Re: Hardware recommendation for firewalls (more than 4 NICs)
On Sun, Jul 13, 2008 at 5:55 AM, Henning Brauer [EMAIL PROTECTED] wrote: which is exactly the point. there are too many misconfigured VLAN setups out there, and some vendors (namely: cisco) have fucked up defaults. cisco (at least: used to, not sure about the current status, I long abondoned that crap) I am curious and risk running off topic here, but... Henning, knowing that you run an ISP of sorts what type of routers are you using? I am curious the setup you have considering you've abandoned Cisco and apparently don't have high regards for HP. :) -- # Curt Micol
Re: Asus Eeepc 900
-PHISON OB SSD wd0: 1-sector PIO, LBA, 3847MB, 7880544 sectors wd1 at pciide0 channel 1 drive 1: ASUS-PHISON SSD wd1: 1-sector PIO, LBA, 7695MB, 15761088 sectors wd0(pciide0:1:0): using PIO mode 4, Ultra-DMA mode 4 wd1(pciide0:1:1): using PIO mode 4, Ultra-DMA mode 4 ichiic0 at pci0 dev 31 function 3 Intel 82801FB SMBus rev 0x04: apic 1 int 19 (irq 0) iic0 at ichiic0 spdmem0 at iic0 addr 0x50: 1GB DDR2 SDRAM non-parity PC2-3200CL5 SO-DIMM usb0 at uhci0: USB revision 1.0 uhub0 at usb0 Intel UHCI root hub rev 1.00/1.00 addr 1 usb1 at uhci1: USB revision 1.0 uhub1 at usb1 Intel UHCI root hub rev 1.00/1.00 addr 1 usb2 at uhci2: USB revision 1.0 uhub2 at usb2 Intel UHCI root hub rev 1.00/1.00 addr 1 usb3 at uhci3: USB revision 1.0 uhub3 at usb3 Intel UHCI root hub rev 1.00/1.00 addr 1 isa0 at ichpcib0 isadma0 at isa0 pckbc0 at isa0 port 0x60/5 pckbd0 at pckbc0 (kbd slot) pckbc0: using irq 1 for kbd slot wskbd0 at pckbd0: console keyboard, using wsdisplay0 pmsi0 at pckbc0 (aux slot) pckbc0: using irq 12 for aux slot wsmouse0 at pmsi0 mux 0 pcppi0 at isa0 port 0x61 midi0 at pcppi0: PC speaker spkr0 at pcppi0 npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16 mtrr: Pentium Pro MTRR support umass0 at uhub1 port 2 configuration 1 interface 0 SMI Corporation USB DISK rev 2.00/11.00 addr 2 umass0: using SCSI over Bulk-Only scsibus0 at umass0: 2 targets, initiator 0 sd0 at scsibus0 targ 1 lun 0: USB, Flash Disk, 1100 SCSI0 0/direct removable sd0: 956MB, 121 cyl, 255 head, 63 sec, 512 bytes/sec, 1957888 sec total umass1 at uhub2 port 1 configuration 1 interface 0 ENE UB6225 rev 2.00/1.00 addr 2 umass1: using SCSI over Bulk-Only scsibus1 at umass1: 2 targets, initiator 0 sd1 at scsibus1 targ 1 lun 0: USB2.0, CardReader SD0, 0100 SCSI0 0/direct removable sd1: drive offline uvideo0 at uhub3 port 2 configuration 1 interface 0 Chicony Electronics Co., Ltd. CNF7129 rev 2.00/15.12 addr 2 video0 at uvideo0 softraid0 at root root on sd0a swap on sd0b dump on sd0b This was just discussed: http://marc.info/?l=openbsd-miscm=121473630601623w=2 -- # Curt Micol
Re: Anyone from this list at BlackHat or DefCon? And a query...
On Thu, Jun 26, 2008 at 12:07 AM, Amarendra Godbole [EMAIL PROTECTED] wrote: It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. I'd also recommend that you take a laptop that contains nothing you care about. Since if you do get hacked you won't lose anything of value. I believe even Defcon's website recommends you bring a freshly installed computer to save you from the hassle of losing things. Certainly make backup's before you go. :) -- # Curt Micol
Re: OT: Dissertation ideas for my degree
On Fri, Jun 20, 2008 at 4:48 AM, Pieter Verberne [EMAIL PROTECTED] wrote: Plan 9-clone ISC licensed. I strongly second this. -- # Curt Micol
This seems like a good idea
http://leaf.dragonflybsd.org/mailarchive/kernel/2008-05/msg00038.html Here is some more information including a list of keys: http://metasploit.com/users/hdm/tools/debian-openssl/ Thought I'd share. It's possible I am wrong and this isn't a good idea, but I can't think of any reason why it isn't. -- # Curt Micol
Re: web development on OpenBSD
On Sun, Apr 27, 2008 at 6:21 PM, Sam Fourman Jr. [EMAIL PROTECTED] wrote: which components will be a good fit?: 1. Backend: MySQL or SQLite 2. webserver: apache or Lighttpd 3. development language: PHP or Java or Javascript (and XML I guess) Thanks in advance. -BG I would give PostgreSQL a look, it doesn't get as much press as MySQL, But it is VERY solid, and it is BSD licensed I've also found it much easier to maintain than MySQL. As far as language, you should look for something that looks fun to you. Language's are really all over the place, it really depends on what looks like you are going to want to develop in it. Perl is popular as it is on nearly every *nix system in the world (it is also what the pkg_* tools are written in), Ruby is popular with its Ruby on Rails web framework (there is a lot more to Ruby than Rails fyi) and finally Python which is popular and I would recommend. But what matters to me may not matter to you. Take a look at some tutorials and find something that you _want_ to program in. (Sorry Sam for the spam). -- # Curt Micol
OLPC
I saw this today and thought I'd share. It took me back to Theo's email[1] from a number of years ago about using the closed drivers by Marvell: * Ironically, the majority of the system-level problems we had experienced are directly tied to the two proprietary code bases on the laptop: the wireless firmware and the embedded controller firmware. While there are efforts to replace these, OLPC itself has been diligently working with both Marvell and Quanta to make the best of the situation. To suggest that fundamentalism has impeded progress on those two subsystems is not correct.[2] Thought some of you would be interested in that nugget. [1]: http://marc.info/?l=openbsd-miscm=116007094304009w=2 [2]: http://lists.laptop.org/pipermail/devel/2008-April/013067.html -- # Curt Micol
Re: pf and hosts.deny
On Sat, Apr 19, 2008 at 10:02 AM, Vikas N Kumar [EMAIL PROTECTED] wrote: Can pf do this ? I read the manual but could not find such a feature. I think this is what you want: http://home.nuug.no/~peter/pf/en/bruteforce.html -- # Curt Micol
Re: facts about OpenBSD
Amen to this. On Jan 10, 2008 8:18 AM, Peter N. M. Hansteen [EMAIL PROTECTED] wrote: Damn, misc@ used to have such a nice signal to noise ratio. -- # Curt Micol Today is the tomorrow I was so worried about yesterday. -Anthony Hopkins
Re: facts about OpenBSD
On Jan 10, 2008 8:39 AM, Nikns Siankin [EMAIL PROTECTED] wrote: I see people keep repeating nonsense like this instead of talking about topic. This is due to the fact that people don't feel your thoughts are on topic. Bitch elsewhere, thats what blogs are for. Leave misc@ for those people who want to work on or with the OS. Your stupid thoughts are unimportant unless you are willing to contribute to assist with fixing what it is you think is wrong. Please unsubscribe and stop trolling. -- # Curt Micol Today is the tomorrow I was so worried about yesterday. -Anthony Hopkins
Re: To whom can I direct email for artwork use permission pls?
why are you on our mailing lists? Indeed, my response also. -- I am very easy to get along with, but I don't have time to waste being nice to people who are being stupid. -- Theo de Raadt, Founder/Lead Developer of OpenBSD
Re: I need a new non-sucky laptop...
On 10/2/07, Martin SchrC6der [EMAIL PROTECTED] wrote: Not with a one-button mouse. Best Martin Two fingers on the mouse pad, and click. Problem solved. Curt Micol -- I am very easy to get along with, but I don't have time to waste being nice to people who are being stupid. -- Theo de Raadt, Founder/Lead Developer of OpenBSD
Re: OpenBSD 4.1 Released
I'd also like to thank the developers for another great release. Can't wait to upgrade all of my machines. Thank you for your hard work. Curt Micol On 5/1/07, Bob Beck [EMAIL PROTECTED] wrote: May 1, 2007.
Re: spamd - good job!
This will set you in the right direction: http://www.undeadly.org/cgi?action=articlesid=20070301144846 On 4/20/07, Frank Bax [EMAIL PROTECTED] wrote: Is there a place that documents the spamd differences from 4.0 to 4.1; or am I left with detecting the differences in documentation? I see 41.htm mentions greylist sync which I won't need (although I could see a one-time use when migrating boxes); greytrapping sounds interesting, might try that (it's in man spamd). What's noticing out of order MX use - just a log entry? Are there any changes to existing functionality to be forewarned about; or just new features? I'm actually running a February snapshot (early 4.1 beta) if that makes a difference; this is considered living on the edge for me. At 12:59 PM 4/20/07, Bob Beck wrote: Thanks. 4.1 has some major changes too, so bear in mind spamd wise it's a big change from 4.0 -Bob * Frank Bax [EMAIL PROTECTED] [2007-04-20 08:29]: I'm finally upgrading from 3.5 to 4.0! I use the whitelist from puremagic and in the past 2.5 years I have also added another 10 ip addresses to spamd whitelist because of problems with mail getting through. This week I did tests on 3 of those ip addresses and we are 3/3 for current spamd accepting connections without whitelist. Great job! I've also done some practice runs with in-place upgrades to snapshot; and plan to upgrade to 4.1 soon after disks arrive. -- Who?