:> Try using null mounts. The warning is in there because making the
:> null mount code work is a real hack and the authors aren't entirely
:> sure that everything's gotten covered. That said, use of a null mount
:> is certainly a lot safer if the stuff behind the mount is mostly
On Tue, Nov 12, 2002 at 07:08:47PM -0800, Hans Zaunere wrote:
+> -- mount_null seems to be the answer, however the warning at the end of
+> the man page is scary.
+>
+> Is there any combination of these (or anything I'm forgetting) that
+> could help me here? Is mount_null stable?
I'm using moun
Hello, Poul-Henning Kamp!
On Tue, Oct 29, 2002 at 09:32:13PM +0100, you wrote:
> >> >IMO, the retry-forever bug is the
> >> >real problem, but I'm a bit skeptical that it's easy to solve
> >> >safely.
> >> Just revert the commit which added it recently.
> >Recently? I know that the bug was prese
Hi,
I plan to develop a driver for the MOXA Intelliio C320Turbo/PCI
board. This is an intelligent serial multiport card.
I've already contacted John Hay, who wrote the puc(4) driver
and got some hint, I will also study the developers handbook.
MOXA is willig to send me the specs for this card,
On Tue, Nov 12, 2002 at 06:59:14PM +0300, Anton Vinokurov wrote:
> My motherboard (VIA Epia) support booting from USB-FDD, USB-ZIP, USB-HDD and
> USB-CDROM. I have no idea how it works and what the difference between all
> this methods. My USB flash device could be formatted as "bootable" under
> W
> "Terry" == Terry Lambert <[EMAIL PROTECTED]> writes:
Terry> These stats are moderately meaningless.
Terry> The problem is that they don't tell me about where you are
Terry> measuring your packets-per-second rate, or how it's being
Terry> measured, or whether the interrupt or processing load
On Tue, 12 Nov 2002, Tomas Pluskal wrote:
> I believe that everybody here knows about the "slow msdosfs" problem, that
> is AFAIK caused by implementation without clustering.
Which problem. msdosfs has a number of small problems. Mostly they don't
matter.
> For me this is very annoying, becaus
On Wed, 13 Nov 2002 23:17:53 +1100 (EST)
Bruce Evans <[EMAIL PROTECTED]> wrote:
> My times are with some small improvements which I think don't affect
> the tests much (they affect latency more than throughput). With lots
> of small files (smaller than the block size), clustering doesn't makes
>
Justin Wojdacki wrote:
>
> Rich Morin wrote:
> >
> > My spouse had the problem of creating a bootable copy of A/UX on a
> > single floppy. She decided to write a "doitall" program that had
> > functionality from a number of small commands. This amortized the
> > overhead a great deal.
>
> If yo
On Tue Nov 12, 2002 at 11:11:54PM -0800, Terry Lambert wrote:
> Cameron Grant wrote:
> > null mounts, in -stable at least, are broken for this purpose. on
> > connection, sshd revoke()s some device- its pty, i assume, and when this
> > hits the nullfs layer a null pointer is dereferenced. if i ha
We are the marketing specialists www.host4bulk.com that provide cheap
bullet proof bulk email friendly hosting for your website ($400 for
one month of bullet proof hosting) and cheap bulk email campaigns ($200
for 1 million emails sent)
As you may already know, many web hosting companies have Te
On Tue, 12 Nov 2002, Hans Zaunere wrote:
HZ> After much searching and contemplation, I've decided to ask the
HZ> question directly:
HZ>
HZ> I'm implementing a jail server, which will provide a very limited set
HZ> of resources (Apache/MySQL/PHP). Setup is going well, however I've run
HZ> into a l
Hi Luoqi Chen!
>Luoqi Chen wrote:
Paul Everlund wrote:
Hi all!
Did try questions, without any reply, so I'm trying here...
I have a friend who decided to try FreeBSD 4.6.2 and it works just
fine except one thing, his connection to the internet.
He has a sis network card, which is compiled int
Hmm. While tracking down a null mount issue I think I might have
come across a potentially serious problem with jail. It seems to
me that it would be possible for someone inside a jailed environment
to 'steal' pty's, tty's, or the tty side of a pty that is being
used from with
In message <[EMAIL PROTECTED]>, Matthew Dillon w
rites:
>Hmm. While tracking down a null mount issue I think I might have
>come across a potentially serious problem with jail. It seems to
>me that it would be possible for someone inside a jailed environment
>to 'steal' pty's, tty'
:
:In message <[EMAIL PROTECTED]>, Matthew Dillon w
:rites:
:>Hmm. While tracking down a null mount issue I think I might have
:>come across a potentially serious problem with jail. It seems to
:>me that it would be possible for someone inside a jailed environment
:>to 'steal' pty
In message <[EMAIL PROTECTED]>, Matthew Dillon w
rites:
>:
>:In message <[EMAIL PROTECTED]>, Matthew Dillon w
>:rites:
>:>Hmm. While tracking down a null mount issue I think I might have
>:>come across a potentially serious problem with jail. It seems to
>:>me that it would be possibl
Would people be interested if I added such a feature? Limit the
highest allocatable pty to 90% when operating within a jail? e.g.
if you have 256 ptys both jail and normal tend to allocate ptys
from the bottom up, but the jail would not be allowed to allocate
past pty #227.
In message <[EMAIL PROTECTED]>, Matthew Dillon w
rites:
>Would people be interested if I added such a feature? Limit the
>highest allocatable pty to 90% when operating within a jail?
In practice there is no real "upper limit" on ptys, apart from the
amount of KVM you need.
I don't reall
> There has always been code in kern/tty_pty.c which makes sure that the
> master and slave have the same prison:
but a jailed user could perform a denial of service by using up all teh ptys.?
I think I did this by accident the other day...
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "u
--- Terry Lambert <[EMAIL PROTECTED]> wrote:
> Hans Zaunere wrote:
> > I want to allow the users the ability to compile and use their own
> > instances of Apache and MySQL from within the jail. But instead of
> > duplicating the basic system libs and bins, I'd like to maintain a
> > single reposi
In message <[EMAIL PROTECTED]>, Julian Elischer writes
:
>> There has always been code in kern/tty_pty.c which makes sure that the
>> master and slave have the same prison:
>
>but a jailed user could perform a denial of service by using up all teh ptys.?
There is no general resource protection for
http://hlug.fscker.com has found that the tcpdump from tcpdump.org has been
infected by a trojan horse. I just checked the version of tcpdump built by
RELENG_4. i.e. freebsd 4.7-stable. I am happy to report that it is NOT
infected as described by fscker.com. However, if you have built tcpdump
>
> The problem is that they don't tell me about where you are measuring
> your packets-per-second rate, or how it's being measured, or whether
> the interrupt or processing load is high enough to trigger livelock,
> or not, or the size of the packet. And is that a unidirectional or
> bidirection
Matthew Dillon wrote:
> :> Try using null mounts. The warning is in there because making the
> :> null mount code work is a real hack and the authors aren't entirely
> :> sure that everything's gotten covered. That said, use of a null mount
> :> is certainly a lot safer if the stu
Pawel Jakub Dawidek wrote:
> On Tue, Nov 12, 2002 at 07:08:47PM -0800, Hans Zaunere wrote:
> +> -- mount_null seems to be the answer, however the warning at the end of
> +> the man page is scary.
> +>
> +> Is there any combination of these (or anything I'm forgetting) that
> +> could help me here?
This note might be common knowledge in some
quarters (?), but I thought I'd post...
I have 2 SanDisk 128M Compact Flash cards,
superficially identical. The CIS info for one
(purchased 3/4 months ago?) claims it is a "SunDisk"
"SDP" and the other a "SanDisk" "SDP" (recently
purchased).
The "/et
On Wed, Nov 13, 2002 at 12:27:35PM -0800, Hans Zaunere wrote:
+> [...] I'm also looking forward to the next "version" of jail
+> implementation!
You're talking about jailNG? If I understand everything correct there
will be no jailNG. TrustedBSD features will handle with jail-things.
I'm wrong?
--
On Wed, Nov 13, 2002 at 03:28:22PM -0800, Terry Lambert wrote:
+> Don't worry about it. It's only a problem for mmap'ed files
+> which are also read/written. Sheesh.
I have found one little bug in nullfs. I've send it some time ago
to hackers@, but without any respond.
Here it is, maybe someone
:> I'm fairly sure the VM issues were fixed when VOP_GETVOBJECT was
:> added. A file accessed via a null mount will have the same VM object
:> as the file in the original filesystem. I'm not 100% sure about
:> that, I wasn't the one who did it, but I seem to recall it being
:>
David Gilbert wrote:
> Terry> The problem is that they don't tell me about where you are
> Terry> measuring your packets-per-second rate, or how it's being
> Terry> measured, or whether the interrupt or processing load is high
> Terry> enough to trigger livelock, or not, or the size of the packet.
The Anarcat wrote:
> On Tue Nov 12, 2002 at 11:11:54PM -0800, Terry Lambert wrote:
> > Cameron Grant wrote:
> > > null mounts, in -stable at least, are broken for this purpose. on
> > > connection, sshd revoke()s some device- its pty, i assume, and when this
> > > hits the nullfs layer a null poin
On Wed Nov 13, 2002 at 05:00:24PM -0800, Terry Lambert wrote:
> The Anarcat wrote:
> > On Tue Nov 12, 2002 at 11:11:54PM -0800, Terry Lambert wrote:
> > > 1)Use devfs instead.
> >
> > On -stable?
>
> Yes.
Wasn't -stable devfs retired some time ago?
A.
--
From the age of uniformity, from th
On Mon, 11 Nov 2002, Tim Kientzle wrote:
> The possibility of dynamically linking /(s)bin seems
> to recur pretty regularly. As libc continues to grow,
> this idea seems worth revisiting. However, I've come up
> with an alternative that might be worth considering.
I'm open to patches for buildin
Mattias Pantzare wrote:
> > The problem is that they don't tell me about where you are measuring
> > your packets-per-second rate, or how it's being measured, or whether
> > the interrupt or processing load is high enough to trigger livelock,
> > or not, or the size of the packet. And is that a un
Pawel Jakub Dawidek wrote:
> On Wed, Nov 13, 2002 at 03:28:22PM -0800, Terry Lambert wrote:
> +> Don't worry about it. It's only a problem for mmap'ed files
> +> which are also read/written. Sheesh.
>
> I have found one little bug in nullfs. I've send it some time ago
> to hackers@, but without
Matthew Dillon wrote:
> :VOP_GETVOBJECT is a different name, but the VOP was my suggestion,
> :to allow an upper layer to obtain a backing object, and to
> :collapse intermediate layers.
> :
> :The issue is that the NULLFS getpages falls through the the
> :vfs_default.c vop_stdgetpages(), which cal
The Anarcat wrote:
> On Wed Nov 13, 2002 at 05:00:24PM -0800, Terry Lambert wrote:
> > The Anarcat wrote:
> > > On Tue Nov 12, 2002 at 11:11:54PM -0800, Terry Lambert wrote:
> > > > 1)Use devfs instead.
> > >
> > > On -stable?
> >
> > Yes.
>
> Wasn't -stable devfs retired some time ago?
No.
:>
:> It should be calling VOP_BMAP through the VP stored in the VM
:> object, which will be the underlying file, not the nullfs.
:
:Probably, but it's not doing that. The NULLFS implement VOP_BMAP
:as vop_eopnotsupp; it doesn't fall through. Even if it did fall
:through, the vfs_defaul
I'm posting this here because of a panic I'm getting using the FreeBSD
nvidia driver; however, I'm not convinced that this panic is the fault of
the driver, and I wanted to post the backtrace here (from a serial
console, can't see anything on the pc console during this crash since X is
up) just in
> Would people be interested if I added such a feature? Limit the
> highest allocatable pty to 90% when operating within a jail? e.g.
> if you have 256 ptys both jail and normal tend to allocate ptys
> from the bottom up, but the jail would not be allowed to allocate
> past p
So i am doing an experiment which adds a random delay to tcp flows to
achieve alot of the same stuff you get with RED and was planning on
testing it with a divert socket. The problem is sometimes this involves
adding a delay of say 2 ms for instance. Is this even possible on intel
hardware. I know
In message: <[EMAIL PROTECTED]>
"Bruce R. Montague" <[EMAIL PROTECTED]> writes:
: The "/etc/defaults/pccard.conf" file used to have
: a CIS entry for "SunDisk" "SDP", but doesn't anymore
: (for either -stable or -current). To get both of
: these CFs to work with the same FreeBSD 4.6-st
In message: <[EMAIL PROTECTED]>
Nate Lawson <[EMAIL PROTECTED]> writes:
: On Mon, 11 Nov 2002, Tim Kientzle wrote:
: > The possibility of dynamically linking /(s)bin seems
: > to recur pretty regularly. As libc continues to grow,
: > this idea seems worth revisiting. However, I've com
44 matches
Mail list logo
