Hi,
I think rpki-client is now an important piece of the DFZ, so it makes
sense to mention it.
Comments? OK?
BTW there's no mention of eigrpd, should we add it? Or there's no need
to list them all?
Cheers,
Daniel
Index: index.html
===
On Fri, 27 Aug 2021 20:17:51 -0500, Aaron Poffenberger
wrote:
> + ${PKGS} && echo "pkg_add -Iu" >> /etc/rc.firsttime
I don't think this addition is worth it, but anyway this won't work for
people running -current when it's release time and the release isn't
available yet (-Dsnap).
Cheers,
D
On Wed, 25 Aug 2021 18:02:11 +0100, Stuart Henderson
wrote:
> If I manually configure a link-local the interface is successfully
> added.
>
> Anyone have an idea what the behaviour should be here? For passive
> would it make sense to accept an interface without link-local?
I discussed about tha
Hi,
I was reading bgpd.conf(5) on how to set the weight. It says:
> For prefixes with equally long paths, the prefix with the larger
> weight is selected.
However, in bgpd(8), it says:
> 8. The path with the lowest local weight is selected.
I went to read rde_decide.c to find which is right,
On Fri, 26 Mar 2021 09:36:13 +0100, Remi Locherer
wrote:
> Hi,
>
> danj@ noticed that our ospf6d.conf example is using multiple areas.
> In the man page of ospf6d we state that multi area support is not
> available. The daemon accepts such a config but does not do the right
> thing if I remember
On Sun, 14 Feb 2021 15:23:05 +0100, Sebastien Marie
wrote:
> Hi,
>
> The following diff makes rdsetroot -x (extract the disk.fs image) to
> work again for stripped bsd.rd.
>
> It passes options to keep rd_root_size and rd_root_image symbols while
> stripping. These symbols are the ones used by r
Hi,
My usual mirror died apparently. stsp kindly pointed out the cvschroot
in cvsutils package to switch to a new mirror. Here's a diff to add
this where I looked at how to do it.
Comments? OK?
Index: anoncvs.html
===
RCS file: /cv
Hi,
Since
https://github.com/openbsd/src/commit/8d7b500c2ac3625a5b524c5e150619612af2dd36,
the control socket path is not exactly correct in bgpd.8.
Here's a diff to be precise. I took the wording from bgpd.conf.5.
Cheers,
Daniel
Index: bgpd.8
===
On Sat, 3 Oct 2020 13:53:13 +0100, Stuart Henderson
wrote:
> > +next_part "Backing up filesystems with dump:"
> > +dump w | grep -vB1 ^Dump
>
> The "next_part" header text is wrong, it isn't doing a backup here,
> it's only reporting which need to be dumped.
Thanks! Here's a version with
+nex
On Sat, 3 Oct 2020 08:00:44 +0200, Ingo Schwarze
wrote:
> But this needs to remain:
>
> > -Reports on which file systems need to be dumped via
> > -.Xr dump 8 .
> > -.It
Indeed, I wrongly assumed that the other dump call was silent. Here's
the updated diff:
Index: share/man/man8/daily.8
===
On Fri, 2 Oct 2020 22:47:43 +0200, Klemens Nanni wrote:
> That is OK with me, but you need to remove all mentions:
>
> $ man -k any=VERBOSESTATUS
> afterboot(8) - things to check after the first complete boot
> daily, monthly, weekly(8) - periodic system maintenance
Indeed, th
On Fri, 2 Oct 2020 21:04:20 +0200, Ingo Schwarze
wrote:
> I certainly like this, and it works for me.
>
> But i think a change like this would need more than one OK,
> and you should wait some days such that developers can raise
> objections.
Yes, of course.
> Just in case you get sufficient O
On Fri, 2 Oct 2020 19:55:53 +0200, Ingo Schwarze
wrote:
> Hi,
>
> Daniel Jakots wrote on Thu, Oct 01, 2020 at 10:32:31PM -0400:
>
> > Currently daily(8) runs `df -ikl`.
>
> By default, it does not. It only does that if you set VERBOSESTATUS.
Are you sure? It loo
Hi,
Currently daily(8) runs `df -ikl`. I find reading daily(8) emails hard
because in today's disk size, kilobyte counts are not sensible. I'd
like to replace -k by -h so the output is more human friendly. I doubt
anyone parses daily(8) so this shouldn't break anyone setup.
It seems that historic
Hi,
To be sure I don't accidentally overwrite the passphrase files, I'd
like to make them read only. The current code expects them to be
readable and writable. I took the new code from ssh (sshkey_perm_ok
function).
While there, I changed the error message (also based on ssh) so the
user has a be
On Sat, 23 May 2020 22:08:11 +0100, Stuart Henderson
wrote:
> I think bumping the minimum to 2^9 would be reasonable, there's a more
> noticeable delay on some machines but I think that's fair enough (any
> cracking is likely to be done on a fast machine, and the user can
> force it lower themsel
Hi,
We used to have different numbers of blowfish rounds between the
default and daemon classes in login.conf. On Jun 26, 2016, tedu
committed "upgrade selected login.conf to use auto rounds for bcrypt"
for amd64, sparc64, i386, and maccpc [1].
Since the class daemon inherits from the default cla
On Mon, 27 Jan 2020 10:33:49 -0700, Todd C. Miller
wrote:
> For example, I often do:
>
> du -sk * | sort -rn | head
>
> to see the largest disk users.
>
> However, output in kilobytes is less useful than it used to be due
> to larger files now being common.
Can't you achieve what you want
On Mon, 16 Dec 2019 14:13:50 +0100, Alexander Bluhm
wrote:
> Daniel, is your sshd bound to a * or to a 127.0.0.1 socket?
According to fstat, it's *:22
> If it
> is a * socket, does it work to redirect to the IP address of the
> incoming interface?
Yes it does.
Cheers,
Daniel
On Sun, 15 Dec 2019 15:17:26 +0100, Alexandr Nedvedicky
wrote:
> > Should the rdr-to rule still work? I fixed it with using the "Port
> > foo" directive in my sshd config (and a simple "pass in to port
> > foo") in the meantime.
>
> My earlier indeed change omits your usecase. The rdr rule
Hello sashan,
On Sun, 8 Dec 2019 12:42:13 +0100, Alexandr Nedvedicky
wrote:
> It is understood the behavior, which has been settled in IP stack
> since 80's, got changed. tech@openbsd.org (or b...@openbsd.org) wants
> to hear back from you, if this change breaks your existing set up.
My sshd do
On Fri, 15 Nov 2019 08:45:23 +1100 (AEDT), Damien Miller
wrote:
> Please test this thoroughly - it's a big change that we want to have
> stable before the next release.
Tested with a Solo key. Initially it had the firmware 2.0.0 and it
didn't work but updating to 3.0.0 made it work.
Cheers,
Dan
Hi,
I know all the limitations with adding new stuff to services(5) but now
that a base software (unwind) implements DoT, would it make sense to
add it to services(5)?
Regarding the comments, I went with the wording from the iana website.
Cheers,
Daniel
Index: services
On Sat, 22 Dec 2018 19:29:01 -0500, "Ted Unangst"
wrote:
> Stuart Henderson wrote:
> > But I can't imagine scanning a range by name as being much used
> > (tcpmux-socks or something just doesn't make sense).
> >
> > What I think would be least disruptive is to continue to allow -
> > where the r
Hi,
With nc(1) you can do:
nc -zv example.com 80
or
nc -zv example.com http
which does the same. This works well unless the service name has a dash:
$ nc -zv example.com syslog-tls
nc: service "tls" unknown
This is because nc(1) is able to do some port scanning and the
delimiter used for the rang
On Mon, 30 Jan 2017 18:38:12 -0500, Daniel Jakots
wrote:
> Hi,
>
> When following the example from the OpenSMTPD faq [0], first thing is
> to create a new user with:
>
> useradd -g =uid -c "Virtual Mail" -d /var/vmail -s /sbin/nologin vmail
>
> which raises
Hi,
When following the example from the OpenSMTPD faq [0], first thing is to
create a new user with:
useradd -g =uid -c "Virtual Mail" -d /var/vmail -s /sbin/nologin vmail
which raises
warnx("Warning: home directory `%s' doesn't exist, and -m was"
" not specified", home);
I don't think givi
On Sat, 26 Nov 2016 16:40:41 +0100, Stefan Sperling
wrote:
> I think "delete" is too strong a word and confusing in the context
> of hard disks. What really happens is that the volume is "detached"
> and can be reattached later (either manually with bioctl(8), or it
> will auto-assemble).
>
> ok?
On Wed, 19 Oct 2016 17:09:20 +0100, Edd Barrett
wrote:
> On Mon, Oct 17, 2016 at 05:28:38PM +0100, Edd Barrett wrote:
> > Thanks. The general consensus was to try to reduce this a lot before
> > commit though. I will probably only include the wireless setup in
> > the FAQ.
>
> Here is the redu
Hi,
In June tedu@ committed [0] a diff to move login.conf to use auto
rounds for bcrypt on amd64, sparc64, i386 and macppc.
Here's a diff to update the man pages. Currently the man pages are
outdated on these four architectures but I guess it's still right for
other (old) architectures. After thi
On Wed, 20 Apr 2016 09:21:16 +0100, Stuart Henderson
wrote:
> This file changes twice a day if you're validating dnssec and
> it's pretty pointless to warn about in security(8).
>
> OK?
Yes please.
On Mon, 1 Sep 2014 20:52:49 +0600, Alexandr Shadchin
wrote:
> Hi,
>
> This diff updates xkeyboard-config to the latest release 2.12.
> Also includes diff from
> http://marc.info/?l=openbsd-tech&m=140750210214198&w=2 Tested on
> amd64 and i386.
>
> Comments ? OK ?
>
Compiled on amd64 on my x20
Hi,
When running tcpbench -su, a lot of them are counted as "missed PCB
cache".
I reboot the computer then netstat -sp udp gives
udp:
10 datagrams received
0 with incomplete header
0 with bad data length field
0 with bad checksum
0 with no checksum
Hi,
While trying to push things upstream in Xorg, I found a bug [0] which
disable the right control key on the layout fr-oss and which has been
fixed on June 21 [1].
I've tested it, it works.
Index: dist/xkeyboard-config/symbols/fr
On Thu, 07 Aug 2014 09:49:54 -0400, Ted Unangst
wrote:
> OpenBSD 5.5 errata 9, June 30, 2014
That was July in fact.
Cheers,
--
Vigdis
35 matches
Mail list logo
