ked up any new
clues to help resolve the remainder of the problem.
Man ipsec.conf says the default authentication for phase 2 is hmac-sha2-256
so I am reasonably confident that is correct. I suspect it is the remainder
of my config where I am having trouble.
Log out put from Greenbow:
2007081
Artur Grabowski wrote:
Joachim Schipper <[EMAIL PROTECTED]> writes:
Well, aside from the 'the load average is useless anyway' comments, a
load average of 1 is not necessarily unacceptable on a multi-processor
machine. (It means one CPU is constantly working.)
No, no, no and NO.
Pleas
Thanks everyone for the input.
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> On Behalf Of Darrin Chandler
> Sent: Tuesday, 14 August 2007 5:25 AM
> To: misc@openbsd.org
> Subject: Re: Top/uptime seems high
>
> On Mon, Aug 13, 2007 at 09:29:04PM +0200, Artur Gra
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 8/13/07 5:25 AM, Stuart Henderson wrote:
> On 2007/08/13 13:51, [EMAIL PROTECTED]@mgedv.net wrote:
>> why don't you just switch your ssh port to a different one.
>
> In my case, because it annoys me, and max-src-conn-rate doesn't.
I concur, and wo
Just for the record, I've been able to obtain a stable bios
configuration. See the dmesg output below. I've realized that the
problems I've been experiencing (uvm_fault previously, and strange
unexpected reboots during boot-ups recently) are related with the audio
configuration in bios settings. If
On Mon, Aug 13, 2007 at 09:29:04PM +0200, Artur Grabowski wrote:
> Joachim Schipper <[EMAIL PROTECTED]> writes:
>
> > Well, aside from the 'the load average is useless anyway' comments, a
> > load average of 1 is not necessarily unacceptable on a multi-processor
> > machine. (It means one CPU is c
Joachim Schipper <[EMAIL PROTECTED]> writes:
> Well, aside from the 'the load average is useless anyway' comments, a
> load average of 1 is not necessarily unacceptable on a multi-processor
> machine. (It means one CPU is constantly working.)
No, no, no and NO.
Please. If you don't understand lo
Am 13.08.2007 um 11:12 schrieb Antti Harri:
On Mon, 13 Aug 2007, Rickard Dahlstrand wrote:
Yes, but on the server. I get the same when using Stackens cvs-
mirror.
It appears to be broken quite often based on my experiences
and what other people have said.
Got the same message, googled and
On Mon, Aug 13, 2007 at 12:55:38PM +0200, Martin Schr?der wrote:
> 2007/8/13, Joachim Schipper <[EMAIL PROTECTED]>:
> > Well, aside from the 'the load average is useless anyway' comments, a
> > load average of 1 is not necessarily unacceptable on a multi-processor
> > machine. (It means one CPU is
Dear ladies and gentlemen,
OpenCON is the only conference fully dedicated to OpenBSD.
Last year edition was a great success and featured also the party for OpenBSD
10th birthday, with project leader Theo de Raadt and a lot of developers.
http://www.opencon.org/06/register-stat.php
http://galler
On 2007/08/13 13:51, [EMAIL PROTECTED]@mgedv.net wrote:
>
> why don't you just switch your ssh port to a different one.
In my case, because it annoys me, and max-src-conn-rate doesn't.
* Joachim Schipper <[EMAIL PROTECTED]> [2007-08-13 12:25]:
> > connection multiplexing can be useful for this sort of thing.
> Yes, it would be, but I never got it to work reliably (Subversion likes
> to close connections before opening the next one, etc). Did you? If so,
> could you share the scri
- Original Message -
From: "Stuart Henderson" <[EMAIL PROTECTED]>
To: "OpenBSD"
Sent: Monday, August 13, 2007 1:30 PM
Subject: Re: [misc] SSH brute force attacks no longer being caught by PF
rule
On 2007/08/13 12:14, Joachim Schipper wrote:
>
> This still needs a 3-way handshake to
On 2007/08/13 12:14, Joachim Schipper wrote:
> >
> > This still needs a 3-way handshake to be completed, it's not so
> > easy to blindly spoof. Main problem is if the attacker comes from
> > the same IP address as a legitimate user (NAT etc).
>
> Yes, that is one of the main problems. The other i
Joachim Schipper wrote:
Finally, Subversion over SSH uses lots of connections, should you ever
want to use that.
connection multiplexing can be useful for this sort of thing.
Yes, it would be, but I never got it to work reliably (Subversion likes
to close connections before opening the next o
2007/8/13, Joachim Schipper <[EMAIL PROTECTED]>:
> Well, aside from the 'the load average is useless anyway' comments, a
> load average of 1 is not necessarily unacceptable on a multi-processor
> machine. (It means one CPU is constantly working.)
No. It means that 1 process is constantly waiting t
On Mon, Aug 13, 2007 at 10:10:14AM +0100, Stuart Henderson wrote:
> On 2007/08/09 12:22, Joachim Schipper wrote:
> > > >
> > > > # Define some variable for clarity
> > > > SSH_LIMIT="(max-src-conn-rate 3/30, overload flush global)"
> > > >
> > > > # Allow quick valid traffic to ssh but log all a
On Mon, Aug 13, 2007 at 03:54:15PM +0930, Edwards, David (JTS) wrote:
> Hi,
>
> On a multiprocessor box, I'm seeing the following loads.
>
> top:
> load averages: 1.18, 1.17, 1.16
> 15:48:11
> 49 processes: 48 idle, 1 on processor
> CPU0 states: 2.8% user, 0.0% nice, 0.6% system, 0.0% in
On Mon, 13 Aug 2007, Edwards, David (JTS) wrote:
> Hi,
>
> On a multiprocessor box, I'm seeing the following loads.
Please include dmesg.
>
> top:
> load averages: 1.18, 1.17, 1.16
> 15:48:11
> 49 processes: 48 idle, 1 on processor
> CPU0 states: 2.8% user, 0.0% nice, 0.6% system, 0.0%
On Mon, Aug 13, 2007 at 03:54:15PM +0930, Edwards, David (JTS) wrote:
| uptime:
| 3:48PM up 15 days, 19:59, 2 users, load averages: 1.15, 1.17, 1.16
|
| These seem like high average loads to me but the server is idling (as
| shown by CPU usage in top).
|
| I understood that load averages were rel
On 2007/08/09 12:22, Joachim Schipper wrote:
> > >
> > > # Define some variable for clarity
> > > SSH_LIMIT="(max-src-conn-rate 3/30, overload flush global)"
> > >
> > > # Allow quick valid traffic to ssh but log all attempts as well
> > > pass in log quick on $ext_if inet proto tcp from ! \
>
On Mon, 13 Aug 2007, Rickard Dahlstrand wrote:
Yes, but on the server. I get the same when using Stackens cvs-mirror.
It appears to be broken quite often based on my experiences
and what other people have said.
--
Antti Harri
Hi,
On a multiprocessor box, I'm seeing the following loads.
top:
load averages: 1.18, 1.17, 1.16
15:48:11
49 processes: 48 idle, 1 on processor
CPU0 states: 2.8% user, 0.0% nice, 0.6% system, 0.0% interrupt,
96.6% idle
CPU1 states: 0.0% user, 0.0% nice, 0.0% system, 0.0% interrupt,
1
James Lepthien wrote:
Hi,
Am 10.08.2007 um 19:42 schrieb Umaxx:
hi,
i can show my ppp.conf, because i have the same errors. this config
was working since years, i tried to comment lqr lines today... but
changed nothing in behavior.
default:
set log Phase Chat IPCP CCP tun command
set
24 matches
Mail list logo