On 4/17/24 16:34, Stuart Henderson wrote:
On 2024-04-17, Kapetanakis Giannis wrote:
One idea if you have old devices that cannot upgrade to a newer SSL/TLS
protocol would be to run some kind of proxy between the client and the radius
server (stunnel?)
Don't know how well this plays with
On 17/04/2024 17:37, Federico Giannici wrote:
> On 4/17/24 15:19, Stuart Henderson wrote:
>> This is most likely because of:
>>
>> https://www.openbsd.org/74.html
>> "Disabled TLSv1.0 and TLSv1.1 in libssl so that they may no longer be
>> selected for use."
>>
>> I don't think there's anything
On 4/17/24 15:19, Stuart Henderson wrote:
On 2024-04-17, Federico Giannici wrote:
Since we upgraded from OpenBSD amd64 7.3 to 7.5 (passing through 7.4)
the FreeRadius EAP authentication no longer works!
We are using a custom version of FreeRadius (because we had to do some
little changes and
On 2024-04-17, Kapetanakis Giannis wrote:
> One idea if you have old devices that cannot upgrade to a newer SSL/TLS
> protocol would be to run some kind of proxy between the client and the radius
> server (stunnel?)
>
> Don't know how well this plays with EAP.
> Maybe this will only work with
On 17/04/2024 16:19, Stuart Henderson wrote:
> On 2024-04-17, Federico Giannici wrote:
>> Since we upgraded from OpenBSD amd64 7.3 to 7.5 (passing through 7.4)
>> the FreeRadius EAP authentication no longer works!
>>
>> We are using a custom version of FreeRadius (because we had to do some
>>
On 2024-04-17, Federico Giannici wrote:
> Since we upgraded from OpenBSD amd64 7.3 to 7.5 (passing through 7.4)
> the FreeRadius EAP authentication no longer works!
>
> We are using a custom version of FreeRadius (because we had to do some
> little changes and a module of our own), and
Since we upgraded from OpenBSD amd64 7.3 to 7.5 (passing through 7.4)
the FreeRadius EAP authentication no longer works!
We are using a custom version of FreeRadius (because we had to do some
little changes and a module of our own), and everything worked correctly
for many years.
Now, with
Given that it appears that R6S
https://www.mail-archive.com/ports@openbsd.org/msg123717.html
and R6C support
https://www.mail-archive.com/ports@openbsd.org/msg124138.html
are in the ports version of uboot, I was interested in trying to make it
work. Unfortunately, I'm not having any luck via
May I suggest relaying these more basic questions to @rookies mail-list? I
think it would be great if we could have this channel reactivated,
dedicated to help folks like Karel learn how to navigate more basic stuff,
and keep misc@ for intermediary / advanced users inquiries.
On Wed, 17 Apr 2024
On 4/16/24 10:27 AM, Karel Lucas wrote:
First and most importantly, I would like to apologize to anyone who was
disturbed by my conversation. It is not my intention to offend people. I
may be curt, but that's not because it's in my character. In daily life
I work with electronics and
Dear Gábor,
I have a hint. My question is if iperf uses a single IP address pair. If
it is so, then there is a chance that only two CPU cores (one core per
direction) process all the interrupts.
You can easily check my hypothesis. During the iperf test, you should
execute a top command and
Dear @misc!
We have several more complex networks where openbsd is the router.
Structure of the network:
* OpenBSD redundant routers
- two OpenBSD
- CARP
- pfsync
- LACP trunks for LAN (2x 10Gbit) (1 side switch #1, 2 side switch
#2 + VPC ) use OpenBSD aggr device
* Cisco
On Mon, 15 Apr 2024, at 21:33, Thomas wrote:
> Hi all,
>
> I'm greatly enjoying OpenBSD and have it on most of my devices as I try
> to set up my "perfect lab". I would like some feedback / thoughts about
> one behaviour which I don't quite get.
>
> I have a VM for the world facing side of my
On Tue, Apr 16, 2024 at 06:08:13PM +0200, Peter J. Philipp wrote:
> On Tue, Apr 16, 2024 at 04:35:23PM +0100, Polarian wrote:
>
> > Does anyone have any suggestions on what I could try?
> OpenBSD 7.5-current (GENERIC.MP) #11: Thu Apr 11 17:03:03 MDT 2024
>
This is my dmesg, if anyone is interested:
OpenBSD 7.4 (GENERIC.MP) #3: Wed Feb 28 06:23:33 MST 2024
r...@syspatch-74-amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 4047122432 (3859MB)
avail mem = 3904729088 (3723MB)
random: good seed from bootblocks
mpath0 at root
On Tue, Apr 16, 2024 at 04:35:23PM +0100, Polarian wrote:
> Does anyone have any suggestions on what I could try?
Hi, I too have a RPI 4b that is currently my workstation. Near the time of
release I was building my own base and packages, which was right near the
times of the ld.so changes,
First and most importantly, I would like to apologize to anyone who was
disturbed by my conversation. It is not my intention to offend people. I
may be curt, but that's not because it's in my character. In daily life
I work with electronics and computers and am much less familiar with
Hello,
when I try to install ruby passenger from ports it fails.
mkdir -p buildout/nginx_dynamic/module_libpassenger_common/AppTypeDetector
c++ -o
buildout/nginx_dynamic/module_libpassenger_common/AppTypeDetector/CBindings.o
-Isrc/cxx_supportlib -Isrc/cxx_supportlib/vendor-copy
On Tue, Apr 16, 2024 at 12:01:38AM +0200, Karel Lucas wrote:
>
> Op 15-04-2024 om 22:20 schreef Peter N. M. Hansteen:
> > On Mon, Apr 15, 2024 at 10:09:31PM +0200, Karel Lucas wrote:
> > > This gives the following error messages when booting:
> > > no IP address found for igc1:network
> > >
I give up.
The obviously incomplete, hand edited ifconfig output shows three
interfaces that are (or appear to be, judging from the excerpts that
we are given) not configured with IP addresses, two of which
have a link, while the last does not.
For reasons unknown these three are joined in a
Hello,
Sorry, I think I sent the mails directly
to the people that replied to me.
I'm using an ASUS laptop and disabling the
VMD controller in UEFI setup worked, and
now my drive is visible as 'sd0'
Thanks!
Ali Yuruk
Apr 15, 2024, 21:47 by r...@gmx.net:
> On Mon, Apr 15, 2024 at
On Tue, Apr 16, 2024 at 01:54:31AM +0200, Mike Fischer wrote:
>The location { … } block in the port 80 server is non-functional because all
>requests are redirected to HTTPS. Add a `pass` to make it functional. Note: If
>you do then you don’t need the corresponding location { … } block in the
The location { … } block in the port 80 server is non-functional because all
requests are redirected to HTTPS. Add a `pass` to make it functional. Note: If
you do then you don’t need the corresponding location { … } block in the port
443 server any more.
Also, instead of:
> block return 301
On 2024-04-15, Karel Lucas wrote:
> /etc/hostname.bridge0:
> add igc0 add igc1 add igc2 blocknonip igc0 blocknonip igc1 blocknonip
> igc2 up
bridging with PF is an advanced topic, please get familiar with PF on a standard
routed firewall first
--
Please keep replies on the mailing list.
Op 15-04-2024 om 22:20 schreef Peter N. M. Hansteen:
On Mon, Apr 15, 2024 at 10:09:31PM +0200, Karel Lucas wrote:
This gives the following error messages when booting:
no IP address found for igc1:network
/etc/pf.conf:41: could not parse host specification
no IP address found for igc2:network
That's a possibility I hadn't thought of yet. But how do I do that, and
on which page can I find that in your book?
Op 15-04-2024 om 22:17 schreef Peter N. M. Hansteen:
The other option - if your network layout is such that it makes
sense to treat them to the same rule criteria - would be to
Op 14-04-2024 om 21:57 schreef Jens Kaiser:
Hello Karel,
if you want to start simply, then I would recommend to remove all marcos
from your pf.conf which are not referenced. You can add them later if
needed. As already state by others, there is a syntax error in marco
martians. If there are
On Mon, Apr 15, 2024 at 10:09:31PM +0200, Karel Lucas wrote:
> This gives the following error messages when booting:
> no IP address found for igc1:network
> /etc/pf.conf:41: could not parse host specification
> no IP address found for igc2:network
> /etc/pf.conf:42: could not parse host
On Mon, Apr 15, 2024 at 10:01:59PM +0200, Karel Lucas wrote:
> They both give a syntax error by booting.
>
> Op 14-04-2024 om 17:45 schreef Zé Loff:
> > pass in on $int_if proto udp to port 53
> > pass in on $int_if proto udp to $nameservers port 53
You're not giving us a lot to work
This gives the following error messages when booting:
no IP address found for igc1:network
/etc/pf.conf:41: could not parse host specification
no IP address found for igc2:network
/etc/pf.conf:42: could not parse host specification
Op 14-04-2024 om 19:59 schreef Peter N. M. Hansteen:
On Sun,
They both give a syntax error by booting.
Op 14-04-2024 om 17:45 schreef Zé Loff:
pass in on $int_if proto udp to port 53
pass in on $int_if proto udp to $nameservers port 53
Hi all,
I'm greatly enjoying OpenBSD and have it on most of my devices as I try to set
up my "perfect lab". I would like some feedback / thoughts about one behaviour
which I don't quite get.
I have a VM for the world facing side of my network. I have a wireguard network
to link it up to a
On Mon, Apr 15, 2024 at 08:38:51PM +0200, Wolfgang Pfeiffer wrote:
On Mon, Apr 15, 2024 at 08:29:21AM +0200, aliyu...@tutanota.com wrote:
Hello,
I'm currently trying to install OpenBSD on my laptop, and I'm coming
across a problem. The installation only detects my installation drive
and my
On Mon, Apr 15, 2024 at 08:29:21AM +0200, aliyu...@tutanota.com wrote:
Hello,
I'm currently trying to install OpenBSD on my laptop, and I'm coming
across a problem. The installation only detects my installation drive
and my other USB flash drive that I use for data storage, but not my
NVMe SSD
On Mon, 15 Apr 2024 14:17:10 +0200, =?utf-8?B?0KHRgtGA0LDRhdC40ZrQsCDQoNCw0LTQu
NGb?= wrote:
> Just to clarify, this particular instance of this issue seems to be related t
> o
> terminfo.
>
> In general, as I stated earlier, the log message
>
> ... [program_name]: vfprintf %s NULL in
On Mon, Apr 15, 2024 at 08:29:21AM +0200, aliyu...@tutanota.com wrote:
>
> I'm currently trying to install OpenBSD on my laptop, and I'm coming
> across a problem. The installation only detects my installation drive
> and my other USB flash drive that I use for data storage, but not my
> NVMe SSD
I started seeing an error where acme-client is not able to renew
Lets Encrypt certificates. I've tried on several different servers
but they all display the same error: "Error getting validation data"
Is anyone else seeing the same behavior?
Here are my configurations; these have been working
On Mon, Apr 15, 2024 at 02:25:04AM +, Jeremy Mates wrote:
> TL;DR it's TERMINFO related or when ~/.terminfo exists and no TERM file
> exists therein. Also trying to read "none" (or maybe also "none.db" when
> the TERMINFO thing happens) from the current working directory might not
> be a good
On Mon, Apr 15, 2024, at 1:29 AM, aliyu...@tutanota.com wrote:
> Hello,
>
> I'm currently trying to install OpenBSD on my laptop, and I'm coming
> across a problem. The installation only detects my installation drive
> and my other USB flash drive that I use for data storage, but not my
> NVMe SSD
Дана 24/04/15 02:25AM, Jeremy Mates написа:
> TL;DR it's TERMINFO related or when ~/.terminfo exists and no TERM file
> exists therein. Also trying to read "none" (or maybe also "none.db" when
> the TERMINFO thing happens) from the current working directory might not
> be a good idea, if an
Hello,
I'm currently trying to install OpenBSD on my laptop, and I'm coming
across a problem. The installation only detects my installation drive
and my other USB flash drive that I use for data storage, but not my
NVMe SSD I want to do an installation on.
This same problem also occurs in
Hi,
In this mail: https://marc.info/?l=openbsd-misc=170759396512738=2
I asked people what sip proxy they use. And got feedback, thank you!
However after a short code-reading of the software mentioned I became
distraught and want to do my own. I have worked on this saturday and
sunday and it's
TL;DR it's TERMINFO related or when ~/.terminfo exists and no TERM file
exists therein. Also trying to read "none" (or maybe also "none.db" when
the TERMINFO thing happens) from the current working directory might not
be a good idea, if an attacker can put naughty things into either of
those files
I'm a long time network engineer/firewall admin/make things work on our network
when it is broken.
First, ICMP Echo Request ( "ping" ) works, you proved that when you sent an
Echo Request to a host using it's IP address. The fact that DNS host
resolution fails has nothing to do with ICMP Echo
> On Apr 14, 2024, at 08:09, Karel Lucas wrote:
>
> Hi all,
Hi.
> So let's start simple and then proceed step by step. I want to continue with
> ping so that I can test the connection to the internet. This works: ping -c
> 10 195.121.1.34. But this doesn't work: ping -c 10 www.apple.com.
Hello Karel,
if you want to start simply, then I would recommend to remove all marcos
from your pf.conf which are not referenced. You can add them later if
needed. As already state by others, there is a syntax error in marco
martians. If there are syntax errors in pf.conf, the rules are not
I've found trying to upgrade such a system with this bug to be very
difficult.
It just hangs while attempting the upgrade (post the reboot).
Attempting an upgrade via a usb install does much the same. Is slow to
prompt to ask for keyboard layout. After that, just hangs.
Perhaps me having
On Sun, Apr 14, 2024 at 05:09:01PM +0200, Karel Lucas wrote:
> Hi all,
>
> Everything about PF is all very confusing to me at the moment, so any help
> is appreciated. So let's start simple and then proceed step by step. I want
> to continue with ping so that I can test the connection to the
There is a typo on the second line of the martians definition (spurious comma
and space).
Michael
> On Apr 14, 2024, at 11:09, Karel Lucas wrote:
>
> Hi all,
>
> Everything about PF is all very confusing to me at the moment, so any help is
> appreciated. So let's start simple and then
On Sun, Apr 14, 2024 at 05:09:01PM +0200, Karel Lucas wrote:
> Hi all,
>
> Everything about PF is all very confusing to me at the moment, so any help
> is appreciated. So let's start simple and then proceed step by step. I want
> to continue with ping so that I can test the connection to the
On Sun, Apr 14, 2024 at 04:33:58PM +0200, Karel Lucas wrote:
> Output from "tcpdump -neti pflog0":
> tcpdump: WARNING: snaplen raised from 116 to 160
> tcpdump: listening on pflog0, link-type PFLOG
> ...
> rule 4/(match) pass in on igc1: 192.168.2.252 > 17.253.53.207: icmp: echo
> request
> ...
Hi all,
Everything about PF is all very confusing to me at the moment, so any
help is appreciated. So let's start simple and then proceed step by
step. I want to continue with ping so that I can test the connection to
the internet. This works: ping -c 10 195.121.1.34. But this doesn't
work:
Output from "tcpdump -neti pflog0":
tcpdump: WARNING: snaplen raised from 116 to 160
tcpdump: listening on pflog0, link-type PFLOG
...
rule 4/(match) pass in on igc1: 192.168.2.252 > 17.253.53.207: icmp:
echo request
...
output from "pfctl -sr -R 4":
pass log inet proto icmp all icmp-type
This makes no difference.
Op 13-04-2024 om 22:06 schreef Peter J. Philipp:
On Sat, Apr 13, 2024 at 09:32:48PM +0200, Karel Lucas wrote:
What should I add then, considering my PF ruleset? To be honest, all of this
is very unclear to me at the moment, so any help is appreciated.
How about:
What should I add to get it working?
Op 13-04-2024 om 02:39 schreef Alexis:
Karel Lucas writes:
Ping only works partially. For example, this works: ping -c 10
195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I
suspect this has to do with DNS servers, but I don't know where to
On Thu, Apr 11, 2024 at 11:22:54AM +0200, Julian Huhn wrote:
> Moin!
>
> On Wed, Apr 10, 2024 at 04:24:48PM +0200, Julian Huhn wrote:
> >I tried unsuccessfully to obtain an IPv6 address with an umb(4) interface.
> >As
> >umb(4) supports IPv6 since 6.7, I seem to be doing something wrong. Can
>
On Sat, Apr 13, 2024 at 09:32:48PM +0200, Karel Lucas wrote:
> What should I add then, considering my PF ruleset? To be honest, all of this
> is very unclear to me at the moment, so any help is appreciated.
How about:
pass out inet proto { tcp, udp } from any to any port { 53, 853 } keep state
What should I add then, considering my PF ruleset? To be honest, all of
this is very unclear to me at the moment, so any help is appreciated.
Op 13-04-2024 om 02:39 schreef Alexis:
Karel Lucas writes:
Ping only works partially. For example, this works: ping -c 10
195.121.1.34. But this
> [drm] failed to load ucode RLC_RESTORE_LIST_CNTL(0x28) [drm] psp gfx
> command
I have found mention of similar lines output by Linux, even though the issue is
completely different:
https://lore.kernel.org/all/bug-216806-2...@https.bugzilla.kernel.org%2F/T/
there it was reported that
> It
On Sat, Apr 13, 2024 at 06:18:46AM +0200, Janne Johansson wrote:
> Den fre 12 apr. 2024 kl 19:41 skrev Karel Lucas :
> >
> > Hi all,
> >
> > Ping only works partially. For example, this works: ping -c 10
> > 195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I suspect
> > this has to
Hi Stuart.
Stuart Henderson wrote:
> On 2024-04-10, a...@abiscuola.com wrote:
> > Is there a way to restore the previous behaviour in relayd(8)
>
> Only by reverting the commit etc.
>
> > or, is there a known workaround for restic, in this case?
>
> That's probably a question for restic
On 2024-04-12, Страхиња Радић wrote:
> Дана 24/04/12 08:46AM, Stuart Henderson написа:
>> Unrelated, but: pkg_add -U is mostly for people running snapshots,
>> wanting to install a new package without doing a full pkg_add -u run.
>
> According to pkg_add(1) manpage, the -U option is used to
On 2024-04-13, Janne Johansson wrote:
> Den fre 12 apr. 2024 kl 20:22 skrev Karel Lucas :
>> Traceroute still won't work.
>> Can
>> anyone give me some starting points here?
>
> Put "log" on all your block/pass rules, read the logs (man pflog for
> help) and see which rule the traceroute packets
Den fre 12 apr. 2024 kl 20:22 skrev Karel Lucas :
> Traceroute still won't work.
> Can
> anyone give me some starting points here?
Put "log" on all your block/pass rules, read the logs (man pflog for
help) and see which rule the traceroute packets hit.
Adapt and extend your pf.conf accordingly
Den fre 12 apr. 2024 kl 19:41 skrev Karel Lucas :
>
> Hi all,
>
> Ping only works partially. For example, this works: ping -c 10
> 195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I suspect
> this has to do with DNS servers, but I don't know where to start
> troubleshooting. Can
Karel Lucas writes:
Ping only works partially. For example, this works: ping -c 10
195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I
suspect this has to do with DNS servers, but I don't know where
to start troubleshooting.
Indeed, you appear to have no rules allowing
On 2024-04-12 13:04, Karel Lucas wrote:
Hi all,
Traceroute still won't work. I'm playing around with the rules and
wondering what's right and what's wrong with the traceroute rules. Can
anyone give me some starting points here?
Start with: tcpdump -nettti pflog0. Adjust to suit your
On Fri, Apr 12, 2024 at 07:04:16PM +0200, Karel Lucas wrote:
> Hi all,
>
> Traceroute still won't work. I'm playing around with the rules and wondering
> what's right and what's wrong with the traceroute rules. Can anyone give me
> some starting points here?
>
>
> /etc/pf.conf:
>
> ext_if =
Hi all,
Traceroute still won't work. I'm playing around with the rules and
wondering what's right and what's wrong with the traceroute rules. Can
anyone give me some starting points here?
/etc/pf.conf:
ext_if = igc0 # Extern interface
int_if = "{ igc1, igc2 }" # Intern
Hi all,
Ping only works partially. For example, this works: ping -c 10
195.121.1.34. But this doesn't work: ping -c 10 www.apple.com. I suspect
this has to do with DNS servers, but I don't know where to start
troubleshooting. Can someone help me?
/etc/pf.conf:
ext_if = igc0
Thanks for the answer, it seems I'm not missing dirhashes after all.. :)
-Dan
Apr 12, 2024 16:25:51 Otto Moerbeek :
> On Fri, Apr 12, 2024 at 12:21:43PM +0200, Dan wrote:
>
>>
>> Really, I fear this value is due to a wrong tweak..
>
>
> Fear is a bad advisor.
>
> If you look at man 3
On Fri, Apr 12, 2024 at 01:06:10PM +0200, Dan wrote:
> Hello,
>
> Intringuing this subject from my daughter watching mum doing
> lessons at the computer using her mobile. It came out that from
> her sparkling mind mum need to connect her mobile to the laptop
> (an old 2011 mac) to watch to her
On Fri, Apr 12, 2024 at 12:21:43PM +0200, Dan wrote:
>
> Really, I fear this value is due to a wrong tweak..
Fear is a bad advisor.
If you look at man 3 sysctl, you'll see what vfs.ffs.dirhash_mem
means:
FFS_DIRHASH_MEM (vfs.ffs.dirhash_mem)
The
Hello,
Intringuing this subject from my daughter watching mum doing
lessons at the computer using her mobile. It came out that from
her sparkling mind mum need to connect her mobile to the laptop
(an old 2011 mac) to watch to her student.
Do you think remote the possibility to have some screen
Really, I fear this value is due to a wrong tweak..
-Dan
Apr 12, 2024 09:09:06 Dan :
>
>> Yes, that fixes it for me:
>>
>> $ sysctl vfs.ffs
>> vfs.ffs.dirhash_dirsize=2560
>> vfs.ffs.dirhash_maxmem=5242880
>> vfs.ffs.dirhash_mem=767359
>
>
> I have this value in 7.4 stable:
>
>
> Yes, that fixes it for me:
>
> $ sysctl vfs.ffs
> vfs.ffs.dirhash_dirsize=2560
> vfs.ffs.dirhash_maxmem=5242880
> vfs.ffs.dirhash_mem=767359
I have this value in 7.4 stable:
vfs.ffs.dirhash_mem=1412837
is it correct? or how to fix it?
-Dan
Дана 24/04/12 08:46AM, Stuart Henderson написа:
> Unrelated, but: pkg_add -U is mostly for people running snapshots,
> wanting to install a new package without doing a full pkg_add -u run.
According to pkg_add(1) manpage, the -U option is used to update the
dependencies if required before
On Thu, Apr 11, 2024, at 3:31 PM, Malo Langer wrote:
> Hey,
> I configured my root directory ('/') to be read-only in the fstab on
> CentOS 7.5 (see dmesg output below). However, the system does not boot
> in read-only mode; I have to switch it to read-only manually.
> Did I miss something?
>
>
Hey,
I configured my root directory ('/') to be read-only in the fstab on CentOS
7.5 (see dmesg output below). However, the system does not boot in
read-only mode; I have to switch it to read-only manually.
Did I miss something?
Please find attached a copy of the 'fstab' contents and the output
On 2024-04-11, Страхиња Радић wrote:
> Yes, I have (using the fw_update). I also did `pkg_add -Uu` after upgrading
> to
> 7.5, for that matter.
Unrelated, but: pkg_add -U is mostly for people running snapshots,
wanting to install a new package without doing a full pkg_add -u run.
It will
Hi all - hope you guys are doing great.
I've been struggling to config WireGuard for a while (roadwarrior on my
end, VPN service subscription on server side). Mostly due to my own
limitations, really. Yesterday I finally managed to make it work, after
upgrading to 7.5 RELEASE, through a lot of
Hello,
the current release errata link is missing from
http://www.openbsd.org/security.html once again.
Kind regards,
Piotr Durlej
0
C United States
P New York
T Lansing
Z 14882
O Ready-to-Run Software, Inc.
I Jeff Moskow
A 212 Cedar Cove
M open...@rtr.com
U http://www.rtr.com/Ready-to-Run_Software/OpenBSD/
B 607-533-8649
X 607-533-UNIX
N We have been installing, supporting and managing OpenBSD systems for
over 20 years.
Дана 24/04/11 12:45PM, Jose Maldonado написа:
> Hi! Are you installed the firmware?
Yes, I have (using the fw_update). I also did `pkg_add -Uu` after upgrading to
7.5, for that matter.
> doas fw_update -av
I get:
$ doas fw_update -av
fw_update: add none; update none; keep
On 2024-04-10, a...@abiscuola.com wrote:
> Is there a way to restore the previous behaviour in relayd(8)
Only by reverting the commit etc.
> or, is there a known workaround for restic, in this case?
That's probably a question for restic really (or possibly the
requirement is coming from a 3rd
On Thu, Apr 11, 2024 at 07:45:18PM +0200, Karel Lucas wrote:
> The typos have been fixed, and PF's ruleset will be put under a magnifying
> glass.
This is a bit of a personal preference, but (assuming you trust any
traffic generated on the firewall itself), I find it helpful to
start the
On Thu, Apr 11, 2024 at 06:15:14PM +0200, Otto Moerbeek wrote:
> On Thu, Apr 11, 2024 at 05:29:14PM +0200, Otto Moerbeek wrote:
>
> > On Thu, Apr 11, 2024 at 05:20:24PM +0200, Otto Moerbeek wrote:
> >
> > > On Thu, Apr 11, 2024 at 05:08:01PM +0200, Federico Giannici wrote:
> > >
> > > > On
PF's ruleset will be put under a magnifying glass.
Op 11-04-2024 om 11:09 schreef Peter N. M. Hansteen:
On Thu, Apr 11, 2024 at 09:34:15AM +0100, Zé Loff wrote:
pass log out on egress inet proto udp to port 33433:33626 # for IPv4
pass log out on egress inet6 proto udp to port 33433:33626 # for
The typos have been fixed, and PF's ruleset will be put under a
magnifying glass.
Op 11-04-2024 om 10:34 schreef Zé Loff:
On Wed, Apr 10, 2024 at 11:53:47PM +0200, Karel Lucas wrote:
Hi all,
With the new firewall I am setting up I cannot connect to the internet. That
starts with traceroute,
I do get the following error message: sysctl: toplevel name net/inet6 in
net/inet6.ip6.forwarding is invalid
Op 11-04-2024 om 09:49 schreef Peter N. M. Hansteen:
On Wed, Apr 10, 2024 at 11:53:47PM +0200, Karel Lucas wrote:
With the new firewall I am setting up I cannot connect to the
Output van 'sysctl net.inet | grep forward':
net.inet.ip.forwarding=1
net.inet.ip.mforwarding=0
This may sound strange, but I don't get an error message when booting. I
did have that problem because the word 'log' appeared in some lines, but
that has already been resolved. I'm going to apply a
El Thu, 11 Apr 2024 11:36:54 +0200
Страхиња Радић escribió:
> Hi, I noticed that running glxinfo on OpenBSD-release 7.5 amd64 gives
> an error:
>
> $ glxinfo
> X Error of failed request: BadValue (integer parameter out
> of range for operation)
> Major opcode of failed
On Thu, Apr 11, 2024 at 05:29:14PM +0200, Otto Moerbeek wrote:
> On Thu, Apr 11, 2024 at 05:20:24PM +0200, Otto Moerbeek wrote:
>
> > On Thu, Apr 11, 2024 at 05:08:01PM +0200, Federico Giannici wrote:
> >
> > > On 4/11/24 16:15, Claudio Jeker wrote:
> > > > On Thu, Apr 11, 2024 at 03:36:29PM
.
On 11/04/2024 16:43, Julian Huhn wrote:
Moin!
On Thu, Apr 11, 2024 at 04:01:49PM +0400, Willy Manga wrote:
On 10/04/2024 18:24, Julian Huhn wrote:
x270$ ifconfig umb0
umb0: flags=8851 mtu 1500
index 5 priority 6 llprio 3
roaming enabled registration home network
On Thu, Apr 11, 2024 at 05:20:24PM +0200, Otto Moerbeek wrote:
> On Thu, Apr 11, 2024 at 05:08:01PM +0200, Federico Giannici wrote:
>
> > On 4/11/24 16:15, Claudio Jeker wrote:
> > > On Thu, Apr 11, 2024 at 03:36:29PM +0200, Federico Giannici wrote:
> > > > On 4/11/24 14:12, Nick Holland wrote:
On Thu, Apr 11, 2024 at 05:08:01PM +0200, Federico Giannici wrote:
> On 4/11/24 16:15, Claudio Jeker wrote:
> > On Thu, Apr 11, 2024 at 03:36:29PM +0200, Federico Giannici wrote:
> > > On 4/11/24 14:12, Nick Holland wrote:
> > > > On 4/11/24 05:47, Federico Giannici wrote:
> > > > > We have a
On 4/11/24 16:15, Claudio Jeker wrote:
On Thu, Apr 11, 2024 at 03:36:29PM +0200, Federico Giannici wrote:
On 4/11/24 14:12, Nick Holland wrote:
On 4/11/24 05:47, Federico Giannici wrote:
We have a server with A LOT of files in some directories (an email
server in maildir format).
Since we
On Thu, Apr 11, 2024 at 04:15:19PM +0200, Claudio Jeker wrote:
> On Thu, Apr 11, 2024 at 03:36:29PM +0200, Federico Giannici wrote:
> > On 4/11/24 14:12, Nick Holland wrote:
> > > On 4/11/24 05:47, Federico Giannici wrote:
> > > > We have a server with A LOT of files in some directories (an email
On Thu, Apr 11, 2024 at 03:36:29PM +0200, Federico Giannici wrote:
> On 4/11/24 14:12, Nick Holland wrote:
> > On 4/11/24 05:47, Federico Giannici wrote:
> > > We have a server with A LOT of files in some directories (an email
> > > server in maildir format).
> > >
> > > Since we upgraded from
On 4/11/24 14:12, Nick Holland wrote:
On 4/11/24 05:47, Federico Giannici wrote:
We have a server with A LOT of files in some directories (an email
server in maildir format).
Since we upgraded from OpenBSD amd64 7.3 to 7.5 (passing through 7.4) it
became very very very slow to access these
501 - 600 of 183704 matches
Mail list logo