Re: Running OpenBSD on Raspberry Pi
On Jan 4, 2013, at 5:10 PM, Johan Beisser wrote: > On Fri, Jan 4, 2013 at 4:41 PM, Aaron Mason wrote: >> On Sat, Jan 5, 2013 at 7:58 AM, Dan Shechter wrote: >>> You have all failed to mention that the ALIX devices come with Swiss >>> chocolates in the package! >>> >> >> I've ordered direct from PCEngines before and never got that. > > Perhaps you should ask more pleasantly. > This just makes me want to order a carp peer for my little firewall. . . And I'll throw in a Pretty-Please-can-I-have-a-chocolate? Sean
Re: virtualization
Hi, Virtualbox is the best from my experience.Just make sure your processor have VT enable for virtualization. Some old proc can't do virtualization On 5 Jan 2013 07:44, "Friedrich Locke" wrote:
Re: Running OpenBSD on Raspberry Pi
On Fri, Jan 4, 2013 at 4:41 PM, Aaron Mason wrote: > On Sat, Jan 5, 2013 at 7:58 AM, Dan Shechter wrote: >> You have all failed to mention that the ALIX devices come with Swiss >> chocolates in the package! >> > > I've ordered direct from PCEngines before and never got that. Perhaps you should ask more pleasantly.
Re: Why does time/ident/daytime/comsat run after an OpenBSD 5.2 install?
hi, i seem to recall reading in some RFC or maybe in one of the stevens books that these services are required for a "server". i look at it as being a good internet neighbour, a bit like "can you tell me the time please" when someone stops you on the street... -f -- and god said, "i'll buy a vowel."
Re: Running OpenBSD on Raspberry Pi
On Sat, Jan 5, 2013 at 7:58 AM, Dan Shechter wrote: > You have all failed to mention that the ALIX devices come with Swiss > chocolates in the package! > Best regards, > Dan > > I've ordered direct from PCEngines before and never got that. > On Fri, Jan 4, 2013 at 7:36 AM, James Shupe wrote: >> On 1/3/2013 8:26 PM, Aaron Mason wrote: >>> On Fri, Jan 4, 2013 at 11:52 AM, James Shupe wrote: On 1/3/2013 1:08 PM, Gene wrote: > On Tue, Jan 1, 2013 at 1:31 AM, Bruno Flückiger >> wrote: >> On 12/31/12 14:17, BARDOU Pierre wrote: >>> >>> I would be very interested by an OpenBSD port too. >>> Usage : home router with firewall, DNS and DHCP. >>> >>> I am looking into FreeBSD and NetBSD ports, but I would prefer to have >>> the latest PF and OpenSSH versions... plus I am more used to OpenBSD >>> and I like using it >>> >>> If somebody knows X86 hardware able to do the same (routing/firewlling >>> 20 mbps traffic, VLAN, fits in a tiny box, power consumption below 5W, >>> price around 50$) as the raspberry I am interested BTW. >>> >> >> A lot of different embedded devices which base on x86 cpus, just ask the >> web search engine of your trust. It will be hard to get it for "only" >> $50. But paying some more bucks for a system which fits the needs is >> justified in my opinion. >> >> My personal favorites are the boxes from this small company in Switzerland: >> >> http://www.pcengines.ch >> >> Regards, >> Bruno >> > > The ALIX hardware is incredible. I own two of the ALIX boards (2d3 > and 2d13), the second one I picked up recently on eBay for $150 with > case and power supply, I added a CF card for an additional ~$10. I > already have a serial cable on hand, but that would be at most another > $10-$20 to procure. > > The ALIX.2d13 has three full fast ethernet (10/100) NICs that aren't > USB devices on a headless x86 compatible system that will utilise ~5W > at high to full load for under $200. All in one enclosure and rock > solid. > > Sure, that may sound expensive, but after purchasing a Raspberry Pi > with a powered USB hub, one or two USB fast ethernet adapters, an SD > card, and whatever other accessories you need it isn't that much of a > price difference. > > Or, you can buy a cheap Atom box, throw in some storage and RAM, and > have a much more powerful system at the expense of higher energy > usage. > > http://www.newegg.com/Product/Product.aspx?Item=N82E16856205007 > > That one costs $130 (+taxes and shipping) and has two gig-e NICs. > > I own a couple of the Raspberry Pi units. They're fantastic little > devices, but you'll have to use Linux and have a hodge-podge of > accessories to go with it. > > -Gene > > (if you see this message twice please forgive me, I'm bad at mailing >> lists) > > > Alix hardware is great. I just felt the need to share this photo of my office around this time last year... http://i.imgur.com/c528h.jpg -- James Shupe [demime 1.01d removed an attachment of type application/pgp-signature which >> had a name of signature.asc] >>> >>> Bugger me that's a whole lotta ALiX... 2d3 or 2d13? >>> >> >> They're the 2D13 boards, with Kingston CFs. Of all of those, the only >> problems we've had were a few DOA CF cards. >> >> They're running OpenBSD + OpenVPN and serving as VPN "concatenators" >> (that's what we're calling them, anyway.) We have employees working at >> third party locations where we do not maintain control of their >> networks, and need all of our staff's devices -- including network >> printers (that can't run VPN software, obviously,) etc, to appear as >> though they are on our local network. We chose OpenVPN over IPsec >> because of the single port requirement and the fact that most of these >> sites have outbound traffic blocked by default. We run a few server >> instances on the other end, on various common ports to increase the >> chances of success calling home. Each device has between one and six >> desktops behind it, along with one or two Xerox machines, and some other >> junk that has to be brought back to us. >> >> -- >> James Shupe >> >> [demime 1.01d removed an attachment of type application/pgp-signature which >> had a name of signature.asc] > -- Aaron Mason - Programmer, open source addict I've taken my software vows - for beta or for worse
Re: virtualization
Hi, I think the best solutions is to test by yourself thoses solutions ;) ( I'm kidding) For me the solution can be virtualbox : A single googlesearch let me known this link: http://www.youtube.com/watch?v=qyFWeSynOjc Best Regards Olivier Calzi 2013/1/5 Friedrich Locke > Hi folks! > > I have a windows desktop and would like to install a virtualization > software in order to have two virtual machine. I pretend to install OpenBSD > on both of them. > > Which virtualization solution would be the best one for OpenBSD to run on ? > > Thanks. > > -- Cordialement Olivier Calzi
Re: virtualization
On 1/4/2013 3:42 PM, Friedrich Locke wrote: Hi folks! I have a windows desktop and would like to install a virtualization software in order to have two virtual machine. I pretend to install OpenBSD on both of them. Which virtualization solution would be the best one for OpenBSD to run on ? Thanks. In my experience Virtualbox has been the most compatible, but if you took VMware Workstation or Virtualbox the X drivers built into X will give you the best compatibility.
Re: trunking
On 01/03/13 16:11, Stuart Henderson wrote: On 2013-01-03, Friedrich Locke wrote: Hi folks! What happens if i have a trunk(loadbalance) interface setted for 2 physical interfaces and connect each physical one on different switches? Tnx From the manual; "The trunk protocols loadbalance and roundrobin require a switch which supports IEEE 802.3ad static link aggregation; otherwise protocols such as inet6(4) duplicate address detection (DAD) cannot properly deal with duplicate packets." you usually can't configure this across two switches (it may be possible with some fancy switch stacking protocol, but not in the normal case). trunk(failover) works perfectly well in this scenario. I thought 802.3ad the switch requirement was for when all your trunk legs plug into the same switch. That is, if your trunk legs are on separated networks you would not need static link aggregation. That said, the one time I played with a trunked interface, I direct connected the legs.
virtualization
Hi folks! I have a windows desktop and would like to install a virtualization software in order to have two virtual machine. I pretend to install OpenBSD on both of them. Which virtualization solution would be the best one for OpenBSD to run on ? Thanks.
Re: Jan 4, 2013 snapshot fails with DHCP
- Original Message - | On Fri, Jan 04, 2013 at 02:10:02PM -0800, James A. Peltier wrote: | > - Original Message - | > | On Jan 04 12:05:53, jpelt...@sfu.ca wrote: | > | > I just tried to use the latest amd64 snapshot to prepare for an | > | > upgrade to our firewall. We use DHCP during initial | > | > installation | > | > to PXE boot and perform the install at which point we configure | > | > through site52.tgz. However, during installation and after | > | > boot | > | > DHCP reports the following error | > | > | > | > Cannot lstat() '/var/db/dhclient.leases.bge0': No such file | > | > or | > | > directory | > | > | > | > it does this for all interfaces and DHCP fails to configure the | > | > interface. This does not happen with 5.2-RELEASE. | > | | > | I've had the same problem with this snapshot. | > | Simply escaping to shell and doing | > | | > | > /var/db/dhclient.leases.bge0 | > | dhclient bge0 | > | | > | solved that. | > | > Yes, I am aware of that, but it doesn't work by default and that | > doesn't help if you reboot and you are not at the console. It's a | > bug and so I am reporting it. ;) | | It was fixed a day or so ago, so newer snaps should not have the | problem. | | Ken | Thanks! I couldn't find the commit in source-changes so I wasn't sure it was fixed. -- James A. Peltier Manager, IT Services - Research Computing Group Simon Fraser University - Burnaby Campus Phone : 778-782-6573 Fax : 778-782-3045 E-Mail : jpelt...@sfu.ca Website : http://www.sfu.ca/itservices http://blogs.sfu.ca/people/jpeltier "The smartest people are constantly revising their understanding, reconsidering a problem they thought they’d already solved. They’re open to new points of view, new information, new ideas, contradictions, and challenges to their own way of thinking." - Jeff Bezos
Re: Running OpenBSD on Raspberry Pi
On Fri, Jan 04, 2013 at 03:04:32PM -0600, James Shupe wrote: > On 1/4/2013 2:58 PM, Dan Shechter wrote: > > You have all failed to mention that the ALIX devices come with Swiss > > chocolates in the package! > > Best regards, > > Dan > > > > Ours didn't! I was unaware of that! NETGATE?!! You should think twice before buying things from people who are known to be liars: http://zgp.org/pipermail/linux-elitists/2005-June/011205.html
Re: Xorg not working correctly on MacBookAir5,2
On Sat, Jan 05, 2013 at 02:53:55AM +0400, Sevan / Venture37 wrote: > On 03/01/2013 01:34, Sevan / Venture37 wrote: > >I've started bringing in the changes made in that directory to a copy of > >the OpenBSD driver hosted here https://bitbucket.org/sevan/edp > > I took merged all the changes to the .c & .h files from the github > rep then recompiled & installed a new driver. > When I try to run startx now it fails with an error: > intel_drv.so: undefined symbol 'i830_dpd_is_edp' > lazy binding failed! > > Any pointers on what to do next? You aren't compiling i830_dp.c, it needs to be added to src/Makefile.am and then follow the instructions in /usr/xenocara/README in the 'Regenerating configure scripts' section.
Re: Xorg not working correctly on MacBookAir5,2
On 03/01/2013 01:34, Sevan / Venture37 wrote: I've started bringing in the changes made in that directory to a copy of the OpenBSD driver hosted here https://bitbucket.org/sevan/edp I took merged all the changes to the .c & .h files from the github rep then recompiled & installed a new driver. When I try to run startx now it fails with an error: intel_drv.so: undefined symbol 'i830_dpd_is_edp' lazy binding failed! Any pointers on what to do next? Sevan [ 292.421] (--) checkDevMem: using aperture driver /dev/xf86 [ 292.441] (--) Using wscons driver on /dev/ttyC4 in pcvt compatibility mode (version 3.32) [ 292.455] X.Org X Server 1.12.3 Release Date: 2012-07-09 [ 292.455] X Protocol Version 11, Revision 0 [ 292.455] Build Operating System: OpenBSD 5.2 amd64 [ 292.455] Current Operating System: OpenBSD foo 5.2 GENERIC.MP#0 amd64 [ 292.455] Build Date: 04 December 2012 12:53:54PM [ 292.455] [ 292.455] Current version of pixman: 0.28.0 [ 292.455]Before reporting problems, check http://wiki.x.org to make sure that you have the latest version. [ 292.455] Markers: (--) probed, (**) from config file, (==) default setting, (++) from command line, (!!) notice, (II) informational, (WW) warning, (EE) error, (NI) not implemented, (??) unknown. [ 292.455] (==) Log file: "/var/log/Xorg.0.log", Time: Sat Jan 5 02:42:42 2013 [ 292.457] (==) Using system config directory "/usr/X11R6/share/X11/xorg.conf.d" [ 292.457] (==) No Layout section. Using the first Screen section. [ 292.457] (==) No screen section available. Using defaults. [ 292.457] (**) |-->Screen "Default Screen Section" (0) [ 292.457] (**) | |-->Monitor "" [ 292.458] (==) No monitor specified for screen "Default Screen Section". Using a default monitor configuration. [ 292.458] (==) Disabling SIGIO handlers for input devices [ 292.458] (==) Automatically adding devices [ 292.458] (==) Automatically enabling devices [ 292.463] (==) FontPath set to: /usr/X11R6/lib/X11/fonts/misc/, /usr/X11R6/lib/X11/fonts/TTF/, /usr/X11R6/lib/X11/fonts/OTF/, /usr/X11R6/lib/X11/fonts/Type1/, /usr/X11R6/lib/X11/fonts/100dpi/, /usr/X11R6/lib/X11/fonts/75dpi/ [ 292.463] (==) ModulePath set to "/usr/X11R6/lib/modules" [ 292.463] (II) The server relies on wscons to provide the list of input devices. If no devices become available, reconfigure wscons or disable AutoAddDevices. [ 292.463] (II) Loader magic: 0x1cf07d9b53e0 [ 292.463] (II) Module ABI versions: [ 292.463]X.Org ANSI C Emulation: 0.4 [ 292.463]X.Org Video Driver: 12.0 [ 292.463]X.Org XInput driver : 16.0 [ 292.463]X.Org Server Extension : 6.0 [ 292.464] (--) PCI:*(0:0:2:0) 8086:0166:106b:00ea rev 9, Mem @ 0xa000/4194304, 0x9000/268435456, I/O @ 0x2000/64 [ 292.464] (II) LoadModule: "extmod" [ 292.465] (II) Loading /usr/X11R6/lib/modules/extensions/libextmod.so [ 292.466] (II) Module extmod: vendor="X.Org Foundation" [ 292.466]compiled for 1.12.3, module version = 1.0.0 [ 292.466]Module class: X.Org Server Extension [ 292.466]ABI class: X.Org Server Extension, version 6.0 [ 292.466] (II) Loading extension MIT-SCREEN-SAVER [ 292.466] (II) Loading extension XFree86-VidModeExtension [ 292.466] (II) Loading extension XFree86-DGA [ 292.466] (II) Loading extension DPMS [ 292.466] (II) Loading extension XVideo [ 292.466] (II) Loading extension XVideo-MotionCompensation [ 292.466] (II) Loading extension X-Resource [ 292.466] (II) LoadModule: "dbe" [ 292.467] (II) Loading /usr/X11R6/lib/modules/extensions/libdbe.so [ 292.467] (II) Module dbe: vendor="X.Org Foundation" [ 292.467]compiled for 1.12.3, module version = 1.0.0 [ 292.467]Module class: X.Org Server Extension [ 292.467]ABI class: X.Org Server Extension, version 6.0 [ 292.467] (II) Loading extension DOUBLE-BUFFER [ 292.467] (II) LoadModule: "glx" [ 292.468] (II) Loading /usr/X11R6/lib/modules/extensions/libglx.so [ 292.470] (II) Module glx: vendor="X.Org Foundation" [ 292.470]compiled for 1.12.3, module version = 1.0.0 [ 292.470]ABI class: X.Org Server Extension, version 6.0 [ 292.470] (==) AIGLX enabled [ 292.470] (II) Loading extension GLX [ 292.470] (II) LoadModule: "record" [ 292.471] (II) Loading /usr/X11R6/lib/modules/extensions/librecord.so [ 292.471] (II) Module record: vendor="X.Org Foundation" [ 292.471]compiled for 1.12.3, module version = 1.13.0 [ 292.471]Module class: X.Org Server Extension [ 292.471]ABI class: X.Org Server Extension, version 6.0 [ 292.471] (II) Loading extension RECORD [ 292.471] (II) LoadModule: "dri" [ 292.472] (II) Loading /usr/X11R6/lib/modules/extensions/libdri.so [ 292.473] (II) Module dri: vendor="X.Org Foundation" [ 292.473]compiled for 1.12.3, module version = 1.0.0 [ 292.473]ABI class: X.Org Server Extension, versio
Re: Jan 4, 2013 snapshot fails with DHCP
On Fri, Jan 04, 2013 at 02:10:02PM -0800, James A. Peltier wrote: > - Original Message - > | On Jan 04 12:05:53, jpelt...@sfu.ca wrote: > | > I just tried to use the latest amd64 snapshot to prepare for an > | > upgrade to our firewall. We use DHCP during initial installation > | > to PXE boot and perform the install at which point we configure > | > through site52.tgz. However, during installation and after boot > | > DHCP reports the following error > | > > | > Cannot lstat() '/var/db/dhclient.leases.bge0': No such file or > | > directory > | > > | > it does this for all interfaces and DHCP fails to configure the > | > interface. This does not happen with 5.2-RELEASE. > | > | I've had the same problem with this snapshot. > | Simply escaping to shell and doing > | > | > /var/db/dhclient.leases.bge0 > | dhclient bge0 > | > | solved that. > > Yes, I am aware of that, but it doesn't work by default and that doesn't help > if you reboot and you are not at the console. It's a bug and so I am > reporting it. ;) It was fixed a day or so ago, so newer snaps should not have the problem. Ken > > -- > James A. Peltier > Manager, IT Services - Research Computing Group > Simon Fraser University - Burnaby Campus > Phone : 778-782-6573 > Fax : 778-782-3045 > E-Mail : jpelt...@sfu.ca > Website : http://www.sfu.ca/itservices > http://blogs.sfu.ca/people/jpeltier > > "The smartest people are constantly revising their understanding, > reconsidering a problem they thought they???d already solved. They???re open > to new points of view, new information, new ideas, contradictions, and > challenges to their own way of thinking." - Jeff Bezos
Re: Jan 4, 2013 snapshot fails with DHCP
- Original Message - | On Jan 04 12:05:53, jpelt...@sfu.ca wrote: | > I just tried to use the latest amd64 snapshot to prepare for an | > upgrade to our firewall. We use DHCP during initial installation | > to PXE boot and perform the install at which point we configure | > through site52.tgz. However, during installation and after boot | > DHCP reports the following error | > | > Cannot lstat() '/var/db/dhclient.leases.bge0': No such file or | > directory | > | > it does this for all interfaces and DHCP fails to configure the | > interface. This does not happen with 5.2-RELEASE. | | I've had the same problem with this snapshot. | Simply escaping to shell and doing | | > /var/db/dhclient.leases.bge0 | dhclient bge0 | | solved that. Yes, I am aware of that, but it doesn't work by default and that doesn't help if you reboot and you are not at the console. It's a bug and so I am reporting it. ;) -- James A. Peltier Manager, IT Services - Research Computing Group Simon Fraser University - Burnaby Campus Phone : 778-782-6573 Fax : 778-782-3045 E-Mail : jpelt...@sfu.ca Website : http://www.sfu.ca/itservices http://blogs.sfu.ca/people/jpeltier "The smartest people are constantly revising their understanding, reconsidering a problem they thought they’d already solved. They’re open to new points of view, new information, new ideas, contradictions, and challenges to their own way of thinking." - Jeff Bezos
Re: Jan 4, 2013 snapshot fails with DHCP
On Jan 04 12:05:53, jpelt...@sfu.ca wrote: > I just tried to use the latest amd64 snapshot to prepare for an upgrade to > our firewall. We use DHCP during initial installation to PXE boot and > perform the install at which point we configure through site52.tgz. However, > during installation and after boot DHCP reports the following error > > Cannot lstat() '/var/db/dhclient.leases.bge0': No such file or directory > > it does this for all interfaces and DHCP fails to configure the interface. > This does not happen with 5.2-RELEASE. I've had the same problem with this snapshot. Simply escaping to shell and doing > /var/db/dhclient.leases.bge0 dhclient bge0 solved that.
Re: trunking
I have never tried trunk on OBSD, and maybe I am miss reading the manual, but even with failover mode you should be careful from having a link connected to a switch which it's uplinks are disconnected from the core. Broadcom and Intel usually provide NIC teaming drivers for Linux/Windows which prob the path. Since I don't thing that trunk is doing so, I would recommend to use a switch which brings down downlinks if the uplink is down or maybe you can emulate this with ifstated. Any decent switch should have this feature: http://goo.gl/wNvVk Make sure your switch is configured when using trunk or any other port teaming feature, even if you do have some kind of path probing. HTH, Dan #13685 (RS/Sec/SP) The CCIE troubleshooting blog: http://dans-net.com Bring order to your Private VLAN network: http://marathon-networks.com Best regards, Dan On Thu, Jan 3, 2013 at 10:46 PM, Friedrich Locke wrote: > Hi folks! > > What happens if i have a trunk(loadbalance) interface setted for 2 physical > interfaces and connect each physical one on different switches? > > Tnx
Re: Running OpenBSD on Raspberry Pi
On 1/4/2013 2:58 PM, Dan Shechter wrote: > You have all failed to mention that the ALIX devices come with Swiss > chocolates in the package! > Best regards, > Dan > Ours didn't! I was unaware of that! NETGATE?!! -- James Shupe [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
Jan 4, 2013 snapshot fails with DHCP
I just tried to use the latest amd64 snapshot to prepare for an upgrade to our firewall. We use DHCP during initial installation to PXE boot and perform the install at which point we configure through site52.tgz. However, during installation and after boot DHCP reports the following error Cannot lstat() '/var/db/dhclient.leases.bge0': No such file or directory it does this for all interfaces and DHCP fails to configure the interface. This does not happen with 5.2-RELEASE. -- James A. Peltier Manager, IT Services - Research Computing Group Simon Fraser University - Burnaby Campus Phone : 778-782-6573 Fax : 778-782-3045 E-Mail : jpelt...@sfu.ca Website : http://www.sfu.ca/itservices http://blogs.sfu.ca/people/jpeltier "The smartest people are constantly revising their understanding, reconsidering a problem they thought they’d already solved. They’re open to new points of view, new information, new ideas, contradictions, and challenges to their own way of thinking." - Jeff Bezos
Re: Running OpenBSD on Raspberry Pi
You have all failed to mention that the ALIX devices come with Swiss chocolates in the package! Best regards, Dan On Fri, Jan 4, 2013 at 7:36 AM, James Shupe wrote: > On 1/3/2013 8:26 PM, Aaron Mason wrote: >> On Fri, Jan 4, 2013 at 11:52 AM, James Shupe wrote: >>> On 1/3/2013 1:08 PM, Gene wrote: On Tue, Jan 1, 2013 at 1:31 AM, Bruno Flückiger > wrote: > On 12/31/12 14:17, BARDOU Pierre wrote: >> >> I would be very interested by an OpenBSD port too. >> Usage : home router with firewall, DNS and DHCP. >> >> I am looking into FreeBSD and NetBSD ports, but I would prefer to have >> the latest PF and OpenSSH versions... plus I am more used to OpenBSD >> and I like using it >> >> If somebody knows X86 hardware able to do the same (routing/firewlling >> 20 mbps traffic, VLAN, fits in a tiny box, power consumption below 5W, >> price around 50$) as the raspberry I am interested BTW. >> > > A lot of different embedded devices which base on x86 cpus, just ask the > web search engine of your trust. It will be hard to get it for "only" > $50. But paying some more bucks for a system which fits the needs is > justified in my opinion. > > My personal favorites are the boxes from this small company in >>> Switzerland: > > http://www.pcengines.ch > > Regards, > Bruno > The ALIX hardware is incredible. I own two of the ALIX boards (2d3 and 2d13), the second one I picked up recently on eBay for $150 with case and power supply, I added a CF card for an additional ~$10. I already have a serial cable on hand, but that would be at most another $10-$20 to procure. The ALIX.2d13 has three full fast ethernet (10/100) NICs that aren't USB devices on a headless x86 compatible system that will utilise ~5W at high to full load for under $200. All in one enclosure and rock solid. Sure, that may sound expensive, but after purchasing a Raspberry Pi with a powered USB hub, one or two USB fast ethernet adapters, an SD card, and whatever other accessories you need it isn't that much of a price difference. Or, you can buy a cheap Atom box, throw in some storage and RAM, and have a much more powerful system at the expense of higher energy usage. http://www.newegg.com/Product/Product.aspx?Item=N82E16856205007 That one costs $130 (+taxes and shipping) and has two gig-e NICs. I own a couple of the Raspberry Pi units. They're fantastic little devices, but you'll have to use Linux and have a hodge-podge of accessories to go with it. -Gene (if you see this message twice please forgive me, I'm bad at mailing > lists) >>> >>> Alix hardware is great. I just felt the need to share this photo of my >>> office around this time last year... http://i.imgur.com/c528h.jpg >>> >>> -- >>> James Shupe >>> >>> [demime 1.01d removed an attachment of type application/pgp-signature which > had a name of signature.asc] >>> >> >> Bugger me that's a whole lotta ALiX... 2d3 or 2d13? >> > > They're the 2D13 boards, with Kingston CFs. Of all of those, the only > problems we've had were a few DOA CF cards. > > They're running OpenBSD + OpenVPN and serving as VPN "concatenators" > (that's what we're calling them, anyway.) We have employees working at > third party locations where we do not maintain control of their > networks, and need all of our staff's devices -- including network > printers (that can't run VPN software, obviously,) etc, to appear as > though they are on our local network. We chose OpenVPN over IPsec > because of the single port requirement and the fact that most of these > sites have outbound traffic blocked by default. We run a few server > instances on the other end, on various common ports to increase the > chances of success calling home. Each device has between one and six > desktops behind it, along with one or two Xerox machines, and some other > junk that has to be brought back to us. > > -- > James Shupe > > [demime 1.01d removed an attachment of type application/pgp-signature which > had a name of signature.asc]
more details on the last security/nss update
On Mon, Dec 31, 2012 at 01:41:27AM -0700, Landry Breuil wrote: > CVSROOT: /cvs > Module name: ports > Changes by: lan...@cvs.openbsd.org 2012/12/31 01:41:27 > > Modified files: > security/nss : Makefile distinfo > > Log message: > Update to nss-3.14.1.with.ckbi.1.93, which explicitely distrusts > "TURKTRUST Mis-issued Intermediate CA 1" & "TURKTRUST Mis-issued > Intermediate CA 2". > (added in #768547, removed in #825022) And for people interested in the details of that security issue : http://lwn.net/Articles/531346/ https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/ http://googleonlinesecurity.blogspot.fr/2013/01/enhancing-digital-certificate-security.html provide more info on it. Basically, a fraudulent cert for *.google.com was issued by an intermediate CA mistakenly issued by TURKTRUST. oops.
Re: more details on the last security/nss update
I wonder if browsers will tighten permissions and stop accepting sub CA certs from those CAs listed on their spreadsheet as not having any subs.. Landry Breuil wrote: >On Mon, Dec 31, 2012 at 01:41:27AM -0700, Landry Breuil wrote: >> CVSROOT: /cvs >> Module name: ports >> Changes by: lan...@cvs.openbsd.org 2012/12/31 01:41:27 >> >> Modified files: >> security/nss : Makefile distinfo >> >> Log message: >> Update to nss-3.14.1.with.ckbi.1.93, which explicitely distrusts >> "TURKTRUST Mis-issued Intermediate CA 1" & "TURKTRUST Mis-issued >> Intermediate CA 2". >> (added in #768547, removed in #825022) > >And for people interested in the details of that security issue : >http://lwn.net/Articles/531346/ >https://blog.mozilla.org/security/2013/01/03/revoking-trust-in-two-turktrust-certficates/ >http://googleonlinesecurity.blogspot.fr/2013/01/enhancing-digital-certificate-security.html >provide more info on it. Basically, a fraudulent cert for *.google.com >was issued by an intermediate CA mistakenly issued by TURKTRUST. > >oops.
Re: VIA VX900 datasheet
Users normally send diffs with applied ID's to tech@.
Else you can wait until someone else does this for you.
You might want to send your dmesg to dmesg(at)openbsd.org, then "someone else"
will take a look at it. :)
Regards,
Maxim
On 4 jan 2013, at 19:01, Mike Williams wrote:
> Hi,
>
> There are a lot of pci "unknown product" messages in the dmesg for my
> VE900 mainboard with the VIA VX900 chipset. I don't see anything
> appearing in pcidevs in CVS for it yet. I have tracked down a datasheet
> for it at the VIA web site here:
>
> http://linux.via.com.tw/support/downloadFiles.action
>
> Select OS independent and VX900 platform. The PDF weighs in at 8MB so
> not included here - yell if you would like me to email it directly to
> someon. Attached is the dmesg for the board showing some the VX900 PCI
> devices are matching previously seen devices.
>
> HTH - TTFN
>
> --
> Mike
> OpenBSD 5.2 (GENERIC.MP) #339: Wed Aug 1 10:13:24 MDT 2012
>dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
> cpu0: VIA Nano X2 L4050 @ 1.4 GHz ("CentaurHauls" 686-class) 1.41 GHz
> cpu0:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,VMX,EST,TM2,SSSE3,CX16,xTPR,SSE4.1,POPCNT,LAHF
> real mem = 3488870400 (3327MB)
> avail mem = 3421003776 (3262MB)
> mainbus0 at root
> bios0 at mainbus0: AT/286+ BIOS, date 09/19/11, BIOS32 rev. 0 @ 0xf0010,
> SMBIOS rev. 2.6 @ 0x9f400 (42 entries)
> bios0: vendor American Megatrends Inc. version "080016" date 09/19/2011
> bios0: VIA Technologies, Inc. VE-900
> acpi0 at bios0: rev 2
> acpi0: sleep states S0 S3 S4 S5
> acpi0: tables DSDT FACP APIC MCFG OEMB HPET SSDT
> acpi0: wakeup devices NP3S(S4) USB0(S3) USB1(S3) USB2(S3) USB3(S3) EHCI(S3)
> SBRG(S5) P0P4(S5) AZAL(S4)
> acpitimer0 at acpi0: 3579545 Hz, 24 bits
> acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
> cpu0 at mainbus0: apid 0 (boot processor)
> cpu0: RNG AES AES-CTR SHA1 SHA256 RSA
> cpu0: apic clock running at 200MHz
> cpu1 at mainbus0: apid 2 (application processor)
> cpu1: VIA Nano X2 L4050 @ 1.4 GHz ("CentaurHauls" 686-class) 1.41 GHz
> cpu1:
> FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,VMX,EST,TM2,SSSE3,CX16,xTPR,SSE4.1,POPCNT,LAHF
> ioapic0 at mainbus0: apid 3 pa 0xfec0, version 3, 24 pins
> ioapic0: misconfigured as apic 1, remapped to apid 3
> ioapic1 at mainbus0: apid 4 pa 0xfecc, version 3, 24 pins
> ioapic1: misconfigured as apic 3, remapped to apid 4
> acpimcfg0 at acpi0 addr 0xe000, bus 0-255
> acpihpet0 at acpi0: 14318179 Hz
> acpiprt0 at acpi0: bus 0 (PCI0)
> acpiprt1 at acpi0: bus 1 (NBP0)
> acpiprt2 at acpi0: bus 5 (NBP3)
> acpiprt3 at acpi0: bus 6 (P0P4)
> acpicpu0 at acpi0: C1, PSS
> acpicpu1 at acpi0: C1, PSS
> acpiac0 at acpi0: AC unit online
> acpibtn0 at acpi0: SLPB
> acpibtn1 at acpi0: PWRB
> acpivideo0 at acpi0: VUMA
> bios0: ROM list: 0xc/0xe400
> cpu0: Enhanced SpeedStep 1401 MHz: speeds: 1400, 1200, 1100, 1000, 900, 800
> MHz
> pci0 at mainbus0 bus 0: configuration mode 1 (bios)
> pchb0 at pci0 dev 0 function 0 vendor "VIA", unknown product 0x0410 rev 0x80
> pchb1 at pci0 dev 0 function 1 vendor "VIA", unknown product 0x1410 rev 0x00
> pchb2 at pci0 dev 0 function 2 vendor "VIA", unknown product 0x2410 rev 0x00
> pchb3 at pci0 dev 0 function 3 vendor "VIA", unknown product 0x3410 rev 0x00
> pchb4 at pci0 dev 0 function 4 vendor "VIA", unknown product 0x4410 rev 0x00
> pchb5 at pci0 dev 0 function 5 vendor "VIA", unknown product 0x5410 rev 0x00
> pchb6 at pci0 dev 0 function 6 vendor "VIA", unknown product 0x6410 rev 0x00
> pchb7 at pci0 dev 0 function 7 vendor "VIA", unknown product 0x7410 rev 0x00
> vga1 at pci0 dev 1 function 0 vendor "VIA", unknown product 0x7122 rev 0x00
> wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
> wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
> azalia0 at pci0 dev 1 function 1 vendor "VIA", unknown product 0x9170 rev
> 0x00: apic 4 int 17
> azalia0: no supported codecs
> ppb0 at pci0 dev 3 function 0 vendor "VIA", unknown product 0xa410 rev 0x00:
> apic 4 int 3
> pci1 at ppb0 bus 1
> ppb1 at pci0 dev 3 function 1 vendor "VIA", unknown product 0xb410 rev 0x00:
> apic 4 int 7
> pci2 at ppb1 bus 2
> ppb2 at pci0 dev 3 function 2 vendor "VIA", unknown product 0xc410 rev 0x00:
> apic 4 int 11
> pci3 at ppb2 bus 3
> ppb3 at pci0 dev 3 function 3 vendor "VIA", unknown product 0xd410 rev 0x00:
> apic 4 int 15
> pci4 at ppb3 bus 5
> re0 at pci4 dev 0 function 0 "Realtek 8168" rev 0x06: RTL8168E/8111E
> (0x2c00), apic 4 int 12, address c8:9c:dc:54:5f:77
> rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 4
> pchb8 at pci0 dev 3 function 4 vendor "VIA", unknown product 0xe410 rev 0x00
> pciide0 at pci0 dev 15 function 0 "VIA VX900 IDE" rev 0x00: ATA133, channel 0
> configured to native-PCI, channel 1 configured to native-PCI
> pciide0: us
VIA VX900 datasheet
Hi,
There are a lot of pci "unknown product" messages in the dmesg for my
VE900 mainboard with the VIA VX900 chipset. I don't see anything
appearing in pcidevs in CVS for it yet. I have tracked down a datasheet
for it at the VIA web site here:
http://linux.via.com.tw/support/downloadFiles.action
Select OS independent and VX900 platform. The PDF weighs in at 8MB so
not included here - yell if you would like me to email it directly to
someon. Attached is the dmesg for the board showing some the VX900 PCI
devices are matching previously seen devices.
HTH - TTFN
--
Mike
OpenBSD 5.2 (GENERIC.MP) #339: Wed Aug 1 10:13:24 MDT 2012
dera...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: VIA Nano X2 L4050 @ 1.4 GHz ("CentaurHauls" 686-class) 1.41 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,VMX,EST,TM2,SSSE3,CX16,xTPR,SSE4.1,POPCNT,LAHF
real mem = 3488870400 (3327MB)
avail mem = 3421003776 (3262MB)
mainbus0 at root
bios0 at mainbus0: AT/286+ BIOS, date 09/19/11, BIOS32 rev. 0 @ 0xf0010, SMBIOS
rev. 2.6 @ 0x9f400 (42 entries)
bios0: vendor American Megatrends Inc. version "080016" date 09/19/2011
bios0: VIA Technologies, Inc. VE-900
acpi0 at bios0: rev 2
acpi0: sleep states S0 S3 S4 S5
acpi0: tables DSDT FACP APIC MCFG OEMB HPET SSDT
acpi0: wakeup devices NP3S(S4) USB0(S3) USB1(S3) USB2(S3) USB3(S3) EHCI(S3)
SBRG(S5) P0P4(S5) AZAL(S4)
acpitimer0 at acpi0: 3579545 Hz, 24 bits
acpimadt0 at acpi0 addr 0xfee0: PC-AT compat
cpu0 at mainbus0: apid 0 (boot processor)
cpu0: RNG AES AES-CTR SHA1 SHA256 RSA
cpu0: apic clock running at 200MHz
cpu1 at mainbus0: apid 2 (application processor)
cpu1: VIA Nano X2 L4050 @ 1.4 GHz ("CentaurHauls" 686-class) 1.41 GHz
cpu1:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,CFLUSH,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,NXE,LONG,SSE3,MWAIT,VMX,EST,TM2,SSSE3,CX16,xTPR,SSE4.1,POPCNT,LAHF
ioapic0 at mainbus0: apid 3 pa 0xfec0, version 3, 24 pins
ioapic0: misconfigured as apic 1, remapped to apid 3
ioapic1 at mainbus0: apid 4 pa 0xfecc, version 3, 24 pins
ioapic1: misconfigured as apic 3, remapped to apid 4
acpimcfg0 at acpi0 addr 0xe000, bus 0-255
acpihpet0 at acpi0: 14318179 Hz
acpiprt0 at acpi0: bus 0 (PCI0)
acpiprt1 at acpi0: bus 1 (NBP0)
acpiprt2 at acpi0: bus 5 (NBP3)
acpiprt3 at acpi0: bus 6 (P0P4)
acpicpu0 at acpi0: C1, PSS
acpicpu1 at acpi0: C1, PSS
acpiac0 at acpi0: AC unit online
acpibtn0 at acpi0: SLPB
acpibtn1 at acpi0: PWRB
acpivideo0 at acpi0: VUMA
bios0: ROM list: 0xc/0xe400
cpu0: Enhanced SpeedStep 1401 MHz: speeds: 1400, 1200, 1100, 1000, 900, 800 MHz
pci0 at mainbus0 bus 0: configuration mode 1 (bios)
pchb0 at pci0 dev 0 function 0 vendor "VIA", unknown product 0x0410 rev 0x80
pchb1 at pci0 dev 0 function 1 vendor "VIA", unknown product 0x1410 rev 0x00
pchb2 at pci0 dev 0 function 2 vendor "VIA", unknown product 0x2410 rev 0x00
pchb3 at pci0 dev 0 function 3 vendor "VIA", unknown product 0x3410 rev 0x00
pchb4 at pci0 dev 0 function 4 vendor "VIA", unknown product 0x4410 rev 0x00
pchb5 at pci0 dev 0 function 5 vendor "VIA", unknown product 0x5410 rev 0x00
pchb6 at pci0 dev 0 function 6 vendor "VIA", unknown product 0x6410 rev 0x00
pchb7 at pci0 dev 0 function 7 vendor "VIA", unknown product 0x7410 rev 0x00
vga1 at pci0 dev 1 function 0 vendor "VIA", unknown product 0x7122 rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
wsdisplay0: screen 1-5 added (80x25, vt100 emulation)
azalia0 at pci0 dev 1 function 1 vendor "VIA", unknown product 0x9170 rev 0x00:
apic 4 int 17
azalia0: no supported codecs
ppb0 at pci0 dev 3 function 0 vendor "VIA", unknown product 0xa410 rev 0x00:
apic 4 int 3
pci1 at ppb0 bus 1
ppb1 at pci0 dev 3 function 1 vendor "VIA", unknown product 0xb410 rev 0x00:
apic 4 int 7
pci2 at ppb1 bus 2
ppb2 at pci0 dev 3 function 2 vendor "VIA", unknown product 0xc410 rev 0x00:
apic 4 int 11
pci3 at ppb2 bus 3
ppb3 at pci0 dev 3 function 3 vendor "VIA", unknown product 0xd410 rev 0x00:
apic 4 int 15
pci4 at ppb3 bus 5
re0 at pci4 dev 0 function 0 "Realtek 8168" rev 0x06: RTL8168E/8111E (0x2c00),
apic 4 int 12, address c8:9c:dc:54:5f:77
rgephy0 at re0 phy 7: RTL8169S/8110S PHY, rev. 4
pchb8 at pci0 dev 3 function 4 vendor "VIA", unknown product 0xe410 rev 0x00
pciide0 at pci0 dev 15 function 0 "VIA VX900 IDE" rev 0x00: ATA133, channel 0
configured to native-PCI, channel 1 configured to native-PCI
pciide0: using apic 3 int 21 for native-PCI interrupt
wd0 at pciide0 channel 0 drive 0:
wd0: 16-sector PIO, LBA48, 57231MB, 117210240 sectors
wd0(pciide0:0:0): using PIO mode 4, Ultra-DMA mode 5
pciide0: channel 1 disabled (no drives)
uhci0 at pci0 dev 16 function 0 "VIA VT83C572 USB" rev 0xa0: apic 3 int 20
uhci1 at pci0 dev 16 function 1 "VIA VT83C572 USB" rev 0xa0: apic 3 int 22
uhci2 at pci0 dev 16 function 2 "VIA VT83C572 USB" rev 0xa0: apic 3 int 21
uhci3 at pci0 dev 16 functi
Re: openBSD 5.2 amd64 on lenovo x201s
El Fri, 04 Jan 2013 23:03:48 +1100 Brett Mahar escribió: > > > IMHO OpenBSD is pretty usable in a laptop, old or modern. Most of > > things run in the right way. From my point of view only a few > > things are missing now: > > > > [...] > > > - no NTFS support > > > http://www.openbsd.org/cgi-bin/man.cgi?query=mount_ntfs&apropos=0&sektion=0&manpath=OpenBSD+Current&arch=i386&format=html I wanted to say "no NTFS suppor for writing" :)
Re: ralink 3072 not showing up
I've sent tenda dongle back. 'Ordered d-link dwa-140, which is on the run man page. Thanks all, who helped to solve the puzzle. When the device comes, I will report how it works (or not). Best regards Zoran
Re: Why does time/ident/daytime/comsat run after an OpenBSD 5.2 install?
On vendredi 04 janvier 2013 à 01:23:56, Random, Eyes wrote: > Should this question posted on the dev mailing list? I don't think so. What are you trying to do? Broadcasting line noise? wrt to your question: the fact that you have no use for these services doesn't mean they aren't useful to developers and other users. Or perhaps did you just want to show off on your crapexchange website? Oops, I just followed your link and indeed... Congrats, you've just wasted a few minutes of my life. "KISS"... *plonk*
Re: NMAP problem with PF
Strange but with nmap -sT -p -PN it works. -- Best regards, Loïc BLOT, Engineering UNIX Systems, Security and Networks http://www.unix-experience.fr Le vendredi 04 janvier 2013 à 13:04 +0100, Loïc BLOT a écrit : > Hello, > It's a simple nmap : > Nmap -p 1688 a.b.c.d -PN > > Loic Blot > > Le 4 janv. 2013 à 12:14, "Peter N. M. Hansteen" a écrit : > > > On Fri, Jan 04, 2013 at 12:09:10PM +0100, Lo?c Blot wrote: > >> Hello, > >> since OpenBSD 5.2 i have a problem with NMAP: > >> > >> Starting Nmap 6.01 ( http://nmap.org ) at 2013-01-04 11:47 CET > >> route_dst_generic: Failed to obtain system routes: getsysroutes_dnet: > >> sysroutes_dnet_find_interfaces() failed > >> > >> If i disable PF the problem isn't present. > >> > >> Do you have an idea ? > > > > Not really, but what were the exact nmap options used? What were your PF > > rules? > > Any other relevant info? > > > > running nmap -A pointed at a host in the local net here from a > > somewhat-past-5.2 > > snapshot produces normal scan output, fwiw. > > > > -- > > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ > > "Remember to set the evil bit on all malicious network traffic" > > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: NMAP problem with PF
Hmmm strange but with -- Best regards, Loïc BLOT, Engineering UNIX Systems, Security and Networks http://www.unix-experience.fr Le vendredi 04 janvier 2013 à 13:04 +0100, Loïc BLOT a écrit : > Hello, > It's a simple nmap : > Nmap -p 1688 a.b.c.d -PN > > Loic Blot > > Le 4 janv. 2013 à 12:14, "Peter N. M. Hansteen" a écrit : > > > On Fri, Jan 04, 2013 at 12:09:10PM +0100, Lo?c Blot wrote: > >> Hello, > >> since OpenBSD 5.2 i have a problem with NMAP: > >> > >> Starting Nmap 6.01 ( http://nmap.org ) at 2013-01-04 11:47 CET > >> route_dst_generic: Failed to obtain system routes: getsysroutes_dnet: > >> sysroutes_dnet_find_interfaces() failed > >> > >> If i disable PF the problem isn't present. > >> > >> Do you have an idea ? > > > > Not really, but what were the exact nmap options used? What were your PF > > rules? > > Any other relevant info? > > > > running nmap -A pointed at a host in the local net here from a > > somewhat-past-5.2 > > snapshot produces normal scan output, fwiw. > > > > -- > > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ > > "Remember to set the evil bit on all malicious network traffic" > > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: Why does time/ident/daytime/comsat run after an OpenBSD 5.2 install?
Should this question posted on the dev mailing list? 2013/1/4 Gilles Chehade : > On Fri, Jan 04, 2013 at 10:37:13AM +0100, Random, Eyes wrote: >> obviously you or someone from this list knows the answer that why are >> these rarely used services needed to be enabled by default. >> > > I don't, as a matter of fact I don't rely on inetd so it's disabled on > my machines. > > >> p.s.: are you Gilles ( http://unix.stackexchange.com/users/885/gilles )? >> > > No > > > -- > Gilles Chehade > > https://www.poolp.org @poolpOrg
Re: NMAP problem with PF
Hello, It's a simple nmap : Nmap -p 1688 a.b.c.d -PN Loic Blot Le 4 janv. 2013 à 12:14, "Peter N. M. Hansteen" a écrit : > On Fri, Jan 04, 2013 at 12:09:10PM +0100, Lo?c Blot wrote: >> Hello, >> since OpenBSD 5.2 i have a problem with NMAP: >> >> Starting Nmap 6.01 ( http://nmap.org ) at 2013-01-04 11:47 CET >> route_dst_generic: Failed to obtain system routes: getsysroutes_dnet: >> sysroutes_dnet_find_interfaces() failed >> >> If i disable PF the problem isn't present. >> >> Do you have an idea ? > > Not really, but what were the exact nmap options used? What were your PF > rules? > Any other relevant info? > > running nmap -A pointed at a host in the local net here from a > somewhat-past-5.2 > snapshot produces normal scan output, fwiw. > > -- > Peter N. M. Hansteen, member of the first RFC 1149 implementation team > http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ > "Remember to set the evil bit on all malicious network traffic" > delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: openBSD 5.2 amd64 on lenovo x201s
IMHO OpenBSD is pretty usable in a laptop, old or modern. Most of things run in the right way. From my point of view only a few things are missing now: [...] - no NTFS support http://www.openbsd.org/cgi-bin/man.cgi?query=mount_ntfs&apropos=0&sektion=0&manpath=OpenBSD+Current&arch=i386&format=html
NMAP problem with PF
Hello, since OpenBSD 5.2 i have a problem with NMAP: Starting Nmap 6.01 ( http://nmap.org ) at 2013-01-04 11:47 CET route_dst_generic: Failed to obtain system routes: getsysroutes_dnet: sysroutes_dnet_find_interfaces() failed If i disable PF the problem isn't present. Do you have an idea ? Thanks. -- Best regards, Loïc BLOT, Engineering UNIX Systems, Security and Networks http://www.unix-experience.fr
Re: NMAP problem with PF
On Fri, Jan 04, 2013 at 12:09:10PM +0100, Lo?c Blot wrote: > Hello, > since OpenBSD 5.2 i have a problem with NMAP: > > Starting Nmap 6.01 ( http://nmap.org ) at 2013-01-04 11:47 CET > route_dst_generic: Failed to obtain system routes: getsysroutes_dnet: > sysroutes_dnet_find_interfaces() failed > > If i disable PF the problem isn't present. > > Do you have an idea ? Not really, but what were the exact nmap options used? What were your PF rules? Any other relevant info? running nmap -A pointed at a host in the local net here from a somewhat-past-5.2 snapshot produces normal scan output, fwiw. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Re: openBSD 5.2 amd64 on lenovo x201s
- Original message - > El Fri, 4 Jan 2013 08:08:24 +0100 > Tomas Bodzar escribió: > > > On Thu, Jan 3, 2013 at 8:15 PM, Andriy Samsonyuk > > wrote: > > > On Thu, Jan 03, 2013 at 06:40:39PM +0100, Jes wrote: > > > > And probably no power on usb ports after resume, like my T410. > > > have not checked yet > > > > > > Do i understand it correctly, that there is no chance of it > > > running properly until the CEO of Intel want to improve his > > > karma? > > > > You need to run current with latest HW. Not release/stable. > > > > > > > > IMHO OpenBSD is pretty usable in a laptop, old or modern. On the GPU side of things its pretty bad if not non existent for modern systems. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: openBSD 5.2 amd64 on lenovo x201s
El Fri, 4 Jan 2013 08:08:24 +0100 Tomas Bodzar escribió: > On Thu, Jan 3, 2013 at 8:15 PM, Andriy Samsonyuk > wrote: > > On Thu, Jan 03, 2013 at 06:40:39PM +0100, Jes wrote: > >> And probably no power on usb ports after resume, like my T410. > > have not checked yet > > > > Do i understand it correctly, that there is no chance of it > > running properly until the CEO of Intel want to improve his > > karma? > > You need to run current with latest HW. Not release/stable. > > > IMHO OpenBSD is pretty usable in a laptop, old or modern. Most of things run in the right way. From my point of view only a few things are missing now: - usb ports after resume, but only in certain thinkpad models (like X201, I guess, and T410) - no disk journaling - no NTFS support - no Linux emulation in amd64 But there are some advantages: - suspend/resume out of the box (except the usb stuff in some computers). - speed booting and shutting down - simplest installation/upgrade way - it works with modern integrated intel video cards (no need of kvm, thought no acceleration) - pf firewall I have OpenBSD current installed in my laptop, with Fedora. My primary system right now is Fedora, but for other reasons. My OpenBSD current works perfectly for most of my tasks: internet navigation, mail, perl/mysql development, music, video, photos, etc.) My advice: it is well worth to try and experiment by yourself. BR Jes
Re: Why does time/ident/daytime/comsat run after an OpenBSD 5.2 install?
On Fri, Jan 04, 2013 at 10:37:13AM +0100, Random, Eyes wrote: > obviously you or someone from this list knows the answer that why are > these rarely used services needed to be enabled by default. > I don't, as a matter of fact I don't rely on inetd so it's disabled on my machines. > p.s.: are you Gilles ( http://unix.stackexchange.com/users/885/gilles )? > No -- Gilles Chehade https://www.poolp.org @poolpOrg
Re: Why does time/ident/daytime/comsat run after an OpenBSD 5.2 install?
obviously you or someone from this list knows the answer that why are these rarely used services needed to be enabled by default. p.s.: are you Gilles ( http://unix.stackexchange.com/users/885/gilles )? 2013/1/4 Gilles Chehade : > On Fri, Jan 04, 2013 at 08:44:33AM +0100, Random, Eyes wrote: >> I installed an OpenBSD 5.2 using "-* & +etc* & +base* & +bsd". >> >> Can someone tell my why are these: >> >> [...] >> >> important in the default install to be enabled? With this the KISS >> principle is not followed... >> > > Interesting question ... > > >> Please read the thread in the: >> >> http://unix.stackexchange.com/questions/60175/why-does-time-ident-daytime-comsat-run-after-an-openbsd-5-2-install >> >> if further comments needed. >> > > ... by obvious know-it-all troll. > > > -- > Gilles Chehade > > https://www.poolp.org @poolpOrg
Re: Why does time/ident/daytime/comsat run after an OpenBSD 5.2 install?
On Fri, Jan 04, 2013 at 08:44:33AM +0100, Random, Eyes wrote: > I installed an OpenBSD 5.2 using "-* & +etc* & +base* & +bsd". > > Can someone tell my why are these: > > [...] > > important in the default install to be enabled? With this the KISS > principle is not followed... > Interesting question ... > Please read the thread in the: > > http://unix.stackexchange.com/questions/60175/why-does-time-ident-daytime-comsat-run-after-an-openbsd-5-2-install > > if further comments needed. > ... by obvious know-it-all troll. -- Gilles Chehade https://www.poolp.org @poolpOrg
Re: Running OpenBSD on Raspberry Pi
Sean Kamath skrev 2013-01-04 09:07: > I second the ALIX board being worthy. I don't have as many as Mr > Shupe, but I have more than a few. Huh. That seems like a deal for one > of the Netgate versions, but pcengines.ch has the 2d13 board for > US$104, case for ~US$9 (but no US Power Adapter. :-(). When I bought > mine, they shipped quickly (US$33, though). Sean ALIX boards are something totally different that Pi's to me thou, the Pi is a ARM development board, and for an arm development boards really cheep. Beagle board being the nexxt up compeditor. Most of our development boards are 10 to 20 times the price and have less power. That one can actually get a nice development board for home use as well is nice.
Re: Running OpenBSD on Raspberry Pi
On Jan 3, 2013, at 11:08 AM, Gene wrote: > On Tue, Jan 1, 2013 at 1:31 AM, Bruno Flückiger wrote: >> >> My personal favorites are the boxes from this small company in Switzerland: >> >> http://www.pcengines.ch >> >> Regards, >> Bruno >> > > The ALIX hardware is incredible. I own two of the ALIX boards (2d3 > and 2d13), the second one I picked up recently on eBay for $150 with > case and power supply, I added a CF card for an additional ~$10. I > already have a serial cable on hand, but that would be at most another > $10-$20 to procure. I second the ALIX board being worthy. I don't have as many as Mr Shupe, but I have more than a few. Huh. That seems like a deal for one of the Netgate versions, but pcengines.ch has the 2d13 board for US$104, case for ~US$9 (but no US Power Adapter. :-(). When I bought mine, they shipped quickly (US$33, though). Sean
