Hi Henning,
you are true, i found the problem 1 week ago, a "hidden" interface in my
3000 rules' pf.conf :)
--
Best regards,
Loïc BLOT, Engineering
UNIX Systems, Security and Network Engineer
http://www.unix-experience.fr
Le samedi 02 août 2014 à 12:17 +0200, Henning Brauer a écrit :
> * Loï
On Sat, Aug 02 2014 at 09:01, Nick Holland wrote:
> On 08/01/14 08:12, Claer wrote:
> > On Mon, Jul 28 2014 at 07:23, Nick Holland wrote:
> ...
> >> I'll leave you to develop the script.
>
> >> My design philosophy:
> >> 1) No additional hw, other than the two firewalls.
> >> 2) EITHER machine sh
> Again I am guessing, but OpenBSD might disconnect if there is a
> sufficient period of inactivity on the sshfs file system. Usb drives
> disconnect if left long enough, for example. A running process, such as
> an open terminal on the usb prevents this. It is a security feature.
There had onl
On 02-08-2014 04:20, Dmitry Orlov wrote:
> infection does not penetrate NON-Windows systems.
Yes, because windows automatically runs anything you throw at it.
autorun is an abomination, but it can be disabled. That is not to say
that some badusb device couldn't lie to OpenBSD, or any other *nix for
On 04-08-2014 05:17, Carsten Kunze wrote:
>> Again I am guessing, but OpenBSD might disconnect if there is a
>> sufficient period of inactivity on the sshfs file system. Usb drives
>> disconnect if left long enough, for example. A running process, such as
>> an open terminal on the usb prevents thi
On 2014-08-03, Carsten Kunze wrote:
> I use sshfs to synchronize a filesystem of 15 GB between two machines.
> Read access seems to be ok but on writing the mount point
> does not seem to work anymore. Error message of cp(1) is
>
> No such file or directory
>
> ls(1) to the mount point gives the
On 2014-08-03, Alessandro DE LAURENZIS wrote:
> Hello misc@,
>
> Just tried to compile SLiM (in order to remove the ConsoleKit depend),
> but ended-up with the following error:
>
> just22@poseidon:[slim]> sudo make package
> `/usr/obj/ports/slim-1.3.6/fake-amd64/.fake_done' is up to date.
>===> B
Matthieu Herrb writes:
> Ok thanks. Its the use of macros that cause the new /usr/lib/auxcpp to
> insert extra white space.
Confirmed, if I replace the macros with values there is no issue. Sorry
for the delay following up.
Allan
On Mon, Aug 04, 2014 at 10:19:20AM -0400, Allan Streib wrote:
> Matthieu Herrb writes:
>
> > Ok thanks. Its the use of macros that cause the new /usr/lib/auxcpp to
> > insert extra white space.
>
> Confirmed, if I replace the macros with values there is no issue. Sorry
> for the delay following
On 2014-08-04 09:17, Carsten Kunze wrote:
Again I am guessing, but OpenBSD might disconnect if there is a
sufficient period of inactivity on the sshfs file system. Usb drives
disconnect if left long enough, for example. A running process, such
as
an open terminal on the usb prevents this. It is
previously on this list Giancarlo Razzolini contributed:
> I don't see anything new about this attack. The theory behind
> it was invented with USB itself.
I haven't looked into it but thought it might have something to do with
"On the Go" but I guess not then.
--
_
On 04-08-2014 11:11, Kevin Chadwick wrote:
> previously on this list Giancarlo Razzolini contributed:
>
>> I don't see anything new about this attack. The theory behind
>> it was invented with USB itself.
> I haven't looked into it but thought it might have something to do with
> "On the Go" but I
hmm, on Mon, Aug 04, 2014 at 01:15:03PM +, Stuart Henderson said that
> On 2014-08-03, Carsten Kunze wrote:
> > I use sshfs to synchronize a filesystem of 15 GB between two machines.
> > Read access seems to be ok but on writing the mount point
> > does not seem to work anymore. Error message
Hi misc@,
I was wondering about the behavior of OpenBSD in this case (not a
production case at this time).
2 WAN interfaces (Ethernet / IPv4 DHCP) , linked to an OpenBSD box and 1
LAN interface (Ethernet / IPv4 static address)
WAN1 (em0 DHCP) -
|--- OpenBSD - LAN (em
On Mon, Aug 04, 2014 at 08:39:10PM +0200, Christophe wrote:
> Hi misc@,
>
> I was wondering about the behavior of OpenBSD in this case (not a
> production case at this time).
>
> 2 WAN interfaces (Ethernet / IPv4 DHCP) , linked to an OpenBSD box and 1
> LAN interface (Ethernet / IPv4 static addre
On 04-08-2014 15:39, Christophe wrote:
> I was wondering about the behavior of OpenBSD in this case (not a
> production case at this time).
>
> 2 WAN interfaces (Ethernet / IPv4 DHCP) , linked to an OpenBSD box and 1
> LAN interface (Ethernet / IPv4 static address)
>
> WAN1 (em0 DHCP) -
>
On Aug 4, 2014, at 1:39 PM, Christophe wrote:
> Hi misc@,
>
> I was wondering about the behavior of OpenBSD in this case (not a
> production case at this time).
>
> 2 WAN interfaces (Ethernet / IPv4 DHCP) , linked to an OpenBSD box and 1
> LAN interface (Ethernet / IPv4 static address)
>
> WAN
On Mon, Aug 04, 2014 at 08:39:10PM +0200, Christophe wrote:
> Hi misc@,
>
> I was wondering about the behavior of OpenBSD in this case (not a
> production case at this time).
>
> 2 WAN interfaces (Ethernet / IPv4 DHCP) , linked to an OpenBSD box and 1
> LAN interface (Ethernet / IPv4 static addre
On 04-08-2014 17:01, Fabian Raetz wrote:
> Maybe giving one of your interfaces a lower "priority" could solve this
> problem in a simple setup?
If used with mpath routing, then probably this would work. As I
mentioned, there is only need to take proper care of the resolv.conf
file, since both dhcli
Hello List,
Does anyone know a way to built a setup when remote IPSEC endpoint got a
failover setup on the IPSEC side ? On cisco IOS it's possible to configure
multiple peers, when a peer dies it will try the other on the list.
Anyone tried to fix this when the remote end is a cisco IOS device an
I just set up a new OpenBSD 5.5 gateway for a small nonprofit. The
gateway has one external interface and one internal, with the internal
network split into several VLANs: one for secure traffic, one for
guests, one for internal phones, and one for our external Asterisk phone
server.
I'm trying to
Hi all,
I'm in the process of changing over some code of mine from hand-rolled
lists to using TAILQ and friends from queue.h
In reading the documentation, I note it says the following about TAILQ
(and similar for other macros):
Code size is about 15% greater and operations run about 20%
On Mon, Aug 04, 2014 at 10:32:19PM +0100, Michael Treibton wrote:
> Hi all,
>
> I'm in the process of changing over some code of mine from hand-rolled
> lists to using TAILQ and friends from queue.h
>
> In reading the documentation, I note it says the following about TAILQ
> (and similar for oth
On 04-08-2014 18:09, Eric Dilmore wrote:
> I just set up a new OpenBSD 5.5 gateway for a small nonprofit. The
> gateway has one external interface and one internal, with the internal
> network split into several VLANs: one for secure traffic, one for
> guests, one for internal phones, and one for o
Thank you for the reply, Giancarlo. There are some things I'm not quite
sure about from your response, however.
prio sounds great on paper, but I'm pretty sure they are a per-interface
priority queue. Could it still prioritize packets from the Asterisk vlan
above those from other vlans?
Also, I w
Eric Dilmore [ericdilm...@gmail.com] wrote:
> Thank you for the reply, Giancarlo. There are some things I'm not quite
> sure about from your response, however.
>
> prio sounds great on paper, but I'm pretty sure they are a per-interface
> priority queue. Could it still prioritize packets from the
On 04-08-2014 19:17, Eric Dilmore wrote:
> prio sounds great on paper, but I'm pretty sure they are a per-interface
> priority queue. Could it still prioritize packets from the Asterisk vlan
> above those from other vlans?
Yes, it is per-interface. But the prio is applied on the dequeuing. You
can
2014-08-04 2:46 GMT+04:00 Stefan Wollny :
> Am 08/03/14 um 20:25 schrieb Vadim Zhukov:
>> 2014-08-03 22:24 GMT+04:00 Stefan Wollny :
>>> Am 08/03/14 um 19:39 schrieb Vadim Zhukov:
> Does this help you:
>> ~ $ kile -v kile:/usr/lib/libstdc++.so.57.0:
>> /usr/local/lib/libestdc++.so.16.0
On Sat, Aug 2, 2014 at 7:06 AM, Ed Hynan wrote:
> Saturday morning, saw this in /var/log/messages:
>
> "Aug 2 08:29:12 lucy su: default: setting resource limit openfiles:
> Invalid argument"
>
That indicates that the requested -cur value was greater than the requested
-max value, if any, or the
* Giancarlo Razzolini [2014-08-05 00:02]:
> On 04-08-2014 18:09, Eric Dilmore wrote:
> > I just set up a new OpenBSD 5.5 gateway for a small nonprofit. The
> > gateway has one external interface and one internal, with the internal
> > network split into several VLANs: one for secure traffic, one f
30 matches
Mail list logo
