Re: What is you motivational to use OpenBSD

2019-08-28 Thread Vivek Vinod 


I'm going to be hated for this But I don't feel like logging into my 
servers everyday to check if all is well. Some (*BSDs) I've not logged into for 
years and also forgotten my passwords. 

With OpenBSD on public IPs, I'm safe(r) than the GNU/Linux (worst offender) or 
Windows (2nd worst) or FreeBSD (1 incident in 3 years) counterparts. 

Then again, I feel OpenBSD has made me start to question everything... which 
has led me to better work choices. 

Please excuse my brevity - Sent from my mobile



  Original Message  



From: mohamed.ahmed.fouad@gmail.com
Sent: 28 August 2019 9:34 PM
To: mohamed.a.sala...@gmail.com
Cc: misc@openbsd.org
Subject: Re: What is you motivational to use OpenBSD


OpenBSD community is formed around the idea of doing things in a simple but
correct manner; the community also rejects all stupid ideas that many
others may accept because it is a bit more convenient. That's a good
community to learn from.

A community that got a good taste for sensible ideas.

On Wed, 28 Aug 2019, 11:42 Mohamed salah  I wanna put something in discussion, what's your motivational to use
> OPENBSD what not other bsd's what not gnu/Linux, if something doesn't work
> fine on openbsd and you love this os so much what will do?
>

nsd does not stop

2018-05-03 Thread Vivek Vinod 
Dear Misc,

on stopping nsd from command line, nsd does not stop at all

Config:
OpenBSD 6.3
nsd remote control is disabled
nsd ipv6 is disabled

$doas rcctl restart nsd
(failed)

$doas rcctl stop nsd
$echo $?
0

$doas rcctl start nsd
(failed)

$doas tail -f /var/log/nsd.log
error: can't bind udp socket: Address already in use
error: server initialization failed, nsd could not be started

$ps aux | grep nsd
shows running processes

if I kill the processes, I can start nsd. However, it is just that nsd does
not stop if I want it to

even
$doas /etc/rc.d/nsd stop | restart
does not work.

What am I doing wrong here? Pooped. Any help would be appreciated.

regards,
Vivek

cohesive configuration parameters between various OpenBSD systems

2018-05-02 Thread Vivek Vinod 
Dear Misc,

Various parts of OpenBSD base refer to AddressFamily and accepted values are 
different. Examples listed below.

Any reason why we have “inet” in sshd_config and “inet4” in smtpd.conf? I’m 
assuming OpenSMTPD released after inet6 was in wide(r) use and old programs, 
utilities, etc. were released when there was no ipv6 around, hence the 
difference. 

This is not an important issue, just asking if there are plans to migrate to a 
common reference.

Regards,
Vivek

$man sshd_config
…
AddressFamily
Specifies which address family should be used by sshd(8).  Valid
arguments are any (the default), inet (use IPv4 only), or inet6
 (use IPv6 only).
…

$man smtpd.conf
…
listen on interface [family] [port port]
…
Specify an interface and optional port to listen on for incoming
connections.  An interface group, an IP address or a domain name
may be used in place of interface.  The family parameter can be
used to listen only on specific address family.  Accepted values
are inet4 and inet6.
…

$man netstat
…
The following address families are recognized:
Address FamilyConstant  Description
InetAF_INET   IP Version 4
inet6   AF_INET6  IP Version 6
…

Re: Community-driven OpenBSD tutorials wiki?

2018-04-11 Thread Vivek Vinod 
Offtopic -

I installed cowsay and erroneously thought there was an error in the manpage. 
Looked up cowsay in ports and wrote an email to the maintainer. The email 
bounced back. 

Who would one email to in such a case?

Vivek

  Original Message  
From: simplersolut...@gmail.com
Sent: 12 April 2018 6:08 AM
To: pe...@bsdly.net
Cc: misc@openbsd.org
Subject: Re: Community-driven OpenBSD tutorials wiki?

On Fri, Jan 5, 2018 at 8:26 AM, Peter N. M. Hansteen  wrote:

>
> If you think you don't have the seniority to start submitting patches
> when you see a bug (even a typo in a man page or the faq), you're most
> likely wrong. Your first efforts will not be perfect of course, but if
> you put in the effort and are able to learn from constructive criticism,
> it's likely sooner or later you will be adding real value.
>

This.  I once submitted a patch to update THE PUBLIC WEBSITE (I
replaced some broken links with archived versions) and it was approved
without demur and on the website the next day.  If you have a change
to make and a patch to implement it, you can shape OpenBSD's future,
even if it's just to make sure the website has no broken links.
That's what keeps me coming back.

Re: l2tp and openbsd 6.1

2017-10-04 Thread Vivek Vinod 
I do not understand the question ‎but this may be connected...

My Wi-Fi uses AD (LDAP) auth with certificates‎. I set this up using some 
"guide" without understanding a thing. My IOS, Android and Mac clients connect 
without a hitch. Windows 10 do not. 

To get my windows 10 to work, I have to copy over and install the ce‎rtificates 
from a previously connected Mac machine's keychain. 

‎In your setup, can you check in your windows 10 certificate store if the 
necessary certificates (if any) have been installed? If not, try copying the 
certificates. This is windows 10 behaviour. It may or may not be related to 
"self signed certificates".

Again, I do not understand a thing. Sorry for the noise.

Please excuse my brevity. Sent from my handphone.
  Original Message  
From: Vijay Sankar
Sent: Wednesday 4 October 2017 23:42
To: misc@openbsd.org
Subject: Re: l2tp and openbsd 6.1


Quoting Charles Amstutz :

> Yes,
>
> I would like to know this as well, it seems annoying that Android 
> 8/4.x and IOS can connect, but not windows 10 (I haven't tried 
> earlier windows 10) and android 7.
>
> Its either a user error (which I am willing to admit) or something 
> very annoying. Especially when my l2tp PSK windows server can accept 
> connections from anything it seems.
>
> I would like to get this figured out.
>
> I appreciate all of the suggestions, but I still can't get android 7 
> to connect, no matter which encryption, authentication or modp I use.
>
> -Original Message-
> From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On 
> Behalf Of lilit-aibolit
> Sent: Wednesday, October 4, 2017 2:46 AM
> To: misc@openbsd.org
> Cc: Charles Amstutz ; yasu...@yasuoka.net
> Subject: Re: l2tp and openbsd 6.1
>
> Hi,
> with l2tp I have situation when iOS  and Android devices could 
> connect but Windows 7 and Windows 10 couldn't.
>
> Is it possible to adjust ipsec.conf somehow so it could accept 
> connection from Windows clients too?
> Or is there a way to adjust some settings in Windows so it will work 
> with current ipsec.conf?
>
> I also noticed that I have to add pass rule for tun0 to PF explicitly:
> - pass on tun0 all
> instead of having just:
> - set skip on  { lo0, tun0 }
>
> Here is ipsec.conf:
>
> ike passive esp transport \
> proto udp from a.b.x.y to any port 1701 \ main auth hmac-sha1 enc 
> aes group modp1024 \ quick auth hmac-sha1 enc aes \ psk "password"
>
> Here is npppd.conf:
> authentication LOCAL type local {
>     users-file "/etc/npppd/npppd-users"
> }
> tunnel L2TP protocol l2tp {
>     listen on x.x.y.y
> }
> ipcp IPCP {
>     pool-address 192.168.222.2-192.168.222.254
>     dns-servers 192.168.a.b
> }
> interface tun0  address 192.168.222.1 ipcp IPCP bind tunnel from 
> L2TP authenticated by LOCAL to tun0
>
> Log from Android:
>
> Oct  2 16:22:39 gw npppd[10826]: l2tpd ctrl=4 logtype=Started 
> RecvSCCRQ from=192.38.129.182:41634/udp tunnel_id=4/4667 
> protocol=1.0 winsize=1 hostname=anonymous vendor=(no vendorname) 
> firm= Oct  2 16:22:40 gw npppd[10826]: l2tpd ctrl=4 call=7962 
> logtype=PPPBind
> ppp=3
> Oct  2 16:22:41 gw npppd[10826]: ppp id=3 layer=base 
> logtype=TUNNELSTART user="xxx" duration=1sec layer2=L2TP 
> layer2from=192.38.129.182:41634
> auth=MS-CHAP-V2  ip=192.168.222.110 iface=tun0 Oct  2 16:22:41 gw 
> /bsd: pipex: ppp=3 iface=tun0 protocol=L2TP id=7962 PIPEX is ready.
> Oct  2 16:22:41 gw npppd[10826]: ppp id=3 layer=base Using pipex=yes
>
> Log from IPhone6s:
>
> Oct  2 16:13:13 gw isakmpd[24211]: attribute_unacceptable:
> HASH_ALGORITHM: got SHA2_256, expected SHA Oct  2 16:13:13 gw 
> isakmpd[24211]: attribute_unacceptable:
> GROUP_DESCRIPTION: got MODP_2048, expected MODP_1024 Oct  2 16:13:13 
> gw isakmpd[24211]: attribute_unacceptable:
> HASH_ALGORITHM: got MD5, expected SHA
> Oct  2 16:13:13 gw isakmpd[24211]: attribute_unacceptable:
> HASH_ALGORITHM: got SHA2_512, expected SHA Oct  2 16:13:13 gw 
> isakmpd[24211]: attribute_unacceptable:
> HASH_ALGORITHM: got SHA2_256, expected SHA Oct  2 16:13:13 gw 
> isakmpd[24211]: attribute_unacceptable:
> GROUP_DESCRIPTION: got MODP_1536, expected MODP_1024 Oct  2 16:13:13 
> gw isakmpd[24211]: attribute_unacceptable:
> HASH_ALGORITHM: got MD5, expected SHA
> Oct  2 16:13:13 gw isakmpd[24211]: attribute_unacceptable:
> HASH_ALGORITHM: got SHA2_256, expected SHA Oct  2 16:13:14 gw 
> npppd[10826]: l2tpd ctrl=3 logtype=Started RecvSCCRQ 
> from=192.38.129.182:65367/udp tunnel_id=3/7 protocol=1.0 winsize=4 
> hostname=xxx-iPhone vendor=(no vendorname) firm= Oct  2 16:13:14 
> gw npppd[10826]: l2tpd ctrl=3 call=11161 logtype=PPPBind
> ppp=2
> Oct  2 16:13:18 gw npppd[10826]: ppp id=2 layer=base 
> logtype=TUNNELSTART user="xxx" duration=4sec layer2=L2TP 
> layer2from=192.38.129.182:65367
> auth=MS-CHAP-V2  ip=192.168.222.110 iface=tun0 Oct  2 16:13:18 gw 
> /bsd: pipex: ppp=2 iface=tun0 protocol=L2TP id=11161 PIPEX is ready.
> Oct  2 16:13:18

Re: Theo de Raadt and official developers of OpenBSD, please follow the "heart of the letters"!

2016-12-16 Thread Vivek Vinod 
You know, I can't code. 

So I've learned to shut the fuck up.

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: SOUL_OF_ROOT 55
Sent: Friday 16 December 2016 22:42
To: misc@openbsd.org
Subject: Theo de Raadt and official developers of OpenBSD, please follow the
"heart of the letters"!

Theo de Raadt and official developers of OpenBSD, please follow the "heart
of the letters"!

What is up with some free software providers?! They say "Here's something
free! Oh wait, I changed my mind."

David Dawes worked for years with a team of developers to make a free
X11 distribution for us to use, called XFree86, 98% of which was based on
entirely free code from MIT. Suddenly, one day, he decided that we must
give him more credit (ie. advertise his name) or stop using it. Within
about 4 months every project had told him to get stuffed, and the community
has created a replacement effort. Now his team cannot even keep their web
pages up to date...

OpenBSD was the first operating system to integrate a packet filter,
and it was the ipf codebase from Darren Reed that we chose. But a few years
later he told us that we were not free to make changes to the code. So we
deleted ipf, and our new packet filter far exceeds the capabilities of the
one he wrote. And other projects are switching too...

The Apache group started from the humble beginnings of just being 'a
patchy' set of changes to a completely free web server of dubious quality.
But the years have changed them, and what they supply is now quite
non-free... released under a license so entangled in legalese that we have
absolutely no doubt that there are encumbrances hidden within. Legal terms
protect. Who are they protecting? Not your freedom.

reference: https://www.openbsd.org/lyrics.html#36

What are the others groups who have made this Free-to-Non-Free transition
before and after the existence of OpenBSD?

Re: Why on earth would online voting be insecure?

2016-11-15 Thread Vivek Vinod 
‎Apologies for speaking out of turn. 

Is this an OpenBSD mailing list?

Vivek

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: Joel Wirāmu Pauling
Sent: Tuesday 15 November 2016 20:46
To: gwes
Cc: misc@openbsd.org
Subject: Re: Why on earth would online voting be insecure?

On 15 November 2016 at 09:47, gwes  wrote:

> On 11/15/2016 00:55, Joel Wir��mu Pauling wrote:
>
>> So yes, back to my original point. A Civic's blockchain, one that does not
>> rely on the integrity (or rather is resilient to) the system it runs on,
>> or
>> the security of the transmission media ; as a platform for use in civic's
>> -
>> needs to exist first.
>>
>>
> Combining two systems entirely separate in concept, implementation,
> and space increases the probability of a correct answer. Three
> would be better. Using the electronic system as a supplement to
> the traditional one could be good as long as it does not compromise
> the virtues of the old system.
>
> The blockchain starts after the votes are entered. Two physically
> separate systems composed of entirely different CPUs and peripherals
> at the voting place would be good.
>
> You still haven't addressed the problems of privacy while casting
> the vote.
>
> I think that your concepts for the technical parts of the
> system are good. You haven't addressed some serious problems
> where your system can be subverted.
>
> Suggesting weekly votes is a very bad idea. Search science
> fiction, for instance, to see very plausible predictions
> of voter burnout.
>
> I think this is no longer a computer systems discussion.
>
> ���This. Once you start to think about the problem further in terms
of
distributing the ledger via a public blockchain - as the datastore and
mechanism for recording and verification, and that the blockchain exists
entirely independently of the systems it runs on you are at least in the
right place to start tackling this issue.

Re: pf filter problem: cannot connect to external SMB share from LAN

2016-08-10 Thread Vivek Vinod 
‎Sorry... Just couldn't resist this one...

you've won so many huge battles, yet need help with pf/ NAT?

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: William Wallace
Sent: Wednesday 10 August 2016 19:34
To: misc@openbsd.org
Subject: pf filter problem: cannot connect to external SMB share from LAN

I am trying to connect to an SMB share outside of the office. I have
confirmed that the share works and others on the Internet can connect
to it fine, but connections from within my office do not go through.

I am guessing I have something wrong with the office's pf filters or
NATing but I cannot identify the problem -- my pf.conf is fairly
simple. All machines on the network can get to other services (http,
https, rdp, ssh, ... anything, really) but cannot establish an SMB
connection. Nothing of interest shows up in the pf log.

pf.conf pasted below. Thank you for your time.

Sincerely,
william

## macros
# interfaces
intIf = "fxp0"
extIf = "fxp1"
# inside machines
dvrIp = "192.168.10.7"
scannerIp = "192.168.10.20"
pc2Ip = "192.168.10.21"
pc3Ip = "192.168.10.32"
# public IPs
natOutIp = "single.public.ip.address"
serviceInIp = "d.i.tt.o"
# internal services
rdpPort = "3389"
rdpPort2 = "3390"
rdpPort3 = "3391"
dvrWebPubPort = 82
dvrServicePort = 6036

## block list
APNIC = '"1.0.0.0/8" "43.0.0.0/8"'
RIPE = '"31.0.0.0/8" "109.230.240.0/20"'
CHINA = '"121.8.0.0/13"'
blockList = "{ " $APNIC $RIPE $CHINA " }"

## options
set block-policy return
set skip on lo

## filter rules
block in log quick on $extIf from $blockList
block in log on $extIf
pass in quick on $intIf
pass out
# NATing
pass out on $extIf from 192.168.10.0/24 to any nat-to $natOutIp
# internal services
pass in on $extIf inet proto tcp to $serviceInIp port $dvrWebPubPort
rdr-to $dvrIp port 80
pass in on $extIf inet proto tcp to $serviceInIp port $dvrServicePort
rdr-to $dvrIp
pass in on $extIf inet proto tcp to $serviceInIp port $rdpPort rdr-to
$scannerIp port $rdpPort keep state
pass in on $extIf inet proto tcp to $serviceInIp port $rdpPort2 rdr-to
$pc2Ip port $rdpPort keep state
pass in on $extIf inet proto tcp to $serviceInIp port $rdpPort3 rdr-to
$pc3Ip port $rdpPort keep state
# ssh
pass in on $extIf inet proto tcp to $serviceInIp port ssh

white noise about broken manpage (web) links

2016-05-10 Thread Vivek Vinod 
Dear Misc,

I could not find a separate mailing list for openiked. Hence posting here.

web manpage links appear to be broken on:
1) http://www.openiked.org/
2) http://www.openiked.org/manual.html

The referenced links are
1A) http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd

2A) http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man8/iked.8
2B) http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man5/iked.conf.5
2C) http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man8/ikectl.8

I get a "500 Internal server error... OpenBSD httpd"

Unrelated - I have gotten the same error when clicking links on 3rd
party websites like daemonforums.org

I promise to submit diffs when I am more confident of submitting them.

Please ignore if trivial.

Vivek

Ldapd features list

2016-04-11 Thread Vivek Vinod 
Dear List members,
‎Can someone please point me to where I can get the list of features
supported by ldapd? Also if possible, features not supported by ldapd.
Given the excellent documentation standards of OpenBSD - Am I right in
assuming, whatever is in the manpages for ldapd.conf and ldapd‎...
those might be the only supported features?
I am a bit pedantic about using software from base, hence did not start
using openldap straight off. 
Thanks,Vivek
Sent from my BlackBerry  10 smartphone.

Re: date not respect for 5.8 and 5.9

2016-03-31 Thread Vivek Vinod 
‎OpenBSD is based out of Canada. They run their power stations on renewable
energy.

This climate change is a big threat, though it worked in our favour this time.
Climate change caused heavy winds, which made the wind turbines turn a bit
faster, generating a lot of power. 

Canadian power equipment is also a bit sensitive to sudden spikes in
voltage/amperes. They sometimes discharge a few extra volts and assume nothing
bad will happen to end users equipment.

OpenBSD is compiled on processors (look up cell processors) which run faster
when supplied more power. Hence a few days early as the compilation happened
really fast. 

Regardless, I think it's climate change that we got to worry about more than
an early release date. 

Vivek  

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: Max Power
Sent: Thursday 31 March 2016 14:46
To: misc@openbsd.org
Subject: date not respect for 5.8 and 5.9

Hi guys!
Why the release 5.8 and 5.9 did not comply with the canonical date
of the 1th November and of the 1th May?

Thanks in advance for your reply.

Re: text-mode gui

2015-12-24 Thread Vivek Vinod 
Merry Xmas everyone. I want Santa to take over the project :)

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: Christer Solskogen
Sent: Thursday 24 December 2015 23:45
To: misc
Subject: Re: text-mode gui

On Tue, Dec 22, 2015 at 10:00 PM, Theo de Raadt 
wrote:
>> But I still maintain that putting an option in the installer to create
>> softraid crypto volumes automatically just dumbs down OpenBSD
>> unnecessarily, and encourages people to be lazy instead of learning how
>> to use the system to it's full potential.
>
> It's great that you have an opinion.
>
> Unfortunately it is the wrong opinion.
>

I want to have a opinion too! I want Theo to rewrite the installer in
java. That would fit my needs!

--
chs, using sarcasm.

Re: OpenBSD on Fiber

2015-08-30 Thread Vivek Vinod 
I run a miniscule ISP. Speed tests are flawed. Depends on which ones you are 
running - they basically download a file (typically 2 to 10 MB) and determine 
how much time that took. Then they report the mbps. 

Issues like latency are almost never taken into account when reporting these 
tests. It totally depends on how far your speedtest server is.  Internet is 
much more than just the thickness of your pipe. 

Also, apologies for assuming you don't know‎, but Internet speeds 
(throughput) are in mega bits per second and not mega bytes per second. 

Vivek

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: Patrick‎
Sent: Sunday 30 August 2015 23:39
To: misc@openbsd.org‎
Subject: OpenBSD on Fiber

Hello,

I have a fiber internet connection with 500Mbs download and 500Mbs upload.
I installed a long time ago a firewall with OpenBSD 5.5 with routing and
PF. But after a speedtest the line is stuck at around 200Mbs. Even when i
download a test bin the speed is around 17Mbs. After this experience i had
FreeBSD installed which doing fine with my fiber network. I have tested 5.6
and 5.7 and even 5.8 for testing any improvements in the network speed.
Does anybody now what can cause this problem? Below i have my specs posted:

*Hardware / OS*
HP DL380 G6
vSphere ESXI 6 (Updated to last patches)

*VM*
Virtual Machine 11 (Also tried 8)
Type: Other 32Bit / Other 64Bit And FreeBSD 64bit same results
1 CPU  1 core
4GB

*What i have tried (This all had no results)*
Upgrade the virtual machine hardware.
Forward the network cards from pci slots to the VM
Different ethernet adapters, VMXNET3 is still the best which is getting the
highest speeds.
Add system tweaks in sysctl.conf  disabling PF
Use other versions of OpenBSD 32Bit / 64Bit.

Best Regards,

Patrick

I guess this has never happened before

2014-12-31 Thread Vivek Vinod 
‎Happy new year to the entire OpenBSD team and enthusiasts (newbies
like me included) from India. No sorries for the noise :)
Have a good decade ahead!
Cheers,Vivek
Sent from my BlackBerry 10 smartphone.

Re: Weird executable in /bin/ - i386 snapshots Dec 10

2014-12-24 Thread Vivek Vinod 
I asked the exact same thing elsewhere...

‎http://daemonforums.org/showthread.php?t=8778


Sent from my BlackBerry 10 smartphone.
  Original Message  
From: Otto Moerbeek
Sent: Wednesday 24 December 2014 19:33
To: Adam Wolk
Cc: misc@openbsd.org
Subject: Re: Weird executable in /bin/ - i386 snapshots Dec 10

On Wed, Dec 24, 2014 at 02:55:15PM +0100, Adam Wolk wrote:

 Hi all,
 
 I was doing a cursory look around my i386 laptop installation of OpenBSD
 snapshot from Dec 10 obtained from ftp://ftp.icm.edu.pl/ and noticed an
 unusual executable /bin/[
 
 It has the same timestamp as all other binaries installed with the Dec
 10 snapshot.
 Does anyone know if this is normal and what this binary does or where it
 could came from?

It's not weird and has been in Unix for ages. It's is an alternative
name for test(1). man '[' and google will tell you it's use.

-Otto

 
 $ file /bin/\[ 
 /bin/[: ELF 32-bit LSB executable, Intel 80386, version 1, for OpenBSD,
 statically linked, stripped
 $ 
 
 $ sha256 /bin/\[ 
 SHA256 (/bin/[) =
 c7e1d47560e8d43f3430c2b7a83d92e9df2fc8d60102115b2544b72444d806d5
 
 $ ls -l /bin 
 total 16544
 -r-xr-xr-x 2 root bin 95028 Dec 10 14:57 [
 -r-xr-xr-x 1 root bin 103220 Dec 10 14:57 cat
 -r-xr-xr-x 3 root bin 242484 Dec 10 14:57 chgrp
 -r-xr-xr-x 1 root bin 111412 Dec 10 14:57 chio
 -r-xr-xr-x 3 root bin 242484 Dec 10 14:57 chmod
 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 cksum
 -r-xr-xr-x 1 root bin 119604 Dec 10 14:57 cp
 -r-xr-xr-x 3 root bin 348980 Dec 10 14:57 cpio
 -r-xr-xr-x 1 root bin 373556 Dec 10 14:57 csh
 -r-xr-xr-x 1 root bin 131892 Dec 10 14:57 date
 -r-xr-xr-x 1 root bin 103220 Dec 10 14:57 dd
 -r-xr-xr-x 1 root bin 107316 Dec 10 14:57 df
 -r-xr-xr-x 1 root bin 90932 Dec 10 14:57 domainname
 -r-xr-xr-x 1 root bin 86836 Dec 10 14:57 echo
 -r-xr-xr-x 1 root bin 168756 Dec 10 14:57 ed
 -r-xr-xr-x 2 root bin 271156 Dec 10 14:57 eject
 -r-xr-xr-x 1 root bin 131892 Dec 10 14:57 expr
 -r-xr-xr-x 1 root bin 90932 Dec 10 14:57 hostname
 -r-xr-xr-x 1 root bin 95028 Dec 10 14:57 kill
 -r-xr-xr-x 3 root bin 418612 Dec 10 14:57 ksh
 -r-xr-xr-x 1 root bin 95028 Dec 10 14:57 ln
 -r-xr-xr-x 1 root bin 238388 Dec 10 14:57 ls
 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 md5
 -r-xr-xr-x 1 root bin 103220 Dec 10 14:57 mkdir
 -r-xr-xr-x 2 root bin 271156 Dec 10 14:57 mt
 -r-xr-xr-x 1 root bin 226100 Dec 10 14:57 mv
 -r-xr-xr-x 3 root bin 348980 Dec 10 14:57 pax
 -r-xr-xr-x 1 root bin 262964 Dec 10 14:57 ps
 -r-xr-xr-x 1 root bin 90932 Dec 10 14:57 pwd
 -r-xr-xr-x 3 root bin 418612 Dec 10 14:57 rksh
 -r-xr-xr-x 1 root bin 238388 Dec 10 14:57 rm
 -r-xr-xr-x 1 root bin 99124 Dec 10 14:57 rmdir
 -r-xr-xr-x 3 root bin 418612 Dec 10 14:57 sh
 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 sha1
 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 sha256
 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 sha512
 -r-xr-xr-x 1 root bin 99124 Dec 10 14:57 sleep
 -r-xr-xr-x 1 root bin 140084 Dec 10 14:57 stty
 -r-xr-xr-x 1 root bin 86836 Dec 10 14:57 sync
 -r-xr-xr-x 1 root bin 410420 Dec 10 14:58 systrace
 -r-xr-xr-x 3 root bin 348980 Dec 10 14:57 tar
 -r-xr-xr-x 2 root bin 95028 Dec 10 14:57 test
 
 
 $ strings /bin/\[
 QRP1
 [^_]
 [^]
 [^_]
 |Z;U
 |[^_]
 [^_]
 [^_]
 [^_]
 tB%u
 x ;u
 [^_]
 ,[^_]
 ,[^_]
 ,[^_]
 [^_]
 ,[^_]
 [^_]
 uT@B
 uH@B
 u@B
 u0@B
 u$@B
 [^_]
 [^_]
 [^_]
 [^_]
 [^_]
 t\0
 gfff
 [^_]
 [^_]
 [^_]
 [^_]
 \[^_]
 [^_]
 l[^_]
 $^_]
 [^_]
 [^_]
 P^_]
 P^_]
 0^_]
 `^_]
 L[^_]
 ,[^_]
 [^_]
 [^_]
 [^_]
 [^_]
 [^_]
 [^_]
 ,[^_]
 ,[^_]
 ,[^_]
 [^_]
 t2)u
 [^_]
 v69u
 [^_]
 9G(u
 ,[^_]
 ,[^_]
 ,[^_]
 0[^]
 [^_]
 ,[^_]
 [^_]
 [^_]
 L[^_]
 w
 |[^_]
 L[^_]
 L[^_]
 L[^_]
 L[^_]
 [^_]
 ,[^_]
 f DV
 ,[^_]
 ,[^_]
 [^_]
 [^_]
 f1|H
 f DQ
 [^_]
 [^_]
 [^_]
 [^_]
 [^_]
 P[^_]
 [^_]
 \[^_]
 ,[^_]
 [^_]
 [^_]
 %s: %s
 %s: out of range
 %s: bad number
 argument expected
 closing paren expected
 missing ]
 unknown operand
 getn
 binop
 nexpr
 _errx
 %s: 
 fprintf
 __stack_smash_handler
 stack overflow in function %s
 syslog_r
 __vsyslog_r
 %d
 [%ld]
 Error %d
 /dev/console
 syslog%s: unknown facility/priority: %x
 libc
 Unknown signal: 
 Unknown error: 
 load_msgcat
 _catopen
 NLSPATH
 LC_ALL
 LC_MESSAGES
 LANG
 POSIX
 /usr/share/nls/%L/%N.cat:/usr/share/nls/%l.%c/%N.cat:/usr/share/nls/%l/%N.cat
 Undefined error: 0
 Operation not permitted
 No such file or directory
 No such process
 Interrupted system call
 Input/output error
 Device not configured
 Argument list too long
 Exec format error
 Bad file descriptor
 No child processes
 Resource deadlock avoided
 Cannot allocate memory
 Permission denied
 Bad address
 Block device required
 Device busy
 File exists
 Cross-device link
 Not a directory
 Is a directory
 Invalid argument
 Too many open files in system
 Too many open files
 Text file busy
 File too large
 No space left on device
 Illegal seek
 Read-only file system
 Too many links
 Broken pipe
 Result too large
 Operation now in progress
 Operation already in progress
 Destination address required
 Message too long

Re: OpenBSD embedded? (was: OpenBSD 5.6-current on ASUS Chromebox)

2014-12-03 Thread Vivek Vinod 
Sorry for speaking out of turn and adding a bit of noise. A non-techie mind 
like mine would like to think, why not have a router which can work both as a 
home router and work router?

We have been using Mikrotik routerboards‎ since 7 years and have been very 
happy with those. Wouldn't it be good to take a look at similar boards with 
multiple NICs? Costing ranges from 100 to 200 $

Sent from my BlackBerry 10 smartphone.
  Original Message  
From: Gene
Sent: Wednesday 3 December 2014 23:39
To: Alan McKay
Cc: misc@openbsd.org
Subject: Re: OpenBSD embedded? (was: OpenBSD 5.6-current on ASUS Chromebox)

On Wed, Dec 3, 2014 at 9:49 AM, Alan McKay alan.mc...@gmail.com wrote:

 This is very interesting - I've been looking at various small boxes
 like this to use as a home firewall.
 The only problem is that not many of them have 2 NICs, and the ones
 that do are very expensive (higher end Zotac)

 Does anyone know of a similar device with 2 NICs that might be
 suitable as a home firewall?


Look into the PC Engines ALIX and APU system boards. You can get kits for
under $200, or sometimes for less on eBay.

http://www.pcengines.ch

Great hardware. I have a couple of the ALIX boards. The APU series has
gigabit NICs and a lot more horse power. If you search the mailing list
you'll see several mentions for it.


 What about one of the Open Firmware firewalls like ASUS? Is there an
 OpenBSD load for those? Instead of Tomato or the likes ...


-Gene
(p.s. I'm bad at mailing lists and didn't reply all last time, I apologise
for emailing you twice, Alan).