Re: Virtualizing firewalling scenarios in one physical OpenBSD host

out of curiosity, how would you make pf(4) only handle rules pertaining to a certain anchor depending on the process that's interfacing with them? i ask because; e.g., pfctl -sr should only show rules for that client, and other pf(4) operations need to be equally restricted. i know that

Re: Virtualizing firewalling scenarios in one physical OpenBSD host

the start On Wed, Jul 4, 2012 at 11:11 AM, Andres Perera andre...@zoho.com wrote: out of curiosity, how would you make pf(4) only handle rules pertaining to a certain anchor depending on the process that's interfacing with them? i ask because; e.g., pfctl -sr should only show rules for that client

Re: mojibake

On Sun, Jul 1, 2012 at 12:30 PM, Anthony J. Bentley anthonyjbent...@gmail.com wrote: So again, the complaint was that there was mojibake gibberish in Ingo's presentation, because the character encoding isn't specified but defaults to UTF-8 in modern browsers, while the page is actually

Re: OpenBSD's webpage desing

it's html1 unlike the rest, but that's just as useless as fixating on the charset On Thu, Jun 28, 2012 at 9:17 AM, Dave Anderson d...@daveanderson.com wrote: On Thu, 28 Jun 2012, Stuart Henderson wrote: On 2012-06-28, ropers rop...@gmail.com wrote: On 28 June 2012 01:17, Andres Perera andre

Re: OpenBSD's webpage desing

On Thu, Jun 28, 2012 at 3:45 PM, Dave Anderson d...@daveanderson.com wrote: On Thu, 28 Jun 2012, frantisek holop wrote: hmm, on Thu, Jun 28, 2012 at 09:47:00AM -0400, Dave Anderson said that Using META is _ugly_, especially for specifying a charset (since the page will be read up through the

Re: OpenBSD's webpage desing

On Wed, Jun 27, 2012 at 5:29 PM, Peter Laufenberg open...@laufenberg.ch wrote: Speaking personally, I wouldn't mind if OpenBSD's website were updated.  Just no one has volunteered yet to do the dirty work of actually coming up with a functional design and then updating the HTML. Talk is

Re: OpenBSD's webpage desing

On Wed, Jun 27, 2012 at 5:55 PM, Peter Laufenberg open...@laufenberg.ch wrote: On Wed, Jun 27, 2012 at 5:29 PM, Peter Laufenberg open...@laufenberg.ch wrote: I'm willing to indirectly donate to OpenBSD by paying a professional graphic designer to redo parts of OpenBSD's visual design. His

Re: OpenBSD's webpage desing

On Wed, Jun 27, 2012 at 5:55 PM, john slee indig...@oldcorollas.org wrote: Do you think that if the reader finds reading to be optimal at a particular column width, that said reader may well adjust their browser window to suit? sorry but that's complete bs. you are essentially expecting users

Re: OpenBSD's webpage desing

On Wed, Jun 27, 2012 at 6:10 PM, Nick Holland n...@holland-consulting.net wrote: Other than boring, no one has actually STATED a problem of the OpenBSD website.  What message are we not getting across?  If there is a PROBLEM you see that makes getting its information to you difficult, please

Re: OpenBSD's webpage desing

On Wed, Jun 27, 2012 at 6:18 PM, Ingo Schwarze schwa...@usta.de wrote: Hi, Matthew Dempsky wrote on Wed, Jun 27, 2012 at 01:53:09PM -0700: On Wed, Jun 27, 2012 at 1:41 PM, Ted Unangst t...@tedunangst.com wrote: Here's something I think would be a *major* improvement. Fix magicpoint to

Re: OpenBSD's webpage desing

On Wed, Jun 27, 2012 at 7:43 PM, Philip Guenther guent...@gmail.com wrote: On Wed, Jun 27, 2012 at 4:17 PM, Andres Perera andre...@zoho.com wrote: ... that page is encoded iso 8859-1, doesn't state so anywhere, breaks with browsers configured to default to utf8 in the absence of encoding

Re: OpenBSD's webpage desing

a set of requirements On Wed, Jun 27, 2012 at 8:55 PM, ropers rop...@gmail.com wrote: On 28 June 2012 01:17, Andres Perera andre...@zoho.com wrote:  http://www.openbsd.org/papers/bsdcan11-mandoc-openbsd.html that page is encoded iso 8859-1, doesn't state so anywhere, breaks with browsers

Re: Following -current through a semi-automatic process: a strategy for encouraging user involvement?

decide On Wed, Jun 20, 2012 at 12:59 AM, Matthew Dempsky matt...@dempsky.org wrote: On Tue, Jun 19, 2012 at 9:34 PM, Andres Perera andre...@zoho.com wrote: all of the calls in syscalls.master map to a unique function, and all of them start with sys_. it's true that nm won't tell me about argument

Re: Following -current through a semi-automatic process: a strategy for encouraging user involvement?

On Wed, Jun 20, 2012 at 1:40 AM, Andres Perera andre...@zoho.com wrote: sorry, but i never sold nm as the sole step granting immunity. i explicitly presented it as an example. nevertheless, the full list of things i do do not cover all of possible changes you pointed out. i constructed

Re: Following -current through a semi-automatic process: a strategy for encouraging user involvement?

ultimately naive/incomplete approach never mind the premise that snapshots contain changes not found in the trees, you state things to the effect of user chooses wether or not to reboot to new kernel. didn't even bother; e.g., comparing nm outputs

Re: Following -current through a semi-automatic process: a strategy for encouraging user involvement?

, 2012 at 5:44 PM, Andres Perera andre...@zoho.com wrote: didn't even bother; e.g., comparing nm outputs Er, what are you expecting to divine by comparing nm output?

Re: Following -current through a semi-automatic process: a strategy for encouraging user involvement?

since packages are done in synch with snapshots, i do not use the trees because i rather use packages it's not clear whether or not changes in snapshots are allowed to make the packages incompatible with what you find in the repositories. perhaps i would be able to retract what i said as silly

Re: Following -current through a semi-automatic process: a strategy for encouraging user involvement?

, but the problem doesn't even come to that with snapshots, since i don't have a source referral; i only have the binary interface of the symbol list On Wed, Jun 20, 2012 at 12:18 AM, Philip Guenther guent...@gmail.com wrote: On Tue, Jun 19, 2012 at 9:34 PM, Andres Perera andre...@zoho.com wrote: all

Re: About wine ?

On Mon, Jun 11, 2012 at 1:30 PM, Peter Laufenberg open...@laufenberg.ch wrote: On Mon, Jun 11, 2012 at 3:49 PM, Peter Laufenberg open...@laufenberg.ch wrote: Qemu seems like a good project given the flack it gets on wikipedia (very Cartesian, I know), how well can it run on OpenBSD? what's

Re: Large (3TB) HDD support

On Sun, Jun 3, 2012 at 9:18 PM, Peter Kay syllops...@syllopsium.co.uk wrote: Can we please differentiate GPT from EFI. GPT may be part of the EFI specification, but it's a standalone piece - implementing GPT is not going to restrict anyone's freedom to do what they want with a machine. Some

Re: File descriptor - name?

that will potentially show up more than one file, not the one that was opened On Sat, May 5, 2012 at 3:49 AM, Stuart Henderson s...@spacehopper.org wrote: On 2012-05-05, Andres Perera andre...@zoho.com wrote: not in obsd plan 9/linux keep the name as it was opened think about hardlinks

Re: File descriptor - name?

not in obsd plan 9/linux keep the name as it was opened think about hardlinks, unlinking and how the kernel only stores the inode # On Fri, May 4, 2012 at 11:44 PM, Alan Corey ab...@devio.us wrote: Is there a way to get the name of a file that's open when all you've got is a file descriptor?

Re: OpenBSD 5.1 SSD

doesn't support trim. i remember reading somewhere, maybe a freebsd mailing list, that calculating when to do trim is tricky because it can only work on a specific width On Sat, Apr 14, 2012 at 2:08 PM, Laurence Rochfort laurence.rochf...@gmail.com wrote: Hi, I'm considering purchasing a

Re: pf anchor strange bihavior

On Thu, Apr 12, 2012 at 9:25 PM, Michel Blais mic...@targointernet.com wrote: Just saw something strange with inline anchor rule and macro : if I set a anchor rule with a macro inside of it and do pfctl -vnf, only the first value of the macro seem to have the anchor rule following. Every other

Re: How to have more than 15 pflog interfaces?

altering the max might have consequences i don't know about: grep -nC5 PFLOGIFS_MAX /sys/net/if_pflog.h 27-#ifndef _NET_IF_PFLOG_H_ 28-#define _NET_IF_PFLOG_H_ 29- 30-#include net/pfvar.h 31- 32:#define PFLOGIFS_MAX16 33- 34-struct pflog_softc { 35- struct ifnetsc_if;

Re: LiveUSB OpenBSD and LiveCD-OpenBSD site updated

On Tue, Apr 10, 2012 at 1:53 AM, Mihai Popescu mih...@gmail.com wrote: Andres Perera wrote: read very slowly if they don't use the following to boot: * bootp (requires more than one system) * a cd (requires an optical drive) * a floppy (requires a floppy drive) then they boot from hdd

Re: LiveUSB OpenBSD and LiveCD-OpenBSD site updated

On Mon, Apr 9, 2012 at 11:26 AM, Mihai Popescu mih...@gmail.com wrote: B Andres Perera wote: B i don't understand why is such a simple problem turning into drama It is not. As for the understanding part, you need to identify what is stopping you in the first place - is it that english

Re: LiveUSB OpenBSD and LiveCD-OpenBSD site updated

nope, not all bioses like that my hp mini's bios is only willing to do hdd emulation on usb sticks, so a dd'd iso or floppy image will not suffice (and hey, this inability isn't uncommon either) On Mon, Apr 9, 2012 at 6:38 PM, Ted Unangst t...@tedunangst.com wrote: On Mon, Apr 09, 2012, Andres

Re: sending hex string to /dev/ttyU1

funny how so many perl people and online shellcode tutorials are ok with that contrived syntax i recommend perl -e 'print pack i, 0x8800612a' it'll adjust to endianess as needed if you are truly interested in sending hex *strings* then it's not of much help On Sun, Apr 8, 2012 at 4:25 PM, Ted

Re: LiveUSB OpenBSD and LiveCD-OpenBSD site updated

i don't understand why is such a simple problem turning into drama On Sat, Apr 7, 2012 at 2:10 PM, Nick Holland n...@holland-consulting.net wrote: On 04/06/12 07:35, Dan Shechter wrote: Hi, Sorry for the newbe question, but what is wrong with what he is doing? Best regards, Dan First of

Re: LiveUSB OpenBSD and LiveCD-OpenBSD site updated

On Fri, Apr 6, 2012 at 2:17 AM, Mihai Popescu mih...@gmail.com wrote: Andres Perera andres.p () zoho ! com if you cant install through network because you only got one machine So you can't install OpenBSD but you CAN download the pre-made OpenBSD images? need another machine for bootp

Re: LiveUSB OpenBSD and LiveCD-OpenBSD site updated

? he is hosting *pre-made* bootable usb images if you cant install through network because you only got one machine, don't have a cd drive (e.g. netbook), and feel that guerrilla overwriting your mbr after installing the locks within another os in order to do a hdd boot is too risky, you're left

Re: Is nginx to complement or replace apache?

On Thu, Mar 29, 2012 at 4:30 PM, Otto Moerbeek o...@drijf.net wrote: On Thu, Mar 29, 2012 at 01:31:17PM -0430, Andres Perera wrote: On Thu, Mar 29, 2012 at 11:29 AM, Otto Moerbeek o...@drijf.net wrote: On Thu, Mar 29, 2012 at 10:54:48AM -0430, Andres Perera wrote: On Thu, Mar 29, 2012

Re: Is nginx to complement or replace apache?

On Wed, Mar 28, 2012 at 4:42 PM, Theo de Raadt dera...@cvs.openbsd.org wrote: Seeing the work that is done on nginx as Daily changelog shows I was thinking the same, that eventualy nginx will replace httpd (it cannot replace apache). About that too many files open, I run it this once, but

Re: Is nginx to complement or replace apache?

On Thu, Mar 29, 2012 at 10:38 AM, Paul de Weerd we...@weirdnet.nl wrote: On Thu, Mar 29, 2012 at 10:24:27AM -0430, Andres Perera wrote: | Instead, you'll crank your file limits to... let me guess, unlimited? | | And when you hit the system-wide limit, then what happens

Re: Is nginx to complement or replace apache?

On Thu, Mar 29, 2012 at 11:29 AM, Otto Moerbeek o...@drijf.net wrote: On Thu, Mar 29, 2012 at 10:54:48AM -0430, Andres Perera wrote: On Thu, Mar 29, 2012 at 10:38 AM, Paul de Weerd we...@weirdnet.nl wrote: On Thu, Mar 29, 2012 at 10:24:27AM -0430, Andres Perera wrote: | Instead, you'll

Re: Is nginx to complement or replace apache?

On Thu, Mar 29, 2012 at 12:53 PM, Claudio Jeker cje...@diehard.n-r-g.com wrote: On Thu, Mar 29, 2012 at 10:54:48AM -0430, Andres Perera wrote: On Thu, Mar 29, 2012 at 10:38 AM, Paul de Weerd we...@weirdnet.nl wrote: On Thu, Mar 29, 2012 at 10:24:27AM -0430, Andres Perera wrote: | Instead

Re: Is nginx to complement or replace apache?

On Thu, Mar 29, 2012 at 3:46 PM, Ted Unangst t...@tedunangst.com wrote: On Thu, Mar 29, 2012, Andres Perera wrote: Maybe you could also close some of those 999 keep-alive sessions and pre-load sessions you have open and retry. Seriously why does a webbrowser need 1024 file descriptors

Re: ksh's HISTFILE

that makes it awkward to use across sessions (defeating the point of the file) even though it does not appear to have options regarding this, bash does have a crap ton of settings regarding history handling whatever the route, i would prefer if ksh didn't have new flags added to it, but instead

Re: SSH, root can repeat commands with up arrow, others cannot

On Sun, Mar 11, 2012 at 3:32 PM, Tobias Ulmer tobi...@tmux.org wrote: On Sun, Mar 11, 2012 at 02:43:42PM -0500, Chris Bennett wrote: This started for me a while back. Login as root, I can repeat older commands with up down arrows. History command shows history. su -l otheruser Cannot use

Re: pgt firmware ...

On Mon, Feb 27, 2012 at 7:52 AM, Janne Johansson icepic...@gmail.com wrote: 2012/2/27 David Walker davidianwal...@gmail.com: Thank you Peter. I still get the same error message (error line wrapped): pkg_add ./pgt-firmware-1.2p2.tgz Bad pkg_db: No such file or directory at [...] Somethings

Re: FR: Make it possible to turn off untrusted users ability to read cmdline arguments of processes they don't own

they're not necessarily the arguments see setproctitle(3) and the behaviour of; e.g., sendmail, dhclient, etc On Wed, Feb 1, 2012 at 7:00 PM, Paul Dejean p...@officegps.com wrote: Even though it's bad practice, a lot of commonly programs will request passwords or similar sensitive information

Re: looking for hardware recommendations, x86 or otherwise.

On Thu, Feb 2, 2012 at 4:38 PM, Lars nore...@z505.com wrote: Anon wrote: Obviously you don't live in a 3rd world country. I do and nothing is 50 bucks here except the women. Nobody throws anything out except dead cats and PCs cost about 350 USD for a new build based on 3-5 year old NOS parts

Re: use trap command in a script

signal(3): Except for the SIGKILL and SIGSTOP signals, the signal() function allows for any signal to be caught, to be ignored, or to generate an interrupt. On Thu, Jan 19, 2012 at 8:17 AM, Wesley M. open...@e-solutions.re wrote: Hi, I want to see a message on console when i send signal like

Re: Install without the DNS domain name from DHCP

On Sun, Jan 1, 2012 at 4:22 PM, bofh goodb...@gmail.com wrote: On Sun, Jan 1, 2012 at 2:47 PM, Josh Jevosh jev...@gmail.com wrote: Hello. I'm installing OpenBSD 5.0. When I configure the networking to DHCP it goes ahead and sets the DNS domain name to something that it got from my ISP. I

Re: PF Snort tutorial

2012/1/3 Bentley, Dain dbent...@nas.edu I've been looking around for a good tutorial on implementing snort with PF and everything I see is old, does anyone know of or have implemented a solution using an IDS/IPS with PF on the same box? If possible I'd like snort of some other IDS inspect

Re: ccd(4) hangs system on two IDE disks concatenation attempt

that's interesting raises a couple of questions: is softraid to have functions found in generic volume managers such as zfs and lvm? the answer doesn't really matter because it's a fact that crypto isn't a raid discipline given that, is softraid a poor name for what it offers? On Mon, Dec 12,

Re: What is wrong with this pf config

On Sun, Dec 11, 2011 at 3:29 PM, John Tate j...@johntate.org wrote: I am not replying to every thread on the list. You either have me confused with someone else or there is some kind of imposter or person with a similar name. I'm confused I should say. This was something constructive to say

Re: What is wrong with this pf config

On Sun, Dec 11, 2011 at 4:29 PM, John Tate j...@johntate.org wrote: On Mon, Dec 12, 2011 at 7:47 AM, Andres Perera andre...@zoho.com wrote: On Sun, Dec 11, 2011 at 3:29 PM, John Tate j...@johntate.org wrote: I am not replying to every thread on the list. You either have me confused

Re: OpenBSD PF tables

the documentation is pretty clear by saying that tables can only hold addresses, not a random set of numbers On Thu, Dec 8, 2011 at 6:41 AM, John Tate j...@johntate.org wrote: Misc, I have sucessfully got an OpenBSD machine to connect via ADSL and forward packets, I am gradually upgrading my

Re: OpenBSD PF tables

define the list of ports as a macro and use pfctl -D not much adding as it is replacing the whole list: $ echo 'pass proto udp from port $pl' | pfctl -nvf- -Dpl='{1 2 3}' pass proto udp from any port = 1 to any pass proto udp from any port = 2 to any pass proto udp from any port = 3 to any On

Re: OpenBSD PF tables

ports on a filter from the command line? I guess I just have manually adding and deleting rules. On Thu, Dec 8, 2011 at 10:19 PM, Andres Perera andre...@zoho.com wrote: the documentation is pretty clear by saying that tables can only hold addresses, not a random set of numbers On Thu, Dec 8

Re: RAM seen vs. RAM available HP ML 570 G2

On Tue, Dec 6, 2011 at 11:18 PM, Stefan Johnson tigerphoenixdra...@gmail.com wrote: Hello all. B Today I replaced OpenSuSE with OpenBSD 5.0 on my HP ML 570 G2 server. well, you should have searched for openbsd and PAE :) i don't think they're going to bother at this point, but don't take my

Re: Short adsuck guide (local resolver setup)

i don't get why are you setting nameservers in resolv.conf since dhclient will eventually override those? On Mon, Dec 5, 2011 at 8:39 AM, Sime Ramov s...@ramov.com wrote: http://ramov.com/doc/adsuck.html Let me know if you notice anything amiss. -Sime

Re: Short adsuck guide (local resolver setup)

afaik, _PATH_RESCONF is harcoded into the resolver functions i guess adsuck ships with its own duplicated routines On Mon, Dec 5, 2011 at 10:12 AM, E ime Ramov s...@ramov.com wrote: i don't get why are you setting nameservers in resolv.conf since dhclient will eventually override those?

Re: Narcicism?

2011/12/1 John Tate j...@johntate.org On Thu, Dec 1, 2011 at 7:20 PM, Scott McEachern sc...@blackstaff.ca wrote: On 12/01/11 02:28, John Tate wrote: I think I've found a bug in the OpenBSD crowd. They bug the hell out of me and my little mistakes. I am not talking about people who

Re: Narcicism?

http://johntate.org/fact/johntate I now have 7 years of experience in FreeBSD/OpenBSD On Thu, Dec 1, 2011 at 2:58 AM, John Tate j...@johntate.org wrote: I think I've found a bug in the OpenBSD crowd. They bug the hell out of me and my little mistakes. I am not talking about people who

Re: how to find dependencies when building a new kernel

+0x2791): In function `sys_sigreturn': : undefined reference to `fpu_mxcsr_mask' andres@pote:~ $ grep -rw fpu_mxcsr_mask /sys/arch/i386 ... /sys/arch/i386/include/npx.h:extern uint32_tfpu_mxcsr_mask; /sys/arch/i386/isa/npx.c:uint32_t fpu_mxcsr_mask; ... andres@pote:~ $ grep -rw npx /sys

Re: how to find dependencies when building a new kernel

- doesn't bother looking at official documentation regarding kernel compilation process On Tue, Nov 29, 2011 at 7:06 AM, T. Valent tmp...@4ss.de wrote: Andres, may I kindly ask one more question, I'm sure after that I'll get it right myself. See

Re: Kernel without INET6 error on pipex.c

On Thu, Nov 24, 2011 at 6:42 AM, Rod Whitworth glis...@witworx.com wrote: On Thu, 24 Nov 2011 10:09:31 +, Julien Crapovich wrote: Hello. Absolutely, but compiling without INET6 is not supposed to generate error. I've just disabled INET6 on GENERIC file, not other hack. You are the only one

Re: DNS Google ?

On Tue, Nov 22, 2011 at 2:56 PM, Lars Hansson romaby...@gmail.com wrote: On Wed, Nov 23, 2011 at 3:14 AM, patrick keshishian pkesh...@gmail.com wrote: Unless I'm misreading you, what you say doesn't make much sense. It makes perfect sense and is in fact also the recommended way to run BIND.

Re: What is wrong with this pf config

On Mon, Nov 21, 2011 at 3:45 AM, John Tate j...@johntate.org wrote: I am having troubles with this pf configuration, it seems when loaded nothing can access my server on the internal interface for the LAN, I cannot see why, and it's pretty much based off the very standard example in the

Re: Giving java apps more memory

you can patch the apps to use setrlimit() you can write a small sh wrapper that sets ulimits and execs your app you can also set your defaults in /etc/login.conf or ~/.profile depends on what you want i use gimp and ff so login.conf/.profile is really more sensible than wrapping all the

Re: I want copy pf.conf from FreeBSD 8.2 to OpenBSD 5 and use it

On Sun, Nov 13, 2011 at 9:22 AM, David Walker davidianwal...@gmail.com wrote: On 13/11/2011, Mostaf Faridi mostafafar...@gmail.com wrote: Can I optimiz this pf.conf? Thanks in advance I do not open up the truth to one who is not eager to get knowledge, nor help out any one who is not anxious

Re: bash script problem

On Fri, Nov 11, 2011 at 9:10 AM, John Tate j...@johntate.org wrote: I put a comment in before the line with a problem, I don't understand why it's not working. bash# for x in 1 2 3 4; do time dd if=/dev/random of=/home/test$x bs=1k count=64k done \ while [ $V -eq 0 ]; \ do \ #why the hell

Re: systat colors?

readelf -d `which systat` ... 0x0001 (NEEDED) Shared library: [libcurses.so.12.1] ... On Fri, Nov 11, 2011 at 8:08 PM, STeve Andre' and...@msu.edu wrote: On 11/11/11 18:58, Stuart Henderson wrote: On 2011-11-10, STeve Andre'and...@msu.edu B wrote: On 11/10/11 16:41,

Re: OpenBSD and shebang line to a script not supported?

how does linux handle that without going into infinite loops? On Mon, Oct 31, 2011 at 6:55 PM, Mikolaj Kucharski miko...@kucharski.name wrote: Hi, Attached archive has small testing scripts to be extracted in /tmp. There are 2 tests (exec1 and exec2) with 2 scripts each (4 scripts total):

Re: dhclient, resolv.conf

the dhclient in base, and possibly the isc one, interprets options set to the empty string as unset On Sun, Oct 23, 2011 at 1:38 PM, sc...@web.de wrote: Jurjen Oskam jur...@osk.am wrote: supersede domain-name-servers 192.168.1.1; supersede domain-name ; My dhclient completely ignores B

Re: do not understand how to upgrade to-CURRENT

nisiquiera en espanol escribes bien 2011/10/22 Zantgo zan...@gmail.com: No entiendo como actualizar a -current, que manual tengo que seguir: http://www.openbsd.org/faq/faq5.html (es decir seguir exactamente lo que eice ahi y una vez haya constroido el sistema desde la fuente, ya estare

Re: Dennis Ritchie

2011/10/13 David Coppa dco...@gmail.com Today is a sad sad day :( Rest in Peace. Without you, we would never be here. Cheers, David People who change the world, unfortunately do not last forever, forever missed, but his legacy will last forever Andres. -- Atentamente Andris Genovez

Re: microsoft wireless keyboard and mouse

i don't have much to add right now besides confirming the problem with Microsoft Wireless Desktop Receiver 3.1A(0x00f1), Microsft(0x045e), rev 0.02, wireless mous e/keyboard combo 2000 i think that the mouse calibration could be an easy problem to sort out after spending a weekend on it

Re: Why I uninstalled OpenBSD???

On Sun, Oct 2, 2011 at 12:14 AM, Nick Holland n...@holland-consulting.net wrote: On 10/01/11 23:08, Christiano F. Haesbaert wrote: Not again people, please. Stop feeding. Yes. Yet another never-heard-from-before-or-again loser (and *always* using a gmail account...isn't that interesting?)

Re: Group ownership of files at creation time

S_ISGID bits on a directory are meaningful in sysv, whereas on bsd open(2) acts as if they were always on

Pear Version (2008-08-23) Updated to version: pear-1.7.2

Hi friends, I am having a lot of problems with the standard version of PEAR that ships with OpenBSD, the last i can get is (2008-08-23) Updated to version: pear-1.7.2 But the system insists it require version 1.8, please can anybody give me a guide, how can I update Pear? Thanks for any help!*

Installing Image_Canvas

Hello, A little question, if anyone can help I am using OpenBSD 4.8 GENERIC I am using pear-1.7.2.tgz http://openbsd.mirror.frontiernet.net/pub/OpenBSD/4.8/packages/i386/pear-1.7 .2.tgz But when i try to install this, i get this error # pear install Image_Graph-0.7.2 Did not download

Re: Load average question

On Mon, Aug 8, 2011 at 1:04 PM, STeve Andre' and...@msu.edu wrote: On 08/08/11 12:59, Theo de Raadt wrote: Nick, this is probably the single most frequently asked question... :-) No, it is not. B In the modern world of search engines, this question lands at the same level as trolling. B If

HOY PUEDE EDITAR SUS LIBROS-julio 2011-

Ediciones Pasisn de Escritores Impresisn sobre demanda  Impresiones cortas Reediciones HOY PUEDE EDITAR SU OBRA EL MEJOR PRECIO DEL MERCADO Promocisn julio-2011 Tamaqo: 14 x 20 Tapas a 4 colores Sobre papel ilustracisn de 300g Laminado en opp brillante Interior

Re: pf rule?

ifconfig pflog1 create touch /var/log/pfblocklog pflogd -ipflog1 -f$_ pf.conf: l = log (to pflog1) block return $l block ... $l to keep the pfctl rule output readable, match and tag the packets instead and have a single block + log rule (at the expense of no quick) On Wed, Jul 20, 2011 at

Re: pf rule?

now for the problems in your rules: On Wed, Jul 20, 2011 at 3:39 AM, fqui nonez fquinon...@gmail.com wrote: # B B B $OpenBSD: pf.conf,v 1.49 2009/09/17 06:39:03 jmc Exp $ # set skip on lo ### Agregadas por mi: (added by me) block return pass in quick log on rl0 proto tcp from any to

Re: pf rule?

On Wed, Jul 20, 2011 at 8:49 AM, fqui nonez fquinon...@gmail.com wrote: 2011/7/20 Wesley MOUEDINE ASSABY open...@e-solutions.re: Also, you can see a sample on http://mouedine.net/ruleset49.aspx Wesley. On Wed, 20 Jul 2011 14:27:27 +0400, Wesley MOUEDINE ASSABY open...@e-solutions.re wrote:

Re: openbsd 4.9 based UTM

On Tue, Jul 19, 2011 at 6:04 AM, citoyen citoyen cccito...@gmail.com wrote: Hi, I'm about starting a project of building my own High secure UTM based on the last openbsd flower 4.9, i can do all system and network configs B needed by myself B but I'm wondering what language to use in order to

Re: How does OpenBSD compare to Ubuntu Server?

On Mon, Jul 11, 2011 at 7:46 PM, J Sisson sisso...@gmail.com wrote: On Mon, Jul 11, 2011 at 6:58 PM, Juan Miscaro jmisc...@gmail.com wrote: On 7 July 2011 15:06, jirib ji...@devio.us wrote: Are you kidding? Ubuntu? Where installed daemons are running by default, where there is no command to

Re: How does OpenBSD compare to Ubuntu Server?

On Mon, Jul 11, 2011 at 8:48 PM, J Sisson sisso...@gmail.com wrote: On Mon, Jul 11, 2011 at 7:36 PM, Andres Perera andre...@zoho.com wrote: why would you install a daemon and not run it? how is it any different than X listening on localhost by default in obsd? if you install a daemon

Re: How does OpenBSD compare to Ubuntu Server?

On Mon, Jul 11, 2011 at 9:40 PM, patrick keshishian pkesh...@gmail.com wrote: On Mon, Jul 11, 2011 at 5:36 PM, Andres Perera andre...@zoho.com why would you install a daemon and not run it? how is it any different than X listening on localhost by default in obsd? Just because you install

Re: How does OpenBSD compare to Ubuntu Server?

On Mon, Jul 11, 2011 at 11:43 PM, patrick keshishian pkesh...@gmail.com wrote: you failed at making any point. i'll rebrand it into convenient twitter format: debian splits packages to the point where a single service is a associated to a single top level package, meaning that there's never a

Re: Recompile OpenBSD without built-in Apache 1.3

see SKIPDIR in mk.conf(5) add usr.sbin/httpd On Tue, Jun 28, 2011 at 9:01 PM, Tito Mari Francis EscaC1o titomarifran...@gmail.com wrote: Good day! Is it possible to recompile the whole system while excluding the built-in Apache 1.3 web server? I was hoping to save a few more megabytes off the

Re: Can command-line options be specified in any place?

On Wed, Jun 22, 2011 at 7:19 AM, Tobias Ulmer tobi...@tmux.org wrote: The getopt(3) function is inconsistent amongst operating systems and could use some polish in my opinion. Maybe there are technical reasons why this feature can't be implemented, but this discussion has certainly

Re: Can command-line options be specified in any place?

you can compile gnu coreutils the reason posix and bsd dont allow options after operands is because it complicates the implementation of getopt and it introduces ambiguity, specially with options that take arguments the gnu getopt has to look at the first characters of every argv member unless

Re: vmmap: bad software everywhere

i'm sure you could fathom the idea that some people care more about streaming video on their browsers than address randomization, the same way some people care more about speedier local lookups to a stationary sync db than making sure a package has correct @want-lib by trashing the ftp server on

Re: Theo's Birthday, have you done anything?

A little late, but big greetings from Ecuador - South America. 2011/5/19 Mayuresh Kathe mayur...@kathe.in Hey, it's Theo's birthday today, have you done anything? Yeah, you could wish him, but, how about a small gift? How about donating US$10 to the project today? -- Atentamente Andris

Re: Fallback ruleset loaded at boot time

Yes you was right i fixed the domain entries in pf.conf and also some inconsistency with queue configuration on the internal interface and then everything was great. Thanks a lot! 2011/4/24 Henning Brauer lists-open...@bsws.de * Andres Chavez fluxboxtrem...@gmail.com [2011-04-24 05:44]: I'm

Fallback ruleset loaded at boot time

Hi guys I'm wondering why the rc script is loading the fallback ruleset instead of mine. I'd set the ruleset as usual at /etc/pf.conf but OpenBSD seems to be loading the fallback for some reason. Everything looks good. # grep ^pf /etc/rc* /etc/rc.conf:pf=YES # Packet filter

Best advice for a link aggregation setup

Hello misc.. im currently helping a friend on a link aggregation setup based on 4.8 with 2 links from the same ISP, so we have followed a bunch of faqs/how-to's but the fact is that we're in the middle of a bunch questions too. So it would be nice if you guys can help us to clear some doubs,

Re: pkg_add -L localbase

it's a complete noop since it will remove the package regardless of localbase specified with -L. it looks under PKG_DBDIR/spec/+CONTENTS to learn about localbase, as always. in effect, it does not work because it's ignored adding to that, it would've been immediately obvious to anyone testing

Re: pkg_add -L localbase

about AddCreateDelete.pm r1.15 1. -L was never there (adding back? had to go through the entire log for the file to verify adding back) 2. PkgCreate.pm declared it separately, and still does 3. PkgDelete.pm doesn't work with -L, and if it ever did, it wasn't documented is pkg_delete not

Re: pkg_add -L localbase

On Sat, Mar 19, 2011 at 7:35 AM, Marc Espie es...@nerim.net wrote: On Sat, Mar 19, 2011 at 07:20:33AM -0430, Andres Perera wrote: about AddCreateDelete.pm r1.15 1. -L was never there (adding back? had to go through the entire log for the file to verify adding back) Of course

Re: pkg_add -L localbase

On Fri, Mar 18, 2011 at 3:45 AM, Gregory Edigarov g...@bestnet.kharkov.ua wrote: Hello, Is this working ever? Yesterday I was trying to add a certain packages and wanted them to reside in the very separate base (/usr/opt) so them will be easilly removed after my trial of them. I did

nl_langinfo(3) and possibly redundant #include

the synopsis section says #include nl_types.h #include langinfo.h char * nl_langinfo(nl_item item); however, nl_types.h is included by langinfo.h which one is at fault? should the man page be corrected or should the header not pull nl_types.h?

Re: what is the “Online Certificate Status Protocol”

On Wed, Mar 9, 2011 at 9:27 AM, Joachim Schipper joac...@joachimschipper.nl wrote: On Wed, Mar 09, 2011 at 01:30:39AM -0800, erikmccaskey64 wrote: I use privoxy. In the user.action file i have a redirect rule and a few websites: { +redirect{s@http://@https://@} } .twitter.com .facebook.com

Re: OT: Risks of CAs (Re: Your web development opinions)

On Wed, Feb 23, 2011 at 9:21 AM, Olivier Mehani sht...@ssji.net wrote: Just some OT thoughts. On Wed, Feb 23, 2011 at 07:35:19AM -0600, Chris Bennett wrote: CA's cannot be trusted to even pay attention to carefully securing your certificate. B Here in the US, the government can simply ask for

<    1   2   3   4   >