Re: optimize adsl bandwidth

You probably won't be able to shape traffic with prio, because it doesn't limit the bandwidth. Therefore packets will probably be queued on your router/modem and then get dropped in a random manner. This queue will also add to you round-trip time. altq won't be able to count your traffic exactly

Re: NFS not working

On 11/11/11 14:57, John Tate wrote: Sorry I should have posted. mountd, portmap, and also the appropriate services are running on the server portmap and nfsd. what do rpcinfo -p nfs-server on client and server and netstat -na say?

Re: altq on a variable bandwidth interface

On 11/23/11 20:58, Henning Brauer wrote: * Jussi Peltola pe...@pelzi.net [2011-11-20 04:09]: On Sat, Nov 19, 2011 at 08:58:46PM -0500, quartz wrote: is there a way to set up altq+priq on an internet connection with highly variable/unknown bandwidth? I'd like to create a simple one layer

protecting NFS on IPsec gateway

Hi! I want to secure my wlan using IPsec. The simplified setup looks like this: 172.26.153.0/24 .1 public ip (wlan clients) --- athn0[OpenBSD gateway]pppoe0 -- ((internet)) IPsec This works fine so far. But now I want to secure my OpenBSD gateway

Re: USB serial port adaptor - umct(4) works fine

On 12/10/11 17:07, Mark Zimmerman wrote: Greetings: I need to buy a USB serial port adapter and there is no specific mention of these in the supported hardware list. Archive search indicates that they all suck, but the Prolific chipset sucks less. Anyone care to offer a recommendation?

Let aucat mux local and remote

I want to use aucat as remote and local soundserver. It works with the following parameters. The only problem is that only one client can connect at one time. Either remote or local. -L alix -s default Christopher

Routing to public ip of pppoe(4) interface

Hi, for every address of a local interface a loopback route is created on demand. Those routes look like the second one here: 192.168.123.252/30 link#3 UC 10 - 4 vr2 192.168.123.25300:0d:b9:24:60:42 UHLc 04 - 4 lo0 But this

Re: Mouse0: No Device specified, looking for one.. (it's specified)

On 06/04/11 16:32, pat wrote: Thanks for your reply, but it doesn't work. Logs are still reporting absence of device specification, as a result default /dev/wsmouse gets picked up for TrackPoint.. Here's the changed fragment: I had the very same problem and worked around it by renaming

Re: Setting up default boot from a wd0d

On 06/24/11 16:51, Anand Buddhdev wrote: Hello list users, I have a virtual server for testing, on which I have installed OpenBSD 4.8. The installation is on wd0a, and there's just a single / partition. I then did a second installation, and setup OpenBSD 4.9 on wd0d, also with a single /

parameter scope in bourne vs ksh functions

Hi, ksh(1) states this: Functions defined with the function reserved word are treated differently in the following ways from functions defined with the () notation: [...] o Parameter assignments preceding function calls are not kept in the shell environment (executing

Re: parameter scope in bourne vs ksh functions

On 06/27/11 17:49, Ted Unangst wrote: On Mon, Jun 27, 2011 at 11:00 AM, Christopher Zimmermann madro...@zakweb.de wrote: Hi, ksh(1) states this: Functions defined with the function reserved word are treated differently in the following ways from functions defined with the () notation

umount(8) by device + overloaded mountpoint is not catched

Hi, when umount(8)ing by device, umount fetches the mountpoint via getmntinfo(3), because unmount(2) only supports unmounting via mountpoint. This means it is simply impossible to unmount a specific filesystem from an overloaded mountpoint. I think umount(8) should detect this case, warn the user

pf doesn't filter at all on bge(4)

Hi, I have this simple setup: [ B ] se0 --- bge0 [ A ] pppoe0 ISP A and B both -current. Now my problem is, pf on A won't filter anything on bge0. Even with this very simple pf.conf: set skip on lo block pass out inet proto {tcp,udp} to port 53 block in on ! lo0 proto tcp to port

Re: pf doesn't filter at all on bge(4)

Ok, solved this one. bge0 was in group local, which is matched by set skip on lo is this the desired behavior? It can catch you by surprise easily! On 07/27/11 18:54, Christopher Zimmermann wrote: Hi, I have this simple setup: [ B ] se0 --- bge0 [ A ] pppoe0 ISP A and B both -current

nat-to broken: (if) notation increments nat-to ip by one

Hi, pppoe0 has 92.203.101.134. this works fine: match out log on egress inet from 192.168.23.0/24 nat-to pppoe0 tcpdump while pinging: 92.203.101.134 74.125.39.147: icmp: echo request 74.125.39.147 92.203.101.134: icmp: echo reply 92.203.101.134 74.125.39.147: icmp: echo request

Re: Mouse0: No Device specified, looking for one.. (it's specified)

Can you post your Xorg.log and complete xorg.conf? See also xorg.conf(5); this may be what you need. Option AllowEmptyInput boolean If enabled, don't add the standard keyboard and mouse drivers, if there are no input devices in the config file. Enabled by default if AutoAddDevices and

Re: Moving files around

On Mon, 9 Nov 2009 13:34:24 -0500 STeve Andre' and...@msu.edu wrote: For simple large files, is there a faster way to move them rather than using mv? I have a lot of large files (10G) that need to be rearranged on which disk they reside on. Thanks, STeve Andre' I have not tried it,

readline wrapper like rlfe ?

Hi, I used to call programs not supporting libreadline with the rlfe wrapper which added history and commandline editing. Is there such a thing for OpenBSD? Christopher

Limit speed of dvd-drive

Hi! I'm searching for the OpenBSD equivalent to 'hdparm -E' which sets the drive speed of a cd/dvd drive. Google did only find an old post without replies. Is there a way to do this in OpenBSD? Christopher [demime 1.01d removed an attachment of type application/pgp-signature which had a name

Re: Limit speed of dvd-drive

On Wed, 2 Dec 2009 21:11:14 + (UTC) Stuart Henderson s...@spacehopper.org wrote: On 2009-12-01, Jacob Meuser jake...@sdf.lonestar.org wrote: On Tue, Dec 01, 2009 at 05:11:03PM -0500, Dope Ice Apollyon the Third wrote: On Tue, Dec 1, 2009 at 5:10 AM, Christopher Zimmermann madro

Dual boot stable and current

Hi, is it possible to install two OpenBSDs on the same disk? I'd like to try -current in a separate installation. As I understand disklabels I would need separate disklabels for each installation, because I need two separate root 'b' partitions. So I would create two fdisk partitions one for

Re: Dual boot stable and current

On Thu, 3 Dec 2009 14:35:27 -0500 Josh Grosse j...@jggimi.homeip.net wrote: Yes it is possible, but not in the way you outline. A single disk can only have one disklabel, regardless of the number of MBR partitions... and only a single, A6 MBR partition should be configured. Is this really

Re: Dual boot stable and current

On Fri, 4 Dec 2009 14:04:30 +1100 Aaron Mason simplersolut...@gmail.com wrote: On Fri, Dec 4, 2009 at 12:33 PM, Jonathan Thornburg jth...@astro.indiana.edu wrote: Christopher Zimmermann madroach () zakweb ! de asked is it possible to install two OpenBSDs on the same disk? I'd like to try

Re: ComixWall terminated [WAS: ComixWall 4.6 released, December 8, 2009]

projects should not be able to cooperate. Christopher Zimmermann

Re: ComixWall terminated [WAS: ComixWall 4.6 released, December 8, 2009]

On Wed, 9 Dec 2009 13:38:56 -0500 Jason Dixon ja...@dixongroup.net wrote: How does the announcement of new releases for ComixWall help OpenBSD? It helps in promoting OpenBSD. And this is the official purpose of the advocasy mailing list. So I think that announcements of ComixWall releases

Re: ComixWall terminated [WAS: ComixWall 4.6 released, December 8, 2009]

On Wed, 9 Dec 2009 20:43:59 +0100 Martin Schr__der mar...@oneiros.de wrote: 2009/12/9 Christopher Zimmermann madro...@zakweb.de: On Wed, 9 Dec 2009 13:38:56 -0500 Jason Dixon ja...@dixongroup.net wrote: How does the announcement of new releases for ComixWall help OpenBSD? It helps

How to work around this compiler bug

Hi, the following piece of code compiles fine using g++ 4.2.4, but fails using g++ 3.3.5 in the base system: error: operands to ?: have different types It is part of ptlib, which is the base library for opal, which in turn is needed for ekiga, which I'm trying to port. What is your

Re: How to work around this compiler bug

On Sat, 1 May 2010 14:11:22 +0200 Marc Espie wrote: On Sat, May 01, 2010 at 11:39:00AM +0200, Christopher Zimmermann wrote: Hi, the following piece of code compiles fine using g++ 4.2.4, but fails using g++ 3.3.5 in the base system: error: operands to ?: have different types

Re: [SOLVED] How to work around this compiler bug

ok, thanks everyone. Problem is solved and I even learned some things, too. Christopher

Re: openfile advice / clarification

Hi, I got another question regarding this matter. How is the openfile count accounted for? Is it per process, per user, per shell? How does this work? I recently had problems when running rtorrent, which used about 100 file descriptors (sockets). Pjsua then failed with Too many open files

Re: openfile advice / clarification

On 05/07/10 11:20, Otto Moerbeek wrote: There is an overall system limit, set with sysctl kern.maxfiles=n, current in-use fds can be displayed with sysctl kern.nfiles. There is also a per-process limit. Processes inherit the limits from the parent process, but can change the lmits via

Re: How to work around this compiler bug

Hi, I got another problem compiling some strange C++ code with gcc 3.5; still from opal: std::string a(std::string(A::Class())); results in: error: cannot use `::' in parameter declaration the actual code in opal looks like this: #define OPAL_DEFINE_COMMAND(command, entity, func) \ class

Re: How to work around this compiler bug

On 05/20/10 15:52, Landry Breuil wrote: On Thu, May 20, 2010 at 3:18 PM, Christopher Zimmermann madro...@zakweb.de wrote: Hi, I got another problem compiling some strange C++ code with gcc 3.5; still from opal: Again... what are you trying to achieve ? What's wrong with net/opal and x11

Re: [SOLVED] How to work around this compiler bug

Hey, I could work around this issue. Thanks for you help so far!! If you are interested see below. On 05/20/10 15:54, Marc Espie wrote: On Thu, May 20, 2010 at 03:18:39PM +0200, Christopher Zimmermann wrote: There's no gcc 3.5. ok, that's true, its 3.3.5 of course. std::string a(std

mouse cursor keeps jumping up and left in latest snapshot

Hello, today I upgraded my system to the latest snapshot from some -current version end of april. Now in all gtk application my mouse cursor often jumps to the upper and/or left edge of the screen (not of the application window). I already recompiled gtk+2 and some of the gtk2 applications,

Re: mouse warp problem - dmesg

On 06/03/10 17:25, Otto Moerbeek wrote: On Thu, Jun 03, 2010 at 04:46:27PM +0200, Christopher Zimmermann wrote: Hello, today I upgraded my system to the latest snapshot from some -current version end of april. Now in all gtk application my mouse cursor often jumps to the upper

Re: mouse warp problem - dmesg

On 06/03/10 18:15, Theo de Raadt wrote: Are you running an amd64 kernel? Sigh, I wish people would not change these things and use the standard compilation setup which allows us to see which arch you are running. yes, I'm running amd64. Sorry for the inconvenience. It's simpler than that.

Re: mouse warp problem - dmesg

On 06/03/10 21:33, Theo de Raadt wrote: My kernel contains a bugfix and several improvements for the auich(4) driver which are waiting to be committed. Other than that it contains a workaround in USB2.0 takeover code for my broken BIOS. I think it is very improbable that these changes have

Re: mouse cursor keeps jumping up and left in latest snapshot

On 06/03/10 17:12, David Coppa wrote: On Thu, Jun 3, 2010 at 4:46 PM, Christopher Zimmermann madro...@zakweb.de wrote: Hello, today I upgraded my system to the latest snapshot from some -current version end of april. Now in all gtk application my mouse cursor often jumps to the upper

pf - allow only inbound packets to be forwarded

Hi, I have two machines. One desktop and one mobile laptop. They are connected to each other via wlan. The desktop is connected to the internet vie pppoe and provides internet connectivity to the laptop via nat. On the desktop I would like to block all incoming packets destined to the desktop

Re: Connecting to one of available networks on boot

I tried it using the ifstated approach, but it didn't work as I hoped it would. So I just wrote a small sh script and put it in /etc/wlan and sourced that from /etc/rc right after /etc/netstart is run. The only thing I find funny is that the network link only comes up after I have run the

Re: wlan scan-after-nwid quirk for ThinkPads

On 07/06/10 10:10, David Coppa wrote: On Tue, Jul 6, 2010 at 4:14 AM, Anders Langworthylagrang...@gmail.com wrote: On Mon, Jul 5, 2010 at 4:37 PM, Christopher Zimmermann madro...@zakweb.de wrote: The only thing I find funny is that the network link only comes up after I have run

/boot broken on latest snapshot ?

Hi, I just upgraded to the very latest snapshot(9.7. 1:50) on i386. Now my system does not boot anymore. The only thing I get is: Using drive 0, partition 3. Loading... [cursor sits here] As I understand the boot process, the PBR boot loader has found /boot, verified the magic number and

Re: /boot broken on latest snapshot ?

On 07/09/10 14:19, Christopher Zimmermann wrote: Hi, I just upgraded to the very latest snapshot(9.7. 1:50) on i386. Now my system does not boot anymore. The only thing I get is: Using drive 0, partition 3. Loading... [cursor sits here] As I understand the boot process, the PBR boot loader

Re: OpenBSD users

On 07/19/10 19:57, Noah Pugsley wrote: Mateusz Gierblinski wrote: Hi misc@ I'm just wondering. Where are you OpenBSD users from? I'm from Belgium, anyone else? Take care Central Oregon, USSA. Tuebingen, germany.

how do I do a rename(1) ?

Hi! I'm missing the http://linux.die.net/man/1/rename command in OpenBSD. Preferably with regex support like in Debian. Is there a similar tool or a port containing this tool? I couldn't find any. I often use this to do things like: rename .jpg .jpeg *.jpg or $ ls 10_bulb 11_funny 12_things

Re: how do I do a rename(1) ?

On Sat, 16 Jan 2010 14:16:49 +0059 Han Boetes h...@mijncomputer.nl wrote: Christopher Zimmermann wrote: I'm missing the http://linux.die.net/man/1/rename command in OpenBSD. Ehm. ~% uname -a Linux marsupilami 2.6.31-16-generic #53-Ubuntu SMP Tue Dec 8 04:02:15 UTC 2009 x86_64 GNU/Linux

include sys/cdefs.h in sys/mmap.h

Hi! I just got some errors while trying to compile ptlib: error: type specifier omitted for parameter `size_t' [...] They resulted from size_t not being defined in sys/mmap.h I could fix this problem by including sys/types.h instead of sys/cdefs.h in sys/mmap.h Is this a problem of ptlib,

ftp-proxy for outgoing connection

Hi, my -current firewall is configured to block all in, block all out and allow only certain outbound connections. Now I want to allow outbound ftp connections. I read ftp-proxy(8) and http://openbsd.org/faq/pf/ftp.html#client. As I understand it, ftp-proxy could be used to create rules for

Re: ftp-proxy for outgoing connection

On Fri, 12 Mar 2010 00:23:00 + (UTC) Stuart Henderson wrote: On 2010-03-11, Christopher Zimmermann madro...@zakweb.de wrote: Hi, my -current firewall is configured to block all in, block all out and allow only certain outbound connections. Now I want to allow outbound ftp

Re: gnu grep -o flag

On Wed, 24 Mar 2010 19:00:06 +0200 Gregory Edigarov wrote: Hello Everybody, Just wonder how could one implement what gnu grep -o flag does using our toolchain? from ggrep(1): -o, --only-matching Show only the part of a matching line that matches

Re: gnu grep -o flag

On Wed, 24 Mar 2010 13:06:12 -0700 Philip Guenther wrote: On Wed, Mar 24, 2010 at 10:17 AM, Christopher Zimmermann madro...@zakweb.de wrote: On Wed, 24 Mar 2010 19:00:06 +0200 Gregory Edigarov wrote: Just wonder how could one implement what gnu grep -o flag does using our toolchain

Re: SiS190 driver: finished.

Christopher Zimmermann madro...@zakweb.de + * Copyright (c) 2007, 2008 Alexander Pohoyda alexander.poho...@gmx.net + * Copyright (c) 1997, 1998, 1999 + * Bill Paul wp...@ctr.columbia.edu. All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification

Re: SiS190 driver: finished.

sorry for the cross post. The mail was supposed to go only to tech. It seems like I and my mail client are a bit confused today... Christopher

Re: Remotely connect to gnome

On 08/21/10 16:45, Jean-Francois wrote: Hi All, I've understood that unixes are made to work as workstations and that gnome and kde could handle that. Could you please help me to get on the way to make remote connections possible to gnome for session login and desktop use ? Here's an

Re: Remotely connect to gnome

On 08/21/10 17:27, Christopher Zimmermann wrote: On 08/21/10 16:45, Jean-Francois wrote: Hi All, I've understood that unixes are made to work as workstations and that gnome and kde could handle that. Could you please help me to get on the way to make remote connections possible to gnome

readline and -lhistory in base ?

Hi! I'm trying to compile the statistics suite pspp, but it complains about missing -lhistory. As I understand the description in the readline port, there should already be a readline implementation included in the base system. Still I can only find /usr/lib/libreadline.so.3.0, but no

USB 2.0 transaction translators

Hello, I just stumbled over this: Error opening low/full speed isoc endpoint. A low/full speed device is attached to a USB2 hub, and transaction translations are not yet supported. Reattach the device to the root hub instead. It annoyed me that this doesn't yet work. But since I needed to

Re: bioctl -P, change passwords on crypto volumes

On 10/13/10 21:29, Markus Bergkvist wrote: $ sudo bioctl -c C -l /dev/sd1a softraid0 Passphrase: scsibus4 at softraid0: 1 targets sd2 at scsibus4 targ 0 lun 0: OPENBSD, SR CRYPTO, 004 SCSI2 0/direct fixed sd2: 237MB, 512 bytes/sec, 487409 sec total $ sudo bioctl -P sd2 Old passphrase:

high cpu load on small pcmcia ethernet loads

Hi! I experience very high cpu loads when using my pcmcia ethernet card with more than 4Mbit/s. I get the same behaviour for a ep(4) 100MBit fast ethernet and ne(4) 10MBit ethernet card. Both 16bit pcmcia. The distribution between interrupt and system load seems to be a bit strange, also the load

Re: high cpu load on small pcmcia ethernet loads

On 01/15/11 21:26, Ted Unangst wrote: On Sat, Jan 15, 2011 at 1:33 PM, Christopher Zimmermann madro...@zakweb.de wrote: I experience very high cpu loads when using my pcmcia ethernet card with more than 4Mbit/s. I get the same behaviour for a ep(4) 100MBit fast ethernet and ne(4) 10MBit

Re: Predictable disk device numbering

Hi, I have a similar problem since I an using softraid to encrypt /var and /home. The softraid device is usually on sd0. But when I have an usb mass storage device plugged in during boot up it gets assigned to sd0 and softraid gets sd1. Still, my fstab tries to mount from /dev/sd0X. This can be

Re: Predictable disk device numbering

On 02/04/11 15:10, Matthias Guedemann wrote: On Fri, 4 Feb 2011 14:32:15 +0100, Christopher Zimmermann madro...@zakweb.de wrote: I have a similar problem since I an using softraid to encrypt /var and /home. The softraid device is usually on sd0. But when I have an usb mass storage device

Re: GPIO and rc.securelevel

On Wed, 04 Apr 2012 12:24:37 -0600 Jack Woehr jwo...@softwoehr.com wrote: gpioctl(8) man page says: Only pins that have been configured at securelevel 0, typically during system startup, are accessible once the securelevel has been raised. However, /etc/rc.securelevel first says

Re: smtpd: no user for command execution in aliases

to participate ;) Gilles nb: jacekm no longer contributes to smtpd, in the future please cc: eric@ and chl@ On Thu, Feb 02, 2012 at 02:48:21PM +0100, Christopher Zimmermann wrote: Hi, I just noticed this bug is still outstanding. I have a patch attached that fixes this problem for me, but I

Route packets destined to dynamic public ip locally

Hi! I am running a http server on my dynamic public IP. The only thing that annoys me is that when clients on the http server connect to the public IP, the packets get routed through my pppoe connection and back: $ ifconfig pppoe0 pppoe0: [...] inet 217.190.91.237 -- 213.20.223.35 netmask

Re: Route packets destined to dynamic public ip locally

On Tue, 10 Apr 2012 11:22:54 +0100 ZC) Loff zel...@zeloff.org wrote: Is the PPPoE connection handled by another machine, or by the server itself? Do the clients try to connect to the public IP or to your public domain name / hostname / whatever? If this is the case, maybe a proper

SETUID perl script

Hi, I'm trying to chroot and drop privileges in a perl script. But somehow I'm not even able to run it setuid root. The setuid bit gets ignored completely. But as I understand sys/sys/exec_script.h. The SETUIDSCRIPTS feature is enabled by default. What am I missing? /tmp% ls -l test.pl

Re: PF match word

On Tue, 24 Apr 2012 12:39:35 -0700 (PDT) Theron ZORBAS theronzor...@yahoo.com wrote: Hello Misc, What is the difference beetwen these two rules: match out on egress inet from $int_if:network to any nat-to (egress) pass out on egress inet from $int_if:network to any nat-to (egress) Or

Re: SETUID perl script

On Tue, 24 Apr 2012 14:48:18 -0500 Matthew Weigel uni...@idempot.net wrote: On 24.04.2012 14:22, Christopher Zimmermann wrote: Hi, I'm trying to chroot and drop privileges in a perl script. But somehow I'm not even able to run it setuid root. The setuid bit gets ignored completely

Re: SETUID perl script leaves backdoor open

After short testing I found a bug or at least a dangerous pitfall. This leaves a backdoor open (probably in the saved UID): #!/usr/bin/perl -wT use strict; require POSIX; sub ids () { print RUID=$ EUID=$ RGID=$( EGID=$)\n } print Running $^X $0\n; ids; $ = $ = $; ids; $ = $ = 0; ids;

Re: SETUID perl script leaves backdoor open after dropping privileges

As requested, here's the same test case a little more readable: This leaves a backdoor open (possibly in the saved UID): == #!/usr/bin/perl -wT use strict; use English qw(-no_match_vars); sub ids { print RUID=$REAL_USER_ID EUID=$EFFECTIVE_USER_ID\n } ids;

Re: SETUID perl script leaves backdoor open

After short testing I found a bug or at least a dangerous pitfall. This leaves a backdoor open (probably in the saved UID): #!/usr/bin/perl -wT use strict; require POSIX; sub ids () { print RUID=$ EUID=$ RGID=$( EGID=$)\n } print Running $^X $0\n; ids; $ = $ = $; ids; $ = $ = 0; ids;

Re: basic smtpd question

On Sun, 3 Jun 2012 08:42:48 -0400 bofh goodb...@gmail.com wrote: On Sun, Jun 3, 2012 at 8:38 AM, Christopher Zimmermann madro...@gmerlin.de wrote: On Sun, 3 Jun 2012 08:15:56 -0400 bofh goodb...@gmail.com wrote: Do you want to accept remote mail for your domains? Then you need to add

Re: Mounting a partition, cdrom, usb as a user

On Mon, 18 Jun 2012 22:26:57 -0700 russell russ...@dotplan.dyndns.org wrote: quite suprised. no love so far for fbtab(5) The fbtab file is used by login(1) to chown(2) the specified files to the user who has performed a login. Additionally, chmod(2) is used to set the devices

Re: PF and ftp: to use or not to use ftp-proxy ?

On Tue, 26 Jun 2012 14:51:35 +0600 Илья Шипицин chipits...@gmail.com wrote: Hello! I managed to get ftp through PF working either without ftp-proxy ... match in inet proto tcp from any to $external port = ftp rdr-to $internal port 21 match in inet proto tcp from any port = ftp-data to

Re: mailing list managaers with smtpd

On Sat, 21 Jul 2012 17:28:12 +0200 Jan Stary h...@stare.cz wrote: On Jul 21 10:02:10, Christopher Zimmermann wrote: On Sat, 21 Jul 2012 09:50:40 +0200 Jan Stary h...@stare.cz wrote: Having happily switched from postfix to smtpd, the one thing I am missing is running mailing lists

Re: mailing list managaers with smtpd

On Sat, 21 Jul 2012 20:03:04 +0200 Jan Stary h...@stare.cz wrote: On Jul 21 18:04:51, Christopher Zimmermann wrote: On Sat, 21 Jul 2012 17:28:12 +0200 Jan Stary h...@stare.cz wrote: On Jul 21 10:02:10, Christopher Zimmermann wrote: On Sat, 21 Jul 2012 09:50:40 +0200 Jan Stary h

Re: apache - built in - and syslog

On Mon, 30 Jul 2012 13:27:47 -0400 sven falempin sven.falem...@gmail.com wrote: HEllo, I(and google) do not find the apache 1.3.29 documentation for editing conf file, neither information to syslog the apache logs. Pointer anyone ? See /usr/share/doc/html/httpd/index.html and

Re: pf 'synproxy state' doesn't work with pppoe

On Thu, 16 Aug 2012 14:37:50 +0200 LEVAI Daniel l...@ecentrum.hu wrote: On cs, aug 16, 2012 at 14:26:05 +0200, LEVAI Daniel wrote: On cs, aug 16, 2012 at 12:20:56 +0100, Kevin Chadwick wrote: Any help would be appreciated. Works for me on 5.1 I don't think it's the rule but

How are routes selected from static routing table?

Hi, I have the following static routes setup on my laptop. em0 is a lan connection to my router 172.26.153.1. tun1 is sometimes used by a ssh tunnel to the same router. It is now down. The routing table is attached below. Now I'm wondering why the first ping seems to use the 172.26.153/24 route

Problems waking up with latest snapshot

Hi, since updating to the latest snapshot my laptop (dmesg below) hang at the console after waking up from suspend to ram. The ttyC0 was displayed on both monitors, but neither typing at the console login prompt, nor switching to X worked. I was able to enter ddb with ctrl-alt-del and get a

Re: pf queueing and nat

On Wed, 17 Apr 2013 03:32:52 +1000 John Tate j...@johntate.org wrote: I am adding queueing to my pf based nat for my home network. Since there isn't a complete example involving nat and queuing I am not entirely sure where to put things. I've read the manual and I think I put things before

pf filtering encapsulated icmpv6

Hi, simple problem: how do I allow this package to pass? 18:59:44.768197 rule 0/(match) [uid 0, pid 1051] block in on enc0: 172.26.153.7 172.26.153.1: 2001:4dd0:fbdf:0:f8b8:dafc:cff0:ae3b 2a00:1450:4001:808::101f: [|icmp6] (len 16, hlim 255) (ttl 64, id 2105, len 76) Christopher

Re: pf filtering encapsulated icmpv6

ok. But there is no way to match on the outer IPv4 addresses, is there? Christopher On Fri, 7 Jun 2013 20:34:12 +0200 Loïc BLOT loic.b...@unix-experience.fr wrote: i think: Pass in on enc0 proto ipv6-icmp Loic Blot Le 7 juin 2013 à 19:29, Christopher Zimmermann madro...@gmerlin.de

routing to IPsec VPN with dummy lo1 broken

Hi, My IPsec roadwarrior setup on my laptop broke with one of the latest snapshots because some outgoing connections are routed wrongly with a source ip of 127.0.0.1. On the roadwarrior laptop I use a dummy lo1 interface to which I assign the internal VPN IP of the laptop. wlan has the

Re: routing to IPsec VPN with dummy lo1 broken

On Tue, 2 Jul 2013 10:26:40 +0200 Christopher Zimmermann chr...@openbsd.org wrote: Hi, My IPsec roadwarrior setup on my laptop broke with one of the latest snapshots because some outgoing connections are routed wrongly with a source ip of 127.0.0.1. I was wrong in assuming a recent change

Re: routing to IPsec VPN with dummy lo1 broken

On Tue, 2 Jul 2013 10:26:40 +0200 Christopher Zimmermann chr...@openbsd.org wrote: Hi, My IPsec roadwarrior setup on my laptop broke with one of the latest snapshots because some outgoing connections are routed wrongly with a source ip of 127.0.0.1. I found the according line in the source

nat-to static-port chooses random ports

Hi, as far as I understand pf, the following rules should behave exactly the same: pass out log on pppoe0 inet proto udp from mortimer-ipsec port 5061 nat-to (pppoe0) static-port and pass out log on pppoe0 inet proto udp from mortimer-ipsec port 5061 nat-to (pppoe0) port 5061 but they don't:

Re: User land notification uppon pppoe(4) changes

On Sun, 24 Nov 2013 20:40:21 +0100 David Keller david.kel...@litchis.fr wrote: Hello, *** * My setup Say I have a router using pppoe to connect to internet. It gets a different ip address from the ISP every day. From this router I want to create a gif tunnel to a static-ip

Interactive Unix System V/386 Release 3.2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, I got two SunSoft Unix System V 3.2 of 1994. With still sealed installation diskettes, user's and maintenance Guides. Anyone interested? I could ship them from germany. Christopher - -- http://gmerlin.de OpenPGP:

Re: Cloning an OpenBSD system (and potential FAQ (4.15) error?)

On Fri, 22 Aug 2014 10:04:28 -0400 Alan McKay alan.mc...@gmail.com wrote: Hi folks, Hi! I have also found this : http://www.ualberta.ca/~antoine/clone/openbsd.html Also looks promising. this seems to be helper/wrapper scripts around dump. dump(8) is the way to go. I usually do dump -0auf

Re: Did anyone tried WPAWPA2 Enterprise / LEAP on OpenBSD 5.5?

On Mon, 25 Aug 2014 21:58:58 +0200 somelooser3...@hushmail.com wrote: How can I configure (via console, not using GUI) on OpenBSD to connect to a WPAWPA2 Enterprise / LEAP wireless connection? Does anybody has any scripts for this? echo -n 'setting up wlan: ' ifconfig iwn0 scan |sed -nEe

Re: httpd URI rewriting / try_files

On Thu, 28 Aug 2014 14:37:34 +0300 Gregory Edigarov ediga...@qarea.com wrote: Hello are there any plans to implement uri rewriting or something in a manner of 'try_files' configuration option of nginx? I plan to add a URL stripping option, somewhat more powerful than the nginx alias

httpd URI leading path stripping

Hi, I'd like to add an URI stripping option to httpd, which is similar to apache/nginx's alias options: root [strip number] directory Set the document root of the server. The directory is a pathname within the chroot(2) root directory of httpd. If not specified, it

Re: Alix, pppoe(VDSL), extremely low upload speed

On Fri, 10 Oct 2014 13:19:00 +0200 Mark Patruck m...@wrapped.cx wrote: I also get around 6MB/s when using the Alix 2c3 as a simple router. Problem seems to be the combination... vr2 - vlan7 (vlandev vr2) - pppoe0 (dev vlan7) vr + vlan makes me think of this:

Re: build an openbsd router/modem

Hi, I use GO-DSL-N151, a Zyxel based modem/router. The nice thing about the Zyxel firmware is that it can do scheduling with four priority queues in bridge mode. I tag the packets with vlan prio tags and the modem, which is the bottleneck does the traffic shaping. I can also use it as wlan bridge

Re: groupdel 'command' don't remove group id

On Wed, 16 Mar 2016 08:21:35 +0100 "Max Power" wrote: > Find! Thank You Paul. > > in /etc/passwd [about user] > > testx:*:1001:1000::/home/testx:/usr/bin/false > > So I have no choice but to replace '1001' with '1000' ? I like using the users (10) group as primary group

Re: malloc openbsd awesomness

On 2016-04-04 sven falempin wrote: > malloc.conf could be per process ? > > extern char *malloc_options; > malloc_options = "H*>**>*"; > > This would change the behavior of the program, > not other ? True -- http://gmerlin.de OpenPGP: http://gmerlin.de/christopher.pub

Re: spamd and network whitelisting

On 2016-12-16 Clint Pachl wrote: [...] > What would be > best is if we could blacklist these spammers upon first connection I also wanted to just-in-time decisions, but with dnswl lookups. I wrote a program to intercept incoming, unknown smtp connections and do a dnswl

  1   2   >