On Saturday 10 February 2018 00:05:27 Juan Francisco Cantero Hurtado wrote:
[snip]
> Just in case some libressl dev doesn't want read the full thread in the
> Alpine list, they want also a workaround for the lack of time_t for
> 32bits platforms on Linux.
We've already addressed this - a notafter
Unfortunately noone cares.
>The #OpenBSD IRC channel on FreeNode is listed under "OpenBSD
>Resources" at www.openbsd.org , so it is official to some degree.
>
>Blakkheim (I think he is t...@openbsd.org) is insisting with abusing his
>administrator privilege there, today by blocking me again.
>
>He
Hi,
The #OpenBSD IRC channel on FreeNode is listed under "OpenBSD
Resources" at www.openbsd.org , so it is official to some degree.
Blakkheim (I think he is t...@openbsd.org) is insisting with abusing his
administrator privilege there, today by blocking me again.
He seems to have some form of un
On 02/09/18 18:20, listo factor wrote:
On 02/08/2018 11:44 AM, Peter N. M. Hansteen wrote:
...> cd /usr/ports; make search key=smb
yields among other things
Port: usmb-20130204p4
...
which might fit the scenario.
Thank you, it appears it does. However...:
I can get this to work for root
Fri, 9 Feb 2018 07:45:40 -0500 Jiri B
> Hi,
>
> I have supermicro x8sil-f (latest bios/ipmi fw) with 2 fans and it has started
> to beep after a while when OS is up while it detected non-existing fans either
> run at 0 RPM or in -2560 RPM.
Hi Jiri,
Does a manual restart of the BMC card (via IPM
On 02/09/18 17:22, Philip Mundhenk wrote:
Thank you both. That worked. Ubuntu already had a package named signify so,
with all 3 files in the $PWD, the correct command is:
signify-openbsd -C -p openbsd-62-base.pub -x SHA256.sig install62.iso
Possibly part of the problem is that the Ubuntu pa
Thank you both. That worked. Ubuntu already had a package named signify so,
with all 3 files in the $PWD, the correct command is:
signify-openbsd -C -p openbsd-62-base.pub -x SHA256.sig install62.iso
Possibly part of the problem is that the Ubuntu package signify-openbsd-keys
does NOT put anyth
> From tom.sm...@wirelessconnect.eu Thu Feb 8 23:37:59 2018
> From: Tom Smyth
> Date: Thu, 8 Feb 2018 19:40:23 +
> Subject: Re: For a FFS on an SSD, which of "-o" nil, "sync" &/ "softdep" is
> more data-safe and fast?
> To: Tinker
>
> Also use noatime mount option so whe reading files you
On 02/08/2018 11:44 AM, Peter N. M. Hansteen wrote:
...> cd /usr/ports; make search key=smb
yields among other things
Port: usmb-20130204p4
...
which might fit the scenario.
Thank you, it appears it does. However...:
I can get this to work for root, but not for a regular user.
(I get "fuse
> It isn't just this. Qt 5.10 introduces new dependency on OpenSSL 1.1
> APIs for improved security, and LibreSSL does not implement those APIs
> at all.
The 1.1 API does not improve security.
If anything, the new API requires to you repeat the same or similar
arguments to many functions, and in
On Fri 09 Feb 2018 5:50 PM, Kenneth Gober wrote:
>
> This paper provides some good background about why signify rather than
> https or gpg:
>
> http://www.openbsd.org/papers/bsdcan-signify.html
And the video:
https://www.youtube.com/watch?v=9R5s3l-0wh0
It's quite creative to include the next s
I'll get the dmesg and send it.
Please take a look at sendbug(1) to make an useful
bug report.
On 2018-02-09, A. Wilcox wrote:
> This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
> --DCcmjS5tsvvgDBhgH7OD8mW309G9dT8Dp
> From: "A. Wilcox"
> To: misc@openbsd.org
> Message-ID:
> Subject: Re: LibreSSL Linux portability and OpenBSD security
> References:
> In-Reply-To:
> Content-Type
dmesg
OpenBSD 6.2-current (GENERIC.MP) #408: Thu Feb 8 04:09:33 MST 2018
dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP
real mem = 3774021632 (3599MB)
avail mem = 3652632576 (3483MB)
enter_shared_special_pages: entered idt page va 0x8001 pa 0x1d56000
enter_s
On Fri, Feb 09, 2018 at 12:58:30PM +, Kevin Chadwick wrote:
> I assume you know far more than me and A.Wilcox from the Alpine list
> but this was mentioned. They are planning to revert to OpenSSL next
> week.
>
> I don't use Alpine, though it is possibly my preferred Linux, just
> thought I wo
On Fri, Feb 9, 2018 at 4:44 PM, Kevin Chadwick wrote:
> On Fri, 09 Feb 2018 16:11:01 -0500
>> but I can't for the life of me figure out how to cryptographically
>> verify the legitimacy of install62.iso with SHA256.sig.
>
> I've never done it on linux however try
>
> signify -C -p /etc/signify/ope
Well, someone said my keyboard was working.
FVWM looks very strange.
Changed appearance after I added uvideo firmware.
Key board does NOT work in X.
I get about 30 characters for one keypress after
the first letter.
Mouse also doesn't work in X after adding firmware
Sadly, Ctrl-Alt-Backspace is my
On Thu, 8 Feb 2018 13:41:20 -0800
> I am considering a move to OpenBSD, since I subscribed to this
> mailing list some time ago (~few months). I want to take advantage of
> security.
I would use OpenBSD if you can but if you do decide on Linux and care
about security there are only really a coup
On Fri, 09 Feb 2018 16:11:01 -0500
> but I can't for the life of me figure out how to cryptographically
> verify the legitimacy of install62.iso with SHA256.sig.
I've never done it on linux however try
signify -C -p /etc/signify/openbsd-62-base.pub -x SHA256.sig
https://man.openbsd.org/signify
I've installed:
signify-openbsd
signify-openbsd-keys
in an ultra-light (think Lubuntu on Atkins & amphetimines) Ubuntu 16.04.
I guess I'm just a dumb Ubuntard, despite my Intertel membership, but I can't
for the life of me figure out how to cryptographically verify the legitimacy of
install62.
systemname$ ifconfig |grep flags
lo0: flags=8049 mtu 32768
cnmac0: flags=8843 mtu 1500
cnmac1: flags=8843 mtu 1500
cnmac2: flags=8843 mtu 1500
cnmac3: flags=8843 mtu 1500
enc0: flags=0<>
pflog0: flags=141 mtu 33136
systemname$ dmesg |grep phy
ukphy0 at cnmac0 phy 4: Generic IEEE 802.3u media int
On 02/09/18 11:48, Stuart Henderson wrote:
> I don't understand that, Cryptography is OK with LibreSSL. There have
> been some problems at various times but they were either patched locally
> or fixed upstream - we're a couple of point releases behind the latest
> at the moment with no libressl-rel
Kevin Chadwick writes:
> I wish libressl could keep the 32 bit time_t workaround til linux
> kernel had fixed the problem instead of knowingly break things. Now I
> don't see we have much of an option since 32 bit linux is basically
> not supported by libressl at this point.
Contortions in the c
Thanks for the information Stu.
Unfortunately I am not sure it will help in the end.
Their project leader Natanael stated the following.
The fact that libressl developers are not willing to workaround 32 bit
linux time_t is the deal br
On 2018-02-09, Kevin Chadwick wrote:
> It isn't just this. Qt 5.10 introduces new dependency on OpenSSL 1.1
> APIs for improved security, and LibreSSL does not implement those APIs
> at all.
btw I haven't looked at Qt but some ports are already held back in OpenBSD
because it's just getting too
On 2018-02-08, Kevin Chadwick wrote:
> https://www.openssl.org/docs/man1.0.2/crypto/X509_VERIFY_PARAM_set1_host.html
>
> They say they NEED this because they can delete a whole load of code
> that could have security bugs.
>
> Perhaps I am wrong but upon a quick glance, doesn't this just boil
> do
On Thu 08 Feb 2018 6:21 PM, Steve Litt wrote:
> On Thu, 8 Feb 2018 13:41:20 -0800
> Charlie Eddy wrote:
>
> > hello misc,
> >
> > I am considering a move to OpenBSD, since I subscribed to this
> > mailing list some time ago (~few months). I want to take advantage of
> > security.
> >
> > Howev
I assume you know far more than me and A.Wilcox from the Alpine list
but this was mentioned. They are planning to revert to OpenSSL next
week.
I don't use Alpine, though it is possibly my preferred Linux, just
thought I would mention it.
To be honest, I don't even know if facilitating wider adopt
Hi,
I have supermicro x8sil-f (latest bios/ipmi fw) with 2 fans and it has started
to beep after a while when OS is up while it detected non-existing fans either
run at 0 RPM or in -2560 RPM.
OpenBSD itself used to detect both fans (though lm1.fanX numbers were different
to numbering from motherb
On Fri, 9 Feb 2018 15:09:25 +0300
> > - You shouldn't assume we know Linux. So refering to a Linux
> > specific command often does not help a lot. Try to explain what you
> > want to achieve.
>
> I was just making a point. OpenBSD has a lot of downsides in some
> areas so blindly calling it 's
On 13:02 Fri 09 Feb, Otto Moerbeek wrote:
> On Fri, Feb 09, 2018 at 12:27:47PM +0300, Consus wrote:
>
> > On 23:12 Thu 08 Feb, Jeroen wrote:
> > > I can talk hours and hours why OpenBSD is superior to Linux
> >
> > It is possible to list all block devices (with type and size) with one
> > command
On Fri, Feb 09, 2018 at 12:27:47PM +0300, Consus wrote:
> On 23:12 Thu 08 Feb, Jeroen wrote:
> > I can talk hours and hours why OpenBSD is superior to Linux
>
> It is possible to list all block devices (with type and size) with one
> command? You now, like lsblk(8) in Linux.
I don't think there'
On Fri, 9 Feb 2018 12:35:25 +0100
> also, default redirect to HTTPS should be advisable
The important thing is using secure cookies for logins. Otherwise SSL
is less secure. It is required if authenticity of page content is
beneficial of course. The performance claims are also fine and dandy if
On Fri, 9 Feb 2018 12:35:25 +0100
> https://security.googleblog.com/2018/02/a-secure-web-is-here-to-stay.html
>
> "Beginning in July 2018 with the release of Chrome 68, Chrome will
> mark all HTTP sites as “not secure”."
^^
HTTP pages!
And they admit the choice of words is p
Hello,
https://security.googleblog.com/2018/02/a-secure-web-is-here-to-stay.html
"Beginning in July 2018 with the release of Chrome 68, Chrome will mark all
HTTP sites as “not secure”."
so:
http://www.openbsdfoundation.org/
http://firmware.openbsd.org/firmware/
any mirror that still uses just
On Fri, 9 Feb 2018 13:14:05 +0300
> # lsblk
> NAMEMAJ:MIN RM SIZE RO TYPE MOUNTPOINT
> nvme0n1 259:00 238.5G 0 disk
> ├─nvme0n1p1 259:10 256M 0 part /boot/efi
> ├─nvme0n1p2 259:20 256M 0 part /boot
> └─nvme0n1p3 259:30 238G 0 part
> ├─
On 10:40 Fri 09 Feb, Philipp Buehler wrote:
> Am 09.02.2018 10:27 schrieb Consus:
> > It is possible to list all block devices (with type and size) with one
> > command? You now, like lsblk(8) in Linux.
>
> You're implying..
>
> # lsblk
> bash: lsblk: command not found
>
> And just that is alrea
Another perspective. Not to do with embedded systems, but the quality
of OpenBSD documentation.
My job is as a technical editor. I write documentation for email
encryption software based on a Debian platform (but mainly administered
in the browser, to be fair). I know exactly how documentation is
Hello Tinker,
there's a 2016-11 thread that's related:
"swap on encrypted softraid, performance penalty"
stsp@
https://marc.info/?l=openbsd-misc&m=143184355522545
tedu@
https://marc.info/?l=openbsd-misc&m=143206067713324
Marcus
t1...@protonmail.ch (Tinker), 2018.02.08 (Thu) 19:49 (CET):
> Hi m
Am 09.02.2018 10:27 schrieb Consus:
It is possible to list all block devices (with type and size) with one
command? You now, like lsblk(8) in Linux.
You're implying..
# lsblk
bash: lsblk: command not found
And just that is already a reason, I do not like "Linux" very much.
--
pb
On 23:12 Thu 08 Feb, Jeroen wrote:
> I can talk hours and hours why OpenBSD is superior to Linux
It is possible to list all block devices (with type and size) with one
command? You now, like lsblk(8) in Linux.
41 matches
Mail list logo
