FreeBSD or OpenBSD for my (server/router) purposes? (Total n00b)
e best for their requirements. I > donât feel putting forward an idea that you could run OpenBSD as a VM and > have both is so unreasonable. > > -Matt > > â > Matt Hamilton > Quernus > m...@quernus.co.uk > +44 117 325 3025 > 49b Easton Business Centre > Felix Road, Easton > Bristol, BS5 0HE > > Quernus Ltd is a company registered in England and Wales. Registered > number: 09076246 > > -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379> -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379>
Openbsd 5.7 and usb hubs daisy chained inquiry
Hi, I'm running Openbsd 5.7 on several servers and would like to create an array of usb sticks by daisy chaining sabrent usb hubs together (model: HB-U14P). Is this compatible ( I'd be happy to mail in samples if someone was interested in adding this functionality to Openbsd for additional privacy). Also, how would a newcomer to OpenBSD ( installed 5.7 via cd and still working on dmesg and subnet and gateway configurations) go about learning how to configure such a setup? Any recommendations on which man pages or resources to read and experiment with? Cheers, Danny -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379>
Re: OpenBSD <> Commercial VPNs
Has anyone succesfully created a VPN with OpenBSD v5.7 or 5.8? That is the next step in my architecture to create a "more" secure environment. There are very few options on the market for that unfortunately. On Sun, Oct 11, 2015 at 11:47 AM, Jack J. Woehr wrote: > Jiri B wrote: > >> c Cisco's AnyConnect SSL VPN and Juniper SSL VPN which is now known as >> Pulse Connect Secure is supported by openconnect which is in ports. >> > > I found vpnc in ports/net and that almost works. > > It connects and shows it is adding the correct routes that I would expect. > > And then no traffic comes through. 'route show' looks correct but nothing > seems to be going back and forth. > > > -- > Jack J. Woehr # Science is more than a body of knowledge. It's a way of > www.well.com/~jax # thinking, a way of skeptically interrogating the > universe > www.softwoehr.com # with a fine understanding of human fallibility. - > Carl Sagan > > -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379>
Re: OpenBSD <> Commercial VPNs
What are the different kinds of VPNs? I have no idea what computers do so I'm the dumbest guy in this city and definitely this mailing list. VPN stands for virtual private network but when I think about what that is I think of a VPN as essentially a local network that allows incoming connections but has certain protocols ( not sure which) that allows it to be more secure than ssh maybe? I'd like to be able to monitor traffic and users with logging functionality and passwords so when I'm developing an application I can't ensure with a reasonable level of certainty that my infrastructure and software is somewhat protected from malicious or curious authors. I'm not implying OpenBSD is weak. I've arrived to this community because the group is so obsessive about security (aslr, randomness, checksums, etc). I ruled out everyone else including Linux/Ubuntu, Google cloud, Amazon, and even co-location because of how these businesses operate and how they treat users data. I've even looked into freeBSD but it has come up short in its vision for my purposes with privacy and security. I barely know what a VPN is and I have only installed openbsd and started on port forwarding but smart people have mentioned that I should look into a VPN. I want my whole data center infrastructure to be run off Openbsd because it's what I think is the most responsible operating system to date ( even considering SEL4 by General dynamics that is only a kernel at this point). On Sun, Oct 11, 2015 at 12:14 PM, Theo de Raadt wrote: > > Has anyone succesfully created a VPN with OpenBSD v5.7 or 5.8? > > Yes, people do it all the time. > > Please -- what KIND of VPN are you asking about. > > Is conversational precision that difficult? There are more than two > handfuls of technologies that create something which is considered "a VPN". > > As a result, this conversation about VPN's is super low quality; > there is no point implying OpenBSD is weak at doing these things, > it is the inexact people walking around acting lost... > > -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379>
Re: OpenBSD <> Commercial VPNs
Thank you for the constructive feedback. Working on getting through absolute Openbsd by michael lucas. Hopefully, I'll be able to ask meaningful questions in the near future. On Sun, Oct 11, 2015 at 6:36 PM, Theo de Raadt wrote: > > What are the different kinds of VPNs? > > https://www.google.ca/search?q=diferent+types+of+vpn > > Sorry Danny, not going to read the rest of the blah blah blah from > someone who can't take the first step. > > You barely know what a VPN is, you only started running openbsd, and > you are talking about SEL4. You look like a troll. > > > > -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379>
Is the OpenBSD User Group in Berkeley, Ca still operating as of 11/05/2015?
http://www.buug.org I'm currently at Au Coquelet. If this specific group is non-operational, are there individuals that are interested in reviving this openBSD gathering in the bay area. There is a freebsd meet up at hacker dojo in mountain view which I attended but I'm curious and interested to see the level of interest in a dedicated OpenBSD gathering in the bay area. I'd be happy to organize and facilitate if needed/wanted. Danny
Re: Welcome-Mail
I hope these are not dumb questions. Would sftp (secure ftp) be a better alternative than ftp? What was the logic to remove that option on the network install versus http? is there even a benefit for the mirrors to be on https (secure http) vs http and would that allow for a verified download like the openbsd compact disks? I always got really concerned when the install prompted me that "Directory does not contain SHA256.sig. Continue without verification?" before actually using official openbsd compact dics. My intent is to assess the strengths and weaknesses of the protocols being discussed and comparing them with respect to security. On Mon, Nov 16, 2015 at 6:09 AM, Raul Miller wrote: > All protocols are, to some degree or another. Especially when you look > at all the irrelevant complexity of a full implementation. > > Sometimes there's no good answers. > > -- > Raul > > On Mon, Nov 16, 2015 at 8:25 AM, Eric Furman > wrote: > > Yea, but ftp is a shitty protocol that should have died > > a merciful death a long time ago so > > > > On Mon, Nov 16, 2015, at 06:07 AM, Marc Peters wrote: > >> Am 11/16/15 um 12:00 schrieb Stefan Wollny: > >> > Hi there, > >> > > >> > I may be wrong but I thought usage of ftp to get information and to > >> > download packages is discouraged. I just noticed (after having done a > >> > fresh install of amd64-current) reading the welcome mail "Welcome to > >> > OpenBSD 5.8!" that the ftp-protocol is still given. > >> > > >> > Instead > >> > ftp://ftp.openbsd.org/pub/OpenBSD/5.8/packages > >> > shouldn't this rather be > >> > http://ftp.openbsd.org/pub/OpenBSD/5.8/packages > >> > >> ftp is still a valid option for packages. The installation via ftp is > >> not supported anymore. > >> > >> > >> Marc
open bsd 5.7 and 5.8 cd ordering questions
Hi, I want to order these two compact discs (see subject line) and have few questions: 1. Is there tamperproof tape on the OpenBSD compact discs mailed from the openbsd store? 2. Royal Mail takes how long to arrive to California? Is it being sent as a letter? Thank you.
Re: missing mailing list message(s)?
I also experienced undelivered messages when I was posting to the "bugs" mailing list. However, they would still show up on the official mailing list page 2-3 weeks back. On Tuesday, September 1, 2015, Atanas Vladimirov wrote: > On 01.09.2015 22:05, Todd C. Miller wrote: > >> The mailing list server has been hitting a kernel bug that may have >> caused some outgoing messages to be lost. >> >> - todd >> > > Some incoming messages as well. My first message about "ddb.html typo" got > lost too: > >Hi! >> >>This is the MAILER-DAEMON, please DO NOT REPLY to this e-mail. >> >>A message is delayed for more than 4 hours for the following >>list of recipients: >> >> misc@openbsd.org: Network error on destination MXs >> >>Please note that this is only a temporary failure report. >>The message is kept in the queue for up to 4 days. >>You DO NOT NEED to re-send the message to these recipients. >> >>Below is a copy of the original message: >> >> Received: from smtp.bsdbg.net (ns.bsdbg.net [94.26.7.48]) >>by cvs.openbsd.org (OpenSMTPD) with ESMTPS id f4761491 >>TLS version=TLSv1/SSLv3 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256 >> verify=FAIL >>for ; >>Mon, 31 Aug 2015 01:57:55 -0600 (MDT) >> Received: from localhost (bsdbg.net [local]) >>by bsdbg.net (OpenSMTPD) with ESMTPA id 1e6e4fd0 >>for ; >>Mon, 31 Aug 2015 10:56:36 +0300 (EEST) >> Date: Mon, 31 Aug 2015 10:56:36 +0300 >> From: Atanas Vladimirov >> To: misc@openbsd.org >> Subject: ddb.html typo >> Message-ID: <20150831075636.ga12...@ns.bsdbg.net> >> MIME-Version: 1.0 >> Content-Type: text/plain; charset=us-ascii >> Content-Disposition: inline >> User-Agent: Mutt/1.5.23 (2014-03-12) >> > > -- danny nguyen linkedIn <https://www.linkedin.com/pub/danny-n/7/b63/379>
