Re: Libressl verify failure with 3.9.0

> On Apr 8, 2024, at 5:44 AM, Theo Buehler wrote: > > On Sun, Apr 07, 2024 at 04:57:24PM -0500, Ted Wynnychenko wrote: >> Hello, >> >> I recently updated to -current (about a week ago). >> >> I see that Libressl is at 3.9.1 just now, but I hope that won't be an issue >> (I did not see

Re: ssl/libssl certificate validation broken?

On 20 Oct 21:01, Uwe Werler wrote: > Hi folks, > > before opening a bug report I'll ask here because I want to make sure that I > have not missed something. You should probably submit a real bug report instead of jumping to conclusions on misc@ > > With the upgrade to 6.8 my cert validation

Re: TOFU/cert pinning in libtls

On Sat, May 09, 2020 at 06:18:50PM +, Lucas wrote: > Hello Stephen, > > > My basic idea for the client is: > > > > - load a db of self-signed certs. > > - connect to host > > - if host cert is self signed > > - if not in db, prompt user and add to db > > - if in db, check fingerprint

Re: Suggestion: Replace Perl with Lua in the OpenBSD Base System

read fucking code. change fucking things. send some fucking diffs. get fucking yelled at. learn from your fucking mistakes. show some fucking passion. filter fucking misc@ and all this useless bleating into the toilet. none of us have time to spoon feed you in some “boot camp” there are two

Re: bug tracking system for OpenBSD

Christoph, your conversation is distracting. Nobody gives a damn about the tool. Everyone gives a damn about the triage. I hate to break it to you, but you are not the first person to broach this discusson. The only way this would work is with a dedicated team of people to triage each area and

Re: Meltdown workaround enabled?

On Wed, Mar 14, 2018 at 05:38 Robert Paschedag <robert.pasche...@web.de> wrote: > > > Gesendet: Mittwoch, 14. März 2018 um 06:13 Uhr > > Von: "Bob Beck" <b...@obtuse.com> > > An: "Brian Camp" <br...@thecamps.org> > > Cc: "

Re: Meltdown workaround enabled?

Intel make kitty scared... What a fuckmess. On Tue, Mar 13, 2018 at 22:57 Brian Camp wrote: > On Tue, Mar 13, 2018 at 10:39 PM, Theo de Raadt > wrote: > >> According to some sources, Intel and a handful of others have known > about the > >> issue since

Official OpenBSD 6.2 CD set up for auction on Ebay

So, the only 6.2 set to be produced is up for auction, featuring hand-drawn artwork by Theo. Artisanally Made in Canada! All proceeds of the sale to fund OpenBSD development. Go have a look at http://www.ebay.ca/itm/Official-OpenBSD-6-2-CD-Set/253265944606

Official OpenBSD 6.1 CD !

So. There *Is* an official OpenBSD 6.1 CD Just One. If you are interested, please bid on ebay : http://www.ebay.com/itm/The-only-Official-OpenBSD-6-1-CD-set-to-be-made-For-auction-for-the-project-/252910718452?hash=item3ae2a74df4:g:SJQAAOSwrhBZBqkd (It's a pretty cool little CD set!)

Re: Why isn't OpenBSD in Google Summer of Code 2017?...

We tried it for two years, it was too much effort on the part of the foundation organizers mentors to deal with the bureaucracy involved, and we didn't really see enough return in terms of new developers to the project, which, frankly being selfish on OpenBSD's part is the only reason for us to do

Re: white noise about broken manpage (web) links

You need to complain at reyk - since these web pages are not in the openbsd www/ tree they didn't get fixed when we converted to man.openbsd.org On Tue, May 10, 2016 at 10:52 PM, Vivek Vinod wrote: > Dear Misc, > > I could not find a separate mailing list for openiked. Hence

Re: ftp/www.openbsd.org will be down for an upgrade today.

ere is any info about the the time schedule for the > maintenance? > > Regards > > Markus > > > Am 08.05.2016 um 23:44 schrieb Stefan Wollny: >> >> Am 05/08/16 um 20:03 schrieb Bob Beck: >>> >>> There will be an extended downtime of the main ftp and w

Re: TLS now supported on openbsd.org?

>It's great to see OpenBSD Project supporting Let's Encrypt. I am absolutely not supporting Let's Encrypt. The client scares the shit out of me, and shows me how low the bar has become. Considering all I need is put something on a web site that I can convince a DNS server is the one they'll

ftp/www.openbsd.org will be down for an upgrade today.

There will be an extended downtime of the main ftp and www sites for an upgrade today starting in approximately one hour's time from now. The mirror sites should be unaffected - so use a mirror if you discover the main site is unavailable today. Thanks -Bob

Re: WAPBL?

> > Thanks in advance > > > On Fri, Apr 1, 2016 at 9:06 AM, Bob Beck <b...@obtuse.com> wrote: >> >> I have more up to date versions of these patches around here. >> >> The problem with them is that fundamentally, the WAPBL implementation >> as it

Re: WAPBL?

I have more up to date versions of these patches around here. The problem with them is that fundamentally, the WAPBL implementation as it is assumes that it may infinitely steal buffers from the buffer cache and hold onto them indefinitely - and it assumes it can always get buffers from it. While

But wait, there's more.. another 5.8 song!

Coming soon to http://www.openbsd.org/lyrics.html is the next 5.8 release song "A Year In The Life". I seem to have this bad habit of talking to Theo about release themes when drinking alcohol, and it brings out the poet (My inner Weird Al) in me. Then I get cajoled into finishing the Opus

BitCoin donations to the OpenBSD Foundation.

We've recently noticed a few attempts at larger Bitcoin donations to the OpenBSD Foundation. Due to the nature of these, we don't actually know who is attempting to donate, so I'm posting here. Due to changing laws, our provider (BitPay) had to limit transactions to $1000/day causing these

Re: OpenSSL vulnerabilities coming on the 19th

And while I will reiterate, stop mailing us privately and asking, I can confirm that the situation has changed, and core LibreSSL developers have now had disclosure from OpenSSL. We will be keeping discusssion of all details strictly to that group until such time as OpenSSL releases publicly.

Re: a thankyou to OpenBSD

Wave.. Thanks Diana. I still owe you a beer or thirteen. On Tue, Feb 10, 2015 at 5:26 PM, Diana Eichert deich...@wrench.com wrote: I don't post much any more, my OpenBSD systems just work. Just wanted to post a thank you to OpenBSD because it does just work. My day job entails a lot of

Re: new OpenSSL flaws

We are not on a linux distros mailing list, because we are not a linux distribution. And this private mailing list is not really an acknowledged conduit for vulnerability release. I was asked by someone privately if *I* would be on that mailing list on June 2nd. I said I would consider it, but

Re: new OpenSSL flaws

I may also remind people that those lists are acknowledged right at the top as experimental. They also do not allow for non personal subscriptions, so they aren't very practical for this. What if I was away for a day or three.. Or more.. Essentially this is a nice experiment, but not really a

Re: panic: softdep_deallocate_dependencies

I'll be taking a peek based on what I see in his traceback. Travelling at the moment. On 9 May 2014 06:44, Philip Guenther guent...@gmail.com wrote: On Thu, May 8, 2014 at 8:14 PM, STeve Andre' and...@msu.edu wrote: On 05/08/14 22:43, Philip Guenther wrote: On Thu, May 8, 2014 at 2:59

Re: OpenBSD Foundation 2014 Fundraising Campaign.

On the web site at www.openbsdfoundation.org. On Fri, Apr 11, 2014 at 10:15 AM, trifle menot trifleme...@gmail.com wrote: On 4/10/14, Bob Beck b...@openbsdfoundation.org wrote: The Foundation will continue to strive to improve its financial resources, and hopes to be able to provide further

OpenBSD Foundation 2014 Fundraising Campaign.

The OpenBSD Foundation is happy to report that the $150,000 goal of the 2014 fundraising campaign has been reached. We wish to thank our contributors large and small. We will continue our fundraising efforts both in the current year and next year. The success of this year's effort has allowed

Re: OpenBSD Website, multilanguage faq

Well if you're going to have your thousand hands, perhaps they could just do one word at a time, in one language, and pretty soon we'll morph into something that isn't english and you'll all be a happy little umama ofebayo I'll even start, as I looked in the kernel for a phrase to change, and the

Google Summer Of Code 2014.

together with students to accomplish things that may become useful to the community at large. This will be our first year doing this, so we hope to learn from the experience and see if it will work out in future years. -Bob Beck - The OpenBSD Foundation.

asdasd

Greetings All, About a week ago I warned you all that the OpenBSD project did not have the funds to cover our bills for the past year (especially the ability to handle the electricity) and that our funding sources were not sustainable. As most of you know the news of our predicament has been

OpenBSD Foundation Fundraising for 2014

Greetings All, About a week ago I warned you all that the OpenBSD project did not have the funds to cover our bills for the past year (especially the ability to handle the electricity) and that our funding sources were not sustainable. As most of you know the news of our predicament has been

Re: Request for Funding our Electricity

On Thu, Jan 16, 2014 at 10:58 AM, Daniel Cegiełka daniel.cegie...@gmail.com wrote: Another example: Google will pay even more than $3000 for finding an error in OpenSSH (Core infrastructure network services) - do they know about your problems?

Re: Request for Funding our Electricity

Yes, I believe so - and we'll be ramping that up shortly . but realisticly the need is for donations in general - electricity is one thing that the funding can be applied to. On Wed, Jan 15, 2014 at 3:27 AM, Luca Ferrari fluca1...@infinito.it wrote: On Tue, Jan 14, 2014 at 9:18 PM, Bob Beck b

Re: Request for Funding our Electricity

Just to bring this issue back to the forefront. In light of shrinking funding, we do need to look for a source to cover project expenses. If need be the OpenBSD Foundation can be involved in receiving donations to cover project electrical costs. But the fact is right now, OpenBSD will shut

Re: Request for Funding our Electricity

, and often, you (the people who use it and work with it) need to make the case to them that their support is important - far better that explanation comes from you rather than someone they don't know. -Bob On Tue, Jan 14, 2014 at 1:03 PM, Bob Beck b...@openbsdfoundation.org wrote: Just to bring

Re: Request for Funding our Electricity

an idea we'd probably like to put up - as it gets that crowdsourcing type interest going. But in this case it would likely not be 20K, more like a 150K yearly goal would be best. On Tue, Jan 14, 2014 at 2:16 PM, Kirill Bychkov ki...@linklevel.net wrote: On Wed, January 15, 2014 00:03, Bob Beck wrote

The OpenBSD Foundation now accepts BitCoin donations...

I'm happy to announce the OpenBSD foundation can now accept donations to assist in funding project activities in BTC. We are using BitPay.com to host our BitCoin donations, which are converted to CAD for use by the project. If you have been interested in making donations in BitCoin, please visit

Re: softdep issue in 5.3-current ?

Update to something that has version 1.27 of sys/kern/vfs_biomem.c and tell me if you still have the issue. On Wed, Jun 26, 2013 at 4:35 AM, Tori Mus torimus...@gmail.com wrote: Hi, I'm running current snapshot of OpenBSD on amd64 architecture, MP kernel (Lenovo Thinkpad to be concrete).

Still looking for 1U servers in western canada.

I'm still looking for 1U servers in western canada. we have an opportunity to build a better build infrastructure for ports but need the gear to do it with. I would be keenly interested in 1) Workable semi-modern amd64 capable intel hardware, 1U - 4 GB of ram or more is nice, One disk drive.

Call for support to continue Radeon KMS work...

Some of you may be aware of the recent developments in current that have brought us Intel KMS Support. With this we get proper accellerated X on current and future Intel graphics hardware. There are a few other nice side benefits to this work: - We gain the ability to use the kernel

Need for modern i386/amd64 machines in Edmonton AB.

The project is looking for some modern i386/amd64 machines in edmonton, AB. They need to be relatively recent, and rack mountable. Ideally they should have rails, or the ability to find rack mount rails for them. 1U is best, ideally something that runs OpenBSD well.

CD ordering problems in the last day or so fixed.

The https.openbsd.org machines were under a denial of service attack originating from LeaseWeb USA and LeasWeb Netherlands: Their nets have now been filtered and you should be able to order again. Thank you to those who dropped me a note. -Bob If you know anyone here you could tell them if

OpenBSD 5.2 Released

Schrijver, Alexander Yurchenko, Alexandr Shadchin, Alexandre Ratchov, Anil Madhavapeddy, Anthony J. Bentley, Antoine Jacoutot, Austin Hook, Benoit Lecocq, Bob Beck, Brandon Mercer, Bret Lambert, Brett Mahar, Bryan Steele, Camiel Dobbelaar, Can Erkin Acar, Charles Longeau, Christian

ftp/www.openbsd.org downtime today. don't panic

Hi Folks, The main web, ftp, and anoncvs servers are going to be down for a short period today while they move from data center to data center at the University of Alberta. The University has been so kind as to offer the project space in two racks in their new state of the art data centre in a

Re: quick query.

It is for me #export PKG_PATH=http://ftp.openbsd.org/pub/OpenBSD/snapshots/packages/amd64 # pkg_add tor tor-0.2.2.39: ok The following new rcscripts were installed: /etc/rc.d/tor See rc.d(8) for details. # pkg_info tor Information for inst:tor-0.2.2.39 Comment: anonymity service using onion

OpenBSD 5.2 song - and pre-orders for 5.2!

We have made available the song that will come out with the 5.2 release. The song and details of it are linked from: http://openbsd.org/lyrics.html Go have a look and a listen! The details for the upcoming 5.2 release are available at http://www.openbsd.org/52.html A reminder to you

Re: OpenBSD - UEFI Secure Boot

On Sat, Jul 7, 2012 at 11:25 AM, Tomas Bodzar tomas.bod...@gmail.comwrote: World is trying much worse stuff than UEFI http://extratorrent.com/article/2263/uk+prime+minister+calls+for+online+porn+ban.html What? they're going to ban porn? That's it, I'm quitting the internets.

OpenBSD 5.1 released May 1, 2012

of the software. Our developers are: Alexander Bluhm, Alexander Hall, Alexander Schrijver, Alexander Yurchenko, Alexandr Shadchin, Alexandre Ratchov, Anil Madhavapeddy, Anthony J. Bentley, Antoine Jacoutot, Ariane van der Steldt, Austin Hook, Benoit Lecocq, Bernd Ahlers, Bob

Re: Google SoC 2012 is accepting open source organisations

Actually, there are a couple of organisations that are willing to act as a proxy for the payments to organisations that are unable to deal with the legalities imposed by the US IRS - it is not just foreigners that have issues some projects inside the US just don't have the ability to deal

Re: Google SoC 2012 is accepting open source organisations

I have done GSoC as a mentor before though I have not been the admin for a project Have you dealt with the google contract then?

Re: Google SoC 2012 is accepting open source organisations

1) The OpenBSD Foundation is NOT OpenBSD. 2) That application never elicited a reply from Google, so no contract to read or sign was presented or known of. 3) At some later point the required contract was obtained and, as Theo has said, nobody in the OpenBSD project or at the OpenBSD

Re: Google SoC 2012 is accepting open source organisations

they didn't say that Theo refused to sign any paper. Just wonder, what kind of responsibilty that paper was about ? Accepting student's code to OpenBSD code base or something ? No, it's actually about personal liability for the mentor (i.e. me) for taxes and other such nonsense. Google SOC

Re: Google SoC 2012 is accepting open source organisations

at first, I'd notice, 3) != 4), right ? May not be the same, however they do want mentorship from somwhere associated to the projects. at second, taxes are rather government thing, not googlish ? why should I sign something with Google about taxes ? It doesn't make any sense. Because

Anyone got a 48 port gigabit switch, small and lower power? looking for a good home?

OpenBSD's building infrastructure has a need for such things. if you are in the process of rewhacking your network, I would love to hear from you if you have such beasts that might be sent our way. We are looking to get these things in Calgary, Canada.

Re: locate weirdness

So, you're advocating incomplete information? Is that not a bigger problem? No, we don't support old releases. 4.3 is very old. You should update your OS to something supported, and likely your problem will go away.

Openbsd 4.9 released May 1, 2011

, Alexander Hall, Alexander Yurchenko, Alexandr Shadchin, Alexandre Ratchov, Antoine Jacoutot, Ariane van der Steldt, Artur Grabowski, Austin Hook, Benoit Lecocq, Bernd Ahlers, Bob Beck, Bret Lambert, Camiel Dobbelaar, Can Erkin Acar, Charles Longeau, Chris Kuethe, Christian

Like OpenBSD? Like to see new stuff happening? You really need to order a CD today :)

Hi all, A number of you may have noticed the recent flurry of activity, leading to stuff like bigmem being turned on.. Some more good stuff is coming soon (my amd64 at my house is using 7 gigabyes of memory for buffer cache, and I'm doing builds without touching disks..). Some really

Re: OpenBSD 4.8 freezes on certain activities

Are you able to try the following? see if it solves your problem. Index: sys/kern/vfs_bio.c === RCS file: /cvs/src/sys/kern/vfs_bio.c,v retrieving revision 1.126 diff -u -r1.126 vfs_bio.c --- sys/kern/vfs_bio.c 3 Aug 2010 06:30:19

Re: Same shit all over again

Well, tinyurl redirects to my box which redirects to trollaxer. Here is the culprit log for falling for such a silly trick. 83.101.24.229 - - [15/Aug/2010:19:13:12 -0400] GET /why.html HTTP/1.1 200 136 - Mozilla/5.0 (X11; U; OpenBSD i386; en-US; rv:1.9.0.11) Gecko/2009070118 Firefox/3.0.11

Re: Same shit all over again

minutes before Theo gets back? I'd like to have some popcorn ready. :-) On Mon, Aug 16, 2010 at 9:27 AM, Bob Beck b...@ualberta.ca wrote: Well, tinyurl redirects to my box which redirects to trollaxer. Here is the culprit log for falling for such a silly trick. 83.101.24.229 - - [15/Aug

Re: libc/glob(3) DoS PoC for ftp.openbsd.org and ftp.netbsd.org

It's rather astonishing what attempts to passfor a credible security advisory today. oh, I made a lot of connections to the site and they blocked me. Thank you, Maksymillian, for showing us all that you can execute a denial of service attack from 90.156.82.13. I wonder how many connections his

OpenBSD 4.7 Released, May 19 2010

, Alexander Yurchenko, Alexandre Ratchov, Alexey Vatchenko, Anders Magnusson, Andreas Gunnarsson, Anil Madhavapeddy, Antoine Jacoutot, Ariane van der Steldt, Artur Grabowski, Austin Hook, Benoit Lecocq, Bernd Ahlers, Bob Beck, Bret Lambert, Can Erkin Acar, Chad Loder, Charles Longeau

Re: OpenBSD 4.7 Released, May 19 2010

Congratulations but I can't find a mirror with the release Did you read the entire message, in that was: ---8-- 1) Read either of the following two files for a list of ftp mirrors which provide OpenBSD, then choose one near you: http://www.OpenBSD.org/ftp.html

Re: OpenBSD 4.7 Released, May 19 2010

well, that looks a bit screwed, since it lists ftp.openbsd.org as not having everything :) On 19 May 2010 12:19, Stuart Henderson s...@spacehopper.org wrote: On 2010-05-19, Jorge Medina jo...@bsdchile.cl wrote: Congratulations but I can't find a mirror with the release

wwww.openbsd.org//ftp.openbsd.org downtime - Sunday Mar 21, 0800-1530 MDT

Hey gang The University of Alberta is having a large scale electrician party in our data center on Sunday Mar 21 to bring more power into it. As a result we'll be without cooling for the duration. Expect ftp/www.openbsd.org along with anoncvs1.ca.openbsd.org and the web/ftp fanout machines to be

Re: observed spamd behavior

2010/1/7 open...@noid.net: In the absence of any feedback, I would say that I have two feature requests for spamd (Bob, are you out there?): 1) Detect '500 5.5.1 Command unrecognized' loops, and when found, start to gap response times with an increasing delay. 2) When a client does

Re: spamd.conf format

2009/12/21 Nick Berg nickb...@gmail.com: From the spamd.conf manual: The format of the list of addresses is expected to consist of one network block or address per line (optionally followed by a space and text that is ignored). Comment lines beginning with # are ignored. Network

Re: Web Browsers

2009/12/18 nixlists nixmli...@gmail.com: On Fri, Dec 18, 2009 at 9:07 PM, Marco Peereboom sl...@peereboom.us wrote: firefox + adsuck What is your opnion on Chrome, OpenBSD gurus? Okay we all know about it's privacy and identity leakage concerns. It's designed by Google with this built-in -

Re: OT: Have you hugged your local OpenBSD dev lately?

From past experience, I would expect much waving of hands over a two weeks periods, with lots of expert telling you It's a complicated problem, running around in circle finding even MORE complicated problems to solve, and then things going back to its general state of apathy with respect to

Re: OT: Have you hugged your local OpenBSD dev lately?

The Journal Of Child Psychology And Psychiatry has concluded that an estimated 98 percent of children under the age of 10 are remorseless sociopaths with little regard for anything other than their own egocentric interests and pleasures.

Re: OT: Have you hugged your local OpenBSD dev lately?

| People are at the core motivated by their own self-interest. Anyone | who says they aren't is selling something. Yes, they're selling hilarity. It's The Onion, after all. Yes, but it's funny because it's true. Even OpenBSD developers are motivated by self interest...Ever wonder why the

Re: malloc: out of space in kmem_map

2009/12/14 Jeff Ross jr...@openvistas.net: Hi all, While doing some pgbench runs on a new server before I put in on-line, I triggered a malloc: out of space in kmem_map panic. trace and ps (long) below, dmesg below that. I have adjusted sysctl values like so for postgres: # For

Re: running openbsd 4.6 under qemu

Current qemu releases (more recent than in the ports tree) do not run on OpenBSD (have not been able to solve this yet *sigh*) so the above person has Linux running natively and OpenBSD inside a newer qemu. Originally it was kvm that had this bug but looks like qemu is now bug-for-bug

Re: Why is getaddrinfo breaking POSIX?

2009/12/11 Theo de Raadt dera...@cvs.openbsd.org: I did a quick perusal of the source (and compared it against the NetBSD tree) and it looks like the easiest way to make getaddrinfo() thread safe is to TURN OFF Yellow Pages (pee). NetBSD changes the only variable globals to local (in they yp

Re: ComixWall terminated [WAS: ComixWall 4.6 released, December 8, 2009]

COMIXWALL isn't a fork, its just a preinstalled configuration panel for OpenBSD and a collection of nice utilities. And considering (and no offence here) the COMIXWALL developers are enthusiasts not paid professional developers. So where's the harm asking some advice? After all lets face

Re: Free Gorillas

2009/12/8 Paige Thompson erra...@devel.ws: ftp.openbsd.org got rid of the free gorillas, whats up with that? According to eminent authority, it's because OpenBSD Developers are Masturbating Monkeys - not gorillas.

Re: spamd greylisting and 2nd MX question

I certainly do not see this behaviour. sounds to me very likely that your primary is not reachable for some reason and they are trying the secondary. 2009/12/5 inet_use...@samerica.com: Hi, I am using the -M option of spamd and I am seeing a lot good servers being trapped because they

Re: asynchronous I/O

2009/12/4 Ted Unangst ted.unan...@gmail.com: On Fri, Dec 4, 2009 at 10:20 AM, Luis Useche use...@gmail.com wrote: Exactly, I am more interested more in something close to aio_read aio_write. I was hoping there was some api I can use. Is there any reason why POSIX aio does not exist in OBSD?

Re: TiVo + ATT/squid + web caching issue.

Here's a nickel kid - Get a better ISP. Fuck people, if you don't vote with your feet when they do this shit eventually you'll be able to do nothing. 2009/12/1 Christopher Hilton ch...@vindaloo.com: I'm having a problem running a TiVo for my mother-in-law. To save some money she changed her

Re: Security via the NSA?

Like everyone verifies SSL.. right? 2009/11/21 Samuel Baldwin recursive.for...@gmail.com: 2009/11/21 AG computing.acco...@googlemail.com: Depends on whether one trusts the NSA or not. That's the nice thing about open source software; we don't have to, because we can verify their code or

Re: Spamd china and korea lists

We're having issues witht them periodically blocking our access to the site - which has happened since we have a failure. I have a version of the lists there now, but I think it may actually be time to retire that example from spamd.conf - those lists just aren't as useful as they were in past

Re: Authpf and more than 992 users

2009/11/18 Janusz Gumkowski janusz.gumkow...@am.torun.pl: Is it at all possible to have more than 992 simultaneous authpf users ? Yes, use more than one machine. Digging out an old post of mine, still not having any real solution but a couple of ugly hacks instead, trying to get rid of

Re: OpenBSD platform of choice?

i386/amd64. Nothing else is realistic these days. Sparc64 is wonderful but is basically legacy - it's great for finding bugs and I use it for hacking but is not something I run in production. All my production gear is i386 or amd64 - with a few exceptions. Yes, the hardware sucks and the biosen

Re: OpenBSD platform of choice?

2009/11/12 Lars Nooden lars.cura...@gmail.com: Stupid business decisions aside, you can get if you try Sparc from Sun or Fujitsu for server work Kind of, but I don't really think it's got a future. It's kind of like advocating necrophila with a fresh corpse.. or maybe just doing it with a

Re: OpenBSD platform of choice?

2009/11/12 Bob Beck b...@ualberta.ca: Kind of, but I don't really think it's got a future. It's kind of like advocating necrophila with a fresh corpse.. or maybe just doing it with a really hot coma patient. It might be really good for a short time but you know there isn't much potential

Re: Truncation Data Loss

2009/11/10 Jussi Peltola pe...@pelzi.net: On Tue, Nov 10, 2009 at 11:18:57AM -0700, Theo de Raadt wrote: If you want to never lose data, you have an option. Make the filesystem syncronous, using the -o sync option. If you can't accept the performance hit from that, then please accept that

Re: kern.bufcachepercent

...@gmail.com: On Tue, Nov 3, 2009 at 11:44 PM, Bob Beck b...@ualberta.ca wrote: 2009/11/3 Luis Useche use...@gmail.com: I read in the 4.6 changelog that his was part of the release. Am I missing something? Do I have to recompile? Or this is just a bug? Yeah you are missing something. Listen

Re: http://www.theregister.co.uk/2009/11/03/linux_kernel_vulnerability/

2009/11/3 Gilles Chehade gil...@openbsd.org: On Tue, Nov 03, 2009 at 04:58:25PM -0700, Theo de Raadt wrote: [bcc'd to Dan Goodin @ theregister] If anyone wants a choice quote from me about the recent Linux holes, this is what I have to say: Linus is too busy thinking about masturabating

Re: kern.bufcachepercent

2009/11/3 Luis Useche use...@gmail.com: I read in the 4.6 changelog that his was part of the release. Am I missing something? Do I have to recompile? Or this is just a bug? Yeah you are missing something. Listen to the *whole* presentation and read the *whole* changelog. This is *not* in 4.6

Re: Secure way to delete data in hard disc

2009/10/28 Noah Pugsley noa...@bendtel.com: Can I interest you in a pair of steganograpanties? Or for cooler weather, steganograpantaloons? The problem with steganograpanties is that residual images of my ass are present *underneath* the panties - therfore if the offending Germans were to use

Re: 200g harddisk after newfs = Available 174g?

There are many stupid ideas in other operating systems, I don't see why we should be required to implement them. Yeah, and the discussion of my ass is a more productive discussion than talking about making df display marketing gigabytes That'll happen in openbsd right after we switch the

Re: privileged instruction fault trap

2009/10/29 Roger Schreiter ro...@planinternet.de: Today, the system crashed, . kernel: privileged instruction fault trap, code=0 Stopped at ip_output +0xb8: ddb _ . Any helpful hints? http://www.openbsd.org/cgi-bin/man.cgi?query=crashapropos=0sektion=0manpat

Re: PF challenge dealing with HTTPS URL restriction policies.. would it help, other possible solution?

apache or other reverse proxy. 2009/10/29 Matthew Young myoung24...@gmail.com: Hello, Iam looking for a way to have an allowed list of SSL enabled sites that a end user can browse, but this entirely done on a server level with _zero_ configuration on the pc. In a dream world, squid would

Re: PF challenge dealing with HTTPS URL restriction policies.. would it help, other possible solution?

have to know the SSL key of the remote SSL site. (gmail.com) so that the reverse proxy server would decrypt and encrypt. Iam not mistaken. -- Matt On Thu, Oct 29, 2009 at 2:50 PM, Bob Beck b...@ualberta.ca wrote: apache or other reverse proxy. 2009/10/29 Matthew Young myoung24

Re: openbsd ca tutorial

http://lmgtfy.com/?q=OpenSSL+set+up+own+Certificate+Authority 2009/10/29 Abdullah Sendul coffeesm...@gmail.com: Hi, I am trying to create my own CA on openbsd. but unfortunately couldnt find any tutorial on this, there are some on freebsd, linux, but they are giving some errors. can you

Re: PF challenge dealing with HTTPS URL restriction policies.. would it help, other possible solution?

, 2009 at 12:57 PM, Matthew Young myoung24...@gmail.com wrote: Hello, If I use a reverse proxy I would have to know the SSL key of the remote SSL site. (gmail.com) so that the reverse proxy server would decrypt and encrypt. Iam not mistaken. -- Matt On Thu, Oct 29, 2009 at 2:50 PM, Bob Beck b

Re: PF challenge dealing with HTTPS URL restriction policies.. would it help, other possible solution?

use a reverse proxy I would have to know the SSL key of the remote SSL site. (gmail.com) so that the reverse proxy server would decrypt and encrypt. Iam not mistaken. -- Matt On Thu, Oct 29, 2009 at 2:50 PM, Bob Beck b...@ualberta.ca wrote: apache or other reverse proxy...

Re: Secure way to delete data in hard disc

I would rather my family photos Yeah, but I hike with bastards who take pictures of my ass and put it up on the internet for all to see.. So how can I delete the data from his web server? Is there some kind of remote bioctl --de-assify I could run?

Re: Secure way to delete data in hard disc

What, you have pictures of my ass too? Obviously I must make something to write a random pattern over my entire ass so that It won't be recognized if some germans steal it.

Re: Secure way to delete data in hard disc

2009/10/28 Henning Brauer lists-open...@bsws.de: * Bob Beck b...@openbsd.org [2009-10-28 20:57]: I would rather my family photos Yeah, but I hike with bastards who take pictures of my ass and put it up on the internet for all to see.. So how can I delete the data from his web server

Re: CVSync problems?

ahhh. Nick, you should not be depending on mirrors to run cvsync to do that. Every time you pull the repository from me you should afterwards run a cvscan.. cvscan -c /etc/cvsyncd.conf which recreates the file correctly every time. -Bob 2009/10/19 Nick Holland n...@holland-consulting.net:

Re: Forum engine

... how inexperienced web developers default to using MySQL because it has a lower barrier to entry, without considering if it's the right tool for the job or how to configure and secure it appropriately for production use. s/MySQL/php/g s/MySQL/asp/g s/MySQL/JavaScript/g

  1   2   3   4   5   >