Hello,
frankenstein warning: stable.mtier.org, all patches applied
the mail server in question doesn't deliver to a certain destination
(Network error on destination MXs). Other destinations work. When I
connect manually I can send messages via the destination server. But no
TLS involved this
Before anyone says it, i'd be more than willing to work on the code for
this myself but would like feedback on the idea.
Essentially as follows:
1 - A sysctl variable stores a public key that can only be written to once
at startup
2 - All executables on the system must be signed with that public
Marcus MERIGHI mcmer-open...@tor.at writes:
Hello,
Hi,
frankenstein warning: stable.mtier.org, all patches applied
the mail server in question doesn't deliver to a certain destination
(Network error on destination MXs). Other destinations work. When I
connect manually I can send messages
On Mon, 30 Mar 2015 15:50:11 +0200, Henning Brauer wrote:
It is very sad to have to communicate that our friend, Paul
Schenkeveld, has passed away.
You may think that he didn't need to deal with crazy Aussies but maybe
he didn't need to and so I've met him only on email as he sorted out
my hunds
finally, i bring previos installed openbsd USB HDD(40G) .
boot PC by 2G .
and then insert 40G 500G
and then clone 40G to 500G
rm -rf /mnt-500/*
(cd /mnt-40 ; tar cvpf - .)|(cd /mnt-500 ; tar xpf -)
cp /etc/fstab /mnt-500/etc
reboot
boot PC by 500G
nano /etc/hostname.run0
at last i enjoy
On Tuesday 31 March 2015, Marcus MERIGHI wrote:
Hello,
frankenstein warning: stable.mtier.org, all patches applied
the mail server in question doesn't deliver to a certain destination
(Network error on destination MXs). Other destinations work. When I
connect manually I can send messages
2015-03-31 9:52 GMT+02:00 Gareth Nelson gar...@garethnelson.com:
2 - All executables on the system must be signed with that public key
3 - Any executable not signed is essentially chmod -x
How does this help with interpreted code (e.g. shell, perl, python, java)?
Best
Martin
Hi
Point me please how to launch Pulseaudio. In /etc/rc.d I don't see
script to run pulseaudio :)
Dmitry Orlov
On 31-Mar-2015, at 1:22 pm, Gareth Nelson gar...@garethnelson.com wrote:
Before anyone says it, i'd be more than willing to work on the code for
this myself but would like feedback on the idea.
Essentially as follows:
1 - A sysctl variable stores a public key that can only be written to
Antoine, I'm CC-ing you because this might be a stable.mtier.org thing.
j...@sing.id.au (Joel Sing), 2015.03.31 (Tue) 14:51 (CEST):
On Tuesday 31 March 2015, Marcus MERIGHI wrote:
frankenstein warning: stable.mtier.org, all patches applied
the mail server in question doesn't deliver to a
First off, you seem to have set forth a design without first setting forth
it's objective. I suppose in this case it's pretty clear what your implied
objectives are, though.
Traditionally, executable or code signing is used to certify who compiled
a binary, and to prove that it wasn't tampered
On Tue, Mar 31, 2015 at 10:10:31AM -0500, Joe Crivello wrote:
I can't think of any other scenarios right now, but I'd be interested to
hear if there is something I'm not thinking of...
Another scenario might be a non-admin user trying to run an unauthorized
program. In that case, one could put
On 31-Mar-2015, at 9:11 pm, Max Fillinger
maximilian.fillin...@uni-duesseldorf.de wrote:
On Tue, Mar 31, 2015 at 10:10:31AM -0500, Joe Crivello wrote:
I can't think of any other scenarios right now, but I'd be interested to
hear if there is something I'm not thinking of...
Another
To prevent (in theory) various attack vectors (e.g., physical access to
the disk while offline), you need to have the system in a trusted state.
Somebody has already thought this through, here is the result:
http://en.wikipedia.org/wiki/Unified_Extensible_Firmware_Interface#Secure_boot
Such
Since about three snapshots ago,
I cannot use the caron (háček) in xterm
to diacritize my Czech (latin2) writings.
This used to work.
For non-capital letters (ěščřž), there are specific keys with my
setxkbmap -layout us,cz -option grp:shifts_toggle,grp_led:scroll;
for capital letters, there is no
On Tue, 31 Mar 2015 14:37:53 +0100
Gareth Nelson wrote:
For scripts that are set executable, it works exactly the same way - for
everything else it won't work unless the interpreter is patched, it's still
an overall massive improvement in security.
Maybe on other systems (I know a linux
On Tue, Mar 31, 2015 at 10:10:31AM -0500, Joe Crivello wrote:
I can't think of any other scenarios right now, but I'd be interested to
hear if there is something I'm not thinking of...
Let's cut this short:
To prevent (in theory) various attack vectors (e.g., physical access to the
disk
On Tue, 31 Mar 2015, Gareth Nelson wrote:
Before anyone says it, i'd be more than willing to work on the code for
this myself but would like feedback on the idea.
Essentially as follows:
1 - A sysctl variable stores a public key that can only be written to once
at startup
2 - All
Hi Misc,
Thanks to sevral kind fox I got L2PT server to work like a charm on 5.7.
I will post my configuration files in day or two as I am working on the
very tight deadline.
I am facing now another probably trivial problem.
I would like L2PT server to serve as a web gateway to one of my
For scripts that are set executable, it works exactly the same way - for
everything else it won't work unless the interpreter is patched, it's still
an overall massive improvement in security.
---
âLanie, Iâm going to print more printers. Lots more printers. One for
everyone. Thatâs worth
It's worse than that: OpenBSD doesn't even support GPT, so there sre
dependencies in the way before UEFI can start. Last year there was a GSoC which
added kernel support but there's nothing in the userland.
On Tue Mar 31 15:14:18 2015 Joe Crivello josephcrive...@gmail.com wrote:
To prevent
21 matches
Mail list logo