tag:blogger.com,1999:blog-8616610987649128333.comments2024-03-07T18:07:32.939+01:00That grumpy BSD guyPeter N. M. Hansteenhttp://www.blogger.com/profile/12852746787621165833noreply@blogger.comBlogger583125tag:blogger.com,1999:blog-8616610987649128333.post-1556733223970889672023-08-31T15:44:42.574+02:002023-08-31T15:44:42.574+02:00I received a call today asking if I wanted to reac...I received a call today asking if I wanted to reactivate my Blockchain account, supposedly created in 2017, which supposedly contains €64,000. I said, sure, go ahead and reactivate, assuming there was no downside, since all they had was my name, phone number and (an old) email address. I also asked her to email me with the details of my account and gave my current email address. I have not received any email. I don't understand what they were trying to achieve, other than finding my current email address, as this is the only new information I gave her. Is it perhaps the first step in a series of conatcs where they seek my ID details?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-67697118533023077152023-02-08T09:33:01.309+01:002023-02-08T09:33:01.309+01:00The bit about applying patches and no gpu support ...The bit about applying patches and no gpu support has me suspect it's been a while since you actually tried running the system.<br /><br />Which versions, rough time frame?Peter N. M. Hansteenhttps://www.blogger.com/profile/12852746787621165833noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-27164898742228529442023-02-08T09:18:13.785+01:002023-02-08T09:18:13.785+01:00Used to run openbsd but who has time to mess with ...Used to run openbsd but who has time to mess with applying patches and no gpu support. Plus you have to admit it's slow as heck. Horrible for any real world end user use. Best thing to come from the project is OpenSSH.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-43428875698652460262022-12-15T12:52:29.998+01:002022-12-15T12:52:29.998+01:00Yes, you are right that "date -r $epochtime&q...Yes, you are right that "date -r $epochtime" is a BSDism. Much of what I write here is somewhat OpenBSD-centric.Peter N. M. Hansteenhttps://www.blogger.com/profile/12852746787621165833noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-34271302377444914162022-12-15T12:14:21.587+01:002022-12-15T12:14:21.587+01:00Just a very minor note on date command and epoch t...Just a very minor note on date command and epoch time conversion: with GNU tools I would expect only "date -d @EPOCHTIMEINSECONDS" to work ... the stated "date -r SECONDS" won't generally work (only on BSD environments?). Or did I miss something?J. E. Klasekhttps://klasek.atnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-77287283329804540122022-07-04T15:59:28.389+02:002022-07-04T15:59:28.389+02:00Thanks for pointing this out!
It's almost cer...Thanks for pointing this out!<br /><br />It's almost certainly a pasto, but fixed now.Peter N. M. Hansteenhttps://www.blogger.com/profile/12852746787621165833noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-77862420831424465322022-07-04T15:19:23.792+02:002022-07-04T15:19:23.792+02:00on 2022-07-04, the bsdly.blogspot.com article link...on 2022-07-04, the bsdly.blogspot.com article link is pointing to undeadly.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-37173956220136700872022-04-20T15:43:00.845+02:002022-04-20T15:43:00.845+02:00I have collected the failed passwords too for a fe...I have collected the failed passwords too for a few weeks, and if you have an earlier raspberry you should probably change the default password.<br /><br />Top user/pass combo<br /><br /> 40 root root<br /> 32 root admin<br /> 27 ubnt ubnt<br /> 25 pi raspberry<br /> 24 root 123456<br /> 20 root 12345<br /> 18 root guest<br /> 17 root 1234<br /> 15 pi raspberryraspberry993311<br /> 15 guest guest<br /> 15 admin admin<br /><br />Top passwords<br /><br /> 6282 123456<br /> 264 123<br /> 250 password<br /> 190 1234<br /> 184 12345<br /> 144 admin<br /> 92 raspberry<br /> 82 1<br /> 66 12345678<br /> 54 123456789<br /> 52 raspberryraspberry993311<br /> torehttp://jalape.nonoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-43703561166730507072022-03-01T15:13:49.248+01:002022-03-01T15:13:49.248+01:00I saw a sudden lift in firewall blocking at the st...I saw a sudden lift in firewall blocking at the start of Feb, and it dropped to a new lower level on the 23rd.<br /><br />https://i.imgur.com/V6XGIbs.pngpreviouslysilenthttps://www.blogger.com/profile/14497240878231404804noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-81125234000049685232021-10-01T23:01:30.118+02:002021-10-01T23:01:30.118+02:00Thank you for this. I'm slowly making the move...Thank you for this. I'm slowly making the move from Linux to either NetBSD or OpenBSD not sure yet. The file structure and the idea of "x" just belongs "here" is real nice heh. It was a good read and very informative.Neotigerhttps://www.blogger.com/profile/16696343400584120803noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-82059214198993580022021-10-01T13:25:13.322+02:002021-10-01T13:25:13.322+02:00got laughed at a couple times because I could not ...got laughed at a couple times because I could not watch youtube "live".. so wget to the rescue and full screen problem solvedTonga Silivahttps://www.blogger.com/profile/13192355926491774657noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-18143809112718242982021-10-01T06:18:51.663+02:002021-10-01T06:18:51.663+02:00My OpenBSD moment was when I tried to use it as a ...My OpenBSD moment was when I tried to use it as a Samba file server. It was easy for initial setup. But then I started trying moving files to it. I was getting half the expected network through put. Checked everything. Still slow. Various recommended Samba options, still slow. I gave up. I doubt OpenBSD would remain as secure as the hype says if it were as popular as Linux or Mac. Once pentesters start taking a close look at it in practical deployment, I doubt it would remain any more or less secure than other OSes. The default deployment is pretty much useless as is.<br /><br />I switched my file server to FreeBSD. It has served well. I still look at OpenBSD from time to time, but I don't find it useful as a practical matter. It's relegated to an old laptop I don't have a lot of use for just to poke around at it. Security has to be practical. I've not found OpenBSD to be practical. OMMVAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-12755815101077569972021-09-30T22:23:16.848+02:002021-09-30T22:23:16.848+02:00My favorite OpenBSD moment relates to a credit car...My favorite OpenBSD moment relates to a credit card processor I was CTO of in the early 2000s.<br /><br />The place was technologically a mess.<br /><br />"The network crashes all the time," was the mantra from execs and minions alike. <br /><br />And, when it wasn't "crashing" it was unbearably slow even to copy files across the LAN.<br /><br />The IT staff were spending fully 50% of their time on triage and just keeping things afloat.<br /><br />OpenBSD to the rescue.<br /><br />Within a week, the legacy infrastructure machines running DNS and DHCP were replaced.<br /><br />The network was setup to use VLANs and PF. <br /><br />Traffic shaping was put into play so the developers could actually *work*, customer support staff were able to do their thing, and the VoIP lines stopped jittering.<br /><br />On the heels of that, IPSec came into play, replacing the slow, tired-ass Cisco VPNs to remote offices that no one understood and everyone was afraid to reboot.<br /><br />Everything Just Worked(tm).Bob Johnsonnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-31057761969155755152021-08-29T18:23:57.870+02:002021-08-29T18:23:57.870+02:00Just wanted to add two comments on the article htt...Just wanted to add two comments on the article https://bsdly.blogspot.com/2021/08/recent-and-not-so-recent-changes-in.html<br /><br />A very nice article! Can I suggest two small revisions?<br /><br />First, Your mastery of english clearly exceeds that of many native speakers!<br /><br />However, the paragraph opening "Fast forward some twenty-plus years and the last article I published, and even got into Norwegian mainstream IT news site" might force some readers (mainly low IQ physics guys like me) to struggle because you have constructed a long run-on sentence that is hard to parse until after the very last word is delivered. <br /><br />Could you perhaps break that paragraph into 2 or 3 sentences? Doing that would make it conform to your usual writing style. <br /><br />That is my only complaint - the rest of the article is quite succinct, clear and well written! <br /> <br />Also, the table labeled "Here is the queue setup that I came up with for one of my sites:" is in a fixed box and the text within (pf queue configurations) overflows and cannot be viewed. I'm afraid my css knowledge is limited, so I cannot suggest a fix for this.<br /><br />Thank you again - everything you write is great!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-40734209699002667692021-07-21T01:34:24.540+02:002021-07-21T01:34:24.540+02:00A while ago I bought a laptop that came with windo...A while ago I bought a laptop that came with windoze 10. I didn't like a computer that spoke to me, and was getting into Free Software, so I installed Ubuntu alongside it. Accidentally messed up the windoze install. Best accident that ever happened. From there I migrated around the linuxverse, and now use OpenBSD. (I still have linux for zoom and other apps that I am forced to use to deal with other people) I run twm because I like a lightweight envirnoment, but I could never see myself going back to windows. Your blog has been very helpful on my OpenBSD journey, introduced me to ed(1) and other great software. Thanks!Anonymoushttps://www.blogger.com/profile/01752765642780685661noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-57084511228324077122021-04-01T12:47:26.002+02:002021-04-01T12:47:26.002+02:00I2C is almost 40 years old. It has been used on ev...I2C is almost 40 years old. It has been used on every notebook motherboard that I have ever seen due to its need for only two lines thus reducing the space needed. Common uses are RTC, NVRAM, temperature sensors, fan controllers. It is also used in VGA, DVI, and HDMI connects. Usually, all of this is handled by the BIOS and is not an issue for the OS.AThomas M. Beaudry K8Lhttps://www.blogger.com/profile/01553823595617526126noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-59228606451118593342020-08-08T18:15:10.517+02:002020-08-08T18:15:10.517+02:00The sometimes hit inboxes here too, but I see a lo...The sometimes hit inboxes here too, but I see a lot more of them as attempted deliveries to our imaginary friends (aka spamtraps).<br />Peter N. M. Hansteenhttps://www.blogger.com/profile/12852746787621165833noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-78660303614925412962020-08-08T17:56:40.711+02:002020-08-08T17:56:40.711+02:00I get tons of these, too. It seems they stalk the...I get tons of these, too. It seems they stalk the OpenBSD community.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-4706801678877082322020-07-25T16:03:33.585+02:002020-07-25T16:03:33.585+02:00I am really grateful to read this article, this is...I am really grateful to read this article, this is nice and informative thanks for sharing. mamtahttps://www.blogger.com/profile/02770785240940994384noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-4731162056050413862020-06-17T22:03:07.100+02:002020-06-17T22:03:07.100+02:00I have tons of respect for your work. That is why ...I have tons of respect for your work. That is why I came here, and that is why I am bothering to write this: <br /><br />"There is not much difference between financial derivatives, toxic waste and cryptocurrencies like Bitcoin" shows out that you might not be an expert in that area. I am not here to give a class that nobody asked for but I would suggest you to read the bitcoin whitepaper as well as the some defition from Pearson editorial about what is a toxic finantial derivate.<br /><br />Hoping this helps. Thank you for sharing your knowledge. All the best.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-45332722710721104962020-06-10T13:11:56.776+02:002020-06-10T13:11:56.776+02:00try i2c based machines and post back. Specifically...try i2c based machines and post back. Specifically chromebooks. They rock (not for power, for uptime) but criticism is down to the fact that when, ripped of their Googly bits (new coreboot loader) they suck. Arguments then being that i2c is rapidly being the norm now. Confucious says: OpenBSD rocks, on old junk.confucioushttps://www.blogger.com/profile/13459094826597288380noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-58231218658488007172020-04-18T12:47:26.943+02:002020-04-18T12:47:26.943+02:00I think you misunderstand the whole concept. As fa...I think you misunderstand the whole concept. As far as I can tell port knocking protects you from port scanning. You don't need a dedicated daemon to implement it, but you already mentioned that. Softwares can have bugs is not a valid argument unless you are prepared to throw out the entire OS along with the hardware, because both can contain bugs.inf3rnohttps://www.blogger.com/profile/15504572106652681388noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-51178507500410965522020-03-02T15:46:06.681+01:002020-03-02T15:46:06.681+01:00There exists various variants of this, even reciti...There exists various variants of this, even reciting an old password of yours. I get that, from time to time. Since I am a user of a password manager, which lets me fairly easily manage unique passwords per web site, I know that the source of this password was in fact a breach in Evernote some years ago.<br /><br />If you get one of this with *your current password*:<br /><br />- Relax, they probably still does not know how to get into your system. The chance is extremely slim.<br /><br />- But please go on and change that password, because one of the places you have used it has been compromised.<br /><br />Good password hygiene is vital here:<br /><br />- Never share passwords to important things passwords to random web services. Ideally, never use same password two places at all.Anonymoushttps://www.blogger.com/profile/11250530599709621557noreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-70717750523487384282020-03-02T14:20:50.538+01:002020-03-02T14:20:50.538+01:00Very funny. Even more so if your laptop doesn'...Very funny. Even more so if your laptop doesn't actually have a camera or mic, you know you haven't visited those sites or there is zero chance something like this happened because of your own security practices, incl. using browsers on systems in a way that cannot be hijacked. Checking email headers would certainly do the rest to discredit these attempts.<br />Unfortunately your point stands, the general population is ignorant about these matters, although no particularly technical knowledge is required.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8616610987649128333.post-9935910435034729422019-12-27T13:22:17.157+01:002019-12-27T13:22:17.157+01:00Assuming you are referring to running X (GUI), the...Assuming you are referring to running X (GUI), the touchpad on this machine (and as far as I recall all other machines I've set up with OpenBSD) did not require any specific configuration steps in order to work. <br />Peter N. M. Hansteenhttps://www.blogger.com/profile/12852746787621165833noreply@blogger.com