On 12/26/05, Julesg [EMAIL PROTECTED] wrote:
I am modem'ed into a remote box, (call it box REMOTE,) while I am at box
LOCAL.
I know my IP number (at LOCAL)
I don't know the IP number at REMOTE
So I am telling the REMOTE system to ping me.
How can I look at who is pinging me on the LOCAL
On 12/23/05, Han Boetes [EMAIL PROTECTED] wrote:
tcp:
860321 packets received
229685 acks (for 489089407 bytes)
16982 duplicate acks
0 acks for unsent data
0 acks for old data
469932 packets (416700992
Where is the code for the ip_forward() function in 3.8?
I found the prototype in: /usr/src/sys/netinet/ip_var.h
voidip_forward(struct *mbuf, int);
but no function definition.
I also did a grep -sR ip_forward /usr/src
and all I found was the function being called several times
from
Hi Sylvain
OpenBGPd looks fine for eBGP and iBGP links as long as it
does not depend on carp.
I think this depend on is a nice feature - but I would not
use for 100% fail save connections. You must take into account,
that the session will go down if you trigger a failover. This
might be
Never mind on my previous post.
ip_forward() definition is in:
/usr/src/sys/netinet/ip_input.c
it's late, I missed it.
-Matt-
Quick background: I have a wandering, disorganized, computer-illiterate boss
who needs to send mail from his laptop from any network, without changing
any of his computer's settings. I've set up postfix to handle this, but it's
on a local 192.168.0.0/24 net behind our firewall. One of the
Another OpenBSD on WRAP user wrote to me saying that pxeboot works.
Also, I found http://www.ultradesic.com/?section=43 which descripbes
PXE booting OpenBSD for the Soekris plattform which is very similar to
WRAP.
Both encouraged me to dig deeper:
a) pxeboot finds both labels '!PXE' and 'PXENV'
Matthew Closson wrote:
Where is the code for the ip_forward() function in 3.8?
I found the prototype in: /usr/src/sys/netinet/ip_var.h
void ip_forward(struct *mbuf, int);
but no function definition.
I also did a grep -sR ip_forward /usr/src
and all I found was the function being
Hi,
I think this depend on is a nice feature - but I would not
use for 100% fail save connections.
Why not ? It has been coded for this purpose ...
You must take into account,
that the session will go down if you trigger a failover.
Of course, this is the basic of a failover between two
Good news - my WRAPs now pxeboot OpenBSD as expected! The culprit was
not pxeboot, but the etherboot PXE code 5.3.12 in BIOS 1.08 and 1.10,
as supplied by PCengines.
After building an etherboot 5.4.1 binary on rom-o-matic.org, merging
it into the BIOS and flashing the WRAPs, network boot of
On Tue, Dec 27, 2005 at 12:27:52PM +0100, Sylvain Coutant wrote:
Hi,
I think this depend on is a nice feature - but I would not
use for 100% fail save connections.
Why not ? It has been coded for this purpose ...
No. It is a hack to make it possible to use two routers at an IX where
On Monday 26 December 2005 22:12, J.C. Roberts wrote:
On Mon, 26 Dec 2005 11:39:22 -0500, Dave Feustel
[EMAIL PROTECTED] wrote:
Don't use sudo in any konsole session.
Dave,
I don't think you're nuts but the fear mongering without providing any
proof or details of a compromise is
Hello,
I'm running current (built a few hours ago) on a test machine.
I'm connecting via ssh (from a windows box) and I try to launch an X
application.
X forwarding fails, here is a sample output:
~ $ xclock
[1] 10951
[EMAIL PROTECTED]
~ $ Error: Can't open display: localhost:11.0
On Tue, Dec 27, 2005 at 02:43:48PM +0100, Didier Wiroth wrote:
Hello,
I'm running current (built a few hours ago) on a test machine.
I'm connecting via ssh (from a windows box) and I try to launch an X
application.
X forwarding fails, here is a sample output:
~ $ xclock
[1] 10951
On Tue, 27 Dec 2005, Didier Wiroth wrote:
Did I miss something, what is my problem?
Try a set skip on { lo } instead of the pass quick on.
--
Signing off,
Joseph C. Bender
[EMAIL PROTECTED]
Does the government fear us? Or do we fear the government? When the
people fear the
Great, thanks a lot, this solved the problem!
Didier
-Original Message-
From: Joseph C. Bender [mailto:[EMAIL PROTECTED]
Sent: mardi 27 dicembre 2005 15:56
To: Didier Wiroth
Cc: misc@openbsd.org
Subject: Re: x11 forwarding does not work until pf is disabled
On Tue, 27 Dec 2005, Didier
while everybody else is busy discussing opinions I'll bother with the
real question...
* Sylvain Coutant [EMAIL PROTECTED] [2005-12-26 11:29]:
OpenBGPd looks fine for eBGP and iBGP links as long as it does not
depend on carp.
definately works for me, and I can't imagine where it could break
On Tue, 27 Dec 2005, Dave Feustel wrote:
by KDE are root-owned and world rw. There is also a problem with the socket
/tmp/.X11-unix/X0. This is documented on the web and even in an OpenBSD
presentation on XFree86 from about 2002.
Dunno about KDE but can you elaborate or give refs why having a
Hello I have a box with OpenBSD 3.8 and packet filter
I have these questions about syntax of pf:
1.- May I use this syntax:
table serial_1{ 10.1.1.0/24 }
table serial_2{ 10.2.1.0/24 }
table serial_3{ 10.3.1.0/24 }
router_one = 192.168.1.1
and then
group_ping = {
This is in response to an email awhile back:
http://www.monkey.org/openbsd/archive/misc/0208/msg00558.html
Friday, July 19, 2002, 9:01:11 AM, you wrote:
I have used many softwares like chrsh (Aaron Grifford)
on a port from Ben Goren but didn't get it to work.
I've done *everything* Aaron
Strip a single RAID 5 set across channels to speed up the SCSI
backend. Then slice it up using disklabel. That should do the trick.
On Dec 26, 2005, at 9:09 PM, bofh wrote:
Hi,
I have one megaraid i4, but with two channels set up. One raid1
for the OS,
and one raid5 with 4x250G hard
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
When f-prot tries to update in root's cron, it reports fatal
error, can't find unzip. Unzip is located in /usr/local/bin
which is in root's path env:
PATH=/sbin:/usr/sbin:/bin:/usr/bin:/usr/X11R6/bin:/usr/local/sbin:
/usr/local/bin
Have tried
A few questions in regards to the discussion between Robert Haarman and
mickey around Nov 24 on ccd mirroring. The conclusion is don't use c
for a usable partition in a ccd device.
This sounds fine until I try to recover from a disk failure. When I use
the c partition in a ccd mirror device I
On 12/27/05, Dave Feustel [EMAIL PROTECTED] wrote:
On Monday 26 December 2005 22:12, J.C. Roberts wrote:
On Mon, 26 Dec 2005 11:39:22 -0500, Dave Feustel
[EMAIL PROTECTED] wrote:
Don't use sudo in any konsole session.
Dave,
I don't think you're nuts but the fear mongering without
On Tuesday 27 December 2005 11:05, Otto Moerbeek wrote:
On Tue, 27 Dec 2005, Dave Feustel wrote:
by KDE are root-owned and world rw. There is also a problem with the socket
/tmp/.X11-unix/X0. This is documented on the web and even in an OpenBSD
presentation on XFree86 from about 2002.
-
- details and notes
-- read no further unless need to know -
.
rm ./chrsh/w-chrsh-1.0b2/chrsh/chrsh.c
oops thats my very bad, should be
MK try it now.
http://www.linbsd.org/log_execve.38.patch
Thanks to Ted for pointing out the not so obvious
mistakes in it.
Thanks.
-Ober
On Mon, 26 Dec 2005, Ted Unangst wrote:
On 12/25/05, ober [EMAIL PROTECTED] wrote:
Here is a patch, probably something want to test before using on
a
Ted Unangst wrote:
On 12/23/05, Han Boetes [EMAIL PROTECTED] wrote:
tcp:
860321 packets received
229685 acks (for 489089407 bytes)
16982 duplicate acks
0 acks for unsent data
0 acks for old data
On Tue, 27 Dec 2005, Dave Feustel wrote:
On Tuesday 27 December 2005 11:05, Otto Moerbeek wrote:
On Tue, 27 Dec 2005, Dave Feustel wrote:
by KDE are root-owned and world rw. There is also a problem with the
socket
/tmp/.X11-unix/X0. This is documented on the web and even in an
On 12/27/05, Otto Moerbeek [EMAIL PROTECTED] wrote:
On Tue, 27 Dec 2005, Dave Feustel wrote:
by KDE are root-owned and world rw. There is also a problem with the socket
/tmp/.X11-unix/X0. This is documented on the web and even in an OpenBSD
presentation on XFree86 from about 2002.
Dunno
On 12/27/05, Paul Pruett [EMAIL PROTECTED] wrote:
NOTE - DON't even try to use chroot to limit users accounts unless you
understand it can be trivial to overcome:
http://www.bpfh.net/simes/computing/chroot-break.html
yes, if you're root. why are all your users logging in with root
privs?
Marc Espie and Dirk at kde have acknowledged the security problem OpenBSD
has with kde kgrantpty. The problem with /tmp/.X11-unix/X0 addressed by the
2003 paper on XFree86 still exists today with Xorg. If the rest of you fail to
see
the problem, even when the evidence is available to you on
On Mon, 26 Dec 2005 22:34:28 -0600, Julesg wrote:
Because I want to discover the IP address at box REMOTE.
Probably the easiest way is to run tcpdump. You'll want options to
limit the output to ICMP traffic. man tcpdump for details.
If, however, REMOTE's IP address is in a network address
On Tue, 27 Dec 2005, Ted Unangst wrote:
On 12/27/05, Otto Moerbeek [EMAIL PROTECTED] wrote:
On Tue, 27 Dec 2005, Dave Feustel wrote:
by KDE are root-owned and world rw. There is also a problem with the
socket
/tmp/.X11-unix/X0. This is documented on the web and even in an OpenBSD
Dave,
I keep reading your emails and many answer to them as well. So far,
nothing is evidence or anything yet. Also, based on some of your latests
emails, look like the intruder is still coming back to your box still
and you reboot the KDE to kick him/here out.
Look like you are saying
This past week I was having to play tech support for a family member and
realized the firmware image on his dlink DI-614+ was corrupt. After a quick
upload of a new image, it was working again.
During this time I was reading through the documentation and realized
there's just an ARM7 processor on
I've installed your patch. Works really great. Thanks very very much for it.
Have a nice day
MK
- Original Message -
From: ober [EMAIL PROTECTED]
To: Ted Unangst [EMAIL PROTECTED]
Cc: MK [EMAIL PROTECTED]; misc@openbsd.org
Sent: Tuesday, December 27, 2005 7:33 PM
Subject: Re: How to
On 12/27/05, Stuart Henderson [EMAIL PROTECTED] wrote:
Quick background: I have a wandering, disorganized, computer-illiterate
boss
who needs to send mail from his laptop from any network, without
changing
any of his computer's settings. I've set up postfix to handle this, but
it's
on
David Benfell [EMAIL PROTECTED] wrote:
Why is this off topic?
Because it is administrivia more suitable for a unix newbies list?
man afterboot, then searching for network will point you to
ifconfig, which would be the right way to figure out the IP
address(es) -- where as the where did that
On 12/27/05, Marco Peereboom [EMAIL PROTECTED] wrote:
Strip a single RAID 5 set across channels to speed up the SCSI
backend. Then slice it up using disklabel. That should do the trick.
My problem is that the 2 OS drives are 160GB, whereas my attempt at a poor
man's raid5 are 4x250GB.
One
On 12/27/05, Otto Moerbeek [EMAIL PROTECTED] wrote:
this is obviously a source of confusion. the permissions on a socket
mean *nothing*. anyone can open any socket regardless of permissions,
so long as they have necessary directory permissions to find it.
That used to be the case. But
On Tue, 27 Dec 2005 16:11:09 -0500, Matthew Jenove wrote:
David Benfell [EMAIL PROTECTED] wrote:
Why is this off topic?
Because it is administrivia more suitable for a unix newbies list?
man afterboot, then searching for network will point you to
ifconfig, which would be the right way to
Over on ports-changes, Antoine Jacoutot [EMAIL PROTECTED] wrote:
Modified files:
sysutils/mergemaster: Makefile
sysutils/mergemaster/patches: patch-mergemaster_sh
Log message:
use system sdiff, drop GNU diff dependency
Since gdiff isn't needed anymore, do you think
On 12/26/05, Han Boetes [EMAIL PROTECTED] wrote:
Hi,
I just read this article:
http://www.kaourantin.net/2005/12/flash-player-8-for-linux-update.html
Via OSNews.
If there ever was a chance to lobby for support of flash on
OpenBSD it is now and there.
Doesn't the Linux flash work under
Dave Feustel wrote:
The problem with /tmp/.X11-unix/X0 addressed by the
2003 paper on XFree86 still exists today with Xorg.
What problem? X11 implements its own authentication.
-d
Bobby Johnson wrote:
A few questions in regards to the discussion between Robert Haarman and
mickey around Nov 24 on ccd mirroring. The conclusion is don't use c
for a usable partition in a ccd device.
If conclusion is the right word in a discussion between someone who
didn't understand the
Christian Weisgerber wrote:
Over on ports-changes, Antoine Jacoutot [EMAIL PROTECTED] wrote:
Since gdiff isn't needed anymore, do you think mergemaster could be
integrated in the base system one of those days,
I'm considering this.
Are you considering mergeslave as well?
# Han
On Wed, 2005-12-28 at 00:52:23 +, Stuart Henderson proclaimed...
Obviously I don't speak for developers, but I'm not sure a device with
a processor which looks around 10% the speed of a Zaurus, 8mb RAM, and
undocumented wireless nic is going to be interesting enough to warrant
the time a
eric wrote:
Right, but the problem with a zaurus is that it doesn't lend itself to be a
gateway easily. Further, there's many insecure products out there that I'm
sure many of us are using for wireless access. Yes, I've created ad-hoc
networks, etc., but this is a low powered device with no
So I spent yesterday putting up a nice OpenBSD box; Lot's of space, very fast
-- and first thing today I discovered that EGCS does not equal GCC.
I'd like to know what's involved in removing EGCS and installing GCC?
And if you aren't a compiler person, my guess is that this not a trivial thing
Denny White wrote:
When f-prot tries to update in root's cron, it reports fatal
error, can't find unzip. Unzip is located in /usr/local/bin
which is in root's path env:
PATH=/sbin:/usr/sbin:/bin:/usr/bin:/usr/X11R6/bin:/usr/local/sbin:
/usr/local/bin
WHICH root's path env?
When root logs
On Tue, 2005-12-27 at 20:54:48 -0500, Steve Shockley proclaimed...
Sure it'd be nice, but even if you had a port, OpenBSD does native
compiles, so by the time you finished building the OS, you'd be two
releases behind.
Heh, true. That would be awful! There'd probably have to be quite a bit
On Wed, Dec 28, 2005 at 12:52:23AM +, Stuart Henderson wrote:
During this time I was reading through the documentation and realized
there's just an ARM7 processor on the device. I know that some of the
linksys devices have one of those other broken unix variant running on them,
so
I'm running PPP 3.1 (/usr/sbin/ppp) on OpenBSD 3.7 / i386. Every now
and then, I run into a problem in which the chat script stops working
in -auto mode:
Dec 20 20:45:08 wally ppp[20296]: tun0: Chat: Expect(650): CONNECT
115200
Dec 20 20:45:21 wally ppp[20296]: tun0: Chat: Expect timeout
On Tue, 27 Dec 2005, Dale Rahn wrote:
SNIP
If anyone knows about an ARM 11 based device that has reasonable IO: network,
disk options (CF or better), minipci, ... The developers would be quite
interested in finding out about such a device.
Dale Rahn [EMAIL
Most of our work in the iic(4) sensor framework is enabled now in
-current and in the latest snapshots.
Please note that it is quite verbose in dmesg for the moment; if you
run into problem send me a private mail containing a 2-line machine
description, the full dmesg, and output of sysctl
On Tue, 27 Dec 2005, Julesg wrote:
So I spent yesterday putting up a nice OpenBSD box; Lot's of space, very
fast -- and first thing today I discovered that EGCS does not equal GCC.
I'd like to know what's involved in removing EGCS and installing GCC?
And if you aren't a compiler person,
57 matches
Mail list logo
