On Sun, May 12, 2019 at 09:03:20PM +, Rivo Nurges wrote:
> >Synopsis: one side of the http relay gets changed to tcp relay if first
> >query of the persistent connection is empty OPTIONS
> >Category: system
> >Environment:
> System : OpenBSD 6.5
> Details
On Mon, Oct 22, 2018 at 09:01:21AM +0200, Martijn van Duren wrote:
> I found another bug while testing ldap(1) to M$ AD.
> Attributes like objectGUID are encoded as OCTET STRING, but are binary
> data, which are not UTF-8 strings.
> When looking at RFC4511 I found the following:
> 4.1.5. Attribute
On Wed, Sep 26, 2018 at 01:00:17AM +0200, Alexander Bluhm wrote:
> On Mon, Mar 12, 2018 at 06:42:28PM +0100, Nikola Kolev wrote:
> > [12/Mar/2018:19:16:56 +0100] " " 408 0 server default, client 1 (1
> > active), 10.0.2.2:56670 -> 10.0.2.15, timeout (408 Request Timeout) ...
>
> According to a pr
On Wed, Sep 26, 2018 at 12:36:50PM +0200, Sebastian Benoit wrote:
> (sorry about my last mail without subject, this is the same content)
>
> Sebastian Benoit(be...@openbsd.org) on 2018.09.26 11:42:40 +0200:
> > Alexander Bluhm(alexander.bl...@gmx.net) on 2018.09.26 01:00:17 +0200:
> > > On Mon, Ma
Hi,
it is an expected behavior and a proof that constraints are working
correctly: the certificate check fails because it is not valid.
I don't see a technical solution here because we'd either have to
disable constraint checks and loose their security benefit or we keep
them enabled and rely on
Hi,
after some discussions, we found a better approach and a way to improve this.
Please hold on for a few days.
Reyk
> Am 03.07.2018 um 21:42 schrieb David Dahlberg :
>
> Am Tuesday, den 03.07.2018, 19:01 +0200 schrieb Reyk Floeter:
>> A dual-homed host should not have IPsec
On Tue, Jul 03, 2018 at 03:06:34PM +0100, Stuart Henderson wrote:
> > If that is the case, what is going on here is unacceptable.
> >
>
> That is exactly what was intended with the 2012/11/29 commit.
> This is the scenario it tries to avoid:
>
> - user has a vpn for 0.0.0.0/0 on a host with the
Hi,
On Sun, Jun 17, 2018 at 10:35:27PM +0200, obs...@high5.nl wrote:
> >Synopsis:VMM owner needs to be part of group wheel in order to run vmctl
> >console|start|stop
the solution is not that easy as it seemed.
1. Change the umask and let everyone access vmd, restrict the commands
internall
Hi,
changing the umask in control.c could fix it. There’s no need to restrict it to
wheel since vmd checks the permissions based on configuration internally.
Having the vmd socket world-writable should be OK.
But we could eventually use a group _vmd to shield off users who shouldn’t even
be ab
On Sat, Jan 13, 2018 at 05:23:35PM +0100, Sebastian Benoit wrote:
> Hiltjo Posthuma(hil...@codemadness.org) on 2018.01.13 13:08:38 +0100:
> > On Sat, Jan 13, 2018 at 09:39:44AM +0100, Anton Lindqvist wrote:
> > > On Tue, Jan 09, 2018 at 05:38:57PM +0100, Hidv?gi G?bor wrote:
> > > > >Synopsis: http
On Tue, May 15, 2018 at 02:10:47PM +0200, Christophe Simon wrote:
> >Synopsis:The search time/size limit bounds seem badly evaluated in ldapd
> >Category:system
> >Environment:
> System : OpenBSD 6.3
> Details : OpenBSD 6.3 (GENERIC.MP) #2: Sun May 6 20:07:33 CEST 2018
that much with
the fix.
So the issues are all gone now?
OK? (anyone?)
Reyk
> thanks :)
>
> Giannis
>
>
>
> On 05/07/17 15:12, Reyk Floeter wrote:
> > Hi,
> >
> > On Wed, Jul 05, 2017 at 12:33:31PM +0300, Kapetanakis Giannis wrote:
> >>> S
Hi,
On Wed, Jul 05, 2017 at 12:33:31PM +0300, Kapetanakis Giannis wrote:
> >Synopsis:relayctl stopped relaying
> >Category:system
> >Environment:
> System : OpenBSD 6.1
> Details : OpenBSD 6.1-current (GENERIC.MP) #80: Mon Jul 3 14:23:11
> MDT 2017
>
> Am 06.06.2017 um 22:41 schrieb Florian Obser :
>
>> On Tue, Jun 06, 2017 at 09:18:25PM +1000, Jonathan Gray wrote:
>> when using a server.key with a passphrase, ie
>>
>> openssl genrsa -aes256 -out /etc/ssl/private/server.key 2048
>>
>> server "default" {
>>listen on * port 80
>>liste
On Fri, Apr 21, 2017 at 11:27:24AM +0200, Reyk Floeter wrote:
> On Fri, Apr 21, 2017 at 11:05:57AM +0200, Caspar Schutijser wrote:
> > Hi,
> >
> > On my laptop with the 'CJ' malloc.conf settings, vmd prints
> > vmd(89133) in free(): chunk canary corrupted 0
On Fri, Apr 21, 2017 at 11:05:57AM +0200, Caspar Schutijser wrote:
> Hi,
>
> On my laptop with the 'CJ' malloc.conf settings, vmd prints
> vmd(89133) in free(): chunk canary corrupted 0xf3533df9000 0x5dc@0x5dc
> when I'm trying to request an IP address via DHCP. I'm using the
> recently added lo
On Fri, Mar 03, 2017 at 02:47:09PM +0100, Sebastian Benoit wrote:
> i thought i had fixed this in 2012, but apparently i never commited that
> diff even though i had oks for it. And i remember we had discussions about
> this in the past.
>
Well, if it is not in the tree, it does not exist :)
Anot
On Fri, Mar 10, 2017 at 08:41:06PM +, Rivo Nurges wrote:
> Hi!
>
> Friendly reminder:) I'd like to get rid of the local patch.
>
> Rivo
>
Thanks, committed! (to relayd and httpd)
Reyk
> On 03/03/2017, 16:01, "Rivo Nurges" wrote:
>
> Hi!
>
> At least Atlassian JIRA will bre
On Wed, Sep 28, 2016 at 03:00:20PM +0200, Paul de Weerd wrote:
> Hi,
>
> So, upgrading one of my webservers to -current (snapshot with kernel
> build #2498: Tue Sep 27 17:53:43 MDT 2016), my httpd suddenly failed
> to start. rcctl -d start httpd showed it's about hitting the open
> file limit, an
On Sun, Sep 04, 2016 at 06:02:15PM +0200, Reyk Floeter wrote:
> On Sun, Sep 04, 2016 at 05:16:05PM +0200, Wouter Clarie wrote:
> > On OpenBSD 6.0 release, every time I run 'ikectl log verbose' or 'ikectl
> > log brief', iked crashes. It does not matter what
On Sun, Sep 04, 2016 at 05:16:05PM +0200, Wouter Clarie wrote:
> On OpenBSD 6.0 release, every time I run 'ikectl log verbose' or 'ikectl log
> brief', iked crashes. It does not matter what the iked.conf looks like. Same
> thing happens on 6.0-beta from end of May on bare metal. (May have been
>
> On 27.07.2016, at 12:41, Paul Fariello wrote:
>
> On Wed, Jul 27, 2016 at 12:18:06PM +0200, Reyk Floeter wrote:
>>
>> What are you trying to do - removing this logic is obviously not how it was
>> intended.
>> I think you shouldn't send superfluous diff
On Wed, Jul 27, 2016 at 12:46:56PM +0200, Michael Lechtermann wrote:
>
> > On 27Juli, 2016, at 12:26, Reyk Floeter wrote:
> >
> > better?
>
> Yes, I could apply the patch now, however I had to make one additional
> change. Now SVN appears to be working again.
&g
it to
"Optional":
https://en.wikipedia.org/w/index.php?title=Hypertext_Transfer_Protocol&stable=0#Summary_table
Reyk
> On 27.07.2016, at 12:46, Michael Lechtermann wrote:
>
>
>> On 27Juli, 2016, at 12:26, Reyk Floeter wrote:
>>
>> better?
>
> Yes, I could appl
> On 27.07.2016, at 12:21, Michael Lechtermann wrote:
>
>> I once added the well-known webdav methods to httpd, the attached diff
>> syncs it to relayd. Could you give it a try?
>
> Thanks Reyk, looks like something isn’t right there…
>
> # patch -p0 < 1.patch
> Hmm... Looks like a unified
> On 27.07.2016, at 12:05, Paul Fariello wrote:
>
> On Wed, Jul 27, 2016 at 11:26:28AM +0200, Paul Fariello wrote:
>> On Wed, Jul 27, 2016 at 11:08:17AM +0200, Michael Lechtermann wrote:
>>>
On 27Juli, 2016, at 10:19, Paul Fariello wrote:
relayd logs and svn server log could re
09 - 1.7
+++ usr.sbin/relayd/http.h 27 Jul 2016 09:36:35 -
@@ -1,7 +1,7 @@
-/* $OpenBSD: http.h,v 1.7 2015/06/11 18:49:09 reyk Exp $ */
+/* $OpenBSD: http.h,v 1.13 2015/06/11 18:49:09 reyk Exp $ */
/*
- * Copyright (c) 2012 - 2014 Reyk Floeter
+ * Copyright (c) 2012 - 2015 Re
Hi,
thanks, this is the second report regarding WebDAV since yesterday. I'll have a
look at this when I'm back home next week.
Reyk
> Am 24.06.2016 um 09:21 schrieb Michael Lechtermann :
>
> Hi,
>
> I have recently configured relayd as SSL accelerator and it is working really
> great. Howeve
On Sat, Dec 12, 2015 at 08:09:44AM -0700, Theo de Raadt wrote:
> > on one hand i agree with you, but on the other i wonder why httpd thinks
> > setting events up on files is useful.=
>
> I wondered this too. And since this is libevent, and poll/select cannot
> do anything like that, what is the g
On Sat, Nov 28, 2015 at 03:19:20PM +0100, Gregor Best wrote:
> Hi bugs@,
>
> it turns out it was just a concidence that I've only noticed the
> broken IPv6 setup after the upgrade. The real cause of the problem
> was a half-set up iked which installed
>
> flow esp out from ::/0 to ::/0 type
> Am 21.11.2014 um 07:49 schrieb Ted Unangst :
>
>> On Thu, Nov 20, 2014 at 21:46, Janne Johansson wrote:
>> short version from the serial console:
>>
>>
>> OpenBSD/amd64 (hostname) (tty00)
>>
>>
>> login: uvm_fault(0x81901260, 0x5c, 0, 1) -> e
>>
>> CPU4: acpicpu setperf failed to a
On Wed, Nov 12, 2014 at 03:10:01PM +, Stuart Henderson wrote:
> On 2014/11/12 09:49, rjc wrote:
> > On Wed, Nov 12, 2014 at 09:13:37AM EST, Stefan Sperling wrote:
> >
> > > On Wed, Nov 12, 2014 at 03:26:02PM +0200, Lars Engblom wrote:
> > >
> > > > I guess you mean the case of having several n
On Wed, Nov 12, 2014 at 03:13:37PM +0100, Stefan Sperling wrote:
> On Wed, Nov 12, 2014 at 03:26:02PM +0200, Lars Engblom wrote:
> > I guess you mean the case of having several network interfaces. Let all of
> > the unconfigured interfaces get the IP settings from hostname.default and
> > write thi
On Sun, May 11, 2014 at 12:58:36PM +0300, Atanas Vladimirov wrote:
> On Sun, May 11, 2014 at 11:36:38AM +0200, Reyk Floeter wrote:
> > On Sun, May 11, 2014 at 02:05:43AM +0300, Atanas Vladimirov wrote:
> > > On Sat, May 10, 2014 at 11:52:01PM +0200, Reyk Floeter wrote:
> >
On Sun, May 11, 2014 at 02:05:43AM +0300, Atanas Vladimirov wrote:
> On Sat, May 10, 2014 at 11:52:01PM +0200, Reyk Floeter wrote:
> > On Sat, May 10, 2014 at 07:17:39PM +0300, vl...@bsdbg.net wrote:
> > > >Synopsis:OpenSMTPD failed with fatal: ssl_ctx_create: c
On Sat, May 10, 2014 at 07:17:39PM +0300, vl...@bsdbg.net wrote:
> >Synopsis:OpenSMTPD failed with fatal: ssl_ctx_create: could not fake
> >private key: No such file or directory
> >Category:system
> >Environment:
> System : OpenBSD 5.5
> Details : OpenBSD 5.5-current
The following reply was made to PR user/6509; it has been noted by GNATS.
From: Reyk Floeter
To: Reyk Floeter
Cc: Stuart Henderson , gn...@openbsd.org,
Jonathan Gray
Subject: Re: user/6509: relayctl show sessions make relayd crash
Date: Thu, 19 May 2011 14:30:42 +0200
On Thu, May 19
The following reply was made to PR user/6509; it has been noted by GNATS.
From: Reyk Floeter
To: Stuart Henderson
Cc: r...@openbsd.org, gn...@openbsd.org, Jonathan Gray
Subject: Re: user/6509: relayctl show sessions make relayd crash
Date: Thu, 19 May 2011 13:59:36 +0200
On Thu, May 19, 2011
The following reply was made to PR user/6509; it has been noted by GNATS.
From: Reyk Floeter
To: Stuart Henderson
Cc: gn...@openbsd.org, Jonathan Gray ,
Reyk Floeter
Subject: Re: user/6509: relayctl show sessions make relayd crash
Date: Thu, 19 May 2011 12:33:10 +0200
I still get the
sounds like a memory leak in the ssl client code, thanks for the
report. we'll try to find and plug it.
reyk
On Tue, May 11, 2010 at 08:17:20AM +0200, sledgedog wrote:
> Hello ,
>
> We use relayd for load-balancing apache server and after some hours of
> utilisation , we have this message :
>
40 matches
Mail list logo
