If you can bit the USB, you can image it onto the SD. then I think you will
be able to boot the SD
On Thu, 27 Mar 2025, 03.47 Chris Narkiewicz, wrote:
> I installed OpenBSD 7.6 on Raspberry Pi 4B. System was installed from USB
> stick
> onto 128GB SD card using default answers.
>
> The problem i
OK, this is a good point, I was thinking lately
about getting a protonmail, but they do not
offer IMAP for free and now I know that they
encode everything in base64 my decision
not to pursue this is final.
On 03/12/2024 18:07, Stuart Henderson wrote:
On 2024-12-03, Peter N. M. Hansteen wrote:
Any official way of using for instance Google Authenticator for
authenticating on OpenBSD/OpenVPN
I guess that you can use
https://github.com/google/google-authenticator-libpam.git but I would like
to rely on OpenBSD only.
Regards, Lars.
is part of the problem.
How do I get incoming traffic via vmx2 to return out via vmx2 and visa
versa incoming traffic via vmx4 to return out vmx4
Regards, Lars.
Ah, ok... and then you assign the IP address to that vport... thanks...
will try that out later.
On Tue, Dec 19, 2023 at 2:42 PM Zé Loff wrote:
>
> On Tue, Dec 19, 2023 at 02:25:01PM +0100, Lars Bonnesen wrote:
> > That is exactly what I want.
> >
> > Ah, veb... althou
Loff wrote:
> On Tue, Dec 19, 2023 at 09:33:18AM +0100, Lars Bonnesen wrote:
> > I have a physical switch with a number of VLANs and a NIC connected to a
> > wireless setup. I want to have those two separated except for one
> > particular VLAN that I want on the physical sw
does not work.
Regards, Lars.
le as possible about packages it
really shouldn't care about.
On Wed, Feb 15, 2023 at 5:52 PM Stuart Henderson
wrote:
> On 2023-02-15, Lars Bonnesen wrote:
> > lbo@PLOSLOL2VPN:/etc$ pfctl -s info
> > Status: Enabled for 0 days 00:06:49 Debug
I think that I am now hitting a bottleneck somewhere else.
Thanks for the help so far... I might come back thirsty for more later...
(-:
Regards, Lars.
On Wed, Feb 15, 2023 at 4:13 PM Lars Bonnesen
wrote:
> lbo@PLOSLOL2VPN:/etc$ pfctl -s info
> Status: Enabled for 0 days 00
wrote:
> On Wed, Feb 15, 2023 at 01:01:10PM -, Stuart Henderson wrote:
> > On 2023-02-15, Lars Bonnesen wrote:
> > > One says:
> > >
> > > # pfctl -s info
> > > Status: Enabled for 0 days 10:56:43 Debug: err
> > >
> > &
0.0/s
synproxy 00.0/s
translate 00.0/s
no-route 00.0/s
What does that tell us?
Regards, Lars.
On Wed, Feb 15, 2023 at 9:16 AM Otto Moerbeek wrote:
> On
re many discussions about
this, and what I can summarize is that apart from a security perspective,
hyperthreading should be left enabled
How to get better performance?
Regards, Lars.
Installed zabbix-agent
but when doing "./zabbix_agentd -d start", I get:
ERROR: value of parameter "TLSConnect" requires support of encrypted
connection with PSK but support for PSK was not compiled in
How do I add support for Preshared key?
Regards, Lars.
How many physical NICs can you add to an OpenBSD host (vmx)
I am asking because I am running an OpenBSD on a VMware host but apparently
OpenBSD can only see 8 of them.
Can I raise the limit somehow?
Regards, Lars.
port on a switch
Can anyone guide me in the right direction, thx?
Regards, Lars.
On Wed, Jan 4, 2023 at 7:24 AM Lars Bonnesen
wrote:
> Thanks for your replies. It has been Xmas and I have been delayed, but I
> have now read up upon it. I am going for the tpmr(4). We are going to
> repli
Which 1Gbit USB 3.0A NIC is performing best with obsd 7.2?
I am aware of the hardware list, but I am asking personal experience from
users in here
Regards, Lars.
WireGuard connection with one OBSD on each site, and I am planning to
tunnel tpmr through this - I guess that tpmr itself is not encrypted in any
way?
Regards, Lars.
On Fri, Dec 16, 2022 at 4:30 PM deich...@placebonol.com <
deich...@placebonol.com> wrote:
> I've run L2 over an IPse
an do the same, I would
rather deploy one OpenBSD on each site and have that task handled by
OpenBSD.
Each site should be able to use the other site gateway over a
L2-network.and VMs on each site should be able to see each other as they
are on the same LAN
Where to start reading?
Regards, Lars.
play attached. The resistors have to be in the right range to work,
but there is some flexibility as to the specs:
https://rumorscity.com/2013/12/06/how-to-create-dummy-plugs-for-your-graphics-cards/
Though a form dummy HDMI plug might be the best approach if it's likely
to get jostled or moved.
/Lars
or similar on this
USB-port?`
Regards, Lars.
Ok, I am sorry... I found the port openvpn_bsdauth
via-env never worked, but using via-file and tmp-dir, I am now able to auth.
Does a similar solution exist for additional MFA-solutions? Google Auth?
Regards, Lars.
On Mon, Aug 15, 2022 at 7:47 PM Lars Bonnesen
wrote:
> Setting up
uld.
I do something wrong?
Regards, Lars.
C (you may need to install the Authen::PAM
module) (@INC contains: /usr/at /etc/openvpn/auth-pam.pl line 30.
Googled som non-OpenBSD ways to install the Authen::PAM module, but they
all failed. Anyone has succeeded in this?
Regards, Lars
On 7/11/22 12:25, Denis Fondras wrote:
[snip]
I use Protectli devices : https://eu.protectli.com/
Are all the network interfaces available?
What was the installation process like and where there any special
obstacles to be aware of?
/Lars
w.echothrust.com/blogs/using-openbgpd-distribute-pf-table-updates-your-servers
/Lars
share a relayd.conf
example for me?
Regards, Lars.
Is it no longer important to group block/pass in/out for speed optimization?
I see many "modern" pf.conf where everything is mixed more or less randomly
Regards, Lars.
That did it... thanks!
On Wed, Apr 29, 2020 at 10:42 PM Sebastian Benoit
wrote:
> Lars Bonnesen(lars.bonne...@gmail.com) on 2020.04.29 21:58:27 +0200:
> > In earlier obsd versions I have been having success with this in
> > hostname.vlan703
> > inet 172.18.11.9 255.255.255
expected. If I do a tcpdump, I can find the packages reaching
vmx2, but they are never passed on to vlan703
How to to if I have configured a trunk on a switch, I want to configure say
VLAN id 703 on a vmx device?
And while we are at it, what if the switch is an access port?
Regards, Lars.
an unacceptable license.
> If something like it were to be used on OBSD it would have to be
> written from scratch with a BSD license and it has already been
> discussed at length on this list how hard that is.
> Besides it is not really necessary. ZFS is overly complex and not
> needed in mos
ook
> up direct LDAP access, for example.
>
>
> On Wed, Mar 25, 2020 at 7:48 AM kasak wrote:
>
>>
>> 25.03.2020 02:06, Lars Bonnesen пишет:
>> > Hi. I am having a project on setting up Samba to work as a replacement
>> for
>> > MS AD.
>> >
Hi. I am having a project on setting up Samba to work as a replacement for
MS AD.
I would prefer to do it on OpenBSD, but how is the implementation of Samba
on OpenBSD? Is it enhanced in a way that will cause any known problems that
would not be on say... CentOS?
Regards, Lars.
ld I proceed to try either 6.6 or (from snapshots) 6.6-current?
/Lars
$ signify -C -p /etc/signify/openbsd-66-base.pub -x SHA256.sig bsd.rd
Signature Verified
bsd.rd: OK
$ diff /bsd.rd bsd.rd; echo $?
0
-
Octeon ubnt_e100# fatload usb 0 ${loadaddr} bsd.rd
b.b.b.b to myname so that it reads:
dhcp
inet x.x.x.x b.b.b.b
and if so, how do I make sure that mygate does not get overwritten from
dhcp?
Regards, Lars.
OpenBSD 6.4
Putty just reports "Authenticating with public key "XXX" from agent" and
then I am disconnected. If I run sshd with -ddd, I get the following
output. I can't seem to get any error, and therefor I can't tell what is
wrong. Anyone has any idea? Thanks
debug2: load_server_config: filena
a socket.
See httpd.conf(5) That way you can keep the chroot lean.
/Lars
an use while loop if
you have your key in the ssh-agent.
while ! ssh -t foobar.example.org 'tmux a || tmux'; sleep 1; done;
/Lars
an do to debug the issue? Using different usb ports on the system
makes no difference.
Any hint is highly apprechiated
Thanks and regards
Lars
OpenBSD 6.3-current (GENERIC.MP) #55: Thu May 31 07:21:36 MDT 2018
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
rea
continue to handle everything pertaining to appearance.
So something more-or-less similar to the change below would keep the
presentation in the CSS and leave the programming to handle the
structure.
/Lars
[1] https://www.w3.org/TR/css-device-adapt-1/#example-0efe9d5c
-
Index: src
On 2018-03-05, Stuart Henderson wrote:
> On 2018-03-05, Lars Noodén wrote:
>> I'm not able to get sshd(8) to use alternative loglevels, such as Debug3.
>>
>> When sshd(8) starts, it goes through the normal reporting regardless
>> of which LogLevel is set in sshd
read correctly from the configuration file:
# /usr/sbin/sshd -T | grep -i loglevel
loglevel DEBUG3
Invoking sshd(8) with -d, -dd, -ddd produces increased logging though,
just not to the log file.
Is this worth a formal report?
/Lars
=
[ using 735440 bytes of bsd ELF symbol table ]
Cop
2018-02-25 10:00 GMT+01:00 Stuart Henderson :
>> Feb 24 22:50:09 zipper pppd[83506]: Connect: ppp0 <--> /dev/cuaU0
>
> Do you have other serial devices from this, or just cuaU0? Try others if you
> have them.
I do have cuaU0 - 3 but trying the other ones gives me:
Failed to open /dev/cuaU2: Device
ed by lars, uid 0
Feb 24 22:50:09 zipper pppd[83506]: Connect: ppp0 <--> /dev/cuaU0
Feb 24 22:50:39 zipper pppd[83506]: LCP: timeout sending Config-Requests
Feb 24 22:50:39 zipper pppd[83506]: Connection terminated.
Feb 24 22:50:41 zipper pppd: Exit.
Sadly pppd debug and chat -v are not as ver
andbox-rlimit.c
So is two the limit?
/Lars
On 7/18/17, Stuart Henderson wrote:
> On 2017-07-17, Lars Noodén wrote:
>> I'm looking to refurbish an old device and will probably add a network
>> card to it. Are there any reasons based on the current drivers or the
>> hardware itself to choose sis(4) or vr(4) over o
onf I have added:
net.inet.gre.allow=1
net.inet.gre.wccp=1
net.inet.mobileip.allow=1
Lets say that openBSD public IP is 1.2.3.4 local IP 10.77.1.2 and LAN is
10.77.1.0/24 - PPTP server is 10.77.1.106
How would my PPTP lines look in pf.conf?
Help is greatly appriciated.
Regards, Lars.
I'm looking to refurbish an old device and will probably add a network
card to it. Are there any reasons based on the current drivers or the
hardware itself to choose sis(4) or vr(4) over one or the other on
i386 -curren?
Regards,
Lars
On 3/20/17, Darren Tucker :
> On Sun, Mar 19, 2017 at 11:47 PM, Lars Noodén wrote:
>> Looking at a recent snapshot, see dmesg at the bottom, I have two
>> questions about OpenSSH logging.
>>
>> 1) The entry in sshd_config(5) for MaxAuthTries states the fol
nt: disable: no info_req_seen
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred:
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
...
So, yes, that does allow the maximum number of log-ins.
Thanks.
Regards,
Lars
>> 2) The client gets disconnected before MaxAuthTries is reached. If I
>> have it set to 6, I get 5 only tries:
>
> Your log level isn't high enough to see it, but I suspect you have a
> failed pubkey attempt before the password attempts. You should be
> able to see it if you add "-vvv" to the c
an or equal to sshd(8)'s
MaxAuthTries, I get only one less than what was set in MaxAuthTries
instead of the full sequence. Is there any way to get the full number
of MaxAuthTries log in attempts?
Regards,
Lars
[ using 595272 bytes of bsd ELF symbol table ]
Copyright (c) 1982, 1986,
1:31PM0:00.03 httpd: logger
(httpd)
www 4775 0.0 0.3 644 1832 ?? Isp1:31PM0:00.04 httpd: server
(httpd)
I've checked the page on following -current and see no annotations
regarding httpd(8)
What have I missed?
Regards,
Lars
OpenBSD 6.0-current (GENERIC) #3
boot process fails almost immediately. Is there a document I should
be reading that explains the output, or have I come to the right place
to report what happens?
Screenshot:
https://imgur.com/a/zvyYV
- ---
Lars Lehtonen
iQEcBAEBAgAGBQJX2K7gAAoJEIE31HTrywTy3PoH/3CHLr69n0oZRNLVrrCWkxAs
3c/P0TkrqHTIgv
nd all pins are reserved by OpenBSD and should not be
changed or used?
Of the pins reserved, what are their purposes?
Regards,
Lars
[1] Figure: "65 Possible Digital I/Os" http://beagleboard.org/Support/bone101
[2] Table 10. "P8 Mux Options Modes 4-7" BONE_SRM.pdf
-
OpenBSD
e as the system is currently running Linux. If
there is interest in a Linux dmesg I can provide it.
regards
Lars
personally dropped the fan requirement and am running the stock i3 fan
in a mini-itx case Chieftec Compact IX-01B. If noise is more important
to you I would drop the msata requirement and use a standard size ssd.
Good luck
Lars
the process. I used 'exfalso' for that, which was a manual and very
tedious process.
http://lists.einval.com/pipermail/abcde-users/2015-June/000162.html
regards
Lars
om what I've tried, the variable CVS_RSH won't pass options on to ssh.
But you can force MD5 hashes in ssh_config using "FingerprintHash" for
that particular host for all occasions including cvs use.
regards,
/Lars
f drm picked a resolution during boot that doesn't work
with your monitor. If this is the cause, you could disable radeondrm
with config(8)..
1024x768 is not the native resolution but I assume my sceen would be
able to display it anyway. I can confirm this tonight.
Thanks
Lars
quick replies and useful information. I will try to
disable radeondrm on the weekend to see if it helps.
have a great day
Lars
page wsdisplay is a bit difficult to
understand, so I am not sure I understand parameters. Any hints what I
need to configure differently?
thanks a lot for any tips
have a great day
Lars
Here is my dmesg:
OpenBSD 5.6-stable (GENERIC.MP) #3: Thu Dec 11 11:20:31 CET 2014
r...@dumper.l
fails if the lookup
fails. This is from a recent snapshot.[2]
Is this the expected behavior for host-based authentication?
Regards,
/Lars
[1]
debug1: userauth-request for user foo service ssh-connection method none
[preauth]
debug1: attempt 0 failures 0 [preauth]
debug1: userauth-request for
On Wed, 4 Mar 2015, Stefan Sperling wrote:
> On Wed, Mar 04, 2015 at 05:06:57PM +0200, Lars Nooden wrote:
> > The only other strange symptom is that the machine locks up hard every
> > week or two requiring a powercycle or hardware reset to restart. I can
> > find nothing
ould I be looking at?
Regards,
/Lars
TM) Integrated Processor by AMD PCS ("AuthenticAMD" 586-class) 500 MHz
cpu0: FPU,DE,PSE,TSC,MSR,CX8,SEP,PGE,CMOV,CFLUSH,MMX,MMXX,3DNOW2,3DNOW
real mem = 536363008 (511MB)
avail mem = 515227648 (491MB)
mpath0 at root
scsibus0 at mpath0: 256 tar
you will need to buy i7-4000
with 4Ghz. But this one is 3 times the price of the i3. If you put the
i3 on a board with C22x chipset, you can also use ECC RAM with the i3.
my 2ct
Lars
I had to replug it. The keyboard
did not fail this time. But shortly after the mouse worked again the
copy operation stopped and I got the error messages at the end of the
dmesg.
I am subscribed to the list and I hope someone finds this interesting
and is able to read something out of the stuf
seems to be
just hype
Lars
#x27;t you?
I seem to fall out of the target group for this. As I don't share your
obvious enthusiasm and just don't care - so many rock stars rise and
fall.
Lars
On 16.12.2014 05:48, Rod Whitworth wrote:
Any happy users? Absolute haters who have really tried hard?
(Description of problem?)
Yep, running a basic setup (fdm, dovecot, roundcube, opensmtpd) on 5.6
-STABLE (and 5.5 -STABLE before that) without hassle.
have a nice day
Lars
some details:
http://marc.info/?l=openbsd-ports&m=135345716931800&w=2
regards
Lars
for
software from "a to f" while http://ftp2.eu.openbsd.org/pub/OpenBSD/5.6/
is completely missing the "packages" folder.
I just wanted to give a heads-up here.
Thanks
Lars
ve now set aside hardware to build on and have been reading up on CVS.
More than one file is involved because 'mii_phy_activate' is defined
outside of acphy.c so the build stops there. I can see how to roll back
the one file (acphy.c) but not how to identify the others that were part
of the same commit. How do I spot which file(s) to try from that commit?
Regards,
/Lars
On Mon, 24 Nov 2014, Lars Nooden wrote:
> I've been trying to move from 5.4 to 5.6 on an old machine. Neither
> 5.6-release from the CD nor 5.6-current from the recent snapshots seem
> to be able to use the Ethernet device. During power up, the link status
> light is on
ave I missed that I need to set for Ethernet? I don't see anything
that stands out in the man page lii(4) or on the web page plus56.html
Regards,
/Lars
kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pms0 at pckbc0 (aux slot)
pckbc0: using irq 12 for aux slot
wsmouse0 at pms0
!! ;-)
have a great day
Lars
/transition/bsdcan2014/desktop.html
regards
Lars
seem to match what I set with
ifconfig on the yeeloong. And I can connect to this network with
another platform. The cabled interface (rl0) works fine.
What do I need to change to get urtw0 to finish connecting and show a
status of 'active' ?
Regards,
/Lars
[ using 487264 bytes of bsd ELF
the files). They also contain wrong checksums so signify
fails on the sets.
I think the correct answer to this is - "Yes, that's old crap - wait for
the next snapshot", right?
Regards
Lars
On 12.09.2014 21:25, Josh Grosse wrote:
Lars, it should fly. I'm running roundcube and an imap server on an
Alix.2 (500Mhz Geode), using SSL, with a 4GB flash card as its back
end store. It's not speedy, but it gets the job done for a single
user.
Thanks Josh, I have an Alix a
Hi Zé,
On 12.09.2014 19:22, Zé Loff wrote:
Oh, in that case, I agree with Lars. I have a APU (the 2Gb) model
running a bunch of light services for my small lan (pf, dhcpd, unbound,
nsd, ntpd, wifi AP), and apart from heating a lot (passive cooling
through the enclosure) it runs fine.
Have
the
same price but probably doesn't fit your power consumption requirements
(roughly 40 Watts with 2 drives)
Sincerely,
Martijn van Duren
Have a nice day
Lars
ded to trust at least this team. As you said, at
some point we have to trust somebody, because nobody needs so many
woodworkers.
Thanks
Lars
d this is maybe where the
confussion comes in... but can someone clarify for me the above?
Regards, Lars.
> # /etc/rc.d/apmd restart
Thanks. That was the right direction. It also needed to sleep for a few
seconds at the beginning for the keyboard to reconnect first.
Regards,
/Lars
,
/Lars
OpenBSD 5.5-beta (GENERIC.MP) #223: Wed Jan 22 08:59:22 MST 2014
t...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC.MP
cpu0: Intel(R) Core(TM)2 CPU T5600 @ 1.83GHz ("GenuineIntel" 686-class) 1.84 GHz
cpu0:
FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV
I agree this is a very good idea, instant feedback and gratification.
Nevertheless, I've just now donated CAD 100.- and invite everybody
else to do the same.
Kind regards
Lars
and
I can find the new kernel /bsd. But...
Rebooting... and the system ends in limbo-mode.
I have to boot doing "b /obsd"
I can't figure out where the process goes wrong. Anyone?
Regards, Lars.
I'm getting a lot of watchdog timeouts on re0 with the i386 snapshots.
re0 is a Traverse Viking PCI ADSL card. Is there something I need to set
or tune on my end to stop the timeouts?
Regards,
/Lars
OpenBSD 5.4-current (GENERIC) #148: Tue Nov 12 15:18:10 MST 2013
dera...
On Sun, 3 Nov 2013, Darren Tucker wrote:
[snip]
> Also: it's not in 5.4 but it is in current: check out the Match keyword
> for a more flexible method.
Cool. Were there any particular use cases in mind with 'exec' ?
Regards,
/Lars
ay inside a Match block.
>
> jbelke
It seems to behave the same with the Subsystem option as well:
Subsystem sftp /usr/libexec/sftp-server -u 000
Regards,
/Lars
group foo
ForceCommand internal-sftp -u 000
gives:
-rw-r--r-- 1 foo foo 29 Oct 23 10:36 umask000
What I was expecting for -u 000 would have been
-rw-rw-rw- 1 foo foo 29 Oct 23 10:35 umask000
What have I misconfigured?
Regards,
/Lars
On Tue, 1 Oct 2013, Christian Weisgerber wrote:
> Lars Noodén wrote:
>
> > Is there a way in ssh(1) to get the identity specified by -i to take
> > precedence over what is already in the agent?
>
> IdentitiesOnly, see ssh_config(5).
>
> --
goes for setting IdentityFile in ssh_config.
This is with OpenSSH 6.3 from a recent snapshot on the client and
5.3-stable on the server.
regards,
/Lars
sometimes downloading the whole package and base folder during
package freeze to have something in sync for new installs during the time when
base might be out of sync for longer times.Â
Original message
From: Theo de Raadt
Date: 07/09/2013 06:13 (GMT+02:00)
To: Amit Kulkarni
Quite often the snapshot of the packages and the base system are out of
sync, because naturally, the base has to be built before packages.
For example in this moment, as I write this, Firefox can not be
installed in a new system installed from snapshots, as the packages are
compiled against an
On Thu, 20 Jun 2013, Stuart Henderson wrote:
> On 2013-06-19, Lars Nooden wrote:
> > On Wed, 19 Jun 2013, Reyk Floeter wrote:
> >> Anyway, you should make sure to use "divert-to" instead of "rdr-to" in
> >> your pf.conf. "rdr-to" is consid
the change and had been trying
rdr-to instead of divert-to.
Regards,
/Lars
_DENIED message:
http_access allow all
...
http_port 127.0.0.1:3128 intercept
This occurs with in 5.3-stable on i386 with both squid/3.2.11 from ports
and with squid/3.2.7p0 from the CD, so what should I look at changing?
Regards,
/Lars
a) you're wrong
b) you don't know what problem he is trying to solve.
On Tue, May 14, 2013 at 5:28 AM, Salim Shaw wrote:
> OpenBSD is a server/router/network service OS, it's not designed for
> desktops. OpenBSD is the pre-eminent platform for Firewalling, IPsec, IPv6.
> Trying to shove OpenBSD
er on misc suggested ral(4) as better for an access
point. [2] The info on Wikipedia about drivers[3], if it's accurate,
suggests that ral has more help from the vendors.
Regards,
/Lars
[1] ath0 at pci0 dev 17 function 0 "Atheros AR5413" rev 0x01: irq 15
ath0: AR5413
1 - 100 of 1053 matches
Mail list logo
