Re: Softraid performance: CRYPTO on top of RAID 1?
similar CRYPTO on RAID 1 configuration Could you please supply some details of how did you do that? On Thu, Jul 04, 2013 at 02:33:51AM +1000, Joel Sing wrote: On Tue, 2 Jul 2013, Erling Westenvik wrote: Hi folks, Anyone having any experience with putting an softraid CRYPTO partition on top of a softraid RAID 1? In terms of performance? I'd like to build a file server that favors redundancy, availability and privacy over performance. The latter within limits though, hence my initial question. Private use only. Me, my family and ... friends. I'm planning to use 3 x 1TB drives in RAID 1. No FDE since availability involves the possibility of unattended booting; like after a power outage while being abroad/out of town, in which case I'd have to ssh in to the box and bioctl(8) the encrypted volume. Otherwise the PC is an old Pentium 4 3.40GHz with 3GB RAM which as of today runs fine as a file server with 2 x 500GB disks in softraid RAID 1. You would get much better throughput with a CPU that supports AESNI, however unless you're wanting near-disk level performance, you shouldn't have any problems. FWIW one of my servers (handles mail, etc) is a Sun Fire V210 (sparc64) machine with 2x1GHz CPU, 2GB RAM and a pair of SCSI drives - it runs perfectly well in a similar CRYPTO on RAID 1 configuration. That said, you'd be best to set it up and measure the performance to ensure it will meet your needs. Sorry if my question does not belong on @misc. I've done quite some homework but could not find information pertinent to my case and would like to hear any arguments for or against before I spend many hours on copying hundres of gigabytes to potentially no avail. Regards, Erling -- Action without study is fatal. Study without action is futile. -- Mary Ritter Beard
Re: sendmail config
You need to utilize sendmail's milter interface to write an application to strip out these headers. On Thu, Apr 11, 2013 at 11:21:14PM -0700, Philip Guenther wrote: On Thu, Apr 11, 2013 at 10:57 PM, Tony Berth tonybe...@googlemail.com wrote: I'm running a 386 5.2 OpenBSD box with sendmail and would like to strip following headers from the outgoing e-mails: *Received:* from x.x.x.x (SquirrelMail authenticated user user) by new.host.name with HTTP; Thu, 11 Apr 2013 14:31:59 +0300 [from the above I would like to strip the IP address of the webclient, the MUA as well as the logged-in user] *References:* e253a79261e44ce227bbc166a9adaf84.squir...@new.host.name a369eabe7962808743d2de3a4134d0c9.squir...@new.host.name 32410656f1b0057d8966ea544f68f1dd.squir...@new.host.name db43aa23cdc95bb7218fa33c8aa18efa.squir...@new.host.name [from the above I would like to strip the history of the refes] *User-Agent:* SquirrelMail/1.4.22 [from the above I would like to remove the MUA] There's no way to do that inside sendmail itself. What problem are you trying solve by making those changes? (Changing References is particularly rude: Hi, I want to make it harder for people to follow email conversations and make my users look like idiots!) Philip Guenther
Re: BSD licensed gnupg replacement question
You can use S/MIME with openssl as alternative to PGP. On Thu, Dec 06, 2012 at 01:10:17PM -0600, Maximo Pech wrote: It's incredible for me that OpenBSD, an operating system that claims to have integrated cryptography (yes I know that the cryptography is on the core OS layers) doesn't have in the base system a tool like gnupg, and even more incredible, that there isn't a single production ready, gnupg-like, BSD licensed tool out there (I don't have the skills and time to program one myself). I'd like to know your thoughts about this.