Hi Tony,
On 2006.07.10, at 12:17 PM, Tony Abernethy wrote:
Security is a process
Slogan for snake-oil?
I would prefer, Security is an ongoing process.
Something which you can't just buy and be done with and something
which does not end.
Shane
Hi,
I have a Thinkpad laptop (T43) and I'm about to install OpenBSD on it.
I have a few questions regarding hibernation though. I've read
various documents online so I'm fairly confident with regard to the
how but out of curiosity I have some questions below regarding the
why, plus a few
On Mon, Jul 10, 2006 at 03:46:16AM -0400, Philippe Meunier wrote:
I have a Thinkpad laptop (T43) and I'm about to install OpenBSD on it.
I have a few questions regarding hibernation though. I've read various
documents online so I'm fairly confident with regard to the how but out
of curiosity
Jonathan Gray schrieb:
**snip**
Hello,
here is what I've done.
installed an openbsd
put src.tar.gz on it
made an cvs-update
A snapshot would have been easier for this bit.
applied the diffs (by hand, as it were just a few lines and I didn't
find the right way to do this with
It happened again: one of our servers with OpenBSD i386 3.9-current MP
of a couple days ago crashed with the following kernel error:
uvm_fault(0xd071cd68, 0xeb64c000, 0, 1) - e
kernel: page fault trap, code=0
Stopped at pmap_page_remove_86+0x114 movl 0(%eax,%edx,4),%eax
Unfortunately I
I think this must be a misc issue rather than a ports issue but the issue
concerns the use of mail/sma in /etc/daily.local.
For several days I have had /etc/daily.local set up to run sma to produce an
ascii summary of /var/log/maillog as follows..
sma -a /var/log/maillog /tmp/maillog.out
mail
Hello all,
We also faced similar problem several times after upgrading to 3.9.
What could be the problem?
regards
murthy
Federico Giannici wrote:
It happened again: one of our servers with OpenBSD i386 3.9-current MP
of a couple days ago crashed with the following kernel error:
Darn,
Isn't it always the case when you mail something off after scratching your
head for a while you stumble upon some new relevant piece of information.
Just added to my daily.local a regular cp command to copy out the mail log
for manual inspection.
Ran it as a test from the command line and
* Han Boetes [EMAIL PROTECTED] [2006-07-09 20:36]:
Karel Kulhavy wrote:
I read man dhcp and man dhclient and wasn't able to determine
how to restart the DHCP process (or the whole network) if my
cable modem with DHCP server crashes and I have to reboot it. I
suggest this information to be
While working on a shiny new OpenBSD firewall machine, I noticed that the
ping man page does not describe exit codes. Assuming that it works the same
as Linux ping, the exit code will be nonzero if no packets are returned. My
experiments seem to confirm this. Other man pages list exit codes
* Matthew R. Dempsky [EMAIL PROTECTED] [2006-07-09 22:37]:
On Sun, Jul 09, 2006 at 09:22:05PM +0200, Paul de Weerd wrote:
Sure, just 'dhclient ${if}'. When 'something' (even another dhclient
process) touches the networking config of a dhclient-configured
interface, dhclient will exit (as
On Mon, 10 Jul 2006, Laurence Tratt wrote:
On Mon, Jul 10, 2006 at 03:46:16AM -0400, Philippe Meunier wrote:
I have a Thinkpad laptop (T43) and I'm about to install OpenBSD on it.
I have a few questions regarding hibernation though.
tphdisk is in ports/sysutils, so that's one thing less to
Hello list,
I use an ipsec tunnel between my customer and his appl. provider.
The appl. provider has problems transferring a specific datavolumn
from time to time. He asked my to change the lifetime from our
ipsec connection because he thinks that this could be a problem.
Now I don't know if a
In message lifetime ipsec ...
on 10.07.2006, Wild Karl-Heinz [EMAIL PROTECTED] writes:
So I tried to change the lifetime in phase 1 and 2 with
[Global]
Retransmits=5
Exchange-max-time= 120
Default-phase-1-lifetime= 28800,60:86400
Default-phase-2-lifetime=
On Sun, 2006-07-09 at 18:58 -0500, Jacob Yocom-Piatt wrote:
any advice would be appreciated. i suspect that this is some issue related to
the KDC runnning current and the other machines being on 3.9 release.
this shouldn't matter as the language heimdal speaks is the same,
for the most part as
Hi
I have been looking into encrypting my e-mails and was thinking about GPG
together with Sylpheed, since I am using Sylpheed.
But I am wondering is there another and stronger or better way than GPG.
Any recommendations?
Best and kind regards,
Rico
On Mon, Jul 10, 2006 at 03:07:40PM +0200, Rico Secada wrote:
Hi
I have been looking into encrypting my e-mails and was thinking about GPG
together with Sylpheed, since I am using Sylpheed.
But I am wondering is there another and stronger or better way than GPG.
GnuPG is pretty much the
Original message
Date: Mon, 10 Jul 2006 15:07:40 +0200
From: Rico Secada [EMAIL PROTECTED]
Subject: Encrypting e-mails
To: misc@openbsd.org
Hi
I have been looking into encrypting my e-mails and was thinking about GPG
together with Sylpheed, since I am using Sylpheed.
But I am
On Mon, Jul 10, 2006 at 08:37:58AM -0500, Jacob Yocom-Piatt wrote:
Original message
Date: Mon, 10 Jul 2006 15:07:40 +0200
From: Rico Secada [EMAIL PROTECTED]
Subject: Encrypting e-mails
To: misc@openbsd.org
Hi
I have been looking into encrypting my e-mails and was thinking
S/MIME (http://www.ietf.org/html.charters/smime-charter.html) is a
certificate based system.
GPG is probably more convenient for personnal use.
Cheers,
Fv
Rico Secada wrote:
Hi
I have been looking into encrypting my e-mails and was thinking about GPG
together with Sylpheed, since I am
On 10/07/06, Joachim Schipper [EMAIL PROTECTED] wrote:
On Mon, Jul 10, 2006 at 08:37:58AM -0500, Jacob Yocom-Piatt wrote:
Original message
Date: Mon, 10 Jul 2006 15:07:40 +0200
From: Rico Secada [EMAIL PROTECTED]
Subject: Encrypting e-mails
To: misc@openbsd.org
Hi
I
From: [EMAIL PROTECTED]
the KDC is the only machine on the network that is running
current (snap
upgraded last night), the rest are on 3.9 release. here are
the debugging outputs:
debug1: Next authentication method: gssapi-with-mic
debug2: we sent a gssapi-with-mic packet, wait for reply
From: [EMAIL PROTECTED]
I have been looking into encrypting my e-mails and was
thinking about GPG together with Sylpheed, since I am using Sylpheed.
But I am wondering is there another and stronger or
better way than GPG.
GPG (and the other one, PGP) is really nothing more than a
Joachim Schipper wrote:
The most sensible implementation of what you want is a laptop + ssh, I
suppose.
Make sure you get the kind without the built-in keylogger. ;-)
http://virus.org.ua/unix/keylog/klog.htm
--
Stephen Takacs [EMAIL PROTECTED] http://perlguru.net/
4149 FD56 D078 C988
Original message
Date: Mon, 10 Jul 2006 11:33:12 -0400
From: Stephen Takacs [EMAIL PROTECTED]
Subject: Re: USB keyboards / encryption
To: misc@openbsd.org
Joachim Schipper wrote:
The most sensible implementation of what you want is a laptop + ssh, I
suppose.
Make sure you get the
I manage a few openbsd 3.9-release firewalls and I need to update the
OS, but I don't want to cvsup and recompile on each system.
Is there a documented/recommended way to do update a system by creating
a tarball or package of what was upgraded?
I'm looking to apply security fixes to systems
Joe wrote:
I manage a few openbsd 3.9-release firewalls and I need to update the
OS, but I don't want to cvsup and recompile on each system.
Is there a documented/recommended way to do update a system by
creating a tarball or package of what was upgraded?
I'm looking to apply security fixes
On Mon, Jul 10, 2006 at 11:04:24AM -0700, Joe wrote:
I manage a few openbsd 3.9-release firewalls and I need to update the
OS, but I don't want to cvsup and recompile on each system.
Is there a documented/recommended way to do update a system by creating
a tarball or package of what was
On Mon, Jul 10, 2006 at 11:04:24AM -0700, Joe wrote:
I manage a few openbsd 3.9-release firewalls and I need to update the
OS, but I don't want to cvsup and recompile on each system.
Is there a documented/recommended way to do update a system by creating
a tarball or package of what was
Hi list!
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD? Vi(m) and similar is out of question for me, I never
learned those.
I tried to compile latest nano from CVS, which support UTF-8, but
with no luck. I get configure errors saying that my curses don't
support
Mackan wrote:
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD?
qemacs from cvs works ok.
- Full UTF8 support, including bidirectional editing
respecting the Unicode bidi algorithm. Arabic and Indic
scripts handling (in progress).
From: [EMAIL PROTECTED]
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD? Vi(m) and similar is out of question for me, I never
learned those.
As ubiquitous as vi is on Unix, it seems a shallow reason.
Really, it takes all of 15 minutes to pick up what you need
On 10 jul 2006, at 20.43, Spruell, Darren-Perot wrote:
From: [EMAIL PROTECTED]
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD? Vi(m) and similar is out of question for me, I never
learned those.
As ubiquitous as vi is on Unix, it seems a shallow reason.
On Mon, Jul 10, 2006 at 12:22:20PM -0500, Jacob Yocom-Piatt wrote:
Original message
Date: Mon, 10 Jul 2006 11:33:12 -0400
From: Stephen Takacs [EMAIL PROTECTED]
Subject: Re: USB keyboards / encryption
To: misc@openbsd.org
Joachim Schipper wrote:
The most sensible
I had almost the same problem here too.
Box is dell 1850 with MP-board, 1 CPU inside, running GENERIC.MP.
It stopped to accept any connections, but:
1. responded to ping very quickly
2. syn-scan gave out that ports were open (those which should be open)
4. no heavy traffic incoming
3. no dumps on
Mackan wrote:
On 10 jul 2006, at 20.43, Spruell, Darren-Perot wrote:
From: [EMAIL PROTECTED]
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD? Vi(m) and similar is out of question for me, I never
learned those.
As ubiquitous as vi is on Unix, it seems a shallow
On Mon, Jul 10, 2006 at 09:12:37PM +0200, Mackan wrote:
On 10 jul 2006, at 20.43, Spruell, Darren-Perot wrote:
From: [EMAIL PROTECTED]
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD? Vi(m) and similar is out of question for me, I never
learned those.
As
I ran into similar failures between versions of OpenBSD (KDC running current
and older releases on clients) that I was able to debug down to the level of
detecting an error related to MIC failures. I think I had to bump up
debugging on sshd to get that.
DS,
yah, this appeared in
On 10 jul 2006, at 21.54, Will H. Backman wrote:
Mackan wrote:
I just upgraded my server OS from Debian/Linux to OpenBSD. But
it seems
that in the case of Unicode-aware applications I made a big
downgrade.
I really want I simple editor with unicode, for myself and my users.
Mackan
On Mon, Jul 10, 2006 at 03:46:26PM +0100, tony sarendal wrote:
On 10/07/06, Joachim Schipper [EMAIL PROTECTED] wrote:
On Mon, Jul 10, 2006 at 08:37:58AM -0500, Jacob Yocom-Piatt wrote:
Original message
Date: Mon, 10 Jul 2006 15:07:40 +0200
From: Rico Secada [EMAIL
From: [EMAIL PROTECTED]
Assuming this works for you, I'd be interested in knowing
what the exact
nature of the problem is, I hate fixing something blindly
without knowing
why it's fixed.
this has fixed most of the problems, except i can't ssh out
from the KDC using
kerberos auth.
Joachim Schipper [EMAIL PROTECTED] wrote:
Of course, Unicode is evil, and I for one am pretty happy to limit
myself to straight ASCII for 99% of the text I type
No, unicode is not evil. Making ridiculous statements like that is evil.
The millions of people who's languages are written in
Im using a OpenBSD 3.9 server and a FreeBSD 6.1 server on either end
of a firewall to test throughput and max open connections of the
firewall, i tested throughput with netstrain(d) but im unsure how to
test the max open connections, anyone recommend a program? or script?
to test the max number
Hello Lars,
On Fri, 07.07.2006 at 10:40:11 +0800, Lars Hansson [EMAIL PROTECTED] wrote:
Make sure you run 3.9-stable and not -release. There's a bug in -release that
causes ospfd to crash when a /32 route is removed from the rib.
you mean, something like this:
Jul 10 18:53:23 myname
Hi.
I've just backordered all CD sets up to including OpenBSD 3.2,... as
soon as I'll have enough money ;) I'll buy the other sets (from 3.1 to
2.3), too. I hope they'll be sold long enough =)
But is it possible to buy somewhere 2.2 and 2.1?
Regards,
Chris.
On Mon, 10 Jul 2006 20:27:42 +0200
Mackan [EMAIL PROTECTED] wrote:
Hi list!
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD? Vi(m) and similar is out of question for me, I never
learned those.
I tried to compile latest nano from CVS, which support UTF-8, but
Joachim Schipper wrote:
Of course, Unicode is evil,...
[1] For ease of understanding for the rest of the world, I use a
venerable Adobe Pagemaker for layout.
Erm, wrong on both counts. And for jeebus sake, think of the children
next time you boot up pagemaker. Trust me, anyone who takes your
Mackan [EMAIL PROTECTED] wrote:
Is there any UTF-8-aware text editor (for terminal use) available
for OpenBSD?
On the occasions where I've needed it, I've used ports/editors/vim
as an UTF-8 text entry widget. I suspect it suffers severe
shortcomings regarding composing characters in exotic
Hello,
I've a stranged issue with openbsd 3.9.
I've hacked the installer script to install openbsd automatically. Everything
works fine excepted dmesg output.
In a normal installation from CD, after N reboot, when I do a dmesg, I've
got only the LAST dmesg (the current boot). But with my
http://marc.theaimsgroup.com/?l=openbsd-miscm=114175733125979w=2
Cheers,
Andreas
On 11/07/06, Jirtme Loyet [EMAIL PROTECTED] wrote:
Hello,
I've a stranged issue with openbsd 3.9.
I've hacked the installer script to install openbsd automatically. Everything
works fine excepted dmesg output.
Sorry for my bad english. I'm new at this mailing list.
I'm a newbye and I have a dude that i don't see in the manual, www,
etc ...
I have installed 3 machines with puffy and a web server, a very sort
experience. One of them is a compaq armada 1700 (P2 266/160mb) repaired
with a 14 (?) screen
On Tue, Jul 11, 2006 at 01:28:31AM +0200, Inigo Tejedor Arrondo wrote:
Sorry for my bad english. I'm new at this mailing list.
I'm a newbye and I have a dude that i don't see in the manual, www,
etc ...
I have installed 3 machines with puffy and a web server, a very sort
experience. One
On Mon, 10 Jul 2006, Philippe Meunier wrote:
- Which brings me to my last point: has anybody worked / is working /
plans on working on handling hibernation and suspend-to-RAM entirely
in software rather than through the BIOS? The way swsusp or suspend2
do it for linux? I'd guess that a good
On Mon, Jul 10, 2006 at 12:45:04PM +0200, Henning Brauer wrote:
two seconds is too close. due to the weird dhclient architecture
(dhclient-script has to die for interface IP configuration!) we have to
work with time windows. it is 5 seconds afair.
I notice this issue is not limited to
sysctl(3) says that sysctl({CTL_HW, HW_SENSORS}, 2, NULL, some_size_t,
NULL, 0) should give me the size of the array of struct sensor's that
sysctl({CTL_HW, HW_SENSORS}, 2, some_buffer, length_thereof, NULL, 0)
will put into some_buffer.
Or so I thought. In fact, it returns -1 and sets errno to
I notice GCC 4.1 includes a reimplementation of the stack smashing
protection already included in OpenBSD. Have there been any comments on
this new functionality from the OpenBSD community? Anyone know of
differences between IBM's old and the new merged functionality?
(I realize upgrading
On Tuesday 11 July 2006 04:44, Toni Mueller wrote:
you mean, something like this:
Jul 10 18:53:23 myname ospfd[9394]: fatal in ospfe: pipe closed
Jul 10 18:53:23 myname ospfd[12621]: fatal in rde: pipe closed
No, as in PR 5110:
And I shouldn't have said crash in my first reply.
---
Lars Hansson
On 7/6/06, Bharj, Gagan [EMAIL PROTECTED] wrote:
Hello Folks,
Our server is getting hammered on a daily basis by IPs trying to open an ssh
session. Currently, I'm manually putting the subnets (in a pf table) that are
repeatedly trying to get in. As you can see, this list will eventually get
59 matches
Mail list logo