Hi,
4.2.2014 16:20, Tobias Ulmer wrote:
On Tue, Feb 04, 2014 at 04:36:22AM -0500, Mayuresh Kathe wrote:
>> hello.adb gnatbind -x hello.ali gnatlink hello.ali
>>
/usr/local/lib/gcc/x86_64-unknown-openbsd5.4/4.6.4/adalib/libgnat.a(adaint.o)(.text+0x3f3):
>> In function `__gnat_os_filename':
>>
I got some feedback from rpe@, which relied heavily on grep and sed and
removed $ifscandir.
The reason I build this patch the way it is is because, according to
line 27 of the original script we can't rely on /usr yet, so no grep and
sed.
Furthermore, if the $ifscandir isn't used every interface is
On Feb 1, 2014, at 2:37 PM, Adam wrote:
> Any suggestions for the cheapest possible firewall (that is new hardware not
> re-purposing some old stuff)? All I need is 2 ethernet interfaces and for it
> to run openbsd.
>
I like the Mac Mini Core Duo for firewalls. They have one GB NIC so I usu
On 02/04/2014 05:48 PM, Mayuresh Kathe wrote:
i am running 5.4 and have installed erlang using pkg_add.
works well, just can't access the man pages.
have added the following line to /etc/man.conf
erlang/usr/local/lib/erlang/man/
am sure about either having done something wrong or missed a
i am running 5.4 and have installed erlang using pkg_add.
works well, just can't access the man pages.
have added the following line to /etc/man.conf
erlang/usr/local/lib/erlang/man/
am sure about either having done something wrong or missed a step somewhere.
can i be helped?
thanks.
On Tue, Feb 04, 2014 at 09:50:17AM +0100, Gilles Chehade wrote:
> On Tue, Feb 04, 2014 at 12:37:14AM +0100, Alexander Hall wrote:
> > On 02/04/14 00:27, Simon Drewitz wrote:
> > >Hi misc@,
> > >
> > >I have set up mail(1) so that it forwards mails such as the output of
> > >/etc/daily to my mail ac
On 02/04/14 22:27, Ted Unangst wrote:
On Tue, Feb 04, 2014 at 22:14, Martijn van Duren wrote:
+ # Test if we already configured the interface
+ test -f /tmp/$if.scan && return
+ touch /tmp/$if.scan
this absolutely needs to use mktemp. It may be easier to use
mktemp -d and th
On Tue, Feb 04, 2014 at 22:14, Martijn van Duren wrote:
> + # Test if we already configured the interface
> + test -f /tmp/$if.scan && return
> + touch /tmp/$if.scan
this absolutely needs to use mktemp. It may be easier to use
mktemp -d and then put your files inside.
Hello misc,
I got a bit tired of manually revolving my hostname.if when walking
about with my laptop. To resolve this issue I've written the following
patch.
It hasn't been heavily field tested, but it works for me.
What it does is it looks if the interface can do a scan command. If it
retu
An Alix fanless low power dual nic system with case and power supply goes
for $120ish. Has slots for 2 mini pci wireless cards. Add an antenna and
pigtail for another $15 or so, or use a USB wifi card. Anything more
expensive is going to be a Soekris.
I would only buy a mini-pci PC board if I h
On Tue, Feb 04, 2014 at 05:57:21PM -0200, Giancarlo Razzolini wrote:
> Em 04-02-2014 17:37, Daniel Cegie??ka escreveu:
> > I agree with the fact that we have no solution to this problem, and
> > probably will not find it quickly (or ever). I do not want to shout
> > that now we have to do something
Block of spruce with 2 rj45 ports.
Its new and will stop all unwanted traffic, you can put OpenBSD right on
top of it.
Low power, easy to maintain.
Theophile Envt wrote:
Gigabyte GA-C1037UN-EU motherboard ? 2 Lan fanless...
2014-02-01 Adam :
Any suggestions for the cheapest possible
Em 04-02-2014 17:37, Daniel Cegiełka escreveu:
> I agree with the fact that we have no solution to this problem, and
> probably will not find it quickly (or ever). I do not want to shout
> that now we have to do something. I want to make people aware that
> even with signify still need to keep limi
Gigabyte GA-C1037UN-EU motherboard ? 2 Lan fanless...
2014-02-01 Adam :
> Any suggestions for the cheapest possible firewall (that is new hardware
> not re-purposing some old stuff)? All I need is 2 ethernet interfaces and
> for it to run openbsd.
I agree with the fact that we have no solution to this problem, and
probably will not find it quickly (or ever). I do not want to shout
that now we have to do something. I want to make people aware that
even with signify still need to keep limited trust.
best,
Daniel
Em 04-02-2014 17:11, Daniel Cegiełka escreveu:
> 2014-02-04 Marc Espie :
>
> wow!? really? And how can I be sure that the public key that I
> downloaded is exactly the same public key, which is stored on OpenBSD
> servers (MITM)? signify is a step in the right direction but does not
> fix anything.
On Tue, Feb 04, 2014 at 08:11:28PM +0100, Daniel Cegie?ka wrote:
> 2014-02-04 Marc Espie :
>
> > signify(1) makes things more transparent: no chain of trust, pure keys.
> >
> > One cool thing is that the signatures are small enough that they can be
> > embedded directly in the package (which alrea
Em 04-02-2014 17:23, Marc Espie escreveu:
> Like the chinese curse goes "may you live in interesting times". I'd
> try to convince them to switch to FOO-BSD, so that they go annoy the
> developers of FOO. (unless their attempts at stupidity are madly
> entertaining, in which case those crackpots^Wp
On Tue, Feb 04, 2014 at 04:11:15PM -0200, Giancarlo Razzolini wrote:
> Em 04-02-2014 15:04, Marc Espie escreveu:
> > That's the motto "secure by default". Does also mean "try to make sure
> > things are reasonable by default, and that people will naturally do
> > not stupid things". (e.g., https is
On 02/04/2014 01:11 PM, Daniel Cegiełka wrote:
2014-02-04 Marc Espie :
signify(1) makes things more transparent: no chain of trust, pure keys.
One cool thing is that the signatures are small enough that they can be
embedded directly in the package (which already has sha256 for
everything).
T
2014-02-04 Marc Espie :
> signify(1) makes things more transparent: no chain of trust, pure keys.
>
> One cool thing is that the signatures are small enough that they can be
> embedded directly in the package (which already has sha256 for everything).
>
> This has the advantage of decentralization
Em 04-02-2014 15:04, Marc Espie escreveu:
> That's the motto "secure by default". Does also mean "try to make sure
> things are reasonable by default, and that people will naturally do
> not stupid things". (e.g., https is not reasonable. By default, you
> get to trust a metric shitload of authorit
oh something bad with styling really, sorry.
bellow the full post (attempt to good spacing)
Im widely using l3vpn with obsd including native bgpd for vpnv4 SAFI and
rdomains far from obsd 4.8, so it is about 3 years.
And im crying still... :)
note: i am not using ldpd yet,
On Tue, Feb 04, 2014 at 02:38:11PM -0200, Giancarlo Razzolini wrote:
> Em 04-02-2014 14:25, Marc Espie escreveu:
> > making sure the users don't do anything stupid is the right part.
>
> As it has always been. People do stupid things. Even when they're not
> expected to. People who cares about si
On Tue, Feb 04, 2014 at 05:40:38PM +0100, Kim Twain wrote:
>
>Thanks. I tried 5.5 on my laptop and as I said, it works, even better
>than freebsd 10, despite being a beta. I will switch to openbsd with
>the release. The only other problem is that I have external/ultrabay
>hdds that
Thanks. I tried 5.5 on my laptop and as I said, it works, even better than
freebsd 10, despite being a beta. I will switch to openbsd with the
release. The only other problem is that I have external/ultrabay hdds that
use lvm2, and I'll have to migrate the data, I think.
Anyway, while it's fine to
Em 04-02-2014 14:25, Marc Espie escreveu:
> making sure the users don't do anything stupid is the right part.
As it has always been. People do stupid things. Even when they're not
expected to. People who cares about signed packages will go on further
to verify things. If you care, do your homewor
On 4 February 2014 11:25, Marc Espie wrote:
> 2014-02-04 Kim Twain :
>> Does pkg_add automatically check these signatures, or, as of now, I'd need
>> to manually download the packages, verify them with signify and then install
>> them locally with pkg_add?
>
> In -current, if you don't use any fla
2014-02-04 Kim Twain :
> Does pkg_add automatically check these signatures, or, as of now, I'd need
> to manually download the packages, verify them with signify and then install
> them locally with pkg_add?
In -current, if you don't use any flags to pkg_add, and you don't see any
message at the e
2014-02-04 Otto Moerbeek :
> On Tue, Feb 04, 2014 at 03:41:09PM +0100, Daniel Cegie?ka wrote:
>
> I believe that in -current, the pubkey comes from /etc/signify.
>
> -Otto
yes, but man pkg_sign:
-s signify|x509 [-s cert] -s privkey
Specify signature parameters for signe
2014-02-04 Kim Twain :
> Does pkg_add automatically check these signatures, or, as of now, I'd need
> to manually download the packages, verify them with signify and then install
> them locally with pkg_add?
from man pkg:
If a package is digitally signed:
o pkg_add checks that its packing
On Tue, Feb 04, 2014 at 03:41:09PM +0100, Daniel Cegie?ka wrote:
> 2014-02-04 Kim Twain :
> > Does pkg_add automatically check these signatures, or, as of now, I'd need
> > to manually download the packages, verify them with signify and then install
> > them locally with pkg_add?
>
> from man pkg
On Tue, Feb 04, 2014 at 04:36:22AM -0500, Mayuresh Kathe wrote:
> hello,
>
> i was fiddling around with ada95 under openbsd 5.4 using gnat-4.6.
>
> i created a sample program as below.
>
> with Ada.Text_IO;
> use Ada.Text_IO;
>
> procedure Hello is
> -- no variables required
> begin
On Tue, Feb 04, 2014 at 02:31:37PM +0400, def wrote:
> [...]
> 6. has two peers with different ASthere is filter on second peer that
> deny large portion of prefixesthe case:at initial state just after both
> sessions are UP i have full table from peer2 ~110k prefixesreal prefix number
> after filt
one more
6. has two peers with different ASthere is filter on second peer that
deny large portion of prefixesthe case:at initial state just after both
sessions are UP i have full table from peer2 ~110k prefixesreal prefix number
after filter applied ~ 23khow i see the peer with bgpctl
40 mins # bg
Kim Twain wrote:
> Well, I can fetch the ports tree in a secure way, verify its integrity
> and origin,
You can? How?
--
Christian "naddy" Weisgerber na...@mips.inka.de
Signing of base and package tarballs has been implemented in current,
and will be included in the next release.
-Otto
On Tue, Feb 04, 2014 at 02:00:35PM +0100, Kim Twain wrote:
> Hi. I'm seeing, in this mailing list, much talk about the datagate and
> related matters, and I can see why
Hi. I'm seeing, in this mailing list, much talk about the datagate and
related matters, and I can see why the topic may be of interest to
many OpenBSD users.
Anyway, I really like OpenBSD, but I always restrain myself from using
it on a desktop machine for a single reason: while pkg_add supports
s
hello,
i was fiddling around with ada95 under openbsd 5.4 using gnat-4.6.
i created a sample program as below.
with Ada.Text_IO;
use Ada.Text_IO;
procedure Hello is
-- no variables required
begin
Put_Line ("Hello, world!");
end Hello;
the code compiled (not cleanly) a
Im widely using l3vpn with obsd including native bgpd for vpnv4 SAFI and
rdomains far from obsd 4.8, so it is about 3 years.And im crying still... :)
note: i am not using ldpd yet, i prefered bgp vpnv4 for labels.
First, tnx to
claudio with 5.2, vpnv4 RD is no longer compared while prefix import t
On Tue, Feb 04, 2014 at 12:37:14AM +0100, Alexander Hall wrote:
> On 02/04/14 00:27, Simon Drewitz wrote:
> >Hi misc@,
> >
> >I have set up mail(1) so that it forwards mails such as the output of
> >/etc/daily to my mail account and now I want to encrypt these mails
> >using my public gpg-key. The
41 matches
Mail list logo
