freebsd-hackers-digest V5 #741
owner-freebsd-...@freebsd.org
freebsd-hackers-digest Monday, March 10 2003 Volume 05 : Number 741
In this issue:
Re: Guide to writing device drivers sought
Re: Guide to writing device drivers sought
Mutual Investment proposal
Re: divert socket
Re: 3 IDE devices on Promise card + FreeBSD == not possible?
Re: ng_fec on 4.7-RELEASE-p6
Re: 3 IDE devices on Promise card + FreeBSD == not possible?
mount_null evil ?
Re: Realtek
Re: #warning must be protected by #if __GNUC__ in headers?
Re: Realtek
Re: Realtek
Insecure PHP installation?
Re: Insecure PHP installation?
patch for vinum
[haw...@visi.com: Patches for SA-03:02 (OpenSSL) and RELENG_4_6_2]
Re: mount_null evil ?
Re: mount_null evil ?
Re: mount_null evil ?
redirect everything to socks5
Re: Insecure PHP installation?
----------------------------------------------------------------------
Date: Mon, 10 Mar 2003 00:14:45 +0000
From: Richard Airlie <kan...@darq.net>
Subject: Re: Guide to writing device drivers sought
hi,
On Sun, Mar 09, 2003 at 09:44:00PM +0100, Robert Eckardt wrote:
> long ago I used the joy-driver as an example to integrate my own device
> driver. I'm now trying (once again :-) to do the same in FreeBSD-4.7.
> Unfortunately, joy no longer functions correctly (since 4.1) and so it is an
> inappropriate example.
i have submitted a PR including a patch for this problem:
<http://www.freebsd.org/cgi/query-pr.cgi?pr=46734>
(it would be really nice if someone could look at this and give it the 'thumbs
up' if its ok).
the patch allows for /dev/joy0 and /dev/joy1 to both exist, attached to the
same I/O port (0x201).
if you look at the patch you'll see there are only minor changes required to
achieve this.. its quite straightforward.
hope this is some use to you -
regards,
richard.
------------------------------
Date: Sun, 9 Mar 2003 17:16:05 -0800 (PST)
From: Julian Elischer <jul...@elischer.org>
Subject: Re: Guide to writing device drivers sought
At one stage the example driver in -current
(/usr/share/examples/drivers) was correct for 4.x
but I don't know if that is true any more as
so many things have changed..
It's a shellscript that generates a skeleton driver for you.
On Mon, 10 Mar 2003, Richard Airlie wrote:
> hi,
>
> On Sun, Mar 09, 2003 at 09:44:00PM +0100, Robert Eckardt wrote:
> > long ago I used the joy-driver as an example to integrate my own device
> > driver. I'm now trying (once again :-) to do the same in FreeBSD-4.7.
> > Unfortunately, joy no longer functions correctly (since 4.1) and so it is an
> > inappropriate example.
>
> i have submitted a PR including a patch for this problem:
>
> <http://www.freebsd.org/cgi/query-pr.cgi?pr=46734>
>
> (it would be really nice if someone could look at this and give it the 'thumbs
> up' if its ok).
>
> the patch allows for /dev/joy0 and /dev/joy1 to both exist, attached to the
> same I/O port (0x201).
>
> if you look at the patch you'll see there are only minor changes required to
> achieve this.. its quite straightforward.
>
> hope this is some use to you -
>
> regards,
> richard.
>
> To Unsubscribe: send mail to majo...@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message
>
------------------------------
Date: Sun, 9 Mar 2003 23:08:54 -0800 (PST)
From: Ango A <rimi...@yahoo.com>
Subject: Mutual Investment proposal
DEAR SIR,
I HAVE THE HONOUR AND CONFIDENCE TO INTRODUCE TO YOU
THIS BUSSINESS IN VIEW OF THE FACT THAT YOU ARE
TRUSTWORTHY AND RELIABLE.
I AM MR. Ango A, THE EASTERN DISTRICT ACCOUNTANT OF
STANDARD TRUST BANK PLC (STB). THERE IS AN ACCOUNT
OPENED IN THIS BANK IN 1982 AND SINCE 1990 NOBODY HAS
OPERATED ON THIS ACCOUNT AGAIN. AFTER INTENSIVE
INVESTIGATION, I DISCOVERED THAT THE OWNER OF THIS
ACCOUNT WAS THE OWNER OF CREST MARTINS CO. LTD. A
FOREIGNER FROM SWEDEN, A CRUDE OIL MERCHANT, AND HE
DIED IN 1990 AND HAS NO NEXT OF KIN AND THE ACCOUNT
HAS NO BENEFICIARY, MY INVESTIGATION PROVED TO ME AS
WELL THAT HIS COMPANY DOES NOT KNOW ANYTHING ABOUT
THIS ACCOUNT. THE AMOUNT INVOLVED RUNS INTO SEVERAL
MILLIONS OF UNITED STATES DOLLARS, ABOUT US
$17,460,000.00 SEVENTEEN MILLION, FOUR HUNDRED AND
SIXTY THOUSAND DOLLARS.
IN THE LIGHT OF THE ABOVE FACT, I NEED YOUR ASSISTANCE
TO OPEN YOUR DOOR TO THIS OPPORTUNITY BY PROVIDING
YOUR ACCOUNT OR ANY ACCOUNT OF YOUR CHOICE WHERE THE
FUND WILL BE REMITTED.
YOUR ASSISTANCE AS A FOREIGNER IS NECESSARY BECAUSE
THIS MANAGEMENT IS READY TO WELCOME ANY PERSON, A
FOREIGNER WHO HAS CORRECT INFORMATION TO THIS ACCOUNT,
WHICH I WILL GIVE TO YOU IMMEDIATELY, IF YOU INTRESTED
TO CONCLUDE THIS TRANSACTION WITH ME.
I WILL APPLY FOR AN ANNUAL LEAVE IMMEDIATELY I HEAR
FROM YOU THAT YOU ARE READY TO ACT AND RECEIVE THIS
FUND INTO YOUR ACCOUNT. THIS IS TO ENABLE ME USE MY
POSITION AND INFLUENCE TO EFFECT THE ONWARD
TRANSMISSION OF THIS MONEY TO YOUR DESIRED ACCOUNT.
AT THE CONCLUSION OF THIS BUSINESS, YOU WILL BE GIVEN
20% OF THE TOTAL AMOUNT, 75% WILL BE FOR US, WHILE 5%
BE SET ASIDE FOR CHARITY ORGANISATION AND EXPENSE WE
MIGHT INCURE DURING THE TRANSACTION.
I LOOK FORWARD TO YOUR EARNEST REPLY.
YOURS TRULY,
Mr. Ango A
__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - forms, calculators, tips, more
http://taxes.yahoo.com/
------------------------------
Date: Mon, 10 Mar 2003 09:20:32 +0100
From: Ferruccio Vitale <fre...@cs.tin.it>
Subject: Re: divert socket
I try to explain better my problem: when my daemon tries to read from this socket, recv tells me it read 68 bytes, for example, which is about message size at application layer, but what I read is not I expect (string without sense). Is there a particular way to read from a raw socket or a divert socket?
Ferruccio
------------------------------
Date: Mon, 10 Mar 2003 11:19:19 +0100
From: Dag-Erling Smorgrav <d...@ofug.org>
Subject: Re: 3 IDE devices on Promise card + FreeBSD == not possible?
Pete <pete-freeb...@toscano.org> writes:
>> atacontrol create mirror ad6 ad7
> This is starting to _really_ confuse me. Does FreeBSD have two software
> RAID systems?
Yes (vinum and raidframe)
> Is there something built into the ATA controller drivers
> that can do software RAID too? It looks that way from that atacontrol
> and ata man pages.
No, but atacontrol knows how to configure hardware RAID controllers
such as your Promise FastTrack.
> Where does Vinum fit in here or is Vinum extraneous
> now?
Vinum is a volume manager with RAID functionality.
> Is Vinum just a front-end to the ata system?
No, it's completely device independent.
DES
- --
Dag-Erling Smorgrav - d...@ofug.org
------------------------------
Date: Mon, 10 Mar 2003 11:28:06 +0100 (CET)
From: Attila Nagy <b...@fsn.hu>
Subject: Re: ng_fec on 4.7-RELEASE-p6
Hello,
> Yes, I did ifconfig fxp[01] up. I didn't matter.
All I can say is that I am using this on an earlier STABLE and on CURRENT
with success...
- ----------[ Free Software ISOs - http://www.fsn.hu/?f=download ]----------
Attila Nagy e-mail: Attil...@fsn.hu
Free Software Network (FSN.HU) phone @work: +361 210 1415 (194)
cell.: +3630 306 6758
------------------------------
Date: Mon, 10 Mar 2003 11:30:14 +0100 (CET)
From: Soeren Schmidt <s...@spider.deepcore.dk>
Subject: Re: 3 IDE devices on Promise card + FreeBSD == not possible?
It seems Dag-Erling Smorgrav wrote:
> Pete <pete-freeb...@toscano.org> writes:
> >> atacontrol create mirror ad6 ad7
> > This is starting to _really_ confuse me. Does FreeBSD have two software
> > RAID systems?
>
> Yes (vinum and raidframe)
And ccd :)
> > Is there something built into the ATA controller drivers
> > that can do software RAID too? It looks that way from that atacontrol
> > and ata man pages.
>
> No, but atacontrol knows how to configure hardware RAID controllers
> such as your Promise FastTrack.
No, thats not the case, the ATA driver has a built in RAID engine
to use with Promise and HighPoint controllers. The reason it is
like this is that it is nessesary to read the RAID config off the
disks in a vendor specific way, and neither of cdd/vinum could do
this when its was done.
ATA RAID's like the Promise Fasttrak are *not* HW RAID's its a
SW RAID engine in the BIOS on those cards. However that is only
used for booting from the RAID, and then the ATA driver picks up
the array config and uses that with its internal SW RAID engine.
Atacontrol just sees a generic ATA RAID interface, and the ATA
driver then knows how to r/w the config for a specific controller.
- -Søren
------------------------------
Date: Mon, 10 Mar 2003 14:24:02 +0100
From: Marc Schoechlin <m...@LF.net>
Subject: mount_null evil ?
Hi !
I´m currently developing a jail-management solution - I use a
readonly mount_null for central software-management of the jails.
The manpage of mount_null says the following:
- -----
- -> man mount_null
BUGS
THIS FILESYSTEM TYPE IS NOT YET FULLY SUPPORTED (READ: IT DOESN'T WORK)
AND USING IT MAY, IN FACT, DESTROY DATA ON YOUR SYSTEM. USE AT YOUR OWN
RISK. BEWARE OF DOG. SLIPPERY WHEN WET.
This code also needs an owner in order to be less dangerous - serious
hackers can apply by sending mail to <hac...@FreeBSD.org> and announcing
their intent to take it over.
- -----
The manpage was written May 1, 1995 - is using this tool still dangerous ?
My experience up to now was very good....
Do you see any security or othe problems in using such a readonly
mount_null within a jail ?
Regards
Marc Schöchlin
- --
Gruss / Best regards | LF.net GmbH | fon +49 711 90074-413
Marc Schoechlin | Ruppmannstr. 27 | fax +49 711 90074-33
m...@LF.net | D-70565 Stuttgart | http://www.lf.net
------------------------------
Date: Mon, 10 Mar 2003 07:37:28 -0800
From: Terry Lambert <tlam...@mindspring.com>
Subject: Re: Realtek
Luigi Rizzo wrote:
> At this price level, you can also consider the Intel PRO1000/MT
> (part number is PWLA8492MT) which has two Gig-E ports (copper), is
> well supported under FreeBSD by the Intel-supported "em" driver,
> and costs $174 (list price, if you shop eg. on yahoo you can find
> it cheaper than that).
>
> The good thing of this cart is that it works at Gig speed, and
> it is widely available so hopefully it won't disappear from
> the market by the time you place your order.
No, the best thing about all GigE is that you don't need a twisty
cable, It Just Works. They should do the same thing for the 100Mbit,
IMO. 8-).
- -- Terry
------------------------------
Date: Mon, 10 Mar 2003 08:02:11 -0800
From: Terry Lambert <tlam...@mindspring.com>
Subject: Re: #warning must be protected by #if __GNUC__ in headers?
Craig Rodrigues wrote:
> In <sys/syslimits.h>, I see:
>
> #if __GNUC__
> #warning "No user-serviceable parts inside."
> #endif
>
> Does the use of #warning need to be protected by
> #if __GNUC__ in FreeBSD header files?
Yes. It is a preprocessor directive specific the GCC preprocessor.
This was discussed in great detail about a month ago, when the
people trying to get TenDRA to compile FreeBSD discovered to their
horror that TenDRA's preprocessor incorrectly assigns meaning to
code that's #if'ed out, and blew chunks on the #warning, when it
should have ignored it.
> Some other header files check for __GNUC__ before using #warning,
> such as <sys/ioctl.h>, but <sys/dkstat.h> does not.
<sys/dkstat.h> is wrong. Please see the original discussion for
more details.
- -- Terry
------------------------------
Date: Mon, 10 Mar 2003 08:11:35 -0800 (PST)
From: Doug Ambrisko <ambr...@ambrisko.com>
Subject: Re: Realtek
Terry Lambert writes:
| No, the best thing about all GigE is that you don't need a twisty
| cable, It Just Works. They should do the same thing for the 100Mbit,
| IMO. 8-).
They have started that. Via has atleast one auto-mdi/mdi-x nic chip.
We'd like it if more companies start doing it but I wouldn't hold my
breath.
Caveat is that a Netgear auto mdi/mdi-x switch won't allways sync with
the fxp0 in my laptop :-( So looks like we are in for another round of
auto negotiation that doesn't always work.
I do like the Intel gig cards, since you can get dual fiber and copper
version.
Doug A.
------------------------------
Date: Mon, 10 Mar 2003 08:47:03 -0800 (PST)
From: Doug Ambrisko <ambr...@ambrisko.com>
Subject: Re: Realtek
Wes Peters writes:
| On Friday 07 March 2003 09:16, Doug Ambrisko wrote:
| You did something truly bizarre. I've tested similar cards on many
| machines ranging from K6-2 400MHz to P4 2.4GHz and the RealTek
| performance has always been at or near the bottom of the heap. On the
| slower processors, the overhead of aligning packets shows heavily, but it
| can be noticed on any system.
Depends on what your systems is doing. We are PCI bus limited.
| A number of the chips folded into the dc(4) driver are horrible and
| perform right down there with the RealTek, but a few are fairly good.
Agreed. We've tested the common 21143 and some clones. We also ran
the tests a few times to the the dc(4) chip to get the TX delays
right adjusted so they don't have FIFO under-runs since that adjustment
kill performance.
| The 3com 3c905s are generally quite good using the xl(4) driver, as are
| the Intel EEPro's using fxp. I've read of others struggling with both
| but never encountered this myself. I tend to be quite conservative about
| throwing random versions of FreeBSD at systems, though, and many of those
| complaints come from people at various points on -stable, rather than a
| known release point.
We've had good success with the fxp(4) chips except for a strange bug
on an onboard motherboard version. There seems to be a bug in the
eeprom setting for it that I patch in the fxp(4) driver. Unfortunately
I'm guess at the correction since we haven't been able to get the
definition of that register. Since Intel sets to that value and makes
our bug go away we just do it. Makes me nervous though.
| > So I'd say given a sufficiently fast CPU and memory the Realteks work
| > pretty darn good.
|
| For a sufficient engine RPM, that escort will do 85 MPH in first gear,
| too. ;^)
Yep, and if you never have to turn a corner and the engine can handle
it then it is okay. Our '87 Porsche 911 can't turn in a "normal" sense
very fast due to cronic understeer. However, with a rear-weight bias
it spins very fast. So to turn fast you just spin the car into the
direction you need, gas it to stop the spin and off you go. Side
benefit it that you don't need to brake as much going into a corner
since when you are going side ways you are braking so you just factor that
in.
Is a Porsche 911 a performance car? In the right hands it is otherwise
it's going backwards out of a corner which can be an interesting feeling!
Sounds like a Corvair.
| > To date we haven't had any trouble with them and we've shipped a bunch.
|
| Give me 1 second and I can easily bring any of your systems to their
| knees, regardless of which cards you have installed. Everything is
| relative. Were you watching the system load while performing your
| testing? Was the cpu doing anything but routing? Is it required to for
| your application? These and many others are all important questions, and
| tend to have different answers for every application. For a desktop
| workstation with undemanding network application requirements (email, web
| browsing, occasional software updates) RealTek or any other card that
| successfully attach to the network and correctly autonegotiate with your
| hub (shudder) or switch is fine. Even a RealTek. ;^)
Hmm, I thought I had said "benchmark in your environment". We have a closed
box that is sort-of a router and a bridge. So your only inputs is really
network traffic. That is what we tune the box for. So it would be interesting
to see you kill it in 1s. Again our issue is PCI bus. Now that the P4
Serverworks chipset is out we finally have a machine that holds the current
gig with crypto records by a lot (faster then a couple of P4 Xeon machines
we have). With a 32bit/33Mhz we are pegged at the PCI chipset limits.
One of the challenges of testing crypto (IPsec) stuff is having clients
that can keep up.
I'be been told there is a paper in the works for HW crypto performance
based on this and other HW. So results of this should be published.
Doug A.
------------------------------
Date: Mon, 10 Mar 2003 19:39:13 +0100
From: ds...@tiscali.dk
Subject: Insecure PHP installation?
Hi all
I know PHP is not in the base system, but I thought I could ask here anyw=
ay.
I have installed PHP on my FreeBSD 4.7 computer and did a "find / -perm
+0002". I could see that /usr/local/bin/pear is a script and world writab=
le,
isn't that a little dangerous?
br
socketd
ps: Please CC to me as I am not on the list (I think).
------------------------------
Date: Mon, 10 Mar 2003 10:59:52 -0800 (PST)
From: Doug Barton <Do...@FreeBSD.org>
Subject: Re: Insecure PHP installation?
On Mon, 10 Mar 2003 ds...@tiscali.dk wrote:
> Hi all
>
> I know PHP is not in the base system, but I thought I could ask here anyway.
You should have asked this on freebsd-ports@freebsd,org, and cc'ed the PHP
maintainer, FYI.
> I have installed PHP on my FreeBSD 4.7 computer and did a "find / -perm
> +0002". I could see that /usr/local/bin/pear is a script and world writable,
> isn't that a little dangerous?
That's definitely bad, yes. Please use send-pr to file a problem report
about this.
Doug
- --
This .signature sanitized for your protection
------------------------------
Date: Mon, 10 Mar 2003 22:11:32 +0100
From: "Peter J. Blok" <pb...@inter.NL.net>
Subject: patch for vinum
- --Boundary_(ID_gBCpA4aS/zHcXV32pwZ6/w)
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7BIT
Content-disposition: inline
Hi,
Can somebody commit the following patch for vinum. This is already inside
FreeBSD-5.0, but seems to be forgotten in 4.X-STABLE.
It fixes a strange (and unknown) error code when doing vinum detach. The error
variable is not set to 0.
Peter
- --Boundary_(ID_gBCpA4aS/zHcXV32pwZ6/w)
Content-type: text/x-diff; charset=us-ascii; name=vinum.patch
Content-transfer-encoding: 7BIT
Content-disposition: attachment; filename=vinum.patch
*** dev/vinum/vinumioctl.c.orig Sun Feb 3 01:44:19 2002
- --- dev/vinum/vinumioctl.c Wed Jan 8 02:26:11 2003
***************
*** 629,634 ****
- --- 629,635 ----
give_plex_to_volume(msg->otherobject, msg->index); /* and give it to the volume */
update_plex_config(plex->plexno, 0);
save_config();
+ reply->error = 0;
}
}
}
- --Boundary_(ID_gBCpA4aS/zHcXV32pwZ6/w)--
------------------------------
Date: Mon, 10 Mar 2003 15:14:17 -0600
From: D J Hawkey Jr <haw...@visi.com>
Subject: [haw...@visi.com: Patches for SA-03:02 (OpenSSL) and RELENG_4_6_2]
Any sharpies out here that can verify whether OpenSSL under RELENG_4_5
is the same as RELENG_4_6_2?
I have a RELENG_4_5 box that needs the OpenSSL patch, and it appears that
only the FreeBSD CVS version numbers keep the patches from applying cleanly
in just seven of the modules affected.
Checking out some files in the RELENG_4_6_2 CVS tree, it looks to me as
though 4.6.2 was released with the same version of OpenSSL as 4.5 was.
Am I correct? And therefore, the RELENG_4_6_2 patches are appropriate for
RELENG_4_5? After applying said patches, does that make my RELENG_4_5
OpenSSL the same as CURRENT (just thinking ahead...)?
Thanks,
Dave
- --
______________________ ______________________
\__________________ \ D. J. HAWKEY JR. / __________________/
\________________/\ haw...@visi.com /\________________/
http://www.visi.com/~hawkeyd/
------------------------------
Date: Mon, 10 Mar 2003 16:32:13 -0500
From: Andrew J Caines <A.J.C...@halplant.com>
Subject: Re: mount_null evil ?
Marc,
> I?m currently developing a jail-management solution - I use a
> readonly mount_null for central software-management of the jails.
> The manpage was written May 1, 1995 - is using this tool still dangerous
I have used it for read-only mounts since way back and have not have any
problems, including brief periods of high I/O.
I'd have reservations allowing unique data on a read-write mount, however
I just did a few quick and simple tests of reads and writes on a rw null
mount on my 4.8-RC box with no apparent problem.
- -Andrew-
- --
_______________________________________________________________________
| -Andrew J. Caines- Unix Systems Engineer A.J.C...@halplant.com |
| "They that can give up essential liberty to obtain a little temporary |
| safety deserve neither liberty nor safety" - Benjamin Franklin, 1759 |
------------------------------
Date: 10 Mar 2003 16:10:04 -0600
From: Guy Helmer <ghe...@palisadesys.com>
Subject: Re: mount_null evil ?
On Mon, 2003-03-10 at 15:32, Andrew J Caines wrote:
> Marc,
>
> > I?m currently developing a jail-management solution - I use a
> > readonly mount_null for central software-management of the jails.
> > The manpage was written May 1, 1995 - is using this tool still dangerous
>
> I have used it for read-only mounts since way back and have not have any
> problems, including brief periods of high I/O.
>
> I'd have reservations allowing unique data on a read-write mount, however
> I just did a few quick and simple tests of reads and writes on a rw null
> mount on my 4.8-RC box with no apparent problem.
I seemed to be able to crash the kernel regularly under FreeBSD 4.5 when
I used null mounts to share a read-only filesystem between jails. My
application frequently rebuilt the jails by unmounting everything,
wiping out the old jail subdirectories, writing new jail subdirectories,
and remounting the shared read-only fs into each jail subdirectory. I
gave up on null mounts and went back to having a separate copy of the
entire filesystem for each jail.
If null mounts work better now, I'll revisit it...
Guy
- --
Guy Helmer <ghe...@palisadesys.com>
------------------------------
Date: Mon, 10 Mar 2003 14:42:01 -0800
From: Terry Lambert <tlam...@mindspring.com>
Subject: Re: mount_null evil ?
Andrew J Caines wrote:
> > I?m currently developing a jail-management solution - I use a
> > readonly mount_null for central software-management of the jails.
> > The manpage was written May 1, 1995 - is using this tool still dangerous
>
> I have used it for read-only mounts since way back and have not have any
> problems, including brief periods of high I/O.
>
> I'd have reservations allowing unique data on a read-write mount, however
> I just did a few quick and simple tests of reads and writes on a rw null
> mount on my 4.8-RC box with no apparent problem.
R/O is fine.
R/W is a problem because there are explicit coherency problems
when stacking vnodes. That's because each vnode has an associated
"struct vm_object *v_object" which is the backing store object.
When you stack vnodes, because of this, then it's possible, as a
result of mmap'ed I/O, that the top object in the stack will not
have the same data as the backing object in the underlying FS.
The nullfs code trys to avoid this (see null_getvobject()), but
there are certain places where, in a non-unified VM and buffer
cache implementation, previously, where there would be explicit
coherency enforced. For this to work, you effectively need to
put back in the explicit coherency cycles that were removed in
the VM and buffer cache unification. Actually, it was this set
of changes that make LFS no longer work on FreeBSD, as well.
One place where this is obviously problematic is the first call
to VOP_GETVOBJECT() in vinvalbuf() in /sys/kern/vfs_subr.c (see
the "XXX" block comment before the "do" loop).
Basically, to clean this up, you would need to implement both
getpages() and putpages() that used the read/write path, and
did explicit copies between the upper and lower objects.
Technically, you'd think that the VOP_GETVOBJECT() would be
enough to take care of this -- which is almost true, for a
linear mapping of uppr pages to lower pages, but definitely
not true for a translation mapping or an offset mapping or a
scatter mapping, but... there are still explicit references
to vp->v_object in various places (e.g. vlrureclaim(), and
vop_stdcreatevobject(), etc.) that should instead be calling
VOP_GETVOBJECT().
As long as you don't do R/W, though, read-through coherency
is pretty much guaranteed, as long as the underlying FS that
is being mounted over is also R/O (i.e. there are no notifications
up the stack for changes to the underlying FS; thus any cached
data in the upper layer v_object, if referenced by one of those
routines directly, instead of getting the underlying v_object,
could contain stale data).
- -- Terry
------------------------------
Date: Mon, 10 Mar 2003 18:16:00 -0500
From: Keith Pitcher <kpit...@locallink.net>
Subject: redirect everything to socks5
Living in rural slow connection land, I've been playing around with
satellite Internet. The problem is the company only has Win
drivers. (Linux driver is in the works, but no plans to open source it, will be
released as a binary - the bastards)
Anyhow, to get the download speed of the satellite it uses a http proxy and
a socks5 proxy. This works fine for things that allow proxies or socks. But
there are a lot of things that don't support it.
Is there a way to "socksify" everything my freebsd box does, so no
matter what I do, I can just point it to the socks machine and it works?
Would also be handy to have a way to "socksify" the box when it acts as a
network gateway, so I'd only have one really strangely configured machine and
the rest would be normal.
Thanks,
Keith
------------------------------
Date: Mon, 10 Mar 2003 16:27:44 -0800
From: Wes Peters <w...@softweyr.com>
Subject: Re: Insecure PHP installation?
On Monday 10 March 2003 10:59, Doug Barton wrote:
> On Mon, 10 Mar 2003 ds...@tiscali.dk wrote:
> > Hi all
> >
> > I know PHP is not in the base system, but I thought I could ask here
> > anyway.
>
> You should have asked this on freebsd-ports@freebsd,org, and cc'ed the
> PHP maintainer, FYI.
>
> > I have installed PHP on my FreeBSD 4.7 computer and did a "find /
> > -perm +0002". I could see that /usr/local/bin/pear is a script and
> > world writable, isn't that a little dangerous?
>
> That's definitely bad, yes. Please use send-pr to file a problem report
> about this.
I have PHP installed from the port on my system:
- -bash-2.05b$ pkg_info | grep php
mod_php4-4.2.3 PHP4 module for Apache
It does not seem to exhibit this problem:
- -bash-2.05b$ ls -l /usr/local/bin/pear
- -rwxr-xr-x 1 root wheel 5957 Dec 21 18:01 /usr/local/bin/pear
Did you install from the package? If not, why not? If so, is your
package different from mine or has your installation been changed after
the fact?
- --
Where am I, and what am I doing in this handbasket?
Wes Peters w...@softweyr.com
------------------------------
End of freebsd-hackers-digest V5 #741
*************************************
To Unsubscribe: send mail to majo...@FreeBSD.org
with unsubscribe freebsd-hackers-digest in the body of the message