Re: sudo won't work with login_fingerprint

omg we have finger print reader support??? ! I installed the port and I'm playing with it. Can you post your full config? The login_fingerprint docs are short on the troubleshooting. I can enroll my fingers and I've got su asking me for finger swipes but whenever I do it says "invalid swipe" or "l

Re: question about net.inet.carp.preempt

Hallo! Thanks for the reply! I am also aware that one popular use of net.inet.carp.preempt is to control how the computer system as a whole reacts to errors like one physical interface goes dead. 'man carp' says about net.inet.carp.preempt: Allow virtual hosts to preempt each other. It is al

Re: sudo won't work with login_fingerprint

On Friday 24 April 2009 09.28.34 you wrote: > omg we have finger print reader support??? ! > > I installed the port and I'm playing with it. Can you post your full > config? The login_fingerprint docs are short on the troubleshooting. I > can enroll my fingers and I've got su asking me for finger s

Re: Upgrade to -current

On Friday 24 April 2009 08.50.11 you wrote: > Currently I am using 4.2 stable and I am willing to upgrade to -current > because of some new features which i need. > According to faq (http://www.openbsd.org/faq/faq5.html#Bld) I should first > upgrade to closest binary, which means upgrade from 4.2 t

Re: autowhitelister for spamd needs testing

Aaron Mason wrote: On Fri, Apr 24, 2009 at 11:01 AM, Dan Harnett wrote: On top of that, if VeriSign could be tricked into signing a fake Microsoft ActiveX key, can you really trust the authorities? Are you implying SPF records are validated somewhere and signed by a trusted third par

Re: rt.fm ftp server dumps core

On Thu, Apr 23, 2009 at 03:37:00PM -0600, Jeff Ross wrote: > Hi, > > For a while now I've been getting segmentation faults when I try to > download snapshots from rt.fm > > ftp> mget *tgz > mget base45.tgz? all > Prompting off for duration of mget. > local: base45.tgz remote: base45.tgz > 150 Open

Re: Problem with slow disk I/O

> First on Ubuntu: > /dev/sda2 on / type ext3 (rw,relatime,errors=remount-ro) > ~$ time (tar -zxf ports.tar.gz && sync) > real 0m47.784s > Then the same commands on OpenBSD: > /dev/wd0k on /home type ffs (local, nodev, nosuid, softdep) > $ time (tar -zxf ports.tar.

Re: DHCP versus PPPoE for ADSL.

From: Claudio Jeker > The main encapsulation over ADSL is PPPoE or PPPoA only lately, with the > spread of IPTV and VDSL, EFM (Ethernet First Mile) is used by some telcos. > So it totaly depends on what your provider is giving you. Hi Claudio. Maybe I didn't explain myself or perhaps I am trying

Transparent Firewall (bridge) with DMZ + LAN

I'm currently interested in setting up a three-legged network, using OBSD+PF as the firewall. Originally, I had jus

Transparent firewall (bridge) with DMZ + LAN

I am currently interested in setting up a three-legged network topology, using OBSD+PF as the firewall appliance. Originally, I was going to simply have the firewall equipped with three network cards: one for DMZ, one for LAN, the other for EXT/WAN/Internet (whatever you call this). The idea was fo

Re: sudo won't work with login_fingerprint

On Fri, Apr 24, 2009 at 3:38 AM, LEVAI Daniel wrote: > On Friday 24 April 2009 09.28.34 you wrote: >> omg we have finger print reader support??? ! >> >> I installed the port and I'm playing with it. Can you post your full >> config? The login_fingerprint docs are short on the troubleshooting. I >>

Re: sudo won't work with login_fingerprint

On Friday 24 April 2009 12.27.50 you wrote: > On Fri, Apr 24, 2009 at 3:38 AM, LEVAI Daniel wrote: > > On Friday 24 April 2009 09.28.34 you wrote: > >> omg we have finger print reader support??? ! > >> > >> I installed the port and I'm playing with it. Can you post your full > >> config? The login

RadiusClient

Hi all What is the radius client packge for OpenBSD? What I need to do is provide pptpd auth with radius. My Radius Server is a Windows Server 2003. On Ubuntu and Debian tha name of package is radiusclient downloadable via apt-get. -- Att. Bruno Galindro da Costa bruno.galin...@gmail.com Flor

Re: Upgrade to -current

On Fri, Apr 24, 2009 at 1:50 AM, MANI wrote: > Currently I am using 4.2 stable and I am willing to upgrade to -current > because of some new features which i need. > According to faq (http://www.openbsd.org/faq/faq5.html#Bld) I should first > upgrade to closest binary, which means upgrade from 4.2

Re: autowhitelister for spamd needs testing

On Fri, Apr 24, 2009 at 02:16:57PM +1000, Aaron Mason wrote: > On Fri, Apr 24, 2009 at 11:01 AM, Dan Harnett wrote: > >> On top of that, if VeriSign could be tricked into signing a fake > >> Microsoft ActiveX key, can you really trust the authorities? > > > > Are you implying SPF records are valid

Re: RadiusClient

2009/4/24 Bruno Galindro da Costa : > Hi all > >What is the radius client packge for OpenBSD? What I need to do is > provide pptpd auth with radius. My Radius Server is a Windows Server 2003. > On Ubuntu and Debian tha name of package is radiusclient downloadable via > apt-get. >

Re: RadiusClient

On Fri, Apr 24, 2009 at 09:05:32AM -0300, Bruno Galindro da Costa wrote: > Hi all > > What is the radius client packge for OpenBSD? What I need to do is > provide pptpd auth with radius. My Radius Server is a Windows Server 2003. > On Ubuntu and Debian tha name of package is radiusclient downl

Re: sudo won't work with login_fingerprint

On Fri, Apr 24, 2009 at 7:14 AM, LEVAI Daniel wrote: > On Friday 24 April 2009 12.27.50 you wrote: >> >> I followed the README too but it told me to add this: >> # >> # The fingerprint login class allows the fingerprint and passwd >> # authentication methods and checks your 7th (right index) finge

Recipient Validation & Design Opinions

Hello, We are putting together an OpenBSD-based border email server to replace an aging Linux box. On the current system, Postfix performs a call ahead to two internal boxes for recipient validation. I'm interested in recommendations on how to perform validation with the base sendmail. The

[no subject]

Re: Unable to mount CD/DVD-RW drive in OpenBSD 4.4/i386.

I have attached a .txt file indicating what <#disklabel cd0> returned. --- On Thu, 4/23/09, minsai0...@yahoo.com wrote: > From: minsai0...@yahoo.com > Subject: Unable to mount CD/DVD-RW drive in OpenBSD 4.4/i386. > To: misc@openbsd.org > Date: Thursday, April 23, 2009, 12:13 PM > I am unable

Re: Upgrade to -current

On Fri, 24 Apr 2009, MANI wrote: > Currently I am using 4.2 stable and I am willing to upgrade to -current > because of some new features which i need. > According to faq (http://www.openbsd.org/faq/faq5.html#Bld) I should first > upgrade to closest binary, which means upgrade from 4.2 to 4.3 and

Re: DHCP versus PPPoE for ADSL.

On 2009-04-24, David Walker wrote: > From: Claudio Jeker >> The main encapsulation over ADSL is PPPoE or PPPoA only lately, with the >> spread of IPTV and VDSL, EFM (Ethernet First Mile) is used by some telcos. >> So it totaly depends on what your provider is giving you. > > Maybe I didn't explai

Jamais en ligne sur msn ?

Salut, J'ai vu ton annonge mais quand je t'icris ga revient en erreur ? j'essais donc de ripondre ` ton annonce une nouvelle fois car la 1er fois j'ai regu un message qui disait "mail delivery failed" Est ce que misc@openbsd.org c'est bien ton adresse et est ce que c'est ton msn ? je t'ai ren

Re: rt.fm ftp server dumps core

Paul Irofti wrote: On Thu, Apr 23, 2009 at 03:37:00PM -0600, Jeff Ross wrote: Hi, For a while now I've been getting segmentation faults when I try to download snapshots from rt.fm ftp> mget *tgz mget base45.tgz? all Prompting off for duration of mget. local: base45.tgz remote: base45.tgz 150

Re: Transparent firewall (bridge) with DMZ + LAN

On Fri, Apr 24, 2009 at 12:12 PM, openbsder wrote: > I am currently interested in setting up a three-legged network topology, > using OBSD+PF as the firewall appliance. Originally, I was going to simply > have the firewall equipped with three network cards: one for DMZ, one for > LAN, the other f

Re: sudo won't work with login_fingerprint

login_fingerprint only supports login auth, not support challenge/response mode which is what sudo (and other things) uses. - todd

European orders(Sweden) - nohup.se

Hello misc@, it has been almost a week since I sent an invoice for OpenBSD 4.5 CD/t- shirt to nohup.se. Well, there is no answer so far and the webpage is outdated and promoting old releases. Any one from Sweden has ever successfully ordered anything from this site lately? Any other (succe

T1 card compatible with 4.4

I'm looking for a T1 card compatible with 4.4. There were a fair number of recommendations for Sangoma's a101 a few years ago, followed by threads describing major problems and Sangoma yanking support for OpenBSD. What alternatives work decently under OpenBSD? -HKS

Re: autowhitelister for spamd needs testing

> i think part of the success i experience using SPF as a means to create > whitelists is in the fact that i maintain the list of domains i fancy > whitelisting. unfortunately, it would be trivial for someone to take > advantage of an spf-based automatic whitelist to slip right on thru >

Re: aucat's volume-sharing algorithm

On Fri, 24 Apr 2009 11:29:02 -0400 Nick Guenther wrote: > I'm playing with the new aucat. Or rather, running it, since unlike > every other soundserver it doesn't require endless tweaking to just > work. There is one issue I'm having, and I'm not sure if it's on > purpose or not. Whenever (say) pi

Interpreting strange pflog output

Hi, We have an older OpenBSD 3.9 firewall which we will be upgrading to 4.5 and as a part of the upgrade, we will be locking down our outgoing connections. As a first step, we have added some extra rules to log outgoing connections that are not specifically allowed by our current rule set. W

Re: DHCP versus PPPoE for ADSL.

Honestly, I think it is going to depend on your ISP. For example, Embarq a few years ago switched their 'Embarq' ISP to using a hybrid DHCP setup: (Whatever the DSLAM connects to)<--PPPoE-->DSLAM<--DHCP-->Modem<--DHCP-> So when you set the modem to 'Bridge' whatever was behind it was set to DH

aucat's volume-sharing algorithm

I'm playing with the new aucat. Or rather, running it, since unlike every other soundserver it doesn't require endless tweaking to just work. There is one issue I'm having, and I'm not sure if it's on purpose or not. Whenever (say) pidgin (or anything else) plays sound my music dims in volume. It m

Re: Transparent firewall (bridge) with DMZ + LAN

Sorry for the confusion. I understand that bridging is possible under OpenBSD but it's also my understanding that if I have interfaces A, B, and C, I can bridge A to either B or C, but not both. Is this correct? Referring to this topology: http://upload.wikimedia.org/wikipedia/commons/6/6f/DMZ_net

Re: Upgrade to -current

*>> **Toma:** **It depends where you use OpenBSD ( desktop or server )* *Actually the system is a Desktop on my laptop, but I am highly dependent on it for my programming's work.* *>> michael & Neal : You should try and search the archives for that, it is answered* *>> thorougly a couple of time

Re: DHCP versus PPPoE for ADSL.

From: Stuart Henderson > with one vendor implementation of this, it saves you from having a huge > bunch of entries in your arp table... otherwise: control over the PPP > session, maybe better logging, maybe access to ipv6 or multicast which > could be a problem with some CPE modem/routers, and it

Re: Can't install OpenOffice3 - pkg_add and make install fail on 4.5 -current

Hmmm, I upgraded to 23.4. snapshot and all dependencies are installed now,but I can't still make OpenOffice3. Have someone same problem? Checking DLL ../unxobsd.pro/lib/check_libuno_sal.so.3 .../usr/obj/ports/openoffice-3.0.1/OOO300_m15/solver/300/unxobsd.pro/bin/chec kdll:../unxobsd.pro/lib/chec

Re: RadiusClient

Hi, # pkg_info -Q radius freeradius-2.0.5 freeradius-iodbc-2.0.5 freeradius-ldap-2.0.5 freeradius-mysql-2.0.5 freeradius-pgsql-2.0.5 mod_auth_radius-1.5.7p4 p5-Authen-Radius-0.05p1 p5-Net-Radius-1.56 radiusd-cistron-1.6.7p1 radiusd-lucent-2.1p8 radiusniff-0.2 radiusreport-0.3b6p0 Can I use freera

Re: Yahoo videos on OpenBSD

It works really great.Thanks for the tip. Why I have gnash :-) 2009/4/20 Matthew Szudzik : > On Mon, Apr 20, 2009 at 07:46:42PM +0200, Tom Bodr wrote: >> someone is watching Yahoo videos on OpenBSD? > > I use > B http://keepvid.com > to download the video, then play it with mplayer. >

ftp-proxy IPSEC clients?

Hello Misc, I have an OpenBSD 4.4 firewall with some clients connecting via IPSEC. Some clients have flows established to servers not on the local LAN, and these clients are natted through the internet interface to access these servers. It's a bit convoluted, but things work, except of cours

Re: DHCP versus PPPoE for ADSL.

Konnichiwa. That is too easy. Took me all of two minutes to bridge my modem - "RFC2684 BRIDGING" instead of "PPPoE BRIDGING" - and do the /etc file changes. Happy as Larry (possibly happier) using pppoe(4). All I need to work out is hostname.pppoe0 INET6 wildcards. Especially what to export as th

Re: ftp-proxy IPSEC clients?

On Fri, Apr 24, 2009 at 12:17 PM, Cameron Schaus wrote: > I have an OpenBSD 4.4 firewall with some clients connecting via IPSEC. Some > clients have flows established to servers not on the local LAN, and these > clients are natted through the internet interface to access these servers. > It's a

[ot] Re: sudo won't work with login_fingerprint

On Fri, Apr 24, 2009 at 03:28:34AM -0400, Nick Guenther wrote: > omg we have finger print reader support??? ! yes, and it's really cool, since i've some quite sharp knifes. (scnr)

E220 as 3G Internet Access

Unfortunately you can't use OpenBSD yet to connect to Vodafone's 3G internet mobile even if there is already an Huawei E220 shiny new driver. That is because OBSD has an archaic pppd implementation (ver. 2.3.5) wich lacks some important parameters like usepeerdns, noipv6, etc. Ask the developers to

Re: Upgrade to -current

On Fri, Apr 24, 2009 at 11:57 AM, MANI wrote: > *>> **Toma :** **It depends where you use OpenBSD ( desktop or server )* > *Actually the system is a Desktop on my laptop, but I am highly dependent on > it for my programming's work.* > > *>> michael & Neal : You should try and search the archives

Re: question about net.inet.carp.preempt

On Fri, Apr 24, 2009 at 3:32 AM, Imre Oolberg wrote: > Hallo! > > Thanks for the reply! I am also aware that one popular use of > net.inet.carp.preempt is to control how the computer system as a whole > reacts to errors like one physical interface goes dead. > > 'man carp' says about net.inet.carp

Re: ftp-proxy IPSEC clients?

Matthew Dempsky wrote: The IPsec flow is between the FTP client and the FTP server? Then by design, any intermediary will not be able to eavesdrop or alter packets in transit. The IPSec flow is between the FTP Client and a LAN, and the packets are then NAT'd to the internet and send to the F

svnd is incredible slow... somebody else notice that?

I notice it for a while now that SVND is incredible slow related to WRITE SPEED. Also I do see a lot of "biowait" with top related to newfs for example. vnconfig -cK -S saltfile /dev/sd0d /dev/svnd1c disklabel -E svnd1 -> a a -> r -> w -> q newfs /dev/rsvnd1a If you've serval houndret GBs t

Re: Interpreting strange pflog output

On Fri, Apr 24, 2009 at 7:53 AM, Aner Perez wrote: ... > While monitoring the pflog output, I occasionally see output that looks like > this: > > Apr 24 09:49:46.420762 rule 150/(match) pass in on fxp1: 107.6.96.0 > 73.243.0.0: at-#0 18 > Apr 24 09:49:46.420851 rule 150/(match) pass in on fxp1: 10

Re: DHCP versus PPPoE for ADSL.

On 2009-04-24, David Walker wrote: > Konnichiwa. > > That is too easy. > Took me all of two minutes to bridge my modem - "RFC2684 BRIDGING" > instead of "PPPoE BRIDGING" - and do the /etc file changes. > Happy as Larry (possibly happier) using pppoe(4). > > All I need to work out is hostname.pppoe

Re: Interpreting strange pflog output

On 2009-04-24, Aner Perez wrote: > Hi, > > We have an older OpenBSD 3.9 firewall which we will be upgrading to 4.5 and > as a part of the upgrade, we will be locking > down our outgoing connections. As a first step, we have added some extra > rules to log outgoing connections that are not > s

Re: svnd is incredible slow... somebody else notice that?

sebastian.rother () jpberlin ! de wrote > I notice it for a while now that SVND is incredible slow related to WRITE > SPEED. Also I do see a lot of "biowait" with top related to newfs for > example. > > > vnconfig -cK -S saltfile /dev/sd0d /dev/svnd1c > disklabel -E svnd1 > -> a a > -> r > -

Re: E220 as 3G Internet Access

On 4/24/09, don cipo wrote: > Unfortunately you can't use OpenBSD yet to connect to Vodafone's 3G internet > mobile even if there is already an Huawei E220 shiny new driver. That is > because OBSD has an archaic pppd implementation (ver. 2.3.5) wich lacks some > important parameters like usepeerdn

Re: svnd is incredible slow... somebody else notice that?

On Fri, Apr 24, 2009 at 6:12 PM, wrote: > If you've serval houndret GBs that gonna take a lng time. > Also you can not restore a backup quickly because of the uberproor write > performance (it feels like being slower then PIO 3..). crypto is slow. what else is new? > So what other choices

Re: RadiusClient

On 2009-04-24, Bruno Galindro da Costa wrote: > # pkg_info -Q radius > freeradius-2.0.5 > freeradius-iodbc-2.0.5 > freeradius-ldap-2.0.5 > freeradius-mysql-2.0.5 > freeradius-pgsql-2.0.5 > mod_auth_radius-1.5.7p4 > p5-Authen-Radius-0.05p1 > p5-Net-Radius-1.56 > radiusd-cistron-1.6.7p1 > radiusd-lu

DCBSDCon 2009 Videos

As announced on Undeadly, the speaker videos for DCBSDCon 2009 are now available on YouTube and the conference website. http://undeadly.org/cgi?action=article&sid=20090424204748 http://www.youtube.com/profile?user=bsdconferences&view=videos&query=dcbsdcon http://www.dcbsdcon.org/speakers/videos/

Re: svnd is incredible slow... somebody else notice that?

You are right about how awful all this stuff is. Man it seems like you should use an os that suits your goals a little better. I have heard that Linux offers awesome performance. On Apr 24, 2009, at 17:12, sebastian.rot...@jpberlin.de wrote: I notice it for a while now that SVND is incredibl

Re: [Way OT] Roadtrip...

On Fri, 24 Apr 2009, Nick Bender wrote: Apologies to most people who won't give a shit but I'm finally moving to New Mexico and am posting updates at http://nbender.com more or less daily as we make our way across the country. Regards, -N OMG!!! You're moving to New Mexico, Osta no less. Ne

How to disable output to speakers if I use headphones on azalia?

Hi all, someone now how to disable sound ouput to speakers if I use headphones? I have sound from both sources and if I rise outputs.master both sources are louder which is bad if I'm at work.I can't find usefull switch in mixerctl -v and Google doesn't help yet $ mixerctl -v outputs.hp_source=da

Re: How to disable output to speakers if I use headphones on azalia?

On Sat, Apr 25, 2009 at 05:59:29AM +0200, Tom?? Bod??r wrote: > Hi all, > > someone now how to disable sound ouput to speakers if I use headphones? > I have sound from both sources and if I rise outputs.master both sources are > louder which is bad if I'm at work.I can't find usefull switch in > m

Re: How to disable output to speakers if I use headphones on azalia?

Great.Second command is not needed. Those shortcuts are still somewhat cryptic :-) I wasn't sure about it. Are they described somewhere in man?They aren't described in mixerctl(1),audio(4) or audio(9).Or I can't see them in format of mixerctl output 2009/4/25 Jacob Meuser : > On Sat, Apr 25, 2009

Re: How to disable output to speakers if I use headphones on azalia?

On Sat, Apr 25, 2009 at 06:55:12AM +0200, Tom?? Bod??r wrote: > Great.Second command is not needed. > Those shortcuts are still somewhat cryptic :-) I wasn't sure about it. > > Are they described somewhere in man?They aren't described in > mixerctl(1),audio(4) or audio(9).Or I can't see them in fo

Re: svnd is incredible slow... somebody else notice that?

Marco Peereboom wrote: You are right about how awful all this stuff is. Man it seems like you should use an os that suits your goals a little better. I have heard that Linux offers awesome performance. based on the manner in which you routinely complain and provide zero deliverables, i mus