Re: Blowfish still good enough?

Travies all crypto is breakable. The only demand on crypto is how long in takes to break it. If it takes more than 5 years the military usually thing its safe enough to use. Why, because after 5 years the information is usually out of data. But since you withhold so sensitive data I suggest you

Re: Blowfish still good enough?

please cut the trolling. the problem is not, whether or not blowfish is secure enough. the problem is that you HAVE NO FUCKING IDEA what you are talking about, category-wise. you can't tell why blowfish could be bad. you can't tell which one would be better, because you don't know why. you can't s

Re: Blowfish still good enough?

On Sat, Dec 31, 2005 at 11:26:50PM -0600, Travers Buda wrote: > Well I was contemplating the error of my ways on this thread. I realized > that I was wrong. Blowfish's implementation is secure and efficient... > from a programmer's point of view. > This can be applied to cryptography, and for my

CARP + Cisco Catalyst

Hello everyone. Let me say up front, I'm no Cisco guru, although I do believe I posess a sound understanding of networking involving multiple switches and the potential issues associated with doing so. I'm looking at a situation where with the introduction of two machines employing CARP to provid

Re: Blowfish still good enough?

Original message >Date: Sun, 01 Jan 2006 10:39:02 +0100 >From: Said Outgajjouft <[EMAIL PROTECTED]> >Subject: Re: Blowfish still good enough? >To: misc@openbsd.org > >Travies all crypto is breakable. The only demand on crypto is how long >in takes to break it. If it takes more than 5

XF4 build documentation

Hi there, Rebuilt XF4 the other day to try to track down why some clients were dying. I believe this page here to be innacurate: http://openbsd.org/faq/faq5.html#Xbld "XF86Setup, used to configure XF3 servers on the i386 platform (and ONLY the i386 platform) requires the "tcl" and "tk" packages

Re: ifstated.conf documentation problem?

On Sun, Jan 01, 2006 at 01:50:58AM +, Karl O. Pinc wrote: > man 5 ifstated.conf says: > > "The init block is used to initialise the state and is executed each > time the state is entered." > > But this does not seem to be true if you use 'init-state' to enter the > state. Or maybe there's so

Re: XF4 build documentation

On Sun, Jan 01, 2006 at 05:24:53PM +, Edd Barrett wrote: > Hi there, > > Rebuilt XF4 the other day to try to track down why some clients were dying. > I believe this page here to be innacurate: > http://openbsd.org/faq/faq5.html#Xbld > > "XF86Setup, used to configure XF3 servers on the i386 p

Re: CARP + Cisco Catalyst

>Hello everyone. > >Let me say up front, I'm no Cisco guru, although I do believe I posess a >sound understanding of networking involving multiple switches and the >potential issues associated with doing so. > >I'm looking at a situation where with the introduction of two machines >employing CARP t

getmail question

I have installed getmail in my quest for a console-based pop3 mail client. When I use getmail to retrieve email, getmail reports that the directory named "Maildir" is not a maildir. What makes a maildir different from a standard directory and how is it created? Should I try a different pop3 mail

Re: CARP + Cisco Catalyst

On Sun, 2006-01-01 at 18:06 +, Jason George wrote: > First, define the context of "great instability". Within the Cisco context? > The Linux LVS context? The CARP context? Overall? The Cisco and CARP context. Primarily noticed was that one of the three catalysts did appear to reboot or di

Re: getmail question

On Sun, Jan 01, 2006 at 01:15:39PM -0500, Dave Feustel wrote: > I have installed getmail in my quest for a console-based pop3 mail client. > When I use getmail to retrieve email, getmail reports that the directory > named > "Maildir" is not a maildir. What makes a maildir different from a standar

Re: XF4 build documentation

Edd Barrett wrote: > Hi there, > > Rebuilt XF4 the other day to try to track down why some clients were dying. > I believe this page here to be innacurate: > http://openbsd.org/faq/faq5.html#Xbld > > "XF86Setup, used to configure XF3 servers on the i386 platform (and ONLY the > i386 platform) req

OpenBGP / OpenBSD 3.8 on WRAP and VMware 5.5.1

OpenBGP really rocks - shall send a few six packs to Sechelt rapids for your next Hackaton there - thanks guys! My upstream IP transit provider was a bit surprised when he learned that his shining Cisco 7xxx is eBGP peering - incl. MD5 sums! - since about one month to a mighty old Compaq desktop

Re: ifstated.conf documentation problem?

On 01/01/2006 11:35:19 AM, Jon Hart wrote: The BNF seems to indicate that what you are trying to do is legal syntax-wise. At one point I had an ifstated.conf that did something similiar with a master "switch state" that was the target of init-state -- it would help determine what the correct in

Re: ifstated.conf documentation problem?

On Sun, Jan 01, 2006 at 01:50:58AM +, Karl O. Pinc wrote: > man 5 ifstated.conf says: > > "The init block is used > to initialise the state and is executed each time the > state is entered." > > But this does not seem to be true if you use 'init-state' > to enter the state. Or maybe there's

Re: XF4 build documentation

> Which platform were you building other than i386? > I was building on an i386. > XF4 is the entire X tree, both X.org and XF86v3. On i386, when you > build X, you build the entire X system, X.org's and XF86v3 servers. > "pick and chose" building what you build is not supported, thus you > alwa

Re: XF4 build documentation

Edd Barrett wrote: >> Which platform were you building other than i386? >> > > I was building on an i386. > >> XF4 is the entire X tree, both X.org and XF86v3. On i386, when you >> build X, you build the entire X system, X.org's and XF86v3 servers. >> "pick and chose" building what you build is

ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

Pass abuse makes BGPd & CARP not available to be use in most interesting places due to valid MAC address registrations requirements. One question on mac address for CARP interface. Is it possible to change the default mac address use by carp interface from the default: .5e00.0100 to .

Re: Blowfish still good enough?

On Sunday 01 January 2006 05:26, Joachim Schipper wrote: > You are right, *if* your data is of such a nature that it needs to be > kept secret for tens, likely hundreds of years. In that case, > however, extending the vnd(4) device to use, at least, AES as well > should be easy. (Not that I've look

multi-port NIC cards

Hello. Can anyone recommend a good multi-port NIC card e.g. 4-port, that works OK on OpenBSD with a good source supplier. Regards...Martin Just $16.99/mo. or less. dsl.yahoo.com

Re: Dead switch, a quick carp failover question

On Sun, Jan 01, 2006 at 12:28:42AM +, Karl O. Pinc wrote: [...] > Suppose I have 2 firewalls, one failing over to the > other with carp. (net.inet.carp.preempt=1 on > both firewalls.) Each has 3 interfaces, internet, > lan, and dmz. The dmz has, say, a webserver. > Now to connect the 2 firew

Re: multi-port NIC cards

Can anyone recommend a good multi-port NIC card e.g. 4-port, that works OK on OpenBSD with a good source supplier. This question was debated a few times in the archive already. So, far there isn't one great card that works very well that still available to purchase new these days. SK based

Re: multi-port NIC cards

On a related subject and please forgive any ignorance on my part, how would the interrupt load compare, between a multi-port NIC and the same number of ports via individual single port NICs? For example, a firewall with one WAN port and three LAN ports. One LAN (and of course the WAN port) port wo

Skull & Bones cursor in KDE

Is sudden appearance of a skull & bones cursor on the kde desktop associated with any exploits against kde? Thanks, Dave Feustel -- Lose, v., experience a loss, get rid of, "lose the weight" Loose, adj., not tight, let go, free, "loose clothing"

Re: multi-port NIC cards

Craig McCormick wrote: On a related subject and please forgive any ignorance on my part, how would the interrupt load compare, between a multi-port NIC and the same number of ports via individual single port NICs? You don't really have something to compare with. The process is way different ho

Re: Dead switch, a quick carp failover question

On 01/01/2006 03:09:03 PM, Marco Pfatschbacher wrote: On Sun, Jan 01, 2006 at 12:28:42AM +, Karl O. Pinc wrote: [...] > Suppose I have 2 firewalls, one failing over to the > other with carp. (net.inet.carp.preempt=1 on > both firewalls.) Each has 3 interfaces, internet, > lan, and dmz. The

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

> The situation is, one of the major peering point on the east coast of > the US, because of pass abuse of less then proper ISP, now required and > register access to the peering point based on mac address and needs to > be register with them, makes it a bit harder to replace your routers > wit

Re: Skull & Bones cursor in KDE

On Sunday 01 January 2006 17:12, Dave Feustel wrote: > Is sudden appearance of a skull & bones cursor on the > kde desktop associated with any exploits against kde? > > Thanks, > Dave Feustel I doubt it. A s/k cursor is likely indicating that something is broken, wrong or otherwise not right. Wh

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

Stuart Henderson wrote: The 00:00:5e:xxx MAC used by CARP (and VRRP) is multicast. I don't think you can change a multicast lladdr to a unicast one. CARP does use multicast yes, but unless I forgot something, or don't understand something, there isn't any MAC address that are specifically ass

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

Stuart Henderson wrote: The 00:00:5e:xxx MAC used by CARP (and VRRP) is multicast. I don't think you can change a multicast lladdr to a unicast one. Looks like the standard required to use the MAC address for multicast in the range of: Multicast MAC addresses use a special 24-bit prefix of 0

dhcpd question

I used to use a switch plugged into my dsl modem to hook up multiple computers to the internet, but that no longer works, (no reponse to 2nd computer's dhclient requests through the switch, although 1st computer's requests are responded to). So I have plugged my laptop into the 4-port(sis[0-3]) e

Re: Skull & Bones cursor in KDE

On 01/01/06 23:12, Dave Feustel wrote: Is sudden appearance of a skull & bones cursor on the kde desktop associated with any exploits against kde? Hello Dave, My modest wish concerning misc@ and 2006 is that you will use Google for at least an hour on all words in any question or reply to thi

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

> Stuart Henderson wrote: > >The 00:00:5e:xxx MAC used by CARP (and VRRP) is multicast. I don't > >think you can change a multicast lladdr to a unicast one. > > CARP does use multicast yes, but unless I forgot something, or don't > understand something, there isn't any MAC address that are specif

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

> Multicast MAC addresses use a special 24-bit prefix of 0x0100.5Enn.. > which has the lowest bit of the first byte set to '1'. afaict: CARP traffic itself goes to the group hence 1, whereas traffic to the shared address is just for an individual member, hence the 0. But I am no multicast guru

Time on amd64

I have a machine with a sempron64 and it seems that time is a tad bit too fast. Every minute it skips ahead about 15-20 seconds. After about 10 minutes it's several minutes ahead of the real time. For now I've set a cron job to rdate time.nist.gov every 5 minutes. This is on OpenBSD 3.8 wit

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

Stuart Henderson wrote: Multicast MAC addresses use a special 24-bit prefix of 0x0100.5Enn.. which has the lowest bit of the first byte set to '1'. afaict: CARP traffic itself goes to the group hence 1, whereas traffic to the shared address is just for an individual member, hence the 0. But

Re: dhcpd question

On Sun, Jan 01, 2006 at 06:38:09PM -0500, Dave Feustel wrote: > I used to use a switch plugged into my dsl modem to hook up > multiple computers to the internet, but that no longer works, > (no reponse to 2nd computer's dhclient requests through the switch, > although 1st computer's requests are re

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

> > Multicast MAC addresses use a special 24-bit prefix of 0x0100.5Enn.. > > which has the lowest bit of the first byte set to '1'. > > afaict: CARP traffic itself goes to the group hence 1, whereas traffic to > the shared address is just for an individual member, hence the 0. But I am > no mu

-Urgent- Information About Your Bank Of Oklahoma Online Account Access!

[IMAGE] Let's keep in touch. Get more from your banking. Why are you not using your online banking? Your missing out on all the fantastic services avalible! -- Dear Bank Of Oklahoma Customer, We notice that you haven't used our

Re: Skull & Bones cursor in KDE

On 01/01/06, Dave Feustel <[EMAIL PROTECTED]> wrote: > Is sudden appearance of a skull & bones cursor on the > kde desktop associated with any exploits against kde? You probably ran xkill by mistake. Not everything is a fucking KDE/X security hole. Ever considered that your need to constantly floo

Re: multi-port NIC cards

--- Daniel Ouellet <[EMAIL PROTECTED]> wrote: > > Can anyone recommend a good multi-port NIC card e.g. 4-port, that > works > > OK on OpenBSD with a good source supplier. > > > This question was debated a few times in the archive already. So, far > > there isn't one great card that works very

Re: TorrentFlux on OpenBSD 3.8 --ERROR: File not uploaded...--

gwost [EMAIL PROTECTED] wrote: > > ERROR: File not uploaded, file could not be found or could not be moved: > /var/www/htdocs/torrenti/.torrents/xyxyxyxyx.torrent > Your php application should just know about /htdocs rather than /var/www/htdocs if the web server is chrooted.

Re: multi-port NIC cards

martin wrote: Just found this. http://www.routerboard.com/rb44.html Might just buy one and try it out. May be good, but the bus is PCI only if I am not mistaken looking at the spec. Not even PCI Express or PCI X, so it would be interesting to see, but if you are concern about congestio

Re: ifconfig carp2 lladdr xx:xx:xx:xx:xx:xx not available?

Stuart Henderson wrote: Multicast MAC addresses use a special 24-bit prefix of 0x0100.5Enn.. which has the lowest bit of the first byte set to '1'. afaict: CARP traffic itself goes to the group hence 1, whereas traffic to the shared address is just for an individual member, hence the 0. But

looking for some configuration help

Right now I have a FreeBSD Gateway (generic) box and am trying to smoothly insert an obsd system in it's place. Lot's of issues, the present system has three nic cards and took a lot of time -- which now, well I have to do this right the first time. Anyone in New England (or especially souther

Re: looking for some configuration help

Julesg wrote: And that's my next question: How good is the obsd port for amd64?? From my own experience on heavy use servers. I can't praise it enough to give it justice! For the last 18 months, ONLY AMD 64 are coming in here. No more Intel and still haven't brought in an other Sun yet. Not

Re: looking for some configuration help

Julesg wrote: And that's my next question: How good is the obsd port for amd64?? One more thing if I may. Make sure you get a supported hardware and if you can find one with AMD chipset on the motherboard, all the better. Much better and faster then the new one sometime built with the Nvidia

isakmpd outputs: help interpreting

heya, i've established IPsec connections originating from several windows xp machines with public IPs to my openbsd firewall that is running isakmpd. they are working just fine. however, i have a windows machine here at home behind NAT that is giving me grief when i try to establish an IPsec conne

Re: Blowfish still good enough?

I certainly hope that if new ciphers are added to svnd, that Blowfish is still included. Many of my previous file systems use Blowfish, and it is my preferred algorithm. Just $16.99/mo. or less. dsl.yahoo.com

Airlink 101 Super G USB 2.0 Adapter support

After searching through http://openbsd.org/i386.html#hardware and ath(4), I believe I have a currently (as of the latest snapshot) unsupported USB 2.0 802.11b/g adapter, the Airlink 101 Super G, based on the Atheros AR5523. The manufacturer's web site is located at http://www.airlink101.com/produc

What does this error message mean?

Jan 1 23:05:16 balrog sm-msp-queue[1531]: k024U2n0023755: timeout waiting for input from localhost.cimsolve.com during client greeting Anyone tell me what sm-msp-queue is and what input it is waiting for? Thanks Jim

Re: Airlink 101 Super G USB 2.0 Adapter support

On Mon, Jan 02, 2006 at 12:00:12AM -0500, NetNeanderthal wrote: > After searching through http://openbsd.org/i386.html#hardware and > ath(4), I believe I have a currently (as of the latest snapshot) > unsupported USB 2.0 802.11b/g adapter, the Airlink 101 Super G, based > on the Atheros AR5523. Th

Re: What does this error message mean?

Jim Mays wrote: Jan 1 23:05:16 balrog sm-msp-queue[1531]: k024U2n0023755: timeout waiting for input from localhost.cimsolve.com during client greeting Anyone tell me what sm-msp-queue is and what input it is waiting for? May be are you using spew or the like as a spam filter and can't conne

Re: What does this error message mean?

Not that I know of. It is just a firewall with 3.6 installed. There is nothing else installed on the machine (like a spam filter) unless it is part of the baseline. Jim Daniel Ouellet wrote: Jim Mays wrote: Jan 1 23:05:16 balrog sm-msp-queue[1531]: k024U2n0023755: timeout waiting for input

Re: What does this error message mean?

How do you turn off Sendmail? What starts it in obsd? (Like where is the equivalent of /etc/rc2.d? Jim Daniel Ouellet wrote: Jim Mays wrote: Jan 1 23:05:16 balrog sm-msp-queue[1531]: k024U2n0023755: timeout waiting for input from localhost.cimsolve.com during client greeting Anyone tell

Re: What does this error message mean?

Jim Mays wrote: Not that I know of. It is just a firewall with 3.6 installed. There is nothing else installed on the machine (like a spam filter) unless it is part of the baseline. Then may be your DNS doesn't answer or resolv.conf is wrong? Any change done in your firewall configuration la

Re: What does this error message mean?

man rc.conf On Sun, Jan 01, 2006 at 11:50:01PM -0600, Jim Mays wrote: > How do you turn off Sendmail? What starts it in obsd? (Like where is > the equivalent of /etc/rc2.d? > > Jim > > Daniel Ouellet wrote: > >Jim Mays wrote: > > > >>Jan 1 23:05:16 balrog sm-msp-queue[1531]: k024U2n0023755:

Current installed on 1.1: Problems using svnd?

Hello everybody, I installed oBSD current for AMD64 on 1.1.2006, created a encrypted partition for /home and ran into some trouble. The permissions for /home or /tmp didn't changed: drwxr-xr-x 6 root wheel 512 Jan 2 07:59 tmp drwxr-xr-x 2 root wheel 512 Jan 1 17:11 crypto /cryp

Re: Current installed on 1.1: Problems using svnd?

[EMAIL PROTECTED] wrote: > Hello everybody, > > I installed oBSD current for AMD64 on 1.1.2006, created a encrypted > partition for /home and ran into some trouble. > > The permissions for /home or /tmp didn't changed: > drwxr-xr-x 6 root wheel 512 Jan 2 07:59 tmp > drwxr-xr-x 2 root

Re: Current installed on 1.1: Problems using svnd?

On Mon, 2 Jan 2006, [EMAIL PROTECTED] wrote: > Hello everybody, > > I installed oBSD current for AMD64 on 1.1.2006, created a encrypted > partition for /home and ran into some trouble. > > The permissions for /home or /tmp didn't changed: > drwxr-xr-x 6 root wheel 512 Jan 2 07:59 tmp >

Current installed on 1.1: Problems using svnd?

Sorry for the post! My script got a wrong chmod and changed /tmp... :-/ Sorry.. ;) Kind regards, Sebastian -- Don't buy anything from YeongYang. Their Computercases are expensiv, they WTX-powersuplies start burning and their support refuse any RMA even there's still some warenty.