Re: Is OpenBSD + PF accredited or certified in any way ?

Given such limitations, perhaps you might propose a more open evaluation and make code access for audit, including by escrow access for an established third-party authority, as a major criteria? To simplify things, I have just certified the 4.6/i386 GENERIC that runs my router as The Best

Re: bgpd log message

On Wed, Feb 03, 2010 at 03:02:16PM +1100, Rod Whitworth wrote: I sometimes see a bgpd message in /var/log/messages saying: /bsd: cannot forward from :: to 2zzz:z000::0005 nxt 17 received on vr2 (I snipped the datestamp and hostname to stop linewrap) It is not common and nothing bad seems to

Re: Disk architecture during install

On 2010-02-03, Adriaan misc.adri...@gmail.com wrote: On Tue, Feb 2, 2010 at 10:38 PM, Jean-Francois jfsimon1...@gmail.com wrote: Hi All, I am looking for a way to easily identify the various names given by OpenBSD to the disks before install, in order to be able to correctly make the slides

Re: bgpd log message

On Wed, 3 Feb 2010 10:35:33 +0100, Claudio Jeker wrote: On Wed, Feb 03, 2010 at 03:02:16PM +1100, Rod Whitworth wrote: I sometimes see a bgpd message in /var/log/messages saying: /bsd: cannot forward from :: to 2zzz:z000::0005 nxt 17 received on vr2 (I snipped the datestamp and hostname to

Re: Is OpenBSD + PF accredited or certified in any way ?

On 2010-02-01, Keith ke...@scott-land.net wrote: I've used OpenBSD PF for a number of years without issue and am now in the position that I want to create a dmz between the Internet and my organisations WAN. Our security people are asking if the firewall that we use is accreditated by

Re: Is OpenBSD + PF accredited or certified in any way ?

On 03/02/2010, at 8:49 PM, Stuart Henderson wrote: On 2010-02-01, Keith ke...@scott-land.net wrote: I've used OpenBSD PF for a number of years without issue and am now in the position that I want to create a dmz between the Internet and my organisations WAN. Our security people are asking

Candidaturas para casting de moda, inscreve-te j�!

Ola, Estco abertas candidaturas para casting na tua cidade! Nco percas esta oportunidade unica de poder fazer parte do mundo da moda, televisco e cinema. Verifica as varias oportunidades abertas neste momento em, http://www.estilus.eu/promo/index.php?em=wqwemail=bWlzY0BvcGVuYnNkLm9yZw==

Candidaturas para casting de moda, inscreve-te j�!

Ola, Estco abertas candidaturas para casting na tua cidade! Nco percas esta oportunidade unica de poder fazer parte do mundo da moda, televisco e cinema. Verifica as varias oportunidades abertas neste momento em, http://www.estilus.eu/promo/index.php?em=wqwemail=bWlzY0BvcGVuYnNkLm9yZw==

Re: Is OpenBSD + PF accredited or certified in any way ?

On Tue, Feb 02, 2010 at 02:15:00PM -0500, Brad Tilley wrote: Common Criteria - http://www.iso15408.net [...] I think the certification process can be very narrowly focused on a few parts of the system [...] Yup, that's the whole idea behind CC - all the evaluation does is verify the claims

Re: Is OpenBSD + PF accredited or certified in any way ?

2010/2/2 Keith ke...@scott-land.net: I've used OpenBSD PF for a number of years without issue and am now in the position that I want to create a dmz between the Internet and my organisations WAN. Our security people are asking if the firewall that we use is accreditated by ITSEC and I am

Re: Is OpenBSD + PF accredited or certified in any way ?

Eugene Yunak wrote: 2010/2/2 Keith ke...@scott-land.net: organisations WAN. Our security people are asking if the firewall that we use is accreditated by ITSEC and I am pretty sure it isn't but it turns out that our security people will be happy is the firewall is accredited for use by another

Re: pf questions (just to be sure)

Robert Gilaard wrote: max-src-conn-rate 2/30 implies 1 in 15 seconds No, it does not! Helmut -- No Swen today, my love has gone away My mailbox stands for lorn, a symbol of the dawn

ldattach and gpsd errors

I am trying to get ldattach and gpsd to work together, and I'm having issues. I have 3 USB GPS devices, and at least one seems to work with gpsd when not using ldattach (I haven't tested the others yet). When I run ldattach I get the following: # ldattach -d -p nmea /dev/cuaU0 /dev/ttyp2

4.6 pf/bridge bug?

Late last week I submitted PR 6302. This morning I had it take down two more machines, within minutes of each other. The hardware in this case was completely different: One box is a 32bit Intel with em(4); the other is an amd64 with nfe(4). Has anyone else run into this? -- bda cyberpunk is

relayd and weighting

Hi list, I'm planning to replace a GNU/Linux-driven load balancer (heartbeat, ldirectord) by an OpenBSD setup using pf, pfsync, and relayd. However, I discovered that I need 'weighting' (at least that is what it's called in ldirectord). For example, I have ten web servers to spread the load

Re: way to help: laptops and weekly

On Mon, 1 Feb 2010 13:57:09 + Owain Ainsworth zer...@googlemail.com wrote: On Mon, Feb 01, 2010 at 07:42:57AM +0200, Jussi Peltola wrote: On Mon, Feb 01, 2010 at 04:54:49AM +, Jacob Meuser wrote: On Mon, Feb 01, 2010 at 05:57:11AM +0200, Jussi Peltola wrote: On Mon, Feb 01, 2010

Re: Maximizing File/Network I/O

* nixlists nixmli...@gmail.com [2010-01-14 08:39]: On Wed, Jan 13, 2010 at 11:43 PM, Henning Brauer lists-open...@bsws.de wrote: * nixlists nixmli...@gmail.com [2010-01-14 03:21]: test results on old P4 are unfortunately pretty much pointless. Why? cpu0: Intel(R) Pentium(R) 4 CPU

Re: way to help: laptops and weekly

On Wed, Feb 03, 2010 at 07:00:56AM -0800, J.C. Roberts wrote: On Mon, 1 Feb 2010 13:57:09 + Owain Ainsworth zer...@googlemail.com wrote: On Mon, Feb 01, 2010 at 07:42:57AM +0200, Jussi Peltola wrote: On Mon, Feb 01, 2010 at 04:54:49AM +, Jacob Meuser wrote: On Mon, Feb 01,

Re: relayd and weighting

hi no , there is no weighting, but you can use the monitoring feature with an own script that messure the load of the box . if the load going over a limit the script give an exit 1 and relayd diden4t send traffic to this host. holger Hi list, I'm planning to replace a GNU/Linux-driven load

Seksi pokloni za Dan zaljubljenih

If you have trouble seeing this mail, click here. Top Shop Top E-revija: 45, 3. februar 2010. Najbolja praktiD na reE!enja i saveti za bolji Eivot PoD etna | Budi fit! | Lepota | Zdrav Eivot DomaDinstvo | Zabava i deca | Quelle katalog | Knjige Top Shop HIT TV proizvodi! 2xSweet Dream

Re: OpenBSD on Wyse C90LE

This is the brief preliminary report on Wyse C90LE. I downloaded yesterday the latest snapshot of OpenBSD 4.7 beta for i386. I installed on 2.0 USB of 2GB. I tested the live USB by booting DeLL optiplex 960 (Intel 2 core). Everything works perfect including X server. Conclusion is that USB

Eventos corporativos con mucha mas accion

Para Desuscribirse, por favor, haga click aquiacute; : http://mailing.marketing-ip.com.ar/box.php?funcml=unsub2nl=502mi=10216email=misc%40openbsd.org

Re: OpenBSD on Wyse C90LE

I booted one more time specifying bsd.sp kernel explicitly. Right before I am asked to explicitly enter the root device. I see the following repeating four times ehci_sync_hs:tsleep()=35 Predrag

spamd-sync logging? I see the udp traffic but nothing in logs to confirm sync

I'm trying to confirm that spamd is syncing the db properly between 2 hosts. When I startup spamd I get: listening for incoming connections. in /var/log/spamd; but nothing else. There is a lot of UDP traffic on 8025 between the 2 hosts but the databases are still different sizes. I'm

Re: Is OpenBSD + PF accredited or certified in any way ?

Le mardi 02 fivrier 2010 20:29:29, Martin Schrvder a icrit : 2010/2/2 Keith ke...@scott-land.net: Can anyone help me out ? If you need professional services: http://www.genua.de/produkte/firewall/genugate/index.en.html Their firewalls are OpenBSD based. Best Martin Not clear for

Re: Is OpenBSD + PF accredited or certified in any way ?

2010/2/3 Jean-Francois jfsimon1...@gmail.com: Not clear for me, does this firewall reach EAL4+ or EAL6 as stated in their doc Certified by the BSI according to CC at the level EAL 4+ http://www.genua.de/genua/kunden/index.en.html Best Martin

Fw: pico and/or nano in the releases and snapshots

Hare Krsna. From: Giridhari Sent: Thursday, February 04, 2010 7:37 AM To: dera...@cvs.openbsd.org ; dera...@openbsd.org Subject: Fw: pico and/or nano in the releases and snapshots ATTENTION Last night I saved a rat from certain death at the hands of a cat whose ovaries had been cut out. This

Re: Fw: pico and/or nano in the releases and snapshots

Giridhari wrote: blah blah pico or nano blah blah part of the distribution. and more blah blah blah. All that because you find 'pkg_add pico or pkg_add nano too difficult to type? -- -RSM http://www.erratic.ca

Re: Fw: pico and/or nano in the releases and snapshots

El 04/02/2010 0:52, Giridhari escribis: Hare Krsna. From: Giridhari Sent: Thursday, February 04, 2010 7:37 AM To: dera...@cvs.openbsd.org ; dera...@openbsd.org Subject: Fw: pico and/or nano in the releases and snapshots ATTENTION Last night I saved a rat from certain death at the hands of a

Re: OpenBSD on Wyse C90LE

On Wed, Feb 03, 2010 at 01:06:15PM -0500, Predrag Punosevac wrote: This is the brief preliminary report on Wyse C90LE. I downloaded yesterday the latest snapshot of OpenBSD 4.7 beta for i386. I installed on 2.0 USB of 2GB. I tested the live USB by booting DeLL optiplex 960 (Intel 2 core).

Re: Fw: pico and/or nano in the releases and snapshots

He's not asking you to do it, it is all up to the LordKrsna in this case. Mehma === On Wed, Feb 3, 2010 at 4:35 PM, Scott McEachern sc...@erratic.ca wrote: Giridhari wrote: blah blah pico or nano blah blah part of the distribution. and more blah blah blah. All that because you

Re: Fw: pico and/or nano in the releases and snapshots

I've been avoiding this OP, but I guess I'll weigh in now. This smells like roe. Don't feed it. On Thu, Feb 04, 2010 at 01:54:07AM +0100, Jesus Sanchez wrote: El 04/02/2010 0:52, Giridhari escribis: Hare Krsna. From: Giridhari Sent: Thursday, February 04, 2010 7:37 AM To:

Re: Fw: pico and/or nano in the releases and snapshots

Wow this easily is the best troll of the year so far. On Thu, Feb 04, 2010 at 10:52:32AM +1100, Giridhari wrote: Hare Krsna. From: Giridhari Sent: Thursday, February 04, 2010 7:37 AM To: dera...@cvs.openbsd.org ; dera...@openbsd.org Subject: Fw: pico and/or nano in the releases and

Re: Fw: pico and/or nano in the releases and snapshots

On Wed, Feb 03, 2010 at 07:06:49PM -0600, Marco Peereboom wrote: Wow this easily is the best troll of the year so far. really? to me it looks like someone was trying to be funny and totally failed. I give it a two thumbs down. -- jake...@sdf.lonestar.org SDF Public Access UNIX System -

Re: pico and/or nano in the releases and snapshots

If you are smart enough to write support for umodem for the MF626, then learning vi should be a breeze. Alternatively: If learning vi is so hard for you, then you havn't a hope in hell of writing support for umodem for the MF626. paulm On 4/02/2010, at 12:52 PM, Giridhari wrote: Hare

is the Lemote Yeeloong available in the US?

Really, I meant, Where would Carmen San Diego find a Lemote Yeeloong in the US? diana

Re: OpenBSD on Wyse C90LE

On Wed, Feb 04, 2010 at 1:01:38AM Jacob Meuser wrote: On Wed, Feb 03, 2010 at 01:06:15PM -0500, Predrag Punosevac wrote: This is the brief preliminary report on Wyse C90LE. I downloaded yesterday the latest snapshot of OpenBSD 4.7 beta for i386. I installed on 2.0 USB of 2GB. I tested the

Re: Fw: pico and/or nano in the releases and snapshots

Giridhari wrote: Hare Krsna. From: Giridhari Sent: Thursday, February 04, 2010 7:37 AM To: dera...@cvs.openbsd.org ; dera...@openbsd.org Subject: Fw: pico and/or nano in the releases and snapshots ATTENTION Last night I saved a rat from certain death at the hands of a cat whose ovaries had

Re: OpenBSD on Wyse C90LE

On Wed, Feb 03, 2010 at 08:48:35PM -0500, Predrag Punosevac wrote: Absolutely right. Kernel doesn't see USB drive from that point because USB is not 2.0 as advertised but it is 1.1. Crapy hardware. Seems that uhci doesn't pick up from ehci during the boot process. did you ty disabling echi

http://www.apache.org/dist/httpd/Announcement1.3.html

Given the above, is openbsd going to stick with Apache 1.3?

Re: OpenBSD on Wyse C90LE

Jacob Meuser wrote: Absolutely right. Kernel doesn't see USB drive from that point because USB is not 2.0 as advertised but it is 1.1. Crapy hardware. Seems that uhci doesn't pick up from ehci during the boot process. did you ty disabling echi in UKC? No, I didn't try. I will try tomorrow

Re: http://www.apache.org/dist/httpd/Announcement1.3.html

OpenBSD apache 1.3 != apache 1.3 What is wrong with apache in base? And if you don't like it what is wrong with apache 2 in ports? Or any other web server in ports for that matter. On Wed, Feb 03, 2010 at 07:21:03PM -0800, David wrote: Given the above, is openbsd going to stick with Apache

Re: Fw: pico and/or nano in the releases and snapshots

On Thu, Feb 4, 2010 at 11:35 AM, Scott McEachern sc...@erratic.ca wrote: Giridhari wrote: blah blah pico or nano blah blah part of the distribution. and more blah blah blah. All that because you find 'pkg_add pico or pkg_add nano too difficult to type? -- -RSM

Re: Fw: pico and/or nano in the releases and snapshots

Hello, While you're likely a troll, you may just be some sad religious zealot ranting on a mailing list. If you're not fond of vi(1), you may be interested in mg(1).. while it's not exactly the same as pico or nano, it's not that far off. Keep it off the lists next time, -Bryan.

Re: is the Lemote Yeeloong available in the US?

On Wed, 3 Feb 2010 18:45:13 -0700 (MST) Diana Eichert deich...@wrench.com wrote: Really, I meant, Where would Carmen San Diego find a Lemote Yeeloong in the US? diana I was wondering when Loongson based systems would start showing up, but the following was a wonderful surprise:

Re: is the Lemote Yeeloong available in the US?

On Wed, Feb 03, 2010 at 09:48:29PM -0800, J.C. Roberts wrote: On Wed, 3 Feb 2010 18:45:13 -0700 (MST) Diana Eichert deich...@wrench.com wrote: Really, I meant, Where would Carmen San Diego find a Lemote Yeeloong in the US? diana I was wondering when Loongson based systems would

disknice

I haven't really solved the problem I want to solve, but was able to whip this up pretty quickly. Basically, it's just a wrapper that runs a command and then starves it from running. disknice is a misnomer, it also gets starved from cpu, but at the current time the only way to slow down a

Re: disknice

On Thursday 04 February 2010 01:44:15 Ted Unangst wrote: I haven't really solved the problem I want to solve, but was able to whip this up pretty quickly. Basically, it's just a wrapper that runs a command and then starves it from running. disknice is a misnomer, it also gets starved from