On Fri, 28 Oct 2016 01:21:13 -0600 "Theo de Raadt" wrote:
> > > > Different design, different philosophy, and different goals [1] but the
> > > > same BSD heritage.
> > >
> > > There is no philosophy involved.
> > >
> > > England and the US and Canada are not differences in philosophy.
> > >
>
On Thu, Oct 27, 2016 at 23:16:50 -0600, Theo de Raadt wrote:
> > Different design, different philosophy, and different goals [1] but the
> > same BSD heritage.
>
> There is no philosophy involved.
>
> England and the US and Canada are not differences in philosophy.
>
> They are just different.
On Mon, 18 Apr 2016 16:42:56 +0200 Marko =?ISO-8859-1?Q?Cupa=3F?=
wrote:
> Hi,
>
> in tcsh on FreeBSD, I use the following line in .tcshrc in order to
> start xfce when looging on ttyv3:
>
> if ($tty == ttyv3) then
> startxfce4 --with-ck-launch
> logout
> endif
>
> How can I achieve the s
On Fri, 25 Mar 2016 12:47:01 -0500 Chris Bennett
wrote:
> After I delete packages, especially pkg_delete -X, I get a long list of
> instructions like:
>
>
> -2.1.3 ---
> You should also run rm -rf /etc/cups/*.conf.O /var/log/cups
> You should also run rm -rf /var/cache/cups
> Yo
On Sat, 12 Mar 2016 12:19:59 + freeu...@ruggedinbox.com wrote:
> hi, I use the bioctl encryption on boot volume.
>
> example A:
> fdisk -iy sd0
> echo -n "a a\n64\n\nRAID\np\nw\nq\n\n" |disklabel -E sd0
> bioctl -c C -l /dev/sd0a softraid0
>
> then, OpenBSD detect sd1 and I install the OpenBS
On Tue, 8 Mar 2016 00:20:08 +0100 arrowscr...@mail.com wrote:
> I'm having some problems with disks. Probably because I still don't
> understand enough of how BSD manage them:
>
> 1. I was going to install -current on a USB flash drive. I did the
> install media using install59.fs and booted. I sc
i caught this in a process listing, and did a double take.
$ ps ax|grep control
31337 ?? I 0:00.09 smtpd: control (smtpd)
$ ps auxw|grep control
_smtpd 31337 0.0 0.0 1592 4 ?? I 21Jan160:00.09 smtpd:
control (smtpd)
i thought it was interesting enough to share given the
On Mon, 18 Jan 2016 10:09:14 +0900 Joel Rees wrote:
> Trying to put some scripts together so I can set an update going one
> night, check it in the morning, reboot, and finish the update while
> I'm at work.
>
> So I want to do something like
>
>cd /usr/src && cvs -d$CVSROOT up -Pd | tee /va
i ran into this myself the other day. you already got good advice, so i will
just make one comment.
On Sat, 9 Jan 2016 18:54:22 +0900 Joel Rees wrote:
> Do I need to backup my data, wipe the OS, and re-install from a snapshot
> kernel?
>
it's unlikely you will ever have to nuke the system. upg
On Wed, 30 Dec 2015 22:50:08 -0700 "Jack J. Woehr" wrote:
> Brian McCafferty wrote:
> > Are you referring to the file you need to create for dual booting with the
> > windows ntldr? Check the FAQ:
> > http://www.openbsd.org/faq/obsd-faq.txt
>
> Just out of curiousity, I dd'ed that sector and i
On Tue, 29 Dec 2015 20:43:49 -0500 Johan Huldtgren
wrote:
> > Also, if one would like to use occ utility from CLI, considering that the
> > whole owncloud runs chrooted under /var/www/ and that occ therefore looks
> > for /owncloud/apps folder (which is obviously /var/www/owncloud/apps) and
> > t
On Mon, 28 Dec 2015 19:53:47 -0500 Paul Pereira wrote:
> Has anyone had luck running tcl within a chroot? I have the required
> libraries reported by ldd in place, but the interpreter cannot find
> them.
>
> # chroot /var/www /usr/local/bin/tclsh8.5
> /usr/local/bin/tclsh8.5: can't load library '
On Sun, 27 Dec 2015 11:22:56 + (UTC) Juuso Lapinlampi
wrote:
> I'm having a bit of hard time installing Mailman from ports to an
> alternative `DESTDIR` chroot on OpenBSD 5.8 -stable, GENERIC.MP amd64. I
> have a working Mailman setup in a non-chroot environment and I'm trying
> to move it to
On Fri, 25 Dec 2015 16:09:27 -0600 Luke Small wrote:
> I suppose folks could opt for the more stable yet higher latency
> official mirrors even if they aren't local to canada and they would
> never be surprised. It may not be too much trouble for me to implement
> a mere stdout statement in the pe
On Mon, 21 Dec 2015 20:45:15 + "AHLSENGIRARD, EDWARD F CTR USAF AFMC
AFNWC/NDBD" wrote:
> By any chance is there a handy list of the utilities compiled into bsd.rd
> (release or recent snap)?
>
>
> --
> Edward Ahlsen-Girard
>
it may not be exhaustive but the kernel is compiled from /usr/s
On Mon, 30 Nov 2015 23:30:49 +0100 Lampshade wrote:
> Thanks for answers.
> @dan mclaughlin. But how to prevent attacker going out of chroot?
as far as i am aware only root can break out of a chroot. as long as nothing
runs as root, and there are no suid root this shouldn't be a pro
On Sun, 29 Nov 2015 07:08:57 -0700 "Anthony J. Bentley"
wrote:
> Lampshade writes:
> > Is it possible, in theory, to use pledge(2) to make something similar to
> > fire
> > jail?
> > https://packages.debian.org/sid/main/firejail
> > Firejail is a Gnu/Linux's program which executes Firefox as it'
On Wed, 28 Oct 2015 07:45:05 + (UTC) Mik J wrote:
> Hello everyone,
> I asked this question on another list a long time ago.
> * I would like to mount an iso in order to add some files# ls -l /mnt
> drwxr-xr-x 2 root wheel 512 May 3 15:31 iso# vnconfig svnd0 Image.iso
> # mount_cd9660
On Fri, 25 Sep 2015 02:09:40 +0900 Joel Rees wrote:
> At any rate, I have convinced myself that doas follows the manual page
> in preserving the calling user's key environment variables, including
> HOME and USER.
>
> I had not grasped that this was considered desired behavior, so did
> not initi
On Tue, 22 Sep 2015 17:41:57 +0900 Joel Rees wrote:
> I have this rule in doas.conf:
>
> permit nopass user1 as user2
>
> As user1, I try this at the command line:
>
> doas -u user2 whoami
>
> and it tells me I am user2, as I expect. And
>
>doas -u user2 ls
>
> tells me I don't h
On Fri, 14 Aug 2015 16:45:52 + Frank White wrote:
> Hi, anyone has some advices to make more secure a browser like firefox ?
> chroot + systrace ?
>
>
>
> Thank you.
>
apparently it's been done. David Coppa reported that he succeeded chrooting
firefox here: https://marc.info/?l=openbsd-t
On Mon, 3 Aug 2015 21:17:12 +0900 Joel Rees wrote:
> I try a cvs update on xenocara and it just sits there for over an hour
> and then tells me I have a broken pipe.
>
> cvs log seems to yield the same behavior, which I might interpret as
> re-assuring, or I might wonder whether the same network
On Wed, 15 Jul 2015 22:23:43 +0200 Erling Westenvik
wrote:
> Hi,
>
> I've tried to do my homework (man ddrescue, info ddrescue, google) but
> think I might need some OpenBSD spesific advice before embarking on my
> first attempt ever to salvage data from a dying disk.
>
> Issue:
>
> I don't ha
On Fri, 3 Jul 2015 13:37:45 +0200 (CEST) n.reu...@hxgn.net wrote:
> > dan mclaughlin hat am 3. Juli 2015 um 13:18
> > geschrieben:
> >
> >
> > On Fri, 3 Jul 2015 12:34:17 +0200 (CEST) n.reu...@hxgn.net wrote:
> > > > Nigel J Taylor hat am
On Fri, 3 Jul 2015 12:34:17 +0200 (CEST) n.reu...@hxgn.net wrote:
> > Nigel J Taylor hat am 3. Juli 2015 um 11:39
> > geschrieben:
> >
> >
> > On 07/03/15 09:33, n.reu...@hxgn.net wrote:
> > > Dear misc,
> > >
> > > i have a script running every night on my openbsd 5.7 -stable box to
> > > fetc
On Mon, 8 Jun 2015 10:28:53 -0400 Jiri B wrote:
> On Mon, Jun 08, 2015 at 01:46:17AM -0400, dan mclaughlin wrote:
> > i figure this should be useful to some.
>
> ... it seems somebody doesn't know jailkit which is
> in ports :)
i try to use base whenever possible. the
On Mon, 1 Jun 2015 06:05:28 -0400 Josh Grosse wrote:
> On Mon, Jun 01, 2015 at 04:45:01AM -0400, dan mclaughlin wrote:
> > On Sun, 31 May 2015 22:20:17 -0500 Okupandolared wrote:
> > > does not exist,
> > >
> > > so I can copy /usr/bin/whoami to /var/www/u
On Sun, 31 May 2015 22:20:17 -0500 Okupandolared wrote:
> does not exist,
>
> so I can copy /usr/bin/whoami to /var/www/usr/bin/whoami?
>
> that try "ls" and "/bin/ls" and "/var/www/bin/ls"
>
> and it does not work,
> "/bin/ls" exist
> "/var/www/bin/ls" exist
>
> thanks
>
> On 05/31/15 19:43,
On Mon, 18 May 2015 14:21:39 +0100 Pedro Tender
wrote:
> I'm not having problems with ksh nor zsh, going in and out of X (xfce).
> âTTY's working fine.â
>
>
> On Mon, May 18, 2015 at 12:56 PM, dan mclaughlin
> wrote:
>
> > On Mon, 18 May 2015 1
On Mon, 18 May 2015 11:24:13 +0100 Pedro Tender
wrote:
> I've updated another machine today to latest snapshot and it is fixed.
> Have you tried the 18th May (ftp3.eu) snapshot ?
>
>
>
> On Sun, May 17, 2015 at 10:51 PM, dan mclaughlin
> wrote:
>
> >
On Sun, 17 May 2015 14:29:07 - "Maurits Fennis" wrote:
> > just not the TTY's
>
> same here.
>
> --
> Maurits Fennis
>
> () ascii ribbon campaign
> /\ www.asciiribbon.org
>
here too. i just submitted a bug report "problems with console output".
On Sun, 17 May 2015 04:32:38 +0200 Fredrik Alm wrote:
> > On 17 May 2015, at 02:19, dan mclaughlin wrote:
> >
> > On Sun, 17 May 2015 00:20:52 +0200 Fredrik Alm wrote:
> >> Iâve seen a few âwhole disk encryptionâ
> >> tutorials which puts the swap o
On Sun, 17 May 2015 00:20:52 +0200 Fredrik Alm wrote:
> Iâve seen a few âwhole disk encryptionâ
> tutorials which puts the swap outside of the partition used for the softraid
> encryption, since openbsd already encrypts the swap partition anyway. I
> assume that by putting the swap inside th
On Fri, 08 May 2015 16:26:09 -0300 Giancarlo Razzolini
wrote:
> On 08-05-2015 11:38, Nick Holland wrote:
> > In that case, you may wish to avoid reading the FAQ, the man pages,
> > certainly not the commit message log.
>
> Come on. Those are hilarious!
>
> > You probably don't want to talk to
On Thu, 07 May 2015 08:13:55 -0400 Nick Holland
wrote:
> On 05/07/15 07:51, Paolo Aglialoro wrote:
> > If it's correct and not against man pages it can be helpful for beginners
> > to have a ready recipe, just like FAQs.
>
> IF it is correct, maybe. But OpenBSD's philosophy has never been "more
On Tue, 5 May 2015 09:49:13 +0530 Hrishikesh Muruk wrote:
> Hi
>
> I dont want to purchase 5.7 CDs and pay international shipping (also done
> have a CD drive). I would like to donate that amount instead.
>
> From the OpenBSD Project donations page (
> http://www.openbsd.org/donations.html) I ga
On Sun, 19 Apr 2015 21:07:31 -0400 "System Administrator"
wrote:
> On 20 Apr 2015 at 0:11, Ton Muller wrote:
>
> > i have last week setup my old asus laptop, model A6000 ,1GB ram, 80GB HDD.
> >
> > SK0 is the internal interface.
> > RE0 is the WAN interface
> >
> > i kept my pf.conf as simple
On Wed, 15 Apr 2015 11:35:21 +0300 Ville Valkonen wrote:
> Hello,
>
> On 13 April 2015 at 15:10, dan mclaughlin wrote:
> > On Mon, 13 Apr 2015 16:49:02 +0530 Hrishikesh Murukkathampoondi
> > wrote:
> >> Hello
> >>
> >> I am running OpenS
On Mon, 13 Apr 2015 16:49:02 +0530 Hrishikesh Murukkathampoondi
wrote:
> Hello
>
> I am running OpenSD 5.6 on a x86 netbook. I am trying to setup X11 forwarding
> in ssh.
>
> In sshd_config I have added
> X11Forwarding yes
>
> In ssh_config I have added
> ForwardAgent yes
> ForwardX11 yes
>
On Sat, 11 Apr 2015 11:59:14 +0200 Johan Mellberg
wrote:
> dan mclaughlin skrev den 2015-04-11 10:55:
> > On Sat, 11 Apr 2015 10:27:19 +0200 Johan Mellberg
> > wrote:
> >> Hi,
> >>
> >> I want to start following -stable so I have read
> >>
On Sat, 11 Apr 2015 10:27:19 +0200 Johan Mellberg
wrote:
> Hi,
>
> I want to start following -stable so I have read
> http://www.openbsd.org/anoncvs.html and
> http://www.openbsd.org/faq/faq5.html#BldGetSrc as well as looking through
> the mailing list archives
> â for cvs from preloaded sourc
On Fri, 10 Apr 2015 20:48:39 -0400 John Merriam wrote:
> On 4/10/2015 8:03 PM, Henrique Lengler wrote:
> > On Fri, Apr 10, 2015 at 07:51:01PM -0400, dan mclaughlin wrote:
> >> you should see an '-ls' option at the end as above. if not, that is your
> >> pro
sorry to Henrique for the duplicate.
On Fri, 10 Apr 2015 21:03:26 -0300 Henrique Lengler
wrote:
> On Fri, Apr 10, 2015 at 07:51:01PM -0400, dan mclaughlin wrote:
> > On Fri, 10 Apr 2015 18:49:02 -0300 Henrique Lengler
> > wrote:
> > > On Fri, Apr 10, 2015 at 12:22:45
On Fri, 10 Apr 2015 18:49:02 -0300 Henrique Lengler
wrote:
> On Fri, Apr 10, 2015 at 12:22:45AM -0400, dan mclaughlin wrote:
> > On Thu, 9 Apr 2015 16:58:29 -0300 Henrique Lengler
> > wrote:
> > > On Sun, Apr 05, 2015 at 09:22:03PM -0700, Philip Guenther wrote:
> >
On Fri, 10 Apr 2015 12:00:06 -0500 Chris Bennett
wrote:
> I have been copying home folders from several disks that should be near
> failing due to age to an external USB disk.
>
> I have been using:
> cd /SRC; tar cf - . | (cd /DST; tar xpf - )
>
> Works fine, except I overlooked mounting /DST
On Sat, 4 Apr 2015 09:08:35 +0900 Joel Rees wrote:
> On Apr 4, 2015 8:33 AM, "Oriol Demaria" wrote:
> >
> > My problem got worse. So I tried finally to install the 2nd of April
> snapshot usb image install57.iso. It actually has upgraded my kernel, and
> now it doesn't completes boot. I get:
> >
this may not help you right now, but it is recommended that you save the
last working kernel as /obsd so that you can boot from it if the new one
doesn't work. i also keep the last release/snapshot in the root directory
so that if something goes wrong i can restore it.
On Sat, 04 Apr 2015 00:32:18
On Thu, 02 Apr 2015 23:11:57 -0400 Eric Furman wrote:
> Thanks for the info and I expected someone to suggest this,
> but I didn't really want to go all crazy. :)
> I wanted to know if there was a secure one so I wouldn't have
> to jump through all these kind of hoops.
> Thanks anyway.
>
doing t
On Thu, 2 Apr 2015 11:47:04 -0400 Jiri B wrote:
> On Thu, Apr 02, 2015 at 12:33:25AM -0400, Eric Furman wrote:
> > I sometimes have to deal with PDF files (ugh) and all
> > I need is the ability to view and print them, nothing
> > fancy. With security in mind I would like to get opinions
> > on th
On Thu, 2 Apr 2015 11:50:12 +0200 Marc Espie wrote:
> On Wed, Apr 01, 2015 at 11:48:16PM -0400, dan mclaughlin wrote:
> > if you want the version that the port build will produce do:
> >
> > $ (cd /usr/ports/lang/gcc/4.8/ && make _print-packagename)
> > gcc
On Thu, 2 Apr 2015 05:16:25 +0900 Joel Rees wrote:
> Should there be a difference if I haven't botched the source tree for
> /usr/ports at some point?
>
> firefox --version
>
> tells me
>
> Mozilla Firefox 31.0
>
> (It also gives a warning about size mismatch in a couple of c++ librari
On Mon, 23 Mar 2015 19:53:45 +0900 Joel Rees wrote:
> But this probably is not my real question.
but to answer it still, A LOT. (i vaguely remember it being over a gig).
>
> I saw the notice about libssl and decided it was time to update things.
>
> Updated kernel and system userland (5.6 stab
On Sat, 21 Mar 2015 14:14:22 -0700 luke...@onemodel.org wrote:
> On 03/16/15 19:38, Jean-Philippe Ouellet wrote:
> > On Sun, Mar 15, 2015 at 07:12:23PM -0400, Ted Unangst wrote:
> >> luke...@onemodel.org wrote:
> >>> The goal: I'd like to run multiple simultaneous X sessions and switch
> >>> amon
On Thu, 19 Mar 2015 08:52:09 -0600 Jorge Gabriel Lopez Paramount
wrote:
> Quoting dan mclaughlin :
>
> > there seems to be some interest in this, so i thought i would post my notes,
> > made more presentable.
> >
> > here i detail ways to use ssh to restrict ac
On Thu, 19 Mar 2015 20:08:34 +0800 "Jeff St. George" wrote:
> You said at beginning of your comments "now i don't use
> firefox (or any 'modern browser)"
>may I ask which browser you like to use? And for what reasons?
>
> thanks in advance
>
like in the examples, i use w3m. which is one of
here are the scripts i wrote to make this easier. these really were made
for my own use, but i hope others may find them useful. i would be
interested to know if anyone else actually does find them useful. would
also be glad to know of any errors/problems/things that can go wrong i
didn't think of.
there seems to be some interest in this, so i thought i would post my notes,
made more presentable.
here i detail ways to use ssh to restrict access to the filesystem as well as
X, mitigating the 'security nightmare' that is X11, not to mention preventing
possible leaking of local data. this uses
On Sat, 14 Mar 2015 02:27:56 + Raf Czlonka wrote:
> On Fri, Mar 13, 2015 at 09:02:23PM GMT, Joshua Smith wrote:
>
> > Hello misc@,
>
> Hi Joshua,
>
> > Looking around the man pages for 5.6 and -current it doesn't seem like
> > it, but is it possible to perform an autoinstall/autoupgrade wit
i have the same error, except my system hangs. i just reported this to bugs@,
you may want to keep an eye there:
https://marc.info/?l=openbsd-bugs&m=142590300129925&w=2
On Fri, 6 Mar 2015 14:21:03 -0500 (EST) Charlie wrote:
> Hi,
>
> I run OpenBSD 5.6-stable on a Lenovo x201 (patched to the lat
59 matches
Mail list logo
