openvpn with ed25519 ca cert

2024-04-21 Thread Peter Wens
Hi, Does libressl 3.9.0 on 7.5 lacks support for ed25519 certs using tls 1.3? Creating PKI with easy-rsa only works with ec secp521r1. with ed25519 certs openvpn says: xxx us=881571 OpenVPN 2.6.9 x86_64-unknown-openbsd7.5 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] xxx us=881757 library v

Re: ignore dns dhcpleased

2024-01-03 Thread Peter Wens
I was using unwind, but i changed over to use unbound instead and so i noticed the changes made in resolv.conf by resolvd. On 1/3/24 13:37, Stuart Henderson wrote: On 2024-01-03, Peter Wens wrote: Hi Otto, I checked it, and yes it's slaacd ... rdns_proposal_state_transition

Re: ignore dns dhcpleased

2024-01-03 Thread Peter Wens
Otto Moerbeek wrote: On Wed, Jan 03, 2024 at 12:15:04PM +0100, Peter Wens wrote: Hi, I noticed that ignoring nameservers from leases only works on IPv4 addresses. in /etc/dhcpleased.conf interface vio0 { ignore dns } resolvd still adds a IPv6 nameserver nameserver 2001:19f0:300:1704

ignore dns dhcpleased

2024-01-03 Thread Peter Wens
Hi, I noticed that ignoring nameservers from leases only works on IPv4 addresses. in /etc/dhcpleased.conf interface vio0 { ignore dns } resolvd still adds a IPv6 nameserver nameserver 2001:19f0:300:1704::6 # resolvd: vio0 Is this intentional? Best regards, Peter

Re: AUTOCONF4 flag

2021-05-01 Thread Peter Wens
Thanks for clearing this up. Peter On 5/1/21 5:08 PM, Theo de Raadt wrote: Peter Wens wrote: Hi, In OpenSBD 6.9 the AUTOCONF4 flag is not set with 'dhcp' set in hostname.if (from fresh install) You have described this incorrectly. In 6.8, choosing "dhcp" would run

AUTOCONF4 flag

2021-05-01 Thread Peter Wens
Hi, In OpenSBD 6.9 the AUTOCONF4 flag is not set with 'dhcp' set in hostname.if (from fresh install) If 'autoconf' instead of 'dhcp' is used with dhcpleased the flag is set. Is this intentional in 6.9? Best regards, Peter

Re: New support

2017-04-03 Thread Peter Wens
0 C Netherlands P T Huizen Z 1273 LD O Wenka Computer Systems I A Delta 81 M i...@wenka.nl U http://www.wenka.nl/en/ B +31 85 111 8800 X N IT security, networking and open source software consultancy. OpenBSD-based networking and VoIP support.

New support

2017-04-03 Thread Peter Wens
0 C Netherlands P T Huizen Z 1273 LD O Wenka Computer Systems I A Delta 81 M i...@wenka.nl U http://www.wenka.com/en/ B +31 85 111 8800 X N IT security, networking and open source software consultancy. OpenBSD-based networking and VoIP support.

Re: encrypted disk image

2016-05-21 Thread Peter Wens
Many thanks for clearing that up. Regards, Peter On 05/21/2016 12:38 AM, Ted Unangst wrote: Peter Wens wrote: On a encrypted (sd1) OpenBSD 5.9 install (amd64, (qemu, virtio)): I created a diskimage (dd if=/dev/urandom of=disk.img bs=1m count=100 vnconfig vnd0 disk.img fdisk -iy vnd0

Re: encrypted disk image

2016-05-20 Thread Peter Wens
no typo, just for testing 100M is enough. On 05/20/2016 09:16 PM, Maurice McCarthy wrote: On Fri, May 20, 2016 at 05:33:44PM +0200 or thereabouts, Peter Wens wrote: Hi, On a encrypted (sd1) OpenBSD 5.9 install (amd64, (qemu, virtio)): I created a diskimage (dd if=/dev/urandom of=disk.img bs

encrypted disk image

2016-05-20 Thread Peter Wens
Hi, On a encrypted (sd1) OpenBSD 5.9 install (amd64, (qemu, virtio)): I created a diskimage (dd if=/dev/urandom of=disk.img bs=1m count=100 vnconfig vnd0 disk.img fdisk -iy vnd0 disklabel -E vnd0 ( a a RAID) bioctl -c C -l /dev/vnd0a softraid0 creates sd2newfs /dev/rsd2c mount /dev/rsd2c /mnt