Re: Writing "ones" instead of "zeroes" when wiping disk

On Thu, 11 Jan 2018 22:09:32 -0500, "trondd" wrote: > A 1 is too narrow to fully cover the original data. You need to use an 8 to wipe out all seven segments. - todd

Re: Writing "ones" instead of "zeroes" when wiping disk

On 01/11/18 09:45, Andreas Thulin wrote: > Hi! > > Again, an ignorant question (as usual): > > How might I do something similar to > > # dd if=/dev/one of=/dev/sd0 bs=1M > > as a complement to the usual and well-described > > # dd if=/dev/zero of=/dev/sd0 bs=1M > > followed by > > # dd if=/d

Re: Writing "ones" instead of "zeroes" when wiping disk

On Thu, January 11, 2018 5:12 pm, worik wrote: > On 12/01/18 11:09, Jan Stary wrote: >> On Jan 11 14:45:21, andreasthu...@gmail.com wrote: >>> in order to achieve paranoid disk-wiping? >> Ones are not nearly as secure as zeros. >> > Why not?Â
Is it not arbitrary? > A 1 is too narrow to fully cove

FYI: logitech mouse LED color tool

Hi, I implemented a utility to set the LED color of Logitech mouse devices on OpenBSD. Some people might also use this mouse and would like to change the LED color. If you are interested just try it: https://github.com/younix/g403led I just tested it with the "G403 Prodigy Gaming Mouse" model.

After a failed checksum: What options remain?

Hello, Privateinternetaccess.org supplies secure VPNs. Their Windows installer (v75) has a SHA256 result that does not match what is supplied on their website. Fucking terrible "security" solution, is it not? As a prospective user of OpenBSD, I would hope that this never occurs, and that free so

Re: Writing "ones" instead of "zeroes" when wiping disk

On 12/01/18 11:09, Jan Stary wrote: > On Jan 11 14:45:21, andreasthu...@gmail.com wrote: >> Hi! >> >> Again, an ignorant question (as usual): >> >> How might I do something similar to >> >> # dd if=/dev/one of=/dev/sd0 bs=1M >> >> as a complement to the usual and well-described >> >> # dd if=/dev/z

Re: Options for dealing with DES crypt password file

> Are there any workarounds for me using the old DES password hashes, or do we > need to 'passwd ' for hundreds of users? > You could give John the Ripper a try.

Re: [cwm] Can't move snaped window

I experienced satori :) Thank you master. 11.01.2018, 20:06, "Julien Steinhauser" : > Ve Telko wrote: > >>  Hello all, > > Hello > >>  window in cwm -current snapped to screen edge can not be moved using >>  keyboard shortcuts. Is this a feature or bug? :) > > What about a moveamount bigger than

Re: Writing "ones" instead of "zeroes" when wiping disk

On Jan 11 14:45:21, andreasthu...@gmail.com wrote: > Hi! > > Again, an ignorant question (as usual): > > How might I do something similar to > > # dd if=/dev/one of=/dev/sd0 bs=1M > > as a complement to the usual and well-described > > # dd if=/dev/zero of=/dev/sd0 bs=1M > > followed by > >

Re: Options for dealing with DES crypt password file

I appreciate the suggestion but yeah, LDAP is totally overkill here. There's really only this one server that needs access to the auth info in the passwd file, so LDAP wouldn't really help me.

Re: Options for dealing with DES crypt password file

On Thu, Jan 11, 2018, at 3:42 PM, Consus wrote: > On 18:27 Thu 11 Jan, Jeff Zimmerman wrote: > > I've got an old server (OpenBSD 4.7 old) with a mixed bag of password > > hashes in master.passwd. A majority of the passwords (hundreds) are > > old salted DES crypt format. > > > > Am I correct in my

Re: Writing "ones" instead of "zeroes" when wiping disk

On 01/11/18 14:45, Andreas Thulin wrote: Hi! Again, an ignorant question (as usual): How might I do something similar to # dd if=/dev/one of=/dev/sd0 bs=1M as a complement to the usual and well-described # dd if=/dev/zero of=/dev/sd0 bs=1M followed by Personally, given your premise of "pa

Re: Performance issues as KVM guest?

* Kent Watsen [2018-01-11 17:38]: [...] > > > Since my hosting provider https://www.bytemark.co.uk/cloud-hosting/ > > > patched for Meltdown last weekend I'm seeing significant performance > > > issues with an OpenBSD virtual instance there. It seems okay after a > > > fresh reboot but then progres

Re: Options for dealing with DES crypt password file

On 18:27 Thu 11 Jan, Jeff Zimmerman wrote: > I've got an old server (OpenBSD 4.7 old) with a mixed bag of password > hashes in master.passwd. A majority of the passwords (hundreds) are > old salted DES crypt format. > > Am I correct in my research that everything but Blowfish was removed > from cr

Re: Writing "ones" instead of "zeroes" when wiping disk

On Thu, January 11, 2018 3:16 pm, L. V. Lammert wrote: > On Thu, 11 Jan 2018, STeve Andre' wrote: > >> Don't bother. Wiping the disk twice is enough. If you are storing state >> secrets melt the disk. >> > An anvil big hammer also works well and gives some exercise in the > process. > >

Re: [cwm] Can't move snaped window

Ve Telko wrote: > > Hello all, > Hello > window in cwm -current snapped to screen edge can not be moved using > keyboard shortcuts. Is this a feature or bug? :) What about a moveamount bigger than the snapdist ? -- Julien

Re: Options for dealing with DES crypt password file

I completely understand. The running chainsaw analogy is pretty accurate here. OpenBSD is as secure as it is because you all remove as many chainsaws as possible. We needed to update those hashes anyway someday. I just wasn't expecting that day to be today. Thanks again! _

Re: Options for dealing with DES crypt password file

> I was hoping that there was some hidden switch somewhere that would turn > the classic crypt back on. No such luck. That'd be like leaving a running chainsaw on the floor at a daycare center. When something is dangerous, we get rid of it.

Re: Options for dealing with DES crypt password file

I know, I'm ashamed to say that yes, this machine has been running (behind a restrictive firewall) for all of these years. I was hoping that there was some hidden switch somewhere that would turn the classic crypt back on. No such luck. But thank you for the quick response. I've been using Op

Re: firefox-esr and icedtea-web

Apologize the noise. Just for the record: Firefox limits NPAPI support (technology required for Java applets) 64-bit Firefox The 64-bit version of Firefox does not support NPAPI plug-ins, including Java. Firefox 52 and above Beginning with Firefox 52 (released March 2017), plug-in support

Re: Options for dealing with DES crypt password file

> I've got an old server (OpenBSD 4.7 old) with a mixed bag of password hashes > in master.passwd. A majority of the passwords (hundreds) are old salted > DES crypt format. bummer > Am I correct in my research that everything but Blowfish was removed from > crypt() around OpenBSD 5.7? Are there a

Options for dealing with DES crypt password file

I've got an old server (OpenBSD 4.7 old) with a mixed bag of password hashes in master.passwd. A majority of the passwords (hundreds) are old salted DES crypt format. Am I correct in my research that everything but Blowfish was removed from crypt() around OpenBSD 5.7? Are there any workarounds

Re: Performance issues as KVM guest?

This sounds like the same issue as was described here: https://marc.info/?l=openbsd-bugs&m=151430928212450&w=2 - todd

Re: Writing "ones" instead of "zeroes" when wiping disk

On Thu, Jan 11, 2018 at 12:16 PM, L. V. Lammert wrote: > On Thu, 11 Jan 2018, STeve Andre' wrote: > >> Don't bother. Wiping the disk twice is enough. If you are storing state >> secrets melt the disk. >> > An anvil big hammer also works well and gives some exercise in the > process. Might be

Re: Performance issues as KVM guest?

On Thu, Jan 11, 2018 at 05:38:18PM +, Kent Watsen wrote: > On 1/10/18 1:53 PM, Mike Larkin wrote: > > On Wed, Jan 10, 2018 at 03:51:19PM +, Mark Carroll wrote: > > > Since my hosting provider https://www.bytemark.co.uk/cloud-hosting/ > > > patched for Meltdown last weekend I'm seeing signif

Re: Writing "ones" instead of "zeroes" when wiping disk

On Thu, 11 Jan 2018, STeve Andre' wrote: > Don't bother. Wiping the disk twice is enough. If you are storing state > secrets melt the disk. > An anvil big hammer also works well and gives some exercise in the process. Lee

[cwm] Can't move snaped window

Hello all, window in cwm -current snapped to screen edge can not be moved using keyboard shortcuts. Is this a feature or bug? :) Thanks, Ve.

Re: Performance issues as KVM guest?

On 1/10/18 1:53 PM, Mike Larkin wrote: On Wed, Jan 10, 2018 at 03:51:19PM +, Mark Carroll wrote: Since my hosting provider https://www.bytemark.co.uk/cloud-hosting/ patched for Meltdown last weekend I'm seeing significant performance issues with an OpenBSD virtual instance there. It seems ok

Re: Writing "ones" instead of "zeroes" when wiping disk

Don't bother. Wiping the disk twice is enough. If you are storing state secrets melt the disk. Back in the days of sub 1G disks it might have been possible to get inter track gap data that was usable. Maybe. But not multi T disks. Sectors mapped out are a problem though, and multiple wri

Re: Writing "ones" instead of "zeroes" when wiping disk

You can adapt my linux bash script for such pointlessly "paranoid" purposes. I use it to prove to HIPAA auditors just how paranoid I can be, and it's above NIST requirements in the US. https://github.com/spoollord/shredder Would require you to pkg_add pv base64. Or, just adapt the script without

Re: Writing "ones" instead of "zeroes" when wiping disk

Hi Andreas, Andreas Thulin wrote on Thu, Jan 11, 2018 at 02:45:21PM +: > Again, an ignorant question (as usual): > How might I do something similar to > # dd if=/dev/one of=/dev/sd0 bs=1M jot -cs '' 512 255 255 writes 512 bytes with all bits set. Feel free to use larger numbers than 512.

Writing "ones" instead of "zeroes" when wiping disk

Hi! Again, an ignorant question (as usual): How might I do something similar to # dd if=/dev/one of=/dev/sd0 bs=1M as a complement to the usual and well-described # dd if=/dev/zero of=/dev/sd0 bs=1M followed by # dd if=/dev/urandom of=/dev/sd0 bs=1M in order to achieve paranoid disk-wiping?

Re: Wifi Ierrs

On Thu, Jan 11, 2018 at 01:43:11PM +0100, Stefan Sperling wrote: > On Thu, Jan 11, 2018 at 10:51:32AM +0100, Raimo Niskanen wrote: > > Hello misc! > > > > I have an PC Engines Alix 2d13 with an Atheros AR9280 running WPA2-PSK, > > and see a lot of input errors over WiFi. netstat -ivn shows: > >

Re: Bitmask for 224.0.0.0 in Martians PF table entry

Thank you Kapetanakis Giannis and Mike Coddington for your helpful replies. I will now use /3, since I do not think that I will use multicast. Regards, ab

Re: Probable mistake in PF tagging example ruleset order

(Resending, I fessed up the inline reply) Arigato gojaimas Trondd san for your very helpful reply. I had understood from the documentation that tags were sticky. I also understood that a packet can only have zero or one tag at any time. Also, that a tag cannot be removed, but only replaced. Howe

Re: Probable mistake in PF tagging example ruleset order

Arigato gojaimas Trondd san for your very helpful reply.    Sent: Thursday, January 11, 2018 at 3:17 AM From: trondd To: "Aham Brahmasmi" Cc: misc@openbsd.org Subject: Re: Probable mistake in PF tagging example ruleset order On Wed, January 10, 2018 2:44 pm, Aham Brahmasmi wrote: > Hi, > > I am

Re: Wifi Ierrs

On Thu, Jan 11, 2018 at 10:51:32AM +0100, Raimo Niskanen wrote: > Hello misc! > > I have an PC Engines Alix 2d13 with an Atheros AR9280 running WPA2-PSK, > and see a lot of input errors over WiFi. netstat -ivn shows: > > NameMtu Network Address Ipkts IerrsOpkts Oerrs

Re: Lenovo T60p touchpad not working (6.2-stable/amd64)

A further update... after a suspend-resume cycle (suspend-to-RAM, which 'just works' via Fn-F4), the touchpad works fine. 'dmesg' shows 15 new lines appended after my most recent suspend-resume cycle, but none of them mention the mouse (pms0) explicitly: WARNING !(rw_status(&mode_config->mutex) =

Wifi Ierrs

Hello misc! I have an PC Engines Alix 2d13 with an Atheros AR9280 running WPA2-PSK, and see a lot of input errors over WiFi. netstat -ivn shows: NameMtu Network Address Ipkts IerrsOpkts Oerrs Colls athn0 1500 172.17/16 172.17.0.1 1160154 4029261 14

Re: state of Netdata on OpenBSD

On 10.01.18 18:58, Alceu R. de Freitas Jr. wrote: Hello folks, I'm considering installing Netdata on OpenBSD 6.2, but I found this issue on Github: https://github.com/firehol/netdata/issues/1083 Unfortunately, it doesn't tell if Netdata works out of the box on OpenBSD, if requires the Collectd

Re: Panic: ffs_blkfree on 6.0 GENERIC.MP

We tracked the problem to the underlying storage of the VM, so it is not OpenBSD related. On Wed, Jan 10, 2018 at 12:50 PM, George Kourvoulis wrote: > Hello, > > Today I have found one of my gateways (VM on esxi 6.5) in the state that > is shown here: > https://imgur.com/a/SV687 > > Unfortunate

Re: Bitmask for 224.0.0.0 in Martians PF table entry

On 10/01/18 20:55, Aham Brahmasmi wrote: > Hi, > > What is the correct bitmask for the 224.0.0.0 Martian table entry in > pf.conf? > > There are two bitmasks in two links on this page - > http://www.team-cymru.org/bogon-reference-http.html. /3 in the The Text > Bogon List, Aggregated and /4 in IP