Re: Allegations regarding OpenBSD IPSEC

2010-12-30 Thread Otto Moerbeek
On Thu, Dec 30, 2010 at 08:41:10PM -0700, Kjell Wooding wrote: > > Note that this assumes that there is no backdoor in random(6) (or > > arc4random_uniform, which it calls) designed to prevent the source file > > with the backdoor from being selected with the above command. > > > > > That's true.

Fare-Böcek-Köpek-Kedi-Kuş Kovucular

2010-12-30 Thread Ultrasonik Kovucular
[IMAGE] [IMAGE] [IMAGE] [IMAGE] KAPIDA VDEME FIRSATI - AYNI G\N KARGO ULTRASONİK KOVUCULAR ZEHİR DEĞİLDİR VLD\RMEZ HAYATINIZI KOLAYLAŞTIRIR ve S\REKLİ TEMİZLİK SAĞLAR İNSANLARA VE EVCİL HAYVANLARA EN UFAK BİR OLUMSUZ ETKİSİ YOKTUR FARE KOVUCULAR - BVCEK KOVUCULAR - KUŞ KOVUCULA

Re: Allegations regarding OpenBSD IPSEC

2010-12-30 Thread Kjell Wooding
> Note that this assumes that there is no backdoor in random(6) (or > arc4random_uniform, which it calls) designed to prevent the source file > with the backdoor from being selected with the above command. > > That's true. I would submit a patch, but it would require every developer to carry around

Re: MicroLinear 6692 PHY for tl(4) -- Olicom 2326

2010-12-30 Thread Loganaden Velvindron
You can have the card if you want it. Contact me offline, and we can discuss on ways to get it to you. I no longer have time to hack on openbsd.

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread Nicholas Marriott
Er, that would need other changes as well. Ignore me... On Thu, Dec 30, 2010 at 10:12:07PM +, Nicholas Marriott wrote: > Or could use stat(1) to put the item to be sorted at the start, albeit > ending up with a different format from ls: > > find -print0 | xargs -0 -r stat -f '%-40N %-10

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread Nicholas Marriott
Or could use stat(1) to put the item to be sorted at the start, albeit ending up with a different format from ls: find -print0 | xargs -0 -r stat -f '%-40N %-10Su %-10Sg %Sp' | sort On Thu, Dec 30, 2010 at 08:53:39PM +0100, Otto Moerbeek wrote: > On Thu, Dec 30, 2010 at 12:08:33AM +0100, In

Re: working hotplug for busy devices on mpii(4)

2010-12-30 Thread David Gwynne
On 31/12/2010, at 4:03 AM, Mike Belopuhov wrote: > On Wed, Dec 29, 2010 at 11:01 +1000, David Gwynne wrote: >> ive had no takers on testing. >> >> i cant see how raid and sas events will race in the current code, >> so i think the 1second sleep to avoid confusion is unecessary. i >> will put it in

Re: timeout io on mpii(4)

2010-12-30 Thread David Gwynne
On 31/12/2010, at 3:51 AM, Mike Belopuhov wrote: > On Fri, Dec 24, 2010 at 16:09 +1000, David Gwynne wrote: >> i can reliably produce a situation where an io on a disk attached >> to mpii(4) never completes. this implements timeouts on scsi io so >> we can recover from this situation. >> >> ok? >>

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread Otto Moerbeek
On Thu, Dec 30, 2010 at 12:08:33AM +0100, Ingo Schwarze wrote: > I consider this a bug in security(8). > > The following is the best i could come up with so far; make sure > to wear your sed-peril-proof sunglasses before reading the patch. > > This still mangles the file name, but at least you h

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread patrick keshishian
On Thu, Dec 30, 2010 at 10:02 AM, Ted Unangst wrote: > On Wed, Dec 29, 2010 at 6:08 PM, Ingo Schwarze wrote: >> I consider this a bug in security(8). >> >> The following is the best i could come up with so far; make sure >> to wear your sed-peril-proof sunglasses before reading the patch. >> >> T

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread patrick keshishian
On Thu, Dec 30, 2010 at 11:02 AM, Theo de Raadt wrote: >> On Wed, Dec 29, 2010 at 6:08 PM, Ingo Schwarze wrote: >> > I consider this a bug in security(8). >> > >> > The following is the best i could come up with so far; make sure >> > to wear your sed-peril-proof sunglasses before reading the pat

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread Theo de Raadt
> On Wed, Dec 29, 2010 at 6:08 PM, Ingo Schwarze wrote: > > I consider this a bug in security(8). > > > > The following is the best i could come up with so far; make sure > > to wear your sed-peril-proof sunglasses before reading the patch. > > > > This still mangles the file name, but at least yo

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread Ted Unangst
On Wed, Dec 29, 2010 at 6:08 PM, Ingo Schwarze wrote: > I consider this a bug in security(8). > > The following is the best i could come up with so far; make sure > to wear your sed-peril-proof sunglasses before reading the patch. > > This still mangles the file name, but at least you have a chanc

Re: working hotplug for busy devices on mpii(4)

2010-12-30 Thread Mike Belopuhov
On Wed, Dec 29, 2010 at 11:01 +1000, David Gwynne wrote: > ive had no takers on testing. > > i cant see how raid and sas events will race in the current code, > so i think the 1second sleep to avoid confusion is unecessary. i > will put it in and deal with fallout if it comes up. > i didn't look

Re: timeout io on mpii(4)

2010-12-30 Thread Mike Belopuhov
On Fri, Dec 24, 2010 at 16:09 +1000, David Gwynne wrote: > i can reliably produce a situation where an io on a disk attached > to mpii(4) never completes. this implements timeouts on scsi io so > we can recover from this situation. > > ok? > although, you've already committed the change, i have

diff: i386 kernel make should fail on genassym failure

2010-12-30 Thread Vladimir Kirillov
Hello, t...@! I've tweaked i386 Makefile to fail if genassym.sh fails. It's usually hard to notice when it comes before the bunch of make output of mkdep commandline. Index: conf/Makefile.i386 === RCS file: /cvs/src/sys/arch/i386/con

Re: security(8) setuid checks and space character in file name

2010-12-30 Thread MERIGHI Marcus
Hello Ingo, schwa...@usta.de (Ingo Schwarze), 2010.12.30 (Thu) 00:08 (CET): > I consider this a bug in security(8). > > The following is the best i could come up with so far; make sure > to wear your sed-peril-proof sunglasses before reading the patch. Would have taken me ages to come up with

Top Shop Vam želi srećne praznike...

2010-12-30 Thread Top Shop
BliE>i se Nova godina puni smo oD ekivanja i snova... Saberite utiske iz prethodne i pripremite se za sledeDu... '...Preleti beskonaD nost i pobedi vreme i maštu, ali nikad ne zaboravi kako se koraD a po zemlji' Miroslav AntiD SreDne praznike, uspešnu i nasmejanu 2011. E>eli Vam Vaš T

Re: Allegations regarding OpenBSD IPSEC

2010-12-30 Thread Ryan McBride
On Thu, Dec 30, 2010 at 09:38:41AM +0100, Janne Johansson wrote: > > without a 'hint' (true or fake), where would you start auditing the > > code? It's just too much. > > Ted Unangst already solved that for all the potential lookers: > > Quote from http://marc.info/?l=openbsd-misc&m=1244135339134

Re: Allegations regarding OpenBSD IPSEC

2010-12-30 Thread Janne Johansson
2010/12/21 Kurt Knochner > 2010/12/21 Theo de Raadt > > > regarding the allegations about a backdoor beeing planted into OpenBSD, > I > > > did a code review myself [...] > > > > It is unfortunate that it required an allegation of this sort for > > people to get to the point where they stop blin