Do interface groups support altq? It would appear that they do not,
but I might have a borked kernel/pfctl utility, so wanted to ask the
list to make sure. When I try to put altq on an interface group, i get
the following when parsing my pf.conf:
$ sudo pfctl -f /etc/pf.conf -n
pfctl:
Well, I know when I set /etc/localtime to
/usr/share/zoneinfo/US/Eastern, it automatically compensates for
daylight savings time, so I imagine if you set /etc/localtime to
/usr/share/zoneinfo/GB it would do the same, unless I'm completely
misunderstanding how the time zone files work (or that GB
On 8/17/05, Henning Brauer [EMAIL PROTECTED] wrote:
* Jason Crawford [EMAIL PROTECTED] [2005-08-17 18:47]:
Do interface groups support altq?
in the sense of queuing on interface groups, no, not really.
Is this a work in progress? Planned but after 3.8? Or is this not possible?
Thanks
On 8/18/05, Tim [EMAIL PROTECTED] wrote:
Hello
1. I have a old computer that is slow and has little memory. But I want to
keep it updated with patches. I can't compile these patches on the system but
I could do it on another faster system. But how can I later apply the
compiled patches
On 8/18/05, Scott Plumlee [EMAIL PROTECTED] wrote:
Nick Holland wrote:
Tim wrote:
Hello
1. I have a old computer that is slow and has little memory. But I
want to keep it updated with patches. I can't compile these patches
on the system but I could do it on another faster system. But
On 8/23/05, Will H. Backman [EMAIL PROTECTED] wrote:
-Original Message-
From: j knight [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 23, 2005 4:47 PM
To: Will H. Backman
Subject: Re: /usr/share/pf/ suggestion
--- Quoting Will H. Backman on 2005/08/23 at 14:59 -0400:
On 8/23/05, Stuart Henderson [EMAIL PROTECTED] wrote:
--On 23 August 2005 17:25 -0400, Jason Crawford wrote:
Secondly, it seems pretty pointless to setup pf on a single host.
It has it's uses - spamd, for one...
Which is already covered in the spamd man page and doesn't need
another
On 8/23/05, Theo de Raadt [EMAIL PROTECTED] wrote:
Secondly, it seems pretty pointless to setup pf on a single host.
That is the most ridiculous thing I've heard all day. Lots of people
run servers and must block them, on the
On 8/23/05, Theo de Raadt [EMAIL PROTECTED] wrote:
That is the most ridiculous thing I've heard all day. Lots of people
run servers and must block them, on the same machine. Probably every
single one of us.
I'm not sure I understand what you mean. If you're going to run a
server,
On 8/24/05, Bryan Irvine [EMAIL PROTECTED] wrote:
I personally like to 'pass keep state' with a 'scrub all' rule. This
at least gives me some interesting statistics to poke at when I'm
bored. Plus, I can firewall who gets to ssh into my machine.
Another good use is {max-src-states ##}
Put:
named_flags=
in /etc/rc.conf.local
and bind will work. Edit files in /var/named/ directory to suit your
needs as well, but the above line in /etc/rc.conf.local will start
named on boot, and it will just work. Read /etc/rc.conf to see how to
start other daemons, but put changes into
I updated my cvs tree today, and recompiled GENERIC with today's
source, and now the system crashes on boot, telling me that it cannot
read the disk label, but a GENERIC from two days ago can read the disk
label just fine. Here is the working dmesg from GENERIC of two days
ago, and dmesg from
On 8/25/05, Jason Crawford [EMAIL PROTECTED] wrote:
On 8/25/05, Jason Crawford [EMAIL PROTECTED] wrote:
I updated my cvs tree today, and recompiled GENERIC with today's
source, and now the system crashes on boot, telling me that it cannot
read the disk label, but a GENERIC from two days ago
On 9/20/05, John Brahy [EMAIL PROTECTED] wrote:
I've got two poweredge 2650's w/ PERC 3/di raid cards and I've tried OpenBSD
3.7, 3.6 and 3.5. I've found that the aac in 3.7 is completely unstable, the
aac in 3.6 would have problems after an hour or so of heavy use. BUT, 3.5
seems to be stable
I believe this has been discussed many times on the list, however here
is a basic rundown:
OPENBSD_X_Y_BASE is the code that appears on the CD, it's a sticky tag
of the release code that doesn't change
OPENBSD_X_Y is the stable branch that is based off of the previous
tag, and is mostly just
I ran into the same issue myself, as I have a server with the aac raid
card, and no way to upgrade from 3.6 to 3.7 (I'm running 3.8-release
on it now). Reading the archives and various upgrade faq's on
OpenBSD's website, I found a method that worked for me, but no
guarantees for anyone else.
] wrote:
On Thu, 2005-09-29 at 13:40:36 -0400, Jason Crawford proclaimed...
I ran into the same issue myself, as I have a server with the aac raid
card, and no way to upgrade from 3.6 to 3.7 (I'm running 3.8-release
on it now). Reading the archives and various upgrade faq's on
OpenBSD's
Unless things have changed since I last asked this same question,
interface groups don't work in altq. Next time search the archives.
Jason
On 10/10/05, Karl-Heinz Wild [EMAIL PROTECTED] wrote:
maybe i've missed something.
ifconfig rl0 group wan_if
pf.conf:
- altq on wan_if cbq bandwidth
telnetd was completely removed from the source tree around the end of may,
soon after 3.7 was released. As far as an alternative, why does sshd not
work? There are ssh daemons for almost all other operating systems, unless
maybe you're using OpenVMS or Plan9 (although I think there is at least one
), yes it is bad not have telnetd running. Matthew is
quite
right, telnet is live and will be for very long time. It was a bad
choice
to be removed from the source tree. You reduce your options.
Above, I am not arguing pro/contra telnetd, or sshd!
Ioan
Jason Crawford [EMAIL PROTECTED] 08
gnu c compiler, 'man cc' next time
On 5/5/05, Joco Salvatti [EMAIL PROTECTED] wrote:
Hi all,
I'd like to know which compiler is used in OpenBSD's kernel compiling
process.
Thanks.
--
Joco Salvatti
The wonderful thing about using the GENERIC kernel is that it'll work
on any box with supported hardware. The only thing I can think of that
you may have to compensate for is any network cards that might be
different. If all your using is the onboard LAN, and no addon cards,
then that should even
man 8 ipsecadm
man 8 vpn
man 1 openssl (and related man pages in SEE ALSO section)
view /usr/share/ipsec/rc.vpn
Those are the ONLY docs I ever used when I created a big, high-traffic
mesh VPN (7 Firewalls, each had a VPN to the other 6 Firewalls) that
could handle quite a few pps. That's just the
There are more factors to what OS you want to run other than if it was
written specifically for the hardware you are using. With Solaris's
security record, I wouldn't personally want to run it on any server
that the Internet can touch if I can help it. That and developing an
OS on as many
My guess is you need to put a copy of /etc/resolv.conf in the apache
chroot (as in, /var/www/etc/resolv.conf), because your webmail
application is trying to resolve the hostname for the pop server. If
you are using a hostname, try an IP, if they are on the same box, tell
it to use 127.0.0.1 for
Like everyone (including me) has said, just use OpenBSD source. It
looks like TLS is enabled in OpenBSD's sendmail, so it's just a simple
matter of commenting out the few lines in the Makefile(s) to disable
it, then recompiling. The source code is all there, please just take a
look. You're still
I don't see lladdr in the OpenBSD 3.7 version of the online man page,
maybe you should check that. The default man pages for the website are
current, unless you specify a stable version. Make sure you do that
next time. Back on lladdr, you must use a snapshot in order to get it,
as it was put in
I know php4, both core and extentions builds fine for me in 3.6. Is
there any reason why you're not just using packages? They're all on
the FTP site, including the latest ones for 3.6. Otherwise, my guess
is that something is out of sync with your ports tree (you're at least
missing the distinfo
Well, as long as where ever the mysql unix socket is located is on the
same partition as apache, you can just create a hard link for it
inside the apache chroot. Another option is to make the mysql server
listen on localhost, and have phpBB2 connect via localhost. The
benefit to that is that it
On 6/9/05, John Tate [EMAIL PROTECTED] wrote:
Right, I created a hardlink of the socket into
/var/www/mysql/mysql.sock and changed this directive in php.ini to the
following...
mysql.default_socket = /var/www/mysql/mysql.sock
There is part of the problem, as when apache is chrooted, it
It's very simple, try reading the ftp-proxy man page, as it has an
example for exactly what you're doing, something like:
rdr on $int_if inet proto tcp from $int_net to any port ftp -
127.0.0.1 port 8021
I believe pf.conf man page also has examples for this too. Really,
read the docs, because you
Yes, it is possible to have /dev on mfs, however that would mean you'd
have to run MAKEDEV on every boot after mounting the /dev memory file
system. Really, with the way flash cards are nowadays, putting the
noatime option in /etc/fstab is more than enough (and not running a
busy caching proxy of
On 6/10/05, -f [EMAIL PROTECTED] wrote:
dear list,
a nice cup of coffee in front of me, and as a big fan of
robert x., let me reflect a bit on the phenomenon called
misc@openbsd.org... will try to keep it short.
a couple of days ago, there was a quite big thread about optimized
kernel
I've taught quite a few children, ranging from the 5 - 17 year range
(I've taught adults too, but has nothing to do with this discussion) a
lot, and I agree with Rick on his views. If a kid can't learn how to
cope with being wrong, and being told to actually read something, well
then we'll end up
Something that I do (on a local network, not across the internet) is
build stable on a fast machine using make release (man 8 release),
then push it to an ftp server, and do ftp upgrades. I find that a lot
easier than walking around the lab with a cd. Especially if you can do
the updates remotely
properly, I would have answered it.
On 6/10/05, Jason Crawford [EMAIL PROTECTED] wrote:
It's very simple, try reading the ftp-proxy man page, as it has an
example for exactly what you're doing, something like:
rdr on $int_if inet proto tcp from $int_net to any port ftp -
127.0.0.1 port 8021
On 6/11/05, Thorsten Glaser [EMAIL PROTECTED] wrote:
Jason Crawford dixit:
Yes, it is possible to have /dev on mfs, however that would mean you'd
have to run MAKEDEV on every boot after mounting the /dev memory file
system.
Cannot -P do this?
Yup, sure can. However if you have
Truely amazing work Henning. OpenBSD already leads the way (at least
in my opinion) for a packet filter, whether it's commercial or open
source, and these latest additions will make my life so much easier.
If there is any more testing that needs to be done, I have many spare
computers, almost
The OP was trying to compile it on amd64, which it won't work on.
You're using it on i386, which it *sort of* works on. But it was
removed from the GENERIC kernel for i386 right before 3.7 was tagged,
and if there has been any work done to the kernel which might have
broken aac, no one would know
:
Well that's the official stance, but i'd hope the developers realise that
many people have already purchased adaptec and will mainain the driver for
breakages even if its not officially compiled in.
Brad.
From: Jason Crawford [EMAIL PROTECTED]
Reply-To: Jason Crawford [EMAIL PROTECTED
On 6/23/05, Mike Koponick [EMAIL PROTECTED] wrote:
Hello,
I'm a newbie to OpenBSD and I'm looking at designing a redundant
webserver and MySQL server. I think I have the MySQL side covered with
the MySQL functionality.
However, I'm curious to know if anyone has used CARP/PFSYNC as a
By default, OpenNTPd doesn't listen on any port, it just acts as a
client for the local machine only. In order for it to serve time to
other machines on your network, you must uncomment the listen * line
in /etc/ntpd.conf, then send a SIGHUP to ntpd, or restart it, in order
for it to listen on
OpenNTPd should work just fine, does for me.
My entire network (including my XP machines) sync against OpenNTPd
running on current just fine.
Jason
On 6/26/05, J.D. Bronson [EMAIL PROTECTED] wrote:
At 04:29 PM 6/26/2005, Jason Crawford wrote:
By default, OpenNTPd doesn't listen on any port, it just
If you want the closest you can get to SCSI without actually going
SCSI, try the LSI Logic MegaRAID SATA 300-8X controller. It uses the
SATA-II spec, so you get 3.0gbps throughput, plus you have NCQ, which
can queue up to 32 commands (IIRC). It's still no U320 SCSI setup, but
it's much much much
On 6/29/05, Gordon Grieder [EMAIL PROTECTED] wrote:
On Wed, Jun 29, 2005 at 10:20:44AM -0400, Jason Crawford wrote:
So just because I'm too poor to get a colocated server, if I want to
run my own mail server, I'm just shit out of luck? That seems
unacceptable to me. The ability to run
OpenBSD's spamd (as far as I understand it) handles grey-listing
completely inside itself, and doesn't consult an smtp server in any
way, so you could run whatever smtp server you wished. Are you having
problems with it? Or is this just asking to clarify?
On 6/29/05, Roy Morris [EMAIL PROTECTED]
I don't see how bandwidth would increase, since the spam servers are
sending you mail whether they are blacklisted or not. Blacklisting an
IP doesn't magically make it stop sending bytes to your computer via
the internet. I don't really see how it would cause any additional
server space either.
On 6/29/05, Matthew S Elmore [EMAIL PROTECTED] wrote:
Jason Crawford wrote:
So just because I'm too poor to get a colocated server, if I want to
run my own mail server, I'm just shit out of luck?
Yes.
This is something that should be fixed, no?
That seems unacceptable to me
Come on, seriously. Do you expect any type of useful help with a plea
that consists of:
Things stopped working!
Some important network info (which I won't include) didn't seem to
show anything wrong!
help!
Do YOU think you could help someone that gave you so little information?
You even mention a
On 6/30/05, Dave Beckstrom [EMAIL PROTECTED] wrote:
Jason,
Uh...your inexperience is showing. :) The title of the post is DOS
My inexperience is showing? Bad assumption on your part.
attacks? My question was, Has anyone heard anything about any worms or
DOS attacks happening which might
On 6/30/05, Dave Beckstrom [EMAIL PROTECTED] wrote:
Eric,
I haven't posted that information because we haven't ascertained yet that
the problem lies with my system.
Well considering that this doesn't appear to be happening to ANYONE
ELSE, I'd say that's good enough reason for you to AT LEAST
http://openbsd.org/ports.html
Read that, it explains everything, but basically:
If you have a CD set, there is a file called ports.tar.gz on the 3rd
CD. Go into /usr and extract it. After that, update it via CVS (which
is explained on the ports.html webpage, or anoncvs.html web page) to
the stable
On 7/7/05, Markus Wernig [EMAIL PROTECTED] wrote:
Hello all!
After some years of other unices, I finally got a chance to have a go at
a very interesting project with openbsd (redundant hot failover ipsec
gateway + firewall). Everything works just fine up to now, but when I
tried to
On 7/11/05, Chris [EMAIL PROTECTED] wrote:
On Mon, 11 Jul 2005, Adam Fabian wrote:
I've tried building an OpenBSD release from the 3.7-stable branch a
few times in the last few days, on two different i386 machines, and
both stopped in the same place. I'm following release(8) closely and
On 7/28/05, Sharad Birmiwal [EMAIL PROTECTED] wrote:
hi all
i'm new to OpenBSD. i've worked on linux but wanted to try OpenBSD for
a test firewall and file server that i have to build.
i'm using a Pentium-1 (133 Mhz) box with 16 MB ram. i downloaded the
iso file and all the packages for
On 7/30/05, Theo de Raadt [EMAIL PROTECTED] wrote:
Hifn has a new crypto card out since may, HIPP 7855 HXL, does anyone
know if this is supported?
Regards,
Fredrik Widlund
http://www.hifn.com/products/HIPP7855HXLboard.html
I got tired of talking to hifn.
We keep saying make all
On 12/1/05, Jeremy C. Reed [EMAIL PROTECTED] wrote:
I am trying to get the latest OpenBSD HEAD (-current) of the CVS
repository (RCS ,v files) using cvsup. But it is old.
My retrieved CVSROOT/ChangeLog goes up to 2005/05/03 23:12:53
CVSROOT/config and CVSROOT/options has:
tag=OpenBSD
On 12/1/05, Jason Crawford [EMAIL PROTECTED] wrote:
On 12/1/05, Jeremy C. Reed [EMAIL PROTECTED] wrote:
I am trying to get the latest OpenBSD HEAD (-current) of the CVS
repository (RCS ,v files) using cvsup. But it is old.
My retrieved CVSROOT/ChangeLog goes up to 2005/05/03 23:12:53
On 12/2/05, Jimmy Scott [EMAIL PROTECTED] wrote:
On Fri, Dec 02, 2005 at 06:14:18PM +0100, Sebastian Rother wrote:
I scrited with pdksh all the time lon for now.
Now I'm interested into learning another Scripting-Language.
I can't decide between Perl and Python.
Perl has a lot modules
On 12/2/05, Miod Vallat [EMAIL PROTECTED] wrote:
http://www.perl.com/download.csp#srclic
It is NOT gpl'ed.
According to this:
http://www.openbsd.org/cgi-bin/cvsweb/src/gnu/usr.bin/perl/README?rev=1.8content-type=text/x-cvsweb-markup
it is GPL'd.
According to this very same file, it
On 12/11/05, Andreas Bartelt [EMAIL PROTECTED] wrote:
Hi all,
according to http://www.openbsd.org/faq/faq4.html#SpaceNeeded 250 MB for
/usr is sufficient, in case X isn't installed on an OpenBSD system. My
/usr partition (located on a 512 MB CompactFlash drive) recently has
reached its
On 12/12/05, Peter Landry [EMAIL PROTECTED] wrote:
Hi All,
We're migrating an old Microsoft ISA Server system to OpenBSD pf. First
off, before I ask any questions, kudos to everyone -- Installing OpenBSD
3.8 was a very pleasant, painless experience for someone who's never
used it before.
I think the very first thing you should change is use the raw device
in OpenBSD (/dev/rsd0c) and that should speed things up a bit.
Jason
On 12/15/05, chefren [EMAIL PROTECTED] wrote:
Wiping identical 18GB SCSI disks on same Dell 1750 machine:
OpenBSD 3.8:
dd if=/dev/zero of=/dev/sd0c
On 16 Dec 2005 14:41:38 -0800, Randal L. Schwartz merlyn@stonehenge.com wrote:
Theo == Theo de Raadt [EMAIL PROTECTED] writes:
Theo If you get stuck doing an upgrade build, please do a standard upgrade
Theo or reinstall.
Theo We have never promised that such builds will work perfectly, nor
On 12/19/05, openbsd shen [EMAIL PROTECTED] wrote:
How to switch the terminal in OpenBSD, it looks is not Alt+F[1-7] likes
Linux.
http://www.openbsd.org/faq/faq7.html#SwitchConsole
Try reading the damn documentation first. Also try reading
http://www.openbsd.org/mail.html as well, thoroughly
On 12/19/05, Michael Alexander Hamburg [EMAIL PROTECTED] wrote:
Hello to the list,
I'm working on a cryptography project, and one of the things the project
requires is a moderately high-bandwidth source of truly random numbers.
To accomplish this, I set up OpenBSD on a board with a (Soekris)
On 12/22/05, Graham Toal [EMAIL PROTECTED] wrote:
Just an update on the popularity of the OpenBSD 3.8 VM image:
Since it was posted on Dec 19 (4 days ago), apache logs have shown 2826
hits on the file with just over 277 gigs of traffic created by those
downloads.
Not bad for only a few
On 12/22/05, martin [EMAIL PROTECTED] wrote:
Hello.
I've been running other firewalls on this IP address with the same
settings in the past, but am having problems setting up the Gateway
with OpenBSD 3.8. It comes back with no route to host and when I do
a nestat -rn, the Gateway is
On 12/22/05, martin [EMAIL PROTECTED] wrote:
--- Jason Crawford [EMAIL PROTECTED] wrote:
IP - 209.216.76.1
Netmask - 255.255.255.252
GW - 209.216.77.6
Either a typo in your netmask, or a typo in your gateway, since your
gateway IP does not belong to the current netmask you
On 12/22/05, J.D. Bronson [EMAIL PROTECTED] wrote:
How can I tell what version the BDB is that comes within OpenBSD 3.8?
thanks
Check out http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/db/ to
see the one included with OpenBSD, and /usr/ports/databases/db/ for
other versions.
Jason
On 1/9/06, Russell Fulton [EMAIL PROTECTED] wrote:
I am just starting to upgrade all my obsd boxes to 3.8. I have a copy
of the official CDs -- I know the the ISOs are copyright but is there a
way of burning an updated set so I don't have to patch each system
individually?
Alternately, with
On 1/20/06, Alexander Farber [EMAIL PROTECTED] wrote:
Maybe because they are tagging it 3.9?
Unless they decided to suddenly change how they release OpenBSD, they
most certainly are not. 3.9 has JUST moved to beta yesterday (or 2
days ago, I forget) and trust me, you don't want to tag early
On 1/25/06, Matthew Closson [EMAIL PROTECTED] wrote:
Hello,
Is there a way to view how many inodes are still available on a partition.
I'm decompressing a ton of small files onto a 60Gb onto my /dev/wd1a. And
I'm not really concerned about running out of space, but possibly out of
inodes, I
On 2/7/06, Marcin Wilk [EMAIL PROTECTED] wrote:
Why change that
It is apache, but with some pathes. But still iti s apache (changing
name may be bad for futurre coders, that wouldl ike to make somep
lugin for OpenBSD http server, before they will start to make it,
theyw ill have to learn,
On 2/8/06, Jason Crawford [EMAIL PROTECTED] wrote:
On 2/7/06, Marcin Wilk [EMAIL PROTECTED] wrote:
Why change that
It is apache, but with some pathes. But still iti s apache (changing
name may be bad for futurre coders, that wouldl ike to make somep
lugin for OpenBSD http server, before
On 2/13/06, Dave Feustel [EMAIL PROTECTED] wrote:
On Monday 13 February 2006 13:51, dereck wrote:
This is getting ridiculous! The guy said he was under
attack.(!) What is the point of a _misc_ list anyway?
He's not clogging the dev list!
The responses here are totally out of line.
On 2/13/06, Dave Feustel [EMAIL PROTECTED] wrote:
On Monday 13 February 2006 14:52, Jason Crawford wrote:
You cannot learn all there is to know about bpf and how to effectively
use it in 10 minutes, so you, personally, do NOT need to use bpf at
all. It's what the other utilities like pf
On 2/13/06, Matthias Kilian [EMAIL PROTECTED] wrote:
On Mon, Feb 13, 2006 at 02:03:27PM -0700, Diana Eichert wrote:
find /usr/src -name *.[c|h] -exec grep 'bpf.h' /dev/null {} \;
^(a) ^(b)
(a) I doubt there are any file names ending in a pipe symbol in
On 2/13/06, Stuart Henderson [EMAIL PROTECTED] wrote:
On 2006/02/13 16:53, Jason Crawford wrote:
On 2/13/06, Matthias Kilian [EMAIL PROTECTED] wrote:
On Mon, Feb 13, 2006 at 02:03:27PM -0700, Diana Eichert wrote:
find /usr/src -name *.[c|h] -exec grep 'bpf.h' /dev/null
On 2/13/06, Stuart Henderson [EMAIL PROTECTED] wrote:
On 2006/02/13 17:28, Jason Crawford wrote:
Well in the case of /usr/src, I think you must MIGHT hit the maximum
argument length for the shell by using xargs
I haven't seen xargs do the wrong thing here. Embedded spaces annoy,
but that's
On 2/13/06, Andrew Pinski [EMAIL PROTECTED] wrote:
On Feb 13, 2006, at 9:24 PM, Damien Miller wrote:
Because that will fail when there are too many arguments, and will
probably break on filenames with spaces (use xargs -0 for these).
Why not use -exec in find?
find . -type f -name ttt
On 2/13/06, Andrew Pinski [EMAIL PROTECTED] wrote:
On Feb 13, 2006, at 9:53 PM, Jason Crawford wrote:
On 2/13/06, Andrew Pinski [EMAIL PROTECTED] wrote:
On Feb 13, 2006, at 9:24 PM, Damien Miller wrote:
Because that will fail when there are too many arguments, and will
probably break
On 3/28/07, John Brahy [EMAIL PROTECTED] wrote:
So if I use GENERIC and then disable ipv6 is that a safe thing do to? In
light of the recent security issue and since I don't use ipv6 I thought it
would make the system more secure, but I definitely don't want to make it
unstable.
If you follow
On 5/10/07, Claus Assmann [EMAIL PROTECTED] wrote:
On Thu, May 10, 2007, Hannah Schroeter wrote:
Just trying to cvsync my stuff. And it wants to remove quite much:
hostname cvsync.de.openbsd.org
same problem with
anoncvs1.usa.openbsd.org
and
anoncvs3.usa.openbsd.org
I talked
On 6/18/07, Juan Miscaro [EMAIL PROTECTED] wrote:
Hi gang,
I would like to run VMware on Linux and use OpenBSD as a VM to act as
my Internet gateway (pf, postfix, spamfilter). I will have another
Linux VM or two that will act as fileserver and lan services. I would
like to provide internet
Hello Misc,
While I was reading through the man pages for ipsec.conf and
ipsecctl, I noticed that for automatic keying there is no way to
specify any type of key size. I was wondering if anyone know of a way
to do that, because I am very interested in setting up strong crypto
ipsec tunnels
On Feb 7, 2008 11:09 AM, Christian Weisgerber [EMAIL PROTECTED] wrote:
Jason Crawford [EMAIL PROTECTED] wrote:
While I was reading through the man pages for ipsec.conf and
ipsecctl, I noticed that for automatic keying there is no way to
specify any type of key size. I was wondering
On Wed, Feb 20, 2008 at 2:02 PM, LeRoy, Ted [EMAIL PROTECTED] wrote:
I'm taking a class on system security. We're in teams and we have to
allow attacking teams ssh access to our devices.
I'd like to limit the user account access for the other groups,
permitting them a shell and a few
On 3/3/06, Gustavo Rios [EMAIL PROTECTED] wrote:
Hey folks,
i have an sun workstation in hand and had never had a previous
experience with sun hardare before. I would like redirect console to
serial port. These machine are very old, and hardware documentation
has been lost. It has a serial
On 3/3/06, Matthew Weigel [EMAIL PROTECTED] wrote:
Jason Crawford wrote:
there, sorry. But as far as getting serial console to work, all you
have to do is make sure that a keyboard and monitor are NOT plugged
Actually, just the keyboard has to be unplugged. :-)
Cool since I sold my U5
I am soon going to be getting an Octane with dual R12000SC CPUs. I was
wondering how well OpenBSD would work on this computer (I am pretty
sure there isn't SMP support on the SGI stuff yet) and how much help
is needed in getting the SGI port to work even better.
Jason
On 3/11/06, Roger Neth Jr [EMAIL PROTECTED] wrote:
On 3/11/06, Jason Crawford [EMAIL PROTECTED] wrote:
I am soon going to be getting an Octane with dual R12000SC CPUs. I was
wondering how well OpenBSD would work on this computer (I am pretty
sure there isn't SMP support on the SGI stuff yet
On 3/11/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
On Sat, 11 Mar 2006 11:51:24 -0500, Jason Crawford
[EMAIL PROTECTED] wrote:
I am soon going to be getting an Octane with dual R12000SC CPUs. I was
wondering how well OpenBSD would work on this computer (I am pretty
sure there isn't SMP
On 3/21/06, Hutger H. [EMAIL PROTECTED] wrote:
Hi folks,
I've been looking for a consolidated IDS solution that I can deploy in
my network. Snort is really a good option but currently it seems that
they are charging for updates, it that true? I'd like to find out a free
of charge Linux, or
On 3/23/06, Bob Bostwick (Lists) [EMAIL PROTECTED] wrote:
Is that why /snapshots/packages/i386/ is not available? I'm probably
going to get yelled at for asking this, but I really don't know the
answer. I just upgraded to -current, if I can't use
/snapshots/packages/i386/ for installing
On 4/23/06, Falk Husemann [EMAIL PROTECTED] wrote:
I (maybe like you) just read the corresponding article on TheRegister
(http://www.theregister.co.uk/2006/04/21/drc_fpga_module/).
I'd bet it wont make it to mainstream if compilers don't support it.
What do you think?
I think FPGA's are
On 5/11/06, rjn [EMAIL PROTECTED] wrote:
Hi all,
I'm looking into getting a new laptop (I start college in the fall).
In particular, I'm looking for something OpenBSD compatible. I
considering either a Lenovo Thinkpad or the MacBook Pro. From what
I've seen you can only boot the macbook pro
On 5/18/06, holger glaess [EMAIL PROTECTED] wrote:
hi
i try to use an interface group name together with altq in my firewall config .
example
ifconfig bge0 group wan_if
altq on wan_if cbq bandwidth 100Mb queue { std, www, ssh, admin }
if i try to aktivate this i got an syntax error from
On 5/26/06, Craig Hammond [EMAIL PROTECTED] wrote:
I am wanting up upgrade a 3.8 system to 3.9
I normally do this by backing up any data I need and doing a clean
install.
It's mainly the whitelisted entries I want to keep over the rebuild.
I figured out to extract them by going:
spamdb | grep
On 5/26/06, Diego Giagio [EMAIL PROTECTED] wrote:
On 5/25/06, Ted Unangst [EMAIL PROTECTED] wrote:
how many parse_config functions do you think spamd needs?
It was an example. The point is: is there a reason for not using
static on functions with internal linkage? There's at least one reason
1 - 100 of 129 matches
Mail list logo