a typo for MS Scult Ergonomy set usb receiver in dmesg?

Hi, not sure if it's a typo or correct but there's strange '\M-' in dmesg for $subject hw. j. # dmesg | grep Microsoft | tail -n1 uhidev2 at uhub3 port 3 configuration 1 interface 2 "Microsoft Microsoft\M-. 2.4GHz Transceiver v9.0" rev 2.00/7.97 addr 6

lastcomm doesn't filter with arguments?

Hi, it seems `lastcomm' doesn't filter if it gets arguments or am I reading wrongly man page? ~~~ # lastcomm | grep 'python2.7' python2.7 -S root ttyp1 0.03 secs Wed Jan 18 16:32 (0:00:00.06) # lastcomm python2.7 root ttyp1 grep -S root

Re: Using "Pretty" permalinks with httpd in wordpress

On Fri, Jan 06, 2017 at 01:32:10PM +0200, Atanas Vladimirov wrote: > Hi, > > I can't figure it out. > Is it possible to use Wordpress with OpenBSD httpd and configure both > for "Pretty" permalinks. > Does anyone have a working setup? > Thanks for your time, > Atanas Help testing this diff http:/

Re: carp and squid

On Wed, Dec 21, 2016 at 12:41:43PM +0100, Frank White wrote: > Hi, does 2 nodes clustered openbsd firewall work with squid ? > is there any specific configuration ? If squid on each node would have its own cache dir, ie. not sharing data, then pointing your clients to squid hostname linked to CARP

Re: Encrypted data partition

On Thu, Dec 15, 2016 at 11:47:56AM +0100, Carsten Kunze wrote: > Julian Suschlik wrote: > > > What about an encrypted backup to the USB drive and restore on the other > > host? Preserves links and permissions. Can do deduplication and updates. > > Borgbackup does this. You can carry binaries of t

OpenBSD green computing tips

Please ignore discussion about how trendy this subject is, how it is buzzword etc... Thank you. If an OpenBSD user wants to decrease energy consumption what option he/she would have? - suspend (works) - hibernate (works, i haven't used that much) - adaptive cpu speed (works) - adaptive fan speed

debugging via EHCI debug port

Are we able to get something like console via EHCI debug port? Eg. to get traces etc. from laptops which do not include real serial console? Some info from Coreboot page https://www.coreboot.org/EHCI_Debug_Port I see my Thinkpad T440s shows EHCI controller has 'Debug Port': # pcidump -v 0:29:0

Re: unknown hostname on ssh tunnel end causes 'administratively prohibited: open failed'

> The code in sshd where the response is composed doesn't know what the > reason for the failure is. I suspect thid dates back to the original > Protocol 1 code becuase Protocol 1 didn't (I think) have a reason field. > This passes the reason back up the stack and sends it to the client. Sorry fo

unknown hostname on ssh tunnel end causes 'administratively prohibited: open failed'

I was using ssh socks5 tunnel (-D) today and I saw many: channel 4: open failed: administratively prohibited: open failed messages. It seems non-resolvable hostnames on my gw (ie. end of ssh socks5 tunnel) is passed to client as "prohibited" event. This seems odd and confusing. GW is an ol

Re: HP Proliant MicroServer G8: not seeing disks

On Tue, Nov 22, 2016 at 10:29:58AM +0100, Peter N. M. Hansteen wrote: > a HP Microserver Gen8 landed in my lap recently, but playing with the thing > last night > it looks like OpenBSD (latest available snapshot) doesn't play well with the > RAID controller. > > The symptoms are simply disks not

Re: softraid(4) full-disk encryption on SSD

On Wed, Nov 16, 2016 at 09:14:51AM -0600, Ax0n wrote: > I just purchased a SanDisk SSD for my daily-driver laptop which has been > running -CURRENT well. I'm considering going with FDE and a fresh snapshot > install, adding my packages then copying over what I need from my old > spinning rust drive

Re: Running OpenSMTPD at home behind a cloud proxy

On Sun, Nov 13, 2016 at 10:51:22PM +0100, Joris Vanhecke wrote: > Hey all, > > I'd like to pull my emails out of the cloud and run them on a local > server (pcengines APU2 looks good). > My ISP blocks tcp ports below 1024 and sending email from a residential > (dynamic) IP might mark my email as s

unable to dump setting of running vm (vmm)

Hi, is there a way to dump setting of current (vmm) vm? For example if it was started with network interface...? It seems I can only see `ifconfig tap0' and compare vm name in tapX interface description with running vms now :/ Although I don't know what would be best visual representation of suc

Re: Would you use OpenBSD on Power8, and if so what applications? (IBM asks! They're thinking about donating hw.)

On Wed, Oct 19, 2016 at 05:06:28AM +, Ralph Siegler wrote: > On Wed, 19 Oct 2016 12:29:21 +0800, Mikael wrote: > > [...] > > Power8 machine offers start at USD 2,850: > > http://www.tyan.com/campaign/openpower/index.html > > > > And their standard prices are USD 5,530 and up, that is > > http:

Re: Dual booting - can't boot OpenBSD from Windows 10 bootloader

On Fri, Sep 23, 2016 at 12:57:35PM +0200, Lampshade wrote: > I have Windows 8.1 and OpenBSD amd64. > > # cat /mnt/ext2/grub/grub.cfg \ > > | grep -v -e ^# -e ^[:space:]*$ > GRUB_DEFAULT=0 > GRUB_TIMEOUT=5 > GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo

Re: openbsd whois doesn't work with ipv6 address

On Wed, Sep 14, 2016 at 06:25:18AM -0400, Jiri B wrote: > Is there any whois client on OpenBSD which would accept ipv6 > addresses? It works fine with an IPv4 address. > > OpenBSD: > > # whois 2620:52:0:2282::1f | grep NetRange > # sysctl kern.version > kern.ver

openbsd whois doesn't work with ipv6 address

Is there any whois client on OpenBSD which would accept ipv6 addresses? It works fine with an IPv4 address. OpenBSD: # whois 2620:52:0:2282::1f | grep NetRange # sysctl kern.version kern.version=OpenBSD 6.0-current (GENERIC.MP) #2432: Sat Sep 10 14:06:57 MDT 2016 dera...@amd64.openbsd.org:/u

tip for inter-KVM VMs traffic filtering with PF running on separate box

Hi, I'm curious how to filter inter-VMs (running on Linux KVM host) traffic on a remote bare-metal host running OpenBSD and PF. Any tip? So, there would be a Linux KVM host running various VMs and separate OpenBSD box and I'd like to achieve that all traffic betweens those VMs running on that Lin

Re: Thinking about writing something I'm calling wifid

On Tue, Aug 02, 2016 at 10:09:48AM -0400, Bryan Everly wrote: > Hi everyone, > > I'm looking for feedback before I burn time on this project so please let me > know what you think. > > I'm thinking about building a daemon that I'll write in C (looked at the > httpd code in /usr.sbin/httpd as a re

Re: sed vs gsed and \+ difference

On Thu, Jul 28, 2016 at 12:55:40PM +0200, David Vasek wrote: > On Thu, 28 Jul 2016, Jiri B wrote: > > >Hi, > > > >I can't understand a difference between OpenBSD and GNU sed when > >handling '\+' (one or more). > > > >Example: > &

sed vs gsed and \+ difference

Hi, I can't understand a difference between OpenBSD and GNU sed when handling '\+' (one or more). Example: $ echo 'tzdata-2016a-1.el7.noarch.rpm' | sed 's/\(tzdata\)\+.*/\1/' tzdata-2016a-1.el7.noarch.rpm $ echo 'tzdata-2016a-1.el7.noarch.rpm' | gsed 's/\(tzdata\)\+.*/\1/' tzdata $ echo '112345

httpd/slowcgi - httpoxy vurnerability

Hi, Red Hat found a vulnerability in various web servers and frameworks related to env variable passed to cgi scripts, see below: HTTPoxy - CGI "HTTP_PROXY" variable name clash https://access.redhat.com/security/vulnerabilities/httpoxy I was able to reproduce on OpenBSD httpd/slowcgi (6.0-b

unsupported SNMP trap version '3'

Hi, does snmpd support v3 SNMP traps? As I was trying to get ASAP a v3 trap receiver and I got: # snmpd -d snmpe_bind: binding to address 10.34.130.229:161 startup unsupported SNMP trap version '3' I used this from a RHEL 7: snmptrap -e 0x0102030405 -v 3 -u user1 -a SHA -A password123 -l authPr

Re: Different unbound configurations pr interface?

On Tue, Jun 28, 2016 at 07:22:46PM +0200, Tor Houghton wrote: > Hello, > > I'm looking for the best/easiest way to run unbound on different interfaces > but with different configuration files (well, what I actually want is to > specify different forward-addr: configurations for each interface). >

n2k16 mini-hackathon in Prague, CZE

There was an info from sasha@ at a Czech IT website about n2k16 mini-hackathon and subsequent public discussion in Prague, Czech Republic in July 2016. I'm just curious, who does help OpenBSD project to organize this hackathon? Oracle, Praguer Charles University...? j.

Re: make optional servers insttall

On Tue, Jun 14, 2016 at 04:41:56PM +0300, ?? ?? wrote: > Split baseXY tarbail to serversXY and baseXY, this step will be optinize > disk usage. why the need for httpd, ldpd and other optional services for > desktop use case? Storage is so cheap today so there's no benefit for your proposition. And

Re: PF and interface changing IP

On Thu, May 12, 2016 at 09:36:35AM +0200, Gabriele Tozzi wrote: > Hi there, > > I have a pppoe0 interface setup like this (hostname.pppoe0): > > inet 0.0.0.0 255.255.255.255 NONE \ > pppoedev re0 \ > authproto pap \ > authname 'myuser' \ > authkey 'mypass' up > des

Re: ldconfig & chroot

On Tue, May 10, 2016 at 02:38:37PM +0200, Marc Espie wrote: > On Tue, May 10, 2016 at 05:23:07AM -0400, Jiri B wrote: > > While checking proot, it would be probably good to have an > > option for ldconfig to work with specified root directory > > like it is the case for linux

ldconfig & chroot

While checking proot, it would be probably good to have an option for ldconfig to work with specified root directory like it is the case for linux ldconfig. So it would scan and save hints file under specified "root" dir. j.

Re: mfs vs tmpfs: advantages and disadvantages

On Tue, May 03, 2016 at 05:08:06PM +1000, bytevolc...@safe-mail.net wrote: > With tmpfs being in the tree for the last 2+ years (since OpenBSD 5.5), > I would like to ask, besides the "-P" option in mount_mfs, what is the > advantage of using mfs over tmpfs? tmpfs on Bitrig does support snapshots,

Re: Creating a blog using OpenBSD: technology choices and security considerations

This thread is unreleated to OpenBSD. If you like to have a blog, there is a trillion of template systems like one used by OpenBSD to build web pages (perl, awk, shell) or you can choose perl Template Toolkit, jinja2, whatever... j.

Re: jabber client with conference history saving

On Sun, Apr 17, 2016 at 10:42:00PM +0300, Joseph Oficre wrote: > Hello, @misc. > Can someone give me an advice about xmpp client on OpenBSD, Im using Psi > for now, but it doesnt save messages history properly (errors only). > So i want to try another one. > Doesnt matter if console or gui, just wi

Re: Standard way to create a generic queue in ksh

On Fri, Apr 15, 2016 at 10:29:24PM +0200, Jon S wrote: > Hello all! > > As a port of a backup solution, i needa a queue. Having looked around the > net, i haven found any standard way (besides named pipes) that I can use. > > Requirements are: > * There will be few elements in the queue (<20) > *

WoL on em interface

I wanted to go 'green' and thus I've thought de facto standard 'em' interface supports wake on lan (WoL). $ grep -n -i wol ~/cvs/openbsd-src/sys/dev/pci/if_em* /home/jirib/cvs/openbsd-src/sys/dev/pci/if_em_hw.c:1150: /* Enable PHY low-power state when MAC is at D3 w/o WoL *

Re: Shoudn't full disk encryption be a option on installer?

On Tue, Mar 08, 2016 at 12:32:16AM +0100, arrowscr...@mail.com wrote: > I'm using softraid_crypto for full disk encryption for about one year > now. I used this on a low end Core2Duo and noticed absolutely *no* > performance hit. I also use this on a newer platform and, again, no > performance prob

Re: some problems with disks

tl;dr... > 3. When procceding to wipe the disk on my desktop (openbsd -current too) > I cound not do this. This time I could find sd5 using disklabel, but: > > # dd if=/dev/arandom of=/dev/sd5 bs=4096 > > /: write failed, filesystem is full > dd: /dev/sd5: No space left on devi

Re: SIP Client

On Mon, Mar 07, 2016 at 05:12:58PM +0100, Solne Rapenne wrote: > Hello, > > Is there a SIP client working on OpenBSD ? > I was using Jitsi or Ekiga but they don't seem working on OpenBSD. ...doesn't seem working is not very good issue report. I'm not using Jitsi myself but usually java apps are

[file] file -i doesn't detect epub correctly

Hi, file -i *.epub returns 'application/x-not-regular-file' or 'application/zip' and it should return 'application/epub+zip' (at least this is on Fedora). I was not able to hack source to make it return valid type but here is magic for epub: https://github.com/file/file/blob/master/magic/Magdir/

Re: Nagios/OpenBSD 5.8: success anyone?

On Thu, Feb 25, 2016 at 04:24:31PM +, Olivier Debr wrote: > Symptoms: > trying to access any cgi yields error 500 and lines as follows in > /var/log/messages > slowcgi[32405]: execve /cgi-bin/nagios/: Is a directory > > [...] > I have never used slowcgi but check below: > lan_ip="em0" > serve

Re: rsync mirror for firmware.openbsd.org

On Thu, Feb 25, 2016 at 12:59:14PM +, Comte wrote: > Hi, > > i would like to make an internal mirror but didn't find any rsync url to > mirror firmware.openbsd.org, is there any ? Easy to mirror with lftp and its 'mirror' command. j.

Re: Just curious, what are approx plans for kernel-multicore-ness next 1-2 years? (net/file IO) How much is it a relevant prio?

On Thu, Feb 25, 2016 at 06:14:40PM +0700, Tinker wrote: > Any guess about when might it actually become usable, 6.1, 6.2, this year, > next? > > > I would be very curious to see if-what limits there are on file IO activity > when you do it full-on completely RW on 10-20 cores and a ton of SSD:s.

Re: GUI Designer

On Mon, Feb 22, 2016 at 02:21:01PM +, Daniel Boyd wrote: > Quick question for you guys. ??I recentlydecided to see if I could get away > with runningOpenBSD on my office workstation. ??I gotthe idea after playing > around with xfreerdp's??'rail' mode which allows me to run Windowsapps > (primar

Re: How to configure the domain used by default by OpenSMTPD

On Mon, Feb 22, 2016 at 09:40:00AM +, ML mail wrote: > Hello, > > How do one configure the domain which OpenSMTPD uses by default to speak with > other mail servers? The problem is that my default it takes the internal > domain name of my OpenBSD 5.8 server and therefore other mail servers r

Re: general xdg-open configuration

On Thu, Feb 18, 2016 at 04:15:50PM +, Mike Burns wrote: > On 2016-02-18 17.11.03 +0100, Rudolf Sykora wrote: > > I appear to need to modify the default application used > > by xdg-open to open a file directory. The man page of xdg-open > > is not very helpful. Can anybody tell me what is the ri

Re: startx vs xdm

XDM fires up /etc/X11/xdm/Xsession, easy to read. One can even customize XDM and all other things in /etc/X11/xdm/xdm-config. It should be `xrdb -load $file'. j.

Re: Setting setenv=DISPLAY=:1 in login.conf problem

On Sat, Feb 13, 2016 at 04:28:48PM -0800, Philip Guenther wrote: > On Sat, Feb 13, 2016 at 3:54 PM, Jiri B wrote: > > Setting DISPLAY=:1 as setenv in /etc/login.conf > > > > selenium:\ > > :setenv=DISPLAY=:1:\ > > :tc=daemon: > > > >

Setting setenv=DISPLAY=:1 in login.conf problem

Setting DISPLAY=:1 as setenv in /etc/login.conf selenium:\ :setenv=DISPLAY=:1:\ :tc=daemon: is a problem as colon is a separator and thus value is lost. Escaping or quoting did not work too. I put in my selenium rc script `env' to get environment vars and DISPLAY is unset: ... +

Re: how to mount a *dmg in -current

On Fri, Feb 12, 2016 at 12:43:18PM -0600, Andrew wrote: > sh> file tws-stable-standalone-macosx-x64.dmg > > tws-stable-standalone-macosx-x64.dmg: Macintosh HFS Extended version 4 > data last mounted by: '10.0', created: Tue Feb 2 16:12:22 2016, last > modified: Tue Feb 2 22:12:22 20to 16, last b

[UPDATE] www/faq/current.html

Asked on misc@ thus updating current.html: j. ~~~ Index: current.html === RCS file: /cvs/www/faq/current.html,v retrieving revision 1.648 diff -u -p -r1.648 current.html --- current.html11 Jan 2016 04:37:13 - 1.648 +

Re: php-fpm package missing in snapshot

On Thu, Feb 11, 2016 at 09:52:52AM +0100, Alex Greif wrote: > Hi, > > few days ago I realized that the php-fpm packages are not in the ftp > mirrors (in snapshot/packages). The packages are missing for amd64 > and also i386. > > I searched in the web, but cannot find a reason for its absence. >

Re: No more proxy on ftp(1)?

On Mon, Feb 01, 2016 at 04:33:00AM +0100, arrowscr...@mail.com wrote: > Thank you for your help Stuart. I'll just use curl for now. Actually use > torsocks seems a bad practice for any situation, I should just set a > transparent proxy (but the pf.conf from torproject.org does not work, I'll > n

Re: can't run multiple instances of httpd, flags not visible in processes

On Thu, Jan 28, 2016 at 09:49:32AM +0100, Alexandre Ratchov wrote: > $ ps ax |grep sndiod > 14501 ?? Ssp 0:00.00 sndiod: helper (sndiod) ^^ excuse my ignorance but what's purpose of repeating daemon name in brackets? j.

Re: rc.d and rtable

On Thu, Jan 28, 2016 at 11:27:40AM +0300, Vadim Zhukov wrote: > [...] > The code looks like more or less fine (I'll do a more careful review a bit > later), but there are documentation bits missing. That was a POC, anyway I'm not very familiar with mandoc :/ j.

Re: rc.d and rtable

On Wed, Jan 27, 2016 at 09:30:27PM +0100, Claudio Jeker wrote: > On Wed, Jan 27, 2016 at 12:58:48PM -0500, Jiri B wrote: > > On Wed, Jan 27, 2016 at 01:40:14PM +0100, Antoine Jacoutot wrote: > > > On Wed, Jan 27, 2016 at 06:47:57AM -0500, Jiri B wrote: > > > > Would

Re: rc.d and rtable

On Wed, Jan 27, 2016 at 01:40:14PM +0100, Antoine Jacoutot wrote: > On Wed, Jan 27, 2016 at 06:47:57AM -0500, Jiri B wrote: > > Would it be worth to extend rc.d for rtable knobs? > > > > - daemon_rtable varible > > - rc_* functions (route exec, pgrep/pkill -T $rtable.

rc.d and rtable

Would it be worth to extend rc.d for rtable knobs? - daemon_rtable varible - rc_* functions (route exec, pgrep/pkill -T $rtable...) Or are routing tables not much used thus not worth to make rc.d more complicated? j.

can't run multiple instances of httpd, flags not visible in processes

Hi, I can't run multiple instances of httpd via rc.d as I can't distinguish between httpd instances. ps aux never show flags passed to httpd. Could httpd be extended to show flags like sshd does it? root 15681 0.0 0.1 1196 2308 ?? Ssp 12:08PM0:00.05 httpd: parent (httpd) vs roo

caveats about 'nameserver 127.0.0.1' in faq/pf/example1.html

~~~ # echo 'nameserver 127.0.0.1' > /etc/resolv.conf # echo 'supersede domain-name-servers 127.0.0.1;' >> /etc/dhclient.conf ~~~ There could be little surprise for uninformed users who would put 'nameserver 127.0.0.1' into /etc/resolv.conf - their network upgrade if using static IPs won't work as

Re: sudo and globbing

On Fri, Jan 08, 2016 at 12:04:15PM +0200, Alexey Kurinnij wrote: > And what about difference? Explain please. > > > > I discovered an article about sudo and globbing[1] and > > > there's difference how it does work on Linux and OpenBSD. > > > > http://zurlinux.com/?p=2244 > > > > > - openbsd > > >

Re: sudo and globbing

On Thu, Jan 07, 2016 at 11:43:14AM -0500, Jiri B wrote: > I discovered an article about sudo and globbing[1] and > there's difference how it does work on Linux and OpenBSD. I forgot to put the url http://zurlinux.com/?p=2244 > - openbsd > > # su -s /usr/local/bin/bas

Re: Autoinstall via netboot over VLAN interface

On Mon, Jan 04, 2016 at 09:35:04AM -0700, Darren S. wrote: > I have a router on the end of a 802.1q trunk port that I'd like to > netboot for install, but this is only possible if I can PXE boot using > the correct VLAN to reach the PXE server. Some PXE boot ROMs support > this (mine does not curre

Re: Connect to OpenVPN from OpenBSD

On Sat, Jan 02, 2016 at 08:55:35PM +0500, ? ??? wrote: > Is it possible to connect to OpenVPN (riseup.net) from OpenBSD without > installing openvpn client to OpenBSD? No, you need OpenVPN package as it uses its own homemade SSL-VPN protocol. > I don't understand all this vpn-technologies ver

Re: Help

On Sun, Dec 13, 2015 at 09:27:07PM +0800, Siu Man wrote: > I need > ftp://ftp.openbsd.org/pub/OpenBSD/distfiles//suhosin-patch-5.2.10-0.9.7-openb > sd.patch.gz > > suhosin-patch-5.2.10-0.9.7-openbsd.patch.gz > > I have very old computer need OpenBSD 4.6 i386. I try to build PHP for apache2 > but

Re: authentication infra structure

On Wed, Dec 09, 2015 at 01:21:19PM -0700, Devin Reade wrote: > --On Wednesday, December 09, 2015 05:25:14 PM -0200 Friedrich Locke > wrote: > > > If you had about 10k users and 5k machine how would you manage > > authenticating issues? Keep in mind that this is a very heterogenous > > environment

Re: kerberos

On Wed, Dec 09, 2015 at 11:13:40AM -0200, Friedrich Locke wrote: > What is/are the alternative(ies) for kerberos on openbsd ? (Since is was > removed from the distribution). I use kerberos from ports every day with FF. Unfortunatelly other apps from ports don't have krb flavor so you either have t

Re: OpenBSD + pf + DPI

On Wed, Dec 02, 2015 at 01:35:10PM +0100, Patrik Lundin wrote: > On Wed, Dec 02, 2015 at 12:45:26PM +0100, Alessandro Baggi wrote: > > Hi list, > > I don't know how to start to make Deep Packet Inspection. My interest is > > OpenBSD and pf related. > > > > Anyone has already used on OpenBSD? It is

hotplug - blacklisting/whitelisting devices

As "hotplug pseudo-device passes device attachment and detachment events", does it mean it is too late to blacklist/whitelist hotplug devices? I was checking https://github.com/dkopecek/usbguard and I got curious if blacklisting/whitelisting of removable usb devices could be done in hotplugd. j.

Re: Is it possible to use pledge(2) to make something similar to firejail?

On Sun, Nov 29, 2015 at 01:15:24PM +0100, Lampshade wrote: > Is it possible, in theory, to use pledge(2) to make something similar to > firejail? > https://packages.debian.org/sid/main/firejail > Firejail is a Gnu/Linux's program which executes Firefox as it's descendant > with reduced privilages.

Re: which in /dev/* for tethering to android?

On Sat, Nov 28, 2015 at 03:07:15PM -0700, luke...@onemodel.org wrote: > I'd like to get an internet connection via my android phone (on > tmobile). After connecting the phone via usb and turning on its > tethering option, I see the usb info in dmesg, but when I try to run > the pppd chat script it

Re: OpenBSD as a pentester PC?

On Thu, Nov 26, 2015 at 12:53:47PM +0330, Mohammad BadieZadegan wrote: > Hi every OpenBSD user, > I have OpenBSD on my Notebook since 2 years ago and I don't want to switch > other OS for my business pentest project. > I need some pentest tools for my project like metasploit, fuzzers, ..etc > but I

Re: TLS intercepting proxy [MitM]

> With a little bit pf-magic this works like this: > pass out log on $ext_if proto tcp to any port 443 route-to lo0 > pass out log on > $ext_if proto tcp to any port 443 user _relayd > pass in log on lo0 proto tcp to > any port 443 divert-to 127.0.0.1 port 8443 Have you actually tested this? The t

Re: TLS intercepting proxy [MitM]

On Tue, Nov 24, 2015 at 02:17:41PM +0100, Lampshade wrote: > I want to intercept and alter traffic on the same box that I run Firefox. > Is this possible using pf and relayd or I must use something else? IIRC this is not possible. j.

Re: cron log in /var/log

On Wed, Nov 11, 2015 at 10:47:00AM -0700, Todd C. Miller wrote: > On Wed, 11 Nov 2015 12:29:30 -0500, Jiri B wrote: > > > As cron got a quite interested recently, isn't > > right time to move its log to /var/log? > > Or does having /var/cron/log have any specific

cron log in /var/log

As cron got a quite interested recently, isn't right time to move its log to /var/log? Or does having /var/cron/log have any specific reason? j.

Re: LC_COLLATE

> So OpenBSD is not recommended for practical use or a postgresql database > server. > No wonder that most professional users switch to linux. > > No harm meant! You are retard, go away and don't return then. j.

Re: Networking Menu option during boot

On Wed, Nov 04, 2015 at 07:08:54AM -0800, J. Scott Heppler wrote: > [...] > The bsd.rd install option already pauses the kernel and displays a > network configuration script. Would it be possible to provide a > similiar option in OpenBSD? bsd.rd doesn't pause the kernel, installer is called from

Re: Your opinion about using rdomain or mpath

On Wed, Oct 14, 2015 at 11:57:24AM -0300, Giancarlo Razzolini wrote: > Em 14-10-2015 11:33, C.L. Martinez escreveu: > [...] > through your VPN. In this case, you don't need neither rdomain nor > mpath. Properly crafted route-to rules in your pf.conf should do the > trick. You can even use anchors a

Re: Your opinion about using rdomain or mpath

On Wed, Oct 14, 2015 at 12:28:21PM +, C.L. Martinez wrote: > Hi all, > > I am using an OpenBSD vm to act as a firewall for my laptop and as openVPN > client to connect to several openvpn/ipsec servers. > > Sometimes I need to stay connected to two or more openvpn/ipsec gateways. > And at th

Re: OpenBSD <> Commercial VPNs

On Sat, Oct 10, 2015 at 03:35:02PM -0700, Joel Wir�?mu Pauling wrote: > You could try using Linux Binary emulation layer to connect using the cisco > vpnc client. For the old proprietary Cisco IPSec implementation: > > http://www.openbsd.org/papers/slack2k11-on_compat_linux.pdf > > I've recently

Re: dd if=/dev/zero of=/dev/mykeydisk; bioctl -k /dev/mykeydisk ... = will use 0x00 as key, or will generate a secure key?

On Tue, Oct 06, 2015 at 07:17:19PM +0800, Mikael wrote: > You > > 1) Fill your keydisk with zeroes and > > 2) Apply "bioctl -k" on it. ^^^ this is not exact cmd arg, is it? j.

Re: cu with XMODEM won't transfer file

On Mon, Oct 05, 2015 at 05:15:28PM -0400, Jiri B wrote: > It works now. Unfortunatelly I can't transfer bigger files: --->%--- $ ./cu -d -l /dev/cuaU0 -115200 Connected to /dev/cuaU0 (speed 115200) # lrz -v -b -X /tmp/bsd lrz: ready to receive /tmp/bsd Local file? /b

Re: cu with XMODEM won't transfer file

On Mon, Oct 05, 2015 at 07:34:59PM +0100, Nicholas Marriott wrote: > Do you have the other side waiting for the file? You should be able to > use lrx from lrzsz. Thanks, I thought it won't work just without a help on remote host :) It works now. - previous `cu' # lrz -v -b -X /tmp/fstab lrz: r

Re: cu with XMODEM won't transfer file

> Index: command.c > === > RCS file: /cvs/src/usr.bin/cu/command.c,v > retrieving revision 1.14 > diff -u -p -r1.14 command.c > --- command.c 5 Oct 2015 17:53:56 - 1.14 > +++ command.c 5 Oct 2015 17:56:14 - > @@ -51,6 +51

Re: Booting Live openbsd image on fat32 media

There is no official live image for openbsd. There's install image which runs in ramdisk but this is not usual livecd-like environment. Thus, install onto disk - usb flash media. There's no difference between usb flash and usual disk install. Read docs, FAQ as it is obvious you have limited knowl

Re: Autopartitioning with PXE and autoinstall

> Ahh, I didn't see the snapshot before now. > I thought that I needed to re-compile the whole thing to get me on -current. > > I will try the snapshot and report back! Well, if you do not have your own testing and build process, you do not need stable ABI/API for your production apps, then just

Re: Autopartitioning with PXE and autoinstall

On Wed, Aug 05, 2015 at 11:58:55AM +0200, Heine Lysemose wrote: > Hi > > I'm trying to get my autoinstall to autopartition my disk. > > My system is a VirtualBox server and client with OpenBSD 5.7 > > So far I can boot from PXE it runs through the autoinstall just fine but > fails to do the auto

Re: dhcpd.interfaces question

On Mon, Jul 27, 2015 at 02:02:45PM +0200, Markus Rosjat wrote: > Hi there, > > I just want to setup a dhcp for a Vlan on a openbsd 5.5 box and somehow I > can't find the dhcpd.interfaces file. Is there a change in the configuration > since 5.x ? On a 4.9 installation I still have this file. No id

Re: SPARC minimum hardware specification

On Fri, Jul 17, 2015 at 08:45:23PM +, Christian Weisgerber wrote: > On 2015-07-17, BSD wrote: > > > As a new user, I find myself in the same position as the OP: very > > interested in non-Intel products. But there seems to be a vacuum of > > information around this topic. > > You're 15 years

Re: Dual Booting OpenBSD vs Windows7

> Does the boot loader of OpenBSD ( first step of booting OpenBSD that > display boot> ) can boot other partiotions OS with boot command like *boot > hd0a:/xyz* ? > cheers. man 8 boot on amd64 box: DESCRIPTION The main purpose of this program is to load the system kernel while dealing w

Re: Dual Booting OpenBSD vs Windows7

On Mon, Jun 29, 2015 at 03:49:38PM +0330, Mohammad BadieZadegan wrote: > Dear OpenBSD users, > As I reported my issue was resolved by bootice and grub4dos. > But on the second systems this procedure can not resolve dual booting. > At the section of 4.9 of FAQ#4 told that creating openbsd.pbr file b

Re: PF Packet Flow Diagram

> > IIRC pf packet flow is also influenced by routing which is done > > before pf. That's why local sourced traffic for remote destination > > cannot be redirected back to local host. > > Could you help me understand this a little better? How do you mean traffic > locally originated by the firewal

Re: PF Packet Flow Diagram

On Thu, Jun 25, 2015 at 10:15:08AM +0100, Andy Lemin wrote: > Surprised I've not had any replies for this? > http://s12.postimg.org/i4pggq465/Open_BSDPFPacket_Flow.jpg > > > I copied this from a diagram I found some years ago which has b

Re: jail_bin_add: script to add binary and libs to chroot

On Mon, Jun 08, 2015 at 01:46:17AM -0400, dan mclaughlin wrote: > i figure this should be useful to some. ... it seems somebody doesn't know jailkit which is in ports :) no idea why did you send it to tech@... j.

Re: upgrade 5.6 to 5.7 with encrypted partition

On Wed, Jun 03, 2015 at 01:56:55AM -0500, Okupandolared wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Hello friends, > > OpenBSD 5.6 on my current system, I encrypt my partcion /var with: > > bioctl -c C -r 8192 -l /dev/sd3a softraid0 > > when I turn on my machine, I have to wr

Re: How does it work, shell_exec and exec of php-fpm in OpenBSD 5.6?

On Mon, Jun 01, 2015 at 11:49:39AM -0500, Okupandolared wrote: > Hi, > > I have an web form. > > I need send of webform to script bash > > webform.html --> PHP proces --> create.sh > > create.sh > #!/bin/ksh > # Create user > > echo "hi!! your pass $1" > crypted="$(echo -n "$1" | smtpctl encry

Re: git crashes on clone

On Fri, May 29, 2015 at 01:04:58PM +0200, Riccardo Mottola wrote: > Hi, > > I'm on OpenBSD, 3.7, x86 ^^^ - really? If so, nobody care for this historic version. > git-1.9.3 GIT - Tree History Storage Tool > > git installed from preb

Re: Inherited directory file permissions on BSD

On Thu, May 28, 2015 at 02:40:24PM +0200, n.reu...@hxgn.net wrote: > Hi misc@, > > i just discovered that on BSD, a file inherits the group permissions from > the directory it is created in (contrary to Linux, which uses the default > group of the user). > > But i failed to find more information

Re: Phone suggestion.

On Mon, May 25, 2015 at 11:40:05PM +0530, Jay Patel wrote: > Thanks John for in dept detail... BB seems good. be cause i travel lot and > mail usually using mobile only. keyboard seems better idea. Nobody cares about your personal stuff, so back to OpenBSD or STFU. Thx. j.

Re: iwm does not connect to network anymore

On Mon, May 25, 2015 at 12:09:31PM +0200, Marko Cupa�? wrote: > iwm0: flags=8802 mtu 1500 > lladdr 5c:51:4f:78:c6:1b > priority: 4 > groups: wlan > media: IEEE802.11 autoselect (DS1 mode 11g) > status: no network > ieee80211: nwid ktulhu wpakey wpaprotos wpa1,wp

Re: syslog-ng+ELK

On Sat, May 23, 2015 at 10:41:41AM -0400, Predrag Punosevac wrote: > Hi Misc, > > I have been running syslog-ng centralized syslog server on OpenBSD for a > about six months now. I have also started looking into more > sophisticated ways to search, analyze, and visualize log data. Currently > I us

<    1   2   3   4   5   6   >