Re: smtp(1) certificate validation

On Fri, Sep 06, 2019 at 10:58:43PM +1000, Ross L Richardson wrote: >[...] > > For invalid certificates, the result sometimes does not correspond with > that from nc(1): > > $ ./smtp -nv -s smtps://devio.us:https > trying host 74.81.181.124 port 443... > certificate validation

thermal-zones - A64 support

Good evening Mark (and tech@), thank you for thermal zones support. I thought it would be nice to use it in A64 as well. I tested it by running 'ubench -c' in a loop and checking clocks and CPU temp. Clock went down when temperature rised limiting available operating-points as expected (as far as

Re: install.sub: ieee80211_{scan,config}: Allow quoted SSIDs

On Tue, Aug 08, 2017 at 11:15:28PM +0200, Klemens Nanni wrote: > On Tue, Jul 04, 2017 at 10:44:57PM +0200, Klemens Nanni wrote: > > On Mon, Jul 03, 2017 at 12:45:32AM +0200, Klemens Nanni wrote: > > > Thanks for looking into it. > > > > > > On Sun, Jul 02, 2017 at 04:32:43PM +, Robert Peichaer

Re: rad(8) and carp interfaces

Florian Obser(flor...@openbsd.org) on 2019.09.06 16:51:35 +0200: > On Wed, Sep 04, 2019 at 06:07:35PM +0200, Matthieu Herrb wrote: > > Hi, > > > > I've a pair of redundant routers, which need to run rad(8) on the > > internal interfaces. > > > > But using carp, on the inactive router, rad complai

Re: rad(8) and carp interfaces

On Wed, Sep 04, 2019 at 06:07:35PM +0200, Matthieu Herrb wrote: > Hi, > > I've a pair of redundant routers, which need to run rad(8) on the > internal interfaces. > > But using carp, on the inactive router, rad complains every > time it tries to send a RA: > > rad[65590]: sendmsg on carp2: Can'

Re: rcctl issues when running in non-default rdomain

On Thu, Sep 05, 2019 at 11:00:06PM +0200, Matthieu Herrb wrote: > Hi, > > on my redundant firealls I have an " admin" interface in rdomain 1 > with a sshd listening, used to be able to access the slave machine and > let it access the internet to be able to run syspatch or pkg_add. > > This works

[patch] pstat(8): display text for msts/endrun line disciplines

pstat(8) will display text description for the nmea line discipline, but not for msts/endrun. This patch adds support for displaying text for msts and endrun line disciplines in the output of pstat -t. diff --git usr.sbin/pstat/pstat.8 usr.sbin/pstat/pstat.8 index d523b0014..d2631f834 100644 --- u

Re: smtp(1) certificate validation

On Fri, Sep 06, 2019 at 08:41:21AM +0200, Eric Faurot wrote: > Hi, > > This patch adds the missing bits for verifying the server certificate > in smtp(1). >[...] Whilst this is a great improvement, it doesn't seem to be quite right... For sites with valid certificates, things seem OK:

account stack map and syscall writable

Hi, To find more violators of our shiny security features, I would like to add stack map and system call write protection to process accounting. stackpivot -MDXT bluhmttyp3 0.00 secs Fri Sep 6 10:20 (0:00:00.00) PDP-11 compatibility on VAX is not used anymore

tanf() can be modified according to a bugfix in tan()

The calculation of tanf() which lies in src/lib/libm/src/k_tanf.c can be modified according to a bugfix ported on FreeBSD on GitHub: https://github.com/freebsd/freebsd/commit/152a4c4166c18974fe1fc9d9a8535d78956aca26    And here's the code: - if(ix<0x3180)    /* x < 2**-28 */ -         {if((in