Re: OpenBSD kernel janitors

Gerardo Santana Gsmez Garrido wrote: 2007/10/30, Miod Vallat <[EMAIL PROTECTED]>: Is there a list similar to Linux kernel janitors also for OpenBSD? It's a list of tasks for which you don't have to be experienced in the particular OS internals to be able to complete them properly. No,

Re: Bad MD5 of install42.iso

Todd C. Miller wrote: In message <[EMAIL PROTECTED]> so spake =?ISO-8859-2?B?UHJ6ZW15c7NhdyBQYXdls2N6eWs=?= (pp): 1) MD5s for downloaded files md5sum install42.iso 03dc43a1d18d3003843a1f13b3861917 install42.iso 03dc43a1d18d3003843a1f13b3861917 is correct. The MD5 file has be

Hardware for PF - more general questions

I have been pondering for some time getting a new core router, and a recent question on HP Procurves vs Soekris boxes has kicked me into thought. I have some more general questions: I recall hearing tell (on here I think) that amd64 is a better arch for routing, because of better interrupt handlin

Re: Traffic accounting software

NetOne - Doichin Dokov wrote: > Yuri Spirin P=P0P?P8Q
P0: >> I need following features: >> - counting all traffic going in/out ISP interface; >> - web interface/gui client; >> - reports by day/week/month/custom total traffic in/out; > These ones could be done with SNMP and Cacti - www.cacti.net > >

Re: Dell PowerEdge 1950 III / R200

Reza Muhammad wrote: > Great, thanks for the info. This is my first time to get a rackmount server, > and I just wanna make sure > it is supported by OpenBSD ;) > > As "Juan Miscaro" described on Wed, Jan 30, 2008 at 02:48:19PM -0500: > >> --- Reza Muhammad <[EMAIL PROTECTED]> wrote: >> >>

Re: vmware tools

Marco Peereboom wrote: > I recall seeing a post on a port for native vmware tools on openbsd. I > can't find that email to save my life. Does anyone recall it that can > send it to me? > > Is this what you're looking for? Date: Wed, 12 Sep 2007 17:07:30 +0200 From: Martin Schrvder <[EMAIL

Using CVS to back up /etc

Increasingly, I find that I have many servers, especially OpenBSD servers, where the only bit of the hard drive worth backing up is /etc. Good examples are routers or spamtrap boxes where everything is part of base. If a hard drive goes pop, all I need is to install the OS, and re-populate /etc. C

Re: Monitoring Bandwidth Usage, based on ports, service, client, etc.

Richard Daemon wrote: > Hi all, > > Does anyone know how I can go about monitoring bandwidth usage based on > ports (or service) and maybe client as well? > I have checked and tried both pfstat and symon and they're both great at > what they do, but not fully what I'm looking to do. > > As for Cact

The Insecurity output - improving the SNR

I have a cople of questions about the daily insecurity output. I have an anoncvs server, and as detailed in the docs, I set it up without a password. Every day, I get an email telling me: Checking the /etc/master.passwd file: Login anoncvs has no password. This is of course correct operation, and

Re: The Insecurity output - improving the SNR

Eep! it appears my mail client stopped wrapping part-way through my message. Apologies. SD

Re: Howto Pass googlebot on Webserver [SOLVED]

Insan Praja SW wrote: > On Tue, 26 Feb 2008 09:31:29 +0700, Ted Unangst <[EMAIL PROTECTED]> > wrote: > >> On 2/25/08, Insan Praja SW <[EMAIL PROTECTED]> wrote: >>> Hi Misc@, >>> While testing my brandnew 4.3-beta AMD64.MP webserver, I apply a >>> simple >>> pf.conf to let some connection in and a

Re: The Insecurity output - improving the SNR

Further to my earlier posting, the following diff may be of use to people running anoncvs mirrors. Its utterly trivial, but the mantra goes, where's the diff, so I thought why not. Si1entDave --- securitySun Mar 11 01:31:52 2007 +++ security.newThu Mar 6 13:17:02 2008 @@ -35,7 +35,7

TCP hangs between boxes behind two OpenBSD firewalls

Hulloo misc@, I come for advice, because I am frankly out of my depth. I have two firewalls, at two different sites, one (which I shall call SE) running 4.0-RELEASE with GENERIC, and one called WM (being upgraded over Christmas) on 3.8-RELEASE and GENERIC. Behind them at each end there are file

Using old thin clients as a BGP testbed

I work for a small hosting company, and the boss says he wants to start doing BGP for our upstream connection. This means I've got to learn BGP. At least I've managed to persuade him to buy me an O'Reilly book :-) However, the other thing I demanded was a test network of some kind. BGP is one of th

Google's Perftools and tcmalloc - Worth the risk?

Dear Misc, I'm currently putting together a new load balancer for my company's web farm, using OBSD for CARP redundancy and stability. I've chosen Pound[0] as it seems to be very simple and fast, and I like what I perceive to be their somewhat OBSD-like philosophies of easily readable, easily

Re: Setting up a virtual hosting machine w. SSH/SFTP accounts - pitfalls/experiences?

Stuart Henderson wrote: > On 2007/07/08 15:30, Chris Cappuccio wrote: >> Stuart Henderson [EMAIL PROTECTED] wrote: >>> Or use different ports and proxy them based on host headers rather >>> than burning IP addresses (for some RIR you are expected not to use >>> IP addresses for non-SSL virtual web

FAQ/PF Guide PDF links out of date?

I think I may have found a glitch in the OpenBSD website - The FAQ and the PF User's guide are provided as PDF's, which is very handy for those of us who like to print them out to hand to people as part of their site documentation. Quickly out of date I know, but some of our customers like paper. H

Using altq and cbq to do contention like an ISP

Hallo list, I'm running a small hosting company, and we have a 10Mb leased line. We don't use anywhere like all of it yet, but it was the smallest we could get where we are. To offset the costs a bit, we sell off portions of this to other companies in our building, using an OpenBSD router and a Ci

Greytrapping by destination server IP (Honeypotting?)

In recent weeks I have seen a number of spam attempts to servers we host that should never see them. More concisely, people are trying to send spam by connecting to port 25 on our web servers. These connections die on their arse because we don't allow 25 inbound to anything but our mail servers, bu

Help! I'm having Linux foisted on me! (PF queuing woes)

I appeal to the PF masters for some education on how to do something, because if I can't work out how to do it using PF, I'll have to do it with iptables. Eep! We are a small hosting company in a managed building, and we present ADSL/SDSL-like service over ethernet to other companies in the buildi

Re: Help! I'm having Linux foisted on me! (PF queuing woes)

n0g0013 wrote: > On 19.10-15:15, Richard Wilson wrote: > [ ... ] >> altq on $ext_if cbq bandwidth 9.1Mb queue { adsl_up, sdsl_up } >> altq on $client_if cbq bandwidth 9.1Mb queue { adsl_dn, sdsl_dn } >> >> queue adsl_up bandwidth 256Kb cbq >> queue adsl_dn band

[Fwd: Re: Chrooted sftp-server and /dev/null]

Joshua Sandbrook wrote: Gidday Im writing a shell at the moment that chroots into a users home dir and then runs only the sftp-server program ( which is in the uses home dir ). Anyway, it wont work unless /dev/null is present in the chroot... I am using execve to run sftp-server, and I am

HTTP Load balancer

Hulloo list, Can anyone recommend a load balancer for http/https for OpenBSD? Currently I'm using Pound, from http://www.apsis.ch/pound/ which runs under OpenBSD, and supports connection tracking via IP, cookie and request ID (eg PHPSESSID) and seems to do everything I need. It is currently n

Re: HTTP Load balancer

Pete Vickers wrote: On 7. jul. 2006, at 00.11, Clint Pachl wrote: Richard Wilson wrote: Hulloo list, Can anyone recommend a load balancer for http/https for OpenBSD? Currently I'm using Pound, from http://www.apsis.ch/pound/ which runs under OpenBSD, and supports connection tracking v

Installation of a disk image using PXE and bsd.rd

Soekris boxes are pretty damn cool. I've got a couple of the 4801 boards and I'm loving them to bits. I decided that having changed my router to OpenBSD using a 4801 running on a 320M microdrive, the time had come to do a similar thing for my wireless needs. Enter a Soekris 4826, courtesy of w

nload on OpenBSD - or an alternative

I regularly use nload on Linux to get a quick and dirty view of how much bandwidth something is using. It doesn't seem to be in stock 3.9, and I can't find it in ports either. Fair enough, it's not there. But a quick google reveals that back in November 2002 it was being worked on as a port (T

Re: OpenBSD and the Blind

Zachary Kline wrote: > Hello, > Let me start things out here by saying I'm not a Unix programmer. > I've no overwhelming need, commercial or otherwise, to use the operating > system at all. > I'm a hobbiest, which I suppose is a bit of a rarer breed for BSD than for > something like Linux.