Re: Easiest Way to Encrypt /home

On Tue, Apr 14, 2009 at 01:51:59PM -0700, new_guy wrote: > I've begun using OpenBSD on portable computers/laptops. I want to guard > against theft. I can't stand the thought of some crook pawing my laptop and > someone looking over my personal files... pictures of my family, my taxes, > etc... it k

binat + lladdr question

This question may be a bit strange, if not entirely misguided, but here goes... Is there any way to assign inet aliases to a networkB interface such that each IP addressB uses a unique MAC address? B Here's why I'm wondering:B We have aB network behind NAT, but with a few internal hosts that

Re: Easiest Way to Encrypt /home

On Wed, Apr 15, 2009 at 9:06 AM, Raimo Niskanen wrote: > On Tue, Apr 14, 2009 at 01:51:59PM -0700, new_guy wrote: >> I've begun using OpenBSD on portable computers/laptops. I want to guard >> against theft. I can't stand the thought of some crook pawing my laptop and >> someone looking over my per

Compiling Nagios NRPE on OpenBSD 4.4

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi all! Although I saw that OpenBSD 4.4 has NRPE 2.7, wanted to install something newer and I'm trying to compile NRPE 2.12 downloading of Nagios site. But after executing 'configure', the process finishes with the following error message: checking f

Re: Padlock accelerated SHA on Via C7

> It isn't worth using it. The overhead is too high. > > OK, thanks for the response. That being the case, can anybody give me any advice on what hardware I would need to achieve gigabit VPN throughput (aes/3des & md5/sha1) with ipsec?

Re: Scrotwm does not play nice with some apps

Hi, On Wed, Apr 15, 2009 at 04:34:58AM +, Bryan wrote: > Okay, I built and installed wmname from ports. I went in and started > maptools, and on the first try, it works... YAY!!! > Shutdown Maptools, and re-started it, gray screen... boo... The grey screen is what I used to get before using

Re: Compiling Nagios NRPE on OpenBSD 4.4

On Wed, Apr 15, 2009 at 06:00:50AM -0300, Daniel Bareiro wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hi all! > > Although I saw that OpenBSD 4.4 has NRPE 2.7, wanted to install > something newer and I'm trying to compile NRPE 2.12 downloading of > Nagios site. But after executing

Re: Padlock accelerated SHA on Via C7

John Arnold schrieb: >> It isn't worth using it. The overhead is too high. >> >> > > OK, thanks for the response. > > That being the case, can anybody give me any advice on what hardware I would > need to achieve gigabit VPN throughput (aes/3des & md5/sha1) with ipsec? > Hi, my max throughpu

Apache : admin directory secured access setup

Hello I am in process to change in /var/www/conf/httpd.conf from "AllowOverride None" to "AllowOverride AuthConfig" in order to include .htaccess .htpasswd files for some directories. Please let me know if there is any security issue with that or if it ios better to use another way for authentic

4.4 InstallCD can't detect my realtek 8139 network card.

Hi, guys. I download and burn the install4.4.iso recently. After I boot from this cd and want to install system via internet, it can't find interface in my laptop. In the step of "configure network", the boot system can't find any interface. My laptop is a HP old one with Celeron-M 1.5GHz and Intel

Re: Padlock accelerated SHA on Via C7

Guido Tschakert schrieb: > John Arnold schrieb: >>> It isn't worth using it. The overhead is too high. >>> >>> >> OK, thanks for the response. >> >> That being the case, can anybody give me any advice on what hardware I would >> need to achieve gigabit VPN throughput (aes/3des & md5/sha1) with ip

Re: make build fails

That is strange because i update the source via cvsup with this configuration : # Defaults that apply to all the collections *default release=cvs *default delete use-rel-suffix *default umask=002 *default host=rt.fm *default base=/usr *default prefix=/usr *default tag=OPENBSD_4_4 # If your netw

Changing the daily / weekly scripts

Hi I will move the following on my local box from daily to weekly.local so that this part of code is executed once a week only. It will therefore not be sent by mail since it seems to me that the weekly is not logged via local email as the daily is. This loss of information is not a problem but

Re: make build fails

On Wed, 15 Apr 2009 14:05:18 +0100, Richie wrote > That is strange because i update the source via cvsup with this ... [snip] > and i did what is in: http://www.openbsd.org/stable.html > The kernel dont have any problem. > I reboot and have this version: OpenBSD 4.4-stable (ATECH) #3: Tue

Re: Scrotwm does not play nice with some apps

On Wed, Apr 15, 2009 at 01:46:20AM +0100, Edd Barrett wrote: > Hi, > > On Tue, Apr 14, 2009 at 8:42 PM, Bryan wrote: > > I've had some issues with a few apps that work in fluxbox, but refuse > > to work in scrotwm. > > I have seen the same with some apps also. > > > > > The other issue is with

Re: Scrotwm does not play nice with some apps

The LG3D patch is built into sctorwm; it is done in a function called workaround(). When I get some time I'll look at the other work around. On Wed, Apr 15, 2009 at 11:09:57AM +0100, vex...@gmail.com wrote: > Hi, > > On Wed, Apr 15, 2009 at 04:34:58AM +, Bryan wrote: > > Okay, I built and in

Re: make build fails

hi, the ATECH kernel config is just a copy of DEFAULT i didn't change anything yet. i just did : # cd /usr/src/sys/arch/i386/conf # cp GENERIC.mp ATECH # config ATECH I did all the things described in FAQ5.3.5 . This is the first time that occours. I did rebuild kernel / userland ( (#3)

Re: Recommendations on a daily script to check syslog (or other) server security

2009/4/14 LeRoy, Ted > Hello folks, > > I'm pretty new to OpenBSD and BSD in general, but I have an OpenBSD > Syslog server up and receiving data. I'd like to have the system be > pretty secure, and I'd like to monitor its security via a simple script > that runs daily. > > Here's what I have in

Re: Changing the daily / weekly scripts

On Wed, 15 Apr 2009 15:26:46 +0200 "Jean-Francois" wrote: > Hi > > I will move the following on my local box from daily to weekly.local > so that this part of code is executed once a week only. It will > therefore not be sent by mail since it seems to me that the weekly is > not logged via local

Re: Changing the daily / weekly scripts

Hi Jean-Francois, > I will move the following on my local box from daily to weekly.local > so that this part of code is executed once a week only. > It will therefore not be sent by mail since it seems to me that the > weekly is not logged via local email as the daily is. There is no difference b

Re: Scrotwm does not play nice with some apps

On Wed, Apr 15, 2009 at 06:32, Marco Peereboom wrote: > The LG3D patch is built into sctorwm; it is done in a function called > workaround(). > > When I get some time I'll look at the other work around. > Sorry for the static Marco... Take your time man. I know you've got bigger fish to fry. G

Re: 4.5 is on the way

On 4/14/2009 at 1:01 AM Edd Barrett wrote: |Hi, | |On Mon, Apr 13, 2009 at 6:38 PM, Mike M wrote: |> I just received a confirmation/tracking number for the shipment of my |4.5 CD. | |Which supplier? = Computer Shop in Canada. I'm in the northeastern US.

Re: Changing the daily / weekly scripts

On Wed, Apr 15, 2009 at 03:26:46PM +0200, jfsimon1...@gmail.com wrote: > I will move the following on my local box from daily to weekly.local so that > this part of code is executed once a week only. It will therefore not be sent > by mail since it seems to me that the weekly is not logged via lo

Re: Request for DVI monitors in the UK

>> Around two weeks ago Owain (oga@) mailed out a request for some monitors in the UK, so that he could hack better on X. << This is now sorted. I'll be driving a pair up to Owain in the next few days, courtesy of my employer (HGL Dynamics Ltd). Steve -- http://www.fivetrees.com

Re: 4.4 InstallCD can't detect my realtek 8139 network card.

On 4/15/09, 7I7I wrote: > Hi, guys. > I download and burn the install4.4.iso recently. After I boot from this cd > and want to install system via internet, it can't find interface in my > laptop. In the step of "configure network", the boot system can't find any > interface. > My laptop is a HP ol

Re: Apache : admin directory secured access setup

2009/4/15 Jean-Francois : > Hello > > I am in process to change in /var/www/conf/httpd.conf from > "AllowOverride None" to "AllowOverride AuthConfig" > in order to include .htaccess .htpasswd files for some directories. > > Please let me know if there is any security issue with that or if it ios >

Re: Padlock accelerated SHA on Via C7

On Tue, 14 Apr 2009, Theo de Raadt wrote: > > Has anybody been able to get Padlock accelerated SHA1 working on a C7 > > or is this not currently possible? > > It isn't worth using it. The overhead is too high. Specifically: Via botched the implementation - their instruction set does not allow t

Re: Low power OpenBSD machine

Which HP T5000 did you install OpenBSD on ... and how did you do it? I have a T5300, and I'd love to wipe its flash drive and install OpenBSD. On Mon, Apr 13, 2009 at 6:59 AM, Marco Peereboom wrote: > > Get an HP T5000 series. I use that for my home firewall; no fans and no > noise. With 3 NIC

Sun X4140 support?

Hello, Has anyone had success (or trouble) running OpenBSD on Sun X4140 systems? I'm looking for hardware to replace my current firewalls, and my understanding is that Opteron gear is the way to go for pf performance. I've been really happy with my other Sun boxes that have ILOM remote management,

Re: 4.4 InstallCD can't detect my realtek 8139 network card.

check you netcard ,8139card can be supportted since long time ago

Re: Low power OpenBSD machine

to quote from my own email: OpenBSD 4.4-beta (GENERIC) #976: Fri Jul 11 16:41:38 MDT 2008 pvalc...@i386.openbsd.org:/usr/src/sys/arch/i386/compile/GENERIC cpu0: Transmeta(tm) Crusoe(tm) Processor TM5800 ("GenuineTMx86" 586-class) 732 MHz cpu0: FPU,V86,DE,PSE,TSC,MSR,CX8,SEP,CMOV,SER,MMX real m

kvm with OpenBSD 4.5

Can any one run OpenBSD 4.5[1,2] under kvm ? I run OpenBSD 4.4 under Debian 5.0 amd64(linux 2.6.26 with kvm-72) fine, and snapshots older than 2009-04. The new snapshots can install smoothly, but stopped at display 'setting tty flags'. [1] ftp://ftp.openbsd.org/pub/OpenBSD/snapshots/i386/ [2] ft

beating the fdisk horse

hi there, i am reading the fdisk source to have a better understanding what is what... it is not going really well i am afraid :] first of all, i had a long hard look at the basic programs that give information about disks in general: fdisk, disklabel, and atactl (obviously, only for ata disks)

Re: Sun X4140 support?

> I'm looking for hardware to replace my current firewalls, and > my understanding is that Opteron gear is the way to go for pf > performance. Sorry, but my understanding is different. As I see it, any hardware is fine for running pf. We never optimized it for any specific hardware. Instead, it

Re: beating the fdisk horse

I don't understand your questions. We compile fdisk on every platform, on every type of disk, so I don't understand what WDCC_IDENTIFY has to do with it. You only care about PCs? > i am reading the fdisk source to have a better understanding > what is what... it is not going really well i am af

Re: kvm with OpenBSD 4.5

> Can any one run OpenBSD 4.5[1,2] under kvm ? > > I run OpenBSD 4.4 under Debian 5.0 amd64(linux 2.6.26 with kvm-72) > fine, and snapshots older than 2009-04. > > The new snapshots can install smoothly, but stopped at > display 'setting tty flags'. > > [1] ftp://ftp.openbsd.org/pub/OpenBSD/snap

Accessing global tables from within an anchor, possible?

Hi all, I'm having an issue with tables and anchors running 4.5 that I've beat myself up with (along with a few willing souls in #pf and #openbsd) today. The basis of this problem is the ability (or non-ability in my case) to access global tables from within anchors, and after spending time searc

Re: beating the fdisk horse

> Frantisek Holop wrote: > > > > i am reading the fdisk source to have a better understanding > > what is what... it is not going really well i am afraid :] Please read up on hale landis' "how it works" series. It's roughly the best I've found on the subject. http://www.ata-atapi.com/hiwmbr.ht

Male prolećne zanimljivosti

Top Shop Top e-revija: 35 l 15. april 2009. Najbolja praktiD na reE!enja i saveti za bolji E>ivot PoD etna l Budi fit l Lepota l Zdravlje l Kuhinja i domaDinstvo Zabava i deca l Carstvo igraD aka l Knjige Top Shop HIT TV proizvodi! Sanozen jonizator Sanozen jonizator Ab trainer advance A

Re: Sun X4140 support?

I'm looking for hardware to replace my current firewalls, and my understanding is that Opteron gear is the way to go for pf performance. Clayton, As Theo said there is not point in that. The only thing I could think of really is put your money more into good network card, or hardware with goo

Re: Sun X4140 support?

On Thu, Apr 16, 2009 at 12:34:47AM -0400, Daniel Ouellet wrote: >> I'm looking for hardware to replace my current firewalls, and >> my understanding is that Opteron gear is the way to go for pf >> performance. > > As Theo said there is not point in that. The only thing I could think of > really i

Re: Sun X4140 support?

* Jason Dixon [2009-04-16 07:18]: > We had a spare set of servers available, so I went back to the lab and > reproduced the traffic profile. I then tested the same load with the MP > kernel. My tests revealed that even though the kernel is not threaded, > we benefit from equal distribution of in

Re: Sun X4140 support?

On Thu, Apr 16, 2009 at 07:47:14AM +0200, Henning Brauer wrote: > * Jason Dixon [2009-04-16 07:18]: > > We had a spare set of servers available, so I went back to the lab and > > reproduced the traffic profile. I then tested the same load with the MP > > kernel. My tests revealed that even thou

Re: Sun X4140 support?

On Thu, Apr 16, 2009 at 07:52:25AM +0200, Otto Moerbeek wrote: > On Thu, Apr 16, 2009 at 07:47:14AM +0200, Henning Brauer wrote: > > > * Jason Dixon [2009-04-16 07:18]: > > > We had a spare set of servers available, so I went back to the lab and > > > reproduced the traffic profile. I then teste

SAS HBA Recommendations?

To complement the man pages, the supported hardware pages and what I've found in the archives on marc, I'd be interested to read any SAS HBA recommendations people might have. I'm looking at some used Sun x4150 servers which have 8-lane PCIe slots but come with no built-in SAS/SATA controll

Accessing global tables from within an anchor, possible?

Hi all, I'm having an issue with tables and anchors running 4.5 that I've beat myself up with (along with a few willing souls in #pf and #openbsd) today. The basis of this problem is the ability (or non-ability in my case) to access global tables from within anchors, and after spending time searc