Entry 42241 (Berkeley CSUA MOTD)

Berkeley CSUA MOTD:Entry 42241

WIKI \| FAQ \| Tech FAQ
`http://csua.com/feed/`

2025/05/25 [General] UID:1000 Activity:popular

5/25

2006/3/15-16 [Computer/Networking, Computer/SW/OS/FreeBSD] UID:42241 Activity:nil

3/14    I'm looking for a good tutorial/howto for setting up IPSEC
        on my *BSD router/firewall. Basically I want to be able to
        access my home network while I'm on the road (iBook w/ OSX
        10.4), and I don't want to set up a bunch of SSH port forwards
        to talk to various services. Any pointers?

3/14
 _______________
< FEEL THE LOVE >
 ---------------
        \   ^__^
         \  (oo)\_______
            (__)\       )\/\   ~
                ||----w |   .   ~  smell the love!
                ||     ||  #=.#
                ||     || ,.#=..
        \_ There are a bunch of ways to do this.  Look at http://www.kame.net
           for one implementation (included in FBSD, I think).  The FreeBSD
           handbook also has a pretty good section on setting it up (just
           search the main handbook page for 'ipsec'.  Last but not least, may
           I humbly recommend running M0n0wall (http://www.m0n0.ch on WRAP
           or Soekris, as its IPSEC implementation is pretty airtight.  -John

3/14
 _______________
< FEEL THE LOVE >
 ---------------
        \   ^__^
         \  (oo)\_______
            (__)\       )\/\   ~
                ||----w |   .   ~  smell the love!
                ||     ||  #=.#
                ||     || ,.#=..

2025/05/25 [General] UID:1000 Activity:popular

5/25

You may also be interested in these entries...

2013/8/22-10/28 [Computer/Companies/Yahoo, Industry/SiliconValley] UID:54732 Activity:nil

8/22    http://marketingland.com/yahoo-1-again-not-there-since-early-08-56585
        Y! is back to #1! Marissa, you are SEXY!!!
        \_ how the heck do you only have 225M uniq vis/month when there
           are over 1 billion internet devices out there?
           \_ You think that every single Internet user goes to Y!?
        \_ Tall blonde skinny pasty, not my type at all -former Y!
	...

2013/6/26-8/13 [Computer/Domains, Computer/Networking, Computer/SW/WWW/Browsers] UID:54697 Activity:nil

6/26    This ones for you psb -ausman
        http://25.media.tumblr.com/027fe67c84c2288cc16e9c85db690834/tumblr_mp0ag8DCQI1qzwozco1_1280.jpg
        \- that's pretty good. i wish someone had put the idea to be before i saw
           it on the internet, so see if i'd have put the 9 justices in the same
           boxes. JOHN PAUL STEVENS >> All the sitting justices. --psb
        \- that's pretty good. i wish someone had put the idea to be before i
	...

2012/3/29-6/4 [Computer/HW/Memory, Computer/HW/CPU, Computer/HW/Drives] UID:54351 Activity:nil

3/29    A friend wants a PC (no mac). She doesn't want Dell. Is there a
        good place that can custom build for you (SSD, large RAM, cheap video
        card--no game)?
        \_ As a side note: back in my Cal days more than two decades ago when
           having a 387SX made me the only person with floating-point hardware,
           most machines were custom built.
	...

2012/4/2-6/4 [Computer/SW/Languages/Java, Computer/SW/RevisionControl] UID:54353 Activity:nil

4/02    We use Perforce at work for revision control. It seems to work okay.
        Lately, a lot of the newer developers are saying that Perforce
        sucks and we should switch to Mercurial or Git. I have done some
        searching on the Internet and some others have this opinion. Added
        advantage is that Mercurial and Git are free. However, there would
        be some work to switch for the sysadmins and the developers.
	...

2012/4/26-6/4 [Computer/Networking] UID:54371 Activity:nil

4/26    I see that soda has an ipv6 address but ipv6 traffic from this box
        doesn't actually work (ping6 <DEAD>ipv6.google.com<DEAD>, ping6 http://www.v6.facebook.com
        Is this expected to work?
        \_ Soda doesn't have a real IPv6 address.  The IPv6 addresses you see
           in ifconfig are just link-local addresses; any IPv6-capable machine
           will autogenerate these, whether or not it's connected to an IPv6
	...

2012/1/19-3/3 [Computer/Networking, Politics/Foreign/Europe, Computer/SW] UID:54294 Activity:nil

1/19    Transcript between the Italian cruise ship captain and the Port
        Authority
        http://www.csua.org/u/v9i (abcnews.go.com)
        This captain is amazing.
	...

2011/11/8-30 [Computer/SW/Security, Computer/SW/OS/Windows] UID:54218 Activity:nil

11/8    ObM$Sucks
        http://technet.microsoft.com/en-us/security/bulletin/ms11-083
        \_ How is this different from the hundreds of other M$ security
           vulnerabilities that people have been finding?
           \_ "The vulnerability could allow remote code execution if an
               attacker sends a continuous flow of specially crafted UDP
	...

2009/5/4-6 [Computer/SW/OS/Linux, Computer/SW/OS/FreeBSD] UID:52939 Activity:moderate

5/4     I would appreciate a reliability ranking between:
        1) OpenBSD
        2) OpenSolaris
        3) FreeBSD
        4) Debian-Stable
        5) Suse Linux Enterprise Server
	...

2009/4/17-23 [Computer/SW/OS/FreeBSD] UID:52867 Activity:low

4/17    If you have a general access AssOS machines, this is worth
        taking this seriously. --psb
  http://c-skills.blogspot.com/2009/04/udev-trickery-cve-2009-1185-and-cve.html
        <DEAD>admin.fedoraproject.org/updates/udev-127-5.fc10<DEAD>
        \_ What does this have to do with MS Windows?
           \_ psb is a bsd lover.
	...

2008/12/10-16 [Computer/HW/CPU, Computer/HW/Drives] UID:52220 Activity:moderate

12/9    Another idea for the CSUA that lets you spend money and maybe get some
    cool toys. Instead of buying a beefy server (like say, a massive server
    with 20 386DX processors), buy a few cheap machines (like the ones
    mentioned below) that have good disks and work on failover / load
    balancing. A netscaler or other piece of hardware is complete overkill,
    but maybe hacking an OpenBSD box could do the trick. The idea is that
	...

2007/7/17 [Computer/SW/Languages/C_Cplusplus] UID:47312 Activity:nil

7/13    CSUA Life Roster
1 point each for:                                               key:
                significant other (out of county rule applies)   G
                car (Chevy Novas do count)                       C
                housing (dorms DO NOT count)                     H
                own computer running reasonable multi-tasking OS U
	...

2007/7/13-16 [Computer/Networking] UID:47279 Activity:nil

7/13    I'm thinking about getting a Soekris 4501 to replace my the P2-400
        that is currently acting as my home firewall. Has anyone used a
        Soekris system for this purpose? If so, how well does it work? Also,
        if there are any alternatives (similar power/form factor), I would
        appreciate links to those as well. tia.
        \_ John got me to use a WRAP box similar to Soekris.  I use this one:
	...

2007/3/15-17 [Computer/SW/OS/FreeBSD] UID:45977 Activity:nil

3/14    http://www.csua.org/u/i8o
        Remote exploit in OpenBSD kernel.  Security is hard.  And yes, it
        would be really difficult to exploit this in practice. -dans
	...

2007/3/13-14 [Computer/SW/OS/FreeBSD] UID:45949 Activity:nil

3/13    OpenBSD 4.1 preorder is up:
        http://www.openbsd.org/items.html#41
	...

2007/3/13-14 [Computer/SW/Security] UID:45950 Activity:nil

3/13    OpenSSH 4.6 is out:
        http://undeadly.org/cgi?action=article&sid=20070308183425
        Portable Version:
        ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-4.6p1.tar.gz
        OpenBSD Version:
        ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.6.tar.gz
	...

2006/11/8-9 [Computer/SW/Security] UID:45263 Activity:nil

11/8    OpenSSH 4.5 is out:
        http://www.openssh.org/txt/release-4.5
        ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.5.tar.gz
        ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-4.5p1.tar.gz
	...

2006/9/27-28 [Computer/SW/OS/FreeBSD, Computer/SW/Security] UID:44580 Activity:nil

9/27    OpenSSH 4.4 is leftist
        http://www.openssh.org/txt/release-4.4
        OpenBSD src:
        http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.4.tar.gz
        OpenBSD src signature:
        http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/openssh-4.4.tar.gz.asc
	...

2006/9/22-25 [Computer/SW/OS/FreeBSD] UID:44496 Activity:nil

9/22    OpenBSD 4.0 available for pre-order:
        http://www.openbsd.org/40.html
	...

2006/8/16-18 [Computer/SW/OS/FreeBSD] UID:44024 Activity:nil

8/16    Greatest piece of software ever written is 4.3 BSD:
        http://tinyurl.com/go7lv (informationweek.com)
        \_ Windows is run by more computers than all other OS combined.
           \_ that only makes it common, not great.
              \_ If it wasn't great people wouldn't use it.  They'd use 4.3
                 BSD.
	...

Cache (2803 bytes)

www.kame.net -> www.kame.net/Webpage of Kame Project KAME Project If you migrate to IPv6 HTTP, youll be able to view the dancing kame KAME Project is a joint effort of six companies in Japan to provide a free IPv6 and IPsec for both IPv4 and IPv6 stack for BSD variants to the world. Newsflash! April 19, 2004 : A SNAP kit was generated. For the complete list of changes, check here. April 12, 2004 : A SNAP kit was generated. For the complete list of changes, check here. April 5, 2004 : A SNAP kit was generated. For the complete list of changes, check here. OpenBSD 34 Platforms with KAME code merged in: FreeBSD 40 and beyond OpenBSD 27 and beyond NetBSD 15 and beyond BSD/OS 42 and beyond Whats the difference between KAME kit, and KAME-integrated BSD releases? Related software IPv6-enabled software and patches more about our IPv6-enabled software and patch collections Project Overview Overview of KAME Project Current Status Releasing Plan Related Papers link to the WIDE v6 working group paper list KAME Project Reports Japanese Getting KAME software ftp / anonymous CVS / cvsup / cvsweb FAQ lists and reference materials KAME FAQ NetBSD IPv6 FAQ NetBSD IPsec FAQ FreeBSD IPsec mini-HOWTO My 6bone router using OpenBSD 28 Newsletter KAME Report on BSD Magazine Japanese On KAME Y2K issues snap-users : users mailing list KAME-SNAP kit hackers guide Mailing list backlogs http cgi / ftp Browse our source code tree Bug reports Browse existing problem reports Submit problem reports Recent changelogs racoon ML : racoon users mailing list MRTG Temperature Graphs Index Page KAME Logo Collection Our office getting other IPv6/IPsec implementations LR450, 460 and 550, Fujitsu: jp/v6 jp/v4 INRIA IPv6 stack: fr jp NRL IPv6 stack : us jp freeswan Linux IPsec stack Hitachi GR2000 Hitachi Toolnet6 Win95/NT4 IPv6 stack Microsoft Researchs MSR IPv6 for WinNT Microsoft IPv6 technology preview for Win2K URLs of interest IETF IPv6 WG Freenet6 : worlds easiest IPv6 provider IPv6 user group IPv6 working group, WIDE Project WIDE Project TAHI Project : IPv6 verification technologies USAGI Project : IPv6 for Linux HS247 : IPv6 News & Links IST IPv6 Cluster : European IPv6 R&D Portal Internet Engineering Standard Repository Cyclic : our favorite version controlling system, CVS GLIC: Global Internet Liberty Campaign Stuffed turtles Atelier Momonga Digital Video stream over IPv6 multicast BSDs link to the Internet protocol stack , by Perry Metzger plathome : ultimate UNIX-oriented shop Ready-to-install KAME CD-ROM images Configuring IPv6 tunnel with OpenBSD 27 VPNC IPsec/IKE conformance test suite - uses KAME/racoon and openbsd/isakmpd as reference code AES competition Search Barnes & Noble bookstore for IPv6 Japanese not official. IPv4 the server rooms temperature is 222 Cat 17:39:30 on 4/21GMT Powered by Internet node.

Cache (172 bytes)

www.m0n0.chWelcome to m0n0.ch. Please select your destination: embedded "all-in-one" firewall package FreeBSD stripped down for embedd ed applications by Manuel Kasper < mk@neon1.net>