Regards.
I've got a problem with nfs.
There are 2 servers. A and B.
On server A I export one dir and start nfsd, portmap, mountd.
On server B in mount A's exported dir.
I begin to copy approxymately 40Mb up to A from B.
At 30Mb the copy brokens and everything freeze on server B.
B replyes to
On 7/27/05, Chris Kuethe [EMAIL PROTECTED] wrote:
On 7/26/05, Siju George [EMAIL PROTECTED] wrote:
On 7/26/05, Bruno Delbono [EMAIL PROTECTED] wrote:
+++ Siju George [Tue Jul 26, 2005 at 10:18:56AM +0530]:
how much truth is actually in this article???
It makes a lot of sense and
are you running pf? are you scrubbing on an interface?
On Wed, Jul 27, 2005 at 08:00:27AM +0200, Adam Papai wrote:
Regards.
I've got a problem with nfs.
There are 2 servers. A and B.
On server A I export one dir and start nfsd, portmap, mountd.
On server B in mount A's exported dir.
Steven Manos said:
are you running pf? are you scrubbing on an interface?
On server A there I use:
scrub in all
but not more special rules.
On server B I didn't use scrub, only some pass in rulez for ssh/smtp
--
Adam Papai
D i g i t a l Influence
E-mail: [EMAIL PROTECTED]
Phone: +36 30
Hello,
I am creating a shell script that gathers PF statistics for my various
interfaces, as in pfctl -i if -vvsI . (Yes, I am aware of the
existence of rpfcd, but as I want to monitor only one local box and
write the output directly to console, that seems overkill to me.) I am
running
I dunno if it's safe or not, but you could use sudo or su username -c there.
2005/7/27, Jan Sepp [EMAIL PROTECTED]:
This script should not run as root. If I run it as a non-privileged
user, I get an error. Basically, the problem is in the mode bits for
/dev/pf, which are crw---, owner
(posted a similar message originally on the IPSec list; thought I'd post
here too)
Hey all-
I almost have a working VPN between isakmpd and a Netscreen box-- things
fail at phase 2 as the peers enter quick mode.
64.81.74.226 = isakmpd
206.14.210.146 = netscreen
00:28:11.947907
Hi,
this worked with an older isakmpd version? Is this netscreen box
some kind of appliance or just some windows software?
The general problem is, I can only test interoperatibility with
open source vpn solutions on standard hareware. If people need to
rely on interoperability with appliance X
I'm trying to get a simple pf setup working, but I'm missing something..
I have three hosts, Alice, Bob Charlie.
Alice Bob are SMTP servers and need to talk to each other via SMTP.
Charlie is an OpenBSD 3.7 box with 2 NICs. I *have* enabled ip routing by
doing: sysctl
Thanks, but that would require me to hard-code the password in my
script, so that will not work.
Alexander Farber wrote:
I dunno if it's safe or not, but you could use sudo or su username -c there.
2005/7/27, Jan Sepp [EMAIL PROTECTED]:
This script should not run as root. If I run it as
On Wed, 27 Jul 2005, Hans-Joerg Hoexer wrote:
Hi,
this worked with an older isakmpd version? Is this netscreen box
some kind of appliance or just some windows software?
Nope, I've not been able to get isakmpd and the netscreen to finish phase
2. Sorry I wasn't clearer about the type of
On Wed, 27 Jul 2005 10:26:46 +0200
Jan Sepp [EMAIL PROTECTED] wrote:
Thanks, but that would require me to hard-code the password in my
script, so that will not work.
No it wouldnt. You can allow users to run commands with sudo without
using passwords. man sudoers.
---
Lars Hansson
And/or you run su username -c command as root from
its crontab, /etc/ppp/ppp.linkup, /etc/rc.local or wherever
2005/7/27, Lars Hansson [EMAIL PROTECTED]:
On Wed, 27 Jul 2005 10:26:46 +0200
Jan Sepp [EMAIL PROTECTED] wrote:
Thanks, but that would require me to hard-code the password in my
Many thanks to all people of this mailing list for all the replies.
Finally, I have edited the files I've downloaded from
http://mongers.org/gw_menu
and make my own shell.
Thanks ;)
El Lunes, 25 de Julio de 2005 21:03, escribis:
On 2005-07-25 16:01:49 +0200, Abel Talaversn Estevez wrote:
hey, yep, i made the same mistake first up too...
from the pf users guide
One reason not to scrub on an interface is if one is passing NFS through
PF. Some non-OpenBSD platforms send (and expect) strange packets --
fragmented packets with the do not fragment bit set, which are
(properly)
--On 27 July 2005 10:19 +0100, Gordon Ross wrote:
I'm trying to get a simple pf setup working, but I'm missing
something..
I have three hosts, Alice, Bob Charlie.
Alice Bob are SMTP servers and need to talk to each other via SMTP.
Charlie is an OpenBSD 3.7 box with 2 NICs. I *have* enabled
Steven Manos said:
hey, yep, i made the same mistake first up too...
And did your system freeze as well like mine?
Thanks anyway. I'll try this at home with 2 test NFS servers. ( of course
with 2 openbsd )
I hope it will work. If not, I'll be sad.
--
Adam Papai
D i g i t a l Influence
Stuart Henderson [EMAIL PROTECTED] 27/07/2005 11:37:54
--On 27 July 2005 10:19 +0100, Gordon Ross wrote:
I'm trying to get a simple pf setup working, but I'm missing
something..
I have three hosts, Alice, Bob Charlie.
Alice Bob are SMTP servers and need to talk to each other via SMTP.
On 7/26/05, Bill Chmura [EMAIL PROTECTED] wrote:
From what everyone told me last time, the SK stuff is good. So I can
fit my network together with a few dual cards, trunk the smaller stuff
together and then be on my way. Trouble is I cannot find (for the life
of me) anything dual based on
Hi Johan,
I think I am good at this point... SysKonnect is sending some cards out
to Brad (I believe they said) and if those get tested soon enough we
are going to buy them - otherwise I am going the Intel pro 1000/MT
route. There is a lot of pressure to order the box, so thats the plan
as it
:-) What about ctrl-Z, does that secure gateway menu script ignore that too?
2005/7/27, Abel Talaversn Estevez [EMAIL PROTECTED]:
Many thanks to all people of this mailing list for all the replies.
Finally, I have edited the files I've downloaded from
http://mongers.org/gw_menu
and make
Hi!
I plan to set up a fileserver using RAIDframe - I can't afford a
hardware RAID-controller like Megaraid i4 (around EURO 280,--) and used
ones are impossible to get, so I will use the software version. The raid
will use 3 or 4 identical harddrives.
My questions:
- what is better, every
Sorry,
but i found that code very ugly. This is just a personal feeling and i
cannot explain why!! do i seem crazy, probably i am.
I believe the code i saw was very poor design. But that's a personal
taste only and should not be under jugdment.
0) Functions return 1 for success and 0 for
0) Functions return 1 for success and 0 for failure (i don't like that);
Surely thats too trivial to hold a preference to? Most languages do it
this way though.
On Jul 27 09:31 AM, Jan Sepp wrote:
Hello,
I am creating a shell script that gathers PF statistics for my various
interfaces, as in pfctl -i if -vvsI . (Yes, I am aware of the
existence of rpfcd, but as I want to monitor only one local box and
write the output directly to console, that
Or if a user presses ctrl-C before the trap command is executed?
2005/7/27, Alexander Farber [EMAIL PROTECTED]:
:-) What about ctrl-Z, does that secure gateway menu script ignore that too?
2005/7/27, Abel Talaversn Estevez [EMAIL PROTECTED]:
http://mongers.org/gw_menu
I did not meant alternatives to RPC approach? i mean alternatives to
the standard implementation code of rpc.
I don't feel like considering (as you self said) garbage like corba,
rx, rxml-rpc
I am considering rpc/xdr but a different code implementation.
Thanks for your reply.
On 7/27/05,
On Wed, 27 Jul 2005 15:46:00 +0200
Alexander Farber [EMAIL PROTECTED] wrote:
Or if a user presses ctrl-C before the trap command is executed?
2005/7/27, Alexander Farber [EMAIL PROTECTED]:
:-) What about ctrl-Z, does that secure gateway menu script ignore that
too?
2005/7/27, Abel
Do you have any other suggestions where i could download alternatives for rpc?
corba, rx, xml-rpc
they all suck, just in different ways.
/ian
With Ctrl-c the shell doesn't finish.
The shell file is showed here:
#!/bin/sh
# $Id: menu,v 1.5 2004/05/20 12:15:57 holsta Exp $
#
# Menu wrapper for FireWired. Ctrl-C is ignored and user input is never
# passed to the command line.
Stuart Henderson scribbled on :
--On 27 July 2005 00:27 +0200, GV wrote:
In general I would like to have one static IP where more than one
domains are registered and for each domain a different internal web
server should serve the incoming requests!
No, you need some kind of
--- b h [EMAIL PROTECTED] wrote:
Date: Mon, 25 Jul 2005 07:30:52 -0700 (PDT)
From: b h [EMAIL PROTECTED]
Subject: Re: missing: ./etc/acpi
To: Stuart Henderson [EMAIL PROTECTED],
misc@openbsd.org
--- Stuart Henderson [EMAIL PROTECTED] wrote:
--On 24 July 2005 14:25 -0700, b h wrote:
Hi all,
I have a 3.6 release macppc with ipsec patches applied and a 3.7 release
sparc64 connected via ipsec.
This has been forced into a production environment so I cant carry out
full tests until the weekend.
Everything works perfectly without issue, but only if I start isakmpd as
the
Yes, maybe you're right. I've tried sneaking past
if read line (a backslash newline would make it take more lines)
and
set -- $line (tried semiclons, redirections and backticks)
and
if match=`grep ^$1$ $HOSTS` ; then
ssh $match
( . would match
On Wed, 27 Jul 2005 16:27:32 +0200
Abel Talaversn Estevez [EMAIL PROTECTED] wrote:
With Ctrl-c the shell doesn't finish.
The shell file is showed here:
[...]
That was my point.
The raid will use 3 or 4 identical harddrives.
Is that mirrored? If so, heres a gotcha:
http://www.openbsd.org/cgi-bin/man.cgi?query=raidctlsektion=8
Note as well that RAID 1 sets are currently limited to only
2 components. At present, n-way mirroring is not possible.
However, I think with
b h schrieb:
--- b h [EMAIL PROTECTED] wrote:
Date: Mon, 25 Jul 2005 07:30:52 -0700 (PDT)
From: b h [EMAIL PROTECTED]
Subject: Re: missing: ./etc/acpi
To: Stuart Henderson [EMAIL PROTECTED],
misc@openbsd.org
--- Stuart Henderson [EMAIL PROTECTED] wrote:
--On 24 July 2005 14:25 -0700, b h
Sean,
Take a look at http://www.vpnc.org/.
They perform all sorts of VPN device interoperability tests, using OpenBSD
as the common denominator. They have info on how to set up your Netscreen
box to make it work with OpenBSD.
-Original Message-
From: Sean Knox [mailto:[EMAIL PROTECTED]
Thank you for subscribing. You have now unsubscribed and no more messages will
be sent.
--- Ulrich Kahl [EMAIL PROTECTED] wrote:
b h schrieb:
--- b h [EMAIL PROTECTED] wrote:
Date: Mon, 25 Jul 2005 07:30:52 -0700 (PDT)
From: b h [EMAIL PROTECTED]
Subject: Re: missing: ./etc/acpi
To: Stuart Henderson [EMAIL PROTECTED],
misc@openbsd.org
--- Stuart Henderson [EMAIL PROTECTED] wrote:
1) add the line
umask 077
to .profile
2)add the file .kshrc containing at least the line
set -o vi
Also modify adduser so that the home directory
permissions of new users are set to drwx--
instead of drwxr-xr-x
I am attempting to perform and verify a backup on a server, per the
instructions in the FAQ, but am getting this error:
restore: Tape block size (32758) is not a multiple of dump block size (1024)
Is there something I'm doing wrong or is this a hardware problem? This
is the first backup
On Wed, Jul 27, 2005 at 10:55:51AM -0300, Gustavo Rios wrote:
I did not meant alternatives to RPC approach? i mean alternatives to
the standard implementation code of rpc.
I don't feel like considering (as you self said) garbage like corba,
rx, rxml-rpc
I am considering rpc/xdr but a
Thanks Stephen.
On 7/27/05, Stephen Marley [EMAIL PROTECTED] wrote:
On Wed, Jul 27, 2005 at 10:55:51AM -0300, Gustavo Rios wrote:
I did not meant alternatives to RPC approach? i mean alternatives to
the standard implementation code of rpc.
I don't feel like considering (as you self said)
On Wed, 27 Jul 2005, Daniel Hamlin wrote:
I am attempting to perform and verify a backup on a server, per the
instructions in the FAQ, but am getting this error:
restore: Tape block size (32758) is not a multiple of dump block size (1024)
Is there something I'm doing wrong or is this a
Quoting Dave Feustel [EMAIL PROTECTED]:
1) add the line
umask 077
to .profile
2)add the file .kshrc containing at least the line
set -o vi
Also modify adduser so that the home directory
permissions of new users are set to drwx--
instead of drwxr-xr-x
I agree with including a
--On 27 July 2005 10:03 -0700, b h wrote:
However, why is my daily insecurity script
still complaining about it on my one machine - how was
that problem still occur after following the
documented upgrade procedure? In otherwords, what did
I miss updating that will prevent the daily
I've installed the UW-IMAP package and placed the
correct start up lines in /etc/inetd.conf. I've gotten
this package to work correctly on past installations.
Whenever I try to connect using IMAP, I get the
following error:
Unable to load certificate from
/etc/ssl/certs/imapd.pem.
That's because
b h schrieb:
--- Ulrich Kahl [EMAIL PROTECTED] wrote:
b h schrieb:
--- b h [EMAIL PROTECTED] wrote:
Date: Mon, 25 Jul 2005 07:30:52 -0700 (PDT)
From: b h [EMAIL PROTECTED]
Subject: Re: missing: ./etc/acpi
To: Stuart Henderson [EMAIL PROTECTED],
misc@openbsd.org
--- Stuart Henderson [EMAIL
authpf and a decent ruleset.
use a central box and tunnel it back.
redirect all unauthenticated http traffic to a website showing
them what to do to get authenticted.
see http://www.ualberta.ca/CNS/wireless/ for a description of what
we use here.
*
Try disabling apm.
# config -e -o /nbsd /bsd
ukc disable apm
252 apm0 disabled
ukc quit
# cp /bsd /obsd
# mv /nbsd /bsd
# reboot
If that speeds it up you have the hlt hlt issue. it's fixed in
current and stable
You really do not need to do this in spamd. Do it in pf.
i.e:
table nospamd persist file /etc/mail/nogreylist
...
no rdr $ext_if proto tcp from nospamd to $mailserver port smtp
* Stuart Henderson [EMAIL PROTECTED] [2005-07-26 04:23]:
I seem to remember seeing a patch to spamd that
Thanks Bob
I will certainly have a peek, I am starting to think authpf is the way
to go, but the users at the intended facility are far from self
sufficient/ self educating (plain lack of interest) and that usually
spells trouble when helping out... or a fortune if you are a
consultant, if you
Just finished installing OpenBSD 3.7 from CD onto VM Ware Workstation
5 build 13124 with Windows XP sp2 as host OS.
As Client OS I chose FreeBSD, VM Ware tools not installed, virtual
terminals CTRL+ALT+Fn does not work since CTRL+ALT releases control
from the VM Ware application.
Here is the
On Wed, Jul 27, 2005 at 12:13:01PM -0500, Dave Feustel wrote:
| 1) add the line
| umask 077
| to .profile
This breaks certain ports (as I found out the hard way)
| 2)add the file .kshrc containing at least the line
| set -o vi
Better to export VISUAL=vi in your .profile if that's what you
On Wed, 2005-07-27 at 10:54:36 -0700, stupidmail4me proclaimed...
I've installed the UW-IMAP package and placed the
correct start up lines in /etc/inetd.conf. I've gotten
this package to work correctly on past installations.
Go ask on the UW-IMAP list. This is an OpenBSD list.
And you dont know how to reassign the release key?
On Wed, Jul 27, 2005 at 11:22:56PM +0200, Johan P. Lindstrvm wrote:
Just finished installing OpenBSD 3.7 from CD onto VM Ware Workstation
5 build 13124 with Windows XP sp2 as host OS.
As Client OS I chose FreeBSD, VM Ware tools not
Hi Folks,
I'm getting errors about missing libraries while adding packages to a
3.7 system. This was a new install with 3.7 so there should not be any old
stuff laying around
-bash-3.00$ sudo pkg_add
ftp://ftp.openbsd.org/pub/OpenBSD/3.6/packages/i386/recode-3.6p1.tgz
Can't
It has just been pointed out to me (off list) that I was loading the package from the 3.6 tree. Doh!!!
Russell
Russell Fulton wrote:
Hi Folks,
I'm getting errors about missing libraries while adding packages to
a 3.7 system. This was a new install with 3.7 so there should not be
any
On Thu, Jul 28, 2005 at 10:42:25AM +1200, Russell Fulton wrote:
I'm getting errors about missing libraries while adding packages to
a 3.7 system. This was a new install with 3.7 so there should not
be any old stuff laying around
-bash-3.00$ sudo pkg_add
--On 27 July 2005 13:50 -0600, Bob Beck wrote:
You really do not need to do this in spamd. Do it in pf.
table nospamd persist file /etc/mail/nogreylist
Been doing that for months, but it takes quite a while to add enough
networks to be useful, and there's always another round the
I'm just curious what the point of sending the dmesg was?
It's not like people haven't been running OpenBSD under VMware for
years now. This isn't stating anything new.
On Wed, Jul 27, 2005 at 11:22:56PM +0200, Johan P. Lindstrvm wrote:
Just finished installing OpenBSD 3.7 from CD onto VM Ware
On Wednesday 27 July 2005 04:23 pm, Paul de Weerd wrote:
On Wed, Jul 27, 2005 at 12:13:01PM -0500, Dave Feustel wrote:
| 1) add the line
| umask 077
| to .profile
This breaks certain ports (as I found out the hard way)
I was wondering about that. Which ports broke?
Thanks,
Dave
From: Brad [mailto:[EMAIL PROTECTED]
I'm just curious what the point of sending the dmesg was?
It's not like people haven't been running OpenBSD under VMware for
years now. This isn't stating anything new.
Because its the Proper thing to do. Don't discourage thoroughness.
DS
Russell Fulton wrote:
Hi Folks,
I'm getting errors about missing libraries while adding packages to
a 3.7 system. This was a new install with 3.7 so there should not be
any old stuff laying around
-bash-3.00$ sudo pkg_add
On Wed, Jul 27, 2005 at 04:56:23PM -0700, Spruell, Darren-Perot wrote:
From: Brad [mailto:[EMAIL PROTECTED]
I'm just curious what the point of sending the dmesg was?
It's not like people haven't been running OpenBSD under VMware for
years now. This isn't stating anything new.
Because
Spruell, Darren-Perot wrote:
Because its the Proper thing to do. Don't discourage thoroughness.
http://www.openbsd.org/faq/faq4.html#SendDmesg says it's
[EMAIL PROTECTED], not [EMAIL PROTECTED]
From: Brad [mailto:[EMAIL PROTECTED]
From: Brad [mailto:[EMAIL PROTECTED]
I'm just curious what the point of sending the dmesg was?
It's not like people haven't been running OpenBSD under VMware for
years now. This isn't stating anything new.
Because its the Proper thing to do.
Hello,
Can anyone recommend a decent rack server from HP, Dell, IBM or CDW
that will run OpenBSD for webserver use? I would prefer a machine
that has SCSI drives with Mirror Raid capabilities. I know I can go
piecemeal one from FRY's but I need one that can have a hardware
support agreement
On Jul 26, 2005, at 11:24 PM, Matthew Bettinger wrote:
Hello,
Can anyone recommend a decent rack server from HP, Dell, IBM or CDW
that will run OpenBSD for webserver use? I would prefer a machine
that has SCSI drives with Mirror Raid capabilities. I know I can go
piecemeal one from FRY's but
I run heaps off Dell PowerEdge 1550, 1650, 1750 and 1850 without issues.
On Tue, Jul 26, 2005 at 10:24:18PM -0500, Matthew Bettinger wrote:
Hello,
Can anyone recommend a decent rack server from HP, Dell, IBM or CDW
that will run OpenBSD for webserver use? I would prefer a machine
that has
Brad wrote:
I'm just curious what the point of sending the dmesg was?
All things considered, I'd rather have five things I don't need than
have one thing I wanted that was missing. If for nothing else, it's a
refreshing Something Different from the Send me some useful info!
exchanges). Heck,
Dave Feustel wrote:
1) add the line
umask 077
to .profile
2)add the file .kshrc containing at least the line
set -o vi
Also modify adduser so that the home directory
permissions of new users are set to drwx--
instead of drwxr-xr-x
OpenBSD is a general purpose OS. There are
Good morning,
I have a Dell4550 where which I can't get sound to work on.
Both 3.7 and -current gives me the same result, everything looks ok on boot.
# vlc mpeg file
VLC media player 0.8.1 Janus
[0211] mpeg_audio decoder: MPGA
Practically, I've never found any need to use anything beyond the
greylisting.org whitelist in that manner, as well as ensuring I'm
running spamlogd correctly so that outbound servers get whitelisted..
At least with our 70,000 lusers worth of mailboxes.
-Bob
* Stuart Henderson
On 7/27/05, Marco Peereboom [EMAIL PROTECTED] wrote:
On Tue, Jul 26, 2005 at 10:24:18PM -0500, Matthew Bettinger wrote:
Can anyone recommend a decent rack server from HP, Dell, IBM or CDW
that will run OpenBSD for webserver use? I would prefer a machine
that has SCSI drives with Mirror
Johan P. Lindstrvm schrieb:
Just finished installing OpenBSD 3.7 from CD onto VM Ware Workstation
5 build 13124 with Windows XP sp2 as host OS.
As Client OS I chose FreeBSD, VM Ware tools not installed, virtual
terminals CTRL+ALT+Fn does not work since CTRL+ALT releases control
from the VM
And you could always use that silly patch that makes it so that alt-fn
switches console modes :D
I am not your puppet. Since when? Now get your spongy ping ass out there
and dance for the cameras -Nora in (Death to Smoochy)
On Thu, 28 Jul 2005, Andre Naehring wrote:
Date: Thu, 28 Jul 2005
78 matches
Mail list logo