> > > Sure it does, just pull from CVS over SSH and compile your own. Only
> >
> > Where do I get the ssh fingerprints of the CVS servers?
http://www.openbsd.org/anoncvs.html#CVSROOT, of course.
Not all are listed, but one can either use one that needs verified or
contact the maintainer for a cor
On 9/24/07, Martin Schrvder <[EMAIL PROTECTED]> wrote:
> 2007/9/24, Joachim Schipper <[EMAIL PROTECTED]>:
> > Sure it does, just pull from CVS over SSH and compile your own. Only
>
> Where do I get the ssh fingerprints of the CVS servers?
Where do you get the public keys for the digitally signed d
Hi
I run it on a Dell SC1420 (with SATA) without any problem.
David
- Original Message -
From: "Graeme Neilson" <[EMAIL PROTECTED]>
To:
Sent: Tuesday, September 25, 2007 7:08 AM
Subject: OpenBSD on a Dell PowerEdge SC1430 Server ?
Hi,
I was wondering if anyone had any experience o
Hi,
I was wondering if anyone had any experience of OpenBSD on a
Dell PowerEdge SC1430 Server?
Specifically I am wondering if the SATA controller is supported.
It doesn't seem to tell me what it is on the Dell site.
I am considering putting two of these in it as well:
Intel Pro/1000 PTx1 PCIe Si
> Burroughs Computers essentially went out of business because their
> computers refused to do illegal operations while IBM's computers
> very happily did all sorts of illegal stuff.
Way off topic here... Burroughs became part of Unisys and the
architecture that "refused to do illegal operati
On Sat, 22 Sep 2007, Douglas A. Tutty wrote:
> Hello all,
>
> I'm running OBSD on my older boxes but still Debian on my big box (not
> ready yet).
>
> Linux has SELinux in its 2.6 kernel and debian has gone ahead and
> compiled SELinux into the libraries, although the SELinux policies
> aren't r
On 9/24/07, Stuart Henderson <[EMAIL PROTECTED]> wrote:
> On 2007/09/23 20:53, patrick keshishian wrote:
> >
> > They seemed pretty random to me, but I did a quick
> > check after reading your response and I see 468 unique
> > "fake" email address @my-domain, only one was
> > duplicated twice.
>
>
On 9/24/07, Tony Abernethy <[EMAIL PROTECTED]> wrote:
> Burroughs Computers essentially went out of business because their
> computers refused to do illegal operations
This is ironic considering that Burroughs Corp was founded by William
S. Burroughs' grandfather ;-)
[EMAIL PROTECTED] wrote:
> On 24.09-13:48, Darren Spruell wrote:
> [ ... ]
> > Oh, that sounds like a recipe for success.
> >
> > - Run _arbitrary_ _binary_ application on system. Intend to
> use policy
> > wrapper to restrict to allowed operations.
>
> exactly, if the application cannot run wit
On 9/24/07, Darren Spruell <[EMAIL PROTECTED]> wrote:
> On 9/23/07, Todd Alan Smith <[EMAIL PROTECTED]> wrote:
> > On 9/23/07, Douglas A. Tutty <[EMAIL PROTECTED]> wrote:
> > > On Sun, Sep 23, 2007 at 05:23:37PM -0600, Chris Kuethe wrote:
> > > > On 9/23/07, Todd Alan Smith <[EMAIL PROTECTED]> wrot
On 24.09-14:28, Luke Bakken wrote:
[ ... ]
> Intelligent sysadmins know every setuid binary on their system.
> Unintelligent ones get owned.
you'll forgive me if this does not sound "intelligent" to me. a
consiencous sysadmin looks at the requirements and picks the best
tools to match. in the va
On 24.09-13:48, Darren Spruell wrote:
[ ... ]
> Oh, that sounds like a recipe for success.
>
> - Run _arbitrary_ _binary_ application on system. Intend to use policy
> wrapper to restrict to allowed operations.
exactly, if the application cannot run within the defined policies it
will not be allo
Douglas A. Tutty wrote:
> I currently have OBSD running on my P-II with an 850 MB drive and 64 MB
> ram. On install, I chose not to include the compiler set over concern
> re drive space. The FAQ says how much space is required to minimally
> run OBSD and it says how much to be able to comfortabl
On 2007/09/25 05:13, Insan Praja SW wrote:
> On Tue, 18 Sep 2007 21:15:05 +0700, Stuart Henderson <[EMAIL PROTECTED]>
> wrote:
>> On 2007/09/18 16:00, Michel Le Cocq wrote:
>>> I don't understand what you have done to make it working.
>>
>> Forced the pci-x slot to 66MHz.
>
> That would mean't the
Does anyone have any recommendations on 7" or smaller touch screens that
have a USB input ?
I want something preferrably under or around $100... I want to mount it
on a car dash.
On Mon, 24 Sep 2007 22:55:16 +0200
Ed <[EMAIL PROTECTED]> wrote:
> http://2006.opencon.org/
Just out of curiousity (since I can't make it), is there a newer page
on this?
Eric Johnson
Guys,
OpenBSD 4.1 on Intel S3000AH doesn't even sigh...
Thanks for the helps, hints and clues..
On Tue, 18 Sep 2007 05:28:47 +0700, Stuart Henderson <[EMAIL PROTECTED]>
wrote:
On 2007/09/18 04:47, Insan Praja SW wrote:
I tested the motherboard using 3.9 obsd, and it works like charm..
if
On Tue, 18 Sep 2007 21:15:05 +0700, Stuart Henderson <[EMAIL PROTECTED]>
wrote:
On 2007/09/18 16:00, Michel Le Cocq wrote:
I don't understand what you have done to make it working.
Forced the pci-x slot to 66MHz.
That would mean't the card wont perform as it should, right?
Thanks,
--
Ins
> > > The guy can be some stupid binary software with an "if(uid!=root) bail();"
> >
> > People running arbitrary binary software requiring root on their systems
> > deserve what they get. You can not work around this stupidity by ANY policy.
>
> that is not the case and is, in fact, the entire poi
On 9/21/07, Gregory Edigarov <[EMAIL PROTECTED]> wrote:
> Well, thank you for so in-depth explanation, but what I meant really
> was: is it guaranteed that if one take a card from the server and then
> install the other card of the same make to the same slot, it will have
> the same id?
yes, if it
Dear ladies and gentlemen,
OpenCON is the only conference fully dedicated to OpenBSD. Last year edition
was a great success and featured also the party for OpenBSD 10th birthday,
with project leader Theo de Raadt and a lot of developers. More info here:
http://2006.opencon.org/
The OpenCON prog
On Mon, Sep 24, 2007 at 11:49:20AM -0700, Can E. Acar wrote:
> In security, complex != good.
Yes, which is one of the reasons I personally believe Visa's PCI is an
extortion sham.
However, some hugely influential entities happen to require those
complexities, and no reason on the world will convi
On 9/24/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> On 24.09-11:49, Can E. Acar wrote:
> [ ... ]
> > > The guy can be some stupid binary software with an "if(uid!=root) bail();"
> >
> > People running arbitrary binary software requiring root on their systems
> > deserve what they get. You ca
On 24.09-11:49, Can E. Acar wrote:
[ ... ]
> > The guy can be some stupid binary software with an "if(uid!=root) bail();"
>
> People running arbitrary binary software requiring root on their systems
> deserve what they get. You can not work around this stupidity by ANY policy.
that is not the cas
[IMAGE]Having trouble reading this email? See it in your browser
ArabianBusiness.com Daily News Alert
GHMK ]m Gacf^Z:
GaCMO ,24 SHJcHQ 2007
[IMAGE]
GaCNHGQ GaQFmSmI
5 caGmmd edOm mZcafd ]m Ofa "GaJZGfd"
6 ]m GacGFI cd G
On 9/24/07, Jacob Yocom-Piatt <[EMAIL PROTECTED]> wrote:
> Ted Unangst wrote:
> > On 9/23/07, Rui Miguel Silva Seabra <[EMAIL PROTECTED]> wrote:
> >
> >> Can you say "root can only run this and that application when su'ed from
> >> that guy, and may not open any net connection, but open this file a
On 9/24/07, Christian Weisgerber <[EMAIL PROTECTED]> wrote:
> Aaron W. Hsu <[EMAIL PROTECTED]> wrote:
>
> > I am willing to guess that with something like Hebrew, OpenBSD has all the
> > necessary support for the system, but, most common applications do not have
> > support for the right-to-left wa
Rui Miguel Silva Seabra wrote:
> Hi,
>
> On Mon, Sep 24, 2007 at 04:31:22PM +0100, Brian Candler wrote:
>> On Sun, Sep 23, 2007 at 10:54:06PM +0100, Rui Miguel Silva Seabra wrote:
>> > On Sat, Sep 22, 2007 at 06:47:46PM -0500, L. V. Lammert wrote:
>> > > OBSD is UNIX, .. SELinux is Linux. If you w
On 9/23/07, Todd Alan Smith <[EMAIL PROTECTED]> wrote:
> On 9/23/07, Douglas A. Tutty <[EMAIL PROTECTED]> wrote:
> > On Sun, Sep 23, 2007 at 05:23:37PM -0600, Chris Kuethe wrote:
> > > On 9/23/07, Todd Alan Smith <[EMAIL PROTECTED]> wrote:
> > > > Does "lock -nv" not work? I just read about this in
On 24.09-10:25, Jason Dixon wrote:
[ ... ]
> > What I'm trying to say is that all the services I listed before make
> > their own little SELinux layer with appropriate policy built into
> > them. Better than SELinux though is that the monitor is enabled by
> > default and generally can't be turned
Maurice Janssen wrote:
> Sorry, it was a bit short. What I meant to say: "5V,GND,RX,TX" sounds a
> bit like USB, instead of a good old RS-232 serial port that can be used
> as a serial console.
>
typically the USB lines are called VBUS, D+, D-, and GND. I would guess
that is a serial port. Se
On Mon, 24 Sep 2007, Maurice Janssen wrote:
Sorry, it was a bit short. What I meant to say: "5V,GND,RX,TX" sounds a
bit like USB, instead of a good old RS-232 serial port that can be used
as a serial console.
Maurice
nah, it sounds like a lot of embedded systems that have a serial port but
l
Ted Unangst wrote:
On 9/23/07, Rui Miguel Silva Seabra <[EMAIL PROTECTED]> wrote:
Can you say "root can only run this and that application when su'ed from
that guy, and may not open any net connection, but open this file and none
else" in OpenBSD? If so, how can I do it? :)
man 4 systr
Douglas A. Tutty writes:
I currently have OBSD running on my P-II with an 850 MB drive and 64 MB
ram. On install, I chose not to include the compiler set over concern
re drive space. The FAQ says how much space is required to minimally
run OBSD and it says how much to be able to comfortably co
On Monday, September 24, 2007 at 11:50:01 -0600, Diana Eichert wrote:
>On Mon, 24 Sep 2007, Maurice Janssen wrote:
>
>>On Monday, September 24, 2007 at 07:43:21 -0600, Diana Eichert wrote:
>>>Howdy all,
>>>
>>>Anyone tried OpenBSD on a decTOP?
>>>http://store.dataevolution.com/ProductDetails.asp?Pr
On Tue, 25 Sep 2007, Jonathan Gray wrote:
On Mon, Sep 24, 2007 at 07:43:21AM -0600, Diana Eichert wrote:
Howdy all,
Anyone tried OpenBSD on a decTOP?
http://store.dataevolution.com/ProductDetails.asp?ProductCode=DT%2D7001&CartID=1
Small, little, Geode system. The downside is there's no serial
On Mon, 24 Sep 2007, Maurice Janssen wrote:
On Monday, September 24, 2007 at 07:43:21 -0600, Diana Eichert wrote:
Howdy all,
Anyone tried OpenBSD on a decTOP?
http://store.dataevolution.com/ProductDetails.asp?ProductCode=DT%2D7001&CartID=1
Small, little, Geode system. The downside is there's
On Mon, 24 Sep 2007, Martin Schrvder wrote:
> But can we agree that packages are not digitally signed, patches are
> not digitally signed and the methods used to distribute sources online
> also don't use digital signatures? And that md5/sha1 and pgp are older
> than OBSD?
I just wanted to add th
On 9/23/07, Rui Miguel Silva Seabra <[EMAIL PROTECTED]> wrote:
> Can you say "root can only run this and that application when su'ed from
> that guy, and may not open any net connection, but open this file and none
> else" in OpenBSD? If so, how can I do it? :)
man 4 systrace
Hi,
On Mon, Sep 24, 2007 at 04:31:22PM +0100, Brian Candler wrote:
> On Sun, Sep 23, 2007 at 10:54:06PM +0100, Rui Miguel Silva Seabra wrote:
> > On Sat, Sep 22, 2007 at 06:47:46PM -0500, L. V. Lammert wrote:
> > > OBSD is UNIX, .. SELinux is Linux. If you want a secure, efficient,
> > > compact O
2007/9/24, Gilles Chehade <[EMAIL PROTECTED]>:
> You can fingerprint the tarballs and compare against the ones on the CD
> you bought to support the project ? :-)
I can.
But can we agree that packages are not digitally signed, patches are
not digitally signed and the methods used to distribute so
On Mon, 24 Sep 2007, Douglas A. Tutty wrote:
> I currently have OBSD running on my P-II with an 850 MB drive and 64 MB
> ram. On install, I chose not to include the compiler set over concern
> re drive space. The FAQ says how much space is required to minimally
> run OBSD and it says how much to
Your message header seems to point to an issue that has come up a few times.
However.. your message body doesn't really give any good clues.
I would suggest looking at a past post with the subject "OpenBSD 4.1 install
issue??"
from early May of this year.
If my guess is correct.. when you use the
2007/9/24, Wade, Daniel <[EMAIL PROTECTED]>:
> > Where do I get the ssh fingerprints of the CVS servers?
> >
> > And if I use cvsync, where do I get fingerprints?
>
> http://www.openbsd.org/anoncvs.html#CVSROOT
Thanks. It's not complete (i.e. not all servers have fingerprints),
but a start.
This
On Mon, Sep 24, 2007 at 05:18:05PM +0200, Martin Schr?der wrote:
> 2007/9/24, Joachim Schipper <[EMAIL PROTECTED]>:
> > Sure it does, just pull from CVS over SSH and compile your own. Only
>
> Where do I get the ssh fingerprints of the CVS servers?
>
> And if I use cvsync, where do I get fingerpr
On Sun, Sep 23, 2007 at 10:54:06PM +0100, Rui Miguel Silva Seabra wrote:
> On Sat, Sep 22, 2007 at 06:47:46PM -0500, L. V. Lammert wrote:
> > OBSD is UNIX, .. SELinux is Linux. If you want a secure, efficient,
> > compact OS done by folks you can trust and actually talk to, use OBSD; if
> > you wan
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> On Behalf Of Martin Schrvder
> Sent: Monday, September 24, 2007 11:18 AM
> To: misc@openbsd.org
> Subject: Re: digitally signed distribution (was: OBSD's
> perspective on SELinux)
>
> 2007/9/24, Joachim Schipper <[EM
2007/9/24, Joachim Schipper <[EMAIL PROTECTED]>:
> Sure it does, just pull from CVS over SSH and compile your own. Only
Where do I get the ssh fingerprints of the CVS servers?
And if I use cvsync, where do I get fingerprints?
Best
Martin
On Monday, September 24, 2007 at 07:43:21 -0600, Diana Eichert wrote:
>Howdy all,
>
>Anyone tried OpenBSD on a decTOP?
>http://store.dataevolution.com/ProductDetails.asp?ProductCode=DT%2D7001&CartID=1
>Small, little, Geode system. The downside is there's no serial console,
>until of course you t
On 9/22/07, Douglas A. Tutty <[EMAIL PROTECTED]> wrote:
> Could someone who knows both the details of OBSDs security enhancements
> and the details of SELinux comment?
A capsule summary of the situation is:
OpenBSD aims to improve security by taking advantage of easy-to-use,
hard-to-disable, low-
yes, that should be possible. if it does not work, then it's a bug.
On Mon, Sep 24, 2007 at 03:08:29PM +0200, Markus Wernig wrote:
> Hi all
>
> Can tags from ipsec (defined in ipsec.conf) be referenced in pf nat
> rules (OBSD 4.1)?
>
> The idea is:
> ipsec.conf:
> ike esp from A to B tag "myta
On Tue, 25 Sep 2007 00:08:15 +1000, David Gwynne <[EMAIL PROTECTED]> wrote:
> What I'm trying to say is that all the services I listed before make
> their own little SELinux layer with appropriate policy built into
> them. Better than SELinux though is that the monitor is enabled by
> default and
On Mon, Sep 24, 2007 at 07:43:21AM -0600, Diana Eichert wrote:
> Howdy all,
>
> Anyone tried OpenBSD on a decTOP?
> http://store.dataevolution.com/ProductDetails.asp?ProductCode=DT%2D7001&CartID=1
> Small, little, Geode system. The downside is there's no serial console,
> until of course you tak
On 23/09/2007, at 3:38 AM, Ihar Hrachyshka wrote:
The problem of Linux as a whole is that it tries to resolve security
problems not by auditing code but by implementing SELinux.
That is a really interesting statement.
But what
the problem would be if OpenBSD has "SeBSD" extension? It's just
Howdy all,
Anyone tried OpenBSD on a decTOP?
http://store.dataevolution.com/ProductDetails.asp?ProductCode=DT%2D7001&CartID=1
Small, little, Geode system. The downside is there's no serial console,
until of course you take a look at a picture of the system board,
http://www.enicomms.com/decTO
For the record:
The problem was not with with the single interface, but with my
misreading the documentation. The error was in specifying the tunnel
twice. The working ipsec directives are of course:
ipsec.conf on A:
ike esp from to peer
srcid dstid
ipsec.conf on B:
ike passive esp tu
Hi all
Can tags from ipsec (defined in ipsec.conf) be referenced in pf nat
rules (OBSD 4.1)?
The idea is:
ipsec.conf:
ike esp from A to B tag "mytag"
pf.conf:
nat on $int_if tagged "mytag" -> ($int_if:1)
nat on $int_if from !($int_if) -> ($int_if:0)
If I use the "tagged" keyword, the second
> Can someone please inform me if this is a really bad idea or not,
> ideally with some nice reasoning?
Hi Josh,
VM is great and I use it a lot for test and development. It's a
marvellous tool. I also think it's very good to make virtual
web/ftp/whatever servers, it eases maintenance and add a la
I currently have OBSD running on my P-II with an 850 MB drive and 64 MB
ram. On install, I chose not to include the compiler set over concern
re drive space. The FAQ says how much space is required to minimally
run OBSD and it says how much to be able to comfortably compile ("4G is
not a bad size
On 21/09/2007, at 11:09 AM, Josh wrote:
Hello there.
We have a bunch of obsd firewalls, 8 at the moment, all working
nice and so forth. But we
need to add about another 4 in there for new connections and
networks, which means more
machines to find room for.
So basically I have been asked
Aaron W. Hsu <[EMAIL PROTECTED]> wrote:
> I am willing to guess that with something like Hebrew, OpenBSD has all the
> necessary support for the system, but, most common applications do not have
> support for the right-to-left way of writing.
Well, do you consider, say, ksh and vi as part of th
On 2007/09/23 20:53, patrick keshishian wrote:
>
> They seemed pretty random to me, but I did a quick
> check after reading your response and I see 468 unique
> "fake" email address @my-domain, only one was
> duplicated twice.
What's the problem, they'll just be dropped "user unknown"
by your MTA
The command you used works for me (well, no errors) on i386 - 4.1
installed off CD. X installed at install time, and definitely
working on the machine.
What is your PKG_PATH / where are the packages that you are
installing from?
# PKG_PATH=ftp://ftp.openbsd.org/pub/OpenBSD/4.1/packages/i
63 matches
Mail list logo
