Re: locate weirdness

On Wed, 11 Jan 2012 20:28:57 +0100 Marian Hettwer wrote: > Try to look from a different angle here. > Say, you would have an old Debian Sarge release (years old) and you > would approach a debian mailing list with "something is weird with > locate", pretty sure you would get a lot of advises to

Re: [SOLVED] Re: should 'make -j8 build' work?

On Wed, 8 Feb 2012 18:52:15 +0100 Norman Golisz wrote: > actually, it's the most reliable way to detect faulty hardware. Memory > testers, if at all, only find specific issues (mostly by writing and > reading bit patterns to RAM). They can't stimulate and stress the > hardware as a build process (

Re: [SOLVED] Re: should 'make -j8 build' work?

On Wed, 8 Feb 2012 11:27:14 -0500 "Joe Gidi" wrote: > I actually resolved this by pulling and reseating all the DIMMs. > > Oddly enough, prior to that, the box went through 3 complete runs of > memtest86+ without error, but continued to hang at random spots during > 'make -j8 build'. > By compl

Re: smartphones and managing openbsd servers

On Wed, 22 Feb 2012 10:23:33 +0100 Raimo Niskanen wrote: > Sorry, sftp, When I looked, I couldn't find an open source sftp for Android but andftp works well. I'm very careful with what I let the almost constantly full of exploits phone have access to (a network being as strong as it's weakest li

PF proliferation, the more the merrier

Me and my brother won a Blackberry Playbook and though you can't even search in pdfs and it demands use of cifs. I'm a little impressed with the spec, I'd have no idea if I didn't have one. Apparently it has compiler and linker protections, Propolice, PIE, full RELRO, ASLR and what led me to find

Re: My OpenBSD 5.0 installation experience (long rant)

> > B Use (W)hole disk or (E)dit the MBR? [whole] You should certainly try Ctrl-C, Esc, Ctrl-alt-del, power switch and never enter in order to not do something. Taking the situation of the cat jumping on the keyboard and you may have an argument except you do have to hit [I] for install first and

Re: My OpenBSD 5.0 installation experience (long rant)

On Wed, 7 Mar 2012 13:52:45 -0500 Sean Howard wrote: > This error is the best error you can make. Keeps you respecting your system > and your own ability to control it. Leonardo, have you ever started zeroing the wrong /dev/ with dd yet? Backup everything important and hope it saves you more ti

Re: My OpenBSD 5.0 installation experience (long rant)

On Thu, 08 Mar 2012 10:50:15 +0100 Dmitrij D. Czarkoff wrote: > Furthermore, the more chatty installer is, the less amount of > newcomers would be reading the messages. I had a thought last night, how worrying that my mind jumped to OpenBSD in front of the TV. It occurred to me that it wasn't too

Re: Suggestion

On Sun, 11 Mar 2012 08:58:24 +0100 (CET) Anonymous wrote: > Forgive me for not feeling like a criminal > when I run bootlegged copies of XP in a VM to do stuff for $WORK since I do > believe I have the right to run to run copies of the Curse of Redmond > without pissing further hard earned $CURREN

Re: My OpenBSD 5.0 installation experience (long rant)

On Mon, 12 Mar 2012 08:55:03 +0100 Fredrik Staxeng wrote: > "Dmitrij D. Czarkoff" writes: > > >So you state that the fact that "if one chooses to use the whole disk, > >the whole disk is used" needs further documentation? > > Once upon a time, mkfs used to make a 10-second pause before starting

Re: install questions

On Sun, 18 Mar 2012 08:11:12 -0600 fullmoon wrote: > I suspect a bug in the latest virtualbox update, has anyone else been > able to run this ISO under this latest version of virtualbox? Theo ended up wasting time on a bug report that turned out to be virtualbox handling memory badly I think. V

Re: install questions

On Sun, 18 Mar 2012 17:31:39 -0500 Amit Kulkarni wrote: > Yep, atrocious i/o performance in VMWare Player as of 4.0.2. This was > before rthreads though, I don't think it would alter much after > rthreads. Hmm, glad this came up. I'm on 3 and was recently thinking of getting the latest version.

Re: install questions

On Sun, 18 Mar 2012 21:50:15 + (UTC) Stuart Henderson wrote: > I think I tried vmware player at one point and had absolutely dreadful > i/o performance, no idea if that is still the case. I've done a lot of testing on one machine using vmware player and I haven't noticed the reduced HDD I/O a

Re: OpenBSD and Apache

On Tue, 20 Mar 2012 14:29:48 -0300 Friedrich Locke wrote: > Dear list members, > > i have just installed my openbsd box and would like to configure my > server to handle http requests. I would like to set apache to spawn at > most 10 processes and each handle at most 20 requests simultaneously. >

Is nginx to complement or replace apache?

Knowing nginx is on it's way to base and having just seen some fixes for nginx on gentoo (some CVES from 2009). Is nginx going to complement apache in case users want features/prefer it or replace apache as apache can no longer have time spent on it? Also, does anyone know if there are any CVEs a

Re: chroot scp

On Wed, 04 Apr 2012 18:08:37 -0400 Michel Blais wrote: > I have create a chroot with scp and needed library for it but when I try > to copy a file with scp, I always get the error "unknown user UID" after > succefully entering the password. I can't find anything for this error > exept for Linux

Havege entropy gathering

I was looking at this entropy gatherer (havege) and was wondering if OpenBSD uses any similar techniques? www.irisa.fr/caps/projects/hipsor/

Re: Why so old firefox in 5.1?

On Fri, 04 May 2012 01:18:25 -0300 Jeronimo Baldino wrote: > I just want to know: why OpenBSD provides Firefox 9.0.1 You can find firefox 11 here or build from source/port. http://mirror.bytemark.co.uk/OpenBSD/snapshots/packages/i386/ You'll need to upgrade and follow current though first using

Re: OpenBSD 5.1 i386- ports vs packages

On Sun, 6 May 2012 04:03:46 +0200 ropers wrote: > As for security, since the Openbsd.org packages and ports both come > from the same source, there's no security advantage of ports over > packages unless you don't trust OpenBSD.org and actually read all of > the source code you compile (and, by th

Re: OT: SSH not secure?

On Wed, 9 May 2012 17:42:09 +0200 Martin SchrC6der wrote: > It's only as secure as the local and/or remote machine. > There's nothing SSH can do about that I have a bucket of water. Can anyone tell me why my hand gets wet if I put it inside the bucket.

Re: OT: SSH not secure?

On Wed, 9 May 2012 14:35:42 -0300 Christiano F. Haesbaert wrote: > That's because you need to buy AutoBucket. Having spent some time recently on some linux mailing lists. I have to say this lists fuckin A.

Re: fw_update

On Thu, 10 May 2012 00:46:05 +0200 Alexander Hall wrote: > revision 1.654 > date: 2011/11/08 19:55:52; author: deraadt; state: Exp; lines: +2 -6 > Now that the code is well tested, don't ask the firmware question > anymore. Saves 141 precious bytes on the inside of the media. > ok krw I bet h

Re: OT: SSH not secure?

On Thu, 10 May 2012 12:49:09 +0400 Mo Libden wrote: > You can make it as secure as you want, then > there is also the wrench solution: I used to work somewhere with a steel door. Downstairs made copper wire. There was some building work going on across the road. One morning there was a whole in t

Re: VPN questions

On Fri, 11 May 2012 14:25:22 -0400 Chris Smith wrote: > Would like to tunnel the net traffic from my (android) cell phone (and > tablet if I ever get one) through my soho OpenBSD firewall/router when > I'm connected to untrusted and/or open wifi. My outside/public IP is > not fixed (cable) but it

Re: a live cd/dvd?

On Sat, 12 May 2012 11:16:34 -0700 Tyler Morgan wrote: > Anyway, I hope that perspective is useful in some way. I have no strong > opinion on the usefulness of an OpenBSD live CD, and this isn't a Linux > mailing list blah blah blah WHilst you have valid points, I think your being a bit too dis

Re: a live cd/dvd?

On Sun, 13 May 2012 18:17:10 -0700 Eric Oyen wrote: > there are 2 ways: using ORCA in the Gnome > desktop environment (or XFCE) or a console based screenreader I try to use alt text and reasonable ordering but for me to test my websites with. Do you use particular browsers with Orca or screen re

Re: Error while copying data from another disk

On Mon, 14 May 2012 07:13:35 -0400 Ralph Ellis wrote: > If the information has commercial value, you may > want to use it. Takes for ever though but is easy to use and may recover partial sectors automatically too ;-) Free but harder to use tools are ddrescue, recovers as much of damaged sect

Re: Error while copying data from another disk

On Mon, 14 May 2012 18:20:48 + (UTC) Christian Weisgerber wrote: > > mhdd comes with sysresccd and can make a drive ignore bad sectors > > independent from the filesystem. Be careful to get the right sectors > > though as it will destroy the data in them. > > Well, yes, to get rid of a per

Re: Openbsd 5.1 Review on Distrowatch

On Mon, 14 May 2012 20:13:39 -0400 Weldon Goree wrote: > flash > > via linux emulation Flash has never really been supported on Linux with poor video performance. Yes flash has more overhead than just playing a video, but not that much! (A system that runs doom 3 at full can't run semi-HD when a

Re: Openbsd 5.1 Review on Distrowatch

On Tue, 15 May 2012 13:58:57 +0400 Alexander Polakov wrote: > You forgot "in my case" part. There're no proprietary video drivers, > right, but free drm infrastructure provides acceleration for many cards. ATI and AMD but NOT NVIDIA? May as well give nvidia a kick wherever possible to go open as

Re: Error while copying data from another disk

On Tue, 15 May 2012 17:33:02 +0100 (BST) Mik J wrote: > to recover the rest of my files (50% left) while the disk doesn't complain If your half way there then fair enough, but. ddrescue or magicrescue? do forensic copying and create a log so that it can carry on where it left off. It Tolerates

Re: disable password check using /etc/login.conf file

On Sun, 20 May 2012 11:14:13 +0400 Wesley MOUEDINE ASSABY wrote: > > > > It was only for testing purpose more convenient. > And of course not to put in production. Is "testing123" a problem?

Re: Antimalware for server mail and filesystems protect

On Sun, 20 May 2012 09:09:37 -0400 Ralph Ellis wrote: > OpenBSD itself is rarely a target for these exploits but if you are > using OpenBSD as a gateway or mail server for Windows systems, you may > find these programs helpful. Don't forget, you may well be trading server for client security. O

Re: Upgrading OpenBSD

The main difference between commercial and FOSS is you only get security updates for the actual OS and very few new features which you have to pay for and will break your system without spending time to go from XP > VISTA > Win7 etc.. It will break if you switch hardware too. You can't get IE 9 wit

Re: spamd greylisting: false positives

On Fri, 25 May 2012 17:22:04 +1000 David Diggles wrote: > Eg: lists.openbsd.org failed with default grey settings in spamd. I find it hard to believe lists.openbsd.org isn't RFC compliant. I guess you have another problem. If you send me an address privately. I'll send a mail from Yahoo. I know

Re: using relayd in transparent mode

On Wed, 28 Mar 2012 15:58:45 +0200 Schmurfy wrote: > So there really is something broken in the relayd shipped with OpenBSD 5.0 > at least for transparent mode. I use relayd at securelevel 2 in some cases which works for relaying to or on a single server. I've found relayd on 5.1 now exits due to

Re: OpenBSD in April's issue of the CACM

On Tue, 29 May 2012 17:35:40 -0600 Theo de Raadt wrote: > to realize I was talking to "The Right People" (even if they kept > saying they are not). For one of them, check out how the revolving > door works: > > Fred Baker > and > en.wikipedia.org/wiki/Fred_Baker_(IETF_chair) > > That i

Re: spamd 250 messages

On Wed, 30 May 2012 13:00:45 -0400 Kurt Mosiejczuk wrote: > That's also why spamd in greylisting stutters for the first 10 seconds. > Many spammers disconnect now when stuttered at, so they give up before > even starting the greylisting process. It might be now. I believe the original reason

Re: Large (3TB) HDD support

On Fri, 01 Jun 2012 13:41:21 -0600 Theo de Raadt wrote: > UEFI arrived with all sorts of promises of making machines better, but > is being turned into something completely nefarious. http://www.fsf.org/campaigns/secure-boot-vs-restricted-boot/statement Imagine if it came out before Vista and st

Re: SMTP server pools at odds with the RFC?

On Mon, 4 Jun 2012 22:53:54 +1000 David Diggles wrote: > "Greylisting will cause longer delivery delays if the sender has a large > infrastructure and is sending from a different IP when it retries. Most pooling Services like Yahoo and Google seem to get through eventually these days without whi

Re: pf/rdr or relayd?

On Tue, 5 Jun 2012 21:57:40 -0400 bofh wrote: > Any benefits to using relayd? There are some benefits such as in layer 7 but relayd is going through a transition incorporating priv seperation code used elsewhere in OpenBSD and if you check the mailing list you'll see there are some bugs at the mo

Re: Customizing the install process

On Thu, 7 Jun 2012 18:16:36 +0530 Jay Patel wrote: > One more question. Do i need to use the generated system.tgz with other > base51.tgz,etc.tgz . etc etc . Or just syste.tgz into .img and install. There is also the rc.firstrun script which runs once after install. Sometimes you may know that a

Re: Customizing the install process

On Thu, 07 Jun 2012 16:35:33 +0200 Tomasz Marszal wrote: > Will you have to boot all 10 pcs and do the install process on them or > there are some magic scripts that redistribute your img or tar file via a > network. I know this is possible for Linux but never done it for BSD. Do > this magic scri

Re: Customizing the install process

Yaifo is quite handy but unsupported too.

Re: Is not possible to disable sndiod process??

On Sat, 09 Jun 2012 12:35:07 +0200 carlopmart wrote: > Uhmm why?? > > I use rc.conf.local for daemons or options outside of openbsd soft base ... In addition to what others have said it keep your changes easily identified. If you put . /etc/rc.conf.localbase in rc.conf.local you could seperat

Re: Ways to handle DNS amplification attacks with OpenBSD

On Sat, 09 Jun 2012 14:08:58 +0200 Peter N. M. Hansteen wrote: > While string matching in PF is not an option, I vaguely remember snort > users coming up with patterns to match earlier DNS tomfoolery, so > there's a chance you may be able to get useful info and possibly even a > working snort setu

Re: Is not possible to disable sndiod process??

On Sun, 10 Jun 2012 12:56:22 +0200 carlopmart wrote: > Yes, maybe I need to update my knowledge about OpenBSD, but I think it > is normal for a person who had previously used, that the configuration > of rc.conf went in the same manner (without having to read the man > page). Or not? Why not,

Re: Solid state disk geometry

On Tue, 12 Jun 2012 18:31:38 +0200 Peter Laufenberg wrote: > >Some SSD controllers use compression I wonder if they use the average compression ratio to boost advertised capacity?

Re: let user can only run one command (passwd)?

> sshd_config ChrootDirectory not suit our needs. Why doesn't it suit your needs (time to work out how to do it?), you could just use a locked down file permission system perhaps even including secondary groups. Force command might come in handy as well as sudo too. ___

Re: let user can only run one command (passwd)?

> > sshd_config ChrootDirectory not suit our needs. You could also use systrace!! Do a little research and be careful if you use root though. Note contrary to wild statements the atleast published race conditions to be careful of are actually narrowly defined.

Re: let user can only run one command (passwd)?

> how WOULD it? > passwd has to alter files in /etc (and is setuid root), kinda keeps a > chroot from being overly useful. > > you are going about this the hard way > It's not difficult to copy the lines from /etc/passwd into a mfs upon login, you don't necessarily need suid but yeah that's

Re: Mounting a partition, cdrom, usb as a user

> sudo comes to mind... If you haven't you might? want to look at using sudo with hotplugd too. Why not do something good every day and install BOINC.

Re: OpenBSD forked

> yes. some more, some less. The feature argument - surely any barriers there must mean that that ideal goes against everything OpenBSD stands for. I wonder if that's just a developer enticer. I wouldn't mind better ARM support but I don't see why that couldn't be done under the OpenBSD project

Mozillas choice of malloc implementation

ld like to comment on this thread from the mozilla security list? You never know it might do some good? __ >>> On 2012-06-21 4:02 PM, Kevin Chadwick wrote: >>> >>> p.s. mozilla uses it's own ma

Re: Hardware/System Question

> > Optiplexes have a reputation for spontaneously letting the magic smoke out > > of their own power supply capacitors. hard to recommend unless you have a > > good support deal with dell > > Knowing which way round to hold a soldering iron is a useful skill > if you're dealing with cheap har

Re: OpenBSD's webpage desing

> Other than "boring", no one has actually STATED a problem of the OpenBSD > website. It's not PINK enough. I want PINK everywhere. PINK PINK PINK. PINK text on a PINK background. Oh and BROWN. BROWN BROWN BROWN. Thinking about it, PINK text on a PINK background won't work will it. Grey, grey

Re: OpenBSD's webpage desing

> > On Wed, Jun 27, 2012 at 03:46:12PM -0700, Chris Cappuccio wrote: > >> IIRC, Theo did the current design himself after everyone else failed to > > come up with something good. > > > > Well, Theo had some rather fun constraints, like making a web site that > > works > > with antiquated brow

login.conf bcrypt rounds default and bcrypt kicks pams ass

http://www.h-online.com/security/news/item/John-the-Ripper-now-able-to-crack-office-files-and-use-GPUs-1631901.html bcrypt kicks pams ass due to being memory intensive. :-) I thought I saw a commit raising the default rounds in login.conf but they don't seem to have raised, am I mistaken? -- __

Re: OpenBSD - UEFI Secure Boot

> Well, are you sure "UEFI disable button" will turn off ALL of UEFI functions? Fow windows 8 certed hardware, aka most. http://download.microsoft.com/download/A/D/F/ADF5BEDE-C0FB-4CC0-A3E1-B38093F50BA1/windows8-hardware-cert-requirements-system.pdf Which states. MANDATORY. The platform shall s

Re: [Bulk] Re: Speeding up scp over 10GigE, suggestions?

> I regularly do use rsh and rcp in my work. > and ssh/scp when needed (public network) Do you work with a small trusted group, because many attacks come from co-workers. -- Why not do something good every day and install BOINC.

Re: [Bulk] Re: [Bulk] Re: Speeding up scp over 10GigE, suggestions?

On Thu, 19 Jul 2012 13:47:12 +0200 (CEST) Wojciech Puchar wrote: > depends on assumption. For every business i work i assume that co-workers > doesn't harm and that's agreed with the boss. > Believe me that will change one day. Never had a trusted employee poached by a competitor for example? >

Re: [www.openbsd.org] Re: man pages with screen reader

> I have a BrailleX ELBA-40 here (40 column braille display). unfortunately, it > does not work because of a battery failure. Considering you have found out how cheap the electronics are I expect I cannot help for some undisclosed reason or that it's actually some sort of hard to find power failur

Re: xsystrace do not exit

> Because it's much more efficient to have a persistent process that > handles all the approvals for all the systrace processes on the system > going forward and having an extra X client that hangs around blocked > and doing nothing costs, well, almost nothing. Aah now I understand too. You can al

Re: Dilemma: between OpenBSD and NetBSD

> > Why softdep not enabled by default? > > > Because, unlike some OS's, OpenBSD doesn't want to think for you. > I've noticed that whenever an OS or an application tries to think > for me it is wrong 99% of the time. It is faster with softdep and safer without. My mail client has similar choic

Re: pf 'synproxy state' doesn't work with pppoe

> Any help would be appreciated. Works for me on 5.1 I don't think it's the rule but the combination of rules. Try reordering your ruleset. I've had a problem before but I forget or never found the specific reason. -- ___ 'Wr

Re: pf 'synproxy state' doesn't work with pppoe

> # pfctl -sr > pass all flags S/SA > pass in on pppoe0 inet proto tcp from to port = flags S/SA > synproxy state > > This is the only rule. Otherwise it's just 'pass all'. If I remove this > rule too *or* change synproxy to keep, the connection is working. > I remember being puzzled by t

Re: pf 'synproxy state' doesn't work with pppoe

> > > pass all flags S/SA > > > pass in on pppoe0 inet proto tcp from to port = flags > > > S/SA synproxy state > > > Originally you posted pass in quick. Keep the quick in there, not for any reason other than I have a quick in my rules. Same with the NIC, I don't have any logical hopes f

Re: OpenSSL handling intermediate certificates

> However, > this would require DNSSEC to be secure (which itself seems to be mired > in controvery lately, not to mention the slow rate of adoption) Do you have a reference for that. I know of the controversy around DNSCURVE before DNSSEC even arrived but haven't seen any of late. Is it to do wit

Re: OpenSSL handling intermediate certificates

On Fri, 24 Aug 2012 23:51:27 -0400 Ryan Kirk wrote: > You're definitely on track, although I was referring to D.J. > Bernstein's recent slides: http://cr.yp.to/talks/2012.06.04/slides.pdf > Thanks, I'll take a gander. > In these, he does bring up the same problems again that his DNSCURVE > purp

Smtpd disposable addresses

I think this came up before but my Googling failed to find it. I love disposable addresses and being able to say. Oi what you doing giving my address to spammers, or have you had a virus?? A todo list was mentioned, I was just wondering if disposable addresses was on it or would that be in a gala

Re: Smtpd disposable addresses

On Thu, 30 Aug 2012 23:12:22 +0200 Gilles Chehade wrote: > > I think this came up before but my Googling failed to find it. > > > > I love disposable addresses and being able to say. Oi what you doing > > giving my address to spammers, or have you had a virus?? > > > > A todo list was mentioned,

Re: Smtpd disposable addresses

On Fri, 31 Aug 2012 13:30:05 +1200 ml+helloke...@extensibl.com wrote: > > You specify a character usually defaulting to - as a seperator > > > > and then acceptable addresses > > > > bob > > bob- > > pete- > > > > for a domain like bobszz.net > > > > so bobszz.net can receive mail to > > >

Re: Signatures for distribution sets and packages?

> > Is there any way to verify that distribution sets and packages that I > > have downloaded have not been tampered with (e.g., by someone with > > access to the mirror from which I downloaded them)? > > Download the checksums from another mirror using a different connection. > > The project d

Re: !!!!

On Wed, 5 Sep 2012 07:26:26 -0400 Tony Abernethy wrote: > >A very simple addition to the FAQ would not be a problem. > >WOW! This question seems to be asked a lot! > >A simple addition to the FAQ does not seem to be a problem, Nick. > >Yes, I know , a very stupid question asked many times. > >A si

Re: !!!!

On Wed, 5 Sep 2012 23:12:37 +0800 Rowdy OpenBSD wrote: > > To the OP. When checking I choose a source mirror or two and download > > just the SHA256. There is no sha256 for src.tgz and sys.tgz but you can > > use ssh for the source code by getting the fingerprint once like for > > signatures but t

Re: !!!!

On Wed, 5 Sep 2012 15:49:15 -0430 Andres Perera wrote: > doesn't in any way justify > downloading sha256 from more than one mirror from the same connection, > kevin It does if a lower tier has been compromised and I never said from the same connection. You must be one of them body language read

Re: !!!!

On Wed, 5 Sep 2012 16:49:34 -0430 Andres Perera wrote: > On Wed, Sep 5, 2012 at 4:06 PM, Kevin Chadwick wrote: > > On Wed, 5 Sep 2012 15:49:15 -0430 > > Andres Perera wrote: > > > >> doesn't in any way justify > >> downloading sha256 from more than one

Re: !!!!

> but that requires X That's a non sensical response that has already been answered and you wonder why you are thought to be a troll. X doesn't need to run and some files are required for some packages. Lots of packages are required for some packages, something OpenBSD fights as best it can and do

Re: !!!!

> No more response from me without bright ideas. I guess the simplist solution would be for a builder with source tree access to upload just the snapshot SHA256 to the source tree for secure cvs download by users? -- ___ 'Write

Re: !!!!

On Thu, 6 Sep 2012 08:34:23 +0800 Rowdy OpenBSD wrote: > If the OpenBSD project signed its packages and distribution sets, we > could reasonably assume that they were not compromised between being > signed and our downloading them. Your current processes do not > provide the same degree of assura

Re: How to PROVE your system is up to date?

> I have State and Federal regulators that want me to PROVE (since their > only used to looking at Micro$oft servers) my OBSD 5.1 server is up to > date, and there are no outstanding patches that need to be applied. It is extremely rare that a patch for base actually affects the parts that I am us

Gnome 3 and BSD in 2012-13

> I do see a slight improvements when running a full GNOME 3 installation. Only asking out of interest because I'm not a Gnome 3 fan but is Gnome 3 still playing ball with BSD or is it more like hard ball? Are they just going to provide compilation flags to leave out the linux only dependencies o

Re: Bibliography on IPv6

> I intend to get my hands on an IPv6 book to deal with some of the issues > I'm having - which are mainly my lack of knowledge and expertise on the > subject. > > I've seen "IPv6 Essentials", from O'Rilley mentioned a lot, and I've > heard it has a BSD-related section too. Probably not what your

Re: Automatic reboot on kernel panic

On Thu, 23 Jun 2011 11:27:09 +0200 Raimo Niskanen wrote: > Ok, that I can not find from the documentation, > only that setting it to 0 most probably is a change. I believe the defaults are conveniently listed in the comments next to the settings in sysctl.conf. I don't see why they'd change occas

Re: fortune(6) lies

On Fri, 24 Jun 2011 10:44:45 -0700 patrick keshishian wrote: > that's so square. 4098x2304 would be much superior. What shape are your pupils? Rectangles? You don't need that high a res on a small screen. Imax > Widescreen

Re: fortune(6) lies

On Fri, 24 Jun 2011 11:53:49 -0700 patrick keshishian wrote: > > > > What shape are your pupils? Rectangles? > > maybe you are special, but my peripheral vision extends more > horizontally than it does vertically. Actually it is positioned where you are being most alert. If you expect high ver

Re: fortune(6) lies

On Sat, 25 Jun 2011 13:35:44 +0200 Claudio Jeker wrote: > Unsure if those displays will work with OpenBSD but if someone gets me on > I will test it :) Do you actually have media for this?

Re: Recompile OpenBSD without built-in Apache 1.3

On Wed, 29 Jun 2011 04:57:30 -0400 sven falempin wrote: > As i don't want to use a smaller 'spinover'. > I ll probably will have to list some non usefull files, > making upgrade more difficult, for my next use of openBSD. Depending how you upgrade. Making a minimal-base.tgz and not selecting base

Most idiotic spammer award

I had a spammer tied up with spamd for a total of 4hours in 20 minute sessions. He was trapped by greyscanner and two dnsbl. The spammers saving grace from this award is the last two entries dropped to 20 seconds rather than 20 minutes before disconnection so I guess this ones no longer a single ce

Re: Most idiotic spammer award

On Sun, 3 Jul 2011 16:50:40 -0500 goodb...@gmail.com wrote: > How much of this is botnet? Used to be a lot of humans firing scripts but > nowadays... You could only guess really from lack of RFC compliance and dsl sources etc. However long lasting strange connections to spamd and increased code

Re: How does OpenBSD compare to Ubuntu Server?

On Mon, 11 Jul 2011 21:13:10 -0700 patrick keshishian wrote: > > added daemons have different connotations from those included in obsd > > base, and this also applies to debian and derivatives. the closest > > parallel would be packages built from ports and the automation pkg_add > > performs on i

Re: If I install OpenBSD 4.9, when will I have to upgrade to 5.0?

On Tue, 12 Jul 2011 08:32:55 +0200 (CEST) Francois Pussault wrote: > Hi, > I upgrade only when i need to, or when a version is done, to buy CD > & give money to the project. > So twice a year maximum, but most often on spring version once a year Really it depends on the apps you run. If you use f

Re: How does OpenBSD compare to Ubuntu Server?

On Thu, 7 Jul 2011 09:02:08 -0400 Juan Miscaro wrote: > Was wondering what advantages OpenBSD has over a progressive Linux > distribution such as Ubuntu (Server edition). One thing I noticed is > that they're having a hell of a time transitioning away from the > traditional sysvinit-based system

Re: OpenBSD 5.0-beta non-free firmware

On Tue, 19 Jul 2011 15:30:32 -0500 Amit Kulkarni wrote: > probably not silly if you are a marketer. if they force somebody to > come to their website and maybe just click on to buy something. at > least that's what I figure. Doesn't help they're branding if you then associate that logo even a lit

Re: hibernation with APM

On Sun, 7 Aug 2011 18:35:57 -0500 joshua stein wrote: > > This is semi-OT, but how does that work, actually? I mean, I know how > > suspend to disk works in principle, but if it's done purely from the > > BIOS, wouldn't the BIOS need to know about (and use) a special > > partition to store the RA

Re: inetd_flags in rc.conf

On Tue, 16 Aug 2011 03:28:53 +0930 David Walker wrote: > inetd is definitely running on this machine with that flag set NO. Why turn it off, Just hash everything in inetd.conf and your nmap fingerprint will be lower than without inetd running.

Re: Recovery FFS formatted partition

On Thu, 18 Aug 2011 02:57:42 +0200 ropers wrote: > Google file carving, magic numbers, etc. You can do it > manually with a hex editor -- there also are file carving programs > such as foremost/scalpel, but I'm not sure if these have ever been > ported to OpenBSD There's no equal substitute for

Re: ext42fs support?

On Mon, 22 Aug 2011 12:29:45 +0200 Pascal Stumpf wrote: > Iirc, this only works on ext3 (without journaling ofc), not ext4. > > FreeBSD had a GSoC project last year to implement ext4fs (as a separate > module/driver): http://wiki.freebsd.org/SOC2010ZhengLiu But it's not > even in their main tree

Re: pflog shows 0.0.0.0.0 > 0.0.0.0.0

On Thu, 25 Aug 2011 20:10:12 + (UTC) Stuart Henderson wrote: > Yes these are from the "log (all)", looks like a bug to me. I wondered if it was the result of one of the optimisations. The state making SYNs show the correct IP.

Re: question about documentation

On Thu, 1 Sep 2011 11:35:57 -0400 Daniel Villarreal wrote: > If you'd like to completely disable priviledges granting through the > PolicyKit framework, create the file: > /etc/polkit-1/nullbackend.conf.d/99-nullbackend.conf > containing the following lines: > [Configuration] > Priority=99 > > p

<    1   2   3   4   5   6   7   8   9   >