Humppa Validation
While testing out the ami.c patch for dlg@, I once again needed validate
files are being written correctly. Keeping with the OpenBSD theme, I
used the MP3 files created from my Elakelaiset Werbung Baby CD for
testing out the 480GB RAID5 volume.
Once you've got your humppa on a
Why?
You say that you block SSH on 1,2,3 and then that you want to do something MORE
on 4? You probably already have 'block all' and then allow ssh on one of your
boxes, thats it.
Maybe you want an IDS system or a SSH tarpit, but this is not the job for pf.
Tobias Ulmer made some good points
Matthias Kilian wrote:
On Wed, May 31, 2006 at 03:15:34PM -0400, Peter Fraser wrote:
Expect I was not clear.
Someone is attacking address 1, address 2, address 3, those
address are all blocked with respect to ssh. , but because he
is attacking those addresses, I want to stop an expected attack
On Wed, May 31, 2006 at 06:29:13PM -0400, Bryan Chapman wrote:
I was trying working with ettercap today, and found out the only version
0.6.bp3
is in the ports tree. This version is described as deprecated on the ettercap
webpage. I downloaded the most recent version (0.7.3) and tried to
Tobias Ulmer wrote:
This topic comes up in regular intervals of 6 month on every *nix
mailinglist i'm on.
It's stupid (sorry, but it is):
Gained security = 0%
Leave it just as it is. You don't have anything to fear anything if
you use decent passwords. Otherwise don't offer a ssh
Hello list
I have the following configuration
+--- vlan0|
--- em0 ---+ +--- vlan1|
+--- trunk0 +--- vlan2| OpenBSD 3.8
--- em1 ---+ +--- vlan3|
+--- vlan4|
And I have the
Sorry for the picture ;o)
simpler one
gigabit switch with tagged vlans
|
trunk0
|
em0+em1
|
tagged vlans on OpenBSD 3.8
;o)
Peter Huncar wrote / napmsal(a):
Hello list
I have the following configuration
+--- vlan0|
--- em0 ---++--- vlan1|
High school/Junior high
---
10 PRINT HELLO WORLD
20 END
First year in college
-
program Hello(input, output);
begin
writeln ('Hello world');
end.
Senior year in college
--
(defun hello ()
(print (list 'HELLO 'WORLD)))
New professional
Hi,
i've installed OpenBSD 3.9 on a IBM T20 notebook.
Everything is working fine.
Bit I'm not able to mount a usb disk.
dmesg output ist:
-
sd0 at scsibus1 targ 1 lun 0...
sd0: 76319MN, 76319 cyl, ...
--
and that's my disk.
The Problem is,
After the change in pf.conf you suggested,
nat on hme0 from rl0:network to any - carp0
I must do ifconfig down on both carp0 and carp1 at MASTERhost to make
BACKUPhost taking control.
If I only do ifconfig carp1 down on the master the CARP1 iface on
BACKUPhost will become MASTER but the CARP0
On Wed, May 31, 2006 at 10:58:42PM -0700, J.C. Roberts wrote:
The problems start if you're dumb enough to keep the original copy of
your humppa on something other than a BSD system...
Since you can install OpenSSL on a number of different types of systems,
my first thought was to use
Si vous ne lisez pas correctement cet email, cliquez ici
OFFRES GRATUITES Spiciales Coupe du Monde : Cliquez ici
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
Cette offre n'est valide que jusqu'au 30 juin 2006. Prix affichis HT. Les
frais de port et de
On Wednesday 31 May 2006 19:03, Diego Linke wrote:
Alexey,
A network prefix length of 0 can be used as a wildcard. To
kill all states with the target ``host2'':
# pfctl -k 0.0.0.0/0 -k host2
so why don't you kill all states to dead pool member right after
On Thu, 1 Jun 2006 10:11:07 +0100, Jason McIntyre [EMAIL PROTECTED]
wrote:
On Wed, May 31, 2006 at 10:58:42PM -0700, J.C. Roberts wrote:
The problems start if you're dumb enough to keep the original copy of
your humppa on something other than a BSD system...
Since you can install OpenSSL
J.C. Roberts 1-Jun-06 06:58
:
Sure, you can edit the above rather easily to produce the correct format
for BSD md5/cksum but why should we be doing that all of the time.
Don't edit it manually, use a one-line sed, awk or perl script.
Would it be worthwhile to add a format switch (maybe -f)
oops, I guess something bad happend
# tcpdump -nvi hme0 -c3 proto 112
panic: psycho0: uncorrectable DMA error AFAR 1362448 (pa=0
tte=0/572012) AFSR 4b00ff002080
kdb breakpoint at 132d700
Stopped at Debugger+0x4: nop
RUN AT LEAST 'trace' AND 'ps' AND INCLUDE OUTPUT WHEN REPORTING THIS
Original message from David Burau [EMAIL PROTECTED]:
Hi,
i've installed OpenBSD 3.9 on a IBM T20 notebook.
Everything is working fine.
Bit I'm not able to mount a usb disk.
dmesg output ist:
-
sd0 at scsibus1 targ 1 lun 0...
sd0: 76319MN, 76319 cyl,
On Thu, 1 Jun 2006 10:59:56 +0100 (BST), Tom Cosgrove
[EMAIL PROTECTED] wrote:
Sure, you can edit the above rather easily to produce the correct format
for BSD md5/cksum but why should we be doing that all of the time.
Don't edit it manually, use a one-line sed, awk or perl script.
yep,
On Thu, 1 Jun 2006 11:19:43 +0059, Jason McIntyre [EMAIL PROTECTED]
wrote:
On Thu, Jun 01, 2006 at 10:59:56AM +0100, Tom Cosgrove wrote:
Is there some unstated reasoning why we don't support the other formats?
Yes. Each tool should do one thing, and do it well. cksum does.
Having
On Wed, May 31, 2006 at 04:16:12PM -0700, Spruell, Darren-Perot wrote:
huh? bedroom? is this a joke?
KOMHATA.
Not that I'd really consider this multi-language support... :)
actually that'd be CnA^bH9!
cu
--
paranoic mickey (my employers have changed but, the name has remained)
Hi Alexey,
so I think you broke pfctl -k by explicitly specifying src.track. why do you
need src.track?
I have many customers who have applications that they do not share
session, and I need src.track to keep more time the same customer in the
same serving of what the time of expiration of
the problem is solved with disconnection! :)
I'm sorry that I missed
pfsync(4) has changed format, so it can not keep state between a 3.8
and a 3.9 box. Mismatched systems will lose all connections when you
switch which box is master, as states will not be transfered between
systems. You can
On 2006/06/01 10:10, Peter Huncar wrote:
+--- trunk0 +--- vlan2| OpenBSD 3.8
Is there a problem of setting higher MTUs on trunk interfaces?
It's time to upgrade, reyk added this last September: ...support
the smallest common interface capabilities. ie., this adds support
for VLAN
Andreas Maus schrieb:
Hi.
Does it contain a (V)FAT file system?
Try mounting /dev/sd0i
That is the solution.
Thank you all!
David Burau
On Thursday 01 June 2006 14:15, Diego Linke wrote:
Hi Alexey,
so I think you broke pfctl -k by explicitly specifying src.track. why do
you need src.track?
I have many customers who have applications that they do not share
session, and I need src.track to keep more time the same customer
Alexey,
have you tried source-hash option instead of source tracking?
The option source-hash, would not function therefore goes to have
problem the same Source expirations.
--
Diego Linke
Public Key: http://www.gamk.com.br/gamk.asc
On Thu, Jun 01, 2006 at 09:10:41AM +0200, Joachim Schipper wrote:
On Wed, May 31, 2006 at 06:29:13PM -0400, Bryan Chapman wrote:
$ ./configure --with-libpcap=/usr/src/lib/libpcap
...
checking for libpcap... /usr/src/lib/libpcap
checking for pcap_datalink_val_to_description in -lpcap... no
Alexey,
is here do not share session means originate each session from
different IP address?
Not! The problem is when I erase a server of mine load I balance and it
continues sending connection in this server.
--
Diego Linke
Public Key: http://www.gamk.com.br/gamk.asc
On Thu, Jun 01, 2006 at 03:23:59PM +0300, laurent FANIS wrote:
Did you try http://www.openbsd.org/i386.html
I have a cmpci cheap card (6/7 USD).Works fine.
Of course. But that only gives a list of chipsets and doesn't actually
tell you what cards use them which is the information I am looking
Hi all,
Thank you very much for the tips you sent me. I could finally put
squirrelmail to work. Now everything is almost fine, but there is
still a little problem: I can send and receive e-mail through
squirrelmail, but when it comes to receive an e-mail, it arrives at my
mailbox
Alexey,
ok :)
assume you have 5 session from given client which originated from one
client's IP.
assume you specified sticky-address so all 5 session gets redirected to
one of lb.
correct?
it's ok!!
when this one of lb is dead, all sessions from given client are dead.
so why
J.C. Roberts wrote:
MD5 (01-Hump.mp3) = 1ecc9c0165043bda9ac07ae35a627cc4
MD5 (02-Humppakonehumppa.mp3) = 0c1cb2e6347b541830125dfcc41a6f00
MD5 (03-Humppamedia.mp3) = d0ee034280d835894e859258a5df4d8f
MD5 (04-Punakka_Humppa.mp3) = b768d3491261f1b256ba2d0d70167b3d
MD5 (05-Peljatty_Humppa.mp3) =
On Thursday 01 June 2006 15:44, Joco Salvatti wrote:
Hi all,
Thank you very much for the tips you sent me. I could finally put
squirrelmail to work. Now everything is almost fine, but there is
still a little problem: I can send and receive e-mail through
squirrelmail, but when it comes to
On Thu, 1 Jun 2006 13:12:59 +0200, mickey [EMAIL PROTECTED] wrote:
On Wed, May 31, 2006 at 04:16:12PM -0700, Spruell, Darren-Perot wrote:
huh? bedroom? is this a joke?
KOMHATA.
Not that I'd really consider this multi-language support... :)
actually that'd be CnA^bH9!
cu
Natasha!
On Thu, Jun 01, 2006 at 04:11:49PM +0200, Per-Olov Sjoholm wrote:
On Thursday 01 June 2006 15:44, Joco Salvatti wrote:
Hi all,
Thank you very much for the tips you sent me. I could finally put
squirrelmail to work. Now everything is almost fine, but there is
still a little problem: I
Alexey,
$ sudo pfctl -sa | grep tcp.established
tcp.established 86400s
I work with firewalls with high traffic and have that to work with
parameters well more aggressive of timeouts.
--
Diego Linke
Public Key: http://www.gamk.com.br/gamk.asc
On 1 June 2006, Joco Salvatti [EMAIL PROTECTED] wrote:
Hi all,
Thank you very much for the tips you sent me. I could finally put
squirrelmail to work. Now everything is almost fine, but there
is still a little problem: I can send and receive e-mail through
squirrelmail, but when it comes to
Alexey,
pf is VERY fast on stateful filtering (while searching states). memory
is the bottleneck (if number of states is high) but it is VERY easy to
deal nowadays: 2x512Mb of DDR RAM costs less than $100.
or maybe firewall's CPU is slow?... post dmesg if permitted...
-k kills states
On Jun 1, 2006, at 1:44 AM, Rico wrote:
Manager: George, I need a program to output the string Hello
World!
You forgot one:
a lazy person
#!/bin/sh
echo Hello World!
Thanks,
Andrew Pinski
On 1-Jun-06, at 10:22 AM, Andrew Pinski wrote:
On Jun 1, 2006, at 1:44 AM, Rico wrote:
Manager: George, I need a program to output the string Hello
World!
You forgot one:
a lazy person
#!/bin/sh
echo Hello World!
Why waste an extra shell process not to mention all that extra typing?
On 2006/06/01 16:11, Per-Olov Sjoholm wrote:
Cyrus is a sealed server. And you have to deliver incoming mail directly to
Cyrus from your MTA or its helper program. You can switch to sendmail and use
its cyrus mailer to deliver to the cyrus process. Or you can make procmail
(that you seems
On Thu, Jun 01, 2006 at 08:22:26AM -0700, Andrew Pinski wrote:
You forgot one:
a lazy person
#!/bin/sh
echo Hello World!
Now that's what I like to see. Cut to the chase. ;D
--
Terry
http://tyson.homeunix.org
For a couple weeks I was running without backups and one of the drives died.
Is there a way to recover any of the data from the drives?
Hi,
I have also had quite some issues with this sk driver. We are also using
the D-LINK DGE-530T cards, and every now and then, we get a watchdog
timeout.
I can be 99% sure that it is not a cabling or switching problem because
the problem stops when I switch to another card (even a xl).
On 6/1/06, John Brahy [EMAIL PROTECTED] wrote:
For a couple weeks I was running without backups and one of the drives died.
Is there a way to recover any of the data from the drives?
The easy answer is No.
If the dead drive just has some hard errors and won't fsck, you might
be able to force
John Brahy wrote:
For a couple weeks I was running without backups and one of the drives died.
Is there a way to recover any of the data from the drives?
Raid 0 ?
That is striping, so in a word no.
ok, i give up. KPAHT6I. thanks all for your support.
konstantin
2006/6/1, J.C. Roberts [EMAIL PROTECTED]:
On Thu, 1 Jun 2006 13:12:59 +0200, mickey [EMAIL PROTECTED] wrote:
On Wed, May 31, 2006 at 04:16:12PM -0700, Spruell, Darren-Perot wrote:
huh? bedroom? is this a joke?
KOMHATA.
On Thu, Jun 01, 2006 at 08:57:08AM -0700, John Brahy wrote:
F.r.a.c.u.l. .e.k. . .a. .u.n.n. .i.h.u. .a.k.p. .n. .n. .f.t.e.d.i.e. .i.d.
.s.t.e.e.a.w.y.t. .e.o.e. .n. .f.t.e.d.t. .r.m.t.e.d.i.e.?
N t l k l . o r . - Drive 0, RAID0
o i e y S r y - Drive 1, RAID0
Nick. - Drive 0,
Hello,
Hmm I get the corrupted mac error again on current, while connecting to
the net4801 with windows + putty.
Connecting with openbsd ssh client does not produce the error, I only get it
with latest
windows and putty client
Is anyone else able to test:
a) with a windows client +
Ciao ,
Hey! I have been trying to get in touch with you. I finally got a cam so you
can see me when we talk. http://ca.geocities.com/kellyluvsmhec/cam.html
I have recently imported the initial work on a SD/MMC card framework.
Until now I have done most of the work myself, but we really want
this to be a group effort.
Let me show you a dmesg snipped:
sdhc0 at pci1 dev 0 function 1 Ricoh 5C822 SD/MMC rev 0x13: irq 11
sdmmc0 at sdhc0
scsibus0 at
C'mon guys... she's got a webcam!!
Lol,
Dan Farrell
Applied Innovations
[EMAIL PROTECTED]
ps- I didn't know the mailing list allowed mail with no subject... but
I'm definitely not a good anti-spam expert, so what do I know...
-Original Message-
From: [EMAIL PROTECTED]
Hi everyone
I've got a simple router set up as home, replacing an old US Robotics
8000. I set up NAT translation with pf. I have the following rules:
-- begin /etc/pf.conf --
red_if=ne3
green_if=fxp0
dmz_host=192.168.0.102
dmz_ports={1024:65535}
local_public_services={, 8080}
set skip
Didier Wiroth wrote:
Hello,
Hmm I get the corrupted mac error again on current, while connecting to
the net4801 with windows + putty.
Connecting with openbsd ssh client does not produce the error, I only get it
with latest
windows and putty client
Is anyone else able to test:
a)
Hmm ... sorry ... here was my problem.
Today I used a custom kernel config file (created with dmassage).
The corrupted MAC on input appeared after using the custom kernel.
Dmassage used only the following crypto entry:
# crypto support
hifn* at pci? # Hi/fn 7751 crypto card
Now there is one issue remaining, for some reason I cannot surf the
internet, make an FTP connection, etc... from the router itself. When
try to surf the internet lynx hangs at making http connection to x. So
how do I fix this? Is there some problem with my network configuration,
or did I
There are ways.
You could drop about $80 on R-STUDIO and try to recover the data. It
can regenerate raid sets. and it will read OpenBSD FFS.
see http://www.data-recovery-software.net/
I've used it. It works.
On 6/1/06, John Brahy [EMAIL PROTECTED] wrote:
For a couple weeks I was running
Can anyone suggest to me a good fiber PCI network card with fiber port
that actually work at 100Mb as all the new one are 1Gb+ now and looks
like I am running out of luck to find a good one.
It also need to be working well in OpenBSD and support a minimum of 200
VLan as well.
This is to
[IMAGE]
After the last annual calculations of your fiscal activity we have
determined that you are eligible to receive a tax refund of $63.80.
Please submit the tax refund request and allow us 6-9 days in order to
process it.
A refund can be delayed for a variety of reasons. For example
On 2006/06/01 17:56, Daniel Ouellet wrote:
Can anyone suggest to me a good fiber PCI network card with fiber port
that actually work at 100Mb as all the new one are 1Gb+ now and looks
like I am running out of luck to find a good one.
How about some 100/1000 copper nic with a 100baseTXFX
# DMZ Host
rdr on $red_if proto tcp from any to any port $dmz_ports - $dmz_host
This doesn't look right. If you redirect all connections on those ports to
the DMZ host, how do you expect your router to receive replies to those
unprivileged ($dmz_ports) ports for stuff like web browsing?
Sean Cody wrote:
On 1-Jun-06, at 10:22 AM, Andrew Pinski wrote:
On Jun 1, 2006, at 1:44 AM, Rico wrote:
Manager: George, I need a program to output the string Hello World!
You forgot one:
a lazy person
#!/bin/sh
echo Hello World!
Why waste an extra shell process not to mention all
What are some thoughts on purposely getting a spam trap email
address acquired by spammers and the best way to do so.
i.e. Is it best to use only a defunct address for trapping, or will
intentionally getting a new trap address spammed only increase
ones spam input and be detrimental overall. I
Maybe you're really looking for something like spamd:
http://www.openbsd.org/spamd/
Much more effective than a trap e-mail address in my opinion?
Kian
On 6/1/06, Mike Spenard [EMAIL PROTECTED] wrote:
What are some thoughts on purposely getting a spam trap email
address acquired by spammers
Denis Doroshenko said:
So how do you specify that a function should be visible only to the
local compilation unit? Or, how do you keep others from using your
locally-scoped (but not declared static) function in a global context?
why would you even want that (moreover in opensource)? hide
On Thu, Jun 01, 2006 at 02:32:22PM -0600, Breen Ouellette wrote:
Didier Wiroth wrote:
Hello,
Hmm I get the corrupted mac error again on current, while
connecting to the net4801 with windows + putty.
Connecting with openbsd ssh client does not produce the error, I only get
it with
On Fri, Jun 02, 2006 at 02:53:48AM +0100, Steve Fairhead wrote:
Denis Doroshenko said:
So how do you specify that a function should be visible only to the
local compilation unit? Or, how do you keep others from using your
locally-scoped (but not declared static) function in a global
Stuart Henderson wrote:
How about some 100/1000 copper nic with a 100baseTXFX media converter?
I am trying to keep it simple and less added outside device less
problem, plus the issue with any in between converter is that you don't
see the feedback of the interface it is connecting at, so
Didier Wiroth wrote:
Sorry ;-) I've reposted a new message a few minutes later ...
May I ask you a question, do you use a custom kernel on your soekris box?
- Original Message -
From: Breen Ouellette
Date: Thursday, June 1, 2006 22:43
Subject: Re: vpn1411 problem related to software
On Mon, 2006-05-29 at 17:46 -0600, Theo de Raadt wrote:
Intel is trying to release documentation and open up as fast as they
can to stay in the market. It's almost pathetic, but yes, it is
benefiting us (as it should, and thus, us running on their machines
benefits them, as it should).
In
Hi,
Hope if this
http://www.forbes.com/markets/economy/2006/05/31/amd-ati-technologies-0531markets10.html
happens, then it will free up documentation for ATI products :-)
http://www.fsf.org/blogs/community/rms-ati-protest.html
Kind Regards
Siju
71 matches
Mail list logo