openbsd, equipments sold with it?
Hello A friend of mine asked me if some good examples of sold-devices, eg industrial, or for specific domain, whom openbsd is embedded on it, in a kind of equipment? I search on the web but I didnt found : do you have examples, or just product names, for individuals or business/industry, of products, running and based on openbsd? thank you
Re: fragmented ipv4[udp] ignored by server.
Hello And good day. One small update. I set up the same freeradius configuration with official freeradius docker image and my radius eap configuration. Used vmd as hyper-visor and alpine linux to run docker. And pf to redirect/nat traffic to freeradius. And it worked! Also previously same configuration of pf and freeradius worked with Freebsd to get eap tls authentication work. May be it's some default openbsd configuration or pf rules. Thank you. On 3/6/23 14:20, Mikhael Lialin wrote: Hello Tom. It's a local setup. So radius server and eapol_client are located on the near ports of cisco sg350 switch. And there is no rules on this switch present regarding fragmented packets. Anyway it's capable of rspan, and it's possible to mirror traffic from one port to another for analyse. to be sure where those packet's loss. However this requires one more pc in this scheme. In freeradius documentation (in/usr/local/share/examples/freeradius/mods-available/eap) mentioned that server and client certificates should have 509 extensions for server and client authentication. And they have. Thank you. On 3/6/23 02:27, Tom Smyth wrote: Hi Mikhael, Moving this on to Misc List as it is more approiaate for support type requests, It may not be OpenbSD, that is ignoring the fragments, depending on your setup an intermediate device ( NAT router etc) could be proccessing the IP fragments incorrectly and or dropping them... IP fragments are a pain as they dont really match the protocol of the original packet and have all sorts of issues when traversing multipath (hashed) multipath routes between the source and destination.. cloudflare have a really good article on this https://blog.cloudflare.com/ip-fragmentation-is-broken/ Hope this is of help... On Sun, 5 Mar 2023 at 22:04, Mikhael Lialin wrote: Hi. I'm successfully configured eap tls with freeradius. However with default value for fragment_size in wpa_supplicant.conf which equals 1398 - packets get fragmented and seems ignored by the server. Both systems are openbsd 7.2 here is output from thsark: --target radius-- 9 124.886123 10.10.2.10 ? 10.10.2.1 RADIUS 188 Access-Request id=0 10 124.894967 10.10.2.1 ? 10.10.2.10 RADIUS 106 Access-Challenge id=0 11 124.914163 10.10.2.10 ? 10.10.2.1 RADIUS 373 Access-Request id=1 12 125.010446 10.10.2.1 ? 10.10.2.10 RADIUS 1320 Access-Challenge id=1 13 125.014979 10.10.2.10 ? 10.10.2.1 RADIUS 191 Access-Request id=2 14 125.032537 10.10.2.1 ? 10.10.2.10 RADIUS 1320 Access-Challenge id=2 15 125.034214 10.10.2.10 ? 10.10.2.1 RADIUS 191 Access-Request id=3 16 125.045650 10.10.2.1 ? 10.10.2.10 RADIUS 300 Access-Challenge id=3 --source eapol_test with wpa_supplicant.conf--- 1 0.00 10.10.2.10 ? 10.10.2.1 RADIUS 188 Access-Request id=0 2 0.011025 10.10.2.1 ? 10.10.2.10 RADIUS 106 Access-Challenge id=0 3 0.027023 10.10.2.10 ? 10.10.2.1 RADIUS 373 Access-Request id=1 4 0.126651 10.10.2.1 ? 10.10.2.10 RADIUS 1320 Access-Challenge id=1 5 0.127440 10.10.2.10 ? 10.10.2.1 RADIUS 191 Access-Request id=2 6 0.148742 10.10.2.1 ? 10.10.2.10 RADIUS 1320 Access-Challenge id=2 7 0.149411 10.10.2.10 ? 10.10.2.1 RADIUS 191 Access-Request id=3 8 0.161846 10.10.2.1 ? 10.10.2.10 RADIUS 300 Access-Challenge id=3 9 0.179447 10.10.2.10 ? 10.10.2.1 IPv4 1514 Fragmented IP protocol (proto=UDP 17, off=0, ID=b444) 10 3.193244 10.10.2.10 ? 10.10.2.1 IPv4 1514 Fragmented IP protocol (proto=UDP 17, off=0, ID=b576) 11 9.213196 10.10.2.10 ? 10.10.2.1 IPv4 1514 Fragmented IP protocol (proto=UDP 17, off=0, ID=ef21) 12 21.233280 10.10.2.10 ? 10.10.2.1 IPv4 1514 Fragmented IP protocol (proto=UDP 17, off=0, ID=00d0) eapol_test fails setting fragment_size = 1212 in wpa_supplicant.conf and getting success. output from tshark: --target radius-- 1 0.00 10.10.2.10 ? 10.10.2.1 RADIUS 188 Access-Request id=0 2 0.006613 10.10.2.1 ? 10.10.2.10 RADIUS 106 Access-Challenge id=0 3 0.024538 10.10.2.10 ? 10.10.2.1 RADIUS 373 Access-Request id=1 4 0.104617 10.10.2.1 ? 10.10.2.10 RADIUS 1320 Access-Challenge id=1 5 0.106355 10.10.2.10 ? 10.10.2.1 RADIUS 191 Access-Request id=2 6 0.114877 10.10.2.1 ? 10.10.2.10 RADIUS 1320 Access-Challenge id=2 7 0.118679 10.10.2.10 ? 10.10.2.1 RADIUS 191 Access-Request id=3 8 0.128309 10.10.2.1 ? 10.10.2.10 RADIUS 300 Access-Challenge id=3 9 0.145442 10.10.2.10 ? 10.10.2.1 RADIUS 1415 Access-Request id=4 10 0.160230 10.10.2.1 ? 10.10.2.10 RADIUS 106 Access-Challenge id=4 11 0.161621 10.10.2.10 ? 10.10.2.1
how to transmit desktop sound on xenodm.
Dear everyone. I have any Questions for sndiod and pulseaudio. I tried [OpenBSD Remote] to [Windows Local]... but, I was never to get success... how can i do it... I am using X11VNC by Xvfb... I want to get Desktop sound... have any ideas? ##[OpenBSD Remote:192.168.2.5] sndiod -L- mkdir ~/.sndio/ touch ~/.sndio/cookie pkg_add pulseaudio cp -pR /etc/pulse/* ~/.pulse/ ed ~/.pulse/default.pa <<_EOF_ /load-module module-native-protocol-tcp a load-module module-waveout sink_name=output source_name=input record=0 load-module module-native-protocol-tcp auth-anonymous=1 . w q _EOF_ ed ~/.pulse/daemon.conf <<_EOF_ /exit-idle-time a exit-idle-time = -1 . w q _EOF_ ed ~/.pulse/client.conf <<_EOF_ /default-server a #default-server = 127.0.0.1 default-server = tcp:localhost . w q _EOF_ pulseaudio -k pulseaudio --system AUDIODEVICE=snd@localhost/0 firefox-esr [Windows Local:192.168.2.10] ed pulseaudio-1.1\etc\pulse\default.pa <<_EOF_ /load-module module-native-protocol-tcp a load-module module-native-protocol-tcp . w q _EOF_ ed ~/.pulse/client.conf <<_EOF_ /default-server a default-server = tcp:192.168.2.5 . w q _EOF_ pulseaudio -k pulseaudio -D
Re: disabling horizontal scroll in ksh
On 2023-03-19 19:04, Kenneth Gober wrote: If you disable command line editing it will stop this. For me, the command "set +o emacs" did it. Well, no. I do want to enjoy line editing in emacs mode. that is simply a workaround and not a solution i assume.
Re: Running Bugzilla in httpd - 'Pg' is not a valid choice for $db_driver in localconfig
Am 17.03.23 23:02 schrieb Stuart Henderson: > On 2023-03-17, Michael Hekeler wrote: > > If you really want to run bugzilla as cgi application with slowcgi(8) > > then you have to copy the required perl modules in your chroot. > > Or use slowcgi -p / to disable chroot. > > > However since bugzilla is ultimately a cgi application you can deploy it > > via fastcgi which is supported by httpd(8) natively. > > afaik it doesn't support fastcgi, upstream suggestion is to use > fcgiwrap which does basically the same as slowcgi. Uuh - didn't know that. I was sure that bugzilla is a fastcgi app :-/ Anyway thanks for clarification.
Re: disabling horizontal scroll in ksh
On Sun, Mar 19, 2023 at 7:36 AM sewn wrote: > hi, i've recently switched to ksh and i've been very annoyed by the > horizontal scroll feature (happens when a commmand is longer than the > terminal's width) is there anyway to disable this feature? i would > prefer > to see the whole command, like in bash or ash. > If you disable command line editing it will stop this. For me, the command "set +o emacs" did it. -ken
Re: disabling horizontal scroll in ksh
sewn: > hi, i've recently switched to ksh and i've been very annoyed by the > horizontal scroll feature (happens when a commmand is longer than the > terminal's width) is there anyway to disable this feature? i would > prefer > to see the whole command, like in bash or ash. That's just the way the ksh command line editor works. Somebody would have to rewrite it from scratch / hook in editline(3) and redo the whole area of the command line editor and key bindings. pdksh's command line editor is patterned after that of ksh88, which was purposely constrained to a single line so it could be implemented with backspace/carriage return and overprinting, without requiring arbitrary cursor positioning and termcap(3). -- Christian "naddy" Weisgerber na...@mips.inka.de
Re: NUT can't read my ups (perhaps something is wrong with usb stack)
On 2023-03-19, Gregory Edigarov wrote: >0.015775 libusb1: Could not open any HID devices: no USB > buses found 0.015784 No supported devices found. Please check > your device availability with 'lsusb' > lbld12# ls -l /dev/ugen0* and /dev/usb*? (the pkg-readme has some hints)
NUT can't read my ups (perhaps something is wrong with usb stack)
Hello, misc@ run into problem connecting my new ups. it seems like problems with libusb on OpenBSD-current . UPS model is: Njoy Aten Pro 1000 USB it works fine when I attach it to linux. but on OpenBSD NUT fails to read it. the device attaches as: # usbdevs - addr 02: 0665:5161 Mustek Systems, PowerMust 800 low speed, power 100 mA, config 1, rev 0.03 driver: ugen0 lsusb Bus 000 Device 002: ID 0665:5161 Cypress Semiconductor USB to Serial # lsusb -v -d 0665:5161 Bus 000 Device 002: ID 0665:5161 Cypress Semiconductor USB to Serial Device Descriptor: bLength18 bDescriptorType 1 bcdUSB 2.00 bDeviceClass0 (Defined at Interface level) bDeviceSubClass 0 bDeviceProtocol 0 bMaxPacketSize0 8 idVendor 0x0665 Cypress Semiconductor idProduct 0x5161 USB to Serial bcdDevice0.03 iManufacturer 0 iProduct0 iSerial 0 bNumConfigurations 1 Configuration Descriptor: bLength 9 bDescriptorType 2 wTotalLength 34 bNumInterfaces 1 bConfigurationValue 1 iConfiguration 0 bmAttributes 0xa0 (Bus Powered) Remote Wakeup MaxPower 100mA Interface Descriptor: bLength 9 bDescriptorType 4 bInterfaceNumber0 bAlternateSetting 0 bNumEndpoints 1 bInterfaceClass 3 Human Interface Device bInterfaceSubClass 0 No Subclass bInterfaceProtocol 0 None iInterface 0 HID Device Descriptor: bLength 9 bDescriptorType33 bcdHID 1.11 bCountryCode0 Not supported bNumDescriptors 1 bDescriptorType34 Report wDescriptorLength 27 Report Descriptor: (length is 27) Item(Global): Usage Page, data= [ 0x00 0xff ] 65280 (null) Item(Local ): Usage, data= [ 0x01 ] 1 (null) Item(Main ): Collection, data= [ 0x01 ] 1 Application Item(Local ): Usage, data= [ 0x02 ] 2 (null) Item(Global): Logical Minimum, data= [ 0x00 ] 0 Item(Global): Logical Maximum, data= [ 0xff 0x00 ] 255 Item(Global): Report Size, data= [ 0x08 ] 8 Item(Global): Report Count, data= [ 0x08 ] 8 Item(Main ): Input, data= [ 0x82 ] 130 Data Variable Absolute No_Wrap Linear Preferred_State No_Null_Position Volatile Bitfield Item(Local ): Usage, data= [ 0x02 ] 2 (null) Item(Global): Report Count, data= [ 0x08 ] 8 Item(Main ): Output, data= [ 0x82 ] 130 Data Variable Absolute No_Wrap Linear Preferred_State No_Null_Position Volatile Bitfield Item(Main ): End Collection, data=none Endpoint Descriptor: bLength 7 bDescriptorType 5 bEndpointAddress 0x81 EP 1 IN bmAttributes3 Transfer TypeInterrupt Synch Type None Usage Type Data wMaxPacketSize 0x0008 1x 8 bytes bInterval 8 Device Status: 0x (Bus Powered) /etc/nut/ups.conf reads: [nutdev1] driver = "nutdrv_qx" vendorid = "0665" productid = "5161" bus = "000" pollinterval = "10" port = "auto" # nutdrv_qx -D -a nutdev1 also tried with all subdriver options available for nutdrv_qx. the result is the same: Network UPS Tools - Generic Q* USB/Serial driver 0.32 (2.8.0) USB communication driver (libusb 1.0) 0.43 0.00 [D3] do_global_args: var='W' val='' 0.68 [D3] do_global_args: var='maxretry' val='3' 0.000160 [D3] main_arg: var='driver' val='nutdrv_qx' 0.000175 [D3] main_arg: var='vendorid' val='0665' 0.000204 [D5] send_to_all: SETINFO driver.parameter.vendorid "0665" 0.000210 [D3] main_arg: var='productid' val='5161' 0.000216 [D5] send_to_all: SETINFO driver.parameter.productid "5161" 0.000220 [D3] main_arg: var='bus' val='000' 0.000225 [D5] send_to_all: SETINFO driver.parameter.bus "000" 0.000229 [D3] main_arg: var='pollinterval' val='10' 0.000246 [D3] main_arg: var='port' val='auto' 0.000250 [D5] send_to_all: SETINFO driver.parameter.port "auto" 0.000269 [D1] debug level is '21' 0.015216 [D5] send_to_all: SETINFO device.type "ups" 0.015233 [D1] upsdrv_initups... 0.015758 [D2] libusb1: No appropriate HID device
disabling horizontal scroll in ksh
hi, i've recently switched to ksh and i've been very annoyed by the horizontal scroll feature (happens when a commmand is longer than the terminal's width) is there anyway to disable this feature? i would prefer to see the whole command, like in bash or ash. often, the command begins horizontally scrolling when it shouldn't, for example when my terminal is in a contrained space, or is very thin; it begins VERY early, right after i type one character! is there anyway to disable this feature? or to atleast workaround it? thanks.