Robert Watson's paper discusses concurrency vulnerabilities. Impact
include policy bypass and audit trail invalidation. A bypass means it
is useless. That pretty much hammered in the last nail on the coffin
for security tools based on system call interposition.
On 10/15/07, Steve Shockley <[EMAIL
2007/10/14, Aaron <[EMAIL PROTECTED]>:
> I guess with all the hoopla about 'hardening'/trusted this and
> that/fuzzy knobs(i.e. SE Linux) i got a little overzealous looking for
As others have already pointed out these knobs might not be useful to
your setup and your needs. Think also that more
Joachim Schipper wrote:
You should probably do a Google search on systrace before continuing
further down this road. In particular, I believe the issue highlighted
by Robert Watson has not been fixed yet (although I could be wrong, and
would be happy to be wrong in this case).
The white paper f
This is a clean install.
the probe-scsi shows sd0, so I know that the drive is there.
On 10/15/07, Nick Holland <[EMAIL PROTECTED]> wrote:
> Mike F wrote:
> > i am installing in ipx, created floopy, booted ok into floopy, but got
> > these errors when I selected [I] for install.
> >
> > ERROR:
Mike F wrote:
> i am installing in ipx, created floopy, booted ok into floopy, but got
> these errors when I selected [I] for install.
>
> ERROR: No root partition (sd0a).
> disklabel: ioctl DIOCGDINFO: Input/output error
>
> Is my hdd toast?
>
> thanks,
Toast, or not there, or not hooked up pr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andris wrote:
> On 10/14/07, Martin Schrvder <[EMAIL PROTECTED]> wrote:
>> He will not be independent anymore.
>
> Why not? As long as Theo releases his software under the ISC license,
> I see no issue with independency. And if Google have problems wit
On 10/14/07, Martin Schrvder <[EMAIL PROTECTED]> wrote:
> He will not be independent anymore.
Why not? As long as Theo releases his software under the ISC license,
I see no issue with independency. And if Google have problems with new
development, Theo could quit. Yeah, he will lose money, but he
> -Original Message-
> From: Otto Moerbeek [mailto:[EMAIL PROTECTED]
> Sent: Friday, 12 October 2007 5:53 PM
> To: Raimo Niskanen
> Cc: Edwards, David (JTS); misc@openbsd.org
> Subject: Re: : Which remvable drive is connected to which USB port
>
>
> On Fri, 12 Oct 2007, Raimo Niskanen wrote
On Mon, Oct 15, 2007 at 12:28:36AM +0300, Antti Harri wrote:
> On Sun, 14 Oct 2007, Martin Toft wrote:
>
> > I would like to upgrade from a snapshot to current.
>
> Any particular reason? Why not just use the snapshots?
Even though I haven't created any patches for OpenBSD yet, I like to
have the
--- Martin Toft <[EMAIL PROTECTED]> wrote:
> I would like to upgrade from a snapshot to current. I know my way
> around
> kernel, userland and ports, but I'm a bit confused with regard to XF4
> versus xenocara.
[snip]
I was also unsure. I installed with Sept 24 snapshot and upgraded to
current.
On Sun, Oct 14, 2007 at 11:16:18PM +0200, Martin Toft wrote:
> I would like to upgrade from a snapshot to current. I know my way
> around kernel, userland and ports, but I'm a bit confused with regard
> to XF4 versus xenocara. I would like to try out xenocara -- should I
> follow section 5.3 in the
On Sun, 14 Oct 2007, Martin Toft wrote:
I would like to upgrade from a snapshot to current.
Any particular reason? Why not just use the snapshots?
I would like to try out xenocara
It's included in the snapshots.
should I follow
section 5.3 in the FAQ (http://www.openbsd.org/faq/faq5.html
2007/10/14, bofh <[EMAIL PROTECTED]>:
> simply give them a paycheck. And weren't they one of the ones who
> kicked in $10k when it was needed? I know the heads of python and
> samba are both employed at Google. From an independence point of
> view, I know Theo has demonstrated that he will be in
I would like to upgrade from a snapshot to current. I know my way around
kernel, userland and ports, but I'm a bit confused with regard to XF4
versus xenocara. I would like to try out xenocara -- should I follow
section 5.3 in the FAQ (http://www.openbsd.org/faq/faq5.html#Bld) and
checkout (using c
On 10/14/07, Aaron <[EMAIL PROTECTED]> wrote:
[snip]
> I guess with all the hoopla about 'hardening'/trusted this and
> that/fuzzy knobs(i.e. SE Linux) i got a little overzealous looking for
> ways to tweak things (which i know can end up either making things less
> secure (especially with fa
On 10/14/07, Bryan Irvine <[EMAIL PROTECTED]> wrote:
> On 10/14/07, Karthik Kumar <[EMAIL PROTECTED]> wrote:
> > @Theo: they asked you in front of everybody, you should give it a reply so
> > all of us can hear.
>
> I must admit, I'm extremely curious too. OTOH the guy obviously made
> a mistake,
On 10/14/07, Greg Oster <[EMAIL PROTECTED]> wrote:
> knitti writes:
> > raidlookup on device: /dev/wd3d failed !
> ^
> I suspect you have an extra space after "wd3d" in the config file...
> And, unfortunately, that annoying little non-feature is enough to
> stop RA
Joachim Schipper wrote:
On Thu, Oct 11, 2007 at 08:54:42PM +0200, Xavier Mertens wrote:
Hi *,
I'm busy with a systrace/stsh implementation but there is a lack of standard
policies (IMHO). Any idea where I can find some ready-to-use policies?
I must be missing some important ones, when the u
On 10/14/07, Karthik Kumar <[EMAIL PROTECTED]> wrote:
> @Theo: they asked you in front of everybody, you should give it a reply so
> all of us can hear.
I must admit, I'm extremely curious too. OTOH the guy obviously made
a mistake, why embarrass him further?
Just let them shift it to a private
knitti writes:
> Hi,
>
> I tried to set up a RAID 1 softraid with raidframe, but no matter what
> I try, the RAID refuses to configure. So please, if anyone has an idea
> what I may have missed...
>
> # raidctl -C raid0.conf raid0
> raidctl: ioctl (RAIDFRAME_CONFIGURE) failed
>
> this adds the f
i am installing in ipx, created floopy, booted ok into floopy, but got
these errors when I selected [I] for install.
ERROR: No root partition (sd0a).
disklabel: ioctl DIOCGDINFO: Input/output error
Is my hdd toast?
thanks,
On 10/13/07, David Vasek <[EMAIL PROTECTED]> wrote:
> The resolver.conf file is a configuration file for the resolver. What is
> the purpose of the host(1) command using it then, and following only a
> part of it and ignoring the rest? It's really messy.
>
> From the host(1) man page:
> "server is
Hello everyone,
I wanted to apologize for the email I sent out to your entire mailing list
on Friday. The email was intended for one individual and I simply made a
mistake in sending it to your entire group. I do take this matter seriously
and I promise that this will not happen again.
Kind reg
Just for the record:
I upgraded to ESX 3.0.2 and...
1.) So far, I did not observe any stalls on the emulated e1000 (em)
interfaces. Currently I am playing with the vmxnet driver as well.
2.) VGT mode seems to work correct, very short ethernet frames (i.e.,
ICMP ping packets produced by windows
OpenCON, the only conference dedicated to OpenBSD only, just
opened it's virtual doors for the fourth time.
The registration is now open. http://www.opencon.org/
OpenCON is a free entrance event; get the latest informations
on PF, how to use VPN technologies in OpenBSD, or how make
your own por
Hi Boris,
On 10/14/07, Boris Goldberg <[EMAIL PROTECTED]> wrote:
> You've said that you'd tried different configurations, but the one you
> are showing here just can't work, because you don't have wd3.
I wrote: " I tried both with wd0d, wd1d (both exist) and with wd1d,wd3d
(latter doesn't ph
@Theo: they asked you in front of everybody, you should give it a reply so
all of us can hear.
You guys think they'll hire everybody/somebody else on the list?
Since everybody is posting something or the other, I suggest we make this
the next long thread.
Without the flamebaits.
+1
On 10/14/07
Hello knitti,
Saturday, October 13, 2007, 3:43:27 PM, you wrote:
k> raidlookup on device: /dev/wd3d failed !
k> ...
k> START disks
k> /dev/wd3d
Shouldn't it be /dev/wd0d ?
k> /dev/wd1d
k> ...
k> # disklabel wd0
k> ...
k> d:606244905 18892440RAID
k> ...
k> # disklabel wd
On Sun, Oct 14, 2007 at 11:45:48AM +0200, Tonnerre LOMBARD wrote:
> Could someone please enlighten me how this is OpenBSD related?
OpenBSD = "Free, Functional & Secure"
Google = ?
One man on this list leads by example as he was not compromised by a
corrupt govt defence project splashing about muc
Craig Skinner wrote:
On Sat, Oct 13, 2007 at 09:08:39AM -0500, Jacob Yocom-Piatt wrote:
Be gentle with them, they read your mail.
Yup, because it is a "free" service, the data remains thier property to
do with as they see fit, without informing you of WHATEVER that is.
http://www.goo
Thank you. Some clarification. "Bad" jew is heeb.. I don't like how
heeds behave nowadays... I have nothing against jew as a nation in
general of-course.. ;)
On 10/14/07, ropers <[EMAIL PROTECTED]> wrote:
> Fuck you, too.
>
> On 14/10/2007, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> > +1
> >
>
Hi
There has been some discussion recently about how to tavel to Venice
or about sharing rooms at OpenCON here on this list.
To simplify things, we have put online a Wiki at the following URL:
http://wiki.opencon.org/doku.php (it also linked on www.opencon.org).
The event is free, but neverthel
You 2 guys made me drop my Gmail account and set up home servers/move
to other free service for everything ;)
Thanks mates!
PS
I know about one real service run by VMS hackers.. though maybe could
you suggest noninfected free from your point of view please?
On 10/14/07, Craig Skinner <[EMAIL PR
+1
On 10/14/07, Craig Skinner <[EMAIL PROTECTED]> wrote:
> On Sat, Oct 13, 2007 at 09:08:39AM -0500, Jacob Yocom-Piatt wrote:
> > >Be gentle with them, they read your mail.
>
> Yup, because it is a "free" service, the data remains thier property to
> do with as they see fit, without informing you
Salut,
On Sun, Oct 14, 2007 at 08:47:45AM +0100, Craig Skinner wrote:
> [I hate jews]
Could someone please enlighten me how this is OpenBSD related?
Tonnerre
[demime 1.01d removed an attachment of type application/pgp-signature]
On 14/10/2007, Craig Skinner <[EMAIL PROTECTED]> wrote:
> On Sat, Oct 13, 2007 at 09:08:39AM -0500, Jacob Yocom-Piatt wrote:
> > >Be gentle with them, they read your mail.
>
> > and watch your searches, possibly index files on your computer, have
> > high-resolution sattelite pictures of your home,
On Sat, Oct 13, 2007 at 09:08:39AM -0500, Jacob Yocom-Piatt wrote:
> >Be gentle with them, they read your mail.
Yup, because it is a "free" service, the data remains thier property to
do with as they see fit, without informing you of WHATEVER that is.
http://www.google-watch.org/gmail.html
> >
37 matches
Mail list logo
