Re: Problem with a startup script

2013-05-22 Thread russell
On 05/21/2013 11:18 PM, C. L. Martinez wrote: Hi all, I have a problem with some tcl rc.d startup scripts. Start and status works ok but stop and restart, doesn't. Script: #!/bin/sh -x # # $OpenBSD: suricata_proxyin_agent,v 1.0 daemon="/usr/local/bin/suricata_proxyin_agent.tcl" daemon_fla

Re: Problem with a startup script

2013-05-22 Thread russell
Because pexp uses pkill to do its work and pkill matches on command name only(like ps -c). sorry for the noise I just revisited this and I am wrong. the pkill bits in rc.subr are using "pkill -f" and that does match agianst the full arg list. as said before make a better pexp and it should work

Re: Bitcoin client for OpenBSD?

2012-10-18 Thread russell
On 10/16/2012 04:06 PM, Anonymous wrote: You wrote: 2012/10/16 Fritz Wuehler : ...snip... Bottom line appears to be a lone miner with a normal desktop computer is not going to be able to do anything but heat up his room. I agree bitcoin is a cool concept and design and the history is fascinati

Re: Upgrade to 5.2?

2012-11-02 Thread russell
On 11/01/2012 07:04 AM, Kurt Mosiejczuk wrote: Otto Moerbeek wrote: untarring the sets and copying the kernel by hand is not recommended. I used the perfect phrase for this in a presentation on PF a week ago: "You wouldn't ever do this... unless maybe you hate yourself." --Kurt Err, I do

pci graphics on sparc64?

2012-11-22 Thread russell
I recently picked up a pair of sun netras to play around with and I noticed they have a pci slot. I was wondering what would happen if I put a pci graphics card in there. While I expect X would work. Would I get a console? My guess is ofw prompts would not show as that would require bios/vga e

Re: Best postscript printer with network support?

2012-12-27 Thread russell
On 12/27/12 02:58, Girish Venkatachalam wrote: I want to print from my OpenBSD machines on the ethernet LAN. I asked HP and Epson but did not get a good response. I want to avoid HP. I want basic printing with Postscript ability over the network. Also good value for money. I don't think I shou

Re: trunking

2013-01-04 Thread russell
On 01/03/13 16:11, Stuart Henderson wrote: On 2013-01-03, Friedrich Locke wrote: Hi folks! What happens if i have a trunk(loadbalance) interface setted for 2 physical interfaces and connect each physical one on different switches? Tnx From the manual; "The trunk protocols loadbala

Re: UNIX A to Z List RFC

2013-02-07 Thread russell
On 02/02/2013 01:59 PM, Chris Hettrick wrote: Hi Misc, I made a list of the most classical UNIX commands / utilities from section one where there is only one per letter of the english alphabet (it's for my OpenBSD obsessed five year old son :) ). I know that this subject is very personal and

hint on starting tftpd -r

2013-02-24 Thread russell
So I am using tftpd -r and my rewrite script works however I am at a loss as to the best way to start tftpd. From my experiments, the rewrite engine has to start before tftpd, tftpd expects the socket to exist. however tftpd is started rather earlier in /etc/rc than than a "pkg_scripts" rc.d

Re: hint on starting tftpd -r

2013-02-25 Thread russell
On 02/24/2013 11:32 PM, David Gwynne wrote: what are you using the rewrite stuff for? netbooting. pxeboot is unable to pick a kernel based on machine. and as I run an oddball mix of current/stable i386/amd64 (and sparc64 but it does not count as ofwboot.net does specify kernel) so I use tft

nfe on i386

2013-03-08 Thread russell
doctor it hurts when I do this PXE boot MAC address 00:e0:81:77:e8:78, interface nfe0 uvm_fault(0xd0a36200, 0x0, 0, 1) -> e kernel: page fault trap, code=0 Stopped at get_hibernate_io_function+0x28: repe cmpsb (%esi),%es:(%edi) Well stop doing that. *sigh* yes I know I am dabbleing with

Re: llround(), round() broken?

2012-06-05 Thread russell
On 06/04/2012 07:31 PM, Alan Corey wrote: man intro (3) comes close in OpenBSD (I did man -k libraries to find it) It just seems like if a function requires a special library that should be mentioned in the function's man page as well as the header file since it needs both to work. I guess it d

Re: Customizing the install process

2012-06-08 Thread russell
On 06/07/2012 04:21 PM, Tomasz Marszal wrote: Yes i red it as well as the FreeBSD handbook section about PXE. So my idea is to install bsd system then install gnome then tar the installed system make img from tar. Later configure dhcp and tftp and nfs on a PXE server. Put bsd.rd and other files

Re: Mounting a partition, cdrom, usb as a user

2012-06-19 Thread russell
On 06/16/2012 04:39 AM, Mik J wrote: Hello, I'm able to mount a partition as a user if I have kern.usermount=1 # ls -l /dev/wd2* brw-rw 1 root operator0, 0 May 7 21:54 /dev/wd2a # ls -l /mnt drwxrwxr-x 2 myuser operator 512 May 7 22:38 extpart and # grep operator /etc/group ope

Re: Mounting a partition, cdrom, usb as a user

2012-06-19 Thread russell
On 06/19/2012 06:40 AM, Christopher Zimmermann wrote: On Mon, 18 Jun 2012 22:26:57 -0700 russell wrote: quite suprised. no love so far for fbtab(5) The fbtab file is used by login(1) to chown(2) the specified files to the user who has performed a login. Additionally, chmod(2

Re: OpenBSD forked

2012-06-22 Thread russell
On 06/22/2012 06:35 AM, Diana Eichert wrote: morons if you can't write forth code you should stay home. diana I Love me my hand crafted postscripts... Does that count?

Re: setting WOL for Realtek 8168

2012-08-29 Thread russell
On 08/29/12 06:56, Ed Ahlsen-Girard wrote: While I can set wol for this interface, the setting does not survive shutdown. I have found no bios settings that seem to pertain. This system is not dual-boot. Is this a quirk of the 8168? Do I need to look for jumpers? As far as I can tell from my at

Re: wol for nfe

2012-08-31 Thread russell
On 08/30/12 10:41, Stefan Sperling wrote: On Wed, Aug 29, 2012 at 07:53:54AM -0700, russell wrote: finally even though it did not work out for me. ( my nics were nfe(4) which has no WOL bits in OBSD, I blame nvidia, those secretive assholes.) Yes, but they cannot hide their secrets forever

Re: setting WOL for Realtek 8168

2012-08-31 Thread russell
On 08/31/12 05:38, Stefan Sperling wrote: On Thu, Aug 30, 2012 at 07:58:07PM -0500, Ed Ahlsen-Girard wrote: I'm all good now, actually - apparently wol has to be reset by rc.local each startup. Yes, or alternatively add the 'wol' keyword to '/etc/hostname.re0'. The option doesn't stick across

pxeboot, machine dependent kernel

2012-09-07 Thread russell
I have doing quite a lot of netbooting lately. However I can not figure out how to configure a specific machine to use a specific kernel. Is there a way for pxeboot to load a kernel based on something machine dependent, for example, mac address? If not, I have been digging around in sys/stand

Re: pxeboot, machine dependent kernel

2012-09-08 Thread russell
On 09/08/12 03:34, Ville Valkonen wrote: On 7 September 2012 14:08, russell wrote: I have doing quite a lot of netbooting lately. However I can not figure out how to configure a specific machine to use a specific kernel. Is there a way for pxeboot to load a kernel based on something machine

Re: Soekris net5501 locks up with Ralink 2860 miniPCI

2010-04-07 Thread russell
>I am curious, though, what brands of wifi cards OpenBSD folks use for >APs. From when I was investigating this a year or so ago the ral >cards (per the man pages) were about the only ones without some sort >of caveat in AP mode. yep, ral(4) works quite well for me ifconfig ral0 ral0: flags=884

Re: ALIX/current as an Access Point

2011-02-28 Thread Russell
On 02/27/2011 10:25 AM, Joe Snikeris wrote: On Sun, Feb 27, 2011 at 11:07 AM, Nerius Landys wrote: In general people say that Atheros chips are the best supported (use the ath driver). Slightly off topic: Is anyone using a card with an AR5213 chip? I've got a Cisco AIR-PI21AG-A-K9 that I

faq 14.15

2011-05-30 Thread russell
Just a thank you for the awesome documentation. Was upgrading my home file server, doing my normal half assed job. decided to install 49 while I was at it and during the disklabel "I though my new disk was bigger?, oh shit..." "you do keep a backup disklabel right?", "well... err... *cough* I d

Re: CGI : Shell Script

2010-08-10 Thread russell
Mayuresh Kathe wrote: Has anyone experimented with using a set of shell scripts as CGI under the stock Apache delivered with OpenBSD? I did. I wanted to learn more involved shell programing. and perhaps a little about some of the old unix languages. so I built this mini wikipedia ish thing ou

Re: Remotely connect to gnome

2010-08-27 Thread russell
Jean-Francois wrote: Hi All, I've set up an OpenBSD server running gnome and administered locally or remotely for home use. I've understood that unixes are made to work as workstations and that gnome and kde could handle that. Could you please help me to get on the way to make remote conne

Re: Router components

2010-10-04 Thread russell
Stuart Henderson wrote: On 2010-10-04, David Higgs wrote: I am building a replacement router/firewall for home use and am soliciting suggestions/commentary/alternatives on the components below. What sort of internet connection and what will be running over it? Will you be doing crypto on the

Re: How to disable IPv6?

2009-12-08 Thread russell
Hey! I use tn3270. Well actually c3270 as it is a bit saner when remapping keys. But I was very presently surprised to find tn3270 in base. Saved my day once. And thread hijack. As far as I can tell wscons does not send/set Shift+Fn keys. was sort of looking for them as I like to map that t

Re: sys/tcp.h does not compile with _POSIX_SOURCE

2010-10-22 Thread Russell
On 10/21/2010 09:52 AM, hyjial wrote: Hi list ! There is a u_int on line 50 of sys/tcp.h. u_int is defined only if __BSD_VISIBLE is which it is not is _POSIX_SOURCE is defined. Is this intended ? Hit into this when trying to build a program which uses libsoup. Thanks, hyjial I was hit with

Re: password-less console-only access and ssh remote access?

2010-10-26 Thread Russell
On 10/22/2010 09:43 AM, Joachim Schipper wrote: On Thu, Oct 21, 2010 at 07:46:50PM +0200, Bret S. Lambert wrote: On Thu, Oct 21, 2010 at 05:38:54PM +, Jay K wrote: My ideal setup would be: 1) no passwords ("*" in /etc/passwd or via vipw) 2) only ssh for remote access i.e. no pass

Re: diskmap(4) interface and live USB fstab file

2010-11-06 Thread Russell
On 11/05/2010 04:27 PM, Jacob Meuser wrote: fwiw, in -current, USB attach order should be quite predictable. there are no longer multiple threads attaching USB devices. attachment is now done in a single thread, and it is done in the same order every time. of course, if you change which USB po

stumped on a linker problem.

2010-11-20 Thread Russell
.libs/dyninst.a ./.libs/hdteq.a ./.libs/hdt1403.a ./.libs/hdt3420.a ./.libs/hdt2703.a ./.libs/hdt3705.a ./.libs/hdt3088.a ./.libs/hdt3270.a ./.libs/hdt3505.a ./.libs/hdt3525.a ./.libs/hdtqeth.a ./.libs/hdt1052c.a /usr/people/russell/hercules-3.07/.libs/libherc.a ./.libs/libherc.a /usr/people/ru

Re: OpenBSD Access Point? (Summary)

2010-12-15 Thread Russell
On 12/13/2010 04:29 AM, Lists Account wrote: Hi All, Summarising, for future reference... I received some six responses. Overall the feedback was a little disappointing. Three responses suggested that it would be easier/less time consuming/more stable to simply connect a consumer access point d

Re: Wifi host AP thoughts

2011-01-02 Thread Russell
On 01/01/2011 10:43 PM, Greg Steuck wrote: I was thinking of building a new wifi AP. The following is a stream of thoughts on the subject. Any constructive suggestions are welcome. Requirements: * Compatibility with Androids, Kindles, x86 Linux, OpenBSD wifi clients * Strong in-doors signa

sysupgrade(8) and FAQ 4 - File Sets

2020-07-16 Thread Russell Ault
so my status as a "new" user is somewhat ambiguous, at least in my own head). It will also help to clarify sysupdate's behaviour (which otherwise can come as a surprise during an operation when all surprises in particular are unwelcome). Thanks! Sincerely, Russell Ault

sysupgrade(8) and FAQ 4 - File Sets

2020-07-17 Thread Russell Ault
n years, so my status as a "new" user is somewhat ambiguous, at least in my own head). It will also help to clarify sysupdate's behaviour (which otherwise can come as a surprise during an operation when all surprises in particular are unwelcome). Thanks! Sincerely, Russell Ault

Certain size packets not passing through a L2 over L3 IPsec tunnel

2019-10-10 Thread Russell Sutherland
far end of the tunnel and I am pinging from the local end: ping -s 1388 1.2.3.4 works ping -s 1396 1.2.3.4 works All other sizes, 1389 to 1395 inclusive fail. Is there some way to remedy this? Thanks in advance. Russell P. Sutherland Email: russell . sutherland @ utoronto dawt ca N

Re: Certain size packets not passing through a L2 over L3 IPsec tunnel

2019-10-14 Thread Russell Sutherland
Ok... I've updated both ends of the tunnel to OpenBSD 6.5 and the same problem exists when trying to pass packets of a certain size. Any ideas on how to fix or work around this issue? Thanks in advance. Russell P. Sutherland Email: russell . sutherland @ utoronto dawt ca Ne

Re: Anyone using munin?

2009-04-06 Thread Russell Howe
P configuring rampage across your network (hint: this is useful for monitoring Windows boxes, if you have any of those). -- Russell Howe, IT Manager. BMT Marine & Offshore Surveys Ltd.

OpenBSD 6.5 dumps to debugger when using ifconfig bridge command

2019-06-04 Thread Russell Sutherland
tes/sector, 61341696 sectors uhub2 at uhub1 port 1 configuration 1 interface 0 "Advanced Micro Devices product 0x7900" rev 2.00/0.18 addr 2 vscsi0 at root scsibus3 at vscsi0: 256 targets softraid0 at root scsibus4 at softraid0: 256 targets root on sd0a (d3fbbb47f1a19759.a) swap on sd0b dump

Re: OpenBSD 6.5 dumps to debugger when using ifconfig bridge command

2019-06-04 Thread Russell Sutherland
: bridg 9 e priorStopped at savectx+0xb1: movl$0,%gs:0x530 ddb{2}> Russell P. Sutherland   Email: russell . sutherland @ utoronto dawt ca Network Engineer, I+TS   Voice: +1.416.978.0470 4 Bancroft Ave., Rm. 102  Cell: +1.416.803.0080 University of Toro

Re: OpenBSD 6.5 dumps to debugger when using ifconfig bridge command

2019-06-05 Thread Russell Sutherland
Done. Russell P. Sutherland Email: russell . sutherland @ utoronto dawt ca Network Engineer, I+TS Voice: +1.416.978.0470 4 Bancroft Ave., Rm. 102 Cell: +1.416.803.0080 University of TorontoFax: +1.416.978.6620 Toronto, ON M5S 1C1

Connecting to a GRE Transparent Ethernet Bridging host

2016-09-13 Thread Russell Sutherland
think it is referenced and hence not utilized. # pwd /usr/src/sys/net # grep ETHERTYPE * | grep TRANS ethertypes.h:#defineETHERTYPE_TRANSETHER0x6558 /* Trans Ether Bridging (RFC1701)*/ — Russell Sutherland Supervisor, Network Development | Enterprise Infrastructure Solutions Information

More syntax/parsing issues in the lists/macros of pf

2016-10-12 Thread Russell Sutherland
= "2.3.0.0/16" /etc/pf.conf:36: syntax error — Russell Sutherland Supervisor, Network Development | Enterprise Infrastructure Solutions Information Technology Services | University of Toronto 4 Bancroft Ave., Rm. 102 | Toronto, ON M5S 1C1 russell.sutherl...@utoronto.ca +1.416.978.0470 ~ tel +1.416.978.6620 ~ fax

Re: OpenBSD embedded?

2014-12-04 Thread Russell Sutherland
Does anyone know if the Dual-Core 500 MHz, MIPS64 board that is used in the Ubiquiti EdgeRouter family, has been used as an OpenBSD platform? I know there is development on the octeon http://www.openbsd.org/octeon.html platforms, but not sure if the port was actually usable. -- Russell

Re: OpenBSD embedded?

2014-12-04 Thread Russell Sutherland
ThanksŠ And may I assume with net booting saving local customizations (firewall rules, network configuration, etc.) is a bit awkward, as there is no local storage? -- Russell Sutherland I+TS email:russell.sutherl...@utoronto.ca office: +1.416.978.0470 mobile: +1.416.803.0080 On 2014

Re: USB hubs

2012-11-06 Thread Russell Garrison
I can confirm this all is true, but due to USB power being the way it is YMMV. I use hubs regularly for host attachment and for standalone charging. The hub in my desktop monitor is intentionally disconnected from the host in order to provide charging, but it doesn't always work. A main thing is t

OpenBSD Customer Gateway to Amazon VPC

2013-02-12 Thread Russell Garrison
I found the following thread on this issue from 2010: http://comments.gmane.org/gmane.os.openbsd.misc/168129 Amazon still only supports route-based VPNs, but they have removed the requirement for BGP and instead allow for static routes. I was able to get a tunnel working without using BGP based o

Core dumps after upgrading to OpenBSD 5.7

2015-05-15 Thread Russell Sutherland
r 2 vscsi0 at root scsibus3 at vscsi0: 256 targets softraid0 at root scsibus4 at softraid0: 256 targets root on sd0a (6b4b6c203a57b1ac.a) swap on sd0b dump on sd0b bnx0: address 78:2b:cb:13:e4:0c brgphy0 at bnx0 phy 1: BCM5709 10/100/1000baseT PHY, rev. 8 bnx1: address 78:2b:cb:13:e4:0d brgphy1 at b

Differences between etherip(4) and gif(4)

2016-07-20 Thread Russell Sutherland
, is there any real advantage with the new etherip device? — Russell Sutherland Supervisor, Network Development | Enterprise Infrastructure Solutions Information Technology Services | University of Toronto 4 Bancroft Ave., Rm. 102 | Toronto, ON M5S 1C1 russell.sutherl...@utoronto.ca

NAT logging and limits using pf

2014-10-03 Thread Russell Sutherland
n a similar environment. -- Russell Sutherland I+TS email:russell.sutherl...@utoronto.ca office: +1.416.978.0470 mobile: +1.416.803.0080

Re: ADSL2+ PCI card

2009-05-14 Thread Russell Howe
, but I'm not sure. -- Russell Howe rh...@bmtmarinerisk.com

Re: correct netmask on carp interfaces

2011-12-02 Thread Russell Garrison
On Thu, Nov 24, 2011 at 2:40 PM, Henning Brauer wrote: > if your carpdev has an IP and the IP(s) on the carp interface are in > the same subnet, is it best to have the real netmask on the carpdev > and all-ones netmasks on the carp interface, for the case where you're > carp slave. > > and the rul

Re: using ssh to forward the install console

2011-12-07 Thread Russell Garrison
On Wed, Dec 7, 2011 at 2:47 PM, Eric Oyen wrote: > hello group. > > I have an interesting (and fairly technical) question. > > the question is: how can I forward the install screen via ssh to another > machine on my network? I ask this because I didn't see any specific > instructions that applied.

Re: OT: some news here

2011-12-16 Thread Russell Garrison
Wonderful news Eric! Good to know opportunities like these exist. Happy Holidays and good luck with the program.

Re: strange tcp rst with rdomain

2011-12-20 Thread Russell Garrison
I have found that I need to add something like: !route -T 2 exec /usr/sbin/sshd To the pertinent hostname.if file to make sure sshd is listening in addtional routing tables, but I do not know if this is best. On Mon, Dec 19, 2011 at 1:02 PM, PP;Q Q P(P8P?P8QP8P= wrote: > Hello. > > I'm runni

Re: strange tcp rst with rdomain

2011-12-20 Thread Russell Garrison
at 3:28 PM, Russell Garrison wrote: > I have found that I need to add something like: > > !route -T 2 exec /usr/sbin/sshd > > To the pertinent hostname.if file to make sure sshd is listening in > addtional routing tables, but I do not know if this is best. > > On Mon, Dec

Re: problem running named in non 0 rdomain

2012-01-03 Thread Russell Garrison
On Sun, Jan 1, 2012 at 5:40 PM, Stuart Henderson wrote: > I'm pretty sure the child will be inheriting the rdomain from the process > which forked it. > I can offer the anecdote that when I ran sshd using the route -exec wrapper my child session would exist in whatever rdomain was hosting the da

Re: [PF] bug in port range.

2012-01-03 Thread Russell Garrison
For those of us playing the CS home game. Is this an example of left-to right evaluation? My thought on this was that the value 81 isn't greater than 82 and isn't less than 80, so the rule doesn't match.

Re: network throughput tool suggestion

2012-02-15 Thread Russell Garrison
On Tue, Feb 14, 2012 at 3:13 PM, Christiano F. Haesbaert wrote: > On 14 February 2012 17:59, Mihai Popescu wrote: >> Hi, >> >> I need to test a commercial router for throughtput and I decided to >> put it between 2 OpenBSD systems running network benchmark software. >> Looking on openports.se I f

Re: IPSEC Site-to-Site not routing packages

2012-02-23 Thread Russell Garrison
I can confirm this. Spent way too much time in my VMWare lab on this until I thought to add a default route to the host-only interfaces I was running the tunnel on. All you need is default route and it will work. I have found that "fleshed out" config for networking on OpenBSD is a sure way to clea

Re: CD/DVD CDROM support

2012-02-24 Thread Russell Garrison
I found USB is easy with a thumbdrive big enough to hold the files, or there is pxe which is probably easier if you can control the DHCP on the network. My manual process for thumbdrive involved: Assume thumb is empty, otherwise insert to system and run. Also make sure you know the dev name from i

Re: Problem filtering CARP in PF

2012-03-01 Thread Russell Garrison
In the spirit of K.I.S.S. I use: pass quick proto carp Since that should match the number on 4 and 6 packets. > Your block rule had "inet" so you were probably blocking IPv4 only. But > because of the send errors (due to pf blocking) fw1 started to demote > itself.

Re: My OpenBSD 5.0 installation experience (long rant)

2012-03-07 Thread Russell Garrison
I am absolutely intrigued by this story despite my better judgement. You were able to cook your own full OpenBSD installer on a USB stick with GRUB instead of downloading an ISO or using PXE, but you failed disk setup in the installer? It really would be interesting to see if you can read just http

Re: My OpenBSD 5.0 installation experience (long rant)

2012-03-08 Thread Russell Garrison
It really is amazing how much the install is genuinely loved on OpenBSD. I think there are other distributions out there where the installer is liked or even praised, but I would describe my feelings and what I see here as love. It is always a pleasure when I have the chance to show someone the ins

Re: Intel ICH9R compatibility with OpenBSD

2012-03-13 Thread Russell Garrison
> Hello Axton, thanks for your reply. > I do not want use RAID, I just need S-ATA > to connect HDD and install system on it. You will be fine. I have Dell gear here that includes the Intel Matrix RAID ICH, and it doesn't have an issue with OpenBSD. The controller checks for a RAID pair at startup

Re: IPSec isakmpd pre shared interoperability with Fortigate VPN

2012-04-01 Thread Russell Garrison
Does look like the line, but is the OpenBSD ipsec VPN new to you? If it is I suggest building one between two OpenBSD machines and testing to see how you can break/change things from the defaults in the man pages. Doing that really made a difference for me after completely flopping on the first try

possible bug in CDROM recognition?

2008-01-02 Thread Russell Gadd
dmit not looking for any similar bug reports, but I will if the folks here who know a thing or two want me to file a bug report, in which case please give a few bried pointers as to where to do it. Russell

Re: Advice requested on security issues

2008-01-05 Thread Russell Gadd
On 05/01/2008, Nick Holland <[EMAIL PROTECTED] > wrote: > > > > > Your PF rules would probably just block all incoming traffic and pass > outgoing traffic. Or if you want to make sure it is used only for your > desired app, block everything outbound 'cept for that traffic destined to > your desir

Re: Advice requested on security issues

2008-01-05 Thread Russell Gadd
On 05/01/2008, Douglas A. Tutty <[EMAIL PROTECTED]> wrote: > > > > > 2: Space for the P3 is limited and I would like to remove its printer > and > > > print bank statements across the LAN on the main PC (running Linux, or > maybe > > > FreeBSD in future) using CUPS. Does this introduce security ris

How to find all package files

2008-01-07 Thread Russell Gadd
le way to determine which files to include. Is there a better way to do this? Russell

Mozilla Firefox security updates

2008-01-09 Thread Russell Gadd
the ports source on the UK mirror site and it is dated 1 Sept 07 so I presume this includes only 2.0.0.6 and there is no port later than this. I am out on a limb regarding implementing 2.0.0.11 in source form - what do other people do? Russell

Re: Advice requested on security issues

2008-01-09 Thread Russell Gadd
do use javascript and I have a concern over cross site scripting - only because I have yet to look deeper into this to see what the risks are. But if I never visit non-bank sites is this a problem? Russell

Kernel Compile Crashes

2008-01-28 Thread Russell Ault
a0 port 0x3f0/6 irq 6 drq 2 fd0 at fdc0 drive 0: 1.44MB 80 cyl, 2 head, 18 sec usb0 at uhci0: USB revision 1.0 uhub0 at usb0: VIA UHCI root hub, rev 1.00/1.00, addr 1 usb1 at uhci1: USB revision 1.0 uhub1 at usb1: VIA UHCI root hub, rev 1.00/1.00, addr 1 biomask fb45 netmask ff6d ttymask ffef pctr: user

intel pro NICs and OBSD

2006-12-09 Thread Russell Fulton
question is are the em NIC drivers vulnerable to the recently announced intel NIC driver stack overflow bugs? I see that there are new FREEBSD em drivers available on the Intel site but no mention of Open BSD. Cheers, Russell

Sun x4100 and MP kernel

2006-08-09 Thread Russell McGregor
(0,1,3,0,0) at cpu_configure+0x29 main(0,0,0,0,0) at main+0x372 ddb{0}> ps PID PPID PGRPUID S FLAGS WAIT COMMAND *0 -1 0 0 7 0x80204 swapper ddb{0}> btw mpi(4) appears to work great on this hardware. PS: I am not subscribed to misc@ so please include me in an reply. Cheers, Russell

Re: Sun x4100 and MP kernel

2006-08-09 Thread Russell McGregor
> I am doing some testing on a Sun x4100 on loan to us from a vendor, I > have loaded up a snapshot from about 20060803 and everything seems to > run fine from the standard /bsd kernel image, but it panics when > trying to boot bsd.mp. I updated src with a CVS checkout earlier > today and rebuilt

Re: Sun x4100 and MP kernel

2006-08-09 Thread Russell McGregor
> I suggest you try amd64 on the box. That should work fine. > dlg@ told me that there are interrupt issues with amd64. I need to handle high throughput on several interfaces and filter them with pf, and I believe that I would experience difficulties in that situation. Having said that, I wil

Changed source address for packets from ospfd causing breakage?

2008-09-01 Thread Russell Howe
o1:1.2.3.7 { metric $cost_gige passive } interface lo1:1.2.3.8 { metric $cost_gige passive } } -- Russell Howe, IT Manager. BMT Marine & Offshore Surveys Ltd. [EMAIL PROTECTED]

Re: OpenBSD and HP Proliant DL320/DL360 G5

2008-09-15 Thread Russell Howe
Johan Strvm wrote, sometime around 15/09/08 16:39: On Sep 15, 2008, at 5:16 PM, Russell Howe wrote: Johan Strvm wrote, sometime around 15/09/08 15:46: Well, the main questions is if DL360/DL320 & OpenBSD is working good together, the rest is only me thinking out loud :) They work fine

Re: OpenBSD and HP Proliant DL320/DL360 G5

2008-09-15 Thread Russell Howe
ace 0 "HP Virtual Keyboard" rev 1.10/0.02 addr 2 uhidev0: iclass 3/1 ukbd0 at uhidev0: 8 modifier keys, 6 key codes, country code 33 wskbd1 at ukbd0 mux 1 wskbd1: connecting to wsdisplay0 uhidev1 at uhub1 port 1 configuration 1 interface 1 "HP Virtual Keyboard" rev 1.10/0.02 addr 2 uhidev1: iclass 3/1 ums0 at uhidev1: 3 buttons wsmouse0 at ums0 mux 0 uhub6 at uhub1 port 2 "HP Virtual Hub" rev 1.10/0.01 addr 3 softraid0 at root root on wd0a swap on wd0b dump on wd0b -- Russell Howe, IT Manager. <[EMAIL PROTECTED]> BMT Marine & Offshore Surveys Ltd.

Re: Duplicate incoming packets to multiple destinations using pf

2008-11-05 Thread Russell Howe
fraid is out of my control - but I do agree with your point "...should *never* be a reason...". Maybe you answered your own question here - what if you sent your traps to a multicast address and had proper multicast routing? Not something I've ever tried, mind you... -- Rus

Re: Duplicate incoming packets to multiple destinations using pf

2008-11-05 Thread Russell Howe
Simen Stavdal wrote, sometime around 05/11/08 15:25: Hi Russell, Thanks for your answer. Sending traps to multicast addresses seems like a good idea, except it would be up to the receiver to decide whether to use the trap or not (taking away the possibility to filter which hosts gets copied

Redistributing routes for IPSec tunnels with OpenOSPFD

2008-06-17 Thread Russell Howe
's no real reason I haven't done that aside from thinking that it shouldn't be necessary, but maybe now it is... -- Russell Howe, IT Manager. <[EMAIL PROTECTED]> BMT Marine & Offshore Surveys Ltd.

Re: Hardware recommendation for firewalls (more than 4 NICs)

2008-07-16 Thread Russell Howe
he extra ports, so why not? It gives me room to expand by breaking the bonds if necessary. Next task is to fix munin (or replace with something else) so that I can actually get bandwidth stats graphed. -- Russell Howe, IT Manager. <[EMAIL PROTECTED]> BMT Marine & Offshore Surveys Ltd.

Re: UPDATE: mozilla-firefox-3.0

2008-07-18 Thread Russell Howe
https://bugs.adobe.com/jira/browse/FP-37 Looks like the JIT was released under the MPL/GPL/LGPL in 2006: http://www.mozilla.org/projects/tamarin/ -- Russell Howe [EMAIL PROTECTED]

Re: sshd idle session

2006-11-22 Thread Wood, Russell
; > You could use the equivalent of ksh's TMOUT environment variable in > bash. I don't know bash so I can't be more specific. > > -pachl What about: IdleTimeout Regards, Russell Wood DISCLAIMER: Disclaimer. This e-mail is private and confidential. If you are not the i

Re: VPN client connectivity issues with OBSD firewall

2005-05-30 Thread Russell Fulton
l NAT IP for your firewall. If this is the problem then the 'fault' lies with the vpn software not with the of configuration. Cheers, Russell [demime 1.01d removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s]

Re: howto clean disks ?

2005-06-01 Thread Russell Fulton
es one or five hours to do the wipe. (OK there will be times when you do care and in that case you opt for speed unless there is something extraordinarily sensitive on the disk...) Russell [demime 1.01d removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s]

ALTQ question

2005-06-02 Thread Russell Sutherland
all fall within a known CIDR block. Can this be done using ALTQ? I believe its possible using dummynet. -- Russell P. Sutherland Email: russ @ madhaus.cns.utoronto.ca 4 Bancroft Ave., Rm. 102Voice: +1.416.978.0470 University of Toronto Fax: +1.416.97

problems adding packages in 3.7

2005-07-27 Thread Russell Fulton
es I've read the man page). A little more guidance would be appreciated. Cheers, Russell

Re: problems adding packages in 3.7 -- solved

2005-07-27 Thread Russell Fulton
It has just been pointed out to me (off list) that I was loading the package from the 3.6 tree. Doh!!! Russell Russell Fulton wrote: Hi Folks, I'm getting errors about missing libraries while adding packages to a 3.7 system. This was a new install with 3.7 so there should not be

x clients on 3.7 -- which install sets do I need?

2005-08-11 Thread Russell Fulton
Hi Folks, Which of the X install sets do I need if I just want to run x clients? Clearly I don't need xserver but what about xfonts? Russell

argus calloc failure on 3.7

2005-08-26 Thread Russell Fulton
g was changed in 3.7 that may have caused latent bugs to manifest themselves. Anyone have any ideas? Cheers, Russell

Building Fox gui on 3.8 -- threadsafe versions of getpwuid and friends

2006-01-09 Thread Russell Fulton
some searching on Google but have not turned up anything useful. There are several courses of action possible but I am unsure which route to take. Hopefully there is a package which contains these routines but I have not been able to find it. Cheers, Russell

patch management on larger install bases

2006-01-09 Thread Russell Fulton
nd /bsd.rd) using the little shuffle recommended in the upgrade docs. Which perl files need replacing? How do others who manage several boxes apply patches like the recent ones? Cheers, Russell

using cvs to access stable branch

2006-01-09 Thread Russell Fulton
ssh: connect to host anoncvs1.usa.openbsd.org port 22: Connection refused I'm confused... Also http://www.openbsd.org/anoncvs.html#CVSROOT refers to the 'patch branch' and 'current' -- I assume 'patch branch' is really stable ?? cheers, Russell

Re: using cvs to access stable branch

2006-01-09 Thread Russell Fulton
Christopher Pascoe wrote: > Hi Russell, > > Try switching to anoncvs3.usa.openbsd.org. It looks like anoncvs1 may be > having problems at the moment - it isn't responding at all now. > Doh! Whose bright idea was it to get pf to send RST for outbound dropped ssh sessions?

Re: pf not logging to /var/log/pflog...

2006-01-09 Thread Russell Fulton
that if you have pf running all the time then there are a lot less things to go wrong. It starts at boot time and that is it. Russell

Problems with making a new release

2006-02-09 Thread Russell Fulton
nlist.sh /usr/src/distrib/i386/ramdiskA/../common/list COPY ${OBJDIR}/instbin instbin cp: /mnt/instbin: Read-only file system *** Error code 1 [h... some wrapping of lines above ] any idea what is actually wrong? Cheers, Russell

  1   2   >