If in doubt,
beat the Cisco admin about
"Opportunity is most often missed by people because it is dressed in
overalls and looks like work."
Thomas Alva Edison
Inventor of 1093 patents, including:
The light bulb, phonogram and motion pictures.
On Thu, Dec 2, 2010 at 2:19 A
That I will not argue.
BUT that is the risk you take (in my wee opinion) when you run any
"enterprise" aka stable but old and tested from here to next week for
backwards compatability OS like RHEL/SUSE Ent./Oracle Ent./AIX/Solaris/yadda
yadda yadda
The local root exploit in question does not work
tect bittorrent and p2p traffic with snort and drop it
>
> 2010/9/24 Ross Cameron
>
> Depends what you want to do exactly I suppose...
>>
>> Personally I use Linux based firewalls for many of my sites purely because
>> the clients in question want deep packet insp
Depends what you want to do exactly I suppose...
Personally I use Linux based firewalls for many of my sites purely because
the clients in question want deep packet inspection (aka OSI layer 7
filtering) done on the network traffic.
But that said they are always the second skin firewalls, sitt
On Sun, Mar 21, 2010 at 12:36 PM, T. Valent wrote:
> Folks, yes, I appreciate your attempt to help a lot. And I really am on
> your side if we're talking about "normal" machines.
>
> However, obviously nobody believes me when I say "For us there is no
> reason to update to newer versions of OpenBS
Well that depends really.
If you dont need something why have it on you're machine?
Even if it's not a networked application it may make life easier
one someone does crack their way into you're machine.
Personally I like to lock things down as much as possible, just
because I find that in the
On Sun, Mar 14, 2010 at 12:27 AM, Jeff Ross wrote:
> Jeff Ross wrote:
>>
>> Henning Brauer wrote:
>>>
>>> * Jeff Ross [2010-03-02 16:59]:
I bought a replacement supermicro motherboard off fleabay that has
dual Opteron 250 @2.4GHz. B The cpus have passive heatsinks, it is in
a
On Wed, Mar 3, 2010 at 7:57 PM, Andrew Fresh wrote:
> On Wed, Mar 03, 2010 at 06:36:05PM +0200, Ross Cameron wrote:
>> Does anyone know off hand if OpenBSD 4.6 or -CURRENT supports
>> 802.1QinQ aka netsted VLans?
>>
>> If so, how do I configure it as I've tried the
ce. But this doesn't seem to work
:(
Regards,...
Ross Cameron
On Fri, Feb 12, 2010 at 9:24 PM, Tobias Ulmer wrote:
> Uhm, looks seriously off-topic on any mailinglist that ends in
> @openbsd.org. I hope you reported this to Fedora.
>
> On Fri, Feb 12, 2010 at 01:25:11PM +0100, Tomas Bodzar wrote:
>> [ backtrace of crash in hand-rolled Drepper assembly ]
Act
On Sat, Dec 26, 2009 at 4:31 PM, John O'Connor wrote:
> Hi,
>
> I am getting some strange errors from an openBSD system that I am
> using as a backup server.
>
> I transfer some files onto the system via ftp. (1260 files with a
> total size of 60G.)
>
> The transfer works OK and then I try to chec
This is a VERY sad day :(
Personally I managed to convert quite a few people to using OpenBSD by
coaxing an interest via COMIXWALL.
A grand pity and unfortunately if I were you I'd probably have done
the same :( OpenBSD is possibly the cleanest most delightful OS to
work on and most definitely th
On Wed, Dec 9, 2009 at 7:07 PM, Jason Dixon wrote:
> I'm not taking sides, but how exactly are you "trying to help"? B The few
> times I've seen you post to misc@ have been to promote your own fork of
> OpenBSD, or to ask for help in getting your own stuff running. B How
> exactly does this help t
On Wed, Nov 4, 2009 at 5:54 PM, Theo de Raadt
wrote:
>> > For the record, this particular problem was resolved in OpenBSD a
>> while back, in 2008.
>>
>> Nice, but:
>>
>> "Since 2.6.23, it has been possible to prevent applications from
>> mapping low pages (to prevent null pointer dereferencing in
OpenBSD 4.6 i386 seems quite happy in VirtualBox 3.0.10 r54097 (Fedora
11 i686 as a host).
No funnies at all, just boot the cd46.iso image and ftp install and no
issues whatsoever (SMP and non-SMP VMs).
2009/11/1 TomC!E! BodE>C!r :
> After reading this
>
http://www.openbsd.org/cgi-bin/man.cgi?q
On Tue, Oct 13, 2009 at 4:41 PM, Igor Sobrado wrote:
> On Tue, Oct 13, 2009 at 4:12 PM, Ross Cameron wrote:
> >
> > Uhm perhaps to provide a better OSPF and BGP implementation to the for an
> OS
> > that is the OS of choice of millions of users and thousands of
>
On Tue, Oct 13, 2009 at 3:13 PM, Marc Espie wrote:
> On Mon, Oct 12, 2009 at 05:50:58PM -0700, Barry Friedman wrote:
> > Hi, thanks everyone for the information, this helps give me an idea of
> > the scope and effort involved in getting OpenBGPd onto Linux. I'll
> > look at the OpenSSH project to
On Wed, Oct 7, 2009 at 4:57 PM, L. V. Lammert wrote:
> At 03:27 PM 10/7/2009 +0100, Peter Kay - Syllopsium wrote:
>
>> From: "L. V. Lammert"
>>> On Wed, 7 Oct 2009, Peter Kay - Syllopsium wrote:
>>>
>>> It's VirtualBox - looks like it's still crap. VMWare works fine, so does
qemu.
>>>
On 15/09/2009, Henning Brauer wrote:
> i have a bgp machine forwarding 800MBit/s of real world generic
> internet traffic. can handle at least twice that. enough of a
> benchmark?
Any chance you could post the spec. of said machine?
I'd especially be interested in CPU/Chipset/NICs/RAM,...
Many t
e gone wrong?
What config files would be useful to anyone wishing to help me in this case?
Many thanks,...
Ross Cameron
On Wed, Jul 15, 2009 at 9:21 AM, Anton Karpov wrote:
> According to Provos's blog,
>
http://www.provos.org/index.php?/archives/34-Evading-System-Sandbox-Containme
nt.html
>
> "The initial prototype of Systrace as described in the paper avoided this
> problem by using a look-aside buffer in the kern
I've just been pondering,... were the systrace issues identified with in:
http://it.slashdot.org/it/07/08/09/138224.shtml
ever delt with and corrected?
If so where can I find some more info on the fixes made?
Many thanks...
e custom Windows app and use an
> open source solution using Samba's file share capability (with Samba running
> on OBSD of course :).
>
>
> --- On Fri, 5/22/09, Ross Cameron wrote:
>
> > From: Ross Cameron
> > Subject: Re: OpenBSD ESXi VMware image on Soekr
On Fri, May 22, 2009 at 5:56 PM, Ed Ahlsen-Girard wrote:
> On 2009-05-22 Ross Cameron wrote:
>
> > Certainly the hardware chosen isnt anywhere NEAR potent enough,... and
> u're
> > leaving ure whole configuration open for attack via the ESXi sub layer.
> >
>
On Thu, May 21, 2009 at 6:53 PM, wrote:
> Well I'm certainly no expert in all this and I'm happy to be corrected
> before
> I make any more mistakes with my configuration. Man am I glad I put this
> post
> out because I'm getting such great feedback!
>
> I'll have to re-think this but I
> honest
On Wed, May 6, 2009 at 10:38 PM, Giancarlo Razzolini
wrote:
>
> Well, i wasn't OT with my reply. And i use openvpn from the beginning of
> the project, even made a plugin for it. So i know i little of it. My
> suggestion was to avoid what you might be already suspecting. You will have
> to mess wi
On Tue, Mar 31, 2009 at 1:37 AM, Richard Ben Aleya <
richard.benal...@gmail.com> wrote:
> We do not want to purchase CDs to pay the salary of an American guy who
> does not respect European citizens. Now we know the man you are.
I think officially he's Canadian now,... origionally South African.
+1
On Tue, Mar 31, 2009 at 6:17 PM, David Schulz wrote:
> best statement so far..
>
> On Wed, Apr 01, 2009 at 01:08:14AM +1000, michael enoma aghayere wrote:
> > There is a saying where i am from:
> > When two elephants fight, it is the grass that suffers.
> >
> > People, let us allow Theo and kd
On Tue, Mar 31, 2009 at 5:18 PM, Daniel Seuffert wrote:
> I don't care what you do for a living. If it's not enough get a job and
> work like anybody else.
Not wanting to fan the flames anymore than has been done,... but uhm OpenBSD
is Theo's job!
Ok maybe (nor sure) not directly,... but i
On Wed, Mar 25, 2009 at 4:51 PM, frantisek holop wrote:
> Theo has made some serious allegations and i hope he has evidence
> to back it up.
>
Theo may be many things,... but a liar I have never found him to be.
On Thu, Nov 20, 2008 at 11:44 AM, Janne Johansson <[EMAIL PROTECTED]> wrote:
> You said twice above that you read all materials and couldn't figure out if
> the code is always available or have periodic releases? Booo.
) ( ((
On Tue, Nov 4, 2008 at 12:32 PM, Chris <[EMAIL PROTECTED]> wrote:
> I've download and burned the 4.4 ISO from a local mirror and trying to
> upgrade from 4.3 to 4.4 on i386. After the installer does the fsck
> -fp, I get the following error:
>
> uid 0 on /: file system full
> /: write failed; file
On Tue, Oct 28, 2008 at 9:33 AM, Neko <[EMAIL PROTECTED]> wrote:
> WO obviously you read what you want to read,
>
> i have being using openbsd since 2.6 and contributing, so
> please read before posting.
What did you contribute?
Code and commentary (wish lists) are NOT the same thing.
>
On Thu, Oct 23, 2008 at 12:54 PM, mak maxie <[EMAIL PROTECTED]> wrote:
> http://www.computerworld.com.au/index.php?id=264209080&rid=-219
>
> Microsoft Windows is the only operating that supports signed binaries.
Uhm WRONG, my embedded Linux distro's that I build for my clients only run
signed bi
Im afraid that you're going to have to re-write the driver from
scratch (without being "inspired" by the GPLed one) the OpenBSD kernel
developers wont include GPLed code into the core of the OS.
Are you 100% sure that the driver doesn't already exist in -current?
What piece of hardware is this?
O
On Wed, Sep 17, 2008 at 3:33 AM, Juan Miscaro <[EMAIL PROTECTED]> wrote:
> Has anyone any experience running OpenBSD on this puppy:
> http://www.commell-sys.com/Product/IPC/EMB-564.htm
>
Personally I've found that 2,5" disks last longer in the iBase FWA-7304
http://www.ibasetechnology.net
On Fri, Sep 12, 2008 at 10:15 PM, Joseph A Borg <[EMAIL PROTECTED]> wrote:
> can you people start treating mass storage like network security?
> I think it's becoming the next weak spot with the current changes in
> hard-disk densities, cheap, easily accessible solutions and hot-swap sata
> drives
On Thu, Sep 11, 2008 at 2:09 PM, Rafal Bisingier <[EMAIL PROTECTED]>wrote:
> Below is a patch which change current behavior, so that the message is
> searched first in the /etc/authpf/USER dir, and if it's not found
Would/etc/authpf/authpf.USER.messagenot be better?
Sample cha
On Thu, Sep 11, 2008 at 10:42 AM, Andreas Kahari
<[EMAIL PROTECTED]>wrote:
> I'd like to see what I'm typing, as I'm typing it, in my interactive
> SSH session.
Use local echo instead of remote echo then?
Reduces chattiness on the link too.
On Fri, Jul 18, 2008 at 3:26 PM, Maxim Belooussov <[EMAIL PROTECTED]>
wrote:
> Hi,
>
> > I'll want to build a small device with 3G + wlan. The ALIX 6b2 seems to
> > be a good candidate for it. It has 1 mini pci express and 1 mini pci
> > interfaces.
> >
> > I sought the archives and already found
2008/6/30 sonjaya <[EMAIL PROTECTED]>:
> Dear all
>
> I'm looking modem 3G ( hsdpa,usb ) compatible for openbsd 4.3 ?
>
> thank's
Here here I'm looking for the same thing but in PCMCIA format if possible.
--
Ronald Reagan - "Recession is when a neighbour loses his job. Depression is
when yo
I'd get a replacement and if you can afford it,... submit a hardware sample
fo one of the dev's that like playing with wireless drivers.
Personally I'm lucky all my hardware works (spend a fair bit of time making
sure of that though) so I haven't come across something I need to submit
hardware for
This appears to be a qemu error and is probably best posted on the
qemu-users mailing list.
On Mon, Jun 9, 2008 at 2:13 PM, Boril Boyanov <[EMAIL PROTECTED]>
wrote:
> Hi there,
> I found out that you have tested successfully OpenBSD 4.2 guest on qemu
> Linux,
> I have problems running OpenBSD 4.2
y 16, 2008 at 01:31:54PM +0200, Ross Cameron wrote:
>
> > Anyone got any thoughts on what the Debian project has been doing to
> OpenSSL
> > to have caused this in the first place?
>
> yes, read the stuff posted earlier, it contains all relevant links. To
> summarize, t
Anyone got any thoughts on what the Debian project has been doing to OpenSSL
to have caused this in the first place?
This is an obscurity hack and an all round bad idea.
If you REALLY must do this (dunno why) enjoy hacking the code of anything
you find on you're box that can be used as a network client.
Have fun :D
On Tue, Apr 29, 2008 at 2:18 PM, macintoshzoom <[EMAIL PROTECTED]>
wrote:
> How to HIDE "Ope
Sorry about the previous cross post,... sorry been working 37hours straight
and forgot to check.
On Sun, Mar 30, 2008 at 9:26 PM, Jacob Meuser <[EMAIL PROTECTED]> wrote:
> you say, "config makes me boot faster." so then people go and config
> their kernel, and then we get problem reports about broken kernels.
>
> that's fine if you want to go break your machines. don't try telling
> othe
On Sat, Mar 29, 2008 at 9:21 PM, Jacob Meuser <[EMAIL PROTECTED]> wrote:
>
> On Sat, Mar 29, 2008 at 12:58:40PM -0400, Douglas A. Tutty wrote:
> > On Sat, Mar 29, 2008 at 11:00:01AM +0200, Lars Nood??n wrote:
> > > > ... using the GENERIC kernel ...
> >
> > > 2) One thing that may not be visibl
I asked a perfectly valid question about whether or not that error I'm
getting is due to that function call being GNU only and therefor being
missing from the OpenBSD libc, now can someone answer that?
I do NOT want to to tarnish all OpenBSD users with this brush I used
below with my response to G
I'm quite well aware of that,... I've been building embedded UNIX-like
systems for 10years now.
The main reason I want to use the OpenBSD kernel is I'm interested in
using OpenBGP/OpenOSPF and really don't fancy porting both to
GNU/Linux and also brokering a truce between Theo and Linus, so that
Basically I want to strip the system down as much as possible,
practically nothing would be good.
My GNU/Linux appliances ran on a 4MB system image.
On Thu, Mar 27, 2008 at 4:16 PM, Stephano Zanzin
<[EMAIL PROTECTED]> wrote:
> Hi Ross,
>
> Well, OpenBSD don't need to be recompiled, because the gen
Hi there all,...
I used to maintain a small semi-embedded GNU/Linux system at my
previous employer and I really enjoyed that.
But now I'd like to try my had at building a dedicated OSPF/BGP
route/firewall appliance based on OpenBSD.
I have a particular liking for the pkgutils package manager writ
53 matches
Mail list logo
