Re: What is you motivational to use OpenBSD
I'm going to be hated for this But I don't feel like logging into my servers everyday to check if all is well. Some (*BSDs) I've not logged into for years and also forgotten my passwords. With OpenBSD on public IPs, I'm safe(r) than the GNU/Linux (worst offender) or Windows (2nd worst) or FreeBSD (1 incident in 3 years) counterparts. Then again, I feel OpenBSD has made me start to question everything... which has led me to better work choices. Please excuse my brevity - Sent from my mobile Original Message From: mohamed.ahmed.fouad@gmail.com Sent: 28 August 2019 9:34 PM To: mohamed.a.sala...@gmail.com Cc: misc@openbsd.org Subject: Re: What is you motivational to use OpenBSD OpenBSD community is formed around the idea of doing things in a simple but correct manner; the community also rejects all stupid ideas that many others may accept because it is a bit more convenient. That's a good community to learn from. A community that got a good taste for sensible ideas. On Wed, 28 Aug 2019, 11:42 Mohamed salah I wanna put something in discussion, what's your motivational to use > OPENBSD what not other bsd's what not gnu/Linux, if something doesn't work > fine on openbsd and you love this os so much what will do? >
nsd does not stop
Dear Misc, on stopping nsd from command line, nsd does not stop at all Config: OpenBSD 6.3 nsd remote control is disabled nsd ipv6 is disabled $doas rcctl restart nsd (failed) $doas rcctl stop nsd $echo $? 0 $doas rcctl start nsd (failed) $doas tail -f /var/log/nsd.log error: can't bind udp socket: Address already in use error: server initialization failed, nsd could not be started $ps aux | grep nsd shows running processes if I kill the processes, I can start nsd. However, it is just that nsd does not stop if I want it to even $doas /etc/rc.d/nsd stop | restart does not work. What am I doing wrong here? Pooped. Any help would be appreciated. regards, Vivek
cohesive configuration parameters between various OpenBSD systems
Dear Misc, Various parts of OpenBSD base refer to AddressFamily and accepted values are different. Examples listed below. Any reason why we have “inet” in sshd_config and “inet4” in smtpd.conf? I’m assuming OpenSMTPD released after inet6 was in wide(r) use and old programs, utilities, etc. were released when there was no ipv6 around, hence the difference. This is not an important issue, just asking if there are plans to migrate to a common reference. Regards, Vivek $man sshd_config … AddressFamily Specifies which address family should be used by sshd(8). Valid arguments are any (the default), inet (use IPv4 only), or inet6 (use IPv6 only). … $man smtpd.conf … listen on interface [family] [port port] … Specify an interface and optional port to listen on for incoming connections. An interface group, an IP address or a domain name may be used in place of interface. The family parameter can be used to listen only on specific address family. Accepted values are inet4 and inet6. … $man netstat … The following address families are recognized: Address FamilyConstant Description InetAF_INET IP Version 4 inet6 AF_INET6 IP Version 6 …
Re: Community-driven OpenBSD tutorials wiki?
Offtopic - I installed cowsay and erroneously thought there was an error in the manpage. Looked up cowsay in ports and wrote an email to the maintainer. The email bounced back. Who would one email to in such a case? Vivek Original Message From: simplersolut...@gmail.com Sent: 12 April 2018 6:08 AM To: pe...@bsdly.net Cc: misc@openbsd.org Subject: Re: Community-driven OpenBSD tutorials wiki? On Fri, Jan 5, 2018 at 8:26 AM, Peter N. M. Hansteenwrote: > > If you think you don't have the seniority to start submitting patches > when you see a bug (even a typo in a man page or the faq), you're most > likely wrong. Your first efforts will not be perfect of course, but if > you put in the effort and are able to learn from constructive criticism, > it's likely sooner or later you will be adding real value. > This. I once submitted a patch to update THE PUBLIC WEBSITE (I replaced some broken links with archived versions) and it was approved without demur and on the website the next day. If you have a change to make and a patch to implement it, you can shape OpenBSD's future, even if it's just to make sure the website has no broken links. That's what keeps me coming back.
Re: l2tp and openbsd 6.1
I do not understand the question but this may be connected... My Wi-Fi uses AD (LDAP) auth with certificates. I set this up using some "guide" without understanding a thing. My IOS, Android and Mac clients connect without a hitch. Windows 10 do not. To get my windows 10 to work, I have to copy over and install the certificates from a previously connected Mac machine's keychain. In your setup, can you check in your windows 10 certificate store if the necessary certificates (if any) have been installed? If not, try copying the certificates. This is windows 10 behaviour. It may or may not be related to "self signed certificates". Again, I do not understand a thing. Sorry for the noise. Please excuse my brevity. Sent from my handphone. Original Message From: Vijay Sankar Sent: Wednesday 4 October 2017 23:42 To: misc@openbsd.org Subject: Re: l2tp and openbsd 6.1 Quoting Charles Amstutz: > Yes, > > I would like to know this as well, it seems annoying that Android > 8/4.x and IOS can connect, but not windows 10 (I haven't tried > earlier windows 10) and android 7. > > Its either a user error (which I am willing to admit) or something > very annoying. Especially when my l2tp PSK windows server can accept > connections from anything it seems. > > I would like to get this figured out. > > I appreciate all of the suggestions, but I still can't get android 7 > to connect, no matter which encryption, authentication or modp I use. > > -Original Message- > From: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] On > Behalf Of lilit-aibolit > Sent: Wednesday, October 4, 2017 2:46 AM > To: misc@openbsd.org > Cc: Charles Amstutz ; yasu...@yasuoka.net > Subject: Re: l2tp and openbsd 6.1 > > Hi, > with l2tp I have situation when iOS and Android devices could > connect but Windows 7 and Windows 10 couldn't. > > Is it possible to adjust ipsec.conf somehow so it could accept > connection from Windows clients too? > Or is there a way to adjust some settings in Windows so it will work > with current ipsec.conf? > > I also noticed that I have to add pass rule for tun0 to PF explicitly: > - pass on tun0 all > instead of having just: > - set skip on { lo0, tun0 } > > Here is ipsec.conf: > > ike passive esp transport \ > proto udp from a.b.x.y to any port 1701 \ main auth hmac-sha1 enc > aes group modp1024 \ quick auth hmac-sha1 enc aes \ psk "password" > > Here is npppd.conf: > authentication LOCAL type local { > users-file "/etc/npppd/npppd-users" > } > tunnel L2TP protocol l2tp { > listen on x.x.y.y > } > ipcp IPCP { > pool-address 192.168.222.2-192.168.222.254 > dns-servers 192.168.a.b > } > interface tun0 address 192.168.222.1 ipcp IPCP bind tunnel from > L2TP authenticated by LOCAL to tun0 > > Log from Android: > > Oct 2 16:22:39 gw npppd[10826]: l2tpd ctrl=4 logtype=Started > RecvSCCRQ from=192.38.129.182:41634/udp tunnel_id=4/4667 > protocol=1.0 winsize=1 hostname=anonymous vendor=(no vendorname) > firm= Oct 2 16:22:40 gw npppd[10826]: l2tpd ctrl=4 call=7962 > logtype=PPPBind > ppp=3 > Oct 2 16:22:41 gw npppd[10826]: ppp id=3 layer=base > logtype=TUNNELSTART user="xxx" duration=1sec layer2=L2TP > layer2from=192.38.129.182:41634 > auth=MS-CHAP-V2 ip=192.168.222.110 iface=tun0 Oct 2 16:22:41 gw > /bsd: pipex: ppp=3 iface=tun0 protocol=L2TP id=7962 PIPEX is ready. > Oct 2 16:22:41 gw npppd[10826]: ppp id=3 layer=base Using pipex=yes > > Log from IPhone6s: > > Oct 2 16:13:13 gw isakmpd[24211]: attribute_unacceptable: > HASH_ALGORITHM: got SHA2_256, expected SHA Oct 2 16:13:13 gw > isakmpd[24211]: attribute_unacceptable: > GROUP_DESCRIPTION: got MODP_2048, expected MODP_1024 Oct 2 16:13:13 > gw isakmpd[24211]: attribute_unacceptable: > HASH_ALGORITHM: got MD5, expected SHA > Oct 2 16:13:13 gw isakmpd[24211]: attribute_unacceptable: > HASH_ALGORITHM: got SHA2_512, expected SHA Oct 2 16:13:13 gw > isakmpd[24211]: attribute_unacceptable: > HASH_ALGORITHM: got SHA2_256, expected SHA Oct 2 16:13:13 gw > isakmpd[24211]: attribute_unacceptable: > GROUP_DESCRIPTION: got MODP_1536, expected MODP_1024 Oct 2 16:13:13 > gw isakmpd[24211]: attribute_unacceptable: > HASH_ALGORITHM: got MD5, expected SHA > Oct 2 16:13:13 gw isakmpd[24211]: attribute_unacceptable: > HASH_ALGORITHM: got SHA2_256, expected SHA Oct 2 16:13:14 gw > npppd[10826]: l2tpd ctrl=3 logtype=Started RecvSCCRQ > from=192.38.129.182:65367/udp tunnel_id=3/7 protocol=1.0 winsize=4 > hostname=xxx-iPhone vendor=(no vendorname) firm= Oct 2 16:13:14 > gw npppd[10826]: l2tpd ctrl=3 call=11161 logtype=PPPBind > ppp=2 > Oct 2 16:13:18 gw npppd[10826]: ppp id=2 layer=base > logtype=TUNNELSTART user="xxx" duration=4sec layer2=L2TP > layer2from=192.38.129.182:65367 > auth=MS-CHAP-V2 ip=192.168.222.110 iface=tun0 Oct 2 16:13:18 gw > /bsd: pipex: ppp=2 iface=tun0 protocol=L2TP id=11161 PIPEX is ready. > Oct 2 16:13:18
Re: Theo de Raadt and official developers of OpenBSD, please follow the "heart of the letters"!
You know, I can't code. So I've learned to shut the fuck up. Sent from my BlackBerry 10 smartphone. Original Message From: SOUL_OF_ROOT 55 Sent: Friday 16 December 2016 22:42 To: misc@openbsd.org Subject: Theo de Raadt and official developers of OpenBSD, please follow the "heart of the letters"! Theo de Raadt and official developers of OpenBSD, please follow the "heart of the letters"! What is up with some free software providers?! They say "Here's something free! Oh wait, I changed my mind." David Dawes worked for years with a team of developers to make a free X11 distribution for us to use, called XFree86, 98% of which was based on entirely free code from MIT. Suddenly, one day, he decided that we must give him more credit (ie. advertise his name) or stop using it. Within about 4 months every project had told him to get stuffed, and the community has created a replacement effort. Now his team cannot even keep their web pages up to date... OpenBSD was the first operating system to integrate a packet filter, and it was the ipf codebase from Darren Reed that we chose. But a few years later he told us that we were not free to make changes to the code. So we deleted ipf, and our new packet filter far exceeds the capabilities of the one he wrote. And other projects are switching too... The Apache group started from the humble beginnings of just being 'a patchy' set of changes to a completely free web server of dubious quality. But the years have changed them, and what they supply is now quite non-free... released under a license so entangled in legalese that we have absolutely no doubt that there are encumbrances hidden within. Legal terms protect. Who are they protecting? Not your freedom. reference: https://www.openbsd.org/lyrics.html#36 What are the others groups who have made this Free-to-Non-Free transition before and after the existence of OpenBSD?
Re: Why on earth would online voting be insecure?
Apologies for speaking out of turn. Is this an OpenBSD mailing list? Vivek Sent from my BlackBerry 10 smartphone. Original Message From: Joel Wirāmu Pauling Sent: Tuesday 15 November 2016 20:46 To: gwes Cc: misc@openbsd.org Subject: Re: Why on earth would online voting be insecure? On 15 November 2016 at 09:47, gweswrote: > On 11/15/2016 00:55, Joel Wir��mu Pauling wrote: > >> So yes, back to my original point. A Civic's blockchain, one that does not >> rely on the integrity (or rather is resilient to) the system it runs on, >> or >> the security of the transmission media ; as a platform for use in civic's >> - >> needs to exist first. >> >> > Combining two systems entirely separate in concept, implementation, > and space increases the probability of a correct answer. Three > would be better. Using the electronic system as a supplement to > the traditional one could be good as long as it does not compromise > the virtues of the old system. > > The blockchain starts after the votes are entered. Two physically > separate systems composed of entirely different CPUs and peripherals > at the voting place would be good. > > You still haven't addressed the problems of privacy while casting > the vote. > > I think that your concepts for the technical parts of the > system are good. You haven't addressed some serious problems > where your system can be subverted. > > Suggesting weekly votes is a very bad idea. Search science > fiction, for instance, to see very plausible predictions > of voter burnout. > > I think this is no longer a computer systems discussion. > > ���This. Once you start to think about the problem further in terms of distributing the ledger via a public blockchain - as the datastore and mechanism for recording and verification, and that the blockchain exists entirely independently of the systems it runs on you are at least in the right place to start tackling this issue.
Re: pf filter problem: cannot connect to external SMB share from LAN
Sorry... Just couldn't resist this one... you've won so many huge battles, yet need help with pf/ NAT? Sent from my BlackBerry 10 smartphone. Original Message From: William Wallace Sent: Wednesday 10 August 2016 19:34 To: misc@openbsd.org Subject: pf filter problem: cannot connect to external SMB share from LAN I am trying to connect to an SMB share outside of the office. I have confirmed that the share works and others on the Internet can connect to it fine, but connections from within my office do not go through. I am guessing I have something wrong with the office's pf filters or NATing but I cannot identify the problem -- my pf.conf is fairly simple. All machines on the network can get to other services (http, https, rdp, ssh, ... anything, really) but cannot establish an SMB connection. Nothing of interest shows up in the pf log. pf.conf pasted below. Thank you for your time. Sincerely, william ## macros # interfaces intIf = "fxp0" extIf = "fxp1" # inside machines dvrIp = "192.168.10.7" scannerIp = "192.168.10.20" pc2Ip = "192.168.10.21" pc3Ip = "192.168.10.32" # public IPs natOutIp = "single.public.ip.address" serviceInIp = "d.i.tt.o" # internal services rdpPort = "3389" rdpPort2 = "3390" rdpPort3 = "3391" dvrWebPubPort = 82 dvrServicePort = 6036 ## block list APNIC = '"1.0.0.0/8" "43.0.0.0/8"' RIPE = '"31.0.0.0/8" "109.230.240.0/20"' CHINA = '"121.8.0.0/13"' blockList = "{ " $APNIC $RIPE $CHINA " }" ## options set block-policy return set skip on lo ## filter rules block in log quick on $extIf from $blockList block in log on $extIf pass in quick on $intIf pass out # NATing pass out on $extIf from 192.168.10.0/24 to any nat-to $natOutIp # internal services pass in on $extIf inet proto tcp to $serviceInIp port $dvrWebPubPort rdr-to $dvrIp port 80 pass in on $extIf inet proto tcp to $serviceInIp port $dvrServicePort rdr-to $dvrIp pass in on $extIf inet proto tcp to $serviceInIp port $rdpPort rdr-to $scannerIp port $rdpPort keep state pass in on $extIf inet proto tcp to $serviceInIp port $rdpPort2 rdr-to $pc2Ip port $rdpPort keep state pass in on $extIf inet proto tcp to $serviceInIp port $rdpPort3 rdr-to $pc3Ip port $rdpPort keep state # ssh pass in on $extIf inet proto tcp to $serviceInIp port ssh
white noise about broken manpage (web) links
Dear Misc, I could not find a separate mailing list for openiked. Hence posting here. web manpage links appear to be broken on: 1) http://www.openiked.org/ 2) http://www.openiked.org/manual.html The referenced links are 1A) http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd 2A) http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man8/iked.8 2B) http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man5/iked.conf.5 2C) http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man8/ikectl.8 I get a "500 Internal server error... OpenBSD httpd" Unrelated - I have gotten the same error when clicking links on 3rd party websites like daemonforums.org I promise to submit diffs when I am more confident of submitting them. Please ignore if trivial. Vivek
Ldapd features list
Dear List members, âCan someone please point me to where I can get the list of features supported by ldapd? Also if possible, features not supported by ldapd. Given the excellent documentation standards of OpenBSD - Am I right in assuming, whatever is in the manpages for ldapd.conf and ldapdâ... those might be the only supported features? I am a bit pedantic about using software from base, hence did not start using openldap straight off. Thanks,Vivek Sent from my BlackBerry 10 smartphone.
Re: date not respect for 5.8 and 5.9
OpenBSD is based out of Canada. They run their power stations on renewable energy. This climate change is a big threat, though it worked in our favour this time. Climate change caused heavy winds, which made the wind turbines turn a bit faster, generating a lot of power. Canadian power equipment is also a bit sensitive to sudden spikes in voltage/amperes. They sometimes discharge a few extra volts and assume nothing bad will happen to end users equipment. OpenBSD is compiled on processors (look up cell processors) which run faster when supplied more power. Hence a few days early as the compilation happened really fast. Regardless, I think it's climate change that we got to worry about more than an early release date. Vivek Sent from my BlackBerry 10 smartphone. Original Message From: Max Power Sent: Thursday 31 March 2016 14:46 To: misc@openbsd.org Subject: date not respect for 5.8 and 5.9 Hi guys! Why the release 5.8 and 5.9 did not comply with the canonical date of the 1th November and of the 1th May? Thanks in advance for your reply.
Re: text-mode gui
Merry Xmas everyone. I want Santa to take over the project :) Sent from my BlackBerry 10 smartphone. Original Message From: Christer Solskogen Sent: Thursday 24 December 2015 23:45 To: misc Subject: Re: text-mode gui On Tue, Dec 22, 2015 at 10:00 PM, Theo de Raadtwrote: >> But I still maintain that putting an option in the installer to create >> softraid crypto volumes automatically just dumbs down OpenBSD >> unnecessarily, and encourages people to be lazy instead of learning how >> to use the system to it's full potential. > > It's great that you have an opinion. > > Unfortunately it is the wrong opinion. > I want to have a opinion too! I want Theo to rewrite the installer in java. That would fit my needs! -- chs, using sarcasm.
Re: OpenBSD on Fiber
I run a miniscule ISP. Speed tests are flawed. Depends on which ones you are running - they basically download a file (typically 2 to 10 MB) and determine how much time that took. Then they report the mbps. Issues like latency are almost never taken into account when reporting these tests. It totally depends on how far your speedtest server is. Internet is much more than just the thickness of your pipe. Also, apologies for assuming you don't know, but Internet speeds (throughput) are in mega bits per second and not mega bytes per second. Vivek Sent from my BlackBerry 10 smartphone. Original Message From: Patrick Sent: Sunday 30 August 2015 23:39 To: misc@openbsd.org Subject: OpenBSD on Fiber Hello, I have a fiber internet connection with 500Mbs download and 500Mbs upload. I installed a long time ago a firewall with OpenBSD 5.5 with routing and PF. But after a speedtest the line is stuck at around 200Mbs. Even when i download a test bin the speed is around 17Mbs. After this experience i had FreeBSD installed which doing fine with my fiber network. I have tested 5.6 and 5.7 and even 5.8 for testing any improvements in the network speed. Does anybody now what can cause this problem? Below i have my specs posted: *Hardware / OS* HP DL380 G6 vSphere ESXI 6 (Updated to last patches) *VM* Virtual Machine 11 (Also tried 8) Type: Other 32Bit / Other 64Bit And FreeBSD 64bit same results 1 CPU 1 core 4GB *What i have tried (This all had no results)* Upgrade the virtual machine hardware. Forward the network cards from pci slots to the VM Different ethernet adapters, VMXNET3 is still the best which is getting the highest speeds. Add system tweaks in sysctl.conf disabling PF Use other versions of OpenBSD 32Bit / 64Bit. Best Regards, Patrick
I guess this has never happened before
âHappy new year to the entire OpenBSD team and enthusiasts (newbies like me included) from India. No sorries for the noise :) Have a good decade ahead! Cheers,Vivek Sent from my BlackBerry 10 smartphone.
Re: Weird executable in /bin/ - i386 snapshots Dec 10
I asked the exact same thing elsewhere... http://daemonforums.org/showthread.php?t=8778 Sent from my BlackBerry 10 smartphone. Original Message From: Otto Moerbeek Sent: Wednesday 24 December 2014 19:33 To: Adam Wolk Cc: misc@openbsd.org Subject: Re: Weird executable in /bin/ - i386 snapshots Dec 10 On Wed, Dec 24, 2014 at 02:55:15PM +0100, Adam Wolk wrote: Hi all, I was doing a cursory look around my i386 laptop installation of OpenBSD snapshot from Dec 10 obtained from ftp://ftp.icm.edu.pl/ and noticed an unusual executable /bin/[ It has the same timestamp as all other binaries installed with the Dec 10 snapshot. Does anyone know if this is normal and what this binary does or where it could came from? It's not weird and has been in Unix for ages. It's is an alternative name for test(1). man '[' and google will tell you it's use. -Otto $ file /bin/\[ /bin/[: ELF 32-bit LSB executable, Intel 80386, version 1, for OpenBSD, statically linked, stripped $ $ sha256 /bin/\[ SHA256 (/bin/[) = c7e1d47560e8d43f3430c2b7a83d92e9df2fc8d60102115b2544b72444d806d5 $ ls -l /bin total 16544 -r-xr-xr-x 2 root bin 95028 Dec 10 14:57 [ -r-xr-xr-x 1 root bin 103220 Dec 10 14:57 cat -r-xr-xr-x 3 root bin 242484 Dec 10 14:57 chgrp -r-xr-xr-x 1 root bin 111412 Dec 10 14:57 chio -r-xr-xr-x 3 root bin 242484 Dec 10 14:57 chmod -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 cksum -r-xr-xr-x 1 root bin 119604 Dec 10 14:57 cp -r-xr-xr-x 3 root bin 348980 Dec 10 14:57 cpio -r-xr-xr-x 1 root bin 373556 Dec 10 14:57 csh -r-xr-xr-x 1 root bin 131892 Dec 10 14:57 date -r-xr-xr-x 1 root bin 103220 Dec 10 14:57 dd -r-xr-xr-x 1 root bin 107316 Dec 10 14:57 df -r-xr-xr-x 1 root bin 90932 Dec 10 14:57 domainname -r-xr-xr-x 1 root bin 86836 Dec 10 14:57 echo -r-xr-xr-x 1 root bin 168756 Dec 10 14:57 ed -r-xr-xr-x 2 root bin 271156 Dec 10 14:57 eject -r-xr-xr-x 1 root bin 131892 Dec 10 14:57 expr -r-xr-xr-x 1 root bin 90932 Dec 10 14:57 hostname -r-xr-xr-x 1 root bin 95028 Dec 10 14:57 kill -r-xr-xr-x 3 root bin 418612 Dec 10 14:57 ksh -r-xr-xr-x 1 root bin 95028 Dec 10 14:57 ln -r-xr-xr-x 1 root bin 238388 Dec 10 14:57 ls -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 md5 -r-xr-xr-x 1 root bin 103220 Dec 10 14:57 mkdir -r-xr-xr-x 2 root bin 271156 Dec 10 14:57 mt -r-xr-xr-x 1 root bin 226100 Dec 10 14:57 mv -r-xr-xr-x 3 root bin 348980 Dec 10 14:57 pax -r-xr-xr-x 1 root bin 262964 Dec 10 14:57 ps -r-xr-xr-x 1 root bin 90932 Dec 10 14:57 pwd -r-xr-xr-x 3 root bin 418612 Dec 10 14:57 rksh -r-xr-xr-x 1 root bin 238388 Dec 10 14:57 rm -r-xr-xr-x 1 root bin 99124 Dec 10 14:57 rmdir -r-xr-xr-x 3 root bin 418612 Dec 10 14:57 sh -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 sha1 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 sha256 -r-xr-xr-x 5 root bin 144180 Dec 10 14:57 sha512 -r-xr-xr-x 1 root bin 99124 Dec 10 14:57 sleep -r-xr-xr-x 1 root bin 140084 Dec 10 14:57 stty -r-xr-xr-x 1 root bin 86836 Dec 10 14:57 sync -r-xr-xr-x 1 root bin 410420 Dec 10 14:58 systrace -r-xr-xr-x 3 root bin 348980 Dec 10 14:57 tar -r-xr-xr-x 2 root bin 95028 Dec 10 14:57 test $ strings /bin/\[ QRP1 [^_] [^] [^_] |Z;U |[^_] [^_] [^_] [^_] tB%u x ;u [^_] ,[^_] ,[^_] ,[^_] [^_] ,[^_] [^_] uT@B uH@B u@B u0@B u$@B [^_] [^_] [^_] [^_] [^_] t\0 gfff [^_] [^_] [^_] [^_] \[^_] [^_] l[^_] $^_] [^_] [^_] P^_] P^_] 0^_] `^_] L[^_] ,[^_] [^_] [^_] [^_] [^_] [^_] [^_] ,[^_] ,[^_] ,[^_] [^_] t2)u [^_] v69u [^_] 9G(u ,[^_] ,[^_] ,[^_] 0[^] [^_] ,[^_] [^_] [^_] L[^_] w |[^_] L[^_] L[^_] L[^_] L[^_] [^_] ,[^_] f DV ,[^_] ,[^_] [^_] [^_] f1|H f DQ [^_] [^_] [^_] [^_] [^_] P[^_] [^_] \[^_] ,[^_] [^_] [^_] %s: %s %s: out of range %s: bad number argument expected closing paren expected missing ] unknown operand getn binop nexpr _errx %s: fprintf __stack_smash_handler stack overflow in function %s syslog_r __vsyslog_r %d [%ld] Error %d /dev/console syslog%s: unknown facility/priority: %x libc Unknown signal: Unknown error: load_msgcat _catopen NLSPATH LC_ALL LC_MESSAGES LANG POSIX /usr/share/nls/%L/%N.cat:/usr/share/nls/%l.%c/%N.cat:/usr/share/nls/%l/%N.cat Undefined error: 0 Operation not permitted No such file or directory No such process Interrupted system call Input/output error Device not configured Argument list too long Exec format error Bad file descriptor No child processes Resource deadlock avoided Cannot allocate memory Permission denied Bad address Block device required Device busy File exists Cross-device link Not a directory Is a directory Invalid argument Too many open files in system Too many open files Text file busy File too large No space left on device Illegal seek Read-only file system Too many links Broken pipe Result too large Operation now in progress Operation already in progress Destination address required Message too long
Re: OpenBSD embedded? (was: OpenBSD 5.6-current on ASUS Chromebox)
Sorry for speaking out of turn and adding a bit of noise. A non-techie mind like mine would like to think, why not have a router which can work both as a home router and work router? We have been using Mikrotik routerboards since 7 years and have been very happy with those. Wouldn't it be good to take a look at similar boards with multiple NICs? Costing ranges from 100 to 200 $ Sent from my BlackBerry 10 smartphone. Original Message From: Gene Sent: Wednesday 3 December 2014 23:39 To: Alan McKay Cc: misc@openbsd.org Subject: Re: OpenBSD embedded? (was: OpenBSD 5.6-current on ASUS Chromebox) On Wed, Dec 3, 2014 at 9:49 AM, Alan McKay alan.mc...@gmail.com wrote: This is very interesting - I've been looking at various small boxes like this to use as a home firewall. The only problem is that not many of them have 2 NICs, and the ones that do are very expensive (higher end Zotac) Does anyone know of a similar device with 2 NICs that might be suitable as a home firewall? Look into the PC Engines ALIX and APU system boards. You can get kits for under $200, or sometimes for less on eBay. http://www.pcengines.ch Great hardware. I have a couple of the ALIX boards. The APU series has gigabit NICs and a lot more horse power. If you search the mailing list you'll see several mentions for it. What about one of the Open Firmware firewalls like ASUS? Is there an OpenBSD load for those? Instead of Tomato or the likes ... -Gene (p.s. I'm bad at mailing lists and didn't reply all last time, I apologise for emailing you twice, Alan).