On Thu, 11 Jan 2007, Vulpes Velox wrote:
I vote both are completely stupid. LDAP is nice organizing across
many systems, but if you are just dealing with one computer it is
complete over kill for any thing. Splitting rc.conf up into
multiple files is just plain messy and stupid as well. I can s
On Thu, 11 Jan 2007, Mike Meyer wrote:
In <[EMAIL PROTECTED]>, Vulpes Velox <[EMAIL PROTECTED]> typed:
LDAP is nice organizing across many systems, but if you are just
dealing with one computer it is complete over kill for any thing.
In that situation, it's not merely overkill, it's may actu
On Thu, 11 Jan 2007, Doug Barton wrote:
Lamont Granquist wrote:
If i understand that correctly its not *exactly* what i was looking for,
but its better than a monolithic /etc/rc.conf
It looks like you must put /etc/rc.d/inetd config into either
/etc/rc.conf or /etc/rc.config.d/inetd
On Wed, 10 Jan 2007, Vulpes Velox wrote:
On Wed, 10 Jan 2007 13:56:23 -0800
Doug Barton <[EMAIL PROTECTED]> wrote:
Lamont Granquist wrote:
Why are you doing this in the FreeBSD rc scripts directly? Why
not install cfengine and work on making cfengine play better with
database-driven
On Wed, 10 Jan 2007, Vulpes Velox wrote:
And if you're looking specifically at the /etc/rc.conf config file,
what would be more useful would be an /etc/rc.conf.d/ directory.
That gets away from the need to tweak and edit the /etc/rc.conf
config file with multiple inputs tweaking a single file.
On Wed, 10 Jan 2007, Doug Barton wrote:
Lamont Granquist wrote:
On Wed, 10 Jan 2007, Doug Barton wrote:
And if you're looking specifically at the /etc/rc.conf config file, what
would be more useful would be an /etc/rc.conf.d/ directory.
Good news for you, we already support that. :) I
On Wed, 10 Jan 2007, Doug Barton wrote:
Lamont Granquist wrote:
Why are you doing this in the FreeBSD rc scripts directly? Why not
install cfengine and work on making cfengine play better with
database-driven config?
Indeed. For a "many systems" problem, cfengine is a great too
On Tue, 9 Jan 2007, Vulpes Velox wrote:
The why is because I like centralized management and it would be
really handy for that. For my use, it would be handy in regards to my
laptops.
I feel better central management is extreme significant. If I had
nothing more to say than "this would be nea
AFS also has an @sys variable which is useful for network filesystem
mounted binaries and software for multiple architectures through a single
globally unique path:
http://www.openafs.org/pages/doc/AdminReference/auarf234.htm#HDRSYS
And I'd vote with Oliver on preferring variant symlinks for
I'm getting pops in xmms under -current. Awhile back the realtime
scheduling option for xmms was busted, so I wrote this wrapper script
around xmms. Am I doing the right thing here? Is there anything else I
could do to config -current to eliminate pops? Is -current going to get a
fully-preempt
to quote the freebsd-current dmesg:
Be nice to each other, mmmkay?
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
On Wed, 29 Jan 2003, Matthew N. Dodd wrote:
> What you really want is SCSI over IP. Anything else is just a hack and
> not to be trusted.
And iSCSI isn't?
> I think that NFS is less of a hack than NBD though.
> Of course if Linux still suffers from poor NFS performance that might
> explain why
On Tue, 10 Dec 2002, Dmitry Morozovsky wrote:
> On Tue, 10 Dec 2002, Lamont Granquist wrote:
> LG> >From the man page, I'm not really sure where it makes a difference other
> LG> than when someone is playing with IFS, but $@ seems to be more of what I
> LG> inten
be an option to cvs
rtag and should thereby be settable in one's .cvsrc file and the option
should get transmitted to the cvs pserver, eliminating the kind of
asymmetry I just documented.
On Tue, 10 Dec 2002, Dmitry Morozovsky wrote:
> On Mon, 9 Dec 2002, Lamont Granquist wrote:
>
>
transparent.
I'm working on some instructions at:
http://www.scriptkiddie.org/freebsd/setting_up_local_repo.html
On Sun, 8 Dec 2002, Lamont Granquist wrote:
> I've been struggling all weekend to setup a local CVS repo mirror, and I
> guess I've done that successfully, but I
On Sun, 8 Dec 2002, Garance A Drosihn wrote:
> If you're going to jump into the middle of /usr/src to make something,
> then you should probably do:
> cd /usr/src/gnu/usr.bin/cc
> make obj
> make depend
> ...etc
Thanks, that seems to have worked.
I couldn't get libc to compi
On Sun, 8 Dec 2002, Kris Kennaway wrote:
> On Sun, Dec 08, 2002 at 05:22:24PM -0800, Lamont Granquist wrote:
>
> > And if I try to go into /usr/src/gnu/usr.bin/cc/cc_int and do a make I get
> > only this:
> >
> > Warning: Object directory not changed from origin
I'm trying to follow these instructions to build 4.7 with the propolice
modifications to the gcc compiler:
http://www.trl.ibm.com/projects/security/ssp/buildfreebsd.html
I'm starting with an absolutely fresh cvs checkout and i've nuked my
/usr/obj tree. What I'm getting is in this step:
cd /
I've been struggling all weekend to setup a local CVS repo mirror, and I
guess I've done that successfully, but I can't figure out what is going on
with CVS_LOCAL_BRANCH_NUM. My understanding is that if I set it to a
large number "63000" that it should tag branches that I make with values
roughly
RedHat systems have only two statically linked binaries in their systems
and it is one of the things that I viscerally hate about RedHat. You have
to look on another system or lookup on the net which shell to use instead
of /sbin/init and then play around with a massively minimal set of things
yo
On Sun, 22 Sep 2002, Juli Mallett wrote:
> Maybe just replace all suser(9) uses with MAC credential checks, and
> install MAC_UNIX by default, which would be set up to behave like
> ye olden UNIX... Who knows.
Something like that sounds like a really good idea. I'd like to see this
not only fo
On Fri, 21 Jun 2002, Kris Kennaway wrote:
> On Thu, Jun 20, 2002 at 07:33:54PM -0700, Frank Mayhar wrote:
> > Kris Kennaway wrote:
> > > Surely it's easier to just upgrade the apache port, instead of
> > > recompiling your kernel and the entire OS.
> >
> > Not always. (I'm running an old versio
On Thu, 20 Jun 2002, Terry Lambert wrote:
> Lamont Granquist wrote:
> > Cyrus imapd is a real pain in the ass to administer local user accounts
> > with though.
>
> You mean that it doesn't integrate well with the UNIX credentials
> system. THe issue here is that C
I think that libsafe would "protect" against this bug to at least prevent
against any possible malicious code execution. I think it still leaves
the DoS possibility open though... Even some kind of non-exec stack
protection patched into FBSD would only generate a SEGV if it got
triggered[*]. V
Cyrus imapd is a real pain in the ass to administer local user accounts
with though. The cyradm program is extremely deficient. Its great if you
want to offer people imap e-mail without offering them shell access. For
local access, though, there's a higher administrative overhead. I'm back
to
On Wed, 1 May 2002, David Schultz wrote:
> Thus spake Lamont Granquist <[EMAIL PROTECTED]>:
> > Does the FreeBSD VM system do O(1) or O(N) searches for gaps in a
> > processes virtual memory space?
>
> I'm not a VM guru, but if I'm reading vm_map.c right,
Does the FreeBSD VM system do O(1) or O(N) searches for gaps in a
processes virtual memory space?
(It may not seem obvious why my question is related to the discussion
below, but trust me, it is...)
On Tue, 30 Apr 2002, David Schultz wrote:
> Thus spake Rohit Grover <[EMAIL PROTECTED]>:
> > I a
I previously posted a patch to fix this UDP-in-jail bug which I believe
may have compromised the security of the jail. This patch shouldn't do
that.
It:
1. preserves the jail check in in_pcbconnect()
2. preserves the laddr+lport check in the beginning of in_pcbbind()
3. modifies no code out
this fixes the problem, i'm not familiar enough with pcbs to know if this
opens up a security hole in the jail though...
--- in_pcb.c.oldMon Mar 18 23:57:57 2002
+++ in_pcb.cTue Mar 19 00:04:33 2002
@@ -500,7 +500,8 @@
struct sockaddr_in sa;
int error;
- if (in
On Mon, 18 Mar 2002, Terry Lambert wrote:
> Lamont Granquist wrote:
> > On Mon, 18 Mar 2002, Poul-Henning Kamp wrote:
> > > All I can say is that I have had hell with that code and jail, and
> > > you might be right that some cleanup after the first call is missing.
On Mon, 18 Mar 2002, Poul-Henning Kamp wrote:
> All I can say is that I have had hell with that code and jail, and
> you might be right that some cleanup after the first call is missing.
>
> You're probably also the closest person to fix it at this point...
Alright, I'll keep digging.
My guess
I've been digging through kernel sources trying to figure out this bug
with ircd-hybrid in the ports tree against 4.5-STABLE. The symptom is
that in ircd-hybrid there's a sequence of system calls like this:
sendto(2, "\252D\1\0\0\1\0\0\0\0\0\0\00238\003142\003162\003209\7"..., 45,
0, {sin_famil
On Sun, 23 Dec 2001, Chad David wrote:
> On Sat, Dec 22, 2001 at 11:11:12PM +, Wayne Pascoe wrote:
> > Chad David <[EMAIL PROTECTED]> writes:
> >
> > > > The issue that I am having is detecting valid filesystems to do
> > > > further checks on. I am only interested in checking local filesyst
On Sat, 22 Dec 2001, Alfred Perlstein wrote:
> * Lamont Granquist <[EMAIL PROTECTED]> [011222 16:06] wrote:
> > So, yesterday I was playing around with the VFS code and trying to figure
> > out how to get a 'stub' of a filesystem that I could mount and unmount.
&
So, yesterday I was playing around with the VFS code and trying to figure
out how to get a 'stub' of a filesystem that I could mount and unmount.
To do so I need to implement vfs_root() which requires returning a vnode
for the root of the filesystem. So, I just called getnewvnode(), passing
it s
On Mon, 17 Dec 2001, Terry Lambert wrote:
[...snippage all over...]
wow! thanks! that was much more than i'd hoped for!
unfortunately i'm very much a beginner to kernel hacking, so don't expect
any ported filesystems out of me in the near future...
To Unsubscribe: send mail to [EMAIL PROTE
Can anyone give a brief overview (or point to one) of what a FS in FreeBSD
needs to do to interact with the rest of the OS? The general picture I've
got is of some code which interacts with the VFS layer above it and the
block I/O layer down below it. It is this correct? And what are the APIs
I think what "would be cool" would be to have a RELENG_4_4_BUGFIX tree
which was for bugfixes, but was feature frozen. It shouldn't get new
features like dirprefs (otherwise its difficult to differentiate it from
-STABLE itself) but it should get bugfixes. That way FreeBSD would wind
up with so
On Thu, 6 Dec 2001, Andreas Klemm wrote:
> On Thu, Dec 06, 2001 at 09:26:40AM -0800, Lamont Granquist wrote:
> > An alternative solution that i haven't read anyone suggest on this thread
> > is simply to improve man tuning(7) and make people more aware of it.
>
> Cou
On Thu, 6 Dec 2001, Leo Bicknell wrote:
> On Wed, Dec 05, 2001 at 10:15:30PM -0800, Terry Lambert wrote:
> > > and ordinary user will find FreeBSD is slower, could we let user to
> > > select which kernel to install at installing time?
> >
> > It's a possibility that I've considered, given that
On Wed, 5 Dec 2001, Leo Bicknell wrote:
> On Wed, Dec 05, 2001 at 03:12:29PM -0800, Crist J . Clark wrote:
> > 4.5-RELEASE is only a month and a half away. By the time this "while"
> > passes, we'll be there. If people have lived this long with the bugs,
> > they can last until late January.
>
>
FWIW, I'd vote for "MFS"ing the TCP changes in -STABLE to RELENG_4_4. As
it stands right now 4.4 is kinda broken.
On Wed, 5 Dec 2001, Mike Barcroft wrote:
> Jim Durham <[EMAIL PROTECTED]> writes:
> > Duh... right. OGS..(Old Guy Syndrome). I actually just did a cvsup to
> > RELENG_4_4 and it did
On Sun, 2 Dec 2001, Matthew Dillon wrote:
> This is connecting to inetd running a dd if=/dev/zero bs=32k on a
> machine with the rfc sysctl's turned on and 262144 byte send and
> receive buffers, without jumbo frames (my gigE switch doesn't support
> them :-( ).
nice, 950 Mbs wh
On Sun, 2 Dec 2001, Matthew Dillon wrote:
> Throughput 47.2446 MB/sec (NB=59.0558 MB/sec 472.446 MBit/sec) 20 procs
>
> It seems to max-out at around 75,000 packets per second (input + output).
>
> I doubt these results could be duplicated on anything but a DELL2550.
> It dedicates
this adds a -p option to ldconfig so you can do something like:
ldconfig -p /usr/local/lib/libsafe.so
to set a preload, and:
ldconfig -pm /usr/local/lib/libsafe.so
to merge one.
the major problem i know of with this patch is that setting a preload ELF
library will hose your ability to run li
can anyone suggest a method of determining inside libexec/rtld-elf/rtld.c
if a binary being run is native or linux emulation? i'd like to be able
to write code which basically does:
if (IsNativeCode())
PreloadSomeLibraries()
any suggestions?
To Unsubscribe: send mail to [EMAIL PROTECTED]
w
On Wed, 31 Oct 2001, Stephen Montgomery-Smith wrote:
> > "Nicpon, John" wrote:
> >
> > Please specifically define where data goes that is sent to /dev/null
>
> Answer 1. Data is not like energy. There is no "conservation of data"
> law. So the data simply "disappears".
Doesn't thermodynamics
Sorry, that one isn't backwards compatible with the present version of
the hints file. This one behaves nicer.
On Tue, 30 Oct 2001, Lamont Granquist wrote:
> Well, here's a short patch to add the necessarily functionality to
> /var/run/ld-elf.so.hints and /usr/libexec/ld-elf.s
.
On Tue, 30 Oct 2001, Lamont Granquist wrote:
> Is there anything in FreeBSD that gives this functionality? My reading of
> src/libexec/rtld-elf/rtld.c in both -stable and -current seems to indicate
> that there isn't any such functionality (i need the global functionality
> t
Is there anything in FreeBSD that gives this functionality? My reading of
src/libexec/rtld-elf/rtld.c in both -stable and -current seems to indicate
that there isn't any such functionality (i need the global functionality
that LD_PRELOAD doesn't give me). I'd be willing to write a patch for it,
Thanks!
Precisely what I was looking for. I coded up the routines today and they
seem to work fine.
On Mon, 29 Oct 2001, Daniel Eischen wrote:
> The _THREAD_SAFE macro has gone away anyways (in -current), and we
> (FreeBSD) shouldn't be conditionally compiling code in libc dependent
> on wheth
On Mon, 29 Oct 2001, Alfred Perlstein wrote:
> * Alfred Perlstein <[EMAIL PROTECTED]> [011029 00:53] wrote:
> > * Lamont Granquist <[EMAIL PROTECTED]> [011029 00:43] wrote:
> > >
> > > I'm trying to figure out the best way to write a wrapper
On Mon, 29 Oct 2001, Alfred Perlstein wrote:
> * Lamont Granquist <[EMAIL PROTECTED]> [011029 00:43] wrote:
> > I'm trying to figure out the best way to write a wrapper around memcpy()
> > which can call fprintf() without winding up getting into a recursive
>
I'm trying to figure out the best way to write a wrapper around memcpy()
which can call fprintf() without winding up getting into a recursive
loop. The problem is that fprintf() will call memcpy() and around and
around we go.
I can use a global variable to prevent this, but that usage isn't thr
54 matches
Mail list logo
