Subcommander l0r3zz wrote:
This came across security focus and I haven't seen it mentioned here.
THey claim 3.8 is vulnerable, anybody know anything?
This has been fixed in -current, 3.8-stable and 3.7-stable.
This crash only works if you have 'scrub fragment crop' or 'scrub
fragment
On Wed, Feb 01, 2006 at 10:45:39AM +0100, MK wrote:
Hello everybody
I undersatnd that this issue doesn't affect many people even though I'd
like to know about the problem.
Is there any mailing list related to newly discovered security problems in
OpenBSD? I know only about
On Wed, Feb 01, 2006 at 02:00:28AM +0200, [EMAIL PROTECTED] wrote:
Begin forwarded message:
Date: Tue, 31 Jan 2006 23:19:01 +0200
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: smp kernel
hi!
i am using OpenBSD_3_8 stable and i have intel-1386-pc with intel-p4-ht smp
3.2
Votre courrier ` 'linux' dont l'objet est
*FILENAME* MAIL SYSTEM ERROR - RETURNED MAIL
est en attente jusqu'` ce que le modirateur de la liste puisse le
consulter pour approbation.
La raison de cette mise en attente :
Envoi par un non-abonni sur une liste reservie aux abonnis
Hi list,
i need some hints to manage a pf ruleset of about more than 150 rules.
In my company we want to design a firewall-cluster with about
10 interfaces. We plan to use two dell 1850 with two DFE-580TX
quad port NIC's.
Each interface points to a separate subnet. The cluster should use carp
On 1 feb 2006, at 08.38, Jurjen Oskam wrote:
On Wed, Feb 01, 2006 at 01:19:58AM -0500, Peter wrote:
raid0: Device already configured!
ioctl (RAIDFRAME_CONFIGURE) failed
Can anyone lend a hand in this important matter?
Let me guess (since you didn't post any configuration): you
enabled
Hi all,
I use OpenBSD/i386 3.8 with GENERIC.MP.
I use a trunk interface based on 2 physical devices as you can see here :
$ ifconfig -a
lo0: flags=8049UP,LOOPBACK,RUNNING,MULTICAST mtu 33224
groups: lo
inet 127.0.0.1 netmask 0xff00
inet6 ::1 prefixlen 128
--- Ho?=kan Olsson [EMAIL PROTECTED] wrote:
On 1 feb 2006, at 08.38, Jurjen Oskam wrote:
On Wed, Feb 01, 2006 at 01:19:58AM -0500, Peter wrote:
raid0: Device already configured!
ioctl (RAIDFRAME_CONFIGURE) failed
Can anyone lend a hand in this important matter?
Let me guess
FYI,
the version on the stable port is old,
it is upto smtp-vilter-1.2.5
http://www.etc.msys.ch/software/smtp-vilter/
I was using monit to restart the port milter-spamd
when it would die about one or two times a week,
I downloaded 1.2.4 and did the make install
- went non standard and set it
On Wed, Feb 01, 2006 at 12:28:33PM +0100, Joerg Streckfuss wrote:
Hi list,
i need some hints to manage a pf ruleset of about more than 150 rules.
In my company we want to design a firewall-cluster with about
10 interfaces. We plan to use two dell 1850 with two DFE-580TX
quad port NIC's.
On Wed, Feb 01, 2006 at 08:45:42AM -0500, Peter wrote:
--- Ho?=kan Olsson [EMAIL PROTECTED] wrote:
On 1 feb 2006, at 08.38, Jurjen Oskam wrote:
On Wed, Feb 01, 2006 at 01:19:58AM -0500, Peter wrote:
raid0: Device already configured!
ioctl (RAIDFRAME_CONFIGURE) failed
Can
Antoine Jacoutot [EMAIL PROTECTED] wrote:
On Tue, 31 Jan 2006, Pete Vickers wrote:
on my powerbook5,2 (G4 15), runs through booting fine, but at the
install,upgrade,shell prompt, the keyboard doesn't work ( but shift still
lights the LED)
Hi.
I've been experiencing the same
Hi,
I am trying to implement a MAC filter, based on OpenBSD Bridging facilities.
One can read in BRCONFIG(8) man page:
rule [rulespec]
Add a filtering rule to an interface. Rules have a similar syn-
tax to those in pf.conf(5). Rules can be used to selectively
=?ISO-8859-1?Q?H=E5kan_Olsson?= writes:
On 1 feb 2006, at 08.38, Jurjen Oskam wrote:
On Wed, Feb 01, 2006 at 01:19:58AM -0500, Peter wrote:
raid0: Device already configured!
ioctl (RAIDFRAME_CONFIGURE) failed
Can anyone lend a hand in this important matter?
Let me guess (since
From: [EMAIL PROTECTED]
What is bothering me is the sentence:
Rules are processed in the order in which they were added to
the interface,
and the first rule matched takes the action ...
Does this really mean that no hash function is used? I mean
if I have 2
MAC Addresses and want
Side question:
I tried unsuccessfully using the same procedure to set up two disks (sd0
and sd1) attached to a QLogic FibreChannel controller (isp driver). I
probably don't have the correct terminology but upon startup the boot code
could not be found (would not get beyond the point where
On Wed, 1 Feb 2006, Badbanchi Hossein wrote:
What is bothering me is the sentence:
Rules are processed in the order in which they were added to the interface,
and the first rule matched takes the action ...
Does this really mean that no hash function is used? I mean if I have 2
MAC
I had a disk drive fail while running RAIDframe.
The system did not survive the failure. Even worse
there was data loss.
The system was to be my new web server. The system
had 1 Gig of memory. I was working, slowly, on
configuring apache and web pages. Moving to
a chroot'ed environment was none
Hi Nick,
Thanks for responding. Unfortunately I am only using base system window
managers (twm and fvwm). I believe this is a new feature in the wsmouse
or ams layer. But I haven't found any docco yet.
Linc
On Wed, 2006-02-01 at 00:25 -0500, Nick Guenther wrote:
On 1/30/06, LINCOLN RUTLEDGE
I'm confused ... I built /usr/ports/www/mediawiki but php (built
automagically
as a pre-req) doesn't seem to work in the server. Do I have to change the
default OBSD 3.8 web server config (or chrooting) to run PHP stuff?
--
Jack J. Woehr # Men never do evil so completely and
PO
Hi,
An alternative approach might be to turn off learning and discovery on the
interface and add MAC addresses that are allowed to communicate statically.
As a matter of fact I can add MACs supposed to be reached from each interface
of the bridge, at the same time I update Bridge Rules. But this
Don't you already have problems if you have 20,000 nodes communicating on
one flat broadcast domain already?
OK. I was exaggerating! I have a little more than 2100 MACs.
But even with this number, a sequential search doesn't seem to be acceptable.
Regards,
Amir
Peter writes:
I tried unsuccessfully using the same procedure to set up two disks (sd0
and sd1) attached to a QLogic FibreChannel controller (isp driver). I
probably don't have the correct terminology but upon startup the boot code
could not be found (would not get beyond the point where the
On 2006/02/01 09:54, Jack Woehr wrote:
I'm confused ... I built /usr/ports/www/mediawiki but php (built
automagically
as a pre-req) doesn't seem to work in the server. Do I have to change the
default OBSD 3.8 web server config (or chrooting) to run PHP stuff?
Did you enable it with 'phpxs'
Nick Guenther wrote:
I dual boot OpenBSD with Windows and have a third partition for data
which is mounted on /home. The data partition is FAT32 since that's
the only type that both OSes support well.
I am not rally happy to use FAT partitions from OBSD. There has been
recently fixed issues,
On Wed, Feb 01, 2006 at 11:02:22AM -0500, Peter Fraser wrote:
I had a disk drive fail while running RAIDframe.
The system did not survive the failure. Even worse
there was data loss.
The system was to be my new web server. The system
had 1 Gig of memory. I was working, slowly, on
hi,
On Wed, Feb 01, 2006 at 06:42:47PM +0400, Bruno Carnazzi wrote:
I use OpenBSD/i386 3.8 with GENERIC.MP.
trunk(4) support in OpenBSD 3.8 was quite new and there were some
bugfixes and improvements during the last development cycle. these
fixes, like trunkproto failover and multicast support
Peter Fraser writes:
I had a disk drive fail while running RAIDframe.
The system did not survive the failure. Even worse
there was data loss.
Ow.
The system was to be my new web server. The system
had 1 Gig of memory. I was working, slowly, on
configuring apache and web pages. Moving to
On Wednesday, February 1, Badbanchi Hossein wrote:
Does this really mean that no hash function is used? I mean if I have 2
MAC Addresses and want to check **each packet** against this list serially,
I suppose I had better forget about it!
The immediate question that rises to the
You havn't said what types of disks. I've had IDE disks fail that
take down the entire system. I've had IDE disks fail but the system
remains up and happy. I've had SCSI disks fail that have made the
SCSI cards *very* unhappy (and had the system die shortly after).
None of these
On Wednesday, February 1, Badbanchi Hossein wrote:
I intend to switch the traffic originating from unknown MACs to a quaranti
ne
subnet, connected to a third interface member of the bridge.
Basing security policies on something as easily changable as a MAC
address (and as public as a MAC
On 2/1/06, Peter Fraser [EMAIL PROTECTED] wrote:
But why was there a crash, I would of thought
that the system should run after a disk failure.
And even more to my surprise, about two days
of my work disappeared.
I believe, the disk drive died about 2 days before
the crash. I also believe
Basing security policies on something as easily changable as a MAC
address (and as public as a MAC address) is stupid.
Thanks for the complement.
Although this might seem (or actually BE) stupid in environments publicly
accessible,
but for a closed environment like our company LAN, this is
On 2/1/06, Greg Oster [EMAIL PROTECTED] wrote:
Peter Fraser writes:
and as a result all file writes to the failed
drive queued up in memory,
I've never seen that behaviour... I find it hard to believe that
you'd be able to queue up 2 days worth of writes without a) any reads
being done
Thanks everyone for helping me get mediawiki started ... sorta ...
but I have one problem left ... mysqld isn't installed.
ports/www/mediawiki descended into ports/databases/mysql, but even
though that dir *builds* the mysqld, it only installs the client. What
do I have
to do to get mysqld
On Wed, Feb 01, 2006 at 01:40:00PM -0700, Jack Woehr wrote:
Thanks everyone for helping me get mediawiki started ... sorta ...
but I have one problem left ... mysqld isn't installed.
ports/www/mediawiki descended into ports/databases/mysql, but even
though that dir *builds* the mysqld, it
Andy Hayward writes:
On 2/1/06, Greg Oster [EMAIL PROTECTED] wrote:
Peter Fraser writes:
and as a result all file writes to the failed
drive queued up in memory,
I've never seen that behaviour... I find it hard to believe that
you'd be able to queue up 2 days worth of writes
On 2/1/06, Alexander Hall [EMAIL PROTECTED] wrote:
Nick Guenther wrote:
I dual boot OpenBSD with Windows and have a third partition for data
which is mounted on /home. The data partition is FAT32 since that's
the only type that both OSes support well.
I am not rally happy to use FAT
On 2006/02/01 16:45, Nick Guenther wrote:
/dev/wd0p /data msdos rw,-l,-m=777,nodev,nosuid,noauto 0 0
You can add switches like -m above.
Ah! Thank you very much. That's exactly what I was looking for. That
little detail isn't explicitly documented anywhere I could see.
for future
On Wed, Feb 01, 2006 at 02:00:28AM +0200, [EMAIL PROTECTED] wrote:
Begin forwarded message:
Date: Tue, 31 Jan 2006 23:19:01 +0200
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: smp kernel
hi!
i am using OpenBSD_3_8 stable and i have intel-1386-pc with intel-p4-ht smp
3.2
Hi Everyone!
I just upgraded one of our firewalls from 3.0 OBSD (I know, I know, I've
been busy, for 4 years :) to 3.8 (which took 30 mins - LOVE that!). I've
also added ftp-proxy from current to handle all our FTP connections. Things
are working MUCH better now (browsers can hit FTP servers on
On Wed, 1 Feb 2006 16:25:44 +0100
Badbanchi Hossein [EMAIL PROTECTED] wrote:
Does this really mean that no hash function is used? I mean if I have 2
MAC Addresses and want to check **each packet** against this list serially,
I suppose I had better forget about it!
If you have 2 mac
Greg Oster wrote:
Peter Fraser writes:
I had a disk drive fail while running RAIDframe.
The system did not survive the failure. Even worse
there was data loss.
Ow.
Welcome to the REALITY of RAID.
If you rely on RAID to always work, and never go down, you Just Don't
Understand.
...
You
Hi,
I would like to try to break my teeth on a small ( hopefully) project
that is missing for me in the OpenBSD kernel.
A way to have live mirror of pre determine directory, or may be if
that's easier to implement, full partition(s).
The idea is to configure a directory on a master server
On Wed, Feb 01, 2006 at 11:37:19PM -0500, Daniel Ouellet wrote:
snip
This way, continuous live mirroring can be done and no need for cronjob,
etc. And this would be much more efficient as well.
snip
https://marc.theaimsgroup.com/?l=openbsd-miscm=86187916316
45 matches
Mail list logo
