exit 1
lineout AT+CSCA="+49177061"
input 10 OK
if failure exit 1
lineout AT+CMGF=1
input 10 OK
if failure exit 1
lineout AT+CMGS="\%1"
input 10 >
lineout \%2
output \26
input 100 ok
if failure exit 1
exit 0
of course I have some shell around it for failure handling (ret
.
> ...
>
> IPv6 firewalls? Where? Good ones?
OpenBSD's pf has support for v6 for years now.
--
Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg & Amsterdam
bugs, errors, and exploits
--
Henning Brauer, [EMAIL PROTECTED], [EMAIL PROTECTED]
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting - Hamburg & Amsterdam
* [EMAIL PROTECTED] <[EMAIL PROTECTED]> [2005-09-06 20:04]:
> On Tue, 06 Sep 2005 11:35:22 +0200, Henning Brauer said:
> (Off-topic, but needs correcting...)
well, then please correct correctly...
> > so if the BSDs are en par with preventive measures, why is OpenBSD (to
>
* Florian Weimer <[EMAIL PROTECTED]> [2005-09-06 11:44]:
> * Henning Brauer:
> > so if the BSDs are en par with preventive measures, why is OpenBSD (to
> > my knowledge) the only one shipping ProPolice, which prevented
> > basically any buffer overflow seen in
complete...
And, why's OpenBSd the only one that has systematically removed all
uses of dangerous string handling functions like strcpy, strcat,
sprintf etc?
so, claiming the difference is how vocal a project is is, in this case,
just far off reality.
--
Henning Brauer, [EMAIL PROTECTED],
* william(at)elan.net <[EMAIL PROTECTED]> [2004-12-04 16:14]:
> On Sat, 4 Dec 2004, Henning Brauer wrote:
> >Thus we propose expanding the reverse DNS tree with a subdomain with
> >the well known name
> >
> >_srv
> >
> >This subd
t the /128 (host), /64 (subnet) and /
32 (site) level. That way it can either provide information for a
specific IP address or for a whole network block. More specific
information takes precedence over information found closer to the top
of the tree.
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)
rallel universes for longer
than it has to be...
> As such, I'm not sure I understand why this is a significant issue. Is
> there some reason it's important for these sites to go to v6 instead of
> using 4-to-6 address encapsulation at their border?
4-to-6 is a horrible
licy's are mostly
> there because you still have to support the old way. In IPv6 we can do
> things the new way, so why shouldn't we decide on new policies that get
> us to stop all issues we had with IPv4.
we'll never see the new way if it has so big drawbacks for so many
* Daniel Roesen <[EMAIL PROTECTED]> [2004-11-28 14:05]:
>
> On Sun, Nov 28, 2004 at 01:21:05PM +0100, Henning Brauer wrote:
> > * Cliff Albert <[EMAIL PROTECTED]> [2004-11-28 13:13]:
> > > Therefore I also agree with daniel that there is not really a problem
>
is not like only organizations
with an ASN assigned have v4 space now. If they have their portable
address space now, why should they suddenly accept that they had to
renumber when changing providers?
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is ve
* Iljitsch van Beijnum <[EMAIL PROTECTED]> [2004-11-13 13:48]:
> Filtering based on IP addresses is a broken concept.
this arrogance and misguided view of the 'net is probably the main reason
why v6 doesn't work.
* Owen DeLong <[EMAIL PROTECTED]> [2004-11-13 09:11]:
> Or... Recognizing that you have a dependency on DNS, you include
> S10WaitForDns in your rc3.d and don't continue the bootstrap until
> DNS is reachable.
in my what? ;)
this is just sick, in any case.
> >>> Not to forget all the IP address
* Owen DeLong <[EMAIL PROTECTED]> [2004-11-13 08:46]:
> I suspect that eventually, we will discover that ADDRESS-based
> ACLs simply do not scale to a V6 world
which I see as an issue with v6 and not the ACLs.
box, that is, a 266MHz Geode CPU with
128MB RAM, using OpenBSD and OpenBGPD...
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)
us error?
usually unaligned memory access on a strict alignment architecture.
in other words, a software bug.
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)
he laugh).
> This happens even if things like the sequence number is wrong (at least
> on some versions of IOS).
I consider this Yet Another IOS Bug.
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)
* Arman <[EMAIL PROTECTED]> [2000-01-09 03:07]:
> Does anybody else know of other cable/DSL providers that simply block
> outbound port 25?
wish just everybody did...
* Stephen Sprunk <[EMAIL PROTECTED]> [2004-06-08 13:05]:
> Thus spake "Henning Brauer" <[EMAIL PROTECTED]>
> > You loose nothing with using ssh instead of telnet.
> > You win a lot.
> You lose money and time because you have to license more expensive code,
. However, is that worth $x thousand more per IOS image? Maybe.
not the point - cisco is to blame for that.
> Should it be included by default, yes.
that is the entire point.
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it ta
iece that turns a collection of crap into an
ubersecure network of course, as some people seem to imply.
not seeing the problem with cleartext telnet for remote logins in 2004,
wether ACL'd or not, is just ... oh man, I don't have words for this.
--
Henning Brauer, BS Web Serv
6x, or whatever.
Pointing out that one can work around the missing ssh on cisco devices
doesn't solve the issue, it is still a workround.
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)
* Paul Jakma <[EMAIL PROTECTED]> [2004-06-06 09:03]:
> On Sat, 5 Jun 2004, Mike Lewinski wrote:
> >And that provides protection against MITM attacks how?
> kerberised telnet can be encrypted (typically DES - sufficient to
> guard MITM).
this is not nearly the same league as (proper) ssh.
compla
idle again.
In OpenBSD's bgpd, we only scale the window up of md5sig or ipsec is in
use...
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PROTECTED]
Unix is very simple, but it takes a genius to understand the simplicity.
(Dennis Ritchie)
; too much power, and blow more heat than a vendor engineer
> blows smoke.
My main issue with those big commercial routers, especially those from
this San Jose based company, is the quality of their software.
--
Henning Brauer, BS Web Services, http://bsws.de
[EMAIL PROTECTED] - [EMAIL PRO
* Brad Knowles <[EMAIL PROTECTED]> [2004-04-25 18:16]:
> At 6:09 PM -0700 2004/04/25, Henning Brauer wrote:
> > * Henning Brauer <[EMAIL PROTECTED]> [2004-04-25 18:04]:
> >> check this out: http://somewhere.whereever/pic.jpg
> > eek. that should have been
* Henning Brauer <[EMAIL PROTECTED]> [2004-04-25 18:04]:
> check this out: http://somewhere.whereever/pic.jpg
eek. that should have been
http://misc.bsws.de/img_1001.jpg
In the light of people dicussing the hardware requirements for running
full mesh bgp with tcmd5 and minimal filtering I just have to point out
what we're doing here currently...
14 OpenBSD developers who hack networking stuff from all over the world
have flown in to enjoy 4 days of coding.
OF
29 matches
Mail list logo