In the following command, is "Packets" the number of dropped packets
after 5,435,315 evaluations of that block rule?
If so, is "Bytes" the total size of those 16,303 dropped packets?
And is "States" zero because it is a block rule, thus no state created?
# pfctl -s rules -vR11
block drop in log
This is how I got suspend and hibernate working again on my Huawei
Matebook after upgrading to 7.0 release. I thought I'd share here in
case it helps someone else.
SYNOPSIS:
Initiating a "sleep" state blanks the screen and illuminates the
keyboard (indicating sleep is immenent); but the laptop
Does anyone know if it's possible to rotate/alternate between two
files for the same given request path, using just httpd?
For example, I want to split test two pages: /test/A & /test/B. I would
like to serve half of the traffic to each for the request path /test/.
Ideally, I would like to do an
I received the following output from security(8):
Running security(8):
Can't
opendir(/home/pachl/.cache/mozilla/seamonkey/e8cxa4g0.default/safebrowsing-backup):
No such file or directory at /usr/libexec/security line 594.
I didn't realize security parses through user files; beyond a few dot
Can someone explain how the spammer at 81.7.16.33 got white listed by
spamd and delivered 3 spam emails to me? What exactly triggered the
white listing?
I may not understand spamd's behavior, but according to the spamd log
below, the spammer attempted only 5 deliveries via spamd, each with a
Devin Reade wrote on 12/19/16 12:59:
You might also want to look at bgp-spamd.
Yes, this was on my radar for quite some time. However, my simple spamd
setup with assistance from the zen.spamhaus.org DNSBL has been extremely
effective. It's nice to know we've got more big guns if needed.
Some have requested my scripts and configurations so here it is. Below
you fill find the spamd-dnsbl and spamclusterd scripts that are used for
blacklisting spammers and whitelisting networks, respectively. Also
included is dnsbl-check which I use for testing IPs against multiple DNSBLs.
In
I would like to share my 45-day experience with running spamd and my
observations and how I'm allowing mail from SMTP clusters to bypass
spamd. Feedback and discussion would be greatly appreciated.
I have two domains that I have been using for my businesses: one is 13
years old and the other
Clément 'wxcafé' Hertling wrote on 12/03/16 07:29:
Hey,
So each time I install an OpenBSD system I have to both answer no as to whether
I want to run X on the system, and then deselect the X* sets.
It's not a big thing, but I thought it couldn't be that hard to make it
automatic, that is, if
Tito Mari Francis H. Escaño wrote on 11/24/16 13:15:
Hi everyone,
Can somebody please recommend me a firewall appliance that can run OpenBSD and
pf, and can be upgradeable to the latest version? It would be a great plus if
the appliance can also be configured as part of CARP firewall group.
li...@wrant.com wrote on 11/16/16 18:07:
Tue, 15 Nov 2016 14:34:28 -0700 Clint Pachl <pa...@ecentryx.com>
Does /var/log/* have any clues?
No.
Philippe Meunier wrote on 11/15/16 06:11:
Hello,
I'm just curious: what is it in the kernel that wakes up about every
minute to do some wor
Does /var/log/* have any clues?
Philippe Meunier wrote on 11/15/16 06:11:
Hello,
I'm just curious: what is it in the kernel that wakes up about every
minute to do some work even on a completely idle machine? I'm asking
because xload shows some curious looking saw shaped load like this:
Jan Stary wrote on 11/14/16 03:00:
On Nov 14 00:14:19, pa...@ecentryx.com wrote:
But the very next step in the upgrade blows away the system by overwriting
it anyway. Right?
What could happen? What if following the normal procedure of untaring the OS
sets on top of the existing system fails
Amit Kulkarni wrote on 11/08/16 07:22:
On Tue, Nov 8, 2016 at 12:53 AM, Clint Pachl <pa...@ecentryx.com> wrote:
Ax0n wrote on 09/03/16 13:12:
I've got a Toshiba NB305 netbook that's been my daily-use laptop for more
than 6 years now. The last fresh install I did was OpenBSD 4.9-R
Ax0n wrote on 09/03/16 13:12:
I've got a Toshiba NB305 netbook that's been my daily-use laptop for more
than 6 years now. The last fresh install I did was OpenBSD 4.9-RELEASE in
early May 2011. I've been quite happy with how it works, and I've been
doing bsd.rd upgrades and M:Tier binary updates
Nick wrote on 03/30/16 11:23:
I have tried both firefox and firefox-esr in both OpenBSD 5.8 and 5.9 and can
say that there are issues with the mouse not picking up 10-15% of my clicks,
sometimes having to click a good 3 times or more for it to actually work
correctly! When I select and drag
Jan Stary wrote on 01/17/16 14:29:
After installing various UNIX-like systems today,
I realized what the problem is with the installer:
it makes installing any other system a DAMN ORDEAL.
The installer is what initially addicted me to OpenBSD.
Back in the late 90s until about 2003 I used
First, thank you Mr. Unangst for a beautifully simple piece of code. The
configuration file is a delight as well. I was happy to remove sudo from
my servers.
What I don't understand is the `-s` argument used to execute a shell.
What would a corresponding doas.conf(5) look like?
Can't shell
Martin Haufschild wrote on 08/26/15 12:11:
can someone recommend me an Industrial PC (IPC) to use with OpenBSD? I
would like to have a lot of hardware supported from this IPC by OpenBSD.
I've had great luck with Lanner (http://www.lannerinc.com/).
I've been running a LEC-2280 and FW-7541 for
I have a T410 as well and I don't use it because of the fan noise. I
bought it to replace my T61, but I continue to use the T61 because it's
slightly less noisy at 2935 RPM.
I looked for solutions several times but never found one. I even laid
down new Arctic Silver 5 thermal paste and
Jan Stary wrote, On 02/27/15 06:09:
This is current/amd64.
After cleaning my machine I reconnected two of my disks in reverse;
what was sd0 is sd1 now, and vice versa.
I do nightly dumps of the filesystems,
starting with level 0 on early Monday morning,
continuing with incremental 1, 2 etc
Alexandre Ratchov wrote, On 01/19/15 02:44:
On Mon, Jan 19, 2015 at 03:59:34AM +, currellbe...@gmail.com wrote:
Hello,
The FAQ[1] states that soft updates result in a large performance increase
in disk writing performance, and links to a resource[2] which claims that
soft updates, in
I just wanted to share my story ...
I finally retired my old AOpen desktop router which was running 4.4-beta
from July 2008 until now. I originally set it up to test pf and routing
for my company's network. It seemed to work fine so I put it into
production. Then I just kind of forgot about
Clint Pachl wrote, On 08/25/14 16:36:
It seems one should be able to get getty(8) to do this using
/etc/ttys. I tried:
console /usr/bin/su -l USER -c /usr/X11R6/bin/startx xterm on
secure
which automatically launched X, but I didn't have access to the
console (i.e., no write permission
Andy Bradford wrote, On 08/27/14 08:35:
Thus said Clint Pachl on Mon, 25 Aug 2014 16:36:26 -0700:
If someone knows how to do this properly via getty(8), I would be very
interested.
I've used this successfully (not sure how proper it is):
/etc/ttys:
ttyC0 /usr/libexec/getty console.nopw
Alan McKay wrote, On 08/27/14 09:56:
I'm writing some scripts to clone over the network, and since I have
mostly boxes that do not have the -N option on nc, this is proving to
be an issue.
I have a bunch of dump files - one for each filesystem - that were
created from a live system. When I
Marko Cupać wrote, On 08/21/14 15:32:
On 21-08-2014 11:38, Marko Cupać wrote:
I have just installed OpenBSD 5.5 on my ThinkPad T440. At first
glance everything seems to work OK, except for the fact that, when
shutting down or restarting, system hangs at 'hang at syncing
disks... done'.
This
somelooser3...@hushmail.com wrote, On 08/25/14 12:54:
I installed an OpenBSD desktop and in the /etc:
rc.conf.local:xdm_flags=# enabled during install
How can I set the automatic login for a user without prompting for
password?
It seems one should be able to get
Christian Weisgerber wrote, On 08/16/14 08:54:
On 2014-08-16, Christian Weisgerber na...@mips.inka.de wrote:
How about making etc/random.seed a named pipe and feeding chunks
of /dev/random to it?
I've now put this into my /etc/rc.local:
---
# Provide fresh random.seed for
Theo de Raadt wrote, On 08/16/14 09:39:
On Sat, Aug 16, 2014 at 04:03, Clint Pachl wrote:
I checked out my saved install configurations at
http://129.128.5.191/cgi-bin/ftplist.cgi and noticed that at the end of
the file there are fields named NSA_ID, CSIS_ID, and GOOGLE_ID.
They all sound scary
Paul de Weerd wrote, On 08/15/14 14:51:
At any rate, this changes that to allow world readable files (still
not taking world writable files). We can't check S_IWOTH over tftp,
we should probably assume 0777 for files transferred that way. But,
if you're trusting the kernel you're getting over
Christian Weisgerber wrote, On 08/15/14 18:36:
On 2014-08-15, Paul de Weerd we...@weirdnet.nl wrote:
What you could do is use the -r option to tftpd(8) to hand out a new
file to each client that connects. Or just periodically (like, every
hour or every minute, depending on the load of your
I checked out my saved install configurations at
http://129.128.5.191/cgi-bin/ftplist.cgi and noticed that at the end of
the file there are fields named NSA_ID, CSIS_ID, and GOOGLE_ID.
They all sound scary. Each time I refresh the page, only one of the
three IDs appear, but they seem to
Is it safe to generate some randomness in /tftpboot/etc/random.seed for
clients that PXE boot?
My concern is that this file will be available to everyone on the
network via TFTP. So does knowing this randomness help predict the
PRNG output of the clients that use it?
I read in a de Raadt
Here's my situation: I ssh into a remote server in my group. From that
server, I connect to an adjacent, local server in the group via the
serial terminal using tip(1) or cu(1). If the ssh connection is
disconnected, the login session to the second server's serial com0 will
remain open/active.
For years I've been using `openssl rand -base64 N` to generate secrets.
However, I recently saw `dd if=/dev/random bs=N count=1 | openssl
base64` used.
Is one more secure and random than the other?
Is openssl rand not secure if the -rand file option is omitted?
I'm guessing openssl may suck
mia wrote, On 10/18/13 16:33:
If you're handling DHCP for all of the traffic for your site, why not
just set up a dns server, point your dhcp clients to this DNS server
and create an authoritative zone for facebook.com that points to
somewhere other than facebook?
Running your own own DNS
I created a new filesystem on a 232.9 GB partition on a 500 GB external
USB drive that will be used as backup storage for dump files. Out of
curiosity, I recreated the filesystem using FFS2 (I never created an
FFS2 before). I noticed it was much faster, so I clocked it for comparison:
# ###
Jan Stary wrote:
If so, how does one reset a used SSD for
optimal operation with a fresh install?
Just treat it as any other disk - which it is.
This is wrong, unfortunately. From the OS perspective, sure, sort of.
But there is more to the story.
There is overprovising, garbage collection,
I would like to reinstall a fresh system on an SSD that contains an
existing installation. From my limited knowledge of SSDs, I wonder if
the drive controller may retain data from the old filesystem, unaware
that there is a new filesystem put in place.
Is this a concern? If so, how does one
Scott McEachern wrote:
2) Do you mean there could still be data residing on unused parts of
the SSD? Yes, it can happen.
Yes, this is what I'm referring to. I was hoping there was some way to
instruct the drive controller that the entire drive space is free?
SSDs have their own way of
I would like to clarify that I'm using cwm. However, I have the same
issue from a login terminal (without X).
Also, I don't use Emacs, the editor, just the emulation on the command
line. So in my ~/.kshrc I have:
set -o emacs
Clint Pachl wrote:
After upgrading my system to the latest snapshot
After upgrading my system to the latest snapshot my Emacs META bindings
are not working properly in the terminal. For instance, from xterm, the
bindings:
M-B (backward-word),
M-F (forward-word),
M-D (kill-word),
output the the characters, â, æ, ä, respectively.
However, the standard or
Alec Taylor wrote:
What's the most secure operating system?
/me is thinking OpenBSD
SELinux by far.
I just listened to an interview with one of the devs on the project
(http://twit.tv/show/floss-weekly/156). Wow! With SELinux, you basically
just flip a switch and boom, you're secure.
STeve Andre' wrote:
On 04/15/11 19:03, Paul M wrote:
Hi all,
It's time for a new OpenBSD laptop, and I have a couple of questions.
Note that I dont want to spend money on performance I dont need, but
I do want to spend money on a decent quality machine.
First, finding quality machines in
I use Thin (ruby-thin) as the HTTP frontend for my web frameworks.
STARTING/STOPPING:
$ sudo -u #{USER} thin -C #{THIN_PRODUCTION_CONF} start
$ sudo -u #{USER} thin -C #{THIN_PRODUCTION_CONF} stop
THIN_PRODUCTION_CONF:
---
rackup: config/config.ru
address: localhost
port: 3020
servers: 4
Thanks Jeremy. I also reported this on Thin's bug tracking system as well.
Jeremy Evans wrote:
On Wed, Feb 23, 2011 at 4:32 PM, Clint Pachlpa...@ecentryx.com wrote:
I use Thin (ruby-thin) as the HTTP frontend for my web frameworks.
STARTING/STOPPING:
$ sudo -u #{USER} thin -C
Dmitrij D. Czarkoff wrote:
Hello!
I'm running OpenBSD 4.9-beta (GENERIC.MP) #754: Thu Jan 20 17:49:26 MST 2011.
I want my cwm to open xterm window with tmux on CM-Return, so I write in my
~/.cwmrc:
command termuxterm +sb -bg #000 -fg #aaa -e tmux
That does the trick with tmux, but ssh-to
Subtle; and what a caveat it is.
Thanks Paul and Otto for setting me straight.
Paul de Weerd wrote:
On Wed, Feb 09, 2011 at 12:25:09AM -0700, Clint Pachl wrote:
| In the caveats section it states the following:
|
|
| Passing the output of find to other programs requires some care
In the caveats section it states the following:
Passing the output of find to other programs requires some care:
$ find . -name \*.jpg | xargs rm
or
$ rm `find . -name \*.jpg`
would, given files ``important .jpg'' and ``important'', remove
Denise H. G. wrote:
I've switched to FreeBSD for my desktop with 4G memory...
Unnecessary fear :
$ sysctl kern.version
kern.version=OpenBSD 4.8-current (GENERIC.MP) #547: Tue Dec 7 23:16:34 MST
2010
roberth wrote:
omg, i am using 95% of my memory all the time, should i be worried?
maybe kern.bufcachepercent=95 has something to do with it; blame Bob.
Holy shit! Mine's at 10%. Maybe I should crank mine up to to 95% and
then buy more RAM.
Scott McEachern wrote:
It seems my free-as-in-beer secondary DNS service, EveryDNS.net, has
abandoned WikiLeaks, so I'd like to return the favour.
Given the (general) support of WikiLeaks here, I was wondering if
anyone could recommend a free alternative to replace EveryDNS.net?
I'm not
Jason Crawford wrote:
Better add Visa to the list as well
And Swiss banks and Swedish women. :-)
Joachim Schipper wrote:
On Sat, Dec 04, 2010 at 06:28:04PM -0700, Clint Pachl wrote:
When I open [the UPS developer's guide] with xpdf(1) I get a [message]
to download the the latest Adobe crapware to view it.
This is cheating, but have you tried throwing it into Google docs
Joel Wiramu Pauling wrote:
I would be surprised if okular didn't open it. (okular being the KDE viewer)
I don't have KDE so I can't test. But I did find this link:
http://forum.kde.org/viewtopic.php?f=20t=91242
It looks like portfolio PDFs are not supported, although someone there
ropers wrote:
On 6 December 2010 22:42, Clint Pachlpa...@ecentryx.com wrote:
Still get a single page PDF stating the above message.
I guess it has to do with this PDF being a portfolio, like Anthony Bentley
mentioned.
How are the constituent PDFs stored in the portfolio PDF?
Anthony Bentley wrote:
This happens when there are multiple PDFs embedded in a single PDF file.
I remember reading a Ghostscript bug about this (could probably find it
again if I had the exact error message), but unfortunately Mupdf still
doesn't support it.
Here is the Ghostscript bug:
UPS is so annoying. The UPS developer's guide is in a 9MB PDF file. When
I open it with xpdf(1) I get a (1) page PDF that states I need to
download the the latest Adobe crapware to view it.
How can I get around this? Why does xpdf even abide?
I tried the following gs(1) command hoping it
Brynet wrote:
Hi,
Why are you using xpdf? it's so old and crummy :-).
print/epdfview, which uses the poppler library.
textproc/mupdf, independent renderer, pretty good.
-Bryan.
All I can say is that I use cwm and don't like interfaces, GTK, gnome,
or KDE. I highly agree with Patrick.
I am starting a new project that needs version control and I was
thinking about using OpenCVS. However, I'm not sure if it is in the base
(I'm running -current). My old 4.4 firewall has /usr/bin/opencvs. Is
/usr/bin/cvs actually opencvs?
I noticed http://www.openbsd.org/plus48.html states
David Vasek wrote:
On Sun, 24 Oct 2010, Clint Pachl wrote:
If I really need portability (flying, camping) and I'm just going to
be writing code in vim, then I use my trusty Sony Vaio SR17, weighing
in at less than 3 pounds (~1.3KG). I paid about 2400USD for it new in
2000; works like a charm
Henning Brauer wrote:
intagp0 at vga1
agp0 at intagp0: aperture at 0xe000, size 0x1000
inteldrm0 at vga1: apic 1 int 16 (irq 10)
drm0 at inteldrm0
Intel GM965 Video rev 0x0c at pci0 dev 2 function 1 not configured
Does this mean you don't get hardware graphics acceleration?
Henning Brauer wrote:
2. I would like graphics hardware acceleration. I know I need to
stay away from nVidia. The T60 comes with ATI Radeon and the T61 is
the integrated Intel 965GM.
Is there anything else I need to be concerned with regarding OpenBSD
on the T-Series? What would you
Henning Brauer wrote:
* Clint Pachlpa...@ecentryx.com [2010-10-24 22:33]:
Henning Brauer wrote:
intagp0 at vga1
agp0 at intagp0: aperture at 0xe000, size 0x1000
inteldrm0 at vga1: apic 1 int 16 (irq 10)
drm0 at inteldrm0
Intel GM965 Video rev 0x0c at pci0 dev 2 function 1
Paolo Aglialoro wrote:
Just a small hint after the 60 series all thinkpads rock... but I
wouldn't go to T series unless you'll be moving quite seldom. My advice is a
whooping X61, ultraportable yet powerful and really silent.
I thought about the X61. However, my laptop will rarely
Henning Brauer wrote:
Well, I have this on a Dell Precision 220 and graphics acceleration
doesn't work in X.
pchb0 at pci0 dev 0 function 0 vendor Intel, unknown product
0x2500 rev 0x03
agp at pchb0 not configured
radeondrm0 at vga1: apic 2 int 16 (irq 9)
drm0 at radeondrm0
Henning Brauer wrote:
1. Core Duo 32-bit (T60) or Core 2 Duo 64-bit (T61)? I've only used
i386, should I think about amd64?
shouldn't make a difference. personally, I run i386 anyway.
Any interesting reason you run i386 on 64-bit hardware? Stability?
Performance?
I've been using an IBM Thinkpad T22 (P3 900MHz) laptop for quite some
time and I want to upgrade. I am looking for some expert advice on what
to upgrade to in the Thinkpad T-Series.
Two main considerations:
1. Core Duo 32-bit (T60) or Core 2 Duo 64-bit (T61)? I've only used
i386, should I
Ted Unangst wrote:
On Fri, Oct 22, 2010 at 9:04 PM, Clint Pachlpa...@ecentryx.com wrote:
1. Core Duo 32-bit (T60) or Core 2 Duo 64-bit (T61)? I've only used i386,
should I think about amd64?
Are you sure about that? I didn't think they made any T60s with plain
Core chips, though I
Neal Hogan wrote:
On Fri, Oct 22, 2010 at 8:04 PM, Clint Pachlpa...@ecentryx.com wrote:
I've been using an IBM Thinkpad T22 (P3 900MHz) laptop for quite some time
and I want to upgrade. I am looking for some expert advice on what to
upgrade to in the Thinkpad T-Series.
Two main
In the KDC log file, I get the following errors:
2010-10-04T02:40:11 TGS-REQ pa...@mokaz.com from IPv4:10.0.9.15 for
afs/ualberta...@mokaz.com
2010-10-04T02:40:11 Server not found in database:
afs/ualberta...@mokaz.com: No such entry in the database
2010-10-04T02:40:11 TGS-REQ pa...@mokaz.com
I tried to rebuild a single disk in a 4 disk raid-10 array using the
following command:
# bioctl -R 0:3 sd0
bioctl: BIOCSETSTATE: invalid argument
What does this mean exactly?
I did rebuild the array via the MegaRAID BIOS utility. Are we able to
rebuild arrays via bioctl?
# bioctl sd0
John Nietzsche wrote:
Hi folks,
i have configured my openbsd kerberos server. It is serving two other
computer in my home network. One of this client is running openbsd the
other is Windows XP.
I am able to login into any of these 2 client and authentication goes
through kerberos 100%
It seems the other BSDs have removed it from the base. Is anyone using
it on OpenBSD? I thought it might be useful tool to update some configs
on my network, but I can't seem to get it working.
I'm getting errors like:
SUP: SCM GOAWAY Can't read list file sup/junk/list [t22.mokaz.com]
I've
Ted Unangst wrote:
On 7/19/08, Chris Kuethe [EMAIL PROTECTED] wrote:
- svnd backed by a whole slice on disk
I know some people have done this, but the code doesn't like it. I'd
stick with normal files.
I have done file, partition, and whole disk; each one gets progressively
Insan Praja SW wrote:
Hi Misc@,
Just wondering around, is there any multicasting technology (PIM-SM,
PIM-SSM etc) currently developed or implemented in OpenBSD?. Since
working with this unbelievable OS (especially with
routing/filtering/forwarding) I wish to know more about it.
Right now I
alemao wrote:
Hi,
I installed OpenBSD/amd64 snapshot on a Macbook 3,1 (Late 2007).
It recognizes both processors but not all memory (3GB instead of 4).
There's something i can do?
No. Read the archives or Google it.
James Turner wrote:
I've been trying to get my new ral(4) card to work like I would expect it
to. I've read through most if not all the talk on misc@ about running these
cards in hostap mode. I would really like to replace my wi(4), which
works really well, with my new ral(4) and enjoy 11g and
Jesus Sanchez wrote:
Hi, I'm using 4.2.
I'm using 4.1.
I have installed from ports the program mrxvt it works well as people
say but I have (I believe) found a buggy behaviour when using mrxvt and
ksh (the OpenBSD one).
I launch startx (with fvwm2 and mrxvt on my .xinitrc) as a regular
Jesus Sanchez wrote:
Hi all,
I'm using 4.2 without problem, and I'm trying to find one xterm to my
personal use with only one thing in mind: low cpu and memory usage.
I have been using mrxvt for years. It's also multi-tabbed. Currently,
I'm running 10 terminals in a single mrxvt process and
I'm running nginx web server on my DMZ servers. It has the ability to
run the master process as root and the workers as a non-root user. All
logs, pid file, etc. are written by the master process. I was thinking
of redirecting port 80 traffic to a non-privileged port via pf and
running nginx
Is the ~/.k5user file supported in OpenBSD's Heimdal implementation? I'm
running OBSD 4.1.
kadmin list *
root
pachl
default
root/root
pachl/root
pachl/admin
kadmin/admin
kadmin/hprop
kadmin/changepw
krbtgt/MOKAZ.COM
changepw/kerberos
host/htx.mokaz.com
host/kerberos.mokaz.com
Guido Tschakert wrote:
Hello folks
short:
will 2 (or more) dhcrelay work on one router without problems
long:
I have a router connected to 3 networks:
a.b.1.0/24 connected to if1,
a.b.2.0/24 connceted to if2,
a.b.3.0/24 connected to if3.
Lets say I have a dhcpd on a.b.1.1
Is it possible to
Richard Wilson wrote:
Increasingly, I find that I have many servers, especially OpenBSD
servers, where the only bit of the hard drive worth backing up is /etc.
Good examples are routers or spamtrap boxes where everything is part of
base. If a hard drive goes pop, all I need is to install the OS,
Zbigniew Baniewski wrote:
On Fri, Feb 01, 2008 at 08:16:49PM +0200, Imre Oolberg wrote:
As an operating system my first choice would OpenBSD and second is Linux.
In fact at the moment i run such a kind of setup using Linux but i feel
need to upgrade my hardware, i have old 700 MHz Celeron,
Chris wrote:
I am after a software that would allow me to view photos from my
digital camera which I usually mount in /mnt/camera. I tried from the
ports tree: digikam, gphoto, gtkam, kphotoalbum, wmphoto, kamera -
none of them really work well in showing the pictures; some of them
want to
Douglas A. Tutty wrote:
I have a box that I want to keep as secure as I can but I also need to
be able to use a graphical browser from it (I know that this is a
trade-off).
There is no graphical browser in base. I don't need or want this
browser to do javascript or flash (I have a different
Rico Secada wrote:
On Thu, 17 Jan 2008 18:17:54 -0500
Douglas A. Tutty [EMAIL PROTECTED] wrote:
On Thu, Jan 17, 2008 at 05:11:53PM -0500, STeve Andre' wrote:
On Thursday 17 January 2008 03:42:38 pm Douglas A. Tutty wrote:
I have a box that I want to keep as secure as I can but
Girish Venkatachalam wrote:
I am giving first aid after the war but still it will help.
I can give a lot of relief to those of you who had nervous breakdowns
and blood pressure problems due to spam mails getting in the way of
useful technical stuff.
It is not hard at all.
First thing is
Jeff Ross wrote:
Hi,
I got my 4 port serial card and installed it in my firewall today
puc0 at pci1 dev 0 function 0 Oxford OX16PCI954 rev 0x00: ports: 4 com
pccom3 at puc0 port 0 irq 11: st16650, 32 byte fifo
pccom3: probed fifo depth: 16 bytes
pccom4 at puc0 port 1 irq 11: st16650, 32 byte
. This should test whether your passwd program
is working properly. It is weird that vipw works, but passwd complains.
- Original Message - From: Clint Pachl
To: Jumping Mouse
Cc: misc@openbsd.org
Sent: Tuesday, November 20, 2007 8:56 PM
Subject: Re: can't change password with passwd
Jumping Mouse wrote:
Ok, Ok I get the point. I agree that posting line 24 will not help, any user
except root gives the same issues. And as a last and final attempt I will
check the end of the file for any spaces as Clint suggested.
You mean you haven't check for empty lines and trailing
Darren Spruell wrote:
On Nov 19, 2007 10:53 PM, Clint Pachl [EMAIL PROTECTED] wrote:
In my DMZ research, some sources state that all services need to be
replicated in each DMZ. Following that advice, I would have to setup
Kerberos, ntp, backup, and DNS in each DMZ and the LAN; that sounds
Jumping Mouse wrote:
Hi Clint and others,
I tried:
# rm spwd* pwd* passwd* ptmp # pwd_mkdb /etc/master.passwd
then
#passwd username
but I am still getting: (for all users)
pwd_mkdb: corrupted entrypwd_mkdb: at line #24pwd_mkdb: /etc/ptmp:
Inappropriate file type or formatpasswd:
Jumping Mouse wrote:
One more follow up:
I added a new user.
then tried to change the users password with the passwd command and I get the
same results:
pwd_mkdb: corrupted entrypwd_mkdb: at line #25pwd_mkdb: /etc/ptmp:
Inappropriate file type or formatpasswd: /etc/master.passwd: unchanged
Jumping Mouse wrote:
Hi Clint, Yes I am the one. as for changing the password this seems to
happen to any user except for the root acount, I am able to use passwd to
change the root account password. Here is line 24: (I removed the password
and real usernmame)
Is it possible for a cracker to compromise or root a machine on a
network that has pf enabled with the single rule block all in?
Jumping Mouse wrote:
When I try to change a user password I get an error.
I do this:
# passwd username
enter a new password and get: pwd_mkdb: corrupted entrypwd_mkdb: at line
#24pwd_mkdb: /etc/ptmp: Innapropriate file type or formatpasswd:
etc/master.passwd unchanged
how can I fix this?
Chris Zakelj wrote:
Clint Pachl wrote:
Is it possible for a cracker to compromise or root a machine on a
network that has pf enabled with the single rule block all in?
I suspect you're just fishing, but in the interests of spirited
debate
- Is block in all the first rule, the last rule
1 - 100 of 177 matches
Mail list logo