On Thu, May 15 2008 at 09:09, Lord Sporkton wrote:
2008/5/14 Lord Sporkton [EMAIL PROTECTED]:
2008/5/14 scott learmonth [EMAIL PROTECTED]:
On Tue, May 13, 2008 at 5:41 PM, Lord Sporkton [EMAIL PROTECTED]
wrote:
I am trying to set up a ipsec link between my home network(private ip
On Thu, May 15, 2008 at 7:07 PM, Ted Unangst [EMAIL PROTECTED] wrote:
On 5/15/08, Kevin [EMAIL PROTECTED] wrote:
All,
I'm getting quite a lot of these errors in /var/log/messages and can't
seem to find an appropriate fix in the archives:
May 14 21:05:54 svr02 /bsd: uvm_mapent_alloc:
I'm not sure that building the system from source is the primary target
sorry, why? what is the primary way? I've learnt many many things
(Hint; use snapshots)
man pages faqs are amazing so it is quite impossible that things go wrong.
however there are no snapshots since 6 may and because
On Thu, 2008-05-15 at 06:31 -0700, Darrin Chandler wrote:
Can you explain why that's not effective? Do you know ssh-vulnkey (or
the Perl script) does not reliably detect bad keys?
Just to ensure I have facts separated from co-workers just going on
paranoid tangents, I checked again and asked
* Darrian Hale [EMAIL PROTECTED] [2008-05-15 23:06]:
What output to you get from 'netstat -m'?
I might get yelled at for this as you mentioned people seem to hate
custom kernels.
But i've had good luck with the following options, I'm not sure which
are still relevant, but they help.
* Kevin [EMAIL PROTECTED] [2008-05-16 08:34]:
Knobs, dials, levers, custom kernels, and custom apache builds they
may be, but at this point I'm open to just about anything and
everything including witch doctors, Chinese herbalists, and/or
exorcists to get the problem solved. :-)
well, use
On Fri, May 16, 2008 at 04:19:12AM +0200, Robert Urban wrote:
# pkg_add -ui -F update -F updatedepends
What do I need to do about the numerous ports I built and installed? Do
they need to be updated manually?
The packages you built manually, assuming you used a virgin ports tree,
are
Hi Guys,
Would you like to reach to the large audience of BSD Magazine?
I am happy to announce that we started News Section on BSD Magazine website.
In this bookmark you can place news, press releases, latest and upcoming BSD
events announcements and other information precious for BSD Community.
http://blog.wired.com/defense/2008/05/air-force-mater.html
it was a glimpse of the light and then Jordan's new parser got
busted... actually Jordan has fixed the parser for HP notebooks (i
believe for most of them, since as many as i seen they all crashed the
same way) and with Jordan's changes the kernel boots a lot further
(experiencing death in acpitz
Metoo. I couldn't grab the screen output yet, but AFAICS the trace
looks the same as in Don's EMail. I could reproduce this on
2 machines. Both work fine with 4.2 (amd64).
Hardware is a Tyan Tomcat H1000S main board, Dual-Core Opteron
(1.8 GHz), 2 GByte RAM.
I could reproduce it with /bsd and
On Thu, May 15, 2008 at 10:07:14PM -0400, Ted Unangst wrote:
On 5/15/08, Kevin [EMAIL PROTECTED] wrote:
All,
I'm getting quite a lot of these errors in /var/log/messages and can't
seem to find an appropriate fix in the archives:
May 14 21:05:54 svr02 /bsd: uvm_mapent_alloc: out
On Fri, 2008-05-16 at 10:21 +0100, Tomas Bodzar wrote:
http://blog.wired.com/defense/2008/05/air-force-mater.html
That reminds me of a story where investigators were stumped for 3 months
trying to get data off a 1541 5.25 drive connected to a Commodore 64. I
wish I could find the link to it.
2008/5/16 Henning Brauer [EMAIL PROTECTED]:
well, use a httpd that is better designed than apache. at least for the
static content that should be kinda easy with a couple of redirects and
a second IP. lighttpd is a good pick.
If talking about serving static content: mathopd is doing really
Hello,
I'm having a little problem with vhosts with OpenBSD apache, not really a
problem, more a Warning cause everything is working nicely, i just dont like
the warnings.
I created a vhosts.conf in /var/www/conf/modules with the following:
-vhosts.conf-
NameVirtualHost *:80
Pedro de Oliveira wrote:
Hello,
I'm having a little problem with vhosts with OpenBSD apache, not really a
problem, more a Warning cause everything is working nicely, i just dont like
the warnings.
On which version do you see this problem? Are you running -current? If
so, from when does
I'm running -current from Mon May 12 10:57:47 WEST 2008.
-Mensagem original-
De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Em nome de Marc
Balmer
Enviada: sexta-feira, 16 de Maio de 2008 12:11
Para: Pedro de Oliveira
Cc: misc@openbsd.org
Assunto: Re: Problems with apache vhosts
Pedro
Pedro de Oliveira wrote:
I'm running -current from Mon May 12 10:57:47 WEST 2008.
ok, can you please mail in private your full httpd configuration, so
that I can look into this?
-Mensagem original-
De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Em nome de Marc
Balmer
Enviada:
Anyone got any thoughts on what the Debian project has been doing to OpenSSL
to have caused this in the first place?
On 2008. May 16. 11:59:33 Tim Post wrote:
On Fri, 2008-05-16 at 10:21 +0100, Tomas Bodzar wrote:
http://blog.wired.com/defense/2008/05/air-force-mater.html
That reminds me of a story where investigators were stumped for 3
months trying to get data off a 1541 5.25 drive connected to a
On Fri, May 16, 2008 at 01:31:54PM +0200, Ross Cameron wrote:
Anyone got any thoughts on what the Debian project has been doing to OpenSSL
to have caused this in the first place?
yes, read the stuff posted earlier, it contains all relevant links. To
summarize, to silence a bogus valgrind
On 2008-05-16, Pedro de Oliveira [EMAIL PROTECTED] wrote:
Everything works as expected, but when I do a apachectl configtest I get the
following:
Warning: DocumentRoot [/htdocs] does not exist
Warning: DocumentRoot [/htdocs/stats] does not exist
Warning: DocumentRoot [/htdocs/blog] does not
I'm not so worried about that particular project (for obvious
reasons), but I have been putting together a plan to move anything
that talks to the world to OBSD.
Then, when everyone will use OpenBSD, and have calmed down, the devs
will unhide a super-secret secretly hidden remote
Yes, the DocumentRoot ones I know that are because of the chroot.
But the VirtualHosts warnings shoulnt appear, and yes, it is working
correctly.
-Mensagem original-
De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Em nome de Stuart
Henderson
Enviada: sexta-feira, 16 de Maio de 2008 12:55
One Laptop Per Child has been discussed on misc@ before, including decisions
made by the organization's technical leadership to sign NDAs for their
particular hardware choices on the XO laptop.
This slashdot posting:
http://tech.slashdot.org/article.pl?sid=08/05/15/2320243
references a New
Hi,
actually it is enough to clear the tree of source tracking nodes right
after syncing tables, so the sticky-address is stored again.
Unfortunately there is one disadvantage, all sources will be flushed, so
some connections can be assigned to different hosts.
But I think it's better then
Mmm this isn't the first time I've heard of bogus reports from Valgrind.
How does one politely inform the Debian project to not trust it explicitly
and to human audit anything it flags?
On Fri, May 16, 2008 at 1:41 PM, Otto Moerbeek [EMAIL PROTECTED] wrote:
On Fri, May 16, 2008 at
Hum, so I should just ignore it! Well, at least it is now *reported*.
Thanks Marc and Stuart
-Mensagem original-
De: Stuart Henderson [mailto:[EMAIL PROTECTED]
Enviada: sexta-feira, 16 de Maio de 2008 13:43
Para: Pedro de Oliveira
Assunto: Re: Problems with apache vhosts
On 2008/05/16
+ if (rdr-conf.flags F_STICKY)
+ if (ioctl(env-sc_pf-dev, DIOCCLRSRCNODES, 0) == -1)
+ fatal(sync_table: cannot clear the tree of source
tracking nodes);
+
free(addlist);
log_debug(sync_table: table %s: %d added, %d deleted, %d
From: Ross Cameron
Sent: Friday, May 16, 2008 8:31 AM
To: Otto Moerbeek
Cc: misc@openbsd.org
Subject: Re: Debian libssl security (Cause???)
Mmm this isn't the first time I've heard of bogus reports
from Valgrind.
How does one politely inform the Debian project to not trust
it
Can you please point me to where the diffs you refer to reside?
I'd definitely like to try them out.
Thank you,
Darrian
On Fri, May 16, 2008 at 3:09 AM, mickey [EMAIL PROTECTED] wrote:
the problem is not in the user land.
the problem is in i386 pmap which abuses kmem_map that is there
for
Hi,
I am trying to setup an active/active routing firewall setup with OSPF
so it load shares the traffic equally.
I am have created a test lab with IOS ASBR's that have
`default-information originate always` so I then can see 2 routes to
0.0.0.0/0.0.0.0 via 2 routes.
It seems there is a
Pedro de Oliveira wrote:
Hum, so I should just ignore it! Well, at least it is now *reported*.
I am working on this. Even if the warnings are bogus, they should not
be there.
Thanks Marc and Stuart
-Mensagem original-
De: Stuart Henderson [mailto:[EMAIL PROTECTED]
Enviada:
Ok, now everything works as spected, just for a mistake.
When I did changes on the /etc/pf.conf, I relaunched the PF
just with:
# pfctl -d
# pfctl -e
I thought that was enougth to make the changes affect pf, but NOT,
I needed to use this instead with my actual config:
# pfctl -d
# pfctl -ef
On May 16, 2008, at 11:39 AM, Jesus Sanchez wrote:
Ok, now everything works as spected, just for a mistake.
It's helpful for others if you explain what your mistake was. Bonus
points for posting your corrected ruleset. Your learning helps others
as well.
When I did changes on the
* Jesus Sanchez [EMAIL PROTECTED] [2008-05-16 17:45]:
Ok, now everything works as spected, just for a mistake.
When I did changes on the /etc/pf.conf, I relaunched the PF
just with:
# pfctl -d
# pfctl -e
I thought that was enougth to make the changes affect pf, but NOT,
of course not.
On 2008-05-16, Charlie Allom [EMAIL PROTECTED] wrote:
Hi,
I am trying to setup an active/active routing firewall setup with OSPF
so it load shares the traffic equally.
I am have created a test lab with IOS ASBR's that have
`default-information originate always` so I then can see 2 routes to
The problem seems related to certain long running processes with
fragmented address spaces.
Basically, in order to manage address spaces, the kernel keeps track
of a bunch of maps. Entries in these maps are stored in... map
entries. In certain situations, the kernel can't wait to allocate
* L?VAI D?niel [EMAIL PROTECTED] [2008-05-16 13:40:13]:
On 2008. May 16. 11:59:33 Tim Post wrote:
On Fri, 2008-05-16 at 10:21 +0100, Tomas Bodzar wrote:
http://blog.wired.com/defense/2008/05/air-force-mater.html
That reminds me of a story where investigators were stumped for 3
months
* Ross Cameron [EMAIL PROTECTED] [2008-05-16 14:30:39]:
Mmm this isn't the first time I've heard of bogus reports from Valgrind.
How does one politely inform the Debian project to not trust it explicitly
and to human audit anything it flags?
On Fri, May 16, 2008 at 1:41 PM, Otto
Dear Mr Banana,
banana split wrote:
I'm not sure that building the system from source is the primary target
sorry, why? what is the primary way? I've learnt many many things
I was talking in general terms, which may or may not apply to you.
However many people coming from other os'es (in
On May 16, 2008, at 12:34 AM, Marc Espie wrote:
Or even add a SRC: element to your PKG_PATH as a fallback.
Marc - where is this documented? i can't find it in pkg_add, package,
or friends.
Ben
Travers Buda wrote:
Well, in a way, diversity of operating systems is a good thing in
terms of security. However, if the diverse population is made up
of buggy crap, then you see less of a benefit. The worst case
scenario is when you have a single operating system having a majority,
and being
On Fri, 16 May 2008, Travers Buda wrote:
They probably have figured it out. This is a pretty big screw-up--it
was in the tree since September 2006. You don't do something this
bad and not learn from it =).
And now the social engineering fallout from it as well with all
the 'new SSL
So, just as I say this, the page is at:
http://www.SMTPS.net/netboot_flash_obp.html
I did an Ultra 10 this way with no problems. I may have done
an Ultra2 as well.
cheers
bruce
On Thu, May 15, 2008 at 07:59:48AM +0100, Sevan /
Venture37
wrote:
And dumb me, I didn't consider OBP as
Hi,
Sorry, that went only to Sevan. Sorry Sevan.
You can netboot the OBP upgrade. I've done it. What I can't seem to do
is put my hands on how to do this right now. I seem to remember that the key
is to get the right boot loader from ?solaris? maybe?
Note that this is not without some risk.
On Fri, May 16, 2008 at 11:47:09AM -0700, Ben Calvert wrote:
On May 16, 2008, at 12:34 AM, Marc Espie wrote:
Or even add a SRC: element to your PKG_PATH as a fallback.
Marc - where is this documented? i can't find it in pkg_add, package, or
friends.
It was finished fairly recently, and
On 5/16/08, Ross Cameron [EMAIL PROTECTED] wrote:
Mmm this isn't the first time I've heard of bogus reports from Valgrind.
How does one politely inform the Debian project to not trust it explicitly
and to human audit anything it flags?
I think people are placing too much blame on
Awesome, thanks!
Normally I would have said I have never netbooted; it seems too hard to
setup but those look like great instructions.
And I was almost right in my paranoia about needing Solaris.
I still wonder though -- if OpenBSD's UFS is the same format as Solaris's, or
if OpenBSD can create a
Hello Daniel,
On 5/16/08 8:54 PM, Daniel Ouellet wrote:
I know at time it was said that OpenBSD is not for everything, but so
far, I still haven't find anything that I need that OpenBSD can't shine
doing.
Not to challenge you or anyone else personally: What's the best program
to look at
well, of course OB can read the file system.It loads the kernel after all.The
instructions are encouraging:
OB boot disk /flash-update
Cool, like, the flash-update is a kernel?Well, not that, but a program
runnable as if it is a kernel?
But it looks like the OS, er, the OS installer, is between OB
On Fri, 16 May 2008 22:35:00 +0200
chefren [EMAIL PROTECTED] wrote:
I know at time it was said that OpenBSD is not for everything, but
so far, I still haven't find anything that I need that OpenBSD
can't shine doing.
I can almost second that except for the few cases in which we really
need to
Rico Secada wrote:
On Fri, 16 May 2008 22:35:00 +0200
chefren [EMAIL PROTECTED] wrote:
I know at time it was said that OpenBSD is not for everything, but
so far, I still haven't find anything that I need that OpenBSD
can't shine doing.
I can almost second that except for the few cases in
On Fri, 16 May 2008, chefren wrote:
Hello Daniel,
On 5/16/08 8:54 PM, Daniel Ouellet wrote:
I know at time it was said that OpenBSD is not for everything, but so far,
I still haven't find anything that I need that OpenBSD can't shine doing.
Not to challenge you or anyone else personally:
On Fri, May 16, 2008 at 10:35:00PM +0200, chefren wrote:
Hello Daniel,
On 5/16/08 8:54 PM, Daniel Ouellet wrote:
I know at time it was said that OpenBSD is not for everything, but so far,
I still haven't find anything that I need that OpenBSD can't shine doing.
Not to challenge you or
Dear users,
i would like to add support for java on my 4.3 openbsd desktop. Has
anybody already done so? May you point a url where i could download
the package(s) from?
Thanks in advance.
See this link:
http://openbsd.org/faq/faq8.html#Programming
On 5/16/08, John Nietzsche [EMAIL PROTECTED] wrote:
Dear users,
i would like to add support for java on my 4.3 openbsd desktop. Has
anybody already done so? May you point a url where i could download
the package(s) from?
Thanks in
On Fri, May 16, 2008 at 5:03 PM, John Nietzsche
[EMAIL PROTECTED] wrote:
Dear users,
i would like to add support for java on my 4.3 openbsd desktop. Has
anybody already done so? May you point a url where i could download
the package(s) from?
Thanks in advance.
I have a Netra T1 that unexpectedly fell off the net. I think it was
alive but without working network. It was power cycled before I had a
chance to look at it. After the event I found this:
Apr 16 16:41:11 sun /bsd: gem0: device timeout
Apr 16 16:41:44 sun last message repeated 3 times
Apr 16
Any recommendations for an Ethernet card that fits into a PCI Express x8
slot? I didn't see anything specific on the hardware page or in the
archives.
This is for a Dell CR100 OEM server. The spec sheet mentions the usual
two Broadcom gigabit Ethernet interfaces, plus a PCI Express x8
On Fri, 16 May 2008 17:48:47 -0400
Daniel Ouellet [EMAIL PROTECTED] wrote:
Rico Secada wrote:
On Fri, 16 May 2008 22:35:00 +0200
chefren [EMAIL PROTECTED] wrote:
I know at time it was said that OpenBSD is not for everything, but
so far, I still haven't find anything that I need that
On Fri, 2008-05-16 at 23:26 +0200, Rico Secada wrote:
On Fri, 16 May 2008 22:35:00 +0200
chefren [EMAIL PROTECTED] wrote:
I know at time it was said that OpenBSD is not for everything, but
so far, I still haven't find anything that I need that OpenBSD
can't shine doing.
I can almost
On Fri, May 16, 2008 at 09:03:17PM -0300, John Nietzsche wrote:
i would like to add support for java on my 4.3 openbsd desktop. Has
anybody already done so? May you point a url where i could download
the package(s) from?
As the previous posters have pointed out, there are no JDK binary
http://leaf.dragonflybsd.org/mailarchive/kernel/2008-05/msg00038.html
Here is some more information including a list of keys:
http://metasploit.com/users/hdm/tools/debian-openssl/
Thought I'd share. It's possible I am wrong and this isn't a good
idea, but I can't think of any reason why it
64 matches
Mail list logo