Hi,
On Fri, 30.01.2009 at 04:08:34 -0800, OpenBSD User
wrote:
> Just to add my vote.
>
> I'm with Claudio on this one.
me too.
> Validate the input yes, but don't tamper with what's
> not yours
After reading the thread on idr, I'm under the impression that the
suggested "fix" is sugge
Hi,
I'd like to have both the most bandwidth and the most throughput for
"fast", if traffic classified as eligible for "fast" needs to be
transferred, and otherwise most of the bandwidth available for "slow",
but leaving 100Kb free for "fast" at any one time, and, preferably,
also leaving a bit of
Hi Claudio,
On Thu, 29.01.2009 at 17:13:32 +0100, Claudio Jeker
wrote:
> Will most probably not work. The -current bgpd has a reworked kroute.c
> that needs a -current kernel.
thanks for confirming my doubts. Now I can try to find out whether the
changes in kroute.c are sufficiently isolated fr
Hi Stuart,
On Thu, 29.01.2009 at 16:52:55 +, Stuart Henderson
wrote:
> This should work, but I run -current everywhere, I have no 4.4 boxes
> to test it on.
thanks! I'll try that first, although I hoped to also bag the other
improvements while I'm at it.
> Incidentally this looks like the
Hi,
On Thu, 29.01.2009 at 14:47:30 +0100, Toni Mueller
wrote:
> And we get the joy of threading them together ourselves, understanding
> OpenBGPd's code in the process... maybe.
can I just "plug in" a bgpd from -current into a 4.4, or preferably 4.3
system, assuming th
Hi Henning,
On Mon, 22.12.2008 at 21:41:18 +0100, Henning Brauer
wrote:
> scrub in $somewhere from $foo to $bar max-mss 1400
>
> is perfectly valid.
thanks for the example!
--
Kind regards,
--Toni++
Hi,
On Sat, 10.01.2009 at 12:11:03 -0600, tico wrote:
> http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/bgpd/rde.c
looking at CVS, it seems that multiple patches are needed, right?
And we get the joy of threading them together ourselves, understanding
OpenBGPd's code in the process... maybe.
Hi,
On Tue, 27.01.2009 at 21:37:28 +, Dieter
wrote:
> Toni writes:
> > positives and false negatives. After deciding that the results were
> > far too unreliable, the page was pulled.
>
> That too. For one thing people were entering the serial numbers
> using lower case letters and getting
Hi,
On Mon, 26.01.2009 at 17:08:51 +, Dieter
wrote:
> Your suggestion of smartmontools is helpful, thank you.
thanks - I have just sent an email to them, esp. after seeing that
there are people from big name companies involved, who could procure
at least some of the required documentation i
Hi,
On Mon, 26.01.2009 at 17:08:51 +, Dieter
wrote:
> It is easy to set up a slashdot account. Or you can post as "anonymous
> coward".
yes, but I don't want to set up a /. account right now, and posting as
AC wouldn't likely solve the problem.
> that he has another slashdot account that
Hi,
On Mon, 26.01.2009 at 15:39:36 +0100, Raimo Niskanen
wrote:
> How can I know if I have a suspicious drive?
you won't, imho, until Seagate will deliver usable data on this issue.
Their statements so far were a long way from being trust-inspiring,
imho.
My best bet is currently to wait for a
Hi,
On Sun, 25.01.2009 at 16:27:14 +, Dieter
wrote:
> I wrote:
> > You wrote:
> > > Is Maxtorman correct about the 320 log entries?
> > My dealer told me a similar story, but I don't know where he had it
> > from.
>
> I guess the next step is to find out if Maxtorman is correct about this
Hi,
On Thu, 20.11.2008 at 17:08:31 +, Stuart Henderson
wrote:
> also note you can queue the _inbound_ packets, which will associate
> a queue with the state table entry, then the queue of this name will
> be used when those packets are sent _out_.
this sounds like it fills a gap in the man
Hi,
On Fri, 23.01.2009 at 21:28:34 +, Dieter
wrote:
> Recovering from Seagate's problematic 7200.11 firmware.
first off, several other product lines are affected, too. In
particular, the popular ES and ES.2 "server grade" disks are also
affected, to the best of my knowledge. Seagate only a
On Fri, 16.01.2009 at 14:42:05 -0500, Nick Guenther wrote:
> Out of curiousity, what are you doing in Java that needs Windows?
Maybe writing Java apps that use specific Windows APIs (at least
"optionally")? I'm guess that you don't get these in non-Windows builds
of Java...
Kind regards,
--Toni
Hi,
On Thu, 08.01.2009 at 08:50:57 +0100, Maurice Janssen wrote:
> There's another option: change the MAC address of the new card to match
> the old card's MAC address. Somthing like this in your hostname.if:
> dhcp NONE NONE NONE lladdr aa:bb:cc:dd:ee:ff
this obviously "only" works for the Ope
On Tue, 06.01.2009 at 06:27:17 -0500, ppruett-lists wrote:
> Actually a lot linux users suggest using mysql for the non relational
> authentication tables
> ;)
I knew you've got to be kidding!
--
Kind regards,
--Toni++
Hi,
On Tue, 06.01.2009 at 14:42:09 +0100, Henning Brauer
wrote:
> * Toni Mueller [2009-01-06 12:25]:
> > This pattern comes up often, but almost noone suggests an alternative
> > LDAP server package.
> I am not aware of any. Lack of options doesn't make openldap better
Hi,
On Tue, 06.01.2009 at 17:11:45 -0600, Jon Slusher
wrote:
> and for some reason it tried to take over as the MASTER, while its CARP
a shot in the dark: Are you sure that CARP traffic flows freely between
the two firewalls, and that they both have the same password? That the
IP setup is gene
Hi,
On Tue, 06.01.2009 at 01:08:27 +0100, Henning Brauer
wrote:
> I am using openldap with ldbm backend in an not exactly small
> installation for 9 or 10 years now. I have never ever experienced a
> broken database. never.
my last encounter with ldbm, a few years back, drove me to bdb really
f
Hi,
I just discovered that pfsync needs the sync device to be numbered,
even if I simply try to use the multicast address and don't specify a
syncpeer. Not numbering it, but simply pulling it up, yielded (eg.)
# ifconfig pfsync0 syncdev ste3
ifconfig: SIOCSETPFSYNC: No buffer space available
I
Hi,
On Tue, 23.12.2008 at 16:02:02 -0500, Andrew Ruscica wrote:
> Seconds for OTRS; obsd has been running it well for me for the last
> four years.
I deliberately tried to make a "neutral" kind of statement, because
some systems work better in one context, and some systems work better
in a diffe
Hi,
On Tue, 23.12.2008 at 19:44:57 +0200, open...@bgone.net
wrote:
> I would like to get your suggestions and experience with some Trouble
> Ticket Systems on OpenBSD.
> It should be rather simple.
> Users should be able to sand notes to support and check status of it.
> Support should be able t
Hi,
On Mon, 22.12.2008 at 15:59:29 -0600, Jim Aragon wrote:
> This may be helpful:
> http://tech.groups.yahoo.com/group/ygmailadmin/
thanks for the info!
But I'm aggravated about them taking for granted that they need an
exception for their mail service, instead of just playing by the rules,
e
Hi,
On Tue, 23.12.2008 at 14:49:40 +0530, Girish Venkatachalam
wrote:
> Well we discussed long ago that there is no such thing as a standard
> that says that mails be retried from the same IP address.
>
> So technically speaking yahoo! does not break any standard.
I dimly remember that I had t
Hi,
On Sat, 20.12.2008 at 14:13:34 +, Christian Weisgerber
wrote:
> However, sometimes pppoe just seems get wedged and stop retrying.
> Does anybody else see this too?
"yes", across a number of versions of OpenBSD, and for the last few
years. I have static IPs, too, but are disconnected eve
On Fri, 19.12.2008 at 10:38:28 +0100, Toni Mueller
wrote:
> "Ping" with oversized packets (I see 1548 bytes with tcpdump, and the
> user set a packet size of slightly more than 1500 bytes) from
The user uses this command to test from his desktop computer:
ping 1.2.3.4 -l
Hi,
I have a VPN running which, for this problem, looks roughly like this:
net-West - West - East - net-East
|
+--- South - net-South
"West" is the central site, and "East" and "South" are quite similarly
configured branch offices. Esp., regarding the packe
Hi,
thanks for answering. I have some comments, though:
On Wed, 17.12.2008 at 07:33:19 -0700, Duncan Patton a Campbell
wrote:
> On Wed, 17 Dec 2008 13:40:35 +0100 Toni Mueller wrote:
> > I have question regarding Ethernet flow control. It would be nice to be
> > able to see an
Hello,
I have question regarding Ethernet flow control. It would be nice to be
able to see and/or adjust the current flow control configuration for
individual interfaces from the command line, at 100 and 1000MBit/s. My
interfaces usually use the fxp(4) or em(4) drivers. I dimly remember
having see
Hello,
On Mon, 15.12.2008 at 15:47:06 +0100, Paul de Weerd wrote:
> On Mon, Dec 15, 2008 at 10:40:44PM +0800, C. Soragan Ong wrote:
> | I am using OpenBSD 4.4 and is having problem detecting 4GB ram. Below is the
> | dmesg
>
> Well, all memory is found (see the spdmem entries in your dmesg), but
On Mon, 15.12.2008 at 10:14:41 +0200, Jussi Peltola wrote:
> IME forwarded packets seem to somehow have a higher priority than
> self-originated traffic in most OS's; don't know why this is, just a gut
> feeling.
I guess that this is true. In any case, if he would be able to maintain
a bandwidth
Hi,
On Sat, 13.12.2008 at 01:09:35 -0500, bofh wrote:
> Really unfortunate nothing non-PHP based.
well, we're running Interchange (www.icdevgroup.org), which is
Perl-based, but will most likely switch to Satchmo
(www.satchmoproject.com), which was already mentioned, which works on
top of Django
Hi,
On Thu, 11.12.2008 at 21:12:43 +, Stuart Henderson
wrote:
> On 2008-12-11, Toni Mueller wrote:
> > On Thu, 11.12.2008 at 02:29:22 +, Stuart Henderson
> > wrote:
> >> On 2008-12-10, Toni Mueller wrote:
> >> > Example:
> >> >
Hi,
On Thu, 11.12.2008 at 21:35:36 +0200, Jussi Peltola wrote:
> On Thu, Dec 11, 2008 at 10:30:50AM -0800, Jeff_1981 wrote:
> > Please can you indicate me how to run Windows or Linux under OpenBSD ?
> > Under Linux for example there is possibility to virtualize another OS.
> > If the other OS is
Hi,
thanks for your answer.
On Thu, 11.12.2008 at 02:29:22 +, Stuart Henderson
wrote:
> On 2008-12-10, Toni Mueller wrote:
> > Example:
> > pass on $ext_if all max-mss 1400
> you should use "scrub on ... max-mss 1400"
I have seen, and verified, that that
Hi,
I have the following problem: For some packets, I would like to say
that some options be applied to packets.
Example:
pass on $ext_if all max-mss 1400
This line yields a syntax error.
According to pf.conf(5), this should work, with the following
derivation:
line -> pf-rule -> action
Hi,
On Thu, 20.11.2008 at 14:57:21 +0200, Yuriy A. Dmitrishin <[EMAIL PROTECTED]>
wrote:
> router sm-msp-queue[3879]: mAFNUix6020927: to=root, delay=4+12:59:18,
> xdelay=00:00:00, mailer=relay, pri=19473085, relay=[127.0.0.1], dsn=4.0.0,
> stat=Deferred: Connection refused by [127.0.0.1]
>
> H
Hi,
On Tue, 25.11.2008 at 12:11:42 +0100, Christoph Leser <[EMAIL PROTECTED]> wrote:
> But it uses 3, if it initiates the exchange.
>
> if so, I would guess that is the reason for the 'NO PROPOSAL CHOSEN' messages.
> Can I configure 61443 es encapsulation mode in isakmpd.conf?
I'm not aware of s
On Fri, 21.11.2008 at 13:05:16 +0100, Guido Tschakert <[EMAIL PROTECTED]> wrote:
> So I suggest: use slurpd and make it redundant ;-)
Or use syncrepl and make it redundant.
Kind regards,
--Toni++
Hi,
On Thu, 13.11.2008 at 18:17:24 +0100, RC)mi Bougard <[EMAIL PROTECTED]> wrote:
> For those of you who where asking informations about (open ?)smtpd :
> Gilles Chehade writes a long and clear text about it on undeadly.org :
> http://undeadly.org/cgi?action=article&sid=20081112084647
what about
Hi,
On Thu, 13.11.2008 at 08:55:04 -0500, Ted Unangst <[EMAIL PROTECTED]> wrote:
> So get on the developer's case when they don't send out notifications.
> All this chatter now isn't going to change anything when the next
> errata comes out. You want security announcement? Do something to
> make
Hi,
On Sun, 02.11.2008 at 15:28:06 +0100, Johannes Krampf <[EMAIL PROTECTED]> wrote:
> My problem: Every couple of seconds, I get 5 messages "WARN: not
> buffer" in the console, even when using an editor or viewing man
> pages. 0brad0 told me "That "WARN .. not buffer" message appears to
> be co
Hi,
On Tue, 30.09.2008 at 22:23:21 -0600, Dale Carstensen <[EMAIL PROTECTED]> wrote:
> I did trace and ps in ddb, but another crash before savecore could
> capture the result of "boot dump" lost the crash dump, and the
> results of those commands.
recommended procedure (if you can do this): Get a
On Tue, 30.09.2008 at 14:54:25 -0400, bofh <[EMAIL PROTECTED]> wrote:
> Unfortunately no. But I think one of the ports maintainers was
> looking at it for 4.4.
*LOL*
There are some "semi-finished" ports floating around in the archives.
You might want to make a stab at it, too.
Kind regards,
--
Hi,
On Thu, 25.09.2008 at 13:54:53 +0200, ng-sup01 <[EMAIL PROTECTED]> wrote:
> The machine, once power-cycled, rebooted without a hitch, not even
> complaining about disk corruption or anything.
this doesn't have to mean much.
I recently wanted to install OpenBSD on a machine which also claimed
Hi,
On Sun, 21.09.2008 at 16:04:11 +0200, Mariusz Makowski <[EMAIL PROTECTED]>
wrote:
> a.a.a.a_net b.b.b.b_public_ip --- c.c.c.c_public_ip d.d.d.d_net
>
> What i wan't to achiev is: - comunication from a.a.a.a_net to d.d.d.d_net
> -- isakmpd.conf --
> [General]
> Listen-on= b.
On Fri, 19.09.2008 at 11:06:20 -0700, Bryan Irvine <[EMAIL PROTECTED]> wrote:
> "The government is out to get us all. Put on your tinfoil hat and
> prepare for the revolution!
However laughable you may find it: I actually _had_ (verified) VPN
breakage which I could avoid by not routing my traffic
Hi,
in my VPN setup, I want to authenticate sites to each other using X.509
certificates. In my "classic" isakmpd.conf, I have this:
[IPSEC-mobile-clients]
Phase= 2
Configuration= mobile-quick-mode
Local-ID= default-route
Remote-ID= dummy-remot
Hi,
On Sat, 23.08.2008 at 13:30:28 +0200, Daniel Rapp <[EMAIL PROTECTED]> wrote:
> I have a openbsd (4.2) firewall with a tunnel config in isakmpd.conf and i
> want to add a roadwarrior tunnel to..
this should work roughly like this:
[Phase 1]
1.2.3.4=Your-Main-Connection # that you have
Hi,
On Tue, 16.09.2008 at 13:12:36 +0200, Jordi Espasa Clofent <[EMAIL PROTECTED]>
wrote:
> ?Will be enough to change the netmask with ifconfig(8) and modify the
> /etc/hostname.em2 for future reebots/uses of /etc/network script?
imho, this should be "almost" enough, except that you should als
Hi,
I have a VPN running that roughly looks like this:
LOCAL REMOTE
-
10.0.0.0/16 \ / mobile users
10.1.0.0/16 +- gateway - Internet -+- other users
10.6.0.0/16/\
Hi,
yesterday I forgot to attach the dmesg. Sorry.
The attempt to plug in an USB keyboard was only intended as a stop-gap
measure after the regular (PS/2 via KVM) keyboard didn't work anymore.
Usually, the USB keyboard is not connected, but it would be nice if the
machine would accept input from
Hi,
today I had a problem with an amd64 router machine, which threw a bunch
of these error messages, then 'froze':
pckbcintr: no dev for slot 1
The machine is headless, , rack mounted, and keyboard is provided via a
quality KVM switch (8 or more slots), so the usual suspicion of someone
moving t
Hi,
On Sat, 13.09.2008 at 12:07:52 -0600, Beavis <[EMAIL PROTECTED]> wrote:
> thanks for the reply josh.. appreciate it! :) I'll look at OpenVZ and
> see if i can just run it on a host Linux box and do it from there.
I don't exactly see how you are coming to that conclusion, but if you
have no qu
Hi,
On Thu, 11.09.2008 at 10:05:36 +0200, Markus Friedl <[EMAIL PROTECTED]> wrote:
> On Wed, Sep 10, 2008 at 10:11:05PM +0200, Toni Mueller wrote:
> > I've just discovered that this is unsupported.
> >
> > How difficult would it be to add support for this?
>
Hi,
On Thu, 04.09.2008 at 09:56:32 +0200, Christophe Rioux <[EMAIL PROTECTED]>
wrote:
> installation, but I don't find the sys.tar.gz (needed to recompile the
> kernel with the raid features).
you could get a CVS checkout. The tree has been tagged, as far as I can
see.
Kind regards,
--Toni++
Hi,
I've just discovered that this is unsupported.
How difficult would it be to add support for this?
TIA!
Kind regards,
--Toni++
Hi Hannah,
On Wed, 10.09.2008 at 13:56:23 +0200, Hannah Schroeter <[EMAIL PROTECTED]>
wrote:
> (I.e. check whether there's some intervening dir that's not accessible
> to user admin/group admin, but to group wheel).
that was the problem, thanks!
Kind regards,
--Toni++
Hi,
On Wed, 10.09.2008 at 11:57:46 +, Stuart Henderson <[EMAIL PROTECTED]>
wrote:
> Specifically, is the user's home directory writable by wheel?
no, I've checked this. But I will have to check whether Hannah's hint,
too... (should have had this idea earlier, doh!).
Kind regards,
--Toni++
Hi,
I've just experienced a strange problem with OpenSSH. Scenario:
/etc/ssh/sshd_config: PermitRootLogin without-password
=> root login with ssh keys works, as expected.
I've created another user, uid 1000, on the same box, and copied root's
authorized_keys file over, adjusted ownership, permi
Hi Stuart,
On Wed, 03.09.2008 at 22:51:15 +, Stuart Henderson <[EMAIL PROTECTED]>
wrote:
> Queuing on outbound means the destination sees the packet later,
> so ACKs _are_ delayed, which is the reason this does actually slow
> down the sending rate (for TCP, anyway).
iow, I need to fiddle wi
Hi,
although being unable to implement this, I think that it would be "nice
to have". But I don't agree with all ideas you presented.
On Wed, 05.09.2007 at 00:01:09 -0600, Anthony Roberts <[EMAIL PROTECTED]> wrote:
> I've been tuning some networks for VoIP recently, and to get
> really good resul
On Wed, 03.09.2008 at 15:43:05 -0400, Ted Unangst <[EMAIL PROTECTED]> wrote:
> No, I don't have the patience to run a test that long when I already
> know what the problem is. :) It's been a while, but I probably didn't
> leave it running for more than 30 minutes.
It does say "run at least 24 hou
Hi,
On Tue, 02.09.2008 at 22:20:26 +1000, Sunnz <[EMAIL PROTECTED]> wrote:
> [Tue Sep 2 22:14:29 2008] [notice] child pid 29398 exit signal
> Segmentation fault (11)
> ... some more clipped
try to have a compiler run. SEGVs are often the sign of bad RAM.
So you may want to swap at least disks an
Hi,
On Sun, 20.07.2008 at 21:03:03 +0200, Marc Balmer <[EMAIL PROTECTED]> wrote:
> * Henning Brauer wrote:
> > lighttpd.
>
> can it do reverse proxying, as needed for zope?
in theory, it can, but I didn't try.
My experience from running some low-traffic sites with both nginx and
lighttpd is th
Hi,
On Mon, 14.07.2008 at 12:44:15 +0200, Henning Brauer <[EMAIL PROTECTED]> wrote:
> The bigger HP Procurve switches are ok. Some shit, as usual, but all
> in all very usable.
what do you mean by "bigger"?
> Routers: OpenBSD, what else?
Erm, and on the hardware side, please?
Kind regards,
--
Hi,
On Sun, 09.03.2008 at 16:31:27 +, Stuart Henderson <[EMAIL PROTECTED]>
wrote:
> You have several recommended options:
>
> - dump your database, uninstall, install the unFLAVORed version
> and restore your database.
I tried that, but now run into the problem that now, slapd can't be
stop
Hi,
On Tue, 05.06.2007 at 17:30:47 +0200, Stefan Castille <[EMAIL PROTECTED]> wrote:
> dmesg will follow as soon as i can reboot one of these machines
look at /var/run/dmesg.boot. That might be what you're looking for.
Kind regards,
--Toni++
Hi,
On Sat, 14.06.2008 at 01:39:29 +0200, Claudio Jeker <[EMAIL PROTECTED]> wrote:
> Nope. That is not the problem. The main issues is that a full view will
> need a lot of memory for the sysctl. This memory needs to be available as
> real memory because it is wired into the kernel. If you run bgp
Hi,
On Fri, 13.06.2008 at 06:52:00 -0600, macintoshzoom <[EMAIL PROTECTED]> wrote:
> I have gnupg-1.4.8, and KDE KGpg, but no LDAP server support.
> It seems that this gnupg has an LDAP flavor, which I miss somehow to
> install.
>
> Should I have to uninstall and reinstall gnupg-1.4.8 from the com
Hi,
as of today (I didn't notice it earlier), I see this problem on one of
my machines:
# netstat -rnf inet
netstat: sysctl of routing table: Cannot allocate memory
This machine receives two full feeds @ ~255k routes each.
Any idea about how to combat this, please?
Kind regards,
--Toni++
Hi Brian,
On Wed, 12.12.2007 at 11:26:13 -0500, Brian A. Seklecki <[EMAIL PROTECTED]>
wrote:
> There's a vulnxml feed for OpenBSD ports. It should be updated with
> critical patches, and those should be pulled into 4.2-stable.
are you talking about this website?
http://www.vuxml.org/openbsd/
Hi,
On Thu, 17.04.2008 at 16:02:09 -0400, Andre Pierre <[EMAIL PROTECTED]> wrote:
> Reading the misc@ archives lead me to Interchange
> (http://www.icdevgroup.org)
>
> Anyone running a Interchange eCommerce server on chrooted Apache on OpenBSD?
> Are there any OpenBSD or chroot specific caveats
Hi,
On Mon, 04.02.2008 at 01:03:13 +0100, Ingo Schwarze <[EMAIL PROTECTED]> wrote:
> When you request a non-existant package,
> printing an error message and exiting is OK imho.
it would be better to not be offered non-existing files, wouldn't it?
I mean, in interactive mode, pkg_add has control
Hi,
reading about spamd having changed the database format (recently?), how
do I best achieve replicating and merging the spamdb database(s) across
a number of machines, maintaining consistent white- and greylisting
entries?
Or is this not yet supported (the docs suggest so)?
Best,
--Toni++
Hi,
On Sat, 01.12.2007 at 14:48:40 -0700, Philip Guenther <[EMAIL PROTECTED]> wrote:
> Anyway, I have no personal need to claim superiority, so if your
> current setup using qmail or postfix works, feel free to keep using
> it.
thank you for your investigations, but in fact, I hoped to be able to
Hi,
On Fri, 30.11.2007 at 14:03:36 -0600, Marco Peereboom <[EMAIL PROTECTED]> wrote:
> Does qmail have the ability to block all email concerning replacing
> sednmail in base?
it's not built in (qmail is intended to be lean), but you could give it
a shot using eg. netqmail + qmail-scanner.
Best,
Hi,
On Sat, 01.12.2007 at 01:32:07 -0700, Philip Guenther <[EMAIL PROTECTED]> wrote:
> Not only that, but something is broken in your MUA that resulted in
> the log entries you included that showed the above being cut off and
> lost.
I'm not sure what you mean, exactly, but I broke the quote out
Hi,
On Fri, 30.11.2007 at 15:27:15 +0100, Pete Vickers <[EMAIL PROTECTED]> wrote:
> In case it's needed (which I doubt), I'll voice my VERY strongly
> preference for sendmail instead of all these other pretenders.
I take your plug for sendmail as an invitation to ask a sendmail
question:
I hav
Hi,
On Fri, 16.11.2007 at 16:25:40 +0100, Henning Brauer <[EMAIL PROTECTED]> wrote:
> * Toni Mueller <[EMAIL PROTECTED]> [2007-11-16 12:39]:
> > I've removed the '-s' flag for this reason, although I would very much
> > prefer to have it in place i
Hi,
On Fri, 16.11.2007 at 11:43:38 +0100, frantisek holop <[EMAIL PROTECTED]> wrote:
> i have upgraded to 4.2 and because i am frequently without net access
> i see the following: at startup time ntpd just hangs indefinitely
> and must be terminated.
yes.
> ntpd_flags="-s"
> could someone test
Hi,
I'm trying to get a VPN running that uses X.509 certificates for
authentication. I have such beasts running with one CA with no problem:
CA1 -> server cert
CA1 -> clients certs
works w/o any problems. Now I want to have
CA1 -> server cert
CA2 -> clients certs
with CA1 distinctly differ
Hi,
On Mon, 08.10.2007 at 16:17:35 -0400, Juan Miscaro <[EMAIL PROTECTED]> wrote:
> I am running the Sept 24 snapshot. I've never tried to make a release
> with a snapshot before and so I wonder whether it's possible. I
> updated my sources with cvsup (tag=OPENBSD_42) and keep getting a
> crash:
On Thu, 13.09.2007 at 23:09:51 -0400, Jason Dixon <[EMAIL PROTECTED]> wrote:
> It boggles my mind that we can lie around complacently, arguing about
> installer menus and taking the bait from trolls, while our freedoms
> are quickly eroding away. The rights and recognition of one of our
> ow
Hi,
On Sat, 01.09.2007 at 00:42:25 -0600, Theo de Raadt <[EMAIL PROTECTED]> wrote:
> > So true, the license You use can't be removed. But when You get the
> > dual-licensed software, when You start modifying it You arrange the
> > licensing
> > deal on terms of either first or second or both lice
Hi,
On Wed, 22.08.2007 at 00:58:09 -0600, Alvaro Mantilla Gimenez <[EMAIL
PROTECTED]> wrote:
>I need to install an LDAP server in my job. I am, obviously, an
> OpenBSD guy but my boss wants to install the server with HP-UX. I need
> to probe him that OpenBSD is a better solution than HP-UX
Hi Claudio,
On Fri, 24.08.2007 at 11:05:04 +0200, Claudio Jeker <[EMAIL PROTECTED]> wrote:
> All redistributed networks are originated with a nexthop of the ospf
> router. That is how it works for the moment and changing that is not
> simple as you need to know if the nexthop you intend to use is
Note to self:
On Wed, 22.08.2007 at 17:13:30 +0200, Toni Mueller <[EMAIL PROTECTED]> wrote:
> I have routing problems with OSPF. For reasons I don't understand right
> now, routing does not get adapted in the right way.
looking into the plus42.html file, it looks like I shoul
Hi,
I have routing problems with OSPF. For reasons I don't understand right
now, routing does not get adapted in the right way.
Given are some OSPF speakers in a network /24 and a few dumb(er) boxen
which have subnets of said /24 behind them. There are static routes
pointing from some of the OSPF
Hi,
On Mon, 20.08.2007 at 15:15:15 +0200, Claudio Jeker <[EMAIL PROTECTED]> wrote:
> This is perfectly fine. Only the DR and BDR routers 10.0.0.6 and 10.0.0.4
> will have full connections with all other routers. All others (state
> OTHER) will remain in 2-WAY (as in we have to way communication bu
Hi,
in my network, I have five OSPF routers and hosts which learn their routes via
OSPF, all in one area. One of the routers is a Cisco, all other affected
routers and hosts are OpenBSD/i386 4.1-stable as of May 24th. The problem is
that some machines establish an adjacency with some, but not all
Hi,
first I'd like to thank you all for your answers.
On Wed, 08.08.2007 at 11:01:05 -0400, Nick Holland <[EMAIL PROTECTED]> wrote:
> Toni Mueller wrote:
> > So, is it right to conclude that only current AMD CPUs are supported,
> > and that recent intel CPUs are genera
Hi,
On Tue, 07.08.2007 at 16:22:08 +0200, Toni Mueller <[EMAIL PROTECTED]> wrote:
> On Wed, 27.06.2007 at 11:08:16 -0600, Theo de Raadt <[EMAIL PROTECTED]> wrote:
> > http://download.intel.com/design/processor/specupdt/31327914.pdf
> looks like intel pulled that paper. I
Hi,
On Wed, 27.06.2007 at 11:08:16 -0600, Theo de Raadt <[EMAIL PROTECTED]> wrote:
> http://download.intel.com/design/processor/specupdt/31327914.pdf
looks like intel pulled that paper. I'm unable to find it and would
like to receive a private copy.
> An easier summary document for some people
Hi Ronnie,
On Mon, 06.08.2007 at 00:14:17 +0200, Ronnie Garcia <[EMAIL PROTECTED]> wrote:
> I was observing this behiviour you are describing until yesterday, when
> i re-installed my two border routers to 4.1, then updated to 4.1-stable.
hmmm... all affected machines on my side are 4.1-stable a
Hi Claudio,
On Fri, 03.08.2007 at 20:57:43 +0200, Claudio Jeker <[EMAIL PROTECTED]> wrote:
> This is more or less expected. iBGP session only transmit eBGP pathes that
> are valid and best for the router. So on r2 you have all the iBGP routes
> from r1 and r2 has no reason to send something back t
Hi,
I've got a setup on two i386 family PCs with 4.1-stable which includes
the following:
Internet 1 - p1 - r1 -- r2 - p2 - Internet 2
r1 and r2 have an iBGP session running, and the Internet connections go
to different ISPs, running eBGP on each (r1-p1, r2-p2). I receive full
route
Hi,
I've managed to have an OpenBSD4.0 box connected to another box via
serial cable, with a getty running on both ends. I killed one getty and
connected to the serial port with a terminal program. But the other
getty was already gone, having spawned login. Now I have two login
processes and no ge
Hello,
can anyone please share their experience you have with this IPSEC
client product, working against OpenBSD?
http://www.hob.de/produkte/security/vpn.jsp
So far, I was unable to test it myself (lacking a working Windows box
atm).
TIA!
Best,
--Toni++
201 - 300 of 454 matches
Mail list logo