Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On 2016-10-15 02:03:54, Joel Sing wrote: > > The number of rounds specified for bcrypt_pbdkf(3) is linear, not logarithmic > (unlike bcrypt(3)). That said, the processing required for each round is > significantly higher than that of pkcs5_pbkdf2(3) (using `bioctl -r auto

Re: axen(4) usb ethernet problems

On 10/14/2016 03:35, Mark Carroll wrote: On 13 Oct 2016, Ilya Kaliman wrote: I have a "Plugable USB 3.0 ethernet adapter" with ASIX AX88179 chipset. The device is successfully recognized by axen(4) driver but behaves strangely. When I plug in the ethernet cable the ifconfig axen0 status says

Re: what all touches the carp demote counter?

On Fri, Oct 14, 2016 at 01:27:42PM -0700, Paul B. Henson wrote: > Arg, I'm still having issues with the carp demote counter. I disabled > ospfd for now, but something is still changing it. After a reboot > without ospfd, the counter is changing between 0 and 1: Ah, I tracked it down. I had

Re: what all touches the carp demote counter?

Arg, I'm still having issues with the carp demote counter. I disabled ospfd for now, but something is still changing it. After a reboot without ospfd, the counter is changing between 0 and 1: bash-4.3# ifconfig -g carp carp: carp demote count 1 bash-4.3# ifconfig -g carp carp: carp demote count

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On Fri, Oct 14, 2016 at 2:50 PM, thrph.i...@gmail.com wrote: > " The only truly secure system is one that is powered off, cast in a block of > concrete and sealed in a lead-lined room with armed guards - and even then I > have my doubts. " Powered off works surprisingly

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On Fri, 14 Oct 2016 21:20:23 +0300 Mihai Popescu wrote: > > ... > > Prepare now for posts on this thread showing that if he/she runs a > proper OS, everybody can be a security expert. > > Have fun! > or this kind... " The only truly secure system is one that is powered

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

> ... Prepare now for posts on this thread showing that if he/she runs a proper OS, everybody can be a security expert. Have fun!

Re: axen(4) usb ethernet problems

I've tried both 6.0 and current with same results. Here is a dmesg: = OpenBSD 6.0-current (GENERIC.MP) #10: Mon Oct 10 14:42:44 PDT 2016 i...@puffy.my.domain:/usr/src/sys/arch/amd64/compile/GENERIC.MP RTC BIOS diagnostic error 80 real mem = 8468033536 (8075MB) avail mem =

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On Friday 14 October 2016 18:19:21 Bryan Linton wrote: > On 2016-10-14 09:21:24, Peter Janos wrote: > > Hello, > > > > [snip] > > > > ps.: it would be nice to have a feature in the default installer to > > install > > with full disc encryption :) we still have to escape to

Re: axen(4) usb ethernet problems

On Thu, Oct 13, 2016 at 05:40:18PM -0700, Ilya Kaliman wrote: > Hi! > > I have a "Plugable USB 3.0 ethernet adapter" with ASIX AX88179 > chipset. The device is successfully recognized by axen(4) driver but > behaves strangely. When I plug in the ethernet cable the ifconfig > axen0 status says

Re: An AR9280 as an Access Point

Thanks a lot guys! Then I think I will consider it. Stefan Sperling, To use 802.11a, I will need to buy the dual-band antennae. But PC Engines advises against doing that. They prefer the regular antenna "for best gain in a specific frequency band" ref: http://www.pcengines.ch/antsmadb.htm

Re: Fwd: Booting BSD on a Libreboot system - documentation needed

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi Aaron, On 06/10/16 05:05, Aaron Mason wrote: > Holy frijole, just reading some of the responses from the some > people in GNU - I'm at the point where I'm not entirely convinced > that GNU isn't a cult, with Stallman as the high almighty leader.

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On Fri, Oct 14, 2016 at 09:21:24AM +0200, Peter Janos wrote: > Hello, > > I know some features that can give additional security isn't turned on due to > because of the bad quality of the code in ports and some also decreases > performance (or disables a feature, ex.: screenlock doesn't work if

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On 2016-10-14, Peter Janos wrote: > Make as many files immutable with "chflags schg filenamehere" as you can. This could be seen as an *in*security feature because now it's an utter pain to update software that has bugs.

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

On 2016-10-14 09:21:24, Peter Janos wrote: > Hello, > > [snip] > > ps.: it would be nice to have a feature in the default installer to install > with full disc encryption :) we still have to escape to shell during install > and ex.: > > install60.iso > (S)hell > dmesg |

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

Hi, i just want to say that those security messures you describe here don't improve the security for every user or use case. Everybody should know exactly what he is doing bevore enabling or changing them. I think if you use such security messures you better should be able to help yourself if you

Re: What are the security features in OpenBSD 6.0 that are by default disabled?

You forgot one item: Don't file bug reports to the project, because your system is too far away from what the developers use & maintain; and we cannot diagnose the failure conditions you have inadvertently created. So, if you are willing to accept that limitation -- knock yourself out. Change

Re: axen(4) usb ethernet problems

On 13 Oct 2016, Ilya Kaliman wrote: > I have a "Plugable USB 3.0 ethernet adapter" with ASIX AX88179 > chipset. The device is successfully recognized by axen(4) driver but > behaves strangely. When I plug in the ethernet cable the ifconfig > axen0 status says active and the leds start blinking.

What are the security features in OpenBSD 6.0 that are by default disabled?

Hello, I know some features that can give additional security isn't turned on due to because of the bad quality of the code in ports and some also decreases performance (or disables a feature, ex.: screenlock doesn't work if nosuid set, but if feature not used, nousid can be used). I only know