DLZ support in BIND

[floss]

Hello,

I'm going to recompile openBSDs BIND Version to enable DLZ support.
It's: http://bind-dlz.sourceforge.net/

I know DLZ is built in and in general should be enabled by using
compiler flag --with-dlz-xxx or refering to the changelog by using
--with-dlz-xxx=yes.

Both doesn't work what means I get a checking for DLZ...no output at
configure. In configure and configure.in a config.dlz.in file is
called but I don't know anything about the file or the format. It's
not documented in the net or in local docs. How can I find out more
about the file, are there docs?

Internal the first problem is USE_DLZ is set to an empty value (I got
this from the config.log). Referring to the configure script
config.dlz.in is used to enable USE_DLZ, but how?

I could set USE_DLZ myself to a non empty value but that shouldn't be
the standard way.

# src/usr.sbin/bind/configure
#
# Configure any DLZ drivers.
#
# If config.dlz.in selects one or more DLZ drivers, it will set
# USE_DLZ to a non-empty value, which will be our clue to
# enable the DLZ core functions.
#
# This section has to come after the libtool stuff because it needs to
# know how to name the driver object files.
#

USE_DLZ=
DLZ_DRIVER_INCLUDES=
DLZ_DRIVER_LIBS=
DLZ_DRIVER_SRCS=
DLZ_DRIVER_OBJS=



{ echo $as_me:$LINENO: checking for DLZ 5
echo $ECHO_N checking for DLZ... $ECHO_C 6; }

if test -n $USE_DLZ
then
{ echo $as_me:$LINENO: result: yes 5
echo ${ECHO_T}yes 6; }
USE_DLZ=-DDLZ $USE_DLZ
DLZ_DRIVER_RULES=contrib/dlz/drivers/rules
ac_config_files=$ac_config_files $DLZ_DRIVER_RULES

else
{ echo $as_me:$LINENO: result: no 5
echo ${ECHO_T}no 6; }
DLZ_DRIVER_RULES=/dev/null
fi

#

# src/usr.sbin/bind/configure.in
#
# Configure any DLZ drivers.
#
# If config.dlz.in selects one or more DLZ drivers, it will set
# USE_DLZ to a non-empty value, which will be our clue to
# enable the DLZ core functions.
#
# This section has to come after the libtool stuff because it needs to
# know how to name the driver object files.
#

USE_DLZ=
DLZ_DRIVER_INCLUDES=
DLZ_DRIVER_LIBS=
DLZ_DRIVER_SRCS=
DLZ_DRIVER_OBJS=

sinclude(contrib/dlz/config.dlz.in)

AC_MSG_CHECKING(for DLZ)

if test -n $USE_DLZ
then
AC_MSG_RESULT(yes)
USE_DLZ=-DDLZ $USE_DLZ
DLZ_DRIVER_RULES=contrib/dlz/drivers/rules
AC_CONFIG_FILES([$DLZ_DRIVER_RULES])
else
AC_MSG_RESULT(no)
DLZ_DRIVER_RULES=/dev/null
fi

AC_SUBST(USE_DLZ)
AC_SUBST(DLZ_DRIVER_INCLUDES)
AC_SUBST(DLZ_DRIVER_LIBS)
AC_SUBST(DLZ_DRIVER_SRCS)
AC_SUBST(DLZ_DRIVER_OBJS)
AC_SUBST_FILE(DLZ_DRIVER_RULES)

#

# more config.log | grep -A 1 -B 1  DLZ
configure:29638: result: yes
configure:29724: checking for DLZ
configure:29736: result: no
--
DEFS='-DHAVE_CONFIG_H'
DLZ_DRIVER_INCLUDES=''
DLZ_DRIVER_LIBS=''
DLZ_DRIVER_OBJS=''
DLZ_DRIVER_SRCS=''
DNS_CRYPTO_LIBS=' -lcrypto '
--
STRIP=''
USE_DLZ=''
USE_GSSAPI=''
--
BIND9_MAKE_RULES='/root/bind/bind/make/rules'
DLZ_DRIVER_RULES='/dev/null'
LIBBIND9_API='./lib/bind9/api'

Thanks !

Re: Funny slogans to put on tshirts

[Fernando Apesteguía]

On 10/31/08, Redd Vinylene [EMAIL PROTECTED] wrote:
 Hello guys,

 It's my friend's birthday tomorrow. I was thinking I'd make him a
 tshirt with some funny slogan on it or something. Preferably something
 UNIX related. But I'm all outta ideas. Perhaps y'all can help?
 Alright, much obliged, thanks.

thinkgeek.com has some fun designs.


PS: I'm not related to thinkgeek in any commercial sense :)


 --
 http://www.home.no/reddvinylene
 ___
 [EMAIL PROTECTED] mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Funny slogans to put on tshirts

[Redd Vinylene]

On Fri, Oct 31, 2008 at 10:51 AM, Mel
[EMAIL PROTECTED] wrote:
 On Friday 31 October 2008 10:29:35 you wrote:

 It's my friend's birthday tomorrow. I was thinking I'd make him a
 tshirt with some funny slogan on it or something. Preferably something
 UNIX related. But I'm all outta ideas. Perhaps y'all can help?
 Alright, much obliged, thanks.

 http://shop.cafepress.com/design/6684711

 --
 Mel

Hahaha

-- 
http://www.home.no/reddvinylene

Re: Stupid question time.

[Paul de Weerd]

On Fri, Oct 31, 2008 at 03:46:26AM -0600, Anathae Townsend wrote:
| As I have a number of local boxes (NAS development box, File server box,
| firewall) and would like to follow either -stable or -current on any or all
| of them, I have used CVSync to grab a copy of the OpenBSD CVS tree.
| 
| Here's my problem. I don't know how to add the user 'anoncvs' to allow no
| password access to the cvs on the server 'rowena' from the client 'jenny'.
| I figured out that there is no 'cvs server' program, just ssh or (heaven and
| the divine bit forbid) rsh.
| 
| Any help would be greatly appreciated.

Googling for 'setting up an anoncvs server' or 'anoncvs openbsd' is
what you should've done. Both searches yield a perfectly matching
first hit. Read that document top to bottom and you can help yourself.

Paul 'WEiRD' de Weerd

-- 
[++-]+++.+++[---].+++[+
+++-].++[-]+.--.[-]
 http://www.weirdnet.nl/ 

Re: halt -p does not power off ThinkPad X61 under 4.4

[Alexander Hall]

+1

Power off works occasionally (like every 5 shutdowns). Has been so since 
I got it (about a year ago?). Running snapshots.


/Alexander

David Schulz wrote:

Hello all,

i installed OpenBSD 4.4 on my ThinkPad X61, played a little bit, and 
used halt -p to shutdown the machine and walked away. The next morning i 
found that while it appears to have shutdown correctly, the machine did 
not power off but instead showed


syncing disks...done
uchi2: host controller halted

and would just sit there until i manually held the power button. This 
looks like apci or apm issue to me, is there anything i can do to fix 
it, or can i do anything to help someone fix it?


I used (of course) OpenBSD 4.3 on this Machine before, and halt -p 
worked fine to shutdown  power off the Machine.


Please find my dmesg.txt attached

best regards,
David
OpenBSD 4.4 (GENERIC) #1021: Tue Aug 12 17:16:55 MDT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Core(TM)2 Duo CPU T7100 @ 1.80GHz (GenuineIntel 686-class) 
1.80 GHz
cpu0: 
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,EST,TM2,CX16,xTPR
real mem  = 3211022336 (3062MB)
avail mem = 3111067648 (2966MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 11/15/07, BIOS32 rev. 0 @ 0xfdc80, SMBIOS 
rev. 2.4 @ 0xe0010 (63 entries)
bios0: vendor LENOVO version 7NET30WW (1.11 ) date 11/15/2007
bios0: LENOVO 767529C
acpi0 at bios0: rev 2
acpi0: tables DSDT FACP SSDT ECDT TCPA APIC MCFG HPET SLIC BOOT ASF! SSDT SSDT 
SSDT SSDT
acpi0: wakeup devices LID_(S3) SLPB(S3) DURT(S3) IGBE(S4) EXP0(S4) EXP1(S4) 
EXP2(S4) EXP3(S4) EXP4(S4) PCI1(S4) USB0(S3) USB1(S3) USB2(S3) USB3(S3) 
USB4(S3) EHC0(S3) EHC1(S3) HDEF(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus -1 (AGP_)
acpiprt2 at acpi0: bus 2 (EXP0)
acpiprt3 at acpi0: bus 3 (EXP1)
acpiprt4 at acpi0: bus -1 (EXP2)
acpiprt5 at acpi0: bus -1 (EXP3)
acpiprt6 at acpi0: bus -1 (EXP4)
acpiprt7 at acpi0: bus 5 (PCI1)
acpiec0 at acpi0
acpicpu0 at acpi0: C3, C2
acpitz0 at acpi0: critical temperature 127 degC
acpitz1 at acpi0: critical temperature 100 degC
acpibtn0 at acpi0: LID_
acpibtn1 at acpi0: SLPB
acpibat0 at acpi0: BAT0 model 42T4505 serial   693 type LION oem SANYO
acpibat1 at acpi0: BAT1 not present
acpibat2 at acpi0: BAT2 not present
acpiac0 at acpi0: AC unit online
acpithinkpad0 at acpi0
acpidock at acpi0 not configured
acpivideo at acpi0 not configured
acpivideo at acpi0 not configured
bios0: ROM list: 0xc/0x1! 0xd/0x1000 0xd1000/0x1000 0xe/0x1!
cpu0 at mainbus0
cpu0: unknown Enhanced SpeedStep CPU, msr 0x06170a2d06000a2d
cpu0: using only highest and lowest power states
cpu0: Enhanced SpeedStep 2000 MHz (1420 mV): speeds: 2000, 1200 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (no bios)
pchb0 at pci0 dev 0 function 0 Intel GM965 Host rev 0x0c
vga1 at pci0 dev 2 function 0 Intel GM965 Video rev 0x0c
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
agp0 at vga1: aperture at 0xe000, size 0x1000
drm at vga1 unsupported
Intel GM965 Video rev 0x0c at pci0 dev 2 function 1 not configured
em0 at pci0 dev 25 function 0 Intel ICH8 IGP M AMT rev 0x03: irq 11, address 
00:1d:72:84:8b:9d
uhci0 at pci0 dev 26 function 0 Intel 82801H USB rev 0x03: irq 11
uhci1 at pci0 dev 26 function 1 Intel 82801H USB rev 0x03: irq 11
ehci0 at pci0 dev 26 function 7 Intel 82801H USB rev 0x03: irq 11
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
azalia0 at pci0 dev 27 function 0 Intel 82801H HD Audio rev 0x03: irq 11
azalia0: RIRB time out
azalia0: RIRB time out
azalia0: codec[s]: Analog Devices AD1984, Conexant/0x2bfa, using Analog Devices 
AD1984
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 Intel 82801H PCIE rev 0x03: irq 11
pci1 at ppb0 bus 2
ppb1 at pci0 dev 28 function 1 Intel 82801H PCIE rev 0x03: irq 11
pci2 at ppb1 bus 3
wpi0 at pci2 dev 0 function 0 Intel PRO/Wireless 3945ABG rev 0x02: irq 11, 
RoW, address 00:1c:bf:0f:f7:0c
uhci2 at pci0 dev 29 function 0 Intel 82801H USB rev 0x03: irq 10
uhci3 at pci0 dev 29 function 1 Intel 82801H USB rev 0x03: irq 11
ehci1 at pci0 dev 29 function 7 Intel 82801H USB rev 0x03: irq 11
usb1 at ehci1: USB revision 2.0
uhub1 at usb1 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb2 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0xf3
pci3 at ppb2 bus 5
cbb0 at pci3 dev 0 function 0 Ricoh 5C476 CardBus rev 0xba: irq 10
Ricoh 5C832 Firewire rev 0x04 at pci3 dev 0 function 1 not configured
sdhc0 at pci3 dev 0 function 2 Ricoh 5C822 SD/MMC rev 0x21: irq 11
sdmmc0 at sdhc0
cardslot0 at cbb0 slot 0 flags 0
cardbus0 at cardslot0: bus 6 device 0 cacheline 0x0, lattimer 0xb0
pcmcia0 at cardslot0
pcib0 at pci0 dev 31 function 0 Intel 82801HEM LPC rev 0x03
pciide0 at pci0 dev 31 function 

Re: Laptop keyboard pictures

[Aram HAVARNEANU]

I am interested in the same thing as Ted, so please CC me. A few words
about how the keyboard feels would be awsome. Thanks.

Re: Funny slogans to put on tshirts

[Guido van Driel]

Op vrijdag 31-10-2008 om 11:03 uur [tijdzone +0100], schreef Redd
Vinylene:
 On Fri, Oct 31, 2008 at 10:51 AM, Mel
 [EMAIL PROTECTED] wrote:
  On Friday 31 October 2008 10:29:35 you wrote:
 
  It's my friend's birthday tomorrow. I was thinking I'd make him a
  tshirt with some funny slogan on it or something. Preferably something
  UNIX related. But I'm all outta ideas. Perhaps y'all can help?
  Alright, much obliged, thanks.
 
  http://shop.cafepress.com/design/6684711

Nice :-)

XKCD has a good one too:
make me a sandwich - What?? Do it yourself! 
sudo make me a sandwich - Okay



-- guido

Re: PCI-Express Crypto Hardware

[Guido Tschakert]

Sylvain MAURIN schrieb:
 Hello,
 
 I am looking to upgrade our lab's ssh gateway[1] but I
 haven't been able to find one hardware crypto accelerator
 with PCIe bus.
 
What about SUN?

At Sun you can find a X6000A for 1150

But I really do not know if the card will work with OpenBSD.

guido

BTW: You have a lot of traffic through your ssh-Gateway, don't you?


 Alas, my new serverboard[2] does not provide PCI nor
 PCI-X slots.
 
 Do you have any tips about an openbsd compatible product ?
 
 I have a budget of about 1K EUR to purchase some crypto
 hardware next week and I think my lab could support[3]
 your project.
 
 Thanks for any help,
 Sylvain MAURIN
 
 1. Soekris 1401 on SunBlade 150
http://www.isc.cnrs.fr/informatique/public_notice/OpenBSD-sshchrooted
 2. Sun T1000, sparc64 arch.
 3. Aka hosting and opening an access to some BSD developers
agreeing our security charts, time to polish any drivers
before I put T1000 server in exploitation setup, probably
around mid-2009 and keeping running the old SunBlade for
your project until she die.
 
 [demime 1.01d removed an attachment of type application/x-pkcs7-signature 
 which had a name of smime.p7s]
 
 


-- 

Mit freundlichen Gr|_en,

  Guido Tschakert

_

SRC Security Research  Consulting GmbH
Graurheindorfer Str. 149 a  Tel: +49-228-2806-138
53117 Bonn  Fax: +49-228-2806-199
http://www.src-gmbh.de  Mob: +49-160-3671422
Handelsregister Bonn: HRB 9414  Geschdftsf|hrer: Gerd Cimiotti

Funny slogans to put on tshirts

[Redd Vinylene]

Hello guys,

It's my friend's birthday tomorrow. I was thinking I'd make him a
tshirt with some funny slogan on it or something. Preferably something
UNIX related. But I'm all outta ideas. Perhaps y'all can help?
Alright, much obliged, thanks.

-- 
http://www.home.no/reddvinylene

Re: halt -p does not power off ThinkPad X61 under 4.4

[Matthew Szudzik]

 i installed OpenBSD 4.4 on my ThinkPad X61, played a little bit, and 
 used halt -p to shutdown the machine and walked away. The next morning i 
 found that while it appears to have shutdown correctly, the machine did 
 not power off but instead showed
 
 syncing disks...done
 uchi2: host controller halted
 
 and would just sit there until i manually held the power button. This 

Over the last 6 months I have experienced the same problem 2 or 3 times
with my ThinkPad T60 running OpenBSD 4.3.

Re: Funny slogans to put on tshirts

[Douglas A. Tutty]

On Fri, Oct 31, 2008 at 10:29:35AM +0100, Redd Vinylene wrote:
 It's my friend's birthday tomorrow. I was thinking I'd make him a
 tshirt with some funny slogan on it or something. Preferably something
 UNIX related. But I'm all outta ideas. Perhaps y'all can help?
 Alright, much obliged, thanks.

If your friend eats a lot:

dd if=/dev/fridge of=/dev/gut bs=1spoon conv=chime;sync
dump /dev/gut
sync


Is _your_ BSD Open?

:)

Doug.

Interactions between PF and enc0

[Felipe Alfaro Solana]

Hi misc,

I'm experiencing interaction problems between PF and the enc0
interface. I've been reading several OpenBSD manual pages about how
IPSec traffic filtering is supposed to work, but so far I'm unable to
get IPSec filtering working for me.

I have created an IPSec/IPv6-based VPN between two sites, one in
Madrid and another in ZCrich. Each side of the tunnel connects to the
IPv6 internet using AICCU via a SixXS POP. This means that each VPN
end-point has a tun0 interface where all IPv6 traffic is received and
sent (I'm using dynamic AYITA tunnels). The funny thing is that the
enc0 interface on both end points sees the IPv6 traffic before and
after IPSec encryption and encapsulation but PF seems to disagree and
any filtering done on enc0 is completely ignored.

To test my assumption, I created this very simple PF configuration
file, with just two rules:

pass in on enc0 no state
pass out on enc0 no state

The first thing I did not understand is that I have to use two
different rules for in/out. Otherwise, pftop will display I in the
direction column for this state, which leads me to think PF is only
allowing inbound traffic. But I might be wrong.

Next, from the C host, I run:

# ping6 -c1 D::1

in order to send some traffic across the VPN. At the same time, I run
tcpdump on enc0 and this what I see:

# tcpdump -n -i enc0 -s 1800 -v
14:15:19.769555 (authentic,confidential): SPI 0x27151066: A::2  B::2:
C::1  D::1: icmp6: echo request (len 16, hlim 63) (len 56, hlim 64) #
Tunneled ICMPv6 Echo request from C::1 to D::1 (from A::2 to B::2).

14:15:19.769682 (authentic,confidential): SPI 0xef18f14a: esp A::2 
B::2 spi 0x27151066 seq 30 len 100 (len 100, hlim 64) # ESP -
encapsulated ICMPv6 Echo Request from C::1 to D::1.

14:15:19.913539 (authentic,confidential): SPI 0xcefeac0c:
truncated-ip6 - 48 bytes missing!esp B::2  A::2 spi 0xF2FC992F seq 30
len 148 (len 148, hlim 63) # ESP - encapsulated ICMPv6 Echo Reply from
D::1 to C::1.

14:15:19.913620 (authentic,confidential): SPI 0xf2fc992f:
truncated-ip6 - 92 bytes missing!B::2  A: D::1  C::1: icmp6: echo
reply (len 16, hlim 63) (len 148, hlim 63) # Tunneled ICMPv6 Echo
Reply from D::1 to C::1 (from B::2 to A::2).

The second thing that strikes me is the XX bytes missing that
tcpdump is reporting. Is this normal? Take into account that the
snaplen that I used when running tcpdump is larger than the MTU of
enc0. Everything else looks fine to me.

The third thing that confuses me complete is that pftop does not
display any hits on both PF rules. So does pfctl:

# pfctl -s rules -v
pass in on enc0 all no state
 [ Evaluations: 141   Packets: 0 Bytes: 0   States: 0 ]
 [ Inserted: uid 0 pid 26751 ]
pass out on enc0 all no state
 [ Evaluations: 0 Packets: 0 Bytes: 0   States: 0 ]
 [ Inserted: uid 0 pid 26751 ]

Do you have any idea what's going on?
Thanks in advance.

--
http://www.felipe-alfaro.org/blog/disclaimer/

Re: Using OpenBGPD as a route-server

[Hans Vosbergen]

Hi Claudio,

Thanks, this has been helpfull. However i really need that bit of control
from the peer's configuration end.

You wouldn't happen to know how i can achieve the following?:

A peer sends the following communities to the RS: 1234:1234 1234:7547
1234:8392

I want the route-server to send the routes received in the communities (yes
they all contain the same routes) to every peer on the RS, except for those
with AS 7547 and 8392.

Was also wondering why you have that prepend rule in #5 while transparent-as
is configured?

Regards,
Hans

On Wed, Oct 29, 2008 at 12:08 PM, Claudio Jeker [EMAIL PROTECTED]wrote:

  On Tue, Oct 28, 2008 at 04:24:02PM +0100, Hans Vosbergen wrote:
  Hi Misc,
 
  I am trying to make OpenBGPD work as a route-server for a little hobby
  project I am working on.
 
  As it's very hard to find configuration examples for this usage on the
 web i
  have to turn here.
 
  What I am trying to achieve:
  - A route-server acting as a transparent route distributor.
  - Control by neighbours who their prefixes are announced to, based on
  communities.
 
  Making OpenBGP work as a transparent AS was the easy part. However I'm
 stuck
  in the communities control part.
 
  How it is supposed to work, my route-server has AS1234 in my test
  environment.
 
  If a neighbour announces:
  1. { community 1234:1234 } -- Their prefixes will be announced to EVERY
  other neighbour.
  2. { community 1234:as} -- Their prefixes will ONLY be announced to
 AS,
  ie: 1234:8943 will only send the prefixes to AS8943.
  3. { community 1234:1234 1234:AS } -- Their prefixes will be announced
 to
  every other neighbour EXCEPT AS.
 
  I have been able to achieve the first 2 ways the prefix control should
 work,
  but I can't manage to get the 3rd to work. Before moving to OpenBGPD I
  managed to produce the way I want it to work in Quagga but I simply do
 not
  want to use that.
 
  Would anyone have an idea on how to make OpenBGPD not announce prefixes
 to
  specific neighbours if they appear in the 1234:1234 1234:AS list?
 

 The route server I set up uses more or less this config:

 # global configuration
 AS $ASNUM
 router-id $IP
 transparent-as yes

 network $LAN

 group RS {
announce all
max-prefix 5000 restart 15
set nexthop no-modify
 #   softreconfig in no

neighbor $LAN {
descr RS peer
passive
}
 }

 # filter out prefixes longer than 24 or shorter than 8 bits
 deny from any prefixlen 8  24

 # do not accept a default route, multicast and experimental networks
 deny from any prefix 0.0.0.0/0
 deny from any prefix 10.0.0.0/8 prefixlen = 8
 deny from any prefix 127.0.0.0/8 prefixlen = 8
 deny from any prefix 169.254.0.0/16 prefixlen = 16
 deny from any prefix 172.16.0.0/12 prefixlen = 12
 deny from any prefix 192.0.2.0/24 prefixlen = 24
 deny from any prefix 192.168.0.0/16 prefixlen = 16
 deny from any prefix 224.0.0.0/4 prefixlen = 4
 deny from any prefix 224.0.0.0/4 prefixlen = 4
 deny from any prefix 240.0.0.0/4 prefixlen = 4

 # we set's these communities to identify from where
 # it learned a route:
 match from any set community $ASNUM:neighbor-as

 # 1. Prepend RS $ASNUM to *all* RS-Peers
 match from group RS community $ASNUM:65500 set prepend-self 1

 # 2. Prepend RS $ASNUM to *selected* RS-Peer N-times
 # (N can be 1 to 3)
 match to group RS community 65501:neighbor-as set prepend-self 1
 match to group RS community 65502:neighbor-as set prepend-self 2
 match to group RS community 65503:neighbor-as set prepend-self 3

 # 3. Do *not* announce to RS-Peers with AS 
 deny to group RS community $ASNUM:neighbor-as

 # 4. Do *not* announce to *ANY* RS-Peers
 deny to group RS community $ASNUM:65535

 # 5. Prepend own announcement by one
 match to group RS prefix $LAN set prepend-self 1

 Works like a champ without any additional per peer config :)
 --
 :wq Claudio

Re: Using OpenBGPD as a route-server

[Claudio Jeker]

On Fri, Oct 31, 2008 at 03:15:21PM +0100, Hans Vosbergen wrote:
 Hi Claudio,
 
 Thanks, this has been helpfull. However i really need that bit of control
 from the peer's configuration end.
 
 You wouldn't happen to know how i can achieve the following?:
 
 A peer sends the following communities to the RS: 1234:1234 1234:7547
 1234:8392
 
 I want the route-server to send the routes received in the communities (yes
 they all contain the same routes) to every peer on the RS, except for those
 with AS 7547 and 8392.
 

deny to group RS community 1234:neighbor-as will result in a lookup of
1234:AS-of-neighbor-the-prefix-would-be-sent-to and so should do the
trick. It is (currently) not possible to match 2 communities at once.


 Was also wondering why you have that prepend rule in #5 while transparent-as
 is configured?
 

When transparent-as is set, networks that are localy originated are NOT
prepended with the own AS so the remote site would receive an empty ASPATH
attribute which is not expected on ebgp links.

-- 
:wq Claudio

OpenBSD 4.4 released, Nov 1. Enjoy!

[Theo de Raadt]

Nov 1, 2008.

We are pleased to announce the official release of OpenBSD 4.4.
This is our 24th release on CD-ROM (and 25th via FTP).  We remain
proud of OpenBSD's record of more than ten years with only two remote
holes in the default install.

As in our previous releases, 4.4 provides significant improvements,
including new features, in nearly all areas of the system:

- New/extended platforms:
o OpenBSD/sparc64.
  Fujitsu's SPARC64-V, SPARC64-VI and SPARC64-VII processors are supported
  now, which means that many of the PRIMEPOWER machines and the SPARC
  Enterprise M4000/M5000/M8000/M9000 work now.
  Sun's UltraSPARC VI processors are supported now.  Many of Sun's
  mid-range and high-end servers with these processors or UltraSPARC III
  and UltraSPARC III+ processors work now.
  Sun's UltraSPARC T1 and UltraSPARC T2 processors are supported now,
  which means the sun4v architecture is now supported and machines like
  the SPARC Enterprise T1000 and SPARC Enterprise T5220 work now.
o OpenBSD/socppc.
  For machines based on the Freescale MPC8349E 
  System-on-Chip (SoC) platform that use Das U-Boot as a boot loader. 
o OpenBSD/landisk: added shared libraries support. 

- Improved hardware support, including:
o Several new/improved drivers for sensors: fins(4), andl(4), it(4),
  kate(4), sdtemp(4), lmtemp(4), adt(4), km(4).
o Support for Intel G33 and G35 chipsets in agp(4).
o New lii(4) driver for Attansic L2 10/100 Ethernet devices.
o Preliminary support for UVC USB webcams: uvideo(4) and video(4).
o WPA/WPA2-PSK support for several models of wireless cards. 
o Openchrome(4) and geode(4) video card drivers for X.Org.
o New vmt(4) driver, implements VMware Tools.
o New auglx(4) driver for AMD Geode LX CS5536 integrated AC'97 audio.
o New ix(4) driver for Intel 82598 PCI Express 10Gb Ethernet.
o New acpithinkpad(4) driver provides additional ACPI support for
  IBM/Lenovo ThinkPad laptops.
o New acpiasus(4) driver provides additional ACPI support for ASUS
  laptops including the EeePC.
o New gecko(4) driver supporting the GeckoBOA BC GSC+ port found on
  some hppa systems.
o New tsec(4) driver supporting the Freescale Triple Speed Ethernet
  Controller..
o The re(4) driver now supports RTL8102E and RTL8168 devices.
o The cas(4) driver now supports National Semiconductor Saturn devices.
o The pccom(4) driver has been removed; all platforms use com(4) now.
o cardbus(4) and pcmcia(4) now work on most sparc64 machines.
o The udcf(4) driver now supports mouseCLOCK USB II devices.
o The msk(4) driver now supports 88E8040T devices.
o The ath(4) now now supports many more Atheros wireless devices.
o The ciss(4) driver now supports HP Smart Array P212, P410, P411, P411i
  and P812 devices.
o The uftdi(4) driver now supports ELV Elektronik and FTDI 2232L devices.
o The umsm(4) driver now supports Option GlobeTrotter 3G+, Huawei E220
  and more HSDPA MSM devices.
o The ubsa(4) driver now supports ZTE CMDMA MSM devices.
o The axe(4) driver now supports Apple USB A1277 devices.
o The puc(4) driver now supports more Netmos devices.
o The mgx(4) driver now supports 2D acceleration on selected boards.
o The isp(4) driver firmware for some controllers has been updated.
o The isp(4) driver no longer hangs during probe on some machines.
o The bge(4) driver has better support for BCM5704 chipsets in fiber
  mode which helps with some blade servers.
o The bge(4) driver has better support for the BCM5906 chipset on
  some systems.
o The bge(4) driver has much better support for PCI Express chipsets
  resulting in much faster transmit performance.
o The bge(4) driver has support for the BCM5714/5715/5780 chipsets
  using fiber interfaces.
o The bnx(4) driver has support for the BCM5706/5708 chipsets using
  fiber interfaces.
o The ral(4) driver now supports Ralink Technology RT2700 devices.
o Serial ports other than com0 can now be used for console on amd64.
o The serial console on i386 and amd64 has improved compatibility
  with server management cards.

- New tools:
o rpc.statd(8), the host status monitoring daemon for use with the NFS
  file locking daemon.
o Initial import of ypldap(8), a drop-in replacement for ypserv
  to glue in an LDAP directory for get{pw,gr}ent family of functions. 
o Deprecated slattach(8) and nmeaattach(8) in favor of ldattach(8). 
o Import of tcpbench(1), a small TCP benchmarking tool.

- New functionality:
o aucat(1) is now able to play and record audio in fullduplex, it
  can mix unlimited number of streams, handles up to 16 channels, can
  resample streams on the fly, supports various 24-bit and 32-bit
  encodings and does format 

Find Biology in Your Data . . .

[Systat Software Life Sciences]

Dear
Researcher,

Systat
Software Inc is pleased to introduce Gene Regulation Analysis
products through its partnership
with Genomatix Inc.,

 For the
analysis of microarray data in your project, choosing the right
combination
of tools to make meaningful discoveries is a crucial decision
that could be
the difference between weeks of chasing red herrings and
getting reliable
results in a matter of days.

Benefits:


  Identify differentially regulated genes


  Create meaningful gene networks


  Get in-depth information on regulatory sequences


  Gain comprehensive knowledge about the
structure of
your genes of interest


  Expert curated data


 
  The Genomatix Product Line

To find out which product can best suit your research needs, a list of
Genomatix Products, along with a brief description, can be seen below:

RegionMiner: Analyze
  Genomic regions; more
BiblioSphere: Genome
  specific data-mining solution; more
LitInspector: Literature
  and pathway analysis; more
GEMSLauncher: Integrated
  sequence analysis tools; more
MatInspector: Search
  transcription factor binding; more
MatBase: Transcription
  factor knowledge base; more
ChipInspector: Microarray
  Analysis; more
ElDorado: Genomatix genome annotation; more
Gene2Promoter/GPD: Retrieve  analyze; more


Free Trial:

Go to http://www.genomatix-software.com and open a free trial account.

Your
trial account will be valid for 7 days.
After
this time, you can keep the account
active for another seven days
by simply
filling out a questionnaire.

Additionally, MatInspector will continue to accept 10 queries under your
account and LitInspector will continue to provide unlimited free access.

Please
  feel free to contact me if you have any questions.

Sincerely,

Bhawna Aggarwal

  Account Manager Life Sciences

  Systat Software, Inc.

  Phone: (408) 876-4509

  Fax: (408) 452-9016

  [EMAIL PROTECTED]


Systat Software, Inc 1735 Technology Dr. Suite 430 San Jose, CA 95110

Unsubscribe -
 Our
Web  Email policy - Please visit our Website.

openbsd-current strange keyboard behaviour

[guilherme m. schroeder]

Hi misc@,

I've installed OpenBSD 4.4-current from October 28 and i'm having a
strange problem.
When i start type something on console, sometimes it stops showing the
characters (and you are still typing) them it repeats the last char
you type about 5-10 times. This problem is occuring in X too. I tried
to reproduce it but no sucess, it occurs from time to time. I've used
OpenBSD 4.4-current from about two weeks ago and it was working fine.

Anyone had this problem?

OpenBSD 4.4-current (GENERIC.MP) #1946: Tue Oct 28 13:41:29 MDT 2008
[EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 3694628864 (3523MB)
avail mem = 3585646592 (3419MB)
mainbus0 at root
bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xf6590 (57 entries)
bios0: vendor Dell Inc. version A06 date 10/10/2008
bios0: Dell Inc. Latitude E6400
acpi0 at bios0: rev 2
acpi0: tables DSDT FACP HPET DMAR APIC ASF! MCFG SLIC TCPA SSDT
acpi0: wakeup devices PCI0(S4) PCIE(S4) USB1(S0) USB2(S0) USB3(S0)
USB4(S0) USB5(S0) USB6(S0) EHC2(S0) EHCI(S0) AZAL(S3) RP01(S4)
RP02(S4) RP03(S4) RP04(S3) RP05(S3) RP06(S5) LID_(S3) PBTN(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpihpet0 at acpi0: 14318179 Hz
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz, 2261.33 MHz
cpu0: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR,NXE,LONG
cpu0: 3MB 64b/line 8-way L2 cache
cpu0: apic clock running at 265MHz
cpu1 at mainbus0: apid 1 (application processor)
cpu1: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz, 2261.00 MHz
cpu1: 
FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR,NXE,LONG
cpu1: 3MB 64b/line 8-way L2 cache
ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins
ioapic0: misconfigured as apic 0, remapped to apid 2
acpiprt0 at acpi0: bus 3 (PCIE)
acpiprt1 at acpi0: bus -1 (AGP_)
acpiprt2 at acpi0: bus 11 (RP01)
acpiprt3 at acpi0: bus 12 (RP02)
acpiprt4 at acpi0: bus 13 (RP03)
acpiprt5 at acpi0: bus 14 (RP04)
acpiprt6 at acpi0: bus -1 (RP05)
acpiprt7 at acpi0: bus -1 (RP06)
acpiprt8 at acpi0: bus 0 (PCI0)
acpiec0 at acpi0
acpicpu0 at acpi0: C3
acpicpu1 at acpi0: C3
acpitz0 at acpi0: critical temperature 107 degC
acpibtn0 at acpi0: LID_
acpibtn1 at acpi0: PBTN
acpibtn2 at acpi0: SBTN
acpiac0 at acpi0: AC unit offline
acpibat0 at acpi0: BAT0 model DELL FU27488 serial 30161 type LION oem Sony
acpibat1 at acpi0: BAT1 not present
acpivideo at acpi0 not configured
acpivideo at acpi0 not configured
acpivideo at acpi0 not configured
cpu0: unknown i686 model 7, can't get bus clockcpu0: EST: unknown
system bus clock
pci0 at mainbus0 bus 0: configuration mode 1
pchb0 at pci0 dev 0 function 0 Intel GM45 Host rev 0x07
vga1 at pci0 dev 2 function 0 Intel GM45 Video rev 0x07
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
inteldrm0 at vga1:couldn't find agp
Intel GM45 Video rev 0x07 at pci0 dev 2 function 1 not configured
Intel ICH9 IGP M AMT rev 0x03 at pci0 dev 25 function 0 not configured
uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x03: apic 2
int 20 (irq 7)
uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x03: apic 2
int 21 (irq 4)
uhci2 at pci0 dev 26 function 2 Intel 82801I USB rev 0x03: apic 2
int 22 (irq 10)
ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x03: apic 2
int 22 (irq 10)
usb0 at ehci0: USB revision 2.0
uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
azalia0 at pci0 dev 27 function 0 Intel 82801I HD Audio rev 0x03:
apic 2 int 21 (irq 4)
azalia0: ../../../../dev/pci/azalia.c/1374 invalid PCM format: 0x
azalia0: codec[s]: IDT/0x76b2, Intel/0x2802, using IDT/0x76b2
audio0 at azalia0
ppb0 at pci0 dev 28 function 0 Intel 82801I PCIE rev 0x03: apic 2
int 16 (irq 0)
pci1 at ppb0 bus 11
ppb1 at pci0 dev 28 function 1 Intel 82801I PCIE rev 0x03: apic 2
int 17 (irq 0)
pci2 at ppb1 bus 12
iwn0 at pci2 dev 0 function 0 Intel WiFi Link 5300AGN rev 0x00: apic
2 int 17 (irq 3), MIMO 3T3R, MoW, address 00:16:ea:5e:dc:32
ppb2 at pci0 dev 28 function 2 Intel 82801I PCIE rev 0x03: apic 2
int 18 (irq 0)
pci3 at ppb2 bus 13
ppb3 at pci0 dev 28 function 3 Intel 82801I PCIE rev 0x03: apic 2
int 19 (irq 0)
pci4 at ppb3 bus 14
uhci3 at pci0 dev 29 function 0 Intel 82801I USB rev 0x03: apic 2
int 20 (irq 7)
uhci4 at pci0 dev 29 function 1 Intel 82801I USB rev 0x03: apic 2
int 21 (irq 4)
uhci5 at pci0 dev 29 function 2 Intel 82801I USB rev 0x03: apic 2
int 22 (irq 10)
ehci1 at pci0 dev 29 function 7 Intel 82801I USB rev 0x03: apic 2
int 20 (irq 7)
usb1 at ehci1: USB revision 2.0
uhub1 at usb1 Intel EHCI root hub rev 2.00/1.00 addr 1
ppb4 at pci0 dev 30 function 0 Intel 82801BAM Hub-to-PCI rev 0x93
pci5 at ppb4 bus 3
Ricoh 5C832 Firewire rev 0x04 at pci5 dev 1 

Re: openbsd-current strange keyboard behaviour

[Johan Beisser]

Interesting. I had this problem on an IBM 600x, but due to the age of
the hardware assumed it was some quirkiness with its ACPI/apm
implementation.

In the end, I had to use a Windows install to manage the IRQs to stop
a conflict between sone subsystems. It helped make the keyboard freeze
less often, but never fully eliminated it.


On 10/31/08, guilherme m. schroeder [EMAIL PROTECTED] wrote:
 Hi misc@,

 I've installed OpenBSD 4.4-current from October 28 and i'm having a
 strange problem.
 When i start type something on console, sometimes it stops showing the
 characters (and you are still typing) them it repeats the last char
 you type about 5-10 times. This problem is occuring in X too. I tried
 to reproduce it but no sucess, it occurs from time to time. I've used
 OpenBSD 4.4-current from about two weeks ago and it was working fine.

 Anyone had this problem?

 OpenBSD 4.4-current (GENERIC.MP) #1946: Tue Oct 28 13:41:29 MDT 2008
 [EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP
 real mem = 3694628864 (3523MB)
 avail mem = 3585646592 (3419MB)
 mainbus0 at root
 bios0 at mainbus0: SMBIOS rev. 2.4 @ 0xf6590 (57 entries)
 bios0: vendor Dell Inc. version A06 date 10/10/2008
 bios0: Dell Inc. Latitude E6400
 acpi0 at bios0: rev 2
 acpi0: tables DSDT FACP HPET DMAR APIC ASF! MCFG SLIC TCPA SSDT
 acpi0: wakeup devices PCI0(S4) PCIE(S4) USB1(S0) USB2(S0) USB3(S0)
 USB4(S0) USB5(S0) USB6(S0) EHC2(S0) EHCI(S0) AZAL(S3) RP01(S4)
 RP02(S4) RP03(S4) RP04(S3) RP05(S3) RP06(S5) LID_(S3) PBTN(S4)
 acpitimer0 at acpi0: 3579545 Hz, 24 bits
 acpihpet0 at acpi0: 14318179 Hz
 acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
 cpu0 at mainbus0: apid 0 (boot processor)
 cpu0: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz, 2261.33 MHz
 cpu0:
 FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR,NXE,LONG
 cpu0: 3MB 64b/line 8-way L2 cache
 cpu0: apic clock running at 265MHz
 cpu1 at mainbus0: apid 1 (application processor)
 cpu1: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz, 2261.00 MHz
 cpu1:
 FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,SSE3,MWAIT,DS-CPL,VMX,SMX,EST,TM2,CX16,xTPR,NXE,LONG
 cpu1: 3MB 64b/line 8-way L2 cache
 ioapic0 at mainbus0 apid 2 pa 0xfec0, version 20, 24 pins
 ioapic0: misconfigured as apic 0, remapped to apid 2
 acpiprt0 at acpi0: bus 3 (PCIE)
 acpiprt1 at acpi0: bus -1 (AGP_)
 acpiprt2 at acpi0: bus 11 (RP01)
 acpiprt3 at acpi0: bus 12 (RP02)
 acpiprt4 at acpi0: bus 13 (RP03)
 acpiprt5 at acpi0: bus 14 (RP04)
 acpiprt6 at acpi0: bus -1 (RP05)
 acpiprt7 at acpi0: bus -1 (RP06)
 acpiprt8 at acpi0: bus 0 (PCI0)
 acpiec0 at acpi0
 acpicpu0 at acpi0: C3
 acpicpu1 at acpi0: C3
 acpitz0 at acpi0: critical temperature 107 degC
 acpibtn0 at acpi0: LID_
 acpibtn1 at acpi0: PBTN
 acpibtn2 at acpi0: SBTN
 acpiac0 at acpi0: AC unit offline
 acpibat0 at acpi0: BAT0 model DELL FU27488 serial 30161 type LION oem
 Sony
 acpibat1 at acpi0: BAT1 not present
 acpivideo at acpi0 not configured
 acpivideo at acpi0 not configured
 acpivideo at acpi0 not configured
 cpu0: unknown i686 model 7, can't get bus clockcpu0: EST: unknown
 system bus clock
 pci0 at mainbus0 bus 0: configuration mode 1
 pchb0 at pci0 dev 0 function 0 Intel GM45 Host rev 0x07
 vga1 at pci0 dev 2 function 0 Intel GM45 Video rev 0x07
 wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
 wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
 inteldrm0 at vga1:couldn't find agp
 Intel GM45 Video rev 0x07 at pci0 dev 2 function 1 not configured
 Intel ICH9 IGP M AMT rev 0x03 at pci0 dev 25 function 0 not configured
 uhci0 at pci0 dev 26 function 0 Intel 82801I USB rev 0x03: apic 2
 int 20 (irq 7)
 uhci1 at pci0 dev 26 function 1 Intel 82801I USB rev 0x03: apic 2
 int 21 (irq 4)
 uhci2 at pci0 dev 26 function 2 Intel 82801I USB rev 0x03: apic 2
 int 22 (irq 10)
 ehci0 at pci0 dev 26 function 7 Intel 82801I USB rev 0x03: apic 2
 int 22 (irq 10)
 usb0 at ehci0: USB revision 2.0
 uhub0 at usb0 Intel EHCI root hub rev 2.00/1.00 addr 1
 azalia0 at pci0 dev 27 function 0 Intel 82801I HD Audio rev 0x03:
 apic 2 int 21 (irq 4)
 azalia0: ../../../../dev/pci/azalia.c/1374 invalid PCM format: 0x
 azalia0: codec[s]: IDT/0x76b2, Intel/0x2802, using IDT/0x76b2
 audio0 at azalia0
 ppb0 at pci0 dev 28 function 0 Intel 82801I PCIE rev 0x03: apic 2
 int 16 (irq 0)
 pci1 at ppb0 bus 11
 ppb1 at pci0 dev 28 function 1 Intel 82801I PCIE rev 0x03: apic 2
 int 17 (irq 0)
 pci2 at ppb1 bus 12
 iwn0 at pci2 dev 0 function 0 Intel WiFi Link 5300AGN rev 0x00: apic
 2 int 17 (irq 3), MIMO 3T3R, MoW, address 00:16:ea:5e:dc:32
 ppb2 at pci0 dev 28 function 2 Intel 82801I PCIE rev 0x03: apic 2
 int 18 (irq 0)
 pci3 at ppb2 bus 13
 ppb3 at pci0 dev 28 function 3 Intel 82801I PCIE rev 0x03: apic 2
 int 19 (irq 0)
 pci4 at ppb3 bus 14
 uhci3 at pci0 dev 29 function 0 Intel 82801I 

Re: offloading layer 7 packet classification to hardware

[Bill Marquette]

On Thu, Oct 30, 2008 at 2:39 PM, Eduardo Meyer [EMAIL PROTECTED] wrote:
 how does pfsense classify p2p traffic?

via the ports it typically uses.

--Bill

Re: Funny slogans to put on tshirts

[Gonzalo Nemmi]

On 10/31/08, Redd Vinylene [EMAIL PROTECTED] wrote:
 Hello guys,

 It's my friend's birthday tomorrow. I was thinking I'd make him a
 tshirt with some funny slogan on it or something. Preferably something
 UNIX related. But I'm all outta ideas. Perhaps y'all can help?
 Alright, much obliged, thanks.

Here's one from /usr/src/sys/kern/kern_malloc.c

It goes like this:

/*
 * Small malloc(9) memory allocations are allocated from a set of UMA buckets
 * of various sizes.
 *
 * XXX: The comment here used to read These won't be powers of two for
 * long.  It's possible that a significant amount of wasted memory could be
 * recovered by tuning the sizes of these buckets.
 */
struct {
int kz_size;
char *kz_name;
uma_zone_t kz_zone;
} kmemzones[] = {
{16, 16, NULL},
{32, 32, NULL},
{64, 64, NULL},
{128, 128, NULL},
{256, 256, NULL},
{512, 512, NULL},
{1024, 1024, NULL},
{2048, 2048, NULL},
{4096, 4096, NULL},

Black tshirt, green letters ...

-- 
Blessings
Gonzalo Nemmi

Re: Funny slogans to put on tshirts

[Bryan Irvine]

On Fri, Oct 31, 2008 at 2:10 PM, Gonzalo Nemmi [EMAIL PROTECTED] wrote:
 On 10/31/08, Redd Vinylene [EMAIL PROTECTED] wrote:
 Hello guys,

 It's my friend's birthday tomorrow. I was thinking I'd make him a
 tshirt with some funny slogan on it or something. Preferably something
 UNIX related. But I'm all outta ideas. Perhaps y'all can help?
 Alright, much obliged, thanks.

 Here's one from /usr/src/sys/kern/kern_malloc.c

 It goes like this:

 /*
  * Small malloc(9) memory allocations are allocated from a set of UMA buckets
  * of various sizes.
  *
  * XXX: The comment here used to read These won't be powers of two for
  * long.  It's possible that a significant amount of wasted memory could be
  * recovered by tuning the sizes of these buckets.
  */
 struct {
int kz_size;
char *kz_name;
uma_zone_t kz_zone;
 } kmemzones[] = {
{16, 16, NULL},
{32, 32, NULL},
{64, 64, NULL},
{128, 128, NULL},
{256, 256, NULL},
{512, 512, NULL},
{1024, 1024, NULL},
{2048, 2048, NULL},
{4096, 4096, NULL},

 Black tshirt, green letters ...


or theo.c  :-D

and did you mean to cc freebsd?

-B

Re: new home box for secure data storage

[new_guy]

Douglas A. Tutty-2 wrote:
 
 If the box is running but no users are logged-in, why can't the data be
 encrypted and therefore private? 
 

It can be. Use OpenSSL or GnuPG or PGP symmetrically (only store the
passphrase in your head) in addition to volume/disk level encryption. Tar up
your secret files, encrypt the tar file and then remove the secret files.
When you need to read the secret files, decrypt the tar and then extract
what you need. Wash, rinse and repeat. Cron a sh script to dd /dev/zero onto
the home partition until it's full (don't want sophisticated guys viewing
your unallocated space)... know what I mean? Man, this is getting a bit
paranoid. 

-- 
View this message in context: 
http://www.nabble.com/new-home-box-for-secure-data-storage-tp20235167p20275760.html
Sent from the openbsd user - misc mailing list archive at Nabble.com.

Recommend hardware for video surveillance system?

[Brian Keefer]

I'm finally getting around to starting my project to build a home- 
monitoring system.  I'm going to need multiple capture devices inside  
the home, and at least one outside as well.  I'm looking for  
recommendations on a video capture card, and wireless video cameras.   
I don't mind spending  $100 US per cam if it's worth it.


Also, any software recommendations would be appreciated.

I've searched the archives, and it looks like a few other people have  
started similar projects, but there aren't too many details about  
what anyone did.  I'm planning on keeping track of the steps and  
hopefully documenting things well enough to submit to undeadly,  
assuming the project is a success.


Thanks in advance for any suggestions.

--
bk

intel q35 on-board graphics card

[Matt Schwartz]

Hello,

I have the intel q35 on-board graphics card and am tearing my hair out 
to get it to work.  Dmesg finds it but states that it is not 
configured??.  X errors out with a cannot allocate video ram error. 
Unfortunately, I am not in a position to post my logs just yet.  Could 
someone at least provide a next step for troubleshooting.  I have 
attempted to manually set the ram in the xorg.conf file to no avail.  I 
do know vesa works but vesa sucks.  What does it mean when memory cannot 
be allocated?


Thanks,
Matt

DCBSDCon 2009 Call for Papers

[Jason Dixon]

The DCBSDCon conference has opened up a Call for Papers for the 2009
event.  Speakers are welcome to submit any topic of interest, although
security themes are preferred. This conference leads up to the very
popular ShmooCon hacker convention in Washington, D.C. where OpenBSD
developers and users are always in attendance.

Main Website: http://www.dcbsdcon.org/
Call For Papers: http://www.dcbsdcon.org/cfp.html


P.S.  ShmooCon registration opens Saturday, November 1 at 12pm EDT. If
you're planning to attend both events, make sure you register for their
event.  Previous attendees know how hard it can be to get tickets.

ShmooCon: http://www.shmoocon.org/registration.html


Hope to see you there!

-- 
Jason Dixon
DixonGroup Consulting
http://www.dixongroup.net/