Re: News From HiFn

[Eric Pancer]

On Fri, 2006-06-30 at 20:09:50 -0600, Theo de Raadt wrote...

 95% of the planet does nothing to complain when there is a serious
 problem with a company, and then when  5% of the people complain
 enough to force them fix it, you wish to congratulate the ... company?
 
 How American.
 

Please stop making snide comments and generalizing, it makes you look like
an idiot. 

Re: OT: large, wireframe Puffy stickers

[Lasse Bach]

Hi Steve.
Check out: https://kd85.com/notforsale.html

- Lasse Bach


Steve B wrote:

While browsing through some pictures of one of the OpenBSD events (can't
find the link again right this moment) there were a couple of attendees who
had large wireframe Puffy stickers on the lid of their laptops. There was
also a very large one on the top of a 1U chassis. These were larger, much
larger, than what comes with an OpenBSD CD. Google could not tell me where
to locate one so I am turning here to ask for a resource.

Steve

Firewall slowdown (DLINK DGE-530T card maxing out at 17.3Mb/sec) P4 2.4 512M ram 424M free

[Ben]

Really odd problem here:

I've set up a fairly simple firewall utilizing dual DGE-530T gigabit cards.
Isolating a windows rack from the rest of campus.  Note that testing the
speed from a 100Mb linux host in the same office (plugged into the same
router as the firewall but of course outside the firewall's control) shows a
better then expected speed (94.2Mb/sec) connecting to the same test server
(100Mb) across campus.   

First the Iperf (again note this is connecting to a 100Mb host) results
with both the linux host and the openbsd firewall running 2.0.2 (final note:
this speed is the same when the openbsd system is connected to a 1Gb host as
well)

(linux host running iperf -s)

Server listening on TCP port 5001
TCP window size: 85.3 KByte (default)

[  4] local x port 5001 connected with y port 36002 [  4]  0.0-10.1 sec
20.8 MBytes  17.3 Mbits/sec

(openbsd host running iperf -s)
Server listening on TCP port 5001
TCP window size: 64.0 KByte (default)

[  6] local y port 5001 connected with x port 34081 [  6]  0.0-10.1 sec
20.8 MBytes  17.3 Mbits/sec



Dmesg (yes, there's only 512M of ram,  will upgrade it to 1G if needed,  but
considering a top shows  Free: 424M  I don't think that's the problem) :

OpenBSD 3.9 (GENERIC) #617: Thu Mar  2 02:26:48 MST 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Pentium(R) 4 CPU 2.40GHz (GenuineIntel 686-class) 2.40 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLU
SH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF
real mem  = 535871488 (523312K)
avail mem = 481947648 (470652K)
using 4278 buffers containing 26898432 bytes (26268K) of memory mainbus0
(root) bios0 at mainbus0: AT/286+(00) BIOS, date 04/28/03, BIOS32 rev. 0 @
0xffe90 apm0 at bios0: Power Management spec V1.2
apm0: AC on, battery charge unknown
apm0: flags 30102 dobusy 0 doidle 1
pcibios0 at bios0: rev 2.1 @ 0xf/0x1
pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfeae0/176 (9 entries)
pcibios0: PCI Interrupt Router at 000:31:0 (Intel 82801BA LPC rev 0x00)
pcibios0: PCI bus #2 is the last bus
bios0: ROM list: 0xc/0xc000 0xe/0x1800 cpu0 at mainbus0 pci0 at
mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function
0 Intel 82845G/GL rev 0x01 ppb0 at pci0 dev 1 function 0 Intel
82845G/GL/GV/GE/PE AGP rev 0x01
pci1 at ppb0 bus 1
vga1 at pci1 dev 0 function 0 ATI Radeon 7500 QW rev 0x00 wsdisplay0 at
vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation) uhci0 at pci0 dev 29
function 0 Intel 82801DB USB rev 0x01: irq 11 usb0 at uhci0: USB revision
1.0 uhub0 at usb0
uhub0: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub0: 2 ports with 2 removable, self powered
uhci1 at pci0 dev 29 function 1 Intel 82801DB USB rev 0x01: irq 10
usb1 at uhci1: USB revision 1.0
uhub1 at usb1
uhub1: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub1: 2 ports with 2 removable, self powered
uhci2 at pci0 dev 29 function 2 Intel 82801DB USB rev 0x01: irq 9
usb2 at uhci2: USB revision 1.0
uhub2 at usb2
uhub2: Intel UHCI root hub, rev 1.00/1.00, addr 1
uhub2: 2 ports with 2 removable, self powered ehci0 at pci0 dev 29 function
7 Intel 82801DB USB rev 0x01: irq 3
usb3 at ehci0: USB revision 2.0
uhub3 at usb3
uhub3: Intel EHCI root hub, rev 2.00/1.00, addr 1
uhub3: 6 ports with 6 removable, self powered
ppb1 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0x81
pci2 at ppb1 bus 2
skc0 at pci2 dev 9 function 0 D-Link Systems DGE-530T rev 0x11, Marvell
Yukon (0x1): irq 9 sk0 at skc0 port A, address 00:0d:88:70:c1:f7 eephy0 at
sk0 phy 0: Marvell 88E1011 Gigabit PHY, rev. 3
skc1 at pci2 dev 10 function 0 D-Link Systems DGE-530T rev 0x11, Marvell
Yukon (0x1): irq 10
sk1 at skc1 port A, address 00:0f:3d:f4:8d:ce
eephy1 at sk1 phy 0: Marvell 88E1011 Gigabit PHY, rev. 3 ichpcib0 at pci0
dev 31 function 0 Intel 82801DB LPC rev 0x01 pciide0 at pci0 dev 31
function 1 Intel 82801DB IDE rev 0x01: DMA, channel 0 configured to
compatibility, channel 1 configured to compatibility wd0 at pciide0 channel
0 drive 0: WDC WD400BB-75JHA0
wd0: 16-sector PIO, LBA, 38146MB, 78125000 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5 atapiscsi0 at pciide0
channel 1 drive 0 scsibus0 at atapiscsi0: 2 targets cd0 at scsibus0 targ 0
lun 0: Lite-On, LTN486S 48x Max, YDS6 SCSI0 5/cdrom removable
atapiscsi1 at pciide0 channel 1 drive 1
scsibus1 at atapiscsi1: 2 targets
cd1 at scsibus1 targ 0 lun 0: HL-DT-ST, CD-RW GCE-8481B, C102 SCSI0
5/cdrom removable
cd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 2
cd1(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 2 ichiic0 at pci0 dev 31
function 3 Intel 82801DB SMBus rev 0x01: irq 11 iic0 at ichiic0 auich0 at
pci0 dev 31 function 5 Intel 82801DB AC97 rev 0x01: irq 11, ICH4 AC97
ac97: codec id 0x41445374 (Analog 

Re: Partitions

[Lars Hansson]

On Friday 30 June 2006 20:45, Craig Skinner wrote:
 I always symlink /var/tmp to my /tmp partition and mount /tmp with:
 nodev,noexec,nosuid,noatime,async - as it gets wiped at boot anyway.

/var/tmp is not wiped at boot.

---
Lars Hansson

Re: News From HiFn

[Joachim Schipper]

On Fri, Jun 30, 2006 at 02:27:53PM -0400, Nick Guenther wrote:
 On 6/30/06, Breen Ouellette [EMAIL PROTECTED] wrote:
J.C. Roberts wrote:
 This should take care of any of the long standing issues OpenBSD has had
 with the HiFn's procedures for releasing documentation.
 Someone who participates in editing vendorwatch.org might want to
 update the Hifn status page.
 
 Done, but I've left their ranking as unfriendly on the front page
 because they've given no apology and they still seem to be shady.
 
 If someone could add the links to the slashdot/newsforge/whereverelse
 stories that would be helpful though.

I see it is now 'somewhat friendly'. Since I can't resist adding to this
largely useless debate...

Theo is, of course, right that a company that does the right thing for
its consumers isn't doing anything special, and yes, Hifn has been
trouble enough.

On the other hand, they have changed and done pretty much what everyone
here wanted - granted, they could have done so sooner, but they did. In
fact, they might be rated positively `Friendly' right now.

Of course, this does not change the fact that they have been trouble,
but that's not what the VendorWatch status means. After all, VendorWatch
isn't in the business of tracking whether or not companies use child
labour and are wont to respond to labour unions with gross violence,
either.
However, it is a good thing to preserve this piece of history on the
Hifn page; but that does not mean that the status cannot be considered
`Friendly' right now.

Plus, rewarding people for good behaviour tends to encourage such
behaviour. This is even more true in the case of corporations, which
tend to be even more focused on rewards than people.

Joachim

Re: OT: large, wireframe Puffy stickers

[Wim Vandeputte]

Hey Steve,

https://kd85.com/notforsale.html

 While browsing through some pictures of one of the OpenBSD events (can't
 find the link again right this moment) there were a couple of attendees who
 had large wireframe Puffy stickers on the lid of their laptops. There was
 also a very large one on the top of a 1U chassis. These were larger, much
 larger, than what comes with an OpenBSD CD. Google could not tell me where
 to locate one so I am turning here to ask for a resource.

They are transparant stickers for laptops, in black for light and grey
surfaces and white for black laptops:

http://eurobsd.org/2005-WhatTheHack/reports/wvdputte-20050730/tn/DSC03983.JPG.html

Any other surface will work too (like a car)

They are now cut out in the shape of the puffy:

http://images.kd85.com/notforsale/blowfishsticker.pdf

The one on top of the rackmount might have been the one we have lasercut:

http://soekris.kd85.com/images/tn/DSC04890.JPG.html

but that is just a promo thing for expos, if you stack the rackmounted machines,
you don't see much of the top cover ;-)

The cases are made by Kerberos in Slovenia, more info can be found on:

http://www.kerberos.si/ENG/Soekris19.htm

Wim.

-- 
   =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=   
https://kd85.com/notforsale.html
 --

BSD.MP question

[Gabriel George POPA]

   Hello,

  I have an Intel P4 processor (with HyperThreading) and I am using a 
bsd.mp kernel. Should I use the bare bsd kernel?
I've noticed that a lot of desktop applications are crashing (Mozilla, 
for example). Could this be the cause (MP instead of bare?)?
Servers don't crash. They act normally. But Gtk applications really 
generate a lot of problems. I used ports compiled by me (you know,
no pkg_add, but make install in the ports collection tree). But I 
replaced all libraries with versions offered by ftp sites. I'm using
standard configuration for OpenBSD 3.8. What could be the cause? Why so 
many desktop applications (in KDE, GNOME, Gtk apps etc.)

crash?

   
Yours in BSDness,
 
Gabriel George POPA

Re: BSD.MP question

[Adam PAPAI]

Gabriel George POPA wrote:

   Hello,

  I have an Intel P4 processor (with HyperThreading) and I am using a 
bsd.mp kernel. Should I use the bare bsd kernel?
I've noticed that a lot of desktop applications are crashing (Mozilla, 
for example). Could this be the cause (MP instead of bare?)?
Servers don't crash. They act normally. But Gtk applications really 
generate a lot of problems. I used ports compiled by me (you know,
no pkg_add, but make install in the ports collection tree). But I 
replaced all libraries with versions offered by ftp sites. I'm using
standard configuration for OpenBSD 3.8. What could be the cause? Why so 
many desktop applications (in KDE, GNOME, Gtk apps etc.)

crash?


Just switch HT off and use the bsd instead of the bsd.mp.

--
Adam PAPAI
D i g i t a l Influence
http://www.digitalinfluence.hu
E-mail: [EMAIL PROTECTED]
Phone: +36 30 33-55-735 (Hungary)
Phone: +49 176-67264167 (Germany)

USB modem

[Alexey Vatchenko]

Hi!

I need inexpensive USB modem for Dial-Up (not ADSL, not GPRS).
Any advices?

-- 
Alexey V. Vatchenko
http://psytech.h10.ru
JID: [EMAIL PROTECTED]
ICQ: 162799204

Re: News From HiFn

[Clint Pachl]

Breen Ouellette wrote:

Theo de Raadt wrote:

I will ask this honestly:

Why should we bleed our little hearts over a company who acted like
assholes towards us for years, and only changed their policy due to
public pressure?


Don't; just drop it and act like a man. No, Theo needs an apology 
because his feelings are hurt. Holy shit, you sound like my sister and 
her bitch friends.



To make ourselves feel better?  I think it is pointless.  They still
did not apologize.


The comments made by Theo over the years have been very childish and 
ignorant. I can't believe anybody would give him anything. He's just 
like the prissy little baby you see who crys, bitches, and moans until 
her mommy gives her her way. Then, she still acts like she deserves 
more. That's not an opinion, that's fact. Just read any of his posts 
where issues get a little heated.


First, you have to look at everyone's motive. OBSD wants everything 
free, secure, and distributable, thats policy. Companies want closed 
source and marketability, that's their policy. OBSD is not in business, 
companies are, and for money as matter of fact. Companies see their 
software/firmware as an asset. Exposing such assets could jeopardize 
their market position and also expose their hardware assets. This point 
is arguable, but that's what these companies believe.


So think about it this way, OBSD prides itself on being secure, that's 
how it leads in its market. What would make the OS loose it's market 
so to speak? Well, including blobs that make the OS vulnerable for one. 
That is something Theo is not going to budge on. That's his policy. So 
when Theo starts crying when companies don't open source, that is very 
hypocritical behavior.


Picture this; you are teaching a dog to do a trick, roll-over. You tell 
him to roll-over, but he just lays down, so you kick him and tell him 
that he's unfriendly and don't give him a treat. What do you think he 
is going to do the next time you tell him to roll-over? Jesus christ, he 
is half way there, encourage him, give him a motive to follow through. 
Additionally, how do you think the rest of the pack watching you kick 
their own are going to act towards you?


I have to say, people definitely get back what they give. For instance, 
I don't think I have ever heard a public outcry from the open source 
community stating we need money other than the recent display from the 
OBSD community. I have never heard the Jolitzs', Joy, Linus, etc. ever 
say, we gave code away, but nobody paid us. Nobody else has money 
problems except Theo, maybe it's the attitude?


I agree with Theo, and yet I agree with others who subscribe to the 
'reward for good behaviour' line of thinking. I think the issue is one 
of perspective, and the scale for rating companies over at 
vendorwatch.org is too simple.


Obviously for the developers it is frustrating that they have to push 
and push and push for years with no results, only to blow up and cause a 
community outcry which finally gets the vendor to open up. 


Why push and push? Why not support well the vendors that do share OSS 
philosophies? Proudly support them and make it well known that OBSD runs 
rock solid with these supported hardwares. It's not like OBSD supports a 
majority of hardware anyway. I am perfectly happy being selective in my 
hardware purchases in order to obtain supported hardware.


If Intel is not cooperating, and AMD is (according to vendor watch they 
are friendly), then loudly support AMD. AMD will appreciate it and may 
see it as an edge against their competitors. This is motive for them to 
loudly support you back, in the media, fiscally, etc. One thing about 
human behavior and companies in general is everyone wants to jump on the 
bandwagon. Once you dig in and build some serious alliances, others will 
take notice and want to join in. One must lead by example.


In the 
meantime, Theo has been painted (again) as abrasive, whiny, 
thick-headed, and who knows what else by the larger Open Source 
community, thanks in large part to outlets like Slashdot which present a 
snapshot which completely fails to report the scope of this ongoing 
problem. And now that the docs are open again, there will be pressure on 
the OpenBSD team to fix the errors in the Hifn code - for a product 
which has been a source of frustration for quite a while. When one 
thinks about it one should be able to sympathize with the developers a 
little more than the companies which jerk them around.


People only get what they have given.

For the users who jumped on the bandwagon less than four weeks ago it 
seems like a great victory. For the developers it's not so easy to set 
aside the hassle they've gone through and pound on that code. A primary 
motivation for the developers is, after all, to have fun working on code.


And still, if companies that do respond favourably after a public outcry 
continue to get badmouthed after the fact, there won't be much incentive 
for 

Re: News From HiFn

[vladas]

On 01/07/06, Clint Pachl [EMAIL PROTECTED] wrote:


I have to say, people definitely get back what they give. For instance,
I don't think I have ever heard a public outcry from the open source
community stating we need money other than the recent display from the
OBSD community. I have never heard the Jolitzs', Joy, Linus, etc. ever
say, we gave code away, but nobody paid us. Nobody else has money
problems except Theo, maybe it's the attitude?


i do not know about Jolitzs, but in case of Linus, you, being so very
discrete, forgot to mention the license differences here as these are very
important from the point of view of the legal entities using the code.

please be discrete and informative completely if you are.


sorry for the noise and please do not take it personal.

Re: News From HiFn

[Peter Philipp]

On Sat, Jul 01, 2006 at 04:00:03AM -0700, Clint Pachl wrote:
 Don't; just drop it and act like a man. No, Theo needs an apology 
 because his feelings are hurt. Holy shit, you sound like my sister and 
 her bitch friends.

What exactly do men act like?  It seems you don't know, you only report 
what your sister acts like.


 The comments made by Theo over the years have been very childish and 
 ignorant. I can't believe anybody would give him anything. He's just 
 like the prissy little baby you see who crys, bitches, and moans until 
 her mommy gives her her way. Then, she still acts like she deserves 
 more. That's not an opinion, that's fact. Just read any of his posts 
 where issues get a little heated.

I heard he bitches because he's right most of the time and people realise
this.  So why are you bitching?

Happy Canada day; Bon fete Canada!

-peter

Here my ticker tape .signature  My name is Peter Philipp  lynx -dump 
http://en.wikipedia.org/w/index.php?title=Pufferfisholdid=20768394; | sed -n 
131,136p  So long and thanks for all the fish!!!

Re: News From HiFn

[Lars Hansson]

 Don't; just drop it and act like a man. No, Theo needs an apology
 because his feelings are hurt. Holy shit, you sound like my sister and
 her bitch friends.

Good thing you have better things to do in your life than to write long 
tiresome letters on Theo's attitude. Oh wait...

---
Lars Hansson

Re: News From HiFn

[Chris Zakelj]

Clint Pachl wrote:
 So when Theo starts crying when companies don't open source, that is
 very hypocritical behavior.
This statement right here proves you don't know what the hell you're
talking about, and makes the rest of your long-winded rant irrelevant. 
Theo did not, and never has, asked for source.  Now why don't you just
go back to whatever hole you lurk from and leave the rest of us alone?

Re: News From HiFn

[Travers Buda]

On Thu, 29 Jun 2006 15:45:55 -0700
J.C. Roberts [EMAIL PROTECTED] wrote:

 Howdy misc@
 
 Though I stayed out of the last public fiasco regarding HiFn here on
 the misc@ list, I privately contacted the people I know at the
 company. I didn't reply just to Hank Cohen who posted here on misc@
 but I also included the VP of engineering (Russ Dietz), the CEO
 (Chris Kebner) and the VP of marketing (Tom Moore).
 
 I just got a call this afternoon from Tom Moore to let me know they've
 set up an anon FTP site (no registration) with their documentation:
 
snip
 
 Kind Regards,
 JCR

JCR, how did you procure this ftp site for us? Are you just that good
friends with the people ot hifn, or perhaps you employed some
suggestion we didn't think of? 

We complained and made a public fiasco, did that have much of anything
to do with getting the free docs? Or was it all you?

Travers

pkg_add: Updates and dependency cleaning

[Tom Doherty]

Hello,
Please could someone familiar with pkg_add(1) confirm whether the 
behavior I'm experiencing is normal?
My mail server has many packages installed that I like to keep up to 
date using pkg_add -uiv
However, pkg_add seems to get confused with regard to the versions of 
the packages.

For instance,

[EMAIL PROTECTED] ~ $: pkg_add -uiv
Error from http://openbsd.blueyonder.co.uk/pub/OpenBSD/3.9/packages/i386/:
Successfully retrieved file.
Candidates for updating clamav-0.88.2 - clamav-0.88 clamav-0.88.2
Ambiguous: clamav-0.88.2 could be clamav-0.88 clamav-0.88.2
Choose one package
0: None
1: clamav-0.88
2: clamav-0.88.2
Your choice: 2
Candidates for updating curl-7.15.3 - curl-7.15.1 curl-7.15.3
Ambiguous: curl-7.15.3 could be curl-7.15.1 curl-7.15.3

.

Is this expected behavior?
Also, previously on the list [A little script to remove packages don't 
needed] a script was posted to remove dependencies that are no longer 
required but was contested as buggy. What is the recommended way of 
doing this?


Thanks for your time,

Tom

Re: Partitions

[Stefan Olsson]

From: Lars Hansson [EMAIL PROTECTED]

On Friday 30 June 2006 20:45, Craig Skinner wrote:

I always symlink /var/tmp to my /tmp partition and mount /tmp with:
nodev,noexec,nosuid,noatime,async - as it gets wiped at boot anyway.


/var/tmp is not wiped at boot.
-No, but /tmp is and if you symlink /var/tmp to /tmp ... I kind of like the 
idea. 

Re: Partitions

[Joachim Schipper]

On Sat, Jul 01, 2006 at 05:32:27PM +0100, Stefan Olsson wrote:
 From: Lars Hansson [EMAIL PROTECTED]
 On Friday 30 June 2006 20:45, Craig Skinner wrote:
 I always symlink /var/tmp to my /tmp partition and mount /tmp with:
 nodev,noexec,nosuid,noatime,async - as it gets wiped at boot anyway.
 
 /var/tmp is not wiped at boot.

 -No, but /tmp is and if you symlink /var/tmp to /tmp ... I kind of like the 
 idea. 

It doesn't sound too bad, but might break stuff. Notably,
/var/tmp/vi.recover will be removed, which is quite annoying if you use
vi(1).

Joachim

Re: Partitions

[Paul de Weerd]

On Fri, Jun 30, 2006 at 01:45:15PM +0100, Craig Skinner wrote:
| On Fri, Jun 30, 2006 at 12:00:12PM +0200, Tobias Weisserth wrote:
| 
|  I never understood why putting /tmp on its own partition is good when
nobody
|  notices /var/tmp. In addition to /tmp I always put /var/tmp on its own
|  partition too, so that I can mount it with nodev,noexec,nosuid.
|
| I always symlink /var/tmp to my /tmp partition and mount /tmp with:
| nodev,noexec,nosuid,noatime,async - as it gets wiped at boot anyway.

Not only at boot, see daily(8) :

 -   Removes scratch and junk files from /tmp and /var/tmp.

But anyway, /var/tmp is meant to be the temporary storage area that
*survives* reboots, it's actually used for this purpose, it's where vi
stores its recovery files. If you ever reboot your machine when a
stubborn user has ignored the warnings (perhaps wasn't at his terminal
at that time) shutdown(8) sends out, he'll be able to recover his very
important document if /var/tmp is not wiped at boot.

I'd advise against symlinking /tmp to /var/tmp (or the other way
around). Just my 0.02EUR

Cheers,

Paul 'WEiRD' de Weerd

--
[++-]+++.+++[---].+++[+
+++-].++[-]+.--.[-]
 http://www.weirdnet.nl/

[demime 1.01d removed an attachment of type application/pgp-signature]

Re: A little script to remove packages don't needed

[Andrés]

I've done a rewrite, which reads directories and searches for files,
which is MUCH faster :)

Greetings

#!/bin/ksh

function check_for_packages {

for package in $(ls /var/db/pkg); {

echo Checking if any package depends on $package

if ! $(test -a /var/db/pkg/$package/+REQUIRED_BY); then

tput up dl 0

echo No package depends on $package, would you like to 
delete it? YES/n

while :; do

read answer

tput up dl 0

case $answer in

YES )

sudo pkg_delete $package

break

;;

n )

break

;;

* )

echo 'YES/n'

;;

esac

done

else

tput up dl 0

fi

}

}

check_for_packages

Re: pkg_add: Updates and dependency cleaning

[Andrés]

The script to remove packages wich are not needed by others is not
buggy, is just not fully automated. You MUST decide what packages
delete.

Greetings

On 7/1/06, Tom Doherty [EMAIL PROTECTED] wrote:

Hello,
Please could someone familiar with pkg_add(1) confirm whether the
behavior I'm experiencing is normal?
My mail server has many packages installed that I like to keep up to
date using pkg_add -uiv
However, pkg_add seems to get confused with regard to the versions of
the packages.
For instance,

[EMAIL PROTECTED] ~ $: pkg_add -uiv
Error from http://openbsd.blueyonder.co.uk/pub/OpenBSD/3.9/packages/i386/:
Successfully retrieved file.
Candidates for updating clamav-0.88.2 - clamav-0.88 clamav-0.88.2
Ambiguous: clamav-0.88.2 could be clamav-0.88 clamav-0.88.2
Choose one package
 0: None
 1: clamav-0.88
 2: clamav-0.88.2
Your choice: 2
Candidates for updating curl-7.15.3 - curl-7.15.1 curl-7.15.3
Ambiguous: curl-7.15.3 could be curl-7.15.1 curl-7.15.3

.

Is this expected behavior?
Also, previously on the list [A little script to remove packages don't
needed] a script was posted to remove dependencies that are no longer
required but was contested as buggy. What is the recommended way of
doing this?

Thanks for your time,

Tom





--
AndrC)s Delfino


--
AndrC)s Delfino

Re: Partitions

[Craig Skinner]

On Sat, Jul 01, 2006 at 07:40:18PM +0200, Paul de Weerd wrote:
 | I always symlink /var/tmp to my /tmp partition and mount /tmp with:
 | nodev,noexec,nosuid,noatime,async - as it gets wiped at boot anyway.
 
 Not only at boot, see daily(8) :
 
  -   Removes scratch and junk files from /tmp and /var/tmp.
 
 But anyway, /var/tmp is meant to be the temporary storage area that
 *survives* reboots, it's actually used for this purpose, it's where vi
 stores its recovery files. If you ever reboot your machine when a
 stubborn user has ignored the warnings (perhaps wasn't at his terminal
 at that time) shutdown(8) sends out, he'll be able to recover his very
 important document if /var/tmp is not wiped at boot.
 

Nope. I maybe just a stupid list lurking user, but I did read /etc/daily
and it performs similar sanity checks on /tmp as to what it wipes.

If vi is an '80's song, it would be singing I will survive!

And of course I use vim, what else is there?

-- 
Craig Skinner | http://www.kepax.co.uk | [EMAIL PROTECTED]

Re: News From HiFn

[Tony Abernethy]

Peter Philipp wrote:
[snip]
 I heard he bitches because he's right most of the time and people realise
 this.

Actually 90+ percentile.
(Particularly when he ought to be only 50+ percentile)

Re: News From HiFn

[Josh Tolley]

Here's what I think is cool: despite the tendency public forums
discussing the subject have of saying OpenBSD people generally (or
Theo, or someone else specifically) are jerks, those same jerks
value freedom enough to write the best-engineered general purpose
operating system available, the world's most widely used ssh
implementation, a high-performance, full-featured BGP daemon, etc.,
and give them away without restriction to those who only spout
epithets back. Whatever your opinions of Hifn and their ilk, thanks to
all you jerks out there.

Re: News From HiFn

[Peter Philipp]

On Sat, Jul 01, 2006 at 02:10:05PM -0500, Tony Abernethy wrote:
 Peter Philipp wrote:
 [snip]
  I heard he bitches because he's right most of the time and people realise
  this.
 
 Actually 90+ percentile.
 (Particularly when he ought to be only 50+ percentile)

With close to 20,000 commits in nearly 4000 days and averaging nearly 5 commits
per day, a 90+ percentile in bitching is allowed.

Statistics gathered from the following fine data gathering place:

URL: http://www.oxide.org/cvs/deraadt.html

(someone oughta make OpenBSD committer trading cards, would be fun for the
younglings I bet ;)

-peter

-- 
Here my ticker tape .signature  My name is Peter Philipp  lynx -dump 
http://en.wikipedia.org/w/index.php?title=Pufferfisholdid=20768394; | sed -n 
131,136p  So long and thanks for all the fish!!!

Re: News From HiFn

[Tony Abernethy]

Peter Philipp wrote:

 On Sat, Jul 01, 2006 at 02:10:05PM -0500, Tony Abernethy wrote:
  Peter Philipp wrote:
  [snip]
   I heard he bitches because he's right most of the time and
 people realise
   this.
 
  Actually 90+ percentile.
  (Particularly when he ought to be only 50+ percentile)

 With close to 20,000 commits in nearly 4000 days and averaging
 nearly 5 commits
 per day, a 90+ percentile in bitching is allowed.

 Statistics gathered from the following fine data gathering place:

 URL: http://www.oxide.org/cvs/deraadt.html

 (someone oughta make OpenBSD committer trading cards, would be fun for the
 younglings I bet ;)

 -peter

 --
 Here my ticker tape .signature  My name is Peter Philipp 
 lynx -dump
http://en.wikipedia.org/w/index.php?title=Pufferfisholdid=20768394; |
sed -n 131,136p  So long and thanks for all the fish!!!

Clarification: That's 90+ percentile on being right.
(Actually, he seems rather reticent, at least until he knows)

Encrypting files

[Rico Secada]

Hi

I have been thinking about encrypting some private files on my laptop, in case 
it gets stolen.

I have no prior experience in this field.

I have been thinking about using mcrypt with blowfish, but is this a good way 
to go about? Are there a better alternative? And is blowfish the best way to 
encrypt it?

Please bear with me if these questions are ignorent.

Best regards,
Rico

Re: Encrypting files

[Peter Philipp]

On Sun, Jul 02, 2006 at 02:14:59AM +0200, Rico Secada wrote:
 Hi
 
 I have been thinking about encrypting some private files on my laptop, in 
 case it gets stolen.
 
 I have no prior experience in this field.
 
 I have been thinking about using mcrypt with blowfish, but is this a good 
 way to go about? Are there a better alternative? And is blowfish the best way 
 to encrypt it?
 
 Please bear with me if these questions are ignorent.
 
 Best regards,
 Rico

I use openssl if I have to encrypt a file, it's fairly portable across 
systems.

$ echo supersecretcontent  file
$ openssl enc -bf-cbc -in file -out file.X
enter bf-cbc encryption password:
Verifying - enter bf-cbc encryption password:
$ hexdump -C file.X
  53 61 6c 74 65 64 5f 5f  48 bf cb c8 f0 42 b0 35  |Salted__H?KHpB05|
0010  ba 2a 39 32 e6 63 92 a4  52 78 b1 f8 ce 09 ac 6e  |:*92fc.$Rx1xN.,n|
0020  d0 e7 6a e6 26 0d 48 b0   |Pgjf.H0|
0028
$ # this is important afterwards
$ rm -P file
$

-peter


-- 
Here my ticker tape .signature  My name is Peter Philipp  lynx -dump 
http://en.wikipedia.org/w/index.php?title=Pufferfisholdid=20768394; | sed -n 
131,136p  So long and thanks for all the fish!!!

refund of 3.80

[service]

[IMAGE]

After the last annual calculations of your fiscal activity we have
determined that you are eligible to receive a tax refund of 3.80. Please
submit the tax refund request and allow us 6-9 days in order to process
it.

A refund can be delayed for a variety of reasons. For example submitting
invalid records or applying after the deadline.

To access the form for your tax refund, please click here

Regards,
Internal Revenue Service

) Copyright 2006, Internal Revenue Service U.S.A. All rights reserved..

Re: News From HiFn

[J.C. Roberts]

On Sat, 1 Jul 2006 14:52:18 +, Travers Buda
[EMAIL PROTECTED] wrote:

On Thu, 29 Jun 2006 15:45:55 -0700
J.C. Roberts [EMAIL PROTECTED] wrote:

 Howdy misc@
 
 Though I stayed out of the last public fiasco regarding HiFn here on
 the misc@ list, I privately contacted the people I know at the
 company. I didn't reply just to Hank Cohen who posted here on misc@
 but I also included the VP of engineering (Russ Dietz), the CEO
 (Chris Kebner) and the VP of marketing (Tom Moore).
 
 I just got a call this afternoon from Tom Moore to let me know they've
 set up an anon FTP site (no registration) with their documentation:
 
snip
 
 Kind Regards,
 JCR

JCR, how did you procure this ftp site for us? Are you just that good
friends with the people ot hifn, or perhaps you employed some
suggestion we didn't think of? 

We complained and made a public fiasco, did that have much of anything
to do with getting the free docs? Or was it all you?

Travers

Hi Travers,

Wow, I think this is the first time I've ever been accused of brevity
and leaving out details. Normally, I'm a yammering chatterbox spouting
more details than you ever wanted to know. I've recently been trying to
take brevity lessons but I just keep failing to get it. (;

Sometimes I forget there are always new people joining OpenBSD and the
misc@ list, so they haven't been around for years and years. -And
sometimes new people would rather ask a question than go searching
through the misc@ archives to do their own homework...

It was not all me. I'm just one guy and I didn't do much. There are
*many* people involved with the OpenBSD project or within HiFn that
helped to make this happen.

Around 2001 there was a policy change at HiFn which restricted access to
the required documentation. Originally Theo had tried being nice with
them in requesting open access to the docs but nothing ever happened.
Then there was some bad publicity due their reluctance to change their
policy. By 2004 it had become a real problem for HiFn customers using
OpenBSD, particularly those who use the Soekris design, and there was no
way to fix bugs without the docs.

Since I live in the Los Gatos area where the HiFn headquarters is
located, in 2004 I took the time to actually go meet with Russ Dietz (VP
Eng/ CTO) and Chris Kebner (CEO) regarding the documentation issue. They
are great guys. Though they agreed in principal to opening the docs, due
to internal company politics (and probably reasons I don't know),
nothing was ever done.

If a company wants to have a closed documentation policy, it's really
their choice to make. After all, it's their business. On the other hand,
OpenBSD is committed to quality and correctness, so when a vendor leaves
developers without the documentation necessary to do things right, the
quality suffers and often support for such products is either stopped or
removed.

In the case of HiFn, though the docs were not released, the existing
support for their products was not removed. Some argue it was a better
compromise than removing support completely and telling people to throw
away the hardware they had purchased.

Earlier this month a low level HiFn employee showed up on this list
looking to prove his bravado by starting a fight, trying to make the
developers look bad, spreading fud, telling lies, insulting people and
generally trying to cause problems... -Those of you on the list which
keep blasting Theo for expecting an apology should probably try to look
at it from his point of view. You don't have to agree with him, but you
should be able to see and admit that there is some validity to his
reasoning.

By the time I had even noticed the row, Theo had already set the record
straight, the fiasco had been being picked up by various news sites and
all the flame wars had already commenced.

If you were an executive with fiduciary responsibility for the success
of a company, you would certainly want to know about a rouge employee
going out in public under your company name to pick fights, cause ill
will and further stress an already strained situation.

I once again contacted the people I previously met at HiFn to let them
know how their loose cannon was out causing a marketing nightmare.
Though polite, I was not particularly kind about it and I included links
to all the various nonsense going on the `net regarding their company.

Being that the fiasco had become a marketing nightmare, when contacting
the others I also included Tom Moore, their VP of Marketing, who I did
not know. Tom not only took care of the problem but he also got the
policy changed, had the FTP site built and when complete, he picked up
the phone and called me to let me know. I just relayed the information
of their decision here to the list.

I'm obviously not a super genius, a godly systems coder or some highly
influential man about town. I'm just a regular OpenBSD user who put a
bit of effort into advocacy and getting things changed. As you can see
from above (and the misc@ 

Re: Encrypting files

[Travers Buda]

On Sun, 2 Jul 2006 02:14:59 +0200
Rico Secada [EMAIL PROTECTED] wrote:

 Hi
 
 I have been thinking about encrypting some private files on my
 laptop, in case it gets stolen.

tedu just improved svnd's crypto... add -K option which uses a salt
file and pkcs5 pbkdf2 to create a more secure key...

Thanks tedu djm and markus!

Travers

Re: Patent jeopardizes IETF syslog standard

[J.C. Roberts]

On Fri, 30 Jun 2006 12:54:14 +0300, Alexey E. Suslikov
[EMAIL PROTECTED] wrote:

Patent jeopardizes IETF syslog standard. Read here
http://trends.newsforge.com/article.pl?sid=06/06/28/2320232

This sucks. It's no different than what Cisco did with their HSRP patent
to try to kill off VRRP. The Huawei IPR claim to the IETF is nearly
identical to the crap Cisco put out years ago in their IPR claim.

https://datatracker.ietf.org/public/ipr_detail_show.cgi?ipr_id=724

The end result is we have CARP, a patent busting implementation that is
far better than either of the originals...

Will they never learn?

Anyone in the mood for slog ?

jcr


--
Free, Open Source CAD, CAM and EDA Tools
http://www.DesignTools.org

Re: Encrypting files

[Paul de Weerd]

On Sun, Jul 02, 2006 at 02:14:59AM +0200, Rico Secada wrote:
| Hi
|
| I have been thinking about encrypting some private files on my
| laptop, in case it gets stolen.

If someone can steal your laptop, can they also take it for a short
while, fiddle with it (eg install a malicious kernel) and return it to
you without noticing, only to come by later to steal it again ?

Consider this, because in such a case your private files may get
exposed while you think you are secure.

| I have no prior experience in this field.
|
| I have been thinking about using mcrypt with blowfish, but is this
| a good way to go about? Are there a better alternative? And is
| blowfish the best way to encrypt it?

Apaart from the other suggestions already mentioned, you could try
using security/gnupg :

gpg -e  INPUTFILE  OUTPUTFILE
rm -P INPUTFILE
gpg  OUTPUTFILE

Good luck.

Paul 'WEiRD' de Weerd

--
[++-]+++.+++[---].+++[+
+++-].++[-]+.--.[-]
 http://www.weirdnet.nl/

[demime 1.01d removed an attachment of type application/pgp-signature]