sonjaya wrote:
http://www.openbsdsupport.org/vpn-ipsec.html
This is almost 3 years old and there is so many changes, please don't
follow this on 4.1!
I most likely will remove it if we can get an updated version.
Consider this:
http://www.serverwatch.com/tutorials/article.php/3659686
or
sonjaya wrote:
http://www.openbsdsupport.org/vpn-ipsec.html
May be you could also have a look at this nice presentation that show
many changes done on OpenBSD.
You can start here to see some OpenBSD suggestions, but you can look it
all as well as it's nice. (;>
http://openbsd.org/papers/a
Rolf Sommerhalder wrote:
Please find below the dmesg of amd64.mp-current (snapshot 23-Aug-2007)
on a Sun Fire X4600 M2 which is equipped with four dual-core Opteron
8220 CPU, 32 GB of RAM and four built-in NICs.
Sadly, the only problem is that you will not be able to use that much
memory here.
Sorry for the somewhat off topic question here, but I am running out of
luck and idea and so far Sun is no help either.
Brand new 4, Sun X4100 M2. One of them, I can't get the SYS folder from
the management interface.
All have, or should have on the root:
ls /
SYS
SP
But one I only have
SP
Todd Alan Smith wrote:
On 9/6/07, Daniel Ouellet <[EMAIL PROTECTED]> wrote:
Hi,
The order is up and I just ordered my DVD.
You do mean 3 CDs in a DVD case, right? (Not an actual DVD release.)
At least, that's all I could find.
Yes you are right!
I guess I was just to excited! (
Hi,
Not sure if I am missing something, most likely it's not implemented
yet, but I was looking to see if I could check anything about a RAID 1
setup on Sun X4100 M2 so that it can be monitor somehow. I am not making
progress on it however.
I assume it does work and OpenBSD can use it no pro
K K wrote:
happens on the same approximate schedule. I suspect a power glitch.
It this is power glitch to the point of affecting your server, wouldn't
the LOM also show that to you? Then you would know the answer.
lom>loghistory
Eventlog:
+0h35m1s host power on
+0h37m51s host power of
Henning Brauer wrote:
bio is not implemented for mpi (yet).
bioctl in 4.2 onwards shows some inquiry data (vendor model fw serial)
for non-bio-capable disks. i. e. it falls back from bioctl -i to bioctl
-q if teh disk doesn't support bio.
Thanks Henning!
Jonathan Gray wrote:
mpi(4) currently has no bioctl support.
The > 2 port LSI SAS RAID (mfi(4)) supports bioctl, however
sun don't sell any machines with this interestingly enough.
Thanks! That's what I figure, but wanted to check in case I wasn't
looking at the right place. Oh well. May be o
Hi,
Quick updates on this one.
My problem is now solved and I got very nice help from some gentlemen
working at Sun that step in off list to help me out and all is now
finally work.
Nice to see some good guys following misc@ and be interested to make
sure Sun hardware (some of them anyway)
On Tue, 11 Sep 2007, Siju George wrote:
Can't find a DVD in
[snip]
As stated in the beginning of this thread,
DVD discs are not available, just CDs in DVD case.
Yes guys. It was my mistake in my "Divine Vast Drewling" extase of the
event instead of the "Complete Domination" release of 4.2.
Hi,
Just been doing multiple tests on 4 boxes and all present the same
problem of multiple reboot when the acpi is enable in the bsd.mp kernel.
The box boot and before it finish to be all done and fully stable, it
reset itself and reboot again. It will do this between 2 and 5 times at
worst b
Rolf Sommerhalder wrote:
I did observe similar behaviour on four X4100 M2 as well (two with one
socket dual-core, two with two sockets dual-core Opterons) using amd64
bsd.mp snapshots from 23 and 28 Aug..
Currently, amd64 bsd.mp snapshot 28. Aug is running stable on those
four servers, although
Here is the new dmesg for current.
So far the boot process is much faster and do not hang anymore.
I am doing install on three more boxes now and will do a bunch of reboot
cycles to see the end results.
Still some acpi not configure in the dmesg, but so far does look better.
Also, note this
Tobias Weingartner wrote:
In article <[EMAIL PROTECTED]>, Daniel Ouellet wrote:
So, I am not sure what testing you did, unless you built your own. new
Snapshots was just release now, witch I will be happy to test tonight
and see the results and report back.
If you guys could test
I have been very quiet on this for weeks now, but this really start to
piss me off at the highest level!
The bottom line is original work was stolen and copyrights are not
respected period!
Dance as much as you want around it, hide behind lawyers, word
definition twisted, false pretend, what
On Thu, 13 Sep 2007 20:35:35 -0400, Stephan Andre' wrote:
I hope one day soon OpenBSD will adopt a nice ncurses setup similar
to something like FreeBSD with ease to it.
Honestly, I don't see why. How does making the installer more
complicated is going to "help" anything.
I recently sat a frie
As we are on the subject and I do not want to deviate from the original
question, I would however appreciate suggestions as to how I can have a
one server witch can actually have up to 32 serial console to control
LOM on Sun server. I may need up to 48 in one case, but instead of using
a bunch
Rui Miguel Silva Seabra wrote:
I'd love to see how an user who gets a modified binary version has the
freedom to modify it. Go ahead. Prove me that it doesn't allow some users
to loose freedom...
You make the point of using BLOB so well, Thank you!
Looking forward to see you fight for document
Rolf Sommerhalder wrote:
The latest snapshot (13. Sept). of amd64 bsd.mp with ACPI enabled runs
stable on two X4100 M2 which are identically configured (single SAS
disk only, no RAID-1 yet, with current BIOS/SP/SAS Firmware from Sun).
Be caution and with reserved! Not stable if you do not add a
Paul Taulborg wrote:
I appologize for not including this, here is the dmesg of a successful
boot of the amd 4.2 DEFAULT kernel:
Paul,
Not sure all the tests you did, but first do not run AMD64 on Intel
processor. I would do this first thing if you haven't done already.
- Go into BIOS and di
Paul Taulborg wrote:
Kind of bummer, as I will be losing 64 bit support by use i386. This is
an Intel Xeon, which should be compatible with the amd64 branch.
I am not expert to say yes or no here. May be someone else will confirm
or deny. For now I would assume wrongly may be, but I wouldn't u
Paul Taulborg wrote:
Update:
I ran boot -c with verbose on, and here are the last entries:
various probing failed messages (doesn't look like any problems), then:
ioapic0: conflicting map entries for pin 0
pctr: 686-class user-level performance counters enabled
mtrr: Pentium Pro MTRR Support
-
Paul Taulborg wrote:
Kind of bummer, as I will be losing 64 bit support by use i386. This is
an Intel Xeon, which should be compatible with the amd64 branch.
To answer your question, I guess it depend on the version of your processor.
http://marc.info/?l=openbsd-misc&m=117112049507303&w=2
I t
Paul,
If you want to try the AMD64 mp kernel with the patch I point out to you
on tech of a few days ago and see if that help you or not, I can make
the kernel I built that night for you to download and try if you trust
it. I would say to built your own, but if you want to do a quick test
and
Paul Taulborg wrote:
I went through every option in the BIOS, and there is nothing at all
related to ACPI. :(
Your BIOS is version 35, and there is a very long list of BIOS upgrades
from Intel. The latest one for this board, if I am not mistaken is 44
and you have 35.
> bios0: vendor Intel
Paul Taulborg wrote:
Booya! Updated my BIOS to the latest version (44), and applied the patch
that was kindly provided to me here:
http://marc.info/?l=openbsd-tech&m=118975639013313&w=2
I also enabled acpi0 in the kernel by default (required to see the other
processors), and tada!
I had to a
Also Paul,
Now that is working do me a favor and try to compile the userland and
kernel with that bsd.mp acpi enable kernel.
Also, try if possible to make transfer of huge files between two boxes
well connected to try to at a minimum get close to 100Mb/sec of
transfer, or more if you have Gb
pichi wrote:
Sorry if I ran into the Big Boys forum crying. I will be more cautious about
what I ask next time. Is there a forum for people who are starting out with
OpenBSD? The thing is I am new to it and I am in a situation where reading
pages and pages of Google is taking a lot of time away f
Henning Brauer wrote:
* The One <[EMAIL PROTECTED]> [2007-09-19 11:17]:
What I meant to say was that "Leopard"'s release will solve every
current problem prevailant in "OS X Tiger" and people's opinions about
the Macintosh platform, although their current, so-called "opinions"
have no evidence b
Boris Goldberg wrote:
I have pretty much the same picture with HP ProLiant 320 G5 (Dual Core
Pentium-D 925). The server is new and passes all tests from the HP
maintenance CD.
I couldn't make what BIOS version you were actually running there, but
you did check to make sure you ha
Juan Miscaro wrote:
I tried it but whenever I include the larger 'uatraps' I get:
Look at set limit table-entries.
man pf
Stuart Henderson wrote:
On 2007/09/19 19:00, Daniel Ouellet wrote:
Le me know how it goes with current, I am curious as so far all feedback I
got is no one yet can get an AMD64.mp stable at this time
this must be hardware-dependent, my main desktop is amd64 MP
(opteron 175 i.e. dual-core) and
Hi,
Looking on the man page, the ifconfig is suppose to show the stage of
the network cards, and it can't show the proper configuration on the nfe
cards, even if I force the configuration to fix value, I always get the
same results:
nfe0: flags=8843 mtu 1500
lladdr 00:14:4f:7d:91:ea
Here is more. May be I do not understand the reading, I understand it to
mean for example:
>> media: Ethernet 10baseT (1000baseSX half-duplex)
Would be hard configuration to be 10mb half-duplex and then the (xx)
would show what is actually in use.
Isn't this correct?
I may be confuse, but t
SX looks plain wrong anyway. Can you provide a dmesg? This is perhaps
related to the phy that attaches to nfe rather than nfe itself.
Sure, here is one of them.
OpenBSD 4.2 (GENERIC.MP) #1378: Tue Aug 28 10:48:58 MDT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real m
OK,
To follow on this and to try to isolate more problem, I did the
following tests.
- Setup two boxes, both Sun X4100 M2.
- The source box is using i386.mp version 4.2
- The destination box is using amd64.mp version 4.2 (same with current)
- Configure public IP's on the em0 interface of both.
Jonathan Gray wrote:
SX looks plain wrong anyway. Can you provide a dmesg? This is perhaps
related to the phy that attaches to nfe rather than nfe itself.
A bit more. Looking in logs, etc. I found this:
nfe0: tx v2 error 0x6004
Searching on google didn't bring much other then a problem that
Daniel Ouellet wrote:
Jonathan Gray wrote:
SX looks plain wrong anyway. Can you provide a dmesg? This is perhaps
related to the phy that attaches to nfe rather than nfe itself.
A bit more. Looking in logs, etc. I found this:
nfe0: tx v2 error 0x6004
Searching on google didn't bring
n0g0013 wrote:
having a nightmare getting two openbsd (one 3.8, one 4.0) boxes to
setup a tunnel. finally got the phase 1 negotiation going (or so i
believe from reviewing the logs) but it appears that the phase two
starts and is just abandoned.
This may not be the best advise, but there have
Boris Goldberg wrote:
Hello Daniel,
Just want to make sure that we are on the same page: I'm talking about
i386. It seems from below that your concern is more about amd64, but I
didn't really try it, because my CPU isn't even a Xeon.
You are 100% right. An oversight on my part here.
patrick keshishian wrote:
They seemed pretty random to me, but I did a quick
check after reading your response and I see 468 unique
"fake" email address @my-domain, only one was
duplicated twice.
Put greyscanner from Bob in there and sit back and enjoy the look! (;>
Make sure you pick the vers
Claudio Jeker wrote:
Could you add the dmesg of the test box to the website?
Do you have any other network cards you could test? (I'm mostly interested
in bnx but sk, msk, bge and nfe could be interesting as well).
This box if the M2 version also come with nfe cards as well, but there
is issue
Tony Sarendal wrote:
On 10/3/07, *Daniel Ouellet* <[EMAIL PROTECTED]
<mailto:[EMAIL PROTECTED]>> wrote:
Claudio Jeker wrote:
> Could you add the dmesg of the test box to the website?
> Do you have any other network cards you could test? (I'm mostly
i
OK guys,
Instead of fighting about using, or not using it, or i386 being
obsolete, PAE not being good, or slow, etc.
I for one would be very happy if we can support more then 4GB of memory
on it and I would be more then happy to test it as I now have machine
that actually have more then 4GB
Alexey Suslikov wrote:
CL5 is CAS latency I think, but what does "PC25100" mean here? :)
PC2-5100
ropers wrote:
On 08/10/2007, Daniel Ouellet <[EMAIL PROTECTED]> wrote:
Alexey Suslikov wrote:
CL5 is CAS latency I think, but what does "PC25100" mean here? :)
PC2-5100
Hm, Wikipedia currently only knows PC2-5300.
http://en.wikipedia.org/wiki/DDR2_SDRAM
Of course Wikiped
Sam Fourman Jr. wrote:
how do I install xbase without reformatting and reinstalling the whole OS?
http://openbsd.org/faq/faq4.html#AddFileSet
Karl Kopp wrote:
She just hung again - I reverted to the orig /bsd file and rebooted
You may or may not already have done that and it may not be of any help
what so ever to you.
But on my IBM 326e I had the same problem with the bge0 where my server
just freeze and nothing on the screen, et
Hi,
May be I don't understand this properly, or I keep running around to my
tail in reading the man pages, etc.
But I am trying to show the announcement sent to specific peer when I
apply filter for example.
Looks like I do not have a way to do this.
Something like:
show ip bgp neighbors
Henning Brauer wrote:
* Daniel Ouellet <[EMAIL PROTECTED]> [2006-06-12 11:54]:
show ip bgp neighbors 1.2.3.4 advertised-routes
I want to make sure of what I do send to some peer is really what I want
to send to them.
the asbove command doesn't quite resample that... yeah, it is
Looking in the archive, looks like PF is view as feature complete and
really I can't think of anything I can't do with it except nat traversal
in VoIP setup.
Would it be possible to consider the addition of this may be?
Just curious?
Best,
Daniel
2006/6/13, Hank Cohen <[EMAIL PROTECTED]>:
Folks,
There has been some discussion of late on this list about Hifn's policy
with respect to releasing documentation to the general public. That
discussion lead to a great deal of uninformed speculation and
unflattering statement's about Hifn's unfrie
Martin Toft wrote:
To Daniel Quellet: Sorry for disturbing the topic of your thread.
That's cool! No worry, I guess your subject is way more interesting to
many, or no one is using NAT traversal or have any needs for it.
That's fair game. (;>
Daniel
Matt Wilkins wrote:
hi,
i just recently upgraded our firewall from 3.7 to 3.8 and am now
seeing errors on our internal interface:
fw:~> netstat -i -I em1 1
em1 inem1 out total in total out
packets errs packets errs colls packets errs packets errs colls
86877
Stuart Henderson wrote:
On 2006/06/13 14:58, Daniel Ouellet wrote:
That's cool! No worry, I guess your subject is way more interesting to many,
or no one is using NAT traversal or have any needs for it.
I don't know much about H.323, but for SIP draft-biggs-sip-nat has some
useful i
On Tue, Jun 13, 2006 at 08:43:16AM -0600, Theo de Raadt wrote:
[snip]
And if you continue baiting me, I will delete the driver from our
source tree.
Here is my conclusion on this.
OpenBSD is the MOST secure OS on the planet and no one can dispute that.
PF is also the most secure firewall as w
vladimir plotnikov wrote:
Hello!
I have installed OpenBSD 3.8 and MySQL server 4.0.24 (from ports)
From time to time (after high load) I got next - mysql drops connects
by TCP/IP (simple connection closed after telnet to port 3306) and
next in logs:
Few lines like
060620 14:51:06 [ERROR] /usr/
Anders J wrote:
My self have experienced mixed issues with MysSQL on OpenBSD and also
read and heard about performance and stability problems with MySQL on
OpenBSD.
I use it for years (7+) without issues. The only one I recall was with
3.23.46, yeap, really old, where the database restart itse
Bryan Irvine wrote:
Works ok for me. Hasn't crashed or anything like that. I use mysql 5 on
OpenBSD that some web apps talk too. I just did an import of a previous
dump, and it took somewhere in the neighboorhood of 7 hours give or take.
(for a few tens of million INSERTS that's not bad).
Thi
Frank Bax wrote:
Actually, the option is really --disable-keys. The --opt option is just
a shorthand for several options (including --disable-keys).
There is more as well and refer to the man page for all the details:
http://dev.mysql.com/doc/refman/5.0/en/mysqldump.html
The --opt
Doesn't
Nick Guenther wrote:
On 6/13/06, Stuart Henderson <[EMAIL PROTECTED]> wrote:
On 2006/06/13 22:07, Nick Guenther wrote:
> What is the prefered method for NAT-traversal these days? The options
> I know are:
> UPnP
I suppose this one doesn't work unless the protocol bends well to it,
and both end
Marian Hettwer wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Julian,
Julian Bolivar wrote:
I use MySQL 5.0.18 and OpenBSD 3.9 for AMD64 and work fine, and I used
a lot of insert / hour in it, using Innodb tables.
What means "a lot" ? Can you provide a mysqladmin status, or a show
mysql> status;
--
44 Open tables: 455 Queries per second avg: 5.117
--
# dmesg
OpenBSD 3.9 (GENERIC) #617: Thu Mar 2 02:26:48 MST 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel Pentium III ("GenuineIntel" 686-class) 844 MHz
real mem = 2
Looks like the packages for Weblizer on AMD64 is corrupted.
One three different systems, it all show thew same errors.
If I am not mistaken it is here:
freetype.13.1
Freetype is version 1.3.1, not 13.1 as below.
# pkg_add webalizer
Error from ftp://ftp.openbsd.org/pub/OpenBSD/3.9/packages/amd
Berk D. Demir wrote:
No. Packages are not damaged.
In fact it's looking for
/usr/X11R6/lib/libfontconfig.so.3.0
/usr/X11R6/lib/libfreetype.so.13.1
libraries which are provided with xbase39 installation set.
Extract the xbase39.tgz and voila you're done.
tar -pzxf xbase39.tgz -C /
Berk D. Demir wrote:
You installed the libs but system's dynamic linker doesn't have a clue
about them.
Tell him the location of newcomers with
ldconfig -m /usr/X11R6/lib
OK, I needed to also do ldconfig -m /usr/local/lib as well and then redo
the ldconfig -m /usr/X11R6/lib and now it
Marian Hettwer wrote:
I'd love to have the time to give OpenBSD a chance on our production
system. Seems unlikely, since we're running Linux only :(
Time, well a coffee break, that's all you need.
See setting up OpenBSD in 5 minutes from scratch, even here with pause
in the process too:
htt
I have a general question and I am curious to understand the difference
why for example the package for MySQL on i386 3.9 stable branch provides
multiple versions and the same versions are not available in the stable
branch of amd64, but can be found in the current version of 3.9.
I fail to un
J.C. Roberts wrote:
On Fri, 30 Jun 2006 14:27:53 -0400, "Nick Guenther" <[EMAIL PROTECTED]>
wrote:
On 6/30/06, Breen Ouellette <[EMAIL PROTECTED]> wrote:
J.C. Roberts wrote:
This should take care of any of the long standing issues OpenBSD has had
with the HiFn's procedures for releasing docum
Is there a special reason why we couldn't see the
set skip on interface
in the display of the rules in pf with the regular:
pfctl -sr
That's on 3.9.
it is not a rule.
OK, not a rule, but still shouldn't it be possible or useful to see that
in effect? If you make changes for testing or what not and you use this
temporary, etc on a box of 10+ interfaces, just my thinking, but I was
expecting to see this in display of how the pf was working.
If this was to be implemented, it might be more appropriate to show in the
runtime state (pfctl -si) than the rule output.
I don't know. May be may be not. But I got cut with this. I had a
sysadmin do changes in a pretty big multi interface box and he use the
set skip to test new rules on indi
Indeed it does, but not by hacking up `-s rules`. pfctl(8) lists all
the various things you can display with -s. 'options' (as per
pf.conf(5)) do not seem to be among them, however, which I agree is
unfortunate. It also doesn't help that the manpage say, next to, -s
Rule:
"Note that the ``skip st
set skip on interface
in the display of the rules in pf with the regular:
pfctl -sr
it is not a rule.
I guess one could argue that:
set block-policy option
is not a rule either, but it does show up however:
Example 1:
In pf.conf
set block-policy return
block all
pfctl -sr
block return
Christopher Snell wrote:
Hi,
Is the Intel PRO/1000 PT still non-functional under our favorite OS?
I searced around and found a message from Darrian Hale in late April
that said he was having kernel panics with this NIC. Has anything
changed?
# dmesg
OpenBSD 3.9 (GENERIC.MP) #736: Thu Mar 2 04
Paolo Supino wrote:
Hi
I'm in the process of building firewall (Obviously it will run OpenBSD)
and I need to put in a quad NIC card. There's Intel Quad card that I had
a success with in the past but is expensive as hell. I found a company
called Mikrotik that makes a Quad NIC card and I'm lo
Blah blah blah. Let's please drop this sociopolitical debate and get onto
some BSD?
Sure we can. What do you want to talk about?
VoIP would be nice and selfish as well, but oh well...
On Wed, Jul 19, 2006 at 08:21:01PM +0200, Peter Philipp wrote:
Hi I'm looking for clue. Does anyone have any?
Google provide some:
http://www.hasbro.com/clue/
Make sure you fit the minimum requirements however:
http://www.hasbro.com/clue/pl/page.browse/dn/default.cfm
May be CLUE JR. might
Steve Glaus wrote:
Hello all,
I'm finally desperate enough to post this to a list...
I have been trying for two days to set up a basic VPN between my OpenBSD
box at home and my OpenBSD box at work.
The box at home is running 3.7 and the box here at work is running 3.9.
May be worth to have
Karsten McMinn wrote:
On 8/15/06, Marian Hettwer <[EMAIL PROTECTED]> wrote:
I played with a bit when I had access to lots of
RaQ3s and 4s but it wasnt worth the time with
their custom bios in the way.
I only maintain somewhat a distribution of it for the RaQ 2+ and Cube:
http://openbsdsupport.
Marian Hettwer wrote:
I don't think it can be done. I had a RaQ3 once - way back when. The
But the RaQ3 was MIPS based, wasn't it ?
Nope, I386, the MIPS based stop at the RaQ2+ after witch they switch. To
bad if you asked me, but that's the new one. Yea, I bit more complicated
with the MIPS,
stan wrote:
Does OpenBSD work well on a Sun Ultra 25?
I don't see it on the list here:
http://openbsd.org/sparc64.html#hardware
Also on the same page, if you scroll at the bottom you will get your
answer as well:
Unsupported machines
Ultra 25
stan wrote:
Does OpenBSD work well on a Sun Ultra 25?
I don't see it on the list here:
http://openbsd.org/sparc64.html#hardware
So, I would venture to say no. But the best way to know is to try.
[EMAIL PROTECTED] wrote:
Running OpenBSD 3.9-stable
# start mysql server.
/usr/local/bin/mysqld_safe &
I am using this:
# Start MySQL server
if [ -x /usr/local/bin/mysqld_safe ] ; then
su -c _mysql root -c '/usr/local/bin/mysqld_safe &' > /dev/null
& echo -n ' mysql'
fi
But in rc.lo
[EMAIL PROTECTED] wrote:
Running OpenBSD 3.9-stable
# start mysql server.
/usr/local/bin/mysqld_safe &
A shorter answer now that I look in more details as you pick my
curiosity a bit.
Selected extract from:
http://openbsd.org/faq/faq10.html#rc
* /etc/rc.conf - Configuration file used by /e
Marcos Marconcini wrote:
I did an upgrade from 3.8 stable to 3.9 current ( I don't know if this is
the problem )
Start with a snapshot and read the FAQ first. That's why they exists.
I am curious as to if this is possible that the three step of the TCP
connection is bypass somehow, or not completed when it is connecting
directly to the apache server on OpenBSD? I wouldn't think so, but may
be I am missing something or not understanding something here.
I am asking as I have
Nick Guenther wrote:
No it's not possible to bypass the handshake. These must be zombie
hosts. Compromised Windows boxes go for 5cents, I hear. You should try
to figure out who would want to do this to you.
Well finding the source of this as you can imagine is not that easy.
In my database rig
Nick Guenther wrote:
Additionally I just ran nmap on the address listed in your log and
although it didn't identify it positively it says it's a windows box.
So there you go. It has an open port at 1026/tcp and I'll bet that's
the control channel.
Got to love Micro$oft I tell you. If true, they
Ryan Corder wrote:
On Wed, 2006-08-23 at 20:36 -0400, Daniel Ouellet wrote:
200.82.74.176 - - [23/Aug/2006:12:42:37 -0400] "GET
/events/index.php?EventID=58 HTTP/1.1" 200 5 "-" "Mozilla/4.0
(compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)"
the follo
If I may ask. One part of my original question was if the CARP interface
is view as a bridge setup as far as Sync Proxy is concern. Is it the
case here? What I understand of the FaQ is clear for not working on
bridge setup, however, it's not clear to me if CARP setup is view as
bridge as well.
Joachim Schipper wrote:
Did you already check that the page is, indeed, the page you expect it
to be? And not, say, some botnet-controller?
Yes I did and even moved it and replace it with special hacking of my
own there. (;>
Not that dumm. But thanks for your concern. (;>
Plus it is really
t
are really minimal, but if I am not working at it seriously, it may well
become a night mare sooner then I would like if you follow my drift.
Thanks for your suggestions never the less.
Ryan Corder wrote:
On Thu, 2006-08-24 at 12:30 -0400, Daniel Ouellet wrote:
I am now up to 11,149 simult
Here is an interesting approach. Could spamd be use here?
I was suggested that may be I fight to much spamer and that I got
reposted to this. Well very possible.
I got a suggested that may be trapitting the connections might help.
Hmmm. Could this be done. Obviously not want to delay connecti
I am trying to log the "Passive Operating System Fingerprinting" of
connections inside my PF and I guess I don't know if that's possible. Is
it possible to do so?
I have a list of 46K computers that from the logs are all the same OS,
patch, etc and I want to get the OSFP of it to see what it m
Ryan McBride wrote:
On Mon, Aug 28, 2006 at 09:15:44PM +0200, Joachim Schipper wrote:
On Mon, Aug 28, 2006 at 11:58:39AM -0600, Tim Pushor wrote:
Only question is to whether or not to use the/a carp address for the DNS.
It will work, but as noted, there's no particular reason to do this;
redun
Stuart Henderson wrote:
On 2006/08/28 15:26, Daniel Ouellet wrote:
I have a list of 46K computers that from the logs are all the same OS,
patch, etc and I want to get the OSFP of it to see what it might be and
if that's the only connection with that specific signature.
If you log the tr
I looked at the site:
http://lcamtuf.coredump.cx/p0f-help/
There isn't any updated signature file available at this time right?
I know there is a new beta version of the p0f there.
Just wondering?
I also see in the docs that:
# KEEP IN MIND: Some packet firewalls configured to normalize outg
Joachim Schipper wrote:
However, *if* he did, you might have some interesting tricks to play on
him. Many scanners [1], for instance, will not send a SYN twice - and
(almost?) all TCP/IP stacks will. Dropping the first SYN from a new IP
can be done easily with pf, and while the impact on legitima
601 - 700 of 1185 matches
Mail list logo
