Re: Rebuilding a degraded RAID5 softraid array

From: Karel Gardas -- Sent: 2017.06.14 - 19:25 > On Wed, Jun 14, 2017 at 5:23 PM, LÉVAI Dániel wrote: >> sd8 at scsibus4 targ 2 lun 0: SCSI2 0/direct fixed >> sd8: 155872MB, 512 bytes/sector, 319227056 sectors > > Here

vmd: cannot reset VCPU 0 - exiting

I'm having trouble booting OpenBSD 6.1-Release in vmm on recent snapshots. I can boot an amd64 bsd.rd and do the install, but the resulting disk image aborts silently (or hangs with no console output) with the subject line above the only hint of what happens, found in daemon.log, and

Re: sftp chroot

Am 14.06.2017 um 16:31 schrieb Chris M: Some hosts chroot users into a specific web dir because they have multiple vhosts on the same server, and they dont want all sftp or ssh users to be able to browse into other vhosts, even to look around. They might also want to give developers access to

Re: sftp chroot

Have a look at the book https://www.michaelwlucas.com/tools/relayd Chapter 7 addresses this exact scenario On Wed, Jun 14, 2017 at 3:33 AM, Markus Rosjat wrote: > Hi there, > > I want to build an sftp environment where the user is chrooted to his home > dir. So far so good

Re: Rsnapshot configuration - Data integrity

Solene Rapenne wrote: > > Je 2017-06-14 01:47, G skribis: > > Well as far as /var goes i decided to take a closer look because i am > > thinking running aide for system integrity check. So this my > > rsnapshot.conf > > > > Recently I've been investigating software for integrity check, you

Rebuilding a degraded RAID5 softraid array

Hi! One of the disks of my softraid array of a four disk RAID5 has failed, so I went on and replaced it with an identical make/model, and now I'm trying to rebuild the RAID5 array: So far I've replaced the HDD, fdisk/disklabeled it exactly the same as the other drives: # fdisk sd4 <--- one

Re: splassert: pool_put: want 0 have 4

On Tue, 13 Jun 2017 11:38:46 + (UTC) Stuart Henderson wrote: > Can you try "sysctl kern.splassert=2" to obtain a backtrace? > > (This isn't on by default as there's a small risk of problems, > though I run this on almost all my routers/firewalls and never > had trouble

Re: sftp chroot

Markus Rosjat wrote: > Am 14.06.2017 um 13:42 schrieb Jiri B: > > On Wed, Jun 14, 2017 at 01:09:47PM +0200, Solne Rapenne wrote: > >> Je 2017-06-14 13:02, Bryan Harris skribis: > >>> On Linux I have mounted another fs inside the user's home folder (it > is > >>> mounted twice). I don't know if

Re: sftp chroot

You could do it like this: Say you have /www/sites/, make a subdir /files/html, and another for /html which is a symlink to files/html: /www/sites/www.somedomain.com /www/sites/www.somedomain.com/files/html /www/sites/www.somedomain.com/html -> files/html Mount /www/sites/www.somedomain.com to

Re: sftp chroot

Some hosts chroot users into a specific web dir because they have multiple vhosts on the same server, and they dont want all sftp or ssh users to be able to browse into other vhosts, even to look around. They might also want to give developers access to specific subdirs without seeing the entire

Re: sftp chroot

Am 14.06.2017 um 13:42 schrieb Jiri B: On Wed, Jun 14, 2017 at 01:09:47PM +0200, Solne Rapenne wrote: Je 2017-06-14 13:02, Bryan Harris skribis: On Linux I have mounted another fs inside the user's home folder (it is mounted twice). I don't know if OpenBSD has that feature. This is not

Re: sftp chroot

Am 14.06.2017 um 15:53 schrieb Markus Rosjat: Am 14.06.2017 um 13:42 schrieb Jiri B: On Wed, Jun 14, 2017 at 01:09:47PM +0200, Solne Rapenne wrote: Je 2017-06-14 13:02, Bryan Harris skribis: On Linux I have mounted another fs inside the user's home folder (it is mounted twice). I don't

Re: Rebuilding a degraded RAID5 softraid array

On Wed, Jun 14, 2017 at 5:23 PM, LÉVAI Dániel wrote: > sd8 at scsibus4 targ 2 lun 0: SCSI2 0/direct fixed > sd8: 155872MB, 512 bytes/sector, 319227056 sectors Here is sd8 as crypto. > So the system disks (RAID1) are there, sd7l is decrypted as sd8 (so

Re: Rsnapshot configuration

First of all thanks for your extended and structured replay. There are some options I haven't considered although I searched various options. For now all I want is a local backup for my home workstation until I set a NFS or something similar on my home. That would be a better option. The reason

Re: Issue with pxebooting on HP DL360 G7

On 2017-06-10 05:25, Edgar Pettijohn wrote: > > > On 06/09/17 11:18, Tommy Nevtelen wrote: >> On 2017-06-09 17:46, Tommy Nevtelen wrote: >> >>> Hello misc! >>> >>> I'm chain-loading pxeboot symlinked to auto_install from ipxe. >> So I tried to remove ipxe and specify pxeboot directly in the dhcp

Re: Rsnapshot configuration - Data integrity

I didn't want to use aide for data integrity. Just wanted/want to familiarize my self with various intrusion detection tools. Thanks for your answer. I will give it a try when I set up a NFS on my home. Thanks again for your answer. On 06/14/17 10:32, Solène Rapenne wrote: > Je 2017-06-14 01:47,

Re: sftp chroot

On 14 June 2017 at 11:33, Markus Rosjat wrote: > Hi there, > > I want to build an sftp environment where the user is chrooted to his home > dir. So far so good but then again the user might need access to a webserver > resource like /var/www/htdocs/some_dir > > As far as I

Re: sftp chroot

thanks for the info, the read only would be rw but it's at least worth looking at even its hackish :-P But I also figured, since I dont need a shell for these users I can simply force them in a sftp chroot somewere else but this is something I have to refine more though on my testmachine I

Re: Rsnapshot configuration - Data integrity

Je 2017-06-14 01:47, G skribis: Well as far as /var goes i decided to take a closer look because i am thinking running aide for system integrity check. So this my rsnapshot.conf Recently I've been investigating software for integrity check, you have choice : - sysutils/bitrot - a daily

Re: httpd and phpyMyAdmin

Am 13.06.2017 um 23:56 schrieb Stuart Henderson: On 2017-06-13, Markus Rosjat wrote: would like to get opinions on securing the whole thing ...still :) Deleting phpmyadmin would be a good start :-) yeah but I'm not the boss :( besides this is a dev machine I don't let

Re: Rsnapshot configuration

On 13 Jun 2017, Predrag Punosevac wrote: (snip) > The simplest thing to do is to rsync from one system to another. Very > simple, but the problem is it's just a "dumb mirror" - there is no > history, no versions in the past (snapshots in time) and every day you > do your rsync, you risk clobbering

Doubling in Size of base61.tgz

Please forgive me if this has been noted on misc@, as I've overlooked it, but, just out of curiosity, can anyone account for the recent doubling in size of base61.tgz in recent amd64 snapshots of -current? As recently as 7 June, it was ~58 MB in size, but over the last couple of days at

Pledge paths[ ]

Is paths[] going to have permissions defined for each path? Like: char *paths[], int *mode, where mode is the same as in dbopen(3). Maybe so you don't have to clean up previous pledge calls, any pledge calls with a NULL paths argument doesn't have anything specified for mode. for simplicity,

Re: Doubling in Size of base61.tgz

> Please forgive me if this has been noted on misc@, as I've overlooked > it, but, just out of curiosity, can anyone account for the recent > doubling in size of base61.tgz in recent amd64 snapshots of -current? > > As recently as 7 June, it was ~58 MB in size, but over the last couple > of

Re: Doubling in Size of base61.tgz

On 6/14/2017 3:37 PM, Theo de Raadt wrote: Please forgive me if this has been noted on misc@, as I've overlooked it, but, just out of curiosity, can anyone account for the recent doubling in size of base61.tgz in recent amd64 snapshots of -current? As recently as 7 June, it was ~58 MB in size,

sftp chroot

Hi there, I want to build an sftp environment where the user is chrooted to his home dir. So far so good but then again the user might need access to a webserver resource like /var/www/htdocs/some_dir As far as I understand a symlink doesnt work in the chroot setup and Im not quiet sure how

Re: sftp chroot

Je 2017-06-14 10:33, Markus Rosjat skribis: Hi there, I want to build an sftp environment where the user is chrooted to his home dir. So far so good but then again the user might need access to a webserver resource like /var/www/htdocs/some_dir As far as I understand a symlink doesnt work in

Re: sftp chroot

Hi, one option is to use local nfs mounts. That's what I've done. -- Regards, Ville On Jun 14, 2017 11:34 AM, "Markus Rosjat" wrote: Hi there, I want to build an sftp environment where the user is chrooted to his home dir. So far so good but then again the user might need

Re: sftp chroot

On Linux I have mounted another fs inside the user's home folder (it is mounted twice). I don't know if OpenBSD has that feature. On Wed, Jun 14, 2017 at 6:38 AM, Ville Valkonen wrote: > Hi, > > one option is to use local nfs mounts. That's what I've done. > > -- >

Re: sftp chroot

Je 2017-06-14 13:02, Bryan Harris skribis: On Linux I have mounted another fs inside the user's home folder (it is mounted twice). I don't know if OpenBSD has that feature. This is not possible on OpenBSD, mount will tell "device is busy". On linux you should use mount --bind to bind a

Re: sftp chroot

On Wed, Jun 14, 2017 at 01:09:47PM +0200, Solne Rapenne wrote: > Je 2017-06-14 13:02, Bryan Harris skribis: > >On Linux I have mounted another fs inside the user's home folder (it is > >mounted twice). I don't know if OpenBSD has that feature. > > > > This is not possible on OpenBSD, mount will