Re: The OpenBSD developers approve “optimizing assembler” and compilers?

On Fri, Oct 30, 2015 at 3:41 PM, Raul Miller wrote: > On Fri, Oct 30, 2015 at 8:13 AM, français wrote: >> The OpenBSD developers approve “optimizing assembler” and compilers? > > You are overgeneralizing from jokes. > > -- > Raul > I believe you're

Re: Diffie-Helman issue?

On Tue, Oct 20, 2015 at 7:43 PM, Giancarlo Razzolini <grazzol...@gmail.com> wrote: > Em 20-10-2015 10:25, Kimmo Paasiala escreveu: >> Someone correct me if I'm wrong but as far as I know the prime numbers >> used in DH group exchange are not secret but must be known by ev

Re: Diffie-Helman issue?

On Sat, Oct 17, 2015 at 11:57 AM, <22xtrv+f800c4addk...@guerrillamail.com> wrote: > According to > https://freedom-to-tinker.com/blog/haldermanheninger/how-is-nsa-breaking-so-m > uch-crypto/ > > "Since a handful of primes are so widely reused, the payoff, in > terms of connections they could

Re: match rules and priorities

On Thu, Oct 8, 2015 at 4:26 PM, Christer Solskogen wrote: > On Thu, Oct 8, 2015 at 10:57 AM, Ville Valkonen wrote: >> >> you can only queue outgoing traffic. Once you think about it, that makes >> sense. >> > > I boiled the rule down to this: >

Re: Is OpenSMTPD worthy of OpenBSD inclusion?

On Mon, Oct 5, 2015 at 10:52 PM, Артур Истомин wrote: > On Mon, Oct 05, 2015 at 01:07:24PM -0400, STeve Andre' wrote: >> The smtpd code is very good. > > static void > filter_tx_io(struct io *io, int evt) > { > struct filter_session *s = io->arg; > size_t

Re: ugen0 instead of urtwn0

On Tue, Sep 22, 2015 at 8:52 AM, Thuban wrote: >> Grab relevant >> >> src/sys/dev/usb/if_urtwn.c >> sys/dev/usb/usbdevs >> >> from CVS, than cd sys/dev/usb && make, than rebuild/install kernel >> as described in FAQ. >> > I rebuild and installed the kernel without any

Re: update/upgrade

On Sun, Sep 20, 2015 at 11:49 PM, Quartz wrote: > We have a bunch of low power embedded devices that we'd like to keep > reasonably up to date, but the disk space and cpu overhead of tracking > -stable is kind of a nonstarter. Is there another/better way of doing things >

Re: issue with pf syntax parser

On Fri, Sep 4, 2015 at 4:02 PM, Joseph A Borg wrote: > maybe the syntax error should point to the line where there are extra > characters after the escape? > > That would require making the backslash a lexical token in the pf.conf(5) syntax. Now it's just a simple escape

Re: Maintaining CAs not in cert.pem

On Thu, Jul 30, 2015 at 7:47 PM, Michael McConville mmcco...@sccs.swarthmore.edu wrote: Giancarlo Razzolini wrote: Em 30-07-2015 09:15, trondd escreveu: I guess the meat of the question is is certs.pem the only location for CAs used by the system? (ignoring application certificate stores,

Re: Firewall question: is using a NIC with multiple jacks considered insecure?

On Mon, Jul 27, 2015 at 12:46 PM, Quartz qua...@sneakertech.com wrote: Some years ago I remember reading that when using OpenBSD (or any OS, really) as a router+firewall it was considered inadvisable from a security standpoint to have the different networks all attached to a single network

Re: dhclient.conf alias declarations?

On Mon, Jul 27, 2015 at 4:21 AM, Edgar Pettijohn ed...@pettijohn-web.com wrote: On 07/26/15 19:10, Kimmo Paasiala wrote: On Mon, Jul 27, 2015 at 3:00 AM, Kimmo Paasiala kpaas...@gmail.com wrote: On Mon, Jul 27, 2015 at 2:33 AM, Josh Grosse j...@jggimi.homeip.net wrote: On 2015-07-26 19:12

Re: dhclient.conf alias declarations?

On Mon, Jul 27, 2015 at 3:00 AM, Kimmo Paasiala kpaas...@gmail.com wrote: On Mon, Jul 27, 2015 at 2:33 AM, Josh Grosse j...@jggimi.homeip.net wrote: On 2015-07-26 19:12, Kimmo Paasiala wrote: Hello, I'm in the process of migrating my router/firewall system from FreeBSD to OpenBSD and I came

Re: dhclient.conf alias declarations?

On Mon, Jul 27, 2015 at 2:33 AM, Josh Grosse j...@jggimi.homeip.net wrote: On 2015-07-26 19:12, Kimmo Paasiala wrote: Hello, I'm in the process of migrating my router/firewall system from FreeBSD to OpenBSD and I came across a minor problem. I want to have a static alias address

dhclient.conf alias declarations?

Hello, I'm in the process of migrating my router/firewall system from FreeBSD to OpenBSD and I came across a minor problem. I want to have a static alias address on an interface that is otherwise configured with DHCP. What I had in FreeBSD was this entry in /etc/dhclient.conf: alias {