| Bulten Takvim | Temmuz Egitim Takvimi
temmuz egitim takvimi
Bogazici Egitim
w w w b o g a z i c i e g i t i m . c o m . t r
Ayin Sempozyumu
23-24 Temmuz
Insan Kaynaklari Yoneticileri Icin Sosyal Guvenlik Reformu Sempozyumu �
Calisma Yasaminda Yeni Hukuksal Uygulamalar
Program Yurutuculeri: Prof. Dr. Tekin AKGEYIK / Prof. Dr. Ahmet SELAMOGLU
/ Yrd. Doc. Dr. Sayim YORGUN / Yrd. Doc. Dr. Onat OZTURK / Zafer ERKOC
(IKU Ogr. Gor.)
Uzmanlik ve Sertifika Programlari
16-17-18-19-20 Temmuz
Finans Yonetimi Uzmanligi Serti...
| Jun 26, 7:41 pm 2008 |
| TeXitoi | Re: OpenSSH port forwarding
I suppose you want to ssh to your localmachine when you are nowhere.
For that, you can ssh to your externalserver.com, and then ssh to your
localmachine.local.
On the local machine :
localmachine$ ssh -R5022:localhost:22 externalserver.com
You can automaticate this using some scripts, see the man of ssh and
ssh-keygen.
Now, externalserver listen on localhost:5022, and forward that to
localmachine:22.
On the externalserver, you can now connect to your localmachine :
externalserve...
| Jun 26, 2:03 pm 2008 |
| raven |
| Jun 26, 6:03 pm 2008 |
| flags-question | Hardening OpenBSD: BSD file flags questions (flags vs. mount)
I try to get a better understanding of hardening OpenBSD
systems and have been digging man pages, several books (incl.
"The design and implementation of the 4.4BSD operating system")
and the archives (but not the sources due to my lack of real C
knowledge).
I could not find any answers regarding the following questions:
1) Why do flags not prevent the mount system call from using
protected directories as mount points?
I would guess that flags just "protect at inode level" while
mount "happe...
| Jun 26, 1:35 pm 2008 |
| Owain Ainsworth |
| Jun 26, 3:23 pm 2008 |
| Ted Unangst | Re: Hardening OpenBSD: BSD file flags questions (flags vs. m...
Define protection. It is not possible to modify these files. They
are protected. If you think you should be able to read the correct
contents of these files, remember that the system has been
compromised. The attacker can make you see anything they want by
directly manipulating your process's memory, regardless of what
filesystems are mounted or not.
The goal of securelevel was that once set, you could take a
compromised machine off the network, reboot it, and it would no longer
be comprom...
| Jun 26, 2:29 pm 2008 |
| Rick Aliwalas | scsi disk i/o hanging 4.3 system
I've duplicated this problem on (2) different Dell 1750's (dmesg below)
running 4.3-RELEASE. Also tried the latest 4.3 snap with the same result.
The system installs and runs fine on sd0. The data I need to restore is
on sd1h. If I mount /dev/sd1h and cp or tar the data from sd1 to a file
system on sd0, the terminal hangs after a few hundred mb is copied. Also
hangs if you du the directory. I'm unable to kill the proc (du/cp/tar).
No errors to the console or /var/log .
I 4.2-RELEASE on the s...
| Jun 26, 1:16 pm 2008 |
| raven | OpenSSH port forwarding
Hi guys, i have this net topology:
MAN
[LOCAL_MACHINE] <------->[GATEWAY]<---->INTERNET<----------> [My
EXTERNAL SERVER]
So, i want to connect into my localmachine using ssh port forwarding on
My EXTERNAL SERVER. Ofcourse the Gateway it's of my ISP, so i cant touch
this.
I can do just with SSH, or i have to use a VPN ?
If the answer is: rtfm, i already do that...
Thanks,
Francesco
| Jun 26, 12:51 pm 2008 |
| Christophe Rioux | OpenBSD as host for VMWare Server
Hello,
I googled many hours to find out that some people did the following
configuration:
* OpenBSD as Host (last version if possible)
* VMWare server installed (VMWare server 1.0.4 -> 1.0.6 if possible)
- Linux Virtual Server
- Windows Virtuel Server
But I didn't find any recent document on this. Did somebody do the
configuration or know, where I can find some documentation to implement this
solution ?
Thanks for your feedback
Regards
| Jun 26, 11:58 am 2008 |
| raven |
| Jun 26, 12:25 pm 2008 |
| Jim Razmus | Re: OpenBSD as host for VMWare Server
I think to OP was asking how to run VMs on VMWare Server running
OpenBSD. The linked article describes running OpenBSD as a VM, not
hosting VMs...
Jim
| Jun 26, 3:35 pm 2008 |
| Jim Razmus |
| Jun 26, 3:37 pm 2008 |
| raven | Re: OpenBSD as host for VMWare Server
Yeah, you're right, he explained me her problem...
I tell him, that can use the linux emulation, to use vmware server if
exist for linux.
Francesco
As ever i'm sorry for my bad english..
| Jun 26, 5:40 pm 2008 |
| Marti Martinez | Re: OpenBSD as host for VMWare Server
Yeah, you're going to have to stick with qemu; VMware is Windows/Linux/Mac
only. I vaguely seem to recall some chatter about getting xen working with
an OpenBSD dom0, but I don't think that was ever completed. But if someone
has heard differently, then please enlighten us!
--
Systems Programmer, Principal
Electrical & Computer Engineering
The University of Arizona
marti@arizona.edu
| Jun 26, 3:47 pm 2008 |
| Stuart Henderson |
| Jun 26, 10:38 am 2008 |
| Lars Noodén |
| Jun 26, 9:46 am 2008 |
| Thilo Pfennig | Re: Continuation of OpenBSD's Stop the Blob
Sorrym but your are misguided. GNU and the Linux kernel hackers have
protested often over all the years. One thing that has holded them back
is that firstly Linus does not seem to care very much about the GNU
principles (but he cared so much to chose GNU license) - another thing
seems to be that many Linux kernel hackers work for companies that
understand their mission as to provide the customers with what they
want. And also, as you all know, open documentation has gone a long way
till today. For lo...
| Jun 26, 7:20 pm 2008 |
| Jeffrey 'jf' Lim | Re: Continuation of OpenBSD's Stop the Blob
On Thu, Jun 26, 2008 at 9:46 PM, Lars Noodin <larsnooden@openoffice.org>
sorry - the final nudge to do what exactly? Stop the blob? Everybody should
listened a long time ago. I suppose it's good that the message has finally
come out now from the linux developers, but man... havent they let those
blobby fools (and we all know the most famous example) entrench themselves
already?
-jf
this has been my signature for like the longest time now... -->
--
In the meantime, here is your PSA:...
| Jun 26, 10:03 am 2008 |
| Jacob Yocom-Piatt | Re: Continuation of OpenBSD's Stop the Blob
it will always be unpopular to have the right opinion at first,
especially when it invalidates the work of others.
the cattle only go 'm00000000!!!!!!!!!!' after they've been branded.
serves them right. if you build it wrong they will come... hold on, that
doesn't sound right...
cheers,
| Jun 26, 10:16 am 2008 |
| Lars Noodén |
| Jun 26, 10:13 am 2008 |
| Martin Schröder |
| Jun 26, 9:57 am 2008 |
| Jeffrey 'jf' Lim |
| Jun 26, 11:18 am 2008 |
| Sebastian Rother | X get killed if there is not enought memory...?
Hello everybody,
I face a problem wich I would consider to be a Bug.
I have a Box wich has 2GB of RAM and downloads offen something via torrents.
Like Gentoo-Beta2 DVD, OpenBSD torrents and co.
I use rtorrent for this task.
What's the issue? X gets terminated if I download something if I switch from X to console and try to switch back.
X was started before I started downloading and there are absolutely no problems if I do not download anything. In case rtorrent runs I have like 1030k-12M free ...
| Jun 26, 5:50 am 2008 |
| Stuart Henderson | Re: carp / routing question (multiple lines)
Outbound packet -> normal routing table lookup based on the
*destination* address -> if the routing table says it should use
$ext_if1, this rule will examine the *source* address, if the
address is that of $ext_if2 it will not actually leave on
$ext_if1 but will instead leave on $ext_if2 with the nexthop
Same as above with different addresses/interfaces.
You also need NAT rules, such that traffic to certain ports
is rewritten with the source address of one or other connection.
This is ...
| Jun 26, 5:19 am 2008 |
| Amarendra Godbole | Anyone from this list at BlackHat or DefCon? And a query...
Hi,
It would be a pleasure meeting folks on this mailing list, including
OBSD developers' at BH or DefCon. Thanks.
It is generally said that the BH or DefCon wireless network is
"hostile", and sane individuals must not use their laptop for the risk
of being compromised. My question is: if I use OpenBSD -current, with
not much additional configuration (apart from the Intel wifi
firmware), will the connection be reasonable secure? (Not sure if this
hostility is a publicity stunt). Thanks again.
...
| Jun 26, 12:07 am 2008 |
| Jeffrey 'jf' Lim |
| Jun 26, 10:45 am 2008 |
| Ryan McBride | Re: Anyone from this list at BlackHat or DefCon? And a query...
The great majority of OpenBSD developers are from outside the United
States, and I would guess that most of us prefer not to visit the US now
thanks to the murderous foreign policy, authoritarian domestic
surveillance, and invasive border control. You'll find few of us there.
Personally I've been refusing invitations to go to, or even transit
While in general the Internet is a pretty hostile place, you probably
need to worry about local network attacks (sniffing, man-in-the-middle)
more than us...
| Jun 26, 10:27 am 2008 |
| Curt Micol | Re: Anyone from this list at BlackHat or DefCon? And a query...
On Thu, Jun 26, 2008 at 12:07 AM, Amarendra Godbole
I'd also recommend that you take a laptop that contains nothing you
care about. Since if you do get hacked you won't lose anything of
value. I believe even Defcon's website recommends you bring a freshly
installed computer to save you from the hassle of losing things.
Certainly make backup's before you go. :)
--
# Curt Micol
| Jun 26, 7:34 am 2008 |
| Michiel van Baak |
| Jun 26, 10:04 am 2008 |
| Tomas Bodzar | Re: Anyone from this list at BlackHat or DefCon? And a query...
Just try ;-)
Better will be use -stable with block in all in pf.
Everything is about your settings and wants.
OBSD has good chance,that attacker will better leave.
-----Original Message-----
From: owner-misc@openbsd.org [mailto:owner-misc@openbsd.org] On Behalf Of
Amarendra Godbole
Sent: Thursday, June 26, 2008 6:07 AM
To: OpenBSD general usage list
Subject: Anyone from this list at BlackHat or DefCon? And a query...
Hi,
It would be a pleasure meeting folks on this mailing list, includi...
| Jun 26, 1:47 am 2008 |
| guilherme m. schroeder | DRM, i965 and X3100: runs nice and stable
Hi,
I just enabled inteldrm and here's what i got:
inteldrm0 at vga1
info: [drm] Intel i965GM (unit 0)
info: [drm] AGP at 0xc0000000 256MB
info: [drm] Initialized i915 1.6.0 20080312
X.org:
(==) AIGLX enabled
drmOpenDevice: node name is /dev/drm0
drmOpenDevice: open result is 11, (OK)
drmAvailable: 1
drmOpenDevice: node name is /dev/drm0
drmOpenDevice: open result is 11, (OK)
drmAvailable: 1
drmOpenByBusid: Searching for BusID pci:0000:00:02.0
drmOpenDevice: node name is /dev/drm0
dr...
| Jun 25, 10:16 pm 2008 |
| bofh | Re: Resume - Mumps Developer
Even better, I read the rants of someone who had to work with it. Of
course, he could be doing reverse psychology and trying to scare people away
from the field so that he can be the only highly paid conslutant left. I
don't think that's the case though, because the pain shone through his
rants...
--
http://www.glumbert.com/media/shift
http://www.youtube.com/watch?v=tGvHNNOLnCk
"This officer's men seem to follow him merely out of idle curiosity." --
Sandhurst officer cadet evaluation.
"Se...
| Jun 25, 9:34 pm 2008 |
| openbsd misc | Re: carp / routing question (multiple lines)
Hello,
I totally agree, that's why I wrote to mailing list and not copied the example
;-) It's not the first time I'm working with pf, but the first time with two
external connections. Thanks for the link, I missed that because of the topic
(I'm not looking for load balancing).
But I didn't find out how to set this up correctly:
- normaly the choosen link is rule (pf) based
- the other line should be used if one is down (how to do that with pf?)
- how must I read the route-to / reply-to syntax?
f...
| Jun 25, 8:03 pm 2008 |
| Tom McLaughlin |
| Jun 25, 8:58 pm 2008 |
| bofh |
| Jun 25, 9:15 pm 2008 |
| Martin Schröder |
| Jun 26, 3:51 am 2008 |
| Matt Bettinger | Re: Resume - Mumps Developer
Yes. I have a buddy who works with it and Cache`(Multi-Value DB I
believe) on VMS in Houston Medical Center. They manage their
prescriptions with it. He also makes very good $$ but talk about
getting pigeon holed. There is a port Maverick on Freebsd , maybe
openbsd , that is U2 like.
-mb
| Jun 26, 8:21 am 2008 |
| Lars Noodén | Re: Resume - Mumps Developer
If you want to go whole hog, you can grab the Vista source code and set
it up on OpenBSD:
ftp://ftp.va.gov/Vista/Software/
A lot of centers use it, so pigeon-holed or not, there's good money.
(but since the original post mentioned VB whatnot, I suspect it was a
troll)
regards,
-Lars
| Jun 26, 8:31 am 2008 |
| Dag Richards | Re: Resume - Mumps Developer
Actually Cache is used extensively by a vertical market company called
Epic. It is a major player in the medical industry. Lots of jobs around
admining Epic systems on AIX, for those that swing that way.
| Jun 26, 12:06 pm 2008 |
| Eric Furman |
| Jun 26, 12:16 pm 2008 |
| m5hosting |
| Jun 25, 10:29 pm 2008 |
| Olivier Cherrier |
| Jun 26, 4:19 pm 2008 |
| Steve Shockley | Re: Sendmail question
Thanks for the reply. I wound up using milter-regex to quarantine the
messages that match my criteria, use qtool.pl to move the quarantined
messages to a different queue, un-quarantine the messages, then run
sendmail with a different config file (with a smarthost) to feed all the
messages to the specified host. Perhaps not elegant, but functional.
| Jun 26, 4:31 pm 2008 |
| Claudio Jeker | Re: Openbgpd IPv6 problem
Did you check the "bgpctl show nei" output of that peering session?
Check the message statistics for received updates. If it is null the other
side fucked up.
| Jun 25, 8:12 pm 2008 |
| Marc Espie | Re: Failing to install packages with $PKG_PATH
Paradoxically, that's me trying to relax that limitation.
I've changed the code that reads PKG_PATH from separating things on
/:, then parsing each path independently, to having the url parser
interpret the whole string, and figure out by itself where to cut things.
Along the process, the version in snapshots is the one where the url parser
does insist on the terminating /.
The further change I committed yesterday does much finer url parsing, so
that in many cases, the / requirement at end sh...
| Jun 26, 8:20 am 2008 |
| Erich | Re: OpenBGPD crash
Hi,
i haven an bgpd that is randonly crashing to on 2 openbsd 4.2 boxes, but
its not while
the reconfiguring process.
Jun 24 16:08:13 router1 bgpd[3063]: Lost child: route decision engine
terminated; signal 11
Jun 24 16:08:13 router1 bgpd[189]: fatal in SE: session_dispatch_imsg:
pipe closed: Operation now i
n progress
what is needed to do for debuging here?
erich
| Jun 26, 12:34 am 2008 |
| Claudio Jeker | Re: OpenBGPD crash
Looks like the parent process died during the 2nd config reload. At least
both the SE and RDE report a closed pipe to the parent. Can you reproduce
the problem or do you have a core file of bgpd lying around?
| Jun 25, 8:07 pm 2008 |
| Dmitrij Czarkoff |
| Jun 26, 3:50 am 2008 |
