Re: php5 package, no zip support?

[Xavier Milliès-Lacroix]

Use PECL http://pecl.php.net/package/zip

The last version is :1.10.2

The last time I used it 1.8.10 :

cd tmp

ftp http://pecl.php.net/get/zip-1.8.10.tgz

tar xvzf zip-1.8.10.tgz

cd zip-1.8.10

 ./configure   make   make install



Make a new file : /var/www/conf/php5/zip.ini

extension=zip.so



apachectl stop

apachectl start



Xavier.

2009/2/16 Daniel Polak dan...@sys.nl

 I have php5-core-5.2.6p0 installed on an OpenBSD system and am having
 trouble using the zip functionality of PHP.

 The line
 $zip = new ZipArchive;
 results in this error:
 *Fatal error*: Class 'ZipArchive' not found

 Apparently PHP has to be compiled with zip support.

 Could somebody who knows more about the PHP5 port tell me how enable zip
 support?


 Daniel

Import (export.dat)

[Xavier Milliès-Lacroix]

Exemple de problhme rencontri sur un import (up4o.php).
Il faut me remonter ce type de problhme pour correction

ERREUR : SQLSTATE[22001]: String data, right truncated: 7 ERROR:  value too
long for type character varying(10)ligne : 5
INSERT INTO optiscan_productor
(id,productor,comment,conge,created_at,created_by,updated_at,updated_by)
VALUES('{5a54d779-3300-49cc-af79-e58b67ee545e}','11R171',null,'B. ET JP.
FAIXO','2009-02-12
11:47:21','{c04d7ebd-a358-4b4e-89db-60c765471f93}','2009-02-12
11:47:21','{c04d7ebd-a358-4b4e-89db-60c765471f93}');

Ici c'est le code congi et le nom du producteur qui ont ite inversis...
C'est corrigi.

Par aileurs, ce producteur a iti ricrie lors de la viste 1 minute aprhs, il
faudra ` l'occasion faire du minage :
  idhttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallowdata
base=optiscanschema=publictable=optiscan_productorsubject=tablereturn_url
=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3Doptisc
an%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=1sortdir=ascstrings=c
ollapsedpage=13
productorhttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallow
database=optiscanschema=publictable=optiscan_productorsubject=tableretur
n_url=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3Do
ptiscan%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=2sortdir=ascstri
ngs=collapsedpage=13
commenthttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallowd
atabase=optiscanschema=publictable=optiscan_productorsubject=tablereturn_
url=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3Dopt
iscan%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=3sortdir=ascstring
s=collapsedpage=13
congehttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallowdat
abase=optiscanschema=publictable=optiscan_productorsubject=tablereturn_ur
l=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3Doptis
can%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=4sortdir=ascstrings=
collapsedpage=13
created_athttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallo
wdatabase=optiscanschema=publictable=optiscan_productorsubject=tableretu
rn_url=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3D
optiscan%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=5sortdir=ascstr
ings=collapsedpage=13
created_byhttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallo
wdatabase=optiscanschema=publictable=optiscan_productorsubject=tableretu
rn_url=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3D
optiscan%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=6sortdir=ascstr
ings=collapsedpage=13
updated_athttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallo
wdatabase=optiscanschema=publictable=optiscan_productorsubject=tableretu
rn_url=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3D
optiscan%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=7sortdir=ascstr
ings=collapsedpage=13
updated_byhttp://optiscan.fr/4pgs/display.php?server=127.0.0.1%3A5432%3Aallo
wdatabase=optiscanschema=publictable=optiscan_productorsubject=tableretu
rn_url=tables.php%3Fserver%3D127.0.0.1%253A5432%253Aallow%26amp%3Bdatabase%3D
optiscan%26amp%3Bschema%3Dpublicreturn_desc=Retoursortkey=8sortdir=ascstr
ings=collapsedpage=13
56fe264a-e3d7-47bc-ac2a-9f4d3ca53ba0 B. et JP. Faixo *NULL* 11R171 2009-02-12
11:48:08 c04d7ebd-a358-4b4e-89db-60c765471f93 2009-02-12 11:48:08
c04d7ebd-a358-4b4e-89db-60c765471f93 5a54d779-3300-49cc-af79-e58b67ee545e B.
ET JP. FAIXO *NULL* 11R171 2009-02-12 11:47:21
c04d7ebd-a358-4b4e-89db-60c765471f93 2009-02-12 11:47:21
c04d7ebd-a358-4b4e-89db-60c765471f93

*Par ailleurs, il est impiratif de n'uploader le fichier export.dat qu'une
seule fois ...*

Xavier.

Re: pppoe0 doesn't get ip address - how to reconnect ?

[Xavier Milliès-Lacroix]

The soekris box seems now working. I have to wait several days...
I just add in the file : /etc/rc.shutdown
ifconfig pppoe0 down

Thanks a lot all for your help.

I 'll have a look also for PPOE_TERM_UNKNOWN_SESSIONS

Regards.

Xavier.

2008/7/17 Vadim Zhukov [EMAIL PROTECTED]:

 15 July 2008 c. 14:57:58 Henning Brauer wrote:
  * Xavier Millihs-Lacroix [EMAIL PROTECTED] [2008-07-15
 09:02]:
   Sometimes when I boot a soekris box (net5501) - OpenBSD 4.3, I
   didn't get each times an ip address for the pppoe0 link.
   This is a problem as I can connect to this box only remotely.
   I didn't find on the documentation how to reconnect automatically if
   the link goes down.
 
  pppoe automagically reconnects.
 
  many ISPs have some logic to deny you from opening two ppp sessions,
  so by the time your box reboots the old sessions has not yet timed
  out. You can't do all that much but waiting for the old session to
  expire, pppoe will retry all the time.

 Search for PPPOE_TERM_UNKNOWN_SESSIONS kernel option. I have such
 provider, and this option helps a lot.

 BTW: Is there any point to translate this knob to interface linkN flag?

 --
  Best wishes,
 Vadim Zhukov

pppoe0 doesn't get ip address - how to reconnect ?

[Xavier Milliès-Lacroix]

Sometimes when I boot a soekris box (net5501) - OpenBSD 4.3, I didn't get
each times an ip address for the pppoe0 link.
This is a problem as I can connect to this box only remotely.
I didn't find on the documentation how to reconnect automatically if the
link goes down.

Any ideas ?

Xavier.


Here is my configuration :

/etc/sysctl.conf file :

net.inet.ip.forwarding=1
net.inet6.ip6.forwarding=1

/etc/rc.conf.local file :

named_flags=  # nameserver

ntpd_flags=  # timeserver

dhcpd_flags=   # DHCP server

ftpproxy_flags= # ftp proxy server

pf=YES

pf_rules=/etc/pf.conf

check_quotas=NO  # desactivate quotas

/etc/resolv.conf file :

lookup file bind

nameserver 127.0.0.1

*/etc/hostname.pppoe0 file file :*

inet 0.0.0.0 255.255.255.255 0.0.0.1 pppoedev vr0 \

authproto pap authname my_USER authkey my_PASSWORD up

!/sbin/route add default 0.0.0.1

*/etc/hostname.**vr0 file :*

up

*
*

*/etc/hostname.**vr1 file :*

inet 10.0.0.1 255.255.255.0 NONE

I don't have /etc/mygate file.
I don't have /var/named/named.boot file
I use pf.

Re: pppoe0 doesn't get ip address - how to reconnect ?

[Xavier Milliès-Lacroix]

Thanks a lot.
I will make some tests this evening.

 pppoe automagically reconnects
So if my ip change I still have to reload pf ? using ppp.linkdown ?

Xavier.

2008/7/15 Henning Brauer [EMAIL PROTECTED]:

 * Xavier Millihs-Lacroix [EMAIL PROTECTED] [2008-07-15 09:02]:
  Sometimes when I boot a soekris box (net5501) - OpenBSD 4.3, I didn't get
  each times an ip address for the pppoe0 link.
  This is a problem as I can connect to this box only remotely.
  I didn't find on the documentation how to reconnect automatically if the
  link goes down.

 pppoe automagically reconnects.

 many ISPs have some logic to deny you from opening two ppp sessions,
 so by the time your box reboots the old sessions has not yet timed
 out. You can't do all that much but waiting for the old session to
 expire, pppoe will retry all the time.

 --
 Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
 BS Web Services, http://bsws.de
 Full-Service ISP - Secure Hosting, Mail and DNS Services
 Dedicated Servers, Rootservers, Application Hosting - Hamburg  Amsterdam

Re: pppoe0 doesn't get ip address - how to reconnect ?

[Xavier Milliès-Lacroix]

2008/7/15 Henning Brauer [EMAIL PROTECTED]:

 * Xavier Millihs-Lacroix [EMAIL PROTECTED] [2008-07-15 14:15]:
   pppoe automagically reconnects
  So if my ip change I still have to reload pf ?

 not if you write your pf.conf correctly

 Here is my actual version. I 'will add later spamd, sshbruteforece.
Do you think my pf.conf is correct ?

Xavier.

 # macros

ext_if=pppoe0

int_if=vr1



tcp_services={ 22, 113 }

icmp_types=echoreq



comp3=192.168.1.2



# options

set block-policy return

set loginterface $ext_if



set skip on lo



# scrub

scrub in



# nat/rdr

nat on $ext_if from !($ext_if) - ($ext_if:0)

nat-anchor ftp-proxy/*

rdr-anchor ftp-proxy/*



rdr pass on $int_if proto tcp to port ftp - 127.0.0.1 port 8021

rdr on $ext_if proto tcp from any to any port 80 - $comp3



# filter rules

block in



pass out keep state



anchor ftp-proxy/*

antispoof quick for { lo $int_if }



pass in on $ext_if inet proto tcp from any to ($ext_if) \

   port $tcp_services flags S/SA keep state



pass in on $ext_if inet proto tcp from any to $comp3 port 80 \

flags S/SA synproxy state



pass in inet proto icmp all icmp-type $icmp_types keep state



pass in quick on $int_if





/etc/pf.conf

# macros

ext_if=pppoe0

int_if=vr1



tcp_services={ 22, 113, 443 }

icmp_types=echoreq



srvexchange=192.168.1.2

tcp_srvexchange={ 25, 110, 1024 }

srvfiles=192.168.1.10

tcp_srvfiles={ 873, 3389 }



# options

set block-policy return

set loginterface $ext_if



set skip on lo



# scrub

scrub in



# nat/rdr

nat on $ext_if from !($ext_if) - ($ext_if:0)

nat-anchor ftp-proxy/*

rdr-anchor ftp-proxy/*



rdr pass on $int_if proto tcp to port ftp - 127.0.0.1 port 8021



rdr on $ext_if proto tcp from any to any port $tcp_srvfiles - $srvfiles

rdr on $ext_if proto tcp from any to any port $tcp_srvexchange -
$srvexchange



# filter rules

block in



pass out keep state



anchor ftp-proxy/*

antispoof quick for { lo $int_if }



pass in on $ext_if inet proto tcp from any to ($ext_if) \

   port $tcp_services flags S/SA keep state



pass in on $ext_if inet proto tcp from any to $srvfiles port $tcp_srvfiles \

flags S/SA synproxy state

pass in on $ext_if inet proto tcp from any to $srvexchange port
$tcp_srvexchange \

flags S/SA synproxy state



pass in inet proto icmp all icmp-type $icmp_types keep state



pass in quick on $int_if

Re: Remote Admin Card - Dell DRAC or HP ILO2 ?

[Xavier Milliès-Lacroix]

Hello,

I'm not sure but advanced ilo provides remote cd/dvd/floppy ?
Is it true ?

Xavier.


2008/2/22, Joe Warren-Meeks [EMAIL PROTECTED]:

 On Thu, Feb 21, 2008 at 08:10:16PM +0100, Nick Nauwelaerts wrote:

  I don't really see how this is related to openbsd, but ilo2 wins hands
  down to drac, but has a costly advanced license.
  Installing openbsd through ilo2 virtual cd works just fine btw.

 I thought you only needed the license if you used higher resolutions
 than a basic console. If you are just using text mode on the console,
 then they work excellently.

 I've used both with OpenBSD firewalls and infinitely prefer the HP ones.

 -- joe.

 Jennifer's dad sent her a nice cuddly cat, so that's nice.

Remote Admin Card - Dell DRAC or HP ILO2 ?

[Xavier Milliès-Lacroix]

Who wins in the OpenBSD world? DRAC (Dell Remote Admin Card) or iLo  (HP's
Integrated Lights Out) (or better ilo2) ?

We're looking at new servers and are wondering if these are worth the cash,
or which is the one to go for ?

I see some problem with ILO2 on HP DL320 G5 (/G5p ?).

We need to be able to do 'quite' everything remotely (from installing
(virtual floppy / cd / dvd) to exploitation).

Regards.

Re: Remote Admin Card - Dell DRAC or HP ILO2 ?

[Xavier Milliès-Lacroix]

I really like PXE too.
But the servers to be administrate remotely would be the firewalls (two in
carp association).

Xavier

2008/2/21, Jussi Peltola [EMAIL PROTECTED]:

 On Thu, Feb 21, 2008 at 07:01:21PM +0100, Xavier Millihs-Lacroix wrote:
  We need to be able to do 'quite' everything remotely (from installing
  (virtual floppy / cd / dvd) to exploitation).

 I prefer PXE booted bsd.rd and a serial console, with BIOS serial
 redirection it is quite close to a LOM module and does the things it can
 do extremely reliably.

Re: Remote Admin Card - Dell DRAC or HP ILO2 ?

[Xavier Milliès-Lacroix]

I really like PXE too.
But the servers to be administrate remotely would be the firewalls (two in
carp association).

Xavier

Re: Remote Admin Card - Dell DRAC or HP ILO2 ?

[Xavier Milliès-Lacroix]

You are right.

I think I'll put a box like soekris in front of ILO ports to prevent hack on
ILO 
By this way I 'll be able to push CD / floppy image to the HP's servers.
During upgrade of the soerkis box. I'll use the firewall server COM port and
PXE if I should do a full reinstall.

Xavier.


2008/2/21, Jussi Peltola [EMAIL PROTECTED]:

 On Thu, Feb 21, 2008 at 07:50:52PM +, Stuart Henderson wrote:
  I normally go for the time-honoured serial console to a box running
  conserver and a masterswitch though (on a separate lan: you don't
  really want this sort of thing, ILO/DRAC or masterswitch or IP KVM
  or whatever else, on your main lan unprotected).
 And it's supposed to be out of band and not shared with the main
 network to be really useful when you need it.

 Serial consoles are easily accessed with a telephone modem connected to
 the console server, redundant networking is much more complex (and I'd
 say less foolproof).

 --
 Jussi Peltola

Re: Server room temperature sensors

[Xavier Milliès-Lacroix]

Hello,

There are some kits (with DB9 connector / RS232) that can follow up to 4
sensors for $ 40-45 /  30 .
It 's very fast to built it.

You get one mesure per second on the /dev/ttyX

And after you can use rrdtool to have nive graphs.

Regards.

Xavier


2008/2/11, Bill [EMAIL PROTECTED]:

 On Wed, 6 Feb 2008 23:07:01 -0800
 Joe [EMAIL PROTECTED] spake:

  Can anyone recommend a server room temperature sensor that I can use
  with openbsd?
 
  I want to monitor temperature and humidity.
 
  I hope to graph the data from the sensor.
 
  The sensor can be connected to my openbsd via usb, serial, or even
  network.
 

 I've used AVTECH in a few of my rooms.  I think the cheapest is around
 $240 maybe... bigger models can handle everything from smoke, to noise,
 etc...

 Read them via SNMP tied to nagios.  Works good, the basic model comes
 with a temp sensor in the unit and a 25' (I believe) lead to a remote
 sensor.

 I also have some NetBotz, and while expensive are pretty cool -
 airflow, noise, temp, humidity, door sensor, camera, etc...  Nice if
 your not spending out of pocket eh...

Serial port (RS232) on USB port

[Xavier Milliès-Lacroix]

Hello,

I want add one or several serial / rs232 connectors on a OpenBSD box
(Soekris or standard PC) - without adding a PCI card - just converter.
I search compatibles products. When we buy product we don't know the chip.

Do you have good experiences ?


I have an converter, here an excerpt dmesg and usbdevs :


uftdi0 at uhub0 port 2
uftdi0: FTDI FT232R USB UART, rev 2.00/6.00, addr 3
ucom0 at uftdi0 portno 1

# usbdevs -dv
Controller /dev/usb0:
addr 1: full speed, self powered, config 1, UHCI root hub(0x),
Intel(0x8086), rev 1.00
  uhub0
 port 1 addr 2: low speed, power 100 mA, config 1, NetScroll(0x0035),
Genius(0x0458), rev 1.10
   uhidev0
 port 2 addr 3: full speed, power 90 mA, config 1, FT232R USB UART(0x6001),
FTDI(0x0403), rev 6.00
   uftdi0
-
 I think tJhe FT232R USB UART is the /dev/ttyU0 device.
But I can't talk witj it (in or out).

# stty -f /dev/ttyU0
ispeed 0 baud; ospeed 9600 baud;
lflags: echoe echoke echoctl
cflags: cs8 -parenb

Any ideas ?
On another box I was using tip for receiving caracters.

Xavier.

Re: Annoying echoes in console DRAC III/XT on DELL Poweredge

[Xavier Milliès-Lacroix]

Sorry for the delay.

In the BIOS I have found, 'USB Controller' with 3 options :
 Sets the USB controller to On with BIOS Support, On Without BIOS
Support, or Off. If you have a PS/2 keyboard attached, On Without BIOS
Support disables BIOS USB support. If you do not have a PS/2 keyboard
attached and select On Without BIOS Support, USB mouse and keyboard devices
function only during the boot process. When set to On With BIOS Support, USB
mouse and keyboard devices are controlled by the BIOS until an operating
system driver is loaded. 

But none are working.

Any other ideas ?

-Message d'origine-
De : Brian A. Seklecki [mailto:[EMAIL PROTECTED] 
Envoyi : lundi 5 dicembre 2005 02:11
@ : Xavier Millihs-Lacroix
Cc : misc@openbsd.org
Objet : Re: Annoying echoes in console DRAC III/XT on DELL Poweredge

The thing emulates a USB keyboard.  Trying toggling legacy emulation mode in
the BIOS.

~BAS

On Thu, 2005-12-01 at 03:55, Xavier Millihs-Lacroix wrote:
 Hello,
 
 I 'm trying to install OBSD 3.8 on a Dell Poweredge 750 server using 
 the Card DRAC III/XT (provides remote console/screen).
 But each time a ket is pushed I have the letter repetead on the console.
 I have put the last firmware for the DRAC Card.
 
 I have search by didn't find any answer 
 
 I can't install remotely OBSD !
 
 Do you have already met this issue ?
 
 Is it a java problem (the remote access is done via http and a java 
 virtual
 machine) ?
 
 Xavier.

Annoying echoes in console DRAC III/XT on DELL Poweredge

[Xavier Milliès-Lacroix]

Hello,

I 'm trying to install OBSD 3.8 on a Dell Poweredge 750 server using the Card
DRAC III/XT (provides remote console/screen).
But each time a ket is pushed I have the letter repetead on the console.
I have put the last firmware for the DRAC Card.

I have search by didn't find any answer 

I can't install remotely OBSD !

Do you have already met this issue ?

Is it a java problem (the remote access is done via http and a java virtual
machine) ?

Xavier.