Re: I want copy pf.conf from FreeBSD 8.2 to OpenBSD 5 and use it

2011-11-07 Thread Kevin Chadwick
On Mon, 07 Nov 2011 21:53:20 +1100 Rod Whitworth wrote: as they all should. ^^^ His clock of course should be right but what's wrong with sorting by Maildir number (occassional mis-order but guaranteed aproximate order/receipt order vs spammers or forged messages floating to the top)

Re: how to disable fsck when power failure

2011-11-08 Thread Kevin Chadwick
On Tue, 8 Nov 2011 11:09:32 +0100 David Coppa dco...@gmail.com wrote: You can try something like this patch: Index: rc === RCS file: /cvs/src/etc/rc,v retrieving revision 1.396 diff -u -p -r1.396 rc --- rc13 Oct 2011

Re: Kernel without INET6 error on pipex.c

2011-11-24 Thread Kevin Chadwick
On Thu, 24 Nov 2011 22:12:10 +1100 Rod Whitworth wrote: You are the only one who knows exactly what you did. Maybe. Why should we waste time guessing? It's a pretty damn stupid thing to do anyway when it is so easy to block v6 traffic using GENERIC and, BTW, your kernel is NOT GENERIC.

Re: Kernel without INET6 error on pipex.c

2011-11-24 Thread Kevin Chadwick
On Thu, 24 Nov 2011 12:42:15 -0200 Christiano F. Haesbaert wrote: Is there any point in keeping INET6 as removable option ? Can't we just get rid of all the #ifdef INET6 goo ? Wy is it there, untill it was stable? All I know is it saved me from having to upgrade a firewall and from having

Re: usb device causes system crash (ucomstart: null oxfer)

2011-11-28 Thread Kevin Chadwick
On Mon, 28 Nov 2011 10:02:41 +0100 Daniel Gracia wrote: When I unplug the device the system hangs or if I run usbdevs the system hangs, once hung the watchdog kicks in and reboots the machine. Completely unsubstantiated and untested theory but out of interest does it still hang if you whip

Re: Mounting big FAT filesystems

2011-11-28 Thread Kevin Chadwick
On Mon, 28 Nov 2011 11:20:57 + wrote: it is true that FAT filesystems of more than 120GB cannot be mounted? Will this change? You can install ext support on windows but that's not as ready to go without autoplay install which may be disabled anyway but does get around the 2G max filesize.

Re: Mounting big FAT filesystems

2011-11-28 Thread Kevin Chadwick
On Mon, 28 Nov 2011 16:05:36 +0100 Raimo Niskanen wrote: I have a 500GB FAT32 USB disk that I had to create from OpenBSD since as you say Windows will not create it. I just tried a 2TB dosfs made by Linux and it worked just fine copying the openbsd songs onto it :-) Not a long test but worked.

Re: how to find dependencies when building a new kernel

2011-11-29 Thread Kevin Chadwick
On Tue, 29 Nov 2011 10:05:11 +0100 T. Valent wrote: `fpu_mxcsr_mask' The above line is just an example. I have poked around with more or less guessing what could be missing, but after 2 days I'm quite sure I need a general solution to finding the dependencies instead of guessing. I have

Re: how to find dependencies when building a new kernel

2011-12-01 Thread Kevin Chadwick
On Thu, 01 Dec 2011 12:08:38 +0100 T. Valent wrote: Yeah, I know and I don't think that this is a problem with OpenBSD. However, I'm in an unusual situation not comparable to the standard user or developer. I have a very special demand. I'm asking if anybody can tell me anything about how to

Re: Narcicism?

2011-12-01 Thread Kevin Chadwick
On Thu, 1 Dec 2011 16:39:24 +0100 David Coppa wrote: See the subject: Narcicism And, btw, the correct spelling is Narcissism: as a guru, this is something you should already have known ;) I prefer narsciscism ;^) Kc

Re: RAM seen vs. RAM available HP ML 570 G2

2011-12-07 Thread Kevin Chadwick
On Wed, 7 Dec 2011 13:45:56 -0200 Daniel Bolgheroni wrote: Modern x86 processors support PAE (Physical Address Extension) in which a 32-bit processor can address more than 32-bit physical addresses. But not without the OS supporting it. Wouldn't that make ROP attacks more difficult too?

Re: maildir in sendmail

2011-12-08 Thread Kevin Chadwick
On Thu, 8 Dec 2011 10:57:49 + (GMT) Dennis Davis wrote: The exim MTA should be able to deliver mail directly in maildir format. Although this facility isn't built in by default. Exim has a bad reputaion and also blocks unnecessary things like mx ips even though they are accepted in RFCs.

Re: Automatic fsck -y at Boot

2011-12-15 Thread Kevin Chadwick
On Thu, 15 Dec 2011 08:29:40 -0500 Kenneth R Westerback wrote: You can change the 'fsck -p' in /etc/rc to whatever varient you wish. There is, to my knowledge, no knob. You probably realise but be aware you can lose data with fsck -y but only on writable filesystems?

Re: Where to buy Lemote FuLoong MIPS boxes?

2011-12-16 Thread Kevin Chadwick
On Fri, 16 Dec 2011 02:00:39 +0100 Fritz Wuehler wrote: Hey diana, how about a fucking blowjob? It's a bit hard to do those two things at the same time and she couldn't fit you in her mouth anyway, you fuckin dick.

Re: Automatic fsck -y at Boot

2011-12-16 Thread Kevin Chadwick
On Fri, 16 Dec 2011 10:49:22 +0100 Rudolf Leitgeb rudolf.leit...@gmx.at wrote: There are setups where the stored data is the most important thing and there are setups where the task is the most important thing, and for the latter ones an automatic fsck -y is the way to go. Or take advantage

Re: Automatic fsck -y at Boot

2011-12-19 Thread Kevin Chadwick
On Mon, 19 Dec 2011 13:52:40 +0100 Henning Brauer wrote: while we're really good in that and fsck almost always succeeds and fixes things up i have seen different. Same here, though I have to admit when there are lots to go through, I can't rememeber not doing an fsck -y. Usually the datas not

Re: Automatic fsck -y at Boot

2011-12-19 Thread Kevin Chadwick
On Mon, 19 Dec 2011 14:39:42 +0100 Rudolf Leitgeb wrote: Guess what your home router does, and what (if you have one) your cell phone does? It loses unimportant data. Hennings points stand. One of the beauties of OpenBSD is it's init which is easy to follow and edit. To give such a feature

Re: I want buy labtop ,work OpenBSD, wireless network must work

2011-12-30 Thread Kevin Chadwick
On Fri, 30 Dec 2011 04:42:43 -0500 STeve Andre' wrote: It's not the newest model, but the W500 is a wonderful laptop. I am using it now. 2.8G core two Should that be w500 with dual core. Core two duos have botched microcode with security risks according to Theo, though I'm not sure of the

Re: Longsoon/Godson MIPS boxes, where to buy?

2012-01-02 Thread Kevin Chadwick
On Sun, 1 Jan 2012 13:39:29 -0700 (MST) Diana Eichert wrote: There is no reason to converse with this dreeb. Yet another person who hides behind anonymity when they want to throw down a diatribe. Maybe he has some personal experience with cheap labour that can explain this but I really wonder

Re: ro / and /etc on mfs - clarification

2012-01-05 Thread Kevin Chadwick
On Thu, 5 Jan 2012 13:47:43 -0800 Chris Cappuccio wrote: /dev needed to be MFS for sshd to work, it wanted to update metadata on tty devices, i'm not sure if that's still the case anymore. It is though you can use sftp or static dev entries for an admin on his tod. --- Kc

Re: locate weirdness

2012-01-13 Thread Kevin Chadwick
On Wed, 11 Jan 2012 20:28:57 +0100 Marian Hettwer wrote: Try to look from a different angle here. Say, you would have an old Debian Sarge release (years old) and you would approach a debian mailing list with something is weird with locate, pretty sure you would get a lot of advises to

Re: [SOLVED] Re: should 'make -j8 build' work?

2012-02-08 Thread Kevin Chadwick
On Wed, 8 Feb 2012 18:52:15 +0100 Norman Golisz wrote: actually, it's the most reliable way to detect faulty hardware. Memory testers, if at all, only find specific issues (mostly by writing and reading bit patterns to RAM). They can't stimulate and stress the hardware as a build process

Re: [SOLVED] Re: should 'make -j8 build' work?

2012-02-08 Thread Kevin Chadwick
On Wed, 8 Feb 2012 11:27:14 -0500 Joe Gidi wrote: I actually resolved this by pulling and reseating all the DIMMs. Oddly enough, prior to that, the box went through 3 complete runs of memtest86+ without error, but continued to hang at random spots during 'make -j8 build'. By complete

Re: smartphones and managing openbsd servers

2012-02-22 Thread Kevin Chadwick
On Wed, 22 Feb 2012 10:23:33 +0100 Raimo Niskanen wrote: Sorry, sftp, When I looked, I couldn't find an open source sftp for Android but andftp works well. I'm very careful with what I let the almost constantly full of exploits phone have access to (a network being as strong as it's weakest

PF proliferation, the more the merrier

2012-03-01 Thread Kevin Chadwick
Me and my brother won a Blackberry Playbook and though you can't even search in pdfs and it demands use of cifs. I'm a little impressed with the spec, I'd have no idea if I didn't have one. Apparently it has compiler and linker protections, Propolice, PIE, full RELRO, ASLR and what led me to find

Re: My OpenBSD 5.0 installation experience (long rant)

2012-03-07 Thread Kevin Chadwick
B Use (W)hole disk or (E)dit the MBR? [whole] You should certainly try Ctrl-C, Esc, Ctrl-alt-del, power switch and never enter in order to not do something. Taking the situation of the cat jumping on the keyboard and you may have an argument except you do have to hit [I] for install first and

Re: My OpenBSD 5.0 installation experience (long rant)

2012-03-07 Thread Kevin Chadwick
On Wed, 7 Mar 2012 13:52:45 -0500 Sean Howard wrote: This error is the best error you can make. Keeps you respecting your system and your own ability to control it. Leonardo, have you ever started zeroing the wrong /dev/ with dd yet? Backup everything important and hope it saves you more

Re: My OpenBSD 5.0 installation experience (long rant)

2012-03-08 Thread Kevin Chadwick
On Thu, 08 Mar 2012 10:50:15 +0100 Dmitrij D. Czarkoff wrote: Furthermore, the more chatty installer is, the less amount of newcomers would be reading the messages. I had a thought last night, how worrying that my mind jumped to OpenBSD in front of the TV. It occurred to me that it wasn't too

Re: Suggestion

2012-03-11 Thread Kevin Chadwick
On Sun, 11 Mar 2012 08:58:24 +0100 (CET) Anonymous wrote: Forgive me for not feeling like a criminal when I run bootlegged copies of XP in a VM to do stuff for $WORK since I do believe I have the right to run to run copies of the Curse of Redmond without pissing further hard earned $CURRENCY

Re: My OpenBSD 5.0 installation experience (long rant)

2012-03-12 Thread Kevin Chadwick
On Mon, 12 Mar 2012 08:55:03 +0100 Fredrik Staxeng wrote: Dmitrij D. Czarkoff czark...@gmail.com writes: So you state that the fact that if one chooses to use the whole disk, the whole disk is used needs further documentation? Once upon a time, mkfs used to make a 10-second pause before

Re: Is there kernel option like as vga=?

2011-05-04 Thread Kevin Chadwick
this was in FAQ7.5 Code. But I have found just only destroyed console at ttyC5. Man page of wsconscfg is more confusing. I don't know what destroyed means (blank?). I have a very old laptop. If I do wsfontload -h 8 -e ibm /usr/share/misc/pcvtfonts/vt220l.808 wsconscfg -dF 5 wsconscfg -t

Re: Why does GENERIC kernel for OpenBSD 4.8 and 4.9 not support software RAID

2011-05-05 Thread Kevin Chadwick
On Thu, 5 May 2011 08:25:30 +0200 Henning Brauer wrote: I bet I'm not the only person using RAIDFrame close to production without realizing it's not even maintained code. if it's not in GENERIC is not a strong enough hint, I dunno. Actually, it's a little known fact that all the best

Re: bsd.rd and (automated) upgrading

2011-05-05 Thread Kevin Chadwick
On Sat, 30 Apr 2011 13:15:33 +0200 Rogier Krieger wrote: Yes, see e.g. Yaifo. The link came by earlier this week on the list. http://sourceforge.net/projects/yaifo/files/yaifo/4.8/yaifo-4.8.tgz/download I noticed the Update to 4.9 added to CHANGES and downloaded yaifo from cvs. Built

Re: User not listed under guest group

2011-05-08 Thread Kevin Chadwick
On Sat, 7 May 2011 20:33:33 +0300 Michael Sioutis wrote: And apparently a user needs to have a secondary group membership in group wheel to have sudo powers :) Not quite, it does what it says on the tin. If you want to give ship steering permissions then group wheel is good but there is no

Re: [Bulk] html5 video and browsers

2011-05-10 Thread Kevin Chadwick
On Tue, 10 May 2011 12:04:50 +0200 LEVAI Daniel wrote: Hi! I'm trying out youtube with html5 videos, and I have few question to the fellow video watchers. In mozilla-firefox I can't even enable html5 in youtube :/ If it's mozilla-firefox 3.6 then you can play html5 video but only in ogg

Re: problem with download limit

2011-05-10 Thread Kevin Chadwick
On Tue, 10 May 2011 15:55:29 +0400 OpenBSD Geek wrote: Any idea ? media: Ethernet autoselect (100baseTX full-duplex) Not sure, there's certainly not enough info here. PF won't cause that unless you have some queuing limit. Maybe you have an autonegotiation conflict. You could try setting all

Re: problem with download limit (resolved)

2011-05-11 Thread Kevin Chadwick
On Wed, 11 May 2011 10:27:59 +0200 Henning Brauer wrote: bad advice. zero effect by definition. Yeah but some ciscos etc. don't follow the definition and a device could have been set manually.

Re: problem with download limit (resolved)

2011-05-11 Thread Kevin Chadwick
On Wed, 11 May 2011 12:51:38 +0200 Henning Brauer wrote: yeah right, changing the size of a socket buffer will help a lot for a forwarded connection where no sockets are involved Now, remove the laptop, take a pc, install OpenBSD 4.8, configure the network card with a public ip address I

Re: bsd.rd and (automated) upgrading

2011-05-11 Thread Kevin Chadwick
On Thu, 5 May 2011 21:23:40 + Kevin Chadwick wrote: On Sat, 30 Apr 2011 13:15:33 +0200 Rogier Krieger wrote: Yes, see e.g. Yaifo. The link came by earlier this week on the list. http://sourceforge.net/projects/yaifo/files/yaifo/4.8/yaifo-4.8.tgz/download I noticed the Update

Re: xxxterm and firefox35 May 11 snapshot

2011-05-14 Thread Kevin Chadwick
On Sat, 14 May 2011 15:05:50 -0500 Amit Kulkarni wrote: Delete all packages, reinstall them. This happens when firefox and gtk are built on separate days. The pkg system does a good job tracking version numbers, but the contents of a pkg can depend in subtle ways on what else is

Re: [Bulk] Things to do with a Pentium 166MHz cpu - 32 MB of RAM - 1.5 GB disk

2011-05-15 Thread Kevin Chadwick
On Sun, 15 May 2011 19:48:36 +0300 Michael Sioutis wrote: What else could I use it for? A dedicated system to admin your servers/network from. p.s. I've just got a neat 366mhz 64meg laptop from '99, li-ion battery still works!!!, halts, usb works, apm works, acpi of course doesn't and has

Re: [Bulk] Things to do with a Pentium 166MHz cpu - 32 MB of RAM - 1.5 GB disk

2011-05-15 Thread Kevin Chadwick
On Sun, 15 May 2011 18:36:47 + Kevin Chadwick wrote: p.s. I've just got a neat 366mhz 64meg laptop from '99, li-ion battery No intel cpu management mode either :-)

Re: [Bulk] Things to do with a Pentium 166MHz cpu - 32 MB of RAM - 1.5 GB disk

2011-05-15 Thread Kevin Chadwick
On Sun, 15 May 2011 18:36:47 + Kevin Chadwick wrote: p.s. I've just got a neat 366mhz 64meg laptop from '99, Oh yeah, old linux debian boot disks work on it but the new ones don't. Fails at edd and again later on.

Re: OpenBSD in abuse.rfc-ignorant.org

2011-05-16 Thread Kevin Chadwick
On Mon, 16 May 2011 16:03:26 +0200 matteo filippetto wrote: Why this? http://www.rfc-ignorant.org/policy-abuse.php best regards Defining the address seems a bit stupid to me, like they know the best way that you want to work things in all cases. I guess you can accept the mail and

Should the ecdsa fingerprint always and only be offered?

2011-05-17 Thread Kevin Chadwick
If the client has no known_hosts files and only an RSA key. Only the ecdsa fingerprint is given to be confirmed before connection. Should administrators make sure the ecdsa fingerprint is always given out or posted even to already issued RSA key users or should the RSA fingerprint or the

Re: Should the ecdsa fingerprint always and only be offered?

2011-05-17 Thread Kevin Chadwick
On Tue, 17 May 2011 21:14:59 +1000 (EST) Damien Miller wrote: If you are using recent OpenSSH (5.7+) then ssh will automatically prefer known host keys when connecting, so you should never be asked to learn a new hostkey type unless the old ones are no longer offered. If you prefer to use

Re: [Bulk] Re: mount:mfs: mmap: Cannot allocate memory

2011-05-18 Thread Kevin Chadwick
On Wed, 18 May 2011 17:41:32 + annathemerm...@hush.com wrote: I'm just trying to make it take advantage of the swap encryption (random keys unlike a single key I have to remember the password for); bioctl or vnconfig and /dev/urandom maybe useful here

Re: smtpd and no DH parameters found in

2011-05-19 Thread Kevin Chadwick
On Thu, 19 May 2011 01:06:49 +0100 Mikolaj Kucharski wrote: On Thu, May 19, 2011 at 12:42:57AM +0200, Gilles Chehade wrote: smtpd is just telling you that you did not generate Diffie-Hellman parameters [see smtpd.conf(5) / starttls(8)], and that it will use its own builtin parameters.

Re: Better security? Haha

2011-05-21 Thread Kevin Chadwick
On Sat, 21 May 2011 08:26:50 +1000 Rod Whitworth wrote: And I think that we'd all laugh at unpriveleged apps messing with the rules. Yeah it should be a completely seperate layer if anything. It can already be done to some degree with systrace on OpenBSD and so I'd guess strace on Linux.

Re: Theo's Birthday, have you done anything?

2011-05-21 Thread Kevin Chadwick
On Sat, 21 May 2011 09:30:40 -0600 Theo de Raadt wrote: That is not true at all. Hiking time is not coding time. With the hikes I do, it is serious time away from code.. So Marco, what diffs are you going to try to sneak in while Theos hiking. ;-)

Re: smtpd and no DH parameters found in

2011-05-22 Thread Kevin Chadwick
On Sun, 22 May 2011 23:12:21 +0100 Mikolaj Kucharski wrote: If I'm using 4096-bit RSA key, do I need to use 4096-bit size DH parameters file? No Do they need to match? No Is it okay to have DH smaller or even bigger? Yes, some programs like dovecot manage it automatically so maybe?

Re: tcpdump shows packets going from 0.0.0.0.0 0.0.0.0.0, what does this mean?

2011-05-24 Thread Kevin Chadwick
On Sun, 22 May 2011 12:10:24 +0200 Andreas Bartelt wrote: Hello Brett, On 05/22/11 09:02, Brett Mahar wrote: Hi misc, I have been playing around with pf lately, and have noticed a bunch of packets going from 0.0.0.0.0 to 0.0.0.0.0. I know 0.0.0.0 sometimes means the network address,

Lunatics deal in certificates not reality whilst burning wheel barrows of money.

2011-05-25 Thread Kevin Chadwick
A while back someone mentioned they needed certificates like Cisco etc. had to get OpenBSD used by their organisation. Well they're certainly certified now, lunatics that is. I didn't have a great opinion of Cisco but this went from funny to more than a joke. A big thankyou to OpenBSDs no shit

Yahoo whitelist - Has OpenBSDs spamd whitelist been updated or improved?

2011-05-26 Thread Kevin Chadwick
Safe, My mails via yahoo seem to be getting through to the mailing list much quicker these days. Has the whitelist simply been updated or has the ip capture been improved and if so, is their anything for a spamd user to know that might be useful. I assume I haven't been so annoying that you've

Seems OpenBSD isn't absolutely alone in it's quest, atleast on embedded systems.

2011-05-31 Thread Kevin Chadwick
http://www.techrepublic.com/blog/security/working-towards-bug-free-secure-software/5560?tag=nl.e036

Relayd server response header all browsers tried behave strange except firefox

2011-05-31 Thread Kevin Chadwick
Hi, all If you use: 'response header change Server to Whatever here' in relayd.conf or even put the option but set it like Apache does to Apache. Firefox works fine however chrome and Opera only load a small amount of the page. All is transmitted by relayd. IE8 says navigation cancelled. The

Re: vmmap: bad software everywhere

2011-05-31 Thread Kevin Chadwick
On Tue, 31 May 2011 21:51:40 +0200 Otto Moerbeek wrote: basically rewriting the memory management part of the OS in your browser. Do some browsers do this on OpenBSD?

Re: OT:Re: How do I exclude a directory using tar in OpenBSD?

2011-05-31 Thread Kevin Chadwick
On Tue, 31 May 2011 23:33:22 +0200 gilbert.fernan...@orange.fr wrote: (make sure where it is somewhere it can run) if there is such a writable place!

Re: vmmap: bad software everywhere

2011-06-01 Thread Kevin Chadwick
On Wed, 1 Jun 2011 17:49:47 +0200 Peter J. Philipp wrote: Not sure if it's OpenBSD's mission to include a browser but Google and Apple seem to think bundling a browser with their OS's is a must, even if they suck at it. OSS - OpenBSD Secure Surfer or something - Would certainly make the

Re: OT: Risks of CAs (Re: Your web development opinions)

2011-06-02 Thread Kevin Chadwick
On Thu, 24 Feb 2011 13:05:09 -0300 Hugo Osvaldo Barrera wrote: http://www.startssl.com/ Why pay if you can have one for free trusted by every major browser? Sure, the class 2 ones are pay-for, but the free one works as well as I have it working on relayd with a clean firefox profile

Re: OT: Risks of CAs (Re: Your web development opinions)

2011-06-02 Thread Kevin Chadwick
On Wed, 1 Jun 2011 14:51:42 + Kevin Chadwick wrote: Can someone confirm that they have a default Opera working with a startcom ssl certificate via relayd. Does anyone know if Iphones should work too? Though i don't know if they even have the root cert.

Light being shone on GPU security

2011-06-03 Thread Kevin Chadwick
http://www.contextis.com/resources/blog/webgl/; however this still pushes much of the responsibility of securing WebGL on the hardware manufacturers. Perhaps the best approach would be to design a specification for 3D graphics from the ground up with these issues in mind. Well many are going to

Re: problem in ntp time synch

2011-06-03 Thread Kevin Chadwick
On Fri, 3 Jun 2011 08:33:12 -0400 Nico Kadel-Garcia wrote: Just because you're running ntp on a server doesn't mean the server permits other hosts to ask it for information. TCP wrappers is one possibility (hosts.allow and hosts.deny)

Re: IPv6 - www.openbsd.org

2011-06-05 Thread Kevin Chadwick
On Sun, 5 Jun 2011 03:47:59 +0800 Zamri Besar wrote: Good morning, Just a question. www.openbsd.org not reachable via IPv6 network? nslookup -type= www.kame.net 8.8.8.8 nslookup -type= www.freebsd.org 8.8.8.8 nslookup -type= www.netbsd.org 8.8.8.8 They're too lazy to

Re: IPv6 - www.openbsd.org

2011-06-05 Thread Kevin Chadwick
On Sun, 5 Jun 2011 18:19:34 +0200 Martin Pelikan wrote: As a result, you're either in or out. Either you're making a living, and not-supporting IPv6 means deliberately disserving your customers (sorry everyone, but ordinary people don't give a damn about your opinion), No they don't give a

Re: IPv6 - www.openbsd.org

2011-06-05 Thread Kevin Chadwick
On Sun, 5 Jun 2011 18:59:58 + (UTC) Stuart Henderson wrote: but it gets really boring when people parrot it all the time... Actually it was a genuine keyword, but someone gave links later anyway. Each to their own, I like it, it's now part of my vocab. I don't really understand the

Re: serious security improvement in OpenBSD

2011-06-06 Thread Kevin Chadwick
--- etc/master.passwd.old Sat Jul 10 02:37:16 2010 +++ etc/master.passwd Mon Jun 6 15:04:15 2011 @@ -1,4 +1,4 @@ -root::0:0:daemon:0:0:Charlie:/root:/bin/ksh +root::0:0:daemon:0:0:Bruce Lee:/root:/bin/ksh daemon:*:1:1::0:0:The devil himself:/root:/sbin/nologin

Re: Seems OpenBSD isn't absolutely alone in it's quest, atleast on embedded systems.

2011-06-06 Thread Kevin Chadwick
On Mon, 6 Jun 2011 11:49:16 -0500 Chris Bennett wrote: BareMetal is a 64-bit OS for x86-64 based computers. The OS is written entirely in Assembly, I believe some/all newer models? of the Sonicwall range were rewritten in assembly, to increase performance. My cousin loves em.

Re: What are remote install options on a cheap vps?

2011-06-07 Thread Kevin Chadwick
On Tue, 7 Jun 2011 15:56:44 +0200 Benjamin Nadland wrote: I got a cheap VPS without out-of-band access (only ssh or similar) and wanted to install OpenBSD on it. According to the archives yaifo would be an option in this case, but the last version seems to be a year old and doesn't compile

Re: What are remote install options on a cheap vps?

2011-06-07 Thread Kevin Chadwick
On Tue, 07 Jun 2011 11:16:14 -0600 Mark Solocinski wrote: On Tue, 7 Jun 2011 15:56:44 +0200, Benjamin Nadland wrote: I got a cheap VPS without out-of-band access (only ssh or similar) and wanted to install OpenBSD on it. You could save yourself the hassle and go with RootBSD. They

Re: Bilgilendirme...

2011-06-08 Thread Kevin Chadwick
On Wed, 08 Jun 2011 23:56:22 +0200 Henrik Engmark wrote: exactly my point. I looked at your mail because I thought, someone replied, was that a real mail and that comment tickled me.

Re: updating netbook bios

2011-06-12 Thread Kevin Chadwick
On Sat, 11 Jun 2011 14:45:39 -0500 Corey wrote: On 06/11/2011 10:45 AM, David wrote: On 6/10/2011 10:45 PM, patrick keshishian wrote: So I have this gateway lt31 (someshit) netbook that hangs after random number of zzz/wake cycles. I posted on misc@ about it a few times and both Theo and

Re: 4.9 net.inet.tcp

2011-06-15 Thread Kevin Chadwick
On Tue, 14 Jun 2011 22:30:51 -0500 Corey wrote: Why? Because people on this list grew weary of answering questions about what they should be set to, or asking why people (unnecessarily) tweaked them? :) Seriously, the OpenBSD devs tend to eschew knobs, and they probably found a good

Re: RAID options for OpenBSD

2011-06-19 Thread Kevin Chadwick
On Fri, 17 Jun 2011 10:41:40 -0700 Tyler Morgan wrote: I decided, for my fairly basic router needs, to not use RAID in OpenBSD and instead rely on CARP and backups. I am more worried about the power supply and the motherboard going wonky before the SSD. CARP is obviously better but being

Re: nroff

2011-06-22 Thread Kevin Chadwick
On Wed, 22 Jun 2011 11:52:17 -0300 Friedrich Locke wrote: Previous version of OpenBSD seems to have installed nroff. Does anybody knows why it was removed? How could i install it? I think it wasn't needed for the man pages anymore. It is in ports, groff, I think. A search for nroff on the

Re: Automatic reboot on kernel panic

2011-06-22 Thread Kevin Chadwick
On Wed, 22 Jun 2011 18:11:36 +0300 Gregory Edigarov wrote: On Wed, 22 Jun 2011 11:45:49 -0300 Marcos Laufer mar...@ipversion4.com wrote: ddb.panic=0 will boot instead of dropping you into a ddb? greg@greg:~$ banner YES # # ### # # # # # # # # # #

Re: Automatic reboot on kernel panic

2011-06-23 Thread Kevin Chadwick
On Thu, 23 Jun 2011 11:27:09 +0200 Raimo Niskanen wrote: Ok, that I can not find from the documentation, only that setting it to 0 most probably is a change. I believe the defaults are conveniently listed in the comments next to the settings in sysctl.conf. I don't see why they'd change

Re: fortune(6) lies

2011-06-24 Thread Kevin Chadwick
On Fri, 24 Jun 2011 10:44:45 -0700 patrick keshishian wrote: that's so square. 4098x2304 would be much superior. What shape are your pupils? Rectangles? You don't need that high a res on a small screen. Imax Widescreen

Re: fortune(6) lies

2011-06-24 Thread Kevin Chadwick
On Fri, 24 Jun 2011 11:53:49 -0700 patrick keshishian wrote: What shape are your pupils? Rectangles? maybe you are special, but my peripheral vision extends more horizontally than it does vertically. Actually it is positioned where you are being most alert. If you expect high vertical

Re: fortune(6) lies

2011-06-25 Thread Kevin Chadwick
On Sat, 25 Jun 2011 13:35:44 +0200 Claudio Jeker wrote: Unsure if those displays will work with OpenBSD but if someone gets me on I will test it :) Do you actually have media for this?

Re: Recompile OpenBSD without built-in Apache 1.3

2011-06-29 Thread Kevin Chadwick
On Wed, 29 Jun 2011 04:57:30 -0400 sven falempin wrote: As i don't want to use a smaller 'spinover'. I ll probably will have to list some non usefull files, making upgrade more difficult, for my next use of openBSD. Depending how you upgrade. Making a minimal-base.tgz and not selecting

Most idiotic spammer award

2011-07-03 Thread Kevin Chadwick
I had a spammer tied up with spamd for a total of 4hours in 20 minute sessions. He was trapped by greyscanner and two dnsbl. The spammers saving grace from this award is the last two entries dropped to 20 seconds rather than 20 minutes before disconnection so I guess this ones no longer a single

Re: Most idiotic spammer award

2011-07-03 Thread Kevin Chadwick
On Sun, 3 Jul 2011 16:50:40 -0500 goodb...@gmail.com wrote: How much of this is botnet? Used to be a lot of humans firing scripts but nowadays... You could only guess really from lack of RFC compliance and dsl sources etc. However long lasting strange connections to spamd and increased code

Re: How does OpenBSD compare to Ubuntu Server?

2011-07-12 Thread Kevin Chadwick
On Mon, 11 Jul 2011 21:13:10 -0700 patrick keshishian wrote: added daemons have different connotations from those included in obsd base, and this also applies to debian and derivatives. the closest parallel would be packages built from ports and the automation pkg_add performs on

Re: If I install OpenBSD 4.9, when will I have to upgrade to 5.0?

2011-07-12 Thread Kevin Chadwick
On Tue, 12 Jul 2011 08:32:55 +0200 (CEST) Francois Pussault wrote: Hi, I upgrade only when i need to, or when a version is done, to buy CD give money to the project. So twice a year maximum, but most often on spring version once a year Really it depends on the apps you run. If you use fvwm

Re: How does OpenBSD compare to Ubuntu Server?

2011-07-12 Thread Kevin Chadwick
On Thu, 7 Jul 2011 09:02:08 -0400 Juan Miscaro wrote: Was wondering what advantages OpenBSD has over a progressive Linux distribution such as Ubuntu (Server edition). One thing I noticed is that they're having a hell of a time transitioning away from the traditional sysvinit-based system to

Re: OpenBSD 5.0-beta non-free firmware

2011-07-19 Thread Kevin Chadwick
On Tue, 19 Jul 2011 15:30:32 -0500 Amit Kulkarni wrote: probably not silly if you are a marketer. if they force somebody to come to their website and maybe just click on to buy something. at least that's what I figure. Doesn't help they're branding if you then associate that logo even a

Re: hibernation with APM

2011-08-08 Thread Kevin Chadwick
On Sun, 7 Aug 2011 18:35:57 -0500 joshua stein j...@openbsd.org wrote: This is semi-OT, but how does that work, actually? I mean, I know how suspend to disk works in principle, but if it's done purely from the BIOS, wouldn't the BIOS need to know about (and use) a special partition to

Re: inetd_flags in rc.conf

2011-08-15 Thread Kevin Chadwick
On Tue, 16 Aug 2011 03:28:53 +0930 David Walker davidianwal...@gmail.com wrote: inetd is definitely running on this machine with that flag set NO. Why turn it off, Just hash everything in inetd.conf and your nmap fingerprint will be lower than without inetd running.

Re: Recovery FFS formatted partition

2011-08-18 Thread Kevin Chadwick
On Thu, 18 Aug 2011 02:57:42 +0200 ropers rop...@gmail.com wrote: Google file carving, magic numbers, etc. You can do it manually with a hex editor -- there also are file carving programs such as foremost/scalpel, but I'm not sure if these have ever been ported to OpenBSD There's no equal

Re: ext42fs support?

2011-08-22 Thread Kevin Chadwick
On Mon, 22 Aug 2011 12:29:45 +0200 Pascal Stumpf pascal.stu...@cubes.de wrote: Iirc, this only works on ext3 (without journaling ofc), not ext4. FreeBSD had a GSoC project last year to implement ext4fs (as a separate module/driver): http://wiki.freebsd.org/SOC2010ZhengLiu But it's not even

Re: pflog shows 0.0.0.0.0 0.0.0.0.0

2011-08-25 Thread Kevin Chadwick
On Thu, 25 Aug 2011 20:10:12 + (UTC) Stuart Henderson s...@spacehopper.org wrote: Yes these are from the log (all), looks like a bug to me. I wondered if it was the result of one of the optimisations. The state making SYNs show the correct IP.

Re: question about documentation

2011-09-01 Thread Kevin Chadwick
On Thu, 1 Sep 2011 11:35:57 -0400 Daniel Villarreal yclwebmas...@gmail.com wrote: If you'd like to completely disable priviledges granting through the PolicyKit framework, create the file: /etc/polkit-1/nullbackend.conf.d/99-nullbackend.conf containing the following lines: [Configuration]

Re: question about documentation

2011-09-01 Thread Kevin Chadwick
On Thu, 01 Sep 2011 19:26:25 +0200 Benny Lofgren bl-li...@lofgren.biz wrote: I'm pretty certain that privilege is spelled without a 'd' in British English as well as in all other English subvariants. The only authoritative dictionary I have readily available right now is my copy of the

Re: question about documentation

2011-09-01 Thread Kevin Chadwick
On Thu, 1 Sep 2011 21:11:37 +0200 ropers wrote: YOU SHALL NOT PASS But I am Gandalf the white and you have not fallen from the bridge of Khazad-dum to the depths of moria and fought the fiery shadow, Yet!

Re: question about documentation

2011-09-01 Thread Kevin Chadwick
On Thu, 01 Sep 2011 17:13:22 -0400 priviledge is wrong in any version of English. And what's right about privilege exactly, actually I wouldn't care for the answer anyway, sounds came before words and there are many complexities, before very few decide to put a variant in an english dictionary.

Re: Time interval based pf rule

2011-09-02 Thread Kevin Chadwick
On Fri, 2 Sep 2011 04:21:31 -0700 (PDT) Stefan N wrote: Hi all, Does OpenBSD PF engine have the feature to create time interval based rule? What exactly do you mean by time interval based rule. I have tried to do that but I could not find any relevant documentation. Is time interval

Re: Cybercafe SW for OpenBSD

2011-09-06 Thread Kevin Chadwick
On Tue, 6 Sep 2011 15:23:14 +0200 Paolo Aglialoro wrote: Thank you a lot for all your nice suggestions, at the moment pfsense with captive portal looks like the best compromise (at least having PF). Also zeroshell could fill up the bill although it's no BSD. You could do it yourself with php

Re: Firefox 6

2011-09-07 Thread Kevin Chadwick
On Wed, 7 Sep 2011 07:40:48 +0200 Landry Breuil wrote: Without having an endless crab session about Firefox, I'd like to know if Firefox 6 seems any better for you. Firefox 4+ seems to not just leak memory, but hemorrhage it. In 5 I routinely hit the 2G data limit. FF6 is better in

Re: Why aren't you running -current?

2011-09-08 Thread Kevin Chadwick
On Thu, 08 Sep 2011 10:01:06 +0200 (CEST) HSL GmbH - wrote: New bugs are caught by snapshots and if you need the latest package then current is good once you know your way around. It's supported. I believe that's the main reason given in the faq for running stable for servers in that there

  1   2   3   4   5   6   7   8   >