Re: Potential bgpd.conf parsing bug?

user patterns. Jordan Geoghegan wrote: Hello, I was playing around with my bgpd.conf and I noticed some interesting behaviour with macros. A quick example: # This parses fine: IP1="192.0.2.1" MYIP=$IP1 # This throws a syntax error: ASN1="65001" MYASN=$ASN1 # This al

Potential bgpd.conf parsing bug?

Hello, I was playing around with my bgpd.conf and I noticed some interesting behaviour with macros. A quick example: # This parses fine: IP1="192.0.2.1" MYIP=$IP1 # This throws a syntax error: ASN1="65001" MYASN=$ASN1 # This also parses fine: ASN1="65001a" MYASN=$ASN1 In short, it appears

Re: passing environment variables to daemons in rc.d scripts

Hi Antoine, Marcus and Stuart, Thank you all for your help - setenv via login class was exactly what I was looking for! On 4/20/23 23:44, Stuart Henderson wrote: On 2023-04-21, Antoine Jacoutot wrote: Hi. You can pas environment variables by creating a login class matching the name of

passing environment variables to daemons in rc.d scripts

Hello, tl;dr: Is there any way to pass an environment variable to a daemon started with rc.d? A bit of context for those interested: I'm trying to run Apache Airflow from an rc.d script so I can make use of rcctl and other niceties. My rc.d script is included below. The problem I'm facing

Re: Using gzip-static with httpd location

On 3/9/23 17:31, Joel Carnat wrote: Hi, I just tried applying gzip compression on a simple test web site using httpd and the gzip-static option ; using OpenBSD 7.2/amd64. As I understood the man page, gzip-static is supposed to be used inside the server block ; like listen, errdocs or

Re: some simple way to serve videos?

On 10/3/22 05:00, rsyk...@disroot.org wrote: Hello, until now I have www-served (httpd) my photos using, as it seems to me, a very simple way: into a directory with photos I copied a file called gallery.html taken from https://github.com/gfwilliams/ThinGallery . This created a browsable

Re: calling all PFsync users for experience, gotchas, feedback, tips and tricks

On 5/11/22 12:32, Tom Smyth wrote: Hello Folks, We are updating some course material for an upcoming PF firewall course, and I would like to put a call out to those who use PFsync in a redundant firewall cluster about your user experience, have you come across any edge cases? have you any

HP Probook audio only playing on left speaker

Hello, I have an HP Probook (dmesg below) that is only playing audio from the left headphone speaker. No matter how I try I cannot get any audio to play over the right side speaker. I have very little experience debugging audio issues on OpenBSD as everything has largely "just worked" for me

Re: relayd unable to get local issuer certificate

On 12/8/21 00:10, Anthony J. Bentley wrote: Jordan Geoghegan writes: I generated a TLS cert with acme-client and  tested and confirmed it worked with httpd. Do curl/wget/ftp behave the same with httpd? If so that would imply the problem is with the certificate. I then configured relayd

Re: relayd unable to get local issuer certificate

On 12/8/21 00:10, Anthony J. Bentley wrote: Jordan Geoghegan writes: I generated a TLS cert with acme-client and  tested and confirmed it worked with httpd. Do curl/wget/ftp behave the same with httpd? If so that would imply the problem is with the certificate. I then configured relayd

relayd unable to get local issuer certificate

Hello, I decided to try using relayd as a TLS accelerator and have run into an issue - as usual, I'm sure I'm missing something obvious. I generated a TLS cert with acme-client and  tested and confirmed it worked with httpd. I then configured relayd to perform TLS acceleration by following

Re: nvme boot

On 10/15/21 8:05 AM, Jan Stary wrote: > Does any of the OpenSBD-supported platforms boot off nvme storage? > So far, I have been able to use nvme storage as a disk, > but not boot from it; but my HW is far from recent. > > Jan > Hi Jan, NVME boot will require that your motherboard /

Re: pkg_info -m: libraries and dependencies marked as manually installed

On 9/19/21 3:21 PM, Stuart Henderson wrote: > On 2021-09-19, Jordan Geoghegan wrote: >> Hello, >> >> I recently decided to clean up my desktop machine of unused packages etc. >> I've been running release/stable on this machine since around the OpenBSD >&

pkg_info -m: libraries and dependencies marked as manually installed

Hello, I recently decided to clean up my desktop machine of unused packages etc. I've been running release/stable on this machine since around the OpenBSD 6.2 era. The machine has been upgraded over the years all the way to 6.9. I'm not sure that it's relevant, but I've regularly run sysclean

Re: ssh authlog: Failed none for invalid user

On 8/10/21 1:30 AM, Darren Tucker wrote: > On Tue, 10 Aug 2021 at 09:06, Jordan Geoghegan <mailto:jor...@geoghegan.ca>> wrote: > > Hello, > > I was hoping somebody could set me straight here. On one of my machines I > have a number of entries in my /var/log/

ssh authlog: Failed none for invalid user

Hello, I was hoping somebody could set me straight here. On one of my machines I have a number of entries in my /var/log/authlog file that look like this:     Failed none for invalid user admin from 14.239.50.255 port 51796 The machine has been being hammered with SSH bruteforce attempts and I

Re: Another potential awk or xargs bug?

On 4/15/21 7:49 AM, Otto Moerbeek wrote: > On Thu, Apr 15, 2021 at 04:29:17PM +0200, Christian Weisgerber wrote: > >> Jordan Geoghegan: >> >>> --- /tmp/bad.txt  Wed Apr 14 21:06:51 2021 >>> +++ /tmp/good.txt  Wed Apr 14 21:06:41 2021 >> I'll note

Another potential awk or xargs bug?

Hello, I've found some very interesting behaviour when subjecting various awk implementations to some very specific circumstances. I'm basically looking for a sanity check here to confirm if I'm just wildly flailing, or if I am indeed onto something here. Here's my situation: When parsing

Re: 6.9 Current amd64 xfce seems to freeze and not respond to mouse clicks or keystrokes

On 4/10/21 2:48 PM, gwes wrote: > > > On 4/10/21 5:22 PM, Tom Smyth wrote: >> Hello, >> >> 1) issue does not occur with fvwm or with chrome running in fvwm >> >> so the issue seems to be confined to xfce, and I was running  just 1 >> xfce terminal session >> 2) (so the issue is not related to

Re: blacklistd analogue

On 3/24/21 11:48 AM, Peter Nicolai Mathias Hansteen wrote: >> 24. mar. 2021 kl. 19:33 skrev jeanpierre >> : >> >> Does there exist an OpenBSD analogue for FreeBSD's blacklistd daemon? >> >> For the sake of completeness: blacklistd is a daemon that, using pf >> anchors, blocks connections from

Re: Attempting to use Brother DCP-L2510D printer on BSD

On 2/24/21 9:43 AM, Sylvain S wrote: > Hello, > > I see that, if I understand correctly, you have been > able to make this printer work on ArchLinux from the > officially provided RPM driver package. > https://aur.archlinux.org/packages/brother-dcp-l2510d/ > > May I ask, what kind of porting

Re: relayd + pfsync

On 2/1/21 8:20 PM, Kapetanakis Giannis wrote: > On 02/02/2021 05:18, Jordan Geoghegan wrote: >> Hello, >> >> I had a question about using relayd with pfsync. >> >> I have a small gateway/load-balancer set up with relayd, carp and pfsync >> plus BGPd for

relayd + pfsync

Hello, I had a question about using relayd with pfsync. I have a small gateway/load-balancer set up with relayd, carp and pfsync plus BGPd for IP failover, and everything is working great. I was pleasantly surprised at how easy it was to get pfsync tunnelled over wireguard. Things failover

Re: File this bug, or not?

On 1/18/21 2:47 PM, Eric Zylstra wrote: > Misc, > > I’ve set up a 6 drive RAID-5. Just for the experience of degrading and > rebuilding the RAID, I popped a drive out. Within a few seconds the machine > kerneled and dropped into ddb. Is there any chance this would be expected >

pf-badhost and unbound-adblock v0.5 released

Thank you to everyone in the the OpenBSD community who have on many occasions, kindly assisted with development in one way or the other -- I am truly grateful. Regards, Jordan Geoghegan

Re: cmp(1) '-s' flag ignoring byte offset argument?

On 1/9/21 1:59 AM, Otto Moerbeek wrote: > On Sat, Jan 09, 2021 at 12:05:31AM -0800, William Ahern wrote: > >> On Fri, Jan 08, 2021 at 07:09:01PM -0800, Jordan Geoghegan wrote: >>> Hey folks, >>> >>> I've noticed some surprising behaviour f

cmp(1) '-s' flag ignoring byte offset argument?

Hey folks, I've noticed some surprising behaviour from cmp(1) when using the '-s' flag. It appears that cmp -s is ignoring the byte offset arguments I'm giving it. I don't want to waste time babbling, so here's an example snippet to show what I'm talking about: #!/bin/sh echo 'my line' >

An ode to OpenBSD

This isn't actually an ode, as I can't rhyme things good, but I just wanted to thank the OpenBSD folks for their fantastic engineering. I had a major power outage and network disruption at my hosting provider yesterday, and all but one of my relayd load balancers was knocked out, as well as

Re: OpenBSD Monitor Sleep No Response

On 12/20/20 6:26 PM, ben wrote: Hello, misc; I've been having an issue with my OpenBSD install, specifically when the system turns off the monitor after a period of no use. After the monitor goes blank I can't use the start using the machine and must restart, that is after keypress and mouse

Re: Potential dig bug?

On 12/16/20 11:19 PM, Otto Moerbeek wrote: On Wed, Dec 16, 2020 at 02:37:19PM -0800, Jordan Geoghegan wrote: Hi folks, I've found some surprising behaviour in the 'dig' utility. I've noticed that dig doesn't seem to support link local IPv6 addresses. I've got unbound listening on a link

Re: Potential dig bug?

On 12/16/20 2:37 PM, Jordan Geoghegan wrote: Hi folks, I've found some surprising behaviour in the 'dig' utility. I've noticed that dig doesn't seem to support link local IPv6 addresses. I've got unbound listening on a link local IPv6 address on my router and all queries seem

Potential dig bug?

Hi folks, I've found some surprising behaviour in the 'dig' utility. I've noticed that dig doesn't seem to support link local IPv6 addresses. I've got unbound listening on a link local IPv6 address on my router and all queries seem to be working. I'm advertising this DNS info with rad, and I

Re: Another potential ksh bug?

the end of December. :) пн, 7 дек. 2020 г. в 07:43, Jordan Geoghegan : Hello again, I was playing around with ksh array syntax and its behaviour when set as read-only. In my testing I noticed that ksh will allow you to overwrite the first element of a read-only array. Example snippet: #!/bin/ksh arr

Re: Another potential ksh bug?

On 12/7/20 10:14 PM, Noth wrote: On 07/12/2020 05:41, Jordan Geoghegan wrote: Hello again, I was playing around with ksh array syntax and its behaviour when set as read-only. In my testing I noticed that ksh will allow you to overwrite the first element of a read-only array. Example snippet

Another potential ksh bug?

Hello again, I was playing around with ksh array syntax and its behaviour when set as read-only. In my testing I noticed that ksh will allow you to overwrite the first element of a read-only array. Example snippet: #!/bin/ksh arr[0]=val1 arr[1]=val2 readonly arr echo "${arr[@]}" arr=yikes

Re: Potential ksh bug?

On 11/16/20 10:36 PM, Bodie wrote: On 17.11.2020 05:04, Jordan Geoghegan wrote: Hello, I'm not sure if this is a bug, or if it's just a pdksh thing, but I stumbled upon some interesting behaviour when I was tinkering around with quoting and using a poor mans array: test=$(cat <<

Potential ksh bug?

Hello, I'm not sure if this is a bug, or if it's just a pdksh thing, but I stumbled upon some interesting behaviour when I was tinkering around with quoting and using a poor mans array: test=$(cat <<'__EOT' # I'll choose not to close this quote other_stuff __EOT ) echo "$test" When I run

Re: APU4 hardware network interfaces tied together

On 11/15/20 12:25 PM, Mihai Popescu wrote: Hello, In the scenario of building a router with APU4, one interface is for wan, the rest of three are free to use. What is the most sane and performance wise ( CPU load, interface load, etc.) way to tie together the remaining three interfaces as a

Re: OBSD 6.8 vlan communication issues

On 11/11/20 3:06 PM, len zaifman wrote: I am setting up a new system as a firewall using OpenBSD 6.8 current -uname -a OpenBSD fw1.lfz.net 6.8 GENERIC.MP#175 amd64. I have 3 vlans 70,77,79 on  the firewall using two em devices, em0 and em1, in an aggregation to serve these vlans. There

Re: home printer

On 2020-09-17 12:15, Greg Thomas wrote: I've always been happy with the cheap Brother laser printers with ethernet, even with just their version of Postscript. But I believe they still sell Postscript printers, too. On Thu, Sep 17, 2020 at 10:07 AM Ingo Schwarze wrote: Hi Carson, Carson

Re: Very slow clock in Debian vmm guest

If you check the mailing list archives, you will see that this issue has been discussed extensively. Dave Voutila has written a linux vmm kernel driver to work around some of the issues: https://github.com/voutilad/virtio_vmmci Regards, Jordan On 2020-08-28 20:48, Aaron Miller wrote: I

Re: Installation Media Self Integrity Check

On 2020-08-12 21:30, Dan Peretz wrote: Hello, the FAQ states this: "The installXX.iso and installXX.fs images do not contain an SHA256.sig file, so the installer will complain that it can't check the signature of the included sets [...] This is because it would make no sense for the installer

Re: Adding more syspatch platform.

On 2020-08-13 02:39, Sebastian Benoit wrote: Jordan Geoghegan(jor...@geoghegan.ca) on 2020.08.12 10:32:21 -0700: On 2020-08-12 02:08, Stuart Henderson wrote: The only proxy we have for "what is really used" is dmesg submissions. Since 6.7 release: amd64 62 i3865 arm64 3

Re: Adding more syspatch platform.

On 2020-08-12 02:08, Stuart Henderson wrote: The only proxy we have for "what is really used" is dmesg submissions. Since 6.7 release: amd64 62 i3865 arm64 3 macppc 2 octeon 1 Based on this there isn't a great case for adding any more. I didn't realize you guys used dmesg@ as a

Re: How many IPs can I block before taking a performance hit?

On 2020-08-12 05:11, Alan McKay wrote: Hey folks, This is one that is difficult to test in a test environment. I've got OpenBSD 6.5 on a relatively new pair of servers each with 8G RAM. With some scripting I'm looking at feeding block IPs to the firewalls to block bad-guys in near real

Re: Adding more syspatch platform.

On 2020-08-11 20:35, Theo de Raadt wrote: Jordan Geoghegan wrote: On 2020-08-11 15:50, Theo de Raadt wrote: Predrag Punosevac wrote: Theo de Raadt wrote: No, it is a question of which additional platform, you avoided that didn't you octeon is the only one I can think of. read

Re: Adding more syspatch platform.

On 2020-08-11 15:50, Theo de Raadt wrote: Predrag Punosevac wrote: Theo de Raadt wrote: No, it is a question of which additional platform, you avoided that didn't you octeon is the only one I can think of. read below: if you name one that less than 100 people use, then well come on

Re: Way to find most active IPs for rate limiting with pf

On 2020-08-06 13:46, Alan McKay wrote: So I want to implement rate limiting, and to determine a reasonable rate based on current traffic patterns I'd like to be able to figure out which source IPs are generating the most connections and at what rate. Is there a way to do that? There is

Re: CPU usage of httpd+slowcgi

On 2020-07-24 03:16, Kihaguru Gathura wrote: Hi, Which of the following legacy CPU types is best suited for very busy web server httpd+slowcgi Niagara CPU Such as T2 - More parallel Threads and Low power per single thread Sparc64 CPU such as VI, VII - Fewer threads but more computing power

Re: video capture / streaming

On 2020-07-24 08:06, Rudolf Sykora wrote: Dear list, I'd like to stream video from my (usb-connected) camera via a web server. The 1st I tried was to see if the camera works. So: odin$ video video: /dev/video: Permission denied odin$ doas video No protocol specified video: cannot open

Re: Potential grep bug?

Hi Demi, On 2020-07-10 22:42, Demi M. Obenour wrote: On 2020-06-23 22:29, Jordan Geoghegan wrote: Hello, I was working on a couple POSIX regular expressions to search for and validate IPv4 and IPv6 addresses with optional CIDR blocks, and encountered some strange behaviour from the base

PF-BadHost Patch

Hi everybody, I don't want to spam the list here, but I figured this was important enough to warrant an announcement considering several hundred people downloaded the script last week. tl;dr: Bugs found, patch your stuff A couple bugs have been reported by users, one in RipGrep and another

Re: sysupgrade failure due to boot.conf

On 2020-07-10 15:37, Alfred Morgan wrote: Please, I have had this problem for several versions now and it still isn't working right. I have this on all three of my servers: echo boot > /etc/boot.conf I have this boot.conf because openbsd fails to boot (on all three servers) because it hangs

Re: Unbound Configuration

On 2020-07-10 14:29, ken.hendrick...@l3harris.com wrote: --- I asked: What I would like to do now is make the *simplest possible* unbound.conf file and get it working. Thinking that an absolutely empty unbound.conf file would be the simplest, I tried it. It doesn't work. Can anybody help

pf-badhost + unbound adblock v4 released

Hey folks, just thought I'd share with you that I've released the latest versions of pf-badhost and unbound-adblock. pf-badhost webpage: https://www.geoghegan.ca/pfbadhost.html unbound-adblock webage: https://www.geoghegan.ca/unbound-adblock.html Key pf-badhost changes: * pf-badhost goes

Re: How do I get the man page for a package I haven't installed yet?

On 2020-06-26 20:03, Theo de Raadt wrote: Jordan Geoghegan wrote: On 2020-06-26 18:45, Theo de Raadt wrote: Jordan Geoghegan wrote: On 2020-06-26 13:43, Marc Espie wrote: On Tue, Jun 23, 2020 at 12:20:35PM -0600, Theo de Raadt wrote: Ottavio Caruso wrote: Hi, Unless I've got

Re: How do I get the man page for a package I haven't installed yet?

On 2020-06-26 18:45, Theo de Raadt wrote: Jordan Geoghegan wrote: On 2020-06-26 13:43, Marc Espie wrote: On Tue, Jun 23, 2020 at 12:20:35PM -0600, Theo de Raadt wrote: Ottavio Caruso wrote: Hi, Unless I've got it all wrong, <https://man.openbsd.org/> will only display man

Re: How do I get the man page for a package I haven't installed yet?

On 2020-06-26 13:43, Marc Espie wrote: On Tue, Jun 23, 2020 at 12:20:35PM -0600, Theo de Raadt wrote: Ottavio Caruso wrote: Hi, Unless I've got it all wrong, will only display man pages for programs and commands in base. Is there a way to display the man page

Potential grep bug?

Hello, I was working on a couple POSIX regular expressions to search for and validate IPv4 and IPv6 addresses with optional CIDR blocks, and encountered some strange behaviour from the base system grep. I wanted to validate my regex against a list of every valid IPv4 address, so I generated

Re: Any idea/suggestion for old Cisco router to be use running OpenBSD current for WG?

I don't know much about Cisco hardware, but I've had great luck with the Edgerouter line of products. I've run my home network on an Edgerouter Pro for several years now without issue, and have dozens of ER4 and ER-Lite devices out in the wild. If you're looking for non-x86 routing solutions,

Re: Potential awk bug?

On 2020-06-13 05:14, Stuart Henderson wrote: On 2020-06-12, Jordan Geoghegan wrote: On 2020-06-08 11:29, Todd C. Miller wrote: On Sun, 07 Jun 2020 17:02:03 -0700, Jordan Geoghegan wrote: Thanks for the quick response. I certainly wasn't expecting to find an ancient bug like this. Should

Re: Potential awk bug?

On 2020-06-08 11:29, Todd C. Miller wrote: On Sun, 07 Jun 2020 17:02:03 -0700, Jordan Geoghegan wrote: Thanks for the quick response. I certainly wasn't expecting to find an ancient bug like this. Should I be reporting this bug upstream, or are you planning on upstreaming a diff? I've

Re: OpenBSD alternatives to Pi-Hole

be spent mapping each domain to a black hole address. I run unbound-adblock on many Edgerouter Lites and havent had any issues. Regards, Jordan Geoghegan

Re: Potential awk bug?

<mailto:zel...@zeloff.org>> wrote: On Sat, Jun 06, 2020 at 03:51:58PM -0700, Jordan Geoghegan wrote: > I'm working on a simple awk snippet to convert the IP range data listed in > the Extended Delegation Statistics data from ARIN [1] and convert it into &

Potential awk bug?

Hello, I was hoping the fine folks here could give me a quick sanity check, I'm by no means an awk guru, so I'm likely missing something obvious. I wanted to ask here quickly before I started flapping my gums on bugs@. I'm working on a simple awk snippet to convert the IP range data listed

Re: Filling a 4TB Disk with Random Data

On 2020-06-01 06:58, Justin Noor wrote: Hi Misc, Has anyone ever filled a 4TB disk with random data and/or zeros with OpenBSD? How long did it take? What did you use (dd, openssl)? Can you share the command that you used? Thank you so much I've used OpenBSD to overwrite up to 8TB disks.

Re: 10Gbps X520 network adapter only passing 3.5Gbps

On 2020-05-06 04:04, Stuart Henderson wrote: On 2020-05-06, Jordan Geoghegan wrote: On 2020-05-04 06:42, Kalle Kadakas wrote: Greetings OpenBSD community, I am running into severe bandwidth limitations whilst passing traffic through an OpenBSD firewall. The NIC in use is an Intel 10Gb

Re: 10Gbps X520 network adapter only passing 3.5Gbps

On 2020-05-04 06:42, Kalle Kadakas wrote: Greetings OpenBSD community, I am running into severe bandwidth limitations whilst passing traffic through an OpenBSD firewall. The NIC in use is an Intel 10Gb 2-port X520 adapter from which I would hope to pass through at least 7Gbps+, yet the

Re: SpeedTest-cli results accuracy ?

Hi Kanto, The Edgerouter Lite will not push much more than 200mbps, so that will certainly be a bottleneck. The only reason the ERlite can push 1Gbit with stock firmware is because of proprietary cut through routing and other garbage -- what they dont tell you is that as soon as you enable

Re: More than 16 partitions

On 2020-04-23 11:45, zeurk...@volny.cz wrote: "Jan Betlach" wrote: For a non-native English speaker like myself, it is very difficult to read your mestuff... Your point is well-taken (though this is just the way mespeaks); yet, Theo is a native speaker, and he seems to have completely

Re: Openbsd mirrors in Kazakhstan?

On 2020-04-10 10:11, Nikita Stepanov wrote: Openbsd mirrors in Kazakhstan? The Russian mirror is hosted by Yandex. Moscow is likely the closest mirror to Kazakhstan, otherwise I would recommend trying one of the CDN options

Re: Hosting a CDN question

On 2020-03-16 03:26, Flipchan wrote: Hey all, My company needs to put up a cdn for fast hosting of javascript, images and css for websites, and then i would need something faster then httpd. Does anyone here run a cdn for static website content? If so what software did u use to set it up

Re: Jitsi on OpenBSD

On 2020-03-16 03:59, Edd Barrett wrote: Hi, (CC people who may be knowledgable in this area) I was wondering if anyone has got the Jitsi (https://jitsi.org/) web-client working on OpenBSD? It's open-source (and self-hostable) video conferencing. No prizes for guessing why I'm

Re: riscv

On 2020-03-14 23:19, Mike Larkin wrote: On Sat, Mar 14, 2020 at 11:18:11PM -0700, Mike Larkin wrote: On Fri, Mar 13, 2020 at 02:12:19PM -0700, Jordan Geoghegan wrote: On 2020-03-13 09:50, Christian Weisgerber wrote: On 2020-03-13, "Peter J. Philipp" wrote: Any develop

Re: experience setting up a low memory machine

On 2020-03-13 18:31, Stuart Henderson wrote: On 2020-03-13, Jordan Geoghegan wrote: I wouldn't get too excited about running on low memory machines. The more RAM you can throw at something, the better, as this allows more cache room as well as improving function of ASLR and other memory

Re: experience setting up a low memory machine

On 2020-03-11 19:20, Aaron Mason wrote: On Wed, Mar 11, 2020 at 6:47 PM Jordan Geoghegan wrote: On 2020-03-11 00:13, Stuart Longland wrote: On 15/2/20 6:43 pm, Dumitru Moldovan wrote: [SNIP] [SNIP] Sometimes it's better to realise when something has past its prime. A year or two ago

Re: riscv

On 2020-03-13 09:50, Christian Weisgerber wrote: On 2020-03-13, "Peter J. Philipp" wrote: Any developer working on a riscv port and willing to share their unofficial work for possible future collaboration? I think I'd have heard by now if somebody was, so I'll go out on a limb and say no,

Re: pf-badhost-0.3 released

On 2020-03-11 12:41, Anders Andersson wrote: On Tue, Mar 10, 2020 at 10:53 PM Jordan Geoghegan wrote: pf-badhost and unbound-adblock are both now at version 0.3, released earlier today. Links to the scripts can be found here: www.geoghegan.ca/pfbadhost.html www.geoghegan.ca/unbound

Re: experience setting up a low memory machine

On 2020-03-11 00:13, Stuart Longland wrote: On 15/2/20 6:43 pm, Dumitru Moldovan wrote: Not really, about 21 years ago I was learning to get XFree86 working, to break free from the console on a desktop with 24MB of RAM. It's all relative… I can recall years ago experimenting with operating

pf-badhost-0.3 released

Hey folks, Last time I posted about this, I got a fair bit of interest and I've had quite a few downloads and enquiries about pf-badhost, so I figured I'd share here that I've updated the script. pf-badhost and unbound-adblock are both now at version 0.3, released earlier today. I highly

Re: Time jumping forward issue under OpenBSD 6.6 VMM

On 2020-03-03 07:43, mabi wrote: Hello, I am running an OpenBSD 6.6 VMM server with a few virtual machines also running 6.6 and noticed that one of them which is running Dovecot 2.3.9 package outputs the following warning every few 10-15 seconds: dovecot: imap: Warning: Time jumped

Re: suggestions for USB printer (maybe even with scanner)?

On 2020-02-18 21:28, Stuart Longland wrote: On 6/2/20 7:26 am, Adam Thompson wrote: I don't know what you need in a printer, and I don't know what you mean by cheap, so... YMMV. However, I've found Brother **LASER** printers to be very good, and most of them support PCL6 and/or PS3. For

Re: rspamd stop rc script doesn't work in OpenBSD 6.6

On 2020-02-09 11:46, aisha wrote: You need to use pkill -9 to kill rspamd, which i think should be added to the stop part of the rspamd daemon. At least this is what I have been using, any other methods would be nice to know. You dont need to restart rspamd if you're just modifying a

Re: Low throughput with 1 GigE interface

On 2020-01-30 14:29, Christian Weisgerber wrote: On 2020-01-30, Jordan Geoghegan wrote: All you're doing is benchmarking the speed of iperf on that machine. I vaguely remember a thread somewhere that concluded that one of these network benchmark tools degenerated into a benchmark

Re: Low throughput with 1 GigE interface

On 2020-01-30 13:14, Jordan Geoghegan wrote: On 2020-01-30 10:06, livio wrote: @KatolaZ and @remi Thank you for your inputs on iperf2 vs. iperf3. After all the tests I needed a clean setup again and reinstalled both OpenBSD and Window 10. With the new notebook (Dell vs Lenovo) I have

Re: Low throughput with 1 GigE interface

On 2020-01-30 10:06, livio wrote: @KatolaZ and @remi Thank you for your inputs on iperf2 vs. iperf3. After all the tests I needed a clean setup again and reinstalled both OpenBSD and Window 10. With the new notebook (Dell vs Lenovo) I have different results. Dell: ~ 200Mbit/s Lenovo: ~

Re: dig -p 5353 foo.bar core dumped

On 2020-01-21 11:32, Paul de Weerd wrote: On Tue, Jan 21, 2020 at 11:25:33AM -0800, Jordan Geoghegan wrote: | dig doesnt core dump for me, it just prints this warning: ";; Error, | only port 53 supported". I wonder why the error isnt being printed | for OP. Interesting. Are you o

Re: dig -p 5353 foo.bar core dumped

On 2020-01-21 11:05, Paul de Weerd wrote: On Tue, Jan 21, 2020 at 06:58:02PM +0100, Dieter Rauschenberger wrote: | Hi misc, | | on my intranet i have unbound and nsd running, both on the same | machine. unbount is listening on port 53, nsd is listening on port | 5353 on 127.0.0.1. If i run |

Re: Can't locate OpenBSD/Quirks.pm in @INC

On 2020-01-17 18:10, myml...@gmx.com wrote: HI, I downloaded the install66.fs snapshot today, 20200117, and did a fresh install.  Even though I got the full install set, i used http from ftp.openbsd.org as the install source. Installation went fine but when I tried to install packages I

Re: OpenBSD's extremely poor network/disk performance?

On 2020-01-09 06:22, Hamd wrote: Joe, are you a joke? Please stop insulting me, this is not my/your_personal_fancy_forum. This will be my last post here in misc. Default setups, no config. changes. Just patches installed. Same hardware. FreeBSD: freebsd@test:~ # time sh -c "dd if=/dev/zero

Re: Odd /tmp behavior

On 2020-01-07 11:06, Karel Gardas wrote: On 1/7/20 7:38 PM, Jordan Geoghegan wrote:  > Using softdep on /tmp is a silly idea. > Why? To naive eyes it may look like a natural solution: e.g. before temp file is even created (on drive), it may be deleted which means there is no met

Re: LibreSSL performance issue

Is there a specific reason you're running i386 instead of amd64? And why are you testing this on FreeBSD? Wrong mailing list On 2020-01-07 08:26, Joe Greco wrote: On Tue, Jan 07, 2020 at 09:33:46AM -0600, Edgar Pettijohn wrote: In reality, when you dig down, often you find that there's

Re: Odd /tmp behavior

On 2020-01-07 09:16, Raymond, David wrote: On an AMD-64 workstation /tmp fills up to 105% according to df, apparently as a result of UNIX pipes in a shell script passing a whole lot of moderately big files. Examination of /tmp with du and ls -gal on /tmp shows no big files and trying to

Re: Traffic prioritization inside VPN

On 2020-01-02 11:13, Radek wrote: what about working directly on rsync side, specifying the maximum transfer rate? (--bwlimit option) Setting the hard transfer rate/limit on the rsync side is not what I need. I want my boxes to be able to use whole available bandwidth anytime. I mean if

Re: OpenBSD pf - redirect all DNS queries to local DNS server

On 2019-12-17 13:24, jin wrote: Sorry for top posting. Looks like you need an ip address lists which is updated dynamically. But this method is not like what you described here. It doesn't response back an IP address but it does block requests which is trying to get those ad.servers. if you

Re: unbound network optimizations

On 2019-12-12 06:21, Winter Paulson wrote: Hello, I'm also experiencing the "Host is down" problem: unbound: [85343:0] error: recvfrom 361 failed: Host is down Running openbsd 6.6 (GENERIC.MP), current syspatch, native unbound as a full resolver, pf disabled. OpenBSD is a guest VM on a

Re: Can't select files to upload in a browsers

On 2019-12-06 02:56, dmitry.sensei wrote: Firefox and Chromium browser, in the file selection window for upload, does not show the contents of directories other than the Downloads directory OpenBSD 6.6-current OpenBSD 6.6 GENERIC.MP#509 amd64 openbox-3.6.1p7 small, fast & usable window

Re: sysupgrade to 6.6 failed at comp66.tgz

On 2019-11-23 14:20, Rachel Roch wrote: This topic has been beat to death. deraadt@ and other have made it clear that if you do not install all the sets, you are running an unsupported configuration. It has been stated that if people keep bitching, they're just going to merge the release

Re: sysupgrade to 6.6 failed at comp66.tgz

On 2019-11-23 13:45, Rachel Roch wrote: - maybe sysupgrade needs to be patched to avoid this issue? Probably not. sysupgrade has assumptions baked in to it which have evidently been rendered invalid either by another tool or by the person using them. That tool is where the patch most

Re: Running Windows inside vmm/vmd VM.

On 2019-11-22 19:53, Jes wrote: On Fri Nov 22, 2019 at 9:04 PM Dumitru Moldovan wrote: Supported guest operating systems are currently limited to OpenBSD and Linux. As there is no VGA support yet, the guest OS must support serial console. Speaking of this, does anyone here have any

  1   2   3   >