Contributed by sean on from the twice a year regardless if you like it or not dept.
For those who just can't wait the mirrors should be populated by now.
(Comments are closed)
OpenBSD Journal
Contributed by sean on from the twice a year regardless if you like it or not dept.
(Comments are closed)
Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]
By Anonymous Coward (216.107.0.44) on
Comments
By Matt (82.146.96.95) on
Comments
By Anonymous Coward (67.95.13.186) on
Comments
By phessler (64.173.147.27) on
Comments
By Anonymous Coward (66.93.216.162) on
By Anonymous Coward (70.20.155.102) on
By jkm (217.215.66.75) on
By ViPER (213.84.93.41) viper@dmrt.net on http://www.dmrt.net
By Peter van Oord van der Vlies (213.10.180.122) zork@cgg.nu on http://www.cgg.nu
By Anonymous Coward (216.107.0.44) on
By Jim (198.62.124.245) on
Then again, I just may have to start swapping them out for LSI controllers...
Comments
By Anonymous Coward (213.114.206.82) Jonas on
Comments
By Jim (198.62.124.245) on
By halosfan (192.223.243.5) on
I'm also considering buying some LSI cards. Does bioctl work with them? ami(4) says "All RAID configuration is done through the controllers' BIOSes", which is somewhat vague. Does that refer to the LSI BIOS configuration utility that can be loaded before the operating system is loaded? Or does that refer to some sort of OS-level utility?
Basically, what I am concerned about is this: what options are there for monitoring the hardware RAID on LSI cards while the OS is running?
Comments
By Jim (198.62.124.245) on
I strongly recommend you go with LSI and not (Adaptec|3Ware).
By ViPER (213.84.93.41) viper@dmrt.net on http://www.dmrt.net
Adaptec SCSI RAID (ASR-2100S, ASR-2110S, ASR-3200S, etc.)
Adaptec ATA RAID (AAR-2400A)
# dmesg | egrep -i 'raid|adaptec'
iop0 at pci1 dev 2 function 1 "DPT SmartRAID (I2O)" rev 0x01: I2O adapter <ADAPTEC 3210S>
ioprbs1 at iop0 tid 520: <ADAPTEC, RAID-1, 370F> direct access, fixed
I might not be able to rebuild/configure the raid from OpenBSD, i do want to note that the Adaptec 3210S & the Compaq Smart Array 221 cards have been the only SCSI Raid controllers which haven't failed me once in the past 5 years on x86 OpenBSD/Linux servers. But this just my experience :)
Cheers.
By petruha (80.81.40.173) on http://petruha.bsd.lv/
Comments
By Anonymous Coward (80.109.122.244) on
By Jacob de Raadt, PE (192.133.42.1) on
By batou (213.41.172.147) batou@bataclou.org on
By Adam VanderHook (140.185.41.3) acidos@nospam.bandwidth-junkies.net on http://acidos.bandwidth-junkies.net/
i386 torrent or OpenBSD torrent listing.
Comments
By SH (82.182.103.172) on
By andrew fresh (66.185.224.6) andrew@mad-techies.org on http://openbsd.somedomain.net
By pdemb (217.98.20.20) on
Comments
By Chas (147.154.235.53) on
By Gary (221.127.168.62) on
For some odd reasons I just can't grab that i386 comp37.tgz.. ;-(
By Anonymous Coward (168.156.99.36) on
I'm a little sad because my upload is so lame. The frowny face is instilling guilt. I think it is because there are so many people uploading in the torrent that nobody needs my contribution.
The packages are going slow, but I at least get a :-| rating for the upload.
By Anonymous Coward (168.156.99.36) on
Comments
By ViPER (213.84.93.41) viper@dmrt.net on http://www.dmrt.net
# cd /mnt/cdrom/3.7/i386
# md5 *.tgz bsd*
MD5 (base37.tgz) = 28c05ec5e134ef80b32e895b3f331995
MD5 (comp37.tgz) = e2366cfd898565876dd6ea4d2beba3b6
MD5 (etc37.tgz) = 00d71dbf4f3aa2c43ec5b657ce44d03e
MD5 (game37.tgz) = 7a61f0565cc3a4a80bb31ad6f5854f14
MD5 (man37.tgz) = 841dfdae5d2baf51c04edfdad3aeae05
MD5 (misc37.tgz) = 66b5954bfbb2f0617b6642afa3512f93
MD5 (xbase37.tgz) = 014c19ac6bd1486f69cfd30d1dee78cf
MD5 (xetc37.tgz) = 319319497b28552dc2e21d68f05d6a73
MD5 (xfont37.tgz) = d6657e6ac326ca0a9861b6e88041aabc
MD5 (xserv37.tgz) = 1a0f0e39661b4c029ced7f97a7d3b22c
MD5 (xshare37.tgz) = 79a6f4ca23b9499e1cc7fa442c43e186
MD5 (bsd) = 6e848ac38ffc330308c21b632b1893fa
MD5 (bsd.mp) = bbbb67b161f16b6e3c782af433ac65dd
MD5 (bsd.rd) = 8d3c8bae0886f58f454e4270e49fdd67
By Anonymous Coward (66.131.207.182) on
Comments
By Adam VanderHook (140.185.41.3) acidos@nospam.bandwidth-junkies.net on http://acidos.bandwidth-junkies.net/
Comments
By thomasw.xhrl (24.80.39.250) on
respectfully, thomasw.xhrl
By Nick (193.195.0.101) on
height=210 width=599
Should be height=192 width=599
Comments
By Anonymous Coward (204.209.209.129) on
By dfoesch (68.35.150.42) on http://starport.dnsalias.net/
But what is the best way to upgrade my existing OpenBSD 3.6?
I think I remember there being an "upgrade" option during the install. But considering that I'm running OpenBSD on me and my roommates router to the internet, having it go down will have 3 very upset geeks bothering me to get it fixed.
Should there be any sort of things I should be aware of before I do this upgrade?
I'd really rather not reinstall everything, I've got quite a number of hand-crafted configuration files, that even if I back them up, I know I'll miss one or two.
Comments
By Eric Ziegast (68.71.19.2) on
http://www.openbsd.org/faq/upgrade37.html
BTW: Unless you need any of the new features, you could just leave your system 3.6 until there's a compelling reason to upgrade (or reinstall).
Comments
By Paladdin (80.58.46.107) on
Ideally, you should have a test machine to install the new release from scratch and be able to merge your config files along with the new packages. Then test and, if everything works, duplicate the process on the production machine. So far, so good.
It's irritating, -and I found it lame- to take a system down a whole day only because I'm lazy :) -And I have been before...-
By Anonymous Coward (64.246.36.80) on
I just spent almost 3 hours (I know there should be a better way to handle this, but hey I am human) to upgrade OpenBSD 3.7.
I do not have a CDROM on the laptop, so I did a remote installation.
I used the instructions from http://openbsd.org/faq/upgrade37.html
So I did a pkg_info > packages_installed, and then I removed all packages. Oh I forgot that I had installed the jdk-1.4. Oh well, I will recompile and download all the sources again from Sun.
Next, I installed the kernel and reboot as specified. So far so good.
After rebooting the machine, I had extracted all the files according to the instructions. Good but I had to go the server because the PC card, which has my wireless card is not detected on my laptop. Well, there is no problem because I have done it in the past. Recompile a new kernel with the appropriate memory ranges for my laptop.
After installing the new kernel and rebooting, I am about to install the new packages, which I did manually since I could not find any instructions on how to do it automatically, which by the way I have 107 packages. Yes, I know there are bunch considered dependencies.
After installing all packages, which is somewhat painful due to the manual and network bandwith requirements, I reboot to check that everything starts fine. I know that I could start the processes manually, but I wanted to check if they started automatically.
Oops, there are some errors, openldap changes (attribute errors due to version changes from 2.1 to 2.2)and missing modules for apache.
The bottomline:
3 hours downtime for email, pf not working while I was recompiling because it did not start since it did not detect wi0 (+1 hour without a firewall). I have to troubleshot multiple services as opposed to an incremental upgrade of the services, which it is supposed to make sense (ala portupgrade?). I think there should be a better way to do upgrades on OpenBSD. I understand that CD sales are part of the revenues for the OpenBSD project, but that does not should stop them to ease the upgrade process.
Well, I have to reinstall jdk-1.4 to make the servies that run on Java available again. Thank god this is for home only! I may be fired if I did this at work ;)
By Carlos (201.133.232.109) carlosl80@gmail.com on
i dont like the main image at www.openbsd.org/ it looks like a nonprofessional site, or if i'm with a client and i'm showing to him the advantages of openbsd, and if he looks openbsd site, probably would to make fun of ..
i have been suported openbsd since 2.7, and i have all openbsd original cd's and this is the first time that i dont like the main image of openbsd site .. even it looks like a gay site with those background colors (nothing personal for gays users, i respect them as users and human beings)
just is my simple point of view, and sorry for my bad english but is not my native languaje as you can see
Comments
By clem (69.110.155.206) on
Sometimes there is a pot of gold at the end of the rainbow. Nothing gay about that....
Comments
By Wim (209.5.161.201) wim@kd85.com on http://kd85.com/
Shameless plug: http://www.whatthehack.org
By Anonymous Coward (204.209.209.129) on
I think I took it to far with the last comment :)
By polarapfel (213.224.83.20) polarapfel@unixag-zw.fh-kl.de on
I have to agree. The image really should be exchanged against something else. I was expecting something related to the Wizard of Oz theme and not that weird "rainbow" header.
On the other hand: It's not the banner I'll install! ;-)
The best themes were the Robin Hood theme and my all time favourite, the James Bond theme. The Bond stickers are still on the case of my tower :-)
kind regards to all OpenBSD developers and user,
polarapfel
Comments
By sthen (81.168.66.229) on
Comments
By polarapfel (213.224.83.4) polarapfel@unixag-zw.fh-kl.de on
By Blueyz (63.225.96.9) on
Comments
By Anonymous Coward (203.26.16.67) on
By Anonymous Bastard (12.33.195.201) on
Comments
By Anonymous Coward (69.148.171.7) on
By m0rf (68.104.57.241) on
Do you think a red guy with horns and a pitchfork is better? how about a corpulent penguin?
By Anthony (68.145.103.21) on
Now all we need is a netinst disk that supports bittorrent. :)
/just kidding
//please don't hurt me :)
Comments
By m0rf (68.104.57.241) on
By Anonymous Coward (131.202.168.108) on
Comments
By C-Keen (212.114.213.168) Christian.Kellermann@nefkom.net on
What architecture are you using?
Cheers,
Christian
Comments
By Anonymous Coward (142.166.106.227) on
By Marc Espie (62.212.102.210) espie@openbsd.org on
By Anonymous Coward (217.31.188.216) on
By Anonymous Coward (68.121.246.170) on
Comments
By Anonymous Coward (216.107.0.44) on
By Lars Hansson (203.65.245.7) lars@unet.net.ph on
Comments
By Craig (194.72.54.134) on
Comments
By Lars Hansson (203.65.245.7) lars@unet.net.ph on
Comments
By Craig (194.72.54.134) on
By WaitingForCrypto (69.3.117.57) on
This question always comes up: "Why does anyone need encrypted storage?" There is a simple answer, which goes back to the first principle of encryption and security: All security relies on economics. In other words, you can define how secure a system is by figuring out how many dollars it would take to break the security. Let's say I send a PGP encrypted email (or SSL secured HTTP interaction or ipsec or whatever), which is secured by 256 bit crypto. For the sake of argument, I'll say it would take 10^12 years for a computer (at a cost of 10^15 dollars) to crack this message by brute force. The information within the PGP (or SSL, etc) message could be said to be "secure against an attack of up to 10^15 dollars". However, if the same information in the message is stored on a computer in plaintext form somewhere, then suddenly the economics changes a lot. How much does it cost a thief (criminal) or a government agent to break into an office or a house and steal/confiscate a computer? 10^3 dollars? 10^4 or maybe 10^5 dollars at most? I'll just say a break-in or legal confiscation to a reasonably secure office costs 10^5, which is probably on the high side. A 10^15 dollar attack is a physical impossibility. A 10^5 dollar or less attack is EASY and well within the resources of any organized criminals or government. So, due to lack of secure file storage, we have taken an attack from "physically impossible" (10^15 dollars) to "easy" (10^5 dollars or less). All the work and hand-wringing and endless debates over AES vs. 3DES that went into PGP (and all of our other encrypted protocols) is for naught if it's so easy to break by going around it.
So, any word on when/if we're ever going to get stable, production-ready disk crypto on OpenBSD? It looks like FreeBSD already has GBDE which seems like a good way to do it. Linux will eventually get Reiser4, which will allow plug-in modules, which will presumably include some good crypto modules. Am I stuck with FreeBSD at this point?
Thanks
Comments
By tedu (209.5.161.201) on
Comments
By Anonymous Coward (68.68.2.115) on