Hello everyone,
I have been working on enabling IPv6 access for OpenVPN clients by
encapsulating IPv6 within IPv4, allowing clients without native IPv6
to reach IPv6 content via the server’s public IPv6.
The ULA address:
-> fdbb:e761:c9ec::/64
Example of address that a client gets assigned from t
Get something like an Optiplex 7050. Put an extra ow two SSD, they are
cheap now. I'm multibooting Windows, Arch Linux, OpenBSD and FreeBSD
on that machine. Everything works out of the box in OpenBSD.
https://www.hardware-corner.net/desktop-models/Dell-OptiPlex-7050-SFF/
El mié, 5 mar 2025 a las
On 3/5/25 05:26, sylv...@saboua.me wrote:
I'm thinking of purchasing parts to an all-purpose *BSD personal computer.
My budget is ~€3000 (+1k). Ideally I would like it not too noisy while
staying as cool as possible (I live in a studio), and dual screen monitor
(I'm thinking of one HD screen to a
> I'm thinking of purchasing parts to an all ...
I thought hacking is done on other people's computers, so why should
you need to buy one? :)
Hello,
> I seem to be getting by ok on the laptop where I dual-boot without too
> much knowledge of the specifics of Windows boot. rEFInd made it a lot
> easier than it might otherwise have been though. (I admit I will be
> crossing fingers next time I run sysupgrade with the recent changes to
> E
On 2025-03-06, Nick Holland wrote:
> IF you are looking for one computer to run multiple OSs, I think it is safe
> to say you won't be doing any serious work, just dinking around.
I disagree. Having, say, a dual-boot Windows install to run, say, car
diagnostics software, vendor tools to configure
> > I'm thinking of purchasing parts to an all-purpose *BSD personal computer.
> > My budget is ~€3000 (+1k).
That is absurd.
You are buying a PC.
On 05.03.2025 11:26, sylv...@saboua.me wrote:
I'm thinking of purchasing parts to an all-purpose *BSD personal computer.
My budget is ~€3000 (+1k). Ideally I would like it not too noisy while
staying as cool as possible (I live in a studio), and dual screen monitor
(I'm thinking of one HD screen
You can run BSD on a toaster.
Genuine question but how come you're aiming to spend so much on a PC that
you can't really do much on? Not hating on BSD at all but using it as a
daily would be fricken hell. Are you just looking for an uber secure,
lightweight and unfriendly OS?
On Wed, Mar 5, 2025,
Hello,
> I'm thinking of purchasing parts to an all-purpose *BSD personal
> computer. My budget is ~€3000 (+1k). Ideally I would like it not too
> noisy while staying as cool as possible (I live in a studio), and
> dual screen monitor (I'm thinking of one HD screen to also watch
> movies on and on
I'm thinking of purchasing parts to an all-purpose *BSD personal computer.
My budget is ~€3000 (+1k). Ideally I would like it not too noisy while
staying as cool as possible (I live in a studio), and dual screen monitor
(I'm thinking of one HD screen to also watch movies on and one square
screen
I am now able to make it work, though it was through trial and errors, so I'll
appreciate any help in understanding why my solution works!
If my configuration is like this, it all works fine:
block all
pass out inet all keep state
# Config to allow virtual Machine VMM to access the int
04-psyche.tot...@icloud.com writes:
> Hi all,
>
> I have setup a virtual machine on my openbsd box, following the guide
> https://www.openbsd.org/faq/faq16.html#VMMnet
>
> I have trouble configuring pf to give the the VM access to the internet.
>
> If my /etc/pf.conf contains the following lines,
Hi all,
I have setup a virtual machine on my openbsd box, following the guide
https://www.openbsd.org/faq/faq16.html#VMMnet
I have trouble configuring pf to give the the VM access to the internet.
If my /etc/pf.conf contains the following lines, I don't have access to the
internet from the VM:
I am usinOpenBSD 7.6 GENERIC.MP#338 amd64
I have a 1 TB disk I formatted under Linux. I wanted to change the
disklabel from:
sd1> p
OpenBSD area: 64-1953525104; size: 1953525040; free: 0
#size offset fstype [fsize bsize cpg]
c: 19535251670 unus
Thanks for the tip!
On Tue, Oct 29, 2024 at 1:54 PM Kenneth Gober wrote:
> On Tue, Oct 29, 2024 at 3:42 PM nisp1953 wrote:
>
>> I am usinOpenBSD 7.6 GENERIC.MP#338 amd64
>>
>> I have a 1 TB disk I formatted under Linux. I wanted to change the
>> disklabel from:
>> [...]
>> sd1> m i
>> offset: [
On Tue, Oct 29, 2024 at 3:42 PM nisp1953 wrote:
> I am usinOpenBSD 7.6 GENERIC.MP#338 amd64
>
> I have a 1 TB disk I formatted under Linux. I wanted to change the
> disklabel from:
> [...]
> sd1> m i
> offset: [64]
> size: [1953525040]
> FS type: [unknown] ext2fs
> sd1*> p
> OpenBSD area: 64-1953
git README
> [https://git.zx2c4.com/cgit/tree/README] and comiled cgit with lua
> support using:
>
> `gmake LUA_PKGCONFIG=luajit CFLAGS="-I/usr/local/include/luajit-2.0" install`
>
> However, when I try to run the `cgit.cgi` with the following OpenBSD
> `httpd` con
ua
support using:
`gmake LUA_PKGCONFIG=luajit CFLAGS="-I/usr/local/include/luajit-2.0" install`
However, when I try to run the `cgit.cgi` with the following OpenBSD
`httpd` configuration, it doesn't work as expected:
```
server "git.example.com" {
listen on * tls por
s Exp $
# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more inform
Den fre 17 maj 2024 kl 08:56 skrev Pascal Deveaux :
>
> The command
> # chown root:_smtpd /etc/mail/secrets
> Return : group smtpd doesn't exist
The error message doesn't match the command at all, and the _smtpd
group has been in the group file for some 15 years.
Look for misspellings somewhere. O
The command
# chown root:_smtpd /etc/mail/secrets
Return : group smtpd doesn't exist
17 mai 2024 10:32:19 Otto Moerbeek :
> On Fri, May 17, 2024 at 08:12:27AM +0200, fr...@lilo.org wrote:
>
>> How to forward outgoing mail to a remote SMTP server with smtpd?
>>
>> I found this page, but it's out
On 17/05/24 11:42, fr...@lilo.org wrote:
How to forward outgoing mail to a remote SMTP server with smtpd?
I found this page, but it's out of date I think.
https://romanzolotarev.com/openbsd/smtpd-forward.html
Tks
Pascal
The config looks fine,
use: man smtpd.conf
-James
On Fri, May 17, 2024 at 08:12:27AM +0200, fr...@lilo.org wrote:
> How to forward outgoing mail to a remote SMTP server with smtpd?
>
> I found this page, but it's out of date I think.
> https://romanzolotarev.com/openbsd/smtpd-forward.html
>
> Tks
> Pascal
man smtpd.conf, first exmaple
How to forward outgoing mail to a remote SMTP server with smtpd?
I found this page, but it's out of date I think.
https://romanzolotarev.com/openbsd/smtpd-forward.html
Tks
Pascal
On Tue May 14 18:11:16 2024 Страхиња Радић wrote:
> Antipatterns are bad. I don't mean the ellipsis in `ls -l ...`. I mean
> things like
>
> cat file | grep hello | cat | sed 's/hello/world/g' | cat - > output
>
> for file in `echo `ls *` `; do echo $file; done
>
> ls -l | awk '{ print $5 }'
Дана 24/05/14 11:52AM, Walter Alejandro Iglesias написа:
> I learned about the convenience of adding the '-r' option in the "while
> read" loop many years ago when I was writing a script to convert roff to
> html, the problem aroused with the backslash in roff comments (.\").
That's more or less t
On Tue May 14 11:11:33 2024 wrote:
> When `while ... read ...` idiom is used, it is advisable to clear IFS
> to turn off field splitting, and use -r to avoid interpretation of
> backslash sequences in the input:
>
> while IFS= read -r dir; do # ...
>
> Back to parsing the output of ls(1) (
Andreas Kähäri writes:
i'm not sure why you're addressing this to me, as i'm not the
OP.
It's addressed to the thread in general.
Your response quoted me, then made use of the word 'you'. Which
you - and yes, i mean you, Andreas, specifically - have again done
below:
That said, yes, min
On Sun May 12 21:50:12 2024 Martin Schröder wrote:
>
> If a line begins with "- " (dash, space) or "+ " (plus, space),
> then the type of rule is being explicitly specified as an exclude
> or an include (respectively). Any rules without such a prefix are
> taken to be an include.
I'd read
Am So., 12. Mai 2024 um 21:18 Uhr schrieb Walter Alejandro Iglesias
:
> On Sun May 12 20:58:43 2024 Andreas Kähäri wrote
> > With rsync(1):
> >
> > rsync -n -aim --delete-excluded \
> > --include-from=list \
> > --include='*/' \
> > --exclude='*' \
>
On Sun May 12 20:58:43 2024 Andreas Kähäri wrote
> With rsync(1):
>
> rsync -n -aim --delete-excluded \
> --include-from=list \
> --include='*/' \
> --exclude='*' \
> source/ target
>
I don't understand what your command does exactly.
On Sun, May 12, 2024 at 01:40:25PM +0200, Walter Alejandro Iglesias wrote:
> > Unix development. Given that i've been using computers for a few
> > decades, i still instinctively don't use spaces in filenames, even
> > though they're very much allowed. But of course, that's not what
> > most of
Andreas Kähäri writes:
The external env(1) utility will only ever list environment
variables.
The IFS variable does not need to be exported as an environment
variable
as it's only ever used by the current shell (and any new shell
would
reset it).
To list all variables in a shell, use the bu
Страхиња Радић writes:
Дана 24/05/12 07:31PM, Alexis написа:
Omitting -r as a parameter to read would make it interpret
backscape
sequences, which would make the directory name in the filesystem
different than the one command/script operates on, which is most
likely undesired (unless the
Дана 24/05/12 07:31PM, Alexis написа:
> i wondered about that in this context. If people putting odd / inappropriate
> things in directory names are a concern ("weird characters", as you wrote
> upthread), what do we do about the possibility of someone having consciously
> put e.g. a \t in a direct
On Sun, May 12, 2024 at 08:08:17PM +1000, Alexis wrote:
> Andreas Kähäri writes:
>
> > Well, that's one way to control this trainwreck of a script; just say
> > that any name containing "inappropriate" characters aren't allowed!
> >
> > May I ask why you don't simply use rsync(1) (or even openrs
On Sun, May 12, 2024 at 07:56:55PM +1000, Alexis wrote:
> Andreas Kähäri writes:
>
> > The ksh(1) shell sets IFS by default to a space, tab and a newline
> > character.
>
> Those are the defaults used when IFS is not set _as a variable_. If you log
> in, and run env(1), in the absence of any man
On Sun May 12 13:22:13 2024 Alexis wrote:
> Andreas Kähäri writes:
> > Well, that's one way to control this trainwreck of a script;
> > just say
> > that any name containing "inappropriate" characters aren't
> > allowed!
> >
> > May I ask why you don't simply use rsync(1) (or even
> > openrsync
On Sun, May 12, 2024 at 07:31:41PM +1000, Alexis wrote:
> Страхиња Радић writes:
>
> > When `while ... read ...` idiom is used, it is advisable to clear IFS to
> > turn off field splitting
>
> *nod* Fair point; it's not set by default, so i didn't think to note that
> any manual setting of it sh
On Sun May 12 11:40:05 2024 tux2bsd wrote
> Hi Walter
>
> mktemp makes temporary unique filenames like this:
>
> delete_list=$(mktemp)
> source_list=$(mktemp)
> target_list=$(mktemp)
> # Do your code. If you want to keep something you do
> # that appropriately then:
> rm $delete_list $source_list
Andreas Kähäri writes:
Well, that's one way to control this trainwreck of a script;
just say
that any name containing "inappropriate" characters aren't
allowed!
May I ask why you don't simply use rsync(1) (or even
openrsync(1) from
the OpenBSD base system)?
i'm not sure why you're addres
Andreas Kähäri writes:
The ksh(1) shell sets IFS by default to a space, tab and a
newline
character.
Those are the defaults used when IFS is not set _as a
variable_. If you log in, and run env(1), in the absence of any
manual setting of IFS in .kshrc or whatever, you'll see that IFS
is no
Страхиња Радић writes:
When `while ... read ...` idiom is used, it is advisable to
clear IFS
to turn off field splitting
*nod* Fair point; it's not set by default, so i didn't think to
note that any manual setting of it should be overridden for this.
and use -r to avoid interpretation of
> What about the following, better?
>
> -
> # Remove files from target directory
> date=$(date +%H%M%S)
> delete_list=/tmp/delete_$date
> source_list=/tmp/source_$date
> target_list=/tmp/target_$date
Hi Walter
mktemp makes temporary unique filenames li
Дана 24/05/12 06:17PM, Alexis написа:
> To deal with spaces etc., one could possibly use something along the lines
> of the following kludge; it assumes that \n is relatively unlikely to be
> found in a directory name, and that the directories in $dirs can be
> separated by \n.
>
> cd "$target" &
On Sun May 12 10:07:30 2024 Страхиња Радић wrote:
> A few notes:
>
> - You don't need a backslash after a pipe (|) or a list operator (||
> and &&) - a line ending with a pipe is an incomplete pipeline. So
> (with added quoting):
>
> diff "$source_list" "$target_list" |
> awk '/^> /
Страхиња Радић writes:
Lapsus: the variable dirs should not be quoted here if it
contains more
than one directory to be passed to find. It is vulnerable to
directory
names containing spaces and weird characters, however.
So:
cd "$target" &&
find $dirs | sort | uniq > "$target_l
Дана 24/05/11 10:36PM, Страхиња Радић написа:
> cd "$target" &&
> find "$dirs" | sort | uniq > "$target_list"
Lapsus: the variable dirs should not be quoted here if it contains more
than one directory to be passed to find. It is vulnerable to directory
names containing spaces and weird c
Дана 24/05/11 07:41PM, Walter Alejandro Iglesias написа:
> Today I realized that the loop above is not necesary:
>
> ---
> dirs=$(echo "$files" | grep '/$')
>
> cd && find $dirs | sort | uniq > $source_list
> cd $target && find $dirs | sort
On Sat May 11 20:20:04 2024 "Robert B. Carleton" wrote:
> Another tool you might want to take a look at is rdist(1). It's limited
> in some ways, but is a native capability to OpenBSD. It has a long
> history.
>
I've never used rdist(1) either, I will learn about it. Thanks Robert
for mention it
Walter Alejandro Iglesias writes:
> On Fri May 10 08:36:50 2024 Walter Alejandro Iglesias wrote
>> Then I do something like this (simplified for clartiy):
>>
>> [...]
>>
>> dirs=$(echo "$files" | grep '/$')
>>
>> for i in $dirs ; do
>> find $source/$i | sed 's#'$source'##' | sort | uniq > $s
On Fri May 10 08:36:50 2024 Walter Alejandro Iglesias wrote
> Then I do something like this (simplified for clartiy):
>
> [...]
>
> dirs=$(echo "$files" | grep '/$')
>
> for i in $dirs ; do
> find $source/$i | sed 's#'$source'##' | sort | uniq > $source_list
> find $target/$i | sed 's#'
On Fri May 10 08:16:32 2024 "Robert B. Carleton" wrote:
> I'm going to try using pax(1) in copy mode (-rw) as an alternative to
> rsync and cpio when it's local filesystems. I hadn't considered that
> until recently.
This is my dirty solution to add pax a "delete on target" functionality.
I save
Rsync. I also have a root directory in /home to keep local stuff. This is
the same for about 20 machines running obsd and is also distributed by
rsync. Since it is in home, it survives upgrades. Various shell scripts in
/home/root/etc are used to manage the system.
On Wed, May 8, 2024, 11:08 Jan
On May 07 22:15:27, olp...@yahoo.ca wrote:
> I was wondering which programs you use for replicating/copying/syncing
> environments/configs on your openbsd systems with between your desktops (home
> or work) and laptops?
git
> Do you also maintain installeded/removed packages in some standard wa
duplicity
On 2024-05-07 9:09 p.m., Matthew Ernisse wrote:
On Wed, May 08, 2024 at 12:25:43AM +0100, Jo MacMahon said:
I'm interested if anybody has solutions using just the base system
I've had a set of functions in my .profile for about 15 years
that keeps large parts of my home directory av
On 5/7/24 19:25, Jo MacMahon wrote:
I'm interested if anybody has solutions using just the base system - I would
want something like etckeeper or git that was a true version control system,
rather than dump(8)/restore(8) which are backup systems. I'm idly considering
learning CVS for it, and I
On Wed, May 08, 2024 at 12:25:43AM +0100, Jo MacMahon said:
I'm interested if anybody has solutions using just the base
system
I've had a set of functions in my .profile for about 15 years
that keeps large parts of my home directory available and in
sync across Linux, macOS and OpenBSD systems
I'm interested if anybody has solutions using just the base system - I would
want something like etckeeper or git that was a true version control system,
rather than dump(8)/restore(8) which are backup systems. I'm idly considering
learning CVS for it, and I suppose if I'm going to become a true
On 07.05.2024 16:08, Martin Kjær Jørgensen wrote:
Hello,
I was wondering which programs you use for replicating/copying/syncing
environments/configs on your openbsd systems with between your desktops (home
or work) and laptops?
Example programs for this could be syncthing, stow, chezmoi, etc.
Stefan Moran writes:
> dump(8) and restore(8) also worth mentioning; I'm particularly fond of
> restore(8)'s interactive mode that lets you cherrypick what you want to
> import.
I agree. My backups are mostly dump(8) and rsync(1). Out of habit, I've
used cpio(1) in copy mode (-p) for copying fil
rdist
On Wednesday, May 8, 2024 at 12:25:13 a.m. GMT+9, Martin Kjær Jørgensen
wrote:
Hello,
I was wondering which programs you use for replicating/copying/syncing
environments/configs on your openbsd systems with between your desktops (home
or work) and laptops?
Example programs f
On 5/7/24 1:09 PM, Страхиња Радић wrote:
Дана 24/05/07 04:08PM, Martin Kjær Jørgensen написа:
I was wondering which programs you use for
replicating/copying/syncing environments/configs on your openbsd
systems with between your desktops (home or work) and laptops?
git(1), rsync(1).
git push a
dump(8) and restore(8) also worth mentioning; I'm particularly fond of
restore(8)'s interactive mode that lets you cherrypick what you want to
import.
Дана 24/05/07 04:08PM, Martin Kjær Jørgensen написа:
> I was wondering which programs you use for
> replicating/copying/syncing environments/configs on your openbsd
> systems with between your desktops (home or work) and laptops?
git(1), rsync(1).
Hello,
I was wondering which programs you use for replicating/copying/syncing
environments/configs on your openbsd systems with between your desktops (home
or work) and laptops?
Example programs for this could be syncthing, stow, chezmoi, etc.
Do you also maintain installeded/removed packages
Hi Michael,
On Tue, 16 Jan 2024 12:04:02 +0100
Michael Hekeler wrote:
> > I'd like to setup Freshrss to work under httpd and FastCGI.
> > Freshrss uses Php.
> ^^^
> You need to deploy that script with php-fpm NOT via slowcgi(8)
> See the file php-XX in /usr/local/share/doc/pkg-
Perhaps it would be easier for someone to help you if you do as this
page suggests:
https://www.openbsd.org/report.html
Den mån 22 jan. 2024 kl 15:24 skrev :
>
> Hi, I'm trying to get my RX 6600 to work under OpenBSD, and am failing
> miserably.
> No matter what I put into /etc/X11/xorg.conf, it
pid0:smu_v11_0_check_fw_version *WARNING* SMU driver if version not
> matched"
> I can upload my full dmesg if necessary, but I'd like to just know if I'm
> even doing the Xorg configuration right.
>
Greetings,
Have you tried running X11 without an xorg.conf? I've
amdgpu".
I have ran fw_update and it says that everything is already installed.
There's one strange line in my dmesg, but I'm not sure if it's important:
"drm:pid0:smu_v11_0_check_fw_version *WARNING* SMU driver if version not
matched"
I can upload my full dmesg if necessary, but I'd like to just know if I'm even
doing the Xorg configuration right.
> I'd like to setup Freshrss to work under httpd and FastCGI.
> Freshrss uses Php.
^^^
You need to deploy that script with php-fpm NOT via slowcgi(8)
See the file php-XX in /usr/local/share/doc/pkg-readmes/ for doing this
(where XX is your installed version).
> As per the document
t (lots of them) couldn't make this work.
The SSL certificate and key are self-signed.
The last configuration I've tried was to be able to access FreshRSS
through http://myserver.tlc/freshrss/p so that a rewrite could be done
later from http://myserver.tlc/freshrss/ to
http://myserver.t
(Sorry, I just realized I replied to just your email address, replying
again to the mailing list this time.)
On 2023年08月16日 10:05, Stuart Henderson wrote:
> wireguard-tools is not required, everything you need for wg(4) is in
> the base OS.
Oh, I didn't know that.
In that case, valid point.
> Af
wrote:
> > 2. Please have a look at the configuration I have implemented.
> >
> > pass in quick on wg0 proto tcp from 10.0.8.3/32 to any port {22 80}
> > block in on wg0 proto tcp from any to any port {22 80}
> > block in quick on bwfm0 proto tcp from any
On 2023-08-14, SOUBHEEK NATH wrote:
> 2. Please have a look at the configuration I have implemented.
>
> pass in quick on wg0 proto tcp from 10.0.8.3/32 to any port {22 80}
> block in on wg0 proto tcp from any to any port {22 80}
> block in quick on bwfm0 proto tcp
On Mon, Aug 14, 2023 at 05:54:55PM +0530, SOUBHEEK NATH said:
2. Please have a look at the configuration I have implemented.
pass in quick on wg0 proto tcp from 10.0.8.3/32 to any port {22 80}
block in on wg0 proto tcp from any to any port {22 80}
block in quick on bwfm0 proto tcp
Hello,
The solution you both provided, worked well.
1. I do not use nano! I use the vi editor for my tasks.
2. Please have a look at the configuration I have implemented.
pass in quick on wg0 proto tcp from 10.0.8.3/32 to any port {22 80}
block in on wg0 proto tcp from any to any
On 2023年08月13日 12:17, Stuart Henderson wrote:
> >https://www.vultr.com/docs/install-wireguard-vpn-server-on-openbsd-7-0/
>
> what a mess of things from the base OS and unneeded third-party tools.
>
List of tools:
wireguard-tools (required), nano (vim would have been enough), and the
rest is e
the local area network. However, I
>believe that in the future, I can use the same setup and pf rule to
>remotely access the server's ports exclusively through the wireguard
>VPN from outside the network.
> 5. Your configuration is functioning correctly, allowing only devices
>Based on my understanding of the OpenBSD PF-Packet filtering document
>(https://www.openbsd.org/faq/pf/filter.html), the intention of this
>pf rule is to allow only the IP address 10.0.8.4 to access ports 22
>and 80. However, currently both machines with IP addresses 10.0.8.2
>
within the local area network. However, I
believe that in the future, I can use the same setup and pf rule to
remotely access the server's ports exclusively through the wireguard
VPN from outside the network.
5. Your configuration is functioning correctly, allowing only devices
withi
wg genpsk > preshared.key
>
> On 2023年08月12日 20:30, SOUBHEEK NATH wrote:
> > Dear OpenBSD Mailing List Community,
> >
> > I hope this email finds you well. I am writing to seek your expertise
> > and guidance regarding a Wireguard VPN configuration and pf
only do this on your peers):
wg genpsk > preshared.key
On 2023年08月12日 20:30, SOUBHEEK NATH wrote:
> Dear OpenBSD Mailing List Community,
>
> I hope this email finds you well. I am writing to seek your expertise
> and guidance regarding a Wireguard VPN configuration and pf rules on
Dear OpenBSD Mailing List Community,
I hope this email finds you well. I am writing to seek your expertise
and guidance regarding a Wireguard VPN configuration and pf rules on my
OpenBSD 7.3 system. I have successfully set up a Wireguard VPN using
the provided interface configuration, and the VPN
t there's a gap between "less bad" and "good". No firewall can
> fix this.
>
> > I maintained rc.conf at its default configuration, including disabled
> > ntpd, smtpd, sndiod, sshd, then deleted sshd binary file and related
> > library directory, as well
On 2023-04-26, jonathon575 wrote:
> The services in the file rc.conf are kept in its default state which is
> mostly disabled. the binary files sshd, portmap, ntpd are deleted from the
> /bin directory. Other binary files telnet, ssh, scp, sftp are removed to
> prevent any file transfer from th
On 2023-04-26, jonathon575 wrote:
>>> #What firewall was compromised - your OpenBSD based firewall? ... hope you
>>> did a fresh
>>> install from scratch on this device...
>>>
>>> Yes, it was OpenBSD based firewall 7.1. Fresh install from scratch didn't
>>> help as the attack appeared again.
In
re's a gap between "less bad" and "good". No firewall can
fix this.
I maintained rc.conf at its default configuration, including disabled
ntpd, smtpd, sndiod, sshd, then deleted sshd binary file and related
library directory, as well as deleted the portmap file. However, the
its default configuration, including disabled ntpd,
smtpd, sndiod, sshd, then deleted sshd binary file and related library
directory, as well as deleted the portmap file. However, the penetration is
still happening. IPS is not helping. DHCP is enabled and configured for LAN.
I do have few
its default configuration, including disabled ntpd,
smtpd, sndiod, sshd, then deleted sshd binary file and related library
directory, as well as deleted the portmap file. However, the penetration is
still happening. IPS is not helping. DHCP is enabled and configured for LAN.
I do have few
On 2022-12-05, Jelle Jan Rijnboutt wrote:
> Anyone know if it is possible to set dpd_check_interval in iked.conf
> only for some keying policies? Active DPD is causing problems for one
> connection but I'd like to keep it enabled for the rest.
Currently there's only a global config variable for
Hi,
Anyone know if it is possible to set dpd_check_interval in iked.conf
only for some keying policies? Active DPD is causing problems for one
connection but I'd like to keep it enabled for the rest.
Regards,
Jelle Jan
mac2dev() {
# This got long
ifconfig | while IFS= read _line; do
if [[ "$_line" = [a-z]!(\ *):* ]]; then
_dev=${_line%%:*}
elif [[ "$_line" = *lladdr*$1* && $_dev != vlan* ]]; then
echo $_dev
Theo de Raadt writes:
> > > + for _hn in /etc/hostname.??:??:??:??:??:??; do
> > > + _mac=`echo $_hn | cut -c 15-31`
_mac=${_hn#/etc/hostname.}
> > > + _if=`ifconfig | grep -B 1 $_mac | head -n 1 | awk -F ": "
> > > '{print $1}'`
mac2dev() {
# This got long
ifcon
Theo de Raadt wrote:
> Thomas Bohl wrote:
>
> > Hello,
> >
> > > I suppose there is some argument that we should support hostname.MAC
> > > files
> >
> > Maybe a function in netstart right before vifscreate could be enough
> > to achieve this? I creates this diff, against stable for now thoug
Thomas Bohl wrote:
> Hello,
>
> > I suppose there is some argument that we should support hostname.MAC
> > files
>
> Maybe a function in netstart right before vifscreate could be enough
> to achieve this? I creates this diff, against stable for now though,
> as a test.
>
> Create a /etc/hostna
Hello,
I suppose there is some argument that we should support hostname.MAC
files
Maybe a function in netstart right before vifscreate could be enough to
achieve this? I creates this diff, against stable for now though, as a test.
Create a /etc/hostname.MAC file like you would create a /etc
lo,
>> >>
>> >> I have a Raspberry Pi 4 with 2 USB NIC’s attached.
>> >> One via USB3 (ure0), and the other via USB2 (ure1).
>> >> Since they are connected to different USB interfaces, I thaught
>> >> they would get configured the same way on
t;> One via USB3 (ure0), and the other via USB2 (ure1).
> >> Since they are connected to different USB interfaces, I thaught they
> >> would get configured the same way on reboot. But thatâs not the case.
> >> They became swapped on reboot.
> >> Is there
1 - 100 of 688 matches
Mail list logo
