[DIFF] sftp-server.8, sshd_config.5 after syslog_r change

2014-07-18 Thread Jiri B
Hi, is this correct to reflect syslog_r(3) change? I tested chrooted internal-sftp without /dev/log in the chroot and it was logging fine. j. Index: sftp-server.8 === RCS file: /cvs/src/usr.bin/ssh/sftp-server.8,v retrieving

[Donation] Processor Freescale P2020 / TL-WDR4900 / Turrir router

2013-12-13 Thread Jiri B
Hi, I would like to send TL-WDR4900[1] hardware to a dev for hacking, it's based on Freescale P2020 processor[2] and it should be supported by OpenWRT. Also .cz registrar is developing its own hardware[3] based on Freescale P2020 and one of its policy should be no NDA. Basically it should be

Re: [Donation] Processor Freescale P2020 / TL-WDR4900 / Turrir router

2013-12-13 Thread Jiri B
I would like to send TL-WDR4900[1] hardware to a dev for hacking, it's based on Freescale P2020 processor[2] and it should be supported by OpenWRT. Also .cz registrar is developing its own hardware[3] based on Freescale P2020 and one of its policy should be no NDA. Basically it should be

Re: security(8) check maildir as well as mailbox permissions

2013-12-18 Thread Jiri B
On Wed, Dec 18, 2013 at 08:48:38PM +0100, Jérémie Courrèges-Anglas wrote: skin...@britvault.co.uk (Craig R. Skinner) writes: On 2013-12-18 Wed 15:54 PM |, Stuart Henderson wrote: Check the security of /var/mail/dirs similar to /var/mail/boxes: Indeed, but security(8) really

Re: signed packages

2014-01-22 Thread Jiri B
On Wed, Jan 22, 2014 at 11:28:50AM +, Stuart Henderson wrote: The model is: only the specific keys placed in /etc/signify are trusted. The plan is to include the public keys used for signing release n+1 in release n. So once you trust a particular key, by verifying signatures on sets

Re: Future of PF

2012-05-19 Thread Jiri B
On Sat, May 19, 2012 at 10:51:31PM +0300, wishmaster wrote: Hi. I use PF in both OS'es: Free and OpenBSD. This is great firewall. But today statefull firewalling and inspecting packet headers only, traffic classification and prioritization by port number only - it is not enough for

Re: Virtio drivers for OpenBSD

2012-07-11 Thread Jiri B
On Wed, Jul 11, 2012 at 02:13:03PM +0200, Otto Moerbeek wrote: On Wed, Jul 11, 2012 at 02:07:00PM +0200, Stefan Fritsch wrote: Hi, I have been working on porting NetBSD's virtio drivers to OpenBSD. I am not finished yet, but in order to prevent duplicate work, I thought I'd

Re: Virtio drivers for OpenBSD

2012-07-11 Thread Jiri B
On Wed, Jul 11, 2012 at 01:24:08PM +0100, Stuart Henderson wrote: if you're hacking on things for possibly inclusion, it's a *much* better idea to do it against -current. Or even better, it would be much important to make OpenBSD to see added disks without reboot (it means rescanning the bus).

Re: Virtio drivers for OpenBSD

2012-07-11 Thread Jiri B
On Wed, Jul 11, 2012 at 08:37:32AM -0700, Matthew Dempsky wrote: On Wed, Jul 11, 2012 at 6:01 AM, Jiri B ji...@devio.us wrote: Or even better, it would be much important to make OpenBSD to see added disks without reboot (it means rescanning the bus). I don't understand what you're

Re: Virtio drivers for OpenBSD

2012-07-12 Thread Jiri B
On Thu, Jul 12, 2012 at 11:02:54AM +0200, Stefan Fritsch wrote: On Wed, 11 Jul 2012, Matthew Dempsky wrote: There are quite a few pretendy-SCSI drivers in the tree, but most of them deal with fairly complicated hardware so they're not good reference points. sparc64's vdsk(4) driver is

Re: Virtio drivers for OpenBSD

2012-07-12 Thread Jiri B
On Wed, Jul 11, 2012 at 01:01:03PM -0700, Matthew Dempsky wrote: I'm not terribly familiar with mpi(4), but I see it has code to call scsi_req_probe() if it receives a MPI_EVT_SASCH_REASON_ADDED or MPI_EVT_SASCH_REASON_NO_PERSIST_ADDED event from the adapter controller. However, it appears to

Re: Any idea of donate a Raspberry Pi to a developer?

2012-07-18 Thread Jiri B
On Wed, Jul 18, 2012 at 01:28:13PM +0200, Otto Moerbeek wrote: On Tue, Jul 17, 2012 at 07:55:28PM +0200, Johan Ryberg wrote: You simply just throw another persons political opinion on me. I have read that thread as well but that's not the point. Do you honestly believe that one answer

UPDATE: pcidevs - vmxnet3

2012-07-19 Thread Jiri B
Hello, to make vmxnet3 recognized. jirib $ cvs diff -uNp pcidevs Index:

Re: UPDATE: pcidevs - vmxnet3

2012-07-20 Thread Jiri B
On Fri, Jul 20, 2012 at 09:24:51AM +0200, Johan Ryberg wrote: Thanks =) Do you know if OpenBSD current support vmxnet3? vlan has been problematic last time I tested in 4.9 And do you have updated if_vic.c ? I'm not programmer :( jirib

Re: Virtio drivers for OpenBSD V3

2012-07-27 Thread Jiri B
On Thu, Jul 26, 2012 at 07:41:56AM +0200, Tobias Wigand wrote: Hi, In case someone is interested, I have tried to run a comparison between the new Virtio network driver and e1000 emulation. This is more of a real life home usage example, I have used my personal firewall setup for the tests.

Re: System is halted while installing on IBM x 3550 M3 server

2012-08-20 Thread Jiri B
On Mon, Aug 20, 2012 at 05:27:21PM +0530, mu...@nitrkl.ac.in wrote: I cant send dmesg because i got this panic trap after booting from CDROAM while installing Openbsd on IBM x 3550 M3 server. i am using i386 Arch CDROM. Use serial port as console. You need to create your own iso so it contains

Re: upstream vendors and why they can be really harmful

2012-11-06 Thread Jiri B
On Tue, Nov 06, 2012 at 01:15:04PM +, Kevin Chadwick wrote: It could well end up the other way around, with systemd dying. It does far too much and most of which is pointless in order to gain traction but also limiting it's scope and so success unless it is forked or radically changed of

Re: Major dhclient(8) changes - no more dhclient-script

2012-11-15 Thread Jiri B
On Wed, Nov 14, 2012 at 08:35:52AM -0500, Kenneth R Westerback wrote: On Tue, Nov 13, 2012 at 03:14:40PM -0500, sven falempin wrote: 2012/11/9 Kenneth R Westerback kwesterb...@rogers.com Those of you following -current or running very recent snaps may have noticed a lot of changes to

Re: Major dhclient(8) changes - no more dhclient-script

2012-11-15 Thread Jiri B
On Fri, Nov 09, 2012 at 09:44:01AM -0500, Kenneth R Westerback wrote: Those of you following -current or running very recent snaps may have noticed a lot of changes to dhclient in the last couple of weeks. Aside from some major clean up, these changes revolve around the elimination of the

Re: hostname.if(5) clarification

2012-11-27 Thread Jiri B
On Tue, Nov 27, 2012 at 10:25:39AM +0200, Gregory Edigarov wrote: On 11/27/2012 09:03 AM, Claudio Jeker wrote: On Mon, Nov 26, 2012 at 05:36:20PM -0700, Theo de Raadt wrote: If there are desires to improve this (I hear Naddy grumbling!) then the stomach to break backwards compat must be

Re: group.5

2012-12-09 Thread Jiri B
On Sun, Dec 09, 2012 at 03:07:18PM +1030, David Walker wrote: Hey. I noticed adding a user to wheel doesn't provide su capability automatically. This is described in su(1). I though it might be useful to mention it in group(5) also. --- group.5 Sun Dec 9 14:14:58 2012 +++

Re: usermod: lock/unlock local password

2013-02-11 Thread Jiri B
On Mon, Feb 11, 2013 at 10:57:46PM +0100, Antoine Jacoutot wrote: On Mon, Feb 11, 2013 at 10:11:25PM +0100, André Stöbe wrote: Antoine Jacoutot wrote: This diff adds 2 new options to usermod(8): -U to unlock a user's password -Z to lock a user's password Today I was working with

Re: raid10 for softraid(4)

2013-02-20 Thread Jiri B
On Wed, Feb 20, 2013 at 04:48:57PM +1000, Dmitry Bogdan wrote: Hi, I am interested in implementing layered RAID10 for softraid(4) as a part of my course project in the university. I have a vast expirience in using software raids in openbsd and other operating systems and was surpised that

Re: Fuse (and sshfs) support for OpenBSD

2013-03-05 Thread Jiri B
On Tue, Mar 05, 2013 at 02:11:41PM +0100, Gilles Chehade wrote: On Tue, Mar 05, 2013 at 01:49:20PM +0100, Antoine Jacoutot wrote: On Tue, Mar 05, 2013 at 01:43:24PM +0100, Sylvestre Gallon wrote: Hi tech@ I send you this mail because a few months ago I tried to dabble with fuse

[UPDATE] www/papers/index.html - Eric's OpenSMTPd presentation

2013-04-02 Thread Jiri B
Index: index.html === RCS file: /cvs/www/papers/index.html,v retrieving revision 1.166 diff -u -p -r1.166 index.html --- index.html 23 Mar 2013 17:56:07 - 1.166 +++ index.html 2 Apr 2013 13:01:44 - @@ -18,6 +18,13 @@

Re: DPI for pf(4)

2013-05-01 Thread Jiri B
On Tue, Apr 30, 2013 at 07:14:50PM -0400, Ted Unangst wrote: On Wed, May 01, 2013 at 00:16, Franco Fichtner wrote: Yes, I am proposing a lightweight approach: hard-wired regex-like code, no allocations, no reassembly or state machines. I've seen far worse things being put into Kernels and

apm/zzz/ZZZ ownership

2013-05-16 Thread Jiri B
Is it wise to allow every user execute zzz? If apmd is running this makes machine suspend, works even via ssh. Index: Makefile === RCS file: /cvs/src/usr.sbin/apm/Makefile,v retrieving revision 1.14 diff -u -p -r1.14 Makefile ---

Re: apm/zzz/ZZZ ownership

2013-05-16 Thread Jiri B
On Thu, May 16, 2013 at 08:39:41PM +0100, Stuart Henderson wrote: On 2013/05/16 14:10, Jiri B wrote: Is it wise to allow every user execute zzz? If apmd is running this makes machine suspend, works even via ssh. restricting the binary permissions is pointless. restricting

Re: Do you need/prefer the non-DUID option in the installer?

2015-03-15 Thread Jiri B
On Sun, Mar 15, 2015 at 11:24:32AM -0400, Kenneth Westerback wrote: Using DUIDs in the installed /etc/fstab has been the default for some time now. We'd like to eliminate the question in the installer and just use DUIDs unconditionally. But first we need to know you are aware of any

Re: ssh-add.1 / ssh-askpass clarification

2015-03-28 Thread Jiri B
On Sat, Mar 28, 2015 at 07:19:13AM +, Jason McIntyre wrote: maybe this is clearer: Index: ssh-add.1 === RCS file: /cvs/src/usr.bin/ssh/ssh-add.1,v retrieving revision 1.61 diff -u -r1.61 ssh-add.1 ---

ssh-add.1 / ssh-askpass clarification

2015-03-27 Thread Jiri B
Mentioning 'ssh-askpass' is used when SSH_ASKPASS is not set. j. Index: ssh-add.1 === RCS file: /cvs/src/usr.bin/ssh/ssh-add.1,v retrieving revision 1.61 diff -u -p -u -p -r1.61 ssh-add.1 --- ssh-add.1 21 Dec 2014 22:27:56 -

Re: ssh-add.1 / ssh-askpass clarification

2015-03-27 Thread Jiri B
On Fri, Mar 27, 2015 at 11:22:07PM +, Jason McIntyre wrote: On Fri, Mar 27, 2015 at 07:07:04PM -0400, Jiri B wrote: Mentioning 'ssh-askpass' is used when SSH_ASKPASS is not set. j. Index: ssh-add.1 === RCS file

Re: ugenctl for attaching USB devices to ugen instead of their specific driver

2016-01-09 Thread Jiri B
On Sun, Dec 06, 2015 at 05:23:22PM +, Stuart Henderson wrote: > The bigger problem is "dual use" devices; e.g. some want UPS to attach > to upd(4), others want ugen(4) for use with NUT/apcupsd. Your code is > partially useful for these, but because it just changes things at attach, > won't

Re: [PATCH] No comic sans in httpd status pages

2016-02-19 Thread Jiri B
Instead of hipster design headache, there's for example this diff which could bring something interesting to httpd http://marc.info/?l=openbsd-tech=144767899506855=2 (httpd URL rewrite support patch) Something like this could make wordpress, drupal, mediawiki users more happy with OpenBSD

Re: [file] file -i doesn't detect epub correctly

2016-03-07 Thread Jiri B
Thanks to all, `xdg-mime query filetype $epub' works fine now. j.

Re: network booting efi systems with dhcpd(8)

2017-01-23 Thread Jiri B
> > The ISC dhcpd approach to using this looks something like this: > > > > option arch code 93 = unsigned integer 16; > > > > if option arch = 00:00 { > > filename "bios/pxelinux.0"; > > } elsif option arch = 00:07 { > > filename "efi.x64/syslinux.efi"; > > } > > [...] IIUC

Re: network booting efi systems with dhcpd(8)

2017-01-23 Thread Jiri B
On Mon, Jan 23, 2017 at 08:39:17PM +1000, Jonathan Matthew wrote: > For network boot clients, dhcpd(8) can supply a filename for the initial > boot file for the client, which is something like pxeboot (or pxelinux.0). > EFI and BIOS clients need different boot files, though, so the server > needs

Re: Improve error message in rcctl(8)

2016-09-06 Thread Jiri B
Could a change solve also this annoying situations? (saved files by editors...) # rcctl ls all | grep ^tor tor tor_2 tor_2~ j.

Re: UEFI install fails on Hetzner EX51

2016-11-26 Thread Jiri B
On Wed, Nov 23, 2016 at 03:29:55PM +0100, Leo Unglaub wrote: > Hey, > > On 11/23/16 15:17, Mark Kettenis wrote: > >Right, something like that would work if you copy the OpenBSD EFI > >bootloader into /EFI/OpenBSD/BOOTX64.EFI on the EFI system partition > >first. > > why do i have to copy the EFI

Re: UEFI install fails on Hetzner EX51

2016-11-23 Thread Jiri B
On Wed, Nov 23, 2016 at 01:55:59PM +0100, Leo Unglaub wrote: > Hey, > > On 11/23/16 13:27, Mark Kettenis wrote: > >>> Booting the UEFI version of the install.fs works fine and also the > >>> install works but i am unable to boot the server. According the the > >>> datacenter this happens because

[ftp] missing new line in debug+verbose mode

2016-12-08 Thread Jiri B
See 'GET /url...' location in the output in the first example: j. $ ftp -o /dev/null -M -d http://ftp.eu.openbsd.org/pub/OpenBSD/snapshots/amd64/ host ftp.eu.openbsd.org, port (null), path pub/OpenBSD/snapshots/amd64/, save as /dev/null, auth (null). Trying 77.238.36.16... Requesting

Re: [patch] Remove local nameservers from dhclient.conf during an upgrade.

2017-09-08 Thread Jiri B
On Fri, Sep 08, 2017 at 12:12:09PM +0200, Jesper Wallin wrote: > Hi all, > > I have a local unbound running for caching purposes as well as ensuring > that my DNS traffic is encrypted, using DNS-over-TLS. This works just > fine, except for when I try to run the snapshot upgrade process. > > The

Re: diff for ssh/sftp/scp -j

2017-11-26 Thread Jiri B
On Sat, Nov 25, 2017 at 11:16:54PM +0100, Holger Mikolon wrote: > Hi tech@ > > at work I can ssh (hence cvs) to public servers only via a ProxyCommand > specified in /etc/ssh/ssh_config. > > However, with the ProxyCommand set I cannot ssh into servers in the > internal network. So I end up

Re: less(1): `!' command

2017-12-16 Thread Jiri B
On Sat, Dec 16, 2017 at 04:55:44PM +, kshe wrote: > Hi, > > Would a patch to bring back the `!' command to less(1) be accepted? The > commit message for its removal explains that ^Z should be used instead, > but that obviously does not work if less(1) is run from something else > than an

Re: drm: DP update that fixes T460 external monitors through docks

2018-02-25 Thread Jiri B
On Wed, Feb 21, 2018 at 03:30:13PM +0200, Paul Irofti wrote: > For the archives, here is a diff that fixes a locking warning with the > earlier patch. So you have to apply it after the former one. > > diff --git sys/dev/pci/drm/drm_probe_helper.c > sys/dev/pci/drm/drm_probe_helper.c > index

install.sub - disklabel template modification

2018-08-30 Thread Jiri B .
Hi, if somebody would put into install.conf following line: URL to autopartitioning template for disklabel = /disklabel.template ftp would end in its prompt. # ftp -Vo - /disklabel.template