On Thu, May 17, 2007 at 02:14:55PM -0500, Eric Johnson wrote:
Obviously, a fake skey challenge would need to be saved so that if the
attacker tried again, he would see the same challenge.
Instead of saving the challenge, just regenerate it each time. E.g.,
hash a 128-bit secret with the
On Thu, May 17, 2007 at 02:47:37PM -0500, Matthew R. Dempsky wrote:
Instead of saving the challenge, just regenerate it each time. E.g.,
hash a 128-bit secret with the username, and then format this as an
skey challenge.
Oops, nevermind, libskey already does this in skey_fakeprompt.
On Wed, May 09, 2007 at 02:51:35PM +0200, Michael wrote:
Now, as I understand it, it isn't possible to create an IPsec connection
from a single host within a NATed network to an external server but
OpenVPN works great here. Please correct me if I am wrong. (I have no
access to the NAT router
Suppose I setup a wireless network and use authpf to restrict access
to some resource (e.g., Internet access) to registered users. It
seems there's a fairly simple man-in-the-middle attack:
An attacker sets up a system with two wireless NICs: one associated to
my network and another configured
I've found a lot of documents cause xpdf to crash when using
MALLOC_OPTIONS=P, and now I've found a way to crash firefox as well.
Does anyone have advice on tracking down and fixing these bugs?
On Tue, Apr 24, 2007 at 10:25:27AM -0400, Dan Farrell wrote:
So the word is that -generic- won't support 3d because it doesn't have
DRM, but you could always have an OpenBSD kernel with DRM compiled in?
The ``it'' that doesn't have support for DRM isn't just the GENERIC
configuration---it's the
On Tue, Apr 24, 2007 at 03:23:59AM +1000, Sunnz wrote:
So I am wondering if anyone knows what radeon cards are supported by
this radeon driver in Xorg 7.2 and what's the state of its 3D
capability on OpenBSD using 100% free code?
OpenBSD doesn't have DRI, so there's no 3D acceleration with any
On Tue, Apr 24, 2007 at 04:47:20AM +1000, Sunnz wrote:
Ohhh I see now that's why it says 2d only. Thanks.
Those man pages are from X.org. X.org supports 3d acceleration on
some (older) graphics cards but only 2d on some (newer) others.
OpenBSD does not support 3d acceleration on any cards.
On Tue, Apr 24, 2007 at 12:37:52AM +0200, frantisek holop wrote:
i can't think of any serious reason, could you help out a bit?
4.1 isn't released yet.
On Mon, Apr 16, 2007 at 01:51:19PM -0600, Shane Harbour wrote:
Something went wrong when you pulled the tree down. Last I checked
xenocara should be under /usr like XF4 is and not under your src
directory. /usr/src should only contain the kernel and userland for the
base system. Someone
On Thu, Apr 12, 2007 at 10:44:52AM -0400, Dan Farrell wrote:
Wait, so every time documentation is inaccurate or incomplete or simply
not to your liking, you're going to call it a bug
``incorrect documentation is a bug''
--http://www.openbsd.org/papers/opencon06-culture.pdf
(of the
On Thu, Apr 12, 2007 at 08:12:20PM +0200, Vim Visual wrote:
According to them, there aren't any drivers for the Raid Controller...
Is that true?
OpenBSD has drivers for RAID controllers, but you'll need to provide
more details to answer the question of whether OpenBSD has drivers for
your RAID
On Thu, Apr 12, 2007 at 10:34:25PM +0200, Maurice Janssen wrote:
The manpage for rdate(8) uses the -c option in the examples at the
bottom (leap second correction), but the given host (ptbtime1.ptb.de)
doesn't need this.
SNTP gives time in UTC, but some sysadmins would prefer to synchronize
On Wed, Apr 11, 2007 at 04:18:41PM +0100, Jeroen Massar wrote:
Good that I PGP sign my messages [...]
And the mailing list strips your signatures:
[demime 1.01d removed an attachment of type application/pgp-signature which
had a name of signature.asc]
On Wed, Apr 11, 2007 at 10:02:50PM +0100, Stuart Henderson wrote:
On 2007/04/11 13:41, Bryan Irvine wrote:
scp [EMAIL PROTECTED]:a\ b .
you have to escape to *both* your local shell, and the remote shell
This has always seemed silly to me. Does anyone intentionally use
$ scp host:a b .
On Wed, Apr 11, 2007 at 04:33:32PM -0400, Nick ! wrote:
Karel, single quotes cause backslashes to be backslashes, instead of
escape chars (*except* if it's a backslash in front of a single quote,
so that you can escape single quotes to include them).
No, backslashes have no special meaning
On Fri, Apr 06, 2007 at 11:50:15AM -0400, Marcus Watts wrote:
It's a shame the gnu folks didn't release their reversed engineered
specifications separately.
They did: http://bcm-specs.sipsolutions.net and
http://bcm-v4.sipsolutions.net.
On Fri, Mar 30, 2007 at 10:34:44AM +0200, giovanni wrote:
on my box, 4.1-current,
sysctl -a hw.sensor
is empty
Assuming you actually typed ``sysctl -a hw.sensors'' at the
command-line, I would suspect you compiled and are running a new
kernel, but did not recompile sysctl against the new
On Tue, Mar 27, 2007 at 05:10:48AM +, [EMAIL PROTECTED] wrote:
Has anyone played with OpenGrok yet?
http://opengrok.creo.hu/openbsd/
On Fri, Mar 23, 2007 at 10:27:45AM -0700, J.C. Roberts wrote:
No. You've just destroyed your libraries in a way that's worse than just
deleting them since now you will need to wade through strange error
messages which are trying to tell you why your stripped libraries no
longer work.
On Mon, Mar 19, 2007 at 08:02:10PM -0400, Nick ! wrote:
Wait, how is * defined on two voids? That shouldn't even compile
(unless it's autocasting to int?).
``unsigned'' is short for ``unsigned int''. The ``(void *)'' cast is
a red herring.
On Tue, Mar 20, 2007 at 01:35:28AM +0100, Frank Denis wrote:
Le Mon, Mar 19, 2007 at 07:12:24PM -0300, Gustavo Rios ecrivait :
I am writing a very simple program but the output change for the c
variable value change every time i run it.
int
main(int argc, char **argv)
{
unsigned long
On Mon, Mar 19, 2007 at 09:55:04PM -0400, Paul D. Ouderkirk wrote:
And because I love to reply to myself, if I compile it with -O3, I can
reproduce your results:
-O3 enables -fstrict-aliasing, which this program violates. The man
page explains in more detail.
On Wed, Mar 07, 2007 at 11:48:05AM -0500, Jason Beaudoin wrote:
The timezone data is simply a set of dates and times to tell the system when
to switch to/from DST. So without the patch, the system will not make any
changes. Ntpd won't change this, as the DST change occurs on the next level.
On Fri, Mar 02, 2007 at 02:55:25PM +, Stuart Henderson wrote:
MD5 is built as part of the main OS release (/usr/src/etc/Makefile);
X is built separately.
What about a patch like this? (Just a proof of concept; completely
untested.)
Index: Makefile
On Fri, Mar 02, 2007 at 01:01:22PM -0600, Matthew R. Dempsky wrote:
What about a patch like this? (Just a proof of concept; completely
untested.)
Sorry, copy/paste mangled the tabs in that. It also occured to me the
sort invocations are probably unnecessary.
Index: Makefile
On Wed, Feb 14, 2007 at 12:51:36PM +0100, Han Boetes wrote:
Most GPL fans don't want this deal at all.
Real GPL fans appear to be an increasingly diminishing subset of Linux
users today though. They're being supplanted by users who want snazzy
3D desktops and simply embrace ``Free Software''
On Tue, Feb 13, 2007 at 11:21:19AM +0100, Karel Kulhavy wrote:
[EMAIL PROTECTED]:~$ ./ekiga
./ekiga: error while loading shared libraries: libstdc++.so.6: cannot handle
TLS data
TLS in this context probably refers to Thread Local Storage. I don't
think it's C++ specific though.
On Tue, Feb 13, 2007 at 08:18:50AM -0500, Kenneth R Westerback wrote:
So OpenBSD uses 64*32, divides the number of sectors (which all
devices do provide) by this value to give a cylinder count, and
truncates the fractional cylinder. So up to 64*31 = 1984 sectors
will be 'wasted'.
Windows
On Mon, Jan 29, 2007 at 01:30:01PM -0600, Travers Buda wrote:
Well I think both are equally dangerous (binary firmware and binary
drivers.) They're basically the same thing.
My understanding has always been that a bad binary driver can corrupt
main memory, but a bad binary firmware is limited
On Mon, Jan 29, 2007 at 03:52:03PM -0600, Travers Buda wrote:
Well there is that proof-of-concept that debuted at BlackHat where
those researchers compromised the OS of a macintosh. I was under the
impression that they compromised it via the firmware, but it is
equally possible it was
On Wed, Jan 24, 2007 at 03:08:50PM +0059, Han Boetes wrote:
Joachim Schipper wrote:
You'd need to use
0 * * * * /sbin/atactl /dev/wd0c smartstatus 21 /dev/null | \
mail -s wd0 ERRORS on serverXYZ [EMAIL PROTECTED]
You just sent _all_ output to /dev/null
No he didn't.
On Mon, Jan 22, 2007 at 12:19:16PM +0100, Alexander Farber wrote:
I'm writing a small network daemon program and
want it to drop priviliges after it opens a listening port.
You might also be interested in looking at the ucspi-tcp and ipsvd
packages. They both include programs to listen on a
On Fri, Jan 19, 2007 at 11:07:14AM -0500, Adam wrote:
If you can't fread() from a stream
that is associated with a directory, then why associate the stream with
a directory in the first place?
Does the C (or any) standard say it should fail? fopen(3) works on
directories under Linux and
On Thu, Jan 18, 2007 at 07:41:07AM -0500, Seth Hanford wrote:
1) Does it make sense to have spamd discard malformed sender / recipient
addresses? In this case, there is no envelope sender address at all,
which I seem to recall violates an RFC
Null return paths are used for delivery failure
On Fri, Jan 12, 2007 at 11:53:34AM -0800, Bryan Irvine wrote:
isn't that the recomended method in C too? I have no authority in
this but my ancient C CGI book does it that way too IIRC.
Maybe for when you're using a fixed string, but when you want to pass
user input as an argument to a
Some packages (e.g., binutils 2.17) want to issue sed commands like
s,^.*/,,;s,^,avr-,;;s/$//
but OpenBSD's sed doesn't handle empty expressions as in this. The
patch below adds support for this.
(It also eliminates a useless null pointer check: p is checked for
nullity when it is set a few
On Thu, Dec 28, 2006 at 09:42:45AM +0100, Claudio Jeker wrote:
Btw. I'm rebooting with the SD card inserted perhaps that does the trick.
Hm, I think I'm having the same experience then.
If I reboot(1) and have a (512MB) SD card inserted, I get the
``sdmmc0: can't enable card'' message at boot
On Wed, Dec 27, 2006 at 11:12:00AM +0100, Claudio Jeker wrote:
I have the same issue on my X40. After I used the SD slot I need to reboot
to make it work again.
Hard reboot, not soft reboot, right?
I have the feeling this is a BIOS issue as other
X40 users (like uwe@) do not seem to have
The other night I was playing with the SD card reader in my Thinkpad
X40 (dmesg below), and I noticed it began misbehaving.
The problem seemed to arise after issuing ``eject sd0'' (but I suspect
that was purely coincidental). Just now I've updated to the latest
4.0-current snapshot, and here's
When I run ``sysctl hw.sensors'' on one of my machines, I get the
following output:
$ sysctl hw.sensors
hw.sensors.0=it0, Fan1, 5113 RPM
hw.sensors.3=it0, VCORE_A, 1.25 V DC
hw.sensors.4=it0, VCORE_B, 2.56 V DC
hw.sensors.5=it0, +3.3V, 2.38 V DC
hw.sensors.6=it0, +5V, 3.52
On Sat, Dec 23, 2006 at 09:18:54PM -0600, Matthew R. Dempsky wrote:
It would look like those values are *way* out of range, [...]
Sorry, I just meant the voltage values.
On Mon, Dec 18, 2006 at 02:02:00AM +, pedro la peu wrote:
Don't let this interrupt your complain-fest, but if you want to move
beyond whinging and start trying to figure out what the bad performing
cards have in common then you know what you have to do...
Don't let this interrupt your
On Thu, Dec 14, 2006 at 12:55:42PM -0600, Jacob Yocom-Piatt wrote:
print testing | read testread
This is a known problem with pdksh that the developers have stated
they don't plan to change. `read' only updates the value of
`testread' in the child shell process, not the parent.
E.g., ``print
On Wed, Nov 29, 2006 at 06:31:21AM -0700, Diana Eichert wrote:
just remember you may end up spawning a daemon child or even worse, some
of you may fork a child.
Personally, I'm wary of zombies.
I'm trying to setup a few diskless Linux machines using an OpenBSD 4.0
machine to provide NFS, and two questions have arisen:
First, if I edit a line in /etc/exports, does it suffice to send
SIGHUP to mountd on the server and remount the filesystem on the
affected clients? If not, what are the
On Sat, Nov 18, 2006 at 06:36:35PM +0800, Jing Peng wrote:
Supposing my proxy server use http protocol, and its IP address is
*.*.0.9, and the username is abc.s34(please notice that it has a dot
inside), the password is abc. So, what should I input for HTTP/FTP
proxy URL?
Looking at ftp(1)'s
On Sat, Nov 18, 2006 at 11:56:13PM +0800, Jing Peng wrote:
I had tried it for times, but with no success.
Does your proxy support FTP? Have you tried telling the installer to
use HTTP instead of FTP?
On Sat, Nov 18, 2006 at 09:13:36PM +0100, Joachim Schipper wrote:
IIRC, the version of FTP built for the RAMDISK kernel does not support
proxy authentication. If this is correct, what you are seeing is
unsurprising.
I thought it only lacks HTTPS support?
On Fri, Nov 10, 2006 at 03:42:41PM +0800, Ikmal Ahmad wrote:
Based on http://www.openbsd.org.my/sparc64.html, seem that OpenBSD can
install on Sun Blade 100/150 machine. I have this problem when do
disk installation on Blade 100. Below is the error.
Funny you should mention this. I just
On Thu, Oct 26, 2006 at 12:44:25PM +0100, RCF wrote:
The server had been in testing for almost a month with rdate
configured to run every 6 hours before I rebooted. So I don't really
think the clock was off.
Clocks naturally drift over time. Four minutes over about 1.5 years
seems reasonable.
I came across a the below peculiarity in gdb: the third argument to
regcomp(3) appears mangled in gdb's output when I set a breakpoint and
run it. Even though I pass 1 (i.e., REG_EXTENDED) to regcomp, gdb
says that -809753220 was passed.
I see this behavior on 3.9 and a now rather of date 4.0
On Sat, Oct 21, 2006 at 02:50:57PM +0200, LeVA wrote:
Then the umask command came to my mind, but then I would have to make a
script, which contains the umask line, and after that call cronolog,
and pipe the logs to this script.
Would someone please hint me with a more simple and elegant
On Tue, Oct 17, 2006 at 11:36:53PM +0200, [EMAIL PROTECTED] wrote:
Well the discussion tiself is useless because the developers have to
decide if they wanna fix the DoS or not.
^^^
You keep using that word. I do not think it means what you think it
means.
On Tue, Oct 17, 2006 at 02:37:32PM -0700, Karsten McMinn wrote:
OpenBSD 3.9 (GENERIC) #617: Thu Mar 2 02:26:48 MST 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
cpu0: Intel(R) Celeron(R) CPU 2.00GHz (GenuineIntel 686-class) 2 GHz
cpu0:
On Wed, Oct 18, 2006 at 02:18:03AM +0200, [EMAIL PROTECTED] wrote:
Exmaple: You`re at meeting and somebody unplugs your pgt-Card and voila
your kernel crashs. I would call this a clearly DoS. Because after the
attack your OS is kinda useless because of the kernel panic.
Kernel panics suck, but
Lately, I have been in several discussions regarding Intel's stance
towards the open source community, and the topic of providing hardware
documentation frequently arises. However, since I am not much of a
kernel hacker, I do not have a good perspective on what documentation
is necessary.
For
On Sun, Oct 01, 2006 at 12:06:46PM -0600, Theo de Raadt wrote:
But this does bring up the side question: Is all of Red Hat
Enterprise Linux licensed under the licenses stated at
http://opensource.org/licenses, [...]
Obviously not---they include the IPW firmware.
The stanza describing WIFCONTINUED has a close parenthesis, but no
corresponding open parenthesis. The WIFSTOPPED description doesn't
parenthesize the statement describing when the macro can evaluate to
true, so this shouldn't be parenthesized either.
--- wait.2~ Tue Sep 26 14:55:36 2006
+++
On Thu, Sep 21, 2006 at 02:24:29PM -0700, Steve B wrote:
I'd like to redirect the daily log messages that go to root to an external
email address.
Explanations have already been given on how to redirect all of root's
mail to someone else, but in case you really want just the daily log
messages
On Wed, Sep 20, 2006 at 10:29:10AM -0500, Karle, Chris wrote:
That looks suspect to me; that seems like a lot for cable modem level
traffic.
I'd check if your mbufs number ever goes down.
I've rechecked the output of netstat -m occasionally since then, and I
haven't seen them go down at
On Thu, Sep 14, 2006 at 10:38:35AM -0500, Karle, Chris wrote:
If you're using a rl* can you take a look at your mbuf usage (netstat -m)?
On my OpenBSD 3.9 firewall, sis0 is connected to my internal network,
and rl0 is connected to my cable modem.
$ netstat -m
2546 mbufs in use:
2525
On Mon, Sep 11, 2006 at 02:18:31PM +0530, Girish Venkatachalam wrote:
What do I use? I need a spartan simple tool like magicpoint itself.
Is xfig the right choice?
I have used xfig for creating simple graphs and diagrams for homework
assignments, and I think it does the job well. I found the
On Sat, Sep 09, 2006 at 03:45:35AM +, Tan Dang wrote:
Is it just not possible to setup a trunk with an iwi device?
It's possible. I used to trunk em(4) and iwi(4) without problems, but
I never set the nwid/nwkey before creating the trunk. (I've since
then both replaced the iwi(4) with a
On Sat, Sep 09, 2006 at 09:50:16AM -0400, Woodchuck wrote:
FILE *mail;
char sendmail[512];
sprintf(sendmail, %s %s, SENDMAIL_PATH, RECIPIENT);
use snprintf here, this is exactly the sort of code that some joker
will try to do a buffer overflow on.
Assuming RECPIENT
On Sat, Sep 09, 2006 at 10:23:05PM +0200, Joachim Schipper wrote:
On Sat, Sep 09, 2006 at 12:30:27PM -0500, Matthew R. Dempsky wrote:
Does OpenBSD have a popen(3) replacement but with an exec(3)-like
interface instead of a system(3)-like one?
Not really, IIRC; using pipe() and exec
On Mon, Sep 04, 2006 at 09:30:13AM +, Marcus Popp wrote:
On 2006-09-03T23:16, Bill Marquette wrote:
Other than Intel, is anyone else making quad port gig cards?
Silicom makes em-based quad/six port cards.
I thought the point of this subthread was Bill trying to avoid
em(4)-based cards?
On Mon, Sep 04, 2006 at 11:01:20AM -0700, Darrin Chandler wrote:
On Mon, Sep 04, 2006 at 11:27:32AM -0500, Matthew R. Dempsky wrote:
On Mon, Sep 04, 2006 at 09:11:52AM -0500, [EMAIL PROTECTED] wrote:
Automating stuff you do NOT understand stands little chance of making
anything better. Me
On Mon, Sep 04, 2006 at 01:30:47PM -0500, Roger Midmore wrote:
I recently got a acer aspire 3000 laptop which i got for a good price.
Unfortunately it's got a broadcom wireless card which won't work under
openbsd. I was wondering if there's some way to get it working or if i
have to replace it
On Sun, Sep 03, 2006 at 05:00:37PM -0700, Ray Percival wrote:
On Sep 3, 2006, at 3:59 PM, Sylwester S. Biernacki wrote:
Theo wrote about em driver in OpenBSD and bad vendor design of Intel
NICs in general. Exactly the opposite I have used Intel server cards
with ~320Mbps traffic (max of
I just hacked the FreeBSD backend of wpa_supplicant enough to connect
my OpenBSD laptop to my university's wireless network (just Dynamic
WEP, not TKIP or CCMP). I also had to add an ugly hack to
dev/ic/rt2560.c to ignore ENETRESET when issuing a SIOCS80211NWKEY
ioctl(2) (see below).
The patch
I just replaced the IPW2200 mini-PCI card in my Thinkpad with a
ral(4)-based MSI MP54G4 (MS-6833A-010) from newegg.com (dmesg snippet
below). It works great so far, except the radio activity LED that
used to indicate association with an access point and network activity
no longer lights up at
On Fri, Aug 25, 2006 at 05:38:19AM +1000, Scott Radvan wrote:
Or am I missing something which could allow the install to use all
available bandwidth?
Can you first choose S for shell, run the necessary sysctl commands,
then exit the shell and start the install process as usual?
On Mon, Aug 21, 2006 at 02:31:20PM +0400, Bruno Carnazzi wrote:
I'd like to implement a daemon supervisor that could automatically
restart a daemon when it crashes.
I like runit[1] or daemontools[2] for this purpose.
[1] http://smarden.sunsite.dk/runit/
[2] http://cr.yp.to/daemontools.html
On Wed, Aug 16, 2006 at 09:27:35AM -0700, Darrin Chandler wrote:
On Thu, Aug 17, 2006 at 01:30:43AM +1000, John Tate wrote:
--
/(bb|[^b]{2})/ that is the Question:
I believe the question is 0x2b|~0x2b, and the answer is 0xff. This is
tautalogical and not restricted to 0x2b.
Which
On Sun, Aug 13, 2006 at 01:19:31PM -0400, Nick Guenther wrote:
I think you're looking for ifconfig(8). Wait, doesn't linux have
ifconfig? What's ip for?
ip is from the iproute2 package. From the lartc.org manual, ``Why
iproute2?''[1]:
Most Linux distributions, and most UNIX's, currently
On Mon, Aug 14, 2006 at 03:56:13PM -0400, Nick Guenther wrote:
I could imagine the openbsd crew having simply not written in support
for shared key, but I can't speak for them.
There's some support for shared key authentication in the kernel, but it
was disabled in
I have three machines that I'm using for testing network performance:
- 2.0GHz Pentium 4, 256MiB RAM, Ubuntu 6.06, e1000
- 266MHz Pentium II, 192MiB RAM, Debian Unstable, sk98lin
- 600MHz Pentium M, 256MiB RAM, OpenBSD 4.0-current, em(4)
All network settings are still at their
On Thu, Aug 03, 2006 at 11:27:16PM +1000, Shane J Pearson wrote:
What about an open wireless network, which does not allow anything to
be routed out of the OpenBSD WAP unless it is authpf authorised. Then
only VPN traffic.
What does authpf+VPN provide in this use case that VPN alone
On Wed, Aug 02, 2006 at 06:04:19PM +0200, Michal Soltys wrote:
[ reminder about the routing table works ]
Whoops, you're right. It wasn't anything specific to sk0 and sk1, just
because of how I assigned IP addresses.
Small correction to my prev post - messing with route / PF to enforce going
On Tue, Aug 01, 2006 at 11:24:17PM +0200, Michal Soltys wrote:
icmp's replies would go through loopback in such case.
Really? I got the impression from tcpdump that traffic from sk0 to sk1
(whether ICMP request or reply) always went over the ethernet cable
while traffic from sk1 to sk0 did
On Fri, Jul 28, 2006 at 10:38:49AM -0400, Carlos A. Carnero Delgado wrote:
In the mean time, I'd like to keep ftp-proxy running most of the time.
What do you guys use/recommend to watch if a process dies and restart
it?
I would use daemontools[1] or runit[2]. There's also freedt in ports,
Jul 2006 12:30:23 -0500
From: Matthew R. Dempsky [EMAIL PROTECTED]
To: Brad [EMAIL PROTECTED]
Subject: Re: em(4) remains in unknown link state until inserting a cable
Message-ID: [EMAIL PROTECTED]
On Sun, Jul 09, 2006 at 12:36:51PM -0400, Brad wrote:
Are you running 3.9 -release/-stable or -current
On Mon, Jul 10, 2006 at 12:45:04PM +0200, Henning Brauer wrote:
two seconds is too close. due to the weird dhclient architecture
(dhclient-script has to die for interface IP configuration!) we have to
work with time windows. it is 5 seconds afair.
I notice this issue is not limited to
I notice GCC 4.1 includes a reimplementation of the stack smashing
protection already included in OpenBSD. Have there been any comments on
this new functionality from the OpenBSD community? Anyone know of
differences between IBM's old and the new merged functionality?
(I realize upgrading
On my laptop, starting at reboot and until I have inserted an ethernet
cable, em(4) leaves its if_link_state as LINK_STATE_UNKNOWN. This
causes problems for me because when trunk(4) is setup to use em(4) as
the master port, it will not failover to the secondary port until
if_link_state
On Sun, Jul 09, 2006 at 08:31:23PM +0159, Han Boetes wrote:
Karel Kulhavy wrote:
I read man dhcp and man dhclient and wasn't able to determine
how to restart the DHCP process (or the whole network) if my
cable modem with DHCP server crashes and I have to reboot it. I
suggest this
On Sun, Jul 09, 2006 at 09:37:12PM +0200, Peter Philipp wrote:
I'm trying to encrypt a stream, per byte (8 bit) instead of per block (usually
8 bytes) in the kernel. CFB and OFB ciphers are ok if they are a block cipher
as they pretty well can encrypt per byte according to applied cryptography
On Sun, Jul 09, 2006 at 09:22:05PM +0200, Paul de Weerd wrote:
Sure, just 'dhclient ${if}'. When 'something' (even another dhclient
process) touches the networking config of a dhclient-configured
interface, dhclient will exit (as not to change the new config later).
Not true. I started five
(I tried sending a similar email to this one about an hour ago, but it
has not turned up yet, while other emails sent since then have appeared
on the mailing list. I apologize if this results in redundant mail.)
On Sun, Jul 09, 2006 at 09:22:05PM +0200, Paul de Weerd wrote:
Sure, just
On Sun, Jul 09, 2006 at 10:47:54PM +0200, Peter Philipp wrote:
I'm talking about this:
for (i = 0; i AESCTR_BLOCKSIZE; i++)
data[i] ^= keystream[i];
Hm, I'm not familiar with OpenBSD's crypto layer, but CTR mode should
not require padding. Perhaps its a limitation
On Wed, Jul 05, 2006 at 12:24:34PM +0200, Joachim Schipper wrote:
Consider five lower-case words chosen from 1024 possibilities each, for
instance - this has 50 bits of entropy, roughly equivalent to a
10-character password based on natural language [1]; a little fuzzing
and use of capitals
On Wed, Jul 05, 2006 at 11:30:54AM -0600, Stephen Bosch wrote:
I am not seeing any traffic on enc0 when using tcpdump, that is why I
asked.
Are you sure IPsec is being used? Can you see IPsec-processed traffic
on the physical interface?
On Tue, Jul 04, 2006 at 12:04:11AM -0400, Chet Uber wrote:
Not to bicker, but the resources needed to use a database of all
possible passwords even with alphanumerics and salted is very finite
-- albeit large.
OpenBSD's blowfish passwords have 128-bits of salt. A table of all 8
character
On Tue, Jul 04, 2006 at 02:29:56AM -0400, Chet Uber wrote:
NP-complete problems are the most difficult complexity problems.
No, NP-complete problems are the most difficult problems _in NP_.
On Tue, Jul 04, 2006 at 12:12:22PM -0700, c.s.r.c.murthy wrote:
Also please confirm that there is no kernel parameter to make pf
block everything by default.
Yes, there is no kernel parameter to make pf block everything by
default. You make pf block everything by default by putting ``block
On Fri, Jun 30, 2006 at 04:43:21PM -0500, Todd T. Fries wrote:
IPcomp is known broken for at least two years, perhaps longer. Do not use it.
What makes you say that? I can't find any mention of this in the man
pages, on openbsd.org, or misc's archives.
Is it possible to configure dhclient(8) to automatically re-request a
DHCP lease on media changes (e.g., plugging in a new ethernet cable,
associating with a new wireless access point, trunk(4) switching between
interfaces)? If not, does anyone else think this a worthwhile feature
to add?
On Tue, Jun 20, 2006 at 11:36:06AM -0400, Nick Guenther wrote:
I think hotplugd(8) might help here. The manpage says: 3
network interface so you should be able to just write a one-liner to
do it.
I'm not sure hotplug is useful here. hotplug(4) says the only events
signaled are device
On Fri, Jun 16, 2006 at 10:55:05AM -0500, Jacob Yocom-Piatt wrote:
the current code uses realloc in the manner suggested by the manpage:
newsize = size + 1;
time(t1); // start timing realloc
if ((newap = (int *)realloc(ap, newsize*sizeof(int))) == NULL) {
1 - 100 of 112 matches
Mail list logo