CRYPT rounds vs. performance

2015-01-03 Thread whoami toask
I tested OpenBSD 5.6 in VirtualBox on a RHEL 6.5 Workstation, T410: A few installs, with full disc encryption, only the rounds differ the guests had: 2 GB RAM, fixed 10 GB HDD, same 10 char pwd, i5 CPU M 560: (I placed dots only for better reading, not in the real command) A = bioctl

Re: httpd and ~user directories

2015-01-03 Thread Reyk Floeter
On Sat, Jan 03, 2015 at 10:33:52PM +0100, Tor Houghton wrote: Hello, I'm wondering if there is a plan to add support for ~user style URL expansion to the new httpd. I've tried fudging it for 'someuser' by adding the following to the default server within /etc/httpd.conf, but to no avail:

Re: httpd and ~user directories

2015-01-03 Thread Tor Houghton
On Sat, Jan 03, 2015 at 11:29:32PM +0100, Reyk Floeter wrote: - User directories are not explicitly supported and have to be within the chroot - somewhere in /var/www. - For example, you can currently create user directories the following way: # mkdir /var/www/users/~reyk # ln -s

Re: Failed cron jobs are silent

2015-01-03 Thread Edgar Pettijohn
It has for me. I misspelled something in a script and cron sent me an email complaining about it. On 01/03/15 09:50, Craig Skinner wrote: Back in the memory of somewhere??? I worked, failed cronjobs would mail their return code if not zero. Something like: Cron Job false exited with return

Re: Failed cron jobs are silent

2015-01-03 Thread Bryan Horstmann-Allen
+-- | On 2015-01-03 14:02:15, Matthew Weigel wrote: | No, the behavior he described is accurate: cron(8) sends email if a job produced output, irrespective of its exit status. Google is littered with people trying to

Re: Variable Length Arrays

2015-01-03 Thread Ted Bullock
The 2015-01-02, Theo de Raadt wrote: So what do you guys think? VLA's, are they good, bad, evil, stupid, all of the above? alloca() re-invented. alloca(3) was considered slightly unsafe, because use if it was rare. Your mail strikes so widely, feel free to modify a whole system to use

httpd and ~user directories

2015-01-03 Thread Tor Houghton
Hello, I'm wondering if there is a plan to add support for ~user style URL expansion to the new httpd. I've tried fudging it for 'someuser' by adding the following to the default server within /etc/httpd.conf, but to no avail: location /~someuser/* { root

Re: Variable Length Arrays

2015-01-03 Thread Miod Vallat
So I've been wondering about variable length arrays from c99 for a while now. They seem to me like a good way to avoid lots of trivial calls to malloc/free at least for smaller arrays that aren't going to blow up the stack. That said I don't see them being used. The promise of them seems

Re: Amv7 support sunxi SoC router board Lamobo R1 (BPi-R1)?

2015-01-03 Thread Daniel Bolgheroni
On Fri, Jan 02, 2015 at 11:11:18AM +0800, f5b wrote: Does Amv7 support sunxi SoC router board Lamobo R1 (BPi-R1)? It's armv7, not amv7. I have a Banana Pi which can load OpenBSD but won't complete the boot. Allwinner A20 still has some issues. There is a topic which discuss some of these issues

Re: Upgrading issues (i386 on PPro class) 5.4-5.5 leaving system horked (now 5.4-5.6)

2015-01-03 Thread Stuart Henderson
On 2015-01-01, Damon Getsman damo.g...@gmail.com wrote: Running update /usr/local/bin/xmlcatalog:/usr/lib/libiconv.so.6.0: undefined symbol '__guard' /usr/local/bin/xmlcatalog:/usr/lib/libiconv.so.6.0: undefined symbol '__guard' New package glib2-2.40.0p7 will run the following commands

Re: WLAN roaming?

2015-01-03 Thread Stefan Sperling
On Thu, Jan 01, 2015 at 06:30:50PM -0500, Brad Smith wrote: On 01/01/15 17:14, Christian Weisgerber wrote: My OpenBSD laptop, iwn(4), doesn't roam between my two access points. It's a sorry sight when it struggles to push a signal through the rebar floor instead of switching over to the other

Re: [Tor-BSD] Recognizing Randomness Exhaustion

2015-01-03 Thread Stuart Henderson
On 2015-01-01, Miod Vallat m...@online.fr wrote: I should have also specified that I didn't just go ahead and enable them because I wasn't sure if they're considered safe. I like abiding by OpenBSD's crypto best practices when possible. Is there any reason why they're disabled by

Re: usmb/FUSE on 5.6

2015-01-03 Thread Stuart Henderson
On 2014-12-30, Steven Surdock ssurd...@engineered-net.com wrote: Using the package usmb to mount a share from a Windows 2008R2 server does not seem reliable. FUSE/usmb dismounts the share after a while (less than 24 hours) with the following error: Dec 30 01:30:07 fileshare /bsd: fuse:

Re: setting WiFi txpower with ifconfig

2015-01-03 Thread Stuart Henderson
On 2015-01-03, Alan Corey alan01...@gmail.com wrote: I'm trying to do some antenna work so I want a weak signal from the other side of the basement. So I try stuff like ifconfig athn0 txpower 1 and get ifconfig: SIOCS80211TXPOWER: Invalid argument. Any number I've tried gives the same thing.

Re: Recognizing Randomness Exhaustion

2015-01-03 Thread Stuart Henderson
On 2014-12-31, Libertas liber...@mykolab.com wrote: One possible explanation is that its randomness store gets exhausted. OpenBSD's RNG subsystem doesn't get exhausted like this.

Re: httpd: multiple addresses for one server

2015-01-03 Thread Reyk Floeter
On Thu, Jan 01, 2015 at 11:54:46PM -0500, Geoff Steckel wrote: Is there any way todo the equivalent of: server an.example.com listen on 192.168.2.99 listen on 2001.fefe.1.1::99 ?? It appears that the code in parse.y explicitly forbids this and the data structures for a server

Re: Failed cron jobs are silent

2015-01-03 Thread Jan Stary
On Jan 03 15:50:36, skin...@britvault.co.uk wrote: Back in the memory of somewhere??? I worked, failed cronjobs would mail their return code if not zero. Something like: Cron Job false exited with return code 1 I cannae mind if it was Solaris or Linux, or whatever they were using... Can

Re: OpenBSD + OptiPlex 320 = frozen clock?

2015-01-03 Thread John Merriam
On 1/2/2015 2:00 PM, Nathan Wheeler wrote: Try changing the value for the sysctl variable kern.timecounter.hardware? Its just a guess, but its helped me when I had problems with the clock before. On Fri, Jan 2, 2015 at 7:47 AM, John Merriam j...@johnmerriam.net wrote: Hello. I have a strange

Re: setting WiFi txpower with ifconfig

2015-01-03 Thread Jonathan Gray
On Sat, Jan 03, 2015 at 11:16:01AM +, Stuart Henderson wrote: On 2015-01-03, Alan Corey alan01...@gmail.com wrote: I'm trying to do some antenna work so I want a weak signal from the other side of the basement. So I try stuff like ifconfig athn0 txpower 1 and get ifconfig:

Re: httpd: multiple addresses for one server

2015-01-03 Thread Geoff Steckel
On 01/03/2015 08:42 AM, Reyk Floeter wrote: On Thu, Jan 01, 2015 at 11:54:46PM -0500, Geoff Steckel wrote: Is there any way todo the equivalent of: server an.example.com listen on 192.168.2.99 listen on 2001.fefe.1.1::99 ?? It appears that the code in parse.y explicitly forbids this

Re: Failed cron jobs are silent

2015-01-03 Thread Fred
On 01/03/15 15:50, Craig Skinner wrote: Back in the memory of somewhere??? I worked, failed cronjobs would mail their return code if not zero. Something like: Cron Job false exited with return code 1 I cannae mind if it was Solaris or Linux, or whatever they were using... Can OpenBSD's cron do

Failed cron jobs are silent

2015-01-03 Thread Craig Skinner
Back in the memory of somewhere??? I worked, failed cronjobs would mail their return code if not zero. Something like: Cron Job false exited with return code 1 I cannae mind if it was Solaris or Linux, or whatever they were using... Can OpenBSD's cron do that too? Here's some silent noisey

Re: Failed cron jobs are silent

2015-01-03 Thread Matthew Weigel
On 1/3/15 1:05 PM, Fred wrote: man 5 crontab not man 1 crontab :~) No, the behavior he described is accurate: cron(8) sends email if a job produced output, irrespective of its exit status. Google is littered with people trying to figure out how to get cron(8) to send email based on exit

FOSDEM 2015

2015-01-03 Thread Sevan / Venture37
Hi guys, Anyone attending FOSDEM at the end of the month / planning on doing a presentation? Sevan / Venture37

Re: CRYPT rounds vs. performance

2015-01-03 Thread Andy Bradford
Thus said whoami toask on Sat, 03 Jan 2015 17:18:04 -0500: *- Does the rounds affect the disk performance, ex.: 1000 vs. 10 000 000**? OR it just ONLY affects the time until the password unlocks the CRYPT device? Yes, unless I'm mistaken, it really only affects how long it takes to

Re: Tor BSD underperformance (was [Tor-BSD] Recognizing Randomness Exhaustion)

2015-01-03 Thread Greg Troxel
teor teor2...@gmail.com writes: Tor 0.2.6.2-alpha (just in the process of being released) has some changes to queuing behaviour using the KIST algorithm. The KIST algorithm keeps the queues inside tor, and makes prioritisation decisions from there, rather than writing as much as possible to

Re: Variable Length Arrays

2015-01-03 Thread Ted Unangst
On Thu, Jan 01, 2015 at 20:12, Ted Bullock wrote: Hey Folks, So I've been wondering about variable length arrays from c99 for a while now. They seem to me like a good way to avoid lots of trivial calls to malloc/free at least for smaller arrays that aren't going to blow up the stack. That

Re: Spanish discussion list

2015-01-03 Thread Jorge Gabriel Lopez Paramount
When I started learning OpenBSD half a year ago I checked communities and mailing lists and there is a list in Mexico, with something like three emails per month in average. I saw a site of BSD in general as well, with translated articles. Rather than having a Spanish mailing list I would like

is what this guy is saying even anywhere close to reasonable, about ssh everywhere?

2015-01-03 Thread bofh
https://medium.com/@shazow/ssh-how-does-it-even-9e43586e4ffc -- http://www.glumbert.com/media/shift http://www.youtube.com/watch?v=tGvHNNOLnCk This officer's men seem to follow him merely out of idle curiosity. -- Sandhurst officer cadet evaluation. Securing an environment of Windows platforms

Re: Spanish discussion list

2015-01-03 Thread martin
agrquinonez agrquino...@agronomos.ca wrote: Hello Is there someone interested having a discussion list in Spanish? I have a OBSD server running current (httpd, smtpd, ftp), and i would like having a discussion list in Spanish, it could have blogs, foro, or any other related things. For

Re: YP Alternative

2015-01-03 Thread David Gwynne
On 2 Jan 2015, at 9:52 pm, Brian Empson br...@teamhandbanana.com wrote: I'm looking into a way to sync up group and user information across a network of OpenBSD machines. I like YP, except that I don't need the password hashes transferred across the network. I like that it's built right

Re: YP Alternative

2015-01-03 Thread Brian Empson
This sounds interesting. What would you replace krb5 with, if you don't mind me asking? I was contemplating krb5, but the setup and such is a pain for me (because I am not familiar with it). I'll probably wind up rolling something custom with LDAP and YP mappings thrown in. On 1/4/2015 2:26