headers
David Lebel | 1 Aug 2002 04:11

Re: spamassassin dumps core with latest current.

On Wednesday, July 31, 2002, at 02:02 , Todd C. Miller wrote:

> As a workaround you can move the line:
>     use POSIX qw(setsid);
>
> to be before:
>     use Mail::SpamAssassin;
>
> in spamd. until the actual bug is found and fixed.

Didn't Daniel back out his atexit's diffs?

Ciao,
	...David

--
// david lebel <lebel <at> {lebel.org,nobiaze.com,openbsd.org}> //
// http://www.lebel.org/           http://www.nobiaze.com/ //
// pgp: 3633 6999 D47E 73ED 099F  4341 08A4 8E48 EF56 61D1 //
Permalink | Reply | 2 comments |
headers
Han | 1 Aug 2002 04:55
Picon

Re: spamassassin dumps core with latest current.

David Lebel (lebel <at> lebel.org) wrote:
> On Wednesday, July 31, 2002, at 02:02 , Todd C. Miller wrote:
> 
> >As a workaround you can move the line:
> >    use POSIX qw(setsid);
> >
> >to be before:
> >    use Mail::SpamAssassin;
> >
> >in spamd. until the actual bug is found and fixed.
> 
> Didn't Daniel back out his atexit's diffs?

Yup.

  http://marc.theaimsgroup.com/?l=openbsd-cvs&m=102813934801496&w=2

Cya, Han.
Permalink | Reply | 0 comments |
headers
Todd C. Miller | 1 Aug 2002 06:57
Favicon

Re: spamassassin dumps core with latest current.

In message <F1EE75DD-A4F3-11D6-B4C8-0003934475B8 <at> lebel.org>
	so spake David Lebel (lebel):

> Didn't Daniel back out his atexit's diffs?

Yes, and he found the bug--there is a very evil hack in malloc()
that was causing the problem.  The new atexit() will resurface
soon with a hack to avoid the problem.

 - todd
Permalink | Reply | 0 comments |
headers
Shawn T Amundson | 1 Aug 2002 17:43

dhcp patch

The following patch allows dhclient to work on cable-modem systems
maintained by AT&T Broadband in Minneapolis and Saint Paul.  Without
the patch, a DHCPOFFER is never received from their systems.  A 
friend suggested the fix to me after analyzing the problem on his
NetBSD system.  AT&T changed their setup here around Jun 19; before
that the ttl of 16 worked fine.

Thanks,

-Shawn

? dhcp.patch
Index: usr.sbin/dhcp/common/packet.c
===================================================================
RCS file: /cvs/src/usr.sbin/dhcp/common/packet.c,v
retrieving revision 1.4
diff -u -r1.4 packet.c
--- usr.sbin/dhcp/common/packet.c	24 Jun 2001 06:05:07 -0000	1.4
+++ usr.sbin/dhcp/common/packet.c	1 Aug 2002 14:55:05 -0000
 <at>  <at>  -146,7 +146,7  <at>  <at> 
 	ip.ip_len = htons(sizeof(ip) + sizeof(udp) + len);
 	ip.ip_id = 0;
 	ip.ip_off = 0;
-	ip.ip_ttl = 16;
+	ip.ip_ttl = 127;
 	ip.ip_p = IPPROTO_UDP;
 	ip.ip_sum = 0;
 	ip.ip_src.s_addr = from;

--
(Continue reading)

Permalink | Reply | 0 comments |
headers
Eric Johnson | 1 Aug 2002 22:41

Re: MDaemon Warning - Virus Found

On Thu, 01 Aug 2002 13:04:55 -0300
postmaster <at> sinos.net wrote:

> A seguinte mensagem continha anexo(s) que continha(m) o(s) seguinte(s) v_rus:
> De        : ice23pr17 <at> yahoo.com
> Para      : tech <at> openbsd.org
> Assunto   : A  funny game
> Data      : 
> 
> 
> Anexo				V_rus			A__o tomada
> ------------------------------------------------------------------------------
> demo.exe                      I-Worm.Klez.h            Removed

I'm a bit puzzled by all these messages.

Various people keep posting messages, I assume automagically,
saying that some particular e-mail from the list contained a
virus, worm, trojan, or something along those lines.

But all the message I get from the list have the attachments,
if any, removed.

So where are they actually finding these malicious little
e-critters?  Is there such a thing as a "E-mail Header Worm"?

Eric Johnson
Permalink | Reply | 3 comments |
headers
Devin Reade | 1 Aug 2002 23:10

OT: MDaemon Warning - Virus Found

Eric Johnson wrote:

> I'm a bit puzzled by all these messages.

You're seeing the messages because the source of the virii is
faking out both the From: and To: headers.  If an infected
machine 'I' is sending the the target 'T', in general the
email will be forged to appear to be coming from a third machine
'A' and going the a fourth 'B'.  If 'T' has an MTA that is doing
virus scanning, the scanner finds this Klez virus and sends an
email to 'A' (in this case tech <at> openbsd.org) as a notification,
even though 'A' never had anything to do with it.  Since mail
delivery is based on the envelope and not the headers, the
original destination 'B' is irrelevent other than providing some
misdirection to people trying to figure out what is going on.
It also has the advantage that 'I' is never informed by 'A'
that 'I' has a virus.

I'd suggest sending followups off of the list.
--
         Devin Reade         <gdr <at> gno.org>
Permalink | Reply | 0 comments |
headers
Mike Deibler | 1 Aug 2002 23:38
Picon
Favicon

Hang on fresh install/boot of 3.1 related to CS4232?

Hello,

I've installed 3.1 on an old HP Pavilion 5030, but have run into
a problem when trying to boot.  The boot process hangs after the
sound card configuration step.  If I disable the wss* from the
UKC, I can get a successful boot, but the sound card is not configured
and I get PnP spec violations.  dmesg outputs from three paths are
below:

1) Boot with UKC verbose turned on.  This is hand-copied from the
   screen....
2) Boot with UKC 'disable 200'
3) Boot with UKC 'disable 200' and 'verbose'

I have also tried disabling pcibios, but the boot hangs at the
same place, which seems to indicate that the problem isn't related
to pcibios.

I've searched the FAQ and didn't find anything.  I've also searched
the misc and tech archives and found two posts with very similar
problems.  Unfortunately, those posts don't have any replies and
the authors e-mail addresses bounce.

There don't seem to be any irq conflict or mem overlaps, but
I could be wrong.

Any help is very much welcome.  I'm a new-to-OpenBSD person and
will 'read the f'ing manual' if you point me to the right one. ;)

Thanks,
(Continue reading)

Permalink | Reply | 0 comments |
headers
francisco | 1 Aug 2002 23:14

Re: MDaemon Warning - Virus Found

On Thu, 1 Aug 2002, Eric Johnson wrote:

> I'm a bit puzzled by all these messages.
>
> Various people keep posting messages, I assume automagically,
> saying that some particular e-mail from the list contained a
> virus, worm, trojan, or something along those lines.
>
> But all the message I get from the list have the attachments,
> if any, removed.
>
> So where are they actually finding these malicious little
> e-critters?  Is there such a thing as a "E-mail Header Worm"?

Read up on the Klez virus at your fav virus center.  Here's one link found
through google-
http://securityresponse.symantec.com/avcenter/venc/data/w32.klez.h <at> mm.html

Note the part labelled "Email spoofing".  This virus makes my phone ring
too much.

>
> Eric Johnson
>

-f
http://www.blackant.net/
Permalink | Reply | 1 comment |
headers
Eric Johnson | 2 Aug 2002 02:41

Re: MDaemon Warning - Virus Found

On Thu, 1 Aug 2002 17:14:09 -0400 (EDT)
"francisco" <frisco <at> blackant.net> wrote:

> On Thu, 1 Aug 2002, Eric Johnson wrote:
> 
> > I'm a bit puzzled by all these messages.
> >
> > Various people keep posting messages, I assume automagically,
> > saying that some particular e-mail from the list contained a
> > virus, worm, trojan, or something along those lines.
> >
> > But all the message I get from the list have the attachments,
> > if any, removed.
> >
> > So where are they actually finding these malicious little
> > e-critters?  Is there such a thing as a "E-mail Header Worm"?
> 
> Read up on the Klez virus at your fav virus center.  Here's one link found
> through google-
> http://securityresponse.symantec.com/avcenter/venc/data/w32.klez.h <at> mm.html
> 
> Note the part labelled "Email spoofing".  This virus makes my phone ring
> too much.

The bad part is that I knew all that but I just wasn't thinking. 

In fact I posted a page describing it for our customers in April when Klez.H
first showed up.

I must be suffering from early onset Old-Timer's (Alzheimer's) disease.
(Continue reading)

Permalink | Reply | 0 comments |
headers
Neal Alexander | 2 Aug 2002 04:31

Re: ISDN on OpenBSD 3.1.

> >ISDN is not economical in many areas due to minute charges...
'cheat' the phone company and use DoV-ISDN ;P.

Ive been using a Netgear ISDN router for a while now. I can't say im
particularly happy with it. but then again there isnt anything to complain
about really. Its annoying having to waste an ip on the router though, but
it was fairly easy/cheap to get an 8block of IPs from the ISP i use. I
argued about three of the IPs unavoidably going to waste and got a nice
discount on the package heh.
Permalink | Reply | 0 comments |

Gmane