It is possible to NAT connections from one rdomain to another with pf.
The problem is that this NAT is not visible in DIOCNATLOOK lookups. This
causes ftp-proxy to fail handling connections that cross domains.
Adding the incomming rdomain is not a big deal and will allow ftp-proxy
and other
This allows to do so magically twisted things like running ftp-proxy in
rdomain 7 and proxy connections from rdomain 3 over it.
pf setup is:
anchor ftp-proxy/*
pass in quick proto tcp to port ftp rtable 7 rdr-to 127.0.0.1 port 8021
and ftp-proxy is startet with
route -T 7 exec ftp-proxy
The
Date: Tue, 15 Mar 2011 14:22:16 +0100
From: Aleksander Piotrowski a...@openbsd.org
hi mark
i have signal 4, Illegal instruction crash on sparc64 with security/botan
(required by newer devel/monotone). it looks like they are trying to get time
from hardware timer using some funny asm's.
On Fri, Mar 25, 2011 at 01:36:13PM +0100, Mark Kettenis wrote:
Date: Tue, 15 Mar 2011 14:22:16 +0100
From: Aleksander Piotrowski a...@openbsd.org
i have signal 4, Illegal instruction crash on sparc64 with security/botan
(required by newer devel/monotone). it looks like they are trying to
On Fri, Mar 25, 2011 at 8:36 AM, Mark Kettenis mark.kette...@xs4all.nl
wrote:
On OpenBSD we disable access to %tick from userland. I think the idea
is to make it harder for people to perform timing attacks, and
therefore improve security. But I don't consider myself enough of a
security
On Fri, Mar 25, 2011 at 8:36 AM, Mark Kettenis mark.kette...@xs4all.nl
wrote:
On OpenBSD we disable access to %tick from userland. I think the idea
is to make it harder for people to perform timing attacks, and
therefore improve security. But I don't consider myself enough of a
Hi Claudio,
The diff fails to apply cleanly:
|Index: share/man/man4/Makefile
|===
|RCS file: /cvs/src/share/man/man4/Makefile,v
|retrieving revision 1.519
|diff -u -p -r1.519 Makefile
|--- share/man/man4/Makefile15 Jan 2011
Ted Unangst ted.unan...@gmail.com wrote:
On OpenBSD we disable access to %tick from userland. I think the idea
is to make it harder for people to perform timing attacks,
I don't believe that for a minute. We allow rdtsc on i386.
... and rpcc on alpha. Not that there's a way to disable
Investigating PR#6543 I concluded we are mishandling the intervals
between the DCHPDISCOVER packets and also between the DHCPREQUEST
packets.
Most obvious is the last chunk.
- if (stop_selecting = 0)
+ if (stop_selecting = cur_time)
stop_selecting is a time, not an interval. So this
Blast Your Ad to +34000 Classified Websites! Plus Huge Array of Marketing Tools.
Download Now :
http://good-links.us/blast-your-ad-to-34000-classified-websites.html
10 matches
Mail list logo