I have an internal OpenBSD 3.8 system that I use as a data dump, internal
source for PXE installs and the like. It is not accessible to the outside
world, so security is not exactly critical. In fact I would like to setup a
user with a very minimal password (four characters and all lower case
let
On 1/9/06, Michael Erdely <[EMAIL PROTECTED]> wrote:
> On 1/9/06, Kelly Martin <[EMAIL PROTECTED]> wrote:
> > I see etc/daily.local but am not sure how to add new directories to be
> > watched. I already use rc.local and would like to star using
> > daily.local too. The OpenBSD scripts are more to
On 1/9/06, Kelly Martin <[EMAIL PROTECTED]> wrote:
> I see etc/daily.local but am not sure how to add new directories to be
> watched. I already use rc.local and would like to star using
> daily.local too. The OpenBSD scripts are more to my liking and seem
> Tripwire/AIDE-like too.
Take a look at
Greetings, I use bash and AIDE (similar to Tripwire) today for
integrity monitoring on 3.8. The OpenBSD 3.x daily status reports
(along with the security check) are more to my liking and are already
being mailed to me as well; now how do I feed it user-defined
directories like /var/www and stop usi
Greetings,
Does anyone have any recommendations for a wireless ethernet adapter
for a Pentium III 500 MHz box which will become a wireless access
point for a 2-3 node network?
I note a large number of adapters listed in the i386 hardware
compatibility list with a number of chipsets served by a va
On Mon, Jan 09, 2006 at 03:45:41PM -0600, [EMAIL PROTECTED] wrote:
> This is probably kind of a long shot, but does anyone use OpenNTPd
> on Linux machines?
>
> I've struggled for what seems like forever trying to get "regular"
> NTP to properly sync my clock on my Linux boxes, but have never been
Jim Razmus wrote:
* Christopher Vance <[EMAIL PROTECTED]> [060109 19:02]:
On Mon, Jan 09, 2006 at 01:47:54PM -0500, Jim Razmus wrote:
* Jason Balan <[EMAIL PROTECTED]> [060109 13:26]:
Is there a way to migrate the users from a 3.6 box to a 3.8 box i.e.
passwd
files user direct
* Christopher Vance <[EMAIL PROTECTED]> [060109 19:02]:
> On Mon, Jan 09, 2006 at 01:47:54PM -0500, Jim Razmus wrote:
> >* Jason Balan <[EMAIL PROTECTED]> [060109 13:26]:
> >>Is there a way to migrate the users from a 3.6 box to a 3.8 box i.e.
> >>passwd
> >>files user directories and such.
> >
>
On Mon, Jan 09, 2006 at 01:47:54PM -0500, Jim Razmus wrote:
* Jason Balan <[EMAIL PROTECTED]> [060109 13:26]:
Is there a way to migrate the users from a 3.6 box to a 3.8 box i.e. passwd
files user directories and such.
1. Use tar to copy /home
2. grab /etc/group and /etc/master.passwd
3. use p
Judging by the error message, likely you are either blocking the
outbound data channel connection to the real server, or the server
itself is filtering it. The first place I'd start looking
is in your "other" pf rules to see what's getting blocked.
set your block rules to log stuf
Giancarlo Razzolini wrote:
> Hello folks,
>
>I finally did took some time and did my pf.conf firewall from scratch,
>actually learning it (i did my first using fwbuilder. It worked, but i
>wanted to do a "hands on" approach). And know i must say i'm almost
>proficient in pf. I must confess i
[ This is all quite OpenBSD-specific, but maybe it'll save someone a few ]
[ hours one day. Crossposted to misc@openbsd.org for extra karma]
Hmmm,
Lots of digging later shows that:
a) ifconfig doesn't know about BPF devices, whatever the changelog says.
e.g.
# ifconfig bpf20 create
ifco
1) What is there to be confused about? Try a different cvs mirror or
try again later. Probably heavy load from everyone trying to pull
-stable at once.
2) AFAIK, the patch branch and the stable branch are one and the same.
Note that these may not necessarily be the same as the release branch
wi
Olivier Mehani wrote:
> On Mon, Jan 09, 2006 at 08:37:04PM +0100, Otto Moerbeek wrote:
>>> adsl:
>>>! sh -c "/sbin/ifconfig pflog0 up"
>
> As far as I remember, it's not necessary to ifconfig pflog0 up to use it.
>
>> Why enable pf only when the link is up? It's non-standard and
>> potent
Christopher Pascoe wrote:
> Hi Russell,
>
> Try switching to anoncvs3.usa.openbsd.org. It looks like anoncvs1 may be
> having problems at the moment - it isn't responding at all now.
>
Doh! Whose bright idea was it to get pf to send RST for outbound
dropped ssh sessions? :) :) If they had ti
On Mon, Jan 09, 2006 at 08:37:04PM +0100, Otto Moerbeek wrote:
> > adsl:
> >! sh -c "/sbin/ifconfig pflog0 up"
As far as I remember, it's not necessary to ifconfig pflog0 up to use it.
> Why enable pf only when the link is up? It's non-standard and
> potentially dangarous. You're better o
>>-Original Message-
>>From: Marco Peereboom [mailto:[EMAIL PROTECTED]
>>Sent: Friday, January 06, 2006 4:10 PM
>>To: Bob Bostwick (Lists)
>>Subject: Re: Dell 1855 Blade Perc 4\IM (LSI) controller problem
>>
>>That sounds like over heating to me. Have you tried powering of the
box
>>for an
Hi Phil,
> > I personally find the gif(4)/transport mode setup neater than the
> > single tunnel mode - though I am not aware of initial constrains
> > when IPSec RFCs were written - especially because one can look after the
> > traffic going through the VPN link in a very natural way.
I forgot t
On 1/9/06, Russell Fulton <[EMAIL PROTECTED]> wrote:
> I am just starting to upgrade all my obsd boxes to 3.8. I have a copy
> of the official CDs -- I know the the ISOs are copyright but is there a
> way of burning an updated set so I don't have to patch each system
> individually?
>
> Alternatel
Russell Fulton wrote:
I am just starting to upgrade all my obsd boxes to 3.8. I have a copy
of the official CDs -- I know the the ISOs are copyright but is there a
way of burning an updated set so I don't have to patch each system
individually?
Alternately, with the kernel I'm guessing I can re
But as soon as I start an scp from Perspex to Soekris, Perspex reboots
after a few hundred kb. Unfortunately, Perspex is in a datacenter and I
do not have console access to it to see what the heck is happening at that
exact moment.
I don't recall. But for the record (IPSEC inside GRE):
If the
With the recent release of two patches I have finally been forced to
come to grips with CVS and the source tree.
I have unpacked the source tarballs on the target machine and read through
http://www.openbsd.org/anoncvs.html#starting
and
http://www.openbsd.org/anoncvs.html#CVSROOT
following the e
-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
> Why don't you just figure out what is wrong in the first place? Changing
> hammers doesn't change the size of the nail.
Sometimes easier said than done. I fought with a problem with ntpd on
Linux for days on end multiple times over the course o
I am just starting to upgrade all my obsd boxes to 3.8. I have a copy
of the official CDs -- I know the the ISOs are copyright but is there a
way of burning an updated set so I don't have to patch each system
individually?
Alternately, with the kernel I'm guessing I can replace /bsd (and
/bsd.rd)
Hello list,
I'm working on getting Active FTP Connections working (a requirement of
an app used by a client) through our 3.8 firewall. Following the PF FAQ,
I was able to get passive FTP working fine with the following pf.conf
lines:
rdr pass on $int_usr_if proto tcp from $int_usr_if:network to an
Hello folks,
I finally did took some time and did my pf.conf firewall from scratch,
actually learning it (i did my first using fwbuilder. It worked, but i
wanted to do a "hands on" approach). And know i must say i'm almost
proficient in pf. I must confess i found it much simpler than iptab
On Mon, 2006-01-09 at 15:45:41 -0600, [EMAIL PROTECTED] proclaimed...
> I've struggled for what seems like forever trying to get "regular"
> NTP to properly sync my clock on my Linux boxes, but have never been
> successful. OpenNTPd's goals are perfectly in line with my needs,
> so I figured, why
This is probably kind of a long shot, but does anyone use OpenNTPd
on Linux machines?
I've struggled for what seems like forever trying to get "regular"
NTP to properly sync my clock on my Linux boxes, but have never been
successful. OpenNTPd's goals are perfectly in line with my needs,
so I figu
On Mon, Jan 09, 2006 at 03:25:34PM +0400, Bruno Carnazzi wrote:
>Hi All,
>
> Referencing to this post :
> http://www.monkey.org/openbsd/archive/misc/0303/msg01384.html there is
> (was ?) some work in progress in supporting DRI on OpenBSD. As this
> post was written when XFree86 was still in th
Hello All,
I've got a Linksys WMP55AG that's refusing to see my wireless network. While
it's entirely possible that I've misconfigured it, given other somewhat recent
posts I've seen about problems with ath devices (i.e.
http://marc.theaimsgroup.com/?l=openbsd-misc&m=113166150212987&w=2), I figure
On Mon, 09 Jan 2006 18:44:53 +1100
Damien Miller <[EMAIL PROTECTED]> wrote:
> > i am in need to write event driven processing applications. I must
> > avoid sequential processing. I will be mixing RPC queries and dns
> > ones.
> >
> > I saw, at the first sigh, writing non batch program is very ha
Hi
I am trying to install Fox on a 3.8 system but the compilation fails
because several functions such as getpwuid_r are missing. These
functions are part of the posix standard and are thread safe versions of
the originals which use static buffers to return results.
I've done some search
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, 9 Jan 2006, Denny White wrote:
Date: Mon, 9 Jan 2006 12:13:38 + (UTC)
From: Denny White <[EMAIL PROTECTED]>
To: OpenBSD Questions Mailing List
Subject: Tuning NFS file transfer speed
I know the usual complaint is, it's not fast eno
On Mon, Jan 09, 2006 at 07:43:29PM +, poncenby smythe wrote:
> Making PF=YES in /etc/rc.conf does not seem to work as required due
> to my pf complaining it cannot determine an ip address for the tun0
> interface [...]
Put it with parentheses, i.e. `(tun0)'.
Ciao,
Kili
On Mon, 9 Jan 2006, poncenby smythe wrote:
> On 9 Jan 2006, at 19:37, Otto Moerbeek wrote:
>
> >
> > On Mon, 9 Jan 2006, poncenby smythe wrote:
> >
> > > On 9 Jan 2006, at 10:43, Olivier Mehani wrote:
> > >
> > > > On Sun, Jan 08, 2006 at 10:51:12PM +, poncenby smythe wrote:
> > > > > I am
On 9 Jan 2006, at 19:37, Otto Moerbeek wrote:
On Mon, 9 Jan 2006, poncenby smythe wrote:
On 9 Jan 2006, at 10:43, Olivier Mehani wrote:
On Sun, Jan 08, 2006 at 10:51:12PM +, poncenby smythe wrote:
I am running 3.8 GENERIC on i386 and can't figure out why pf isn't
logging
the packets I'
On Mon, 9 Jan 2006, poncenby smythe wrote:
> On 9 Jan 2006, at 10:43, Olivier Mehani wrote:
>
> > On Sun, Jan 08, 2006 at 10:51:12PM +, poncenby smythe wrote:
> > > I am running 3.8 GENERIC on i386 and can't figure out why pf isn't
> > > logging
> > > the packets I've told it to, here is a sn
On Mon, Jan 09, 2006 at 07:21:51PM +, poncenby smythe wrote:
> pf is set to NO in /etc/rc.conf, but is enabled with the following
> commands in ppp.linkup script:
If you enable pf manually, you've also to configure pflog0 up and
to start pflogd(8) manually.
But it would be much better to ju
On 1/9/06, poncenby smythe <[EMAIL PROTECTED]> wrote:
> On 9 Jan 2006, at 10:43, Olivier Mehani wrote:
>
> > On Sun, Jan 08, 2006 at 10:51:12PM +, poncenby smythe wrote:
> >> I am running 3.8 GENERIC on i386 and can't figure out why pf
> >> isn't logging
> >> the packets I've told it to, here
On 9 Jan 2006, at 10:43, Olivier Mehani wrote:
On Sun, Jan 08, 2006 at 10:51:12PM +, poncenby smythe wrote:
I am running 3.8 GENERIC on i386 and can't figure out why pf
isn't logging
the packets I've told it to, here is a snippet from /etc/ pf.conf...
Maybe a stupid check, but did you
What are your nfs mount options?
Those could help in determining the issue.
-Ober
On Mon, 9 Jan 2006, Denny White wrote:
Date: Mon, 9 Jan 2006 12:13:38 + (UTC)
From: Denny White <[EMAIL PROTECTED]>
To: OpenBSD Questions Mailing List
Subject: Tuning NFS file transfer speed
-BEGIN PGP
* Jason Balan <[EMAIL PROTECTED]> [060109 13:26]:
> Hi
>
> Is there a way to migrate the users from a 3.6 box to a 3.8 box i.e. passwd
> files user directories and such.
>
1. Use tar to copy /home
2. grab /etc/group and /etc/master.passwd
3. use pwd_mkdb on the target machine with the master.pa
Would any OpenBSD developer be interested in the book NFS Illustrated?
http://www.awprofessional.com/bookstore/product.asp?isbn=0201325705&redi
r=1
I'll ship it to you. It got it for free, but it is over my head.
--
Will Backman - Network Administrator
Coastal Enterprises, Inc.
http://www.ceimai
Hi
Is there a way to migrate the users from a 3.6 box to a 3.8 box i.e. passwd
files user directories and such.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I know the usual complaint is, it's not fast enough. My
question is, after doing much googling - mail archive
reading, is there a way to slow the file transfer speed
down? I've asked the list before about a rebooting problem
I have on this box, & it'
Well, it is done. Thanks to the FAQ writer (Nick?) and other
information in the FAQ (well done), all the people who reminded me about
the boot process and boot install and all the people who suggested the
TMPDIR for the dump / restore problem (that was it).
The new drive is up, running smoothly s
On Monday 09 January 2006 11:02, Jasper Lievisse Adriaanse wrote:
> On Mon, 09 Jan 2006 09:05:19 -0600
>
> Kenny Mann <[EMAIL PROTECTED]> wrote:
> > I thought the security-announce mailing list would have sent an email
> > out about the 3.8 errata, but I was wrong. I found out on undeadly.org.
> >
Hi!
On Mon, Jan 09, 2006 at 05:22:47PM +0059, Han Boetes wrote:
>I recently had to migrate my HD for another reason, and I wrote it
>all down:
> http://www.xs4all.nl/~hanb/documents/hd-migration
I think async + softdep as mount option doesn't make sense.
And I still think the dump/restore comb
I recently had to migrate my HD for another reason, and I wrote it
all down:
http://www.xs4all.nl/~hanb/documents/hd-migration
# Han
On Mon, 09 Jan 2006 09:05:19 -0600
Kenny Mann <[EMAIL PROTECTED]> wrote:
> I thought the security-announce mailing list would have sent an email
> out about the 3.8 errata, but I was wrong. I found out on undeadly.org.
> Is their such an OpenBSD mailing list that would send an email out when
> pos
I thought the security-announce mailing list would have sent an email
out about the 3.8 errata, but I was wrong. I found out on undeadly.org.
Is their such an OpenBSD mailing list that would send an email out when
posts are added onto the errata?
If so, it might be nice to place a link somewhere
In message <[EMAIL PROTECTED]>
so spake Hannah Schroeter (hannah):
> dump/restore need some space in /tmp. Just mount a mfs to /tmp so
> that that doesn't fill up the initial ramdisk.
Or just point the TMPDIR environment variable to a mounted partition
with enough space.
- todd
Hello!
On Mon, Jan 09, 2006 at 01:40:19AM -0500, Bill wrote:
>[...]
>Now here is what I did then...
># cd /mnt/newr
># ../oldr/sbin/dump 0af - /mnt/oldr | restore rf -
>(the old drive is also openbsd 3.8)
>This worked like a charm for the root fs
>Then I tried the var and I got a slew of error
On Sun, Jan 08, 2006 at 04:18:32PM +0100, Jonathan Weiss wrote:
>
> I would really appreciate having mergemaster in the base system.
>
mergemaster or mergeslave in base would be fantastic as I ONLY use binaries.
At the moment I have a file server that runs rsnapshot /etc on all boxes, so I
go
Bill wrote:
...
> Now here is what I did then...
>
> # cd /mnt/newr
> # ../oldr/sbin/dump 0af - /mnt/oldr | restore rf -
>
> (the old drive is also openbsd 3.8)
>
> This worked like a charm for the root fs
> Then I tried the var and I got a slew of errors about the disk being
> full. But its the
Hi Misc,
This is just a quick message to say that the issue [1] I had with a Sony
DSC T7 camera not attaching has been resolved with the snapshots from 5
Jan 06.
Thanks to all the developers for a great OS!
Fred
[1]
http://marc.theaimsgroup.com/?l=openbsd-misc&m=113283811919298&w=2
On 2006/01/09 10:53, Johan Linner wrote:
> Is binat the key here
Yes.
* Sylvain Coutant <[EMAIL PROTECTED]> [2006-01-07 11:04]:
> I was just about to create a new thread when I read :
>
> > I have not seen it discussed much on the list, but OpenBGP works *very*
> > well and is easy to setup using Hurricane Electrics free (ipv6-in-ipv4)
>
> I try to setup a BGP pee
Hi All,
Referencing to this post :
http://www.monkey.org/openbsd/archive/misc/0303/msg01384.html there is
(was ?) some work in progress in supporting DRI on OpenBSD. As this
post was written when XFree86 was still in the distro, I'd like to
know if this work is curently progressing with Xorg ?
On Sun, Jan 08, 2006 at 10:51:12PM +, poncenby smythe wrote:
> I am running 3.8 GENERIC on i386 and can't figure out why pf isn't logging
> the packets I've told it to, here is a snippet from /etc/ pf.conf...
Maybe a stupid check, but did you enable pf in rc.conf ?
--
Olivier Mehani <[EMAIL
Hi,
I'm pretty new to pf and OpenBSD which maybe explains why I'm still not
sure after reading the man pages and docs how to solve this;
I'm trying to figure out how do use rdr in combination with outgoing nat.
External interface is 213.115.246.36/29 net with a 213.115.161.0/25
alias net.
Dmz
Argh I should have reread the (man dhcpd.conf", sorry!
This has helped, thank you
On 1/9/06, Rod.. Whitworth <[EMAIL PROTECTED]> wrote:
> What you need is 2 shared networks with individual names and their own
> subnet entries.
>
> Here is the relevant bit of my box doing exactly what you want ( 1
Hello Julien,
On 09/01/2006, at 7:26 PM, Julien Bonastre wrote:
I can actually fully understand your disapproval at the idea of
using a torrent to distribute this file, and I can also emphasise
with your dislikening of trying to create some validation system
for the image.
But I don't di
Yes as my recent post to this topic related to my apology to the
wrongfully accused my actual argument was towards the disdain of the BT
network
I can actually fully understand your disapproval at the idea of using a
torrent to distribute this file, and I can also emphasise with your
dislik
Meh!
My deepest apologies Graham, I need some more sleep ;-) php is an
amazing creature once you dive into it.. haha..
Bob! You are a bad bad man!
Thanks Mark for that rectification..
- Original Message -
From: "Mark Rolen" <[EMAIL PROTECTED]>
To: "Julien Bonastre" <[EMAIL PROTEC
M. Schatzl wrote:
No, I boot as if OpenBSD was on the first partition through setting the
boot-flag active on this partition. I hardly use the other ones.
I suspect that biosboot just gets installed at the wrong location if you
don't set the active partition the right way at install time. But I
66 matches
Mail list logo
