Is there a way to make ntpd ignore these alarms, or perhaps set them to a time
less than fifty minutes (average)?
--
Jeff Simmons jsimm...@goblin.punk.net
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don'
On Friday, December 13, 2013 01:23:15 pm Ted Unangst wrote:
> On Fri, Dec 13, 2013 at 12:33, Jeff Simmons wrote:
> > "Nobody will ever need more than 640k RAM!" -- Bill Gates, 1981
>
> I realize this is often quoted in jest, but I've taken to setting the
> re
"Nobody will ever need more than 640k RAM!" -- Bill Gates, 1981
--
Jeff Simmons jsimm...@goblin.punk.net
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are you sure you're doi
used by an existing
connection?
I'm especially interested in OpenBSD <-> Cisco tunnels.
--
Jeff Simmons jsimm...@goblin.punk.net
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any n
On Sunday, December 02, 2012 10:08:37 pm Otto Moerbeek wrote:
> On Sun, Dec 02, 2012 at 07:19:34PM -0800, Jeff Simmons wrote:
> > On several of the boxes that I admin, starting ipsec on boot in the
> > normal way, i.e. from rc.conf.local, doesn't work. The problem 'seems
m rc.local after starting isakmpd from
rc.conf.local. Not a big deal, just seems a kinda funky way to do things.
--
Jeff Simmons jsimm...@goblin.punk.net
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any n
m probably just missing something simple, but
is there an easy way to do this?
--
Jeff Simmons j...@j-simmons.net
Simmons Consulting - Network Engineering, Administration, Security
On Monday, July 30, 2012 03:38:58 pm you wrote:
> On 2012-07-30, Jeff Simmons wrote:
> > Given a machine with two interfaces to the internet, is there a way to
> > enforce symmectric routing (i.e. if1 and if2 with if1 as the default
> > route, can connections to if2 be someho
but I haven't found anything for connections to the router itself.
--
Jeff Simmons jsimm...@goblin.punk.net
Simmons Consulting - Network Engineering, Administration, Security
distributions support for the 8006 was flaky due to
3ware's lack of cooperation. Am I correct in assuming that this is the reason
for the install hang?, and is there anything that can be done to get an
install on this particular setup? Thanks for any help.
--
Jeff Si
hat ifstated
could be used to 'manually' insert/remove SAs and flows via ipsecctl. Does
anyone have any thoughts as to which approach is preferable and the relative
merits of each?
--
Jeff Simmons jsimm...@goblin.punk.net
rt 0x3f8/8 irq 4: ns16550a, 16 byte fifo
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pmsi0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pmsi0 mux 0
pcppi0 at isa0 port 0x61
midi0 at
Apologies for the previous empty message.
On Saturday 09 January 2010 08:57, Toni Mueller wrote:
> Hi,
>
> On Tue, 05.01.2010 at 12:44:49 -0800, Jeff Simmons
wrote:
> >
> > Encap:
> > Source Port Destination Port Proto SA(Address/Proto/Type/Direction)
> >
On Saturday 09 January 2010 08:57, Toni Mueller wrote:
> Hi,
>
> On Tue, 05.01.2010 at 12:44:49 -0800, Jeff Simmons
wrote:
> > fw:$ netstat -nr
>
> tip: netstat -rnf encap
>
> >
> > Encap:
> > Source Port Destination Port Proto SA(Address/Proto/Typ
ows
up. Any ideas as to what could be causing this?
--
Jeff Simmons jsimm...@goblin.punk.net
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are you sure you're doing it right?"
-- My Life With The Thrill Kill Kult
at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
lpt0 at isa0 port 0x378/4 irq 7
wbsio0 at isa0 port 0x2e/2: W83627HF rev 0x41
lm2 at wbsio0 port 0x290/8: W83627HF
lm1 detached
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
mtrr: Pentium Pro M
On Saturday 22 November 2008 18:19, you wrote:
> On Thu, Nov 20, 2008 at 9:48 AM, Jeff Simmons <[EMAIL PROTECTED]>
wrote:
> > I need, at a minimum, which virtual server at a particular IP address is
> > being accessed, and the contents of any GET commands (methods). If
>
On Wednesday 19 November 2008 20:48, John Jackson wrote:
> On Wed, Nov 19, 2008 at 08:18:00PM -0800, Jeff Simmons wrote:
> > I need, at a minimum, which virtual server at a particular IP address is
> > being accessed, and the contents of any GET commands (methods). If
> > ther
filter it on port 80?
>
> Jeff Simmons wrote:
> > Anyone know of a text-based program that will dump http protocol packets?
> > Like tcpdump, but for http.
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, S
Anyone know of a text-based program that will dump http protocol packets?
Like tcpdump, but for http.
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are you s
rcial mail servers are doing this, and who they all are. There's
spam blacklists all over the place, and a lot of people are doing greylisting
nowadays. Isn't anybody collating these guys?
On Wednesday 03 September 2008 20:57, Marco S Hyman wrote:
> Jeff Simmons writes:
> > all
n see they are
all out of date, and the link to the cvs list is broken. Anyone know of any
uptodate compilations?
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are
only `*' as the
anchor name:
# pfctl -a '*' -sr
firewall:~#pfctl -a '*' -sr
anchor "*" all {
pfctl: DIOCGETRULES: Invalid argument
}
Am I misreading the man page in assuming that both of these co
0.10 port 500 due to
notification type NO_PROPOSAL_CHOSEN
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are you sure you're doing it right?"
-- My Life With The Thrill Kill Kult
use our proprietary software." "We meant any OS can USE one of our
proprietary tunnels." Etc.
I know that native OpenBSD tools (ipsecctl, isakmpd) work fine with the Cisco
3005 concentrator, I'm running several. I've got a 3002 loaner coming, I'll
post the r
-password and user-password entries for connections to the
3000. Most of the rest of the configuration is pretty standard, if old (3des,
sha1).
I'd rather find out before we buy one. Thanks!
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engine
89012"
The man page only specifies a 'hexadecimal string'. The same thing happens if
the key is entered into a file and the 'authkey file' directive is used. Any
help would be appreciated.
--
Jeff Simmons [EMAIL PROTECTED]
Simmon
On Monday 14 May 2007 11:57, Ted Unangst wrote:
> On 5/14/07, Jeff Simmons <[EMAIL PROTECTED]> wrote:
> > Is there any documentation on the exact functions of the flags that can
> > be passed to WD via config? I haven't found any, and I'm not a good
> > enough
Is there any documentation on the exact functions of the flags that can be
passed to WD via config? I haven't found any, and I'm not a good enough C
programmer to tease them out of the source.
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting
upport for the
development of OpenBSD (or both)? A company I can feel good about dealing
with?
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
"By these actions SRL became the first to operate inten
't seem to be a
'standard' way of doing this. Does anyone have any recommendations?
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
Delirium: There must be a word for it ... the thing that lets
ets a
password for a user, a password expire time is NOT set, even with
passwordtime set in login.conf. Is there a way to change this behavior
without modifying the source?
Thanks!
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering,
lnerabilities. Mr. Rock, meet Mr. Hard Place.
"In conclusion the main thing we did wrong ... was to worry about criminals
being clever; we should rather have worried about our customers ... being
stupid." Ross Anderson, "Security Engineering"
On Monday 03 July 2006 20:2
On Monday 03 July 2006 17:51, STeve Andre' wrote:
> On Monday 03 July 2006 17:37, Jeff Simmons wrote:
> > A client is setting up a password policy, and would like to prevent users
> > from reusing a password for a period of time (four changes ninety days
> > apart).
gainst the last N password hash hashes that were used. Putting the
> actual password hash out to storage for comparison seems more risky than
> just a one-way hash of the hash (at least a little bit). A trigger on a
> password change could easily tell if the new password hashes out
d anything.
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are you sure you're doing it right?"
--My Life With The Thrill Kill Kult
ilure to connect to the Webkit AppServer.
Any assistance greatly appreciated.
--
Jeff Simmons [EMAIL PROTECTED]
Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise. Are you sure you're doing it right?"
--My Life With The Thrill Kill Kult
f0/16: using exception 16
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec
biomask e1fd netmask effd ttymask
pctr: user-level cycle counter enabled
dkcsum: wd0 matches BIOS drive 0x80
wd1: no disk label
dkcsum: wd1 matches BIOS drive 0x81
root on wd0a
rootde
Finding myself in need of a POP3S daemon, I headed over to the ports tree
to get the old standar UW, and noticed that there are several of the
little devils hiding out in there.
Anyone have any recommendations? Favorites? Pros and cons? Reasons to use
something other than UW? Any information would
I'm running several OpenBSD VPN gateways using 3.6, and I'm trying to add
a 3.7 box into the mix. I've been using rc.vpn and manual keying. But
when I tried to fire up the new VPN, the networks never could connect, and
the gateway machines lost contact with each other (no ping, no shh, etc.)
until
I have a large VPN network using several OpenBSD 3.5 and 3.6 boxes, I'm
using shared keys, and the rc.vpn script to initialize it. Yesterday I
tried to add a 3.7 box to the mix, and it wouldn't work. The symptoms were
the tunnels never came up, and the respective gateways lost communication
with ea
41 matches
Mail list logo
