Whyzzi wrote:
Hi gang. Running a lightweight mail server here (50 users total) on
OpenBSD, and being the cheap bastard that I am I am looking forward to
scripting a nightly backup onto some DVD-RW media. Can I assume that
dump/restore is out of the question because of the special commands
burners
Karl O. Pinc wrote:
...
> Ah, I see the problem. I read the FAQ, chapter 4, install, and it
> did not point me to the upgrade guide, just said be sure
> to upgrade /etc (which I did using etc38.tgz as a template,
> and hence wound up with the missing directories).
> It would be good if there was a
Hi,
I just replaced the rtl8169 with a rtl8139 and all is fine again.
# Han
Joseph C. Bender wrote:
Instead, I suggest to use a ``no rdr'' line after rdr'ing those in the
blacklists to spamd.
Actually, yes, because it makes your filter rulesets easier to parse
visually, but you want the "no rdr" *first*. This is the configuration
that we are using.
Uh well, to
0051210
78.0M 20051211
76.3M 20051212
103M20051213
102M20051214
85.0M 20051215
81.7M 20051216
105M20051217
81.3M 20051218
81.1M 20051219
84.1M 20051220
108M20051221
116M2
[Marked OT, since not specially related to OpenBSD]
On Fri, Dec 23, 2005 at 01:18:07PM -0700, Whyzzi wrote:
> Interesting idea, and have to admit I didn't think of it. There is a
> second HD ide hard drive slaved in the mail server, as well. I could
> use the likes of DD or dump/restore onto the s
hi,
Could someone send me his content of /etc/newsyslog.conf, the part contains the
apache log
rotation entries?!
thx a lot
didier
On Fri, Dec 23, 2005 at 11:51:14AM -0600, L. V. Lammert wrote:
> Better recommendation - rsync /home to an external system (especially if
> you're using Maildir). WAY less overhead! You can even backup more often.
> An archive machine is less costly than a bundle of DVD-RWs, and you don't
> have
At 01:18 PM 12/23/2005 -0700, Whyzzi wrote:
Interesting idea, and have to admit I didn't think of it. There is a
second HD ide hard drive slaved in the mail server, as well. I could
use the likes of DD or dump/restore onto the second drive (slave).
Last time I did that (dump/restore), I screwed u
Interesting idea, and have to admit I didn't think of it. There is a
second HD ide hard drive slaved in the mail server, as well. I could
use the likes of DD or dump/restore onto the second drive (slave).
Last time I did that (dump/restore), I screwed up though, which is why
a second backup method
I noticed that pf will load a default rule set if there is no valid
/etc/pf.conf file.
Is it unwise to depend on this default rule set if it works?
The default rule set makes exceptions for carp and pfsync traffic.
Any possibility of adding exceptions for vpn traffice also?
Your request for Express Transfer from your Bank of Oklahoma account to your
bank account ending in 8794, has been received and is in process.
This process usually takes 6-8 working hours to complete but is dependent on
your account preferences.
See, Change or Cancel this Transfer at:
Hi,
On Fri, Dec 23, 2005 at 11:58:14AM -0500, Will H. Backman wrote:
>
> Reducing the enckey to 160 bits worked. Interesting to note that if a
> key is too short, you get a nice warning that the key is too short and
> must be 160 bits long. If a key is too long, you don't get a warning,
> ju
On Fri, Dec 23, 2005 at 12:27:55PM -0500, Will H. Backman wrote:
> According to the vpn(8) man page:
> Paragraph just before section header for Creating IPsec Flows [manual
> keying]
>
> "Note that when no authentication and encryption algorithms are defined,
> ipsecctl(8) will automatically use
At 05:20 AM 12/23/2005, Craig Skinner wrote:
On Fri, Dec 23, 2005 at 01:12:01PM +, Craig Skinner wrote:
> On Thu, Dec 22, 2005 at 10:12:32AM -0800, martin wrote:
> > IP - 209.216.76.1
> > Netmask - 255.255.255.252
> > GW - 209.216.77.6
>
> The above is wrong.
My mistake, I mis-read the above
At 10:17 AM 12/23/2005 -0700, Whyzzi wrote:
Hi gang. Running a lightweight mail server here (50 users total) on
OpenBSD, and being the cheap bastard that I am I am looking forward to
scripting a nightly backup onto some DVD-RW media. Can I assume that
dump/restore is out of the question because o
Your request for Express Transfer from your Bank of Oklahoma account to your
bank account ending in 8794, has been received and is in process.
This process usually takes 6-8 working hours to complete but is dependent on
your account preferences.
See, Change or Cancel this Transfer at:
http:
According to the vpn(8) man page:
Paragraph just before section header for Creating IPsec Flows [manual
keying]
"Note that when no authentication and encryption algorithms are defined,
ipsecctl(8) will automatically use HMAC-SHA2-256 for authentication and
AES-128 in countermode for encryptio
Hi gang. Running a lightweight mail server here (50 users total) on
OpenBSD, and being the cheap bastard that I am I am looking forward to
scripting a nightly backup onto some DVD-RW media. Can I assume that
dump/restore is out of the question because of the special commands
burners require to begi
Hans-Joerg Hoexer wrote:
the defaults are hmac-sha2-256 and aesctr which uses a 160 bit key.
On Wed, Dec 21, 2005 at 03:25:26PM -0500, Will H. Backman wrote:
OpenBSD 3.8 release.
I'm getting the same errors as this thread:
http://archives.neohapsis.com/archives/openbsd/2005-11/1980.html
I'm tr
On 12/23/2005 09:24:09 AM, Jason Crawford wrote:
On 12/23/05, Karl O. Pinc <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I just did a 3.6 -> 3.7 -> 3.8 upgrade and
> looking through the /etc/security mailing
> I see that I don't have /etc/disklabls/
> or /etc/isakmpd/. These directories do
> not seem to
On Fri, 2005-12-23 at 03:33:32 +, Constantine A. Murenin proclaimed...
> Try changing
>
> rdr on $wire_if proto tcp from any to any port 21 -> 127.0.0.1 port 8021
>
> to
>
> rdr proto tcp from any to any port 21 -> 127.0.0.1 port 8021
Tried it but the problem still persists. Very stra
On Thu, 22 Dec 2005, Moritz Grimm wrote:
rdr pass on $EXT_IF inet proto tcp from to any port 25 ->
127.0.0.1 port smtp <== add this line
rdr pass on $EXT_IF inet proto tcp from to any port 25 ->
127.0.0.1 port 8025
rdr pass on $EXT_IF inet proto tcp from ! to any port smtp ->
127.0.0.1 port 80
On 12/23/05, Karl O. Pinc <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I just did a 3.6 -> 3.7 -> 3.8 upgrade and
> looking through the /etc/security mailing
> I see that I don't have /etc/disklabls/
> or /etc/isakmpd/. These directories do
> not seem to be in etc38.tgz, although they
> do show up on a sy
FYI, FWIW,
While it's on my mind, I get bit by this whenever I
upgrade.
For whatever reason, whenever I look at /etc/sysctl.conf
I think that I'm looking at the system defaults commented
out, like /etc/ssh/sshd_config. Instead, they are the
opposite of the defaults.
#net.inet.ip.forwarding=1
On 12/23/2005 05:22:28 AM, Kilaru Sambaiah wrote:
I need to do the following:
1) Allow only ssh to firewall
2) Allow 80, 443 fron net to web server through binat
3) Allow 25 and 143 to mail server
Rdr may do what you want (maybe along with some natting
too but my brain is full at the moment a
Hi,
I just did a 3.6 -> 3.7 -> 3.8 upgrade and
looking through the /etc/security mailing
I see that I don't have /etc/disklabls/
or /etc/isakmpd/. These directories do
not seem to be in etc38.tgz, although they
do show up on a system I did a clean 3.8
install on. (3.8 patched to stable as
of De
On 12/23/2005 05:22:28 AM, Kilaru Sambaiah wrote:
I have a question regarding pf and binat.
I need to protect mail server and web server behind firewall. I am
planning to run
pf with binat rules. I need to do the following:
1) Allow only ssh to firewall
2) Allow 80, 443 fron net to web serve
I am playing now with idea of "back porting" many very useful fixes and
additions made in OpenBSD calendar(1) to FreeBSD. The most useful to me
are the fixes to handling of dates bound to weekdays.
But I think that there is something in FreeBSD version that could be
useful in OpenBSD as well: I am
Ted Unangst wrote:
> On 12/22/05, Han Boetes <[EMAIL PROTECTED]> wrote:
> > This problem has been bugging me for month now. It started
> > happening a month after 3.8 got tagged. At least, that's when I
> > started noticing it. So it might be anything. But I suspect the
> > OpenBSD side the most si
On Fri, Dec 23, 2005 at 01:12:01PM +, Craig Skinner wrote:
> On Thu, Dec 22, 2005 at 10:12:32AM -0800, martin wrote:
> > IP - 209.216.76.1
> > Netmask - 255.255.255.252
> > GW - 209.216.77.6
>
> The above is wrong.
My mistake, I mis-read the above.
209.216.76.1 is the WAN of you router.
209
On Thu, Dec 22, 2005 at 10:12:32AM -0800, martin wrote:
> Hello.
>
> I've been running other firewalls on this IP address with the same
> settings in the past, but am having problems setting up the Gateway
> with OpenBSD 3.8. It comes back with "no route to host" and when I do
> a nestat -rn, th
Dear Realtor,
Over 70 percent of home buyers today start their home searches online.
Introduce yourself to these valuable clients right in their inbox with
The Custom Real Estate Digest. Give your current and potential clients
the comfort of knowing that you are the internet savvy real estate agen
I have a question regarding pf and binat.
I need to protect mail server and web server behind firewall. I am
planning to run
pf with binat rules. I need to do the following:
1) Allow only ssh to firewall
2) Allow 80, 443 fron net to web server through binat
3) Allow 25 and 143 to mail server
Solar rays.
Toni Mueller wrote:
Hello,
I just stumbled across a problem where a directly connected host gets a
wrong MTU in his route entry in an OpenBSD 3.7 box.
Network diagram:
openbsd .1 -- linux .2
The two hosts are connected via Fast Ethernet which has a nominal MTU
of 1500. T
Hello,
I just stumbled across a problem where a directly connected host gets a
wrong MTU in his route entry in an OpenBSD 3.7 box.
Network diagram:
openbsd .1 -- linux .2
The two hosts are connected via Fast Ethernet which has a nominal MTU
of 1500. The entry for the linux box in the O
On Wednesday 21 December 2005 02:09, you wrote:
>now I need to nat my internal network
> to appear to be coming from 10.0.20.254
Is this to accommodate a service of some type or what?
Add some more information as there is likely a
bunch of ways to do something depending of the expected or
requi
Hi all,
I've just installed a 3.8 on a VIA DP system. In 2 days I had 2 crash
of the system :-(
The following was the error I had on the display
kernel: page fault trap,code=0
stopped ad npxdna_xmm +0x71: movl 0x12c(%ebx),%eax
ddb{0}>
But don't tell me to send
On Thu, Dec 22, 2005 at 07:32:27PM +0100, Ed White wrote:
> Quoting from: http://www.onlamp.com/lpt/a/6384
>
> The biggest drawback of svnd is its lack of security in the general use case.
> It is vulnerable to an offline dictionary attack. That is, you can generate a
> database mapping known ci
39 matches
Mail list logo