more than a little scary
;) It would take the script-kiddies about 15 minutes to learn how to spoof
such a dynamic route change.
To avoid this whole situation you'll need some kind of heart-beat across
the connection. Maybe a short perl script to do a reverse look-up on yourself
at interval
enew type request when the
connection is re-established. I would think this might not be completely
accurate ;) Thinking about it I would suspect a complete
DHCP-discovery-request-etc would be a better choice here, but I haven't looked
at the code.
--
t find a permanent home in FreeBSD at some point in
> the future.
As interesting as this looks, unfortunately the license it comes with
efffectively precludes incorporating it into FreeBSD. The license is for
single-user non-commercial only. They also included derivative works in the
rest
eased
Eclipse under is not a great leap back from the BSD license, rather a small
step sideways. The BSD license says, in effect, do what you like with this
code. Lucent's license says, again in effect, do what you like with this code,
just don't use it as the basis for a commercial pr
vertently
breaks things ("I was told that find / -exec rm {} ';' would free up lots of
disk space by a friend of mine who uses Linux..."). Especially using server
software as a desktop OS.
I guess I'm saying that the auto partitioning scheme is fine, although
arguably no
hand.
Thanks for your comments.
Cheers,
Colin
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
ate for viewing ease
> is overrated.
>
Cheers,
Colin
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
ux if they alloow
this with no error.
Cheers,
Colin
On 15-Jun-00 Mike Smith wrote:
>> On Thu, Jun 15, 2000 at 07:33:36AM -0700, Mike Smith wrote:
>> > [mjy]
>> > > ifconfig_vr0="195.58.183.77 netmask 255.255.255.248"
>> > > static_routes="0
ernel which came with 6.3-RELEASE-p4 but you
haven't rebooted yet.
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
s he wants, and then run them from outside of the jail to
obtain root privileges in the host machine.
The fact that you're calling jail_attach(2) instead of jail(2) makes me
slightly less worried, but you'd still have to work very hard to convince
me that this should become part of t
ot to create the jail in the
> first place.
Not necessarily. An unprivileged user can create hard links to binaries
he doesn't own, including suid binaries.
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mail
t/kernel,
the kernel will be replaced with a GENERIC (non-SMP) kernel.
I'm working on a patch for this and will be talking to re@ about having an
Errata Notice sent out about this.
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http://l
Subhash Gopinath wrote:
> Does anyone know if FreeBSD 4.x or 5.x is affected by the Ipv6 mbuf
> vulnerability just like OpenBSD?
>
> http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1703
The project ipv6 experts have convinced me that FreeBSD is
ng in the
right direction, and committers are doing a great job. But I
think the contributions of non-committers could make FreeBSD
even better, and those contributions are being largely lost or
ignored.
Colin Percival
___
[EMAIL PROTECTED] ma
erbox/www/valid-css.png
tools/tools/tinderbox/www/valid-xhtml10.png
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
en't
gotten around to yet).
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
ops).
Of course, some processors now have hints (conditional-jump-
which-is-usually-taken, conditional-jump-which-is-usually-not-
taken, etc.)
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To u
in src/sys/i386/include/pmap.h.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
atches for three others (sent to my mentor for approval before I commit)
and I've pointed sos@ at the ATA bug.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
I've either got patches or sent
emails to the appropriate maintainers.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
worth, I've now got 15 commits waiting for
mentor approval, covering everything here apart from a few
of the "redundant code" bugs where I'm not sure what the
intended action is, and a couple bugs which I've dispatched
to the app
g as the necessary changes are obvious, I don't
see that there is any real problem.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
nd drive, which
boots into a memory disk; you can then slice, partition,
create filesystems, and generally do whatever you like with
the system -- without needing anything beyond a network
connection.
Colin Percival
___
[EMAIL PROTECTED] ma
ot; says I, "you have 30,000 data
sets!" Quoth the love of my life, "That's OK, we've got *two*
computers."
... and 8 years to waste, apparently.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman
lta; buildworld takes about 5% longer on an SMP kernel (and
the time spent in the kernel is 20% longer).
I know some optimizations were done shortly after 5.2, so I
wouldn't be surprised if this situation has improved.
Colin Percival
___
[EMAIL PRO
At 06:11 10/04/2004, Brandon Erhart wrote:
>Are there any debuggers out there for BSD that will detect the heap/stack corruption!?
Real Men use printf(3). :-)
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mail
rom
0x10018. My personal suspicion is that this is probably a hardware fault; I'd let
the machine run some more and see if it panics again in the same place or
somewhere different next time. :-)
Colin Percival
___
[EMAIL PROTECTED] mailing list
http
larly, FreeBSD 5.x binaries are identified as FreeBSD 5.0.x.
Simply put, the format of __FreeBSD_version changed, and file(1) hasn't
been fixed.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-
es it possible to remove some subsystems:
http://docs.freebsd.org/cgi/mid.cgi?6.0.1.1.1.20040316023919.039fa5f0
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
runtime library ?
Thus quoth the gnu/lib/libobjc Makefile:
NOPIC= works but method lookup slowdown is significant
If you want a shared library, remove that line.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/
FreeBSD-SA-04:17.procfs security advisory.
Could you send the rest of these to [EMAIL PROTECTED] We'd like to
look at them and fix any security issues before they are publicly disclosed.
Thanks,
Colin Percival
___
freebsd-hackers@freebsd.org mailing
nd in some cases re@).
I will make no apology for either of these, and I doubt anyone else (either
from the security team, or the security officer himself) will do so either.
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http://lists
you generate
2^n hashes randomly without finding a collision, then the hash must
have at least ~~ 2n bits of entropy, and organized attempts to crack
MD5 generated at least 2^50 hashes before the algorithmic break was
found.)
Colin Percival
___
freebsd-hack
don't seem to hurt anything, but it would be nice to get this fixed.
The problem is in src/rescue/Makefile. I'll fix it.
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To
Yes, that's quite correct -- although I can't imagine how a bug which
caused / to be labelled as "noexec" managed to avoid causing major
problems until now.
I don't know anything about NFS, but hopefully someone on -stable
will be able to work out what's going on from
you don't use proper fencing instructions.
But I may be completely confused here -- all the interesting details are in
NDA'ed manuals which I can't get access to. :-(
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http:/
s), please contact me by email to obtain my
mailing address. In either case, please let me know if you wish to
remain anonymous.
For more details, see http://people.freebsd.org/~cperciva/funding.html .
Colin Percival
___
freebsd-hackers
Vlad GALU wrote:
>Bank orders should be just fine, assuming Colin tells us his IBAN
> account number and SWIFT code.
I wish I could. Sadly, while Canadian banks are very good at handling
payments to/from the US, they aren't very good at handling payments from
outside of North Ame
you need, rather than making an existing and possibly insecure
program setuid.
Colin Percival
___
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
there were
several people in this position, so I'm hoping I can reach my target in
the next week.
As before, details about the work I plan on doing, how to donate, and a list
of the donations I have received, are at
http://people.freebsd.org/~cperciva/funding.html
Colin Per
troversial FreeBSD people for quite a
long time now.
Colin Percival
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
tch which simply uses the
full path of the file.
Applying his patch (with some minor changes to make it fit 2.95.4), I've
now got libobjc consistently building to the same file (apart from the
easily handled library index).
Colin Percival
To Unsubscribe: send mail to [EMAIL PROTEC
;stamp of approval"; both for my own peace of mind and to make
people feel more happy about using it.
Colin Percival
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
he resulting package. MD5 hashes are
dac0f4bdf3d23b642bcbbac0e544821e, 12f69c9d0a2bf1f5278e49f0a4821aa7,
b96bfc6bffcbfa18130250e36e6109d6, and 227819b9403a6f727566bd6ad5a79684 for
server, client, client port, and client package respectively.
Feedback is welcome. ;)
Colin Percival
PS. This is
ant future, when FreeBSD is fully
packagized, it's quite likely that Sendmail will be just one of many
installable options; but that time hasn't come yet.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/list
erver? It
looks like GNATS email is rather aggressively filtered against server
blacklists; I have to route all my PRs through an SSH tunnel to a different
system in order to get them accepted.
Colin Percival
___
[EMAIL PROTECTED] mailing
you've got a small enough amount of traffic, you could use tcpdump to
snarf the headers and then use your favourite scripting languge to look for
repeated sequence numbers (retransmits) and repeated acks (lost packets);
but I suspect this would be too slow for most purposes.
Colin Per
ult, I can certainly work around it;
but since I have almost no knowledge of kernel internals I thought I'd ask.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any
reason for this behaviour?
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
stall the package collection.
>
Errr, isn't this pretty much what Colin Percival's
security/freebsd-update port already does? :)
FreeBSD Update doesn't handle the ports tree. That said, as long as one
wishes to track the release branch of base, there's no reason not to use
f you're doing this,
but the code is all online and (reasonably) straightforward.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
self, you'll break FreeBSD
Update. (If you absolutely must build your own versions of the binaries,
please contact me off-list.)
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
d-update install`. Given a
decent internet connection, this takes no more than a couple minutes, and
is much easier than updating your install image every time security issues
arise.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.fre
ble to put the above into /boot/loader.rc.
Colin Percival
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
t the system can boot Linux, one option is to install linux,
build a minimal FreeBSD filesystem, dd it to the drive, and reboot. If
you want to be clever, you could even create a filesystem in a md root,
and then run sysinstall over ssh.
Colin Percival
__
At 11:22 27/12/2003 -0700, M. Warner Losh wrote:
Yes. It is our friend the troll stirring up trouble again. Bad
Troll. No biscuit.
No, you misunderstand. The troll is resigning from FreeBSD. He's
going to stop trolling our lists and find something else to do. :)
Colin Per
es if
I knew that it would be unable to make any system calls beyond those
necessary to interface with the owning application.
Colin Percival
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
ht up over and over again,
but I really haven't seen anything which I'd call *nasty*.
Can't we all be a bit more tolerant and get along with each other?
Colin Percival
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
At 00:41 08/08/2002 -0700, Terry Lambert wrote:
>Colin Percival wrote:
> >If two people `make release` on different machines, how much difference
> > will there be between the results? Obviously the kernel will be different
> > because it contains the user and host
At 11:58 10/08/2002 -0700, Terry Lambert wrote:
>Colin Percival wrote:
> > Files which are always the same size, but seem to have completely different
> > contents:
> > /usr/share/games/fortune/*.dat
> > /var/games/phantasia/void
>
>This is disturbing.
Upon fu
.
Incidentally, the sizes of those files don't vary.
Can anyone help me understand what is going on here?
Colin Percival
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
I found a hello world program written in assembly language which
runs on my amd64 8.2 stable box. However, I can not seem to get
it to print a new line. Any suggestions on how to print a line
feed in assembly?
Here is the code-
section .data
message:
db 'hello, world!', 0x0a
section .text
Thank you to all who responded. I changed the 13 to 14 so as to
include the new line and that sorted everything out. Oddly, however,
while I was using bash, the shell still returned on the same line
as the output even after the fix. It was not until after I switched
shells that things worked out pr
Is there a particular reason that nasm comes standard with
FreeBSD and not fasm?
___
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscr...@freebsd.o
n of powerof2(x) && !powerof2(2*x)
for x = 1 << (n - 1); this seems far more astonishing than
the well-understood fact that machine arithmetic operates
with a modular ring, so it seems to me that your proposed
patch would do more harm than good.
--
Colin Percival
Security Officer, FreeBSD
e to it to get a BSD-licensed
version. although the darwin stuff is now available. i'm not too sure
how much of it is useful (i haven't looked at it either, tho).
later.
colin
To Unsubscribe: send mail to majord...@freebsd.org
with "unsubscribe freebsd-hackers" in the body of the message
put, %edi
movl $ebx, 28(%edi)
movl $edx, 32(%edi)
movl $ecx, 36(%edi)
movl $4, %eax
movl $1, %ebx
movl $output, %ecx
movl $42, %edx
int $0x80
movl $1, %eax
movl $0, %ebx
e to it to get a BSD-licensed
version. although the darwin stuff is now available. i'm not too sure
how much of it is useful (i haven't looked at it either, tho).
later.
colin
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
hat I don't have any secure system to do this,
and I'd be horrified if anyone would trust binary updates coming from me
anyway.
Colin "it can't really be that easy, can it?" Percival
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
70 matches
Mail list logo
