Berkeley CSUA MOTD:Entry 47279
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/05/24 [General] UID:1000 Activity:popular
5/24    

2007/7/13-16 [Computer/Networking] UID:47279 Activity:nil
7/13    I'm thinking about getting a Soekris 4501 to replace my the P2-400
        that is currently acting as my home firewall. Has anyone used a
        Soekris system for this purpose? If so, how well does it work? Also,
        if there are any alternatives (similar power/form factor), I would
        appreciate links to those as well. tia.
        \_ John got me to use a WRAP box similar to Soekris.  I use this one:
           http://www.pcengines.ch/wrap1e203.htm
           and run m0n0wall on it.  It works very well for its purpose.  You
           should consider what you want out of a firewall.  If all you want
           is just a simple packet filter, you can probably get away with
           buying one of the Linksys WRT54 clones for under $100 and flashing
           the firmware with what you want.  The newer models are fast enough
           to handle some VPN tunnels as well.  You can just disable the wifi
           and use just the wired ports.  Sure, you can do packet filtering
           firewall with these without flashing the firmware, but the default
           firmwares generally only restrict incoming packets and not outgoing.
           \_ Well, I've been using OpenBSD for years and I don't really want
              to switch to something like a WRT54 b/c I don't really trust it
              (or Linux). I was basically looking for something I could run
              OpenBSD on that didn't use a lot of power.
              \_ One thing to keep in mind if you are putting in your own
                 installation on these boxes is the compact flash write
                 count.  So you should consider what type of write access
                 you'll be making in your setup.  I do not know if
                 the CF microdrives would be any better in that respect.
                 I must admit, that once I learned to use PF (on FreeBSD),
                 netfilter/ipnat annoys me more than they used to.
                 \_ Yeah, I read about how to manage CF write count by
                    mostly using memory fs for any rw partition. That
                    will be fine for what I'm doing. I hardly every
                    change the system after install.
2025/05/24 [General] UID:1000 Activity:popular
5/24    

You may also be interested in these entries...
2011/12/29-2012/2/6 [Computer/Networking, Computer/SW/Security] UID:54277 Activity:nil
12/29   New brute force attack against WPA1/2 base stations based on a flaw
        in WiFi Protected Setup (WPS):
        http://www.kb.cert.org/vuls/id/723755
        http://www.tacnetsol.com/products
        http://sviehb.wordpress.com/2011/12/27/wi-fi-protected-setup-pin-brute-force-vulnerability
	...
2011/11/8-30 [Computer/SW/Security, Computer/SW/OS/Windows] UID:54218 Activity:nil
11/8    ObM$Sucks
        http://technet.microsoft.com/en-us/security/bulletin/ms11-083
        \_ How is this different from the hundreds of other M$ security
           vulnerabilities that people have been finding?
           \_ "The vulnerability could allow remote code execution if an
               attacker sends a continuous flow of specially crafted UDP
	...
2009/7/4-16 [Computer/SW/WWW/Browsers] UID:53111 Activity:low
7/4     Is there a web browser available on soda?  My employer has a firewall
        blocking some web sites.
        \_ How about setting up a web proxy on Soda?
          \_ Use links :)
                \_ lynx?
        \_ Best text only web browser is elinks, it even supports some
	...
2009/6/3-5 [Consumer/CellPhone, Computer/Networking] UID:53075 Activity:moderate
6/3     Any phone geeks on here?  I want to get a new smartphone, preferably
        with wifi, touchscreen, and 3.5mm headphone jack.  I don't plan to pay
        the monthly $$ for a data plan though, since wifi is good enough for
        me.  That rules out the iPhone due to AT&T's policies.
        Maybe I should get some sort of Nokia N-series.
        \_ Wait one week and get a pre?
	...
2009/5/7-14 [Computer/Networking, Computer/SW/Unix] UID:52962 Activity:nil
5/7     What's a good reverse port forwarding for a PC(inside firewall) ->
        Unix, so that I can VNC into the Unix that gets forwarded to
        PC's VNC server?
        \_ http://micrux.net/?p=26
           Syntax, to be executed from the PC behind firewall:
           % ssh -R 5900:127.0.0.1:5901 <destination_server>
	...
2009/5/5-6 [Computer/SW/SpamAssassin, Computer/SW/Unix] UID:52948 Activity:moderate
5/4     Is mail still down? I don't seem to be getting any and vermouth
        is unavailable. I saw a note saying it was down Sunday, but it's
        almost Tuesday now.
        \_ exim4 decided it wanted to just die. With the same config file and
        everything. Steven spent all weekend and a lot of yesterday migrating
        to a VM. A side effect is that NFS is now no longer on Keg, so crashy
	...
2009/4/22-28 [Computer/SW/Security] UID:52894 Activity:nil
4/22    ok, here's a little networking puzzler. I haven't been able to access
        youtube for a couple weeks. Couldn't figure out why. Happened on all
        browsers. traceroute did weird stuff and then timed out. Finally I
        got so frustrated I setup firefox to ssh tunnel through soda.csua,
        which worked great. Then, I kill the ssh proc, quit FF, and now,
        I can access youtube just fine from any browser. wtf? any
	...
Cache (287 bytes)
www.pcengines.ch/wrap1e203.htm
Shop wrap1e203 System board Status EOL Part numbers wrap1e202 = 3 LAN / 1 miniPCI, not RoHS compliant wrap1e203 = 3 LAN / 1 miniPCI, 5/6 RoHS compliant Spec CPU: 233 MHz AMD Geode SC1100 CPU DRAM: 128 MB SDRAM Storage: CompactFlash card (not included) Power: DC jack or passive POE, min.