Re: NIC is not recognized.
On 2008/02/11 10:40, Badbanchi Hossein wrote: Hi, I am trying to install OpenBSD 4.2 on a HP Compaq dc7800. After the installation is complete, ifconfig doesn't show any NICs other than lo0 and enc0. The output of dmesg has a line: vendor Intel, unknown product 0x10bd (class network subclass ethernet, rev 0x02) at pci0 dev 25 function 0 not configured This is a newer chip which isn't supported by the driver in OpenBSD yet.
Re: Java : Cafe Babe...
On Feb 11, 2008 2:07 PM, Julian Leyh [EMAIL PROTECTED] wrote: On 20:41 Sun 10 Feb , Edd Barrett wrote: Now try on a sparc64 and see what happens. in case he doesn't have one, here the output on sparc64: [EMAIL PROTECTED]:~ $ od -x helloWorld.class |head -n 1 000 cafebabe0031001d0a0006000f09 Thanks... :)
Re: [OT] beefy steel cases
If anyone is interested, I have five of the cases at the following website for sale. http://www.kevla.org/cases Jay I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy.
amd64 - bootloader and BIOS see 16gb ram, kernel does not
After being away from OpenBSD for about 2 years, I recently decided to take another look at it for a server I am deploying. The machine is a 8-way amd64 (Intel quad Xeon x 2) with 16GB ram. The BIOS and bootloader correctly see all 16gb, but the kernel only sees 4.00GB (a very non-random amount, indicating to me an artificial limit is being imposed somewhere). Just for comparison purposes, amd64 Windows and amd64 Linux also both see 16gb, but these are not being considered for deployment. I've tried both 4.2 and -current from a week or so back, and have the same problem on both. I also went through the -GENERIC config and GENERIC-MP config and tried to see if any options in there were applicable, but did not see anything that seemed appropriate to fix this issue. A few notes: 1. I am using the amd64 platform release, not i386 (in case someone thought I was trying to do some PAE-related stuff). I verified that it really is the amd64 kernel and not a rogue i386 one that slipped in there accidentally (which would explain the 4GB limit without PAE). 2. Both GENERIC and -MP only see 4gb, but -MP _does_ correctly see all 8 cores. 3. I checked the archive and noticed that some people have had no issues with similar configurations, so I'm probably doing something wrong or I might be missing a config option. (Most of these success stories are using Sun hardware - the machine in question is not, but I'm not sure why the system would be picky in that respect). 4. The memory ranges reported by the bootloader are correct - typical mappings up to 4gb, followed by a large 12.8GB range starting at physical 5GB. All the ranges are enabled. 5. It's a Dell server, in case that matters to anyone. Any thoughts or specific reason why I _should not_ expect this configuration to work (with all 16gb usable) ? -ml [EMAIL PROTECTED]
Re: ports.openbsd.nu
What I've heard is that the site will be back up with new owners asap. /Markus Fredrik Carlsson wrote: Edd Barrett vext01 at gmail.com writes: hey, what happened to ports.openbsd.nu?. The owner forgot to renew it and I can't reach him, so the site has moved to http://openports.se Regards Fredrik Carlsson
Re: Forwarding roots mail to another account , seperate email server
Jay Hart wrote: Chris, ... I do receive emails from the machine, but they are not being delivered properly. Here is what I get when I receive one: Subject: Returned mail: see transcript for details From: Mail Delivery Subsystem [EMAIL PROTECTED] Date: Mon, February 11, 2008 11:31 am To: [EMAIL PROTECTED] Message contents: The original message was received at Mon, 11 Feb 2008 11:30:45 -0500 (EST) from localhost.cosmoweb.net [127.0.0.1] - The following addresses had permanent fatal errors - [EMAIL PROTECTED] (reason: 553 5.1.8 [EMAIL PROTECTED]... Domain of sender address [EMAIL PROTECTED] does not exist) (expanded from: [EMAIL PROTECTED]) You can either masquerade the domain at the sending side (http://www.sendmail.org/m4/masquerading_relaying.html) or allow the domain at the receiving side (http://www.sendmail.org/m4/anti_spam.html#access_db) -Steve S.
Re: Forwarding roots mail to another account , seperate email server
On 2008/02/11 12:36, Jay Hart wrote: Henning, You are right, it is ~/.forward Any suggestions? look in maillog
Re: Forwarding roots mail to another account , seperate email server
Henning, You are right, it is ~/.forward Any suggestions? * Jay Hart [EMAIL PROTECTED] [2008-02-11 17:58]: Regardless, I can't seem to get mail forwarding working. The two main openbsd books say all I need to do is create a .forwarding file and give the name of the email address to forward to, but for two months not one email was forwarded. it is ~/.forward - not .forwarding -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: Forwarding roots mail to another account , seperate email server
Henning Brauer wrote:
* Jay Hart [EMAIL PROTECTED] [2008-02-11 17:58]:
Regardless, I can't seem to get mail forwarding working. The two main openbsd
books say all I need to do is create a .forwarding file and give the name of
the email address to forward to, but for two months not one email was
forwarded.
it is ~/.forward - not .forwarding
you could also set up all mail to be sent to a smart host:
three changes required -
* configure sendmail to use a remote host for all mail in
/etc/mail/submit.cf
# changes to fwd mail directly to smart host
#D{MTAHost}[127.0.0.1]
D{MTAHost}[smtp.muse.net.nz]
* configure local aliases mapping to remap users to a destination
address in /etc/mail/aliases
# Well-known aliases these should be filled in!
# root:
root: [EMAIL PROTECTED]
permit relaying on smart host (postfix in my case) in /etc/postfix/main.cf
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,
somehost.$mydomain
although Henning's solution is simpler, the other one moves all config
into /etc which i like more.
a+
scorch
Re: Forwarding roots mail to another account , seperate email server
* Jay Hart [EMAIL PROTECTED] [2008-02-11 17:58]: Regardless, I can't seem to get mail forwarding working. The two main openbsd books say all I need to do is create a .forwarding file and give the name of the email address to forward to, but for two months not one email was forwarded. it is ~/.forward - not .forwarding -- Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED] BS Web Services, http://bsws.de Full-Service ISP - Secure Hosting, Mail and DNS Services Dedicated Servers, Rootservers, Application Hosting - Hamburg Amsterdam
Re: sd0: not queuqued error 5
The ipmi wait is normal in that release. Completly unrelated to the sd thing. On Feb 11, 2008, at 3:04 PM, Beavis [EMAIL PROTECTED] wrote: system is still good after I cvsup to -stable. my only concern is during bootup it takes around 1min. on the part that says ipmi0 at mainbus0 but i guess this is minimal as long as it doesn't spit out that sd0 error again. dmesg | grep mainbus0 shows: mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/28/08, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.4 @ 0x7fb9c000 (64 entries) acpi at mainbus0 not configured ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca8/8 spacing 4 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) keeping fingers cross, -beavis
Re: : Zombie Network Spam Attack
On Mon, Feb 11, 2008 at 11:17:35AM +0100, Raimo Niskanen wrote:
On Fri, Feb 08, 2008 at 11:20:31AM -0500, Calomel wrote:
Raimo,
Can you use the spamd.alloweddomains to whitelist email addresses and
domains you accept mail for? Any email sent to your mail server that is not
on the list will only goto spamd and never get the chance to be
greylisted/whitelisted. Then you could write a simple script to look
through the spamd logs of BLACK entries.
Well, that was already done. All incoming backscatter was to a valid
domain.
If you can compile a list of valid email address this might help. Instead
of @example.com you could list [EMAIL PROTECTED], [EMAIL PROTECTED] Any server
sending to an invalid address would be blacklisted and a script could add
those ips to a pf block table.
cat /var/log/daemon | grep spamd | grep BLACK | awk '{print $7}' | sort |
uniq
The problem seemed to be that spamd overloaded the network connection.
If spamd is sending to many packets back try increasing the stutter time
-S90 and the stutter speed -s5. At 600 connections total and 600
packets per 5 seconds the network would need to handle 120 packets per
second each direction; around 180 kilobytes in each direction. This might
still need be too much bandwidth, but you could increase the values as
needed or decrease the amount of connections spamd will accept with -c.
maxcon may not exceed kern.maxfiles - 200, and defaults to 800.
...and add the offending ips to a block table with a cron job running a few
times a day. This page might give you some more ideas:
Spamd tarpit/greylisting anti-spam how to (spamdb)
http://calomel.org/spamd_config.html
I will have a look at it. Thank you for the ideas.
--
Calomel @ http://calomel.org
Open Source Research and Reference
On Fri, Feb 08, 2008 at 11:07:15AM +0100, Raimo Niskanen wrote:
Apparently we (our mail server) got targeted by a zombie network
since suddenly there were some 3 hosts on spamd's whitelist,
continously some 600 connections to spamd, and only mails to
unknown users coming in. The network connection was flooded,
the web server sluggish, downloads creeped, basically
nothing worked.
Can spamd do anything about zombie hosts? They behave like
normal MTAs so they will pass spamd's behavioural tests, right?
Now I analyze the greylist, do some heuristics on the
sender address (among other things) and trap the bad hosts.
The trapped hosts are then copied to a pf table to be blocked
in the firewall. Tarpitting them through spamd is simply
too much work for the mail server, but blocking works fine.
Here come the questions:
* Does anyone know of a good strategy against zombie network
spam attacks?
* To make the greylist heuristics validate recepients and
blacklist hosts that send to invalid recepients would
blacklist valid MTAs that send bounces of mails with
fake sender addresses to me, right? And that would be
too cruel, or? Because it would certainly decrease
the spam amount.
* To make the greylist herustics validate the hosts
by reverse DNS PTR lookup and then forward A lookup
is apparetly a debatable issue according to the
current thread running mail server at home.
But if it is (fairly) common practice it would
be a simple thing to do, and certainly decrease
spam volume. But would it be to narrow?
--
/ Raimo Niskanen, Erlang/OTP, Ericsson AB
--
/ Raimo Niskanen, Erlang/OTP, Ericsson AB
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
Mike Larkin wrote: After being away from OpenBSD for about 2 years, I recently decided to take another look at it for a server I am deploying. The machine is a 8-way amd64 (Intel quad Xeon x 2) with 16GB ram. The BIOS and bootloader correctly see all 16gb, but the kernel only sees 4.00GB (a very non-random amount, indicating to me an artificial limit is being imposed somewhere). Just for comparison purposes, amd64 Windows and amd64 Linux also both see 16gb, but these are not being considered for deployment. I've tried both 4.2 and -current from a week or so back, and have the same problem on both. I also went through the -GENERIC config and GENERIC-MP config and tried to see if any options in there were applicable, but did not see anything that seemed appropriate to fix this issue. A few notes: 1. I am using the amd64 platform release, not i386 (in case someone thought I was trying to do some PAE-related stuff). I verified that it really is the amd64 kernel and not a rogue i386 one that slipped in there accidentally (which would explain the 4GB limit without PAE). 2. Both GENERIC and -MP only see 4gb, but -MP _does_ correctly see all 8 cores. 3. I checked the archive and noticed that some people have had no issues with similar configurations, so I'm probably doing something wrong or I might be missing a config option. (Most of these success stories are using Sun hardware - the machine in question is not, but I'm not sure why the system would be picky in that respect). 4. The memory ranges reported by the bootloader are correct - typical mappings up to 4gb, followed by a large 12.8GB range starting at physical 5GB. All the ranges are enabled. 5. It's a Dell server, in case that matters to anyone. Any thoughts or specific reason why I _should not_ expect this configuration to work (with all 16gb usable) ? -ml [EMAIL PROTECTED] Hi, the following Undeadly comments might shed some light on your issue: http://www.undeadly.org/cgi?action=articlesid=20060123062745pid=5mode=expanded and http://undeadly.org/cgi?action=articlesid=20071007002942pid=6mode=expanded HTH Fred -- http://www.crowsons.com/puters/x41.htm
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
Travers Buda wrote The developers need hardware to tackle this. It may be possible for me to loan out this hardware. Where is it needed, and for how long? An private reply is probably better here as to not spam the list. -ml
Re: sd0: not queuqued error 5
My 1750s sit on the IPMI probe as well, but I don't think it's abnormal. I've also experienced the :sd0 not queued hang and it's a serious problem as CARP doesn't failover. The only workaround I've found is to check userspace from another box and force failover. On Feb 12, 2008 7:04 AM, Beavis [EMAIL PROTECTED] wrote: system is still good after I cvsup to -stable. my only concern is during bootup it takes around 1min. on the part that says ipmi0 at mainbus0 but i guess this is minimal as long as it doesn't spit out that sd0 error again.
Re: Suggestion for ipsec.conf(5)
On Sun, Feb 10, 2008 at 10:43:36PM +0100, Aurilien wrote: In the [manual flows] section of the ipsec.conf man page, the [type modifier] parameter doesn't explain require, use, acquire and dontacq modifiers. The explanation from the old ipsecadm(8) should be use: fixed now. thanks for the mail, jmc
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
Mike Larkin wrote: I see. Just for my personal reference, was this limitation documented somewhere (just want to make sure I didn't miss anything)...? If not, should it be? Finally, did this limitation always exist? I do recall several other posters mentioning that they had similar configurations that _did_ work, but this was about a year back. Perhaps one or two of them didn't realize that only 4gb were usable, but it seems unlikely that _none_ of them realized it. -ml Earlier in the thread there are some links to undeadly that do answer the questions above. Thanks for the info everyone. -ml
Re: [OT] beefy steel cases
Jay Hart wrote: Yes, I too at one time bought a huge case. Has 10 5.25 bays. Only problem is that you can't use all of them due to cable length limitations. Multiple controllers? Onboard IDE controller (pri and sec interface) and a Adaptec 2940 SCSI card. No, I meant you could use more controllers to add more drives. Not enough cable to do more than 4 SCSI drives? Add another channel.
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
Nick Holland wrote: The amd64 4G issue is a limitation of the platform...at the moment. It is being worked on, slowly, but there be dragons, and they all have to be slain. Nick. I see. Just for my personal reference, was this limitation documented somewhere (just want to make sure I didn't miss anything)...? If not, should it be? Finally, did this limitation always exist? I do recall several other posters mentioning that they had similar configurations that _did_ work, but this was about a year back. Perhaps one or two of them didn't realize that only 4gb were usable, but it seems unlikely that _none_ of them realized it. -ml
Route-based VPN - Fortigate to OpenBSD
Chris Jones writes: A while back I attempted to setup a route-based VPN tunnel between a Fortigate firewall and an OpenBSD firewall with no success. I now have the need to get this to work and wondering if someone on the list can shed some light on the configuration. The end goal is to have a gif(4) interface run over IPSec so that I can use a dynamic routing protocol to route traffic to remote VPN networks. As far as a OpenBSD is concerned when it talks to a FortiGate/Netscreen both are using tunnel mode IPsec. The difference is that FortiGate/Netscreen implement it in such away that a virtual interface is created so that you can route over it. To do the equivalent under OpenBSD you'd either :- * implement an equivalent kind of IPsec network device in the OpenBSD kernel (enc0 is starting point) and modify the IKE daemon to know about it. * Modify the IKE daemon so that when it negotiates tunnel mode then on the OpenBSD side it add transport mode IPsec SAs and creates or binds to a gif device. If you are wondering why FortiGate/Netscreen do things the way they do then it comes down to ease of configuration. For years under Cisco IOS the way to do what you want a combination of transport mode IPsec and GRE interface. Not particularly difficult to setup but still more complicated that it needed to be if all you want is a VPN that you can route over. So Cisco IOS now supports an IPsec interface so that you can forget about transport mode and GRE (unless your talking to *BSD/Linux) and just define your tunnel mode IPsec and you can get an interface to route over.
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
* Douglas A. Tutty [EMAIL PROTECTED] [2008-02-11 20:47:47]: On Mon, Feb 11, 2008 at 02:04:20PM -0800, Mike Larkin wrote: 8-way amd64 (Intel quad Xeon x 2) with 16GB ram. The BIOS and bootloader correctly see all 16gb, but the kernel only sees 4.00GB (a very non-random amount, indicating to me an artificial limit is being imposed somewhere). Just for comparison purposes, amd64 Windows and amd64 Linux also both see 16gb, but these are not being considered for deployment. I've tried both 4.2 and -current from a week or so back, and have the same problem on both. I also went through the -GENERIC config and GENERIC-MP config and tried to see if any options in there were applicable, but did not see anything that seemed appropriate to fix this issue. I wonder if the fix for Compaq's with more than 16 MB of ram would be applicable? See the FAQ section 4.12.1. The fix involves a boot prompt command and if it works, a line in /etc/boot.conf Good luck. Doug. The developers need hardware to tackle this. -- Travers Buda
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
Douglas A. Tutty wrote: On Mon, Feb 11, 2008 at 02:04:20PM -0800, Mike Larkin wrote: 8-way amd64 (Intel quad Xeon x 2) with 16GB ram. The BIOS and bootloader correctly see all 16gb, but the kernel only sees 4.00GB (a very non-random amount, indicating to me an artificial limit is being imposed somewhere). Just for comparison purposes, amd64 Windows and amd64 Linux also both see 16gb, but these are not being considered for deployment. I've tried both 4.2 and -current from a week or so back, and have the same problem on both. I also went through the -GENERIC config and GENERIC-MP config and tried to see if any options in there were applicable, but did not see anything that seemed appropriate to fix this issue. I wonder if the fix for Compaq's with more than 16 MB of ram would be applicable? See the FAQ section 4.12.1. no, the Compaq issue is a bug between the boot loader and the Compaq BIOS (probably enough blame to share between the two), on a platform that can handle the larger amounts of RAM. The amd64 4G issue is a limitation of the platform...at the moment. It is being worked on, slowly, but there be dragons, and they all have to be slain. Nick.
Re: Forwarding roots mail to another account , seperate email server
Chris, I tried the aliases approach, but didn't get any output from mail on my router for two months, Then one day, about 200 messages came spooling out. Now I get messages whenever. /etc/mail/aliases root: [EMAIL PROTECTED] I do receive emails from the machine, but they are not being delivered properly. Here is what I get when I receive one: Subject: Returned mail: see transcript for details From: Mail Delivery Subsystem [EMAIL PROTECTED] Date: Mon, February 11, 2008 11:31 am To: [EMAIL PROTECTED] Message contents: The original message was received at Mon, 11 Feb 2008 11:30:45 -0500 (EST) from localhost.cosmoweb.net [127.0.0.1] - The following addresses had permanent fatal errors - [EMAIL PROTECTED] (reason: 553 5.1.8 [EMAIL PROTECTED]... Domain of sender address [EMAIL PROTECTED] does not exist) (expanded from: [EMAIL PROTECTED]) - Transcript of session follows - ... while talking to earth.cosmoweb.net.: MAIL From:[EMAIL PROTECTED] SIZE=1612 553 5.1.8 [EMAIL PROTECTED]... Domain of sender address [EMAIL PROTECTED] does not exist 501 5.6.0 Data format error I think part of the problem is that piper.kevla.org is my router, but I don't have an A or MX record pointing to that name, and I'm not running Bind/DNS services on the router. Just using as gateway for internet access, and my ISPs DNS servers. My A and MX records point to www.kevla.org. These are being returned from my ISP, so I also think that when they show back up for delivery, they are getting hung because [EMAIL PROTECTED] does not exist as a valid account on my email server. But, why aren't they being sent to [EMAIL PROTECTED] Your advice greatly appreciated. Jay On Feb 11, 2008 8:55 AM, Jay Hart [EMAIL PROTECTED] wrote: Regardless, I can't seem to get mail forwarding working. The two main openbsd books say all I need to do is create a .forwarding file and give the name of the email address to forward to, but for two months not one email was forwarded. You have a choice echo [EMAIL PROTECTED] ~root/.forward or add an entry to /etc/mail/aliases: root: [EMAIL PROTECTED] and then run newaliases CK -- GDB has a 'break' feature; why doesn't it have 'fix' too?
Re: Forwarding roots mail to another account , seperate email server
On Feb 11, 2008 8:55 AM, Jay Hart [EMAIL PROTECTED] wrote: Regardless, I can't seem to get mail forwarding working. The two main openbsd books say all I need to do is create a .forwarding file and give the name of the email address to forward to, but for two months not one email was forwarded. You have a choice echo [EMAIL PROTECTED] ~root/.forward or add an entry to /etc/mail/aliases: root: [EMAIL PROTECTED] and then run newaliases CK -- GDB has a 'break' feature; why doesn't it have 'fix' too?
Re: upgrade from 4.2-release to -current error
looks like you didn't rebuild config... http://www.openbsd.org/faq/current.html On Feb 11, 2008 5:47 PM, Chris [EMAIL PROTECTED] wrote: I am trying to upgrade from 4.2-release to -current. I am following: http://openbsd.org/faq/faq5.html I did: cd /usr export [EMAIL PROTECTED]:/cvs cvs -d$CVSROOT checkout -P src cvs -d$CVSROOT up -Pd cd /usr/src/sys/arch/i386/conf config GENERIC config GENERIC gives me the following error: # config GENERIC ../../../../conf/files:1005: syntax error ../../../../conf/files:1006: syntax error ../../../../conf/files:1007: syntax error ../../../../conf/files:1008: syntax error ../../../../conf/files:1009: syntax error ../../../../conf/files:1010: syntax error ../../../../conf/files:1011: syntax error ../../../../conf/files:1012: syntax error ../../../../conf/files:1013: syntax error ../../../../conf/files:1014: syntax error ../../../../conf/files:1015: syntax error ../../../../conf/files:1016: syntax error ../../../../conf/files:1017: syntax error ../../../../conf/files:1018: syntax error ../../../../conf/files:1019: syntax error ../../../../conf/files:1020: syntax error ../../../../conf/files:1021: syntax error ../../../../conf/files:1022: syntax error ../../../../conf/files:1023: syntax error ../../../../conf/files:1024: syntax error ../../../../conf/files:1025: syntax error ../../../../conf/files:1026: syntax error ../../../../conf/files:1027: syntax error ../../../../conf/files:1028: syntax error ../../../../conf/files:1029: syntax error ../../../../conf/files:1030: syntax error ../../../../conf/files:1031: syntax error ../../../../conf/files:1032: syntax error ../../../../conf/files:1033: syntax error ../../../../conf/files:1034: syntax error ../../../../conf/files:1035: syntax error ../../../../conf/files:1036: syntax error ../../../../conf/files:1037: syntax error ../../../../conf/files:1038: syntax error *** Stop. Is there anything I am doing wrong? Could someone please help me with this issue? Thanks. -- GDB has a 'break' feature; why doesn't it have 'fix' too?
Re: [OT] beefy steel cases
On Mon, Feb 11, 2008 at 08:01:35PM -0500, Steve Shockley wrote: Yes, I too at one time bought a huge case. Has 10 5.25 bays. Only problem is that you can't use all of them due to cable length limitations. Multiple controllers? I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy. Their web site lists that it can take *one* hot-swap power supply. Not quite sure of the point of that... I haven't looked at that yet. Other case makers also make hot-swap supplies. Its a PSU box with two (or three) separate modules. Presumably, the common parts of the box are just mechanical and all the electronics are replicated in each module. A good example (i.e. good picture) is on the supermicro site. Doug.
upgrade from 4.2-release to -current error
I am trying to upgrade from 4.2-release to -current. I am following: http://openbsd.org/faq/faq5.html I did: cd /usr export [EMAIL PROTECTED]:/cvs cvs -d$CVSROOT checkout -P src cvs -d$CVSROOT up -Pd cd /usr/src/sys/arch/i386/conf config GENERIC config GENERIC gives me the following error: # config GENERIC ../../../../conf/files:1005: syntax error ../../../../conf/files:1006: syntax error ../../../../conf/files:1007: syntax error ../../../../conf/files:1008: syntax error ../../../../conf/files:1009: syntax error ../../../../conf/files:1010: syntax error ../../../../conf/files:1011: syntax error ../../../../conf/files:1012: syntax error ../../../../conf/files:1013: syntax error ../../../../conf/files:1014: syntax error ../../../../conf/files:1015: syntax error ../../../../conf/files:1016: syntax error ../../../../conf/files:1017: syntax error ../../../../conf/files:1018: syntax error ../../../../conf/files:1019: syntax error ../../../../conf/files:1020: syntax error ../../../../conf/files:1021: syntax error ../../../../conf/files:1022: syntax error ../../../../conf/files:1023: syntax error ../../../../conf/files:1024: syntax error ../../../../conf/files:1025: syntax error ../../../../conf/files:1026: syntax error ../../../../conf/files:1027: syntax error ../../../../conf/files:1028: syntax error ../../../../conf/files:1029: syntax error ../../../../conf/files:1030: syntax error ../../../../conf/files:1031: syntax error ../../../../conf/files:1032: syntax error ../../../../conf/files:1033: syntax error ../../../../conf/files:1034: syntax error ../../../../conf/files:1035: syntax error ../../../../conf/files:1036: syntax error ../../../../conf/files:1037: syntax error ../../../../conf/files:1038: syntax error *** Stop. Is there anything I am doing wrong? Could someone please help me with this issue? Thanks.
Forwarding roots mail to another account , seperate email server
I am using openbsd 4.0. I have a standard non-X install, setup as a router/firewall NATing several boxes. I am port forwarding 25 and 80 to a single box behind the firewall. So, I do not have sendmail per se running on the openbsd box, but local mail is working. Not sure I have the proper terminiology here. Regardless, I can't seem to get mail forwarding working. The two main openbsd books say all I need to do is create a .forwarding file and give the name of the email address to forward to, but for two months not one email was forwarded. So, at a minimum, what do I need to do in order to get the email delivered from root, to another account on my email server sitting behind the firewall? Jay
Re: [OT] beefy steel cases
Yes, I too at one time bought a huge case. Has 10 5.25 bays. Only problem is that you can't use all of them due to cable length limitations. Multiple controllers? Onboard IDE controller (pri and sec interface) and a Adaptec 2940 SCSI card. I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy. Their web site lists that it can take *one* hot-swap power supply. Not quite sure of the point of that... New marketing term... you haven't heard of it before, they just invented it...
Re: [OT] beefy steel cases
Yes, I too at one time bought a huge case. Has 10 5.25 bays. Only problem is that you can't use all of them due to cable length limitations. Multiple controllers? I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy. Their web site lists that it can take *one* hot-swap power supply. Not quite sure of the point of that...
Routing with ospfd
Hi all Is there any way to force ospfd to use routes with a lower-cost metric? ospfctl reload doesn't work, it still sends packets via a route with a higher cost metric than what is possible with another route. Only restarting the ospfd daemon will make it use the proper routes again. Any ideas? Thanks
Re: Serial port (RS232) on USB port
On 2/10/08, Xavier Millihs-Lacroix [EMAIL PROTECTED] wrote: Hello, I want add one or several serial / rs232 connectors on a OpenBSD box (Soekris or standard PC) - without adding a PCI card - just converter. I search compatibles products. When we buy product we don't know the chip. Do you have good experiences ? This is the one I use (ATEN UC-232A): http://www.aten.com/USB-Converter.htm I don't have a dmesg right now though. It works fine for basic things where you only use the txd and rxd lines. From what I've been told, do not rely on the other lines to act properly (if the do anything at all) if you are using a generic USB-Serial converter. I have an converter, here an excerpt dmesg and usbdevs : uftdi0 at uhub0 port 2 uftdi0: FTDI FT232R USB UART, rev 2.00/6.00, addr 3 ucom0 at uftdi0 portno 1 # usbdevs -dv Controller /dev/usb0: addr 1: full speed, self powered, config 1, UHCI root hub(0x), Intel(0x8086), rev 1.00 uhub0 port 1 addr 2: low speed, power 100 mA, config 1, NetScroll(0x0035), Genius(0x0458), rev 1.10 uhidev0 port 2 addr 3: full speed, power 90 mA, config 1, FT232R USB UART(0x6001), FTDI(0x0403), rev 6.00 uftdi0 - I think tJhe FT232R USB UART is the /dev/ttyU0 device. But I can't talk witj it (in or out). # stty -f /dev/ttyU0 ispeed 0 baud; ospeed 9600 baud; lflags: echoe echoke echoctl cflags: cs8 -parenb Any ideas ? On another box I was using tip for receiving caracters. Xavier. I've only ever used minicom on OpenBSD for serial connections (to devices with a serial terminal.) If you want to see if your device is working, it may have an LED on it that blinks when you send a character. You can also do a serial loopback test, like this: http://zone.ni.com/devzone/cda/tut/p/id/3450 Just short the txd and rxd pins, then transmit data from a program like minicom, the data you transmit will be echoed to the screen. -Mark C.
Re: 4.1 Hacked? Some interesting hashes
On Mon, Feb 11, 2008 at 04:34:18AM -0800, Manuel Ravasio wrote: Hey there, Ok, I did understand THAT. What I'm still missing is the relationship (if any) between a couple of hashes and a possible breach in OBSD... Well, if the guy genuinely had an exploit and wanted to keep the mechanism secret, whilst being able to prove that he had it back when he made that post, posting the md5 checksum would be a good way of doing it. Then in the future he could release the same .tar file which contained the working exploit and had the same hash as in the email and people would know he had had a working exploit since back then. What is much more likely, however, is that the poster is an idiot who is trying to spread FUD by that mechanism. -- joe. I'm always fond of Larkin and Eliot, but other modern poets...lost on me.
Re: : : Zombie Network Spam Attack
On Monday 11 February 2008, Raimo Niskanen wrote: 'Mail From: ' One of several that will put you on the http://rfc-ignorant.org/ blacklist. -- Chris
Re: 4.1 Hacked? Some interesting hashes
:-D Ok, I did understand THAT. What I'm still missing is the relationship (if any) between a couple of hashes and a possible breach in OBSD... -- Anyone who cannot cope with mathematics is not fully human. At best he is a tolerable sub-human who has learned to wear shoes, bathe, and not make messes in the house. -Robert Heinlein - Original Message From: Dogbert [EMAIL PROTECTED] To: Manuel Ravasio [EMAIL PROTECTED] Cc: misc@OpenBSD.org Sent: Monday, February 11, 2008 12:37:45 PM Subject: Re: 4.1 Hacked? Some interesting hashes http://www.encyclopediadramatica.com/Trolling Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
Re: 4.1 Hacked? Some interesting hashes
On Feb 11, 2008 9:06 AM, Didi [EMAIL PROTECTED] wrote: SHA1(screwtheo.tar)=ad1bc1f05afa2cc3ccadb18fabb985394c02ce8d MD5(screwtheo.tar)= cee67df76eaa0706e666cd5c0b8b711c OpenSSH exploit for linux SHA1(screwtheo_linux.tar)=cb6816de43df87193050a497a83cd8f7ab721fbd MD5(screwtheo_linux.tar)=8d65c90d40975556b199a3e1028a5a51 Just looks like a hoax to me, look at the file names he/she is checksumming. What does this even have to do with OpenSSH? I would just disregard it. -- Best Regards Edd http://students.dec.bournemouth.ac.uk/ebarrett
Re: : Zombie Network Spam Attack
On Fri, Feb 08, 2008 at 11:20:31AM -0500, Calomel wrote:
Raimo,
Can you use the spamd.alloweddomains to whitelist email addresses and
domains you accept mail for? Any email sent to your mail server that is not
on the list will only goto spamd and never get the chance to be
greylisted/whitelisted. Then you could write a simple script to look
through the spamd logs of BLACK entries.
Well, that was already done. All incoming backscatter was to a valid
domain.
cat /var/log/daemon | grep spamd | grep BLACK | awk '{print $7}' | sort | uniq
The problem seemed to be that spamd overloaded the network connection.
...and add the offending ips to a block table with a cron job running a few
times a day. This page might give you some more ideas:
Spamd tarpit/greylisting anti-spam how to (spamdb)
http://calomel.org/spamd_config.html
I will have a look at it. Thank you for the ideas.
--
Calomel @ http://calomel.org
Open Source Research and Reference
On Fri, Feb 08, 2008 at 11:07:15AM +0100, Raimo Niskanen wrote:
Apparently we (our mail server) got targeted by a zombie network
since suddenly there were some 3 hosts on spamd's whitelist,
continously some 600 connections to spamd, and only mails to
unknown users coming in. The network connection was flooded,
the web server sluggish, downloads creeped, basically
nothing worked.
Can spamd do anything about zombie hosts? They behave like
normal MTAs so they will pass spamd's behavioural tests, right?
Now I analyze the greylist, do some heuristics on the
sender address (among other things) and trap the bad hosts.
The trapped hosts are then copied to a pf table to be blocked
in the firewall. Tarpitting them through spamd is simply
too much work for the mail server, but blocking works fine.
Here come the questions:
* Does anyone know of a good strategy against zombie network
spam attacks?
* To make the greylist heuristics validate recepients and
blacklist hosts that send to invalid recepients would
blacklist valid MTAs that send bounces of mails with
fake sender addresses to me, right? And that would be
too cruel, or? Because it would certainly decrease
the spam amount.
* To make the greylist herustics validate the hosts
by reverse DNS PTR lookup and then forward A lookup
is apparetly a debatable issue according to the
current thread running mail server at home.
But if it is (fairly) common practice it would
be a simple thing to do, and certainly decrease
spam volume. But would it be to narrow?
--
/ Raimo Niskanen, Erlang/OTP, Ericsson AB
--
/ Raimo Niskanen, Erlang/OTP, Ericsson AB
Re: : : Zombie Network Spam Attack
On Fri, Feb 08, 2008 at 11:19:06AM -0500, Dave Anderson wrote: On Fri, 8 Feb 2008, Raimo Niskanen wrote: Now I am trying to improve the Greyscanner. I noticed it did not trap hosts using an empty envelope sender, unless there were more than one entry from that host. I regarded it as a bug and fixed it. I hope an empty envelope sender really is suspicious or disallowed. Read the RFCs rather than guessing. 'Mail From: ' is not merely allowed but is _required_ when a delivery-failure message is sent. You're throwing away most legitimate notifications of errors delivering messages which originated on your server. Slap! Thank you sir for setting me straight! I will aquire that habit (RFC read) and of course change my current scripts! The problem is usually to find the right RFCs (they usually build on each other and there is very often a later one I should have read too, and some that in practice is not used, ...) Dave -- Dave Anderson [EMAIL PROTECTED] -- / Raimo Niskanen, Erlang/OTP, Ericsson AB
Re: 4.1 Hacked? Some interesting hashes
Didi a icrit : Hey What do you guys think of this? From http://www.securityfocus.com/archive/1/487824 : 8--- OpenBSD 4.1 sshd remote root exploit (on the default install!): SHA1(screwtheo.tar)=ad1bc1f05afa2cc3ccadb18fabb985394c02ce8d MD5(screwtheo.tar)= cee67df76eaa0706e666cd5c0b8b711c OpenSSH exploit for linux SHA1(screwtheo_linux.tar)=cb6816de43df87193050a497a83cd8f7ab721fbd MD5(screwtheo_linux.tar)=8d65c90d40975556b199a3e1028a5a51 ---8 A few hashes are created quite quick and the Email does say quite a lot about this person Cheers Dietger Hey, He has only posted a couple hashes that came out of nowhere with no meaning whatsoever. Until I see some code or hear a trustworthy story of a compromised host, this is not what's going to worry me. Gilles
Re: NIC is not recognized.
On Mon, Feb 11, 2008 at 10:40:55AM +0100, Badbanchi Hossein wrote: Hi, I am trying to install OpenBSD 4.2 on a HP Compaq dc7800. After the installation is complete, ifconfig doesn't show any NICs other than lo0 and enc0. The output of dmesg has a line: vendor Intel, unknown product 0x10bd (class network subclass ethernet, rev 0x02) at pci0 dev 25 function 0 not configured Any idea what should I do next? I had the same machine, it is ICH9. There should be some em(4) variant in it which is not supported yet.
NIC is not recognized.
Hi, I am trying to install OpenBSD 4.2 on a HP Compaq dc7800. After the installation is complete, ifconfig doesn't show any NICs other than lo0 and enc0. The output of dmesg has a line: vendor Intel, unknown product 0x10bd (class network subclass ethernet, rev 0x02) at pci0 dev 25 function 0 not configured Any idea what should I do next? Regards, H. Badbanchi _ _ Webasto AG Sitz: Stockdorf Handelsregister: Munchen HRB 80078 Vorsitzender des Aufsichtsrats: Werner Baier Vorstandsmitglieder: Franz-Josef Kortum (Vorsitzender), Dr. Holger Engelmann, Dr.-Ing. Helmut Leube, Phillip A. Thompson _ _ Webasto AG Head Office: Stockdorf Register of Companies: Munchen HRB 80078 Chairman of Supervisory Board: Werner Baier Member of the Board: Franz-Josef Kortum (President), Dr. Holger Engelmann, Dr.-Ing. Helmut Leube, Phillip A. Thompson _ _
Re: Java : Cafe Babe...
On 20:41 Sun 10 Feb , Edd Barrett wrote: Now try on a sparc64 and see what happens. in case he doesn't have one, here the output on sparc64: [EMAIL PROTECTED]:~ $ od -x helloWorld.class |head -n 1 000 cafebabe0031001d0a0006000f09 Regards, Julian -- If you don't remember something, it never existed... If you aren't remembered, you never existed... I don't quite understand what love is like... But if there was someone who liked me, I'd be happy.
Re: ports.openbsd.nu
2008/2/11, Fredrik Carlsson [EMAIL PROTECTED]: Edd Barrett vext01 at gmail.com writes: The owner forgot to renew it and I can't reach him, so the site has moved to http://openports.se Regards Fredrik Carlsson Since it is not renewed is it possble for someone else to take over it? I'll take it and redirect it to the new url if that's the case. -- Please avoid sending me Word or PowerPoint attachments. See http://www.gnu.org/philosophy/no-word-attachments.html 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
Re: [OT] beefy steel cases
I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy.
Re: [OT] beefy steel cases
On Mon, Feb 11, 2008 at 12:37:59PM -0700, Steve B wrote: I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy. I wonder if you could measure two things for me: 1. The thickness of the steel panels (not of any structural frame). I'm comparing these with norco cases which are made of 1.2 mm steel, so a normal metric ruler and an eyeball would suffice. 2. The size of the vent holes. The mid tower chassis page doesn't have alternate views. The 4U rackmount case has a rear photo. The vents look like brickwork: more vent than metal. The dimensions of the holes and the metal between them is critical. If you could give me the three measurements, again to the nearest 0.2 mm. -- vent-hole lenght: -- vent-hole height: -- metal between vent-holes: Thank you. Doug.
Re: upgrade from 4.2-release to -current error
On 2008/02/12 12:47, Chris wrote: I am trying to upgrade from 4.2-release to -current. I am following: http://openbsd.org/faq/faq5.html You missed 5.3.2
Re: sd0: not queuqued error 5
system is still good after I cvsup to -stable. my only concern is during bootup it takes around 1min. on the part that says ipmi0 at mainbus0 but i guess this is minimal as long as it doesn't spit out that sd0 error again. dmesg | grep mainbus0 shows: mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/28/08, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.4 @ 0x7fb9c000 (64 entries) acpi at mainbus0 not configured ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca8/8 spacing 4 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) keeping fingers cross, -beavis
Re: sd0: not queuqued error 5
Update: I've upgraded the BIOS and PERC 5/i (integrated) on my Dell PE 1950. Old BIOS: 1.5.1 New BIOS: 2.1.1 PERC 5/i OLD: 5.1.1-0040 PERC 5/i NEW: 5.2.1-0067 I've extracted a 126M file, before it completely hangs sd0, but as of the moment I was able to complete the extraction. I'll do some more testing and see if this rectify the problem or if it still exists. -beavis --dmesg-- OpenBSD 4.2 (GENERIC) #375: Tue Aug 28 10:38:44 MDT 2007 [EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Intel(R) Xeon(R) CPU 5130 @ 2.00GHz (GenuineIntel 686-class) 2 GHz cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,TM2,CX16,xTPR real mem = 2142142464 (2042MB) avail mem = 2063728640 (1968MB) mainbus0 at root bios0 at mainbus0: AT/286+ BIOS, date 01/28/08, BIOS32 rev. 0 @ 0xffe90, SMBIOS rev. 2.4 @ 0x7fb9c000 (64 entries) bios0: vendor Dell Inc. version 2.1.1 date 01/28/2008 bios0: Dell Inc. PowerEdge 1950 pcibios0 at bios0: rev 2.1 @ 0xf/0x1 pcibios0: PCI IRQ Routing Table rev 1.0 @ 0xfa880/368 (21 entries) pcibios0: PCI Interrupt Router at 000:31:0 (Intel 6321ESB LPC rev 0x00) pcibios0: PCI bus #17 is the last bus bios0: ROM list: 0xc/0x9000! 0xc9000/0x1000 0xca000/0x1e00 0xcc000/0x5400 0xec000/0x4000! acpi at mainbus0 not configured ipmi0 at mainbus0: version 2.0 interface KCS iobase 0xca8/8 spacing 4 cpu0 at mainbus0 pci0 at mainbus0 bus 0: configuration mode 1 (no bios) pchb0 at pci0 dev 0 function 0 Intel 5000X Host rev 0x12 ppb0 at pci0 dev 2 function 0 Intel 5000 PCIE rev 0x12 pci1 at ppb0 bus 6 ppb1 at pci1 dev 0 function 0 Intel 6321ESB PCIE rev 0x01 pci2 at ppb1 bus 7 ppb2 at pci2 dev 0 function 0 Intel 6321ESB PCIE rev 0x01 pci3 at ppb2 bus 8 ppb3 at pci3 dev 0 function 0 ServerWorks PCIE-PCIX rev 0xc3 pci4 at ppb3 bus 9 bnx0 at pci4 dev 0 function 0 Broadcom BCM5708 rev 0x12: irq 11 ppb4 at pci2 dev 1 function 0 Intel 6321ESB PCIE rev 0x01 pci5 at ppb4 bus 10 ppb5 at pci1 dev 0 function 3 Intel 6321ESB PCIE-PCIX rev 0x01 pci6 at ppb5 bus 11 ppb6 at pci0 dev 3 function 0 Intel 5000 PCIE rev 0x12 pci7 at ppb6 bus 1 ppb7 at pci7 dev 0 function 0 Intel IOP333 PCIE-PCIX rev 0x00 pci8 at ppb7 bus 2 mfi0 at pci8 dev 14 function 0 Dell PERC 5 rev 0x00: irq 5 mfi0: logical drives 1, version 5.2.1-0067, 256MB RAM scsibus0 at mfi0: 1 targets sd0 at scsibus0 targ 0 lun 0: DELL, PERC 5/i, 1.03 SCSI3 0/direct fixed sd0: 69376MB, 8844 cyl, 255 head, 63 sec, 512 bytes/sec, 142082048 sec total ppb8 at pci7 dev 0 function 2 Intel IOP333 PCIE-PCIX rev 0x00 pci9 at ppb8 bus 3 ppb9 at pci0 dev 4 function 0 Intel 5000 PCIE rev 0x12 pci10 at ppb9 bus 12 ppb10 at pci10 dev 0 function 0 Intel PCIE-PCIE rev 0x09 pci11 at ppb10 bus 13 ppb11 at pci0 dev 5 function 0 Intel 5000 PCIE rev 0x12 pci12 at ppb11 bus 14 ppb12 at pci0 dev 6 function 0 Intel 5000 PCIE rev 0x12 pci13 at ppb12 bus 15 ppb13 at pci0 dev 7 function 0 Intel 5000 PCIE rev 0x12 pci14 at ppb13 bus 16 pchb1 at pci0 dev 16 function 0 Intel 5000 Error Reporting rev 0x12 pchb2 at pci0 dev 16 function 1 Intel 5000 Error Reporting rev 0x12 pchb3 at pci0 dev 16 function 2 Intel 5000 Error Reporting rev 0x12 pchb4 at pci0 dev 17 function 0 Intel 5000 Reserved rev 0x12 pchb5 at pci0 dev 19 function 0 Intel 5000 Reserved rev 0x12 pchb6 at pci0 dev 21 function 0 Intel 5000 FBD rev 0x12 pchb7 at pci0 dev 22 function 0 Intel 5000 FBD rev 0x12 ppb14 at pci0 dev 28 function 0 Intel 6321ESB PCIE rev 0x09 pci15 at ppb14 bus 4 ppb15 at pci15 dev 0 function 0 ServerWorks PCIE-PCIX rev 0xc3 pci16 at ppb15 bus 5 bnx1 at pci16 dev 0 function 0 Broadcom BCM5708 rev 0x12: irq 11 uhci0 at pci0 dev 29 function 0 Intel 6321ESB USB rev 0x09: irq 11 uhci1 at pci0 dev 29 function 1 Intel 6321ESB USB rev 0x09: irq 10 uhci2 at pci0 dev 29 function 2 Intel 6321ESB USB rev 0x09: irq 11 ehci0 at pci0 dev 29 function 7 Intel 6321ESB USB rev 0x09: irq 11 usb0 at ehci0: USB revision 2.0 uhub0 at usb0: Intel EHCI root hub, rev 2.00/1.00, addr 1 ppb16 at pci0 dev 30 function 0 Intel 82801BA AGP rev 0xd9 pci17 at ppb16 bus 17 vga1 at pci17 dev 13 function 0 ATI ES1000 rev 0x02 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation) wsdisplay0: screen 1-5 added (80x25, vt100 emulation) ichpcib0 at pci0 dev 31 function 0 Intel 6321ESB LPC rev 0x09: PM disabled pciide0 at pci0 dev 31 function 1 Intel 6321ESB IDE rev 0x09: DMA, channel 0 configured to compatibility, channel 1 configured to compatibility atapiscsi0 at pciide0 channel 0 drive 0 scsibus1 at atapiscsi0: 2 targets cd0 at scsibus1 targ 0 lun 0: TEAC, DVD-ROM DV28EV, D.AE SCSI0 5/cdrom removable cd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 2 pciide0: channel 1 ignored (disabled) usb1 at uhci0: USB revision 1.0 uhub1 at usb1: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb2 at uhci1: USB revision 1.0 uhub2 at usb2: Intel UHCI root hub, rev 1.00/1.00, addr 1 usb3 at uhci2: USB revision 1.0 uhub3 at usb3: Intel UHCI
Re: 4.1 Hacked? Some interesting hashes
http://www.encyclopediadramatica.com/Trolling On 2/11/08, Manuel Ravasio [EMAIL PROTECTED] wrote: Please, forgive my ignorance, but I can't understand the meaning of your post. Can you please explain, or point me to some useful link in order to understand the issue? Thanks, Manuel -- Anyone who cannot cope with mathematics is not fully human. At best he is a tolerable sub-human who has learned to wear shoes, bathe, and not make messes in the house. -Robert Heinlein - Original Message From: Didi [EMAIL PROTECTED] To: misc@openbsd.org Cc: Edd Barrett [EMAIL PROTECTED]; William French [EMAIL PROTECTED]; Jan Iven [EMAIL PROTECTED] Sent: Monday, February 11, 2008 10:06:24 AM Subject: 4.1 Hacked? Some interesting hashes Hey What do you guys think of this? From http://www.securityfocus.com/archive/1/487824 : 8--- OpenBSD 4.1 sshd remote root exploit (on the default install!): SHA1(screwtheo.tar)=ad1bc1f05afa2cc3ccadb18fabb985394c02ce8d MD5(screwtheo.tar)= cee67df76eaa0706e666cd5c0b8b711c OpenSSH exploit for linux SHA1(screwtheo_linux.tar)=cb6816de43df87193050a497a83cd8f7ab721fbd MD5(screwtheo_linux.tar)=8d65c90d40975556b199a3e1028a5a51 ---8 A few hashes are created quite quick and the Email does say quite a lot about this person Cheers Dietger Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
Re: 4.1 Hacked? Some interesting hashes
Please, forgive my ignorance, but I can't understand the meaning of your post. Can you please explain, or point me to some useful link in order to understand the issue? Thanks, Manuel -- Anyone who cannot cope with mathematics is not fully human. At best he is a tolerable sub-human who has learned to wear shoes, bathe, and not make messes in the house. -Robert Heinlein - Original Message From: Didi [EMAIL PROTECTED] To: misc@openbsd.org Cc: Edd Barrett [EMAIL PROTECTED]; William French [EMAIL PROTECTED]; Jan Iven [EMAIL PROTECTED] Sent: Monday, February 11, 2008 10:06:24 AM Subject: 4.1 Hacked? Some interesting hashes Hey What do you guys think of this? From http://www.securityfocus.com/archive/1/487824 : 8--- OpenBSD 4.1 sshd remote root exploit (on the default install!): SHA1(screwtheo.tar)=ad1bc1f05afa2cc3ccadb18fabb985394c02ce8d MD5(screwtheo.tar)= cee67df76eaa0706e666cd5c0b8b711c OpenSSH exploit for linux SHA1(screwtheo_linux.tar)=cb6816de43df87193050a497a83cd8f7ab721fbd MD5(screwtheo_linux.tar)=8d65c90d40975556b199a3e1028a5a51 ---8 A few hashes are created quite quick and the Email does say quite a lot about this person Cheers Dietger Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
Re: amd64 - bootloader and BIOS see 16gb ram, kernel does not
On Mon, Feb 11, 2008 at 02:04:20PM -0800, Mike Larkin wrote: 8-way amd64 (Intel quad Xeon x 2) with 16GB ram. The BIOS and bootloader correctly see all 16gb, but the kernel only sees 4.00GB (a very non-random amount, indicating to me an artificial limit is being imposed somewhere). Just for comparison purposes, amd64 Windows and amd64 Linux also both see 16gb, but these are not being considered for deployment. I've tried both 4.2 and -current from a week or so back, and have the same problem on both. I also went through the -GENERIC config and GENERIC-MP config and tried to see if any options in there were applicable, but did not see anything that seemed appropriate to fix this issue. I wonder if the fix for Compaq's with more than 16 MB of ram would be applicable? See the FAQ section 4.12.1. The fix involves a boot prompt command and if it works, a line in /etc/boot.conf Good luck. Doug.
4.1 Hacked? Some interesting hashes
Hey What do you guys think of this? From http://www.securityfocus.com/archive/1/487824 : 8--- OpenBSD 4.1 sshd remote root exploit (on the default install!): SHA1(screwtheo.tar)=ad1bc1f05afa2cc3ccadb18fabb985394c02ce8d MD5(screwtheo.tar)= cee67df76eaa0706e666cd5c0b8b711c OpenSSH exploit for linux SHA1(screwtheo_linux.tar)=cb6816de43df87193050a497a83cd8f7ab721fbd MD5(screwtheo_linux.tar)=8d65c90d40975556b199a3e1028a5a51 ---8 A few hashes are created quite quick and the Email does say quite a lot about this person Cheers Dietger
Re: gotchas for old Proliants
I don't have a nice thing to say about compaq. They were odd, drivers were hard to find, they would deliberately do things to force propriatary solutions: E.g. In the '486 days they would use a different pin-out on their simms. Compaq memory wouldn't work in anything else. Non-compaq memory wouldn't work in it. Guidelines: Whatever you get, get 3-4 of them, so you have parts. Get something that uses a standard power supply. At the school here, broken PS is the commonest failure mode for my PC's. Get something that the company has enough concern that the documents are still online. Get vanilla. Not Rocky Road. -- Sherwood's rules of computing: 1. It will be cheaper next Tuesday. 2. The normal state of a disk is full. 3. A computer can effectively use 1 byte of ram for each Hz of CPU. Half of that will get you 80% of the performance. Twice that will only get you another 10% (4 cores at 2 GHz should take 8 GB ram. But memory is an easy upgrade.) 4. Make the best guess at how long a job will take. Double the number. Use the next bigger unit. A 3 hour job takes 6 days.
Re: Route-based VPN - Fortigate to OpenBSD
On Sun, Feb 10 2008 at 23:03, Chris Jones wrote: Thanks for the advice I will look into that should the gif option not work. Do you have any advice as to how to run gif over ipsec? Sorry I don't have any clue to setup gif tunneling with a Fortinet end point. Between 2 OpenBSD boxes it's quite easy, just do s/GRE/gif/ in my previous sentense ;-) Claer Claer wrote: On Sat, Feb 09 2008 at 00:10, Chris Jones wrote: Hi all, Hi, A while back I attempted to setup a route-based VPN tunnel between a Fortigate firewall and an OpenBSD firewall with no success. I now have the need to get this to work and wondering if someone on the list can shed some light on the configuration. The end goal is to have a gif(4) interface run over IPSec so that I can use a dynamic routing protocol to route traffic to remote VPN networks. I can successfully create an IPSec VPN connection between the Fortigate and OpenBSD 4.2 system. Normally the tunnel interfaces on Fortigates and Netscreens are un-numbered. I have tried bringing up the gif interface after successfully establishing an IPSec connection by issuing the following commands. $ sudo ifconfig gif0 create $ sudo ifconfig gif0 tunnel 1.1.1.1 2.2.2.2 $ sudo ifconfig gif0 10.0.0.3 10.0.0.2 prefixlen 32 $ sudo route add -inet 10.2.0.0/16 10.0.0.2 I then modified the un-numbered tunnel interface on the Fortigate side to use src 10.0.0.2 dst 10.0.0.3. This didn't seem right to begin with as I already have an IPSec tunnel established. Where I'm confused is setting up gif to tunnel over the IPSec connection in order route traffic across it. Can someone point me in the right direction. Routed VPN in Netscreen and Fortinet is done by modifying the way ipsec should work. It's not the way to go if you want to take the vpn decision based on ip routes. I'd firstly try to create a GRE tunnel (numbered) between peers and then create a host to host vpn with GRE tunnel on top of it. Both OpenBSD and Netscreen support GRE, I hope Fortinet does. Claer My setup is quite simple. network --- internal externalexternal internal --- | - Internet - | --- 10.1.1.0/24 1.1.1.1 2.2.2.210.2.0.0/16 ipsec.conf -- remote_gw = 2.2.2.2 ike dynamic esp from 10.1.1.0/24 to 10.2.0.0/16 peer $remote_gw \ aggressive auth hmac-sha1 enc 3des group modp1536 \ quick auth hmac-sha1 enc 3des group modp1536 \ srcid [EMAIL PROTECTED] \ psk secret Thanks, -Chris -- Chris Jones -- Chris Jones GDI Software Services Canada Inc. Suite 1300, 1500 West Georgia St. Vancouver, BC, Canada V6G 2Z6 Email: [EMAIL PROTECTED] Mobile: 604.218.5981 Phone: 604.909.3300 | Fax: 604.909.0100
Re: 4.1 Hacked? Some interesting hashes
Didi [EMAIL PROTECTED] writes: What do you guys think of this? There's not enough data to say much one way or the other, really. Those hashes do not provide sufficient data to recreate the files they were made from, they're only checksums of a kind that's hard to fake. Then again, a general-purpose response might be called for, so as a public service I did the following [EMAIL PROTECTED]:~$ dd if=/dev/arandom count=512000 of=ode_to_trolls.wav 2/dev/null [EMAIL PROTECTED]:~$ oggenc -r ode_to_trolls.wav [EMAIL PROTECTED]:~$ lame -b 192 ode_to_trolls.wav ode_to_trolls.mp3 The result, including the MD5 sums, is available for free distribution to use as appropriate from http://home.nuug.no/~peter/ode_to_trolls/, MD5 (ode_to_trolls.mp3) = 208a5673bb6642b16d7bf05e4581c39b MD5 (ode_to_trolls.ogg) = 7b00779823515c8661a99322059e1673 MD5 (ode_to_trolls.wav) = 797bb20ad338ad5c8807ab50955bb27d file sizes left as an excercise to the reader. And yes, grab then while they're fresh. They may not stay around too long. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ Remember to set the evil bit on all malicious network traffic delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
INVITE TO JOIN IN www.youeme.com
!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.0 Transitional//EN HTMLHEAD META http-equiv=Content-Type content=text/html; charset=windows-1252 META content=MSHTML 6.00.6000.16587 name=GENERATOR/HEAD BODYIMG src=file:///C:/Users/utente/Documents/Email%20List/Mailyoueme.JPG/BODY /HTML
Re: Server room temperature sensors
Hello, There are some kits (with DB9 connector / RS232) that can follow up to 4 sensors for $ 40-45 / 30 . It 's very fast to built it. You get one mesure per second on the /dev/ttyX And after you can use rrdtool to have nive graphs. Regards. Xavier 2008/2/11, Bill [EMAIL PROTECTED]: On Wed, 6 Feb 2008 23:07:01 -0800 Joe [EMAIL PROTECTED] spake: Can anyone recommend a server room temperature sensor that I can use with openbsd? I want to monitor temperature and humidity. I hope to graph the data from the sensor. The sensor can be connected to my openbsd via usb, serial, or even network. I've used AVTECH in a few of my rooms. I think the cheapest is around $240 maybe... bigger models can handle everything from smoke, to noise, etc... Read them via SNMP tied to nagios. Works good, the basic model comes with a temp sensor in the unit and a 25' (I believe) lead to a remote sensor. I also have some NetBotz, and while expensive are pretty cool - airflow, noise, temp, humidity, door sensor, camera, etc... Nice if your not spending out of pocket eh...
Re: 4.1 Hacked? Some interesting hashes
On Feb 11, 2008 1:34 PM, Manuel Ravasio [EMAIL PROTECTED] wrote: What I'm still missing is the relationship (if any) between a couple of hashes and a possible breach in OBSD... Supposedly these are the hashes of tarball containing exploit code/binary for a security hole in OpenSSH shipped with OpenBSD 4.1. If this exploit ever gets published, people can verify the hash. All hypothetically of course. Cheers, Dries
Re: [OT] beefy steel cases
Yes, I too at one time bought a huge case. Has 10 5.25 bays. Only problem is that you can't use all of them due to cable length limitations. With SCSI2, could use up to 4 prior to exceeding 36 inch cable limit. Then could use two more for IDE. But the other 4, never could use. J I have one of these, http://calpc.com/catalog/mid_tower.html, and its quite beefy.
