tor + rdomain
Hi, I would like to have some help for perform a network isolation using rtable, to use tor without network leak. I use -current. The host is a workstation (no forwarding set in sysctl). The purpose is to have dedicate rtable where program that should use tor live (route -T 1 exec ...), and with the only access to network is throught tor socks server, accessible in this rtable. I use the tor package as-it in ports (socks server listening to 127.0.0.1:9050, in rdomain 0). I have created a loopback device in rdomain 1. --- BEGIN /etc/hostname.lo1 --- rdomain 1 inet 127.0.0.1 up --- END /etc/hostname.lo1 --- Program is started in rtable 1 with something like: $ route -T 1 exec chrome --proxy-server=socks5://127.0.0.1:9050 Now I should redirect all access to tcp://127.0.0.1:9050 in rdomain 1 to tcp://127.0.0.1:9050 in rdomain 0. There are many possibilities to achieve this goal. pf rules set (all my rules) [that works]: block drop in log quick on ! lo0 proto tcp from any to any port 6000:6010 match in on lo1 proto tcp to 127.0.0.1 port 9050 rdr-to 127.0.0.1 rtable 0 match out on lo0 proto tcp to 127.0.0.1 port 9050 nat-to lo0 pass all Currently I'm not fully agreed with these rules, as it not permit me to keep disabled pf on lo devices (no more set skip lo), or at least on lo0. I think it should be possible to do redirect in userland with nc(1) (something like nc -V 1 -l 9050 | nc 127.0.0.1 9050) or socat(1) There are also inetd(8), but it should listen on rtable 1 for one service. Does it is possible without new instance ? Or relayd(8)... So how to elegantly perform redirect in level 3 between rdomain ? (the term elegantly is unusual, but I think it is understandable... perhaps best practice is more common) Thanks -- Sébastien Marie
Emacs on OpenBSD for DEC VAX?
I have managed to install OpenBSD 5.2 on my DEC VaxStation 4000 Model 90 but to my surprise have not found a binary for Emacs (any version) for the VAX architecture. As best as I can tell I do not see it in the ports collection either. Has anybody succeeded in installing any version of Emacs (or for that matter Zile) on the VAX architecture? Note that the VAX architecture distribution of OpenBSD uses a modified version of GCC 2.9.5 as it's compiler. Thanks. Sincerely, Hany.
Re: getting apps en masse
On 01/24/2013 06:30 PM, John Newton wrote: Sirs: Is there a way to download whole multipage chunks of the Apps from any of the mirrors? I need to study them at my leisure offline and the one-by-one method is tedious. Thanks from john _ ___ Use the link below to report this message as spam. https://lavabit.com/apps/teacher?sig=4013036key=1633467425 _ ___ I am not sure if I am correct about this, but if you buy the CD's doesn't it have all the programs so that you don't need to download them? Also you can order osdisc.com they have also the full packages (this of course is if you don't already have the CD's, which is what is recommended), either way if anyone knows of a better way. I would love to know, I have been reading the mailing list for a good while now. The CD's will be arriving sometime real soon, I am looking forward to my OpenBSD 5.2 install for the first time. I just recently started on Linux, and I have been reading for a good while about BSD, never had the hardware to be able to install it before or extra Hard Drives (I wanted OpenBSD to have its own dedicated HD). Thank you OpenBSD developers, and a special thanks to all those who answer questions in the mailing list. You guys are awesome ^_^. :-) [demime 1.01d removed an attachment of type application/pkcs7-signature which had a name of smime.p7s]
Re: tor + rdomain
On Sat, Jan 26, 2013 at 02:11:06PM +0100, Sébastien Marie wrote: Hi, I would like to have some help for perform a network isolation using rtable, to use tor without network leak. I use -current. The host is a workstation (no forwarding set in sysctl). I just run a program which should use Tor only under different user and use PF to block any outgoing traffic of such user. It's not what you want but this works for me. jirib
Re: getting apps en masse
wget does the trick nicely for me ... VER=5.2 ARCH=i386 BASE=ftp://ftp.openbsd.org/pub/OpenBSD/$VER ARGS=--passive-ftp -r -N -nH wget $ARGS -l inf $BASE/packages/$ARCH/ From: John Newton johnnewton98 at yahoo.com Subject: getting apps en masse Date: 2013-01-25 01:30:19 GMT (2 days, 1 hour and 12 minutes ago) Sirs: Is there a way to download whole multipage chunks of the Apps from any of the mirrors? I need to study them at my leisure offline and the one-by-one method is tedious. Thanks from john