clock skew when running nessus, 3.7 i386
Greetings, While running a nessus scan my system clock runs dramatically slower, such that by the end of the scan it may be behind by an hour or more. The slowdown seems to coincide with nessus forking out 40+ processes as it starts to run the tests. I've observed this behavior on multiple x86 machines here under OpenBSD. On the same hardware under NetBSD, the problem does not occur. I've installed the 2.2.2a package, as well as compiled the port. My nessusd.conf file has max_hosts = 30, max_checks = 10, and be_nice = no. Any thoughts are welcome. Thanks, Ryan Fox
Re: openbsd and the money -solutions
(I'm so sorry that I'm continuing this thread...) There is quite a conflict between the core developers that don't wish to spend their time nicely holding newbies' hands (frankly, I don't want them to spend their time on that either), and the touchy-feely people that think OpenBSD would progress further by not flaming to oblivion every new user that haplessly posts an uninformed question to [EMAIL PROTECTED] Both sides are right. Why don't we have separate lists? One for general questions, and gently guiding new users to the FAQ and man pages? It can be all fuzzy and warm; a place for pleasantries. And a separate list for more experienced users that want to dwell in the lair of dragons. Posters get access to the top people to help resolve issues, but asking a dumb question will get them ignored (at best). I think this would be very beneficial to OpenBSD. New, dumb users don't take up developer time, and don't get the insults that come with it. I really think we have the separate lists now, with misc@ and [EMAIL PROTECTED] The description for misc is "General user questions and answers. This is the most active list, and should be the "default" for most questions." This seems like the newbie list to me. And tech@ is "Discussion of technical topics for OpenBSD developers and advanced users. This is *not* a "tech support" forum, do not use it as such. OpenBSD developers will often make patches to implement new features and other important changes available for public testing through this list." Wonderful! Powers that be, what say you? Ryan Fox [demime 1.01d removed an attachment of type APPLICATION/DEFANGED which had a name of rfox.22208DEFANGED-vcf]
Re: VirtualHost and SSL in httpd.conf
Jasper wrote: > running httpd -uDSSL gives the following warning: > [Tue Sep 20 20:39:33 2005] [warn] VirtualHost > www.mercatortrading.nl:443 overlaps with VirtualHost > www.profibas.com:443, the first has precedence, perhaps you need a > NameVirtualHost directive > > Am i missing the point of virtual hosting? Name based virtual hosting does not work with SSL. The SSL negotation happens before the hostname is submitted by the client. Ryan [demime 1.01d removed an attachment of type APPLICATION/DEFANGED which had a name of rfox.8403DEFANGED-vcf]
Re: Limit filesharing traffic with PF
Christoph Egger wrote: > Filesharing users eat the whole available bandwidth and they use > lots of connections at the same time. The result is an overloaded > gateway. Locking ports doesn't help, because they do port-hopping. > The rough solution: > The rough answer: Queue everything into your p2p queue, and then write an exception queue for known traffic. This design is better, since you're guarded by default against the next p2p service. Ryan Fox [demime 1.01d removed an attachment of type APPLICATION/DEFANGED which had a name of rfox.26021DEFANGED-vcf]
Re: how to disable remote root login
David fire wrote: >hi >i was looking how to disable remote root login but i cant find it >some tip? > > http://www.google.com/search?q=disable+root+login+ssh Behold the power of the internets. Ryan [demime 1.01d removed an attachment of type APPLICATION/DEFANGED which had a name of rfox.16492DEFANGED-vcf]
