Re: Distribute bandwidth by IP's

On Thu, 9 Sep 2010 23:12:48 + (UTC) Stuart Henderson wrote: > about 4 different sources in order to learn enough to start experimenting.. pf.conf calomel.org building firewalls with openbsd Do you have the other sources you used, to hand at all? I have a pretty good idea but it never stays

Re: OpenBSD 4.8

On Wed, 15 Sep 2010 07:53:57 -0500 Neal Hogan wrote: > On Wed, Sep 15, 2010 at 7:45 AM, Alexander Hall wrote: > > On 09/15/10 13:41, Neal Hogan wrote: > >> On Wed, Sep 15, 2010 at 6:23 AM, Bambero wrote: > >>> Hi, > >>> > >>> I'd like to know, is OpenBSD 4.8 ready now ? > >>> Release date is 01

Re: OpenBSD 4.8

On Wed, 15 Sep 2010 16:53:58 +0200 Bambero wrote: > Yes, it seems to be the best way. > > Does anyone know that may I use 4.7 instalation CD to install 4.8 sets ? > > On Wed, Sep 15, 2010 at 1:40 PM, Dunceor wrote: > > On Wed, Sep 15, 2010 at 1:23 PM, Bambero wrote: > >> Hi, > >> > >> I'd lik

Re: OpenBSD 4.8

On Wed, 15 Sep 2010 20:08:57 +0200 Henning Brauer wrote: > * Kevin Chadwick [2010-09-15 18:14]: > > > Does anyone know that may I use 4.7 instalation CD to install 4.8 sets ? > > Yep, but the shasums will fail, however it will continue and tell you > > them, so

Re: Trouble with FTP install on virtual machine

On Thu, 16 Sep 2010 13:59:07 -0600 (MDT) li...@telus.net wrote: > On Sep 16, 2010, J Sisson wrote: > > Is something stopping you from using install48.iso to install? > > Installing via FTP is simply a habit I developed a long time ago (before > an install ISO was made available). I just downloa

Spamd and window size

I noticed the -w option to spamd but couldn't find any info for an appropriate setting via google or the mailing lists. I imagine spamd needs a very small recv buffer and so this option is there for good reason. I hope I will never need this setting but having it set for more efficiency can't hurt

Re: Spamd and window size

On Mon, 20 Sep 2010 21:45:00 +0200 pe...@bsdly.net (Peter N. M. Hansteen) wrote: > My boxes have been running with -w 1 for a few years, doesn't seem to > scare them off, unfortunately: I'll try -w 666 and see if that works. I'll report back soon p.s. Thanks

Re: Installing OpenBSD from Linux Xen VPS

There is a much higher potential of variation of implementations of xens and it is next to impossible to find out any particular hosts, xen details. If anyone has these details, maybe they could share, but you may have a more reliable experience with a Linux KVM host. arpnetworks.com (linux KVM)

Re: 2-3 General Question

On Tue, 21 Sep 2010 21:51:48 -0700 patrick keshishian wrote: > > > Does openBSD has a boot manager like Grub or Boot0 for FreeBSD ? > > I don't think so. > Gag (written in assembly) is quite handy and allows you to select new partitions on the fly.

Re: Linux or OpenBSD

On Wed, 22 Sep 2010 15:47:02 -0400 Brad Tilley wrote: > Rikky Taylor wrote: > > I was after some general advice. I need to setup a routing firewall with 3 > > interfaces, moderate traffic and a fair amount of NAT'ing in the rules. > > > > > > > > Given identical modern server hardware would I

Re: Linux or OpenBSD

On Fri, 24 Sep 2010 20:32:27 +0200 Ross Cameron wrote: > > Thats just my 5c worth and I've always been of the opinion that at least two > different skins of firewalls should be deployed, build ontop of different > technologies. > Makes life a lot harder for whomever you want to keep out. >

Re: Linux or OpenBSD

On Sun, 26 Sep 2010 20:53:57 +0100 Kevin Chadwick wrote: > On Fri, 24 Sep 2010 20:32:27 +0200 > Ross Cameron wrote: > > > > > Thats just my 5c worth and I've always been of the opinion that at least two > > different skins of firewalls should be de

Re: Linux or OpenBSD

On Mon, 27 Sep 2010 16:24:14 +0100 - Tethys wrote: > On Sun, Sep 26, 2010 at 11:10 PM, Brad Tilley wrote: > > > I don't mean this as bashing Linux, just pointing out facts. I think > > history shows that OpenBSD has a better track record here (if that means > > anything to anyone). > > Does it

Re: How to use /dev/srandom

On Wed, 29 Sep 2010 10:02:16 -0600 Theo de Raadt wrote: > > And isn't srandom sometimes (very rarely!) appropriate? E.g. for > > generating encryption keys? > > hell no! > > srandom is definately worse than the arc4random generator. > > oh, but linux people told you it was the best. I get it

Re: smtpd and spamd, with antivirus

On Fri, 1 Oct 2010 15:41:12 +0200 Joachim Schipper wrote: > On Fri, Oct 01, 2010 at 08:42:04AM -0400, Michael W. Lucas wrote: > > I have to build a new mail relay host, and would like to use spamd and > > smtpd on OpenBSD. I'm required to provide antivirus scanning of mail > > contents, however.

Re: How to use /dev/srandom

On Wed, 29 Sep 2010 13:02:41 -0400 Ted Unangst wrote: > On Wed, Sep 29, 2010 at 12:49 PM, Kevin Chadwick wrote: > >> > And isn't srandom sometimes (very rarely!) appropriate? E.g. for > >> > generating encryption keys? > > If arandom is somehow not appr

Which Video to use: AGP ATI or Onboard Intel

Just added a system to the network with a rage agp card and onboard intel. I've never liked the idea of a video card using system memory but am under the impression that the intel driver support is better at the moment in OpenBSD. Which would you choose?

Re: Is GeForce 8200 supported ?

On Sat, 2 Oct 2010 11:37:59 -0400 Ted Unangst wrote: > On Sat, Oct 2, 2010 at 4:55 AM, Jean-Francois wrote: > > Is there noway to solve this with existing software, such as a compatible > > but > > limited driver ? > > Have you called up nvidia? You have a support contract, right? > I belie

Re: How to use /dev/srandom

On Mon, 4 Oct 2010 13:33:00 +0200 Janne Johansson wrote: > 2010/10/4 Kevin Chadwick > > > > I do love all this considerations. Just wondering by on earth entropy > > > doesn't get much attention in a world where people seems so worried > > > about securit

Re: How to use /dev/srandom

On Thu, 30 Sep 2010 11:37:14 +0200 Daniel Gracia wrote: > I do love all this considerations. Just wondering by on earth entropy > doesn't get much attention in a world where people seems so worried > about security and privacy. Do you mean the world in general or the OpenBSD world. I presume

Re: How to use /dev/srandom

>Then of course the tiiiny tiiiny problem of defining in code how to >_prove_ that the input >is random. Proving some input is skewed in one of 123 ways is easy and >relatively fast, >but proving that the input data will never fail a statistical test is.. >Hard. If a situation is possible where a

Re: Is there a method to boot from floopy after booting from CD?

On Thu, 7 Oct 2010 05:54:18 +0900 (JST) z6w...@yahoo.co.jp wrote: > Thanks everybady for answering my stupid question.Seems like the cause > wasn't > DVD drive.I'm afraid of that I said stupid things. > > I haven't found > informations of somebady who installs OpenBSD on this > VAIO.However I fo

can you track port updates with cvs diff

Alright, everyone I came across "How to track port updates in stable" in the mailing list archives. http://openports.se looks cool but I can't find the stable branch and the http://www.openbsd.org/pkg-stable.html seems to have stopped at 4.1. Up untill now I've simply updated a current and stabl

Re: Disk errors

hey might suggest to still use something > > better. > > > > I know I am done with SATA drives experience have proven it just way > > to clearly to me! > > > > Best, > > > > Daniel > > > > > So I guess thats a vote for SATA? :) > > Actually, as I finished this post, I realized that once I bought some > kind of adapter, I would be spending enough extra to just go ahead and > get a bigger IDE without actually spending more total $. > > SCSI was nice, wasn't it! > -- Kevin Chadwick

Re: Can't boot from 05-Oct-2010 snapshot's install48.iso

On Fri, 08 Oct 2010 08:40:22 +0200 "Dmitrij D. Czarkoff" wrote: > "Bret S. Lambert" wrote: > > > On Fri, Oct 08, 2010 at 06:24:23AM +0200, Dmitrij D. Czarkoff wrote: > > > I've downloaded the bsd.rd and booted it with the same result - booting > > > process stops at the same point. The system s

Re: libc glob issue?

On Fri, 8 Oct 2010 12:10:55 +0200 Tobias Ulmer wrote: > On Fri, Oct 08, 2010 at 01:15:37AM -0400, Jeremy Chase wrote: > > I found this article that claims 4.7's ftpd and sftp are vulnerable to DoS: > > > > http://www.h-online.com/open/news/item/Flaw-in-libc-implementation-threatens-FTP-servers-1

Re: can you track port updates with cvs diff

On Fri, 08 Oct 2010 20:03:05 -0400 William Yodlowsky wrote: > On 7 October 2010 at 14:52, Kevin Chadwick wrote: > > > I came across "How to track port updates in stable" in the mailing list > > archives. > > > > http://openports.se looks cool but I

Re: Can't boot from 05-Oct-2010 snapshot's install48.iso

On Sat, 9 Oct 2010 22:39:58 +0200 PPP2 wrote: > On Fri, Oct 8, 2010 at 11:15 AM, Kevin Chadwick wrote: > >> > On Fri, Oct 08, 2010 at 06:24:23AM +0200, Dmitrij D. Czarkoff wrote: > >> > > I've downloaded the bsd.rd and booted it with the same result - booting

Re: Why renice not work in OpenBSD?

On Mon, 11 Oct 2010 11:27:45 +0400 Dmitry-T wrote: > 11.10.10, 08:46, "Tomas Bodzar" : > > > 6) Did you test it on real OpenBSD, real HW and latest release or snapshot? >http://bsdanywhere.org/faq >" What is the primary focus of BSDanywhere? >A mostly __unmodified__ OpenBSD kernel and userlan

Re: Why renice not work in OpenBSD?

On Mon, 11 Oct 2010 15:34:22 +0400 Dmitry-T wrote: > 11.10.10, 15:13, "Claudio Jeker" : > > > On Mon, Oct 11, 2010 at 12:16:19PM +0200, Martin Pelikan wrote: > > > 2010/10/11, Claudio Jeker : > > > > CPU consumed by the kernel is not accounted by the scheduler. All the > > > > work done by ur

Re: Why renice not work in OpenBSD?

On Sun, 10 Oct 2010 23:17:37 +0400 Dmitry-T wrote: > My test OpenBSD: > > load from livecd bsdanywhere46-amd64 > > in different consoles: > > dd if=/dev/wd0c of=/dev/null bs=1m > dd if=/dev/wd0c of=/dev/null bs=1m > dd if=/dev/wd0c of=/dev/null bs=1m > iostat > top > > run: > dd if=/dev/urand

Re: Auto Logout Idle Users

On Fri, 15 Oct 2010 01:12:03 +0200 Ingo Schwarze wrote: > > Much of the compliance efforts may look good on paper, but have > > no impact on actual usage or may be trivially circumvented > > or even worse, will likely end up compromising security > in case somebody aiming for "hardening" manipul

Re: i386 and amd64 snapshots - kernel SHA256 mismatch

On Sat, 16 Oct 2010 07:09:03 +0200 roberth wrote: > On Fri, 15 Oct 2010 21:46:41 -0700 > patrick keshishian wrote: > > > as this, where -- the "mortal" is accused to be a whiner. > > (...) > > the key words were "every time this happens" ... > > if you find an error or something strange, mo

Re: ffmpeg vs uvideo

On Sat, 16 Oct 2010 21:53:24 +0200 Jan Stary wrote: > On Oct 16 19:20:32, Jacob Meuser wrote: > > On Sat, Oct 16, 2010 at 05:46:24PM +0200, Jan Stary wrote: > > > (I have changed the subject, > > > because the subject has changed.) > > > > > > On Oct 14 01:59:39, Jacob Meuser wrote: > > > > On T

4.7 gcc Compiler bug Heads Up segfault corefile .core

This may already be known but I certainly didn't know about it, so heres a heads up to all users. There is a bug no. 6410 that may or may not be related to the one that was apparently silently fixed in freebsd compilation whilst still leaving user compilation with problems for a while. "http://ww

Re: laptop disk shows wierd contents when moved to external enclosure

On Mon, 18 Oct 2010 02:10:44 +0200 "Benny LC6fgren" wrote: > On 2010-10-17 12.57, Jonathan Thornburg wrote: > > Summary > > --- > > My primary laptop ("nitrogen") died, so I moved its disk to a backup > > laptop ("oxygen"). That laptop then died. :( I have now moved the > > former-nitrogen-

Sed error message on latest ramdisk_CD #164

At the last part of the install, just after timezone entry using install48.iso. "(Ramdisk_CD) #164 Oct 18 17:42:33" An error message is given saying. Uid0 on /: file system full /: write failed , file system is full sed: stdout: No space left on device /bin/df gives blocks us

Re: x201 + fan noise

On Wed, 20 Oct 2010 11:45:44 +0200 Benoit Chesneau wrote: > Is there a way to force the speed of fans IMHO this should be controlled by hardware but it isn't and nvidia have started doing the same cheap rubbish with their gpus. I'm not sure about what you can do with current and the x201 but if

Re: It still doable to buy VIA padlock engine CPU?

On Tue, 19 Oct 2010 18:45:18 +0200 Massimo Lusetti wrote: > 1.5GHz VIA C7 CPU o an > ATOM one? No idea what the acceleration on this board brings to the party, but if you do then bare in mind that; 1 atom mhz != 1 traditional i386 mhz (see atom on wikipedia (varying types) for info) Maybe th

Is disabling /dev/ksyms pointless?

On a streamlined kernel config I've been toying with disabling /dev/ksyms but will probably leave it enabled. I've read theo saying in the archive, something like netstat should be updated to use the vmstat mechanisms but the nestat code is horrible to work on. Does netstat just use it for speed

Re: Need Advice: Thinkpad T60 or T61?

On Sat, 23 Oct 2010 14:56:26 +0200 Henning Brauer wrote: > I hate all that widescreen > shit. 14.1" 1400x1050 is awesome. Hear, Hear. I'm not alone in the quest that gets harder every day. I've seen a "revolutionary" panasonic tv advert recently that reckons they're tv is "cinema proportion" at

Re: Linux or OpenBSD

On Sat, 23 Oct 2010 15:48:51 +0200 Toni Mueller wrote: > Also, Linux is better supported by hardware vendors, and/or much less > picky about hardware than OpenBSD is. > Ironically, I've found a system, don't know whether it's bios setup or what, I haven't put my finger on it yet but I can't bel

Re: Need Advice: Thinkpad T60 or T61?

On Mon, 25 Oct 2010 01:17:35 +0200 Henning Brauer wrote: > > "Intel GM965 Video" rev 0x0c at pci0 dev 2 function 1 not configured > > What's "not configured" here? > > I have no idea :) Does it have tv or vga out?

Re: nfsv4?

On Thu, 28 Oct 2010 10:30:25 +0200 Henning Brauer wrote: > * Claudio Jeker [2010-10-28 10:01]: > > > > i have theorized in the past that the problem we face is > > > > that an insufficient number of axe murderers are attending those kinds > > > > of research meetings. > > > Why not taking part o

Re: installation, i386 snapshot 2010-10-26, uid 0 no space left on device

On Thu, 28 Oct 2010 02:38:11 +0300 Denis Doroshenko wrote: > during the install I get kernel message that there is no space left on / > the message pops up right after I enter the timezone > is it so that the following command block fills up the ramdisk space? > > ( cd /mnt/usr/share/zoneinfo >

Re: 4.8 arrival!

On Fri, 29 Oct 2010 04:26:14 -0500 Denny White wrote: > Here ya go, bunkie, pump up those brave little fingers and scroll a > couple of lines. And while you're at it, spray some of this all over > your sorry ass: Please don't abuse the trolls, it's not their fault they have fat fingers.

Re: nfsv4?

On Fri, 29 Oct 2010 06:05:28 -0700 (PDT) "James A. Peltier" wrote: > No I cannot just put and get. Moving hundreds of gigabytes of medical > imaging data around with FTP/SSH would be out of the question. Why? I imagine you know but FTP/SSH != sftp Do you think ssh is too slow and unreliable?

Re: nfsv4?

On Fri, 29 Oct 2010 06:54:07 -0700 (PDT) "James A. Peltier" wrote: > I was merely attempting to offer input as to why someone *might* require > NFSv4. Fair enough but you haven't convinced me, how about ipsec, nfsv3, authpf etc, but I'd still investigate sftps applicability first.

Re: nfsv4?

On Fri, 29 Oct 2010 09:31:51 -0700 (PDT) "James A. Peltier" wrote: > That fact that I am choosing to use it is somewhat irrelevant to the thread > but it exploded from the question of "why not to use NFSv4". I thought the original thread was concluded quite quickly in that it wasn't desired by

Re: nfsv4?

On Fri, 29 Oct 2010 22:55:50 -0700 Sean Kamath wrote: > It's a bitch > to code in sftp support to every application that expects to operate on a > file. That's why I suggested the windows program that uses sftp as a windows share that I happened to stumble across, but didn't log the name as it's

Re: OT IPv6 Was: nfsv4?

On Sat, 30 Oct 2010 10:02:47 -0600 (MDT) Diana Eichert wrote: > On Fri, 29 Oct 2010, Marco Peereboom wrote: > > SNIP > > The US government mandates it and then when it gets to the people who > > support it they use V4. It is a beautiful thing. Go committee design! > > > > Ask theo for his much

Re: ahci message

On Wed, 03 Nov 2010 13:37:44 -0300 Marcos Laufer wrote: > Yes , i know i should upgrade . Six months ago i upgraded this machine > from 3.4 to 4.3 version by version, > and it took a long offline time so i had to stay at 4.3 temporarily , > and i was planning to upgrade it again from 4.3 to 5.0

machdep.allowaperture=1 & radeon 128 vs nvidia

I have a machine that will primarily be used for web surfing but it has a radeon 128 which causes some graphic defects under aperture=1. It looks to me that aperture=2 would be quite a bit more 'evil' than aperture=1 which most machines run fine under and so I'm going to switch it for an nvidia car

Re: machdep.allowaperture=1 & radeon 128 vs nvidia

> On Nov 08 20:43:21, Kevin Chadwick wrote: > > which causes some graphic defects under aperture=1. > > What "graphic defects"? And what makes you think it's due to the radeon, > and what makes you think it's du to the aperture=1? > It didn't dete

Re: machdep.allowaperture=1 & radeon 128 vs nvidia

For future reference, does anyone know if modern ati and intel gpus perform just as XwellX fast at aperture=1?

Re: Architeture Choose

On Wed, 10 Nov 2010 10:45:15 -0500 Joe McDonagh wrote: > On 11/10/2010 09:09 AM, Diana Eichert wrote: > > I just saw the v20z 4.8 dmesg on ajacoutot@ webpage and > > noticed he was running i386 instead of 64-bit. Curious > > if that is just a preference on his part or an issue > > with running 6

Re: ports not detecting packages in PKG_PATH

On Wed, 10 Nov 2010 08:39:35 +0100 Tomas Bodzar wrote: > > Sorry, I should have specified that I have FETCH_PACKAGES=Yes in > > /etc/mk.conf. I found when using fetch_packages I had to use make install rather than make package. Hardly a big deal, but is that expected?

Re: Azalia "No Problem" but no Audio

On Thu, 11 Nov 2010 19:09:05 -0800 (PST) James Hozier wrote: > > From: Jacob Meuser > > Subject: Re: Azalia "No > Problem" but no Audio > > To: misc@openbsd.org > > Date: Thursday, November 11, > 2010, 11:18 PM > > > > unless you're willing to send me your machine or one like > > it for keeps,

Re: Building a Practical Penetration Test Lab

On Fri, 12 Nov 2010 00:51:49 -0500 Jeremy Chase wrote: > 2010/11/11 Hugo Osvaldo Barrera : > > On 10/05/10 12:47, Toma9 Vavys wrote: > >> Hello, > >> > >> I would like to become helpful OpenBSD developer (pentester) one day, > >> so I have a few questions. > >> > >> I am CompSci student at the mo

Re: Building a Practical Penetration Test Lab

On Fri, 12 Nov 2010 13:06:45 -0600 "L. V. Lammert" wrote: > At 04:01 AM 11/12/2010, Kevin Chadwick wrote: > > >If you insist and I don't know about the latest version, then vmware is > >likely much more reliable than virtualbox but still more problematic > &

Re: Building a Practical Penetration Test Lab

On Sat, 13 Nov 2010 01:27:21 +0100 Tomas Vavrys wrote: > Is it better to test everything in Windows 7 via Virtualbox. I would have have thought from wherever your pentest tools are? KVM is another option For some things, epecially panics and load tesing/dos. OpenBSD would need to be native

Re: Building a Practical Penetration Test Lab

On Fri, 12 Nov 2010 14:56:24 -0800 Bryan Irvine wrote: > > I've heard of people not even getting past the install even with a > > hardware virtualisation capable cpu. > > On VirtualBox this is probably more to do with the dynamic image size. > You have to create the disk image as a fixed size i

Re: My pf.conf and an nmap scan

On Fri, 12 Nov 2010 17:29:53 -0500 Chris Smith wrote: > On Fri, Nov 12, 2010 at 5:06 PM, David Astua wrote: > > Check this: > > http://www.chiark.greenend.org.uk/~peterb/network/drop-vs-reject > > Good article. "Stealth" mode is highly overrated. I generally use > return except in the case of b

Re: [Bulk] Re: OT: Disadvantages of using virtual firewalls like OpenBSd

> Possibly, yes. Here's why. You're not attacking an OpenBSD host. > > The hypervisor has a network stack that is engaged before any guest. > How else can you setup virtual switches, "attach interfaces", etc. > Assuming that stack is vulnerable in some fashion, you have the > opportunity to atta

Re: Linux or OpenBSD

On Tue, 23 Nov 2010 21:53:55 +0100 Toni Mueller wrote: > Hi, > > On Tue, 23.11.2010 at 14:09:48 -0500, daniel holtzman wrote: > > Perhaps one or more developers would be curious about the crashes? Why not > > donate the machines instead of throw them out? > > ok. I'm not the owner, only the jani

Re: Erased Files Recovery

On Fri, 26 Nov 2010 18:18:16 +0100 Alexander Hall wrote: > On 11/26/10 16:43, Antoine Jacoutot wrote: > > On Fri, 26 Nov 2010, Predrag Punosevac wrote: > > > >> Dear All, > >> > >> Sorry for this hasty e-mail. I have a Thanksgiving emergency here. > >> Namely, my wife has accidentally erased all

Re: OT: Disadvantages of using virtual firewalls like OpenBSd

On Fri, 26 Nov 2010 17:50:13 +0100 Joachim Schipper wrote: > Let me add one more reason to the ones already offered: there are *many* > side-channel attacks that can cross VM barriers. In other words, don't > do any sort of crypto (SSH, IPsec...) on virtualized machines, unless > you trust every

Re: SSD with firmware upgrade under OpenBSD

On Mon, 29 Nov 2010 21:17:17 -0500 Brad Tilley wrote: > Do they really fail that often? My current understanding is that a mostly empty SSDS electronics will fail before it forgets what it's written but a mostly full and busy SSD may start forgeting fairly soon, unless it shuffles data which wou

Re: installation sets not found on CD

On Mon, 29 Nov 2010 18:52:38 -0800 Scott Stanley wrote: > OR, is there a > possibility that the disc is marginal and the drive is picky enough to > complain? This has happened to me twice, once a retry worked the other time I plugged in a usb-to-ide cdrom and the installer picked it up straight

Re: SSD with firmware upgrade under OpenBSD

On Tue, 30 Nov 2010 16:44:51 +0100 Jan Stary wrote: > On Nov 30 12:32:16, Kevin Chadwick wrote: > > On Mon, 29 Nov 2010 21:17:17 -0500 > > Brad Tilley wrote: > > > > > Do they really fail that often? > > > > My current understanding is that a mostly e

Re: SSD with firmware upgrade under OpenBSD

On Tue, 30 Nov 2010 20:09:14 +0100 Claudio Jeker wrote: > sandforce controller Noted, nice one Claudio.

Re: [Bulk] Re: Donations

On Sun, 5 Dec 2010 16:38:09 -0600 (CST) "L. V. Lammert" wrote: > Ever head of Don Quixote? THe moral of the storey - pick the battles you > have a chance of winning and avoid the rest. Operation Chariot - Where british commandos accomplished an impossible mission, with the help of code breakers,

Re: Donations

On Thu, 09 Dec 2010 08:42:00 -0800 Mehma Sarja wrote: > Meaning, if you kill a cow in this life, you come back > as a cow and someone can kill you. Time to start eating humans instead ;-)

Re: OT - gmail alternatives

On Thu, 09 Dec 2010 22:19:00 -0500 Chris Dukes wrote: > I deal with lawyers that still insist on POP3 in the clear for their > crack berry to retrieve email. OMG I've never even looked closely at the crackberry's (my brother laughed a long time at that) because the server was obviously designed

Re: [Was: OT - gmail alternatives] PGP web mail anyone?

On Tue, 14 Dec 2010 23:06:49 +0100 Tomas Vavrys wrote: > The thing is that it is very hard to > persuade someone to use PGP all the time. it is very hard to persuade someone to use PGP in the first place, and even harder to believe they have a secure machine. Sometimes you may find encrypted pdf

Re: Freeze with Western Digital Caviar Green HDD

On Sat, 11 Dec 2010 01:23:36 +0100 roberth wrote: > sata disk got really crappy since they hit 2TB. (or 1.5TB in Seagates > case.) Hitachi have said that some issues were hit when they moved to 2tbs but a new generation of their drives will solve these problems starting with a 3tb version. I've

Re: [Was: OT - gmail alternatives] PGP web mail anyone?

On Wed, 15 Dec 2010 20:55:21 + Fred Crowson wrote: > On 14/12/2010, Kevin Chadwick wrote: > > > are rarely as bad. A graphical and simple (probably impossible) OpenBSD > > browser, would really be something, but now I'm just dreaming. > > > xxxterm shoul

Re: insecure scheduler in OpenBSD 4.7

On Thu, 16 Dec 2010 19:56:50 -0500 "Jeremy O'Brien" wrote: > On Tue, Oct 12, 2010 at 01:57:20PM +0200, Alexandre Ratchov wrote: > > On Tue, Oct 12, 2010 at 12:41:04AM +0400, Dmitry-T wrote: > > > Try to recover ballance: > > > renice 20 -p 30996 > > > renice -20 -p 21919 25914 754 > > ^^

Re: DNSSEC validating resolver

On Sat, 15 Jan 2011 06:28:51 -0500 Josh Smith wrote: > > I've got to say I'm suprised the dns server in the base system of the > worlds most secure OS is not able to validate dnssec responses > Actually there is much debate about how much security dnssec adds, atleast currently. OpenSSL even,

Re: OT really. Weird ethernet problem

On Thu, 27 Jan 2011 22:25:56 +1100 "Rod Whitworth" wrote: > tcpdump on each end showed expected aro who-has requests without > answer I had the same ip assigned to two interfaces and got this behaviour even if one was down? (4.8 stable) Maybe something thinks your four port card has the same ip

Re: sysjail vs. FreeBSD jails

On Mon, 31 Jan 2011 17:43:30 -0500 Dustin Cannon wrote: > Perhaps it's just a matter of > someone being interested enough to take the plunge? And decide whether they think it's worthwhile or more important than other things to work on. The FreeBSD jail is quite quite cool in some respects, and

Re: installing symux, can't load libraries

>>> > /usr/local/libexec/symux: can't load library 'libfontconfig.so.6.0' > OK, I figured this out: I must have accidentally gotten the wrong > xbase47.tgz fileset. problem solved. For the archives: You also get a missing library error if symux is run as a non root user and can't write it's pid

Re: installing symux, can't load libraries

On Tue, 1 Feb 2011 20:30:56 +0100 Joachim Schipper wrote: > > You also get a missing library error if symux is run as a non root user > > and can't write it's pid file in /var/run > > That seems unlikely, are you sure? Tell a lie, sorry. Symon does report errors about it's pid file Symux te

Re: equivalent of Linux "mount -o bind"

On Wed, 2 Feb 2011 09:13:04 -0800 travis+ml-openbsd-m...@subspacefield.org wrote: > I have it on fairly good authority that this behavior is > considered a bug in the Linux kernel So what's wrong with user rights and what exactly is the use of this (when this bug is fixed) apart from for confusio

Re: protect mailserver using spamd

On Wed, 02 Feb 2011 21:39:51 +0400 OpenBSD Geek wrote: > But when spamd is enabled, mails take a long time(sometimes a day or less) > to arrive in our box. Sometimes, we don't receive mails. That's a big part of how it works. You can tune the delay with spamd_flags in /etc/rc.conf.local. Some s

Re: nat static-port option

On Wed, 2 Feb 2011 11:53:35 -0600 patric conant wrote: > 2^24=16,777.216 > So they are close. I read, the same ips are being used by ISPS in different parts of the world with a kind of global nat. Also, If you look at the GeoIP lookup data you'll see great swathes were allocated early on and se

Re: protect mailserver using spamd

On Wed, 02 Feb 2011 19:33:31 +0100 pe...@bsdly.net (Peter N. M. Hansteen) wrote: > I could offer mine for public consumption, but I would need > to sanity check it first for outdated data. If it's no bother to get and post it, then I'd be interested in the unsanitised data? Even the problematic d

Re: protect mailserver using spamd

On Wed, 02 Feb 2011 20:35:34 +0100 pe...@bsdly.net (Peter N. M. Hansteen) wrote: > We didn't see any noticeable increase in > spam received or load on content filterning when going to two minutes > IIRC. YMMV, may contain nuts etc. Did you see an increase in legitimate mail getting through with

Re: nat static-port option

On Thu, 3 Feb 2011 13:58:23 +0100 Bret Lambert wrote: > Counting my toaster? Dilemma 3G toaster - maybe wastes a valuable ipv4 wifi toaster and x other devices - maybe waste's me with radiation (if it's microwave band wifi (water resonater))

Re: make "keep state (no-sync)" the default?

On Fri, 4 Feb 2011 18:56:28 +0100 Henning Brauer wrote: > is there some other way to make people READ the fucking mnapages we > put so much effort in? laser etcher + contact lens and super glue

Re: is SHA256 file used or not ?

On Mon, 7 Feb 2011 09:49:29 +0200 Mihai Popescu wrote: > please tell me how to use this SHA256 file then? There was a thread recently about this where theo threatened to remove them, please don't. It is only guaranteed for releases and not snapshots, where it will be hit and miss. You can comp

<    4   5   6   7   8   9