On 23 Aug 2005, at 01:33, Theo de Raadt wrote:
We are heading towards making the real 3.8 release soonish. I would
like to ask the community to do lots of testing over the next week if
they can.
For info, here is the latest 3.8 i386 snapshot booting on a 'common
corporate workhorse' HP
Kevin [EMAIL PROTECTED] writes:
Coming back to an open terminal that I know I locked was a bit of a shock.
Almost makes me wonder if xlock can be trusted.
If you use any mode other than a blank screen it's definitely not to be
trusted. All those eye candy modes are designed to be eye candy and
On Wed, Aug 31, 2005 at 04:17:06PM -0500, Kevin wrote:
On 8/31/05, Christopher Linn [EMAIL PROTECTED] wrote:
On Wed, Aug 31, 2005 at 11:12:07AM -0600, Peter Valchev wrote:
I've been testing 3.8 on a couple of i386 systems (soon sparc also),
including installing more of the 3.8 beta
On 9/1/05, Christopher Linn [EMAIL PROTECTED] wrote:
On Wed, Aug 31, 2005 at 04:17:06PM -0500, Kevin wrote:
On 8/31/05, Christopher Linn [EMAIL PROTECTED] wrote:
Kevin Kadow wrote:
only found a couple of X applications (xtacy, xlock) failing on
signal 11.
I've been testing 3.8 on a couple of i386 systems (soon sparc also),
including installing more of the 3.8 beta packages than I would use
normally. So far I am impressed by UP/MP performance, and have
only found a couple of X applications (xtacy, xlock) failing on signal 11.
the ports@
On Wed, Aug 31, 2005 at 11:12:07AM -0600, Peter Valchev wrote:
I've been testing 3.8 on a couple of i386 systems (soon sparc also),
including installing more of the 3.8 beta packages than I would use
normally. So far I am impressed by UP/MP performance, and have
only found a couple of X
On 8/22/05, Theo de Raadt [EMAIL PROTECTED] wrote:
We are heading towards making the real 3.8 release soonish. I would
like to ask the community to do lots of testing over the next week if
they can.
What is the best way to test? Should we be downloading snapshots daily?
Install
On Thu, 25 Aug 2005 14:57:37 +1000, Shane J Pearson wrote:
Is that means that 3.8 might be unstable ? Maybe all who wants/needs
stable systems need to run 3.7 ?
However Genadijus only asked questions. He did not make a statement.
Seems like pretty innocent questions to me that are easily
On Thu, 25 Aug 2005 14:34:35 +0800, Uwe Dippel wrote:
whatever. Wrong post, wrong place. Discard !
Uwe
I have made breif changes to the OpenBSD page on wikipedia detailing
the systems security regarding these new changes. My information may
be slightly inaccurate or misleading, please feel free to check it.
Diff here:
http://en.wikipedia.org/w/index.php?title=OpenBSDdiff=21793744oldid=21739418
On 8/24/05, Ted Unangst [EMAIL PROTECTED] wrote:
On Wed, 24 Aug 2005, Siju George wrote:
just one quick question.
where do I actually learn more about page, buffer, malloc etc??
Is this book enough?
http://www.amazon.com/exec/obidos/ISBN%3D0201549794/openbsdA/104-8401808-3342305
or
Thanks for not taking the easy route.
Changes are always painful, but if they deliver then it's worth it.
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in any case, and try to solve the problems as we run into
them.
Is that means that 3.8 might be unstable ? Maybe all who wants/needs
stable systems need to run 3.7 ?
No,it is clear that he is talking about the problems *other* people's
(buggy) software will have.
On 8/24/05, Genadijus Paleckis [EMAIL PROTECTED] wrote:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in any case, and try to solve the
Antonios Anastasiadis wrote:
No,it is clear that he is talking about the problems *other* people's
(buggy) software will have.
On 8/24/05, Genadijus Paleckis [EMAIL PROTECTED] wrote:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in
Genadijus Paleckis wrote:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this
protection mechanism in any case, and try to solve the
problems as we run into them.
Is that means that 3.8 might be unstable ? Maybe all who
wants/needs stable systems need to run
Genadijus Paleckis [EMAIL PROTECTED] writes:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in any case, and try to solve the problems as we run into
them.
Is that means that 3.8 might be unstable ? Maybe all who wants/needs
Theo de Raadt wrote:
Of course not. HOW CAN IT? Get real! The hardware is STILL only
providing permissions at the page level!
If you have aggressive amounts of ram and/or patience you could have
something along the malloc.conf P-option for ALL sizes.
Of course it would suck for any app
Hello!
On Wed, Aug 24, 2005 at 02:28:25PM +0300, Genadijus Paleckis wrote:
[...]
Is that means that 3.8 might be unstable ? Maybe all who wants/needs
stable systems need to run 3.7 ?
well, from base system side I gues it will be minimal problems, but what
about ports ? because almost everyone
On 2005/08/24 14:28:25, Genadijus Paleckis wrote:
well, from base system side I gues it will be minimal problems, but what
about ports ? because almost everyone using it.
If software segfaults because of this, it's because it's already
doing something wrong, and it could already be giving
Artur Grabowski wrote:
Genadijus Paleckis [EMAIL PROTECTED] writes:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this
protection mechanism in any case, and try to solve the
problems as we run into them.
Is that means that 3.8 might be unstable ? Maybe
Genadijus Paleckis wrote:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in any case, and try to solve the problems as we run into
them.
Is that means that 3.8 might be unstable ? Maybe all who wants/needs
stable systems need to run
Hello!
On Wed, Aug 24, 2005 at 08:02:54AM -0500, Dave Feustel wrote:
On Wednesday 24 August 2005 07:04, Hannah Schroeter wrote:
I *am* a bit sad about the fact that there're no running Lisp
implementations for OpenBSD
Does (X)emacs work?
Yes, but I meant (and neglected to say explicitly)
On Wednesday 24 August 2005 07:04, Hannah Schroeter wrote:
A few things that get bitten are some packages doing their own and very
different memory management, but can't avoid malloc altogether.
That is ports/lang/clisp, that seems to be also gprolog
Can you describe how these programs manage
On Wednesday 24 August 2005 08:04, Hannah Schroeter wrote:
Hello!
On Wed, Aug 24, 2005 at 08:02:54AM -0500, Dave Feustel wrote:
On Wednesday 24 August 2005 07:04, Hannah Schroeter wrote:
I *am* a bit sad about the fact that there're no running Lisp
implementations for OpenBSD
Does
On Wed, 24 Aug 2005, Damien Miller wrote:
Remember that most of the developers run -current throughout the
development cycle (often in production).
-d
and Theo get's really pissed off when someone breaks the tree so it won't
compile and/or the change creates disfunction in other parts of
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
Diana Eichert
Sent: Wednesday, August 24, 2005 10:08 AM
To: Miscellaneous OBSD
Subject: Re: 3.8 beta requests
On Wed, 24 Aug 2005, Damien Miller wrote:
Remember that most of the developers run
hmm, on Tue, Aug 23, 2005 at 09:23:27AM -0700, Raymond Lillard said that
Maybe a slogan along the lines of, Is your software good enough
for OpenBSD!! Perhaps it could be worked into the release's
theme.
that is truly a brilliant idea ;-)
any artists here? make a designed for puffy logo.
On Wed, Aug 24, 2005 at 08:09:36AM -0500, Dave Feustel wrote:
On Wednesday 24 August 2005 07:04, Hannah Schroeter wrote:
A few things that get bitten are some packages doing their own and very
different memory management, but can't avoid malloc altogether.
That is ports/lang/clisp, that
On 8/25/05, -f [EMAIL PROTECTED] wrote:
hmm, on Tue, Aug 23, 2005 at 09:23:27AM -0700, Raymond Lillard said that
Maybe a slogan along the lines of, Is your software good enough
for OpenBSD!! Perhaps it could be worked into the release's
theme.
that is truly a brilliant idea ;-)
any
On Wednesday 24 August 2005 10:56, Marc Espie wrote:
On Wed, Aug 24, 2005 at 08:09:36AM -0500, Dave Feustel wrote:
On Wednesday 24 August 2005 07:04, Hannah Schroeter wrote:
A few things that get bitten are some packages doing their own and very
different memory management, but can't
A few things that get bitten are some packages doing their own and very
different memory management, but can't avoid malloc altogether.
That is ports/lang/clisp, that seems to be also gprolog
Can you describe how these programs manage to seg fault doing their
memory management? How do
The real problem is people who encounter a problem and fail to report
it. They just think this is crap and go on to something else.
I think the developers need to address the problems that get brought up, too.
I took the time to post a complete bug report (good and failing dmesg) about a
bug
Hello!
On Wed, Aug 24, 2005 at 12:57:27PM -0500, Andrew Dyer wrote:
It was very frustrating to try and make things better and get ignored.
I can share some frustration. About a year ago, I made a port for erlang
(the current port just doesn't work at all, and it's ancient anyway,
so *anything*
Hi Art,
On 24/08/2005, at 9:38 PM, Artur Grabowski wrote:
Genadijus Paleckis [EMAIL PROTECTED] writes:
Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this
protection
mechanism in any case, and try to solve the problems as we run into
them.
Is that means
I am not sure if this is related. But when I code assembly to pass
a double precision floating point value (%xmm0) to printf, my program will
crash
without a stack frame. I am fine for passing strings and integers.
Here's the simple code:
.section .data
str:
.string %f\n
test:
.float
Your mail has nothing to do with the 3.8 release, nor with testing our
code, nor with the malloc stuff I posted. You are hijacking yet
another thread with your broken code, and it is quite frankly getting
boring.
I am not sure if this is related. But when I code assembly to pass
a double
On Mon, 22 Aug 2005 17:33:40 -0600
Theo de Raadt [EMAIL PROTECTED] wrote:
We are heading towards making the real 3.8 release soonish.
I was wondering, when can we start pre-ordering our cd-sets?
Cheers,
Jasper
--
Security is decided by quality -- Theo de Raadt
We are heading towards making the real 3.8 release soonish.
I was wondering, when can we start pre-ordering our cd-sets?
We normally setup pre-orders 1 month before. We might do it a bit
earlier... dunno.
But it is hard to do when artwork is not final yet :)
On Tue, 23 Aug 2005 01:37:12 -0600
Theo de Raadt [EMAIL PROTECTED] wrote:
We are heading towards making the real 3.8 release soonish.
I was wondering, when can we start pre-ordering our cd-sets?
We normally setup pre-orders 1 month before. We might do it a bit
earlier... dunno.
But
2005/8/23, imEnsion [EMAIL PROTECTED]:
snip
I wonder what the theme for this release will be...
/snip
hopefully not something political *cough* the 3.4 release
https://https.openbsd.org/images/poster10.jpg
I really really liked that one.
On 8/23/05, Theo de Raadt [EMAIL PROTECTED] wrote:
This release will bring a lot of new ideas from us. One of them in
particular is somewhat risky.
First off: I like the idea. The technical merit is obvious. I have a
question regarding the timing, though.
Is there a particular reason to go
On Tue, 23 Aug 2005 01:37:12 -0600, Theo de Raadt wrote:
We are heading towards making the real 3.8 release soonish.
I was wondering, when can we start pre-ordering our cd-sets?
We normally setup pre-orders 1 month before. We might do it a bit
earlier... dunno.
But it is hard to do when
On Tue, Aug 23, 2005 at 01:32:11PM +0200, Rogier Krieger wrote:
On 8/23/05, Theo de Raadt [EMAIL PROTECTED] wrote:
This release will bring a lot of new ideas from us. One of them in
particular is somewhat risky.
First off: I like the idea. The technical merit is obvious. I have a
...on Tue, Aug 23, 2005 at 09:42:02AM +0200, J. Lievisse Adriaanse wrote:
I wonder what the theme for this release will be...
Something like we help making your
software more secure - by default?
(Ok, it's not more secure, but more
correct, probably...)
Generally I think it's a really good
On 8/23/05, Theo de Raadt [EMAIL PROTECTED] wrote:
This release will bring a lot of new ideas from us. One of them in
particular is somewhat risky.
First off: I like the idea. The technical merit is obvious. I have a
question regarding the timing, though.
Is there a particular reason
J. Lievisse Adriaanse wrote:
On Tue, 23 Aug 2005 01:37:12 -0600
Theo de Raadt [EMAIL PROTECTED] wrote:
We are heading towards making the real 3.8 release soonish.
I was wondering, when can we start pre-ordering our cd-sets?
We normally setup pre-orders 1 month before. We might do it a bit
On 8/23/05, Theo de Raadt [EMAIL PROTECTED] wrote:
These changes have been worked on for almost 3 years now. And they
went in right after the tree unlocked after 3.7.
Thanks for setting me straight. It only means that, at least for my
systems, the transition has been pretty painless so far.
You've got to use your head, otherwise you'll stick your neck out and
say stupid things.
Of course not. HOW CAN IT? Get real! The hardware is STILL only
providing permissions at the page level!
Apparently the new malloc(3) implementation doesn't stop me from writing past
the end of buffer
Hello Theo,
Apparently the new malloc(3) implementation doesn't stop me from writing past
the end of buffer as long as I am inside the last page.
(Please forgive me beforehand if I am missing something too obvious)
consider the following program:
// We just want to see how far after end of
On 8/24/05, Theo de Raadt [EMAIL PROTECTED] wrote:
You've got to use your head, otherwise you'll stick your neck out and
say stupid things.
Of course not. HOW CAN IT? Get real! The hardware is STILL only
providing permissions at the page level!
just one quick question.
where do I
On Wed, 24 Aug 2005, Siju George wrote:
just one quick question.
where do I actually learn more about page, buffer, malloc etc??
Is this book enough?
http://www.amazon.com/exec/obidos/ISBN%3D0201549794/openbsdA/104-8401808-3342305
or are there other good books out there?
it's useful.
Am Dienstag, 23. August 2005 01:33 CEST schrieb Theo de Raadt:
[*snip lot of interesting stuff beond my scope*]
We ask our users to help us uncover and fix more of these bugs in
applications. Some will even be exploitable. Instead of saying that
OpenBSD is busted in this regard, please
Theo de Raadt wrote:
We are heading towards making the real 3.8 release soonish. I would
like to ask the community to do lots of testing over the next week if
they can.
Excellent! Is this is enabled in the current snapshot? Do I need to
set any flags in malloc.conf?
On Monday 22 August 2005 18:33, Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in any case, and try to solve the problems as we run into
them.
To paraphrase:
I would remind you that extremism in the
defense of OpenBSD integrity is no
theo,
We ask our users to help us uncover and fix more of these bugs in
applications. Some will even be exploitable. Instead of
saying that
OpenBSD is busted in this regard, please realize that the
software
which is crashing is showing how shoddily it was written.
Then help
us fix it. For
We ask our users to help us uncover and fix more of these bugs in
applications. Some will even be exploitable. Instead of
saying that
OpenBSD is busted in this regard, please realize that the
software
which is crashing is showing how shoddily it was written.
Then help
us fix it. For
Am Dienstag, 23. August 2005 03:49 CEST schrieb Dave Feustel:
On Monday 22 August 2005 18:33, Theo de Raadt wrote:
Oh well -- we've decided that we will try to ship with this protection
mechanism in any case, and try to solve the problems as we run into
them.
To paraphrase:
I would
i think these are great ideas, but is there a way to mitigate
program breakage if you need to use a given port or program
compiled from source? so if something bugs out and you just
want it to get lucky for the time being, could you revert to
the usual Unix behavior for mmap and such?
Fix it!!
On Aug 22, 2005, at 10:32 PM, Theo de Raadt wrote:
i think having a flag you could set to disable the new
behavior would be a good idea. it may very well be that what i
suggest is not doable due to the low-level nature of the
functions in question. just a thought.
It might be a good idea, but
-Original Message-
From: [EMAIL PROTECTED] on behalf of Theo de Raadt
Sent: Mon 8/22/2005 7:33 PM
To: [EMAIL PROTECTED]
Subject: 3.8 beta requests
We are heading towards making the real 3.8 release soonish. I would
like to ask the community to do lots of testing over the next week if
We are heading towards making the real 3.8 release soonish. I would
like to ask the community to do lots of testing over the next week if
they can.
What is the best way to test? Should we be downloading snapshots daily?
Install snapshots. Install snapshot packages. Try using it as if it
On 8/22/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
i think having a flag you could set to disable the new
behavior would be a good idea. it may very well be that what i
suggest is not doable due to the low-level nature of the
functions in question. just a thought.
To complement the
63 matches
Mail list logo