On 7/5/06, Lars Hansson <[EMAIL PROTECTED]> wrote:
On Thursday 06 July 2006 01:35, c.s.r.c.murthy wrote:
> "block all" in pf.conf is ok, but it will go away when the rules are
> flushed for known/unknown reasons. I feel it is desirable to have a
> kernel parameter that does default blocking when
On Wed, Jul 05, 2006 at 10:35:15AM -0700, c.s.r.c.murthy wrote:
> "block all" in pf.conf is ok, but it will go away when the rules are
> flushed for known/unknown reasons. I feel it is desirable to have a
> kernel parameter that does default blocking when all rules are flushed.
A patch is
On Thursday 06 July 2006 01:35, c.s.r.c.murthy wrote:
>I feel it is desirable to have a
> kernel parameter that does default blocking when all rules are flushed.
The developers think otherwise:
http://www.benzedrine.cx/pf/msg07442.html
---
Lars Hansson
Hello Matthew,
"block all" in pf.conf is ok, but it will go away when the rules are
flushed for known/unknown reasons. I feel it is desirable to have a
kernel parameter that does default blocking when all rules are flushed.
murthy
Matthew R. Dempsky wrote:
> On Mon, Jul 03, 2006 at 05:
Thanks everyone, that is exactly what I was looking for!!!
1. No, but you can certainly find the numerous citations on why it
is weak hash.
I know why it is a weak hash, I was not implying it was strong but it
is still useful for many applications that still rely on it, for some
protocols that use mixed hashes [md5/sha, ...]. Not to mention that a
use
If you have no parts of X installed, then how do you expect to link
against it? If you plan to use your OpenBSD machine as a headless X
client, then you'll need to install the requisite libs.
You'll save yourself a lot of time and headache if you just install the X set.
On 7/4/06, Lawrence Horv
On Tuesday 04 July 2006 08:45, Joachim Schipper wrote:
> On Mon, Jul 03, 2006 at 09:22:59PM -0700, Jeff Simmons wrote:
> > Well, just to play the devil's advocate here ...
> >
> > One of the main functions of any password hygiene program 'should' be to
> > prevent users from changing 'mypassword1'
I have been getting the following error, and wasnt sure if i have to
totally install X or can i just install a minimal lib set to get the
error to stop, at this time I do not have any parts of X installed.
# make
===> qemu-0.8.0p3 uses X11, but /usr/X11R6 not found.
Thanks
--
-Lawrence
Martin Toft wrote:
#!/bin/ksh
PS_OUTPUT=`ps ax | grep '/usr/sbin/ftp-proxy' | grep -v grep`
if [ "$PS_OUTPUT" = "" ]; then
echo -e 'This is the /root/ftp-proxy-fix script at gw.obelnet.dk.\n\n' \
'ftp-proxy does NOT r
Hi all,
I have a problem with ftp-proxy on a OpenBSD 3.9-GENERIC (release)
gateway - sometimes it suddenly dies for no apparent reason. I have
enabled the highest debug level but the log tells me nothing. Any help
is appreciated.
ftp-proxy is started through rc.conf:
ftpproxy_flags="-a ext
Matthew Closson wrote:
> On Tue, 4 Jul 2006, Stephen Bosch wrote:
>
>> Stephen Bosch wrote:
>>> Hi, all:
>>>
>>> I am configuring an IPsec tunnel like so:
>>>
>>> local_internal_IP -> alias_IP ->remote_peer_IP -> remote_internal_IP
>>> local host | openBSD | Cisco PIX |remote intern
Matthew Closson wrote:
> I don't think what you want to do is currently possible:
>
> Here is your problem:
>
> Let's say you have these settings
>
> internal_host 10.0.0.5
> internal_openbsd_nic 10.0.0.1
> external_openbsd_nic AAA.AAA.AAA.AAA
>
> Remote_concentrator BBB.BBB.BBB.BBB
> Remote_i
BitDefender for Linux Mail Servers found an infected object
in a message that was sent from your address
Real receiver: <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Mail System Error - Returned Mail
Virus: [EMAIL PROTECTED]
http://www.bitdefender.com/vfind/[EMAIL PROTECTED]
Object: /opt/Bi
Thank you sooo much for your reply.
Its just the kind of thinking i am looking for. Some very valid and well
constructed thoughts there.
Its late here so i will read and analyse your post fully in the morning. I
have a feeling that i will end up picking your brain further.
Thank you for your time,
On Tue, Jul 04, 2006 at 11:07:37AM -0700, Ginja_Ninja wrote:
> Hello,
> I was wondering if i could pick the brains of more experienced inividuals to
> provide me with a more suited solution. I am a total beginner at this so
> please bear with me.
>
> I wish to setup a file server to sit on my net
On Tue, 4 Jul 2006, Stephen Bosch wrote:
Stephen Bosch wrote:
Hi, all:
I am configuring an IPsec tunnel like so:
local_internal_IP -> alias_IP ->remote_peer_IP -> remote_internal_IP
local host| openBSD | Cisco PIX | remote internal host
alias_IP is a carp alias. It is one end
On Tue, Jul 04, 2006 at 01:43:49PM -0400, Josh Grosse wrote:
> On Tue, Jul 04, 2006 at 07:25:38PM +0200, FTP wrote:
> > Hi,
> >
> > when I try to access:
> >
> > https:///cgi-bin/openwebmail/openwebmail.pl
> >
> > I get the following:
> >
> > '/var/www/cgi-bin/openwebmail/openwebmail.pl' must s
Hello,
I was wondering if i could pick the brains of more experienced inividuals to
provide me with a more suited solution. I am a total beginner at this so
please bear with me.
I wish to setup a file server to sit on my networ at home and provide all
the files between a couple of pc's and laptop
Thank you everyone for the useful information.
I think that this is actually the most I have ever received on any list when
I have asked a (to me) fairly complex question.
I have now been armed with insightful, and meaningful information that I can
move forward with.
I'll be
FTP wrote:
Hi,
when I try to access:
https:///cgi-bin/openwebmail/openwebmail.pl
I get the following:
'/var/www/cgi-bin/openwebmail/openwebmail.pl' must setuid to root
but my current permissions are:
-rwsr-sr-x 1 root wheel 35830 Jun 26 13:05 openwebmail.pl
I thought that the above are
On 7/4/06, FTP <[EMAIL PROTECTED]> wrote:
but my current permissions are:
-rwsr-sr-x 1 root wheel 35830 Jun 26 13:05 openwebmail.pl
I thought that the above are correct?
Have you checked that the partition your /var/www resides on is not
mounted with the 'nosuid' setting?
Cheers,
Rogier
On Tue, Jul 04, 2006 at 07:25:38PM +0200, FTP wrote:
> Hi,
>
> when I try to access:
>
> https:///cgi-bin/openwebmail/openwebmail.pl
>
> I get the following:
>
> '/var/www/cgi-bin/openwebmail/openwebmail.pl' must setuid to root
>
> but my current permissions are:
>
> -rwsr-sr-x 1 root wheel
I've been having the panic problem reported by others on stable and saw a post
by Reyk
that it's fixed in -current. That's awesome, thanks for the fix...but I also
wanted to
ask if there's work towards getting G band working in the ath driver,
specifically the
AR5212 chip. I'm running a Soekris
This is the second time this server crash since we switched to the MP
kernel, about a month ago.
I have found the following blue text in the console (it may contain some
errors because I copied it by hand):
uvm_fault( 0xd05cc660, 0xec3de000, 0, 1 ) -> e
Fatal page fault in supervisor mode
tra
Hi,
when I try to access:
https:///cgi-bin/openwebmail/openwebmail.pl
I get the following:
'/var/www/cgi-bin/openwebmail/openwebmail.pl' must setuid to root
but my current permissions are:
-rwsr-sr-x 1 root wheel 35830 Jun 26 13:05 openwebmail.pl
I thought that the above are correct?
Th
On Tue, Jul 04, 2006 at 12:16:45PM -0400, Nick Guenther wrote:
> On 7/4/06, Peter Blair <[EMAIL PROTECTED]> wrote:
> >On 6/29/06, J.C. Roberts <[EMAIL PROTECTED]> wrote:
> >> I just got a call this afternoon from Tom Moore to let me know they've
> >> set up an anon FTP site (no registration) with t
Hi!
On Tue, Jul 04, 2006 at 05:30:51PM +0100, tony sarendal wrote:
>On 04/07/06, Hannah Schroeter <[EMAIL PROTECTED]> wrote:
>> On Tue, Jul 04, 2006 at 11:44:22AM -0400, Peter Blair wrote:
>> >I haven't tried under OpenBSD, but mounting /tmp as a ramdisk could
>> >prove viable.
>> It *is*. I've d
On 7/4/06, Rob Baldassano <[EMAIL PROTECTED]> wrote:
a former co-worker says "NO don't do that, never trust upgrades". I tend to
disagree.
Are they a windows user?
-Nick
On 04/07/06, Hannah Schroeter <[EMAIL PROTECTED]> wrote:
>
> Hi!
>
> On Tue, Jul 04, 2006 at 11:44:22AM -0400, Peter Blair wrote:
> >I haven't tried under OpenBSD, but mounting /tmp as a ramdisk could
> >prove viable.
>
> It *is*. I've done so since a nearly uncountable number of years.
>
> Somethi
On 7/4/06, Peter Blair <[EMAIL PROTECTED]> wrote:
On 6/29/06, J.C. Roberts <[EMAIL PROTECTED]> wrote:
> Howdy misc@
>
> Though I stayed out of the last public fiasco regarding HiFn here on the
> misc@ list, I privately contacted the people I know at the company. I
> didn't reply just to Hank Cohe
Rob Baldassano wrote:
I have been running OpenBSD 3.6 since the day it came out, and am now
in need up going to 3.9
The question is: What upgrade issues have folks run into?
Very few, myself. I've got at least one machine running which started
out with OpenBSD 3.1, and has been remotely upgr
Hi!
On Tue, Jul 04, 2006 at 11:44:22AM -0400, Peter Blair wrote:
>I haven't tried under OpenBSD, but mounting /tmp as a ramdisk could
>prove viable.
It *is*. I've done so since a nearly uncountable number of years.
Something like this in /etc/fstab helps.
/dev/wd0b /tmp
Has anyone tried recently to connect to ftp.hifn.com ? I haven't been
able to connect from multiple locations.
-Pete
On 6/29/06, J.C. Roberts <[EMAIL PROTECTED]> wrote:
Howdy misc@
Though I stayed out of the last public fiasco regarding HiFn here on the
misc@ list, I privately contacted the p
I haven't tried under OpenBSD, but mounting /tmp as a ramdisk could
prove viable.
On 7/4/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Some days ago I read a question related to encrypting a partition.
I just know that swap gets encrypted automaticly.
Wouldn`t it be possible to encrypt also /
Stephen Bosch wrote:
> Hi, all:
>
> I am configuring an IPsec tunnel like so:
>
> local_internal_IP -> alias_IP ->remote_peer_IP -> remote_internal_IP
> local host | openBSD | Cisco PIX | remote internal host
>
> alias_IP is a carp alias. It is one end of an IPsec security
> associat
Hi, all:
I am configuring an IPsec tunnel like so:
local_internal_IP -> alias_IP ->remote_peer_IP -> remote_internal_IP
local host| openBSD | Cisco PIX | remote internal host
alias_IP is a carp alias. It is one end of an IPsec security
association. netstat -rn gives this (altered)
On Tue, Jul 04, 2006 at 10:44:05AM -0400, Nick Holland wrote:
> FTP wrote:
> ...
> >bottom line, your suggestion is to stick with openwebmail (if I don't
> >want to intsall IMAP) and run 'insecure' apache? Would that be a
> >'good' solution for a small e-mail server?
>
> MY suggestion..yes. Reaso
On 7/4/06, Joachim Schipper <[EMAIL PROTECTED]> wrote:
Since OpenSSH was developed on, for, and by the OpenBSD project, if
anyone is doing it wrong, it's the rest of the world. ;-)
This, in fact, does explain some of the differences. (Most of) the rest of
the world uses portable OpenSSH, which h
On 7/4/06, sonjaya <[EMAIL PROTECTED]> wrote:
How to blok ddos/Flooding/ssh brute attack with pf .
This subject has been pretty much beaten to death. In the list
archives, you will find a myriad of solutions people use for this
problem. Please read the archives before posting (and flogging th
On 2006/07/04 16:25, Andreas Maus wrote:
> You can bind ssh to another port and/or you can play with a little scripting
Oh please, not this thread again...
On Tue, Jul 04, 2006 at 04:14:51PM +0200, [EMAIL PROTECTED] wrote:
> Some days ago I read a question related to encrypting a partition.
> I just know that swap gets encrypted automaticly.
> Wouldn`t it be possible to encrypt also /tmp and /var/tmp also automaticly
> with the same mechanism wich is
Ah good, an excuse for another `what amd64 hardware can I use'
thread :)
> I was thinking about an athlon 64 platform or an entry level
> opteron servers with gigabit lans and/or HW cryptography
> accelerator. Any recommendations?
I quite like Supermicro H8SSL boards at the moment (including
in a
FTP wrote:
...
bottom line, your suggestion is to stick with openwebmail (if I don't
want to intsall IMAP) and run 'insecure' apache? Would that be a
'good' solution for a small e-mail server?
MY suggestion..yes. Reasonable people may (and probably will) have
differing opinions.
Here's a be
Rod.. Whitworth wrote:
...
Test with well known cracker tools and weep. I have (as root) fed a
slice of master.passwd to John the Ripper with a few nologin users
added using dictionary words of 7 or 8 chars as passwords and after 10
days it had not cracked one of them. I bet it takes less time on
Hi.
You can bind ssh to another port and/or you can play with a little scripting
and the excellent packet filter. I run a script from cron that greps the
IP addresses from the sshscans, dups them in an file and a pf table
uses this file to drop connections from these IPs. Depending on the
type th
On Mon, 2006-07-03 at 03:57 -0700, Clint Pachl wrote:
> Agreed, that is not suitable and I don't do that. I guess I
> misunderstood the point at which your failure was occurring. I believed
> it to be initially or some short time after you started each end point.
> In my experience, I am using
On Tue, 4 Jul 2006, [EMAIL PROTECTED] wrote:
> I like the 3.9 ftp-proxy so much I'm thinking "wouldn't it be nice if,
> in addition to the clients inside my lan, ftp connections from this very
> openbsd machine went through it also".
>
> Is this just a silly idea? Is this possible, trivial, trick
Joachim Schipper [2006-07-04, 15:13:35]:
> Several Java implementations are in ports; Sun Java works on i386 only,
> I believe.
kurt has enabled jdk 1.5 on amd64 as well some time ago (-current only).
--
steven
Disclaimer: http://www.kuleuven.be/cwis/email_disclaimer.htm
Some days ago I read a question related to encrypting a partition.
I just know that swap gets encrypted automaticly.
Wouldn`t it be possible to encrypt also /tmp and /var/tmp also automaticly
with the same mechanism wich is used to encrypt the SWAP?
Somebody mentioned that encrypting /tmp would be
Nationwide Building Society
*
Dear Valued Customer
Our technical service department has recently updated our online banking
software, and due to software upgrade we kindly ask you to follow the
reference given below to confirm your membership details. Failure to
confirm your membership details w
On Tue, Jul 04, 2006 at 08:08:39PM +0700, sonjaya wrote:
> Dear all
>
> How to blok ddos/Flooding/ssh brute attack with pf .
>
>
>
> -sonjaya-
I usually bind sshd on another port. The scripted ssh brute forcing stops. The
logs are happy.
-peter
--
Here my ticker tape .signature My n
Hi.
After installing Samba from the ports tree (Samba version 3.021b
without any flavors)
running smbd the first time -the password file passdb.tdb does not
exist- smbd dies
with SIGABRT after creating the password file
# /usr/local/libexec/smbd -D
# ps axuw | grep smbd
root 4370 0.0
Joachim Schipper wrote:
Several Java implementations are in ports; Sun Java works on i386 only,
I believe.
Sun Java 1.5 works on amd64 in -current.
/Sigfred
On Tue, Jul 04, 2006 at 08:08:39PM +0700, sonjaya wrote:
> Dear all
>
> How to blok ddos/Flooding/ssh brute attack with pf .
Since there is no context: 'block all' works pretty well.
Joachim
Joachim Schipper wrote:
> On Mon, Jul 03, 2006 at 09:15:15PM -0300, Giancarlo Razzolini wrote:
>> Henning Brauer wrote:
>>> skip steps and set skip have noting to do with each other.
>>> set skip basically disables pf on a per-interface basis.
>>> skip steps is an optimization in rule processing yo
On Tue, Jul 04, 2006 at 02:21:32PM +0200, Joachim Schipper wrote:
> On Tue, Jul 04, 2006 at 10:33:30AM +0200, FTP wrote:
> > On Mon, Jul 03, 2006 at 06:25:52PM -0400, Nick Holland wrote:
> > > OpenWebmail is very charming because of how very little it needs to
> > > bring into base OpenBSD to get
On Tue, Jul 04, 2006 at 12:12:45PM -0700, c.s.r.c.murthy wrote:
> Hello Joachim,
> Sorry I could not get on internet the answer from Alexey. Can you
> please give the URL for this. Also please confirm that there is no
> kernel parameter to make pf block everything by default.
This has bee
On Tue, Jul 04, 2006 at 12:34:53AM -0700, Rob Baldassano wrote:
> I have been running OpenBSD 3.6 since the day it came out, and am now in need
> up going to 3.9
>
> The question is:
> What upgrade issues have folks run into?
> I'm running it on a DELL desktop.
>
> BTW, some of the reasons I
On Tue, Jul 04, 2006 at 03:12:11AM -0400, Nick Guenther wrote:
> Just looking through the manpages and I noticed that SSH-related
> things don't seem to fit in with the system. For example, there is
> ssh_config(5) instead of ssh.conf and sftp-server instead of sftpd.
>
> Why is this? Is this a hi
Dear all
How to blok ddos/Flooding/ssh brute attack with pf .
-sonjaya-
The adapter is in BSS (Infrastructure mode) because I need it to connect to
another access point. Can I do this if my card is in HostAP mode?
-Original Message-
From: Andy Hayward [mailto:[EMAIL PROTECTED]
Sent: Tuesday, July 04, 2006 4:32 AM
To: misc
Subject: Re: Wireless Bridge...
On
On Tue, Jul 04, 2006 at 12:04:34AM -0400, Chet Uber wrote:
> >>I can't resist pointing out that this is an AWFUL policy. You
> >>will be
> >>remembering peoples passwords, a history of them, which are
> >>very likely to be used on other systems. Thats really bad. I wonder
> >>(at least in the
Hello,
I like the 3.9 ftp-proxy so much I'm thinking "wouldn't it be nice if,
in addition to the clients inside my lan, ftp connections from this very
openbsd machine went through it also".
Is this just a silly idea? Is this possible, trivial, tricky? Done
before?
I found nada on google, but a
Hello!
I would need an advice about the hardware that would be enough for my project.
The network layout is like this:
ADSL2 (10Mbps/768k) ADSL2 (10Mbps/768k)
| |
| |
Branch1 <--- 10 Mbps ---> Head office <---10 Mbps> Branch2
On Tue, Jul 04, 2006 at 03:12:11AM -0400, Nick Guenther wrote:
> Just looking through the manpages and I noticed that SSH-related
> things don't seem to fit in with the system. For example, there is
> ssh_config(5) instead of ssh.conf
ssh_config and sshd_config predate OpenSSH.
> and sftp-server
On Mon, Jul 03, 2006 at 09:15:15PM -0300, Giancarlo Razzolini wrote:
> Henning Brauer wrote:
> >
> > skip steps and set skip have noting to do with each other.
> > set skip basically disables pf on a per-interface basis.
> > skip steps is an optimization in rule processing you can safely ignore.
>
On Mon, Jul 03, 2006 at 09:22:59PM -0700, Jeff Simmons wrote:
> Well, just to play the devil's advocate here ...
>
> One of the main functions of any password hygiene program 'should' be to
> prevent users from changing 'mypassword1' to 'mypassword2' and then
> 'mypassword3', etc. (Yes, we can
On Tue, 4 Jul 2006 06:18:53 -0400
Chet Uber <[EMAIL PROTECTED]> wrote:
>
> On Jul 4, 2006, at 3:00 AM, Gilles Chehade wrote:
>
> > Chet Uber wrote:
> >> Theo,
> >>
> >> Also the last I checked obsd still supports MD5
> >>
> >> CU
> > Can you please explain why it should not ?
> > Can you please
On Tue, 2006-07-04 at 12:56 +0200, Luca Corti wrote:
Sorry, forgot to google a bit before posting. This is a known issue.
Here is the solution.
http://www.benzedrine.cx/pf/msg04544.html
thanks
On Tue, Jul 04, 2006 at 10:33:30AM +0200, FTP wrote:
> On Mon, Jul 03, 2006 at 06:25:52PM -0400, Nick Holland wrote:
> > OpenWebmail is very charming because of how very little it needs to
> > bring into base OpenBSD to get working. I set it up for a school of
> > about 200 students (...). I mus
Rahul Sharma wrote:
> Hi Friends,
> I am new to openBSD.
> I have a problem with dhcpd.
> Whenever I delete dhcpd.leases and again create it via touch command then
it
> does not create the list of clients that are assigned the dynamic IP's.
> I have tried all sort of combinations like rebooting the
On 2006/07/04 16:49, Rahul Sharma wrote:
> Whenever I delete dhcpd.leases and again create it via touch command then it
> does not create the list of clients that are assigned the dynamic IP's.
The manual tells you exactly when this is written:
"Before dhcpd grants a lease to a host, it records
Rahul Sharma([EMAIL PROTECTED]) on 2006.07.04 16:49:24 +:
> Whenever I delete dhcpd.leases and again create it via touch command then it
Why are you deleting it?
Read http://www.ietf.org/rfc/rfc1531.txt
Read dhcpd.leases (5) to understand what that file does and how dhcpd hands
out addresses
Hello,
I've two i386 boxes running 3.9-stable acting as redundant firewalls
with PF + CARP/pfsync behind a Cisco router.
xDSL
|
|
cisco
|
|
-
| |
FW1 FW2
| |
-
|
DMZ
Public IP addresses used below are faked.
The router:
#sh ip int brief
Interface
>From man page:
The quality of the password can be enforced by specifying
an external checking program via the ``passwordcheck'' variable
in login.conf(5).
Writing a script to store the ten last hashes in a ``per-user'' file is
trivial and would ensure the check whil
On 6/29/06, Stuart Henderson <[EMAIL PROTECTED]> wrote:
On 2006/06/29 09:40, Karsten McMinn wrote:
> On 6/29/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> >My big problem is in selecting which SATA-Card (I've only used Dawicontrol
> >on OBSD) and if I should buy one with four ports or two wi
On Tue, 4 Jul 2006, Edwin Eyan Moragas wrote:
> On 7/4/06, Bernd Schoeller <[EMAIL PROTECTED]> wrote:
> > > 1) when it says "exact copy", does this mean just a copy of the process?
> > > is it right to state that the memory allocated by the parent process is
> > not
> > > accessible to the child p
Hi Friends,
I am new to openBSD.
I have a problem with dhcpd.
Whenever I delete dhcpd.leases and again create it via touch command then it
does not create the list of clients that are assigned the dynamic IP's.
I have tried all sort of combinations like rebooting the server which is
openBSD in my c
Hi Claudio,
thanks a lot for your prompt reply!
On Jul 3, 2006, at 4:32 PM, Claudio Jeker wrote:
as "network x.x.x.x/19" sends the announcement stating that $peerip
is the
nexthop, I am not using "depend" options on carp, what I want is that
I guess you want to set the nexthop to the $carpip
On 7/4/06, Thomas BC6rnert <[EMAIL PROTECTED]> wrote:
bridging doesn't work with wireless lan.
Yes it does. However the wireless adapter needs to be in hostap mode.
-- ach
On 7/4/06, Bernd Schoeller <[EMAIL PROTECTED]> wrote:
> 1) when it says "exact copy", does this mean just a copy of the process?
> is it right to state that the memory allocated by the parent process is not
> accessible to the child process?
Yes, copy is not the original (though normally Unix-OS
On Tue, 4 Jul 2006 10:32:34 +0800, Lars Hansson <[EMAIL PROTECTED]>
wrote:
>On Tuesday 04 July 2006 05:05, Chris Cappuccio wrote:
>> Either way, this makes them look like the biggest fucking idiots ever.
>
>Most people who have ever had to use any of their devices knew this already.
>
>---
>Lars H
On 7/4/06, mike <[EMAIL PROTECTED]> wrote:
On Tue, 4 Jul 2006 00:34:53 -0700 (PDT) Rob Baldassano wrote:
> I have been running OpenBSD 3.6 since the day it came out, and am now
> in need up going to 3.9
why don't you start here:
http://www.openbsd.org/faq/upgrade39.html
Please be careful with
On Jul 4, 2006, at 3:00 AM, Gilles Chehade wrote:
Chet Uber wrote:
Theo,
Also the last I checked obsd still supports MD5
CU
Can you please explain why it should not ?
Can you please find a collision for 3d16b4f76338838044b90ffae5e71cb5 ?
1. No, but you can certainly find the numerous citat
On Tue, Jul 04, 2006 at 04:54:51PM +0800, Lars Hansson wrote:
> On Tuesday 04 July 2006 16:30, FTP wrote:
> > Well, actually I did exactly what's described in the "man 8 ssl" page
> > (which by the way is mentioned in http://openbsd.org/faq/faq10.html#HTTPS)
> > but firefox returns an error when ac
On Tue, Jul 04, 2006 at 03:27:17PM +0800, Edwin Eyan Moragas wrote:
> ey misc,
>
> from the fork(2) man pages:
>
> fork() causes creation of a new process. The new process (child process)
> is an exact copy of the calling process (parent process) except for the
> following:
>
> i have several
On Tue, 4 Jul 2006 00:34:53 -0700 (PDT)
Rob Baldassano <[EMAIL PROTECTED]> wrote:
> I have been running OpenBSD 3.6 since the day it came out, and am now
> in need up going to 3.9
>
> The question is:
> What upgrade issues have folks run into?
> I'm running it on a DELL desktop.
>
> BTW, some
On Tue, 4 Jul 2006 15:27:17 +0800
"Edwin Eyan Moragas" <[EMAIL PROTECTED]> wrote:
> ey misc,
>
> from the fork(2) man pages:
>
> fork() causes creation of a new process. The new process (child
> process) is an exact copy of the calling process (parent process)
> except for the following:
>
>
On Tuesday 04 July 2006 16:30, FTP wrote:
> Well, actually I did exactly what's described in the "man 8 ssl" page
> (which by the way is mentioned in http://openbsd.org/faq/faq10.html#HTTPS)
> but firefox returns an error when accessing my server via https. As I
> mentioned in a previous e-mail, ly
On Mon, Jul 03, 2006 at 06:25:52PM -0400, Nick Holland wrote:
> FTP wrote:
> >On Mon, Jul 03, 2006 at 08:49:03PM +0200, Sigfred Heversen wrote:
> >>Stuart Henderson wrote:
> >>>On 2006/07/03 13:52, Nick Holland wrote:
> >>>
> (contrast this to Squirrelmail, which does (amazingly) run in a
> >>>
I have been running OpenBSD 3.6 since the day it came out, and am now in need
up going to 3.9
The question is:
What upgrade issues have folks run into?
I'm running it on a DELL desktop.
BTW, some of the reasons I want to upgrade:
1. Support for PHP in the Apache mods.
2. Increased security
3
On Mon, Jul 03, 2006 at 11:24:44PM -0400, Michael Erdely wrote:
> L. V. Lammert wrote:
> >Certificates have nothing to do with Apache, much less OpenBSD. If you
> >want a signed certificate, you must create your own CA, or purchased a
> >publically-signed cert from Verisign, Eqifax, Thawte, et al.
On 2006/07/04 16:53, Steffen Kluge wrote:
> Because the hashes in master.passwd are salted, as you come to realise
> yourself further down in your post.
Storing the old crypted passwords from master.passwd gives
you the following information when someone changes their password:
Typed new password
On Tue, 2006-07-04 at 07:15 +0200, Paul de Weerd wrote:
> | So, you are suggesting using something other than the hash stored in
> | OpenBSD's master.passwd then?
>
> Why exactly would we need another hash ?
Because the hashes in master.passwd are salted, as you come to realise
yourself further
bridging doesn't work with wireless lan.
Thomas
On Mon, 3 Jul 2006, Novak, Trevor SCIC wrote:
> I'm trying to setup a wireless bridge with openbsd on a Toshiba laptop. I'm
> using an SMC2532W-B (Prism 2.5) wireless card and a 3Com 3C574-TX. I've
> created a bridgename.bridge0 file and added wi0
ey misc,
from the fork(2) man pages:
fork() causes creation of a new process. The new process (child process)
is an exact copy of the calling process (parent process) except for the
following:
i have several questions/clarifications regarding this.
1) when it says "exact copy", does this mea
On 7/4/06, c.s.r.c.murthy <[EMAIL PROTECTED]> wrote:
Joachim Schipper wrote:
> On Mon, Jul 03, 2006 at 05:30:44PM -0700, c.s.r.c.murthy wrote:
>
>>Hi,
>>This seems to be widely discussed problem in openbsd pf. There is no
>>kernel parameter that makes the pf to block all packets by default.
Just looking through the manpages and I noticed that SSH-related
things don't seem to fit in with the system. For example, there is
ssh_config(5) instead of ssh.conf and sftp-server instead of sftpd.
Why is this? Is this a historical curiosity from the original SSH, or
does it have something to d
On Tue, Jul 04, 2006 at 12:12:22PM -0700, c.s.r.c.murthy wrote:
> Also please confirm that there is no kernel parameter to make pf
> block everything by default.
Yes, there is no kernel parameter to make pf block everything by
default. You make pf block everything by default by putting ``block
1 - 100 of 101 matches
Mail list logo
