> This part:
>
>> VOP_FSYNC() at VOP_FSYNC+0x2f
>> ffs_sync_vnode() at ffs_sync_vnode+0x77
>> vfs_mount_foreach_vnode() at vfs_mount_foreach_vnode+0x38
>> ffs_sync() at ffs_sync+0x83
>> sys_sync() at sys_sync+0xa1
>> vfs_syncwait() at vfs_syncwait+0x50
>> vfs_shutdown() at vfs_shutdown+0x32
>> boot
> This part:
>
>> VOP_FSYNC() at VOP_FSYNC+0x2f
>> ffs_sync_vnode() at ffs_sync_vnode+0x77
>> vfs_mount_foreach_vnode() at vfs_mount_foreach_vnode+0x38
>> ffs_sync() at ffs_sync+0x83
>> sys_sync() at sys_sync+0xa1
>> vfs_syncwait() at vfs_syncwait+0x50
>> vfs_shutdown() at vfs_shutdown+0x32
>> boot
>For the two crashes that I've been able to capture some output
> from (one from an IP KVM, one from /var/log/messages after setting
> ddb.panic=0), I've seen:
>
>
> uvm_fault(0x81cf2b20, 0x80cef000, 0, 2) -> e
> kernel: page fault trap, code=0
> Stopped at memmove+0x16:
Hey folks,
I've had a helluva week - my colocated server has crashed at least
four times, and I'd like a little sanity check from people that know
a lot more than I do. Sorry for the length of this, trying to include
all the data I'm aware of that might be relevant and helpful.
For the two
> For "reputable" providers with nodes in the US, arpnetworks.com,
> vr.org, ramhost.us, nqhost.com and edis.at are just some of the
> options to consider; and, before you ask, linode.com won't work (it's
> strictly Xen PV, which would require a modified Xen DomU kernel from
> your Guest OS). IMHO
> I have been asked by management a few times about why some pings fail
> when you ping things like google servers and core routers at the ISP.
> The short answer I give is that things like that are too busy being
> the Internet to respond to all the ping traffic that doesn't do
> anything to enabl
> But there are several VPS companies around (arpnetworks.com is one)
> that are OpenBSD friendly.
>
> *If* I want to run a VPS, I rather give my money to a small compmay
> that some behemoth.
+1.
ARP Networks is a great group of guys, they've been fantastic the
few times I've needed them to do s
> On Thu, Jul 28, 2011 at 08:51:41PM +0200, Claudio Jeker wrote:
>> On Wed, Jul 27, 2011 at 10:37:30PM +0200, Christopher Zimmermann wrote:
>> > Hi,
>> >
>> > pppoe0 has 92.203.101.134.
>> > this works fine:
>> >
>> > match out log on egress inet from 192.168.23.0/24 nat-to pppoe0
>> >
>> > tcpdump
> Since installing yesterday's snapshot on amd64:
>
> OpenBSD 4.9-current (GENERIC.MP) #111: Wed May 11 10:41:28 MDT 2011
> t...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
>
> I lost the ability to login to sshd using publickey:
>
> $ ssh hermes
> Permission denied (publickey,
> I've a VPS OpenBSD server at www.arpnetworks.com [1] - they're a
> good price and I've had no problems with them if it helps.
>
> I know it's
> a VPS rather than a dedicated server but it might be worth a look.
I'll second that, I also have a VPS at ARP. Just need to remember
to disable mpbios
> are that stupid). Or that the crackberry can only use an encrypted
> connection with a blackberry server?
Certainly not; at my previous job, *all* of our Blackberry
email traffic to/from our non-Blackberry mail server was
encrypted.
Benny
--
"I'm no meteorologist, but I'm pretty sure it's ra
>> I'm a FreeBSD user (a very little experience with openbsd in the past),
>> but i'm kind of interested in any bsd flavour (i like *nix, but dislike
>> linux for some reasons).
>> So, the question is if there is any positive experience with using
>> OpenBSD on modern netbooks of the following:
>>
> nagios is shit. misdesigned, horrible code, and someone who obviously
> doesn't understand blocking semantics of sockets writing that part of
> the code...
>
> that said, I use it, too. and as almost every other serious user with
> at least a little bit of standards left I hate it.
I cannot spea
>I'm writing a Nagios plugin to verify whether PF is enabled on a
> host, and I'm a bit stumped as to how to do it.
>
>pfctl -d and pfctl -e will tell me if it's already enabled or
> already disabled, but I don't want a setuid or sudo-enabled plugin
> to be manipulating a host's firewall.
Hey folks,
I'm writing a Nagios plugin to verify whether PF is enabled on a
host, and I'm a bit stumped as to how to do it.
pfctl -d and pfctl -e will tell me if it's already enabled or
already disabled, but I don't want a setuid or sudo-enabled plugin
to be manipulating a host's firewall.
>>I'm going through an upgrade cycle here at home, upgrading my
>> boxes from an older -CURRENT snapshot. This is the second one in a
>> few days, and both of the snapshots I had downloaded were missing
>> etc/mtree in etc47.tgz. The snapshots were downloaded from ftp3.usa
>> and from ftp.ope
>I checked current.html and the mailing list archives, but I'm not
> seeing anything mentioning a change to the mtree stuff... Am I just
> missing something? Or have recent snapshots escaped without mtree?
Sorry, these are i386, FYI.
Benny
--
"I can do for you is - what can not no girl!"
Hey folks,
I'm going through an upgrade cycle here at home, upgrading my
boxes from an older -CURRENT snapshot. This is the second one in a
few days, and both of the snapshots I had downloaded were missing
etc/mtree in etc47.tgz. The snapshots were downloaded from ftp3.usa
and from ftp.openbs
> On Tue, 26 Jan 2010, Helmut Schneider wrote:
>> Same here, I upgraded from 4.5-stable and sysmerged a few times.
>
> You probably did not update/merge root's crontab when sysmerge asked you
> to.
Thank you, Antoine. It looks like I had saved that one for later,
and had not gone back to analyze
> # set -x; umask 077; /bin/sh /etc/daily 2>&1 | tee /var/log/daily.out |
> mail -s "`/bin/hostname` daily output" root
> + set -x
> + umask 077
> + /bin/sh /etc/daily
> + tee /var/log/daily.out
> ++ /bin/hostname
> + mail -s 'ns3 daily output' root
> Null message body; hope that's ok
> #
>
> Every
> I've been at m5hosting for the last few months and so far they're way
> better than what I've seen elsewhere. Maybe just a bit too expensive,
> if you compare the hardware with what you can get elsewhere, but they
> do seem to know what they're doing.
I'm also a big fan of m5hosting... I've bee
> Has anyone else had trouble doing checkouts and updates from rt.fm?
>
> arcfide:27$ pwd
> /usr/xenocara/distrib/sets/lists/xshare
> arcfide:28$ sudo cvs -q -d [EMAIL PROTECTED]:/cvs up -Pd
> cvs [server aborted]: EOF while looking for end of string
> in RCS file
> Believe it or not but this is sweet. We were looking for a laptop that
> did fieldio like this one. If we send you patches will you be able to
> test?
Absolutely! Please send them along, I'll be happy to test.
Benny
--
"Stupidity, if left untreated, is self-correcting."
Hey folks,
I have a Compaq Presario 2405US laptop that I run CURRENT on.
While trying to upgrade to the latest (Jun 19) snapshot, I am dying
in AML-land while booting bsd.rd:
(partial captures typed from another computer, full dmesg follows)
...
acpi0 at bios0: rev 0
acpi0: tables DSDT FACP S
> thanks, is there an comparison table somewhere?
To compare various ISPs, you mean? I'm sure there are a number
of them... There are several sites out there where people can
write their own reviews (good and bad) for products/services, so
you might do a little googling.
Benny
--
"If it'
> I am sure someone has done this research before. (so before i go and try
> to (re)invent the wheel) I want to request, the intelligent ones, to share
> their knowledge and research of the best internet isp (on OpenBSD only)
> available on the internet today.
>
> I am looking for 'dedicated serve
Hey folks,
I'm running -CURRENT (via snapshot) on my laptop. I've got the
latest snapshot installed... I don't know when it happened, but
enabling ACPI (via config) kills my wireless network.
I have two dmesg files available, one for GENERIC and one for
GENERIC with ACPI enabled:
GENERIC
> I was under the impression that because the timer frequency is
> different on the net45xx series, you needed to specify that with HZ=
> in the kernel config. Is that no longer true? Does it not make any
> difference?
When I got mine last year, I rooted through the misc@ archives, and
saw several
> http://www.nmedia.net/~chris/soekris/
>
> or flashboot:
>
> http://www.mindrot.org/projects/flashboot/
>
> Both of these projects are based on OpenBSD. They are both good
> options and can give you some pointers on how to setup your system. A
> GENERIC kernel works on a net4801 or net4526 but you
> "U. S. Foreign Policy - even a child can understand it!" post comes to
> mind:
>
> http://groups.google.com/group/uk.rec.humour/msg/0059c3a5a272af46
And this has what to do with OpenBSD?
Politics forums are over there -->>> or wherever. Don't care. It's
not here.
--
"Don't ping my cheese w
> Does anyone have any thoughts on why I suddenly have crazy
> latencies like this? How can I got about further diagnosing the
> problem?
Check DNS.
Benny
--
"God help us all if cats had thumbs." -- Me, 2006
> Since X is just contained in a .tgz file, just mount the CD (or
> whatever other install media you used) and do something like:
> $su
> #cd /
> #tar -zxvf /path/to/install/sets/x*
> #exit
> $startx
Don't forget the 'p' flag in there, when dealing with install
sets:
tar zxvpf /path/to/install/se
>The problem I have is with the touchpad - it is hyper-sensitive,
> and my hand brushing the edges of it as I type scrolls my xterms
> up and down wildly. I try to keep my hands away from it, but it's
> just inevitable.
>
>Most of the time, I don't even use the touchpad - I prefer to
> use
Hey folks,
I have an el cheapo laptop that I purchased recently, that I
run snapshots on. It's a Compaq Presario V2405US.
The problem I have is with the touchpad - it is hyper-sensitive,
and my hand brushing the edges of it as I type scrolls my xterms
up and down wildly. I try to keep my
> $ setxkbmap fr_CH
> Error loading new keyboard description
Ditto, on i386 (Feb 8 snapshot).
--
"A computer lets you make more mistakes faster than any invention
in human history, with the possible exceptions of handguns and
tequila." -- Dave Pooser
> Why is there a file called "[" in the /bin directory of my generic 3.8
> build?
>
> 144 -r-xr-xr-x 2 root bin 72128 Sep 10 15:18 [
Have you tried 'man [' ?
--
"'And you've got 10 gig of files to put through our mail system?' I
ask, squeezing my mouse in a non-approved manner." -- BOFH,
> Wrong.
>
> When you set the machine up (or using bioctl) you label a drive as a
> hot spare. When a failure happens, it automatically takes that drive
> over and does a rebuild.
>
> Shut down? You don't get it. We wrote all this code because we were
> tired of shutting down and doing the repai
> I've got a couple of the LSI 300-8X SATA cards. They certainly perform
> wonderfully and at a good pricepoint.
>
> I had run into a problem on SMP AMD64 with ccb timeouts locking up the
> box, which is doing some heavy NFS and DB. Upgrading the firmware
> seems to have cleared that up (knock on w
> excellent thanks. I figured the built in YRLess might have some
> problems. Are you running 3.8 -release?
No, a -CURRENT snapshot as of around Dec 19th. I'll be upgrading to
the most recent here shortly.
I sent my info in for the i386-laptop page, but it doesn't seem to
have been updated quite
> I was looking at buying a Presario v2405ca cause it has all kinda
> really cool stuff. I was wondering if anyone has tried openbsd on
> it or its kin yet and how that worked out? I was planning on taking
> a 3.7 or 8 boot cd with me to see what it finds.
I just picked up a 2405US right before Ch
> The CardBus slot can not be used as interrupt routing is busted
> in ways not apparent without documentation.
...
> Depends if you can find documentation on the ATI chipset the
> laptop is based on...
Doh. I figured it was going to be something like that. I'll do
some searching, but if you'v
Hey folks,
I've never been lucky enough to actually own my own laptop until
yesterday, when a friend pointed me at a special at Staples. I
picked up a Compaq Presario V2405US (AMD Sempron) for a pretty good
price. Yes, I know, Compaq and Staples, fear. But for $500, I can
cope.
I install
> I understand this and have tried just installing the chroot package
> manually also but nothing seems to be going in the right place
> (/var/www/nagios is empty after adding the chrooted package). I'm doing
> this in a VM so I'm reverting back to a snapshot which is just after
> updating the por
> I've got OpenBSD (3.7 and 3.8) running on both these boards with no
> problems what-so-ever:
>
> P4 (66Mhz PCI-X)
> http://www.tyan.com/products/html/tomcati7210.html
> Intel onboard gigabit, 1 CSA, 1 PCI.
> Intel ICH5 SATA and Sil3114 SATA, 6 ports total
>
> Dual Opteron (2 PCI-X buses, one 100M
> Supermicro P4SCi (S478) - really designed for Supermicro chassis though.
>
> PCI-X 64bit (only 66MHz I'm afraid) and PC3200 capable.
Hey, thanks, Paul. It is very much appreciated. I don't know
why my searches haven't turned up this one, but it has almost
everything I want, and a reasonable pr
> Be careful about what kind of motherboard and RAM you buy in the future...
*nod* Wise advice. I thought I was careful, but obviously not
careful enough.
Precisely why I'm asking for recommendations for hardware that
people have had good experiences with. :)
> Motherboard chipset compatibili
> Well, that's because if you do use AMD64 instead of P4, you will get a
> box a hell of a lot faster and the price would be the same to you and
> believe me when I say that! You are MUCH better with AMD64 for a server
> then P4. Flame me if you like, but you will hardly find anyone here
> telling
Hey folks,
I've been pouring over the archives for a couple of days now,
looking for recommendations for a Pentium IV motherboard for a new
server I'm building. I've found a lot of AMD and AMD64 posts, but
hardly any P4s. I would really appreciate any suggestions from any
of you that own moth
> Of course, I don't know if that's a legitimately more durable CF
> card, or just marketing.
>
> Has anyone else out there been brave enough to go rw on their CF
> cards? Results?
Henning has covered the lifespan of these things several times on
[EMAIL PROTECTED]
Benny
--
"Young lady, I yell
>> Stop in /usr/src/sys/arch/i386/compile/GENERIC (line 702 of Makefile).
>> OpenBSD 3.6-stable (GENERIC) #4: Wed Jun 22 08:30:37 CDT 2005
>> [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC
> Looks like you were doing some accidental cross compiling there. :)
Ohfergodsake. I canno
> If you think you messed up with CVS, I'd move the /src dir to somewhere
> and get everything again. Perhaps someone else will look at your messages
Yep, I did get another checkout - I mentioned it in my email. :)
I rm'ed the old src, though, I didn't move it aside.
Benny
--
"Young lady, I
Hey folks,
I seem to have gotten myself into a pickle, and I'm not quite sure
how screwed I am.
I have an AMD64 server that has been having some stability issues
recently. It has crashed several times when I have fired up sa-learn
from the SpamAssassin package, and it seems that with the r
> Yeah - I would've expected problems at the 'make install' step, but
> thought 'make' would've gone OK??
No, because linking is done in the 'make' step. It was
finding the old libs during that step, and crapping out.
Benny
--
"Now, that next spring you find in your garage a creature that
loo
> I would have thought the Makefile would have taken care of this; i.e.
> deleted (or mv'd) the clamav libs... was I expecting too much, or is
> something missing from the port?
I would recommend pkg_delete'ing the prior version, and then
installing the new one. That's what I do, and I don't end
> I get the following errors when trying to make clamav v0.87 from the
> -stable ports tree:
You sure you're using -STABLE? I mean, are you absolutely sure that
your source tree is what you _think_ it is?
I built 0.87 on 3.7-STABLE just last night, flawlessly. I don't think
your checkout is wha
> I am at a loss for a good web interface.
>
> Anyone care to make any recommendations?
I'm a pretty big fan of SquirrelMail. It's a web-based IMAP client,
so you'd need an IMAP server as well (I use Courier). It works just
fine with OpenBSD's chrooted Apache, which is a big plus.
Benny
--
"
> Someone's
> gotta educate them.
Excellent stuff. I was concentrating blindly on a potential attacker
opening a new connection to my servers, and wasn't giving any thought
to the current connection. I now see the risks.
Thanks for the education. :)
Benny
--
"Now, that next spring you find
> You are trusting that the keylogger does not make the guy show up and
> take over your one time password session.
>
> I can't believe you couldn't see that.
Ah. OK. That is exactly the tidbit of information I was not
grokking. Thank you.
--
"Now, that next spring you find in your garage a
> What exactly do you think "untrusted" means in the phrase "untrusted
> host"?
That anything and everything will be captured and logged in plain
text. That's what _I_ consider "untrusted". Everything including
the login credentials, but they're a one-time thing. Right? Is
that not the case?
> Doing it any other way is totally stupid. Or you don't need security
> and won't have it.
>
> And anyone else here who suggested that you could use OTP to solve
> this is totally clueless.
Obviously, I am missing something fundamental.
If I use an OTP to log into a remote system via an untrust
> "Have to" - you keep using those words. I don't think it
> means what you think it means.
Yes, I know what it means, just as you do. 98% of the time,
"have to" is "want to" or "really want to." I'm using it
loosely. And in this situation, the networks I'm talking about
are my own, so th
> Why?. Why why why why why
>
> If you're going to trust the untrusted machine anyway running a virus
> run-time environment just google for putty, download and run it.
I find myself in a similar situation shortly - I'm going to be
doing some vacationing in Europe, and will not be
> Scans on a local subnet (nmap -sT -p 1-65535) taking 7 hours or more.
>
> The built-in nessus port scanner does the same.
H, something _definately_ wrong there. On my LAN, using your
command line above (from a 3.7-STABLE host to a 3.6-STABLE host):
Nmap finished: 1 IP address (1 host up) s
> I guess it's possible that PIX software might be munging the 220
> (unlikely), but I still see the connections in my maillog, so it's
> not intercepting the SMTP session.
I think it's entirely likely that the PIX is munging things - this
is the smtp-fixup "feature" of the PIX units.
You might t
> Don't know what the OpenBSD philosophy is here, but without learning
> sendmail I am/was not able to simply configure my system as 'send-only'
> machine...
Perhaps I'm just smoking crack here, but your machine was pretty
much "send-only" before you started playing with it. What's the
difference
{blah}
machines has the IP 192.168.1.20 for example) can t exit to
Internet
>>>
>>>
>>> You have 192.168.1.x in that last sentence but 192.169.1.x up
>>> above.
>>> I assume you mean:
>>>
>>> 192.168.1.2
> One such site is "directron.com". Using Mozilla Firefox, it will
> just say "Waiting for directron.com..." but the page never loads.
> There are several other pages I've tried to load with the same
> result.
>
> On the other hand, some pages load fine (such as openbsd.org).
>
> However, if I log
> If you're having problems opening the PDF version, please try another
> PDF viewer. It was exported using the Export to PDF feature in OOo
> Impress. It opens fine on my Mac, haven't tried anything else.
Hmmm, yeah, I was wondering about that. Both Firefox and IE were
giving an error about th
> PERSONALLY, I prefer to call the single processor kernel "bsd.sp",
> rather than "bsd.old". "bsd.old" is most commonly the "previous kernel
> before I tried to build my own and hosed the heck out of everything". :)
Heh.
I have gotten myself in the habit of making a copy of the kernel
after fir
> Use packages or do the build using a X11 box.
Why not just use the no_x11 flavor to install gnuplot, and then
build Amanda?
That's what I do, it works like a charm.
Benny
--
"I'd rather staple a skunk to my forehead and go to a trade show
for banjo makers."-- PHB
> Sure, but the OP mentioned that he also tried -maxdepth 1, but yet
> had find(1) recurse into .ssh.
I think I might have been misinterpreting what I saw originally.
I'm not sure it was recursing _into_ .ssh when I used -maxdepth,
but it was still complaining about permissions _on_ .ssh/. I
just
> Something like this should work (compare some of th examples of the man
> page):
>
> find /path/to/dir -name .ssh -type d -prune -or \
> -type f -name \*.gz -mtime ${RETAIN} -exec rm {} \;
Thank you very much, Otto. That works just fine. It's greatly
appreciated!
Benny
--
"I'd rather
Hey folks,
OK, I think I've got the dunce hat on today, and I'm about to
go crazy with this one.
I have a script on an OpenBSD 3.7-STABLE machine that does
a find in a directory, and uses rm to remove files older than
two days (where RETAIN = "+2") :
find /path/to/dir -type f -name \*.gz -
> I've heard good things about Sera although I've yet to try them out
> personally.
I had nothing but good experiences with Kevin and the folks over
at Sera Systems. I would not hesitate to recommend them.
Benny
--
"You come from a long line of scary women." -- Ranger, "Three To
> I have a problem with ClamAV install to 3.6. None of the ClamAV sources
> build.
[ snip ]
> What sould I do? Or what VirusScanner sould I use with Amavisd-new?
I grab the -CURRENT port when it gets updated, and apply the new
patches by hand. I then build it manually (don't try to build the
-C
75 matches
Mail list logo
