Hi Jan,
On Sun, Jul 13, 2014 at 08:30:38PM +0200, Jan Engelhardt wrote:
On Sunday 2014-07-13 13:07, Bob Beck wrote:
We have released an update, LibreSSL 2.0.1
As noted before, we welcome feedback from the broader community.
Something that I have noticed is that the shared libraries
Hi,
On Fri, Jul 11, 2014 at 12:21:12PM -0600, Bob Beck wrote:
The first release of LibreSSL portable has been released. LibreSSL
can be found in the LibreSSL directory of your favorite OpenBSD mirror.
http://ftp.openbsd.org/pub/OpenBSD/LibreSSL has it, and other mirrors
sounds great!
Hi,
imho, the 'papers' collection has valuable information, and users are
often enough referred to them for a better understanding about where
the project is headed. But they are not very visible. The following
patch is intended to give them better visibility:
--- index.html.orig 2010-03-14
Hi,
thanks to all who pointed out that this was a classical PEBKAC. :|
And sorry for the noise.
--
Kind regards,
--Toni++
On Wed, 14.04.2010 at 16:14:32 +0200, Markus Friedl markus.r.fri...@arcor.de
wrote:
yes, just writing an appropriate isakmpd.policy file should work::
Authorizer: POLICY
Conditions: app_domain == IPsec policy
( remote_filter != 000.000.000.000-255.255.255.255 ) - true;
I had
Hi,
On Tue, 13.04.2010 at 17:42:52 +0200, Toni Mueller openbsd-t...@oeko.net
wrote:
Authorizer: mobile-certs
Comment: need to list all certificates for mobile users in the licensees
section
Licensees: DN:/Cert/Of/User1 ||
DN:/Cert/Of/User2
Conditions: app_domain == IPsec policy
Hi Damien,
On Tue, 13.04.2010 at 12:10:27 +1000, Damien Miller d...@mindrot.org wrote:
On Mon, 12 Apr 2010, Toni Mueller wrote:
with your comments, I have produceds a second version of the patch,
which includes the following changes:
IPsec isn't really my area, but some questions:
1
On Thu, 08.04.2010 at 08:52:12 +0100, Mark Lumsden m...@cyodesigns.com wrote:
You want a yay? Give me a yay:
http://marc.info/?l=openbsd-techm=127071264614038w=2
aka: disklabel - 'P' option
Ok, here you are: yay...
fairs fair.
??
Kind regards,
--Toni++
Hi,
[ still appropriate for tech@ ? ]
[ Cc: list clipped - we are all on tech@, anyway, aren't we? ]
On Tue, 13.04.2010 at 11:10:00 +0100, Stuart Henderson s...@spacehopper.org
wrote:
flow esp in from 0.0.0.0/0 to somenetwork/24 type bypass
flow esp out from somenetwork/24 to 0.0.0.0/0 type
Hi,
On Mon, 12.04.2010 at 06:54:31 +0200, Bret S. Lambert bret.lamb...@gmail.com
wrote:
On Sun, Apr 11, 2010 at 01:43:11PM -0700, patrick keshishian wrote:
On Sun, Apr 11, 2010 at 09:40:45PM +0200, Toni Mueller wrote:
I already suspected something like this, but this behaviour
Hi,
with your comments, I have produceds a second version of the patch,
which includes the following changes:
On Sun, 11.04.2010 at 20:47:38 +0200, Toni Mueller openbsd-t...@oeko.net
wrote:
* No IPv6 support (I have no clue).
* tried to add IPv6 support
* Logging is still not very useful
Hi,
I've created a rough patch that should fix the immediate problem, but
is certainly far from perfect (yet). Things to note:
* No IPv6 support (I have no clue).
* No useful error messages - I want to log data about the offending
site, so admins can go after them.
* For some reason I don't
Hi Patrick,
On Sun, 11.04.2010 at 11:58:54 -0700, patrick keshishian sids...@boxsoft.com
wrote:
inet_ntoa will return pointer to a static buffer. Each call
TO IT Will override thsi buffer with the new IP info.
I already suspected something like this, but this behaviour is not
documented in
Hello,
while playing with isakmpd, I found that it would be nice to have a
complement for the isakmpd: exiting log entry.
Index: isakmpd.c
===
RCS file: /cvs/src/sbin/isakmpd/isakmpd.c,v
retrieving revision 1.97
diff -u -r1.97
Hello,
I'm currently hacking on /usr/src/sys/net/pfkey* because I urgently
need to prevent the kernel from installing SAs with the value default
for both sides. In case I got the terminology wrong, I need to prevent
this situation, as it brings down networking completely:
0/00
Hi,
On Fri, 26.02.2010 at 00:31:35 -0700, Theo de Raadt dera...@cvs.openbsd.org
wrote:
space when it is under high contention. But there is a massively
understated benefit that comes from filling the address space with
unallocated gaps. The gaps, though only on a page boundary, are
finding
On Fri, 12.03.2010 at 13:28:07 -0700, kj...@pintday.org kj...@pintday.org
wrote:
Very good suggestion, indeed.
-20
I'm impartial, though, as I don't use the default configuration,
anyway. I think it's rather a non-issue.
Especially, if someone has a 'dangerous' file, a PHP Shell for
Hello,
On Thu, 17.12.2009 at 12:43:33 +0100, Artur Litwinowicz bsd_n...@ybka.com
wrote:
I would like to ask about potential plans regarding UTF-8 in locales
support.
;}
The problem starts when I am trying to create PostgreSQL cluster
The problem manifests itself on many other
Hi,
today I compiled 4.6-stable from source on an amd64 machine, and got a
lot of error messages like this (sample):
About 20 or so of these:
lint -hx -I/usr/src/lib/libm/arch/amd64 -I/usr/src/lib/libm/src
-I/usr/src/lib/libm/src/ld80 -i /usr/src/lib/libm/src/s_conj.c
On Tue, 30.09.2008 at 09:04:37 +0100, Stuart Henderson s...@spacehopper.org
wrote:
On 2008/09/29 22:18, Nick Bender wrote:
+ export DONEPROFILE
+ export DONEPROFILE=YES
there's 13 bytes,
+ [ -f /install.netboot ] . /install.netboot
and another 12.
Does it really matter, or is
20 matches
Mail list logo