Yes, it's related to a SSH brute force attack.
I have just never seen the the "client" IP in the routing table before. My
IP does not exist in the routing table when I SSH to the host.
I have a hard time to understand the mechanism that added the IP to the
table.
Is this something that can be ex
Hi,
Please forgive my ignorance.
I have a small lab and I noticed this IP in the routing table:
61.174.51.232, resolves to
232.51.174.61.dial.wz.zj.dynamic.163data.com.cn
# route -n show
Routing tables
Internet:
DestinationGatewayFlags Refs Use Mtu Prio Iface
defau
Puppet may useful for that many work stations.
Are one single company using 3000 OpenBSD work stations? Cool, but I have
never heard anything like this before.
// Johan
On Jan 1, 2013 11:15 PM, "Friedrich Locke"
wrote:
> Hi folks,
>
> i am managing some openbsd machines. There are a company, he
DNS, dhcp, firewall on a stick, vpn terminator.
Sure, it would be more easy if it had 2 interfaces but with VLAN you can do
a lot of cool stuff with rbp
// Johan
On Dec 30, 2012 11:12 PM, "mxb" wrote:
> Any practical usage for this kind of hardware?
> I don't see it. Maybe someone can explain i
Since then both FreeBSD and NetBSD are ported to Raspberry Pi so it must be
doable. It's too bad I don't have the skills because it would be nice to do
this.
// Johan
On Dec 30, 2012 5:16 PM, "KarlOskar Rikås" wrote:
> Okey, I hoped I could run OpenBSD on it. I've always wanted to try OpenBSD
>
We are dead silent, waiting for 5.2
2012/9/9 Ton Muller
> is this group dead?
> 3e this mont last message
The reason I often hear why people around me goes from Windows to OSX
is often because they can't handle Windows and they think it's hard to
do pretty much anything and they just want it to work so they abandon
Microsoft for that reason.
I think there are 3 categories of people that are using OSX
Second that! Works great =)
> I have 5.0 and 5.1 working well, with 2 vCPU, on my ESXi 5.
>
> Cheers,
> Jo
Good idea! That is a nice way of helping
// Johan
2012/7/17 Gerald Thornberry :
> For those of us who don't have the hardware, is there a "shipping
> fund" we could donate to? I wouldn't mind chipping in to help get the
> hardware where it's needed.
I already have that enabled but as I wrote in the initial email that is not
enough.
Johan
On Jul 3, 2012 7:32 PM, "Sebastian Benoit" wrote:
> Johan Ryberg(jo...@securit.se) on 2012.07.03 11:28:34 +0200:
> > Hi.
> >
> > I need to log all user activity and store
Hi.
I need to log all user activity and store the data on a logging facility.
Accouting provides some information but not all.
Is it possible to use syslog and transmit every command entered by the users?
Best regards Johan
Iki Iki Iki fatang... Please let me over
On Jun 26, 2012 10:47 PM, "iki tornsen" wrote:
> "My Lord" , Théo an ex ... ^^) please make a song
Ok, in that case 450 for what its worth
Another setup was 12
On Jun 21, 2012 9:29 PM, "Mark Romer" wrote:
>
>
> On Thu, Jun 21, 2012 at 3:13 PM, Johan Ryberg wrote:
>
>> lol =)
>>
>> Mark, you must be more specific.
>>
>> What hardware
lol =)
Mark, you must be more specific.
What hardware do you have?
What kind of connection do you have between the hosts?
What is the latency between the hosts?
It's still impossible to answer your question but as a reference I got
around 450 Mbit over 1 Gb fiber with two HP G7, don't remember
http://refit.sourceforge.net???
-- Johan
On Jun 10, 2012 12:51 PM, "Jan Stary" wrote:
> I got this Mac Mini on my hands, and I would like to install
> current/macppc on it. According to
> http://www.openbsd.org/macppc.html#hardware
> the following MicMini's are supported:
>
>Mac mini (Po
I hope some developer may bring some light to this.
Regards Johan
2012/5/24 Tyler Morgan :
> Weird, I didn't expect it to help, since the docs are pretty much always
> right.
>
> Looking through the changelog of files that seem relevant to me (ip_carp.h,
> man 4 carp, /www/faq/pf/carp.html), I do
Fishy...
All documentation is pointing at the direction to default advskew on
the "primary" host and 100 on the secondary.
http://www.openbsd.org/faq/pf/carp.html
fw1: default
fw2: advskew 128
http://www.openbsd.org/cgi-bin/man.cgi?query=carp&sektion=4#end
host A: default
host B: advskew 100
Bo
Hi.
Running a standard OpenBSD 5.1 installation with 2 hosts (virtual for
this test).
The only things changed from default is that I added three interfaces
(em0, carp1 and carp2).
The problem is that I can't get Host 1 back as master automatically if
Host 2 becomes master. On the first test I bo
Hi.
Is it possible to use openssl 1.0.1 with isakmpd in OpenBSD 5.1?
I can compile openssl 1.0.1 without any problem but it's not replacing
existing openssl. It's just installed in /usr/local/ssl
I need support for hardware aes that come with 1.0.1 and the benchmark
is showing much better result
alter that?
Best regards Johan Ryberg
2012/5/13 Johan Ryberg :
> Thanks, I will lock at that =)
>
> Best regards Johan
>
> 2012/5/12 Christian Weisgerber :
>> Johan Ryberg wrote:
>>
>>> I found this information that seems very interesting:
>>> h
Thanks, I will lock at that =)
Best regards Johan
2012/5/12 Christian Weisgerber :
> Johan Ryberg wrote:
>
>> I found this information that seems very interesting:
>> http://www.openbsd.org/faq/upgrade47.html#hmac-sha2
>
>> ike esp from 192.168.1.1 to 10.0
cumentation say that
"In particular the default authentication algorithm HMAC-SHA-256 is
affected"
I could just try to change the config on both ends and add "auth
hmac-md5" but I don't want to "trial and error" in this case.
Best regards Johan Ryberg
Ah, ok.
Sorry Mark. I didn't know that.
Johan
On May 10, 2012 12:46 AM, "Alexander Hall" wrote:
> On 05/09/12 22:55, Johan Ryberg wrote:
>
>> For me as well. Maybe someone needs to read more careful and just don't
>> push enter all the way.
>>
For me as well. Maybe someone needs to read more careful and just don't
push enter all the way.
// Johan
On May 9, 2012 10:02 PM, "Tobias Sarnowski" wrote:
> On 05/09/12 21:33, mark sullivan wrote:
>
>> Hi everybody,
>> I was coming to OpenBSD 5.1 looking for reasonable privacy and when I
>> in
I forgot to mention one thing. I'm for sure glad to be in the project but
it's not my project so I don't want to take any credit for it. I have just
made some adjustments to make it build the latest versions of OpenBSD with
help from others.
Best regards Johan Ryberg
On May
Yes. I will fix this within the next 24 hours. I fully understand the
concerns and the reason.
Best regards Johan Ryberg
On May 8, 2012 4:25 AM, "Nick Holland" wrote:
> On 05/07/12 00:52, Johan Ryberg wrote:
> > Hi.
> >
> > Not stupid at all.
> >
>
scripts has been added to simplify and the script that makes
a bootable usb image of the install51.iso is one example of that but that
is not the Flashboot core, just a little tool.
Best regards Johan Ryberg
On May 7, 2012 12:31 AM, "cody chandler" wrote:
> Hello,
>
> I have a possi
also builds i386 and amd64 USB installations images
from install51.iso to make it really simple to install OpenBSD from
USB pendrives (memory sticks).
Best regards Johan Ryberg
He is using OpenBSD as a guest in Xen, not as a host.
// Johan Ryberg
On May 6, 2012 3:14 PM, "Tomas Bodzar" wrote:
> On Sat, May 5, 2012 at 7:44 PM, Martijn Rijkeboer
> wrote:
> > Hi,
> >
> > When booting GENERIC.MP on Xen I get the following page
s not need any
high privileges to run.
I don't have any problem with SSH so I will not use this any way, it
just seems to much work and another layer of overhead just to get rid
of some lag that never caused me any problem.
-- Johan Ryberg
2012/4/11 bofh :
> And apparently they don
Regarding "f_ether.c: IFQ_SET_MAXLEN(&arpintrq, 50); /*
XXX hate magic numbers */"
Is 50 the limitation of logical interface per each physical or is it
50 carp per logic interface?
Best regards Johan Ryberg
2012/4/11 Ian Chard :
> On 03/04/12 10:32, Camiel Dobbelaa
Test stuff for example. I'm running a virtual network with 3 OpenBSD
routers (ospf) in VMware right now to test redundancy and different
setups.
// Johan
2012/3/25 Mihai Popescu :
> Hello,
>
> What is the point of running OpenBSD (or any other OS) in a virtual
> environment? What do you get or wh
HTC Desire Z (physical qwerty keyboard) with CyanogenMod. Dropbear is the
standard ssh client in cm 7, works good.
//Johan Ryberg
Den 19 feb 2012 18:14 skrev "Anonymous" :
> > > What newer smartphones do you recommend for using also as a tool for
> > > managing OpenBS
What was the error message?
What do you want to do with the disk less system?
-- Johan
2011/11/9 Li, David :
> Hi,
>
> My goal is to use pxeboot to boot up a diskless x86_64 machine with
openbsd.
> I am aware of this page: http://www.openbsd.org/faq/faq6.html#PXE and
followed
> the instructions.
Hi
Just read this: http://securityreason.com/achievement_securityalert/102
Claiming that OpenBSD 5.0 is affected
Is it?
-- Johan
Hi there
I has done some testing with install50.iso and USB stick installations
and yesterday I had problem with corrupt packages like xetc50.tgz and
others and I wanted to debug what happened but today every things
works perfectly.
I haven't changed any scripts that I'm using and the only thing
Sorry but we can only support official hardware platforms but you are
right, it would be awesome =)
Best regards Johan
2011/11/3 Michel Blais :
> Would be awsome if the're was support for embedded board MIPS processor.
>
> Le 2011-11-03 07:17, Johan Ryberg a icrit :
>>
>&g
Hi
Flashboot is a small infrastructure to build minimal OpenBSD
installations suitable for booting of flash and USB devices originally
by Damien Miller. Flashboot his is derived from the scripts and tools
used to build the OpenBSD installation media and has evolved over the
years.
You will found
Great news =)
This is awesome! Good work
// Johan
Please stop feeding the troll, just ignore this thread and let it die.
Zantgo, respect the effort people in this list are doing to help
people like you and me by giving all necessary input.
READ this page before you send another email to the list:
http://www.openbsd.org/mail.html
Best regards Jo
YES! I look forward to get my CD's in the mail now =)
-- Johan
2011/10/26 OpenBSD Europe :
> We have started shipping OpenBSD 5.0 :-)
What "hardware" version did you use? Have you tried different?
// Johan
2011/10/19 Gonzalo L. R. :
> dmesg?
>
> On Wed, 19 Oct 2011 11:55:19 -0700, Gene wrote:
>> I'm trying to run OpenBSD 4.9 (amd64) under VMware vSphere 5 (ESXi 5).
> I
>> set up four virtual machines with one core, 256 MB of R
2011/10/18 vovka :
> I am getting on average a weighted speed of approximately 80MB/sec
I got 116MB/sec on a HP DL360 G7 Intel(R) Xeon(R) CPU E5335 @ 2.00GHz,
2000.37 MHz with 4.9 amd64 if that's interesting for someone for some
kind of reference.
-- Johan
2011/10/13 Maxim Bourmistrov :
> Hi misc@,
>
> I'm trying to understand why my IPSec tunnel not functioning as expected
and
> especially
> why packets start flow as soon as I start to ping from the opposite side.
>
> Hopefully someone can explain what is going on and why.
>
> Following setup:
>
> N
2011/10/13 Henning Brauer :
> it's not as if the tools were broken.
>
> us moving a lot of the development process that used to happen on
> internal mailing lists to tech has helped a little bit with getting
> more people to get involved, but it could still be better.
>
> blaming the shortage of th
here all bugs reports are written.
I thinks is has a great psychological impact since a very important
function of the community is broken and it has been broken for a while
now.
Best regards Johan Ryberg
Why not https://github.com/openbsd?
I think the whole community can benefit a total move to github.
They have it all =)
Regards Johan
My own experience about "newbe" questions is that if you put effort in
the question and explains how far you got and provides all info then
you often got god answers but if you simply haven't tried any thing
and not read faq, howtos, older conversations in the list and so on
then you often got the
2011/10/9 Stefan Midjich :
> It's for a gateway with one external address on the outside interface
> and an internal network on the inside, with servers on the internal
> network that need to receive load balanced traffic.
>
> So the aim is to have a carp0 on the outside between two systems. One
>
2011/10/9 Stefan Midjich :
> I assume you mean balancing? I wanted to go for balancing ip but
> that's only because I read about it in the carp(4) manual, now I think
> I'll go with just vhid carpdev and pass set to see if I can get the
> load balancing working with just one ip-address on the carp
2011/10/9 Stefan Midjich :
> Everything I read about CARP, including my Book on PF 2nd edition,
> says you're supposed to have two different ip-addresses set for each
> carp device, for two hosts that is. And one third ip-address in the
> same network on the psuedo carp0 interface you create.
>
> S
You can mount with duid in fstab but I can't find a way to change root
device to a duid in the boot manual. You must use a device found in
/dev/
http://www.openbsd.org/cgi-bin/man.cgi?query=boot&sektion=8&arch=i386&apropos=0&manpath=OpenBSD+Current
// Johan
2011/10/9 Jiri B :
> Hello,
>
> I trie
I think Flashboot will give you a flying start. Look at the scripts
that build the pendrive (build-usbkernel.sh and build-usbimage.sh)
https://github.com/openbsd/flashboot
Best regards Johan
2011/10/6 Jiri B :
> Hello,
>
> would be possible to tell kernel via `bsd -a' or with extended
> boot.con
53 matches
Mail list logo
