Rene Rivera wrote:
Are there docs on how a symlink in a chroot should work? I'd gladly RTFM
:-)
I should say I discounted doing the symlink in the other direction which
would obviously work, as that would move my configuration files from
/export to /var/named. Which would prevent them from
On Wednesday 29 June 2005 21.23, [EMAIL PROTECTED] wrote:
Hi!
After switching from OpenBSD 3.1 (with Intel fxp0) to OpenBSD 3.5 (with
OpenBSD 3.5 is EOL (see link below) which means you can't expect support
for
it.
The latest release is available at ftp://ftp.su.se/pub/OpenBSD/3.7/i386/
Hi all,
I have established two vpns with an openbsd box. One site-to-site and
another to ipsec roadwarrior clients (openswan with linux). But i have
problem with windows xp clients. I have configured isakmpd to
authenticate with ufqdn and clients use an virtual ip address (to
apply security
Hi all.
i've configured an old pentium III with OpenBSD 3.7 like this:
x.y.z.240/29 --rl1|gateway|rl0 --x.y.z.248/29
|
rl2
/etc/hostname.rl0
up
/etc/hostname.rl1
up
/etc/hostname.rl2
inet 192.168.1.1 255.255.255.0 NONE
Hi,
I am running OpenBSD 3.7-stable, pretty standard install, spamd
greylisting, httpd, sendmail. Going over my log files, I have noticed
that I am more and more coming under attach with dictionary based login
attempts to the SSH port.
I tried to search the mail list, but I can't seem to
Hi Steve,
I am running OpenBSD 3.7-stable, pretty standard install, spamd
greylisting, httpd, sendmail. Going over my log files, I have
noticed that I am more and more coming under attach with dictionary
based login attempts to the SSH port.
I don't know if this still holds true, but some
El jue, 30-06-2005 a las 09:38 +0200, rinsan@ escribis:
On Wednesday 29 June 2005 21.23, rinsan@ wrote:
Hi!
After switching from OpenBSD 3.1 (with Intel fxp0) to OpenBSD 3.5 (with
OpenBSD 3.5 is EOL (see link below) which means you can't expect support
for
it.
The latest release
On 6/30/05, Nico Meijer [EMAIL PROTECTED] wrote:
Be careful not to lock yourself out... Nico
To that end, I normally use a table with addresses I usually connect
from in combination with a pass-quick rule before any blocking rules
for SSH connections. Using rsync for synchronising those table
You can always patch your sshd with Timelox patch by brian
http://www.ethernet.org/~brian
Running well och production servers.
On Thursday 30 June 2005 10:11, you wrote:
Hi,
I am running OpenBSD 3.7-stable, pretty standard install, spamd
greylisting, httpd, sendmail. Going over my log
On Tue, Jun 28, 2005 at 06:21:03PM +0100, Stephen Marley wrote:
Firstly, I have no problems starting kdm from the command line or
starting xdm from /etc/rc. However, if I start kdm from /etc/rc.local it
won't take any keyboard input and I don't get text when I attempt switch
virtual consoles
Steve Williams ([EMAIL PROTECTED]) dixit:
Is there any way to block/limit the number of connections to a port in a
given time period? I was getting around 5 connects per second from the
same IP/PORT (in Hungary :-( ).
I can't think how this would work... unless there was a generic
At this point...I'm suspicious you found a nasty bug in the SCSI driver
for that card, but a (set??) of really bad cables might explain it, too.
Yes, I have seen piles of parts were every single one was bad in a similar
way... Could also be a very bad jumper option on the drives, too.
Check
Daniel Ouellet wrote:
The goal: Only allow PDF upload to that directory with the ftp client
and also no possibility to rename the files to .php for example.
...
Allow, delete, replace, upload of *.pdf ONLY via ftpd for the reason above?
First, ftpd isn't responsible for sftp - you are
Date: Thu, 30 Jun 2005 11:05:43 +0200
From: Nico Meijer [EMAIL PROTECTED]
To: Steve Williams [EMAIL PROTECTED]
Cc: misc@openbsd.org
Subject: Re: Blocking many accesses to ssh port from single IP
I am running OpenBSD 3.7-stable, pretty standard install, spamd
greylisting, httpd, sendmail.
On Wed, Jun 29, 2005 at 02:08:15PM -0700, Brian wrote:
I just read the interview at:
http://mongers.org/openbsd/interview-espie-ports
And one thing that jumped out at me was:
The perl modules are there so that someone could write some cool tools
directly.
Now, I just started to learn
Alexander von Gernler wrote:
I'm going to buy Acer TravelMate 2313 notebook
[skip]
The normal place to look for things like this would be [1].
[1] http://www.openbsd.org/i386-laptop.html
Thanks. So i have a chance to be the first :)
--
%cat ~/doc/personal.txt
mailto: [EMAIL PROTECTED]
snip
Tonight I got 800+ attempts from the same IP. I played with manually
blocking the IP, but it was over before I got the firewall rules written
and looked over them twice.
Is there any way to block/limit the number of connections to a port in a
given time period? I was getting around 5
It is with great sorrow I must report that the Linksys EG1032 cards as of
revision 3 no longer features the SySKonnect (sk) chips.
I bought 2 of them, they turned out to be revision 2 (SySKonnect), as per
the hardware section on www.openbsd.org http://www.openbsd.org (should
probably be updated,
* Steve Williams [EMAIL PROTECTED] [050630 05:03]:
Hi,
I am running OpenBSD 3.7-stable, pretty standard install, spamd
greylisting, httpd, sendmail. Going over my log files, I have noticed
that I am more and more coming under attach with dictionary based login
attempts to the SSH port.
Otto Moerbeek wrote:
On Wed, 29 Jun 2005, [iso-8859-15] Josi M. [iso-8859-15] Fandiqo wrote:
I'm trying to install OpenBSD in three servers with
identical hardware and I was able to install it in two
of them but not in the third.
Each server detects a diferent geometry for the SCSI
Nick Holland wrote:
Each server detects a diferent geometry for the SCSI
disks :-?
server1 - geometry: 817199/87/1 [71096313 Sectors]
server2 - geometry: 2843852/25/1 [71096300 Sectors]
server3 - geometry: 4425/255/63 [71087625 Sectors]
dmesg, fdisk and disklabel:
What is the equivalent for route flush -encap under openbsd 3.7 ?
Manon
[demime 1.01d removed an attachment of type application/pgp-signature]
Are you sure you wiped all RAID meta data of the disks?
Did you reuse a disk that was part of a RAID set by any chance?
Go to the card BIOS and wipe all RAID sets; that might just fix your
problem.
RAID volumes will work; just super slow.
On Jun 30, 2005, at 7:01 AM, Josi M. Fandiqo wrote:
The ipsecadm flush -esp does not work, the esp SA are removed but the SPD
(Flows) are kept.
ipsecadm flush removes everything but this is not good because it removes
tcpmd5 sigs
as well and breaks bgpd.
I cann not find anything to spcificly remove the SPD (Flows ) or the ESP SA
and the flows.
Hi all,
I've already made this question, but the answers I had were not clear for me, so
I'm asking it in a different way.
Let's suppose I have a compiled kernel for my machine. It's okay, and my machine
is running normally. But suddenly I find out that I need the kernfs support.
What should I
In message [EMAIL PROTECTED]
so spake Dan Brosemer (odin):
I've been trying to make a forking daemon in Perl with little success. The
whole daemon terminates as soon as the first child terminates.
This exact same code performs as I'd expect (ie perfectly) on other
platforms (even
I bet accept() is getting EINTR. Try checking for that and restarting
the loop in that case.
Here's the relevant bits from perlipc(1)
Restartable system calls
On systems that supported it, older versions of Perl
used the SA_RESTART flag when installing %SIG han-
man ipsecadm(8): ipsecadm flow -delete ...
On Thu, Jun 30, 2005 at 03:00:16PM +0200, Manon Goo wrote:
The ipsecadm flush -esp does not work, the esp SA are removed but the SPD
(Flows) are kept.
ipsecadm flush removes everything but this is not good because it removes
tcpmd5 sigs
as well
On 6/30/05, Joco Salvatti [EMAIL PROTECTED] wrote:
But suddenly I find out that I need the kernfs support.
What should I do to load this as a kernel module?
Why are you making it so hard on yourself? The instructions to
recompile a kernel are listed in the FAQ. If you're going another way
than
is there any convinent way to transform the output of netstat -nr -f encap
into the delete syntax ?
Manon
--On 30. Juni 2005 15:35:50 +0200 Hans-Joerg Hoexer
[EMAIL PROTECTED] wrote:
man ipsecadm(8): ipsecadm flow -delete ...
On Thu, Jun 30, 2005 at 03:00:16PM +0200, Manon Goo wrote:
The
On Sunday 26 June 2005 06:44 am, you wrote:
The problem is that lynx is helpful and will automatically
uncompress files for you. B If you don't tell CPAN to use lynx it
should work fine.
B - todd
This does not appear to be true --
see my posting from 6/18/05
using only wget (lynx disabled
In message [EMAIL PROTECTED]
so spake WR (gen2):
This does not appear to be true --
see my posting from 6/18/05
using only wget (lynx disabled in the mcpan conf), I get the same error
Then I have no idea what the problem is. Cpan works for me out of
the box and uses Net::FTP (not
From: j knight [mailto:[EMAIL PROTECTED]
--- Quoting Spruell, Darren-Perot on 2005/06/29 at 11:16 -0700:
How does a firewall configured to NAT connections for the outside
interface on a given IP to an IP address behind the firewall handle
the ARP replies for those addresses to the
Op donderdag 30 juni 2005 03:46, schreef Gustavo Rios:
I have installed my box the way it does not boot. I am sending here my
disk layout.
You may ask how did i obtained that:
I could boot from cdrom into my installation, like in:
boot hd0a:/bsd
And it rocks, evreything thing went ok.
Johan P. Lindstrvm [EMAIL PROTECTED] wrote:
It is with great sorrow I must report that the Linksys EG1032 cards as
of revision 3 no longer features the SySKonnect (sk) chips.
I bought 2 of them, they turned out to be revision 2 (SySKonnect), as
per
the hardware section on www.openbsd.org
Could not realize it, sorry.
I had to mark obsd one to try to boot, but i could not in the second setup.
So to come back to windows i had to mark partition 0 as bootable.
On 6/30/05, Renzo Fabriek [EMAIL PROTECTED] wrote:
Op donderdag 30 juni 2005 03:46, schreef Gustavo Rios:
I have
Come on, seriously. Do you expect any type of useful help with a plea
that consists of:
Things stopped working!
Some important network info (which I won't include) didn't seem to
show anything wrong!
help!
Do YOU think you could help someone that gave you so little information?
You even mention a
Jason,
Uh...your inexperience is showing. :) The title of the post is DOS
attacks? My question was, Has anyone heard anything about any worms or
DOS attacks happening which might account for this?
Of course I expect useful information such as confirmation that someone else
is experiencing
--On 30 June 2005 17:36 +0200, Martin Reindl wrote:
Johan P. Lindstrvm [EMAIL PROTECTED] wrote:
It is with great sorrow I must report that the Linksys EG1032 cards
as of revision 3 no longer features the SySKonnect (sk) chips. I
bought 2 of them, they turned out to be revision 2
On Jun 28 at 22:46, Kenneth R Westerback spoke:
On Tue, Jun 28, 2005 at 11:36:51PM +0200, Hanspeter Roth wrote:
Hello,
I'm running OpenBSD 3.7 with a Netgear WG511T wireless network
adapter which appears as ath0.
ath0 at cardbus0 dev 0 function 0 Atheros Communications, Inc.,
At 2:11 AM -0600 6/30/05, Steve Williams wrote:
Tonight I got 800+ attempts from the same IP. I played with
manually blocking the IP, but it was over before I got the
firewall rules written and looked over them twice.
Is there any way to block/limit the number of connections to a
port in a
Garance A Drosihn wrote:
At 2:11 AM -0600 6/30/05, Steve Williams wrote:
Tonight I got 800+ attempts from the same IP. I played with
manually blocking the IP, but it was over before I got the
firewall rules written and looked over them twice.
Is there any way to block/limit the number of
Hi!
I'm currently struggeling with the kernel pppoe
implementation. I'm currently on 3.7-current, and my
ADSL modem is connected to a realtek device rl1.
hostname.pppoe0 is the same as the example in the
man-page of pppoe apart from the username/password.
After the ISP drops the line, this
On Thu, 2005-06-30 at 11:07:40 -0500, Dave Beckstrom proclaimed...
Hi everyone,
I've been using a cron file (shown below) for some years and it references
the atrun command. It appears that the atrun command no longer exists as
the man pages no longer reference it.
Uh, did you think of
Hey.
After 2 days trying to get obsd stupidly starting i am failing miserable.
The screen is the following:
Using drive 0, partition 1
Loading
ERR R
I am this type of error has been document. Of course documentation has
hidden some thing i paying a high price to learn.
I remenber i have faced
On Thu, 2005-06-30 at 12:24:46 -0500, Dave Beckstrom proclaimed...
Jason,
Uh...your inexperience is showing. :) The title of the post is DOS
attacks? My question was, Has anyone heard anything about any worms or
DOS attacks happening which might account for this?
Of course I expect
Hi there,
I have a suggestion. How about a dhsyncd protocol/daemon? I mean
something like sasync/pfsync that implements dhcp balance, takeover
and lease distribution based on the geo location? So with this, one
can build a fully redundant dhcp server on different sites connected
by a bridge. On a
Hello, Willy.
Is there any chance of (work going on) implementing chroot in sshd?
(At least when using only sftp).
Like the ChRootGroups and ChRootUsers in ssh2 (sshd2_config).
(Because I prefer using the sshd in base).
SFTP chroot support is easy but with a possible security flaw:
Apply
On 6/30/05, Dave Beckstrom [EMAIL PROTECTED] wrote:
Jason,
Uh...your inexperience is showing. :) The title of the post is DOS
My inexperience is showing? Bad assumption on your part.
attacks? My question was, Has anyone heard anything about any worms or
DOS attacks happening which might
At 1:48 PM -0400 6/30/05, Roy Morris wrote:
As to the speed of connections, I've been meaning to check into
the idea that every ssh session would see some short delay
(maybe 1/2 of a second). Something where syslog would see any
failure message immediately, but the incoming connection would
Eric,
I haven't posted that information because we haven't ascertained yet that
the problem lies with my system.
The first rule of troubleshooting, when something has worked flawlessly for
a long time, is to ask yourself what changed? My system ran a year
without a hiccup. Suddenly this
Hi all,
I installed OpenBSD and it didn't install the ports (/usr/ports) by
default.
Do I need to create a supfile and do a cvsup to get the ports tree? If
so, how can I install cvsup intiially?
Thanks!
-Matt
On Thu, 2005-06-30 at 13:32:04 -0500, Dave Beckstrom proclaimed...
Make sense?
Yes. It makes sense that you've wasted our time. But I think I found the
problem: you.
If everyone else is good and there are no bulletins or similar problems
happening elsewhere and the problem starts looking
On 6/30/05, Dave Beckstrom [EMAIL PROTECTED] wrote:
Eric,
I haven't posted that information because we haven't ascertained yet that
the problem lies with my system.
Well considering that this doesn't appear to be happening to ANYONE
ELSE, I'd say that's good enough reason for you to AT LEAST
If you're really interested in discovering the cause then you'd
refrain from wasting time justifying your troubleshooting approach and
start providing useful information. As Jason said, it could be
anything, even a DOS attack, but without info no one is going to be
able to help even if it is a
On Thu, 2005-06-30 at 15:15:45 -0400, Matt Juszczak proclaimed...
I installed OpenBSD and it didn't install the ports (/usr/ports) by
default.
Do I need to create a supfile and do a cvsup to get the ports tree? If
so, how can I install cvsup intiially?
You can start by reading the FAQ
http://openbsd.org/ports.html
Read that, it explains everything, but basically:
If you have a CD set, there is a file called ports.tar.gz on the 3rd
CD. Go into /usr and extract it. After that, update it via CVS (which
is explained on the ports.html webpage, or anoncvs.html web page) to
the stable
I have a rather slow (188 MHz) system I'm running OpenBSD on, but there is one
thing that's bugging me (well, ok, maybe more, but this one is the most
PITA ;P) - building READMEs in the ports tree takes 8 hours, and recently the
box started rebooting during that process (my guess is it's
Hi all,
Probably supported by re(4), send a dmesg.
They don't handle jumbo frames quite as well as sk, though...
The EG1032 have served me perfectly so far, but I'm not going to switch
to a RealTek chipset.
How decent is the vge(4) compared to the sk chipset? Anyone care to
comment on
Eric,
Actually, I posed a great question for a misc list whereas you on the
other hand are wasting everyone's time including mine. If you successfully
make it through puberty let's talk again in a few years... I have a hunch
you might be the next Darwin award winner. LOL
-Original
On Thu, 2005-06-30 at 14:45:47 -0500, Dave Beckstrom proclaimed...
Actually, I posed a great question for a misc list whereas you on the
other hand are wasting everyone's time including mine. If you successfully
make it through puberty let's talk again in a few years... I have a hunch
you
Greg,
I believe the problem has already been solved thanks to some help from a
gentleman who sent me some information privately.
I won't know for certain for a day or two but I am optimistic.
I want to thank the people who responded with some suggestions for debugging
and things to try.
I'm
Hi,
I recently posted to this list inquiring how to successfully
initialize the Xorg server on a Mac Mini (With an LCD monitor through
DVI) running OpenBSD 3.7. Now, I need to know how to stop it. ;-P
I've tried reboot as root, and the Exit menu command in the FVWM
menu, and I get the same
Also check out sec, http://www.estpak.ee/~risto/sec/, it could help
with such (and more difficult as well) tasks.
Regards
Petr R.
Many people have noticed similar problems on their machines, and
there are a few more tools to react to the attacks:
On Thu, Jun 30, 2005 at 03:26:40PM -0500, Dave Beckstrom wrote:
Greg,
I believe the problem has already been solved thanks to some help from a
gentleman who sent me some information privately.
I won't know for certain for a day or two but I am optimistic.
I want to thank the people
... i would be the happiest man in the world!
I am going crazy. It simply does not boot directly from the partition
when i spare too many of them.
If someone could, please guys, help me i would send you some bears.
With the following set up everything works ok:
fdisk:
Disk: wd0
That line generated an atrun not found error message. I assume that means
that line needs to be modified to work with at. If so, what should it look
like?
-Original Message-
From: Hugo Villeneuve [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 30, 2005 4:04 PM
To: Dave Beckstrom
Actually, I posed a great question for a misc list whereas you on the
other hand are wasting everyone's time including mine. If you
successfully
make it through puberty let's talk again in a few years... I have a
hunch
you might be the next Darwin award winner. LOL
I know your
On 6/30/05, Dave Beckstrom [EMAIL PROTECTED] wrote:
Eric,
Actually, I posed a great question for a misc list whereas you on the
other hand are wasting everyone's time including mine. If you successfully
make it through puberty let's talk again in a few years... I have a hunch
you might be
Hello guys,
i know any adapter from the supported hardware page SHOULD WORK. But does
anybody have one up and running with their 4501 soekris kit and 3.7?
Is the 5354 MP ARIES2 4G mini PCI Card from netgate for sure working in OPENBSD
now? I kinda like it because I can order pigtails and
Jonathan Weiss wrote:
Cheers,
I have a Problem with a WRAP board (dmesg attached) and a MiniPCI WLAN card.
The card is a Wistron CM9. My /etc/hostname.ath0 looks like this:
#cat /etc/hostname.ath
inet 192.168.1.1 255.255.255.0 NONE media autoselect \
mediaopt hostap nwid wrap chan 11
Dave Beckstrom wrote:
some non factual stuff/
http://marc.theaimsgroup.com/?a=10612485211r=1w=2
makes a dull read. OpenBSD is an excellent Operating System, and misc@
provides lots of valuable support and information.
Intelligence shows the ability to learn from your mistakes. If that
On Thu, 2005-06-30 at 16:14:43 -0500, Dave Beckstrom proclaimed...
That line generated an atrun not found error message. I assume that means
that line needs to be modified to work with at. If so, what should it look
like?
Use this:
* * * * * /bin/rm -rf /
On Thu, 2005-06-30 at 15:46:21 -0500, Dave Beckstrom proclaimed...
I just don't put up with the attitude rampant on this list. I'll talk
respectfully with anyone who does the same with me but the read the manual
script kiddies can go pound sand...
As I mentioned privately, fuck off.
I
On Thu, Jun 30, 2005 at 09:53:24PM +0200, Nico Meijer wrote:
Hi all,
Probably supported by re(4), send a dmesg.
They don't handle jumbo frames quite as well as sk, though...
The EG1032 have served me perfectly so far, but I'm not going to switch
to a RealTek chipset.
How decent
Making, drinking tea and reading an opus magnum from Dave Beckstrom:
That line generated an atrun not found error message. I assume that means
that line needs to be modified to work with at. If so, what should it look
like?
there is no atrun anymore. cron does it...
-Original
Abe Carranza wrote:
Hello guys,
i know any adapter from the supported hardware page SHOULD WORK. But does
anybody have one up and running with their 4501 soekris kit and 3.7?
Is the 5354 MP ARIES2 4G mini PCI Card from netgate for sure working in OPENBSD
now? I kinda like it because I can
Dnia czwartek 30 czerwca 2005 18:17, Dave Beckstrom napisa3:
[cut]
Well, better stop pissing off people here :) and try
security-basics@securityfocus.com mailinglist or some other similar, if you
are asking for new worms etc. Your problem doesn't seem to be openbsd-related
as you thought it
What is really getting my nuts is the fact it is working with one
layout and with another it does not work.
Now to get things even funnier.
Remenber that configuration layout that worked for just a single partition (a).
That one worked with a fragment size of 2k and a block size of 16K.
Now i
Hey everybody.
I would like to let you know i have fixed it.
Now i have the disklabel layout i want.
I managed to get it working because instead of using 512/4K
fragment/block size (using disklabel into expert mode) i tried with
1K/8K for the a partition.
Now it works. Although i have no ideia
Hi all,
Has anyone installed sguil on OpenBSD? I hear ACID development has
stopped so it would be an opportune time to switch to sguil. If anyone
can point me in the right direction of an install-and-configure guide
specifically for openbsd, that would great. I'm running OpenBSD
3.7-current. I
On 6/30/05, Martin Reindl [EMAIL PROTECTED] wrote:
Johan P. Lindstrvm [EMAIL PROTECTED] wrote:
It is with great sorrow I must report that the Linksys EG1032 cards as
of revision 3 no longer features the SySKonnect (sk) chips.
I bought 2 of them, they turned out to be revision 2
In message [EMAIL PROTECTED]
so spake Dave Beckstrom (dbeck):
I've been using a cron file (shown below) for some years and it references
the atrun command. It appears that the atrun command no longer exists as
the man pages no longer reference it.
Is there a replacement for the
I have some DL140's running OpenBSD. The BIOS redirection stops working when
OpenBSD starts booting. Kinda sucks since you can't see the boot sequence or
go into the BIOS setup from a serial console. Disable the BIOS console
redirection and set OpenBSD to redirect the console to com0.
Just guessing, but it looks like you are at the very fringe of what BIOS
can and cannot access. Insignificant differences have large consequences,
just like a few inches near the edge of a cliff. If so, any recompile of
the kernel would be unbootable.
-Original Message-
From: [EMAIL
Did you try pressing Ctrl+Alt+Backspace? That shouls stop yur X
session and bring tyou to the command line.
Dan
Optimum Lightpath
On 6/30/05, Chandler May [EMAIL PROTECTED] wrote:
Hi,
I recently posted to this list inquiring how to successfully
initialize the Xorg server on a Mac Mini
On 6/30/05, Daniel Gonzalez [EMAIL PROTECTED] wrote:
Did you try pressing Ctrl+Alt+Backspace? That shouls stop yur X
session and bring tyou to the command line.
Dan
Optimum Lightpath
No, Ctrl+Alt+Backspace yields the same results - blank screen, locked
keys, bleh.
Chandler
On
Please confirm that the following are applicable:
* boot(8), biosboot(8), installboot(8), boot_i386(8) lack any
support for booting off RAIDFrame volumes (a 13 line patch 22
months ago fixed this on the bother side of the isleb(r)).
* No support is planned
The same behavior happens on Dell's serial console redirection. It
happens when you boot FreeBSD too. As soon as the kernel starts output
ANSI characters it goes dead.
Dell lets you toggle between VT100/220 mode and ANSI mode, but it's
unaffected. The kernel output just kills it.
Dell has an
89 matches
Mail list logo