would have been more
appropriate. However, after some reeducation, I can see that it is not
the case, as the "rules" are all over the place and they vary from
country to country, or region to region. I'll shut up now :^)

BTW, also +1 for Bonfire Night as it is indeed referred to as such more
often than the former.

Regards,

Raf



Re: [DIFF] New Year's calendar

2016-01-11 Thread Raf Czlonka
On Mon, Jan 11, 2016 at 07:35:50PM GMT, Craig Skinner wrote:
> Hi all,
> 
> On 2016-01-06 Wed 23:31 PM |, Craig Skinner wrote:
> > 
> > So I instead had a stab at a calendar.united-kingdom file.
> > 
> 
> Following on from a bit of discussion, below is an attempt at a UK
> calendar file, with major items already in calendar.holiday strippped
> out. e.g. New Year's Day, although it is an offical bank/public holiday.
> 
> There is an incorrect entry in calendar.holiday for an August bank
> holiday. The name was wrong & dates wrong for 2 countries. 2 other
> countries of the UK were missing it on a different date, and as it isn't
> of any international significance, I've corrected it in the new UK file.
> 
> Refs (watch out for multiple mistakes on Wikipedia):
> http://www.gov.scot/Topics/People/bank-holidays/
> http://www.gov.uk/bank-holidays
> http://en.wikipedia.org/wiki/Public_holidays_in_the_United_Kingdom
> http://en.wikipedia.org/wiki/Bank_holiday
> 
> To get us going, I've ignored the many regional Scottish holidays. I
> guess England has a heap of them too, but that's for another time.
> 
> 
> Also for simplicity, I'll revisit the New Zealand addition later on.
> 
> 
> This isn't _perfect_, but it could be a resonable starting point:
> 
> 
> Index: calendar.1
> ===
> RCS file: /cvs/src/usr.bin/calendar/calendar.1,v
> retrieving revision 1.40
> diff -u -p -r1.40 calendar.1
> --- calendar.17 Dec 2015 18:46:35 -   1.40
> +++ calendar.111 Jan 2016 18:22:41 -
> @@ -237,6 +237,8 @@ Pagan holidays, celebrations and festiva
>  Russian calendar.
>  .It Pa calendar.space
>  Cosmic history.
> +.It Pa calendar.united-kingdom
> +U.K. holidays, celebrations and festivals.
>  .It Pa calendar.ushistory
>  U.S. history.
>  .It Pa calendar.usholiday
> Index: calendars/calendar.holiday
> ===
> RCS file: /cvs/src/usr.bin/calendar/calendars/calendar.holiday,v
> retrieving revision 1.33
> diff -u -p -r1.33 calendar.holiday
> --- calendars/calendar.holiday5 Jan 2016 08:28:02 -   1.33
> +++ calendars/calendar.holiday11 Jan 2016 18:22:41 -
> @@ -284,7 +284,6 @@
>  08/03Independence Day in Jamaica, Niger
>  08/03Memorial Day of Archbishop Makarios in Cyprus
>  08/04Freedom Day in Guyana
> -08/05*   Bank Holiday in Scotland and Northern Ireland
>  08/06Bank Holiday in Australia, British Columbia, Fiji, Iceland, 
> Ireland,
>   Ontario
>  08/06Emancipation Day in Bahamas
> @@ -434,7 +433,7 @@
>  11/30Independence Day in Barbados, People's Democratic Yemen Republic
>  11/30National Day in Benin
>  11/30National Heroes Day in Philippines
> -11/30St. Andrew's Day
> +11/30Saint Andrew's Day - a bank holiday in Scotland
>  12/01Independence Day in Central African Republic
>  12/01World AIDS Day
>  12/01National Day in Romania
> --- /dev/null Mon Jan 11 18:23:51 2016
> +++ calendars/calendar.united-kingdom Mon Jan 11 18:19:59 2016
> @@ -0,0 +1,38 @@
> +/*
> + * United Kingdom holiday
> + *
> + * $OpenBSD$
> + */
> +
> +#ifndef _calendar_united-kingdom_
> +#define _calendar_united-kingdom_
> +
> +01/022nd January bank holiday in Scotland - another new year's 
> holiday
> +01/25Burns' Night in Scotland
> +03/01Saint David's Day in Wales
> +03/17Saint Patrick's Day - a bank holiday in Ireland
> +03/20*   Vernal Equinox
> +03/SunLast   Daylight Saving Time begins; clocks move forward (last Sunday 
> of March)
> +04/01April Fool's Day

This I'm not entirely sure of but both Google and Wikipedia use plural
possessive - "April Fools' Day".

> +04/23Saint George's Day in England
> +Easter-21Mothering Sunday (Sunday 3 weeks before Easter Sunday)
> +Easter-2 Good Friday (bank holiday)
> +Easter+1 Easter Monday (bank holiday - except Scotland)
> +05/MonFirst  Early May Bank Holiday
> +05/MonThird* Victoria Day in Scotland (Monday on or immediately before May 
> 24)
> +05/MonLast   Spring Bank Holiday
> +06/SunThird  Father's Day (3rd Sunday of June)
> +06/21*   Summer Solstice
> +07/12Battle of the Boyne/Orangemen's Day/The Twelfth - a bank 
> holiday in Northern Ireland
> +08/MonFirst  Summer Bank Holiday in Scotland
> +08/MonLast   Summer Bank Holiday - except Scotland
> +09/22*   Autumnal Equinox
> +10/SunLast   Daylight Saving Time ends; clocks move back (last Sunday in 
> October)
> +10/31Halloween
> +11/05Guy Fawkes' Day

If Google search results are anything to go by, then "Guy Fawkes Night"
might be a bit better as it returns slightly more results. Regardless
how you call it, however, it's neither possessive, nor plural.

Regards,

Raf

> +11/11Remembrance Day
> +11/SunSecond Remembrance Sunday
> +12/21*   Winter Solstice
> +12/31

Re: sudo and globbing

2016-01-08 Thread Raf Czlonka
On Thu, Jan 07, 2016 at 04:43:14PM GMT, Jiri B wrote:
> I discovered an article about sudo and globbing[1] and
> there's difference how it does work on Linux and OpenBSD.

AFAIK, globbing is done by shell and sudo doesn't take part in it.

> # su -s /usr/local/bin/bash - nobody
  ^
> [root@slot-1 ~]# su -s /bin/bash nobody
> [...]
> Could anybody explain the difference?

One thing I can see is that on OpenBSD, you run bash as a login shell
but not on Linux.

My guess is that your bash login shell options, or globbing options
between the systems in general, are the cause of the above.

Regards,

Raf



Re: Problems installing OpenBSD 5.8

2016-01-07 Thread Raf Czlonka
On Wed, Jan 06, 2016 at 11:15:39PM GMT, Roderich wrote:
> I thank again Raf and Peter, and now Kurt!
> 
> On Wed, 6 Jan 2016, Raf Czlonka wrote:
> 
> > That was Peter who mentioned it, not me - he's better at reading minds
> > that I am, so it seems ;^)
> >
> > BTW, this might be useful - https://marc.info/?t=14320053791
> 
> It seems, it is worse than that.
> 
> I attached my old external drive in the just installed OpenBSD,
> and it got panic. I got a "ddb{0}"?prompt. I should report
> the result of "trace" and "ps" given to that promp, but I do
> not know how to save that with OpenBSD in that panic state,
> and I dont want to get a panic again. :)

If it's not simply a faulty hardware, then it would be nice to get it
fixed. If you can't get the output on serial console, then just take
some photos[0].

> > The installer expects SHA256.sig as it uses signify to verify the sets -
> > simply download it from your local mirror[0].
> 
> O.K. with the sets in install58.iso, the file
> /pub/OpenBSD/5.8/i386/SHA256.sig in the mirror
> and index.txt (obtained with "ls -nT > index.txt" in the directory)
> it worked.
> 
> It would have been nice to have SHA256.sig and index.txt from
> the beginning in istall58.iso. Then downloading, doing vnconfig
> and mounting on htdocs would be enough.

Index.txt is only needed if you're installing sets using HTTP from your
own server - there's not need for it to be on any of the disk images.
If you're doing that, then install??.iso isn't at all necessary - simply
download the required files from the mirror and put them on your server.

> > I'm still not following. *Which* files exactly do you have in mind?
> 
> Forget it. Perhaps unpacking with something like "tar xzpf" is enough.

Again, installer does everything for you - no need to worry about file
permissions.

> In any case, to have a guide for manual installing would be nice.
> When I have troubles with the installer (or an insaller of a OS),
> then I have to begin from 0. I hate it. OpenBSD has a better installer,
> because one have less troubles, because it is not so fat than others,
> that is all.

If you really want it, each upgrade guide includes a manual process[1].

Regards,

Raf

[0] http://www.openbsd.org/ddb.html
[1] http://www.openbsd.org/faq/upgrade58.html#upgrade



Re: 5.8: uvideo has support for Logitech QuickCam Pro 5000 but ugen0 attaches instead

2016-01-06 Thread Raf Czlonka
On Mon, Jan 04, 2016 at 06:18:30AM GMT, Matt Adams wrote:

> Hi,
>
> I noted that uvideo has support for the Logitech QuickCam Pro 5000 -
> a piece of hardware that I have. However, ugen appears to attach to
> this device instead of allowing the special firmware (installed via
> "# fw_install uvideo") to configure /dev/video0 or /dev/video1, even
> though those two device files are present in the system.

Hi Matt,

Logitech QuickCam Pro 5000 comes is two models: UVC and non-UVC[0].

Please verify that your camera is the V-UAX16[1], not the V-VAX16, model
(P/N 861306) - I can't verify it based only on its USB Product ID as I'm
not entirely sure whether it would differ between these two models.

Regards,

Raf

[0] http://support.logitech.com/en_gb/product/quickcam-pro-5000
[1] http://support.logitech.com/en_gb/article/6471



Re: Problems installing OpenBSD 5.8

2016-01-06 Thread Raf Czlonka
On Wed, Jan 06, 2016 at 12:44:00PM GMT, Roderich wrote:

> Dear Sirs!

Hi Rodrigo,

> I am having some problems with the (new?) installer. I want to install
> OpenBSD 5.8 off-line.
> 
> (1) I burned a CD Rom with install58.iso, it booted, but when it
>  asks for the location of installation sets, it does not offer
>  cdrom, only disk and http.

You sure it wasn't cd58.iso by any chance?

> (2) I tried to install with PXE Boot, I booted bsd.rd from another
>  machine that also offered the sets with http to 10.0.0.1/5.8/i386,
>  but the installation program did not find the sets. I went to
>  shell and the sets could inded be fetched with "ftp" program from
>  that location. BTW ftp is also not offered, only disc and http.

You need index.txt in the directory which contains the sets on the http
server:

cd $DIR && ls -nT > index.txt

Also, FTP has been removed as the source of sets in 5.7[0].

> (3) It is nice to have an installation program, but nicer for me
>  would be to have instructions for installing OpenBSD with the shell
>  offered. I am sure I can do it with some experimenting, but there
>  would remain doubts that all was well done, for example regarding
>  permissions.

Installer works just fine for majority of people/use cases. Why would
you want to do the install manually?

Not sure what you mean by "permissions".

Regards,

Raf

[0] 
http://cvsweb.openbsd.org/cgi-bin/cvsweb/www/faq/faq4.html.diff?r1=1.355=1.356=h



Re: Problems installing OpenBSD 5.8

2016-01-06 Thread Raf Czlonka
On Wed, Jan 06, 2016 at 03:36:19PM GMT, Roderich wrote:

> I thank Raf and Peter for their hints.

No worries.

> There is big progress.
> 
> A dmesg goes in the attachment, perhaps helps other people.
> 
> My remarks o rafs mail:
> 
> Indeed, it seems the esternal USB cdrom drive was not recognized.

That was Peter who mentioned it, not me - he's better at reading minds
that I am, so it seems ;^)

BTW, this might be useful - https://marc.info/?t=14320053791

> >You sure it wasn't cd58.iso by any chance?
> 
> Yes, sure, it is install58.iso
> 
> >You need index.txt in the directory which contains the sets on the http
> >server:
> >
> > cd $DIR && ls -nT > index.txt
> 
> With this it worked, I just installed openBSD with PXE and HTTP to
> a local system, but the signature check failed.
> 
> In install58.iso the file with signatures is called SHA256, but
> the installer wants SHA256.txt, I did "cp SHA256 SHA256.txt",
> but the installer complained because of comments in the file.

The installer expects SHA256.sig as it uses signify to verify the sets -
simply download it from your local mirror[0].

> Originally I did vnconfig with the install58.iso file and
> mounted it in the htdoc directory. Since I didnt want to
> modify install58.iso, I had now to copy the files in order to
> also have index.txt there. Well, I had this time the necessary
> megabytes.
> 
> >Installer works just fine for majority of people/use cases.
> 
> Yes! Fine for the mayority! Also fine for me in most cases. But there
> are other cases and conditions, in which the install program may be
> not adecuate.
> 
> >Why would you want to do the install manually?
> 
> Flexibility. In order to be able to react and fix problems. For
> installing OpenBSD in systems with few resources. But for that one
> needs a clear goal, one needs to know what exactly must be the
> result. That is why I though instructions for manually installing
> would be nice. Perhaps I must read the install script.
> 
> >Not sure what you mean by "permissions".
> 
> File permissions. Just an example of details to care when installing
> manually.

I'm still not following. *Which* files exactly do you have in mind?

Raf

[0] http://www.openbsd.org/ftp.html

> OpenBSD 5.8 (RAMDISK_CD) #1038: Sun Aug 16 02:43:32 MDT 2015
> dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/RAMDISK_CD
> cpu0: AMD E-350 Processor ("AuthenticAMD" 686-class, 512KB L2 cache) 1.65 GHz
> cpu0: 
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,MMX,FXSR,SSE,SSE2,HTT,NXE,MMXX,FFXSR,PAGE1GB,LONG,SSE3,MWAIT,SSSE3,CX16,POPCNT,LAHF,CMPLEG,SVM,EAPICSP,AMCR8,ABM,SSE4A,MASSE,3DNOWP,IBS,SKINIT,WDT,ITSC
> real mem  = 1725186048 (1645MB)
> avail mem = 1682780160 (1604MB)
> mainbus0 at root
> bios0 at mainbus0: date 06/16/10, SMBIOS rev. 2.6 @ 0xe9220 (60 entries)
> bios0:
> bios0: ASUSTeK COMPUTER INC. E35M1-M
> acpi0 at bios0: rev 2
> acpi0: tables DSDT FACP APIC MCFG HPET SSDT SSDT
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: apic clock running at 206MHz
> cpu0: mwait min=64, max=64, IBE
> cpu at mainbus0: not configured
> ioapic0 at mainbus0: apid 0 pa 0xfec0, version 21, 24 pins
> ioapic0: misconfigured as apic 3, remapped to apid 0
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus -1 (BR15)
> acpiprt2 at acpi0: bus -1 (PCE6)
> acpiprt3 at acpi0: bus -1 (PCE7)
> acpiprt4 at acpi0: bus -1 (PCE8)
> acpiprt5 at acpi0: bus 1 (BR14)
> acpiprt6 at acpi0: bus 3 (PE20)
> acpiprt7 at acpi0: bus 4 (PE21)
> acpiprt8 at acpi0: bus 5 (PE22)
> acpiprt9 at acpi0: bus 6 (BR23)
> acpiprt10 at acpi0: bus -1 (PE23)
> bios0: ROM list: 0xc/0xe200
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 "AMD AMD64 14h Host" rev 0x00
> vga1 at pci0 dev 1 function 0 "ATI Radeon HD 6310" rev 0x00
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> "ATI Radeon HD 6310 HD Audio" rev 0x00 at pci0 dev 1 function 1 not configured
> ppb0 at pci0 dev 4 function 0 "AMD AMD64 14h PCIE" rev 0x00: apic 0 int 16
> pci1 at ppb0 bus 1
> ahci0 at pci0 dev 17 function 0 "ATI SBx00 SATA" rev 0x40: apic 0 int 19, 
> AHCI 1.2
> ahci0: port 0: 1.5Gb/s
> scsibus0 at ahci0: 32 targets
> sd0 at scsibus0 targ 0 lun 0:  SCSI3 0/direct 
> fixed naa.5392c1e06dc0
> sd0: 238475MB, 512 bytes/sector, 488397168 sectors
> ohci0 at pci0 dev 18 function 0 "ATI SB700 USB" rev 0x00: apic 0 int 18, 
> version 1.0, legacy support
> ehci0 at pci0 dev 18 function 2 "ATI SB700 USB2" rev 0x00: apic 0 int 17
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 "ATI EHCI root hub" rev 2.00/1.00 addr 1
> ohci1 at pci0 dev 19 function 0 "ATI SB700 USB" rev 0x00: apic 0 int 18, 
> version 1.0, legacy support
> ehci1 at pci0 dev 19 function 2 "ATI SB700 USB2" rev 0x00: apic 0 int 17
> usb1 at ehci1: USB revision 2.0
> uhub1 at usb1 "ATI EHCI root hub" rev 2.00/1.00 addr 1
> "ATI SBx00 

Re: [DIFF] New Year's calendar

2016-01-04 Thread Raf Czlonka
On Mon, Jan 04, 2016 at 06:11:58PM GMT, Jason McIntyre wrote:
> On Mon, Jan 04, 2016 at 03:46:53PM +, Craig Skinner wrote:
> > Happy Hogmanay/New Year!
> > 
> > Scotland & New Zealand have an additional New Year's celebrations
> > hangover recovery public holiday.
> > 
> > In Scotland, Hogmanay is THE most significant winter festival, with
> > internationally popular street parties of 400,000 people dancing.
> > 
> > (Xmas was banned in Scotland for over 400 years, until recently.)
> > 
> 
> i diasgree with this. it's true some of us in scotland get the 2nd off,
> but i'm not sure it's helpful to describe the 2nd as a new year's
> festival.
> 
> really we have hogmany and new year's day. depending on your job, you'll
> get some combination of these off. i worked 31/1 and had the second off.
> lots of people have two weeks...
> 
> traditionally the 2nd was described as a bank holiday. now banks are
> open on this day. some businesses shut.
> 
> let's just leave it that for people on this calendar, 31st is hogmany
> and the 1st is new year's day. days off are no longer inviolate/
> 
> jmc
> 
> ps xmas banned in scotland till recently: how old are you exactly, craig ;)
> 
> > 
> > Index: calendar.holiday
> > ===
> > RCS file: /cvs/src/usr.bin/calendar/calendars/calendar.holiday,v
> > retrieving revision 1.32
> > diff -u -p -r1.32 calendar.holiday
> > --- calendar.holiday12 Oct 2015 06:33:21 -  1.32
> > +++ calendar.holiday4 Jan 2016 15:44:21 -
> > @@ -12,7 +12,7 @@
> >  01/01  Universal Fraternity Day in Mozambique
> >  01/02  Ancestry Day in Haiti
> >  01/02  St. Berchtold's Day in Switzerland
> > -01/03  New Year's Holiday in Scotland
> > +01/02  New Year's Holiday in Scotland and New Zealand
> >  01/03  Revolution Day in Upper Volta
> >  01/04  Independence Day in Burma
> >  01/04  Martyrs Day in Zaire
> > @@ -580,5 +580,6 @@
> >  12/29  His Majesty, the King's Birthday in Nepal
> >  12/30  Anniversary of the Democratic Republic of Madagascar in 
> > Madagascar
> >  12/31  Proclamation of the Republic in Congo
> > +12/31  Hogmanay - 3 day year transition festival in Scotland
> >  
> >  #endif /* !_calendar_holiday_ */
> > 
> > 
> > -- 
> > http://www.Scotland.org/features/hogmanay-top-facts/
> > http://www.RampantScotland.com/know/blknow12.htm
> > http://www.EdinburghsHogmanay.com/
> > http://www.EdinburghFestivalCity.com/festivals/edinburghs-hogmanay
> > http://en.wikipedia.org/wiki/Hogmanay

Hi all,

However you call it, the fact is the date seems to be wrong (unless
we're talking about some other holiday) - 2nd January bank holiday is,
as the name suggests, on the 2nd of January[0]. Unless, of course, the
calendar should show the date when the holiday is celebrated, rather
than when it occurs - i.e. 2nd January bank holiday in Scotland is in
fact today (4th January), a substitute day.

Regards,

Raf

[0] https://www.gov.uk/bank-holidays#scotland



Re: if I were to make a pkg-add diff

2015-12-27 Thread Raf Czlonka
On Sun, Dec 27, 2015 at 01:40:04AM GMT, Luke Small wrote:

> pkg_add initialization and mirror selection can be automated ...

As already mentioned here, this part is already done during
installation. One can either accept the suggested mirror or choose one
manually from the list, your choice is then saved in '/etc/pkg.conf' -
not the same thing as setting up PKG_PATH but is sufficient for pkg_*
use.

Raf



Re: if I were to make a pkg-add diff

2015-12-27 Thread Raf Czlonka
On Sun, Dec 27, 2015 at 01:58:53AM GMT, Luke Small wrote:

> Come to think about it, it might to be good to do tiny standalone
> program called pkg_ping and then I could make it in C like I'd prefer.
> I'd hope to make a port maybe, but then it would functionally defeat
> the intent.

I think you're wasting your time and skills - a service akin to Debian's
redirector[0] would be much better!

Raf

[0] http://httpredir.debian.org/



Re: if I were to make a pkg-add diff

2015-12-27 Thread Raf Czlonka
On Sun, Dec 27, 2015 at 12:05:43PM GMT, Stuart Henderson wrote:

> This would work for releases, though unless pkg_add was changed to
> cache the redirect it would slow things down compared to fetching
> directly from the mirror.
>
> For snapshots, caching the redirect would be essential, otherwise it
> could switch mirror mid-update, and it is common that mirrors are not
> all in-sync.
>
> Caching the redirect is a bigger change than it seems because pkg_add
> doesn't have its own network code but defers to $FETCH_CMD which could
> be one of a number of programs.
>
> (yes this has been thought about already :)
>
> I think the best that can be done relatively easily would be to have
> pkg_add fetch ftplist.cgi and pick the first result as a default if
> neither pkg.conf nor PKG_PATH are set.

Thanks for the info, Stuart - very informative!

Regards,

Raf

P.S. Even though I had used a real-life example, the email was tongue-in-cheek 
:^)



Re: text-mode gui

2015-12-23 Thread Raf Czlonka
On Wed, Dec 23, 2015 at 02:16:12PM GMT, Riccardo Mottola wrote:
> Hi,

Hi,

> this thread has gone a long way.

Yes, it has - I'll keep it short and to the point.

> I only have a minor complaint: the network has to be set-up if one
> uses stuff from the network (or performs an upgrade without having the
> FULL cd) .

You can always perform an upgrade from a mounted disk, i.e. the one you
have your system on.

> I need to drop to shell, configure the network card, exit and then
> just procede with e.g. upgrade.

Sounds like a corner case/specific need - I have both installed an
upgraded using the network and the only time I have to drop to a shell
is when I don't use ifconfig(8)-provided options and use a script.

Raf



Re: Azalia Volume Too Quiet

2015-11-18 Thread Raf Czlonka
On Wed, Nov 18, 2015 at 02:27:21PM GMT, Stefan Wollny wrote:
> Am 11/18/15 um 01:43 schrieb Daniel Wilkins:
> >When I try to play sounds on my Thinkpad T430 I find that the audio's rather
> >quiet, I've experimented a bit and found that at about 170 (mixerctl
> >outputs.master=170) the volume stops increasing. It just stays constant from
> >170 to 255, or at least the change is so quiet that I can't hear it. I've 
> >looked
> >around in the driver a little bit, but I'm no kernel hacker, the only thing I
> >noticed that might help is that for a few widgets outamp (I'm assuming output
> >amplify?) is muted.
> >
> 
> Check the following:
> $ mixerctl outputs.master
> 
> Most likely it is s.th. like "120,120". Try setting it to "245,245" (either
> with doas/sudo or su to root).
> 
> If it fits your needs, cp mixerctl.conf from /etc/examples to /etc and set
> the variable accordingly to make this setting permanent.

Stefan, the OP already mentioned (see above) that he had already tried
that and it stays constant.

On my machine, increasing the volume on 'outputs.mixY', where 'Y' is
'2', did the trick.

Setting 'outputs.hp_boost=on' (for headphones) may increase the volume
further.

Regards,

Raf



Re: Networking Menu option during boot

2015-11-04 Thread Raf Czlonka
On Wed, Nov 04, 2015 at 05:12:48PM GMT, J. Scott Heppler wrote:
> On Nov 04, 2015: 11:35, Jiri B wrote:
> >On Wed, Nov 04, 2015 at 07:08:54AM -0800, J. Scott Heppler wrote:
> >>[...]
> >>The bsd.rd install option already pauses the kernel and displays a
> >>network configuration script.  Would it be possible to provide a
> >>similiar option in OpenBSD?
> >
> >bsd.rd doesn't pause the kernel, installer is called from init,
> >iiuc it is dot.profile and then based on users input or if there's
> >autoinstall mode it starts particular mode.
> >
> >you can put in rc.local whatever you want.
> >
> >j.
> 
> You are right, the bsd.rd install options pauses the boot process.
> Still, I think it would be cleaner for those with mobile devices, to
> establish their desired connection directly as opposed to establishing
> the default, taking it down, clearing keys in the case of wireless, and
> bringing it back up.

Scott, why would you want to do that?

Search the list or OpenBSD Journal - there are plethora of scripts for
managing wireless networks to choose from or you can write your own.

Regards,

Raf



Re: no connectiion to phone's AP

2015-11-03 Thread Raf Czlonka
On Tue, Nov 03, 2015 at 12:59:58PM GMT, misc nick wrote:
> I can't connect my Thinkpad x220 to my phone's hotspot (WPA2-PSK). I'm using 
> OpenBSD 5.8/amd64.
> 
> Before everything, i did a fw_update.
> 
> Then i created a hostname.iwn0 file:
> 
> nwid myid
> wpakey mykey
> dhcp
> 
> and then 
> # ifconfig iwn0 up
> 
> # ifconfig
> ...
> iwn0: flags=8843 mtu 1500
> lladdr 00:20:17:76:98:54
> priority: 4
> groups: wlan
> media: IEEE802.11 autoselect (DS1 mode 11g)
> status: active
> ieee80211: nwid "SOME OTHER NEARBY WIFI" chan 11 bssid 
> 14:76:12:23:65:12 -83dBm
> ...
> 
> It didn't work. As you can see it actually lists a nearby wifi hotspot.

Because it won't - 'up' only brings the interface up.

> Then i tried this http://marc.info/?l=openbsd-misc=142197120017573=2 :
> 
> # ifconfig iwn0 down
> # ifconfig iwn0 nwid myid wpakey mykey
> # ifconfig iwn0 up
> # ifconfig
> ...
> iwn0: flags=8843 mtu 1500
> lladdr 00:20:17:76:98:54
> priority: 4
> groups: wlan
> media: IEEE802.11 autoselect (DS1 mode 11g)
> status: active
> ieee80211: nwid myid chan 6 bssid 34:22:11:ab:65:02 -42dBm wpakey 
> 0x2342342somehex987987 wpaprotos wpa1,wpa2 wpaakms psk wpaciphers tkip,ccmp 
> wpagroupcipher tkip
> ...
> 
> Again no deal.

What do you mean by "no deal" - it's clearly connected to 'myid'?

Have you forgotten to run:

dhclient iwn0

?

BTW, if you'd like to make sure it works as intended, after creating
'/etc/hostname.if' file, you can simply used:

sh /etc/netstart if

to configure the interface 'if'.

> The strange thing is that it doesn't connect to my phone's AP even if there 
> is no encrytpion (open).
> 
> Any clues?

If the above doesn't work, please double-check your phone AP
configuration.

Regards,

Raf

> Obligatory dmesg:
> OpenBSD 5.8 (RAMDISK_CD) #1142: Sun Aug 16 02:36:04 MDT 2015
> dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/RAMDISK_CD
> real mem = 8451125248 (8059MB)
> avail mem = 8193282048 (7813MB)
> mainbus0 at root
> bios0 at mainbus0: SMBIOS rev. 2.6 @ 0xdae9c000 (64 entries)
> bios0: vendor LENOVO version "8DET70WW (1.40 )" date 05/14/2015
> bios0: LENOVO 4291BD2
> acpi0 at bios0: rev 2
> acpi0: tables DSDT FACP SLIC SSDT SSDT SSDT HPET APIC MCFG ECDT ASF! TCPA 
> SSDT SSDT DMAR UEFI UEFI UEFI
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz, 797.54 MHz
> cpu0: 
> FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE,SSE3,PCLMUL,DTES64,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,POPCNT,DEADLINE,AES,XSAVE,AVX,NXE,LONG,LAHF,PERF,ITSC,SENSOR,ARAT
> cpu0: 256KB 64b/line 8-way L2 cache
> cpu0: apic clock running at 99MHz
> cpu0: mwait min=64, max=64, C-substates=0.2.1.1.2, IBE
> cpu at mainbus0: not configured
> cpu at mainbus0: not configured
> cpu at mainbus0: not configured
> ioapic0 at mainbus0: apid 2 pa 0xfec0, version 20, 24 pins
> acpiec0 at acpi0
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus -1 (PEG_)
> acpiprt2 at acpi0: bus 2 (EXP1)
> acpiprt3 at acpi0: bus 3 (EXP2)
> acpiprt4 at acpi0: bus 5 (EXP4)
> acpiprt5 at acpi0: bus 13 (EXP5)
> acpiprt6 at acpi0: bus -1 (EXP7)
> pci0 at mainbus0 bus 0
> pchb0 at pci0 dev 0 function 0 "Intel Core 2G Host" rev 0x09
> vga1 at pci0 dev 2 function 0 "Intel HD Graphics 3000" rev 0x09
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> "Intel 6 Series MEI" rev 0x04 at pci0 dev 22 function 0 not configured
> em0 at pci0 dev 25 function 0 "Intel 82579LM" rev 0x04: msi, address 
> f0:de:f1:75:23:67
> ehci0 at pci0 dev 26 function 0 "Intel 6 Series USB" rev 0x04: apic 2 int 16
> usb0 at ehci0: USB revision 2.0
> uhub0 at usb0 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> "Intel 6 Series HD Audio" rev 0x04 at pci0 dev 27 function 0 not configured
> ppb0 at pci0 dev 28 function 0 "Intel 6 Series PCIE" rev 0xb4: msi
> pci1 at ppb0 bus 2
> ppb1 at pci0 dev 28 function 1 "Intel 6 Series PCIE" rev 0xb4: msi
> pci2 at ppb1 bus 3
> iwn0 at pci2 dev 0 function 0 "Intel Centrino Ultimate-N 6300" rev 0x35: msi, 
> MIMO 3T3R, MoW, address 00:24:d7:59:08:50
> ppb2 at pci0 dev 28 function 3 "Intel 6 Series PCIE" rev 0xb4: msi
> pci3 at ppb2 bus 5
> ppb3 at pci0 dev 28 function 4 "Intel 6 Series PCIE" rev 0xb4: msi
> pci4 at ppb3 bus 13
> sdhc0 at pci4 dev 0 function 0 "Ricoh 5U822 SD/MMC" rev 0x07: apic 2 int 16
> sdmmc0 at sdhc0
> ehci1 at pci0 dev 29 function 0 "Intel 6 Series USB" rev 0x04: apic 2 int 23
> usb1 at ehci1: USB revision 2.0
> uhub1 at usb1 "Intel EHCI root hub" rev 2.00/1.00 addr 1
> "Intel QM67 LPC" rev 0x04 at pci0 dev 31 function 0 not configured
> ahci0 at pci0 dev 31 function 2 "Intel 6 Series AHCI" rev 0x04: msi, AHCI 1.3
> ahci0: port 

Re: Firefox Worked Slowly...

2015-11-02 Thread Raf Czlonka
On Mon, Nov 02, 2015 at 08:47:44AM GMT, Mohammad BadieZadegan wrote:

> Hi everybody,

Hi Mohammad,

> I was installed OpenBSD on many Servers that have more CPU types but on
> every of them while I worked with firefox it handle websites very slowly!
> My Network bandwiths is not bad.
> Is that Firefox needs some special configure on OpenBSD?
> Or The better way is using another browser such as midori?
> What can I do?

You can start with sending which versions of both OpenBSD and Firefox
you are running.

If it's -current, then it _might_ be related to recent W^X changes[0].

Regards,

Raf

[0] https://marc.info/?l=openbsd-ports=144498530102271



Re: How to restart wifi net after suspend to ram

2015-10-30 Thread Raf Czlonka
On Sat, Oct 31, 2015 at 04:52:19AM GMT, Артур Истомин wrote:

> I have usb wifi dongle. Every time after suspend to ram I should 
> manualy restart it with command "sh /etc/netstart urtwn0"
> 
> Is it possible automaticaly restart it?

Put it in a shell script called /etc/apm/resume.

---
#!/bin/sh

sleep 5 # adjust to your needs
/bin/sh /etc/netstart urtwn0
---

Regards,

Raf

P.S. man 8 apmd :^)



Re: openup and OpenBSD ftp and pkg_add via proxy

2015-10-30 Thread Raf Czlonka
On Sat, Oct 31, 2015 at 12:39:38AM GMT, Steve Shockley wrote:
> I'm trying to get openup to work through a proxy.  I'm able to get it to
> work through an antique Bluecoat proxy, but it fails using a Websense
> Content Gateway (more or less Inktomi/Apache Traffic Server) or a Fortigate
> firewall device.  I'm using 5.8-stable, and this happened on earlier
> releases as well.  If I try pkg_add with curl or wget it always works, but
> openup makes it difficult to use anything but ftp.  (You can set FETCH in
> openup.conf, but it gets reset in line 249.  It also doesn't appear to pass
> the FETCH_CMD environment variable to pkg_add.)
> 
> Anyway, if I run:
> # export PKG_PATH=https://stable.mtier.org/updates/$(uname -r)/$(arch
> -s):ftp://mirrors.nycbug.org/pub/OpenBSD/$(uname -r)/packages/$(arch -s)
> # pkg_add -v binpatch58-amd64-kernel binpatch58-amd64-libcrypto
> binpatch58-amd64-smtpd binpatch58-amd64-sshd binpatch58-amd64-sslhello
> 
> it sits for a minute and I get:
> Update candidates: quirks-2.114 -> quirks-2.114
> quirks-2.114 signed on 2015-08-09T11:57:52Z
> No change in quirks-2.114
> parsing binpatch58-amd64-kernel-2.0
> Error from
> https://stable.mtier.org/updates/5.8/amd64/binpatch58-amd64-kernel-2.0.tgz
> ftp: connect: Connection timed out
> Can't find CONTENTS from
> https://stable.mtier.org/updates/5.8/amd64/binpatch58-amd64-kernel-2.0.tgz
> parsing binpatch58-amd64-libcrypto-1.0p0
> Error from 
> https://stable.mtier.org/updates/5.8/amd64/binpatch58-amd64-libcrypto-1.0p0.tgz
> ftp: SSL read error: 4294967295
> Can't find CONTENTS from 
> https://stable.mtier.org/updates/5.8/amd64/binpatch58-amd64-libcrypto-1.0p0.tgz
> parsing binpatch58-amd64-smtpd-1.0
> No change in binpatch58-amd64-smtpd-1.0
> parsing binpatch58-amd64-sshd-1.0
> ^C
> 
> With more verbose ftp and less verbose pkg_add:
> # export FETCH_CMD='/usr/bin/ftp -v'
> # pkg_add -ui
> quirks-2.114 signed on 2015-08-09T11:57:52Z
> Error from 
> ftp://mirrors.nycbug.org/pub/OpenBSD/5.8/packages/amd64/apache-httpd-openbsd-1.3.20140502p4.tgz
> ftp: connect: Connection timed out
> ^C
> 
> Note that the proxy thought the transaction was successful:
> a.b.c.d - - [30/Oct/2015:15:20:15 -0500] "GET 
> ftp://mirrors.nycbug.org/pub/OpenBSD/5.8/packages/amd64/apache-httpd-common-2.4.16.tgz
> HTTP/1.0" 200 160810 000 0 0 0 128 195 0 0 0
> 
> I can always download the files using ftp, I only have problems when using
> pkg_add.
> 
> What else can I do to diagnose?  Thanks.

Hi Steve,

You hadn't mentioned it and I don't have a proxy at hand to test it, but
won't either simply honour the "http_proxy" environment variable?

Regards,

Raf



Re: Upgrade from 5.7 to 5.8 : bsd.rd doesn't complete boot

2015-10-19 Thread Raf Czlonka
On Mon, Oct 19, 2015 at 09:50:22PM BST, Jean-Philippe Provost wrote:

> Hi,

Hi,

> I don't have any CD. I just downloaded the bsd.rd for 5.8 and it wont
> boot and ask what I want to do.

What do you mean by that?

Does it give you the options to install, upgrade, etc.?

Does it look anything like described in the FAQ[0]?

> Since I have 5.7 installed on it, the dmesg I got is the one from 5.7
> boot and not bsd.rd (5.8) boot.
>
> Am I clear?

No, not really.

Raf

[0] http://www.openbsd.org/faq/faq4.html#InstStart



Re: mk.conf in examples?

2015-10-16 Thread Raf Czlonka
On Fri, Oct 16, 2015 at 07:17:49AM BST, Jan Stary wrote:

> Should mk.conf(5) be present in /etc/examples, or is it not there on
> purpose?

Hi Jan,

After hier(7):

/etc/   System configuration files and scripts.
...
examples/   Example configuration files for base system daemons.

So I don't think so :^)

Raf



Re: CD's arrived

2015-10-07 Thread Raf Czlonka
On Wed, Oct 07, 2015 at 03:51:28PM BST, M Wheeler wrote:

> CD's arrived today UK. Thanks again.

Got mine today, too :^)

Raf



Re: IKED and encapsulated peers

2015-10-06 Thread Raf Czlonka
On Mon, Oct 05, 2015 at 07:52:28PM BST, Jason Tubnor wrote:
> On 5 October 2015 at 22:00, Jason Tubnor  wrote:
> 
> >
> > Solved!
> >
> >
> > I have attached a man 5 iked.conf patch that clears up an example used in
> > the man page.
> >
> 
> The gz diff was stripped by demime, here is the flat text patch file.
> 
> Cheers,
> 
> Jason.
> 
> [demime 1.01d removed an attachment of type application/octet-stream which 
> had a name of iked.conf.5.patch]
> 

Jason,

The only OpenBSD mailing list which permits attachments is ports@[0].
On all the other ones demime strips *any* kind of attachments from
emails sent there.

It is customary to include patches or config files in-line.

Regards,

Raf

[0] http://www.openbsd.org/mail.html



Re: OpenBGPd SNMP

2015-10-04 Thread Raf Czlonka
On Sun, Oct 04, 2015 at 09:59:24PM BST, Mike Hammett wrote:

> Are there any packages out there that expose OpenBGPd or other OpenBSD
> parameters via SNMP? Would like to check generic health of the system,
> number of routes, number of peers, number of routes per peer, etc.

ls /usr/share/snmp/mibs

Raf



Re: Does majordomo support 'no mail delivery subscription'?

2015-09-27 Thread Raf Czlonka
On Sun, Sep 27, 2015 at 10:40:18AM BST, Adam wrote:

> In more detail: The OpenBSD mailing lists, which use (end of
> development, as stated in my link) Majordomo does not provide for a
> 'vacation hold' feature (a useful feature), which most or all current
> mailing list software provide.

It does - log in, go to "Unsubscribe or Change Settings", select a list
and change "each message as it is posted" to "no messages"... unless
this is not what you had in mind.

Raf



Re: OT: Exists some problem with dnscrypt-proxy package?

2015-09-20 Thread Raf Czlonka
On Sun, Sep 20, 2015 at 06:04:19PM BST, C.L. Martinez wrote:
> Hi all,
> 
>  I have installed an openbsd 5.7 VM today to do some tests with pf rules.
> One of the components to I need to enable in this gateway is
> unbound+dnscrypt-proxy.
> 
>  I have configured forwarding in unbound.conf:
> 
>  forward-zone:
> name: "."
> forward-addr: 127.0.0.1@4553
> 
>  And I have started dnscypt-proxy with the following arguments:
> 
> -d --user=_dnscrypt-proxy -a 127.0.0.1:4553 -R dnscrypt.eu-nl -p
> /var/run/dnscrypt-proxy.pid
> 
>  Output:
> 
> 32032 ??  Is  0:00.00 /usr/sbin/ftp-proxy -m 25
> 32411 ??  Is  0:00.00 /usr/local/sbin/dnscrypt-proxy -d
> --user=_dnscrypt-proxy -a 127.0.0.1:4553 -R dnscrypt.eu-nl -p
> /var/run/dnscrypt-proxy.pid
>  5667 ??  I   0:00.03 /usr/local/sbin/dnscrypt-proxy -d
> --user=_dnscrypt-proxy -a 127.0.0.1:4553 -R dnscrypt.eu-nl -p
> /var/run/dnscrypt-proxy.pid
>  1256 ??  Is  0:00.00 /usr/sbin/cron
> 17818 ??  Ss  0:00.12 sshd: root@ttyp0 (sshd)
>   527 ??  Is  0:00.05 unbound -c /var/unbound/etc/unbound.conf
> 30164 p0  Ss  0:00.02 -ksh (ksh)
>  7382 p0  R+  0:00.00 ps -xa
> 16881 C0  Is+ 0:00.00 /usr/libexec/getty std.9600 ttyC0
>  3047 C1  Is+ 0:00.00 /usr/libexec/getty std.9600 ttyC1
> 
>  And it doesn't works. But if I change unbound's forward section to:
> 
> forward-zone:
> name: "."
> #forward-addr: 127.0.0.1@4553
> forward-addr: 8.8.8.8
> 
>  Works ok. Removing all forward seciton, unbound works ok also. Then, I am
> doing something wrong but I don't know which.
> 
>  Any idea??

dnscypt-proxy, being a package daemon, is started *after* unbound (base
early daemon)?

Raf



Re: mixerctl in /etc/apm/resume with USB headset

2015-09-19 Thread Raf Czlonka
On Sat, Sep 19, 2015 at 04:00:38PM BST, Ingo Feinerer wrote:

> I am not able to set my headphone volume via /etc/apm/resume after
> suspending.
> [...]
> Ideas?

Ooops, I read the above and only I had sent the email I re-read the
subject - most likely your USB headset is not initialised before the
resume script is being run. Put 'sleep 5' (adjust the time to your
needs[0]) before 'mixerctl' command.

That should do it.

Raf

[0] my USB WiFi dongle needs about 3 seconds before it re-attaches



  1   2   >