Hi OpenBSD hackers,
At work we have a firewall on two Dell PowerEdge 2940 servers, with
10 NIC's in use, which I want to substiute in the near future.
The second machine act as cold standby.
I would like to use OpenBSD pf and carp/pfsync to make a ha firewall.
I further want to use an embedded
On Tue, 13 May 2014, Sebastian Reitenbach wrote:
> I've installed a i386 soekris box (10.0.0.27, called wormhole) from
> current snapshot, and trying to netboot a vax and a sparc, but I guess,
> they don't get to the bootparamd.
Actually, there's a trick involved and they don't *directly* do so.
On Wed 14/05, Alessandro DE LAURENZIS wrote:
> Hello,
>
> I'm trying to configure tmux on OBSD 5.5 in console (no X11).
> My laptop is a Thinkpad R61 equipped with an Intel GM965 video card, so
> I'm in KMS mode, if that matters.
>
> The problem is that when I split a windows in two or more panes
On Wed, May 14, 2014 at 07:41:47PM +0200, Denis Fondras wrote:
> > After chroot, /etc/resolv.conf is no longer available.
> >
>
> Thank you very much Ted & Vadim.
>
> > Other daemons like ntpd have a helper process that runs outside chroot
> > and does all of the DNS resolution for them.
> >
>
Denis Fondras wrote:
> Hello all,
>
> I am burning my last neurons with a behavior I can't explain. I wonder
> why getaddrinfo() fails when called after chroot() with root user.
>
>
> I have this piece of code :
>
...
> error = getaddrinfo("rpki.liopen.eu", NULL, NULL, &ai_out);
>
I can't seem to get -stable to build. It fails at exactly this spot every
time. The kernel and xorg compiles to release just fine.
...
Creating Makefile in src/main
Creating Makefile in src/modules/standard
diff -u /usr/src/usr.sbin/httpd/src/include/ap_config_auto.h
/usr/src/usr.sbin/httpd/obj/s
Hello,
I'm trying to configure tmux on OBSD 5.5 in console (no X11).
My laptop is a Thinkpad R61 equipped with an Intel GM965 video card, so
I'm in KMS mode, if that matters.
The problem is that when I split a windows in two or more panes, the
separators are "" characters, both horizontal
> After chroot, /etc/resolv.conf is no longer available.
>
Thank you very much Ted & Vadim.
> Other daemons like ntpd have a helper process that runs outside chroot
> and does all of the DNS resolution for them.
>
Ok, I'll look on this side.
Thank you,
Denis
On 2014-05-14, Marc Espie wrote:
> There's no point in providing SHA256.sig for packages.
We provide the SHA256 file to allow bulk integrity checking of the
packages. There may be little point in signing it, but signing it
also doesn't cost us anything, so why not?
--
Christian "naddy" Weisge
2014-05-14 20:57 GMT+04:00 Denis Fondras :
> Hello all,
>
> I am burning my last neurons with a behavior I can't explain. I wonder
> why getaddrinfo() fails when called after chroot() with root user.
>
>
> I have this piece of code :
>
> /*--- test.c ---*/
> #include
> #include
> #include
> #inc
Le 14/05/2014 19:14, Peter J. Philipp a écrit :
>
> I wonder if you're using the wrong function. There is gethostbyname for
> forward lookups?
>
I read it was deprecated.
Denis
On Wed, May 14, 2014 at 18:57, Denis Fondras wrote:
> Hello all,
>
> I am burning my last neurons with a behavior I can't explain. I wonder
> why getaddrinfo() fails when called after chroot() with root user.
After chroot, /etc/resolv.conf is no longer available.
> If this an expected behavior,
On 05/14/14 18:57, Denis Fondras wrote:
> Hello all,
>
> I am burning my last neurons with a behavior I can't explain. I wonder
> why getaddrinfo() fails when called after chroot() with root user.
>
>
> I have this piece of code :
>
> /*--- test.c ---*/
> #include
> #include
> #include
> #in
Hello all,
I am burning my last neurons with a behavior I can't explain. I wonder
why getaddrinfo() fails when called after chroot() with root user.
I have this piece of code :
/*--- test.c ---*/
#include
#include
#include
#include
#include
int main(int argc, char *argv[])
{
struc
On 2014-05-14 12:09, Ted Unangst wrote:
Providing a mix of signed and unsigned SHA256 files would be a
dangerous inconsistency in my mind.
As an ordinary user, I can tell the difference between a file named
"SHA256" and a file named "SHA256.sig". It's very easy when both
files are included to
On Wed, May 14, 2014 at 17:55, Marc Espie wrote:
> There's no point in providing SHA256.sig for packages. For one thing, it
> goes out of synch rather easily. For another thing, it's redundant with
> the package signatures themselves. THAT SHA256 file exists only to make it
> easier to check that a
On Wed, May 14, 2014 at 11:21:43AM -0400, Ted Unangst wrote:
> On Wed, May 14, 2014 at 12:44, Stuart Henderson wrote:
> >>> $ \time -l signify -C -p /etc/signify/openbsd-55-pkg.pub -x SHA256.sig
> > moo-1.3p1.tgz
> >>> Signature Verified
> >>> moo-1.3p1.tgz: FAIL
> >>>65.83 real31.4
On 14 May 2014 11:26, Stuart Henderson wrote:
> On 2014/05/14 11:21, Ted Unangst wrote:
>> On Wed, May 14, 2014 at 12:44, Stuart Henderson wrote:
>> >>> $ \time -l signify -C -p /etc/signify/openbsd-55-pkg.pub -x SHA256.sig
>> > moo-1.3p1.tgz
>> >>> Signature Verified
>> >>> moo-1.3p1.tgz: FAIL
>>
On 2014/05/14 11:21, Ted Unangst wrote:
> On Wed, May 14, 2014 at 12:44, Stuart Henderson wrote:
> >>> $ \time -l signify -C -p /etc/signify/openbsd-55-pkg.pub -x SHA256.sig
> > moo-1.3p1.tgz
> >>> Signature Verified
> >>> moo-1.3p1.tgz: FAIL
> >>>65.83 real31.48 user34.32 s
On Wed, May 14, 2014 at 12:44, Stuart Henderson wrote:
>>> $ \time -l signify -C -p /etc/signify/openbsd-55-pkg.pub -x SHA256.sig
> moo-1.3p1.tgz
>>> Signature Verified
>>> moo-1.3p1.tgz: FAIL
>>>65.83 real31.48 user34.32 sys
>
> This was due to malloc flags 'S' or more spe
On 2014-05-14, Stuart Henderson wrote:
> On 2014-05-14, Stuart Henderson wrote:
>> On 2014-05-14, Marc Espie wrote:
>>> On Tue, May 13, 2014 at 06:42:53PM +, Alexej wrote:
Greetings gentlemen,
Downloaded and installed install55.iso, SHA256 was verified successfuly.
On 2014-05-14, Stuart Henderson wrote:
> On 2014-05-14, Marc Espie wrote:
>> On Tue, May 13, 2014 at 06:42:53PM +, Alexej wrote:
>>> Greetings gentlemen,
>>>
>>> Downloaded and installed install55.iso, SHA256 was verified successfuly.
>>>
>>> Downloaded firefox-26.0p1.tgz from Canada (Alber
On 2014-05-14, Marc Espie wrote:
> On Tue, May 13, 2014 at 06:42:53PM +, Alexej wrote:
>> Greetings gentlemen,
>>
>> Downloaded and installed install55.iso, SHA256 was verified successfuly.
>>
>> Downloaded firefox-26.0p1.tgz from Canada (Alberta) mirror site along with
>> SHA256 files.
>>
Hello
I have in laptop many devices that I don't use. For example DVD writer. But my
greates problem is the unability to turn off under OpenBSD Nvidia GPU.
Unfortunately I have Optimus laptop, so I don't have normal, independent
hardware multiplexer. I have Intel and Nvidia GPUs, and Intel GPU i
Hi,
is it possible to have a wildcard in principals when generating
user certificate?
ssh-keygen(1) states:
ssh-keygen -s ca_key -I key_id -h -n host.domain user_key.pub
I mean something like this:
ssh-keygen -s ca_key -I key_id -h -n webapp*.domain user_key.pub
Thanks for clarification.
On Tue, May 13, 2014 at 06:42:53PM +, Alexej wrote:
> Greetings gentlemen,
>
> Downloaded and installed install55.iso, SHA256 was verified successfuly.
>
> Downloaded firefox-26.0p1.tgz from Canada (Alberta) mirror site along with
> SHA256 files.
>
> /pub/OpenBSD/5.5/packages/amd64/SHA256
>
2014-05-14 10:00 GMT+02:00 Philip Guenther :
> On Wed, May 14, 2014 at 12:31 AM, Tomek WaÅaszek
wrote:
>>
>> Yes, but you will be awoken even if you didn't poke cron via socket
>> because of the timeout, and cron will check anyway for updates.
>>
>
> 1) don't top post
> 2) your sentence isn't cl
On Wed, May 14, 2014 at 12:31 AM, Tomek WaÅaszek
wrote:
>
> Yes, but you will be awoken even if you didn't poke cron via socket
> because of the timeout, and cron will check anyway for updates.
>
1) don't top post
2) your sentence isn't clear enough for me to figure what you're claiming
would wor
On Wed, May 14, 2014 at 12:40 AM, Kevin Lyda wrote:
>
> On 14 May 2014 08:20, "Johan Beisser" wrote:
>>
>> On Tue, May 13, 2014 at 11:57 PM, Otto Moerbeek wrote:
>> >
>> > Op 14 mei 2014 om 07:48 heeft Johan Beisser het
>> > volgende geschreven:
>> >
>> > There are more reasons dynamic route en
On 14 May 2014 08:20, "Johan Beisser" wrote:
>
> On Tue, May 13, 2014 at 11:57 PM, Otto Moerbeek wrote:
> >
> > Op 14 mei 2014 om 07:48 heeft Johan Beisser het
volgende geschreven:
> >
>
> >
> > There are more reasons dynamic route entries are createf. For example
to record results of mtu path d
Hello,
Yes, but you will be awoken even if you didn't poke cron via socket because
of the timeout, and cron will check anyway for updates.
2014-05-14 6:54 GMT+02:00 Philip Guenther :
> On Sun, May 11, 2014 at 10:34 PM, Tomek WaÅaszek
wrote:
>>
>> I'm trying to understand the reason of using un
On Tue, May 13, 2014 at 11:57 PM, Otto Moerbeek wrote:
>
> Op 14 mei 2014 om 07:48 heeft Johan Beisser het volgende
> geschreven:
>
>
> There are more reasons dynamic route entries are createf. For example to
> record results of mtu path discovery.
That implies a successful TCP connection to
Op 14 mei 2014 om 07:48 heeft Johan Beisser het volgende
geschreven:
> On Tue, May 13, 2014 at 10:31 PM, Johan Ryberg wrote:
>> Yes, it's related to a SSH brute force attack.
>>
>> I have just never seen the the "client" IP in the routing table before. My
>> IP does not exist in the routing ta
33 matches
Mail list logo
