Re: strange localhost address
On Sat, 21 Jan 2012 11:13:18 +0100 Jan Stary wrote: > So, in OP's case, where there is no 'lookup' in resolv.conf, > the nameserver 192.168.1.1 is consulted first, right? Correct. # echo "lookup file bind" > /etc/resolv.conf.tail
Re: Radeon 4200 and azalia audio problems
On Sat, 28 Jan 2012 15:20:27 -0500 Scott McEachern wrote: > [*1] - I'm not sure exactly when this popped up matthieu@ updated the ati driver recently. (yesterday? check the source-changes@ archives, http://www.openbsd.org/faq/current.html ) ati cards are now all attached to the opensource ati x driver. sorry to hear (...) that caused some hdmi-audio regressions for you. you might want to look for similar reports upstream. Cheers, - Robert
Re: pf.conf man page question (pass rule matching vs. state creation)
On Sun, 29 Jan 2012 12:46:21 -0600 corey clingo wrote: > Should I be using match rules to do nat-to/rdr-to > instead? Yes.
Re: Starting out
On Sun, 29 Jan 2012 21:14:19 +0100 Pruttel wrote: > Did not know that where do you find the guides to do something like > that http://www.openbsd.org/faq/faq15.html
Re: Unbound in base
On Tue, 14 Feb 2012 17:16:15 + (UTC) Stuart Henderson wrote: > On 2012-02-14, Gregory Edigarov wrote: > > unbound-control should be renamed to more convenient 'unboundctl'. > > and break scripts that are meant to work with cross-OS deployments? nah, he is talking bout convinience, not sanity, eh? # grep unbound-control ~/.kshrc alias ubc="/usr/local/sbin/unbound-control"
Re: Transparent smtp/pop3 proxy
On Thu, 28 Jul 2011 18:00:03 -0300 "R0me0 ***" wrote: > when clients send or receive an email, OpenBSD catch this mail and > send a copy of this to another email account, it must be > transparently to user. bad juju! sooo, you want to intercept email not destined for yourself. you are asking about it on a public mailinglist. hmmm, hot water, bad karma. ethically "you will be reborn as a snail and those that help you with it won't even have a house on their backs". if you have control over the clients that are sending mail, lets say in a corporate enviroment, where the people sending mail are aware of the "copying policy"... you don't do it transparently, but by mandatory configuring the mail clients to use one of your smarthosts to send mail. copy/duplicate it there. that's a smtpd solution you are looking for. otherwise, feel obligated to educate your "clients" to configure their mailcients to use ssl/tls for receiving/sending mail. if you are being presured into implementing that spy stuff, lets say by your boss, just tell ver "i'll get to it". if you get fired over it, get a lawyer and a hopefully satisfying settlement. blub, - Robert
Re: Transparent smtp/pop3 proxy
On Thu, 28 Jul 2011 19:39:20 -0300 "R0me0 ***" wrote: > Yes is corporate organization, all employees are aware that a copy of > sended and received email. > All employees sign a document which they are aware. Here, in Brazil, > since that exists a document, signed, it is valid, of course. > Nothing ilegal. > Thank you, you help me so much, So the incoming mail allready touches "your own" smtpd. For outgoing mail, as i said, _smarthost_ and do the best you can to block any mail that isn't going out through there. (eg via pf rules) You will only catch the low hanging fruits as there are too many possible ways to deceive by any determined person. Blocking all webmail websites from work? :) It only works if the people are not trying to get around the set limitations. Even with deep packet inspection, you won't get that one mail you setup all that hupla-di-do up for. Cheers, - Robert
Re: Laptop hard drive and emergency unload
On Mon, 05 Sep 2011 14:25:46 -0400 Steve wrote: > For the fun of it, I just installed 4.9 (AMD64) on an SD card, booted > from the card and mounted one of my Ext3 partitions on the hard disk. > I copied a file from the disk to the card to be sure it was active, > umounted the hard disk and halted. Not a sound from the disk no > click, nothing. for testing, use -current/snapshots. http://marc.info/?l=openbsd-cvs&m=127460880427991&w=2 """ Changes by: kette...@cvs.openbsd.org2010/05/23 03:58:58 Modified files: sys/dev/ata: wd.c Log message: Place drive in standby mode before shutdown. Avoids the loud click heard on many laptops when powering them down. """ That went into 4.8, the oldest supported OpenBSD version. "Hail to the kettenis@, baby!"
Re: Firefox 6
On Wed, 7 Sep 2011 12:13:21 + Kevin Chadwick wrote: > All the desktops do use noscript though so maybe it's javascript > related? It is the javascript garbage collector that isn't doing its job right. Memory allocated for pages that use javascript and refresh themself, like monitoring or webinterfaces, will just keep growing if one keeps it open. Switching tabs frees some of that memory.
Why aren't you running -current?
Seriously, why?
Re: Why aren't you running -current?
On Wed, 7 Sep 2011 17:13:37 -0700 patrick keshishian wrote: > i'm sorry :( don't be sorry, just tell me why, i am just curious.
Re: State of Intel HD GPU (HM55) - or how it will do on HP's Pavilion DM4
On Fri, 9 Sep 2011 13:48:16 -0400 Luis Useche wrote: > My intel hd graphics works fine on a Dell Latitude 13. Doesn't matter for him, yours is a core2, not a sandy with onchip graphics.
Re: State of Intel HD GPU (HM55) - or how it will do on HP's Pavilion DM4
On Fri, 09 Sep 2011 17:16:36 +0100 Matej D=ach wrote: > Intel HD Graphics (HM55 chipset) - including GPU acceleration (at > least 2D). It is being worked on. Atm from what i have read, even the vesa driver doesn't work that good. Owain has posted a diff for this on tech@ recently. (search for "sandybride"). But there is more work to do, like pulling in the Xorg bits. I'd say dualboot for now, see what works and help yourself by testing the offered patches.
Re: Why aren't you running -current?
On Wed, 07 Sep 2011 21:15:14 -0400 "Eric Furman" wrote: > On Thursday, September 08, 2011 1:56 AM, "roberth" > wrote: > > Seriously, why? > > Because I don't need to. > Good enough? > Do I now have your approval? > Seriously? :)
Re: Why aren't you running -current?
Thanks, for the replys. I guess "seriously" is a too harsh work to use on a mailinglist. Sorry to those that took the question other than it was intended.
Re: frontpage openbsd
On Fri, 09 Sep 2011 11:19:56 -0700 "Carlos A. Garcia G." wrote: > well actually it is a weird web master how says that fronpage rocks > so he can upload the web page like smooth You could allways update the "webmaster" first. Frontpage was an abomination 10 years ago, i doubt that has changed since.
Re: frontpage openbsd
On Fri, 9 Sep 2011 19:58:36 + (UTC) Stuart Henderson wrote: > On 2011-09-09, Carlos A. Garcia G. wrote: > > ok ill try to find out how to puch the webmaster so he change his > > mind, let me get the info from the webmaster. > > the only reason he said its "Frontpage have a marvelous tools and > > with my frontpage i can upload the website without messing the ftp" > > Microsoft's unix FPSE have been end-of-life for 5 years. > http://www.rtr.com/fpsupport > > On OpenBSD the port used bsdi emulation (compat_bsdos) which was > removed in 4.8; then switched to freebsd emulation, which is removed > in the forthcoming 5.0 release. So if you can find the 5-year-old > code to even run it, you'll be stuck unable to update your server. > > You might look at webdav (ports/www/mod_dav) instead. It's probably > equally simple for Windows users to upload files this way. > > >> On Sat, Sep 10, 2011 at 3:12 AM, Chris > >> Cappuccio wrote: > >>> somebody actually wrote their own open source replacement for the > >>> frontpage CGIs sometime, that might be worth a look. i'm sure you > >>> can find it searching around. > > http://www.nimh.org/dl/fpse.tgz; incomplete, and also very old. Ah, thx for the input, good to know, if i ever have to deal with someone stuck in the last century.
any know bugs with sleep/resume on systems with 8GB ram?
Hi, got around to upgrade my Thinkpad X200 (amd64) to 8GB RAM from 2GB. Since then after resume from sleep X is very laggy. Not just talking about apps that were open before the sleep/resume cycle, but also newly started. After rebooting the system every thing is dandy. Anyone? Ideas where to start investigating? - Robert
Re: any know bugs with sleep/resume on systems with 8GB ram?
On Fri, 09 Sep 2011 15:22:45 -0600 Theo de Raadt wrote: > This bug is actually known. > > Mike Larkin discovered that some machines are resuming with some of > their high memory uncached. You can use memconfig(8) to force it back > to cached. (I don't recall exactly, but it may already show as > cacheable, except it isn't). and he replied with the gapstop, this is too fsck'n optimal. thx! when you are in germany again, just tell me what kind of of dev-support "juice" you'd like.
Re: any know bugs with sleep/resume on systems with 8GB ram?
On Fri, 9 Sep 2011 14:11:28 -0700 Mike Larkin wrote: > This is a known issue with MTRRs on that model and a few others. > The MTRRs are not being reprogrammed properly on resume, and the > result is a large range of memory resuming as non-cacheable. > > It is on the radar to be fixed (a few of us have looked at this but > no fix has come yet). > > Here's what I did: > > 1. memconfig list - note the non-bios memory ranges at the end of > the list > 2. make yourself a script that you can run as root after resume. > Mine looks like this: > > > memconfig set -b 0x0 -l 0x8000 write-back > memconfig set -b 0x8000 -l 0x4000 write-back > memconfig set -b 0x1 -l 0x1 write-back > memconfig set -b 0x2 -l 0x4000 write-back > > You'll need to get the base and length values from step 1. > Basically, you're just resetting the cacheability bits to whatever > 'memconfig list' says they should be. > > This will probably be fixed at some point, but for now, it's not. > > -ml crazy responsetime, i'll give that a try, thx alot!
Re: OpenBSD ACER aspire 9300 laptop install panic
On Sat, 10 Sep 2011 22:47:38 +0200 (CEST) marc.verwe...@telenet.be wrote: > When I boot 5.0-current (8 of sept) I don't get a panic screen. But > the install halts and nothing happens. Last line I see is: > entry point at 0x20012 > and that's it. full error? text leading up to this? yeah, typing all that is a hassle, but then somebody might actually try/be able to help you.
Re: Simple queue rule to restrict user bandwidth usage
On Tue, 13 Sep 2011 14:40:26 +0530 Siju George wrote: > Hi, > > I have a 4 mbps Internte connection. > How do I restrict all users such that no one uses more than 1mbps at > a time. Just want to limit downloads so that it does not affect > others. It would be great if i can get some tip on using ALTQ for this > > Thanks > > --Siju > cbq on the internal interface, with all the usual shortcommings of not having any control about what gets send to the external interface. http://www.openbsd.org/faq/pf/queueing.html#cbq
Re: OpenBSD on plugcomputers
On Sun, 13 Feb 2011 21:04:33 +0100 Paolo Aglialoro wrote: > Has anyone had experiences about installing OpenBSD on similar > devices? With which results? No. Why? The hardware is crap. The idea itself is ok, but the execution is not up to expectations. Overheating, breaking the hw, mostly related to the powersupply, ... No point to consider them as a platform. Just read the user complaints.
Re: Tracking What it's changing in current
On Wed, 16 Feb 2011 12:01:22 -0500 Luis Useche wrote: > One thing I would really like to see is the diffs of every commit. > This is available for DragonflyBSD for instance. Is there a way to > find this on OBSD? that data representation is not provided by the project in the way that you want it. that said, cvs takes date as an argument. yes, what you want will take some scripting elbow grease. one could even have a button in any decent mail-client to click for that. if you want it on a "per commit" basis, every commit bumps the touched files version. if you're lazy... look at cvsweb for every file touched mentioned in the mail on source-changes@. jup, even that is scriptable. boils down to: just diff a checkout of the relevant files before and after the commit. (don't bother with anoncvs for that, mirror the tree locally, cvsync is your friend.)
Re: SSD disk alignment
On Sat, 12 Mar 2011 11:54:00 +0100 Markus Schatzl wrote: > To my understanding, matching the erase block size of SSD > memory can produce a gain in performance, however the most > important thing is to align at 4k boundaries. > > As this is the case, the current (pre 4.9) state in OpenBSD is > handling the setup of SSD disks in the best possible way > automatically. From your replies I conclude that there should be > no additional configuration necessary. For 4KB sector disks the magic number for alignment is multiples of 8. That case has been handled by bumping the offset to 64sec. With SSDs you really wan't to align on erase-blocks or multiples of their size. Most SSDs use 512KB EBs, newer drives are switching to 1MB EBs. (multiples of 1024 or 2048 512byte sectors) If you don't align on EBs you will have higher write amplification. The drive won't last as long. Unaligned you will have to touch 2 blocks instead of one more often, the disk will get slower sooner too; OpenBSD does not support Trim atm. (Talking about "normal" controllers,not about Sandforce like solutions.)
Re: Support for Intel X520-T2 10GbaseT cards
On Wed, 16 Mar 2011 04:39:21 +1100
Jonathan Gray wrote:
> On Tue, Mar 15, 2011 at 05:02:38PM +0100, Peter Hallin wrote:
> > Hi all,
> >
> > After reading the manpages for ix(4) "Intel 82598/82599 PCI Express
> > 10Gb Ethernet device",
> > I drew the conclusion that the X520-T2
> > (http://www.intel.com/Products/Server/Adapters/esa-x520-t2/ethernet-esa-x520-
> > t2-overview.htm)
> > would also be supported by the driver, so we took a shot and bought
> > a pair for our firewalls.
> >
> > It is based on the 82599 chipset, so why wouldn't it? My mistake,
> > is seems..
> >
> > I get an "unknown product 0x151c" error in dmesg (see below).
> >
> > So now we have a pair of these cards and the obvious question is of
> > course, will they be supported?
> >
> > I realize that I should have checked this before I bought it,
> > but as Intel claims in the specs
> > (http://www.intel.com/Assets/PDF/prodbrief/318349-004.pdf)
> > it is supported by FreeBSD and I believe that's from where the
> > driver was ported.
> >
> > I'm very grateful for any input.
>
> This is a diff against -current not 4.8 but perhaps it applies there
> as well:
>
> you'll have to apply this from /usr/src/sys/dev/pci and then
> run 'make' in the directory to regenerate the pcidevs headers
>
> Index: pcidevs
> ===
> RCS file: /cvs/src/sys/dev/pci/pcidevs,v
> retrieving revision 1.1590
> diff -u -p -r1.1590 pcidevs
> --- pcidevs 26 Jan 2011 07:09:09 - 1.1590
> +++ pcidevs 15 Mar 2011 17:31:38 -
> @@ -2492,6 +2492,7 @@ product INTEL 82580_SGMII 0x1511
> 82580 S product INTEL 82580_COPPER_DUAL 0x1516 I340-T2
> (82580) product INTEL 82599_KX4_MEZZ 0x1514 10GbE KX4
> (82599) product INTEL 82576_NS_SERDES 0x1518 82576NS
> SerDes +product INTEL 82599_T3_LOM0x151c 82599 T3
> product INTEL 82576_QUAD_CU_ET2 0x1526 PRO/1000 QP
> (82576) product INTEL 80960RP_ATU 0x1960 80960RP ATU
> product INTEL 82840_HB 0x1a21 82840 Host
> Index: if_ix.c
> ===
> RCS file: /cvs/src/sys/dev/pci/if_ix.c,v
> retrieving revision 1.46
> diff -u -p -r1.46 if_ix.c
> --- if_ix.c 10 Nov 2010 15:23:25 - 1.46
> +++ if_ix.c 15 Mar 2011 17:31:39 -
> @@ -68,7 +68,8 @@ const struct pci_matchid ixgbe_devices[]
> { PCI_VENDOR_INTEL,
> PCI_PRODUCT_INTEL_82599_COMBO_BACKPLANE }, { PCI_VENDOR_INTEL,
> PCI_PRODUCT_INTEL_82599_CX4 }, { PCI_VENDOR_INTEL,
> PCI_PRODUCT_INTEL_82599_SFP },
> - { PCI_VENDOR_INTEL, PCI_PRODUCT_INTEL_82599_SFP_EM }
> + { PCI_VENDOR_INTEL, PCI_PRODUCT_INTEL_82599_SFP_EM },
> + { PCI_VENDOR_INTEL, PCI_PRODUCT_INTEL_82599_T3_LOM }
> };
>
> /*
> @@ -1251,6 +1252,10 @@ ixgbe_identify_hardware(struct ix_softc
> case PCI_PRODUCT_INTEL_82598EB_XF_LR:
> sc->hw.mac.type = ixgbe_mac_82598EB;
> sc->optics = IFM_10G_LR;
> + break;
> + case PCI_PRODUCT_INTEL_82599_T3_LOM:
> + sc->hw.mac.type = ixgbe_mac_82599EB;
> + sc->optics = IFM_10G_T;
> break;
> case PCI_PRODUCT_INTEL_82598AT_DUAL:
> case PCI_PRODUCT_INTEL_82598AT:
>
And this one here?
Index: ixgbe_82599.c
===
RCS file: /cvs/src/sys/dev/pci/ixgbe_82599.c,v
retrieving revision 1.2
diff -u -p -r1.2 ixgbe_82599.c
--- ixgbe_82599.c 25 Feb 2010 10:56:07 - 1.2
+++ ixgbe_82599.c 15 Mar 2011 17:27:55 -
@@ -416,6 +416,9 @@ enum ixgbe_media_type ixgbe_get_media_ty
case IXGBE_DEV_ID_82599_CX4:
media_type = ixgbe_media_type_cx4;
break;
+ case IXGBE_DEV_ID_82599_T3_LOM:
+ media_type = ixgbe_media_type_copper;
+ break;
default:
media_type = ixgbe_media_type_unknown;
break;
Re: Support for Intel X520-T2 10GbaseT cards
On Wed, 16 Mar 2011 06:26:20 +1100 Jonathan Gray wrote: > On Tue, Mar 15, 2011 at 06:56:24PM +0100, roberth wrote: > > > > And this one here? > > This should be handled by the default case as the > start of the function, already. Sure, it is, the freebsd driver is checking this twice, my bad. > > > > Index: ixgbe_82599.c > > === > > RCS file: /cvs/src/sys/dev/pci/ixgbe_82599.c,v > > retrieving revision 1.2 > > diff -u -p -r1.2 ixgbe_82599.c > > --- ixgbe_82599.c 25 Feb 2010 10:56:07 - 1.2 > > +++ ixgbe_82599.c 15 Mar 2011 17:27:55 - > > @@ -416,6 +416,9 @@ enum ixgbe_media_type ixgbe_get_media_ty > > case IXGBE_DEV_ID_82599_CX4: > > media_type = ixgbe_media_type_cx4; > > break; > > + case IXGBE_DEV_ID_82599_T3_LOM: > > + media_type = ixgbe_media_type_copper; > > + break; > > default: > > media_type = ixgbe_media_type_unknown; > > break;
Re: Choosing a window manager...
On Thu, 17 Mar 2011 17:32:50 +0300 Krutov Mikle wrote: > On Tue, Mar 15, 2011 at 02:50:50PM -0400, marc wrote: > > > > I'm deciding between kde, xfce, gnome, and fluxbox (in order of > > preference). Any experiences? Any relevant security issues on any > > of them? > > > > Thanks, > > Marc > > > Hello, list! > Just for my information: > I can not even imagine 'security issue' in _window_manager_ (not the > whole desktop environment). > Could anyone provide me an example? # man -k aperture
Re: Create a custom RAMDISK
On Mon, 21 Mar 2011 20:53:19 + Kevin Chadwick wrote: > On Mon, 21 Mar 2011 16:25:02 -0300 > Rodrigo Mosconi wrote: > > > Dears, > > > > I wonder how to create a custom ramdisk. My needs are a RAMDISK > > with the network setup (hostname.if, for example) to setup servers > > over the network. > > > > Thanks, > > > > man mfs > ambiguous, but he is looking for ramdisk in the context of bsd.rd: man release faq section 5 /usr/src/distrib/ramdisk/ /usr/src/distrib//ramdisk*/ and the many threads about that topic in the archives...
Re: MAXDSIZ
On Wed, 30 Mar 2011 13:15:10 -0500 Amit Kulkarni wrote: > OpenBSD just returns kernel page memory very very quickly, so it is > difficult for it to consume more :). But seriously, after this > compile, kernel was holding onto some memory. At idle (after > compilation) it was an excess of 300-500M more, instead of 1-1.3G, it > was around 1.7G. Opensolaris does aggressive caching trying to > maintain and fill out all the available RAM, but OpenBSD gives back > the memory very very quickly. concerning the file cache, sysctl kern.bufcachepercent=90 runs flawlessly; maybe worth a default setting.
Re: MAXDSIZ
On Wed, 30 Mar 2011 22:12:56 +0200 Benny Lofgren wrote: > On 2011-03-30 17.48, Jeff Ross wrote: > > On 03/30/11 05:21, Tony Berth wrote: > > Worse, an amd64 kernel looking at 8GB of real, physical ram only > > makes a wee bit under 3GB available. > > real mem = 3220111360 (3070MB) > > avail mem = 3120357376 (2975MB) > > That depends somewhat on the hardware you're running on, most likely > the address space footprint made by the video memory. This is what > one of my Supermicro servers looks like: > real mem = 3756720128 (3582MB) > avail mem = 3650265088 (3481MB) Yep, that 4gb limit is not "available memory presented to the user", but is the maximum addressable memory space for the whole system. Those "2GB" of RAM on the graphicscard, in order to be be accessible, are mapped into that area/amount before the "user" get's its share.
Re: dmesg changes
On Mon, 11 Apr 2011 01:29:49 +0200 frantisek holop wrote: > my new dmesg puzzles me in 2 ways: > 1. how can be the kernel # smaller of a later kernel, > if these are both 4.9-current? # rm -rf /usr/src/sys//compile/GENERIC* do that every time, so what? :) > 2. what is the extra hard disk information? you should subscribe to source-changes@, while following current, the "sd" / scsi part narrows it down to a single commit. ;)
Re: Packages security updates
On Mon, 18 Apr 2011 23:45:10 +0200 enclair wrote: > Hi, > > the FAQ says: > > "When serious bugs or security flaws are discovered in third party > software, they are fixed in the *-stable* branch of the ports tree. > Remember that the lifecycle is 1 release: only the current and last > release are updated" > > Does it mean: > > 1) 4.8-stable and -current have security updates for packages. > > or > > 2) 4.7-stable and 4.8-stable have security updates for packages. > > ? > > Thanks. > none of those two options. no packages (, yet). if someone gets around to it, the updated port will be in the -stable ports tree, still have to build it yourself. and if you are not running the latest -release or -current, in most cases you are doing it wrong. :)
Re: Why does GENERIC kernel for OpenBSD 4.8 and 4.9 not support software RAID
On Wed, 04 May 2011 15:38:46 -0700 Tyler Morgan wrote: > On 5/4/2011 10:04 AM, Josh Grosse wrote: > http://www.ec (plz all stop pushing that links search engine rank.) > I think this is mainly due to the fact that softraid can't be used > for the root partition (or booted off of, for now). This leads > everyone to follow RAIDFrame guides to install OpenBSD onto software > RAID1, but nobody bothers to mention that RAIDFrame isn't actually > maintained anymore. > > And I have a feeling it's why my routers crash once every few months > or so with some odd, sd0/sd1 related FIFO errors (using SSDs too...). > I'm currently pulling RAIDFrame out of various routers and not using > any RAID at all anymore -- CARP + pfsync + duplicate hardware is > enough for what these routers do. > > In no way am I blaming anyone here -- it's obviously my fault that I > didn't read the 4.7 FAQ closer and learn about softraid -- but I > think large amounts of people are being lead to RAIDFrame via Google > without fully realizing what they are using or why they might be > making a bad decision. Along the line of: "Why tf doesn't my root-partition change often enough, so that i am not ok by simply using ALTROOT? Didn't expect me to read the afterboot manpage as i was prompted, didn't you?" (Not addressing you personally, just picking up the vibe.)
Re: Why does GENERIC kernel for OpenBSD 4.8 and 4.9 not support software RAID
On Thu, 5 May 2011 07:00:50 -0400 Nico Kadel-Garcia wrote: > The documentation on bioctl is reasonably, and detailed, and not very > useful due to not having examples for noobs. kind of the point. the examples explain the syntax in a more readable way. the manpages encourage to understand how the magic works, instead of just blindly pressing the blue button.
Re: Routing Priority and Default GW
On Thu, 5 May 2011 15:43:21 -0400 Ryan Ivey wrote: > ath0: flags=8863 > inet 192.168.0.200 netmask 0xff00 broadcast 192.168.0.255 > sis0: flags=8843 mtu 1500 > inet 192.168.0.199 netmask 0xff00 broadcast 192.168.0.255 networking 101. the ip of both interfaces is in the same network... you have to put the interfaces on different subnets, or split the 192.168.0.0/24 by using apropriate netmasks. (wikipedia -> subnetwork)
Re: pfctl: DIOCADDRULE: Operation not supported by device
On Sun, 8 May 2011 14:54:21 -0400 Chris Smith wrote: > Is there a good way to avoid this? Is it safe to skip rebooting > between the kernel build and userland build? Or would it work to > manually build and install pfctl before the reboot after the kernel > build? Or something else that hasn't occurred to me yet? Yes, just skip the reboot. Isn't adviced anymore in upgradeXX.html. Remember to save the old reboot binary as a precaution before building base when running -current or upgrading releases from source.
Re: pfctl: DIOCADDRULE: Operation not supported by device
On Sun, 08 May 2011 21:48:25 +0200 Erik wrote: > You are aware that this question concerns following -current? And > that you are strongly advised to follow the FAQ when building > -current as others already pointed out? "Building from source. Got error after kernel reboot." "Dude, rtfaq! Kernel and userland out of sync. Build base and reboot..." Uhum. Sure that's a way to approach this. That's the supported way. With that ammount of "support" required. Fine with that. On the otherhand, i have been running -current for years and never have had any problem with building source with the previouse kernel (without reboot) that i can remember. Maybe my 3 digit amount of builds isn't enough or i built at the wrong states of the tree. So let me rephrase, ... Follow the FAQ and do it that way, because then you can come to the list and ask. (Like OP did.) So take my "just build base without rebooting" as personal advice. Never said anything about this being the project endorsed way. But it works for me, maybe it does for you, too... Don't come asking for help onlist, if you didn't follow the faq thou, might lose you karma. Just try again as the faq says and ask after that. Even if something breaks in the worst way because of not rebooting, simply updating with a snapshot will get you back on track. Concerning remote-updates, "from source" will run into more problems than "from a known good set of tarballs". That's simple statistics, because of how many binarys are involved. (remote console access helps, but still might mess up your sla.)
Re: OpenBSD on a SDHC or a microSDHC card - tips
On Sun, 08 May 2011 09:28:23 -0700 lancebaynes87 wrote: > I'm not really interested in the install, I can do that. I'm > searching for solutions regarding the problems running it on an > (micro?)SDHC card. What problems? Just use it like any other kind of drive. Need a knob to fiddle? Try kern.bufcachepercent . The effect will be more prominent with slow drives like sd-cards.
Re: Ethernet on AOD255E
On Wed, 18 May 2011 08:30:43 +0200 "Meyer Jerome" wrote: > OpenBSD 4.9 (GENERIC.MP) #794: Wed Mar 2 07:19:02 MST 2011 > dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP > "Attansic Technology L2C" rev 0xc1 at pci1 dev 0 function 0 not > configured ... The patch you are refering to is not yet in the sourcetree and you would like to test it. Development happens in -current, so: 1. Update your system with the latest snapshot. 2. Populate /usr/src with a -current source tree. 3. Save the diff to a file. Patch your tree. For the diff you mentioned: # cd /usr/src # patch -p0 < file_with_diff 4. Rebuild your system from source. Have a look at the FAQ for details.
Re: Ethernet on AOD255E
> 3. Save the diff to a file. >Patch your tree. For the diff you mentioned: ># cd /usr/src ># patch -p0 < file_with_diff And now that sthen@ has commited those changes, you can skip this step. You just have to wait for your mirror of choice to catch up.
Re: question about kate
On Wed, 18 May 2011 14:05:44 -0800 Michael wrote: > Installed 4.9 and fan starts blowing on startup. Most systems are at full speed on boot. > # sysctl hw.setperf=30 > Is that all I can do? Uhm, just run ampd -C ? # grep apmd /etc/rc.conf.local apmd_flags="-C" > Curious why kate (in dmesg) has: > kate0 at pci0 dev 24 function 3 "AMD AMD64 0Fh Misc Cfg" rev 0x00 What is strange about that?
-current not working on Thinkpad X200
Hi, just a headsup "no clue" report until i find time to investige. -current checked out ~ 2011-06-04T00:00CET won't boot on my Thinkpad X200. Stops after configuring softraid0.. (Have /home on crypto softraid that get's "mounted" in rc.local.) Last known working kernel, that i can confirm, below. But pretty sure, i ran something less than a week old, just didn't obsd it. (j.3. snapshot borked also.) hitting an msi fuckup? Cheers, - Robert OpenBSD 4.9-current (GENERIC.MP) #0: Thu May 12 02:16:49 CEST 2011 rob...@openbsd.pap.st:/usr/src/sys/arch/amd64/compile/GENERIC.MP real mem = 2037059584 (1942MB) avail mem = 1968783360 (1877MB) mainbus0 at root bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xe0010 (68 entries) bios0: vendor LENOVO version "6DET61WW (3.11 )" date 11/10/2009 bios0: LENOVO 74542GU acpi0 at bios0: rev 2 acpi0: sleep states S0 S3 S4 S5 acpi0: tables DSDT FACP SSDT ECDT APIC MCFG HPET SLIC BOOT ASF! SSDT acpi0: TCPA SSDT SSDT SSDT wakeup devices LID_(S3) SLPB(S3) IGBE(S4) acpi0: EXP0(S4) EXP1(S4) EXP2(S4) EXP3(S4) USB0(S3) USB3(S3) USB5(S3) acpi0: EHC0(S3) EHC1(S3) HDEF(S4) acpitimer0 at acpi0: 3579545 Hz, 24 bits acpiec0 at acpi0 acpimadt0 at acpi0 addr 0xfee0: PC-AT compat cpu0 at mainbus0: apid 0 (boot processor) cpu0: Intel(R) Core(TM)2 Duo CPU P8600 @ 2.40GHz, 2394.35 MHz cpu0: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,NXE,LONG cpu0: 3MB 64b/line 8-way L2 cache cpu0: apic clock running at 284MHz cpu1 at mainbus0: apid 1 (application processor) cpu1: Intel(R) Core(TM)2 Duo CPU P8600 @ 2.40GHz, 2561.58 MHz cpu1: FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,SSSE3,CX16,xTPR,PDCM,SSE4.1,NXE,LONG cpu1: 3MB 64b/line 8-way L2 cache ioapic0 at mainbus0: apid 1 pa 0xfec0, version 20, 24 pins ioapic0: misconfigured as apic 2, remapped to apid 1 acpimcfg0 at acpi0 addr 0xe000, bus 0-63 acpihpet0 at acpi0: 14318179 Hz acpiprt0 at acpi0: bus 0 (PCI0) deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 deref: \\_SB_.PCI0._PRT 1 acpiprt1 at acpi0: bus -1 (AGP_) acpiprt2 at acpi0: bus 2 (EXP0) deref: \\_SB_.PCI0.EXP0._PRT 1 deref: \\_SB_.PCI0.EXP0._PRT 1 deref: \\_SB_.PCI0.EXP0._PRT 1 deref: \\_SB_.PCI0.EXP0._PRT 1 acpiprt3 at acpi0: bus 3 (EXP1) deref: \\_SB_.PCI0.EXP1._PRT 1 deref: \\_SB_.PCI0.EXP1._PRT 1 deref: \\_SB_.PCI0.EXP1._PRT 1 deref: \\_SB_.PCI0.EXP1._PRT 1 acpiprt4 at acpi0: bus -1 (EXP2) acpiprt5 at acpi0: bus 5 (EXP3) deref: \\_SB_.PCI0.EXP3._PRT 1 deref: \\_SB_.PCI0.EXP3._PRT 1 deref: \\_SB_.PCI0.EXP3._PRT 1 deref: \\_SB_.PCI0.EXP3._PRT 1 acpicpu0 at acpi0: C3, C2, C1, PSS acpicpu1 at acpi0: C3, C2, C1, PSS acpipwrres0 at acpi0: PUBS acpitz0 at acpi0: critical temperature 127 degC acpitz1 at acpi0: critical temperature 104 degC acpibtn0 at acpi0: LID_ acpibtn1 at acpi0: SLPB acpibat0 at acpi0: BAT0 model "42T4534" serial 116 type LION oem "SANYO" acpibat1 at acpi0: BAT1 not present acpiac0 at acpi0: AC unit online acpithinkpad0 at acpi0 acpidock0 at acpi0: GDCK not docked (0) cpu0: Enhanced SpeedStep 2561 MHz: speeds: 2401, 2400, 1600, 800 MHz pci0 at mainbus0 bus 0 pchb0 at pci0 dev 0 function 0 "Intel GM45 Host" rev 0x07 vga1 at pci0 dev 2 function 0 "Intel GM45 Video" rev 0x07 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) intagp0 at vga1 agp0 at intagp0: aperture at 0xd000, size 0x1000 inteldrm0 at vga1: apic 1 int 16 drm0 at inteldrm0 "Intel GM45 Video" rev 0x07 at pci0 dev 2 function 1 not configured "Intel GM45 HECI" rev 0x07 at pci0 dev 3 function 0 not configured em0 at pci0 dev 25 function 0 "Intel ICH9 IGP M AMT" rev 0x03: apic 1 int 20, address 00:1f:16:12:34:56 uhci0 at pci0 dev 26 function 0 "Intel 82801I USB" rev 0x03: apic 1 int 20 uhci1 at pci0 dev 26 function 1 "Intel 82801I USB" rev 0x03: apic 1 int 21 uhci2 at pci0 dev 26 function 2 "Intel 82801I USB" rev 0x03: apic 1 int 22 ehci0 at pci0 dev 26 function 7 "Intel 82801I USB" rev 0x03: apic 1 int 23 usb0 at ehci0: USB revision 2.0 uhub0 at usb0 "Intel EHCI root hub" rev ehci0: 2.00/1.00 addr 1 azalia0 at pci0 dev 27 function 0 "Intel 82801I HD Audio" rev 0x03: apic 1 int 17 azalia0: codecs: Conexant CX20561 audio0 at azalia0 ppb0 at pci0 dev 28 function 0 "Intel 828
Re: Sendmail+SSL+SASL
On Tue, 21 Jun 2011 23:24:11 +0200 gdrm wrote: > Hello misc, > I'm trying to configure OpenBSD4.9 with Sendmail as a mail server and > so far, so good, I have a configuration with static IP, masked and > with ssl support, but I can not figure out how to implement sasl, > someonehas a link where to find information and guides on the subject? > thanks > # man starttls (as referenced in the sendmail manpage.) or have a look at the sendmail website? or just use postfix and be a lot happier. ;)
OT (kinda): someone else killed a ssd while running openbsd on it?
Lo, anyone ever killed a SSD while running OpenBSD ontop of it? Maybe i just got a bad sample, but my Intel X25-M died after ~3 month. Suspiscious io-error area inside /usr/src. SMART 'End to End Error Detection count' went tits up. Not user fixable. RMA'd just fine. Just wondering if someone else had any problems themself with other SSD's running OpenBSD. ~roberth
Re: Distribute bandwidth by IP's
On Tue, 07 Sep 2010 13:34:45 -0500 Hermes Ojeda Ruiz wrote: > On 07/09/10 13:21, roberth wrote: > > On Tue, 07 Sep 2010 13:15:03 -0500 > > Hermes Ojeda Ruiz wrote: > > > > > >> Hi, Maybe this is a basic question, but I've read the man pages and > >> the PF book and I don't know how solve this problem. > >> > >> - I have an E1 and the problem is how to distribute the bandwidth > >> equally on all the ip's. There are some constraints like use DHCP, > >> and no block ports. The company provide full access internet to the > >> clients, and the only limit to the client is the bandwidth, that > >> one client don't consume all the bandwidth, and all have a good > >> service. > >> > >> I have some simple firewalls with prioritization, but I don't know > >> how should do that. May be with CBQ but they are a lot of rules. > >> > >> I found this: http://marc.info/?l=openbsd-pf&m=111772724522153&w=2 > >> > >> Can I do that with PF? Need another tool? > >> > >> Sorry, my english is a really bad thing. > >> > >> Thanks in advance with your support. > >> > >> > > Start here: > > http://www.openbsd.org/faq/pf/queueing.html > > > Yes, I have read it. > May be with CBQ I can do that, but there are ~150 ip's > > Thanks for your fast reply. > (...) So just put ~150 (*2 for both directions) child queues in your config. Seems tedious, but that's the way it works atm. Only shortcut i am aware of is to use a script to generate those lines instead of copy/paste/edit. ;)
Re: choosing outgoing interface based on process uid
On Sat, 18 Sep 2010 20:12:32 +0300 Imre Oolberg wrote: > Hallo! > > I have OpenBSD v. 4.7 i386 firewall with two outgoing internet > connections (of which one is default gateway and the other could be > used with route-to, for example) and serveral networks behind it. On > the firewall runs Squid process as user _squid and it does > transparent http proxy for inner networks. I tried to read man route > and man pf.conf but cant figure out on my own whether it is possible > or how to set up my firewall so that Squid's requests go out thru > that internet connection which isn't default gateway. > > I know it is possible to use different routing tables and pf lets act > on locally generated packets based on the respective process UID but > i just cant add them up to accomplish what i described. Help would be > appreciated! :) > > > Best regards, Imre > search the pf.conf manpage for the "user" parameter.
Re: Linux or OpenBSD
On Wed, 22 Sep 2010 19:29:31 + Rikky Taylor wrote: > I was after some general advice. I need to setup a routing firewall > with 3 interfaces, moderate traffic and a fair amount of NAT'ing in > the rules. > > > > Given identical modern server hardware would I expect a performance > difference between an OpenBSD/PF setup and a Linux/IPTables one? > > > > Rikky You are considering iptables... So you like to be hurting a lot. Go for it, nothing wrong with that , don't let anybody elses reasoning get into the way of fullfilling your fantasies. Seriously, why would you want to to give someone the impression that the gateway/firewall just works, ... use iptables if you want to keep your job; Think of your children.
Re: i386 and amd64 snapshots - kernel SHA256 mismatch
On Fri, 15 Oct 2010 21:46:41 -0700 patrick keshishian wrote: > as this, where -- the "mortal" is accused to be a whiner. (...) the key words were "every time this happens" ... if you find an error or something strange, most likely you aren't the first to have encountered it. what's the first step? do your homework. homework comes before posting. this includes searching the mailinglist-archives. this discussion has happend before. repeating it, is what's annoying.
Re: Snapshot: misc48.tgz missing
On Mon, 18 Oct 2010 13:51:06 +0200 Rene Maroufi wrote: > Hi, > > the latest snapshot has no misc48.tgz file. Is this file no longer in > the releaseset or what is wrong? > > Cheers > Rene "no more misc set" http://marc.info/?l=openbsd-cvs&m=128737559922378&w=2
Re: how to repeat messages about manual configuration
On Thu, 21 Oct 2010 17:59:32 + Jay K wrote: > When building a package from source, I want a way to prefer installing > dependencies from prebuilt packages. # man bsd.ports.mk /FETCH_PACKAGES
Re: ports/root/make install
On Thu, 21 Oct 2010 19:25:42 + Jay K wrote: > I thought it'd need me to enter it. > And there isn't one. > > Thanks, > - Jay > > > Date: Thu, 21 Oct 2010 15:09:25 -0400 > > Subject: Re: ports/root/make install > > From: ted.unan...@gmail.com > > To: jay.kr...@cornell.edu > > CC: sisso...@gmail.com; misc@openbsd.org > > > > On Thu, Oct 21, 2010 at 1:33 PM, Jay K > > wrote: > > > sudo won't work for me -- root password is *. > > > > The root password has nothing to do with sudo. > sudo still asks for the executing users password, not root's. maybe you want to uncomment %wheel ALL=(ALL) NOPASSWD: SETENV: ALL in /etc/sudoers.conf to get your barn doors wide open scenario.
Re: Azalia "No Problem" but no Audio
On Tue, 26 Oct 2010 18:05:51 -0200 Shazaum wrote: > a tips? how about actually sending some info instead of basicly just stateing that it doesn't work? :) supplying full 'mixerctl -v' and 'audioctl' output would be a start. also a dmesg can help to determine what card and issues like if you have installed two soundcards and maybe using the "wrong" one.
Re: error when compile the kernel
On Mon, 01 Nov 2010 16:36:35 +0400 OpenBSD Geek wrote: > when this last is done, i start to compile kernel : cd > /usr/src/sys/arch/i386/conf > > config GENERIC > > cd ../compile/GENERIC > > make > clean Your config is broken? Mine prints: # config GENERIC Don't forget to run "make depend" http://www.openbsd.org/faq/faq5.html#BldKernel 'extract the tarballs' OR 'cvs checkout', after that 'cvs up'. http://www.openbsd.org/anoncvs.html In gerneral, if you want to run -current, you start by upgrading to/installing the latest snapshot.
Re: error when compile the kernel
On Mon, 1 Nov 2010 08:40:04 -0500 "Josh Grosse" wrote: > On Mon, 1 Nov 2010 14:28:00 +0100, roberth wrote > > > Your config is broken? Mine prints: > > # config GENERIC > > Don't forget to run "make depend" > > The OP's config is "broken" because of the 25 May 2010 change to > config(8) for kernel builds. It was in the "Following -current" FAQ > until today, when all of the changes since 4.7-release were removed. > Older version here: > > http://www.openbsd.org/cgi-bin/cvsweb/~checkout~/www/faq/current.html?rev=1.238;content-type=text%2Fhtml#20100525 My subconciousness is playing tricks on me, i guess. Should have remembered that one, but 4.7 is so far back that i get confused by the timeline. New location for the old stuff: http://www.openbsd.org/faq/upgrade-old.html#20100525 > > In gerneral, if you want to run -current, you start by > > upgrading to/installing the latest snapshot. > > =That= is the reason the OP's build failed. Othere general advice for OP, if he wants to follow current: sub the source-changes ml or atleast follow /faq/current.html and if you still want to try to go from 4.7 instead of a snapshot the relevant parts are now in /faq/upgrade-old.html . But as said before, snapshot first is less painfull.
Re: OpenBSD 4.8 can't find CD drive on Dell Latitude E6500
On Tue, 09 Nov 2010 12:00:28 -0500 Nick Holland wrote: > On 11/09/10 10:37, Leslie Jensen wrote: > > It seems, for unknown reasons, there's something odd about your > computer, and OpenBSD is not recognizing the CDROM. sata dvd drive? haven't seen any yet that do not use one of the funky glued on ide-sata bridge chips. puffy is not happy with those.
Re: An OpenBSD smartphone
On Wed, 17 Nov 2010 16:51:00 -0600 Marko Kraljevic wrote: > On Wed, Nov 17, 2010 at 2:00 AM, Jan Stary wrote: > > My twelve years old cell phone needs to get replaced, > > most probably with one of these newer smartphones. > > > > Beside other things, I want it to be as "open" as possible: > > a freely-available OS, a class-compliant USB storage, a documented > > wifi hardware, etc. So, in this regard: has someone managed > > to install obsd on some of these newer phones? > > > > I understand that most of these have an OS that is basically > > a modified linux; does anyone know about a varinat that would > > have an OS based on BSD? > > > >Thanks > > > >Jan > > > > > > > The most open phone I'm aware of is Nokia N900. It runs Maemo, and can > run full blown Debian, AFAIK. Never heard of anyone running OpenBSD on > one, but perhaps it is possible? I'm assuming it would take some > hacking, though. > > http://en.wikipedia.org/wiki/Nokia_N900 > > I'd like to play with one at some point, but I'm a little too broke > for that at the moment. > So offtopic, but i'll bite. Yes, N900 is the only phone i'd consider atm. If i'd have to buy a linux phone (no alternative) it'd be a N900 and put Meego on it. Android is just too restrictive. The HTC 7 Pro hw looks nice, but without any docu or source ... Me personally will stick with my 6820 until i can test the first real Meego querty slider. (Now if there were 15k+ ppl preordering a phone with openbsd+pf there might be a chance to get something "good".)
Re: Erased Files Recovery
On Fri, 26 Nov 2010 20:39:52 -0300 Hugo Osvaldo Barrera wrote: > Nice idea con cat to null and verify which light turns on, nothing > could be safer :-) > blinky usb sticks, sure, but i'd say using uid makes more sense. setting $usi ($"usb stick important" = uid, just an example) and 'sudo newfs "$usi"a' is much less error prone; still finding more stuff where the uid feature helps.
Re: installation sets not found on CD
On Wed, 1 Dec 2010 07:46:57 -0800 Scott Stanley wrote: > -installation from CD started successfully, up to point of installing > sets -sets directory copied from CD to flash drive, assumed complete > and correct (installer used copied data to install sets) > -installer completed successfully. CD had been re-inserted, but I > guess everything is in RAM, so the point is probably moot Just to make sure, you copied the sets to the usbdrive on a different system, right? fyi, bsd.rd can even be sucessfully loaded from an external vaio firewire dvd drive. This step is totally seperate from OpenBSD itself.
Re: Lenovo
On Thu, 2 Dec 2010 09:49:36 -0600 Amit Kulkarni wrote: > NVIDIA while still sucky is now better supported than ever before. yes, if you spray perfume on a pile of shit it might smell better.
Re: Lenovo
On Thu, 2 Dec 2010 19:40:15 +0100 Ingo Schwarze wrote: > roberth wrote on Thu, Dec 02, 2010 at 07:23:18PM +0100: > > > yes, if you spray perfume on a pile of shit it might smell better. > > No, perfume is insufficient, actual polishing is required. > OpenBSD strives to do things right, you know: > > http://www.openbsd.org/images/hackathons/c2k10.gif > The shiny smell of Ponal.
Re: Colocation: (Off Topic: don't open if you don't like)
On Mon, 6 Dec 2010 14:52:52 -0200 Friedrich Locke wrote: > Hi folks, > > i am planning to setup a shell/web/mail hosting service and, of > course, i will run OpenBSD as my OS of choice. > I am live in Brazil and would like to host my server outside Brazil. > > My initial ideia is to buy the server (on the country i would like to > host my server(s)) and send it to the company that will handle my > server. > Is that possible? Would you mind suggesting company(ies) i could > contract ? > > Thanks a lot for your time and cooperation. > > Best regards. > 2c, colocating your own hardware is usually not the way to go anymore. renting a "dedicated server" somewhere is in most cases the better choice. much less hassle with defective hardware and lots cheaper. in that area what to check for is - serial console, nice but not absolutly nessasary - some kind of rescue-boot enviroment, mostly linux based, to install openbsd (yaifo) and dd the disks in case of norecoverable failures - 2 disks, will minimize your downtime (softraid) (if they replace the disk you tell them to and not the wrong one...) - oh supported hardware is nice to have, you can ask them for a dmesg in advance, wouldn't be so good to commit to a 12 month plan otherwise, but there are monthly billing contracts available. ...
Re: problems programming the TI MSP430 Launchpad
On Wed, 8 Dec 2010 18:44:15 +0100 Benjamin Nadland wrote: > I just realized that I don't need the entire snapshot and could just > download the kernel. > > With todays snapshot kernel from ftp.openbsd.org it attaches as > ugen(4) and works. rule number one of current club is keeping kernel and base (and ports/packages to some extend) in sync. not that i don't run any frankenstein systems, just remeber to fix that first, when the ugly rears its head, before cryn wolf.
Re: Donations
On Thu, 09 Dec 2010 08:42:00 -0800 Mehma Sarja wrote: > That's why Americans call cowburgers hamburgers, for fear of > repercussions from the holy land. But seriously, re-incarnation takes > care of all that. Meaning, if you kill a cow in this life, you come > back as a cow and someone can kill you. It's the Indian version of an > eye for an eye. The percentage of people that (have to) kill their own food is so low that nobody cares. Hamburgers are grown in the supermarket, hm'k?
Re: Donations
On Thu, 9 Dec 2010 19:53:54 + Miod Vallat wrote: > > > Meaning, if you kill a cow in this life, you come back > > > as a cow and someone can kill you. > > > > Time to start eating humans instead ;-) > > > Please don't. It's difficult enough to get healthy young children for > breakfast those days, I don't need competition. > > Miod just grow your own, as healthy as you want them to be.
Re: OT - gmail alternatives
On Thu, 09 Dec 2010 15:38:59 -0500 Brad Tilley wrote: > Adam M. Dutko wrote: > > How do they deal with legal jurisdiction? Technically the > > government can still subpoena and they'd have to turn over the > > documents in the persons account, including backups. > > Use GPG so all the ISP could do is hand over the encrypted bits. You > hold the key. > > Brad gpg doesn't touch the headers, so Alice is still tied to Bob and might be fkd nevertheless.
Re: Freeze with Western Digital Caviar Green HDD
On Thu, 09 Dec 2010 14:48:02 -0500 Aaron Suen wrote: > It looks like the IntelliPark feature on a Western Digital Caviar > Green HDD can cause issues with OpenBSD, which can be fixed/mitigated > by disabling IntelliPark. Not an issue with OpenBSD in itself. It's a generall "bug" with the firmware. The issue also gets triggered by the allmighty Linux. Even Windows hits that issue, oh wait, i already said, it's not an OS problem, ... If you have one of those disks, turn that "feature" off, get a "fixed" firmware (hehe) or buy something else. WD's trackrecord is reaching Seagate levels. Heck, even Hitachi has remidied itself from the deathstar tech they took over from IBM.
Re: Freeze with Western Digital Caviar Green HDD
On Thu, 9 Dec 2010 22:50:21 +0100 roberth wrote: > WD's trackrecord is reaching Seagate levels. > Heck, even Hitachi has remidied itself from the deathstar tech they > took over from IBM. Just to be complete, Samsung fixing their SMART bug with a firmware that doesn't bump the version number, doesn't realy make me want to recomend them anymore that much either, atm. (still F3's works or were "dead" on arrival)
Re: OT - gmail alternatives
> Received: from [96.250.43.19] # host 96.250.43.19 19.43.250.96.in-addr.arpa domain name pointer pool-96-250-43-19.nycmny.fios.verizon.net. 1. verizon blocks outgoing port 25 2. your ip range is shitlisted in most dnsbl 3. your reverse lookup matches the "dynamic ip"-match a lot of mx simply wont accept mail from. X. if you want to host the mx on your residential line, get a static ip with your own domain/reverse. Y. switch providers, oh, that is a nogo in most parts of amerika, sorry u'r fkd. Z. rent a server to host your mx on. :)
Re: OT - gmail alternatives
On Thu, 09 Dec 2010 18:41:16 -0700 Lemuel Houyhnhnm wrote: > On 09/12/2010 6:20 PM, James Hozier wrote: > > My ISP refuses to modify any DNS settings and won't give me a > > static IP address without a business account, so no proper reverse > > DNS. I don't have the resources to run my own nameservers, so what > > alternatives do I have in terms of running my own mailserver? > > > > > > > > > http://www.dyndns.com/services/dns/dyndns/ > > This sort of thing might be helpful. > non-matching forward- and reverse-lookup will not make postmaster happy to accept your mail.
Re: OT - gmail alternatives
On Thu, 9 Dec 2010 15:01:03 + lh wrote: > Hi, > > what are the good available alternatives (security/privacy) for gmail > you're using? > > Cheers! If you aren't a cheapskate you could ask henning@ for a quote. (check bsws.de for the contact info) Hosting on OpenBSD by an OpenBSD dev, hard to beat. PS: Mention your coming from misc@ for a 200% markup. *eg*
Re: Freeze with Western Digital Caviar Green HDD
On Fri, 10 Dec 2010 23:25:56 +0100 Paolo Aglialoro wrote: > ok, what manufacturers are left??? :)) just toshiba??? i am happy with samsung, because in that area i am a cheapskate. hardware dies, deal with it, don't buy the new kid on the block and be happy. :) sata disk got really crappy since they hit 2TB. (or 1.5TB in Seagates case.)
Re: symbol ( - - - - ) size mismatch, relink your program
On Sat, 11 Dec 2010 18:04:32 +0200 "Mihai Popescu B.S." wrote: > Hello, > > I did a snapshot install and I got many warnings like this one. What > could be this warning, is it about mismatch on .so files ? > > Thanks. > thats a very informative bug report. you sure did include a lot of information. care to eleborate? if i had to guess... you are talking about updating packages and see mozilla related stuff complaining about sqlite. don't worry bout that one, it's an issue with sqlite from ports vs the mozilla distributed version.
Re: symbol ( - - - - ) size mismatch, relink your program
On Sat, 11 Dec 2010 23:07:02 +0200 "Mihai Popescu B.S." wrote: > Sorry folks, > > I was to quick in posting. Here are the details: I've installed from > what is (was) today on snapshots on ftp server. Then I used the same > ftp snapshot mirror for packages. That's all, no CVS, no compile, just > plain install from what is (was) on snapshots - base & packages. > This was after a long pause of using OpenBSD as a desktop, I was using > it only as a router. I had to do this to give a try to Ubuntu, but I > was disappointed with it and came back to old and stable stuff. I did > the same install like in the old times, get the snapshot and go. > First, my ATI HD4350 refused to startx, effectively putting my display > in some unusable state: I had to remove power from display to get it > back online. I searched the archive and found out that Xorg became a > "joke" since Intel put some code in it. Too sad. > Then I got the messages about symbol size mismatch. I've installed > empathy but got some strange messages like Cannot execute the script > ... (not a manual?) and empathy refused to start being unable to load > some lib.so files. Now I replaced the ATI HD4350 with ATI X1650 and > managed to get X working. > Are there new things in snapshot which I don't know ? Should I wait > for another compile of packages, to have a date close to the base > compile time ? > If X is so crappy, is there another thing to use ? > > Many thanks. > something like /regxpcom:/usr/local/lib/libsqlite3.so.14.0: /usr/local/mozilla-firefox/libsqlite3.so.22.1 : WARNING: symbol(sqlite3_version) size mismatch, relink your program can be ignored atm. i don't use empathy, so no idea if it is broken, the actual error messages would help. for ports/package related stuff there is ports@ which might get you a quicker response. "not a manual" might point to a "bad" manpage, related to the mandoc/groff change; nothing to worry about either from a pure user perspective. the package should have installed fine nevertheless.
Re: [Was: OT - gmail alternatives] PGP web mail anyone?
On Tue, 14 Dec 2010 23:06:49 +0100 Tomas Vavrys wrote: > Is there a light at the end of the tunnel somewhere to make email > secure even for amateurs who don't know how to use PGP? I'm very > curious about the future of email, especially now. I would like to > hear opinions of OpenBSD wizards. The thing is that it is very hard to > persuade someone to use PGP all the time. yes, as strange as it sounds, the solution is called education.
Re: [Was: OT - gmail alternatives] PGP web mail anyone?
On Tue, 14 Dec 2010 23:33:13 +0100 Tomas Vavrys wrote: > Well, since Egypt we know that it's not going to happen. > > 2010/12/14 roberth : > > On Tue, 14 Dec 2010 23:06:49 +0100 > > Tomas Vavrys wrote: > > > >> Is there a light at the end of the tunnel somewhere to make email > >> secure even for amateurs who don't know how to use PGP? I'm very > >> curious about the future of email, especially now. I would like to > >> hear opinions of OpenBSD wizards. The thing is that it is very > >> hard to persuade someone to use PGP all the time. > > > > yes, as strange as it sounds, the solution is called education. > egypt what? lots of goverments are working hard on getting darwin back into our daily life. too weak or stupid? you die. some people have the patience to teach, others don't. old people miss the cuteness factor of children, but still... everybody should have experienced how satisfying it is to see senior home inhabitants starting to teach "the internet" to others once they got it. what really stands out is, that they don't expect all the girls on a social networking site to have to show them theirs because they uploaded a photo of theirs. :)
Re: [Was: OT - gmail alternatives] PGP web mail anyone?
On Tue, 14 Dec 2010 23:33:13 +0100 Tomas Vavrys wrote: > Well, since Egypt we know that it's not going to happen. > > 2010/12/14 roberth : > > On Tue, 14 Dec 2010 23:06:49 +0100 > > Tomas Vavrys wrote: > > > >> Is there a light at the end of the tunnel somewhere to make email > >> secure even for amateurs who don't know how to use PGP? I'm very > >> curious about the future of email, especially now. I would like to > >> hear opinions of OpenBSD wizards. The thing is that it is very > >> hard to persuade someone to use PGP all the time. > > > > yes, as strange as it sounds, the solution is called education. > btw, you top top-posted on purpose to make your point, didn't you?
Re: OpenBSD 4.8's bsd.mp doesn't detect 4GB Memory
On Tue, 14 Dec 2010 16:46:08 -0700 Clint Pachl wrote: > Denise H. G. wrote: > >>> I've switched to FreeBSD for my desktop with 4G memory... > >>> > >> > > >> > Unnecessary fear : > >> > > >> > $ sysctl kern.version > >> > kern.version=OpenBSD 4.8-current (GENERIC.MP) #547: Tue Dec 7 > >> > 23:16:34 MST > >> > > 2010 > > > >> > dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP > >> > > >> > $ > >> > > >> > load averages: 0.76, 1.14, 1.06 > >> > > >> > > >> >hostname 13:27:52 > >> > 49 processes: 1 running, 45 idle, 1 zombie, 2 on processor > >> > CPU0 states: 2.0% user, 0.0% nice, 1.6% system, 0.0% > >> > interrupt, 96.4% > >> > > idle > > > >> > CPU1 states: 3.8% user, 0.0% nice, 1.2% system, 0.0% > >> > interrupt, 95.0% > >> > > idle > > > >> > Memory: Real: 321M/610M act/tot Free: 2651M Swap: 0K/8189M > >> > Memory: Real: used/tot > >> > > >> > $ dmesg | grep mem > >> > RTC BIOS diagnostic error 11 > >> > real mem = 3487125504 (3325MB) > >> > avail mem = 3420016640 (3261MB) > >> > spdmem0 at iic0 addr 0x50: 2GB DDR3 SDRAM PC3-10600 > >> > spdmem1 at iic0 addr 0x52: 2GB DDR3 SDRAM PC3-10600 > >> > kqemu: kqemu version 0x00010300 loaded, max locked mem=1702696kB > >> > > I think Bodzar's point here is that you don't need 4GB, especially on > a desktop. > > Sure, your car can do 230 kph, but how often do you ever get over 150? > > Unless you're running a very busy database server or a crazy web > server, I don't think you'll ever need much above 2GB. > > I have 2GB in most of my i386 and amd64 laptops and servers. None of > my machines ever touch the swap. In fact, most of the time I have 50% > FREE RAM. On my development laptop I typically run a Seamonkey > Browser with 50 tabs and Mail (400MB), about 20 terminals (half of > which are SSHed to remote machines), Inkscape, Gimp, Postgresql > locally for dev, ruby-sinatra, etc. and I've never been over 1.2GB. I > do run cwm as my window manager. So lets say for shits and giggles > that you're running KDE or something bloated like that, then maybe > you'll use another gig. So what, you're still under 3GB. > > Save yourself time and headaches and just run OpenBSD stable or > snapshots. Compiling kernels is a waste of time when you're doing it > for performance reasons. I used to do this shit about 8 years ago > just to eek out a little more performance, so I thought. I was also > coming from Linux/FreeBSD to OpenBSD at that time. I finally realized > that my time is better spent doing other things. Now I run OpenBSD > exclusively on all four of my systems and my life is easy. > > One last thing: when developers say don't do something, they know > best so listen. Compiling in BIGMEM is bad if they told you no. > omg, i am using 95% of my memory all the time, should i be worried? maybe kern.bufcachepercent=95 has something to do with it; blame Bob.
Re: [Was: OT - gmail alternatives] PGP web mail anyone?
On Tue, 14 Dec 2010 16:38:54 -0800 xSAPPYx wrote: > Dan Kaminsky (http://dankaminsky.com) has been working on "Domain Key > Infrastructure" bootstrapped of of dnssec that looks pretty > interesting. I'm not sure where the video is for this talk (it was at > blackhat/defcon 2010), but I found the slides.. > http://www.slideshare.net/dakami/phreebird-suite-10-introducing-the-domain-key-infrastructure he is not the only one doin keys via dns(sec). verisign had a reason to sell their ca-buisness when they did.
Re: OpenBSD 4.8's bsd.mp doesn't detect 4GB Memory
On Tue, 14 Dec 2010 17:19:23 -0700 Clint Pachl wrote: > roberth wrote: > > omg, i am using 95% of my memory all the time, should i be worried? > > maybe kern.bufcachepercent=95 has something to do with it; blame > > Bob. > > Holy shit! Mine's at 10%. Maybe I should crank mine up to to 95% and > then buy more RAM. > 90% was what was asked for in testing the feature. but since evacuating ram when needed works so nicely, i thought why not crank it up some more. guess even 99% with 2GB ram won't be noticable. ram is so much faster than the disk you have to get the data from. and no, no swap use whatsoever. someday bufcachepercent will be bumped by default. can't see a reason not to. no need to by more ram, to raise the cache. only got two gig in my thinkpad. after booting and starting the usual susspects(xfce,claws,ff,some terminals), i am still way below 1gig in use. (that's before caching realy kicks in. nice to have it for cvsync-ing the updated cvs-tree and then 'cvs up'-ing from ram...)
Re: how to know if a headphone jack is plugged in
On Wed, 15 Dec 2010 10:06:57 +0800 Aaron Lewis wrote: > how to know if a headphone jack is plugged in , anyone knows ? > > -- Aaron there is this hole thingy, if there is that plug thingy in it, you might expect it to be plugged in. to make sure, you push on it, that's into the direction of the hole thingy. if you are not sure, you pull and push until it kinda snaps, then it is most likely plugged in. if it is still not flush to the connector you get a hammer or sumsuch and do whatever you like.
Re: add new disk
On Tue, 21 Dec 2010 08:25:35 -0600 "Orestes Leal R." wrote: > Otto, this is not 4.8 it's 4.3, so this is a error now and not a > warning, what I must changte in the comnand line to make it work with > 4.8? *sigh* you have been told what is wrong before, but lets end this. "newfs /dev/sd1a" was wrong but was handled gracefully. and it is still wrong but now it bombs out. newfs works on raw devices. raw devices start with 'r'. the right command simply is "newfs /dev/rsd1a". ^ now that it was spelled out, it might be easier for you to read up on this in the manpages.
Re: Executing from crontab only does the job when I logged on.
On Mon, 27 Dec 2010 20:22:30 -0500 "Eric Furman" wrote: > On Mon, 27 Dec 2010 13:41 -0600, "Orestes Leal R." > wrote: > > On Mon, 27 Dec 2010 12:33:25 -0600, Martin Schrvder > > > > wrote: > > > > > 2010/12/27 Orestes Leal R. : > > >> the 2 programs work ok, but the do not execute from crontab when > > >> I logged > > >> out from console,ssh. > > >> but when I logged on into an ssh session or console session then > > >> execute. > > > > > > Programs started by cron will have a different env(1) than those > > > started from interactive sessions; most notabily $PATH will be > > > different. > > > > > > Best > > >Martin > > > > > > > Is there any restriction on accesing networks sockets from cron? > > No, this is not normal behavior for cron on ANY flavor of UNIX. > Sounds like a good guess, Martin, but no one can know because he > still refuses to give any of the info he was asked for. > Any real info at all, actually. Expecting any real info whatsoever on misc@ seems to be futile. A guess is as much as they can or want to expect. Perhaps it's some kind of recruitment scheme. (On the other hand, they might just have gone to bed.)
Re: '\$' or '#' must appear in PS1 in order to be properly exported as root?
On Thu, 6 Jan 2011 23:35:32 +0100
Ezequiel Garzsn wrote:
> On Thu, Jan 6, 2011 at 11:18 PM, xSAPPYx wrote:
> > I think ksh(1) man page has the info, or maybe it is intro(8)
> >
> > Try this:
> > echo "export ENV=$HOME/.kshrc" >> ~/.profile
> > echo ". /etc/ksh.kshrc" >> ~/.kshrc
>
> Yes, in that case the new PS1 value is set by ~/.kshrc, which
> overrides whatever I did in .profile, but that still leaves me
> wondering as to why this happens: what other file or setting is being
> read that changes PS1 back to its default setting?
>
bin/ksh/main.c:
safe_prompt = ksheuid ? "$ " : "# ";
{
struct tbl *vp = global("PS1");
/* Set PS1 if it isn't set, or we are root and prompt doesn't
* contain a # or \$ (only in ksh mode).
*/
if (!(vp->flag & ISSET) ||
(!ksheuid && !strchr(str_val(vp), '#') &&
(Flag(FSH) || !strstr(str_val(vp), "\\$"
/* setstr can't fail here */
setstr(vp, safe_prompt, KSH_RETURN_ERROR);
}
Re: sticky rdr-to in pass rules?
On Thu, 20 Jan 2011 11:51:34 +0100 Harald Dunkel wrote: > Hi folks, > > are the rdr-to and nat-to options in "pass" rules as sticky > as for "match" rules? No, "match" is what makes the options sticky. They are not sticky by themselfs. > Sample: > > pass in on $ext_if from any to 1.2.3.0/24 port 80 tag MYTAG rdr-to > $host_a > pass in on $ext_if from any to 1.2.3.42 port 80 > > > AFAIU traffic to 1.2.3.42 port 80 would be tagged with "MYTAG". > Would it be redirected, too? No, without "match" (or "quick") you are in the usual "last matching rule wins" territory. Packets "to 1.2.3.4 port 80" are handled by rule 2, so no "tag" or "rdr-to".
Re: OpenBSD, webmail
On Mon, 24 Jan 2011 14:44:33 +0400 OpenBSD Geek wrote: > Hi, > > Im looking for a webmail for my mailserver (no SQL database, host > only one domain). > > Any idea ? > > Thank you very much. > > Wesley M. > You would do good to search the mailinglist archives before posting. :) This has been discussed to death and you won't get any other answers, than others got before. http://marc.info is ok for such basic questions. As you seem to be too lazy to do your homework on your own,... roundcube+sqlite would be one of the more common answers. You probably should re-read: www.openbsd.org/mail.html You also might be interested in: http://www.catb.org/~esr/faqs/smart-questions.html
Re: DNSSEC validating resolver
On Mon, 24 Jan 2011 15:13:47 -0500 Ted Unangst wrote: > TCP may help talking to a far away DNS server over the internet, but > honestly, that's an unusual scenario and better handled by a VPN. Oy, thats where the automacigal transport layer ipsec from ipv6 enters the stage, right? or was is left?
OT: gmail, realy that hard to discern offlist mails?
as i dont have any insight myself about it and experienced it a lot around here, ... is it realy that hard to discern mail sent offlist in the gmail interface? am i just spoiled by a simple check on mail headers? (if you don't want to spam anyone with ot-replies, don't answer on-list.) thx.
