Re: How to create "paranoid" cipher list in httpd.conf

On Tue, Sep 1, 2015 at 6:14 AM, Andreas Thulin wrote: > Hi misc readers! > > > My current httpd.conf contains a line saying > > tls ciphers "STRONG:ECDHE:!aNULL:!SSLv3:@STRENGTH" > > which renders out "Configuration OK" with '# /usr/sbin/httpd -n'. > A really stupid

Re: Unable to do putty/SSH into fresh openBSD 5.6-install

You need to look at debug. From console: # /etc/rc.d/sshd stop sshd(ok) # /usr/sbin/sshd -d Now try to log in and see if you can get any clues from the output. On Sun, Apr 19, 2015 at 10:11 AM, Jon S jonsjost...@gmail.com wrote: Updated PuTTY from 0,63 to 0,64, but no improvement. Any

httpd core dump

Running March 26 snapshot, amd64, and built-from-source for getting backtrace. Simple httpd.conf. Note that tls config is before non-tls -- it works fine the other way: http_ip=192.168.1.131 server default { listen on $http_ip tls port 443 listen on $http_ip port 80 root

Re: OpenBSD and disk slowliness

Hopefully this is not too bad advice... I've found the performance with cache=none to be unacceptable as well. I'm using cache=writeback. Of course you'll get much better performance if you remove Linux/KVM. :) On Thu, Jan 8, 2015 at 3:21 PM, Jorge Gabriel Lopez Paramount

My USB KVM seems to work 100% now

http://marc.info/?t=13604368593r=1w=2 This seems to be fixed in the July 13 snapshot. I no longer have to insert/remove my USB stick to get the keyboard working. THANKS! Kent.

Sysmerge problem with xetc56.tgz on July 16 amd64 snapshot

# sysmerge -x xetc56.tgz === Fetching file:///root/xetc56.tgz === Fetching file:///root/SHA256.sig === Verifying xetc56.tgz against /etc/signify/openbsd-56-base.pub === Populating temporary root under /var/tmp/sysmerge.CJzwPVyHXg/temproot tar: WARNING! These patterns were not matched:

Current snapshot (7/14) has mismatched libc

xbase55 is linked against libc.so.77.0, but base55 (dated 7/13) only has libc.so.76.0. Best to wait until base55 gets updated again. Kent.

Re: ssh-add: June 26 snap cannot read an id_rsa file

On Fri, Jun 27, 2014 at 4:29 AM, Christian Weisgerber na...@mips.inka.de wrote: On 2014-06-27, Josh Grosse j...@jggimi.homeip.net wrote: I just updated from a June 17 to June 26 snapshot. The ssh-add utility now fails immediately: [...] Between these two snapshots there was a major bump for

Re: ssh-add: June 26 snap cannot read an id_rsa file

On Fri, Jun 27, 2014 at 6:12 AM, Josh Grosse j...@jggimi.homeip.net wrote: On 2014-06-27 08:21, Kent Fritz wrote: Seeing the same here. I tested re-creating my keys, and the problem seems to be with password. With password, it fails; without, it works. If I didn't have passphrases, I

2014/07/13 - changes to minherit(2) and new getentropy(2)

Future change, or 1-bit error? http://www.openbsd.org/faq/current.html Kent.

Re: jun 12 snapshot freeze on boot.

Just a data-point: works here on a more modern qemu-kvm 1.6.1: OpenBSD 5.5-current (GENERIC) #186: Thu Jun 12 21:59:00 MDT 2014 ... cpu0: QEMU Virtual CPU version 1.6.1, 3311.47 MHz ... On Thu, Jun 12, 2014 at 4:31 PM, Rodrigo Mosconi open...@mosconi.mat.br wrote: Follow bsd.rd dmesg:

Re: Question regarding hearbleed patch (002) for OpenBSD 5.5...

I found a few hidden statically linked instances of OpenSSL (on other platforms) using strings. e.g.: strings /usr/bin/ftp | grep OpenSSL

Re: DTMF tones over IP

Not sure about playing remotely, but if you add the sox package, you get tools to generate files or directly to audio out. The following play the tones to your audio output: DTMF 1: play -n synth 0.5 sine 697 sine 1209 channels 1 DTMF 0: play -n synth 0.5 sine 941 sine 1336 channels 1 On Tue,

sysmerge error

I get the following after upgrading to the latest snapshot. Am I doing something wrong? Thanks, Kent. # pwd /root # ls -l total 18812 -rw-r--r-- 1 root wheel 22 Jul 30 2013 .Xdefaults drwx-- 3 root wheel 512

Re: Trouble with connect to www.aeroflot.ru

Odd. Just tried it. Works on Linux, doesn't on OpenBSD. Not related to user agent; it seems to not respond to SYN. Perhaps their running PF and filtering us!

Re: I haven't heard of anyone else with this screen problem

On Fri, Mar 7, 2014 at 11:20 PM, Jan Stary h...@stare.cz wrote: On Mar 05 15:53:06, glis...@witworx.com wrote: When booting and the screen goes to its 34 line 85 column mode, the text mode fits into 30cm wide and 22cm high at the top left corner of a 38cm wide 30cm high screen. With

Latest amd64 snapshot installer problem

Just downloaded install55.iso, and extracted the files for an upgrade. The installer seems to be looking for /etc/signify/openbsd-55-base.pub, but only /etc/signify/55base.pub exists. I didn't proceed from there. Kent.

Re: checksums and installer

On Fri, Feb 21, 2014 at 2:24 AM, frantisek holop min...@obiit.org wrote: i have just installed the feb 20 snapshot on a personal netbook (not server). to install snapshots, i normally download the iso, copy the files from it to my home, and boot up bsd.rd and then select the sets from an

Re: Is my 5.4 CD ok?

Only a small subset of the packages fit on the CD. Emacs is not on the CD afaik. You can set multiple sources in your PKG_PATH variable (colon deliminated), so set the second one to be a mirror. See man pkg_add. On Thu, Jan 16, 2014 at 5:28 PM, Mario mario@videotron.ca wrote: Hi list.

Re: Accept two vlans

On Wed, Aug 7, 2013 at 1:55 AM, lilit-aibolit lilit-aibo...@mail.ru wrote: Hello misc. I'd like to setup guest Wi-Fi in my LAN to prevent access to local resources. I have OpenBSD gateway with em NIC connected to LAN. LAN based on switches with VLAN support. Suppose I have created two VLANs

vic driver problem with TSO and VLAN

I've run into a problem with data corruption, and I'm not sure if it's in the vic driver or the VMware VMXNET2 code. If someone can nudge me in the right direction, it would be appreciated. I have 2 VM's on VMware ESXi 5.1.0. First VM is Debian 7, with eth1 connected to a vswitch in a Virtual

Re: Foxconn NanoPC nT-i1250 fails to boot after install

...@nolizard.org wrote: Hi Kent, On 14/01/13(Mon) 10:05, Kent Fritz wrote: On Fri, Jan 11, 2013 at 5:29 PM, Stefan Sperling s...@openbsd.org wrote: I see. So this is happening during pms_probe() which runs before the protocol is selected. Maybe fix it like this? I think the code should cope

Re: KVM switch - keyboard

Just a data point...one of the boxes I've tried (can't remember which of Foxconn nt535, nt-i1250, nt-i2847) had a similar/same problem. About 30%-50% of the time when I switched to it, no kernel messages on the screen, no keyboard. I found that plugging in a USB flash drive caused both the flash

Re: Foxconn NanoPC nT-i1250 fails to boot after install

On Fri, Jan 11, 2013 at 5:29 PM, Stefan Sperling s...@openbsd.org wrote: I see. So this is happening during pms_probe() which runs before the protocol is selected. Maybe fix it like this? I think the code should cope with hardware that returns unrecognizable garbage. But I don't know very much

Re: Foxconn NanoPC nT-i1250 fails to boot after install

I dug a little deeper, and defined PCKBCDEBUG in /usr/src/sys/dev/ic/pckbc.c, and it spews: pckbc_cmd: lost 0xfc Looking at pckbc_poll_cmd1, it looks like there's an infinite loop if it doesn't get back a response it expects. What's best: specifically handling 0xfc, or erroring out on any

Re: Foxconn NanoPC nT-i1250 fails to boot after install

On Wed, Jan 9, 2013 at 5:34 PM, Stefan Sperling s...@openbsd.org wrote: Shot in the dark: Does it not hang if you disable the pms driver via boot -c? See the boot_config(8) man page. The RAMDISK_CD kernel doesn't have pms compiled in, and it might be the next thing pckbd0 is trying to

Re: Foxconn NanoPC nT-i1250 fails to boot after install

On Thu, Jan 10, 2013 at 9:26 AM, Stefan Sperling s...@openbsd.org wrote: Can you please try to find out which protocol probe routine is responsible for hanging the machine? None of them. I tried as you suggested, then just #if'd out every entry in that structure. No change in behavior.

Foxconn NanoPC nT-i1250 fails to boot after install

Install works fine, but consistently stops after printing: wskbd0 at pckbd0: console keyboard, using wsdisplay0 Same behavior for 5.2 release, current, amd64 and i386, and another model nT-i2847. Any hints where to poke next? dmesg from booting bsd.rd follows. Thanks. Kent OpenBSD