Re: "Virtualizing" firewalling scenarios in one physical OpenBSD host

On Wed, Jul 04, 2012 at 09:29:04AM +0200, C. L. Martinez wrote: > Hi all, > > I wonder if with OpenBSD is possible to create virtualized firewalled > implementations of conventional physical topologies and designs such > as central and remote DMZs (my question has nothing to do with > virtualizat

Re: Accounting and external logging?

On Tue, Jul 03, 2012 at 11:28:34AM +0200, Johan Ryberg wrote: > Hi. > > I need to log all user activity and store the data on a logging facility. > > Accouting provides some information but not all. > > Is it possible to use syslog and transmit every command entered by the users? accouting does

Re: multi-port serial card

On Thu, Jun 28, 2012 at 01:43:10PM +0200, Stefan Sperling wrote: > I use this 6-port card and it works well: > > puc0 at pci0 dev 14 function 0 "NetMos Nm9845" rev 0x01: ports: 6 com > com3 at puc0 port 0 irq 10: ns16550a, 16 byte fifo > com4 at puc0 port 1 irq 10: ns16550a, 16 byte fifo > com5 at

OT: FYI: LogFS/CloudFS - distributed FS under 'AS-IS' license

As all distributed FS are under GPL... I've thought to just inform you about a prototype under 'AS-IS' license. url: https://github.com/vmware/CloudFS paper: https://github.com/vmware/CloudFS/blob/master/papers/osr.pdf jirib

8-ports serial card compatible with OpenBSD

Hello, could anybody recommend OpenBSD compatible 8-ports serial card? I'd like to build a small console server. Thank you. jirib

Re: let user can only run one command (passwd)?

On Thu, Jun 14, 2012 at 06:01:14PM +0800, f5b wrote: > I have setup OpenSMTPD + dovecot + roundcube simple mail server. > People can ssh log in to the OpenBSD box, change their password using command > passwd, > the system account password is also the mail account password. > > So, for security r

Re: About wine ?

On Mon, Jun 11, 2012 at 03:49:21PM +0200, Peter Laufenberg wrote: > I personally don't care for WINE but would really like to know more more > about virtualization options on OpenBSD hosts; VirtualBox is the only reason > I need to keep some Debian hosts around (that and my secret crush on Larry

Re: About wine ?

On Mon, Jun 11, 2012 at 10:35:50AM +0800, z_axis wrote: > I know wine port has been stopped. I wonder whether or not it is > applicable to port wine to OpenBSD ? > Wine works great on FreeBSD, why cannot it run on OpenBSD ? Somebody has to resolve the issues in the code :) Take it from ports in

Re: Gnome under OpenBSD 5.1

On Sun, Jun 10, 2012 at 04:11:30PM +0200, Tomasz Marszal wrote: > Hi > I did a little research on the net and i would like to share with you what > i found. > First of all Gnome 3 dont work under OpenBSD at least for me when compiled > from the port it loops and compile the same portion of code al

OT: bitrig relation to OpenBSD

Hi, is bitrig fork just because of license, goals issue or is this also because some disagreements between developers? I personally would love to see completely different things get improved in OpenBSD than stuff in their 'roadman' https://www.bitrig.org/index.php?title=Roadmap Anyway,

Re: Customizing the install process

On Thu, Jun 07, 2012 at 08:30:49PM +0200, Tomasz Marszal wrote: > http://en.wikipedia.org/wiki/Preboot_Execution_Environment > http://en.wikipedia.org/wiki/IPXE > http://logout.sh/computers/linux/netboot/ (this is for Linux but BSD config > will be pretty much the same ) > > simply type "pxe boot

Re: OpenBSD 5.1 XEN HVM DomU - kernel panic

On Thu, Jun 07, 2012 at 11:29:16AM +0200, Andre Keller wrote: > I might try KVM instead of XEN, as some offlist comments suggested > that it is running stable on KVM... ESXi has been used the most as host for OpenBSD, but still it is not bare-metal. Or use your pocket money for buying a SPARC wit

Re: More bgpd problems

On Tue, May 29, 2012 at 09:25:16PM +0200, Peter J. Philipp wrote: > Recompile the bgpd with debugging symbols (CFLAGS+=-g, LDFLAGS+=-g). And > install that. I have thought -current is compiled with debug, isn't it? jirib

IBM x3850/x3950 OpenBSD dmesg

Hi, we will be deactivating some old servers. I will try to boot OpenBSD and provide dmesg. |Product NameIBM x3850-[88634SG]- |Product NameIBM 3850 M2 / x3950 M2 -[71414RG]- Anybody in

Re: HW upgrade options, opinions please?

On Wed, May 23, 2012 at 11:49:28PM +1000, David Diggles wrote: > I have been googling around for HW upgrade options for my > OpenBSD routers for my home setup. > > I have a pair of routers, running carp ip load balancing on > the LAN segments, failover on the WAN. > > Consideration: > > Upgrade

Re: Upgrading OpenBSD

On Mon, May 21, 2012 at 11:01:59PM -0400, Kenneth R Westerback wrote: > There are various automated install tools out there too, but not > (yet) officially part of the release. Does it mean something is being prepared? If so, can that be xml based like autoyast? LOL : jirib

Re: Upgrading OpenBSD

On Mon, May 21, 2012 at 06:43:19PM -0700, Richards, Toby wrote: > While my question involves other BSD's as well as Linux systems, I am > asking this here because OpenBSD's philosophy is the most attractive > to me. > > I've got about 50 servers to manage. OpenBSD does have an Upgrade > option, bu

Re: filtering hostnames on syslog

On Mon, May 14, 2012 at 09:06:57PM -0300, Friedrich Locke wrote: > I am seeking for a solution that allows something like: > > Every log from ip address a.b.c.d will be written to /var/log/host-x > Every log from ip address x.y.z.k will be written to /var/log/host-y > > Got the ideia ? > > Is th

Re: filtering hostnames on syslog

On Mon, May 14, 2012 at 04:01:33PM -0300, Friedrich Locke wrote: > Dear members list, > > i have setted up a syslog server in order to receive messages from a > set of servers. It is working ok, but i would like to write messages > based on hostname filter. Is it possible? > Do you have any experi

Re: Accessing /etc/hostname.* via raw disk

On Wed, May 09, 2012 at 03:40:22PM +0530, Amarendra Godbole wrote: > Hi, > > I have an OpenBSD guest VM, which needs to be configured before it > boots up. I can access the OS through the VMWare APIs', but then need > to configure the /etc/hostname.* file to update the IP address. One > way I can

Re: Considering laptops: Thinkpad T410, T420 others?

On Fri, Apr 27, 2012 at 09:28:42AM -0700, Ian Dotson wrote: > I'm looking for a laptop that will run -current without too much > fiddling. Currently considering a Thinkpad T410 or T420 -- anyone who > has one want to share how well it works? Have recent changes fixed > problems[1] with the console

Re: Mosh? seems dangerous!

On Wed, Apr 11, 2012 at 08:33:08PM +0200, Gilles Chehade wrote: > Well, I don't know how useful it is and I'm not debating it, but making > it a big selling point while saying confidentiality and security are > minor enhancements is a sign of lost sanity ;-) Even kermit people say ssh sux and teln

Re: Help to compile

On Sat, Apr 07, 2012 at 09:46:21PM +0200, Peter J. Philipp wrote: > Interesting little server. I think someone who does a little bit of > packetry (very small packet about 4 bytes in length) can find out what > the person queried before him, so it leaks some data. Perhaps I can > turn you on to

Re: Manual IPsec setup with ipsec.conf

On Thu, Apr 05, 2012 at 03:07:17PM +0530, Girish Venkatachalam wrote: > On Thu, Apr 5, 2012 at 11:37 AM, Jason McIntyre wrote: > > On Thu, Apr 05, 2012 at 05:53:27AM +0530, Girish Venkatachalam wrote: > >> Dear all, > >> > >> Such a silly thing is not documented anywhere, no vpn(8) man page and >

Re: Bad priority for routes? Lan IP goes via default GW

Crap, ignore plz, typo, 168 != 186 :) jirib

Bad priority for routes? Lan IP goes via default GW

Hello, I'm not sure if this is my PEBKAC but I see something very strange. I have no strange setup, egress is configured via dhclient, ingress static ip for 192.168.10/23 network. I see that trying to access my lan machines it goes via egress. My routing table without man ingress (lan) interface

Re: pf divert-to not allowed on outbound?

On Sat, Mar 17, 2012 at 11:08:14PM +0100, Taylan Ulrich B. wrote: > When I use the line: > pass out on egress inet proto tcp all divert-to 127.0.0.1 port $port > > I get the error: > address specified for outgoing divert > > Is there a reason for this to be forbidden? > How else can I redirect ou

Re: rsync screams about read-only filesystem

OK I agree I was very vague, mostly because I have thought it must be very obvious PEBKAC. Sorry. Well, here is as much info as I collected. The goal of the script below is to synchronize in memory filesystem directories to USB stick. Some lines are just to print output of the mount state, touch

rsync screams about read-only filesystem

Hello, I have a script which mount read-write a filesystem and then runs rsync to synchronize. The strange thing is, that although the filesystem is read-write for the OS, rsync still has some problem with that. %>--- + mount + grep /dev/sd0f /dev/sd0f on /mfs/log type ffs (local, nodev, noexec,

Re: Google SoC 2012 is accepting open source organisations

On Wed, Feb 29, 2012 at 01:21:21PM +0100, Tomas Bodzar wrote: > I did not say that ;-) I'm not a developer of OpenBSD, just user so I > can provide only my view on that. Another question is "market share" > because there's not much hype around OpenBSD so it doesn't have > attention like Linux or wh

Re: Google SoC 2012 is accepting open source organisations

On Wed, Feb 29, 2012 at 08:35:03AM +0100, Tomas Bodzar wrote: > The question is if there's real potential in that for some really new > stuff. Personally I think that developers which hacks in their free > time work on needed features anyway even without GSoC and probably > don't have free summer b

Re: Trusting the Installation

On Tue, Feb 28, 2012 at 09:44:15PM -0500, Nathan Stiles wrote: > Hello, > I've recently installed 5.0 and based upon my experience > I expected a checksum to be posted for the ISO. > Also I've noticed that HTTPS isn't implemented on openbsd.org. > I was also expecting the checksum to be served over

OT: Hacking IPv6 Networks slides - mentioning OpenBSD many times

Hi all, I found this nice presentation Hacking IPv6 Networks[1] Hack In Paris 2011 Conference, June 14-17, 2011. Paris, France. It mentiones OpenBSD many times on different pages, so it's worth to check. [1] http://www.hackingipv6networks.com/past-trainings/hip2011-hacking-ipv6-networ

Re: starting nsd via rc.d shows OK but not running

On Sat, Feb 18, 2012 at 05:23:25PM +0100, Antoine Jacoutot wrote: > On Sat, Feb 18, 2012 at 10:53:10AM -0500, Jiri B wrote: > > On Fri, Feb 17, 2012 at 07:47:32AM +0100, Antoine Jacoutot wrote: > > > On Thu, Feb 16, 2012 at 06:47:05PM -0500, Jiri B wrote: > > > > On S

Re: starting nsd via rc.d shows OK but not running

On Fri, Feb 17, 2012 at 07:47:32AM +0100, Antoine Jacoutot wrote: > On Thu, Feb 16, 2012 at 06:47:05PM -0500, Jiri B wrote: > > On Sat, Feb 04, 2012 at 09:27:53PM +, Stuart Henderson wrote: > > > as to the rc.d thing; the daemon *does* start and is running when > > >

Authen::bsd_auth - does it exist?

Hi, I found an interesting tool[1] and it depends on Authen::PAM. This obviously doesn't exist so I was searching for bsd_auth version, no success. But maybe it exists in a drawer of a person on this list ? :) [1] http://code.google.com/p/enterprise-log-search-and-archive/ jirib

Re: starting nsd via rc.d shows OK but not running

On Sat, Feb 04, 2012 at 09:27:53PM +, Stuart Henderson wrote: > as to the rc.d thing; the daemon *does* start and is running when > rc_check examines it, but exits afterwards. # cat -n /etc/rc.d/rc.subr | sed -n '117,129p' 117 while true; do # no real l

Re: Long delay updating xenocara source tree?

On Thu, Feb 09, 2012 at 01:16:10PM +0100, Jan Stary wrote: > > +it maybe wise to issue a command sequence like the following: > > + > > + # cd /usr/src > > + # find . -path '*CVS/Root' | xargs rm > > + # cvs -d anon...@anoncvs.ca.openbsd.org:/cvs -q up -Pd > > + > > Never ever! For example

starting nsd via rc.d shows OK but not running

Hi all, I just upgraded to latest snapshot which contains NSD v3.2.9 imported at Jan 29th. /etc/rc.d/nsd start showed 'ok' but nsd was not running. I discovered that... # /usr/sbin/nsd -d

Re: Help with rc.local scripts

> >If there's netcat/socat on the host you could tunnel it via ssh. > > > >Maybe something like this (untested) > > > > ssh esxi "netcat -U /path/to/virtual_serial.sock" | \ > > socat STDIO TCP-LISTEN:5500 > > telnet localhost 5500 > > Thanks Jirib. I will give this a try later. just

Re: Help with rc.local scripts

On Fri, Jan 06, 2012 at 03:27:25PM +, Zi Loff wrote: > If all daemons are *always* meant to be started together, what about creating > a script that starts the them in sequence -- with some 'sleep' and/or > "wait-until-the-previous-daemon-becomes-available" in the middle -- and then > calling t

Re: Help with rc.local scripts

On Fri, Jan 06, 2012 at 02:06:28PM +, keith wrote: > Thank you, that's made a difference. The Graylog2-Server isn't > starting but the error has changed... Unfortunately the console > scrolls so quickly I can't see what the error is !!! Earlier today I > tried to get a serial console working b

Re: ro / and /etc on mfs - clarification

On Thu, Jan 05, 2012 at 01:12:43AM +, Stuart Henderson wrote: > What's the advantage in having /etc on mfs? Why not just remount / > readonly after booting and mount it read/write when you need to make > changes? If you're looking at something more than this then take > a look at how flashboot

ro / and /etc on mfs - clarification

Hello, I was reading couple of howtos (yeah!) about read-only / with /etc as mfs. I suppose these howtos overlook problem with unavailability of some important files. I suppose boot and init needs some files in /etc before running /etc/rc, like ttys and master.passwd etc... If you mount /etc as

Re: see_other_uids

On Thu, Dec 22, 2011 at 11:43:17PM +0200, Vitali wrote: > Gentlemen > > In FreeBSD there is one great feature I like very much. > > If you set the variable > security.bsd.see_other_uids > to zero, users can't see other users' processes. This is best security feature ever, lol :D jirib

Re: mandoc output to ascii - plaintext?

On Wed, Dec 14, 2011 at 02:01:43AM +0100, Kristaps Dzonsons wrote: > >I wanted to grep a pattern from a manpage and was > >very surprised I do not get "normal" plain text. > > > >$ mandoc /usr/local/man/man1/context.1 | cat -ntve | sed -n '123,124p' > >123 -^H--^H-v^Hve^Her^Hrs^Hsi^Hio^

mandoc output to ascii - plaintext?

Hello, I wanted to grep a pattern from a manpage and was very surprised I do not get "normal" plain text. $ mandoc /usr/local/man/man1/context.1 | cat -ntve | sed -n '123,124p' 123 -^H--^H-v^Hve^Her^Hrs^Hsi^Hio^Hon^Hn$ 124report installed context version$ karl.examp

Re: Short adsuck guide (local resolver setup)

On Mon, Dec 05, 2011 at 02:09:43PM +0100, Sime Ramov wrote: > > > Let me know if you notice anything amiss. > I'm sorry to say that but these howtos are totally useless. When will it end? People following old stupid howtos instead of reading man pages and offici

Re: USB mouse

On Wed, Oct 26, 2011 at 08:22:35PM -0300, Zantgo wrote: > WTF? I use OpenBSD and hate the other operating systems And we hate your retarted questions! j.

Re: I can use snapshots packages in a release?

On Mon, Oct 24, 2011 at 09:10:20PM -0300, Zantgo wrote: > Forgiveness must be a translation problem, if you answered my question. > Thanks OMFG, this is not a chat! Use your brain and do not send idiotic 5 words mail! Go to IRC if you need to chat. jirib

ccd gone - what next?

Hello, theo@ doomed ccd - http://marc.info/?l=openbsd-cvs&m=131805777910632&w=2 - and Michal asked what could be replacement for ccd and got no reply - - http://marc.info/?l=openbsd-cvs&m=131805777910645&w=2. Do devs want to put ccd-like spanning volume feature into softraid or what would be simi

Re: DUID base root device for kernel

Hello, I tried to boot via `bsd -a' and then asked for root device I wrote DUID of accessible disk but no success. root device (default sd0a): fba123e4bd29707a.a use one of: exit em0 iwn0 sd0[a-p] cd0[a-p] sd1[a-p] sd2[a-p] I still do not understand meaning of this commit, sorry I don't know C s

Re: DUID base root device for kernel

On Fri, Oct 07, 2011 at 11:49:17PM +1100, Joel Sing wrote: > On Thursday 06 October 2011, Jiri B wrote: > > would be possible to tell kernel via `bsd -a' or with extended > > boot.conf configuration capabilities to use a root device defined > > with DUID? > > Sh

Re: DUID base root device for kernel

It looks it is already possible to have duid for root device: http://www.openbsd.org/cgi-bin/cvsweb/src/sys/kern/subr_disk.c#rev1.120 I will test during weekend. jirib

Re: DUID base root device for kernel

; I think you don't understand me. I don't want to tell which DUID should a disk use but to tell kernel to use SUID instead of default sd0a or a value which one puts when running kernel with `bsd -a'. jirib > 2011/10/6 Jiri B : > > Hello, > > > > would be possible t

DUID base root device for kernel

Hello, would be possible to tell kernel via `bsd -a' or with extended boot.conf configuration capabilities to use a root device defined with DUID? My intend is to boot from an external usb stick and to have root device in the box configured with softraid and keydisk. jirib

outgoing divert-to

Hello, it is not possible to make use of outgoing traffic with 'divert-to'? # echo 'pass in quick log(all) inet proto tcp to 89.0.0.0/8 divert-to 127.0.0.1 port ' | pfctl - -nf - @0 pass in log (all) quick inet proto tcp from any to 89.0.0.0/8 flags S/SA divert-to 127.0.0.1 p

Re: ping got incorrectly caught by pf

On Wed, Jul 13, 2011 at 01:28:10PM +0900, Ryan McBride wrote: > Thanks for pointing this out, it was an oversight in the recent changes > to pf_test_rule(). > > I recommend specifying explicitly the correct protocols if you're > wanting to to match by user/group/os fingerprints. > > block r

ping got incorrectly caught by pf

Hello, with latest snapshot (Jul 11 2011) I see this strange behavior which I haven't seen before upgrade (ping caught by strange pf rule). $ id ;netstat -rnf inet | grep default uid=1000(jirib) gid=10(users) groups=10(users), 0(wheel), 5(operator) default192.168.1.1UGS

pf rdr-to outgoing to local port issues

Hello, it's probably PEBKAC but I'm lost where is the problem. I try to redirect specific outgoing traffic to a local port, it doesn't work if 'set skip on lo' is used. I'm using i386 snapshot from Feb 11. Any idea? Thank you. jirib ** pf rules: set skip on lo pass# to establish

Re: SOCKS proxying software?

On Fri, Jan 28, 2011 at 07:52:34AM -0800, James Hozier wrote: > I'm looking for a program that I can use to use SOCKS proxies for various > programs, > such as different IRC clients (ircII, irssi, etc.) and SSH as well (or other > programs > that don't have native SOCKS proxy support built-in).

Re: Running "ksh -l" in terminal window under XFCE

there isn't a click option in Terminal to make it "login shell" ? :) > From: paol...@gmail.com > Date: Tue, 25 Jan 2011 14:19:52 +0100 > Subject: Running "ksh -l" in terminal window under XFCE > To: misc@openbsd.org > > Hi all, > > I've setup a certain number of aliases and vars both in /etc/profi

Re: DNSSEC validating resolver

On Thu, Jan 13, 2011 at 09:05:01PM -0500, Josh Smith wrote: >Has anyone had any luck configuring the bind included with 4.7 (named >-v indicates it is 9.4.2-p2) as a DNSSEC validating resolver? Some >digging around the web indicates it might be to old to handle this >properly. If so is the versio

Re: secure popa3d

On Fri, Jan 21, 2011 at 09:32:40PM +0100, Pete Vickers wrote: >$ pkg_info | grep stunnel >stunnel-4.20SSL encryption wrapper for standard network daemons > >$ grep -A 3 pop3s /etc/stunnel/stunnel.conf >[pop3s] >accept = 995 >connect = 127.0.0.1:110 relayd in base can do same as stunnel.

Re: secure popa3d

> Date: Fri, 21 Jan 2011 15:49:11 +0400 > From: open...@e-solutions.re > To: misc@openbsd.org > Subject: secure popa3d > > Hi, > > I'm trying to build a mailserver with OpenBSD, Sendmail, cyrus-sasl, and > popa3d. All works good. And thank you for all replies (for sendmail > question). > > Is there

Re: New document: How to build a port for OpenBSD

> Date: Fri, 21 Jan 2011 01:51:27 -0300 > Subject: New document: How to build a port for OpenBSD > From: fernando.a.quint...@gmail.com > To: misc@openbsd.org; po...@openbsd.org > > Hi lists, I just wrote a new document about how to build a port for OpenBSD. > Enjoy it! > > note: Only in spanish! (s

Re: DNSSEC validating resolver

> Date: Fri, 14 Jan 2011 10:06:07 +0100 > Subject: Re: DNSSEC validating resolver > From: mar...@oneiros.de > To: misc@openbsd.org > > 2011/1/14 Chris Cappuccio : > > nsd is already part of the tree and unbound will join it at some point to > > replace bind. they are well documented, fairly easy t

Re: vmware remote console

On Mon, Jan 10, 2011 at 04:56:48PM -0300, Robert Yuri wrote: >does anyone have running the vmware remote console on openbsd, or >suggest anyway to connect to a vmware server to manager the virtual >machines from an openbsd box ? Do you mean ESX(i)? I haven't tried vmware remote console but you can

Re: qemu -nographic

On Sat, Jan 08, 2011 at 09:50:36PM +0100, Pieter Verberne wrote: >lilium$ qemu -no-kqemu -nographic -serial stdio obsd.img >[this time no "could not open serial device 'stdio'" error, but no >further output. Is there any way to catch the output?] > >lilium$ qemu -no-kqemu -nographic -serial >telnet

Re: Does anybody know a PeerGuardian like app?

On Wed, Dec 29, 2010 at 07:04:18PM +0100, Joachim Schipper wrote: >Five minutes' research shows that PeerGuardian is mainly used to block >access to/from IP addresses believed to belong to anti-piracy groups. Any list with govs ip ranges sorted by countries? :) jirib

Re: what kind of virtualization is available on OpenBSD?

On Wed, Dec 29, 2010 at 07:48:24AM -0800, S Mathias wrote: >If i'm using OpenBSD as Desktop OS, what kind of virtualization solutions do i >have? > >Can anyone point to some howtos/docs regarding it? [for a beginner :\] You forgot to make your homework - check /usr/ports/emulators. jirib

Re: /etc/rc: clearing /tmp with files having flags

On Sat, Dec 04, 2010 at 01:53:13PM +0100, Ingo Schwarze wrote: >When causing an exceptionally ugly mess by hand, >i'd say cleaning up that mess by hand is a sane approach. > >Scripts like rc(8) and daily(8) are supposed to cover maintenance >issues related to normal and sane usage of the system. >I

/etc/rc: clearing /tmp with files having flags

Hi, I was playing with file flags in /tmp, after reboot I saw that /etc/rc cannot `rm' files with flags. OK, my stupidity to keep those files but maybe following patch to /etc/rc could be useful (my sed kungfu is not nice but using awk I got quoting trouble). jirib Index: rc ===

Lenovo T400 - recording with internal mic

Hi, on Lenovo T400 laptop there's internal mic (works on other OS). Unfortunatelly I'm stupid or it doesn't work :/ I tried: * aucat -o /tmp/file.wav * aucat -C0:1 -o /tmp/file.wav * aucat -C2:3 -o /tmp/file.wav * audacity record (not really sure why '-CX:X'...) It produces just same noise al

Re: ports issue

On Wed, Dec 01, 2010 at 06:46:09AM -0500, paul wrote: >I installed OpenBSD & I'm trying to follow along this page: >http://www.openbsd101.com/updating.html > >but I'm having difficulty, because things seem to be bombing out with >make errors for the generic kernel, and things like this: >I created

Lenovo T400 bluetooth working?

Hi, I'm trying to transfer some data to my Nokia 2630 from Lenovo T400 laptop. ubt0 at uhub3 port 2 "Lenovo Computer Corp ThinkPad Bluetooth with Enhanced Data Rate II" rev 2.00/3.99 addr 2 bthub0 at ubt0 00:23:4d:f7:ad:11 Pairing successful, but obexftp doesn't work :( Does anybody have T400?

Re: OT: Disadvantages of using virtual firewalls like OpenBSd

On Tue, Nov 23, 2010 at 01:38:04PM +0100, carlopmart wrote: >Hi all, > > First of all, I don't want to start a flame. I will to know your >opinion about using virtual firewalls in virtual infraestructures >like vmware, kvm ,xen, etc ... like OpenBSD. > > Advantages are very clear for me: provisioni

Re: 4.8 fail boot

Plug serial cable and get some info. > Date: Tue, 23 Nov 2010 12:33:41 +0100 > From: fa...@openbeer.it > To: misc@openbsd.org > Subject: 4.8 fail boot > > Hello, > after boot on my DL360 G3 2Gb ram, hp array i5 (2x36gb mirroring) > with new 4.8 the boot blo

Re: xmobar 0.11.1

On Sat, Nov 13, 2010 at 12:42:01PM -0800, Nick wrote: > xmobar: /home/nick/.xmobarrc: configuration file contains errors at: > "Config" (line 11, column 6): > error reading the commands: this usually means that a command could > not be parsed. > The error could be located at the begining

Re: Upgrade a firewall

Your nick looks like joke with this kind of question :) > Date: Thu, 11 Nov 2010 13:00:57 +0400 > From: open...@e-solutions.re > To: misc@openbsd.org > Subject: Upgrade a firewall > > Hi, > I use OpenBSD 4.7-STABLE at work only for firewall(PF, isakmpd,ipse

Re: choice for a ftpd

On Sat, Nov 06, 2010 at 01:22:43PM +0100, Jean-Francois wrote: >Hello, > >I think of installing as a ftp daemon vsftpd or pure-ftpd since both >seems to be simple and secure. > >Would you recommend one or the other in terms of security or >scalability ? Why do you still need ftp? Secure? It depend

fsck not accepting uid

Hi all, I'm using UIDs instead of path to disk devices because sometimes I forget USB sticks plugged in and my softraid crypto commands are confused... So during upgrade from Oct 6th snapshot (i386) I discovered that fsck doesn't accept UID for disks :( Little test bellow, I did this test on oth

Re: Some apps kill/hang X when using scrotwm(1) as wm

On Tue, 17 Aug 2010 06:40:21 -0500 Marco Peereboom wrote: > dmesg? I have to first eliminate potential involvement of i/o slowdown because of big use of softraid (i have everything except '/' on softraid). > On Tue, Aug 17, 2010 at 10:24:17AM +0200, Jiri B. wrote: > > >

Re: [OT] securely sharing documents on OpenBSD?

what's up with vpn and samba? jirib

Re: Some apps kill/hang X when using scrotwm(1) as wm

> did someone saw similar problem in scrotwm(1)? Eg. when I start > xeyes(1) on empty workspace from menu M-p it simply "shut down" X. If > I start eg. xcalc(1) then everything is ok. Another problem is with > xlock(1). When I want to lock my screen and start xlock(1) eg. this > way 'xlock -mode at

Re: which monitoring do you use (on OpenBSD)

On Sat, 14 Aug 2010 13:08:57 + (UTC) Stuart Henderson wrote: > I'm occasionally working on a port of icinga which looks quite > interesting (forked from nagios a while ago, it's still compatible > but has diverged quite a bit now - many problems have been fixed > and improvements made, in par

Re: OpenBSD Vim Programming FAQ

> Date: Thu, 12 Aug 2010 13:07:47 +0200 > Subject: Re: OpenBSD Vim Programming FAQ > From: vav...@cleancode.cz > To: misc@openbsd.org > > Thank you for your point. Unfortunately there is at least 7 people who > would like to see some tutorial. I am not a dev

Re: which monitoring do you use (on OpenBSD)

On Tue, 10 Aug 2010 18:05:51 -0400 Jason Dixon wrote: > http://omniti.com/video/noit-oscon-demo Sorry no flash :) Some screenshots should be sufficient for this products, interesting is there are no screenshots except that architecture picture. Does it have some event console? So an operator c

which monitoring do you use (on OpenBSD)

Hello, I'm thinking to choose a monitoring tool which would run on OpenBSD of course. I have been working with Tivoli and Netview for couple of years so my idea is: * clients - heartbeats of course - simple interface to give a client some input as alert - text configuration on client node (can

Re: bootstrap, crypto, hibernation/suspend-to-disk

> Date: Mon, 9 Aug 2010 14:01:08 +0200 > I am also very interested in this features (encrypted root, swap, raid > 1, key on a i.e. usb stick, boot from kernel from RO media etc.) > > A few things work with minor configuration work, others are not > supported yet. > > I am new to openBsd and at the

bootstrap, crypto, hibernation/suspend-to-disk

Hello, first I have to say I do not behold this as fundamental feature but still I'm interested in technical views of this topic and arguments for and against. Scenario: - hibernation to encrypted swap If I understand it correctly bootstrapper would need to be extended to be able to handle encry

suspend - who's allowed?

Hello, suspend/resume works OK on Lenovo T400 but I have question, probably pebkac one, about conditions of this feature. Is it normal to be able to suspend laptop even I have no opened console and my X is locked? If so, is there a way to configure something (console or X) to prevent this? I do

Re: How much disk space should be maintained for /usr/obj

On Fri, 6 Aug 2010 21:35:58 +0200 Joachim Schipper wrote: > On Fri, Aug 06, 2010 at 12:18:06PM -0500, Ahlsen-Girard, Edward F CTR > USAF AFSOC AFSOC/A6OK wrote: > > Nick Holland wrote: > > > On 08/06/10 18:38, Aaron Lewis wrote: > > > > How much space should i put for a separated partition, mount

Re: laptop HP 530 - acpitz3: Critical temperature, shutting down

On Fri, 23 Jul 2010 17:39:31 + Miod Vallat wrote: > Can you try the following patch and let me know of the behaviour. > > Thanks, > Miod > > Index: acpitz.c > === > RCS file: /cvs/src/sys/dev/acpi/acpitz.c,v > retrieving revisi

Re: setting up crypto softraid

On Thu, 29 Jul 2010 13:38:18 +0200 Jan Stary wrote: > I have found myself replicating a tiny script that sets up crypto > on most of my recent machines, either in rc.local directly or calling > it from rc.local. Is this the right way to do it, or is there some > support for it in rc(8) already th

Re: HP laptops again

On Mon, 26 Jul 2010 12:52:35 -0500 Marco Peereboom wrote: > I am 25% there with pledges. So if you are interested in getting > these 2 bugs fixed send me an email with the pledge amount. I won't > accept cash until we have enough to actually order machines. 150 USD sent. Thank you very much for

ATTclient anybody?

Hello, has anybody been successful to get running this Linux crap - ATTclient? ftp://ftp.attglobal.net/pub/custom/ibm_linux/ $ /usr/local/emul/fedora/opt/agns/bin/agnclient Could not access agnclientd. $ ps aux | grep agnclientd root 27130 0.0 0.0 2724 944 ?? Ss 1:52AM0:00.00

Re: laptop HP 530 - acpitz3: Critical temperature, shutting down

On Fri, 23 Jul 2010 09:12:57 -0500 Marco Peereboom wrote: > Anyone willing to donate one of this HPs that has issues? miod@ has one. I personally can only lend mine. Currently, using a patch on -r1.36 of acpitz.c from Theo I got: acpitz3: Critical temperature X, shutting down Where above X wa

Re: laptop HP 530 - acpitz3: Critical temperature, shutting down

On Thu, 22 Jul 2010 10:13:01 +0200 Paolo Aglialoro wrote: > Just in case > > Personally I'd open the machine and clean all its dust with compressed > air some old laptops sometimes have "geological layers" of dust, > especially around the cpu fan. Even if this should reveal itself a > pu

Re: laptop HP 530 - acpitz3: Critical temperature, shutting down

On Tue, 20 Jul 2010 20:05:25 + Miod Vallat wrote: > > acpitz3: Critical temperature, shutting down > > acpitz3: Critical temperature, shutting down > > scsibus2 at softraid0: 1 targets > > ... > Does this always happen when the laptop is not connected to an > external power source? (i.e. run

<    1   2   3   4   5   6   >