On Tue, Feb 04, 2014 at 12:37:14AM +0100, Alexander Hall wrote:
On 02/04/14 00:27, Simon Drewitz wrote:
Hi misc@,
I have set up mail(1) so that it forwards mails such as the output of
/etc/daily to my mail account and now I want to encrypt these mails
using my public gpg-key. The best
Im widely using l3vpn with obsd including native bgpd for vpnv4 SAFI and
rdomains far from obsd 4.8, so it is about 3 years.And im crying still... :)
note: i am not using ldpd yet, i prefered bgp vpnv4 for labels.
First, tnx to
claudio with 5.2, vpnv4 RD is no longer compared while prefix import
hello,
i was fiddling around with ada95 under openbsd 5.4 using gnat-4.6.
i created a sample program as below.
with Ada.Text_IO;
use Ada.Text_IO;
procedure Hello is
-- no variables required
begin
Put_Line (Hello, world!);
end Hello;
the code compiled (not cleanly)
Hi. I'm seeing, in this mailing list, much talk about the datagate and
related matters, and I can see why the topic may be of interest to
many OpenBSD users.
Anyway, I really like OpenBSD, but I always restrain myself from using
it on a desktop machine for a single reason: while pkg_add supports
Signing of base and package tarballs has been implemented in current,
and will be included in the next release.
-Otto
On Tue, Feb 04, 2014 at 02:00:35PM +0100, Kim Twain wrote:
Hi. I'm seeing, in this mailing list, much talk about the datagate and
related matters, and I can see why
Kim Twain kimtwa...@gmail.com wrote:
Well, I can fetch the ports tree in a secure way, verify its integrity
and origin,
You can? How?
--
Christian naddy Weisgerber na...@mips.inka.de
one more
6. has two peers with different ASthere is filter on second peer that
deny large portion of prefixesthe case:at initial state just after both
sessions are UP i have full table from peer2 ~110k prefixesreal prefix number
after filter applied ~ 23khow i see the peer with bgpctl
40 mins #
On Tue, Feb 04, 2014 at 02:31:37PM +0400, def wrote:
[...]
6. has two peers with different ASthere is filter on second peer that
deny large portion of prefixesthe case:at initial state just after both
sessions are UP i have full table from peer2 ~110k prefixesreal prefix number
after filter
On Tue, Feb 04, 2014 at 04:36:22AM -0500, Mayuresh Kathe wrote:
hello,
i was fiddling around with ada95 under openbsd 5.4 using gnat-4.6.
i created a sample program as below.
with Ada.Text_IO;
use Ada.Text_IO;
procedure Hello is
-- no variables required
begin
On Tue, Feb 04, 2014 at 03:41:09PM +0100, Daniel Cegie?ka wrote:
2014-02-04 Kim Twain kimtwa...@gmail.com:
Does pkg_add automatically check these signatures, or, as of now, I'd need
to manually download the packages, verify them with signify and then install
them locally with pkg_add?
2014-02-04 Kim Twain kimtwa...@gmail.com:
Does pkg_add automatically check these signatures, or, as of now, I'd need
to manually download the packages, verify them with signify and then install
them locally with pkg_add?
from man pkg:
If a package is digitally signed:
o pkg_add checks
2014-02-04 Otto Moerbeek o...@drijf.net:
On Tue, Feb 04, 2014 at 03:41:09PM +0100, Daniel Cegie?ka wrote:
I believe that in -current, the pubkey comes from /etc/signify.
-Otto
yes, but man pkg_sign:
-s signify|x509 [-s cert] -s privkey
Specify signature parameters
2014-02-04 Kim Twain kimtwa...@gmail.com:
Does pkg_add automatically check these signatures, or, as of now, I'd need
to manually download the packages, verify them with signify and then install
them locally with pkg_add?
In -current, if you don't use any flags to pkg_add, and you don't see any
On 4 February 2014 11:25, Marc Espie es...@nerim.net wrote:
2014-02-04 Kim Twain kimtwa...@gmail.com:
Does pkg_add automatically check these signatures, or, as of now, I'd need
to manually download the packages, verify them with signify and then install
them locally with pkg_add?
In
Em 04-02-2014 14:25, Marc Espie escreveu:
making sure the users don't do anything stupid is the right part.
As it has always been. People do stupid things. Even when they're not
expected to. People who cares about signed packages will go on further
to verify things. If you care, do your
Thanks. I tried 5.5 on my laptop and as I said, it works, even better than
freebsd 10, despite being a beta. I will switch to openbsd with the
release. The only other problem is that I have external/ultrabay hdds that
use lvm2, and I'll have to migrate the data, I think.
Anyway, while it's fine
On Tue, Feb 04, 2014 at 05:40:38PM +0100, Kim Twain wrote:
Thanks. I tried 5.5 on my laptop and as I said, it works, even better
than freebsd 10, despite being a beta. I will switch to openbsd with
the release. The only other problem is that I have external/ultrabay
hdds that use
On Tue, Feb 04, 2014 at 02:38:11PM -0200, Giancarlo Razzolini wrote:
Em 04-02-2014 14:25, Marc Espie escreveu:
making sure the users don't do anything stupid is the right part.
As it has always been. People do stupid things. Even when they're not
expected to. People who cares about signed
oh something bad with styling really, sorry.
bellow the full post (attempt to good spacing)
Im widely using l3vpn with obsd including native bgpd for vpnv4 SAFI and
rdomains far from obsd 4.8, so it is about 3 years.
And im crying still... :)
note: i am not using ldpd yet,
Em 04-02-2014 15:04, Marc Espie escreveu:
That's the motto secure by default. Does also mean try to make sure
things are reasonable by default, and that people will naturally do
not stupid things. (e.g., https is not reasonable. By default, you
get to trust a metric shitload of authorities you
2014-02-04 Marc Espie es...@nerim.net:
signify(1) makes things more transparent: no chain of trust, pure keys.
One cool thing is that the signatures are small enough that they can be
embedded directly in the package (which already has sha256 for everything).
This has the advantage of
On 02/04/2014 01:11 PM, Daniel Cegiełka wrote:
2014-02-04 Marc Espie es...@nerim.net:
signify(1) makes things more transparent: no chain of trust, pure keys.
One cool thing is that the signatures are small enough that they can be
embedded directly in the package (which already has sha256 for
On Tue, Feb 04, 2014 at 04:11:15PM -0200, Giancarlo Razzolini wrote:
Em 04-02-2014 15:04, Marc Espie escreveu:
That's the motto secure by default. Does also mean try to make sure
things are reasonable by default, and that people will naturally do
not stupid things. (e.g., https is not
Em 04-02-2014 17:23, Marc Espie escreveu:
Like the chinese curse goes may you live in interesting times. I'd
try to convince them to switch to FOO-BSD, so that they go annoy the
developers of FOO. (unless their attempts at stupidity are madly
entertaining, in which case those crackpots^Wpeople
On Tue, Feb 04, 2014 at 08:11:28PM +0100, Daniel Cegie?ka wrote:
2014-02-04 Marc Espie es...@nerim.net:
signify(1) makes things more transparent: no chain of trust, pure keys.
One cool thing is that the signatures are small enough that they can be
embedded directly in the package (which
Em 04-02-2014 17:11, Daniel Cegiełka escreveu:
2014-02-04 Marc Espie es...@nerim.net:
wow!? really? And how can I be sure that the public key that I
downloaded is exactly the same public key, which is stored on OpenBSD
servers (MITM)? signify is a step in the right direction but does not
fix
I agree with the fact that we have no solution to this problem, and
probably will not find it quickly (or ever). I do not want to shout
that now we have to do something. I want to make people aware that
even with signify still need to keep limited trust.
best,
Daniel
Gigabyte GA-C1037UN-EU motherboard ? 2 Lan fanless...
2014-02-01 Adam s...@my-balls.com:
Any suggestions for the cheapest possible firewall (that is new hardware
not re-purposing some old stuff)? All I need is 2 ethernet interfaces and
for it to run openbsd.
Em 04-02-2014 17:37, Daniel Cegiełka escreveu:
I agree with the fact that we have no solution to this problem, and
probably will not find it quickly (or ever). I do not want to shout
that now we have to do something. I want to make people aware that
even with signify still need to keep limited
Block of spruce with 2 rj45 ports.
Its new and will stop all unwanted traffic, you can put OpenBSD right on
top of it.
Low power, easy to maintain.
Theophile Envt wrote:
Gigabyte GA-C1037UN-EU motherboard ? 2 Lan fanless...
2014-02-01 Adam s...@my-balls.com:
Any suggestions for the
On Tue, Feb 04, 2014 at 05:57:21PM -0200, Giancarlo Razzolini wrote:
Em 04-02-2014 17:37, Daniel Cegie??ka escreveu:
I agree with the fact that we have no solution to this problem, and
probably will not find it quickly (or ever). I do not want to shout
that now we have to do something. I
An Alix fanless low power dual nic system with case and power supply goes
for $120ish. Has slots for 2 mini pci wireless cards. Add an antenna and
pigtail for another $15 or so, or use a USB wifi card. Anything more
expensive is going to be a Soekris.
I would only buy a mini-pci PC board if I
Hello misc,
I got a bit tired of manually revolving my hostname.if when walking
about with my laptop. To resolve this issue I've written the following
patch.
It hasn't been heavily field tested, but it works for me.
What it does is it looks if the interface can do a scan command. If it
On Tue, Feb 04, 2014 at 22:14, Martijn van Duren wrote:
+ # Test if we already configured the interface
+ test -f /tmp/$if.scan return
+ touch /tmp/$if.scan
this absolutely needs to use mktemp. It may be easier to use
mktemp -d and then put your files inside.
On 02/04/14 22:27, Ted Unangst wrote:
On Tue, Feb 04, 2014 at 22:14, Martijn van Duren wrote:
+ # Test if we already configured the interface
+ test -f /tmp/$if.scan return
+ touch /tmp/$if.scan
this absolutely needs to use mktemp. It may be easier to use
mktemp -d and
On Tue, Feb 04, 2014 at 09:50:17AM +0100, Gilles Chehade wrote:
On Tue, Feb 04, 2014 at 12:37:14AM +0100, Alexander Hall wrote:
On 02/04/14 00:27, Simon Drewitz wrote:
Hi misc@,
I have set up mail(1) so that it forwards mails such as the output of
/etc/daily to my mail account and now
i am running 5.4 and have installed erlang using pkg_add.
works well, just can't access the man pages.
have added the following line to /etc/man.conf
erlang/usr/local/lib/erlang/man/
am sure about either having done something wrong or missed a step somewhere.
can i be helped?
thanks.
On 02/04/2014 05:48 PM, Mayuresh Kathe wrote:
i am running 5.4 and have installed erlang using pkg_add.
works well, just can't access the man pages.
have added the following line to /etc/man.conf
erlang/usr/local/lib/erlang/man/
am sure about either having done something wrong or missed
On Feb 1, 2014, at 2:37 PM, Adam s...@my-balls.com wrote:
Any suggestions for the cheapest possible firewall (that is new hardware not
re-purposing some old stuff)? All I need is 2 ethernet interfaces and for it
to run openbsd.
I like the Mac Mini Core Duo for firewalls. They have one
I got some feedback from rpe@, which relied heavily on grep and sed and
removed $ifscandir.
The reason I build this patch the way it is is because, according to
line 27 of the original script we can't rely on /usr yet, so no grep and
sed.
Furthermore, if the $ifscandir isn't used every interface
Hi,
4.2.2014 16:20, Tobias Ulmer wrote:
On Tue, Feb 04, 2014 at 04:36:22AM -0500, Mayuresh Kathe wrote:
hello.adb gnatbind -x hello.ali gnatlink hello.ali
/usr/local/lib/gcc/x86_64-unknown-openbsd5.4/4.6.4/adalib/libgnat.a(adaint.o)(.text+0x3f3):
In function `__gnat_os_filename':
41 matches
Mail list logo