Re: TypeO
On 10/19/18 6:29 PM, david long wrote: I'm the first to admit I don't know anything about anything. Should it be iwn or iwm for the wireless firmware drivers. Because I get an error say unable to load iwm. I thought the wireless drivers for the Intel chipset are iwn David, I would suggest reading https://www.openbsd.org/mail.html. Actually, reading the entire FAQ is a good idea for newcomers. Both iwn and iwm are wireless drivers, for different species of Intel wireless chips. Reading is a really good thing when delving into a new op system. Fortunately OpenBSD is great docs. In addition, https://undeadly.org/ is good reading, as is http://daemonforums.org/forumdisplay.php?f=11 There are others but that should get you started. --STeve Andre'
Re: phonetic alphabet on OpenBSD
Chris Bennett writes: Is there any information out there to help actually learn the sounds? I couldn't find anything and I don't want to take classes. https://en.wikipedia.org/wiki/Help:IPA
Re: FAM Question
Would sysutils/entr help? Markus Rosjat schrieb am Fr., 19. Okt. 2018 11:43: > Hi there, > > it seems there is no FAM package anymore but there is a gamin package so > is this a replacement for FAM? And following up on that how the heck do > I get gamin to work, there seems to be no rc script for it but if it > works like FAM there should be a process running right? The docs or > pkgconfig doesnt say anything regarding this so Im kinda lost here. So > if someone hast som information about that share please. > > regards > > -- > Markus Rosjatfon: +49 351 8107224mail: ros...@ghweb.de > > G+H Webservice GbR Gorzolla, Herrmann > Königsbrücker Str. 70, 01099 Dresden > > http://www.ghweb.de > fon: +49 351 8107220 fax: +49 351 8107227 > > Bitte prüfen Sie, ob diese Mail wirklich ausgedruckt werden muss! Before > you print it, think about your responsibility and commitment to the > ENVIRONMENT > >
Re: TypeO
I don't want to get on Theo's bad side, lol On Fri, Oct 19, 2018, 6:32 PM david long wrote: > Disregard, too much beer! > > On Fri, Oct 19, 2018, 6:29 PM david long wrote: > >> I'm the first to admit I don't know anything about anything. Should it be >> iwn or iwm for the wireless firmware drivers. Because I get an error say >> unable to load iwm. I thought the wireless drivers for the Intel chipset >> are iwn >> >
Re: TypeO
Disregard, too much beer! On Fri, Oct 19, 2018, 6:29 PM david long wrote: > I'm the first to admit I don't know anything about anything. Should it be > iwn or iwm for the wireless firmware drivers. Because I get an error say > unable to load iwm. I thought the wireless drivers for the Intel chipset > are iwn >
TypeO
I'm the first to admit I don't know anything about anything. Should it be iwn or iwm for the wireless firmware drivers. Because I get an error say unable to load iwm. I thought the wireless drivers for the Intel chipset are iwn
Re: phonetic alphabet on OpenBSD
I'm definitely reading this topic! When I last looked, apparently IPA had two fonts, neither of which worked for all the characters. Is this still true? I really like the IPA, it makes sounds that you either can or cannot pronounce correctly very clear as to what they are supposed to be. My interest is personal, not professional. Is there any information out there to help actually learn the sounds? I couldn't find anything and I don't want to take classes. I have to ask also, is the audio quality that comes out the speakers (in general) good enough to learn the proper sounds? Every device I have seems to have wildly varying qualities and characteristics. For example, (OK, not OpenBSD but somewhat relevant) if I wanted to listen to the speech coming out of Google Translate, would a native speaker of say Spanish, German or Russian consider the sounds "proper"? Is there any software that makes proper sounds available (to port, I'm too poor to buy non-free)? For example, I speak pretty good Mexican-Spanish, but since I'm self taught, I know I mispronounce some sounds. Frankly, it's a little embarrassing here and there. Haven't yet seen a class offering: "How to correct your pronunciation years later to sound normal" or "How to make sure you are really choosing the right words every time" Chris Bennett
Re: www.openbsd.org copyright notice
On 19/10/2018 12:53, Matt Schwartz wrote: Just saw today that the copyright notice on the website is from 1996-2017. You guys might want to update it to 2018. :-) -Matt Copyright is automatic by the signatories to the Berne convention amended in 1979 (and non-signatories will ignore it anyways).
Re: phonetic alphabet on OpenBSD
On Oct 14 20:56:05, h...@stare.cz wrote: > Are there any phoneticians running on OpenBSD? > How do you type the phonetic alphabet in vim? > Is there a standard keyboard layout for the English part of IPA? > I wrote me an ipa.vim ftplugin with shortcuts (such as imap ,ae) > for the unicode chars, but I am looking for a "standard" way. θæɳks fɒr ɔːl θə sədʒestʃəns aɪ wɪl traɪ θem ɒuvə θə wiːkend jʌn $ cat ~/.vim/ftplugin/ipa.vim imap ,ii iː imap ,i ɪ imap ,u ʊ imap ,uu uː " e imap ,e ə imap ,ee ɜː imap ,oo ɔː imap ,ae æ imap ,a ʌ imap ,aa aː imap ,o ɒ imap ,ir ɪə imap ,ur ʊə imap ,er eə imap ,ei eɪ imap ,oi ɔɪ imap ,ai aɪ imap ,eu əʊ imap ,au aʊ " p " b " t " d " k " g imap ,ts tʃ imap ,dz dʒ " f " v imap ,th θ imap ,dh ð " s " z imap ,sh ʃ imap ,zh ʒ " m " n imap ,ng ɳ " h " l " r " j " w
please, help me on new smtpd.conf
Hello. I have just updated to 6.4 and afraid of making mistakes on mail
server. Please look at my conf:
pki kasakoff.net cert "/etc/ssl/kasakoff.net.fullchain.pem"
pki kasakoff.net key "/etc/ssl/private/kasakoff.net.key"
listen on lo0
listen on lo port 10028 tag DKIM
listen on egress inet4 tls pki kasakoff.net auth-optional
listen on egress inet4 port submission tls pki kasakoff.net auth
table aliases file:/etc/mail/aliases
table domains { kasakoff.net, koskina.ru }
action "mbox" mbox alias
action "mda" mda "/usr/local/bin/procmail" alias
action "relay" relay
action "relay_dkim" relay host smtp://127.0.0.1:10027
match for local action "mbox"
match from any for domain action "mda"
match tag DKIM for any action "relay"
match auth from any for any action "relay_dkim"
smtp max-message-size 100M
This is my logic:
1) I need to put messages from local system to local user mboxes.
2) Next I want all mails to kasakoff.net and koskina.ru be delivered to
procmail.
3) Last two matches is for dkim. I want to sign unsigned mails before
they are send to external servers.
My questions are:
I noticed that "from any" in second match is required? without it smtpd
answer "invalid recipient"
Again, in 4th match, "from any" is required too, without it i can't send
mail anywhere.
But as I can see, in third match "from any" is not required, dkim signed
messages are relaying successfully.
Also "from any" is not required in first match rule?
Why is that so?
Second, how can I limit mta to use only ipv4? in 6.3 there was line
"limit mta inet4"
And third. Is my config composed correctly?
May be this is more secure to change 4th match to
"match auth from domain for any action "relay_dkim""?
For example, if user be compromised, this will prevent spammer to send
mails from random sender, am I right? Will this work?
P.S.
Thank you in advance for your response! Also thank's to all developers
for job you doing! OpenBSD is best system ever created!
relayd websocket issue
Hello misc,
I am trying to perform a relay on webapp that uses websocket.
I am able to use the app, but when websocket is requested it does not work
.Any direction will be appreciated
Here is my config:
# cat /etc/relayd.conf
http protocol "https" {
match request header append "X-Forwarded-For" value "$REMOTE_ADDR"
match request header append "X-Forwarded-By" value
"$SERVER_ADDR:$SERVER_PORT"
match header set "Upgrade" value "$HTTP_UPGRADE"
match header set "Connection" value "upgrade"
match request header set "Connection" value "close"
# tcp tunnings
tcp { nodelay, sack, socket buffer 65536, backlog 100 }
pass request quick header "Host" value "example.com \
forward to
tls { no tlsv1.0, ciphers "HIGH" }
}
relay "webservices" {
listen on egress port 443 tls
protocol "https"
forward with tls to port 443
}
Re: relayd and radius
So apparently this works... I was expecting relayd to listen on those ports,
but I'm guessing that since it hooks through pf, that's not necessary.
-Original Message-
From: owner-m...@openbsd.org On Behalf Of Shawn
Southern
Sent: October 19, 2018 1:00 PM
To: misc@openbsd.org
Subject: relayd and radius
We have a lot of devices that use RADIUS, but they do not allow us to specify a
2nd RADIUS server. Since we use OpenBSD w/ CARP as our router/firewall, we
want to use relayd to provide some redundancy for the RADIUS servers.
There are two internal subnets - 10.10.10.0/24, which has our servers, and
10.10.11.0/24 that has the devices using RADIUS to authenticate clients.
10.10.10.1 and 10.10.11.1 are both carp interfaces.
When starting relayd, nothing appears to be listening on the RADIUS ports. Is
this even possible with relayd? Is my configuration just horribly wrong?
relayd.conf:
radius1 = "10.10.10.5"
radius2 = "10.10.10.6"
radius_listen = "10.10.11.1"
table { $radius1 }
table { $radius2 }
redirect radius {
listen on $radius_listen udp port 1812:1813
forward to check icmp
forward to check icmp
}
Thanks in advance for any help!
relayd and radius
We have a lot of devices that use RADIUS, but they do not allow us to specify a
2nd RADIUS server. Since we use OpenBSD w/ CARP as our router/firewall, we
want to use relayd to provide some redundancy for the RADIUS servers.
There are two internal subnets - 10.10.10.0/24, which has our servers, and
10.10.11.0/24 that has the devices using RADIUS to authenticate clients.
10.10.10.1 and 10.10.11.1 are both carp interfaces.
When starting relayd, nothing appears to be listening on the RADIUS ports. Is
this even possible with relayd? Is my configuration just horribly wrong?
relayd.conf:
radius1 = "10.10.10.5"
radius2 = "10.10.10.6"
radius_listen = "10.10.11.1"
table { $radius1 }
table { $radius2 }
redirect radius {
listen on $radius_listen udp port 1812:1813
forward to check icmp
forward to check icmp
}
Thanks in advance for any help!
Re: www.openbsd.org copyright notice
Matt Schwartz wrote: > Just saw today that the copyright notice on the website is from > 1996-2017. You guys might want to update it to 2018. :-) why? A copyright declaration is made for new authorship work. There was nothing new authored on the page in the last year, just a word here or there. Should new prints of the Hobbit have a new copyright?
www.openbsd.org copyright notice
Just saw today that the copyright notice on the website is from 1996-2017. You guys might want to update it to 2018. :-) -Matt
Re: relayd smtp traffic
Markus Rosjat(ros...@ghweb.de) on 2018.10.19 13:20:46 +0200: > Hi all, > > once again a silly question (but maybe someone is willing to answer) > about relayd. Is it spossible to determine the domain of the recipient > and depending on this redirect the traffic to da specific server behind > the relayd machine? No. > What I try to do is setup a test mailserver and just > redirect mailtraffic for a domain to this machine. /Benno
relayd smtp traffic
Hi all, once again a silly question (but maybe someone is willing to answer) about relayd. Is it spossible to determine the domain of the recipient and depending on this redirect the traffic to da specific server behind the relayd machine? What I try to do is setup a test mailserver and just redirect mailtraffic for a domain to this machine. regards -- Markus Rosjatfon: +49 351 8107224mail: ros...@ghweb.de G+H Webservice GbR Gorzolla, Herrmann Königsbrücker Str. 70, 01099 Dresden http://www.ghweb.de fon: +49 351 8107220 fax: +49 351 8107227 Bitte prüfen Sie, ob diese Mail wirklich ausgedruckt werden muss! Before you print it, think about your responsibility and commitment to the ENVIRONMENT
FAM Question
Hi there, it seems there is no FAM package anymore but there is a gamin package so is this a replacement for FAM? And following up on that how the heck do I get gamin to work, there seems to be no rc script for it but if it works like FAM there should be a process running right? The docs or pkgconfig doesnt say anything regarding this so Im kinda lost here. So if someone hast som information about that share please. regards -- Markus Rosjatfon: +49 351 8107224mail: ros...@ghweb.de G+H Webservice GbR Gorzolla, Herrmann Königsbrücker Str. 70, 01099 Dresden http://www.ghweb.de fon: +49 351 8107220 fax: +49 351 8107227 Bitte prüfen Sie, ob diese Mail wirklich ausgedruckt werden muss! Before you print it, think about your responsibility and commitment to the ENVIRONMENT
Re: Qemu: Serial access to OpenBSD host
Hi Matthew, Thanks a lot! Your script wasn't straight fit for my use case, but reading the source I was able to put together a working flag for the Qemu. BR, Justus > On 17 Oct 2018, at 1.07, Matthew King wrote: > > I use the following commands: > >$ nbsvm foo newimg >$ nbsvm foo start -cdrom cd63.iso --no-reboot -- serial # Installer > >$ nbsvm foo start >$ nbsvm foo serial > >or > >$ nbsvm foo start -- serial > > And in the final openbsd installation: > >$ cat /etc/boot.conf >set tty com0 > > Simple? See https://github.com/ChoHag/nbsvm > > Disclaimer - it's mine. > > I've also some scripts which take cdXX.iso and/or installXX.iso and inject > an autoinstall.conf into it so that automatic installation is easy without > a PXE setup (or any networking for that matter) but those are still in > ~/src somewhere. > > Mathew > >
Re: iked(8) bad-ip-version 7 (encap) error after 6.4 upgrade
Den 19 okt. 2018 kl 00:44 skrev Jason Tubnor : > 09:14:42.281631 (authentic,confidential): SPI 0x03096f78: bad-ip-version 7 > (encap) IPv7? I thought me using v6 was hipster enough, but the cool kids have surpassed me by far. (sorry for not helping with your actual issue though) -- May the most significant bit of your life be positive.
