Re: Free PF ruleset 4.7

On Tue, 08 Jun 2010 08:56:20 +0400, open...@e-solutions.re wrote: >Take a look at : >http://www.justsearching.co.uk/JustBlog/iis-vs-apache.html >Criticism is easy and art is difficult WTF? A load of wetness from, of all people, an SEO Programmer? This is so OT that there should have been a man wa

ath(4): signal power percentage gone?

Hello, I have a Thinkpad T43 with an Atheros wireless chipset (dmesg below). Today I upgraded to the latest snapshot and I noticed that ifconfig(8) does not show any percentage for the signal power anymore: $ ifconfig ath0 ath0: flags=8863 mtu 1500 lladdr 00:14:a4:72:72:c6 priorit

Re: Free PF ruleset 4.7

Take a look at : http://www.justsearching.co.uk/JustBlog/iis-vs-apache.html Criticism is easy and art is difficult On Mon, 7 Jun 2010 19:36:11 +0100, FRLinux wrote: > On Mon, Jun 7, 2010 at 7:18 AM, wrote: >> I'm writing (in French) a guide about how to protect Company using >> OpenBSD >> and P

Re: Free PF ruleset 4.7

Hosted on Microsoft servers (MS Office Small Business) : officelive.com It is a choice. On Mon, 7 Jun 2010 19:36:11 +0100, FRLinux wrote: > On Mon, Jun 7, 2010 at 7:18 AM, wrote: >> I'm writing (in French) a guide about how to protect Company using >> OpenBSD >> and PF. >> >> Here a sample : ht

Re: It is 2010. Still no >3GB support by default?

2010/6/7 VICTOR TARABOLA CORTIANO > > My first programming primer (Fortran ... them days) had a very concise > > delineation of the difference between neat programming and the much > > more common alternative -- "given a big enough engine, even brick will > > fly". I never cared for the american

Re: It is 2010. Still no >3GB support by default?

> My first programming primer (Fortran ... them days) had a very concise > delineation of the difference between neat programming and the much > more common alternative -- "given a big enough engine, even brick will > fly". I never cared for the american "muscle" cars but was always > fascinate

Re: No SSH on External Interfaces After pf.conf Rewrite for Load Balancing Outgoing Traffic

This did solve my issue.. Thanks again IC1igo. On Jun 6, 2010, at 7:10 AM, IC1igo Ortiz de Urbina wrote: Did this fix the issue? -- Forwarded message -- From: Devin Reade Date: Sat, Jun 5, 2010 at 4:38 AM Subject: Re: No SSH on External Interfaces After pf.conf Rewrite for L

Re: It is 2010. Still no >3GB support by default?

don't feed the trolls 2010/6/7 Adam M. Dutko : > Maybe it's more attributable to increased interest and the increase has > brought a proportional increase in what you call "trolls." More noise is > distracting but has "fringe" benefits...sometimes... > > On Jun 7, 2010 9:01 PM, "Jason Beaudoin"

Re: It is 2010. Still no >3GB support by default?

Maybe it's more attributable to increased interest and the increase has brought a proportional increase in what you call "trolls." More noise is distracting but has "fringe" benefits...sometimes... On Jun 7, 2010 9:01 PM, "Jason Beaudoin" wrote: maybe I haven't been on this list long enoug.. bu

Re: It is 2010. Still no >3GB support by default?

Dexter Tomisson wrote: > I'd really, really like to know what's the matter with a larger memory > support? > > Why is 'bigmem' still not default? What faults/bugs does it still has? > It has always being default on real hardware. Your problem is that you are using shitty Wintel hardware. http:/

Re: It is 2010. Still no >3GB support by default?

maybe I haven't been on this list long enoug.. but it seems like 2010 has been the year of the troll, first update to the chinese calander in ages.. On Mon, Jun 7, 2010 at 2:52 PM, Dexter Tomisson wrote: > I'd really, really like to know what's the matter with a larger memory > support? > > Why

Re: It is 2010. Still no >3GB support by default?

On Mon, Jun 7, 2010 at 4:35 PM, Jacob L. Leifman wrote: > (yes, I am aware that there are > specialized applications that do require the use of a monster-sized > dump truck with an engine to match, but in reality how many places have > a genuine need of a database that even with fully optimized d

Re: It is 2010. Still no >3GB support by default?

My first programming primer (Fortran ... them days) had a very concise delineation of the difference between neat programming and the much more common alternative -- "given a big enough engine, even brick will fly". I never cared for the american "muscle" cars but was always fascinated with the

pf: how to apply route-to for packets matching states?

My firewall has two interfaces towards internet: if_ext{1,2} and one interface towards my home LAN: if_int. I want to binat one host (core7) with if_ext2, and do regular nat for the rest of the hosts on if_ext1. The ruleset below seems to work fine, except that I cannot SSH from outside world to

Re: It is 2010. Still no >3GB support by default?

Touchi. -Kyle On Mon, Jun 7, 2010 at 3:43 PM, Dexter Tomisson wrote: > No, > "640k ought to be enough for anybody" > > On 7 June 2010 22:12, Bret S. Lambert wrote: > >> On Mon, Jun 07, 2010 at 09:52:50PM +0300, Dexter Tomisson wrote: >> >> "It's the future, where's my goddamn flying car?"

Re: It is 2010. Still no >3GB support by default?

No, "640k ought to be enough for anybody" On 7 June 2010 22:12, Bret S. Lambert wrote: > On Mon, Jun 07, 2010 at 09:52:50PM +0300, Dexter Tomisson wrote: > > "It's the future, where's my goddamn flying car?"

Re: how to type non latin in xterm?; video stream to watch FIFA World Cup?

Just start uxterm(1) and you will be much more happy. And luit(1) is good candidate for reading too. On Tue, Jun 8, 2010 at 12:16 AM, Sviatoslav Chagaev <0x1...@gmail.com> wrote: > Hi misc@ > > I want to be able to type non latin characters in xterm (Russian and > Latvian). > I sat down, read xter

Re: free binary search tree

On Mon, Jun 07, 2010 at 05:02:09PM -0400, Mark Bucciarelli wrote: > Hi, > > On GNU/Linux, _GNU_SOURCE enables No. > tdestroy(). How do I free a binary tree in > OpenBSD? > > I grepped /usr/src and didn't find any > places "tdelete(" is used. $ man -k tdelete tsearch, tfind, tdelete,

Re: free binary search tree

On Mon, Jun 07, 2010 at 05:02:09PM -0400, Mark Bucciarelli wrote: > Hi, > > On GNU/Linux, _GNU_SOURCE enables > tdestroy(). How do I free a binary tree in > OpenBSD? > > I grepped /usr/src and didn't find any > places "tdelete(" is used. Can't you just do while (rootp != NULL) tdel

Re: November 26 1931?

> Hello, > > I have an old Sun Ultra 10 with a dead motherboard battery. After > cold-starting the machine the hardware clock now always indicates the > date as being January 1 1968. Strange things then happen when I boot > OpenBSD (10.10.6.10 and 10.10.6.11 are my local time servers): [...] >

free binary search tree

Hi, On GNU/Linux, _GNU_SOURCE enables tdestroy(). How do I free a binary tree in OpenBSD? I grepped /usr/src and didn't find any places "tdelete(" is used. Thanks, m

Re: Free PF ruleset 4.7

On 06/07/2010 08:36 PM, FRLinux wrote: On Mon, Jun 7, 2010 at 7:18 AM, wrote: I'm writing (in French) a guide about how to protect Company using OpenBSD and PF. Here a sample : http://mouedine.net/ruleset47.aspx If you have advices ... Yes, more like a troll but i cannot resist...

Re: how to type non latin in xterm?; video stream to watch FIFA World Cup?

On Tue, 8 Jun 2010 01:16:48 +0300, Sviatoslav Chagaev wrote: > export LANG=en_US.UTF-8 LC_ALL Disregard that line =)

how to type non latin in xterm?; video stream to watch FIFA World Cup?

Hi misc@ I want to be able to type non latin characters in xterm (Russian and Latvian). I sat down, read xterm manpage and tried playing with all the options which even remotely looked like they could influence something. But the only thing I managed to get working is xterm displaying UTF-8 correc

Re: It is 2010. Still no >3GB support by default?

Dexter Tomisson wrote: > I'd really, really like to know what's the matter with a larger memory > support? > > Why is 'bigmem' still not default? What faults/bugs does it still has? > > What do you need to make it ok? Do you need a hardware donation to make that > better, > do you need few bucks,

Re: MPLS: Disable Penultimate Hop Popping?

On Mon, Jun 07, 2010 at 09:12:44PM +0200, Rolf Sommerhalder wrote: > > Yeah, the packets are dropped in the POP case of mpls_input.c that's how > > far I got until now. I started with a fix but my magic is not strong > > enough for now. > > After taking a look at the source, I essentially backed o

Tecnologia educativa: multimedia el estimulo para el conocimiento

Ofertas Noticias Novedades

Re: pf anchors

On Jun 7, 2010, at 10:05 PM, Henning Brauer wrote: > I am (and always have been) inclined to just remove this stupid check > (that I added myself :)) and just explain the consequences wrt route > lookup of doing rdr outbound (and respectively, for nat inbound) in > the manpage. but it is very very

Re: It is 2010. Still no >3GB support by default?

On Mon, Jun 07, 2010 at 09:52:50PM +0300, Dexter Tomisson wrote: "It's the future, where's my goddamn flying car?"

ipsec.conf syntax

I am trying to set up an ipsec bridge using the template and instructions found in the brconfig man page (OpenBSD 4.6): Create Security Associations (SAs) between the external IP address of each bridge and matching ingress flows by using the following ipsec.conf(5) file on br

Re: MPLS: Disable Penultimate Hop Popping?

> Yeah, the packets are dropped in the POP case of mpls_input.c that's how > far I got until now. I started with a fix but my magic is not strong > enough for now. After taking a look at the source, I essentially backed out changes done in rev. 1.10 /src/usr.sbin/ldpd/kroute.c . Now my test setu

Re: pf anchors

* Teemu Rinta-aho [2010-06-07 20:21]: > Should I submit a bug report on pfctl yes please. I am (and always have been) inclined to just remove this stupid check (that I added myself :)) and just explain the consequences wrt route lookup of doing rdr outbound (and respectively, for nat inbound) in

It is 2010. Still no >3GB support by default?

I'd really, really like to know what's the matter with a larger memory support? Why is 'bigmem' still not default? What faults/bugs does it still has? What do you need to make it ok? Do you need a hardware donation to make that better, do you need few bucks, do you need a good coder to improve th

Re: Free PF ruleset 4.7

On Mon, Jun 7, 2010 at 7:18 AM, wrote: > I'm writing (in French) a guide about how to protect Company using OpenBSD > and PF. > > Here a sample : http://mouedine.net/ruleset47.aspx > > If you have advices ... Yes, more like a troll but i cannot resist... .aspx, seriously? Server: Microsoft-IIS/

Re: pf anchors

On Jun 7, 2010, at 9:01 PM, Henning Brauer wrote: > hmm. your understanding is correct, the in is (kind of, practically it > is, we won't hit the rule unless the "in" condition in the anchor is > true) inherited. the little validity check in pfctl doesn't grok that > tho. hrm. Thanks for validatin

Re: pf anchors

* Teemu Rinta-aho [2010-06-07 19:51]: > Hi, > > I was thinking of simplifying the pf.conf by using anchors. My > idea was to have two anchors: "incoming" and "outgoing", and > then those two would have sub-anchors per interface. This would > hopefully reduce errors and make pf.conf more readable.

pf anchors

Hi, I was thinking of simplifying the pf.conf by using anchors. My idea was to have two anchors: "incoming" and "outgoing", and then those two would have sub-anchors per interface. This would hopefully reduce errors and make pf.conf more readable. However, the following two do not work: case a)

Re: VPN between OpenBSD loopback interfaces - possible ?

Actually, thinking about this again, I see from "netstat -an" that isakmpd listens on all ports by default. Therefore needing to specify in isakmpd.conf should be unnecessary, no ? The precise errors I am seeing at present are : Default rsa_sig_decode_hash: no public key found Default dropped

Question??

Hello- We are interested in purchasing from you, any scrap, surplus, or corporate owned technology that has little to no residual value or is no longer in service. Spectra Recovery L.L.C buys all types of technology including Circuit Boards, Semiconductors, Networking hardware, PC's, Phones, PBX's

Re: MPLS: Disable Penultimate Hop Popping?

On Mon, Jun 07, 2010 at 06:19:10PM +0200, Rolf Sommerhalder wrote: > Thanks Claudio for your speedy reply. > > > Have a look at the route -n show -mpls output and check the input counter > for label 20. > > It happily counts and confirms what tcpdump shows on the ingress interface: > > [r...@p2:

Plajları şenlendirecek bikiniler, mayolar, elbiseler ve diğerleri

Deperli M|~terilerimiz, Halens olarak bu s}cak yaz g|nlerinde sizi yaln}z b}rakmamaya kararl}y}z! Plajda kendinize g|veninizi en |st noktaya ta~}yacak bikini ve mayo modellerimizin yan}nda; elbiseler, tunikler ve bluzlar aras}ndan tercih yapmakta zorlanacaks}n}z. ]sveg'ten gelen |r|nleri

Re: MPLS: Disable Penultimate Hop Popping?

Thanks Claudio for your speedy reply. > Have a look at the route -n show -mpls output and check the input counter for label 20. It happily counts and confirms what tcpdump shows on the ingress interface: [r...@p2:root]# route -n show -mpls Routing tables MPLS: In label Out label Op Gateway

Asistentes Administrativas y Secretarias Ejecutivas

1. Congreso de Habilidades y Actualizacisn Total para Asistentes Administrativas y Secretarias Ejecutivas 2. Mixico DF 8-9 de Julio Centro Banamex Ha llegado el momento de tomarse un tiempo exclusivo para usted, dedicando un par de dmas para su aprendizaje, diversisn y crecimiento profesional.Qu

Re: MPLS: Disable Penultimate Hop Popping?

On Mon, Jun 07, 2010 at 04:48:32PM +0200, Rolf Sommerhalder wrote: > Dear list, > > Is there an way to disable PHP, e.g. to prevent ldpd on the last P > router from stripping/popping the label before it reaches the PE > router? > It is on the todo list but not yet done. It is a per-interface kno

Re: libiberty

On Mon, 7 Jun 2010 12:57:06 +0300 Gregory Edigarov wrote: > > no excuse, you say > well... > > # cat /root/build.sh > rm -rf /usr/obj/* > rm -rf /usr/include/g++/* > cd /usr/src && make obj > cd /usr/src/etc && env DESTDIR=/ make distrib-dirs > cd /usr/src && make build > > # sh build Just

relayd and smtp with ssl/starttls

Hi, I've been studying the possibility of using relayd to implement a redundant SMTP server for the end-user machines in my lab (ie a server whose clients will be MUAs, possibly remote ones needing authentification, rather than MTAs) . However, it seems to me that relayd lacks some features to ach

MPLS: Disable Penultimate Hop Popping?

Dear list, Is there an way to disable PHP, e.g. to prevent ldpd on the last P router from stripping/popping the label before it reaches the PE router? In my little test network that runs -current as of 03 June, I observe from ldpd's lfib on the last P router that it pops the label on the ingress

Re: VPN between OpenBSD loopback interfaces - possible ?

>Aren't you looking for this ? : > r...@fw ~ # cat /etc/isakmpd/isakmpd.conf \ >Claer I was so focused on trying to make ipsec.conf work that I did not realise other options such as iaskmpd.conf might be worth investigating. Combined with the fact that I'm s

Re: VPN between OpenBSD loopback interfaces - possible ?

On Mon, Jun 07 2010 at 15:10, rh...@hushmail.com wrote: > Hello List, > > Have a working OSPF / BGP test setup going between two machines, > with BGP using the loopback of the other machine as the endpoint. > > I now would like to go one step further and implement PF with > pfsync over IPSec as

Re: libiberty

On Mon, 7 Jun 2010 12:57:06 +0300 Gregory Edigarov wrote: > On Sun, 06 Jun 2010 12:33:24 +0200 > Gabriel Kihlman wrote: > > > Gabriel Kihlman writes: > > > > > Gregory Edigarov writes: > > > > > >> Gabriel, > > >> > > >> The gcc is already the necessary version: > > >> > > > > > > But you m

pool_do_get: free list modified

Hi, We're running several OpenBSD 4.6 VMs under VMWare ESX 3.0.2 52542, and are seeing random panics with very similar panic messages once every fortnight or so. The kernel is GENERIC, but with vmt0 (VMWare tools driver) uncommented. If anyone could shed any light on this, I would be very gratef

Re: Installer bug? - Upgrade 4.6 to 4.7 failed to upgrade base47, on i386 and amd64

On 6/06/2010, at 1:27 PM, Uwe Dippel wrote: > Philip Guenther gmail.com> writes: > >> You now have and now it >> seems the core discussion is just about whether (or where) an >> additional "rm -rf /usr/obj/*" should be added to help people that >> know enough to set up the source tree for buildin

NYTimes.com: Letters: 3, 2, 1...

This page was sent to you by: abdelkarim2...@gmail.com. Dear friend,This message may Surprise you please accept my apology if it does not upset you.however,It's my urgent need for a foreign partner that made me contact you.I am a bank manager.I have an opportunity to transfer US$10.5Million dol

Re: ral(4) power save mode

Hi, Am 07.06.2010 um 01:39 schrieb LeviaComm Networks NOC: >> >> ral(4) manpage says: >> >>"Host AP mode doesn't support power saving. Clients attempting to use >> power saving mode may experience significant packet loss (disabling >> power >> saving on the client will fix this)."

Re: libiberty

On Sun, 06 Jun 2010 12:33:24 +0200 Gabriel Kihlman wrote: > Gabriel Kihlman writes: > > > Gregory Edigarov writes: > > > >> Gabriel, > >> > >> The gcc is already the necessary version: > >> > > > > But you missed this part from the faq: > > > > [ ... ] > > rm -rf /usr/include/g++/* > > cd /us

VPN between OpenBSD loopback interfaces - possible ?

Hello List, Have a working OSPF / BGP test setup going between two machines, with BGP using the loopback of the other machine as the endpoint. I now would like to go one step further and implement PF with pfsync over IPSec as I don't have any spare ethernet ports. The problem is that I've trie

umodem.c: looking for a solution

I sometimes need to use an USB (CDC- ACM) for connecting from a remote place (mountains :-) but I've some issues w/ it. [...] umodem0 at uhub1 port 1 configuration 1 interface 0 "Conexant USB Modem" rev 1.10/1.00 addr umodem0: no pointer to data interfacE [...] I've tried to understand what's g