On 10/18/05, Roman Rodyakin [EMAIL PROTECTED] wrote:
I have been recently thinking about trade-offs involved in running
servers at the securelevel 2. In securelevel 2, it is possible to mount
a MFS over an arbitrary disk directory and create arbitrary files in it,
including those that have
I just installed 3.7 on a presario 2100 laptop from the openbsd i386
cd. The laptop is having a problem with overheating and then shutting
off while it isn't doing anything. top reports that the cpu usage is
practically zero (it is 99.8% idle), and if I just let the laptop sit
there at a console
eh, this is really only good for benching, because otherwise we stop
traversing the pf ruleset for very short amounts of time if we are
about to exhaust CPU. this allows already established connections to
live on and the OP to log in to the box via console and take
countermeasures. if you
* Wolfpaw - Dale Corse [EMAIL PROTECTED] [2005-10-19 05:13]:
you, BSD does not stand up to it .. Now I admit - it was years ago,
and it was FreeBSD that we tried
yeah yeah, and we all know that OpenBSD is just ErsatzFreiBSD with
another name on it, right?
sheesh.
Joe Snikeris wrote:
OpenBSD 3.7 (GENERIC) #50: Sun Mar 20 00:01:57 MST 2005
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: mobile AMD Athlon(tm) XP2200+ (AuthenticAMD 686-class) 1.79 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,MMX,FXSR,SSE
STeve Andre' wrote:
On Tuesday 18 October 2005 21:07, Paul Greene wrote:
STeve Andre' wrote:
Seeing all sorts of good wishes to the project, but I haven't
seen any gifts, yet. ;-)
I just paypaled $25 to the project, as a birthday present. Given
what we all get from this OS,
There is a legitimate use for top posting.
Deletion and/or answer of message in 10 to 15 seconds or less.
The stunt is essentially the same as stuff in newspapers.
The reporter writes. The editor puts as much as will fit in the alloted
space and ignores the remainder without even looking. The
Hi $misc
I have a problem with isakmpd and the greenbow vpn client (actually all
windows vpn clients I have tried except freeswan and racoon)
The problem is that I specify the protocols that the clients use but it
seems that it's ignoring that I have specified
A dump from tcpdump -vr
On Wed, Oct 19, 2005 at 01:34:45PM +0200, Kim Nielsen wrote:
[greenbow-quick-mode]
DOI=IPSEC
EXCHANGE_TYPE= QUICK_MODE
Suites= QM-ESP-AES-SHA-PFS-GR2-SUITE
it's GRP2, not GR2
[AES-SHA-GRP2]
ENCRYPTION_ALGORITHM= AES_CBC
HASH_ALGORITHM= SHA
Hans-Joerg Hoexer wrote:
On Wed, Oct 19, 2005 at 01:34:45PM +0200, Kim Nielsen wrote:
[greenbow-quick-mode]
DOI=IPSEC
EXCHANGE_TYPE= QUICK_MODE
Suites= QM-ESP-AES-SHA-PFS-GR2-SUITE
it's GRP2, not GR2
[AES-SHA-GRP2]
ENCRYPTION_ALGORITHM= AES_CBC
HASH_ALGORITHM=
On 19/10/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
There is a legitimate use for top posting.
Deletion and/or answer of message in 10 to 15 seconds or less.
Nonsense. Just because your MS Outlook does not support or is not
configured to support bottom-posting, doesn't mean that you should
Rogier Krieger wrote:
Last time I dealt with the NO_PROPOSAL_CHOSEN issue, it was due to an
error in my keynote(4) policy. After re-creating it from scratch using
the example files, things worked like a charm for me.
Hope this helps,
I wish that was it .. I even tried to wget
Hi,
On Wed, Oct 19, 2005 at 01:34:45PM +0200, Kim Nielsen wrote:
[greenbow-main-mode]
DOI=IPSEC
EXCHANGE_TYPE= ID_PROT
Transforms= AES-SHA-GRP2
[greenbow-quick-mode]
DOI=IPSEC
EXCHANGE_TYPE= QUICK_MODE
Suites= QM-ESP-AES-SHA-PFS-GR2-SUITE
Hans-Joerg Hoexer wrote:
[AES-SHA-GRP2]
ENCRYPTION_ALGORITHM= AES_CBC
HASH_ALGORITHM= SHA
AUTHENTICATION_METHOD= PRE_SHARED
GROUP_DESCRIPTION= MODP_1024
Life= LIFE_1_DAY
LIFE_1_DAY is not defined
Hi :)
I added
[LIFE_1_DAY]
LIFE_TYPE= SECONDS
Hi,
i'm facing a problem where I need to reroute requests made by a
squid-cache.
I already tried to add a route-to statement to my pf.conf:
pass out on ep2 route-to ep0:192.168.110.241 from any to any
port 80 flags S/SA keep state
( where ep2 is the external interface, ep0 is
On Tue, 18 Oct 2005, STeve Andre' wrote:
SNIP
You can determine to nearly 100% the support of something by
looking at the suported hardware pages. I'm guessing you are
using some i386 machine, and there is a *great deal* of information
on the cards and devices supported. Looking there has
I've set up a machine using a snapshot of ospfd from last week. It's
neighbor router is an Alcatel box.
The data interchange between these 2 has never really benn totaly happy.
For instnace I'm getting invalid checksum message relating to packets
coming from this machine. Nevertheless, I was
Would anyone like to elaborate on the impacts of using keep state on
conjunction with pass rules that assign traffic to queues?
One might assume that inverted traffic flows would also be queued, however
that would break the traffic can only be queued egress an interface
rule...
There should
Strangely enough, I'm also in the process of constructing a BSD-related RSS
feed. You can subscribe to my current efforts at
http://feeds.feedburner.com/bsdfeeds
The feed is presented in publication date order, so items at the top are the
freshest.
On 18/10/05, [EMAIL PROTECTED] [EMAIL
Heya :)
well, I don't know about BSD in general, but just try it with
OpenBSD. If the machine is generally capable of this task
(has the mem and power to suppert n sessions in parallel),
it's just your task as admin to make it happen. The means are
there. If your users bring down your
* Wolfpaw - Dale Corse [EMAIL PROTECTED] [2005-10-19 05:13]:
you, BSD does not stand up to it .. Now I admit - it was years ago,
and it was FreeBSD that we tried
yeah yeah, and we all know that OpenBSD is just ErsatzFreiBSD with
another name on it, right?
sheesh.
Correct me if I am
You may well be right, though I would say that the amount of Code
changes users would be required to do, to make it work
Would end up in
my lap, seeing as there are some things OpenBSD's Kernel does not
have, or has fairly out of date versions of
One example I can think of is
On Wed, 19 Oct 2005, Wolfpaw - Dale Corse wrote:
You may well be right, though I would say that the amount of Code
changes users would be required to do, to make it work
Would end up in
my lap, seeing as there are some things OpenBSD's Kernel does not
have, or has fairly out
* Wolfpaw - Dale Corse [EMAIL PROTECTED] [2005-10-19 17:28]:
* Wolfpaw - Dale Corse [EMAIL PROTECTED] [2005-10-19 05:13]:
you, BSD does not stand up to it .. Now I admit - it was years ago,
and it was FreeBSD that we tried
yeah yeah, and we all know that OpenBSD is just ErsatzFreiBSD
On Wed, Oct 19, 2005 at 09:41:22AM -0400, stan wrote:
I've set up a machine using a snapshot of ospfd from last week. It's
neighbor router is an Alcatel box.
OK that explains a few things.
The data interchange between these 2 has never really benn totaly happy.
For instnace I'm getting
I wasn't whining - again - how the hell is justifying what I said
whining?
You are saying our libpcap is buggy, but you fail to justify
that claim.
No I didn't, I said it was out of date. You want me to justify it?
Here.
Making all in .
/bin/sh ./libtool --mode=link gcc -g -DIPV4_ONLY
-Original Message-
From: Wolfpaw - Dale Corse [mailto:[EMAIL PROTECTED]
Sent: Wednesday, October 19, 2005 9:58 AM
To: 'Henning Brauer'
Subject: RE: Guruness (was the bug report thread)
Correct me if I am wrong, but its still a monolithic
kernel, based on
the same
On Wed, 19 Oct 2005 14:06:11 +0100
Constantine A. Murenin [EMAIL PROTECTED] wrote:
On 19/10/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
There is a legitimate use for top posting.
Deletion and/or answer of message in 10 to 15 seconds or less.
Nonsense. Just because your MS Outlook does
People -- just ignore him.
He may use OpenBSD, but if he can't stop himself from being a beligerant
fool, not submitting the right reports, why bother wasting eveveryone's
time by chit-chatting and arguing with him? Do what the developers do --
delete his mail and don't respond.
On Wed, 19 Oct 2005 14:06:11
[EMAIL PROTECTED] wrote:
On 19/10/05, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
There is a legitimate use for top posting.
Deletion and/or answer of message in 10 to 15
seconds or less.
Nonsense. Just because your MS Outlook does not
support or is not
configured
Thank you - for making my point.
Its good for people to be that way to someone asking a question,
But not ok when someone returns the favor.
Now I am done being an asshole - but for the record, this was
the point intending to be proven.
Nice that some of you can give it out, but you can't take
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
To those of you who were not rude - sorry about the spam,
and I thank you for that. Most people hate me now .. So
what - maybe the point will sink in somewhere and stop
some poor newbie from getting a bunch of shit they don't
The PF queueing FAQ page at http://www.openbsd.org has a wealth of info that
seems to nicely clarify the pf.conf man page. I recall that the FAQ contains
an
example much as you describe (as I recall, specifying a queue for -incoming-
traffic will indeed cause that traffic to be processed
I'll double check this today and verify. Will the IPMI on the
motherboard only work with the onboard ethernet controllers, or will it
get its grubby little hands on any/all controllers it finds? If it only
The IPMI configuration screen gives you the option of configuring which
Interface to
Quoting Diana Eichert [EMAIL PROTECTED]:
Perhaps I should post a URL for a plot of whiny posts vs. worthwhile
posts over time.
A Signal to Noise Ratio of sorts? We could measure it in decitrolls!
This email was sent from Netspace
From: Emilio Perea [mailto:[EMAIL PROTECTED]
On Wed, Oct 19, 2005 at 12:04:33PM -0600, Diana Eichert wrote:
I just had a major AhHa moment while I was deleting whiny posts from
[EMAIL PROTECTED] The number of whiny posts increases dramatically
right before,
during and shortly after the
Stephan A. Rickauer wrote:
On Tue, Oct 18, 2005 at 03:00:12AM -0600, Theo de Raadt wrote:
Now it is really OpenBSD's 10th birthday ;)
Happy birthday from Switzerland! And many thanks to all active
developers and everyone who participates in Free Software!
Greatings from Bosnia...
Great
On Wed, 19 Oct 2005 10:07:47
[EMAIL PROTECTED]
On Wed, 19 Oct 2005 14:06:11 +0100
Constantine A. Murenin [EMAIL PROTECTED]
wrote:
On 19/10/05, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
There is a legitimate use for top posting.
Deletion and/or answer of message in 10 to 15
seconds or less.
On Wed, 19 Oct 2005, Spruell, Darren-Perot wrote:
The cotton fibers are .02 microns too thin for my taste, and the package
they came in had a scuff, and my right arm is a little bit longer than my
left and the tee shirt makes me look fat.
Worst. Shirt. Ever.
Rest assured I was on
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
Try something for me - toss 40 novice programmers on a machine, and
let them hammer away at it. In this one, I think I have you beat,
running a shell provider for muds, for almost 10 years - I can tell
you, BSD does not stand up to it
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
Spruell, Darren-Perot
Sent: Wednesday, October 19, 2005 2:26 PM
To: misc@openbsd.org
Subject: Re: track release cycle by mumber of whiny posts to misc@
From: Emilio Perea [mailto:[EMAIL PROTECTED]
On Wed, Oct 19, 2005 at 11:26:46AM +0200, Henning Brauer wrote:
my name shall be melinda if report.html, which you apparently STILL
didn't read (I miss words for that level of ignorance. really.) doesn't
mention sendbug.
Please, could someone apply the patch below? Quick!
(SCNR)
Greetings,
I have this situation.
My ISP limit the amount of traffic that which user can use per month.
I need to log the amount of traffic that which IP generate in my LAN.
I can do this with PF?
tks in advance,
cheers
On Wed, Oct 19, 2005 at 10:07:47AM -0600, Ken Gunderson wrote:
On Wed, 19 Oct 2005 14:06:11 +0100
Constantine A. Murenin [EMAIL PROTECTED] wrote:
On 19/10/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
There is a legitimate use for top posting.
Deletion and/or answer of message in 10 to
On Tue, Oct 18, 2005 at 10:14:19PM -0600, Wolfpaw - Dale Corse wrote:
On Tue, Oct 18, 2005 at 09:14:09PM -0600, Wolfpaw - Dale Corse wrote:
Can you please enlighten me as to how this is a web based
system? It
looks to me like a page that says.. Use the UNIX command.
This is not
what
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
knitti
Sent: Wednesday, October 19, 2005 5:23 AM
To: Wolfpaw - Dale Corse
Cc: misc@openbsd.org
Subject: Re: Guruness (was the bug report thread)
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED]
I just got an email indicating that my 3.8 order has shipped.
Now I have to wait for Canada Post to do deliver...
Thanks Team,
Pierre
On Wed, 19 Oct 2005 20:17:55 +0100
Francisco Josi Nina Rente [EMAIL PROTECTED] wrote:
Greetings,
I have this situation.
My ISP limit the amount of traffic that which user can use per month.
I need to log the amount of traffic that which IP generate in my LAN.
I can do this with PF?
tks
Hello Mister/Madame,
I run a website wich helps people fight spam:
Spammers collect e-mail addresses from websites and mass-mail the found e-
mail addresses.
I tell people where their email adress shown on the web, and tell them about
it.
If my mail irritates you and you think this is spam too,
On Wednesday, October 19, Will H. Backman wrote:
Turning this into a learning experience: Does anyone have any hints or
advice about hardening OpenBSD for shell accounts. Do people tweak
things other than the login.conf settings? I have to deal with student
shell accounts where students
On Wed, Oct 19, 2005 at 08:17:55PM +0100, Francisco Jos? Nina Rente wrote:
Greetings,
I have this situation.
My ISP limit the amount of traffic that which user can use per month.
I need to log the amount of traffic that which IP generate in my LAN.
I can do this with PF?
ntop
--
U.S.
If you can port it, you can also use it on your own box, so
where is the problem?
No problem there.. Actually looking at the couple of functions I need
here to see how difficult to integrate they would be.
login.conf (5)
Problem comes into play when a user starts say .. 50
Copies of
On Oct 19, 2005, at 3:17 PM, Francisco Josi Nina Rente wrote:
Greetings,
I have this situation.
My ISP limit the amount of traffic that which user can use per month.
I need to log the amount of traffic that which IP generate in my LAN.
I can do this with PF?
Other folks are pointing to mrtg,
On Wed, Oct 19, 2005 at 03:24:06PM -0400, Pierre Groulx wrote:
I just got an email indicating that my 3.8 order has shipped.
Now I have to wait for Canada Post to do deliver...
Oh man oh man oh man... where's my order confirmation?! And fwiw I'm
glad I took a leap of faith with the then-unknown
Turning this into a learning experience: Does anyone have
any hints or advice about hardening OpenBSD for shell
accounts. Do people tweak things other than the login.conf
settings? I have to deal with student shell accounts where
students are learning to program and often create
I'm not having any luck finding something locally. Can anyone recommend an
online dealer that has a PCI based wireless card supprting hostap mode?
Steve
On Wed, Oct 19, 2005 at 12:56:44PM -0400, Jon Hart wrote:
On Wed, Oct 19, 2005 at 12:10:35PM -0400, Brian A. Seklecki wrote:
The Intel IPMI on the motherboard may be to blame. It's always up/on and
listening.
Also, see my thread in freebsd-questions@ about Dells with Intel em(4) and
Turning this into a learning experience: Does anyone have any hints or
advice about hardening OpenBSD for shell accounts. Do people tweak
things other than the login.conf settings? I have to deal with student
shell accounts where students are learning to program and often create
problems
Someone with one of these problematic cards should put it in the
mail to Brad in Toronto. That is your best bet.
On Wed, 19 Oct 2005 16:37:29 -0600
Theo de Raadt [EMAIL PROTECTED] wrote:
Someone with one of these problematic cards should put it in the
mail to Brad in Toronto. That is your best bet.
Intel support is presently adopting the position that my card is not
Genuine Intel product. Apparenty
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
quickly. I try not to use limits, because it slows compiling to crap :(
this makes no sense whatsoever.
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
quickly. I try not to use limits, because it slows
compiling to crap
:(
this makes no sense whatsoever.
To clarify, if you limit someone's ram use to a certain point, or
CPU use to a certain point, it will slow down compiling
From: Wolfpaw - Dale Corse [mailto:[EMAIL PROTECTED]
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
quickly. I try not to use limits, because it slows
compiling to crap
:(
this makes no sense whatsoever.
To clarify, if you limit someone's ram use to a certain
i suggested to my friend to replace his linux box to openbsd.
he uses mailnly for internet gateway : pf + squid proxy
after 2 weeks later he switched it back linux and said : linux much faster
to respond the http requests (he had a same configuration on openbsd, pf +
squid proxy).
is there
blah blah blah
Just stop it with this top post horseshit. Nobody cares, for fuck's
sake.
On Oct 19, 2005, at 2:13 PM, Benjamin Collins wrote:
On Wed, Oct 19, 2005 at 10:07:47AM -0600, Ken Gunderson wrote:
On Wed, 19 Oct 2005 14:06:11 +0100
Constantine A. Murenin [EMAIL PROTECTED]
On Wed, 19 Oct 2005, Theo de Raadt wrote:
Someone with one of these problematic cards should put it in the
It isn't so much a bug; more so a caveat of Dell's implenentation.
Maybe you can order PowerEdge 1850s w/o a hardware IPMI implementation,
but I don't think it's an issue that warrants
Edy Purnomo wrote:
i suggested to my friend to replace his linux box to openbsd.
he uses mailnly for internet gateway : pf + squid proxy
after 2 weeks later he switched it back linux and said : linux much
faster to respond the http requests (he had a same configuration on
openbsd, pf + squid
IPaudit and IPaudit-web work well for this.
On 10/19/2005, Jason Dixon [EMAIL PROTECTED] wrote:
On Oct 19, 2005, at 3:17 PM, Francisco Josi Nina Rente wrote:
Greetings,
I have this situation.
My ISP limit the amount of traffic that which user can use per month.
I need to log the amount
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
well, I don't know about BSD in general, but just try it with
OpenBSD. If the machine is generally capable of this task
(has the mem and power to suppert n sessions in parallel),
it's just your task as admin to make it happen. The
On Wed, Oct 19, 2005 at 08:44:49AM +0200, Otto Moerbeek wrote:
On Wed, 19 Oct 2005, Roman Rodyakin wrote:
I have been recently thinking about trade-offs involved in running
servers at the securelevel 2. In securelevel 2, it is possible to mount
a MFS over an arbitrary disk directory
Yes, that would be the idea of limiting resources. If I am
given the ability to use 99% of the CPU compiling software,
how is that different than me running a fork bomb and doing the same?
In essanse I suppose it isn't - but if your (as in my case) selling shells,
compiling is legitimate,
Edy Purnomo wrote:
i suggested to my friend to replace his linux box to
openbsd. he uses
mailnly for internet gateway : pf + squid proxy after 2
weeks later he
switched it back linux and said : linux much faster to respond the
http requests (he had a same configuration on openbsd,
Hi Theo,
Straight up, I'm very sorry. It was not my intention to be rude and I'm
not a rude person. All I am is desperate to be able to use OpenBSD
again. The fact is I have been a supporter and advocate for OpenBSD for
many years and I admire you for what you've done. I just want to be able
to
To clarify, if you limit someone's ram use to a certain point, or
CPU use to a certain point, it will slow down compiling due to
having less resources :) As I said though - I may be wrong on
this one.
Yes, that would be the idea of limiting resources. If I am given the ability
to use
Edy Purnomo wrote:
i suggested to my friend to replace his linux box to openbsd.
he uses mailnly for internet gateway : pf + squid proxy
after 2 weeks later he switched it back linux and said : linux much
faster to respond the http requests (he had a same configuration on
openbsd, pf + squid
Edy Purnomo wrote:
i suggested to my friend to replace his linux box to openbsd. he
uses mailnly for internet gateway : pf + squid proxy after 2
weeks later he switched it back linux and said : linux much
faster to respond the http requests (he had a same configuration
on openbsd, pf + squid
On Oct 19, 2005, at 6:21 PM, Edy Purnomo wrote:
i suggested to my friend to replace his linux box to openbsd.
he uses mailnly for internet gateway : pf + squid proxy
after 2 weeks later he switched it back linux and said : linux much
faster to respond the http requests (he had a same
On Tue, Oct 18, 2005 at 09:51:42PM +0200, [EMAIL PROTECTED] wrote:
Is it possible to connect to multiple WLANs at the same time with just one
WLAN-NIC?
supported- no
possible- yes (same channel, not possible with all drivers, probably slow)
it's mostly the same as having multiple virtual
Yet another reason to love OpenBSD. Here is a dmesg from a Dell
PowerEdge 750 running OpenBSD 3.7 with a new QLA-2310F fibre card
connected via Brocade 3900 to a 467GB LUN on an Apple XRaid. All it
took was rebuilding the kernel with option ISP_COMPILE_FW, as
described in isp (4). Zoned
On 10/19/05, Edy Purnomo [EMAIL PROTECTED] wrote:
i suggested to my friend to replace his linux box to openbsd.
he uses mailnly for internet gateway : pf + squid proxy
after 2 weeks later he switched it back linux and said : linux much faster
to respond the http requests (he had a same
On 10/19/05, Wolfpaw - Dale Corse [EMAIL PROTECTED] wrote:
snip for brevity
Diddo.
- That also being said, as Darren pointed out below, we have
a group of
people on this list, in particular the devs (but others too
I am sure)
that have some serious UNIX skills. I personally, came
So,
My latest update;
Theo mentioned the single CPU kernels don't make use of APIC interrupt
controllers, just ISA. I booted my single P4 systems into the bsd.mp
kernel, and behold there's a major difference in speed!
Now the systems no longer claim 95%+ CPU held in interrupts, but claim
to be
82 matches
Mail list logo