On Fri, 21 Sep 2007 23:48:11 -0500, Aaron wrote:
... SNIP
Is anyone using solid state drives yet?
CF is effectively IDE.
Witness (a firewall here):
# disklabel wd0
# Inside MBR partition 3: type A6 start 63 size 1000881
# /dev/rwd0c:
type: ESDI
disk: ESDI/IDE disk
label: SanDisk
Hi all,
At Open Source Conference 2007 Tokyo/Fall, I'll give an introductory talk
about OpenBSD (in Japanese). The talk will be aimed at sysadmins who know the
name but haven't used OpenBSD yet. It would be nice to have a chat with
OpenBSD users in Japan after the talk. If you happen to be in
* Luca Corti [EMAIL PROTECTED] [2007-09-21 18:34]:
On Fri, 2007-09-21 at 10:52 -0400, Douglas A. Tutty wrote:
I don't understand the logic of having multiple firewalls on one box.
If one box can handle the throughput requirements of all the NICs, why
not just one big firewall?
Hi,
I was playing around a long time to get CardBus and sound working on my
JVC MP-XP741. I've found, that the GENERIC.MP kernel support both if
enableing acpi. To my poor mind, it seems that ioapic is needed, but
simply adding it to the GENERIG confiuration file doesn't work.
Since sysctl -
Hi,
I'm trying to use the SAMSUNG SHG-L760 over usb as modem.
OpenBSD recognise it as umodem0 (dmesg attached) and assigns ucom0.
First of all I want to have a 'AT OK' sequence. I've tryed echo and cat
as well as a small perl script sending 'AT\r\n' to /dev/cuaU0 and read
from it. While sending
On Sat, Sep 22, 2007 at 04:37:11PM +0200, Dag Leine wrote:
| Hi,
|
| I'm trying to use the SAMSUNG SHG-L760 over usb as modem.
| OpenBSD recognise it as umodem0 (dmesg attached) and assigns ucom0.
|
| First of all I want to have a 'AT OK' sequence. I've tryed echo and cat
| as well as a small perl
Douglas A. Tutty wrote:
...
Hi Nick.
I understand your reasons. To me they look like reasons for separate
firewalls on separate boxes. In the scenarios you mention, would you
put separate firewalls on one machine?
That's where you are supposed to 1) recognize that my mysteriously
Dear subscribers/moderators,
Does OpenBSD fully support Hebrew? If indeed it does, how does one make
applications in X/KDE properly see/present Hebrew letters and filenames?
I have already added the following two lines to my .profile:
export LC_CTYPE=he_IL.UTF-8
export LC_COLLATE=he_IL.UTF-8
Hello all,
I'm running OBSD on my older boxes but still Debian on my big box (not
ready yet).
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux policies
aren't ready on debian yet. The whole focus seems to be to make
On Sat, Sep 22, 2007 at 10:53:05AM -0400, Nick Holland wrote:
Douglas A. Tutty wrote:
...
Hi Nick.
I understand your reasons. To me they look like reasons for separate
firewalls on separate boxes. In the scenarios you mention, would you
put separate firewalls on one machine?
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux policies
aren't ready on debian yet. The whole focus seems to be to make Linux
more secure. I'm not
On Sep 22, 2007, at 12:00 PM, Darrin Chandler wrote:
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux policies
aren't ready on debian yet. The whole
Filenames in foreign languages can sometimes be a little problematic,
because Unix doesn't really have any standard on how to store them on
disk - filenames are just byte arrays. Because a machine may have users
with different locales this can make sharing files very difficult, so
the desktop
On 9/23/07, Jason Dixon [EMAIL PROTECTED] wrote:
On Sep 22, 2007, at 12:00 PM, Darrin Chandler wrote:
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Hello all,
I'm running OBSD on my older boxes but still Debian on my big box (not
ready yet).
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux
2007/9/22, Joachim Schipper [EMAIL PROTECTED]:
The OpenBSD developers are trying to make the most secure UNIX system
they can; SELinux might or might not be secure, but it's not UNIX.
What part of SELinux is NOT Unix? Remember that all traditional Unix
rwx permissions are still there.
Hi,
You might be talking about grsecurity and PaX [1]. SELinux hooks
through the LSM [2] framework. LSM was designed to be easily enabled
and disabled, so that should be a fundamental flaw. LSM has valid
criticisms [3] [4].
[1] http://grsecurity.net
[2]
On Sat, Sep 22, 2007 at 12:20:34PM -0400, Jason Dixon wrote:
On Sep 22, 2007, at 12:00 PM, Darrin Chandler wrote:
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although
2007/9/22, Douglas A. Tutty [EMAIL PROTECTED]:
On Sat, Sep 22, 2007 at 12:20:34PM -0400, Jason Dixon wrote:
On Sep 22, 2007, at 12:00 PM, Darrin Chandler wrote:
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead
On Sep 22, 2007, at 12:28 PM, Ihar Hrachyshka [EMAIL PROTECTED]
wrote:
2007/9/22, Jason Dixon [EMAIL PROTECTED]:
On Sep 22, 2007, at 12:00 PM, Darrin Chandler wrote:
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Linux has SELinux in its 2.6 kernel and debian has gone
SELinux has clearly defined security mechanisms implemented through
different components. It is doing what it was designed for. The real
problem with SELinux is the way it hooks to the Linux kernel. The
inaccurate marketing of this tool doesn't help too, unsuspecting users
are blindly using it as
Douglas A. Tutty wrote:
1) there are no multiple consoles on the install kernel.
Ouch!
How big a deal would it be to do that?
Very, if the installer will still fit on a floppy.
Would it be difficult to provide on the CD and perhaps a tarball on FTP
a directory structure that would allow
On 9/22/07, Douglas A. Tutty [EMAIL PROTECTED] wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux policies
aren't ready on debian yet.
rhetorical question: why aren't the policies ready?
the problem with security
On 9/22/07, Jussi Peltola [EMAIL PROTECTED] wrote:
Filenames in foreign languages can sometimes be a little problematic,
because Unix doesn't really have any standard on how to store them on
disk - filenames are just byte arrays. Because a machine may have users
with different locales this can
On Sat, Sep 22, 2007 at 06:08:53PM +0200, Joachim Schipper wrote:
On Fri, Sep 21, 2007 at 12:46:40PM -0400, Douglas A. Tutty wrote:
I don't use X much and instead use lots of Virtual Terminals.
Since I'm on dialup, sometimes I need to leave multiple VTs open to do
things, perhaps
On 2007/09/22 11:50, Ted Unangst wrote:
exercise for the reader: find somebody using SELinux.
From what I've seen, 9 times/10, they'll only know they're using
it if they had to disable it to fix an app with a broken policy...
On 9/21/07, Marius ROMAN [EMAIL PROTECTED] wrote:
Like Darrin suggested try matching Modelines and Modes :
On xorg.conf
Enable only this (comment the rest of the modellines) :
Modeline 1680x1050_60.00 147.14 1680 1784 1968 2256 1050 1051
1054 1087 -HSync +Vsync
Modify the screen
On Sat, Sep 22, 2007 at 11:50:08AM -0700, Ted Unangst wrote:
On 9/22/07, Douglas A. Tutty [EMAIL PROTECTED] wrote:
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux policies
aren't ready on debian yet.
rhetorical
On Sat, Sep 22, 2007 at 07:45:57PM +0300, Ihar Hrachyshka wrote:
2007/9/22, Joachim Schipper [EMAIL PROTECTED]:
The OpenBSD developers are trying to make the most secure UNIX system
they can; SELinux might or might not be secure, but it's not UNIX.
What part of SELinux is NOT Unix? Remember
On 22.09-02:06, Luca Corti wrote:
[ ... ]
We are talking about OpenBSD here, and support for VRF is not there.
That may change faster then you expect
These are great news. If the implementation will allow to assign
interfaces to different VRFs it would solve the virtual router/firewall
On 22.09-16:21, Douglas A. Tutty wrote:
[ ... ]
exercise for the reader: find somebody using SELinux. ask them to
describe their policy over the phone. then repeat it back to them.
did you get it right?
[ ... ] In other words, since debian packages, by policy, must
just work on
On Sat, 2007-09-22 at 22:50 +, [EMAIL PROTECTED] wrote:
i have a feeling that the funds currently available for your virtualisation
project would improve the quality and delivery of these requirements.
If I had such project and funds I'd certainly contribute. In the
meantime I have assigned
On 9/20/07, Nick Holland [EMAIL PROTECTED] wrote:
Read this:
http://advosys.ca/viewpoints/2007/04/fuzzing-virtual-machines/
Read the paper linked there as well. Always good to go back to original
source material.
Anyone who told you VM technology and security had anything to do with
each
On Sat, 22 Sep 2007, Douglas A. Tutty wrote:
Hello all,
I'm running OBSD on my older boxes but still Debian on my big box (not
ready yet).
Linux has SELinux in its 2.6 kernel and debian has gone ahead and
compiled SELinux into the libraries, although the SELinux policies
aren't ready on
On 21.09-16:47, Christoph Leser wrote:
[ ... ]
[low-crypto-quick]
DOI=IPSEC
EXCHANGE_TYPE= QUICK_MODE
Transforms= QM-ESP-DES-MD5-SUITE
[ ... ]
Maybe there is a problem with your isakmpd.conf:
[ ... ]
IPsec-configuration names Suites
Hi,
I have been wanting to switch from a GUI meta-type chat (uses Yahoo, AIM,
etc.) to terminal/CLI-based. I came across centericq (apparently it works
with multiple protocols) though when trying to install it I get...
$ sudo make
=== centericq-4.9.11p0 is marked as broken: requires update but
I'm not sure if my message (below) went through, it didn't seem to post.
Attempting again. Sorry if duplicated.
Subject: Instant Messenger (CLI-based multi-protocol)
Hi,
I have been wanting to switch from a GUI meta-type chat (uses Yahoo, AIM,
etc.) to terminal/CLI-based. I came across
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Greetings,
Is there a way for building libstdc++ and friends without
having to do a ``make build'' in /usr/src ?
I've managed to upgrade gcc to 3.3.5, but I get the following issue
when compiling a fresh kernel from today's head branch:
I know you're not asking about this, but
naim http://naim.n.ml.org is
an excellent console-based AIM, IRC, and ICQ client.
Plus it supports being in multiple chat rooms on IRC
in a very intuitive manner.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Sean,
While thinking about your post, you could most likely install an
alternative icq client by either looking on some websites, or perhaps
by taking a peek at the FreeBSD ports collection (in the ``net-im ''category).
As an alternative, maybe
Check out the HP c-Class BladeSystems offerings. It is sad that HP is
marketing it with virtualization via Vmware. Just disregard the vmware
affair.
On 9/21/07, Josh [EMAIL PROTECTED] wrote:
Hello there.
We have a bunch of obsd firewalls, 8 at the moment, all working nice and
so forth. But we
The first thing people do when they run with SELinux is disabling it.
You decide how great it is.
On Sat, Sep 22, 2007 at 11:34:33AM -0400, Douglas A. Tutty wrote:
Hello all,
I'm running OBSD on my older boxes but still Debian on my big box (not
ready yet).
Linux has SELinux in its 2.6
Pidgin includes finch (command line client), it's a little awkard to use
though (just my opinion).
--
Mike
On Sat, Sep 22, 2007 at 08:05:57PM -0500, Sean Darby wrote:
Is there a better program out there somewhere that is CLI-based for
using chat with Yahoo, AIM, MSN, ICQ, IRC, and Jabber?
I'm using irssi (irc client) with bitlbee (IM to IRC gateway).
I'm VERY happy with it.
-ME
44 matches
Mail list logo