| Mark Peoples | info heimdal typo
simple typo
Index: heimdal.info-1
===================================================================
RCS file: /cvs/src/kerberosV/src/doc/heimdal.info-1,v
retrieving revision 1.1.1.4
diff -u -r1.1.1.4 heimdal.info-1
--- heimdal.info-1 14 Apr 2006 07:32:34 -0000 1.1.1.4
+++ heimdal.info-1 7 Oct 2007 02:49:33 -0000
@@ -467,7 +467,7 @@
Master key:
Verifying password - Master key:
-If you want to generate a random master key you can use the -random-key
+If you want to generate a ra...
| Oct 6, 10:51 pm 2007 |
| ropers | Re: pf
There are any number or reasons why "it" is not working.
Frankly, and no offense here, I'm no longer sure I understand just
what you're trying to get working. You told us at the beginning you
wanted an internal machine to communicate to the outside world (by
which I presumed you meant the Internet).
that doesn't appear to be what you're doing.
I've already pointed out that your OpenBSD box's two NICs both have
private IPs (192.168.0.111 and 10.0.0.0; cf.
[ message continues ] " title="http://en.wikipedia.org/wiki/Private_... ">http://en.wikipedia.org/wiki/Private_...
| Oct 6, 6:49 pm 2007 |
| a.padilla | Re: pf
I've been keeping up with all those emails and have made the
adjustments they suggested. I did indicate my knowledge is limited
and apologize for troubling. I do have limited knowledge of IPv4, I
am by no means experienced in any of this. I am trying to learn. I
think it is clear I'm in way over my head. So again, sorry for
troubling you. I will come back, perhaps when I have better knowledge.
Thanks for all of your help. You guys are great.
| Oct 6, 7:06 pm 2007 |
| Alvaro Mantilla Gimenez | "Upgrade" process in 4.2
Hi,
I just download the last snapshots available on ftp.openbsd.org.
<note> Because my new and shiny CDs not arrive yet to Costa Rica and i
can't wait to install 4.2 </note>. I was reading the faq on the OpenBSD web:
"-Current is where active development work is done, and eventually, it
will turn into the next -release of OpenBSD. Every six months, when a
new version of OpenBSD is released, -current is tagged, and becomes
-release: a frozen point in the history of the source t...
| Oct 6, 5:55 pm 2007 |
| Tony Abernethy | Re: "Upgrade" process in 4.2
Short answer: NO.
Longer answer: snapshots are now AFTER 4.2 and BEFORE 4.3 is tagged.
Even though 4.2 is not yet officially supported.
The upgrades go from one supported release to another.
Anything in the middle ((almost) all snapshots) can be a bad mix
of old and new and do not mix well with either before nor after.
You should get a small flurry of answers from people who know why.
| Oct 6, 6:18 pm 2007 |
| Stuart Henderson |
| Oct 6, 6:08 pm 2007 |
| Alvaro Mantilla Gimenez | Re: "Upgrade" process in 4.2
Thanks. The answer that i was looking for came from Peter N. M. Hansteen.
Probably my poor english made my question "not very well explained".
In my sentence i need to add: "..and then go to "stable" 4.2".
Anyways...like Peter said: "it's a bit too late" because the snapshots
are moving to 4.3 direction. So...probably...in some point of time...my
question was correct..right?
Regards,
Alvaro
| Oct 6, 9:26 pm 2007 |
| Peter N. M. Hansteen | Re: "Upgrade" process in 4.2
I'm afraid it's a bit too late. If you install a snapshot now, you
will be installing 4.2-current, which has moved some increments in the
direction of what will become 4.3. If you want 4.2, you will need to
wait for either your disks to arrive or the release date, whichever
happens first.
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.datadok.no/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"...
| Oct 6, 6:06 pm 2007 |
| Richard Storm | Re: TPMs in Macbooks on OpenBSD
As I understand, macbooks doesn't have TPM, macbooks PRO has.
Thanks to deanna (yeah!) sound works in 4.2, and I read cvs that newer
-current has feature when plugging headphones in event gets noticed
and built in speakers gets vol down... nice, havent tried jet.
However, sound recording doesn't work jet...
What I really miss is:
powermanagement support,
bluetooth support,
supported touchpad features, like scrooling down
wouldn't be bad atheros wifi too,
isight camera just for fun :)
Few ti...
| Oct 6, 2:55 pm 2007 |
| Theo de Raadt | 4.2 song
Just back from my (hiking) trip, I am happy to announce the 4.2
song has been added to the lyrics page at
http://www.openbsd.org/lyrics.html
Yes, it is designed to sound like a mid-era Rush song, ie. something
from Grace Under Pressure or such. And there's a few easter eggs
hidden in the song as well. It also explains the inside sleeve
image...
| Oct 6, 1:55 pm 2007 |
| Nick Guenther | TPMs in Macbooks on OpenBSD
I've got me a macbook and I'm figuring out how to install OpenBSD on
it (I'm going to see if I can do it without BootCamp, appearently it's
possible: http://refit.sourceforge.net/myths/). One of my friends
mentioned "too bad about the evil" to me and so I started digging into
one of the evils: Trusted Computing. How do I find out if this mac has
a TPM chip? Apple is never open about this fact.
This page <http://attivissimo.blogspot.com/2006/04/trusted-computing-chips-found-in-intel.html>
repo...
| Oct 6, 12:17 pm 2007 |
| Karl Sjödahl - dunceor |
| Oct 6, 12:59 pm 2007 |
| Nick Guenther | Re: TPMs in Macbooks on OpenBSD
<http://attivissimo.blogspot.com/2006/04/trusted-computing-chips-found-in-int
ooh, first: thanks for your quick response.
What *is* BootCamp? I know it's mostly just repartitioning software
but the readme that comes with it seems to imply that it install
certain special drivers to let you use the mac keyboard under windows
(i.e. Mac-Click is mapped to right click, and so on).
Why do you need acpi? I did read that and I did make myself an
acpi-enabled kernel that I can boot from if I choose (...
| Oct 6, 1:22 pm 2007 |
| Karl Sjödahl - dunceor | Re: TPMs in Macbooks on OpenBSD
Boot camp is both a tool to handle dual boot of operating systems but
Ok then it has started to get better because in the beginning I
couldn't even get to the install prompt because it hang on some usb
controller. ACPI is needed to get some of the drivers to work
Well the new Intel Core 2 Duo are Intels version of AMD64 and there
fore the closest thing you should use. You could use i386 also and
I haven't got the right click to work, I do not know if it's possible
to do. It is one of the anno...
| Oct 6, 1:45 pm 2007 |
| Robert Urban | non-PHP webmail solutions
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Folks,
a while ago (Nov, 2006), someone asked what webmail solutions people
recommended. People suggested:
- - squirrelmail
- - the horde
- - Ilohamail
- - RoundCube
- - hastymail
- - openwebmail
of all of these, only openwebmail does not rely on PHP, which I deeply
mistrust. Does anyone know of any others that don't use PHP?
thanks,
Rob Urban
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFHB7T633x7lJjLFm4RA...
| Oct 6, 12:16 pm 2007 |
| William Boshuck |
| Oct 6, 2:16 pm 2007 |
| Jeremy C. Reed |
| Oct 6, 1:15 pm 2007 |
| Michael Dexter |
| Oct 6, 12:48 pm 2007 |
| ropers |
| Oct 6, 11:09 am 2007 |
| Karel Kulhavy | Speeding up OBSD bootup
Is it possible to specify the kernel that the hardware for which there are
drivers probing for but I don't have in my PC is absent? Since OBSD has no
suspend to disk/RAM, the bootup speed is critical when working with a laptop
in public transport.
Or are there any other possible ways how to speed up the bootup process?
CL<
| Oct 6, 10:08 am 2007 |
| Constantine A. Murenin | Re: Speeding up OBSD bootup
You might want to checkout ports/sysutils/dmassage/.
Obviously, under improper use this might disable all hotpluggable USB stuff.
C.
| Oct 6, 4:31 pm 2007 |
| Shawn K. Quinn | Re: Speeding up OBSD bootup
Ideally, you should plug in all USB gadgets you ever plan to use with
the laptop before running dmassage. If you can't do that, then you
should specifically re-enable them. Be sure to enable things like the
SCSI subsystem if you plan to use a USB mass storage device (pen drive,
external hard drive, CD-/DVD-ROM, floppy drive). I made the mistake of
leaving this out once after compiling a custom kernel, then weeks later
plugged in a pen drive and wondered why I wasn't able to mount the damn
thing. (N...
| Oct 6, 10:46 pm 2007 |
| Mark Mathias | Re: Speeding up OBSD bootup
OpenBSD can suspend,
man 8 apm
apm -s for standby or apm -z for suspend state. I don't know if it will work
with your device, but it does work on some
--
Mark Mathias
| Oct 6, 10:59 am 2007 |
| Matthias Kilian | Re: Speeding up OBSD bootup
You can use config(8) to disable drivers without building a new
kernel, but you really have to know what you're doing. There's a
tool called dmassage in the ports tree (sysutils/dmassage) which
can help determining unused devices by looking at dmesgs's output.
My experience (I tried it once on a Soekris Net4801) is that doing
this kind of tuning won't gain you much speed at but time but is a
real PITA if you want to plug some new device and have to re-enable
it first to use it.
Ciao,
Kili
...
| Oct 6, 10:51 am 2007 |
| Eric Faurot |
| Oct 6, 10:32 am 2007 |
| Alexander Farber | Xbox 360 controller at the -current
Hi,
/bsd: ugen0 at uhub0 port 1
/bsd: ugen0: "Microsoft product 0x028f", rev 2.00/1.05, addr 2
/bsd: ugen0 detached
has anyone tried to use it? :-)
(Yes I'd read the news about the "old Xbox" port,
but this here is an Xbox 360 controller)
Regards
Alex
| Oct 6, 9:26 am 2007 |
| Marc Espie |
| Oct 6, 2:55 pm 2007 |
| Alexander Farber |
| Oct 6, 7:28 pm 2007 |
| Adrian Fisher | AMD Quad Core
Has anyone here used a new Quad Core chip from AMD (or indeed Intel) and if
so, how do they run with OpenBSD?
A.
| Oct 6, 7:15 am 2007 |
| Marc Balmer |
| Oct 6, 6:24 am 2007 |
| Tony Sarendal |
| Oct 6, 5:43 am 2007 |
| Timo Myyrä | Encrypting home partition
I'm just trying to encrypt my laptops /home partition to hide my
personal info if the worst happens and my lappy is stolen.
I'm wondering what would be the best method to encrypt the hard drive? I
saw some discussion on the mailing list recently and somebody pointed
out that I could encrypt whole partition.
I'm currently creating a image within a partition which I intend to
encrypt then as instructed for example here:
http://www.blackant.net/other/docs/howto-encrypted-home.php
Which would...
| Oct 6, 5:23 am 2007 |
| Nick Guenther | Re: Encrypting home partition
*The* way to make encrypted disks on OpenBSD is through vnconfig -k.
Go read up on that and come back.
Then here's what you can do (it's dead simple):
# vnconfig -k <key> svnd0 /path/to/image
# mount /dev/svnd0 /home
#note: the image file should be available somewhere that isn't /home,
obviously... you may be able to have a /home with it on there and then
mount over that and it might keep working but it's just asking for
trouble to do it that way
are you sure you want to encrypt your...
| Oct 6, 12:42 pm 2007 |
| Chris Kuethe | Re: Encrypting home partition
Why is that important? AKA "it's my laptop, and I will explicitly
choose to disclose it's contents." (says the guy who left his laptop
except for when you forget to encrypt something, or when a process
unexpectedly leaves plaintext laying about (editor temp files, core
dumps, i-meant-to-download-that-someplace-else, ...), or when you
forget your laptop in an airport or a taxi or leave the door to your
Worthy trade-off.
CK
--
GDB has a 'break' feature; why doesn't it have 'fix' too?
| Oct 6, 6:31 pm 2007 |
| Nick Guenther |
| Oct 6, 6:49 pm 2007 |
| Jacob Yocom-Piatt | Re: Encrypting home partition
using the -K switch for vnconfig is good if you're worried about offline
the performance hit is pretty unnoticeable unless you're doing lots of
reads and writes, e.g. a fileserver. on a decently fast machine you can
get 20-30 MBps read and write speed on an encrypted image which is
| Oct 6, 1:23 pm 2007 |
| Timo Myyrä | Re: Encrypting home partition
I have read the mount_vnd manual page and it describes the mount options
of the image that are needed to succesfully mount the partition on boot
but didn't reveal if there's a method to encrypt whole partition. I know
it will give me small performance hit to encrypt whole partition but it
should be OK. I had all of my HD except the /boot partition encrypted
with Linux and I didn't notice any difference in casual use.
Currently waiting for the urandom to fill the image...
Timo
| Oct 6, 4:50 pm 2007 |
| Nick Guenther | Re: Encrypting home partition
Hm? I don't understand what you don't understand.
There's no such thing as a half-encrypted svnd (=partition). If you
can mount an encrypted svnd then you have a totally encrypted drive.
If you put it in fstab even better, but you need to somehow get it to
ask you for a password (-k) or give it a saltfile (-K) from somewhere
when it does that (and you better not store that password on the same
laptop).
-Nick
| Oct 6, 6:52 pm 2007 |
| Stuart Henderson |
| Oct 6, 4:58 am 2007 |
| Layne Evans | Difficult routing problem
Hello all,
I am having some trouble with a routing situation that is difficult for
me to explain, so if you need more info let me know.
vendor -->vendor router<-- Internal LAN Location A -->OBSD GW A<-- Internet
VPN Between
Internet -->OBSD GW B<-- Internal LAN Location B
From the above I will try and describe the situation. A vendor has a
private T1 that terminates through NAT to the customers Internal LAN at
location A, the IP addresses that this vendor is using ...
| Oct 6, 4:04 am 2007 |
| Dave Anderson | Re: Difficult routing problem
Maybe I'm missing something, but (given that everything else is working
and assuming that the systems on LAN B have a default route directed to
GW B) wouldn't a static route on GW B for 207.12.0.0/18 pointing to
10.74.10.245 do the job?
Dave
--
Dave Anderson
<dave@daveanderson.com>
| Oct 6, 10:37 am 2007 |
| Thomas Schoeller | Re: Difficult routing problem
this will not work. ipsec will not encap packets that not belong to a
flow.
you need a second ipsec flow like on GW B:
ike esp from LAN_B/24 to vendor/18 peer OPENBSD_A_External
and on GW A:
ike esp from VENDOR/18 to LAN_B/24 peer OPENBSD_B_External
and then a route on GW A to the vendor network.
i think this will do the trick.
thomas
| Oct 6, 12:17 pm 2007 |
| Insan Praja SW | Re: Web configure Firewall
On Sat, 06 Oct 2007 07:23:02 +0700, Piotrek Kapczuk
<piotr.kapczuk@gmail.com> wrote:
Wow, I've tried pfsense and now i'm going to leech the comixwall :D
Thanks,
| Oct 6, 3:40 pm 2007 |
| Insan Praja SW |
| Oct 6, 10:05 am 2007 |
| Jake Conk | Re: Enabling Tidy in PHP
I have tidy built as an extension and not into php and it works
completely fine. Where does it say to not do that?
| Oct 6, 8:42 am 2007 |
| Peter N. M. Hansteen |
| Oct 6, 8:07 am 2007 |
| Marco Peereboom | Re: qemu speed
You can't run java on what?
I use java every day for citrix so that I don't have to run a windows
machine at work at all. Works fine for me.
| Oct 6, 10:27 am 2007 |
| Stuart Henderson | Re: pf
Yes, pf.conf(5) explains this, it's towards the end of the QUEUEING
section.
| Oct 6, 5:16 am 2007 |
| Calomel |
| Oct 6, 12:20 am 2007 |
| Shawn K. Quinn | Re: partition layout
Yes, a 486 is still plenty of system for use as a router, assuming the
right networking hardware is available for it. Heck, I miss my old
Pentium 100 I was using as a router (well, sort of).
--
Shawn K. Quinn <skquinn@speakeasy.net>
| Oct 6, 6:14 am 2007 |
