After installing the Mar 02 snapshot I started getting tcpdump:
WARNING: snaplen raised from 96 to 116 from my cron job that updates
a text file on my web server with pf logs. I see that pflogd is run
with -s 116 so I changed my tcpdump cron job to also include s
-116.
I assume that changing my
Hello Theo and others.
not find the X stuff there. Is it a matter of waiting more time until
they appear or is that X will no longer be there (perhaps on ports?).
Did you not hear us the first time?
Look, if our project had a ton of money maybe we would be able to make
snapshots while
On 2006/03/15 08:24, edgarz wrote:
Maybe you can suggest optimal configuration for mail server?
It will be used for spam/virus filtering (~4000 mail accounts), proxy
server (~100 clients). I think it's enought with 1CPU DL 145 system, but
local dealer gives 2nd CPU for free for DL 385 :)
I
My budget is limited, and that one box will be cheaper than a lot of
cheaper per unit boxes :)
There will not be any user mail acounts, it will function as
mail/spam/virus filter and then forward mails to pop3/imap server (which
runs on windows) :D Existing windows server is dual 2.4ghz xeon.
If all you are looking for is a small portable email client/web
browser for the road, check ebay for a really small/cheap laptop..
aka: the thinkpad 240. It is fully supported by openbsd extremely
easily. An out of the box install of openbsd easily runs on the 240
without much configuration
Didier,
Here are a few things that may interest you...
Java support is pretty problematical.. the desktop benchmark of success and
compatibility for a lot of java sites would be to have J2SE in a fairly
current version running. Unfortunately to build this from source you need an
earlier version
Oh and one other thing..
Apart from the changes to the flash ram size between the 3000 and the 3100
there were some changes to the CF handling.
Be aware that Sharp may have decided a more cost effective production scheme
for the 3200 (i.e. may have changed something unexpected) so I would err on
Hi,
I'm running 3.6 (yes, due for an upgrade) and I keep getting hit by
some hackers that are using a bug I can't track down to download perl
scripts into /tmp:
[EMAIL PROTECTED] 11:26]# cd /tmp/
[EMAIL PROTECTED] 11:26]# ls -lFa
total 76
drwxrwxrwt 2 root wheel512 Mar 15 12:21
...on Tue, Mar 14, 2006 at 05:41:44PM -0700, Theo de Raadt wrote:
Yes, they have DMA engines. If the privilege seperate X server has a
bug, it can still wiggle the IO registers of the card to do DMA to
physical addresses, entirely bypassing system security.
Wow. As if running a
On 12. mar. 2006, at 13.37, Theo de Raadt wrote:
I'm planning to buy a zaurus sl-c3200 (the latest zaurus 3xxx model).
Please note that you would be the first person. None of us have the
C3200 yet.
I had a look at the latest zaurus snapshot directories (on
ftp.openbsd.org) and saw that the
Here's my feedback on the DL385 on a recent 3.9 snapshot.
It's a ULTRA 320 SCSI/RAID version.
What works: everything but RAID management through bioctl, I hope
to find a way to at least retrieve RAID status.
The RAID array is super fast but I haven't tried anything but stress to
test the
The current slogan for 3.8 is Free, Functional Secure. My opinion
is that it presents the project goals well in 4 simple words. It is not
boastful, remember Nothing is Impossible, or aims to create false
belief/concept. We have our fair share of those, just switch on your TV.
Theo and others did
I think the slogan Secure by default is an excellent description of
OpenBSD.
It implies that it is secure out of the box, and can only be made less
secure
by the user. As soon as you deviate from the default you are obviously
losing security points. Just my 2.
Robert
Hi Chris,
cool it. I think you meant nimrod. I said I believe Theo and others
would give it some consideration ..., I didn't said they must or have
to.
Regards
On Wed, 15 Mar 2006 08:11:49 -0600, Chris [EMAIL PROTECTED] said:
Andrew Ng wrote:
The current slogan for 3.8 is Free, Functional
Gaby vanhegan wrote:
I'm running 3.6 (yes, due for an upgrade) and I keep getting hit by
some hackers that are using a bug I can't track down to download perl
scripts into /tmp:
[EMAIL PROTECTED] 11:26]# cd /tmp/
[EMAIL PROTECTED] 11:26]# ls -lFa
total 76
drwxrwxrwt 2 root wheel
Hi,
Question like in topic. I'm currently in Cork, Ireland and in every
internet cafe here routers drops `' queries which results with
slow DNS resolving:
$ time host openbsd.org
openbsd.org has address 199.185.137.3
;; connection timed out; no servers could be reached
openbsd.org mail is
On 3/15/06, Andrew Ng [EMAIL PROTECTED] wrote:
Hi Chris,
cool it. I think you meant nimrod. I said I believe Theo and others
snip
Can anyone guess who nimrod was in history? : )
rogern
John 3:16
404 Not Found... is the URI correct?
On 3/14/06, Steffen Wendzel [EMAIL PROTECTED] wrote:
Hi,
I wrote an inofficial front-end for the installation of ports
and packages under OpenBSD. It is Gtk+-2 based (you need v. 2.6
or newer).
You can install local ports, local packages (e.g. mounted
http://dictionary.reference.com/search?q=nimrod
On Wed, 15 Mar 2006 07:59:26 -0800, Roger Neth Jr [EMAIL PROTECTED]
said:
On 3/15/06, Andrew Ng [EMAIL PROTECTED] wrote:
Hi Chris,
cool it. I think you meant nimrod. I said I believe Theo and others
snip
Can anyone guess who nimrod was
hmm.. no, someone changed our site to ../site. thanks for that hint
the right link is
http://www.doomed-reality.org/site/projekte/obpkg/description.html
steffen
On Wed, 15 Mar 2006 12:51:29 -0300 Felipe Scarel [EMAIL PROTECTED] wrote:
: 404 Not Found... is the URI correct?
:
: On 3/14/06,
On 2006-03-14 14:37:20 +, Steffen Wendzel wrote:
hope some of you will like it,
Sounds interesting. Any hope in making it an official
openbsd-port?
Best
Martin
--
http://www.tm.oneiros.de
Hi,
I unsuccessfully tried to retrieve the OPENBSD_3_9_BASE via anoncvs.
At this time, is this tag blocked/denied until the official release or is it
possible to download them?
Thank you
Didier
On 15/03/06, Roger Neth Jr [EMAIL PROTECTED] wrote:
On 3/15/06, Andrew Ng [EMAIL PROTECTED] wrote:
Hi Chris,
cool it. I think you meant nimrod. I said I believe Theo and others
snip
Can anyone guess who nimrod was in history? : )
rogern
John 3:16
RTFM.
Gen. 10:8-10
On 3/15/06, unixadmin99 [EMAIL PROTECTED] wrote:
On 15/03/06, Roger Neth Jr [EMAIL PROTECTED] wrote:
On 3/15/06, Andrew Ng [EMAIL PROTECTED] wrote:
Hi Chris,
cool it. I think you meant nimrod. I said I believe Theo and others
snip
Can anyone guess who nimrod was in history? : )
I believe that all access to any 3.9 installation
files via ftp/cvs etc... is not available currently
and will not be available in the future until
3.9 is released.
Sorry for my ignorance on the subject and this issue and the use of X
all together.
Not critical what so ever by any long shoot, but I was curious as to if
there is some window manage that actually DO NOT need any of the X stuff
all together?
Meaning something that obviously will not be
On 2006-03-14 23:36:15 +, Stuart Henderson wrote:
On 2006/03/14 22:50, Srebrenko Sehic wrote:
On 3/14/06, edgarz [EMAIL PROTECTED] wrote:
NB the DL145 are neither hotswap nor simple-swap: you must open the case
to gain access to the drives. On the + side, it does have IPMI and lights
out
On 3/15/06, Roger Neth Jr [EMAIL PROTECTED] wrote:
On 3/15/06, unixadmin99 [EMAIL PROTECTED] wrote:
On 15/03/06, Roger Neth Jr [EMAIL PROTECTED] wrote:
On 3/15/06, Andrew Ng [EMAIL PROTECTED] wrote:
Hi Chris,
cool it. I think you meant nimrod. I said I believe Theo and others
Daniel Ouellet wrote:
Sorry for my ignorance on the subject and this issue and the use of X
all together.
Not critical what so ever by any long shoot, but I was curious as to if
there is some window manage that actually DO NOT need any of the X stuff
all together?
Meaning something that
Just my own feedback on this.
I have both the DL 145 DL 145 G2. The first generation was much better
to the point that I look at alternative to the G2 version.
I got the IBM 326m and I have to say each day make me wonder why I got
the HP to start with.
So far the IBM beat the new G2 of HP
I've done this once before a while back with 3.6 and never had any
trouble. Now I'm doing it for a different machine using 3.8, but all of
a sudden I'm getting a seg.fault during the kernel build.
I include the following below:
a) The last few lines before the seg.fault.
b) my difference
Hello misc,
I have an IBM xSeries 335 machine with Dual Xeon processor and 2x73GB
SCSI Seagate Barracuda 10K rpm disc. I run OpenBSD 3.8 on it.
When I'm creating the raid array (raidctl -iv raid0), I get the
following error message:
sd0(mpt0:0:0): Check Condition (error 0x70) on opcode
On 3/15/06, Will H. Backman [EMAIL PROTECTED] wrote:
Daniel Ouellet wrote:
Sorry for my ignorance on the subject and this issue and the use of X
all together.
Not critical what so ever by any long shoot, but I was curious as to if
there is some window manage that actually DO NOT need
On Wed, Mar 15, 2006 at 02:24:41PM +, Robert Jacobs wrote:
I think the slogan Secure by default is an excellent description of
OpenBSD.
It implies that it is secure out of the box, and can only be made less
secure by the user. As soon as you deviate from the default you are
obviously
On 3/15/06, unixadmin99 [EMAIL PROTECTED] wrote:
God Bless you
rogern
Romans 12:14
Comon Roger,
Even you must have found a hint of humour in my reply. Oh and guess
what... The list has just found yet another resource:
http://www.htmlbible.com/kjv30
Surely that deserves a few
On 2006/03/15 15:19, Daniel Ouellet wrote:
Just my own feedback on the DL 145 version. I do not have the DL 385, so
for that one, I have nothing to say!
DL385 is much better than the DL145 (if you don't need 1U).
Fujitsu-Siemens also have kit which looks good (they tend to use
ami RAID on the
Anon wrote:
Hello :)
My questions can be summarised as :
1) What is the easiest way to install php in CGI mode on OBSD?
2) Why doesn't OBSD have a package for php that includes the CGI version?
3) Why doesn't OBSD have a suphp package? Is there any special reason?
I ask these questions because
I just created a new port for this tool. It would be great if some of you
would test it.
You can find the port here:
http://www.doomed-reality.org/files/Projects/obpkg/
I also fixed a script problem.
steffen
--
cdp.doomed-reality.org
Phantasie ist wichtiger als Wissen, denn Wissen ist
Brandon Mercer wrote:
Anon wrote:
Hello :)
My questions can be summarised as :
1) What is the easiest way to install php in CGI mode on OBSD?
2) Why doesn't OBSD have a package for php that includes the CGI version?
3) Why doesn't OBSD have a suphp package? Is there any special reason?
I ask
Adam PAPAI writes:
Hello misc,
I have an IBM xSeries 335 machine with Dual Xeon processor and 2x73GB
SCSI Seagate Barracuda 10K rpm disc. I run OpenBSD 3.8 on it.
When I'm creating the raid array (raidctl -iv raid0), I get the
following error message:
sd0(mpt0:0:0): Check Condition
On 15 Mar 2006, at 21:39, Anon wrote:
As OBSD is focused on security, it makes a lot of sense to me that
OBSD would at least include the CGI version of PHP in its php-core
packages, and preferably have a suphp package too.
Ports are provided by the community, not by OpenBSD. OpenBSD
On Wed, Mar 15, 2006 at 12:31:06PM +, Gaby vanhegan wrote:
Hi,
I'm running 3.6 (yes, due for an upgrade) and I keep getting hit by
some hackers that are using a bug I can't track down to download perl
scripts into /tmp:
[EMAIL PROTECTED] 11:26]# cd /tmp/
[EMAIL PROTECTED] 11:26]#
On Wed, Mar 15, 2006 at 12:31:06PM +, Gaby vanhegan wrote:
Hi,
I'm running 3.6 (yes, due for an upgrade) and I keep getting hit by
snip
My questions are:
1. How do I find out their attack vector? I have had a nessus scan
performed on the machine, but it did not present any
Greg Oster wrote:
Adam PAPAI writes:
Hello misc,
I have an IBM xSeries 335 machine with Dual Xeon processor and 2x73GB
SCSI Seagate Barracuda 10K rpm disc. I run OpenBSD 3.8 on it.
When I'm creating the raid array (raidctl -iv raid0), I get the
following error message:
sd0(mpt0:0:0):
Adam PAPAI writes:
Greg Oster wrote:
Adam PAPAI writes:
Hello misc,
I have an IBM xSeries 335 machine with Dual Xeon processor and 2x73GB
SCSI Seagate Barracuda 10K rpm disc. I run OpenBSD 3.8 on it.
When I'm creating the raid array (raidctl -iv raid0), I get the
following error
As i remember only server with Opteron from fujitsu was Primergy RX220,
where did you found with WC (water cooling)? :)
Stuart Henderson wrote:
On 2006/03/15 15:19, Daniel Ouellet wrote:
Just my own feedback on the DL 145 version. I do not have the DL 385, so
for that one, I have nothing to
On 2006/03/16 01:13, edgarz wrote:
As i remember only server with Opteron from fujitsu was Primergy RX220,
where did you found with WC (water cooling)? :)
Just (some of) the racks, not the servers. Anyway this is straying a
bit far from OpenBSD...probably better off-list.
Greg Oster wrote:
Adam PAPAI writes:
When I'm creating the raid array (raidctl -iv raid0), I get the
following error message:
sd0(mpt0:0:0): Check Condition (error 0x70) on opcode 0x28
SENSE KEY: Media Error
INFO: 0x224c10c (VALID flag on)
ASC/ASCQ: Read Retries Exhausted
Daniel Ouellet wrote:
Just my own feedback on this.
I have both the DL 145 DL 145 G2. The first generation was much better
to the point that I look at alternative to the G2 version.
I got the IBM 326m and I have to say each day make me wonder why I got
the HP to start with.
RAID mode is
Adam PAPAI writes:
After reboot my dmesg end:
rootdev=0x400 rrootdev=0xd00 rawdev=0xd02
Hosed component: /dev/sd0d.
raid0: Ignoring /dev/sd0d.
raid0: Component /dev/sd1d being configured at row: 0 col: 1
Row: 0 Column: 1 Num Rows: 1 Num Columns: 2
Version: 2 Serial
Hi, I'm getting operation not permited when I do this:
# chflags -R schg /bin
chflags: /bin/chmod: Operation not permitted
chflags: /bin/md5: Operation not permitted
chflags: /bin/mt: Operation not permitted
chflags: /bin/pax: Operation not permitted
chflags: /bin/rksh: Operation not permitted
Greg Oster wrote:
Adam PAPAI writes:
After reboot my dmesg end:
rootdev=0x400 rrootdev=0xd00 rawdev=0xd02
Hosed component: /dev/sd0d.
raid0: Ignoring /dev/sd0d.
raid0: Component /dev/sd1d being configured at row: 0 col: 1
Row: 0 Column: 1 Num Rows: 1 Num Columns: 2
Version:
Anon wrote:
Hello :)
My questions can be summarised as :
1) What is the easiest way to install php in CGI mode on OBSD?
Php in CGI mode makes no sense. Php is beloved of his speed against perl
for example which is a powerful alternative.
We are not going to discuss this here at misc Perl
Adam PAPAI writes:
Greg Oster wrote:
Adam PAPAI writes:
After reboot my dmesg end:
rootdev=0x400 rrootdev=0xd00 rawdev=0xd02
Hosed component: /dev/sd0d.
raid0: Ignoring /dev/sd0d.
raid0: Component /dev/sd1d being configured at row: 0 col: 1
Row: 0 Column: 1 Num Rows: 1 Num
I have two firewalls (FW1 FW2) with multiple carp interfaces on an
external interface (carp1, carp12, carp14, carp15, carp16, carp17, carp18,
carp19, carp20). FW1 has all carp interfaces set with advbase 1 advskew 0
and FW2 has all carp interfaces with advbase 1 advskew 180. Frequently FW2
I have a 1 GiB win2k/ntfs disk image that was created with qemu, using
the default raw image format (it's exactly what you would get if you
copied the data from a physical disk partition to the file).
The OS inside the image is Windows 2000 Server 5.00.2195, with the NTFS
partition marked as type
Hello all,
Soon I am required to write some java GUI's using netbeans for my university
degree, so I have jumped ahead of the game and downloaded it and got it
running on OpenBSD using kurt's port of jdk-5 (many thanks ;) ). However
unfortunatley there appears to be some kind of display error /
Jinxi Cheng wrote:
Hi, I'm getting operation not permited when I do this:
# chflags -R schg /bin
chflags: /bin/chmod: Operation not permitted
chflags: /bin/md5: Operation not permitted
chflags: /bin/mt: Operation not permitted
chflags: /bin/pax: Operation not permitted
chflags: /bin/rksh:
On Thu, 16 Mar 2006 00:20:23 +0100 Chris Alatakis [EMAIL PROTECTED]
wrote:
Anon wrote:
Hello :)
My questions can be summarised as :
1) What is the easiest way to install php in CGI mode on OBSD?
Php in CGI mode makes no sense. Php is beloved of his speed against
perl for
On Wed, 15 Mar 2006 08:11:49 -0600, Chris [EMAIL PROTECTED] wrote:
Andrew Ng wrote:
The current slogan for 3.8 is Free, Functional Secure. My opinion
is that it presents the project goals well in 4 simple words. It is not
boastful, remember Nothing is Impossible, or aims to create false
Adam wrote:
Php in CGI mode makes no sense. Php is beloved of his speed against
perl for example which is a powerful alternative.
We are not going to discuss this here at misc Perl vs PHP so leave
with it or change to perl. Php CGI is buggy slow and has many
problems to accomplish some tasks
On Thu, 16 Mar 2006 03:05:49 +0100 Chris Alatakis [EMAIL PROTECTED]
wrote:
Adam wrote:
Php in CGI mode makes no sense. Php is beloved of his speed against
perl for example which is a powerful alternative.
We are not going to discuss this here at misc Perl vs PHP so leave
with it or
edgarz wrote:
I got the IBM 326m and I have to say each day make me wonder why I got
the HP to start with.
RAID mode is working or no?
Last answer I got on that one was:
To answer your question. Don't create any kind of logical volume
(RAID0/1), just use the physical disks. In short, IM
I have about a dozen OpenBSD firewalls out there and most of them are
pretty minimal having a NATted LAN and the only traffic allowed in
(other than replies to outbound) is ssh.
The pf.confs are pretty much modifications of a template one with just
the LAN IPs changing.
The changes in /etc/* are
On 3/15/06, Stephen Takacs [EMAIL PROTECTED] wrote:
$ sudo mount -r -t ntfs /dev/svnd1i /mnt
mount_ntfs: /dev/svnd1i on /mnt: Operation not supported
ntfs isn't compiled into generic kernels.
On 3/15/06, Jinxi Cheng [EMAIL PROTECTED] wrote:
Hi, I'm getting operation not permited when I do this:
# chflags -R schg /bin
chflags: /bin/chmod: Operation not permitted
chflags: /bin/md5: Operation not permitted
chflags: /bin/mt: Operation not permitted
chflags: /bin/pax: Operation not
On Wed, 15 Mar 2006 20:39:13 -0700, Darrin Chandler wrote:
Rod.. Whitworth wrote:
I have about a dozen OpenBSD firewalls out there and most of them are
pretty minimal having a NATted LAN and the only traffic allowed in
(other than replies to outbound) is ssh.
The pf.confs are pretty much
On Wed, Mar 15, 2006 at 07:47:46PM -0800, Ted Unangst wrote:
ntfs isn't compiled into generic kernels.
Okay that explains a lot. :-)
I guess I'll use sharity-light to access the filesystem instead (when
qemu is running). Either that or run samba and store my data
externally to qemu.
--
I don't suppose you are using a quad card of some kind are you?
On 3/15/06, Steven S [EMAIL PROTECTED] wrote:
I have two firewalls (FW1 FW2) with multiple carp interfaces on an
external interface (carp1, carp12, carp14, carp15, carp16, carp17, carp18,
carp19, carp20). FW1 has all carp
Is ifconfig pflog0 up? I am not sure whether this is relevant to your
situation but I sort of recall something like this happening to me a few
years ago. I had forgotten to do turn the interface up and the logs were
never written.
On Thu, 16 Mar 2006 15:03:57 +1100, Rod.. Whitworth wrote
On Wed, 15 Mar 2006 22:48:31 -0600, Vijay Sankar wrote:
Is ifconfig pflog0 up? I am not sure whether this is relevant to your
situation but I sort of recall something like this happening to me a few
years ago. I had forgotten to do turn the interface up and the logs were
never written.
On
--
Musings on getting a CA
signed cert for STARTTLS
and other gotchas
--
If you ask the companies who market
SSL certs about sendmail, they will
say that they don't support certs
for mail, but for websites only.
But maybe the help/support desks are
Hi Paul,
if I remember correctly, the last time I tried Postfix on OpenBSD, I can
use self-generated SSL cert. Hope it's helpful to you.
Regards
Andrew
On Thu, 16 Mar 2006 04:53:58 + (GMT), Paul Pruett
[EMAIL PROTECTED] said:
--
Musings on getting a CA
signed cert for
Attached is a backport of the ral(4) fix about to be released in 3.9 ID'd
as:
don't try to release references to nodes that have been freed by net80211.
in HostAP mode, when switching to the INIT state, net80211 sends a DISASSOC
and a DEAUTH frame to all associated stations and immediately free
if I remember correctly, the last time I tried Postfix on OpenBSD, I can
use self-generated SSL cert. Hope it's helpful to you.
self-signed certs can work with mail smtp servers postfix or sendmail,
man starttls
But when you used self-signed certificates, other servers or clients
may at a
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
[IMAGE]
Este 14 de febrero...
Enamorate de iBit mp3 player
-Unico con tecnologia MKT (Micro Karaoke Technology) que despliega la
letra de las canciones en la pantalla LCD
- Microfono integrado para grabar hasta 18
No MIME this time...
Attached is a backport of the ral(4) fix about to be released in 3.9 ID'd
as:
don't try to release references to nodes that have been freed by net80211.
in HostAP mode, when switching to the INIT state, net80211 sends a DISASSOC
and a DEAUTH frame to all associated stations
Anthony Howe wrote:
I've done this once before a while back with 3.6 and never had any
trouble. Now I'm doing it for a different machine using 3.8, but all of
a sudden I'm getting a seg.fault during the kernel build.
It would appear that the seg. fault happens on the final link. Simply
Are these messages normal for a carped pair of firewalls running isakmpd
with sasyncd (3.8-stable)?
FW1/master - /var/log/message:
Mar 16 01:37:40 fw1 isakmpd[32692]: message_recv: invalid cookie(s)
222729dc227c8f28 a0d29ef92ee65243
Mar 16 01:37:40 fw1 isakmpd[32692]: dropped message from
There are serious bugs in sasyncd. Please do not use it yet. Instead
perhaps (like me) you can encourage the developers who wrote it to...
finish it.
Are these messages normal for a carped pair of firewalls running isakmpd
with sasyncd (3.8-stable)?
FW1/master - /var/log/message:
Mar 16
80 matches
Mail list logo