Re: Pooomooocyyyy ;(
vocativus wrote: > Witam! > [...] > Moja obecna konfiguracja: > > Pł. główna: 939NF4G - SATA2 > Procesor: AMD Athlon 64 3200+ venice socket 939 > Karta graficzna - zintegrowana z płytą główną - GeForce 6100 - pamięć > 128MB > Karta sieciowa - zintegrowana z płytą główną - Realtek PHY RTL8201CL > Karta dźwiękowa - Realtek ALC850 7.1channel AC'97 audio codec > RAM - 768MB (128 zarezerwowane dla karty graficznej więc dostępne jest > 640MB RAM) > Wersja BIOS-u - P1.30 > > > I wziąłem wyczyszczony dysk (bez jakichkolwiek partycji) podłączony > jako jedyny dysk, po wybraniu opcji default boot, wybraniu opcji > standard, naciśnięciu ok w oknie gdzie pisze coś o fdisk-u, wybraniu > dysku - w moim przypadku ad0 wyświetla sie komunikat: > > > > Warning: A geometry of 77545/16/63 for ad0 is incorrect. Using a more > likely geometry. If this geometry is incorrect or you are unsure as to > whether or not it's correct, please consult the Hardware Guide in the > Documentation submenu or use the (G)eometry command to change it now > > Remember: you need to enter whatever your BIOS thinks the geometry is! > For IDE it's what yoy were told in the BIOS setup. For SCSI, it's the > translation mode your controller is using. Do NOT use a "physical geometry" > > > > I nic dałem na ok, rozplanowałem partycje dałem na instaluj i pojawił > mi się komunikat o błędzie, że nie można zapisać danych na dysk i na > tym koniec. Cześć vocativus, Nie wiem w czym tkwi problem, ale spróbuj zapytać na polskim forum systemów BSD: http://www.bsdguru.org/dyskusja/ Jeśli chciałbyś uzyskać pomoc na freebsd-questions (lub innych listach na freebsd.org) najlepiej pisać w języku angielskim. Pozdrawiam, Karol P.S. FreeBSD to nie jest Linux :) -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Firefox 1.5.0.1 port
Daniel Molina Wegener wrote: > Hello, > >I have installed the firefox 1.5.0.1 browser port -- the > latest version -- but everytime uses the pc speaker and I > get a constant "beep!, beep!, beep!". > >Anyone knows the solution to this problem?. > >I've searched in preferences and about:config url, but > nothing seems to be the right option to disable the constant > beep. Also, google doesn't have information about this problem. > > Best regards, Hello Daniel, did you compile the port with debug option enabled? It may explain that. Have a look at this thread: http://lists.freebsd.org/pipermail/freebsd-questions/2005-May/086951.html HTH, Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: shutdown not shutting down :-(
Matias Surdi wrote: > Hi, Linux-user, FreeBSD-newbie posting here. > > I've a recent installation of FreeBSD, and when I do > > # shutdown now > > It starts the shutdown process but it hangs promting for the shell path. > > I think that this could be something related to the order in which > partitions are unmounted. > > Any idea? Hi Matias, no, everything is OK. 'shutdown now' brings the system to 'single user' state. If you want to restart or power down the machine have a look at man 8 shutdown (especially '-p' or '-r' options). Also: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/boot-shutdown.html Best regards, Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: limiting brute force attacks
Michael P. Soulier wrote: > Hey people, > > I've seen some efforts from the netfilter community on Linux to provide a > means to limit brute-force attacks via firewall rules. Can anyone suggest a > way to do the same on FreeBSD? > > I'm primarily interested in limiting attacks on sshd. I already use RSA auth, > but I like defense-in-depth. Hi Michael, you can use pf firewall (probably others, too) to limit/refuse incoming connections. Have a look at Niki Denev's post @stable: http://lists.freebsd.org/pipermail/freebsd-stable/2006-February/022616.html Regards, Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Where am I? :)
Kövesdán Gábor wrote: > I don't use any log cleaner, I triggered this accidentally. Please read > the whole thread if you're interested or see this: > http://www.freebsd.org/cgi/query-pr.cgi?pr=94060 > > Gabor Kovesdan Looks similar to this: http://lists.freebsd.org/pipermail/freebsd-questions/2004-December/068201.html Regards, Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Where am I? :)
[format recovered] Oliver Leitner wrote: > Karol Kwiatkowski schrieb: >>> Kövesdán Gábor wrote: >>> >>>> I don't use any log cleaner, I triggered this accidentally. Please read >>>> the whole thread if you're interested or see this: >>>> http://www.freebsd.org/cgi/query-pr.cgi?pr=94060 >>>> >>>> Gabor Kovesdan >>> >>> Looks similar to this: >>> >>> http://lists.freebsd.org/pipermail/freebsd-questions/2004-December/068201.html >>> >>> Regards, >>> >>> Karol >>> > > Well, it could have different reasons then: > > 1. your box has been hacked, and you have a somewhat crippled login or > shell, try to replace that things with clean ones. > > 2. maybe there is something wrong with memory mapping, eventually diag > your ram, or build a new "kernel". > > 3. its just one of those accidently things that happen every 10 years > once... Very unlikely for various reasons: - it wasn't me who reported it back then (my post was basically "me too") - this is a test machine with one user, no direct connection, no daemons except secured ssh, rebuilding world every other day - the machine was running 5.x back then, now 6.1-PRERELEASE and I can reproduce this; in fact I can do that on 6.0-RELEASE, too: [the same procedure Gabor Kovesdan wrote, only it seems 'login as fake user' step is not needed] % [EMAIL PROTECTED] ssh -p 722 orchid % Password: % Last login: Sat Mar 4 12:05:43 2006 from blackacidevil.o % [...motd skiped...] % [EMAIL PROTECTED] uname -sr % FreeBSD 6.0-RELEASE-p2 % [EMAIL PROTECTED] w % 11:31AM up 11 days, 9:24, 1 user, load averages: 0.29, 0.21, 0.17 % USER TTY FROM LOGIN@ IDLE WHAT % karolp0 blackacidevil.or 11:31AM - w % [EMAIL PROTECTED] login % login: karol % Last login: Sun Mar 5 11:31:22 from blackacidevil.o % [...motd skiped...] % [EMAIL PROTECTED] w % 11:32AM up 11 days, 9:25, 1 user, load averages: 0.11, 0.17, 0.16 % USER TTY FROM LOGIN@ IDLE WHAT % karolp0 -11:32AM - w % [EMAIL PROTECTED] exit % [EMAIL PROTECTED] w % 11:32AM up 11 days, 9:25, 0 users, load averages: 0.11, 0.17, 0.16 % USER TTY FROM LOGIN@ IDLE WHAT % [EMAIL PROTECTED] Here, I disappeared from 'w's output. Root can't see me too: % [EMAIL PROTECTED] su - % Password: % orchid: Yes, Master? w % 11:35AM up 11 days, 9:28, 0 users, load averages: 0.53, 0.26, 0.19 % USER TTY FROM LOGIN@ IDLE WHAT Here's what last(1) prints: % orchid: Yes, Master? last % karolttyp0 Sun Mar 5 11:32 - 11:32 (00:00) % karolttyp0192.168.1.66 Sun Mar 5 11:31 - 11:32 (00:00) % [...] % orchid: Yes, Master? It seems login(1) simply records "user logged out" the moment he's logged in the second time (sorry, I'm not native English speaker ;) ) The reason I didn't send any PR back then I didn't know if it's a bug or feature. Since there was virtually no response from list I assumed it's not a bug (at least not a serious one) and I just made a personal note: "don't use w(1), who(1), last(1) or /var/log/wtmp". Best regards, Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: hosts.allow ?
Gerard Seibert wrote: > Chris Maness wrote: > >> OK, I was able to get to work by just starting out with a blank >> hosts.allow. Everything is allowed by default, so when denyhosts >> adds a deny line to the file, it will deny access to that host. >> >> Also, sshd can't be started in rc.conf, it has to be started in >> inetd.conf. Make sure you do a /etc/rc.d/inetd restart after you >> make changes. > > Just out of curiosity, why can 'sshd' not be started from the > '/etc/rc.conf' file? Because Chris wants to limit sshd's connections with 'hosts.allow' thing. Correct me if I'm wrong but my understanding is that inetd will start ssh daemon every time new connection is made and that's why it's not recommended (as written in default hosts.allow file). The alternative is running sshd as a daemon and limit connections with, say, pf's overload, max-src-conn and max-src-conn-rate. Regards, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Interface Weirdness
On 03/29/06 20:44, Steve Douville wrote: > I have two interfaces, em0 and em1. Whenever I try to put > assign an IP address to em1, the kernel crashes. I've tried > different ip's and subnets, all with the same result. > How can I find the error that caused it to crash? It isn't > in the messages log and I'm not sure where else to look. It can happen when kernel and world are out of sync. Did you by any chance recompile kernel or world with new sources? Just a thought. Regards, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Firefox 1.5 getting downright irritating
On 04/03/06 17:49, Paul Schmehl wrote: > Does anyone know how to get Firefox 1.5 to *always* start with the > ProfileManager? I'm using KDE 3.5, FreeBSD 6.0, Xorg 6.9.0 and Firefox > 1.5. I've created an application starter on the menubar that has the > path to firefox (/usr/X11R6/bin/firefox) with the argument > -ProfileManager. The first time I start Firefox, the profile manager > pops up and prompts me to select a profile. All subsequent launches of > Firefox use the profile that I selected initially. I want Firefox to > prompt me *every* time it starts, because I have created several > profiles, each designed to do different tasks and be open in different > windows. Each profile uses tabbed Homes so I can start a number of tabs > with different tasks in them. > > I've edited profile.ini as follows: > StartWithLastProfile=0 > and > StartWithLastProfile=1 > > Neither setting makes any difference at all. Checking and unchecking > the box to start on startup *also* does nothing. (As does the prompt to > make firefox the default browser.) > > I even tried removing StartWithLastProfile entirely. *Nothing* works. > There's no man pages for firefox, firefox-bin, profile.ini, > profilemanager, mozilla or mozilla-bin, and googling has been futile so > far. Hi Paul, it's working here as expected - "Don't ask at startup" box changes StartWithLastProfile to 0/1 and ProfileManager starts every time if set to 0. I'm using it ever since I installed Firefox 2.0a in addition to 1.5. The machine is running FreeBSD 6-STABLE, Firefox 1.5 and 2.0a, Enlightenment DR17 but I doubt it's related. Maybe you're editing the wrong file? Or while Firefox is running? Too tight file permissions? Just some thoughts. Here's mine profiles.ini: - $ ls -l ~/.mozilla/firefox/profiles.ini -rw-r--r-- 1 karol karol 216 Apr 3 18:01 /home/karol/.mozilla/firefox/profiles.ini $ cat ~/.mozilla/firefox/profiles.ini [General] StartWithLastProfile=0 [Profile0] Name=1.5 IsRelative=1 Path=.1.5 [Profile1] Name=temp IsRelative=1 Path=xxxx.temp [Profile2] Name=2.0-alpha1 IsRelative=1 Path=.2.0-alpha1 Default=1 - HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Security logfile
On 04/06/06 15:52, Jim Csoka wrote: > I accidentally deleted my security log file - /var/log/security > > I used touch to recreate the file, but logging is no longer occurring. > I'm not sure why. It doesn't appear to be a permissions issue. > I tried chmod 755 (I won't leave it that way) just to confirm that > it wasn't a matter of permissions, but logging is still not occurring. > > Any ideas? Try restarting your syslog daemon. Also, you can check default file permission in /etc/newsyslog.conf. HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: help for portdowngrade
On 07/04/2006 15:49, Yuan Jue wrote: > Could anyone please give me a hand ? :) > > On Thursday 06 April 2006 21:37, Yuan Jue wrote: >> Hi all. >> >> Could anyone please get me an outdated port called 'zh-CJK-4.6.0' >> through using "portdowngrade zh-CJK-4.6.0" ? >> >> I am in a subnet and cannot connect the anonCVS directly. Any help >> would be very appreciate. Thanks in advance Hi Yuan, I can offer you http download. Which one do you need? 1 2006/03/19 05:40:51 4.6.0_1 Add links to these sfd files to the pkg-plist. They are generated by 2 2006/03/16 06:22:01 4.6.0_1 Several improvements over chinese/CJK port, to make it possible to 3 2006/01/22 01:27:04 4.6.0_0 Replace ugly "@unexec rmdir %D... 2>/dev/null || true" with @dirrmtry 4 2006/01/20 10:14:30 4.6.0_0 - As the original cjk master sites timeouts often on package building 5 2005/12/03 21:04:49 4.6.0_0 [MAINTAINER] chinese/CJK: update to 4.6.0 Cheers, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: help with tcpdump cmd syntax
On 08/04/2006 14:56, fbsd_user wrote: > I tried >tcpdump -i rl0 src host 218.166.163.180 -w /usr/tcpdump.data >tcpdump -i rl0 host 218.166.163.180 -w /usr/tcpdump.data >tcpdump -i rl0 src ip 218.166.163.180 -w /usr/tcpdump.data > > but got syntax error msg with no hint of what was wrong > > If I remove the -w stuff it works. Meaning it prints to the screen. > But I want to write to file > > Can you help me out here on the syntax error? Have a look at 'tcpdump -h' (or man, of course). Expression (i.e. 'src host 218.166.163.180') is the last argument. This should work: tcpdump -i rl0 -w /usr/tcpdump.data src host 218.166.163.180 > One other thing. When does tcpdump get access to the packet? > > My firewall has a block log rule for that ip address. > Does tcpdump see the packet before ipfilter ipnat does? Yes. I'm not familiar with kernel code, but I can perfectly see all packets with tcpdump. HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Random Freeze
Joseph Peterson wrote: > Unfortunately that is not the solution to my problem, I've run > memtest86 on my laptop several times and found no problems... any > other thoughts? =) > > -joe > Just a thought: Have you build your world and / or kernel from source? If that's the case double check processor-specific make options like CPUTYPE, CFLAGS, COPTFLAGS, etc. (they can be used from command line and from /etc/make.conf) Good luck! Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: BerkeleyDB 4.2
Gerard Seibert wrote: > I have tried to locate the latest version of the BerkeleyDB. It is version > 4.2 I believe. I cannot find it in the ports collection. A quick search gives me: orchid# cd /usr/ports orchid# make search name="db42" Port: db42-4.2.52_2 Path: /usr/ports/databases/db42 Info: The Berkeley DB package, revision 4.2 Maint: [EMAIL PROTECTED] B-deps: libtool-1.5.2_1 R-deps: Port: db42-nocrypto-4.2.52_2 Path: /usr/ports/databases/db42-nocrypto Info: The Berkeley DB package, revision 4.2 Maint: [EMAIL PROTECTED] B-deps: libtool-1.5.2_1 R-deps: If I'm not sure about a port name I find ports site very useful: http://www.freebsd.org/ports/index.html Cheers, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Random Freeze
Mark Ovens wrote: > I'm seeing the same problem on my dual Athlon box. The freezes are > totally random AFAICT, sometimes when the machine is just idling. > > I've not used any CPU-specific make options but may try setting some to > see if it makes a difference. One thing though, I only have > > cpu I686_CPU > > set, not I486_CPU and I586_CPU as well, maybe that could be a problem? AFAIK, that's a proper setting for Athlons. What I recommend is you shouldn't play with make options before setting up a stable system (sorry if that's too obvious). > I'm running -CURRENT and the build I did on 8 April didn't have this > problem but it started with the next build I did a couple of weeks ago. > I've cvsup'd and rebuilt a couple of times since, the last on 25 July, > but the problem persists. I don't have much experience with CURRENT (and with SMP) but if you didn't change the config files it looks like something in the code (this is possible in CURRENT, right?). Only thing I can think of is reading freebsd-current and searching the archives. Not much from me, sorry. Regards, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Kernel Options
bsd hack wrote: > Hi, > I am working with the Kernel config file to optimize it and also to > improve the overall security of the system! Hi, that's good. I'll try to give you some ideas to start inline below: > I have the following quetions: > (1) There are a few options that are not available in the default > kernel... like the IPFIREWALL options(and the like)... I basically need to > know all possible options I can add to the kernel config file! Have a look at /usr/src/sys/i386/conf/NOTES file (assuming your machine architecture is i386, if not look in specific directory): # cat /usr/src/sys/i386/conf/NOTES | head # # NOTES -- Lines that can be cut/pasted into kernel and hints configs. # # This file contains machine dependent kernel configuration notes. For # machine independent notes, look in /sys/conf/NOTES. It points you to another file: usr/src/sys/conf/NOTES. There are options with explanations in both files. Also check FreeBSD Handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-config.html > (2) I guess these options can be used to set the kernel variables > accessible through the sysctl command. So can I create my own options so > that I can set a few kernel variables as and when I build the custom > kernel? Any sysctl variable can be set in /etc/sysctl.conf file which is used before system goes to multi-user state. Many of them can be even changed "live". Check man sysctl(8), it will also bring loader.conf(5) to your attention. > Thank you. > > -HKR Good luck, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: user disappears from w and who
Brandon Lodriguss wrote: > Hello, > > I'm wondering if anyone else has witnessed this phenomenon in FreeBSD > 5.3-Release who could perhaps tell me if it's an oddity/configuration > error with my system, or a problem with this version. I had a 4.10 > box that this does not happen on, similarly configured. > > The steps to reproduce the problem: > Log in via ssh. > Type login, log in again to a second shell within your existing shell. > Type w or who. At this point, no IP or hostname should be listed for > you, and you only show up once. This is normal behavior, and has > happened in all versions of fbsd since i can remember. > Type exit to return to your original shell. > Do a w or who now... > > At this point on my system, you are no longer listed in w or who, and > the user count in w is incorrect. The only indication that you are > still logged in is an active sshd process/connection. If you type > last , it does not say "still logged in...". You can, > however, snoop on the original tty as root using the watch command, > even if the user is invisible (provided you noticed what tty the user > was assigned before he went invisible.) [snip] > Has anyone seen this behavior before? Did I misconfigure something? Hello, although I don't have an answer to this, I can confirm this happening here, too (5.3-RELEASE-p2, ssh session): > login as: joe > Password: > Last login: Thu Dec 16 18:31:36 2004 > [...snip...] > > joe$ who > joettyp1Dec 16 18:46 (192.168.1.66) > > joe$ w > 6:41PM up 12 days, 3:18, 1 user, load averages: 0.26, 0.15, 0.10 > USER TTY FROM LOGIN@ IDLE WHAT > joe p1 name.of.a.box 6:41PM - w > joe$ login > login: joe > Last login: Thu Dec 16 18:41:26 from name.of.a.box > [...snip...] > joe$ w > 6:43PM up 12 days, 3:20, 1 user, load averages: 0.05, 0.10, 0.08 > USER TTY FROM LOGIN@ IDLE WHAT > joe p1 - 6:42PM - w > joe$ who > joettyp1Dec 16 18:42 and now: > joe$ exit > joe$ w > 6:44PM up 12 days, 3:21, 0 users, load averages: 0.07, 0.10, 0.08 > USER TTY FROM LOGIN@ IDLE WHAT > joe$ who > joe$ and as root (right after): > joe$ su > Password: > Yes, Master? w > 7:06PM up 12 days, 3:43, 0 users, load averages: 0.08, 0.09, 0.08 > USER TTY FROM LOGIN@ IDLE WHAT > Yes, Master? who > Yes, Master? sockstat -4 | grep joe > joe sshd 91554 6 tcp4 192.168.1.1:22 192.168.1.66:1458 > Yes, Master? ps aux | grep sshd | grep joe > root91551 0.0 2.0 6400 1812 ?? Is 11:52AM 0:00.10 sshd: joe > [priv] (sshd) > joe 91554 0.0 2.1 6408 1916 ?? S11:53AM 0:03.68 sshd: [EMAIL > PROTECTED] (sshd) last(1): > Yes, Master? last joe > joe ttyp1192.168.1.66 Thu Dec 16 18:46 - 18:51 (00:05) > Yes, Master? date > Thu Dec 16 19:15:25 CET 2004 > Yes, Master? uname -r > 5.3-RELEASE-p2 I can then make another ssh session to the box and that user is not listed either. Regards, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: user disappears from w and who
Kevin D. Kinsey, DaleCo, S.P. wrote: > Karol Kwiatkowski wrote: > >>Brandon Lodriguss wrote: >> >> >>>It seems like utmp/wtmp is getting updated when the user logs out of the >>>second shell, then it ignores the fact that the user is still logged in to >>>the original shell. >>> >>> >> >>I've got curious and investigated a bit. It looks like when user logs >>in the second time (and it doesn't matter that he logs in as himself) >>system information gets updated just like the previous session was >>ended (like user logged off before logging in). >> >>I hope that will help someone with further investigation (I'm not >>familiar with the source). >> >> > > IANAE, and I'm not sure if I understand the problem. Isn't > it acting as expected? From login(5): > >-p By default, login discards any previous environment. The -p > option disables this behavior. > Yes, login(5) discards previous environment but the problem (as I see it, and IANAE, too) is not with user's environment but with data consistency in system files (/var/run/utmp, /var/log/wtmp and /var/log/lastlog). >From man utmp(5): > The file declares the structures used to record information > about current users in the file utmp, logins and logouts in the file > wtmp, and last logins in the file lastlog. The time stamps of date > changes, shutdowns and reboots are also logged in the wtmp file. As I understand it, information in those files should reflect current system state. But it seems that any unprivileged user using login(5) can break it. Mechanism is simple: user logs in "twice" (on the same terminal), then logs out "once". He is still logged in (first session) but according to utmp/wtmp he is not. It may not be a security hole but it clearly leads to confusion. And makes utilities like w(1), who(1), last(1) pretty useless. As an attempt to learn new things I'm trying to hunt it down. Keep in mind I'm new to this and any help would be appreciated (am I on the right path?). Here's what I'm doing (5.3-RELEASE-p2): Starting conditions: Login with ssh as unprivileged user (first session), use login(1) to login as the same user (second session), then use login(1) again (third session). (The point of logging three times is to omit any confusion ssh session could lead to [like ssh related errors in logs]. This probably could be done using console but I don't have the access atm) Now, end (exit) third session and end the second. This results in this error in auth.log: > login: pam_sm_close_session(): no utmp record for ttyp2 According to (default) /etc/pam.d/system 'pam_lastlog.so' is used to log session data. This leads us to first candidate: /src/lib/libpam/modules/pam_lastlog/pam_lastlog.c Am I on the right track? What more experienced users think about it? -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: user disappears from w and who
Brandon Lodriguss wrote: > It seems like utmp/wtmp is getting updated when the user logs out of the > second shell, then it ignores the fact that the user is still logged in to > the original shell. I've got curious and investigated a bit. It looks like when user logs in the second time (and it doesn't matter that he logs in as himself) system information gets updated just like the previous session was ended (like user logged off before logging in). I hope that will help someone with further investigation (I'm not familiar with the source). Here's a "proof": (ssh session, notice the time) > login as: joe > Password: > Last login: Thu Dec 16 18:46:02 2004 from name.of.a.box > [...motd...] > joe$ date > Thu Dec 16 20:18:12 CET 2004 > > [...I'm waiting here at least one minute...] > > joe$ login > login: joe > Last login: Thu Dec 16 20:18:00 from name.of.a.box > [...motd...] > joe$ date > Thu Dec 16 20:19:17 CET 2004 > > [...I'm waiting here at least one minute...] > > joe$ exit > joe$ date > Thu Dec 16 20:21:29 CET 2004 as root: > # last joe > joe ttyp0 Thu Dec 16 20:19 - 20:21 (00:02) > joe ttyp0192.168.1.66 Thu Dec 16 20:18 - 20:19 (00:01) > [...] ^ last(1) reports user 'joe' logged off the same moment he logged in by typing 'login'. Finishing ssh connection (exit) results with this error in auth.log: > sshd[98620]: syslogin_perform_logout: logout() returned an error Also I tried logging 'joe' as different user second time - it doesn't matter. That's all from me, I hope someone will tell more. Regards, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD's Visual Identity: Outdated?
Ramiro Aceves wrote: > jsha wrote: >> 1. Not only is the logo misleading (associating evil) but it also looks >>like something 10-year-olds could produce in Paint Shop Pro ten years >>ago. OpenBSD has an artistic touch to theirs, however I was very >>disappointed when I heard that the new NetBSD logo was in effect. > > I really like the devil, it is nice and pleasant for me. A bit OT, but to make things clear I'd like to point out it's not the devil. It's a daemon. BSD Daemon. "Many people equate the word ``daemon'' with the word ``demon,'' implying some kind of Satanic connection between UNIX and the underworld. This is an egregious misunderstanding. ``Daemon'' is actually a much older form of ``demon''; daemons have no particular bias towards good or evil, but rather serve to help define a person's character or personality. The ancient Greeks' concept of a ``personal daemon'' was similar to the modern concept of a ``guardian angel'' --- ``eudaemonia'' is the state of being helped or protected by a kindly spirit. As a rule, UNIX systems seem to be infested with both daemons and demons." quote from: http://www.freebsd.org/copyright/daemon.html Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Sound not working - none of the other posts helped
SRINIVASAN, KESHAV wrote:
>
> I'm using the latest 5.3-stable build along with the Xfce4 window
> manager. I have a Sound Blaster Audigy card.
> I don't have the line 'device sound' in my kernel, but I have the
> following two lines in my loader.conf file:
>
> sound_load="YES"
>
> snd_emu10k1_load="YES"
>
> Sound doesn't work in X (tried playing an MP3 using a graphical MP3
> player). It doesn't work in command line either (tried using a console
> MP3 player as well). Any idea how to fix this?
I don't use emu10k1 driver (emu10kx[1] instead), but since no one has
replied yet (probably due to missing details):
First I would check if modules are loaded and if card is recognized.
Try following commands (you should see similar output with emu10k1):
> blackacidevil: # kldstat
> Id Refs AddressSize Name
> [...snip...]
> 31 0xc0827000 11c90snd_emu10kx.ko
> [...snip...]
Here I've got only 'snd_emu10kx' listed because 'sound' is compiled in
the kernel. There should be module sound loaded on your system.
> blackacidevil: # dmesg | grep pcm
> pcm0: on emu10kx0
> pcm0:
> blackacidevil: # cat /dev/sndstat
> FreeBSD Audio Driver (newpcm)
> Installed devices:
> pcm0: on emu10kx0 (16p/1r/0v channels duplex default)
If all is OK try adjusting volume with /usr/sbin/mixer.
If not try 'pciconf -lv' and search for sound card information.
Also check emu10kx website (below) - scroll down to 'Basic
troubleshooting tips'.
Hope that helps a bit.
Karol
[1] emu10kx can be found:
http://chibis.persons.gfk.ru/audigy/
works great with 5.3-RELEASE-p4 and Audigy (class=0x040100
card=0x00511102 chip=0x00041102 rev=0x03 hdr=0x00)
--
Karol Kwiatkowski
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Software mirgration from Windows for my friend
Sergei Gnezdov wrote: > Hi, > > I need to consider if my friend can migrate from windows. Do you know > of a good user friendly alternatives (may be not as powerful)? I might > be able to answer most of the items, but I'd like to make sure that I > know about the options: Hello Sergei, Here's short list what I use / would use: > Alternatives for: > > - MS Office XP. I don't think he has very complex documents. OpenOffice > - ACDSE 5.0, Photoshop. I am not convinced that he edits or creates > images. GIMP (to create/modify images) > - WinRAR and WinZIP There are several command line tools in /usr/ports/archivers. As for GUI: If you're using KDE there's ARK in kdeutils. Gnome should have something similar. > - WinAMP XMMS > - Virtual CD don't know this software > - Some kind of CD Burner burncd with mkisofs works great if you don't mind command line. K3b (/usr/ports/sysutils/k3b) is great if you like GUI . > - Some DVD Player > - AC3filter mplayer (all you need is in there already) > - Decoding DVD to AVI (I have no idea why anybody would need this) I cannot comment on this but mplayer is supposed to do that. Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: chmod: Operation not permitted
Gardner Bell wrote: > After rebuilding world last night I can no longer chmod some system > binaries that I don't need. When attemtping to do so I get a permission > denied. > [EMAIL PROTECTED] chmod 000 /bin/rcp > chmod: /bin/rcp: Operation not permitted. > > [EMAIL PROTECTED] chmod 000 /bin/rlogin > chmod: /bin/rlogin: Operation not permitted > > The only binaries this seems to be happening with are the ones used > for remote operations. Ie: rcp, rlogin, rsh, opieinfo, etc. I > followed the complete instructions in the handbook when rebuilding > world so I don't think that could be the problem. But I did run the > following after the system booted correctly. # ls -lo /bin/rcp -r-sr-xr-x 1 root wheel schg 18388 Jan 10 22:49 /bin/rcp notice "schg" up here Check chlags(1) manpage for more information. Oh, btw. "which rlogin" gives me "/usr/bin/rlogin" on 5.3-RELEASE. Is that a typo in your message? Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: PF and NAT on FreeBSD 5.3
Kosta Kilim wrote:
> Hello,
>
> I'm trying to setup a PF with NAT for my home network.
>
> PF is compiled into the kernel(FreeBSD 5.3, fresh cvsup) and working,
> I can do pfctl -e|-d|-s just fine. And pflog0 is seen in the
> ifconfig's output.
>
> My IP range is: class C /29
>
> I have a ADSL router which works in bridged mode. So I connect to the
> ISP, get an static address for the router, then I assign one to the
> machine I'd like to act as a firewall from the /29 range.
>
> So router takes one and the machine take one address from class
> C/29. The other address can be ignored. I don't want to use them.
>
> For the rest of the machines on the network I'd like them to go
> through this machine, which I'd like it to do NAT using PF.
>
> The machine has the IP from the class C /29 range, and 192.168.0.0/27
> on the other NIC.
>
> So what I'd like to know, is how do I write the rules to perfom
> this. I thought that just taking the rules from the first example of
> the PF tutorial would do, I changed them slightly to suit my
> scenario. But still I can only go to the net with the one machine on
> the class C /29 subnet.
pf rules looks OK.
Wild guess: have you enabled packet forwarding? You can check it with
sysctl(8):
# sysctl net.inet.ip.forwarding
net.inet.ip.forwarding: 1
To enable this at boot time put gateway_enable="YES" in your /etc/rc.conf
Also check the handbook (25.2.4 Building a Router chapter):
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routing.html
> Any hints would be gladly received. Thank you for your time.
You're welcome (I'm not sure if that helps, though).
Regards,
Karol
> # macros, these are renamed to my NIC names
> int_if = "fxp0"
> ext_if = "ep0"
>
> tcp_services = "{ 22 }"
> icmp_types = "echoreq"
>
> priv_nets = "{ 127.0.0.0/8, 192.168.0.0/27 }"
>
> # options
> set block-policy return
> set loginterface $ext_if
>
> # scrub
> scrub in all
>
> # nat
> nat on $ext_if from $int_if:network to any -> ($ext_if)
>
>
> # filter rules
> block all
>
> pass quick on lo0 all
>
> block drop in quick on $ext_if from $priv_nets to any
> block drop out quick on $ext_if from any to $priv_nets
>
> pass in on $ext_if inet proto tcp from any to ($ext_if) \
>port $tcp_services flags S/SA keep state
>
> pass in inet proto icmp all icmp-type $icmp_types keep state
>
> pass in on $int_if from $int_if:network to any keep state
> pass out on $int_if from any to $int_if:network keep state
>
> pass out on $ext_if proto tcp all modulate state flags S/SA
> pass out on $ext_if proto { udp, icmp } all keep state
>
>
--
Karol Kwiatkowski
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Open Sound System
Gerard Seibert wrote: > I have seen OSS from opensound.org mentioned here a few times. I have > not been able to locate it in the 'ports tree'. Would I be correct in > assuming that it is not available there, but rather only by downloading > it directly from opensound.org directly? Yes, that's correct. AFAIK, the reason is this: "Open Sound System is not freeware but commercial product. The software itself is freely downloadable from our web site. However it needs a run time license to work. The software package itself contains a time limited evaluation license which installs automatically. To remove the time limit you will need to purchase a permanent license from our web site or any of our official distributors."[1] and: "Open Sound System is now free for personal and non-commercial use and comes with a license key that will allow you to run OSS. The license key is valid for 3 months at a time after which you will need to download and install OSS again. There are no time limitations or restricted functionality during the licensing period. A permanant license key that will entitle you to free support and upgrades can be ordered here"[2] Regards, Karol [1] http://www.opensound.com/install_gzipped.html [2] http://www.opensound.com/download.cgi -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: su: Sorry
Gert Cuykens wrote: > Why can i not su accessing the server true ssh ? > > $ su > su: Sorry > $ http://lists.freebsd.org/mailman/htdig/freebsd-questions/2004-November/063643.html Cheers, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Router/Firewall?
Aperez wrote: > Hi: > > I am trying to set up a router/firewall with Freebsd 5.3 this is my > information: > > Winxp and Freebsd machine connected to Firewall machine using a hub > > Firewall has two ethernet cards: card1: dc0 connected to cable internet > using DHCP > card 2: rl0 setup to use > 192.168.1.1 > > I can connect to the internet from the firewall: ping -c 3 www.yahoo.con > successfull > I can ping from Firewall to the other two machines (WinXP and FreeBSD) > I can ping from XP to FreeBsd and Firewall > I can pin from FreeBSD to XP and Firewall OK, it appears your internal network is working. Did you set 'defaultrouter' on FreeBSD and XP (whatever it may be called on Windows) to 192.168.1.1 (IP of the gateway)? > Here is the problem: I cant connect to internet from neither XP nor > FreeBSD machine > > Here is my rc.conf from the firewall machine: > > gateway_enable="YES" > ifconfig_lo0="inet 127.0.0.1" > ifconfig_dc0="DHCP" > ifconfig_rl0="inet 192.168.1.1 netmask 255.255.255.0" > ipfilter_enable="YES" > ipmon_enable="YES" > ipmon_flags="-Dsvn" > ipnat_enable="YES" What rules do you have in ipfilter and ipnat? Have you enabled NAT? > ipfs_enable="YES" > > Can anyabody tell me what I am missing? Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Router/Firewall?
[please cc freebsd-questions, someone may be interested, too] Aperez wrote: > Karol Kwiatkowski wrote: > >> Aperez wrote: >> >> >>> Hi: >>> >>> I am trying to set up a router/firewall with Freebsd 5.3 this is my >>> information: >>> >>> Winxp and Freebsd machine connected to Firewall machine using a hub >>> >>> Firewall has two ethernet cards: card1: dc0 connected to cable internet >>> using DHCP >>>card 2: rl0 setup to use >>> 192.168.1.1 >>> >>> I can connect to the internet from the firewall: ping -c 3 www.yahoo.con >>> successfull >>> I can ping from Firewall to the other two machines (WinXP and FreeBSD) >>> I can ping from XP to FreeBsd and Firewall >>> I can pin from FreeBSD to XP and Firewall >>> >> >> >> OK, it appears your internal network is working. >> >> Did you set 'defaultrouter' on FreeBSD and XP (whatever it may be >> called on Windows) to 192.168.1.1 (IP of the gateway)? >> >> >> >> >>> Here is the problem: I cant connect to internet from neither XP nor >>> FreeBSD machine >>> >>> Here is my rc.conf from the firewall machine: >>> >>> gateway_enable="YES" >>> ifconfig_lo0="inet 127.0.0.1" >>> ifconfig_dc0="DHCP" >>> ifconfig_rl0="inet 192.168.1.1 netmask 255.255.255.0" >>> ipfilter_enable="YES" >>> ipmon_enable="YES" >>> ipmon_flags="-Dsvn" >>> ipnat_enable="YES" >>> >> >> >> What rules do you have in ipfilter and ipnat? Have you enabled NAT? >> >> >> >> >>> ipfs_enable="YES" >>> >>> Can anyabody tell me what I am missing? >>> >> >> >> Regards, >> >> Karol >> >> >> > Hi > > I did set up Winxp to use 192.168.1.1 as gateway and I put > defaultrouter=192.168.1.1 in the Freebsd machine. > > I dont have rules for ipfilter because I was trying to see if there was > connectivity box---firewall---internet. > Do I have to have ipnat rules in oder for the machines to connect to the > internet? Yes. NAT is not working yet. With ipnat_enable="YES" you've just enabled ipnat but you didn't tell it what to do yet. Something like this would do: > map dc0 192.168.1.0/24 -> 0/32 portmap tcp/udp auto# NAT for LAN +port > mapping > map dc0 192.168.1.0/24 -> 0/32 # NAT for LAN (icmp) But keep in mind I no longer use ipfilter/ipnat. Please check manpage for ipnat(1). Also handbook section: 24.5.14 NAT http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-ipf.html > Dind't I enable natd by putting "ipnat_enable="YES"" or do I have to put this > instead natd_enable="YES"? 'natd' is another way to do NAT. You'll need only one of them. And ipnat just doesn't do NAT yet. Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
How to create a file (Was: Re: i need a file manager!)
Gert Cuykens wrote: > how do you create a new file in cm without using touch in the cmd line :) You could use something like: echo "" > my_new_file But is it worth it? ;) Cheers, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: How to create a file (Was: Re: i need a file manager!)
Karol Kwiatkowski wrote: > Gert Cuykens wrote: > >>how do you create a new file in cm without using touch in the cmd line :) > > > You could use something like: > > echo "" > my_new_file > Uh... After reading the other response I guess I misread 'cm' as 'command line' instead of 'midnight commander'. Sorry for the noise. Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: kernel info question
Andrew L. Gould wrote: > I'm about to recompile a kernel on a computer with an AMD K6-2 450 > processor. Is the K6-2 an i586 or i686 CPU? I *think* it's i586 but have a look at dmesg output. There should be something like: # dmesg | grep CPU CPU: AMD Athlon(tm) XP 2000+ (1674.44-MHz 686-class CPU) Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: kernel info question
Andrew L. Gould wrote: > On Tuesday 25 January 2005 04:37 pm, Karol Kwiatkowski wrote: > >>Andrew L. Gould wrote: >> >>>I'm about to recompile a kernel on a computer with an AMD K6-2 450 >>>processor. Is the K6-2 an i586 or i686 CPU? >> >>I *think* it's i586 but have a look at dmesg output. >> >>There should be something like: >> >># dmesg | grep CPU >>CPU: AMD Athlon(tm) XP 2000+ (1674.44-MHz 686-class CPU) >> >> > > Thanks. (Yep, it's i586.) I'm not sure: is it a question about CPUTYPE flag in /etc/make.conf? Because right after my first reply I saw this in /usr/share/examples/etc/make.conf (about CPUTYPE): > # Currently the following CPU types are recognized: > # Intel x86 architecture: > # (AMD CPUs) athlon-mp athlon-xp athlon-4 athlon-tbird athlon k6-3 > # k6-2 k6 k5 > # (Intel CPUs)p4 p3 p2 i686 i586/mmx i586 i486 i386 > # Alpha/AXP architecture: ev67 ev6 pca56 ev56 ev5 ev45 ev4 > # Intel ia64 architecture: itanium Probably setting CPUTYPE=k6-2 would be best. Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: kernel info question
Andrew L. Gould wrote: > On Tuesday 25 January 2005 05:06 pm, Karol Kwiatkowski wrote: > >>Andrew L. Gould wrote: >> >>>On Tuesday 25 January 2005 04:37 pm, Karol Kwiatkowski wrote: >>> >>>>Andrew L. Gould wrote: >>>> >>>>>I'm about to recompile a kernel on a computer with an AMD K6-2 450 >>>>>processor. Is the K6-2 an i586 or i686 CPU? >>>> >>>>I *think* it's i586 but have a look at dmesg output. >>>> >>>>There should be something like: >>>> >>>># dmesg | grep CPU >>>>CPU: AMD Athlon(tm) XP 2000+ (1674.44-MHz 686-class CPU) >>> >>>Thanks. (Yep, it's i586.) >> >>I'm not sure: is it a question about CPUTYPE flag in /etc/make.conf? >>Because right after my first reply I saw this in >> >>/usr/share/examples/etc/make.conf (about CPUTYPE): >> >>># Currently the following CPU types are recognized: >>># Intel x86 architecture: >>># (AMD CPUs) athlon-mp athlon-xp athlon-4 athlon-tbird >>>athlon k6-3 # k6-2 k6 k5 >>># (Intel CPUs)p4 p3 p2 i686 i586/mmx i586 i486 i386 >>># Alpha/AXP architecture: ev67 ev6 pca56 ev56 ev5 ev45 ev4 >>># Intel ia64 architecture: itanium >> >>Probably setting CPUTYPE=k6-2 would be best. >> >> >>Regards, >> >>Karol > > > I'm selecting CPU types in the kernel configuration file, which lists > only i386, i486, i586 and i686. > > Andrew Gould Ah, of course. I586_CPU then. Sorry for the noise, it's late here :) Good luck! Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: set_rcvar load_rc_config run_rc_command: all not found
Christian Hiris wrote: > On Wednesday 26 January 2005 05:45:05, Duane Winner wrote: > >>Hello, >> >>I've just noticed (after spending the past two weeks testing >>5.3-release), that I'm getting this on every boot and shutdown: >> >>Local package initialization:set_rcvar: not found >>load_rc_config: not found >>run_rc_command: not found >> >>Everything seems to be working fine, but I sure would like to know where >>those "set_rcvar", "load_rc_config" and "run_rc_command" not found >>messages are coming from and why. > > > This messages were sent by a script, which resides in one of your local > startup directories. If you use the default local startup directories, then > search the scripts under /usr/local/etc/rc.d and /usr/X11R6/etc/rc.d for the > variables that couldn't be found. The script that wants to run the functions > set_rcvar, load_rc_config and run_rc_command requires the line > ". /etc/rc.subr". This line sucks in the file /etc/rc.subr and makes the > missing functions available to your script. Noticed this today. In my case /usr/X11R6/etc/rc.d/xfs.sh was found guilty (xorg-fontserver). There's only "." instead of ". /etc/rc.subr" If I'm reading changes[1] right it has been fixed about 3 hours ago. Regards, Karol [1]http://www.freebsd.org/cgi/cvsweb.cgi/ports/x11-servers/xorg-fontserver/Makefile -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: using ports (WAS: Witch apache, mysql and php do i need ?)
Gert Cuykens wrote: > thx is there also a command that just tells you what it is going to > download without downloading it ? man ports and have a look at 'fetch-list' and other TARGETS. Cheers, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Strange question about the logo?...
Rembrandt Leliveld wrote: > Hello FreeBSD community! Hello, > I have a strange question, I think. [snip] > Can you tell me why FreeBSD choosed a devil as logo? This question is quite popular, unfortunately. It's based on misinterpreting the BSD Daemon as a demon. Have a look at http://www.freebsd.org/copyright/daemon.html quote from "Unix System Administration Handbook" (also in the link above): "Many people equate the word ``daemon'' with the word ``demon,'' implying some kind of Satanic connection between UNIX and the underworld. This is an egregious misunderstanding. ``Daemon'' is actually a much older form of ``demon''; daemons have no particular bias towards good or evil, but rather serve to help define a person's character or personality. The ancient Greeks' concept of a ``personal daemon'' was similar to the modern concept of a ``guardian angel'' --- ``eudaemonia'' is the state of being helped or protected by a kindly spirit. As a rule, UNIX systems seem to be infested with both daemons and demons." Hope it clarifies a bit. > Greetings from an upcoming FreeBSD fan Have fun! Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Fwd: reboot DURING a portupgrade
[format fixed] Ben Haysom wrote: >> Hi >> >> I am running FBSD 5.3-CURRENT on a Duron 700Mhz 384Mb RAM. >> >> When I do (as root) >> >> #portupgrade -a >> >> it comes back with: >> >> Stale dependency: acroread-5.10_1 --> linux_base-8-8.0_6 -- manually >> run 'pkgdb -F' to fix, or specify -O to force. >> >> So I do >> >> #portupgrade -a -O >> >> and *everytime* it reboots itself before the portupgrade is complete. >> Not a clean reboot though - it doesn't dismount filesystems before it goes. >> >> I can't work out what it's doing. >> There is nothing relevant in /var/log/messages. > Just fixed the stale dependencies, then did portupgrade -a > > same thing. > unclean reboot. Sounds like faulty hardware to me (or _really_ misconfigured kernel and/or compilation options - yeah, I did that once :) ) First I would check memory with tools like memtest /usr/ports/sysutils/memtest86 Second I would check if CPU is not overheating. You could use /usr/ports/sysutils/cpuburn for that. That's for a start. If it's not hardware problem post more details: do you have custom kernel? If so, what options were changed? Was the system stable before changes? What about /etc/make.conf? etc. Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: keeping freebsd uptodate - doubt
saravanan ganapathy wrote: > Hai , > > I have installed 5.3 release and want to keep my > system uptodate with the security patches. > > Based on many guides, I have arranged as a doc. Pls > confirm me whether my steps are ok > > 1) Install portupgrade > 2) Sync ports > > Ports-supfile contains as > > *default host=cvsup10.us.freebsd.org > *default base=/var/db > *default prefix=/usr > *default release=cvs tag=. > *default delete use-rel-suffix > ports-all OK > ( or should I change tag=RELENG_5_3 ) No, "tag=." is exactly what is needed for updating ports. > cvsup -g -L 2 /root/ports-supfile OK > 3) portsdb -Uu >From 'man portsdb': > -U > --updateindex Update or create the ports index file called INDEX. from 'man ports': > fetchindex Fetch the INDEX file from the FreeBSD cluster. Generating INDEX with 'portsdb -U' can take a while. Alternatively, you could run 'cd /usr/ports && make fetchindex' which will download that file for you. so point 3) could be like: 3-a) cd /usr/ports 3-b) make fetchindex 3-c) portsdb -u This is *much* faster but, of course, there's nothing wrong with 'portsdb -Uu'. > 4) portversion -v 'portversion -v | grep -v "=" ' is what I use. > Any other steps to do? Above procedure updates (only) your ports tree and installed ports. Subscribe to freebsd-announce and keep your system up-to-date. > What 'make fetchindex' will do? See above (point 3). Regards, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: keeping freebsd uptodate - doubt
saravanan ganapathy wrote: > I have done the above steps to update my system and > when I run 'portversion -v | grep -v "=" ', I am > gettin g the perl package only. > > freebsd# portversion -v | grep -v "=" > perl-5.8.5 < needs updating (port has 5.8.6_1) > > freebsd# portupgrade perl > ---> Upgrading 'perl-5.8.5' to 'perl-5.8.6_1' > (lang/perl5.8) > ---> Building '/usr/ports/lang/perl5.8' > ===> Cleaning for perl-5.8.6_1 > ===> perl-5.8.6_1 has known vulnerabilities: > => perl -- File::Path insecure file/directory > permissions. >Reference: > <http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html> > => Please update your ports tree and try again. > *** Error code 1 > > Stop in /usr/ports/lang/perl5.8. > ** Command failed [exit code 1]: /usr/bin/script -qa > /tmp/portupgrade5864.0 make > ** Fix the problem and try again. > ** Listing the failed packages (*:skipped / !:failed) > ! lang/perl5.8 (perl-5.8.5) (unknown build > error) > ---> Packages processed: 0 done, 0 ignored, 0 skipped > and 1 failed > > How to solve this problem? Portaudit thinks perl-5.8.6_1 is not safe. It even tells you where to find more information: > http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html If you look there it says: > Affects: > > * perl >=0 <5.6.2 > * perl >=5.8.0 <5.8.6 Clearly, perl-5.8.6_1 is *not* affected. This leads us to conclusion that your portadit's database is outdated. To fetch new databse simply run: # portaudit -F oh, btw. I forgot to include in previous post: before upgrading ports always read /usr/ports/UPDATING. It can save you some headaches ;) Cheers, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: using portversion (Was: keeping freebsd uptodate - doubt)
Chris Hodgins wrote: >>> 4) portversion -v >> >> 'portversion -v | grep -v "=" ' is what I use. >> > > You shouldn't require the grep...you can do this instead: > > # portversion -vl"<" Cheers for that, I didn't thought about that. But, that's not exactly what I wanted: '-l' switch includes only "<" while 'grep -v "="' excludes "=". The difference is I wanted ">" included, too (just in case). Quick scan of portversion manpage gave me '-L' option: > -L CHARS > --inv-limit CHARSExclude the packages with the specified status > flags. so it would be like: # portversion -vL"<" Thanks for info! Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: using portversion (Was: keeping freebsd uptodate - doubt)
Karol Kwiatkowski wrote: > so it would be like: > > # portversion -vL"<" doh! should be: # portversion -vL"=" Sorry! -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: keeping freebsd uptodate - doubt
saravanan ganapathy wrote: > What is the recommended period to update the ports? Someone else should comment on that, but I think updating (cvsup) ports tree once a week should be often enough to track changes and rare enough to not overload mirrors. That applies to single desktop machine, if you're using more machines / servers it's probably better to setup local mirror for that. As for installed ports, I think you should update installed port when: 1. there are security patches available (a must) 2. there is a new version available with new features / better performance / etc (but only if you need/want the new functionality) ad1: You have already installed portaudit which takes care of security warnings. Have a look at daily "security run output" emails. For example, today I got: > [snip] > Checking for a current audit database: > > Database created: Tue Feb 1 02:40:19 CET 2005 > > Checking for packages with security vulnerabilities: > > Affected package: perl-5.8.5 > Type of problem: perl -- File::Path insecure file/directory permissions. > Reference: > <http://www.FreeBSD.org/ports/portaudit/c418d472-6bd1-11d9-93ca-000a95bc6fae.html> > [snip] Then I went to http://www.freebsd.org/ports/index.html, saw it has been already updated in ports, fired up cvsup... ad2: When such event occurs (say, new version of KDE) just update ports tree and do a portupgrade. > Is there any announcements for any port update? So > that I can manually update the ports. I think http://www.freshports.org/ or http://www.freebsd.org/ports/index.html could be what you want. > Is portupgrade contains the security patches also? I'm not sure what that means. Portupgrade simply updates a port, it takes all patches provided by port manager, applies them, compile, etc. (in case of building from source). So, if there are any security patches for a port, yes, portupgrade will take care of them. Hope that helps, Karol -- Karol Kwiatkowski ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: FreeBSD's Visual Identity: Outdated?
Ramiro Aceves wrote: > jsha wrote: >> 1. Not only is the logo misleading (associating evil) but it also looks >>like something 10-year-olds could produce in Paint Shop Pro ten years >>ago. OpenBSD has an artistic touch to theirs, however I was very >>disappointed when I heard that the new NetBSD logo was in effect. > > I really like the devil, it is nice and pleasant for me. A bit OT, but to make things clear I'd like to point out it's not the devil. It's a daemon. BSD Daemon. "Many people equate the word ``daemon'' with the word ``demon,'' implying some kind of Satanic connection between UNIX and the underworld. This is an egregious misunderstanding. ``Daemon'' is actually a much older form of ``demon''; daemons have no particular bias towards good or evil, but rather serve to help define a person's character or personality. The ancient Greeks' concept of a ``personal daemon'' was similar to the modern concept of a ``guardian angel'' --- ``eudaemonia'' is the state of being helped or protected by a kindly spirit. As a rule, UNIX systems seem to be infested with both daemons and demons." quote from: http://www.freebsd.org/copyright/daemon.html Regards, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-arch To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: this: not found
eoghan wrote: > Hello > Im having problems again with this message when im booting. I get > several messages like this: > This: not found Every time I see that it's because of missing '#' at the beginning of the line in a shell script (to mark the line as a comment). > About 8 or so of them just before it asks me for my login. It has > happened before, but i was working with a rather shaky install as i > wasnt sure what i was doing, well at least i was more unsure then than i > am now :) > So im just wondering where i would look to see where its trying to find > "This"? I'd look at starting scripts first. Something like: # ls /etc/rc.d/* | xargs grep "This" # ls /usr/local/etc/rc.d/* | xargs grep "This" and see if there's a line starting with 'This' without a '#' at the beginning somewhere. > I did not do much with regards the system. I installed mplayer > and ogle. They are the only things I could think of, so I removed them. > Not sure removing them once its a problem fixes things - it didnt in my > case. Any help is appreciated. > Thanks > Eoghan Hope that helps. Regards, Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: this: not found
eoghan wrote: > On 17 Oct 2005, at 15:20, Karol Kwiatkowski wrote: > >> eoghan wrote: >> >>> Hello >>> Im having problems again with this message when im booting. I get >>> several messages like this: >>> This: not found >>> >> >> Every time I see that it's because of missing '#' at the beginning of >> the line in a shell script (to mark the line as a comment). >> >> >>> About 8 or so of them just before it asks me for my login. It has >>> happened before, but i was working with a rather shaky install as i >>> wasnt sure what i was doing, well at least i was more unsure then >>> than i >>> am now :) >>> So im just wondering where i would look to see where its trying to find >>> "This"? >>> >> >> I'd look at starting scripts first. Something like: >> >> # ls /etc/rc.d/* | xargs grep "This" >> # ls /usr/local/etc/rc.d/* | xargs grep "This" >> >> and see if there's a line starting with 'This' without a '#' at the >> beginning somewhere. > > > I have done this now and not found anything without the # ... is there > anywhere else I should look? How about /etc/rc.conf file? If not there does 'grep -r This /etc' shows something useful? And just to be clear look for exact word: 'This' or 'this' depending on the situation (I'm not sure because you wrote it differently in the email subject and body). -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: this: not found
eoghan wrote: > My last uncommented line looked like (rc.conf): > usbd_enable="YES"# This file contains > I didnt think it would be causing it, but it seems it was... Yes, I just checked it. There must be a whitespace after " in rc.conf. > just wondering why it would display 7 or 8 times? /etc/rc.conf is read by scripts located in /usr/local/etc/rc.d (and those are executed at boot time) and error message shows everytime rc.conf is parsed. I think that's 'load_rc_config()' function job (from /etc/rc.subr) but I haven't look into it that much. > Anyway - got it sorted and thank you very much! Glad to hear it's solved! Karol -- Karol Kwiatkowski GPGKey: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: mozilla firefox-1.0.7 on 5.4-STABLE
Odhiambo Washington wrote: > Has anyone managed to go all the way to install firefox-1.0.7? > I get stuck at this error: > > or -Wno-long-long -O2 -fno-strict-aliasing -pipe -fshort-wchar -pipe > -DNDEBUG -DTRIMMED -O -I/usr/X11R6/include -I/usr/local/include -I/usr/X1 > 1R6/include -I/usr/X11R6/include -DMOZILLA_CLIENT -include > ../../../mozilla-config.h nsDNSService2.cpp > In file included from nsDNSService2.h:40, > from nsDNSService2.cpp:38: > nsHostResolver.h:95: error: ISO C++ forbids declaration of `PRAddrInfo' with > no type > nsHostResolver.h:95: error: expected `;' before '*' token > nsHostResolver.h: In member function `PRBool nsHostRecord::HasResult() const': > nsHostResolver.h:99: error: `addr_info' undeclared (first use this function) > nsHostResolver.h:99: error: (Each undeclared identifier is reported only once > for each function it appears in.) > nsHostResolver.h: At global scope: > nsHostResolver.h:209: error: `PRAddrInfo' has not been declared > nsHostResolver.h:209: error: ISO C++ forbids declaration of `parameter' with > no type > nsDNSService2.cpp: In member function `virtual nsresult > nsDNSRecord::GetCanonicalName(nsACString&)': > nsDNSService2.cpp:95: error: 'class nsDerivedSafe' has no > member named 'addr_info' > nsDNSService2.cpp:96: error: 'class nsDerivedSafe' has no > member named 'addr_info' > nsDNSService2.cpp:96: error: `PR_GetCanonNameFromAddrInfo' undeclared (first > use this function) > nsDNSService2.cpp: In member function `virtual nsresult > nsDNSRecord::GetNextAddr(PRUint16, PRNetAddr*)': > nsDNSService2.cpp:112: error: 'class nsDerivedSafe' has no > member named 'addr_info' > nsDNSService2.cpp:113: error: 'class nsDerivedSafe' has no > member named 'addr_info' > nsDNSService2.cpp:113: error: `PR_EnumerateAddrInfo' undeclared (first use > this function) > nsDNSService2.cpp: In member function `PRUint16 > nsDNSService::GetAFForLookup(const nsACString&)': > nsDNSService2.cpp:528: error: `PR_AF_UNSPEC' undeclared (first use this > function) > gmake[4]: *** [nsDNSService2.o] Error 1 > gmake[4]: Leaving directory > `/usr/ports/www/firefox/work/mozilla/netwerk/dns/src' > gmake[3]: *** [libs] Error 2 > gmake[3]: Leaving directory `/usr/ports/www/firefox/work/mozilla/netwerk/dns' > gmake[2]: *** [libs] Error 2 > gmake[2]: Leaving directory `/usr/ports/www/firefox/work/mozilla/netwerk' > gmake[1]: *** [tier_9] Error 2 > gmake[1]: Leaving directory `/usr/ports/www/firefox/work/mozilla' > gmake: *** [default] Error 2 > *** Error code 2 > > Stop in /usr/ports/www/firefox. > Sure: http://lists.freebsd.org/pipermail/freebsd-ports/2005-October/026395.html or: http://www.google.com/search?q=nsDNSService2.cpp+PR_AF_UNSPEC+site%3Alists.freebsd.org ;) Regards, Karol > > > -Wash > > http://www.netmeister.org/news/learn2quote.html > > -- > +==+ > |\ _,,,---,,_ | Odhiambo Washington<[EMAIL PROTECTED]> > Zzz /,`.-'`'-. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com >|,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922 > '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121 > +==+ > Tax reform means "Don't tax you, don't tax me, tax that fellow behind > the tree." > -- Russell Long -- Karol Kwiatkowski signature.asc Description: OpenPGP digital signature
Debugging options in GENERIC RELENG_6 (was: Re: Canonical upgrade procedure for 6.0?)
Stacey Roberts wrote: > Hi Roland! > > On Sun, 30 Oct 2005, Roland Smith wrote: > > >>On Sun, Oct 30, 2005 at 05:55:09PM +, Stacey Roberts wrote: >> >> >>>Okay.., I took the view that following the Handbook was the way to go, >>>changing "*default release=cvs tag=RELENG_5" to "*default release=cvs >>>tag=RELENG_6". >>> >>>All went fine, that is, I was able to cvsup sources to upgrade a >>>FreeBSD-5-Stable machine to FreeBSD-6.0-RC-1: >>> >>>$ uname -a >>>FreeBSD 6.0-RC1 FreeBSD 6.0-RC1 #0: Sun Oct 30 16:09:08 GMT 2005 >>> :/usr/obj/usr/src/sys/GENERIC i386 >>>$ >>> >>>All looks well, whereby I can log in successfully, and load X as >>>before (I know that at some point I need to rebuild all installed >>>ports), however I now need to configure, compile and install a custom >>>kernel. But when I checked the location of where (the default in >>>FreeBSD) I'd expect to see a new GENERIC, I see the following: >>> >>>/usr/src/sys/i386/conf $ ls -tla >>>total 92 >>>drwxr-xr-x 2 root wheel512 Oct 30 18:05 . >>>drwxr-xr-x 14 root wheel512 Oct 29 19:48 .. >>>-rw-r--r-- 1 root wheel 1741 Oct 29 19:48 GENERIC.hints >>>-rw-r--r-- 1 root wheel372 Oct 28 20:21 DEFAULTS >>>-rw-r--r-- 1 root wheel 10211 Oct 28 20:21 GENERIC >>>-rw-r--r-- 1 root wheel 33284 Oct 7 15:00 NOTES >>>-rw-r--r-- 1 root wheel322 Sep 18 04:37 SMP >>>-rw-r--r-- 1 root wheel 1766 Jul 29 17:02 PAE >>>-rw-r--r-- 1 root wheel 13 Jun 20 17:52 .cvsignore >>>-rw-r--r-- 1 root wheel120 Feb 26 2003 Makefile >>>/usr/src/sys/i386/conf $ >>> >>>After copying GENERIC to "MYKERNEL", I'd have expected to go through >>>MYKERNEL to add / delete as required, as well as remove the debugging >>>statements that I'd come across from reading various suggestions (like >>>"options INVARIANTS", etc), but I've found that the GENERIC on this >>>system doesn't have the entries for any of those debugging statements >>>to remove. Here's a snippet where I'd have expected to see some of >>>those entries: >>> >> >> >> >>>Any information, would be appreciated, please. >> >>There were some messages about this on the mailing lists recently. >> >>Apparently some options and devices were moved into DEFAULTS (which is >>combined with the chosen kernel configuration by config(8).), so that >>people wouldn't leave them out by accident, such as 'mem' and 'io' >>(important for running X). > > > I saw those posts today, but DEFAULTS don't appear to have the regular > WITNESS / INVARIANTS entries either.., Debugging options were removed from GENERIC, Scott Long wrote about that on @stable: http://lists.freebsd.org/pipermail/freebsd-stable/2005-September/018349.html Regards, Karol -- Karol Kwiatkowski signature.asc Description: OpenPGP digital signature
Re: Ape (Monkey's Audio) decompression tools
Andrew P. wrote: > How do I convert .ape to .wav? > > audio/xmms-mac works ok, I'm able to play the files, > but I want to convert them to flac. I don't know any specific software to do ape->flac conversion but, since you're using xmms already, you could decompress ape to wav using 'Disk Writer Plugin' (Options -> Preferences -> Audio I/O plugins -> Output plugin). Just select it, configure a path and start playback. I guess it's installed with xmms by default. Hope that helps, Karol > Now audio/mac can only verify (-v flag), but when I > try to decompress (-d flag) it just prints out the > usage statement. I did some googling and found > no alternative Linux/FreeBSD tools. -- Karol Kwiatkowski signature.asc Description: OpenPGP digital signature
Re: openoffice and var/
eoghan wrote: > Hello > Ive tried a few time without success to install openoffice (from pkg and > port)... Problem is, when its building it writes lots of stuff to var/ > which isnt huge on my system... usually around about 250MB free. It > quickly fills this, then cant write to it anymore and eventually fails. > So, is there any way to tell it to write to somewhere I have lots of > space, or will this just cause other problems using it? I guess what you're looking for is -t option for pkg_add(1): > -t template > Use template as the input to mktemp(3) when creating a ``staging > area''. By default, this is the string /var/tmp/instmp.XX, > but it may be necessary to override it in the situation where > space in your /var/tmp directory is limited. Be sure to leave > some number of `X' characters for mktemp(3) to fill in with a > unique ID. > > You can get a performance boost by setting the staging area > template to reside on the same disk partition as target directo- > ries for package file installation; often this is /usr. FYI, I'm installing OOo 2.0 from a package right now and pkg_add requested about 380MB of temporary space. Cheers, Karol > Thanks > Eoghan -- Karol Kwiatkowski signature.asc Description: OpenPGP digital signature
Re: starting services?
Michael Beattie wrote:
> On 11/21/05, Halldor R. Haflidason <[EMAIL PROTECTED]> wrote:
>> On Monday, 21 November 2005 at 15:11:35 +0100, martinko wrote:
>>> On Mon, 21 Nov 2005 10:17:01 +0800, Foo Ji-Haw wrote
>>>>> i wonder why i cannot start for instance ssh with
>>>>> /etc/rc.d/sshd start
>>>>> but i always have to use
>>>>> /etc/rc.d/sshd forcestart
>>>>> and similarly for stop, status, etc.
>>>>>
>>>>> any ideas pls ??
>>>> You have to add a line in /etc/rc.conf. I think it is
>>>> samba_enable="YES".
>>>
>>> well, if you add sshd_enable="YES", the service (always) starts on boot.
>>>
>>> i just want to start it manually and i wonder why it doesn't listen to
>>> "start"
>>> argument but only "forcestart" and similarly for other commands i've got to
>>> use "force".
>>>
>>> anyone knows why pls ??
>>>
>>> martin
>> Because when the system boots up it sends the 'start' argument to all the
>> scripts in the rc.d directories, those scripts then check wether they
>> should start or not. Force start simply overrides that check.
>>
>> Halldor
>
> Then something's broken, no? If the service isnt running and you send
> it a "start" and it doesnt start, then that's bad. You shouldnt need
> to override some checks, it should do what it's commanded to do.
If you're talking about implementation no, it's not. In order to start
a service with "start" argument it needs to be "enabled" in
/etc/rc.conf. It's nicely documented in various places like man 8 rc
or /etc/rc.subr.
What OP is looking for is 'onestart' and 'onestop' parameters. I was
looking for a solution to the same issue some days ago and found that
in /etc/rc.subr:
# If argument has a given prefix, then change the operation as
follows:
# Prefix Operation
# -- -
# fastSkip the pid check, and set rc_fast=yes
# force Set ${rcvar} to YES, and set rc_force=yes
# one Set ${rcvar} to YES
Basically "/etc/rc.d/sshd onestart" will let you run sshd service
without enabling it in rc.conf (which also means it'll start at boot
time) yet it checks if sshd is not running already.
Hope that helps,
Karol
--
Karol Kwiatkowski
signature.asc
Description: OpenPGP digital signature
Re: how to tell source code versions?
On 2004-09-11 07:33, Josh Hansen wrote: > rob gabaree wrote: > > >>hi guys: >> >>im pretty new and just recompiled my kernel with cvsup (using src-all) >>and uname -a prints: >> >>FreeBSD xxx 4.10-RELEASE-p2 FreeBSD 4.10-RELEASE-p2 #1: Fri Sep 10 >>18:01:49 EST 2004 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/XCAGE2 i386 >> >>i used the RELENG_4_10 tag to do this, but im wondering if someone >>could tell me where to go to find out the latest source code, ex the >>above was -RELEASE-p2.. is p2 the latest? where can i find the latest >>info so i know i ahve the most up to date one? >> >>thanks >> >> > > It's all about the tags. RELENG_4_10 will give you FreeBSD > 4.10-RELEASE, the -p2 means there have been 2 patches for it since it > was released and you have them. Tthe RELEASE branch only gets bugfixes > and security updates. If you want, say, 4.10-STABLE, which will > eventually become 4.11, use the tag RELENG_4. There is a section on > these tags in the FreeBSD Handbook that fully explains them. > > -Josh If I understand Rob correctly all he needs is /usr/src/UPDATING file (after updating the source tree). here's mine on *FreeBSD 5*: # head -30 /usr/src/UPDATING Updating Information for FreeBSD 5.2.1 users [...snip...] The security advisories related to various patches contain information on how to build/install a minimal set of binaries and start/stop a minimal number of processes, if possible, for that patch. For those updates that don't have an advisory, or to be safe, you can do a full build and install as described in the COMMON ITEMS section. 20040630: p9 FreeBSD-SA-04.13.linux Correct an input validation error in the linux binary compatibility code. 20040526: p8 FreeBSD-SA-04:11.msync --END-- cheers, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
how to install portindex?
Hello all, I've been reading about portindex and finally decided to install it. The problem is I can't find it. It should be in sysutils/portindex but there's no such directory. # whereis portindex portindex: I can't find it on www.freebsd.org/ports either. What am I missing? Cheers, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: how to install portindex?
On 09/14/04 13:31, Radek Kozlowski wrote: > On Tue, Sep 14, 2004 at 12:27:32PM +0200, Karol Kwiatkowski wrote: > >>Hello all, >> >>I've been reading about portindex and finally decided to install it. >>The problem is I can't find it. >>It should be in sysutils/portindex but there's no such directory. >> >># whereis portindex >>portindex: >> >>I can't find it on www.freebsd.org/ports either. >>What am I missing? > > > See this: > http://lists.freebsd.org/pipermail/freebsd-ports/2004-September/016065.html > > -Radek Ah, instead of digging freebsd-questions I should go straight to freebsd-ports. Thanks Miguel and Radek! -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: need to download freeBSD
On 09/28/04 06:51, Noorazmi Omar wrote: > Dear users support > > I'm new to FreeBSD, > can any body give me the URL to download FreeBSD > > Best Regards > > Noorazmi Omar > > Kuala Lumpur > Malaysia Hello, welcome to FreeBSD! Please check the main site: http://www.freebsd.org/ Direct link to "Obtaining FreeBSD" in FreeBSD Handbook: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/mirrors.html Regards, Karol -- Karol Kwiatkowski ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: News of latest Release
On 06/09/2006 06:57, Mohit parkash wrote: > To Free BSD, > > I m Mohit the admin of FlyNix <http://flynix.co.nr> (Linux Coustomization > Community )would like to request u that. If FreeBSD has a launch any of > its new > addition can u inform me via mail. so that i can give this news on my site. > > Thankyou > Mohit. Hi Mohit, just subscribe to freebsd-announce[*] list. You'll get a message when something 'big' happens, like 6.1 release. Here's an example: http://lists.freebsd.org/pipermail/freebsd-announce/2006-May/001064.html HTH, Karol [*] http://lists.freebsd.org/mailman/listinfo/freebsd-announce -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: ports/java/jdk15
On 07/09/2006 18:05, B. Cook wrote: > Hello All, > > Trying to build java 1.5.0 and it looks like it's needs linux java > 1.4.2? is this right? Yes, jdk port needs java tools to build itself, it uses precompiled linux binary (linux-sun-jdk14) for the first time. Note you can use diablo-jdk15 or diablo-jre15 to get precompiled FreeBSD binaries. Regards, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
~/.profile and tcsh (was: Changing Default Editor in profile)
>> > under my home directory for root under .profile I added the line: >> > >> > EDITOR=pico;export EDITOR >> You have to use "su -", if you want load your root's environnement. >> su(1) for more explications. > Thank you sirs!!! That did the trick! Hmmm, interesting. I was under the impression that ~/.profile file is used by sh and not by tcsh. Indeed, I can't find it being mentioned in tcsh(1) manpage. Am I missing something? Pointers to TFM welcomed, of course :) Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Putting a command/script as a user's shell
Good day everyone, I'm trying to make it possible to restart (as in 'shutdown -r now') a FreeBSD based router from LAN network as easy as possible so it can be used by non-technical people. I'm sure some will ask why would I need that - it's an USB modem connecting to ADSL line that locks up sometimes and all my attempts to make it restart itself have failed. I came up with this idea: - add another user to the system, let it be 'restart' - add 'restart' to group operator - let 'restart' to login through SSH from LAN with a key (passwords forbidden) - put a restart command as it's shell (so it automagically restarts the router) Does that sound reasonably? Security is not an issue, it's "secure enough" for me. OK, now for technical question. I realise I cannot put arguments to the command in the "shell area" in passwd file, so I wrote a short script: $ cat /home/restart/restart.sh #!/bin/sh /sbin/shutdown -r now $ ls -l /home/restart/restart.sh -rwx-- 1 restart restart 33 Sep 11 15:24 put that as restart's user shell: # grep restart /etc/master.passwd restart:*:1017:1017::0:0:restart:/home/restart:/home/restart/restart.sh and tried locally but it's not working: # su - restart su: /home/restart/restart.sh: Permission denied I'm not sure where 'Permission denied' come from. Setup looks to be OK, here's what I get with /usr/bin/id as a shell: # su - restart uid=1017(restart) gid=1017(restart) groups=1017(restart), 5(operator) I'm sure I'm missing something here. Anyone have some pointers? Cheers, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Putting a command/script as a user's shell
On 11/09/2006 16:39, backyard wrote: > > --- Karol Kwiatkowski <[EMAIL PROTECTED]> > wrote: > >> Good day everyone, >> >> I'm trying to make it possible to restart (as in >> 'shutdown -r now') a >> FreeBSD based router from LAN network as easy as >> possible so it can be >> used by non-technical people. >> >> I'm sure some will ask why would I need that - it's >> an USB modem >> connecting to ADSL line that locks up sometimes and >> all my attempts to >> make it restart itself have failed. >> >> I came up with this idea: >> >> - add another user to the system, let it be >> 'restart' >> - add 'restart' to group operator >> - let 'restart' to login through SSH from LAN with a >> key (passwords >> forbidden) >> - put a restart command as it's shell (so it >> automagically restarts >> the router) >> >> Does that sound reasonably? Security is not an >> issue, it's "secure >> enough" for me. >> >> >> OK, now for technical question. I realise I cannot >> put arguments to >> the command in the "shell area" in passwd file, so I >> wrote a short script: >> >> $ cat /home/restart/restart.sh >> #!/bin/sh >> /sbin/shutdown -r now >> $ ls -l /home/restart/restart.sh >> -rwx-- 1 restart restart 33 Sep 11 15:24 >> >> >> put that as restart's user shell: >> >> # grep restart /etc/master.passwd >> > restart:*:1017:1017::0:0:restart:/home/restart:/home/restart/restart.sh >> >> and tried locally but it's not working: >> >> # su - restart >> su: /home/restart/restart.sh: Permission denied >> >> >> I'm not sure where 'Permission denied' come from. >> Setup looks to be >> OK, here's what I get with /usr/bin/id as a shell: >> >> # su - restart >> uid=1017(restart) gid=1017(restart) >> groups=1017(restart), 5(operator) >> >> >> I'm sure I'm missing something here. Anyone have >> some pointers? >> > > make the shell script group executable and make it > group operator maybe try making it owned by root. I > think what is happening is it is running under the > priveledges of restart not operator because operators > groups cannot execute the command only the restart > user can due to the priveledges. And when the > restart.sh passes its group priveledges to the sript > callout to shutdown it fails because shutdown can only > run as operator. That would be my guess > > > -brian Hi brian, I tried to test it further together with Alex's suggestion to use "-x" in the script first line, only to discover I don't know why it won't work :) If anyone has some (possible) explanations I'll be glad to hear them. Meanwhile I moved to much cleaner and elegant solution based on what Kirk Strauser proposed in other email. For the record here's what I additionally tested: # chmod 4550 /home/restart/restart.sh # chown root:operator /home/restart/restart.sh # ls -l /home/restart/restart.sh -r-sr-x--- 1 root operator 36 Sep 11 16:46 /home/restart/restart.sh result from the same machine: # su - restart su: /home/restart/restart.sh: Permission denied and from other: # ssh -l restart -i restart_rsa router Last login: Tue Sep 12 12:47:02 2006 from blablabla [...] /home/restart/restart.sh: Permission denied Connection to orchid closed. Interestingly (or not ;) execution of the script (with default permissions) works if I log in as a user 'restart' (after giving him /bin/sh as shell). A suid binary seems to work: # cp -p /usr/bin/id /sbin/ # chown root:operator /sbin/id # chmod 4550 /sbin/id # vipw [ restart:*:1017:1017::0:0:restart:/home/restart:/sbin/id ] # su - restart uid=1017(restart) euid=0(root) gid=1017(restart) groups=1017(restart), 5(operator) # ssh -l restart -i restart_rsa router Last login: Tue Sep 12 13:11:10 2006 from blablabla [...] uid=1017(restart) euid=0(root) gid=1017(restart) groups=1017(restart), 5(operator) Connection to orchid closed. Looks like some suid issue which I don't really understand. Thanks for suggestions though! Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Putting a command/script as a user's shell
On 11/09/2006 16:56, Kirk Strauser wrote: > On Monday 11 September 2006 09:20, Karol Kwiatkowski wrote: >> Good day everyone, >> >> I'm trying to make it possible to restart (as in 'shutdown -r now') a >> FreeBSD based router from LAN network as easy as possible so it can be >> used by non-technical people. > > First of all, it's easy enough to do this securely that you might as well do > it. Install sudo, and use "visudo" to create a sudoers file with entries > like: > >User_AliasREBOOTERS = username1,username2,username3 >REBOOTERS ALL = (root) NOPASSWD: /sbin/reboot > > Next, create a reboot script for them: > ># cat /usr/local/sbin/reboot.sh >sudo /sbin/reboot > > Finally, use OpenSSH's built-in options to run the script at login. From > sshd(8): > > AUTHORIZED_KEYS FILE FORMAT > > [] > > command="command" > Specifies that the command is executed whenever this key is used > for authentication. > > So, make each user's authorized_keys file look something like: > > ssh-rsa [long base64 string] [EMAIL PROTECTED] > command="/usr/local/sbin/reboot.sh" > > Alternatively, do all the above for one single account: your "restart" user. > Use authorized_keys to limit which of your real users has access to reboot > the machine, and use "ssh -l restart balkyrouter.example.com" to trigger it. > You could even go so far as to add a clause to /etc/ssh/ssh_config (or > ~/.ssh/config for each individual user) like: > > Host rebootrouter > Hostname balkyrouter.example.com > User restart > > so that your users just run "ssh rebootrouter". > > So, to recap, when a user logs in, the reboot.sh script will be executed. It > will use sudo to run the reboot command as root, without prompting the user > to enter any password. It's easy, it works, and it doesn't require any > setuid trickery or special accounts or anything else. Hi Kirk, I wasn't aware of 'command' option in authorized_keys file and that's exactly what I need :) The rest is more or less what I was thinking of with the exception I tried to avoid installing sudo just to do this. So here's what I ended up with: - user 'restart' in group 'operator' (I need another user because there are no 'normal' users on the router except me) - public/private key par for authorization - command="/sbin/shutdown -r now" in /home/restart/.ssh/authorized_keys Works as expected even with windows/putty clients :) Thanks for your reply. Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Slow install of Ruby 18 from ports
On 14/09/2006 03:21, Olivier Nicole wrote: > Hummm, I was looking at bsdstats... majority of registered hardware is > pentium III. > > I like FreeBSD because of it's hability of running well on old > hardware: why would I need a Xeon dual core to run a DNS server for 5 > clients? I don't know why. I'm running DNS server on old Celeron 400Mhz with 96MB RAM just fine. Why do you think you need Xeon dual core for that? Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Slow install of Ruby 18 from ports
On 14/09/2006 04:05, Olivier Nicole wrote: >> I don't know why. I'm running DNS server on old Celeron 400Mhz with >> 96MB RAM just fine. Why do you think you need Xeon dual core for that? > > Of course I don't, and won't. > > I was just replying to the guy that told me that I am using archaic > hardware and that it makes building ruby slow. > > I do use a number of PIII servers (more than Xeon) and am very happy > with them. OK, I'm guilty of not reading the whole thread, I apologise. (note to self: don't reply while half asleep) Just out of curiosity I tried ruby port on two machines - fast one (1.6GHz Athlon with 1GB RAM) and small one (400MHz with 96MB RAM). Fast one has no problems with ruby, it builds and installs in few minutes. The slow one is another story, however. build time, no problem here: 460.448u 63.175s 9:52.80 88.3% 3844+2249k 911+151io 308pf+0w install time: 565.634u 72.527s 1:46:30.87 9.9%11+-4438k 1711+40io 464794pf+4w At least that how it looked when I pressed ^C The machine was slow, swapping a lot (about 150MB of swap used), with CPU idling most of the time. I guess Ruby being scripted language doesn't help performance, either. Installing from a package takes about 3 minutes, however. I've never noticed problems with ruby because I build all needed packages on a fast machine (having a lot of memory helps), then install them on the small ones. To sum up, try using a package instead[1]. HTH, Karol [1] There's another option - make the port not to generate documentation but that would mean hacking it, I don't see any knobs to do that. -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: portupgrade: ruby state=swread
On 28/09/2006 23:44, Pascal Bleyler wrote: > Hello, > > i'm actually updating my installed ports with > portupgrade -a over a remote ssh session. > Before i have done a cvsup and a portsdb -Fu > > There are only 3 ports needing an update, one of this port > is ruby. > pkg_info means i have ruby18-bdb1-0.2.2 installed > and under /usr/ports/distfiles/ruby is > ruby-1.8.5.tar.gz (i think it's the update version) > > All ran fine but since 1hour top shows me the following: > > > last pid: 12998; load averages: 0.47, 0.18, 0.06up 0+03:12:40 > 23:28:35 > 41 processes: 1 running, 40 sleeping > CPU states: 0.8% user, 0.0% nice, 0.8% system, 0.4% interrupt, 98.0% > idle > Mem: 82M Active, 4340K Inact, 24M Wired, 5268K Cache, 22M Buf, 480K Free > Swap: 231M Total, 126M Used, 105M Free, 54% Inuse, 956K In > > PID USERNAME THR PRI NICE SIZERES STATETIME WCPU COMMAND > 12613 root1 -200 123M 87500K swread 6:29 0.05% ruby18 > > > The output of portupgrade -a is also since 1hour: > > stringio.c: c. > strscan.c: cc > Generating RI... > > > I use FreeBSD_6.1.RELEASE without the today published > patch for FreeBSD-SA-06:23.openssl > > What can i do now? I don't want to kill the update process. Dunno > what happens then :/ > > Many thanks in advance for any hints > Pascal Bleyler Just some thoughts as others already identified the problem: here's similar thread with some workarounds: http://lists.freebsd.org/pipermail/freebsd-questions/2006-September/131328.html In the meantime I've found NOPORTDOCS variable - if you don't need ruby docs just disable them (docs are generated during install part) # cd /usr/ports/lang/ruby18 # make -DNOPORTDOCS install The install part without docs takes about 30 seconds on 400Mhz/96MB machine (it would take hours otherwise). HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Ruby gaining weight? [RESOLVED]
On 03/10/2006 11:37, Pete Slagle wrote: > Alex Zbyslaw wrote: >> Pete Slagle wrote: >>> Recent versions of ruby18 seem to take more than 145 MB of virtual >>> memory to build with portupgrade or "make install clean." > >> Karol Kwiatkowski wrote less than a week ago: >>> # cd /usr/ports/lang/ruby18 >>> # make -DNOPORTDOCS install > > > That put me on the right track, thanks! > > Karol's example works well for the initial installation of ruby. When > upgrading, this invocation: > > portupgrade -m '-DNOPORTDOCS' ruby > > does the equivalent thing. Both save a tremendous amount of time and > disk activity. Just for the record, the last update[1] to ruby18 port brought us a brand new knob 'WITHOUT_RDOC' :) Cheers, Karol [1] http://www.freebsd.org/cgi/getmsg.cgi?fetch=129223+0+current/cvs-ports -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: W3Mail/Perl Mail Module
[resending - my email bounced due to my old IP (ADSL) was listed in spam dbl; running your own mail server is becoming less fun everyday :( sorry for the confusion] On 05/10/2006 20:54, Don O'Neil wrote: > -Original Message- > From: Karol Kwiatkowski [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 05, 2006 11:05 AM > To: Don O'Neil > Cc: freebsd-questions@freebsd.org > Subject: Re: W3Mail/Perl Mail Module > > On 05/10/2006 19:29, Don O'Neil wrote: >>> Hi all... >>> >>> I know this isn't necessarily the right group to be asking, but I >>> thought I'd start here >>> >>> I have been using CascadeSoft's W3Mail webmail program, and up until >>> last night everything worked great We had a crash on the server, >>> and something obviously got corrupted >>> >>> Now when I try to send a message through W3Mail I get the following error: >>> >>> Error: Message was not successfully sent. >>> The SMTP server responded: Can't call method "mail" on an undefined >>> value at >>> /var/shc/servers/lizardhill.com/root/webmail/cgi/sendmessage.cgi line 179, >>> line 4. >>> Line 179 is- >>> $smtp->mail($replyto); >>> >>> I tried replacing the Net::SMTP module from Perl, thinking that maybe >>> it was corrupted, but still it gives the same error. >>> >>> Any ideas where I should look/check next? >> >> Hi Don, >> >> you're probably in a hurry, but please don't send more messages, we got all >> three of them :) >> >> If you're unsure if a message got through you can check the archives here: >> http://lists.freebsd.org/pipermail/freebsd-questions/ >> >> As for your problem with W3Mail - I don't know anything about that. If you >> won't get any replies here try to contact W3Mail users/developers. >> >> Regards, >> >> Karol >> > Karol, > Thanks for your reply. I was trying to send the message to different > groups and accidentally sent it 2x to the freebsd list... I didn't realize > it went there 3x. > > My problem is that CascadeSoft seems to be out of business, and I can't find > a support group for them anywhere. Any suggestions on where to look or post > a question would be appreciated. > > Don Sorry, I can't help you. Maybe someone else can - cc'ing @questions. Best luck, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: Problems compiling : libtool: link: cannot find the library `/usr/X11R6/lib/libpangocairo-1.0.la'
On 27/10/2006 00:37, Tuc at T-B-O-H.NET wrote: > Hi, > > Trying to compile wireshark (Which I had running > previously) and I get : > > libtool: link: cannot find the library `/usr/X11R6/lib/libpangocairo-1.0.la' > or unhandled argument `/usr/X11R6/lib/libpangocairo-1.0.la' > > The reason it can't find it is its in /usr/local/lib > now. But why is wireshark thinking its in /usr/X11R6/lib? I > saw something about GNOME trying to change the location of libraries, > but I don't know what it is that might be telling it the wrong > location. I've seen that few times already, basically some gnome's libraries weren't upgraded properly (not only pango). For a "quick" fix you can either find out which one is to blame or upgrade everything on which broken port depends, in case of wireshark: # portupgrade -fR wireshark The proper method, however, is described in /usr/ports/UPDATING (20061014) and use that if you're not sure what above quick method can brake ;) > Thanks, Tuc HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
csup vs. cvsup [was: Ports collection issue]
[format recovered]
On 27/10/2006 14:41, Andy Greenwood wrote:
> On 10/27/06, Roger 'Rocky' Vetterberg <[EMAIL PROTECTED]> wrote:
>> I would recommend using csup instead of cvsup.
>> It has fewer dependencies, is very lightweight and works very well
>> if you just want to occasionally checkout ports or src.
>> I believe that csup is also part of the basesystem in newer releases.
>>
> Is it possible to use csup with my existing cvsup files? I skimmed
> the man page and it looks very similar. Is there any advantage to
> using cvsup over csup?
I'm not sure if there are any, but csup is simply a reimplementation
of cvsup in C, as manpage says.
I'm using it as a replacement, here's a snip of my update-src.sh
script (I was previously using cvsup):
% [...]
% CSUP=/usr/bin/csup
% CVSUP=/usr/local/bin/cvsup
%
% CVS_UPDATER=${CSUP}
% [...]
% ${CVS_UPDATER} -L 2 -h ${SERVER} /root/supfiles/standard
% [...]
HTH,
Karol
--
Karol Kwiatkowski
OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc
signature.asc
Description: OpenPGP digital signature
Re: /var corrupted.....
On 01/11/2006 17:40, Eric Schuele wrote: > Hello, > > [Running 6.2-PRERELEASE as of Oct 30th] > > My /var filesystem on my laptop died this morning. I had just > installed/enabled gdm. I exited my wm and the machine spontaneously > rebooted. Upon coming back up it said there was a bad superblock and to > try the one at offset 32. It then said that one was bad. 'newfs -N' > tells me the next alt-superblock is at 160. fsck says to run 'fsck -b > '. However when you do that it says -b is an unknown > option. So so googling leads me to fsck_ufs. Which then says there are > more "softupdate inconsistencies" than I can say yes to. Plus some > other issues. I suspect something is very wrong in what I'm doing... > but I'm a trooper... so I forge ahead. :) I eventually end up doing a > 'fsck_ufs -y' on it... and it bails out giving me something like > "-73827348927342458734 BAD I=213423" many many times. So > > I may have totally destroyed my /var filesystem at this point. So my > questions are: > > 1) If not... pointers on what to do next would be *greatly* appreciated. > > 2) If I have destroyed it what can I do at this point? I have no full > backup of /var. I had nothing of any real importance on there. Some > MySQL data... but I've got that. My package database comes to mind. > but nothing of any personal value... just stuff to keep the OS on its > feet. So... if its gone... is there anyway to create a functional /var > filesystem that will allow me to "get back to work as usual"? Or is my > only option a complete reinstall of everything? I'm not sure if option 1 is out of question (wait for other replies) but to recreate /var directory tree you can use mtree(8) on newly created partiton, something like: # /usr/sbin/mtree -du -p /var -f /etc/mtree/BSD.var.dist The downside of this (option 2) is you'll loose some important information about your system, /var/db/pkg comes first to my mind. If you don't have any backups try to recover anything you can first. Good luck! > Thanks, > Eric HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
3Com 3c905B-COMBO and 10base2/BNC
Hi all, anyone got 3Com 3c905B-COMBO network card (Fast EtherLink XL PCI) working with 10base2/BNC? I just bought one and I can't figure it out. It has BNC connector and should be supported according to man xl page. With ifconfig_xl0="DHCP" in /etc/rc.conf and BNC cable connected (with terminator) ifconfig reports: xl0: flags=8843 mtu 1500 options=9 inet6 fe80::204:76ff:feed:6697%xl0 prefixlen 64 scopeid 0x1 ether 00:04:76:ed:66:97 media: Ethernet autoselect (none) status: no carrier dhclient reports "xl0: no link. giving up" Now, if I manually try to switch to BNC media with: # ifconfig xl0 media 10base2/BNC I get: # xl0: selecting AUI media, half-duplex and a kernel panic (trap 12). The BNC cable itself works with another box. More information below. Any help appreciated. Karol uname: FreeBSD 6.1-SECURITY #0: Mon Aug 28 05:21:08 UTC 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386 verbose dmesg: xl0: <3Com 3c905B-COMBO Fast Etherlink XL> port 0xec00-0xec7f mem 0xfebffc00-0xfebffc7f irq 10 at device 14.0 on pci0 xl0: Reserved 0x80 bytes for rid 0x14 type 3 at 0xfebffc00 xl0: using memory mapped I/O xl0: media options word: 3a xl0: found MII/AUTO miibus0: on xl0 xlphy0: <3Com internal media interface> on miibus0 xlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto xl0: found AUI xl0: found BNC xl0: bpf attached xl0: Ethernet address: 00:04:76:ed:66:97 xl0: [MPSAFE] vmstat -i: interrupt total rate irq0: clk 561773997 irq1: atkbd0 257 0 irq5: rl0 48 0 irq6: fdc011 0 irq8: rtc 71886127 irq10: xl0 3 0 irq14: ata0 2139 3 irq15: ata1 47 0 Total 636164 1129 -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: 3Com 3c905B-COMBO and 10base2/BNC
[format recovered] On 02/11/2006 21:58, Jeff Mohler wrote: > On 11/2/06, Karol Kwiatkowski <[EMAIL PROTECTED]> wrote: >> Hi all, >> >> anyone got 3Com 3c905B-COMBO network card (Fast EtherLink XL PCI) >> working with 10base2/BNC? >> > What museum is this in, can we visit it? Sure, where do I send an invitation? Seriously, it should work if the driver included in the kernel supports it, right? Regards, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: periodic, short freezes
On 09/11/2006 09:12, Zbigniew Szalbot wrote: > Hello, > > I am running FBSD 6-1 stable with custom kernel. Occasionally I > experience short freezes - that is the machine stops to respond for a > few seconds and then happily starts to work again. > > My general question is what log should I inspect or what debugging to > turn on to have some more info on what really happens? It does seem to > happen under bigger load (something like over 1) but I am not really > sure if that is the cause. Yesterday it ran for three hours with an > average load of over 2 and there was no freeze. > > Many thanks in advance for guiding me in troubleshooting the issue. Just a shot in the dark, but I haven't seen it mentioned yet: have you used any variables affecting kernel compilation, especially CPUTYPE, CFLAGS, COPTFLAGS? I remember seeing some strange effects when I messed with them too much (we've all been there, haven't we? ;) Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: periodic, short freezes
On 10/11/2006 14:29, Zbigniew Szalbot wrote: > Hello, > > On Fri, 10 Nov 2006, Karol Kwiatkowski wrote: > >> Just a shot in the dark, but I haven't seen it mentioned yet: >> >> have you used any variables affecting kernel compilation, especially >> CPUTYPE, CFLAGS, COPTFLAGS? I remember seeing some strange effects >> when I messed with them too much (we've all been there, haven't we? ;) > > Thank you for this hint. I have checked the conf file. I do not have any > of the options you mention. The only reference to CPU that I have is: > > cpu I686_CPU > > But that's probably too obvious, isn't it? That's the kernel configuration. I686_CPU should be(?) fine on most i386 processors but you may check that. However I was asking about variables affecting the compilation process itself. Most of the time they're set in /etc/make.conf (If you're not sure make that file available via HTTP or post it's content to the list). > BTW - I put your domain on a whitelist as your email to me was rejected > by my MTA (sorry about that). Thank you again for your help! No problem, I'm used to that. It's a part of 'fun' when running a mail server on dynamic IP... HTH, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: ruby Vulnerability / portupgrade
Hi Jeff, On 13/11/2006 16:35, Jeff Dickens wrote: > Regarding the following vulnerabilities as detected by portaudit: > >Affected package: ruby-1.8.4_4,1 >Type of problem: ruby -- cgi.rb library Denial of Service. >Reference: > > <http://www.FreeBSD.org/ports/portaudit/ab8dbe98-6be4-11db-ae91-0012f06707f0.html> From the link: % Affects: % * ruby >=1.8.* <1.8.5_4,1 % * ruby_static >=1.8.* <1.8.5_4,1 The latest version of ruby in ports is 1.8.5_4,1 which is not affected[1]. >Affected package: ruby-1.8.4_4,1 >Type of problem: ruby - multiple vulnerabilities. >Reference: > > <http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html> Hmmm... not sure about this one, but if I'm reading CVE-2006-3694[2] right ruby 1.8.5 is not affected. portaudit is not complaining, too. HTH, Karol [1] http://www.freebsd.org/cgi/getmsg.cgi?fetch=2891067+0+/usr/local/www/db/text/2006/cvs-all/20061105.cvs-all [2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3694 -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: how to get an old Port
On 17/11/2006 03:36, Marwan Sultan wrote: > > Hello poeple, > > I updated my src tree and my ports, > but i'm looking to install older release of one or two ports than this > latest, > > I checked freebsd ftp side, but didnot find anything, > anyone knows where is the older version ports are? You can use sysutils/portdowngrade to get previous versions of a port. Have a look at it's manpage[1], some examples can be easily found via google. >Thank you. >Marwan Sultan HTH, Karol [1] http://portdowngrade.sourceforge.net/documentation.html P.S. You probably pushed 'reply' button to send this message - don't do this if you want to make a new thread. In a mailer supporting threads your message ends up under some other thread and can easily be missed. -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: To which port GPG belongs?
On 22/11/2006 14:53, VeeJay wrote: > Hi > > If I want to run commands like > > > # gpg httpd-2.0.49.tar.gz.asc > > Which port one should install, becasue there are many... /usr/ports/security/gnupg Btw, there's excellent documentation at http://www.gnupg.org/ > And with which options one should install to have maximum security measure > i.e. LDAP, CURL, etc Take the defaults. You can add some functionality later, if required. HTH. Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: To which port GPG belongs?
On 22/11/2006 15:48, VeeJay wrote: > Thanks for your quick thoughts... > > I am still unable to verify Key > > I have got this key from Apache site > > [ key snipped ] > but how to verify because > > When I give this command > > # gpg httpd-2.0.59.tar.gz.asc > gpg: Signature made Thu Jul 27 19:44:54 2006 CEST using RSA key ID 10FDE075 > gpg: Can't check signature: public key not found > # You don't have public key 0x10FDE075 in your keyring. You can either download it from one of keyservers or form apache site: $ fetch http://www.apache.org/dist/httpd/KEYS KEYS 100% of 295 kB 108 kBps $ gpg --import KEYS gpg: WARNING: using insecure memory! gpg: please see http://www.gnupg.org/faq.html for more information [...] gpg: key 10FDE075: public key [email] imported [...] gpg: Total number processed: 58 gpg: w/o user IDs: 4 gpg: imported: 52 (RSA: 24) gpg: unchanged: 2 gpg: 3 marginal(s) needed, 1 complete(s) needed, classic trust model gpg: depth: 0 valid: 1 signed: 4 trust: 0-, 0q, 0n, 0m, 0f, 1u gpg: depth: 1 valid: 4 signed: 0 trust: 4-, 0q, 0n, 0m, 0f, 0u Then you can verify (here I'm verifying 1.3 version): $ gpg --verify apache_1.3.37.tar.gz.asc pathto/apache_1.3.37.tar.gz gpg: WARNING: using insecure memory! gpg: please see http://www.gnupg.org/faq.html for more information gpg: Signature made Thu 27 Jul 20:35:51 2006 CEST using RSA key ID 10FDE075 gpg: Good signature from "[email] [...] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: 33 16 9B 46 FC 12 D4 01 CA 6D DB D7 DE EA 4F D7 Be sure you read that last fat WARNING. It says the signature is correct but my gnupg doesn't know if the key used to sign is trusted. In reality that means I don't really know to whom the key really belongs. HTH, but it you really want to use gnupg you should at least read "Getting started"[1] form GnuPG site. Without understanding where it all can fail you won't gain anything. Regards, Karol [1] http://www.gnupg.org/gph/en/manual.html#INTRO -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: freebsd desktop | mozilla
[resending to list] On 25/11/2006 00:41, probsd org wrote: > I'm a long time proponent of FreeBSD as a server. For a long time I've really > wanted a FreeBSD system as a desktop. So, I decided to install the FreeBSD > 6.2 and compile xorg, gnome, mozilla, etc... to give it a whirl. > > For anyone reading this, who wants the same thing. > > DO NOT DO IT. I already did that few years ago, no problem. It's running 6-STABLE now. > Nothing works. java is borked, mozilla and firefox are borked, gnome is > ify ugh. java, mozilla, firefox, movies, music, tv, etc. works fine here. As you can see thunderbird, gnupg and even enigmail works too! If you've got problems send questions here (@freebsd-questions) but please be more specific next time. Regards, Karol -- Karol Kwiatkowski OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc signature.asc Description: OpenPGP digital signature
Re: network/multithreaded programming on FreeBSD
Michael S wrote: > Good day all, > > I am not sure this is the correct list for my > question, I am still going to ask though. > I am a 3rd year computer science student and in the > fall I am going to be taking courses in network and > system programming (with pthread). As a lot of > universities do, mine also teaches these courses on > Linux. I was wondering if there was a lot of > difference in socket and multi-threaded programming > between Linux and FreeBSD? > > Thanks in advance, > Michael Hi Michael, I think @hackers might be better place to ask programming questions (added to CC). Cheers and good luck with your course! Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: GnuPG, pinentry, and Qt
Chad Perrin wrote: > On Thu, Aug 02, 2007 at 02:35:35AM -0600, Chad Perrin wrote: >> So I tried installing GnuPG on a FreeBSD 6.2-RELEASE system. It doesn't >> work without pinentry installed. >> >> Okay, I can handle that. No big deal. Apparently GnuPG 2.x requires a >> separate utility for password handling now. No big deal. I run >> portinstall pinentry. >> >> At this point, I notice something very, very odd: pinentry won't install >> because of a problem with Qt. >> >> Why the heck would GnuPG ultimately depend on Qt in any way? > > Okay . . . so I should have looked a little harder at the pinentry ports > available before sending this email to the list. Apparently there are > three different versions. I'm still curious about a couple of things, > though: > > 1. Why is Qt the default for the nonspecific security/pinentry port? > 2. Why start a separate, external application for getting the > passphrase at all? > I'm not sure, but here's output from my system (default config): $ cd /usr/ports/security/gnupg $ make pretty-print-run-depends-list pretty-print-build-depends-list This port requires package(s) "curl-7.16.1_1 dirmngr-0.9.7_2 gettext-0.16.1_3 libgcrypt-1.2.4_1 libgpg-error-1.5 libiconv-1.9.2_2 libksba-1.0.1_1 openldap- client-2.3.37 pth-2.0.7" to run. This port requires package(s) "curl-7.16.1_1 gettext-0.16.1_3 gmake-3.81_2 libassuan-1.0.1 libgcrypt-1.2.4_1 libgpg-error-1.5 libiconv-1.9.2_2 libksba-1.0.1_1 openldap-client-2.3.37 pth-2.0.7" to build. No pinentry dependency, no such port installed, too: $ pkg_info -IX "gnupg|pinentry" gnupg-1.4.7_1 The GNU Privacy Guard gnupg-2.0.4 The GNU Privacy Guard HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: GnuPG, pinentry, and Qt
Karol Kwiatkowski wrote: > I'm not sure, but here's output from my system (default config): > > $ cd /usr/ports/security/gnupg > $ make pretty-print-run-depends-list pretty-print-build-depends-list > This port requires package(s) "curl-7.16.1_1 dirmngr-0.9.7_2 > gettext-0.16.1_3 libgcrypt-1.2.4_1 libgpg-error-1.5 libiconv-1.9.2_2 > libksba-1.0.1_1 openldap- > client-2.3.37 pth-2.0.7" to run. > This port requires package(s) "curl-7.16.1_1 gettext-0.16.1_3 > gmake-3.81_2 libassuan-1.0.1 libgcrypt-1.2.4_1 libgpg-error-1.5 > libiconv-1.9.2_2 libksba-1.0.1_1 openldap-client-2.3.37 pth-2.0.7" to build. > > No pinentry dependency, no such port installed, too: > > $ pkg_info -IX "gnupg|pinentry" > gnupg-1.4.7_1 The GNU Privacy Guard > gnupg-2.0.4 The GNU Privacy Guard Ech, scratch that. I realised I'm actually using gpg, not gpg2. gpg2 relies on pinentry. Sorry for the noise! Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: portupgrade modifys EVERY +CONTENTS now?
Tuc at T-B-O-H.NET wrote: > Ok. But I part of my question to people , and reason for posting it > here, is the old "Is anyone else seeing this". When/if you use portupgrade, > does > it do the same for you? Or is it just something that I happened some how to > inherit > on atleast 2 of my machines? 2 machines (7.0-CURRENT and 6.2-RELEASE, i386), same behaviour: $ cd /var/db/pkg $ ls -l */\+CONTENTS | wc -l 556 $ ls -lt */\+CONTENTS -rw-r--r-- 1 root wheel 15736 Aug 6 10:38 mplayer-0.99.10_13/+CONTENTS -rw-r--r-- 1 root wheel 571 Aug 6 10:38 xf86dgaproto-2.0.2/+CONTENTS -rw-r--r-- 1 root wheel 544 Aug 6 10:38 xf86driproto-2.0.3/+CONTENTS [...] -rw-r--r-- 1 root wheel1232 Aug 6 10:37 adns-1.4/+CONTENTS -rw-r--r-- 1 root wheel 61306 Aug 6 10:37 apache+mod_ssl-1.3.37+2.8.28/+CONTENTS -rw-r--r-- 1 root wheel1154 Aug 6 10:37 apg-2.3.0b_1/+CONTENTS $ pkg_info -Ix portupgrade portupgrade-2.3.1,2 FreeBSD ports/packages administration and management tool s $ portupgrade portupgrade 2.3.0 (2007/07/03) HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
How do I change atime/noatime on mounted filesystem?
Hi all, this is probably a silly question but... how do I change mount options to get atime back (after setting 'noatime') on mounted filesystem? I can't see option 'atime' in mount(8) but there's no 'suid' either. Here's what I'm trying to do: # mount | grep home /dev/ad0s3d on /home (ufs, local, noatime, nosuid, soft-updates) # mount -u -o atime /home # mount | grep home /dev/ad0s3d on /home (ufs, local, noatime, soft-updates) ( what happened to 'nosuid', btw? ) It works with suid/nosuid: # mount -u -o nosuid /home # mount | grep home /dev/ad0s3d on /home (ufs, local, noatime, nosuid, soft-updates) # mount -u -o suid /home # mount | grep home /dev/ad0s3d on /home (ufs, local, noatime, soft-updates) FreeBSD 7.0-CURRENT i386. What am I missing? Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
[solved] Re: How do I change atime/noatime on mounted filesystem?
Karol Kwiatkowski wrote: > Hi all, > > this is probably a silly question but... how do I change mount options > to get atime back (after setting 'noatime') on mounted filesystem? > > I can't see option 'atime' in mount(8) but there's no 'suid' either. > Here's what I'm trying to do: > > # mount | grep home > /dev/ad0s3d on /home (ufs, local, noatime, nosuid, soft-updates) > # mount -u -o atime /home > # mount | grep home > /dev/ad0s3d on /home (ufs, local, noatime, soft-updates) FYI, this is 7.0-CURRENT related [1]. Workaround is to use 'nonoatime' until the patch is applied. Karol [1] http://lists.freebsd.org/pipermail/freebsd-current/2007-August/076036.html -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: fsck strangeness
Ian Smith wrote: > On Wed, 22 Aug 2007, Chris wrote: > > If its bad to run fsck on a mounted read,write then why does > > background fsck do it? or you talking about foreground fsck only? > > Well I was referring to foreground fsck, and I still don't know why > running it on a mounted fs is 'bad' when fsck runs in 'NO WRITE' mode > anyway when it finds a fs is mounted, hence my query above. Here's my understanding: Mounted fs (rw) isn't in stable state, there may be some writes to it - daemons, buffers flushes, etc. In this condition fsck can report inconsistency. And fsck running in 'NO WRITE' won't help anyway :) Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: fsck strangeness
Ian Smith wrote: > On Thu, 23 Aug 2007, Karol Kwiatkowski wrote: > > Ian Smith wrote: > > > On Wed, 22 Aug 2007, Chris wrote: > > > > If its bad to run fsck on a mounted read,write then why does > > > > background fsck do it? or you talking about foreground fsck only? > > > > > > Well I was referring to foreground fsck, and I still don't know why > > > running it on a mounted fs is 'bad' when fsck runs in 'NO WRITE' mode > > > anyway when it finds a fs is mounted, hence my query above. > > > > Here's my understanding: > > > > Mounted fs (rw) isn't in stable state, there may be some writes to it - > > daemons, buffers flushes, etc. In this condition fsck can report > > inconsistency. And fsck running in 'NO WRITE' won't help anyway :) > > a) Absolutely. > > b) Indeed it usually does, fairly consistently, especially on /var. > > c) No it won't help (except where it can help locate problems in a real > mess like bad blocks), but the assertion in question was, can it hurt? Ah sorry, I missed that. With 'NO WRITE' one can suppose it shouldn't hurt anything except performance ;) I made a quick scan through the source and it looks like it won't: - in src/sbin/fsck_ffs/setup.c if fs is mounted rw fswritefd is set to -1 - in src/sbin/fsck_ffs/fsutil.c blwrite(), flush() and ckfini() won't write anything if fswritefd<0 Unless, of course, I'm missing something. Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Burn ape music to CD
Tsu-Fan Cheng wrote: > Hi, > I have some ape music files ready to burn to CD, I first comvert them into > wav file then use cdrecord, but I heard that this is not necessary, ape file > can burn to CD directly, how is this achieved?? Can I play the CD in regular > stereo?? thank you!! No, you can't. Audio CD is a specific format without compression, etc. Either someone was using software which did ape decompression on the fly or he was using a special device to read them. Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Burn ape music to CD
Mario Lobo wrote: > On Thursday 06 September 2007, Karol Kwiatkowski wrote: >> Tsu-Fan Cheng wrote: >>> Hi, >>> I have some ape music files ready to burn to CD, I first comvert them >>> into wav file then use cdrecord, but I heard that this is not necessary, >>> ape file can burn to CD directly, how is this achieved?? Can I play the >>> CD in regular stereo?? thank you!! >> No, you can't. Audio CD is a specific format without compression, etc. >> Either someone was using software which did ape decompression on the fly >> or he was using a special device to read them. >> >> Cheers, >> >> Karol > > Yes, he can ! > > install > /usr/ports/sysutils/k3b > > then install > /usr/ports/audio/k3bmonkeyaudioplugin > > After that he will be able to drop .ape files directly into an audio project. An what will this plugin do? Decompress ape files on the fly, right? If I didn't write previous post clearly: Audio CD standard (Redd Book) requires certain data format on disc, which ape file is not. Thus, you can't write ape files on Audio CD. You can, however, use software which converts ape files into correct format in an invisible way to you. Do we agree? :) Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Burn ape music to CD
Mario Lobo wrote: > On Thursday 06 September 2007, Karol Kwiatkowski wrote: >> You can, however, use software which converts ape files into correct >> format in an invisible way to you. Do we agree? :) >> > > Of course we do. Sorry if I didn't refer to you answer to Tsu completely. It > was because i was focused on solving his problem first, but yes, you were > right from the start. That is exactly what the monkey audio plugin does. Now that I read the OP post again, maybe I misunderstood his question... All in all, problem solved :) Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Building a new workstation - dual or quad-core CPU for FreeBSD 7?
Wojciech Puchar wrote: >> Yes, 4BSD is still the default, although you definitely want to use >> ULE for performance reasons (NB: only on 7, dont use ULE on 6). I >> don't know whether the release engineers plan to change that default, >> but I will check. > > could you point to some URL/explain what's the actual difference. You may want to check Jeff Roberson's blog site. Kris posted some graphs on his site, too. Since it's about CURRENT, some results might be outdated already. Regards, Karol. -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: skype with garbled characters
Girish Venkatachalam wrote: > Hello all, > > I am not able to use skype with FreeBSD 6.2. > > It installs fine after a CVSup of the ports tree. > > But whenever I try to run it, I get a screen like this. > > http://koushikn.fastmail.fm/skype.png > > All my efforts at resolving failed. Hello Girish, I've had similar problem[1] some time ago and it was solved since then. Anyway, can you check your fonts.conf file? It should output something like this: % $ grep dir /usr/compat/linux/etc/fonts/fonts.conf % % /usr/local/lib/X11/fonts % ~/.fonts In my case fonts are located in /usr/local/lib/X11/fonts. What about your setup? If that's the problem recompiling x11-fonts/linux-fontconfig should take care of it. Regards, Karol [1] http://www.freebsd.org/cgi/query-pr.cgi?pr=110632 -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: packages compiled from source
Kris Kennaway wrote: > Gabriel Dragffy wrote: >> Hi, trying to find out where the complete packge files are for the >> packges that I compiled from ports. I wanted to save these somewhere >> so I wouldn't have to recompile them in the future. The handbook >> doesn't shed any light on this:( > > They are not saved separately but you can create backups using > pkg_create -b. In addition, you can use 'package' (or 'package-recursive') target instead of 'install' to create packages automagically. In that case target directory is set by PACKAGES variable. Have a look at ports(7) manpage for details. Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: packages compiled from source
Please try not to top-post while replying to freebsd mailing list. It makes it hard to follow reading from the archives. Comments below. Gabriel Dragffy wrote: > On 23 Sep 2007, at 15:35, Karol Kwiatkowski wrote: >> Kris Kennaway wrote: >>> Gabriel Dragffy wrote: >>>> Hi, trying to find out where the complete packge files are for the >>>> packges that I compiled from ports. I wanted to save these somewhere >>>> so I wouldn't have to recompile them in the future. The handbook >>>> doesn't shed any light on this:( >>> >>> They are not saved separately but you can create backups using >>> pkg_create -b. >> >> In addition, you can use 'package' (or 'package-recursive') target >> instead of 'install' to create packages automagically. In that case >> target directory is set by PACKAGES variable. >> >> Have a look at ports(7) manpage for details. > > Many thanks too all who ansered, that's really helpful. I just had a > hard time compiling lighttpd and php5 together, so wanted to save them > as packages to spare me the headache in the near future. > > Have read the ports man I see that I can change the PACKAGES in the > environment, but how do I change the environment. Would I edit > /etc/make.conf at a guess? PACKAGES is environmental variable - you'll want to change the variable, not the environment ;) To change it system wide permanently - yes, editing /etc/make.conf would be a good idea. The alternatives are setting it in your shell environment (depends on what you use) or defining it at install time (every time) with something like 'make PACKAGES=/some/dir package'. And there are probably other methods, too :) HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: The best way to keep the system clean?
ronggui wrote: > My problem, many times I install some software from ports, it install > the dependency software. Then after some time, I find that software > isn't what I want, and deinstall it. At this point, the dependency > software isn't necessary as well. Is there a way to clean them > automatically, like the apt-get autoremove in the Ubuntu system. I don't know what apt-get autoremove does on Ubuntu but have you checked pkg_deinstall(1) and it's man page? Right from there: DESCRIPTION The pkg_deinstall command is a wrapper of pkg_delete(1) used to deinstall packages, which understands wildcards and is capable of *recursing through dependencies*. (emphasis mine) Have a look at -r and/or -R options. HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Override ports security restrictions?
Tim DeBoer wrote: > I'm trying to install /usr/ports/graphics/png > > ===> png-1.2.12_1 has known vulnerabilities: > => png -- DoS crash vulnerability. >Reference: > <http://www.FreeBSD.org/ports/portaudit/4cb9c513-03ef-11dc-a51d-0019b95d4f14.html> > => Please update your ports tree and try again. > *** Error code 1 > > While I can appreciate the attempt to protect me from doing something > "stupid", I really do need to get this installed, and from what I've > read, it looks like a non-issue for me. > > Is there a way to get "force" ports to install this package? from ports(7): % DISABLE_VULNERABILITIES % If defined, disable check for security vulnerabilities % using portaudit(1) (ports/ports-mgmt/portaudit) when % installing new ports. To force it this lony time use something like 'make -DDISABLE_VULNERABILITIES install'. HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Onpening and Closing ports
Andy Greenwood wrote: > On 2/13/07, Zbigniew Szalbot <[EMAIL PROTECTED]> wrote: >> Hello, >> >> Peter N. M. Hansteen wrote: >> > You can head them off rather easily with a short PF rule set, see >> > eg http://home.nuug.no/~peter/pf/en/bruteforce.html. >> > >> > They can actually be fun to watch :) >> >> It was funny for me because I set the max con rule to 10 and then logged >> in 10 times to see if that would work. Of course that did (silly me!) and >> as a result I blocked myself the access to the machine. I logged in from >> another IP and commented out the pf.conf file entries for the bruteforce >> but wonder how to empty the table (so that it does not contain my ip) and >> enable the bruteforce defence again. > > man pfctl. Specifically the -T switch. Also, have a look at security/expiretable. You can automagically remove entries from tables after specified time. It is mentioned in the article linked above [1]. HTH, Karol [1] http://home.nuug.no/~peter/pf/en/bruteforce.html -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: php upgrade to 5.2.1 fails because of extensions
Zbigniew Szalbot wrote: > Hello, Hi, > I know this is not the php list but looking for your advice. I wanted to > upgraded php 5.1.6 to 5.2.1 because of vulnarabilities but it failed to > install extenstions. There seems to be an error with extenstions in 5.2.1. What error, which extension? Seems to work fine here: $ uname -prs FreeBSD 6.2-STABLE i386 $ pkg_info -Ix php php5-5.2.1_2PHP Scripting Language (Apache Module and CLI) php5-bz2-5.2.1_2The bz2 shared extension for php php5-calendar-5.2.1_2 The calendar shared extension for php php5-ctype-5.2.1_2 The ctype shared extension for php php5-dom-5.2.1_2The dom shared extension for php php5-extensions-1.1 A "meta-port" to install PHP extensions php5-gd-5.2.1_2 The gd shared extension for php php5-iconv-5.2.1_2 The iconv shared extension for php php5-mcrypt-5.2.1_2 The mcrypt shared extension for php php5-mhash-5.2.1_2 The mhash shared extension for php php5-openssl-5.2.1_2 The openssl shared extension for php php5-pcre-5.2.1_2 The pcre shared extension for php php5-pdo-5.2.1_2The pdo shared extension for php php5-pdo_sqlite-5.2.1_2 The pdo_sqlite shared extension for php php5-posix-5.2.1_2 The posix shared extension for php php5-session-5.2.1_2 The session shared extension for php php5-simplexml-5.2.1_2 The simplexml shared extension for php php5-spl-5.2.1_2The spl shared extension for php php5-sqlite-5.2.1_2 The sqlite shared extension for php php5-tokenizer-5.2.1_2 The tokenizer shared extension for php php5-xml-5.2.1_2The xml shared extension for php php5-xmlreader-5.2.1_2 The xmlreader shared extension for php php5-xmlwriter-5.2.1_2 The xmlwriter shared extension for php php5-zlib-5.2.1_2 The zlib shared extension for php > I cannot downgrade (I issued sudo portupgrade -m > -DDISABLE_VULNERABILITIES -f php5 changing the Makefile and distinfo > entries to point to 5.1.6 and issuing make makesum and got): No, no, no, don't do that :) Changing port version is not simply as that. Many times you'll need patches for a specific version in ports_name/files directory. That is why your attempt failed. Btw, if you really want to downgrade have a look at ports-mgmt/portdowngrade. > Nor can I upgrade as these php5-extenstions won't install. Could anyone > advise what to do? Update your ports tree to a clean one (without your modifications to php port). Try again (be sure to upgrade any required dependencies), send errors if any. Regards, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: named not starting on reboot
Noah wrote: > Hi there, > > I am having troubles with named not starting on boot nor am I am able to > start it manually. I thought I have my chrootdir set correctly. > > here are my settings in my rc.conf > > s nip > > named_enable="YES" > named_uid="bind" > named_program="/usr/local/sbin/named" > named_flags="-c /etc/namedb/named.conf" > named_chrootdir="/var/named" > > snip--- > > > here are the /var/log/messages error: > > > Feb 27 09:07:46 access2 named[2058]: /etc/named.conf:6: change directory > to '/var/named/etc/namedb' failed: file not found ^^ Here is a mistake. Is a 'directory' in /etc/namedb/named.conf set to '/var/named/etc/namedb'? "/var/named/etc/namedb" is a global path, named starting in chroot won't be able to see it. Just change it back to "/etc/namedb". HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: -stable kernel and release 6.2 base system. Do they need to be in sync?
Wojciech Puchar wrote: > >> 6.2-Release. I only have updated the kernel so far. > > my question was what version of base system you have in /bin, /sbin, > /lib etc. Check the Subject line :) Cheers, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
Re: Optimizationn questions?
Gary Kline wrote: > Two quick one for kernel and/or compiler wizards: first, is > a 400Mz processor considered a 586 (for my KERNELCONF file)? That depends on processor architecture rather than clock frequency. Have a look at dmesg output - for example, Intel Celeron 400Mhz is a 686 class processor (I686_CPU in the kernel configuration file): % dmesg % [...] % CPU: Pentium II/Pentium II Xeon/Celeron (400.91-MHz 686-class CPU) % [...] > Second, is it safe to do a buildworld with -O3? If there are > stability concerns, I'll go with the default when I rebuild my > 6.2 systems. If you're going to do stability/performance/compatibility tests go ahead. In any other situation just stick with the defaults, which on 6.2-RELEASE for my Celeron are: # (cd /usr/src && make -V CFLAGS ) -O2 -fno-strict-aliasing -pipe -march=pentiumpro Note that '-march=pentiumpro' comes from setting 'CPUTYPE=i686' in /etc/make.conf (examples in /usr/share/examples/etc/make.conf). HTH, Karol -- Karol Kwiatkowski OpenPGP 0x06E09309 signature.asc Description: OpenPGP digital signature
