just for the archives: i did define a lifetime for the encryption-suites
some time ago for a former configuration that once worked. deleting these
lifetimes and thus using the defaults now works. so, no actually wrong
config but rather too much config ;)
thanks for the personal replies!
--
tobias
On Tue, 29 Nov 2005, Dave Feustel wrote:
> On Tuesday 29 November 2005 19:19, Todd C. Miller wrote:
> > Note that you can also set the malloc options from within a program
> > you are developing. I've found this to be quite useful for adding
> > a "belt and suspenders" mode during developement (t
On Tue, 29 Nov 2005, Dave Feustel wrote:
> On Tuesday 29 November 2005 19:19, Todd C. Miller wrote:
> > Note that you can also set the malloc options from within a program
> > you are developing. I've found this to be quite useful for adding
> > a "belt and suspenders" mode during developement (t
On Sat, Nov 26, 2005 at 07:32:58PM -0600, J Moore wrote:
> On Sun, Nov 27, 2005 at 01:21:47AM +0100, the unit calling itself frantisek
> holop wrote:
>
> > and i have a feeling they don't agree that openbsd must have
> > debian-ugly pages made by c hackers in 1995 who hate html
> > and think "des
On Tue, 29 Nov 2005 19:19:01 -0800
Sean Comeau <[EMAIL PROTECTED]> spake:
> On Mon, Nov 28, 2005 at 06:10:17PM -0800, pete wright wrote:
> > support lisc. for legal issues. If the software goes tit's up and
> > costs the company N dollar's it is easier to get that money from a
> > commercial enti
Hijacking this thread, cuZ now I am worried . . . .
> On Mon, Nov 28, 2005 at 11:46:56PM -0800, David Ulevitch wrote:
> > I'd like to hear how people are using OpenOSPFd
I will prbly use OpenOSPFd in the future, but at the moment, my question
is about using OpenBGPd and multiple lines from the sa
On 11/28/05, Paul Pruett <[EMAIL PROTECTED]> wrote:
>
> omg what a load of ,
>
> to funny, any coporation stupid enough to fall for that story
> by ssh to buy Tectia ssh and not use openssh deserves to be
> taken for plus the security issues they will get.
That's because there's a huge
On Mon, Nov 28, 2005 at 06:10:17PM -0800, pete wright wrote:
> support lisc. for legal issues. If the software goes tit's up and
> costs the company N dollar's it is easier to get that money from a
> commercial entity whom you have a contract with (or more likely get
> money via a insurance broker
Original message
>Date: Tue, 29 Nov 2005 19:56:33 +0100
>From: Han Boetes <[EMAIL PROTECTED]>
>Subject: Re: #define failure opportunity
>To: misc@openbsd.org
>
>The people who they are addressing are bussiness, and they think
>in terms of gaining money and loosing money.
>
>Open Sourc
Monah Baki wrote:
Hi all,
I'm installing mysql from source. I know this is an error that has been posted
several times:
# /usr/local/mysql/bin/mysql -V
/usr/local/mysql/bin/mysql: can't load library
'../libmysql/.libs/libmysqlclient.so.15.0'
# cd /usr/local/mysql/bin
# ./mysql -V
# ./mysql Ve
On Tuesday 29 November 2005 19:19, Todd C. Miller wrote:
> Note that you can also set the malloc options from within a program
> you are developing. I've found this to be quite useful for adding
> a "belt and suspenders" mode during developement (the use after
> free checks in particular).
>
> -
I dont think a separated business growing around that would be a good
ideia? I don't really think so. I am not saying this happened to other
projects like FreeBSD, but i switched from FreeBSD to OpenBSD exactly
because much of what i saw the first time i started with FreeBSD i
could not see since t
Note that you can also set the malloc options from within a program
you are developing. I've found this to be quite useful for adding
a "belt and suspenders" mode during developement (the use after
free checks in particular).
- todd
On Monday 28 November 2005 08:10 pm, pete wright wrote:
> On 11/28/05, Qv6 <[EMAIL PROTECTED]> wrote:
> > On Monday 28 November 2005 04:04 pm, Theo de Raadt wrote:
> > > This is why OpenBSD/OpenSSH does not need to hire a spin doctor.
> > >
> > > Other people do it for us ;)
> > >
> > > http://www.
[EMAIL PROTECTED] wrote:
>
>Robbert Haarman writes:
>> Greg,
>>
>> Again, you raise some interesting issues. I
>wonder how likely the
>> catastrophic failures you describe are, versus
>how likely it is that
>> things fail in a way where ccd actually helps
>you. I was hoping someone
>> else woul
On 11/29/05, Dave Feustel <[EMAIL PROTECTED]> wrote:
> I now have 3.8 installed. Very Nice, especially Firefox.
> CDROM Artwork is also nicely done.
> My question is re Malloc. When and how often does malloc
> check the flags in MALLOC_OPTIONS. Once at system init,
> on every malloc call, or other?
On Tue, 29 Nov 2005, Dave Feustel wrote:
> I now have 3.8 installed. Very Nice, especially Firefox.
> CDROM Artwork is also nicely done.
> My question is re Malloc. When and how often does malloc
> check the flags in MALLOC_OPTIONS. Once at system init,
> on every malloc call, or other? Can I se
I now have 3.8 installed. Very Nice, especially Firefox.
CDROM Artwork is also nicely done.
My question is re Malloc. When and how often does malloc
check the flags in MALLOC_OPTIONS. Once at system init,
on every malloc call, or other? Can I set the options,
run a program, and see if the new opt
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
> Spruell, Darren-Perot
> Sent: Tuesday, November 29, 2005 2:57 PM
> To: 'misc@openbsd.org'
> Subject: Re: #define failure opportunity
>
> From: pete wright [mailto:[EMAIL PROTECTED]
> > Not that I don't
From: pete wright [mailto:[EMAIL PROTECTED]
> Not that I don't think openssh is superior for the fact that it *is*
> open software, I bet that the company in question needs software
> support lisc. for legal issues. If the software goes tit's up and
> costs the company N dollar's it is easier to g
Hi all,
I'm installing mysql from source. I know this is an error that has been posted
several times:
# /usr/local/mysql/bin/mysql -V
/usr/local/mysql/bin/mysql: can't load library
'../libmysql/.libs/libmysqlclient.so.15.0'
# cd /usr/local/mysql/bin
# ./mysql -V
# ./mysql Ver 14.12 Distrib 5.0.
On 11/28/05, Qv6 <[EMAIL PROTECTED]> wrote:
> On Monday 28 November 2005 04:04 pm, Theo de Raadt wrote:
> > This is why OpenBSD/OpenSSH does not need to hire a spin doctor.
> >
> > Other people do it for us ;)
> >
> > http://www.ssh.com/company/newsroom/article/684/
> >
> > And... thanks to those o
On 29/11/05, Claudio Jeker <[EMAIL PROTECTED]> wrote:
> On Mon, Nov 28, 2005 at 11:46:56PM -0800, David Ulevitch wrote:
> > Misc,
> >
> > I'd like to hear how people are using OpenOSPFd and how it's working
> > out.
> >
>
> It works for most setups. It is not optimal for big ABRs.
>
> > Are people
> It is very important that we educate people about what the choice
> of open source software means.
>
>From a business perspective I don't see this being very important =)
If the competition is willing to give me an edge on them, be my guests.
/Tony
From: Han Boetes [mailto:[EMAIL PROTECTED]
> The people who they are addressing are bussiness, and they think
> in terms of gaining money and loosing money.
>
> Open Source Software is a concept they will not understand easily
> since they don't have a concept of interacting with people without
>
Hi all,
I'm looking at the link aggregation feature (man trunk(4)) of OpenBSD
3.8. In my case, I'd like to use it on Ethernet interfaces : should
the switch be configured in a special way or is it level-2 transparent
? I mostly use Cisco 2950 switches... What are the differences between
'round-r
The people who they are addressing are bussiness, and they think
in terms of gaining money and loosing money.
Open Source Software is a concept they will not understand easily
since they don't have a concept of interacting with people without
a gain or loss perspective.
It is very important that
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of
> Greg Oster
> Sent: Tuesday, November 29, 2005 12:26 PM
> To: Robbert Haarman
> Cc: misc@openbsd.org
> Subject: Re: Updated CCD Mirroring HOWTO
>
> Robbert Haarman writes:
> > Greg,
> >
> > Again, you ra
Robbert Haarman writes:
> Greg,
>
> Again, you raise some interesting issues. I wonder how likely the
> catastrophic failures you describe are, versus how likely it is that
> things fail in a way where ccd actually helps you. I was hoping someone
> else would comment on that, but that doesn't s
Greg,
Again, you raise some interesting issues. I wonder how likely the
catastrophic failures you describe are, versus how likely it is that
things fail in a way where ccd actually helps you. I was hoping someone
else would comment on that, but that doesn't seem to have happened so
far.
> So
On 11/29/05, Matt Rowley <[EMAIL PROTECTED]> wrote:
> > I have recently installed OpenBSD 3.8 from the official CDs.
> > The Flash drive that worked perfectly in OpenBSD 3.6 and OpenBSD 3.7 now
> > misbehaves.
>
> Hi, Zvezdan... not to be pedantic, but have you confirmed the flash drive
> working o
On Tue, Nov 29, 2005 at 10:16:10AM -0500, Ray Kohler wrote:
> Chuck McCollum wrote:
> > I don't know if this is an issue or not, but the latest 3.8-current
> > doesn't let my bge0 card perform properly. (Yes, I know it's broadcom...)
> >
> > I'm not complaining, nor am I requesting anything; I j
Chuck McCollum wrote:
> I don't know if this is an issue or not, but the latest 3.8-current
> doesn't let my bge0 card perform properly. (Yes, I know it's broadcom...)
>
> I'm not complaining, nor am I requesting anything; I just thought that
> I'd let somebody know.
Same results here, with sa
On Tue, Nov 29, 2005 at 07:23:18AM -0600, Julesg wrote:
> I went to /usr/ports and did "make install clean" and am stuck because
> sourceforge won't accept FTP requests to get fastjar-v93.
>
> Help. Where might I find this file. I did a google search and don't see any
> comments re licensing r
On Mon, Nov 28, 2005 at 11:46:56PM -0800, David Ulevitch wrote:
> Misc,
>
> I'd like to hear how people are using OpenOSPFd and how it's working
> out.
>
It works for most setups. It is not optimal for big ABRs.
> Are people using it in any sort of a local-cluster load balancing
> method?
I have an anecdote when it comes to disk in a firewall. My good old
trusty sparc64 firewall's disk had died. At first I didn't notice it
because the packets kept flowing but after a while I noticed some
strange behavior so I decided to login to it and see what was wrong.
Hmmm no login, *
* Theo de Raadt <[EMAIL PROTECTED]> [2005-11-28 15:38]:
> This is why OpenBSD/OpenSSH does not need to hire a spin doctor.
>
> Other people do it for us ;)
>
> http://www.ssh.com/company/newsroom/article/684/
Heck, I wanna meet the person who wrote that. It's brilliant spin.
It's just delici
I went to /usr/ports and did "make install clean" and am stuck because
sourceforge won't accept FTP requests to get fastjar-v93.
Help. Where might I find this file. I did a google search and don't see any
comments re licensing restrictions, but it seems that none of the "usual
[suspect] place
Hello!
Yes, it works. I had accidentally disabled ESP and AH protocols
in /etc/sysctl.conf (thinking I had *enabled* them by un-remarking
them, instead).
NEVER configure a machine when it's too late at night. Should
have known better.
BTW, Hans-Joerg, the 3.8 machine is tunneling OK wit
Actually, when I am in a position to use carp and pfsync
I often do not bother with embedded, unless I have power concerns.
If you want embedded buy the comell box suggested earlier, but if
you really have no budget, dont bother with raid or other such nonsense.
go find two cheap garage-a
Hi folks,
I just bought a mini-pci-wlan-card with antennas and now want to use it
with my soekris net4801.
I have two requirements now:
a) that card should not be available 24/7 due to wardrivers etc (->
ifconfig down)
b) but I also want this card _completely_ not sending any emissions or
wh
On 29 nov 2005, at 13.20, robdenz@@libero..it wrote:
I keep getting messages such as
Default pf_key_v2_get_spi: GETSPI: Operation not supported
Default initiator_send_HASH_SA_NONCE: doi->get_spi failed
Make sure you did not accidentally disable ESP (and AH) in /etc/
sysctl.conf.
/H
make sure to apply all patches for 3.7, see errata37.html. I've added fix a
few days ago. Moreover, I need the full out put of -DA=80 to see what's
actually going on.
HJ.
On Tue, Nov 29, 2005 at 01:20:25PM +0100, [EMAIL PROTECTED] wrote:
> Hello!
>
>I have a problem with ISAKMPD on a new m
Joachim Schipper wrote:
On Tue, Nov 29, 2005 at 10:31:03AM +0100, David Coppa wrote:
On 11/29/05, Joachim Schipper <[EMAIL PROTECTED]> wrote:
Why don't you just put a switch in front of the two firewalls, and then
do CARP (for firewall failover) plus some smart routing tricks (for ISP
failov
> Maybe I still need something like this in isakmpd.conf:
>
> # Certificates stored in PEM format
>[X509-certificates]
>CA-directory=/etc/isakmpd/ca/
>Cert-directory=/etc/isakmpd/certs/
>Private-key=/etc/isakmpd/private/openbsd1.as10.net.priv
>
> Am I on the right tr
Hello!
I have a problem with ISAKMPD on a new machine running 3.8-RELEASE.
The machines on the other sides of the tunnels are running
3.6-RELEASE and 3.7-RELEASE; they talk to each other just fine.
But the machine with 3.8 cannot talk to any of the other two
boxes.
Reading in the l
On Tue, Nov 29, 2005 at 10:31:03AM +0100, David Coppa wrote:
> On 11/29/05, Joachim Schipper <[EMAIL PROTECTED]> wrote:
>
> > Why don't you just put a switch in front of the two firewalls, and then
> > do CARP (for firewall failover) plus some smart routing tricks (for ISP
> > failover - search th
>From: Qv6 <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: #define failure opportunity
>Date: Mon, 28 Nov 2005 18:35:24 -0600
...
>Intersting news.
>
>I once worked for a major Telecom firm that used a commercial
>implementation of ssh. I was curious and I asked one of the other
On Mon, Nov 28, 2005 at 02:29:21PM -0500, Bob Ababurko wrote:
> ... I wanted a
> system that did not have moving parts. This was to hopefully extend the
> life of the machine and increase uptime by eliminating the hard drives
> and power supplies with moving parts. I am not paying for power so
On 11/29/05, Joachim Schipper <[EMAIL PROTECTED]> wrote:
> Why don't you just put a switch in front of the two firewalls, and then
> do CARP (for firewall failover) plus some smart routing tricks (for ISP
> failover - search the archives, I forgot the proper keywords)?
pf route-to?
Regards
-Davi
On Mon, Nov 28, 2005 at 08:47:04AM -0800, edgar mortiz wrote:
> hey guys
>
> is there anyone here ever tried to put up a openbsd fail-over fw using 2
> obsd boxes connected to 2 different ISP's ?
> something like:
>
>
> ISP1 (66.77.204.10) ISP2 (207.110.9.10)
> | fxp0
Misc,
I'd like to hear how people are using OpenOSPFd and how it's working
out.
Are people using it in any sort of a local-cluster load balancing
method? For example: rtr1 servers area 1 and has three NTP servers
attached all announcing the same /32 over OSPF with some logic on the
ser
52 matches
Mail list logo
