Re: ~/bin, noexec, and security

And don't forget, you can also add additional home folders for scripts. I was developing some scripts that were in active use in /usr/local/sbin. By adding my ~/Tools to my path BEFORE, my test scripts would be selected instead of the active ones. I just had to give absolute paths for the existing

Re: ~/bin, noexec, and security

> >You have to decide for yourself what > > is right for your environment. > > Yeah, generally noone seems interested, though I did see it on the list > of CESG required improvements for whatever level it was for Linux > despite some of their policy being flawed in much more important ways, >

Re: Quick APU2 review

sven falempin [sven.falem...@gmail.com] wrote: > > This : https://github.com/jasperla/openbsd-wip ?? > Like : echo /bin/ksh > /etc/rc.securelevel ?? > echo sysctl kern.securelevel=-1 >/etc/rc.securelevel > > No patch here : wont work ? > Get the securelevel right first, then worry about the

Re: After resuming from sleep, HP laptop kb unusable

Hi All, Theo Buehler wrote: This problem should be fixed for this machine in -current. See this thread on tech@: https://marc.info/?l=openbsd-tech=146035659601245=2 and this commit: https://marc.info/?l=openbsd-cvs=146061765314970=2 I tried latest snapshot kernel and keyboard works after

Re: Quick APU2 review

On Tue, Apr 19, 2016 at 1:06 PM, Stuart Henderson wrote: > On 2016/04/19 12:33, sven falempin wrote: > > > > > > On Mon, Apr 18, 2016 at 6:07 PM, Stuart Henderson > > wrote: > > > > On 2016-04-18, Christian Weisgerber wrote: >

Re: Firefox Crashes; slow xfce

Le 19/04/2016 19:11, Daniel Boyd a écrit : Firefox has been quite stable, with or without the 'noscript' plug-in, since I increased my data allocation. The crashes that I saw previously were all due to running out of memory (I don't run a desktop, just a wm, nor do I use xdm, so it's easy to

Re: ~/bin, noexec, and security

> to allow some flexibility so that users can write and maintain custom > scripts for automating common tasks? Scripts can still be run under noexec as /bin/sh is in a partition mounted exec, so long as you run it with /bin/sh in front. It will break many scripts however. I intend to come up

Re: Firefox Crashes; slow xfce

> Firefox has been quite stable, with or without the 'noscript' plug-in, since I increased my data allocation. The crashes that I saw > previously were all due to running out of memory (I don't run a > desktop, just a wm, nor do I use xdm, so it's easy to see Firefox > errors on the vt where I

Re: Firefox Crashes; slow xfce

On Tue, Apr 19, 2016 at 1:54 PM, Daniel Boyd wrote: > I was OK with the performance in Firefox (though it was pretty slow). What > was *really* bothering me was the crashing. Does 'noscript' solve that as > well? Firefox has been quite stable, with or without the

Re: Python requirements.

ohh. Thanks Muhmmad i will upgrade to 5.9 then do it again.. On Tue, Apr 19, 2016 at 5:17 PM, Muhammad Muntaza wrote: > > On Apr 16, 2016 11:45 AM, "Jay Patel" wrote: > > > > Hi all, > Hi, > > > > Greetings! is it better to install Django and

Re: Firefox Crashes; slow xfce

I was OK with the performance in Firefox (though it was pretty slow). What was *really* bothering me was the crashing. Does 'noscript' solve that as well? I'm currently trying out xombrero and vimb. I feel like vimb might be a bit faster, but it doesn't recognize the Gmail composing text area

Re: Firefox Crashes; slow xfce

On Tue, Apr 19, 2016 at 12:58 PM, Federico Carrone wrote: > After migrating from Linux to OpenBSD on my desktop performance was really > bad inside Firefox and Chromium in 5.9 specially on big websites like gmail. > It was not usable, on an 4 core machine and with 16GB

Re: Quick APU2 review

On 2016/04/19 12:33, sven falempin wrote: > > > On Mon, Apr 18, 2016 at 6:07 PM, Stuart Henderson > wrote: > > On 2016-04-18, Christian Weisgerber wrote: > > On 2016-04-18, Stuart Henderson wrote: > > > >> From a

Re: Firefox Crashes; slow xfce

After migrating from Linux to OpenBSD on my desktop performance was really bad inside Firefox and Chromium in 5.9 specially on big websites like gmail. It was not usable, on an 4 core machine and with 16GB of RAM. After migrating to -current, they have become usable. If it is possible try to use

Re: Quick APU2 review

On Mon, Apr 18, 2016 at 6:07 PM, Stuart Henderson wrote: > On 2016-04-18, Christian Weisgerber wrote: > > On 2016-04-18, Stuart Henderson wrote: > > > >> From a different machine though. Compared to APU1 the APU2 has 4x the L2 >

Re: ~/bin, noexec, and security

It is a risk, but it's a small one. Generally speaking, the files will be owned by that user, executed as that user, and pose a minimal risk since "that user" is unprivileged. However, it does allow for compiling code that could be used as a local privilege escalation and calling it from your

Re: OpenSMTPD with filter-spamassassin / max-children

> Am 18.04.2016 um 16:56 schrieb ML mail : > > I have configured OpenSMTPD on OpenBSD 5.9 with the filter-spamassassin as a relay for a few of my webapp servers and have the problem when a webapp suddently sends over 30 mails at the same time. Basically the problem is that as I

Re: ~/bin, noexec, and security

On 19/04/16 18:48, Joe Schillinger wrote: Hi misc, Should /home be mounted as noexec by default for security? I noticed ~/bin is in the default $PATH (via /etc/skel/.profile), but isn't this somewhat of a security risk? Theoretically, if a threat has unprivileged access, wouldn't it be able to

Re: ~/bin, noexec, and security

> Should /home be mounted as noexec by default for security? I noticed > ~/bin is in the default $PATH (via /etc/skel/.profile), but isn't this > somewhat of a security risk? Theoretically, if a threat has unprivileged > access, wouldn't it be able to execute unauthorized programs? > > Someone

Re: After resuming from sleep, HP laptop kb unusable

On Tue, Apr 19, 2016 at 03:18:45PM +0200, Riccardo Mottola wrote: > Hi, > > I can suspend my laptop by closing the lid, hitting the powerbutton the > computer comes up again, however it looks frozen, I cannot type anything (or > I may type 1 or two chars before it locks up). It happens both under

Re: Firefox Crashes; slow xfce

I have also had problems with Firefox performance with OpenBSD (it's not a speed demon with Linux or FreeBSD, but it is faster on those systems). And I haven't found Chromium to be a good alternative -- too many crashes and "Oh, snap"s. But my experience with Firefox is that the problem is easily

After resuming from sleep, HP laptop kb unusable

Hi, I can suspend my laptop by closing the lid, hitting the powerbutton the computer comes up again, however it looks frozen, I cannot type anything (or I may type 1 or two chars before it locks up). It happens both under console as with X11 Actually, it is not frozen. I noticed that with a

Re: VLAN in 5.9 - NAT problem

Thanks for all your replies. > I think dhcpd.interfaces is a relic? For the longest time I've simply > been specifying my interfaces in dhcpd_flags. Good idea, but deleting /etc/dhcpd.interfaces does not make any change. > Since you did not submit a full pf.conf, I have no chance of knowing if

Re: After resuming from sleep, HP laptop kb unusable

There was a patch for keyboards not coming back again after suspend on April 14th. You should try a newer snapshot. On 04/19/16 15:18, Riccardo Mottola wrote: > Hi, > > I can suspend my laptop by closing the lid, hitting the powerbutton the > computer comes up again, however it looks frozen,

sometimes nic stops working (vte) - driver problem ?

Hi, short Version: I think there might be a problem with the vte (nic) driver. I'm searching for a way to gather all the Information to get this fixed. long Version: I've built a home router with following components. - Educake (very small X86 SBC around Arduino) [1] - USB Lan Card (axe0 nic

Re: Firefox Crashes; slow xfce

For what it's worth, Firefox may be quite usable even on an old config when you add plugins limiting javascript usage such as : - RequestPolicy - Noscript I use it daily on an 11 years old computer and prefere it over xombrero because of the following issues : -

Re: openbsd vs freebsd NAT performance

On Tue, Apr 19, 2016, at 05:34 AM, Uwe Werler wrote: > On 16. Apr 5:10:56, bluesun08 wrote: > > Hi, > > > > beside OpenBSD 5.8 i installed FreeBSD 10.3 on my router-pc. For routing i > > use pf. > > I noticed that the routing/NAT-performance is in FreeBSD noticeable higher > > than in OpenBSD. I

Re: openbsd vs freebsd NAT performance

On 16. Apr 5:10:56, bluesun08 wrote: > Hi, > > beside OpenBSD 5.8 i installed FreeBSD 10.3 on my router-pc. For routing i > use pf. > I noticed that the routing/NAT-performance is in FreeBSD noticeable higher > than in OpenBSD. I think that is due to the SMP-support of pf in FreeBSD. > > Is

Re: [patch] bgpctl more info in terse format

On Mon, Apr 18, 2016 at 08:09:50PM +0200, Claudio Jeker wrote: > The idea of terse is that you don't need to parse. So in a way I agree > with the diff. What I don't like is the inclusion of the number of > prefixes. That count requires a roundtrip to the RDE to find and sometimes > this takes a

Re: NVM Express (NVMe) support status

Great news! I will make testing and will let you know how it works. On Sat, Apr 16, 2016 at 12:18 AM, David Gwynne wrote: > >> On 12 Feb 2016, at 7:01 PM, Evgeniy Sudyr wrote: >> >> Hi all, >> >> I'm looking status of NVM Express support in -current

Re: help with kshrc

On Mon, Apr 18, 2016 at 04:42:56PM +0200, Marko Cupa? wrote: > Hi, > > in tcsh on FreeBSD, I use the following line in .tcshrc in order to > start xfce when looging on ttyv3: > > if ($tty == ttyv3) then > startxfce4 --with-ck-launch > logout > endif > > How can I achieve the same with