Re: OpenBSD 5.6 pre-orders in Germany possible
Hi folks, I just noticed that in Germany Lehmanns (see OpenBSD's order-site) already accepts pre-orders for OpenBSD 5.6-release. Guess what I just did :-) My little contribution to the project along with a big THANK YOU to the devs! Cheers, STEFAN Please don't do this and cancel your order. Things will become obvious on Monday :)
Re: Compiling a modern version of Amanad on OpenBSD 5.5
On 2014-09-26, stan st...@panix.com wrote: I do realizethee is a really old version of Amanda in the ports tree, and yes it compiles, but it is too old to work with our server. btw this old version has been removed post-5.5, it's too old to be useful. We'd certainly be able to re-add Amanda if somebody steps up to write a new port for it. It was stalled for some years due to Amanda adding use of threads in a way that didn't work with our old thread library, but this should no longer be an issue and it ought to be a reasonably straightforward port.
Re: Android Studio
On 2014-09-27 Sat 00:33 AM |, Nick Holland wrote: I'd LOVE to think Google took security more seriously than other dipshits in the computer industry, but sadly, the Android platform did not show it. I have an Android phone, I would not trade it for an iProduct...but I will never trust it or use it for security critical purposes. While I don't have a smart phone, nor a tablet, is Blackberry worth considering? I guess not: According to Levison, the F.B.I. agents who came to his house were surprised that he hadn't seen one of the sets of documents that had been e-mailed to him demanding Lavabit's information; they pointed to his phone and said he could look up the information right there. He responded, 'You know better than I do why I don't have e-mail on my phone.' ... He doesn't use e-mail on his Android smartphone, for instance, because neither the software nor the hardware of any commercial phone can be trusted; carriers and phone makers can push malware onto the device, he said. Yet his views are far from radical. ... http://www.newyorker.com/tech/elements/how-lavabit-melted-down http://lavabit.com/
Re: Android Studio
On 2014-09-27 Sat 00:33 AM |, Nick Holland wrote: Sorry, I've had the honor of working with some amazing malware experts (AND the OpenBSD developers. Have I had a rockin' life or what? :), Absolutely, like 11:33 of this: http://www.youtube.com/watch?v=S72I-nSgQek http://www.NavalTankerMen.com/images/ken731.jpg -- Craig Skinner | http://twitter.com/Craig_Skinner | http://linkd.in/yGqkv7
Re: thinkpad wifi/dhclient issue
frantisek holop, 25 Sep 2014 17:28: for everybody out there who likes a good mystery, the 900 ping issue has happened mid-day as well for the first time. it is the equivalent of yanking the ethernet cable. so it is not an exclusively resume connected, but resume (and startup) is a way to reproduce instantly. i have realised that i dont have to wait 1 second between every ping. sudo ping -f -c 999 8.8.8.8 helps in some cases almost instantly. -f -- what a day may bring, a day may take away.
Re: Pidgin/Lync success stories?
On 09/26/14 11:55, Mattieu Baptiste wrote: On Fri, Sep 26, 2014 at 10:49 AM, Alexander Hall alexan...@beard.se mailto:alexan...@beard.se wrote: Hi! I'm trying to set up Pidgin to talk to our Lync servers at work, but it seems somewhere after (or in) the TLS handshaking, it just stops, and eventually times out. I installed the pidgin-sipe package and I'm using the 'office communicator' protocol. On a Debian box on the side, with the same settings, I don't have this issue. Can someone please share success stories, non-success stories, or useful hints of using Pidgin for Lync on OpenBSD? Hi, I've also failed at using Pidgin with Office 365. I tried different settings with the pidgin-sipe port, without success. I found a workaround with chrome (+ extension to change the user-agent) and Outlook web access. It let me use the Lync web client. Just to rule one possibiliy out... Was this before or after the separation from upstream openssl? /Alexander Regards, -- Mattieu Baptiste /earth is 102% full ... please delete anyone you can.
Re: Pidgin/Lync success stories?
Later i will write the issue. But is before openssl/libressl switch and its related to use nss libs instead ssl. And pidgin is ssilently refusing server certs. But later i will write it more deeper with some debug. I have pidgin / sipe working without issues Regards El sep 27, 2014 1:37 p.m., Alexander Hall alexan...@beard.se escribió: On 09/26/14 11:55, Mattieu Baptiste wrote: On Fri, Sep 26, 2014 at 10:49 AM, Alexander Hall alexan...@beard.se mailto:alexan...@beard.se wrote: Hi! I'm trying to set up Pidgin to talk to our Lync servers at work, but it seems somewhere after (or in) the TLS handshaking, it just stops, and eventually times out. I installed the pidgin-sipe package and I'm using the 'office communicator' protocol. On a Debian box on the side, with the same settings, I don't have this issue. Can someone please share success stories, non-success stories, or useful hints of using Pidgin for Lync on OpenBSD? Hi, I've also failed at using Pidgin with Office 365. I tried different settings with the pidgin-sipe port, without success. I found a workaround with chrome (+ extension to change the user-agent) and Outlook web access. It let me use the Lync web client. Just to rule one possibiliy out... Was this before or after the separation from upstream openssl? /Alexander Regards, -- Mattieu Baptiste /earth is 102% full ... please delete anyone you can.
Re: OpenBSD 5.6 pre-orders in Germany possible
On Sat, Sep 27, 2014 at 07:30:45AM +0100, OpenBSD Europe wrote: Hi folks, I just noticed that in Germany Lehmanns (see OpenBSD's order-site) already accepts pre-orders for OpenBSD 5.6-release. Guess what I just did :-) My little contribution to the project along with a big THANK YOU to the devs! Cheers, STEFAN Please don't do this and cancel your order. Things will become obvious on Monday :) i'd like to buy the 5.6 version on CD, too. But which shops (in Germany) are sane and help the project? I read a mail from Mr De Raadt and he said that ixsoft isn't a -- how should I say that -- proper shop, too. I appreciate your work and try to help (at least, a little bit). Which shop is recommended to be OpenBSD friendly? [1] http://marc.info/?l=openbsd-miscm=140803642814873w=2
Re: Thanks for ksh
On 2014-09-25 Thu 15:18 PM |, Maurice McCarthy wrote: http://www.theregister.co.uk/2014/09/24/bash_shell_vuln/ More vulnerabilities in #bashbug: #Shellshock becomes whack-a-mole for security engineers http://ars.to/1uOtJcN ... he was able to bypass the fixes in the latest bash patch and pass through executable commands. partially patched, still highly dangerous. And it may take a significant change to fix the code. ... two specific recommendations for fixes to bash that will essentially break backward compatibility... OpenBSD;- bashbug free since 1996! Thanks again! -- Craig Skinner | http://twitter.com/Craig_Skinner | http://linkd.in/yGqkv7
Re: OpenBSD 5.6 pre-orders in Germany possible
On 09/27/14 20:15, Stefan Berger wrote: On Sat, Sep 27, 2014 at 07:30:45AM +0100, OpenBSD Europe wrote: Hi folks, I just noticed that in Germany Lehmanns (see OpenBSD's order-site) already accepts pre-orders for OpenBSD 5.6-release. Guess what I just did :-) My little contribution to the project along with a big THANK YOU to the devs! Cheers, STEFAN Please don't do this and cancel your order. Things will become obvious on Monday :) i'd like to buy the 5.6 version on CD, too. But which shops (in Germany) are sane and help the project? I read a mail from Mr De Raadt and he said that ixsoft isn't a -- how should I say that -- proper shop, too. I appreciate your work and try to help (at least, a little bit). Which shop is recommended to be OpenBSD friendly? [1] http://marc.info/?l=openbsd-miscm=140803642814873w=2 I am in Germany. I use OpenBSD Europe. It's a bit more for the shipping and insurance but it gets here promptly without much delay, quicker than the competition. I tried the others and went back to OpenBSD Europe. -peter
Re: Android Studio
Thumbs up! ...but I will never trust it or use it for security critical purposes. Me neither. Google itself is a security hole. Stasi would love it :) My point was that application model, everything running on sandbox, most of the applications running on bytecode machine with bounds checking.. I don't mind at all to get that running top of OpenBSD!
Re: Thanks for ksh
On 09/25/2014 10:25 PM, ian kremlin wrote: /bin/sh is an implementation of *the bourne shell*, not the bourne-again shell (bash). in any case, neither /bin/sh nor ksh are vulnerable to the recent shellshock vulnerability. Also, if OpenBSD had bash it still wouldn't be such a big issue as it is in Linux. The most common attack vector is Apache with PHP with scripts calling to system(), shell_exec(), etc. Since hosts with OBSD have httpd chrooted, even if they installed PHP, /bin/sh wouldn't be inside the jail. And even if they added /bin/sh and someone was able to exploit it, they will be trapped inside the jail. Of course this is all hypothetical because OBSD doesn't have bash to begin with. [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
OpenBSD 5.5: question regarding pf syntax
Hey guys,
I have what I hope is a simple syntax question for pf rules. I have not been
able to
find any example of this online or in the man pages. I suspect it is perhaps
not possible.
Basically I want to allow out certain web services, with a simple rule like
below:
pass out on em0 proto tcp from 192.168.1.0/24 port $ports to any
My trouble is with the $ports macro. Here's what I am trying to do:
$common= '{80,443,465,587,993}'
$games= '{5222,7778,28900}'
$ports= { $common $games }
NOTE: In my real config the macros are above the rule, and I have tried with and
without enclosing the top two macros in the single quotes.
This way when I need to allow specific applications out, instead of having a
huge single
macro where I will forget what the ports are for, I can have smaller macros
that I just
add into the single macro which I use in the pf rule. Instead of making a new
rule for
each application, I can just add to the $ports macro.
pf however indicates that the $ports macro is not valid syntax.
Is this a syntax error on my part, or is this something pf cannot do? Totally
fine if
the latter, I just want to make sure I am not missing something silly with the
syntax. :)
Warm regards,
Andrew
Re: Android Studio
On Sat, 27 Sep 2014 11:07:54 +0100 skin...@britvault.co.uk (Craig R. Skinner) wrote: On 2014-09-27 Sat 00:33 AM |, Nick Holland wrote: I'd LOVE to think Google took security more seriously than other dipshits in the computer industry, but sadly, the Android platform did not show it. I have an Android phone, I would not trade it for an iProduct...but I will never trust it or use it for security critical purposes. While I don't have a smart phone, nor a tablet, is Blackberry worth considering? I guess not: According to Levison, the F.B.I. agents who came to his house were surprised that he hadn't seen one of the sets of documents that had been e-mailed to him demanding Lavabit's information; they pointed to his phone and said he could look up the information right there. He responded, 'You know better than I do why I don't have e-mail on my phone.' ... He doesn't use e-mail on his Android smartphone, for instance, because neither the software nor the hardware of any commercial phone can be trusted; carriers and phone makers can push malware onto the device, he said. Yet his views are far from radical. ... http://www.newyorker.com/tech/elements/how-lavabit-melted-down http://lavabit.com/ Anyone imagining that they actually *own* a telephone is practicing some considerable self delusion. A telephone is a rented service. You don't own any of it. Dhu -- Ne obliviscaris, vix ea nostra voco.
Re: OpenBSD 5.5: question regarding pf syntax
On 27 Sep 2014 at 18:50, Andrew Lester wrote:
Hey guys,
I have what I hope is a simple syntax question for pf rules. I have not
been able to find any example of this online or in the man pages. I
suspect it is perhaps not possible. Basically I want to allow out
certain web services, with a simple rule like below:
pass out on em0 proto tcp from 192.168.1.0/24 port $ports to any
My trouble is with the $ports macro. Here's what I am trying to do:
$common= '{80,443,465,587,993}'
$games= '{5222,7778,28900}'
$ports= { $common $games }
NOTE: In my real config the macros are above the rule, and I have tried
with and without enclosing the top two macros in the single quotes.
Your problem is not with the quotes but with the braces -- only one set
of braces is needed and accepted when defining a list.
This way when I need to allow specific applications out, instead of
having a huge single macro where I will forget what the ports are for, I
can have smaller macros that I just add into the single macro which I
use in the pf rule. Instead of making a new rule for each application, I
can just add to the $ports macro.
pf however indicates that the $ports macro is not valid syntax.
Is this a syntax error on my part, or is this something pf cannot do?
Totally fine if the latter, I just want to make sure I am not missing
something silly with the syntax. :)
Warm regards,
Andrew
