> You are more than a great person for doing all this for me especially tired
> ! But as i said in the mailing list my prob is mostly tech !
> 1. Dont have any spare discs
> 2. The only pcs that have cd - dwd rw run win and win dont recognize the
> openbsd partitions as i know
Well you could c
From: Alex Kirk [mailto:[EMAIL PROTECTED]
> > I'm bailing here. I don't remember 3.4 well enough.
>
> I was afraid of that. I've been meaning to upgrade to 3.7 for
> a while -- is it
> likely to make that big of a difference if I upgrade? If I
> were to still
> experience this problem with 3.7,
On Mon, Sep 19, 2005, Jasper wrote:
> I've found the option of using a file as a mailing list like:
> TM_bestuur: /home/jabal/TempiMisti/bestuur.list
man aliases
Local Filename
/path/name
...
Include File
:include:/path/name
You want the second option, right?
> /ho
On Mon, 19 Sep 2005, John N. Brahy wrote:
> How do I change my kernel from i386 to amd64? Do I have to do a
> reinstall or upgrade? I tried simply copying the bsd file from the amd64
> directory off an ftp site but I got a "unrecognized binary format" error
> from the boot loader.
reinstall. des
From: Vinicius Pavanelli Vianna [mailto:[EMAIL PROTECTED]
> They say all their ifaces are forced to 100 full duplex, when i try to
> autoneg with their switches i always got 100 half duplex, and
> the speed
> is bad, so i forced all to 100 full duplex so i can get some speed,
> don't ask me why th
On Mon, 19 Sep 2005, John N. Brahy wrote:
> cd /usr
>
> cvs -t -z9 update -rOPENBSD_3_& -P src
1. there is no OPENBSD_3_& tag.
2. don't retype commands unless you can do it flawlessly.
3. you forgot the -d option to update.
--
And that's why he won't get my vote.
--- Quoting Vinicius Pavanelli Vianna on 2005/09/19 at 22:24 -0300:
> They say all their ifaces are forced to 100 full duplex, when i try to
> autoneg with their switches i always got 100 half duplex, and the speed
> is bad, so i forced all to 100 full duplex so i can get some speed,
> don't ask m
> > shorty.kirknet.net:~$ dmesg
> > OpenBSD 3.4-stable (GENERIC) #0: Sun Sep 18 18:29:41 EDT 2005
>
> I'm bailing here. I don't remember 3.4 well enough.
I was afraid of that. I've been meaning to upgrade to 3.7 for a while -- is it
likely to make that big of a difference if I upgrade? If I were
jared r r spiegel wrote:
>On Mon, Sep 19, 2005 at 03:13:33PM -0300, Vinicius Pavanelli Vianna wrote:
>
>
>>I tried to disable pf (pfctl -d) and it continues to loss packets
>>
>>
><...>
>
>
>>The count on in and out are different because the pf is blocking some
>>packets
>>
>>
>
> (?
> It was the most current I could find for this particular chipset
The chipset is ancient.
> shorty.kirknet.net:~$ dmesg
> OpenBSD 3.4-stable (GENERIC) #0: Sun Sep 18 18:29:41 EDT 2005
I'm bailing here. I don't remember 3.4 well enough.
On Mon, Sep 19, 2005 at 08:59:48PM +0200, -f wrote:
> hmm, on Mon, Sep 19, 2005 at 10:01:58AM -0600, j knight said that
> > > i was thinking of making another rule, just below this one:
> > >
> > > block in
> > > block in log from any to $ext_if
> >
> > Another alternative:
> >
> > block in quic
On Tue, Sep 20, 2005 at 01:16:19AM +0100, Stuart Henderson wrote:
>
> You can only queue outgoing traffic with altq, not incoming.
>
> You can sometimes achieve the same effect by queuing outgoing traffic
> on a different interface (e.g. to queue internet->LAN bandwidth, queue
> on the LAN inte
How do I change my kernel from i386 to amd64? Do I have to do a
reinstall or upgrade? I tried simply copying the bsd file from the amd64
directory off an ftp site but I got a "unrecognized binary format" error
from the boot loader.
First, I apologize for the delay -- I had a very long, hectic day at work.
Meanwhile, thank you for replying.
> > wi0 at pci0 dev 12 function 0 "National Datacomm Corp NCP130 Rev A2" rev
> > 0x01: irq 9 wi0: PRISM2 HWB3163 rev.B, Firmware 0.3.0 (primary), 1.7.1
> > (station), address 00:80:c6:e3:
On Mon, Sep 19, 2005 at 03:13:33PM -0300, Vinicius Pavanelli Vianna wrote:
>
> I tried to disable pf (pfctl -d) and it continues to loss packets
<...>
> The count on in and out are different because the pf is blocking some
> packets
(?)
those seem to contradict one another., just a typo?
>
--On 20 September 2005 01:07 +0200, Raphael Brunner wrote:
I try to limit the Bandwidth on my OpenBSD 3.7 (Release). But there
is something wrong.
The traffic walk through the rules (log with tcpdump...), but there
isn't a limit of the inbound-Traffic. If I add "keep state" to it,
then there
> I want to thank all of you who replied on my previous mail about the live
> cd. I've seen many of those links you sent me which talk on how you can
> create a live cd. I would have done it my self but unfortunatelly I cant due
> to tech reasons right now. Also I dont know if it would have been go
Hi @ all,
I try to limit the Bandwidth on my OpenBSD 3.7 (Release). But there is
something wrong.
On my box run a ftp-server (10.0.0.1) without proxy.
and I try to copy from/to it from 10.0.0.20 via FTP
The traffic walk through the rules (log with tcpdump...), but there isn't a
limit of the
Thanks Anil, these specs are very detailed and useful.
But again, if anyone has any clue on any functional
test suite on any BSD OS to test the entire set of
standard socket() related API calls including bind(),
listen(), accept() etc, it saves a lot of my effort.
Currently I am going to through
Hi all,
I've been trying to create some very small mailinglists. In first
instance i just edited /etc/mail/aliases and made a new alias with
multiple relay addresses. I ran newaliases and everything works fine.
Now i've increased the amount of relay addresses to around 50.
newaliases now comp
I want to thank all of you who replied on my previous mail about the live
cd. I've seen many of those links you sent me which talk on how you can
create a live cd. I would have done it my self but unfortunatelly I cant due
to tech reasons right now. Also I dont know if it would have been good since
'netstat -in' will give you a better indication of duplex mismatches (since
it shows errors and collisions.)
-Steve S.
[EMAIL PROTECTED] wrote:
> The ifconfig and brconfig output is as follow:
hmm, on Mon, Sep 19, 2005 at 10:01:58AM -0600, j knight said that
> > i was thinking of making another rule, just below this one:
> >
> > block in
> > block in log from any to $ext_if
>
> Another alternative:
>
> block in quick to $ext_if:broadcast
> block in log
this doesn't seem to have the d
From: Vinicius Pavanelli Vianna [mailto:[EMAIL PROTECTED]
> The ifconfig and brconfig output is as follow:
> I have setup an IP adress on the networks so i can access the machine
> remotely and the rl0 is disabled.
>
> $ ifconfig -a
> em0:
> flags=8943 mtu 1500
> address: 00:30:48:72:95:1
On 19 Sep 2005, at 16:34, Satya Nemana wrote:
I cann't imagine, it is so hard to get something that
looks so obviously needed and that too, such a
standard one like socket API. If it is totally a new
functional API, I can understand if it is not
available so easy.
The semantics of those APIs a
[IMAGE]
Dear Wells Fargo customer,
As you may already know, we at Wells Fargo guarantee your online security
and partner with you to prevent fraud. Due to the newly introduced
Comprehensive Quarterly Updates Program (which is meant to help you
against identity theft, monitor your credit and corre
> What do you see that says it is now enabled?
Actually it was my mistake. We have a slew of test machines and I
confused a FreeBSD dmesg with an OpenBSD one.
My mistake.
sorry.
We'll limit this to USB then. :-)
Any USB 2.0 Tape drive recommendations?
The ifconfig and brconfig output is as follow:
I have setup an IP adress on the networks so i can access the machine
remotely and the rl0 is disabled.
$ ifconfig -a
lo0: flags=8049 mtu 33224
inet 127.0.0.1 netmask 0xff00
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixl
I would check to make sure the nic is negotiating properly. It might
be half duplex instead of full or something flakey etc. Check the
output of ifconfig.
Joe
On 9/19/05, Vinicius Pavanelli Vianna <[EMAIL PROTECTED]> wrote:
> Hi,
> Thanks for the held Jared,
>
> I tried to disable pf (pfctl -d)
Hi,
Thanks for the held Jared,
I tried to disable pf (pfctl -d) and it continues to loss packets, i
changed the rules to use state on all and raised the limit on it to
about 300.000, so i think this is not a problem, and since pfctl -d
didn't resolve the packet lost i begin to suspect something on
Hello,
I've never compiled a kernel for an amd64 so I'm not sure if there is
anything different. I downloaded and patched the source to the 3_7
release and when I run a make depend I get errors:
>From a fresh 3.7 install
cd /usr
cvs -t -z9 update -rOPENBSD_3_& -P src
cd usr/src
make o
On Sun, 18 Sep 2005 15:38:19 -0700, "J.C. Roberts" <[EMAIL PROTECTED]>
wrote:
>With no disrespect meant to you or the authors of Absolute OpenBSD
>(Palmer and Nazario), it's just too easy to vaguely state what the
>PNPOS bit does but really understanding how it works is going to take
>a lot of eff
On Sun, Sep 18, 2005 at 08:59:21AM -0400, Jason Dixon wrote:
...
> Slides available online:
> http://www.dixongroup.net/NYCBSDCON/
...
They also shot video of the talk; while it was being streamed live
during the conference, the archives should be up soon.
http://www.nycbsdcon.org/index.php?NAV=V
Hi, do any of you know of any functional test suites
to run on any BSD os, to test its sockets related
APIs.
I am looking for something to test the entire set of
standard socket() related API calls such as socket(),
bind(), listen(), accept() etc.
Preferably, it goes through different possible ru
On Sat, Sep 17, 2005 at 08:16:59PM -0400, Will H. Backman wrote:
> Just wanted to to give a dmesg for the Motorola WU830G USB2 Wireless Adapter,
> in case anyone else was thinking of buying one. I picked it up for $20.
> Needless to say, not much luck with this one. Chipset made by Envara, which
Still no go.
I added the "inet" keyword but still cannot use an address pool for nat.
Some users will get time outs and other will run fine.
Oddly, if I reload the rules (pfctl -f /etc/pf.conf) different users
will be affected, some that were previously working will stop and those
who weren't wo
--- Quoting -f on 2005/09/19 at 17:21 +0200:
> hi there,
>
> i would like to log what was blocked from the outside.
> as of now i have the following in my pf.conf:
>
> block in log
>
> naturally this is logging too much redundant information.
> i would like to restrict the logging only to conne
I wrote last week, about some problems I've experienced with 3.7 GENERIC.MP
on a PowerEdge 1850 dual Xeon [1].
Some people suggested to try a 3.8 snapshot, and that's what I did.
The system runs fine, but is there any way to make it work with 3.7
GENERIC.MP ?
Here's the full dmesg:
OpenBSD 3.8 (GE
I posted a few days ago about
"/bsd: arplookup: unable to enter address for 0.0.0.0"
Continually being added to my messages
Claudio pointed out to me that "The problem is an other box on your LAN
that is doing a gratious arp with 0.0.0.0. OpenBSD does not like this
and logs it.".
Which is great
On Mon, Sep 19, 2005 at 10:30:29AM +0200, Henning Brauer wrote:
>
> the peer is broken and needs to be fixed.
>
> your only workaround is to not send any capability it does not grok.
> this is guesswork. you might want to try to not announce v4 unicast
> capabilities.
that did it.
---
4801a
hi there,
i would like to log what was blocked from the outside.
as of now i have the following in my pf.conf:
block in log
naturally this is logging too much redundant information.
i would like to restrict the logging only to connections
which were refused but at the same time were meant only
f
On Mon, Sep 19, 2005 at 04:56:34PM +0200, Moritz Kiese wrote:
> Greetings,
>
> do I have any chance to get the above mentioned on-board sound on a (maybe
> too) new-ish PC running --- googling showed quite a few dmesg's with
> identical 'not-configured' lines?
>
> $ man 4 auich only mentions su
> Restart the machine and if your clients still can't connect put the
> wireless
> interface into debug mode:
Is there a recommended way to do this without a reboot?
Greetings,
do I have any chance to get the above mentioned on-board sound on a (maybe
too) new-ish PC running --- googling showed quite a few dmesg's with
identical 'not-configured' lines?
$ man 4 auich only mentions support for the 'EB' version of the bridge.
Of course upgrading to CURRENT
> wi0 at pci0 dev 12 function 0 "National Datacomm Corp NCP130 Rev A2" rev
> 0x01: irq 9 wi0: PRISM2 HWB3163 rev.B, Firmware 0.3.0 (primary), 1.7.1
> (station), address 00:80:c6:e3:72:2c
It's ancient but it should work.
> ...my wireless configuration:
No obvious problem there.
> Meanwhile, runn
On 9/19/05, Sean Kiewiet <[EMAIL PROTECTED]> wrote:
...
> # ifconfig -a
> em0: flags=8943 mtu 1500
> em1: flags=8802 mtu 1500
> em2: flags=8802 mtu 1500
> em3: flags=8802 mtu 1500
> ...
> How do I get the other 3 ip-less nics to run in promiscuous mode in
> OBSD?
You need to ifconfig your other in
On Sat, Sep 17, 2005 at 03:11:34PM -0700, Darrin Chandler wrote:
> A questions to any programmers reading this: what's your development
> environment? Which editor do you like? Do you use integrated compile, or
> do you go back the the shell prompt? Do you use any lint-like tools?
> Please menti
Hey all:
OBSD3.7
SNORT2.3.3
I have a machine with 4 nics running 4 instances of snort:
/usr/local/bin/snort -u sguil -g sguil -l /nsm/em0 -c
/etc/snort/em0.snort.conf -U -A none -m 122 -i em0 -D
/usr/local/bin/snort -u sguil -g sguil -l /nsm/em1 -c
/etc/snort/em1.snort.conf -U -A non
Is there any way of limiting access to pptpd from pocket pc clients ?
I cant find any fingerprints for pocket pc in pf.os ?
Steve
Z L <[EMAIL PROTECTED]> wrote:
> For APM I
> tried to set the apmd_flags=YES in rc.conf. For sound and modem I
> tried the things that are described in the FAQ and manpages.
Correct usage is
apmd_flags=""
or with some valid flags between the ""
apmd_flags="-q"
YES is for binary options like
p
Hi,
Matt Rowley wrote:
As far as I know, this only applies to _active_ ftp, about which I am
not concerned at the moment.
Ah yes... that's what I get for doing e-mail at 6am. :-/
no bother.
Your problem description seems to imply that you have a block out all and
that you're only allowin
I have run across the same problem. The issue here is that that a
client must connect to a port greater than 1023 from a port greater than
1023 (at least that is my current experience) and that the only way for
this to work is for you to allow any system inside your LAN to connect
to any port > 10
--On 19 September 2005 11:14 +0200, Stephan A. Rickauer wrote:
I've read "PF: Issues with FTP" carefully and tried to setup
ftp-proxy(8) on the firewall. Now it seems I have a fundamental
misunderstanding on how it should work.
My client is 172.16.3.99
An example FTP server is 195.135.221
> As far as I know, this only applies to _active_ ftp, about which I am
> not concerned at the moment.
Ah yes... that's what I get for doing e-mail at 6am. :-/
Your problem description seems to imply that you have a block out all and
that you're only allowing selet outbound traffic. In which c
> Can anybody quantify the behavior of the ral card in a PCI < 2.2 box?
Sure!
It works for some people. It does not work for other people.
Is that enough information? Because that is the limit of what we know.
On 19/09/05, Otto Moerbeek <[EMAIL PROTECTED]> wrote:
> On Mon, 19 Sep 2005, Andreas Kahari wrote:
> > On 19/09/05, Damien Miller <[EMAIL PROTECTED]> wrote:
> > > Andreas Kahari wrote:
> > > > (the WINCH signal is delivered when the terminal window changes size)
> > >
> > > SIGWINCH is ignored by d
Stephan A. Rickauer wrote:
> Hello,
>
> in migrating our netfilter box to a pf box I need to solve one
> remaining problem: Passive FTP (sigh)
>
> I've read "PF: Issues with FTP" carefully and tried to setup
> ftp-proxy(8) on the firewall. Now it seems I have a fundamental
> misunderstanding on h
Can anybody quantify the behavior of the ral card in a PCI < 2.2 box?
I found myself in the same situation, not having seen the caveat before
buying a ral card to act as a HostAP interface as well. However, my box
seems to work for the most part... Seeming to get wedged only
occasionally.
$ dmesg
Matt Rowley wrote:
You have the rdr sending outbound 21 to the ftp-proxy service, but you
also need to let traffic back in to the service:
As far as I know, this only applies to _active_ ftp, about which I am
not concerned at the moment.
Thanks anyway.
--
Stephan A. Rickauer
---
servus mein lieber, ich habe eine gute nachricht und eine schlechte
nachricht f|r dich, mit welcher soll ich anfangen? zuerst die gute! hier
hast du meine handynummer:0160 / 99206935, und die schlechte: mein
computer tut keinen mucks mehr und muss zum service! damit wir den
kontakt nicht verlieren
On Mon, 19 Sep 2005, Andreas Kahari wrote:
> On 19/09/05, Damien Miller <[EMAIL PROTECTED]> wrote:
> > Andreas Kahari wrote:
> > > (the WINCH signal is delivered when the terminal window changes size)
> >
> > SIGWINCH is ignored by default, otherwise your sleep(1) would exit if
> > you changed th
On Mon, 19 Sep 2005, Andreas Kahari wrote:
> Hi,
>
> I'm running the following simple test script:
>
> #!/bin/ksh -x
>
> trap 'eval $(resize)' WINCH
>
> while true; do
> sleep 10
> done
>
> What I'm noticing is that the WINCH signal action is not actually
> carried out until at the end of
On 19/09/05, Damien Miller <[EMAIL PROTECTED]> wrote:
> Andreas Kahari wrote:
> > (the WINCH signal is delivered when the terminal window changes size)
>
> SIGWINCH is ignored by default, otherwise your sleep(1) would exit if
> you changed the size of your xterm. See signal(3) for the full list.
Andreas Kahari wrote:
(the WINCH signal is delivered when the terminal window changes size)
SIGWINCH is ignored by default, otherwise your sleep(1) would exit if
you changed the size of your xterm. See signal(3) for the full list.
So it is doing the right thing wrt your quote of SUSv3:
The S
Hi,
I'm running the following simple test script:
#!/bin/ksh -x
trap 'eval $(resize)' WINCH
while true; do
sleep 10
done
What I'm noticing is that the WINCH signal action is not actually
carried out until at the end of the sleep, should the signal be sent
during the sleep period.
I'm wond
Of course, I do NAT on the pf box, that routes traffic from LAN to the
Internet. The mentioned rdr rule works, so traffic on 21 is redirected
to localhost:8021 ... However, thought the initial control connection
is redirected, the subsequent ones are not. tcpdump output:
pass in on em0: 172.16
On Sat, Sep 17, 2005 at 09:08:20PM -0700, Steve B wrote:
> I'm a little confused on the topic of running Bind on OBSD. I've read the
> Secure Architectures book, some material at
> http://www.aei.ca/~pmatulis/pub/obsd_pf.html and a few other places. My goal
> is to provide DNS to my local LANs and
Hello,
in migrating our netfilter box to a pf box I need to solve one remaining
problem: Passive FTP (sigh)
I've read "PF: Issues with FTP" carefully and tried to setup
ftp-proxy(8) on the firewall. Now it seems I have a fundamental
misunderstanding on how it should work.
My client is 17
Hi
When compiling snort after the patching the source I get following error:
plugbase.o(.text+0x5ea): In function `InitOutputPlugins':
/root/snort-2.4.1/src/plugbase.c:595: undefined reference to
`AlertFWsamSetup'
collect2: ld returned 1 exit status
*** Error code 1
Stop in /root/snort-2.4.1/sr
* jared r r spiegel <[EMAIL PROTECTED]> [2005-09-18 06:50]:
> tried it a while ago (~3.6?) with openbsd bgpd and it
> would bomb on me complaining of unsupported capability.
> Sep 17 23:08:02 4801a bgpd[21303]: neighbor 2001:470:1f01:::122 (he.net):
> re
> ceived notification: error in OP
70 matches
Mail list logo