Re: Blocking "shodan.io" - What are my options?

> A little ncat, sed, pfctl, and a dash of cron are able to do > the job just fine. cron is just there to start the ncat processes at > boot and run an hourly script to do a pfctl -T expire 86400 to > keep the table clean of old attackers. Sounds good. Could you share your script here? On Thu

Request for testing

Hi, If you ever thought about getting more involved and learning a bit about buikdling a current OpenBSD, there's a call for testing at https://marc.info/?l=openbsd-tech&m=154521488707434&w=2 Testing would provide me with valuable data about performance of memory management in multi-threaded app

Re: Blocking "shodan.io" - What are my options?

Hi Jordan, Sincere thanks for sharing your script. Also thanks to others for their input and comments. Regards Nino > On 4 Jan 2019, at 10:19 am, Jordan Geoghegan wrote: > > Sorry for the double post, I got the link to the script wrong... woops. > > The actual link is: > > www.geoghegan.ca

Re: Blocking "shodan.io" - What are my options?

On 1/3/2019 3:06 PM, Jordan Geoghegan wrote: Hello, I wrote a small script called 'pf-badhost' to block shodan and other annoyances via pf firewall. Check out www.geoghegan.ca/pf-badhost.html to see the script. pf-badhost also blocks ssh bruteforcers and other annoyances by loading a list o

Re: Blocking "shodan.io" - What are my options?

Sorry for the double post, I got the link to the script wrong... woops. The actual link is: www.geoghegan.ca/pfbadhost.html On 01/03/19 15:06, Jordan Geoghegan wrote: Hello, I wrote a small script called 'pf-badhost' to block shodan and other annoyances via pf firewall. Check out www.geoghe

Re: Blocking "shodan.io" - What are my options?

Hello, I wrote a small script called 'pf-badhost' to block shodan and other annoyances via pf firewall. Check out www.geoghegan.ca/pf-badhost.html to see the script. pf-badhost also blocks ssh bruteforcers and other annoyances by loading a list of regularly updated badhost lists from trusted

Re: USB stick recovery after dd with miniroot64.fs

On Thu, Jan 03, 2019 at 06:19:41PM +0200, Mihai Popescu wrote: > Hello, > > I used a storage USB stick to dd the miniroot64.fs on it. It was the > wrong one with some useful files saved on it and I did the dd > if=miniroot64.fs of=/dev/rsd1c bs=1m and let it write. The USB size is > almost 32Gb, i

Re: Blocking "shodan.io" - What are my options?

Hello Nino, well, there is a list of known Shodan scanners available: https://wiki.ipfire.org/configuration/firewall/blockshodan However, it seems to be outdated - I observed "dojo.census.shodan.io" (IPv4: 80.82.77.139), too. Since scanners usually try to bypass blocking attempts or rate limits,

Re: Who is 'anchor 11' (pfctl -vvss ./. pfctl -vsA)?

Am 02.01.2019 21:35 schrieb Klemens Nanni: Anchor 11 is the twelfth rule in your main ruleset (the anchor rule), in which the first rule established this state. Ouch, overlooked this one. Thanks.. Provide your ruleset so we can look at actual rules without guessing in case your problem persis

install mirrors weirdness

Hi, I am interested in some bigger ports, like Gigs of download, so I tried some mirrors from my country. The download rate is superb, but I found some weird things and I don't know how to explain them. 1. https://mirrors.nav.ro/pub/OpenBSD/snapshots/packages/amd64/ gtk+3-cups-3.24.2.tgz package

Re: USB stick recovery after dd with miniroot64.fs

Den tors 3 jan. 2019 kl 17:21 skrev Mihai Popescu : > I used a storage USB stick to dd the miniroot64.fs on it. It was the > wrong one with some useful files saved on it and I did the dd > if=miniroot64.fs of=/dev/rsd1c bs=1m and let it write. The USB size is > almost 32Gb, it was configured as one

USB stick recovery after dd with miniroot64.fs

Hello, I used a storage USB stick to dd the miniroot64.fs on it. It was the wrong one with some useful files saved on it and I did the dd if=miniroot64.fs of=/dev/rsd1c bs=1m and let it write. The USB size is almost 32Gb, it was configured as one msdos partition, sd1i. Is there any chance to reco

Re: Openbsd 6.1 and Current Console Freezes and lockup Proxmox PVE5.0

Hello All, im just updating a legacy thread on Proxmox KVM Hosts for OpenBSD Guuests The KVM / Proxmox 5.x Preemption timer in Linux Kernel In proxmox 5.3 ... OpenBSD 6.4 Guests work fine without any modifications to the Proxmox System, (ie you no lonter need to disable the) /sys/module/kvm_intel

Re: Are there real mountpoints for gvfs/gio shares ?

On Thu, Jan 03, 2019 at 02:22:53PM +0100, Joel Carnat wrote: > Hi, > > I was looking at mounting CIFS shares. > OpenBSD is the "client" machine. > CIFS a published by a remote NAS. > > Using XFCE and Thunar, everything works well. > But when I try to access the mountpoints from the console, I jus

Are there real mountpoints for gvfs/gio shares ?

Hi, I was looking at mounting CIFS shares. OpenBSD is the "client" machine. CIFS a published by a remote NAS. Using XFCE and Thunar, everything works well. But when I try to access the mountpoints from the console, I just can't find them. Things like "gio mount smb://", "gio mount -l" and "gi

Re: OPenBSD 4.9 i386, Asus EEE 701, no network

Hi there, I've one of those machines running some ancient version of OpenBSD and I can confirm the wired interface works. For the wireless one, instead, try -current as other people already pointed out or buy a cheap Intel wifi card and swap it out (I did this). -- Marco Bonetti

Re: mount_ffs Permission denied as root

Hello, myml...@gmx.com (myml...@gmx.com), 2019.01.03 (Thu) 01:21 (CET): > On 1/1/19 10:02 PM, Philip Guenther wrote: > > On Tue, Jan 1, 2019 at 6:27 PM myml...@gmx.com > > mailto:myml...@gmx.com>> wrote: [snip] > I unmounted the drive and tried to create an image of the

Re: OPenBSD 4.9 i386, Asus EEE 701, no network

On Tue, Jan 01, 2019 at 05:13:47AM -0700, oletus wrote: > Having this exact same issue with EeePC 701 and OpenBSD 5.9. It uses the > lii0 driver. So far no luck with DHCP. > > dmesg says about the driver, > lii0 at pci2 dev 0 function 0 "Attansic Technology L2" rev 0xa0 apic 1 int > 17, address 00