Hi list,
I wonder how one is supposed to access tables that were defined in anchors.
Lets say I have an anchor in the main ruleset named "myanchor" and inside this
anchor I put an overload rule like this:
pass in on $int_if \
keep state (max-src-conn 200, overload )
th
On 2007/04/28 01:29, Stuart Henderson wrote:
> it looks like you have W83627EHF, it seems from list posts that
> there are versions with various IDs (0x88, 0xa1, 0xc1). The 0xa1
> devices are already supported, it's possibly just a case of
ah, hang on, I just found the datasheet. there are two dif
On 2007/04/27 15:09, Sam Fourman Jr. wrote:
> I was wondering if this patch would make the wind bond device in my
> computer work.
this patch is for the watchdog timer, not the sensors;
> lm0 at isa0 port 0x290/8: unknown Winbond chip (ID 0x88)
it looks like you have W83627EHF, it seems from lis
My name is Raven and I recently visited your website innerewut.de. After
browsing around I was quite impressed with your website and would like to
add it to my links page. I am trying to add as many good websites as
possible to my site for the benefit of my users.
Some website owners do not like w
On 4/27/07, Jonathan Kent <[EMAIL PROTECTED]> wrote:
Well ignoring all the when before I would just like to say thanks for
another OpenBSD release which I have just received, early as always. I
for one will always buy the CD/T-shirt/anything else useful'ish I can
afford.
It'll go on my test ser
On Fri, Apr 27, 2007 at 02:48:45PM -0700, patrick keshishian wrote:
> Personally, I find it a slight bit disturbing that simply loading
> a firmware would cause what could be categorized as a DoS
> attack, albeit a self-induced one.
Yes the uath(4) driver has some bugs. With no documentation and
On 2007/04/27 23:02, Johan Linner wrote:
> 2 wan connections, I want the traffic from the internal lan ($lan) to go
> through the wan1 ($wan1) connection via NAT. Wan1 is not the default
> route, I use route-to, right?? How is this working together with NAT?
> And are the replies making it thro
--- Quoting Johan L on 2007/04/25 at 14:31 +0200:
> Hi,
>
> We have two internet connection with 2 different firewalls that we want
> to merge into a new single pf based firewall.
> Connection 1 (wan1) will be used for nat-ing the internal network (lan)
> to the outside world and access to a fe
On Fri, 27 Apr 2007 13:27:58 -0500
Marco Peereboom <[EMAIL PROTECTED]> wrote:
>
>
> On Fri, Apr 27, 2007 at 08:17:16PM +0200, Rico Secada wrote:
> > On Fri, 27 Apr 2007 10:30:03 -0700
> > "Ted Unangst" <[EMAIL PROTECTED]> wrote:
> >
> > > On 4/27/07, Rico Secada <[EMAIL PROTECTED]> wrote:
> > >
On 4/27/07, Niall O'Higgins <[EMAIL PROTECTED]> wrote:
On Fri, Apr 27, 2007 at 12:07:04AM -0700, patrick keshishian wrote:
>
> I downloaded the latest firmware from TRENDnet's download page [1]
> and placed, what I believe to be the firmware file (ar5523.bin)
> in /etc/firmware/uath-ar5523.
You
On Fri, 27 Apr 2007 23:38:48 +0200
Renaud Allard <[EMAIL PROTECTED]> wrote:
> Rico Secada wrote:
> > Hi
> >
> > Before I testrun this http://paradigma.pt/~gngs/sshjail/ does anyone
> > already know if this patch would work with OpenSSH on OpenBSD > 3.9?
> >
> > Best regards
> >
> > Rico
> >
>
Rico Secada wrote:
> Hi
>
> Before I testrun this http://paradigma.pt/~gngs/sshjail/ does anyone
> already know if this patch would work with OpenSSH on OpenBSD > 3.9?
>
> Best regards
>
> Rico
>
>
Honestly, you should have a look at sysjail (http://sysjail.bsd.lv)
which is probably a better
On 4/27/07, Jon Steel <[EMAIL PROTECTED]> wrote:
Thanks for the pointers. Heres the update.
And just a quick question for anybody, why do some of the macros in the
OS look like:
#define DEBUG(x) do { ... } while(0);
Is this some kind of compiler trick?
style(9) :
If the macro encapsulates
Thanks for the pointers. Heres the update.
And just a quick question for anybody, why do some of the macros in the
OS look like:
#define DEBUG(x) do { ... } while(0);
Is this some kind of compiler trick?
Thanks Again
Jonathan Steel
=
File: /sys/dev/isa/wbwdg.c
===
Hi,
I am trying to understand the differences between route-to and reply-to
in pf. Have not found any good examples in man(pf.conf) or Google.
2 wan connections, I want the traffic from the internal lan ($lan) to go
through the wan1 ($wan1) connection via NAT. Wan1 is not the default
route,
On Fri, Apr 27, 2007 at 12:07:04AM -0700, patrick keshishian wrote:
>
> I downloaded the latest firmware from TRENDnet's download page [1]
> and placed, what I believe to be the firmware file (ar5523.bin)
> in /etc/firmware/uath-ar5523.
You are making this much harder for yourself than it needs
I don't know if it is a good idea or not, but I read about
this patch yesterday and at first, I was pretty excited. I
have been handed the requirement to move an FTP server to
"something" more secure. All the other requirements that
have been given to me for this have very strongly pointed
right
On Fri, 27 Apr 2007 15:14:32 -0500
Marco Peereboom <[EMAIL PROTECTED]> wrote:
> On Fri, Apr 27, 2007 at 09:08:31PM +0200, Rico Secada wrote:
> > On Fri, 27 Apr 2007 13:27:58 -0500
> > Marco Peereboom <[EMAIL PROTECTED]> wrote:
> >
> > >
> > >
> > > On Fri, Apr 27, 2007 at 08:17:16PM +0200, Rico
hello,
I was wondering if this patch would make the wind bond device in my
computer work.
here is a dmesg from a month old -current install
OpenBSD 4.1-current (GENERIC.MP) #1238: Wed Mar 21 17:32:34 MDT 2007
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Pentium(R)
Well ignoring all the when before I would just like to say thanks for
another OpenBSD release which I have just received, early as always. I
for one will always buy the CD/T-shirt/anything else useful'ish I can
afford.
It'll go on my test server this weekend.
thanks again,
Jon
On Mon, 2007-04-
On Fri, 27 Apr 2007 15:15:02 -0400
"stuart van Zee" <[EMAIL PROTECTED]> wrote:
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
> > Marco Peereboom
> > Sent: Friday, April 27, 2007 2:28 PM
> > To: Rico Secada
> > Cc: misc@openbsd.org
> > Subject: Re: S
On Fri, 27 Apr 2007 13:27:58 -0500
Marco Peereboom <[EMAIL PROTECTED]> wrote:
>
>
> On Fri, Apr 27, 2007 at 08:17:16PM +0200, Rico Secada wrote:
> > On Fri, 27 Apr 2007 10:30:03 -0700
> > "Ted Unangst" <[EMAIL PROTECTED]> wrote:
> >
> > > On 4/27/07, Rico Secada <[EMAIL PROTECTED]> wrote:
> > >
On Sat, 28 Apr 2007 02:44:03 +0800
"Jeffrey 'jf' Lim" <[EMAIL PROTECTED]> wrote:
Hi Jeffrey
> On 4/28/07, Rico Secada <[EMAIL PROTECTED]> wrote:
> > On Fri, 27 Apr 2007 10:30:03 -0700
> > "Ted Unangst" <[EMAIL PROTECTED]> wrote:
> >
> > >
> > > why are you asking this list about somebody else's p
On Fri, 27 Apr 2007 14:54:44 -0400
"STeve Andre'" <[EMAIL PROTECTED]> wrote:
> On Friday 27 April 2007 14:41:14 Steven Harms wrote:
> > That is the most ignorant statement I have ever seen.
> >
> > I guess we can assume there will be no future versions
> > of openssh because openssh developers hav
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
> Marco Peereboom
> Sent: Friday, April 27, 2007 2:28 PM
> To: Rico Secada
> Cc: misc@openbsd.org
> Subject: Re: SSHJail patch for OpenBSD
>
>
> On Fri, Apr 27, 2007 at 08:17:16PM +0200, Rico Secada wrote:
On Friday 27 April 2007 14:41:14 Steven Harms wrote:
> That is the most ignorant statement I have ever seen.
>
> I guess we can assume there will be no future versions
> of openssh because openssh developers have already
> thought of everything.
>
> Good luck with that attitude.
It is not ignoranc
On Fri, 27 Apr 2007 14:41:14 -0400
"Steven Harms" <[EMAIL PROTECTED]> wrote:
> That is the most ignorant statement I have ever seen.
You misunderstand.
> I guess we can assume there will be no future versions
> of openssh because openssh developers have already
> thought of everything.
>
> Good
On 4/28/07, Rico Secada <[EMAIL PROTECTED]> wrote:
On Fri, 27 Apr 2007 10:30:03 -0700
"Ted Unangst" <[EMAIL PROTECTED]> wrote:
>
> why are you asking this list about somebody else's patch?
Because I was looking for people using OpenBSD who might have issues with
this patch.
Nobody will have
That is the most ignorant statement I have ever seen.
I guess we can assume there will be no future versions
of openssh because openssh developers have already
thought of everything.
Good luck with that attitude.
On 4/27/07, Marco Peereboom <[EMAIL PROTECTED]> wrote:
>
> On Fri, Apr 27, 2007 at
On Fri, Apr 27, 2007 at 08:17:16PM +0200, Rico Secada wrote:
> On Fri, 27 Apr 2007 10:30:03 -0700
> "Ted Unangst" <[EMAIL PROTECTED]> wrote:
>
> > On 4/27/07, Rico Secada <[EMAIL PROTECTED]> wrote:
> > > On Thu, 26 Apr 2007 22:34:52 -0500
> > > Marco Peereboom <[EMAIL PROTECTED]> wrote:
> > >
> >
On Fri, 27 Apr 2007 10:30:03 -0700
"Ted Unangst" <[EMAIL PROTECTED]> wrote:
> On 4/27/07, Rico Secada <[EMAIL PROTECTED]> wrote:
> > On Thu, 26 Apr 2007 22:34:52 -0500
> > Marco Peereboom <[EMAIL PROTECTED]> wrote:
> >
> > > What's the point again?
> >
> > What part didn't you understand?
>
> why
I have had this problem before where two systems each claim to be
master on only one of the shared subnets. My problem was one system had
an alias on the carp iface that the other did not. Do an ifconfig of
the physical ifaces and the carp iface on each box, so it shows all the
configured al
On 4/26/07, Rico Secada <[EMAIL PROTECTED]> wrote:
Hi
Before I testrun this http://paradigma.pt/~gngs/sshjail/ does anyone
already know if this patch would work with OpenSSH on OpenBSD > 3.9?
Instead of asking, try the patch.
On 4/27/07, Rico Secada <[EMAIL PROTECTED]> wrote:
On Thu, 26 Apr 2007 22:34:52 -0500
Marco Peereboom <[EMAIL PROTECTED]> wrote:
> What's the point again?
What part didn't you understand?
why are you asking this list about somebody else's patch? ask the
somebody else if their patch works.
On 2007/04/27 12:30, Jon Steel wrote:
> I have created a driver for the watchdog on the W83627HF. It would be
> very easy to support other Winbond watchdogs with this driver but I
> didnt bother to because I dont have access to any other chips. I have
> tested it on both the SuperMicro 5013G-M and
Hi
I have created a driver for the watchdog on the W83627HF. It would be
very easy to support other Winbond watchdogs with this driver but I
didnt bother to because I dont have access to any other chips. I have
tested it on both the SuperMicro 5013G-M and 5015M-MT, and with OpenBSD
3.6, 4.0, and 4
Hannah Schroeter pisze:
Hello!
I've tried to setup an IPSEC client connection. However, I see that it
doesn't work because the X509 certificate I've been given by my CA has no
subjAltName extension. And I'm not sure whether I'll be able to get them
to add one for me.
So, is there any reason why
Hello!
I've tried to setup an IPSEC client connection. However, I see that it
doesn't work because the X509 certificate I've been given by my CA has no
subjAltName extension. And I'm not sure whether I'll be able to get them
to add one for me.
So, is there any reason why one can't bring ipsecctl/
On Fri, 27 Apr 2007 08:57:16 +0200
holger glaess <[EMAIL PROTECTED]> wrote:
> hi
>
> i try to setup the hoststated daemon but it fail to start.
> i would to like setup an simple loadbalancer for http with 2 host.
> i add also rdr-anchor "hoststated/*" to my pf.conf after the rdr
> rules.
>
> tha
On 4/27/07, Tobias Weisserth <[EMAIL PROTECTED]> wrote:
Hi,
On Apr 27, 2007, at 1:38 PM, Jeffrey 'jf' Lim wrote:
> On 4/27/07, Chris Lawson <[EMAIL PROTECTED]> wrote:
>> Read the web page, it explains the reasoning right at the top. If
>> you
>> are instead being disingenuous (yes yes, I know
Hi,
On Apr 27, 2007, at 1:38 PM, Jeffrey 'jf' Lim wrote:
On 4/27/07, Chris Lawson <[EMAIL PROTECTED]> wrote:
Read the web page, it explains the reasoning right at the top. If
you
are instead being disingenuous (yes yes, I know you are) perhaps you
could explain to us why you think this isn'
On 4/27/07, Chris Lawson <[EMAIL PROTECTED]> wrote:
Read the web page, it explains the reasoning right at the top. If you
are instead being disingenuous (yes yes, I know you are) perhaps you
could explain to us why you think this isn't a good idea.
i wouldnt propose to speak for Marco (or any
On Thursday 26 April 2007 02:45, Mark Shroyer wrote:
> These settings make 90% of my fonts look amazing. However, in
> certain fonts -- especially Georgia and Bitstream Vera Serif --
> glyphs' diagonal lines now appear "blotchy". Here's an example
> of Georgia at 14pt in Firefox:
>
> http://markshr
Hi,
The Ubuntu machine is connected to the Internet using a OpenBSD packet
filter and I was connecting to a OpenBSD server in some other office. The
problem was inside the OpenBSD router, not in the Ubuntu machine or the
OpenBSD server I wanted to connect to.
The same day I upgraded to Ubuntu 7.0
Thank you everybody for your valuable answers.
Could you give me some pointers on how to use "the
redirected console via iLO (ESC+Q)". HP documentation is
a mess. All they want is to sell me a license for some
Windoze application for remote management.
Do I need a license for LO 100i something?
A
On Tue, 24 Apr 2007, Stuart Henderson wrote:
> > On Tue, Apr 24, 2007 at 03:42:17PM +0200, Joaquin Herrero wrote:
> > > Hi, it seems that the new Ubuntu Feisty 7.04 has some broken things in
> > > ssh.
>
> looks like they started sending a higher wscale in SYNs.
> add 'flags S/SA' before any 'ke
On Thu, 26 Apr 2007 22:34:52 -0500
Marco Peereboom <[EMAIL PROTECTED]> wrote:
> What's the point again?
What part didn't you understand?
> On Fri, Apr 27, 2007 at 03:13:12AM +0200, Rico Secada wrote:
> > Hi
> >
> > Before I testrun this http://paradigma.pt/~gngs/sshjail/ does anyone
> > alread
Read the web page, it explains the reasoning right at the top. If you
are instead being disingenuous (yes yes, I know you are) perhaps you
could explain to us why you think this isn't a good idea.
On 4/26/07, Marco Peereboom <[EMAIL PROTECTED]> wrote:
What's the point again?
On Fri, Apr 27, 20
Hi OpenBSDers!
We have two 4.0 box that we are planning to use as a HA firewall.
While setting it up, we encounter a problem where the interface
doesn't know how to go into a backup state and stayed as master.
Both boxes have the same hardware, connected to the same subnet.
When doing a tcpdump o
hi
i try to setup the hoststated daemon but it fail to start.
i would to like setup an simple loadbalancer for http with 2 host.
i add also rdr-anchor "hoststated/*" to my pf.conf after the rdr rules.
thanks for your help
holger
here my config
#
# Macros
#
public_ip="10.10.223.100"
www1="10.
Greetings,
I'm not sure whether this belongs to misc@ or tech@, so I'm posting
it first in [EMAIL PROTECTED]
I have this TRENDnet TEW-444UB/A wireless USB adaptor lying around
and I was hoping to use it with one of my laptops (using -current).
I downloaded the latest firmware from TRENDnet's do
51 matches
Mail list logo