Re: Sorry: Facebook again

On Oct 22 02:19:00, stefan.wol...@web.de wrote: > $ cat /etc/resolv.conf > # Generated by nfe0 dhclient > nameserver 192.168.1.1 > lookup file bind > > $ cat /etc/hosts | grep facebook > 127.0.0.1 facebook.com > 127.0.0.1 www.facebook.com > 127.0.0.1 facebook.de > 127.0.0.1 www.fac

fold.c -number syntax integer overflow

Hello list! While looking at the code of usr.bin/fold i noticed that the way it parses arguments for the (obsolete) -number syntax suffers from an it loops over each digit in a -x stream of numbers from right to left and sets a counter = (counter * 10) + (x - '0'). Then it checks for counter >

Re: Sorry: Facebook again

Chris Cappuccio [ch...@nmedia.net] wrote: > > Anyways this also triggers a bug in the URL filtering mode of > relayd. The symptom is long HTTP sessions hanging (Youtube, file > downloads, ...) It may be fixed in -current. If you are using 5.3 or > 5.4, you'll want to grab the current relayd source

Re: Sorry: Facebook again

James Shupe [jsh...@hermetek.com] wrote: > On 10/21/2013 9:08 PM, Chris Cappuccio wrote: > > I wrote up a guide for all you fascists to exercise your power with > > relayd. > > > > Here's the early, unedited version: > > > > http://www.nmedia.net/chris/url.blacklist.txt > > > > FYI: 403 forbidd

Re: 5.4 pre-order announcement?

lulz... sound of music? do { to loop at least one time regex, to match a chunk of text main(), the name, by which i'm called for(), another kind of loop sem, a way to block a thread log(), a func to follow sem t, a place to store the time } while (we close the block of do) /* clever. thanks for al

Re: Sorry: Facebook again

Thanks, very usefull =) Saludos.- Leonardo Santagostini 2013/10/21 Chris Cappuccio > I wrote up a guide for all you fascists to exercise your power with relayd. > > Here's the early, unedited version: > > http://www.nmedia.net/chris/url.blacklist.tx

Re: Sorry: Facebook again

On 10/21/2013 9:08 PM, Chris Cappuccio wrote: > I wrote up a guide for all you fascists to exercise your power with > relayd. > > Here's the early, unedited version: > > http://www.nmedia.net/chris/url.blacklist.txt > FYI: 403 forbidden -- James Shupe

Re: Sorry: Facebook again

I wrote up a guide for all you fascists to exercise your power with relayd. Here's the early, unedited version: http://www.nmedia.net/chris/url.blacklist.txt Stefan Wollny [stefan.wol...@web.de] wrote: > Hi there! > > In the last days I had an interesting and educational thread here on > misc@

Re: Sorry: Facebook again

On Tue, Oct 22, 2013 at 02:19:00AM +0200, Stefan Wollny wrote: > Hi there! > > In the last days I had an interesting and educational thread here on > misc@ on how to block facebook.com. > > Knowing that many of the OpenBSD-pros on this list are way more > educated on network-related issues than I

Re: Lanner or Soekris?

Ok, Ok, fair enough. Go for it. With a managed switch though you could do all of that with one phy and vlans. On Mon, Oct 21, 2013 at 5:14 PM, emigrant wrote: > min. 3xNICs: wan, lan, pfsync. Hmm 6xNIC == WAN 2x aggregation > ports+failover+lacp, LAN 2x aggregation ports+failover+lacp and pf

Re: Lanner or Soekris?

I have often use Lanner FW-7535 with OpenBSD and like them a lot. Buy them from LEI Technologie in Canada for 375$. Lanner product are good stuff, really professionnal. I also Lanner product for customer PBX, unifi controler, etc. 2013/10/21 emigrant > min. 3xNICs: wan, lan, pfsync. Hmm 6xNIC

Sorry: Facebook again

Hi there! In the last days I had an interesting and educational thread here on misc@ on how to block facebook.com. Knowing that many of the OpenBSD-pros on this list are way more educated on network-related issues than I am, I hope none feels offended with another question related to Facebook: T

Re: Lanner or Soekris?

min. 3xNICs: wan, lan, pfsync. Hmm 6xNIC == WAN 2x aggregation ports+failover+lacp, LAN 2x aggregation ports+failover+lacp and pfsync 1port = 5port use. You know, everything 4fun, btw i have 24G managed switch. Supermicro? no way! :), ugly, audio, video,vga,hdmi, dp. No, no, no ;) On 22 paź 2

Re: Lanner or Soekris?

On Mon, Oct 21, 2013 at 4:06 PM, emigrant wrote: > Hi > > I need to replace my crappy, old machine(Master) Futro S400( > http://uk.ts.fujitsu.com/rl/servicesupport/techsupport/professionalpc/thinclients/futrosxx/futros400.htm > http://cl.ly/image/3C0Z363q0M1O http://cl.ly/image/311f3U260R37 ) fo

Lanner or Soekris?

Hi I need to replace my crappy, old machine(Master) Futro S400( http://uk.ts.fujitsu.com/rl/servicesupport/techsupport/professionalpc/thinclients/futrosxx/futros400.htm http://cl.ly/image/3C0Z363q0M1O http://cl.ly/image/311f3U260R37 ) for something new. My Backup machine is Alix 2D3( http://cl

Re: Best OpenBSD cloud hosting?

On 10/08/13 21:16, openda...@hushmail.com wrote: Hi, Can anyone recommend a decent OpenBSD cloud hosting provider? Digital Ocean looks nice but they don't yet offer OpenBSD (https://digitalocean.uservoice.com/forums/136585-digital-ocean/suggestions/3232571-support-bsd-os-). There's ARP Networ

Re: Best OpenBSD cloud hosting?

On Mon, Oct 21, 2013 at 09:29:41PM +0200, Loïc BLOT wrote: > Hi Antoine. > I also have a hang problem when i use a cold stop on libvirt. No problem > on VMWare ESX when i click on the "shutdown button". > > On libvirt, when i click on this button the VM hang and then i need to > kill the VM. > >

Re: Best OpenBSD cloud hosting?

Hi Antoine. I also have a hang problem when i use a cold stop on libvirt. No problem on VMWare ESX when i click on the "shutdown button". On libvirt, when i click on this button the VM hang and then i need to kill the VM. (Archlinux kernel 3.11, but the problem was also present before. OpenBSD 5.

Re: Blocking facebook.com: PF or squid?

Hi Sico! Hi list! >[stuff deleted for brevity] > >>> I am in a similar situation (squid at home) and I simply have a >>> blacklist with lines like these: >>> >>> doubleclick >>> facebook >>> scorecardresearch >>> >>> Works like a charm for me, and no need to look up IP address blocks >>> or anythi

Re: Best OpenBSD cloud hosting?

On Mon, Oct 21, 2013 at 05:57:32AM -0400, Jiri B wrote: > please put info about your testing public. I suppose more people would > be interested. I certainly will. I will write everything I find up in an article. Thank you. Bryan

Re: why icmp timestamping is enabled by default ?

> On Oct 21, 2013, at 2:57, Henning Brauer wrote: > > * Илья Шипицин [2013-10-11 04:52]: >> I was just curious why that timestamping is enabled by default. > > 'cause there is no reason to disable it. > > why is tcp enabled by default? > Everyone knows that TCP, like IP, and the Internet is

Re: altq on multiple interfaces

On Mon 21 Oct 2013 10:45:41 BST, Henning Brauer wrote: * Andy [2013-10-09 17:14]: After-all the packets egress the physical underlying interface so I wonder if its possible to 'queue' on the physical interface 'on emX' for example underneath the 802.1Q tagging, such that all the traffic for all

Re: Adding rules to pf anchors from the commandline fails

* Gregor Best [2013-10-15 15:08]: > I've upgraded to my laptop to a fresh snapshots a few minutes ago. I > noticed that the way I previously changed pf anchor content from the > command line does not work any more. pfctl fails with a > > pfctl: pfctl_get_ticket: assertion failed my fault,

Re: why icmp timestamping is enabled by default ?

On Mon, Oct 21, 2013 at 11:57:42AM +0200, Henning Brauer wrote: > * ?? [2013-10-11 04:52]: > > I was just curious why that timestamping is enabled by default. > > 'cause there is no reason to disable it. > > why is tcp enabled by default? > Because it is used to download p

newfs_msdos(8) creates faulty filesystems

While harmless it seesm pointless to create a filesystem that generates warnings when fsck'd. So check for -1 (an allowed value) in FSFree and FSNext fields, and set FSNext to -1 in newfs_msdos, rather than setting it to a value sure to be not a free cluster. Anybody know of reasons to not do thi

Re: Best OpenBSD cloud hosting?

On Sun, Oct 20, 2013 at 03:04:37PM -0700, Bryan Vyhmeister wrote: > On Sun, Oct 20, 2013 at 11:13:51PM +0200, Antoine Jacoutot wrote: > > I am often unable to properly shutdown OpenBSD VMs, disks hang. Using > > virtio or not does not change that. I did not look into it very > > deeply yet so ...

Re: why icmp timestamping is enabled by default ?

* Илья Шипицин [2013-10-11 04:52]: > I was just curious why that timestamping is enabled by default. 'cause there is no reason to disable it. why is tcp enabled by default? -- Henning Brauer, h...@bsws.de, henn...@openbsd.org BS Web Services GmbH, http://bsws.de, Full-Service ISP Secure Hostin

Re: why icmp timestamping is enabled by default ?

> > I am about to switch icmp timestamps off (security people are afraid > > of that setting) > > your "security people" have no clue regarding security. > > they probably also block icmp, since it's so dangerous. icmp is only dangerous if you have ip traffic. dangerous ip traffic. indeed, mayb

Re: why icmp timestamping is enabled by default ?

* Илья Шипицин [2013-10-10 13:31]: > I am about to switch icmp timestamps off (security people are afraid > of that setting) your "security people" have no clue regarding security. they probably also block icmp, since it's so dangerous. -- Henning Brauer, h...@bsws.de, henn...@openbsd.org BS W

Re: altq on multiple interfaces

* Andy [2013-10-09 17:14]: > After-all the packets egress the physical underlying interface so I > wonder if its possible to 'queue' on the physical interface 'on emX' > for example underneath the 802.1Q tagging, such that all the traffic > for all VLANs on top of that phys interface would go thro

Re: system seems deadlock

On Sat, Oct 19, 2013 at 05:54:22PM +0200, Sébastien Marie wrote: > Hi, > > I fall in a system problem using tmux: the system (OpenBSD -current > on i386) freeze (but no panic). > The freeze seems to be a dead-lock, and tmux expose it. ddb> ps PID PPID PGRPUID S FLAGS WAIT