Securely storing credentials for services

2019-03-20 Thread Kurtis 
Many daemons/apps need access to sensitive credentials. For example, a common 
web-application may need a password to query a database.

I have seen many different approaches to this. Some just store them in 
configuration files accessible [only] to the application. Others use password 
vaults, although one would still need a way to access that vault. In the 
Linux/Containerization world, it seems common to inject credentials as 
environment variables. I've even seen credentials stored directly in the 
software's source code. I'm sure there are many other approaches to this as 
well.

I'm curious what approach some of the more experienced folks in the OpenBSD 
universe prefer for managing these types of credentials -- especially when 
dealing with multiple servers.

Thanks!

Cloud-Storage & OpenBSD

2018-09-02 Thread Kurtis 
Hey all,

I'm just wondering if anyone has any suggestions with any Online File Backup / 
Synchronization services?

I used Dropbox for a long time but decided to drop it in favor of pCloud. It's 
about time to do another annual subscription so I'm looking at options.

I use the same service for backing up photos from my phone, backing up 
documents from computers, and syncing files between multiple machines (Mac, 
Windows, and Linux, Android).

Specifically, I'm looking for a service that is compatible with the major 
operating systems but also has a good client for OpenBSD.

Bonus feature would be the ability to share the service with my family using 
different accounts.

The ability to generate credentials that can only access certain folders would 
be _really_ cool. For example, my machines could generate reports and store 
them in my sync'd service so I could simplify viewing them from any machine.

Thanks!

Re: Gateway - Cannot bring WiFi up or broadcast ssid

2017-10-29 Thread Kurtis 
Thank you very much, Carlos! That explains a lot, and you
probably just saved me many more hours of frustration.

I purchased this WiFi device with my new APU2. Is there a guide
or list to find decent devices which will support hostap mode? I'm not
quite sure what to look for when reading specs or driver man pages.

>  Original Message 
> Subject: Re: Gateway - Cannot bring WiFi up or broadcast ssid
> Local Time: October 29, 2017 9:26 PM
> UTC Time: October 30, 2017 1:26 AM
> From: cardena...@gmail.com
> To: Kurtis <kurtismull...@protonmail.com>
> misc@openbsd.org <misc@openbsd.org>
>
> On 10/29/17 17:51, Kurtis wrote:
>
>> I am configuring my home gateway. Being enthusiastically new to
>> OpenBSD, I followed the directions here along with other various
>> bits of documentation along the way:
>> https://www.openbsd.org/faq/pf/example1.html
>> Unfortunately, I can't seem to understand how to bring my WiFi
>> network "up" and broadcast my SSID. Here is output from
>> ifconfig:
>> iwm0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>> lladdr f0:42:1c:80:df:90
>> index 4 priority 4 llprio 3
>> groups: wlan
>> media: IEEE802.11 autoselect
>> status: no network
>> ieee80211: nwid  chan 1 wpakey  wpaprotos wpa2
>> wpaakms psk wpaciphers ccmp wpagroupcipher ccmp
>> inet 192.168.2.1 netmask 0xff00 broadcast 192.168.2.255
>> Running these commands don't seem to do anything:
>>
>> ifconfig iwm0 up
>>
>> ifconfig iwm0 up scan
>>
>> Here is my /etc/hostname.iwm0 file:
>>
>> cat /etc/hostname.iwm0
>>
>> media autoselect mode 11n mediaopt hostap chan 1
>> nwid 
>> wpakey 
>> inet 192.168.2.1 255.255.255.0
>> dmesg output:
>>
>> dmesg | grep "iwm0"
>>
>> iwm0 at pci4 dev 0 function 0 "Intel Dual Band Wireless AC 7260" rev 0xc3, 
>> msi
>> iwm0: hw rev 0x140, fw ver 16.242414.0, address f0:42:1c:80:df:90
>> I'd appreciate if anyone can point me in the right direction on how to better
>> debug, learn, or otherwise get this working.
>
> Hi Kurtis,
>
> iwm(4) doesn't support hostap mode. You might want to check out a compatible
> ath(4) or athn(4) card.
>
> +--+
> Carlos

Gateway - Cannot bring WiFi up or broadcast ssid

2017-10-29 Thread Kurtis 
I am configuring my home gateway. Being enthusiastically new to
OpenBSD, I followed the directions here along with other various
bits of documentation along the way:

https://www.openbsd.org/faq/pf/example1.html

Unfortunately, I can't seem to understand how to bring my WiFi
network "up" and broadcast my SSID. Here is output from
`ifconfig`:

iwm0: flags=8843 mtu 1500
lladdr f0:42:1c:80:df:90
index 4 priority 4 llprio 3
groups: wlan
media: IEEE802.11 autoselect
status: no network
ieee80211: nwid  chan 1 wpakey  wpaprotos 
wpa2
 wpaakms psk wpaciphers ccmp wpagroupcipher ccmp
inet 192.168.2.1 netmask 0xff00 broadcast 192.168.2.255

Running these commands don't seem to do anything:

# ifconfig iwm0 up
# ifconfig iwm0 up scan

Here is my `/etc/hostname.iwm0` file:

# cat /etc/hostname.iwm0
media autoselect mode 11n mediaopt hostap chan 1
nwid 
wpakey 
inet 192.168.2.1 255.255.255.0

dmesg output:

# dmesg | grep "iwm0"
iwm0 at pci4 dev 0 function 0 "Intel Dual Band Wireless AC 7260" rev 0xc3, msi
iwm0: hw rev 0x140, fw ver 16.242414.0, address f0:42:1c:80:df:90

I'd appreciate if anyone can point me in the right direction on how to better
debug, learn, or otherwise get this working.