Hi Chris,
On Tue, May 30, 2023 at 8:59 AM Chris Cappuccio wrote:
> Samuel Jayden [samueljaydan1...@gmail.com] wrote:
> > Hi again,
> >
> > Just for the record:
> > I've downgraded to OpenBSD 7.2 (reinstalled) and everything is working
> like
> > a charm again.
> > I don't know what is wrong with
My bad.
Just plain authenticate with "/path/to/the/htpasswd/file" above the fastcgi
line did the trick.
Regards,
Fabio
Hi misc,
Am trying to add HTTP Basic auth to an specific location in httpd.conf (a1).
Is it possible?
The other locations I want to mantain unprotected.
usually can be done to the entire site with:
authenticate "HTTP Basic" with "/htdocs/dev/.htpasswd"
but for specific files, dun
Sorry for top posting,
Would
https://openvpn.net/vpn-server-resources/site-to-site-layer-2-bridging-using-openvpn-access-server/
solve your problem?
Regards,
Erik
Op 31-3-2020 om 11:34 schreef Chris Rawnsley:
> In the period of The Great Isolation, a friend and I wish to play
> a game that has
Wondering if someone can help point me in the right direction.
relayd keeps crashing on me, I suspect someone is attacking using corrupted
packets in someway.
Other attacks are much higher than normal (application layer)
States look look inline (less than 5k) processor usage about 20 percent
Runnin
Op 21-9-2018 om 14:21 schreef Gregory Edigarov:
Hello, list.
I need to setup a CA for intranet. I have some (rather not very
positive) experience with ejbca.
before I will set it up, I want to take a look at alternatives, and so
i need an advice on the choice of software.
what would you guys
Op 3-3-2018 om 22:07 schreef Jeffrey Joshua Rollin:
Hi all,
I've installed OpenBSD today (not new to it, or to the list, but I am a
chronic distro-hopper), and syspatch fails with the error message:
syspatch: invalid URL configured in /etc/installurl
All other software I've installed (includin
Op 9-12-2017 om 16:03 schreef Marc Peters:
On Sat, Dec 09, 2017 at 01:50:37PM +0300, Denis wrote:
Can you share IPv6 part of PF.conf you're using for local network SLAAC?
Did you even bother to open the link Claus send? There is everything neatly
documented you need IPv6 wise to get it up and
Op 8-12-2017 om 15:07 schreef Jan Kalkus:
For what it’s worth, I’ve noticed Windows frequently will not grab IPv6
addresses via SLAAC.
If I disable IPv6 on the network interface and then re-enable it, then I will
be assigned an IPv6 address.
Jan Kalkus
[snip]
I would recheck my configurati
Did you test whether disabling ruleset optimization "fixes"
the issue in your case too?
\md
Gesendet: Freitag, 07. Juli 2017 um 02:59 Uhr
Von: "rafal.ramocki"
An: misc@openbsd.org
Betreff: Re: authpf error: failed to create table (Device busy)
It looks like I've just hit the same bug. It loo
Hi again
i was able to further track down the issue.
If i set ruleset-optimization to none everything works fine.
So it seems that the behavior is triggered somehow by the
optimizer.
Having a look at where the EBUSY is triggered, it looks like
pf_find_ruleset in pfr_ina_define (sys/net/pf_tabl
Hi
I recently transmitted a bug report concerning an authpf issue in 6.1
(see also [1]) where loading the rules in the authpf anchor fails like
this:
"pfctl: failed to create table __automatic_ba6b4284_0 in /newuser(2571
I am struggling to setup an ipsec vpn to azure.
Following the azure IPSec parameters in the doc below:
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-devices
Getting the below errors in isakmpd, and am stumped where to look next:
Default exchange_run: exchange_validate fa
Op 23-10-2016 om 17:01 schreef Thuban:
> Hi,
> I have an openvpn server running and working, but can't
> go "outside" the server to access the web.
>
> To configure the server, I followed this :
> http://2f30.org/guides/openvpn.html
>
> So ip forwarding is ative, vpn port is open, clients can conne
'Encrypting external disks'
http://www.openbsd.org/faq/faq14.html#softraidCrypto
Followed the FAQ instructions EXACTLY to encrypt an external drive, then copied
data to it and after restarting the computer again.. I cannot access the drive,
infact it doesn't look like anything is even on it. Thi
On 31-01-16 17:13, LÉVAI Dániel wrote:
LÉVAI Dániel @ 2016-01-31T14:10:21 +0100:
Stuart Henderson @ 2016-01-30T23:01:54 +0100:
On 2016-01-30, LÉVAI Dániel wrote:
Hi!
My ISP recently enabled ipv6 on their network, and started sending
router advertisements (offering a /64 prefix) on their pppo
Using an HP proliant microserver N40 as firewall will get you enough
bandwith at a very reasoble price (approx. 200 Euro). My 500 Mbit/s link
can be fully saturated both down and uplink.
Firewalling something like 10 vlan's (using a dedicated em interface for
egress, and bge for the vlan's) works w
Stefan Olsson schreef op 5-11-2014 om 16:48:
>> That needs to go in a dhclient config file, you'll need different config
>> files for each interface and run dhclient from a hostname.if line like
>> "!dhclient -c /etc/dhclient-nogw em0".
> is it not enough to just append the following to /etc/dhclie
So I know the rule.. only remember a few very very long passwords (ex.:
based on several words and a few special chars), and keep the rest of the
passwords in a password manager (those aren't remembered and extreme long).
But this gets me to 2 questions:
- Are there any default password managers
Thanks everyone, now I understand!
have a nice day! :) :)
2013/11/26 Ted Unangst
> On Tue, Nov 26, 2013 at 09:49, obsd, cgi wrote:
> > Wouldn't it be much easier that before I create the bioctl softraid
> CRYPTO
> > I would dd zero the psychical disk for the f
Wouldn't it be much easier that before I create the bioctl softraid CRYPTO
I would dd zero the psychical disk for the first.. dunno, 10 MBytes?
2013/11/25 Nick Holland
> On 11/25/13 04:07, obsd, cgi wrote:
> > according to:
> > http://www.openbsd.org/cgi-bin/man.cgi?query=
according to:
http://www.openbsd.org/cgi-bin/man.cgi?query=bioctl
dd if=/dev/zero of=/dev/rsd3c bs=1m count=1
is needed. but Why?
http://i.imgur.com/9SJOrhq.png
In the directory listing the ISO file looks like ~40 MByte, but the reality
is 4 GBytes. What could the problem be? Or I should use nginx since apache
will be obsolete? :)
Thanks!
I installed XFCE4. It works :) BIG THANKS!
2013/10/10 Richard Toohey
> On 10/10/13 18:13, obsd, cgi wrote:
>
>> Hi!
>>
>> "External tutorial for 4.8 vs. official documentation for 5.3.
>> This leads to the nonsense you've done to your 5.3 system below.
xe0 phy 16: Generic IEEE 802.3u media interface, rev. 1: OUI
0x000ec6, model 0x0006
#
Only problem that after a reboot I have to re-plug the RJ45 because there
will be no link.
2013/10/4 Janne Johansson
> I bought two blue $2 usb-eth from china, they did not work on obsd, but
> similar st
-openbsd-5-3-amd64 )
Thanks
UPDATE: oh, ok I just read the bottom part: "don't use virtualbox." - so
the bug comes out when using virtualbox?, ok, Thanks! I will try it with
other VM's or directly!
2013/10/9 Jérémie Courrèges-Anglas
> "obsd, cgi" writes:
&g
I tried to install GNOME on OpenBSD 5.3 amd64 for Desktop use (on
VirtualBox), see the howto below.
But after the howto, reboot, startx with a normal user:
https://i.imgur.com/MaT8lcW.png
Xorg.0.log
https://pastee.org/p8ppa
# original:
http://www.gabsoftware.com/tips/tutorial-install-gnome-deskt
Hi!
Can someone please mention a working USB to Ethernet adapter for OpenBSD
5.3? (anybody has a working one and can share the name of it?)
It doesn't need to be Gbit big... just a 10/100 would be more then enough..
+1 if it could be buyed from:
http://www.ebay.co.uk/
Many Thanks, have a nice
http://unix.stackexchange.com/questions/88062/how-to-enable-cgi-in-openbsd
How could someone use a CGI (with a shell script) on OpenBSD? What could
the problem be?
The CGI is this:
# cat /var/www/htdocs/cgi-bin/SEARCH.cgi
printf "Content-type: text/html\n\n";
printf hi
but it keeps saying:
#
I have an OpenBSD 5.1 i386 installed. I have no GUI/X. I googled for the
answer but I can't find authentic one. How can I connect to a WPA2 PSK/AES
wifi network using only the terminal? (so I don't have a "network manager"
to simply select the given SSID, then enter passphare)
Thanks for the short
SshGuard are just a layer of the onion.
Not the sole solution.
Most methods you can, with certain degrees of effort and stubbornness,
circumvent or break.
/hasse
-Ursprungligt meddelande-
Från: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] För David
Diggles
Skickat: den 26 juli 2
-Ursprungligt meddelande-
Från: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] För Chris
Lobkowicz
Skickat: den 26 juli 2012 01:26
Till: misc@openbsd.org
Ämne: Re: sshguard
I use both. Sshguard seems to catch a lot, and the subsequent pf ruleset for
max-src-conn seems to catch a fa
-Ursprungligt meddelande-
Från: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] För Otto
Moerbeek
Skickat: den 25 juli 2012 16:05
Till: Hasse Hansson
Kopia: misc@openbsd.org
Ämne: Re: sshguard
On Wed, Jul 25, 2012 at 02:25:44PM +0200, Hasse Hansson wrote:
> Hello all.
> # uname -a
-Ursprungligt meddelande-
Från: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] För Otto
Moerbeek
Skickat: den 25 juli 2012 16:05
Till: Hasse Hansson
Kopia: misc@openbsd.org
Ämne: Re: sshguard
On Wed, Jul 25, 2012 at 02:25:44PM +0200, Hasse Hansson wrote:
> Hello all.
> # uname -a
-Ursprungligt meddelande-
Fren: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] Fvr Stuart
Henderson
Skickat: den 28 maj 2012 13:42
Till: misc@openbsd.org
Dmne: Re: Problem understanding portupgrade error message
On 2012-05-27, Geir Svalland wrote:
> Can't install p5-DBD-SQLite-1.3
-Ursprungligt meddelande-
Fren: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] Fvr David
Diggles
Skickat: den 28 maj 2012 03:54
Till: misc@openbsd.org
Dmne: Re: spamd greylisting: false positives
Ok, I searched calomel and had a good laugh.
"smells like calomel"
Grow up !
I reco
-Ursprungligt meddelande-
Fren: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] Fvr David
Diggles
Skickat: den 27 maj 2012 02:53
Till: misc@openbsd.org
Dmne: Re: spamd greylisting: false positives
This may seem like a dead horse to some by now, but I am disappointed no one
replied t
-Ursprungligt meddelande-
Fren: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] Fvr David
Diggles
Skickat: den 25 maj 2012 11:14
Till: misc@openbsd.org
Dmne: Re: spamd greylisting: false positives
I am now trying it with -G120:6:864
Although I can't think how to reproduce the probl
-Ursprungligt meddelande-
Fren: owner-m...@openbsd.org [mailto:owner-m...@openbsd.org] Fvr David
Diggles
Skickat: den 25 maj 2012 11:14
Till: misc@openbsd.org
Dmne: Re: spamd greylisting: false positives
I am now trying it with -G120:6:864
Although I can't think how to reproduce the probl
Hi Stefan,
On Mon, Oct 10, 2011 at 10:38 AM, Stefan Midjich wrote:
> Simplest of things but I'm failing miserably.
>
> ...
>
> With tcpdump I can see packets going to vic3, but no further.
>
>
Do you definitely have forwarding enabled?
# sysctl net.inet.ip.forwarding
net.inet.ip.forwarding=1
I
On Thu, Dec 16, 2010 at 5:21 PM, Rafal Brodewicz wrote:
> Hi.
>
> How can I pass with PF traffic from all subdomains, for example
> *.microsoft.com ?
>
>
You're thinking at the wrong layer. PF doesn't care about *.microsoft.com.
> Thanks.
> --
> Rafal Brodewicz
Jose P.G wrote:
I swear that i am not a troll. I don't understand anything, LOL, why have to
be a troll? My questions are REAL, i haven't read the faq carefully, i only
seek for help (more fast, i think).
REALLY, i don't understand, when i was learning about Linux Debian i was
doing the same que
Jose P.G wrote:
Ok, Internet is working. But i have the same problem. The strange is that i
can connect to the ftps when i am installing openbsd4.4, but not when i am
doing this. pkg_path is correct so i suppose that i am making an error
writing, though all i do is "export pkg_path=
ftp://ftp.ope
My understanding of this issue is that it is only likely to be caused by an
exploited domain, or running OpenBSD. Both should be a rare event (OpenBSD
isn't really production-ready on this hardware). It's acceptable in the
majority of cases to just let the domain be unused.
It's a bug, it's irr
> Question: How can I make sure that "em2" doesn't become "em0"
> if my dual-port NIC dies? This would be fatal for my firewall
> setup. At least the antispoof rules _must_ be bound to the
> network devices.
Yep, this is an ugly problem.
You could have a shellscript at boot scan ifconfig output a
> So you expect additional reliability from stacking ebayed cisco equipment
> with OpenBSD bridges behind them, as the original poster mentioned, and cost
> effectiveness by buying used cisco equipment and paying for relicensing so
> that you can get updates, compared to setting up OpenBSD boxes as
On Fri, Aug 08, 2008 at 06:54:05PM -0500, patric conant wrote:
> You strongly overestimate the value of your comments (3 cents), it seems
> like there are many places more appropriate than this one for you to suggest
> middle-of-the-road hardware running a proprietary OS that has among the
> worst
> But if ISP's must have blackbox on their interfaces (hello FBI),than you can't
> trust your local hosting company even if they are very friendly ;-)
Cisco prefers a blueish-black color. Juniper boxes tend to be white and blue.
In most Western countries there are many ISPs; if many of them were
> Option -f filename, Filename of the key file, seems to be the right
> option and '-' is the usual way of indicating stdin.
So? Just use /dev/stdin.
I'm running OpenBSD 4.2 on SPARC64. I have managed to get a simple BGP setup
working on IPv4, however the IPv6 version of the same setup fails. A BGP
session is established in both cases and peer B claims to be announcing what it
should be announcing, yet in the IPv6 version peer A does not add
Currently I'm blackholing and rejecting some traffic with route add
-reject/-blackhole 127.0.0.1; this works fine, but bounces all the
rejected/blackholed traffic to the loopback interface.
This behaviour is.. annoying, and possibly ineffecient. I'm probably searching
for a null/blackhole/fak
Hi All,
I have a small problem with the KSH and Bash on a OpenBSD 4.2. with very long
commands.
I have
echo $SHELL
/bin/ksh and
echo $KSH_VERSION
@(#)PD KSH v5.2.14 99/07/13.2
and in my ~/.inputrc is
set horizontal-scroll-mode Off
I found this setting in the man readline
http://www.openbsd.org/c
To: Stuart Henderson <[EMAIL PROTECTED]>
Subject: Re: brute force voip QoS
> > pass out queue (std_out,lowdelay)
>
> here, you place ACKs from downloads at a higher priority than
> your voip calls. this is unlikely to be what you want with priq
> over a 140Kb/s link..
According to pf.conf, that
You said you live rurally - in that case, perhaps you should build/buy a small
quality (read as: won't get wet) shed, have your systems there and run some
outdoor-rated CAT5e from it to your house. That should allow you to use KVM
extenders, serial, etc. Remember the inverse-square law for RF. R
> My bandwidth is very very limited. Not more than 140 Kbps on both
> sides at any time. I use G729 as a codec in order to reduce
> consumption. Use the pf.conf below, when VoIP is the only traffic,
> the quality of the calls is excelent with no voice cutting at all.
> Now if I start a download I i
Hello All,
I have a problem with pkg_add on a OpenBSD 4.2.
I tried to install the package freebsd_lib-4.11p0.tgz.
The first try failed because the Internet connection breaks and on the
second try and get this error:
$ pkg_add -v freebsd_lib-4.11p0.tgz
Hi All,
thanks for all the suggestions.
With this it works:
cat mail.txt | egrep "[EMAIL PROTECTED]" | egrep "\.[a-zA-Z]{2,4}$"
It is probably possible to avoid the last egrep but I have not find out how.
Regards,
Stefan
>> I got in the output (Which I not want):
>> [EMAIL PROTECTED] -> I beli
Hi All,
I have a problem with regular expressions and can not solve it.
I wants to egrep from a big text file all mail addresses.
For testing I created this file:
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL P
Good Morning,
Could someone tell me what the maximum number of IP addresses OBSD will support
per interface is please?
I'd like to setup in excess of 255 IPs on my external firewall interface, and
I'm wondering how BSD will handle this.
Please advise.
Regards,
Garron Kramer
--
Th
Good Morning,
I still seem to be having problems with PF+VLANs.
It seems that PF does not want to NAT traffic from my internal VLAN to my
external VLAN IP address.
Can someone advise if they have managed to get PF (NAT) + VLAN + CARP working,
and or if anyone has experienced the same issues as
Good Morning,
I'm currently in the process of configuring a new firewall for my company and
would like to know the following:
1. Is it possible to configure OpenBSD firewall interface as follows:
carp10 - int/ext virtual eth dev (ip of CVI - shared between fw's)
|
vlan10 - int/ext virtual eth d
Hi,
does anybody get on a OpenBSD 4.x tcpdstat installed?
Tcpdstat from
http://staff.washington.edu/dittrich/talks/core02/tools/tcpdstat-uw.tar
is a very nice tool to get summary information of a tcpdump file.
The output includes the number of packets, the average rate and its standard
deviation
Hi,
I am using OpenBSD 4.0 with the package squid-2.5.STABLE13.tgz
I have a question to the /etc/squid.conf and the banner.
If I am using an Environment Checking WebSites how http://ipid.shat.net/
I get after using Squid this result:
HTTP_VIA1.1 obsd.test.com:3128 (squid/2.5.STABLE13)
or
On Thu, 8 Feb 2007 15:09:10 +0100, "mickey" <[EMAIL PROTECTED]> said:
> On Thu, Feb 08, 2007 at 03:02:32PM +0100, frantisek holop wrote:
> > hmm, on Thu, Feb 08, 2007 at 02:06:45PM +0100, mickey said that
> > > On Thu, Feb 08, 2007 at 10:13:29AM +0100, frantisek holop wrote:
> > > > hmm, on Tue, Ja
Google won't help you. Use dmesg and the manpages.
OK, first dmesg to find the real serial io ports.
If necessary man every device listed in dmesg.
I think you'll find that you have a zs or a sab device.
man sab
Look in the FILES and SEE ALSO sections of the manpage.
The message you get means
65 matches
Mail list logo
