Re: httpd (does not) delivers (obsolete) html file

On Tue, Dec 10, 2024 at 05:46:35AM +0100, Sylvain Saboua wrote: > Regularly I make minor [ae]d?ditions to my static html files. > > Afaik the browser needs to manually refresh the file in order to > display the latest version. > > Am I doing something wrong or is there a workaround ? You can us

man.openbsd.org timing out via HTTP & HTTPS

Not much to add to the subject. For a couple days now, I've tried connecting via HTTP & HTTPS from various points around the internet and they all time out. Sounds like something hung or accidentally lost power and needs a nudge. Thanks! -tkc

Re: Pausing/Freezing issues with Protectli FW4B

On Fri, Aug 11, 2023 at 5:56 PM Stuart Henderson wrote: > > On 2023-08-11, Tim Baumgard wrote: > > I'm having an issue with my Protectli FW4B that's become more of a > > problem lately. Essentially, it's the same thing that this person [0] > > encountere

Pausing/Freezing issues with Protectli FW4B

p being used. Any pointers where I can investigate next would be appreciated. Tim [0] https://marc.info/?l=openbsd-misc&m=159166807203817&w=2 [1] https://marc.info/?l=openbsd-misc&m=159764612717042&w=2 --- ping 64 bytes from 10.0.0.1: icmp_seq=0 ttl=255 time=0.640 ms 64 bytes from

Re: httpd - conditional redirects

ess != myIpAddress) { // output the maintenance page } else { // load the normal app } Hopefully you can figure out something that will work for your situation. Tim

Re: explicit_bzero vs. alternatives

Philipp Klaus Krause (2020-08-10 21:00 +0200): > Am 10.08.20 um 17:00 schrieb Theo de Raadt: > > Philipp Klaus Krause wrote: > > > >> OpenBSD has the explicit_bzero function to reliably (i.e. even if not > >> observable in the C abstract machine) overwrite memory with zeroes. > >> > >> WG14 is cu

Re: Traffic inspection with relayd

or them or inspect what they're doing on the devices or in the source code instead. The downside is that you can't monitor all of them in one place, but it might be your only option. Tim On Wed, Apr 15, 2020 at 2:31 PM Cornelius Jubjub wrote: > > Hello all, > > First of

Re: softraid i/o errors, crypto blocks

freda_bundc...@nym.hush.com (2020-02-18 10:13 -0600): > I've had Postgresql data on an encrypted external USB drive > (encrypted via the OpenBSD FAQ instructions) for about a year > and it's worked great. > > Recently, I started gettting dmesg messages > saying softraid i/o error and it listed v

Re: Detecting DoH using PF

f the setting is turned on in its preferences. For what it's worth, the OpenBSD port of Firefox disables DoH by default. Tim

minor tcpdump.8 inconsistency

minor inconsistency diff --git a/tcpdump.8 b/tcpdump.8 index ce16951..8c2cf33 100644 --- a/tcpdump.8 +++ b/tcpdump.8 @@ -1257,7 +1257,7 @@ end of this connection. .Ar window is the number of bytes of receive buffer space available at the other end of this connection. -.Ar urg +.Ar urgent indic

Re: Blind OpenBSD users

(sorry, out of thread; copying from the marc.info post so References/In-Reply-To aren't set) > I am looking to understand / enhance the OpenBSD experience for > blind users. While not blind, I occasionally attempt to do some screenless testing with accessibility-tech on OpenBSD, FreeBSD, and Linu

Re: Is anyone able to use certificates with openbsd iked/ikev2 and Apple iOS (iphone)?

o yours. I'll do another round of testing and be more explicit about the crypto transforms, and will reply here with the results. Thanks for the link! -TimS >> On Apr 4, 2019, at 20:08, Tim Stewart wrote: >> >> Hi Ted, >> >> On 6/2/18 12:26 PM, Theodore Wynnych

Re: Is anyone able to use certificates with openbsd iked/ikev2 and Apple iOS (iphone)?

the iPad successfully connected. Can you try applying that patch and see if it resolves your issue? If it also works for you, I'll reply on that thread and see if anyone wants to opine on the patch. -TimS -- Tim Stewart t...@stoo.org

Re: want.html: Unifi wifi gear for interop debugging

‐‐‐ Original Message ‐‐‐ On Saturday, October 6, 2018 6:00 PM, Jacqueline Jolicoeur wrote: > > Oh right, and the rest of us don't have day-jobs, plus other > > commitments outside of working hours ? > > That must be hard for you. You feel you want more time in your life. > > > If you wan

Re: want.html: Unifi wifi gear for interop debugging

> Thank you for handling the logistics so I don't have to do that > on top of everything else I'm doing. > I am looking forward to receiving your shipment. Oh right, and the rest of us don't have day-jobs, plus other commitments outside of working hours ? >From now on, I'll take a simple stance

Re: want.html: Unifi wifi gear for interop debugging

I think the point I'm making here is it should be worthwhile to send the kit. Unifi access points are so cheap, that second-hand ones "lying around" are not likely to be worth the cost and effort to ship internationally (or even nationally in the case of some postal systems). Something like a 1

Re: want.html: Unifi wifi gear for interop debugging

> That's the nature of a donation: it comes with > no strings attached for the party receiving. Evidently you have not heard of restricted funds. If a donor gives on a restricted funds basis (happens all the time), then its black and white, either (a) return the funds or (b) abide by the restric

Re: want.html: Unifi wifi gear for interop debugging

‐‐‐ Original Message ‐‐‐ On Saturday, October 6, 2018 9:21 AM, Marcus MERIGHI wrote: > Dear all, > > not everyone is reading want.html every day, therefore I wanted to hint > at: https://www.openbsd.org/want.html > > stsp@wifi is asking for gear and we should deliver :-) > > "Ubiquity Un

Re: Which really small, portable and lightweight system/device is usable running OpenBSD?

> Can confirm, typing on mine currently. Have to use an external wifi adapter, > but most everything else works just fine. It's a little on the slow side, but > it does well enough for daily computing. Out of interest, did you find a OpenBSD friendly USB-C WIFI adapter or are you using an adap

Re: Certificate authority software

‐‐‐ Original Message ‐‐‐ On Friday, September 21, 2018 1:21 PM, Gregory Edigarov wrote: > Hello, list. > > I need to setup a CA for intranet. I have some (rather not very > positive) experience with ejbca. > before I will set it up, I want to take a look at alternatives, and so i > nee

Re: PF possibly causing weird SSL issues ?

I've just done a tcpdump. About to look at it myself, but maybe eyes on list will spot the issue (if any) quicker than my tired eyes. 198.51.100.167 is me (RFC5737 obfuscated) 52.216.65.232 is amazon (I used the IP to rule out any possible DNS issues even though I've triple checked the DNS is wo

Re: PF possibly causing weird SSL issues ?

> > Is there one OpenBSD BGP router or more, and is PF running there too? > (Basically check with tcpdump on various interfaces along the way that > the packets you expect to receive from the TLS server/s you're > connecting to aren't being dropped somewhere - if there are paths > to/from "the i

Re: PF possibly causing weird SSL issues ?

> This is a very bad advise you got. Syncookies should only be used in > exterme situations because the they do lose some of the additional > information that is part of the SYN packet. "syncookies always" is only > there for testing but should not be used in production. > Thank you Claudio. Me

Re: Google abruptly accessed photos on memory card and MUCH more without permission

> I travel frequently. Often outside of the US. I decided when in Mexico > that I could possibly lose the tiny notepad so I took photos of my > passwords on it. I did this on a Mexican phone and I have often used > these photos when I couldn't remember rarely used passwords and my > notepad wasn't

Re: PF possibly causing weird SSL issues ?

> This feels like it might be an MTU related problem, especially likely > if the connection is going via pppoe or a tunnel - you may need "scrub > (max-mss ##)". > > The way Google's TLS server handshake is setup, it fits in pppoe without > fragmentation, most other sites do not this. > > Otherwi

Re: PF possibly causing weird SSL issues ?

> Check the time and date. > And enable ntpd if you already haven't. Time and data are fine. NTP already runs extensively on this network, so setting it up on OpenBSD instances was a subconcious nobrainer. ;-)

PF possibly causing weird SSL issues ?

Hi, I'm wracking my brains here.   I have just replaced with one based on OpenBSD 6.3 PF. Nothing else has changed on the network, just the firewall. Lots of "stuff" that used to work (e.g. various nightly pushes of data to "the cloud") have suddenly stopped working after the new firewall was

Re: Running your own mail server

> Webmail isn't worth bothering with at all. Too complicated. Let me rephrase that for you. Webmail is easy. Open source webmail is all horrible stuff stuck in the last century. To make open source webmail look and behave like the is the complicated bit.

Re: Integration between CARP and BGPD ?

On Wednesday, 12 September 2018 20:49, Stuart Henderson wrote: > On 2018-09-11, Tim Jones b631093f-779b-4d67-9ffe-5f6d5b1d3...@protonmail.ch > wrote: > > > I've had a quick look through the man pages and am still a bit unclear, > > perhaps I'm just overthinkin

Re: BGP over IKED, routes not being installed ?

> sounds like a nexthop validation issue. What does`bgpctl show nexthop` gives > you? Do you have a route to them? It gives this : Flags: * = nexthop valid Nexthop Route Prio Gateway Iface 10.250.250.250 But surely I have a route if I can ping ? (As part of

BGP over IKED, routes not being installed ?

I'm probably missing something silly, here's what I've got so far: 1/ Working VPN, I can ping between the BGP loopbacks on both sides ping -S 192.168.1.1 10.250.250.250 ping -S 10.250.250.250 192.168.1.1 2/ The BGP sessions come up 3/ "bgpctl sho ri" shows all routes.  But none of them have any

Integration between CARP and BGPD ?

I've had a quick look through the man pages and am still a bit unclear, perhaps I'm just overthinking this ? Let's say I've got two perimeter "firewalls" running OpenBSD, talking BGP to upstream routers. On the "LAN" side I'm thinking about CARP, which is active/passive, and the devices on "LA

IKED not sending packets ?

Hi, Thinking it might be something with my earlier config, I created a simple one-liner: ikev2 esp from 172.16.1.2 to 172.16.1.3 However iked does not appear to be sending out any packets ?  Which I thought would be the case in its default active mode ?  It seems to just load the config and t

Re: IKED "not a valid authentication mode"

> Note that this isn't commenting a line, this is commenting all lines > that come after it. The parser joins the line first and removes > comments afterwards, so the config above becomes > > ... group curve22519 #childsa enc aes-128 auth hmac-sha2-256 srcid ... > > and then everything after the #

IKED "not a valid authentication mode"

Unless I misunderstand the 6.3 docs, the following should be valid : childsa auth enc chacha20-poly1305 group curve25519 But i get an error "not a valid authentication mode".  If I comment out that line, my configuration validates OK. The same happens if I copy/paste one of the examples from the

Re: "Transit" BGPD not announcing learnt routes to neighbors

> I think you are mixing up 6.3 code with docs for -current, this was > changed mid-June: > https://marc.info/?l=openbsd-cvs&m=152888243922828&w=2 > > There have been big changes in bgpd since 6.3, there are now methods > to give a simpler/clearer configuration, and some big improvements in > per

Re: "Transit" BGPD not announcing learnt routes to neighbors

> "announce all" is probably missing here, since the default in 6.3 was > "announce self" and so transit routes would be filtered. > Fabulous ! Thanks for that. I was somewhere along the right lines, but I was confused with talk in the docs of "announce all" being no-op which I took to mean "

"Transit" BGPD not announcing learnt routes to neighbors

Hi, I'm working with something in a lab environment at the moment, testing out OpenBGPD to see if it can replace "something else" on an internal network. I have three OpenBSD instances (A <->B<->C), and whilst B is learning routes from C, it is not pushing them out to A, no matter how relaxed I

Re: Running your own mail server

Ken, Putting all the OpenBSD evangelists to one side, there are two things to say. First, like me, you might use OpenBSD for many things. And like me, you might come to the conclusion that using OpenBSD for mail is not one of those things.Personally I prefer to use a decent Linux stack for my m

Re: iked support for IKEv2 Message Fragmentation (RFC 7383)

Tim Stewart writes: > Hello misc@, > > My IKEv2 sessions are occasionally down due to transit networks dropping > UDP fragments for one reason or another[1]. It happens frequently > enough that I am considering implementing support for RFC 7383 in > iked. > > Before

iked support for IKEv2 Message Fragmentation (RFC 7383)

on such work. If not, perhaps someone that is familiar with the code could suggest an approach at a high level? Thanks for any advice, -TimS [1] Whenver I've asked, the reason is usually something about DDoS prevention. -- Tim Stewart --- Mail: t...@stoo.org M

Re: acme-client new cert error

I have run into a problem that seems similar to yours. I'm still debugging it (or rather trying to find the time to do so), but I believe the problem is that acme-client does not correctly handle the "pending" status: it is handled as "valid". As a result, the challenge file is removed before the a

Re: "athn0: could not load firmware" for AR9271

smit path and 2 receiver paths (1T2R). I will reply with more details if I can better quantify the issues I'm having. -TimS -- Tim Stewart --- Mail: t...@stoo.org Matrix: @tim:stoo.org

iked: NAT Detection and Child SA Rekeying

Hello misc@, I have discovered what may be an oversight in iked(8)'s NAT detection code, as well as traffic blocking after the first rekey of the Child SA when NAT has been detected by one of the IKE daemons. I have the following passive config on a host with a static IP (1.2.3.4): ikev2 "demo"

Re: Can't connect from StrongSWAN to OpenBSD's iked

. I plan to stay active on this topic, so watch that tech@ thread for more details. >> On 19/06/2017, at 05:07, Tim Stewart wrote: >> >> theblo...@gmail.com writes: >> >>> Hello, >>> >>> I’ve been trying to create an IPSec VPN in my OpenBSD

Re: Can't connect from StrongSWAN to OpenBSD's iked

e-server 192.168.1.254 \ >> config access-server 192.168.1.254 > > I’m using 4096 keys and modp4096 but AFAIK both the server and the > cliente support them. I’m not sure where to start troubleshooting the > problem and could use some help. > > Thanks in a

Re: can't find fstab entry ?

I've vast amounts of inability but I get on with OpenBSD just fine. But then I take time to read OpenBSD's excellent documentation - FAQs and man pages, etc. Gratefully Tim H

s/specifies to/specifies how to/ in elf.5

Index: elf.5 === RCS file: /cvs/src/share/man/man5/elf.5,v retrieving revision 1.27 diff -u -p -r1.27 elf.5 --- elf.5 10 Sep 2015 17:55:21 - 1.27 +++ elf.5 7 Sep 2016 00:35:29 - @@ -147,7 +147,7 @@ typedef str

Re: Packet loss on traffic flowing between VLANs

Hi Evgeniy, Thank you for your reply. The states hard limit was the problem. The default limit is quite low :) -- Tim Korn Network Ninja On Thu, Jun 2, 2016 at 3:48 AM, Evgeniy Sudyr wrote: > Tim, > > from your problem description I can suggest you to check if you are not

Packet loss on traffic flowing between VLANs

eply 24:6e:96:04:1b:d8 24:6e:96:04:1c:84 0800 98: 10.95.0.5 > 10.95.1.50: icmp: echo request (DF) 24:6e:96:04:1c:84 00:00:5e:00:01:65 0800 98: 10.95.1.50 > 10.95.0.5: icmp: echo reply ^C 1975 packets received by filter 0 packets dropped by kernel Any help would be greatly appreciated. This is causing massive slow downs for all traffic flowing thru this firewall. Thank you for your time. -Tim

Re: Upgrade to 5.9 full disk encryption

On 15 April 2016 23:04:45 BST, Bryan Everly wrote: >Boot the installer. Exit to the shell. Then do: > >bioctl -c C -l /dev/sd0a softraid0 > >(Substitute for your actual device that is the softraid container). >You will be promoted for your password. > >Watch for the console message telling you wha

Re: doas.conf cmd with argument(s)

Philip Guenther (2016-04-01 23:47 +0200): > Sooo close. To quote doas.conf(5): > > The rules have the following format: > >permit|deny [options] identity [as target] [cmd command [args ...]] ... > 'args' is *literal* there, so the correct config line would be > permit nopass

Re: typo in calendar.music

Carson Chittom (2016-03-27 15:00 +0200): > In my daily email this morning from calendar(1), I noticed that > tomorrow's entry for Sergei Rachmaninov in calendar.music has a typo: it > should be "Beverly" rather than "Beverley". Just thought I'd point it > out. Fixed; thanks!

Re: httpd slowcgi permission advice

Byron Klippert (2016-03-25 18:37 +0100): > CGI script: > #!/bin/ksh > printf "Content-type: text/html\n\n" > printf "Hello!\n" > printf "\n" > printf "`doas pfctl -sr`" > > > doas.conf: > permit nopass keepenv { ENV PS1 SSH_AUTH_SOCK } :wheel > permit nopass www as root cmd /sbin/pfc

recompile packages to include base / libressl errata?

t with IMAP over tls. Furthermore, is ldd and the knowledge if a package uses tls enough to determine if a package has to be recompiled or not? If so, am I correct to conclude that postfix does not have to be recompiled because it dynamically links libssl.so.32.0 and libcrypto.so.32.0? -Tim

Re: mini itx from intel

Op 03-10-15 om 02:45 schreef Brian Conway: FYI- My 2820 won't boot reliably headless without an HDMI dummy plug attached (such as my NUC 5CPYH won't boot either without an hdmi cable attached.

Re: X security claims in FAQ considering Xorg setuid root binary (was: Slightly OT, .. 5.5 Nagios)

Op 28-09-15 om 23:29 schreef Philip Guenther: On Mon, Sep 28, 2015 at 1:31 PM, L. V. Lammert wrote: ... X has never been installed on this box, .. why now? http://www.openbsd.org/faq/faq4.html#FilesNeededX From the FAQ: "By itself, installing X on a system does not change the risk of exte

Re: Cheap hardware for router, perhaps fileserver?

Op 20-09-15 om 11:23 schreef Mark Carroll: even to the level of Intel NUCs which look pretty good if their hardware is solid. I've recently installed an Intel NUC NUC5CPYH to be used as a quiet low power sftp file server. Support for the nic is recently added and the machine works perfect fo

Re: dmesg Intel NUC NUC5CPYH

Op 04-09-15 om 21:06 schreef Tim Kuijsten: Op 04-09-15 om 21:01 schreef Ted Unangst: Tim Kuijsten wrote: tl;dr no network, dmesg for 5.7 release, 5.8 current mp and sp included. With 5.7 release a dhcp response is received, but no other addresses than the one that is assigned to the machine

Re: dmesg Intel NUC5CPYH

Op 04-09-15 om 21:01 schreef Ted Unangst: Tim Kuijsten wrote: tl;dr no network, dmesg for 5.7 release, 5.8 current mp and sp included. With 5.7 release a dhcp response is received, but no other addresses than the one that is assigned to the machine can be pinged (the dhcp server is in the arp

dmesg Intel NUC5CPYH

tl;dr no network, dmesg for 5.7 release, 5.8 current mp and sp included. With 5.7 release a dhcp response is received, but no other addresses than the one that is assigned to the machine can be pinged (the dhcp server is in the arp cache, but no ping reply is received from it). with 5.8 no d

Re: NSA transition to quantum resistant algorithms

Op 15-08-15 om 21:14 schreef Devin Reade: Interesting background info, including recommended minimum key sizes during the interim: I find it interesting that symmetric ciphers like 256 bit AES are probably quantum resistant[0],

Re: cert.pem 400 after updating stable 5.7

Op 13-08-15 om 14:59 schreef Tim Kuijsten: Every time I update my 5.7 systems by following stable the permissions of /etc/ssl/cert.pem are set to 400. Noticed this because OpenSMTPD stopped sending mail since it can not verify ssl connections: TempFail, "stat=Network error on destinatio

cert.pem 400 after updating stable 5.7

Every time I update my 5.7 systems by following stable the permissions of /etc/ssl/cert.pem are set to 400. Noticed this because OpenSMTPD stopped sending mail since it can not verify ssl connections: TempFail, "stat=Network error on destination MXs". Cheers, -Tim

Re: ifconfig.if rtsol autoconf diff

Op 06-06-15 om 13:24 schreef Florian Obser: On Fri, Jun 05, 2015 at 03:41:22PM +0200, Tim Kuijsten wrote: Had some trouble this morning in configuring inet6 on a new laptop. What problems did you encounter? inet6 autoconf or rtsol in hostname.if are supposed to work exactly the same. Mmm, I

ifconfig.if rtsol autoconf diff

Had some trouble this morning in configuring inet6 on a new laptop. Finally figured out that rtsol is dropped and that the functionality is moved to the kernel. Diff for hostname.if(5) included. Someone might want to replace the "rtsol" keyword in the installer as well. Index: hostname.if.5 ==

Re: openntpd portable sync fails

Op 29-05-15 om 20:05 schreef Theo de Raadt: Just a quick question, why is S in sensors uppercase? Is that not to confuse it with status? % ntpctl usage: ntpctl -s all | peers | Sensors | status yes... whoops, should have read a bit better. trustlevel and stratum it is.

Re: openntpd portable sync fails

Op 29-05-15 om 20:05 schreef Theo de Raadt: Just a quick question, why is S in sensors uppercase? Is that not to confuse it with status? % ntpctl usage: ntpctl -s all | peers | Sensors | status yes... while on the topic. I didn't find an explanation of the header in ntpctl(8). I'm curious

Re: chacha20 cipher_algbits is 0

ts = SSL_CIPHER_get_bits(cipher, &cipher_algbits); > > If LibreSSL returns 0 for algbits, that's an artifact of their > implementation. -Tim * http://marc.info/?l=postfix-users&m=143251444523619&w=2

chacha20 cipher_algbits is 0

.2 with cipher ECDHE-RSA-CHACHA20-POLY1305 (256/0 bits)". I'm wondering what the 0 part in 256/0 bits mean. I've read it's "the number of bits actually used" vs. "the number of bits the algorithm is based on", but this sounds confusing to me. Can someone maybe clarify? Thanks, Tim

syslogd doesn't daemonize without inet6 since 5.7

I've upgraded some 5.6 boxes to 5.7 and found out that syslogd doesn't start in daemon mode if there is no inet6 address configured (i.e. "-inet6" in hostname.*). Starting syslogd either in the foreground with -d or binding on inet only with -4 makes it start again. -Tim

Re: [Patch]: calendar entry for King's Birthday in Netherlands

Paul de Weerd (2015-05-01 21:16 +0200): > Note that the 27th of April is actually both "Koningsdag" (King's Day) > and our king's birthday. You're right, of course. As the day is commonly referred to as "King's Day", I suggested that. > | one more question though: > | > | calendar.holiday:12

Re: [Patch]: calendar entry for King's Birthday in Netherlands

Einfach Jemand (2015-05-01 03:22 +0200): > According to > > http://en.wikipedia.org/wiki/Koningsdag > > the Netherlands are no longer celebrating the Queen's Birthday on > April 30 but the King's birthday on April 27 since 2014. > > The patch below does not reflect the fact that this holiday is

Re: i386 bsd.rd panic

Theo de Raadt (2015-04-26 16:53 +0200): > > Eivind Eide (2015-04-26 13:02 +0200): > > > I've been trying to update this -current machine with the bsd.rd from the > > > last 4 snapshots, > > > the last being from "Sun Apr 26 02:22:08 MDT 2015". > > > However this kernel immediately after reporting h

Re: i386 bsd.rd panic

Eivind Eide (2015-04-26 13:02 +0200): > I've been trying to update this -current machine with the bsd.rd from the > last 4 snapshots, > the last being from "Sun Apr 26 02:22:08 MDT 2015". > However this kernel immediately after reporting how much ram I have panics > with this message: > > fatal pr

Re: C++14 and C11 support sucks in OpenBSDs default compiler - any chance of Clang in base?

Dmitrij D. Czarkoff (2015-03-27 09:29 +0100): > Some Developer said: > > So what are the reasons why OpenBSD has so far shunned Clang and LLDB? Is it > > missing some extra security features that the OpenBSD team have added to > > their version of GCC? > > First and foremost it is missing platform

Re: bypass xlock/slock

Alexandre Ratchov (2015-03-09 11:30 +0100): > On Mon, Mar 09, 2015 at 10:25:28AM +0100, Alex Greif wrote: > > Hi, > > > > I am currently trying to find a solution to lock my desktop system (openbsd > > 5.6, amd64), but with the following steps I can always bypass xlock or > > slock: > > > > - run

Re: Quick OpenBSD/thinkpad question

Dmitrij D. Czarkoff (2015-03-06 23:01 +0100): > m...@jeremiahford.com said: > > My question is; Does anyone have any insight into these claims, whether it > > be proving or disproving? > > With amount of firmware in laptops these days I guess it is effectively > impossible to disprove backdoor cla

Re: From the military propaganda department

deserve neither liberty nor safety." > Trees need iron. Blood serves fine. Ask Thomas Jefferson ... > Good on you for taking an hour out of your life. Give me something > more than a hypothesis of how bad things are happening that might be > violations and how people that I care about are affected on the > ground > ... > Get arrested or GTFO ... > > I'm not Armorican. I read your constitution and your bill of rights > and study your law and your country. > I've stood up to LEO here. Describe your experience. > Light on the hill. Get the fuck up there. > > Fantastic points, I'd love to hear more, from both sides. --Tim

Re: Netatalk (Apple Filing Protocol) daemon replies "Something wrong with the volume's CNID DB"

On May 1, 2013 5:54:32 AM EDT, Yoshihisa Matsushita said: > From: Tim Leonard > Subject: Netatalk (Apple Filing Protocol) daemon replies "Something wrong > with the volume's CNID DB" > Date: Tue, 30 Apr 2013 22:36:40 -0400 > >> I'm having a problem u

Netatalk (Apple Filing Protocol) daemon replies "Something wrong with the volume's CNID DB"

I'm having a problem using Apple Filing Protocol (AFP) services provided by netatalk on OpenBSD, from an OS X Mountain Lion client. I have OpenBSD 5.2 running on an old iMac, with the netatalk-2.2.3p0 package. I made no changes to the default configuration beyond editing /etc/netatalk/afpd.conf to

How can I turn off the LCD console backlight on an iMac?

Is there any way of turning off an iMac's LCD console backlight, with OpenBSD 5.2 running on an iMac (2006)? (The video card died so the machine is running as a server in console mode, and I don't want the backlight to burn out.) If this were a PowerPC Mac, OpenBSD/macppc could do it, with ws

Re: no sound azalia(4)

Please try again with SIO_DEBUG=1. For the record, that should be SNDIO_DEBUG. I don't see any spkr variables in the mixerctl output you posted previously. That may be an indication of the root of your problem. Do you get sound from headphones? Also, to rule out OpenBSD-specific problems, you may want to try a live CD with Linux or similar and see if you get sound there. Regards, Tim

Re: add a daemon user

On Tuesday 29 Jan 2013 21:52:46 Alexander Hall wrote: > On 01/29/13 18:23, Tim Hoddy wrote: > > On Tuesday 29 Jan 2013 21:06:11 Wesley M.A. wrote: > >> To add a "daemon user" like for example _nginx : > >> > >> useradd -L daemon -d /var/empty -s /

Re: add a daemon user

On Tuesday 29 Jan 2013 21:06:11 Wesley M.A. wrote: > To add a "daemon user" like for example _nginx : > > useradd -L daemon -d /var/empty -s /sbin/nologin -g =uid _nginx > > Is this enough ? Is there a '-L' option?

Re: Unified BSD?

don't need a "unified" BSD; BSD is already unified in the ways that matter. Open source and meritocracy see to that. Tim -- Tim Larson Software Engineer [Proxibid]<http://www.proxibid.com/> e: tim.lar...@proxibid.com p: 877-505-7770 d: 402-505-7770 This email and any fil

Re: OpenBSD's webpage desing

On Thu, 28 Jun 2012 11:09:37 -0700 patrick keshishian wrote: > On Thu, Jun 28, 2012 at 10:53 AM, Tim Howe wrote: > > On Thu, 28 Jun 2012 10:26:52 +0200 > > Marc Espie wrote: > > > >> If you guys are serious about anything, go look at ports-readmes. > >>

Re: OpenBSD's webpage desing

On Thu, 28 Jun 2012 10:26:52 +0200 Marc Espie wrote: > If you guys are serious about anything, go look at ports-readmes. > > It does extract information from the ports tree, and creates readmes for > all ports. > > Currently, it's a static port. It could very well be a dynamic application. > >

Re: (Kinda O.T.) Digital Millennium Copyright Act used to censor hardware specifications

On Thu, 31 May 2012 21:19:23 +0200, Theo de Raadt wrote: > > On Thu, 31 May 2012 18:25:14 +0200, Theo de Raadt wrote: > > > Shame on you. > > > > > > Don't you know that linking to links that link to links that have DCMA'd > > > is a crime? > > > > > > Enjoy the bars. > > > > I'm sure quoting ma

Re: (Kinda O.T.) Digital Millennium Copyright Act used to censor hardware specifications

On Thu, 31 May 2012 18:25:14 +0200, Theo de Raadt wrote: > Shame on you. > > Don't you know that linking to links that link to links that have DCMA'd > is a crime? > > Enjoy the bars. I'm sure quoting mails that link to links that link to DCMA'd links is a felony, too. Perhaps we'll be sharing

Re: (Kinda O.T.) Digital Millennium Copyright Act used to censor hardware specifications

On Thu, 31 May 2012 17:12:58 +0200, Ted Unangst wrote: > On Thu, May 31, 2012 at 11:11, Brett wrote: > > > Pursuant to a rights owner notice under the Digital Millennium Copyright > > Act (DMCA), the Wikimedia Foundation acted under the law and took down and > > restricted the content in question.

USB Storage hangs on H8SSL with 5.1

On a Supermicro H8SSL board I started using, moving non-trivial amounts of data to a USB flash drive hangs. If the USB has an OpenBSD fs, it just hangs the cp operation (or whatever) and makes other access to the drive hang. With a msdos fs it can completely hang the system to the point that I ca

Re: hw.sensors for arc no longer works with 5.0?

On Wed, 1 Feb 2012 12:44:43 -0800 Tim Howe wrote: > [...] > In anything before 5.0, I am able to monitor the RAID status via snmp > at OPENBSD-SENSORS-MIB::sensorStatus. The 5.0 boxes are returning > unknown status (and the device IOD has changed from 3 to 46). > > sysctl r

hw.sensors for arc no longer works with 5.0?

I have a number of servers with almost identical hardware (Supermicro MB, Areca 1210 or 1220 RAID card). These span from OpenBSD 4.5 to 5.0. In anything before 5.0, I am able to monitor the RAID status via snmp at OPENBSD-SENSORS-MIB::sensorStatus. The 5.0 boxes are returning unknown status (and

Leafpad: Sometimes Undo currupted document

Hello. This is OpenBSD4.9, but I believe latest Leafpad still has this problem. $ pkg_info leafpadInformation for inst:leafpad-0.8.17p4 Sometimes Undo currupted document, and this was shown in xterm. > (leafpad:5025): GLib-GObject-WARNING **: gsignal.c:2354: handler `238' of instance `0x7df450d8'

Re: OpenSMTPd and Monit.

is currently > > check host localhost with address www.xxx.yyy.zzz > start program = "/usr/libexec/smtpd -f /etc/mail/smtpd.conf" I'm not familiar with Monit, but /usr/libexec/smtpd is a directory, not an executable. You may wish to try /usr/sbin/smtpd instead. Regards, T

Areca alarm silencing with bioctl

I have Areca 1210 and 1220 RAID Controllers in a number of OpenBSD servers. The arc man page says "arc supports alarm control and monitoring of volumes configured on the controllers via the bio(4) interface and the bioctl(8) utility." However, when I try to silence an alarm, I get the following:

Re: SMTPD broken after latest update

On Sat, 02 Jul 2011 09:53:05 +0200, Gilles Chehade wrote: > hi, > > Just passing by, I will be able to commit this diff Monday, i'm without a > workstation until then, don't worry Tim I haven't forgotten your diff ;-) > > Gilles I never doubted it for a second. ;)

Re: SMTPD broken after latest update

After today's update, > Mail delivered to this address (h...@osvaldobarrera.com.ar), is > passed on to dovecot, but dovecot with recipient > "osvaldobarrera.com...@osvaldobarrera.com.ar" (domain@domain). It is a bug in smtpd. I have run into it as well. The below diff (also

Re: nroff

On Wed, 22 Jun 2011 16:52:17 +0200, Friedrich Locke wrote: > i have installed openbsd 4.9 and i am trying to compile ucspi-tcp-0.88 > with a ssl patch, but the compilation process fails due to not finding > a program called nroff. > > Previous version of OpenBSD seems to have installed nroff. Does

  1   2   3   >