Claudiu Pruna wrote:
hi Stephen,
No offense, but did you check JetDirect's ip settings about the default
gateway ?
None taken. Yes, I did actually check that, and it was correct.
Try an tcpdump on the ethernet interface at site A while trying to print
from site B and check if you "see" packe
Re
I'll add to that debug session that it works if i add spud to exports
line and locally mount /usr/ports :
[EMAIL PROTECTED]:~/ #mount -t nfs spud:/usr/ports /tmp/blah/
[EMAIL PROTECTED]:~/ #touch /tmp/blah/test
And tcpdump log on lo0 :
[EMAIL PROTECTED]:~/ #tcpdump -s 65000 -i lo0 port nfsd or
On Thu, Oct 18, 2007 at 10:06:42PM +1300, Richard Toohey wrote:
> This looks like fun ... 8-) And this is open source, so let's follow
> the code and learn something as we go along ...
>
> But first, I guess it IS following your instructions ...
>
> You asked it to copy what's in directory foo,
Hi,
I have a non-urgent problem with OpenBPGD and would like to know
if anybody has a suggestion on what went wrong/I did wrong.
Situation: I replaced an openbgpd based router (R1) with new hardware.
Of course, the mac addresses of the interfaces changed. After
the swap the BGP session with anot
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
On Thu, Oct 18, 2007 at 10:06:42PM +1300, Richard Toohey wrote:
JUST FOR FUN I have tried to "fix" this. What I know about C code
can be written on the back of a postage stamp
Did I mention the SIZE of the postage stamp? It's rather small ...
On Fri, Oct 19, 2007 at 11:44:58AM +0200, Luca Corti wrote:
| On Fri, 2007-10-19 at 10:35 +0200, Paul de Weerd wrote:
| > Work is being done to add support. How is this 'preliminary' ? Is it
| > only not preliminary when the final commit is made that makes WPA
| > work ?
|
| Well, I think that's co
Mark,
Thanks for replying. I found some material about Squid but I'd really
like also to include authpf.
Cheers,
Ari Constancio
On 10/19/07, Mark Rolen <[EMAIL PROTECTED]> wrote:
> It's been over two years now, so specific steps are fuzzy now (I'd have
> to start from scratch to do it again), bu
Replying to myself,
> Again: set WRKOBJDIR on the client side and you don't need
> to be writing in the remotely mounted tree at all.
the following is nonsense, of course:
> Another advantage of that is that when you build some port that requires
> e.g. the X11 to be installed, you only need it
On 10/19/07, Jan Stary <[EMAIL PROTECTED]> wrote:
> Replying to myself,
>
> > Again: set WRKOBJDIR on the client side and you don't need
> > to be writing in the remotely mounted tree at all.
>
> the following is nonsense, of course:
>
> > Another advantage of that is that when you build some port
I appeal to the PF masters for some education on how to do something,
because if I can't work out how to do it using PF, I'll have to do it
with iptables. Eep!
We are a small hosting company in a managed building, and we present
ADSL/SDSL-like service over ethernet to other companies in the buildi
Thanks to all for the replies. Everything is clear now; squid with
ntlm auth and authpf with login_ldap will do the trick (sorry, Stuart,
I didn't really read your message - now I have).
Steven, I'm looking for a general gateway setup - not only web traffic.
Cheers,
Ari Constancio
On 10/19/07, S
Em Sex, 2007-10-19 C s 13:52 -0400, Douglas A. Tutty escreveu:
> On Fri, Oct 19, 2007 at 09:19:21AM -0400, Nick Guenther wrote:
> > On 10/19/07, Tom Van Looy <[EMAIL PROTECTED]> wrote:
> > > Richard Toohey wrote:
> > > > On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
> > > >
> > > > Looks like Op
Hello,
On Fri, Oct 19, 2007 at 07:59:38PM +0200, ropers wrote:
> [...]
> pdksh on Linux behaves just like bash on Linux, and unlike pdksh on OpenBSD.
> I didn't expect that. So does that error message depend on OS APIs
> rather than the shell program and its built-in commands?
cp is part of the l
On 19/10/2007, ropers <[EMAIL PROTECTED]> wrote:
>
> I beat you to trying it on Linux
No I didn't. Others beat me and you to it. Apologies for the unnecessary noise.
(...)
> IMHO cp behaving like this is somewhat nicer than its current
> behaviour on apparently most or all BSD OSes.
I'm surpris
On 10/19/07, Rimi Bougard <[EMAIL PROTECTED]> wrote:
> Hello,
>
> On Fri, Oct 19, 2007 at 07:59:38PM +0200, ropers wrote:
> > [...]
> > pdksh on Linux behaves just like bash on Linux, and unlike pdksh on
OpenBSD.
> > I didn't expect that. So does that error message depend on OS APIs
> > rather than
I read that single unix specification thing again because the OpenBSD cp
manpage says it is expected to be IEEE Std 1003.2 (``POSIX.2'') compatible.
For each source_file, the following steps shall be taken:
1) If source_file references the same file as dest_file, cp may write a
diagnostic mess
On 19/10/2007, ropers <[EMAIL PROTECTED]> wrote:
>
> I'm surprised now.
>
> I just thought that what I wrote above was stupid, because I thought
> that the behaviour of cp was a function of the shell built-in command
> cp, not of the OS.
> To confirm this, I installed the OpenBSD default shell pdks
As Sebastian pointed out, you will need to do some state manipulation to
apply your traffic flows to an up and down queue. You can also do this by
setting your state-policy to be if-bound.
On 10/19/07, Richard Wilson <[EMAIL PROTECTED]> wrote:
>
> n0g0013 wrote:
> > On 19.10-15:15, Richard Wilson
On 10/19/07, Aaron W. Hsu <[EMAIL PROTECTED]> wrote:
> > From: "Tom Van Looy" <[EMAIL PROTECTED]>
> > Date: Fri, 19 Oct 2007 20:21:56 +
> > Subject: Re: cp(1) bug ?
> >
> > it shall do nothing more with source_file and shall go on to any
> > remaining files.
>
> Doesn't this mean that cp should
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Folks,
I just noticed 011_openssl.patch and installed it on my 4.1 i386 system.
Does anyone have any idea to what extent I risked being hacked? If the
risk was significant, what is the best way to check if someone's been naughty?
thanks,
Rob Urb
> I just noticed 011_openssl.patch and installed it on my 4.1 i386 system.
> Does anyone have any idea to what extent I risked being hacked? If the
> risk was significant, what is the best way to check if someone's been naughty?
If anyone competent is being naughty, you probably wouldn't
On 10/19/07, Ted Unangst <[EMAIL PROTECTED]> wrote:
> On 10/19/07, Aaron W. Hsu <[EMAIL PROTECTED]> wrote:
> > > From: "Tom Van Looy" <[EMAIL PROTECTED]>
> > > Date: Fri, 19 Oct 2007 20:21:56 +
> > > Subject: Re: cp(1) bug ?
> > >
> > > it shall do nothing more with source_file and shall go on
Hi,
Been trying in vain to get daap/mdns traffic through my OpenBSD 4.1
firewall to talk to my mt-daap server.
>From tcpdumping I can see the multicast traffic coming into sis1
interface but not coming out of the sis0 interface so I can only assume
that I have missed something.
At present I don'
On 19/10/2007, Andreas Kahari <[EMAIL PROTECTED]> wrote:
> On 19/10/2007, ropers <[EMAIL PROTECTED]> wrote:
> >
> > IMHO cp behaving like this is somewhat nicer than its current
> > behaviour on apparently most or all BSD OSes. Then again, I STILL
> > can't code, so I've no right to complain. ;o)
>
Landry Breuil wrote:
On 10/19/07, Jan Stary <[EMAIL PROTECTED]> wrote:
Again: set WRKOBJDIR on the client side and you don't need
to be writing in the remotely mounted tree at all.
I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
/usr/ports/packages .. i'd like it to be sh
Hello
I am currently in Istanbul attending the 1st International BSD
Conference in Turkey (see www.opencon.tr for details).
This conference is very well organized and on the first day
about 200 people attended. The talks were held in Turkish, but
the nice people of Endersys and Enderunix (the
On 10/13/07, Floor Terra <[EMAIL PROTECTED]> wrote:
> a small OpenBSD social event in Amsterdam (The Netherlands).
> It's nothing official, just a few OpenBSD users getting together. The
> date is Friday November 2nd, a perfect date to celebrate the 4.2
> release. Cafi "De Deugniet" is the location
> Date: Fri, 19 Oct 2007 20:12:26 +0200
> From: Paul de Weerd <[EMAIL PROTECTED]>
> Subject: Re: : cp(1) bug ?
>
> On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
> | Conceptually, though, why can't cp look at the source directory and take a
> | snapshot, a to-do-list, of everyth
On 10/19/07, Nick Guenther <[EMAIL PROTECTED]> wrote:
> On 10/19/07, Paul de Weerd <[EMAIL PROTECTED]> wrote:
> > On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
> > | Conceptually, though, why can't cp look at the source directory and take a
> > | snapshot, a to-do-list, of every
dear all
i try setup my obsd 4.1 to storage hosting i need advice :
- how to limit user to use server enveroment
- how to quota , they any quota system web base .
- any thing else ?
thq
sonjaya
http://sicute.blogspot.com
Website is up, date are announced.
The Free and Opensource Sofware Developer's European Meeting will, as
usual, take place at the Universiti Libre de Bruxelles, Campus
Solbosh, on the 23 & 24th february 2008
Website is http://www.fosdem.org/2008/
Event address is
Avenue Franklin D. Roosevelt, 50
On 10/19/07, Paul de Weerd <[EMAIL PROTECTED]> wrote:
> On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
> | Conceptually, though, why can't cp look at the source directory and take a
> | snapshot, a to-do-list, of everything it has to copy, then do it? That
> | way, any recursion
On Fri, Oct 19, 2007 at 03:15:03PM +0100, Richard Wilson wrote:
> I appeal to the PF masters for some education on how to do something,
> because if I can't work out how to do it using PF, I'll have to do it
> with iptables. Eep!
[snip the details]
> That's about it really. If I can get it to wor
On 10/19/07, Jan Stary <[EMAIL PROTECTED]> wrote:
> > > > Again: set WRKOBJDIR on the client side and you don't need
> > > > to be writing in the remotely mounted tree at all.
>
> > I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
> > /usr/ports/packages .. i'd like it to be s
On Fri, Oct 19, 2007 at 09:19:21AM -0400, Nick Guenther wrote:
> On 10/19/07, Tom Van Looy <[EMAIL PROTECTED]> wrote:
> > Richard Toohey wrote:
> > > On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
> > >
> > > Looks like OpenBSD, FreeBSD, and Mac OS X BSD bits have the same
> > > sort of outcome.
On Fri, Oct 19, 2007 at 09:19:21AM -0400, Nick Guenther wrote:
> On 10/19/07, Tom Van Looy <[EMAIL PROTECTED]> wrote:
> > [...]
> > Anyway, it has worked like that since years, and I guess nobody has had
> > a problem with it before. I don't think it should be changed just
> > because some bored gu
On Fri, 2007-10-19 at 09:14 -0700, Darren Spruell wrote:
> It *is* a requirement to comment intelligently on what is or is not
> being worked on.
Yeah, sorry for that.
ciao
Luca
Richard Wilson([EMAIL PROTECTED]) on 2007.10.19 15:15:03 +:
> What I want to do:
> Provide 2Mb down/256Kb up ADSL-like service, contended at 20 to one.
> Provide 2Mb down/2Mb up SDSL-like service, contended at 10 to one.
> By contention, I mean that to take the ADSL as the example, each client
On 10/17/07, Steve Shockley <[EMAIL PROTECTED]> wrote:
> Edwards, David (JTS) wrote:
> > I'm using 250G laptop disks powered from the USB cable.
>
> Maybe you're hitting the limit of the USB power output?
Agreed. Use two separate full-power USB ports (i.e. neither port
shares any of each other's
On 2007/10/19 16:03, Ari Constancio wrote:
> Hi again,
>
> Sorry if I'm not being clear.
>
> I need this box to be a firewall and a proxy server. Squid, as it
> seems, can use NTLM auth to get account info from AD. But what about
> pf?
>
> How can I authenticate users from AD to get through pf?
ps: it was a ;-p
Nick Guenther wrote:
On 10/19/07, Tom Van Looy <[EMAIL PROTECTED]> wrote:
Richard Toohey wrote:
On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
Looks like OpenBSD, FreeBSD, and Mac OS X BSD bits have the same
sort of outcome.
Copy foo to foo only once and quit, I think th
Steven Surdock wrote:
To perform integrated NTLM auth I believe you'll need winbind from samba
and windbind support for Squid. I'm not sure I understand the authpf
requirement.
http://marc.info/?l=openbsd-ports&m=119081356508513&w=2
-Steve S.
I have to agree with Steven here, I don't under
To perform integrated NTLM auth I believe you'll need winbind from samba
and windbind support for Squid. I'm not sure I understand the authpf
requirement.
http://marc.info/?l=openbsd-ports&m=119081356508513&w=2
-Steve S.
Ari Constancio wrote:
> Mark,
>
> Thanks for replying. I found some mater
On 2007/10/19 14:09, Ari Constancio wrote:
> Thanks for replying. I found some material about Squid but I'd really
> like also to include authpf.
You can massage the output from OpenLDAP's ldapsearch to generate
a master.passwd file, pwd_mkdb, then login_ldap from packages can be
used to authentic
On Oct 18 20:04:18, Landry Breuil wrote:
> i'm struggling to make my ports-tree usable on all my machines, it
> seems that in my configuration -maproot=root in /etc/exports doesn't
> work:
>
> on the server (4.1 stable), /etc/exports contains :
> /usr/ports -maproot=root client
> perms : drwxrwxr-
On Fri, 2007-10-19 at 12:07 +0200, Paul de Weerd wrote:
> I disagree. This is not true from a 'user perspective' at all. Unless
> a user is totally ignorant - you don't expect a new building to just
> *poof* out of thin air and have it ready for use the same moment ?
> Construction takes time. Care
Hi,
I'm looking for a MS-ISA server replacement, and I'm thinking
specifically in an OpenBSD-based setup with authpf and Squid (NTLM
auth) on Active Directory.
Does anyone have a similar setup?
Thanks in advance,
Ari Constancio
Hi,
I have plenty of time between next 1/11 ~ 5/11; who wants to meet in
Berlin, in Tuffstein to celebrate the 12th birthday of OpenBSD?
(Leberstrasse 2, Schoeneberg):
http://maps.google.com/maps?f=q&hl=ca&geocode=&time=&date=&ttype=&q=leberstrasse+2,+berlin,+germany&sll=37.0625,-95.677068&sspn=3
On Fri, 2007-10-19 at 00:30 -0600, Stephen Bosch wrote:
> Hi, folks:
>
> Here's a good one for you.
>
> I have an IPsec tunnel running between two OpenBSD boxes. One is still
> running 3.8 (yes, it needs to be updated) and the other is running 4.1.
>
> There is a functioning tunnel running betw
On Fri, Oct 19, 2007 at 10:07:36AM +0200, Luca Corti wrote:
| On Thu, 2007-10-18 at 22:43 -0400, Nick Guenther wrote:
| > > WPA is not supported. AFAIK noone is working on it.
| > http://www.openbsd.org/plus42.html
| > search for "WPA".
|
| "Lots of 802.11 improvements and code in preparation for W
Hi, folks:
Here's a good one for you.
I have an IPsec tunnel running between two OpenBSD boxes. One is still
running 3.8 (yes, it needs to be updated) and the other is running 4.1.
There is a functioning tunnel running between the two devices.
Hosts on one end can "see" hosts on the other, a
On Thu, 2007-10-18 at 22:43 -0400, Nick Guenther wrote:
> > WPA is not supported. AFAIK noone is working on it.
> http://www.openbsd.org/plus42.html
> search for "WPA".
"Lots of 802.11 improvements and code in preparation for WPA and other
auth styles."
This says pretty nothing about actual imple
On Fri, 19 Oct 2007, RW wrote:
> I have a GENERIC 4.1 box running ntpd as a server that is now part of
> au.pool.ntp.org and suddenly (once the world discovered it) the logs
> began to fill with entries like:
> Oct 19 16:46:05 freya ntpd[12012]: malformed packet received from
> 121.216.235.111
> O
Pierre Riteau wrote:
On Thu, Oct 18, 2007 at 04:35:38PM +0200, Markus Bergkvist wrote:
Even though bios0 reports "ASUS A7N8X Deluxe ACPI BIOS" during boot, I
see no acpi0 in the dmesg, w/o acpi enabled. Unsupported, or am I just not
supposed to see a acpi0 device?
disable apm0 if you want to
> From: "Tom Van Looy" <[EMAIL PROTECTED]>
> Date: Fri, 19 Oct 2007 20:21:56 +
> Subject: Re: cp(1) bug ?
>
> it shall do nothing more with source_file and shall go on to any
> remaining files.
Doesn't this mean that cp should not do anything when, for example, the
following command is run?
n0g0013 wrote:
> On 19.10-15:15, Richard Wilson wrote:
> [ ... ]
>> altq on $ext_if cbq bandwidth 9.1Mb queue { adsl_up, sdsl_up }
>> altq on $client_if cbq bandwidth 9.1Mb queue { adsl_dn, sdsl_dn }
>>
>> queue adsl_up bandwidth 256Kb cbq
>> queue adsl_dn bandwidth 2Mb cbq
>
> is there a reason t
cp on linux is part of gnu coreutils (http://www.gnu.org/software/coreutils/)
the error can be found in /coreutils-6.9/tests/cp/into-self
So it is not a part of bash or ksh (also on OpenBSD it is not part of the
shell, the code is in /usr/src/bin/cp/).
>> I beat you to trying it on Linux
>
>No
On Fri, Oct 19, 2007 at 01:52:03PM -0400, Douglas A. Tutty wrote:
| Conceptually, though, why can't cp look at the source directory and take a
| snapshot, a to-do-list, of everything it has to copy, then do it? That
| way, any recursion would be completed before the target directory
| appeared in
knitti wrote:
On 10/19/07, Stephen Bosch <[EMAIL PROTECTED]> wrote:
Other things I've tried:
- moving the Jetdirect to a different port on the same physical switch
- a variety of static and dynamic IPs in the subnet
I also forwarded the external port 9100 to this print server and tried
to acce
On 10/19/07, Luca Corti <[EMAIL PROTECTED]> wrote:
> AFAIK noone is working on it.
> ...
> Sure I am not following source changes regularly, I don't believe this
> is a requirement to just use the system.
It *is* a requirement to comment intelligently on what is or is not
being worked on.
DS
Ari Constancio wrote:
> Hi again,
>
> Sorry if I'm not being clear.
>
> I need this box to be a firewall and a proxy server. Squid, as it
> seems, can use NTLM auth to get account info from AD. But what about
> pf?
>
> How can I authenticate users from AD to get through pf?
>
> Thanks,
> Ari Consta
Jussi Peltola wrote:
Does the print server have the right gateway configured?
Yeah. Checked that.
Does scrub have any effect (fragments get dropped in some cases if scrub
is off - that bit me once with openvpn)?
I think scrub is on, though -- I'll have to look again.
Wouldn't tcpdump tell
Il giorno 19/ott/07, alle 17:03, Ari Constancio ha scritto:
How can I authenticate users from AD to get through pf?
I'm unsure I've correclty understood your request.
If you mean "How can I make my authpf users authenticate against AD"
then use login_ldap from ports (you probably have to do s
> > > Again: set WRKOBJDIR on the client side and you don't need
> > > to be writing in the remotely mounted tree at all.
> I'm already setting WRKOBJDIR outside nfs-dir, the problem is more for
> /usr/ports/packages .. i'd like it to be shared too, to install the
> same package on various sparc64
Hi again,
Sorry if I'm not being clear.
I need this box to be a firewall and a proxy server. Squid, as it
seems, can use NTLM auth to get account info from AD. But what about
pf?
How can I authenticate users from AD to get through pf?
Thanks,
Ari Constancio
On 10/19/07, Mark Rolen <[EMAIL PRO
On 10/19/07, Tom Van Looy <[EMAIL PROTECTED]> wrote:
>
> Richard Toohey wrote:
> > On 19/10/2007, at 8:12 PM, Raimo Niskanen wrote:
> >
> > Looks like OpenBSD, FreeBSD, and Mac OS X BSD bits have the same
> > sort of outcome.
> >
> >
> > Copy foo to foo only once and quit, I think that's the correc
On Debian, you also end up with a directory structure consisting of
one new 'foo' directory within the original 'foo' directory, which is
contradicting the message about not being able to copy foo into
itself...
$ mkdir foo
$ touch foo/bar
$ cp -R foo foo
cp: cannot copy a directory, `foo', into i
On Fri, 2007-10-19 at 10:35 +0200, Paul de Weerd wrote:
> Work is being done to add support. How is this 'preliminary' ? Is it
> only not preliminary when the final commit is made that makes WPA
> work ?
Well, I think that's correct from a user perspective. The question was
by a user and about WPA
Does the print server have the right gateway configured?
Does scrub have any effect (fragments get dropped in some cases if scrub
is off - that bit me once with openvpn)?
Wouldn't tcpdump tell you more about the packets coming back from it?
I'd probably just use rdr and a TCP proxy on some machine
On the October 17, at 10:39 (-0700), Bryan Irvine wrote:
> [...]
> looks like a feature to me. ;)
Agreed, although it does not seem to exists on GNU/Linux since GNU's cp
is different from BSD's. The feature is present on {Net,Open,Free}BSD.
It's not that a big deal, is it? Eventually, the ques
On 19/10/2007, Edd Barrett <[EMAIL PROTECTED]> wrote:
> On 18/10/2007, Richard Toohey <[EMAIL PROTECTED]> wrote:
> > > $ mkdir foo
> > > $ cp -R foo foo
>
> Ill try this on a solaris box and a linix box tomorrow at work :P
I beat you to trying it on Linux (Ubuntu "Gutsy Gibbon" 7.10):
[EMAIL PROT
On 19.10-15:15, Richard Wilson wrote:
[ ... ]
> altq on $ext_if cbq bandwidth 9.1Mb queue { adsl_up, sdsl_up }
> altq on $client_if cbq bandwidth 9.1Mb queue { adsl_dn, sdsl_dn }
>
> queue adsl_up bandwidth 256Kb cbq
> queue adsl_dn bandwidth 2Mb cbq
is there a reason that these have no child que
On 10/19/07, Stephen Bosch <[EMAIL PROTECTED]> wrote:
> Other things I've tried:
>
> - moving the Jetdirect to a different port on the same physical switch
> - a variety of static and dynamic IPs in the subnet
>
> I also forwarded the external port 9100 to this print server and tried
> to access it
I have a GENERIC 4.1 box running ntpd as a server that is now part of
au.pool.ntp.org and suddenly (once the world discovered it) the logs
began to fill with entries like:
Oct 19 16:46:05 freya ntpd[12012]: malformed packet received from
121.216.235.111
Oct 19 16:46:19 freya ntpd[12012]: malformed
penguin's behaviour:
elachistos| cp -R foo foo
cp: cannot copy a directory, `foo', into itself, `foo/foo'
:)
2007/10/19, Arnaud Berthomier <[EMAIL PROTECTED]>:
> On the October 17, at 10:39 (-0700), Bryan Irvine wrote:
> > [...]
> > looks like a feature to me. ;)
>
> Agreed, although it does no
correction: hard links are not allowed on directory's, ...
that being said, comparing inodes seems the best solution
only, don't give an error but copy once
maybe if I have time this weekend I'll try code that behaviour
Anyway, it has worked like that since years, and I guess nobody has had
a p
76 matches
Mail list logo
