From jim at netgate.com Wed Jun 1 02:43:51 2016 From: jim at netgate.com (Jim Thompson) Date: Wed, 1 Jun 2016 01:43:51 -0500 Subject: [talk] new ARM board running FreeBSD Message-ID: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> I know that talk@ loves ARM boards running BSD. At Netgate we?ve been playing around with ARM for a while, and we have a new board to tell you about. uFW (microFirewall) is a lot like a Beaglebone Black, but with two 1Gbps Ethernet interfaces. The TI SoC actually has a 3 port 1Gbps switch on-die, and by using VLANs, one can create a highly-integrated ?one-armed router?. AM3352 600MHz ARM Cortex-A8 SoC 512MB DDR3 RAM 4GB 8-bit eMMC on-board flash storage Both Ethernets brought out to RJ45s, using 1Gbps PHYs microSD socket for simple recovery/hacking UART on microUSB microUSB OTG port 5VDC input uFW is pretty small. At 77.4x43.2mm, smaller than RPi: Pi Zero is 65x30mm https://www.raspberrypi.org/help/faqs/#generalDimensions RPi is 85.60x56mm Photos with digital calipers at https://twitter.com/gonzopancho/status/731324140632727553 We booted FreeBSD -CURRENT on the board earlier tonight. Links to a gist of the bootlog and a photo are in: https://twitter.com/gonzopancho/status/737874921435594753 pfSense for this platform is under active development. Cheers, Jim From kmsujit at gmail.com Wed Jun 1 05:08:58 2016 From: kmsujit at gmail.com (Sujit K M) Date: Wed, 1 Jun 2016 14:38:58 +0530 Subject: [talk] new ARM board running FreeBSD In-Reply-To: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> References: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> Message-ID: On Wed, Jun 1, 2016 at 12:13 PM, Jim Thompson wrote: > > I know that talk@ loves ARM boards running BSD. > > At Netgate we?ve been playing around with ARM for a while, and we have a new board to tell you about. > > uFW (microFirewall) is a lot like a Beaglebone Black, but with two 1Gbps Ethernet interfaces. Really nice to know. What interest me is that whether you have built a custom kernel or some patches. I would love to see the patches you might have applied to HEAD. > We booted FreeBSD -CURRENT on the board earlier tonight. Links to a gist of the bootlog and a photo are in: > https://twitter.com/gonzopancho/status/737874921435594753 The boot log seems really impressive if its only an custom build only with no patches, my favourite DHCP seems to be working. Another thing I would like to point out is Beagleone is that once I was using Linux, there is some thing known as Cyclic test which lets one test the RT Linux Kernel. I don't thing there is something similar to that or I am ignorant. But would love to see that in FreeBSD. > > pfSense for this platform is under active development. > > Cheers, > > Jim > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From spork at bway.net Wed Jun 1 15:08:41 2016 From: spork at bway.net (Charles Sprickman) Date: Wed, 1 Jun 2016 15:08:41 -0400 Subject: [talk] new ARM board running FreeBSD In-Reply-To: References: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> Message-ID: <238D7512-2603-4C08-B00E-F01503C3F9C9@bway.net> On Jun 1, 2016, at 5:08 AM, Sujit K M wrote: > > On Wed, Jun 1, 2016 at 12:13 PM, Jim Thompson wrote: >> >> I know that talk@ loves ARM boards running BSD. >> >> At Netgate we?ve been playing around with ARM for a while, and we have a new board to tell you about. >> >> uFW (microFirewall) is a lot like a Beaglebone Black, but with two 1Gbps Ethernet interfaces. > > Really nice to know. What interest me is that whether you have built a > custom kernel or some patches. > I would love to see the patches you might have applied to HEAD. Yeah, it will be interesting to see if this makes it to OPNsense, I would imagine they?d have interest in ARM as well. What?s the price point on this device going to be? Charles > >> We booted FreeBSD -CURRENT on the board earlier tonight. Links to a gist of the bootlog and a photo are in: >> https://twitter.com/gonzopancho/status/737874921435594753 > > The boot log seems really impressive if its only an custom build only > with no patches, my favourite DHCP seems > to be working. > > Another thing I would like to point out is Beagleone is that once I > was using Linux, there is some thing known as > Cyclic test which lets one test the RT Linux Kernel. I don't thing > there is something similar to that or I am ignorant. > But would love to see that in FreeBSD. > >> >> pfSense for this platform is under active development. >> >> Cheers, >> >> Jim >> >> _______________________________________________ >> talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From jim at netgate.com Wed Jun 1 17:49:04 2016 From: jim at netgate.com (Jim Thompson) Date: Wed, 1 Jun 2016 16:49:04 -0500 Subject: [talk] new ARM board running FreeBSD In-Reply-To: <238D7512-2603-4C08-B00E-F01503C3F9C9@bway.net> References: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> <238D7512-2603-4C08-B00E-F01503C3F9C9@bway.net> Message-ID: <1560AD9B-C6CA-4B2E-96D2-26E1B5421342@netgate.com> > On Jun 1, 2016, at 2:08 PM, Charles Sprickman wrote: > > On Jun 1, 2016, at 5:08 AM, Sujit K M wrote: >> >> On Wed, Jun 1, 2016 at 12:13 PM, Jim Thompson wrote: >>> >>> I know that talk@ loves ARM boards running BSD. >>> >>> At Netgate we?ve been playing around with ARM for a while, and we have a new board to tell you about. >>> >>> uFW (microFirewall) is a lot like a Beaglebone Black, but with two 1Gbps Ethernet interfaces. >> >> Really nice to know. What interest me is that whether you have built a >> custom kernel or some patches. Subsequent to my message last night, pfSense is now running on the board. https://twitter.com/gonzopancho/status/737918774582579200 a close inspection of the bootlog will show a couple issues that need to be addressed: https://gist.github.com/gonzopancho/df6f0730fa54fec0d782eea00d7653a0 (some of these affect Intel on FreeBSD 11, so they?re not all due to what we?ve done to get FreeBSD 11 and pfSense (2.4-DEV) running on this board. pfSense has a set of patches, and most of them are in the 2.4-DEV tree. The couple that aren?t are related to the support for captive portal in ipfw. We have an internal debate on how to best address these. Specific to your question, there are patches e.g. to make the on-die switch behave as two discreet Ethernet devices, but these went in the FreeBSD tree back in March https://github.com/freebsd/freebsd/commits/23a2d5f59362b8a60462708280c89083bb8d1b27/sys/arm/ti/cpsw/if_cpsw.c There is a dts file for the board, because it is slightly different than a straight-up Beaglebone Black derivative. >> I would love to see the patches you might have applied to HEAD. > > Yeah, it will be interesting to see if this makes it to OPNsense, I would imagine they?d have interest in ARM as well. For the obvious reasons, I?m not here to talk about what OPNsense does, or does not do. > What?s the price point on this device going to be? I know what the board costs are. We?re not ready to announce pricing. It?s certain to be lower than any other board we sell. Jim > Charles > >> >>> We booted FreeBSD -CURRENT on the board earlier tonight. Links to a gist of the bootlog and a photo are in: >>> https://twitter.com/gonzopancho/status/737874921435594753 >> >> The boot log seems really impressive if its only an custom build only >> with no patches, my favourite DHCP seems >> to be working. >> >> Another thing I would like to point out is Beagleone is that once I >> was using Linux, there is some thing known as >> Cyclic test which lets one test the RT Linux Kernel. I don't thing >> there is something similar to that or I am ignorant. >> But would love to see that in FreeBSD. >> >>> >>> pfSense for this platform is under active development. >>> >>> Cheers, >>> >>> Jim >>> >>> _______________________________________________ >>> talk mailing list >>> talk at lists.nycbug.org >>> http://lists.nycbug.org/mailman/listinfo/talk >> >> _______________________________________________ >> talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From pete at nomadlogic.org Wed Jun 1 23:10:46 2016 From: pete at nomadlogic.org (Pete Wright) Date: Wed, 1 Jun 2016 20:10:46 -0700 Subject: [talk] FreeBSD Intel KMS/DRM Support In-Reply-To: References: Message-ID: On 05/23/16 07:54 PM, Pete Wright wrote: > Hey all, > So Matt Macy on freebsd-x11@ recently posted this call for testing: > > https://lists.freebsd.org/pipermail/freebsd-x11/2016-May/017560.html > > I've been trying to help-out when I can, but it sounds like he'd benefit > from having more people testing out his code. He even went as far as > building a USB image to test out on your laptop. > > So if you have an i195 enabled desktop or laptop give it a spin :) > quick update - ton's of progress being made on this porting effort. i'm actually writing this from an intel i7 (skylake) system with accelerated graphics - so please get in on the fun! https://github.com/FreeBSDDesktop/freebsd-base-graphics there is still tons of work to do - especially in getting the intel GPU tools suite ported to FreeBSD. there are lots of regression tests in the suite that we'd like to leverage...so hackers welcome. there have to be some University students on summer vacation that want to pad their resumes on this list :) https://lists.x.org/archives/xorg-announce/2016-March/002679.html cheers, -pete -- Pete Wright pete at nomadlogic.org @nomadlogicLA From franco at opnsense.org Thu Jun 2 02:11:00 2016 From: franco at opnsense.org (Franco Fichtner) Date: Thu, 2 Jun 2016 08:11:00 +0200 Subject: [talk] new ARM board running FreeBSD In-Reply-To: <1560AD9B-C6CA-4B2E-96D2-26E1B5421342@netgate.com> References: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> <238D7512-2603-4C08-B00E-F01503C3F9C9@bway.net> <1560AD9B-C6CA-4B2E-96D2-26E1B5421342@netgate.com> Message-ID: <499DC205-6AD3-4361-8A8B-BEE4DF1F790E@opnsense.org> > On 01 Jun 2016, at 11:49 PM, Jim Thompson wrote: > > For the obvious reasons, I?m not here to talk about what OPNsense does, or does not do. I wholeheartedly agree. For us in OPNsense there is *never enough time* spent into improving the code base that we do share in terms of robustness, portability and security. :) From kmsujit at gmail.com Thu Jun 2 05:02:54 2016 From: kmsujit at gmail.com (Sujit K M) Date: Thu, 2 Jun 2016 14:32:54 +0530 Subject: [talk] new ARM board running FreeBSD In-Reply-To: <1560AD9B-C6CA-4B2E-96D2-26E1B5421342@netgate.com> References: <85519695-5E67-40E3-9FF7-7807C2AACB3D@netgate.com> <238D7512-2603-4C08-B00E-F01503C3F9C9@bway.net> <1560AD9B-C6CA-4B2E-96D2-26E1B5421342@netgate.com> Message-ID: > Specific to your question, there are patches e.g. to make the on-die switch behave as two discreet Ethernet devices, but these went in the FreeBSD tree back in March > https://github.com/freebsd/freebsd/commits/23a2d5f59362b8a60462708280c89083bb8d1b27/sys/arm/ti/cpsw/if_cpsw.c This in my point of view, which may be wrong, we can avoid. My question is even in i386 we can use the installer and have two distinct ethernet ports, without any code change. My point of view is rather than manually build ARM kernel on freebsd we should try an create an installer which will help in avoiding the extra code changes etc, I am pretty sure we can share the kernel namespace by loading the same module twice for instance. I have never tried or am an expert in the same. From pete at nomadlogic.org Sat Jun 4 21:00:43 2016 From: pete at nomadlogic.org (Pete Wright) Date: Sat, 04 Jun 2016 18:00:43 -0700 Subject: [talk] Tor browser bundle Message-ID: An HTML attachment was scrubbed... URL: From george at ceetonetechnology.com Sat Jun 4 21:16:21 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Sat, 4 Jun 2016 21:16:21 -0400 Subject: [talk] Tor browser bundle In-Reply-To: <201606050114.u551ETLr019153@feynman.konjz.org> References: <201606050114.u551ETLr019153@feynman.konjz.org> Message-ID: <92b53e34-96cc-1c81-6fc2-e762fb912d45@ceetonetechnology.com> On 06/04/16 21:00, Pete Wright wrote: > Hey everyone - I just saw Shawn Webb of the hardenedBSD project is interested in > taking a stab at porting the openbsd based tor browser bundle to hardenedBSD. If > there is any interest he'll be up at bsdcan, or you can probably hit him up on > teh social media. > . . . Details? Did you read this in the Post? Yes... TB 6.0 is in the pipeline... g From pete at nomadlogic.org Sat Jun 4 21:40:58 2016 From: pete at nomadlogic.org (Pete Wright) Date: Sat, 04 Jun 2016 18:40:58 -0700 Subject: [talk] Tor browser bundle Message-ID: An HTML attachment was scrubbed... URL: From shawn.webb at hardenedbsd.org Sat Jun 4 21:49:26 2016 From: shawn.webb at hardenedbsd.org (Shawn Webb) Date: Sat, 4 Jun 2016 21:49:26 -0400 Subject: [talk] Tor browser bundle In-Reply-To: <92b53e34-96cc-1c81-6fc2-e762fb912d45@ceetonetechnology.com> References: <201606050114.u551ETLr019153@feynman.konjz.org> <92b53e34-96cc-1c81-6fc2-e762fb912d45@ceetonetechnology.com> Message-ID: <20160605014926.GA61840@mutt-hardenedbsd> On Sat, Jun 04, 2016 at 09:16:21PM -0400, George Rosamond wrote: > On 06/04/16 21:00, Pete Wright wrote: > > Hey everyone - I just saw Shawn Webb of the hardenedBSD project is interested in > > taking a stab at porting the openbsd based tor browser bundle to hardenedBSD. If > > there is any interest he'll be up at bsdcan, or you can probably hit him up on > > teh social media. > > > > . . . > > Details? > > Did you read this in the Post? > > Yes... TB 6.0 is in the pipeline... > > g > Nice! I'd love to do a hackathon during BSDCan to get TBB working on HardenedBSD. I'll be there in time for the GoatBOF and for the Dev Summit, so if someone wants to pull me away for a little bit to hack on this, I'd love to learn from the best. I simply don't have time on my own to figure out all the awesome work that has been done for the OpenBSD TBB. Thanks, -- Shawn Webb Cofounder and Security Engineer HardenedBSD GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: not available URL: From george at ceetonetechnology.com Mon Jun 13 10:03:23 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Mon, 13 Jun 2016 10:03:23 -0400 Subject: [talk] NYC*BUG Wednesday: HardenedBSD Message-ID: <6696dfad-c188-34cc-16cc-f41a385c744e@ceetonetechnology.com> (followup announce coming regarding other upcoming news) Wednesday, June 15 Adventures in HardenedBSD, Shawn Webb 18:45, Stone Creek Bar & Lounge: 140 E 27th St Notice: Not the usual first Wednesday Abstract This last year has been an amazing one for HardenedBSD. We're now around 1.5 years old (though our codebase has existed for longer) and we're starting to get noticed. This presentation talks about the cool things we're doing in exploit mitigation development and OPNSense integration. You'll hear where we've come from, what we're doing now, and where we'll be headed in the next year. Included will be discussions of ASLR, W^X, PIE + RELRO, and a few other lower-level tidbits in exploit mitigation development. Speaker Bio Shawn is a security engineer for G2, Inc. He is also the cofounder of HardenedBSD and one of its lead engineers. He was introduced into the security industry as a teenager, falling in love with both offensive and defensive security. Shawn has written tools like libhijack, which aims to make runtime process infection dead simple on Linux and FreeBSD. Now he works primarily on the defensive end, implementing exploit mitigation technologies in HardenedBSD. From ike at blackskyresearch.net Tue Jun 14 09:28:58 2016 From: ike at blackskyresearch.net (Isaac (.ike) Levy) Date: Tue, 14 Jun 2016 09:28:58 -0400 Subject: [talk] [nycbug-talk] interesting read (old pacemaker thread) In-Reply-To: <1362363303-7816302.25606558.fr242ElHk003512@rs149.luxsci.com> References: <201108291308.p7TD82Ab002791@rs134.luxsci.com> <1362363303-7816302.25606558.fr242ElHk003512@rs149.luxsci.com> Message-ID: <07923821-55A1-4D5A-ABE2-52743B88FF5E@blackskyresearch.net> Hi All, Can't help myself but revive a thread which is now 11 years old, "The NSA wants to monitor pacemakers and other medical devices" http://www.theverge.com/platform/amp/2016/6/11/11910050/the-nsa-wants-to-monitor-pacemakers-and-other-medical-devices > On Aug 29, 2011, at 9:08 AM, Isaac Levy wrote: > On Sat, 21 May 2005 alex at pilosoft.com wrote: >>>>> Let's keep in mind that the trustworthiness of a life-critical >>>>> application has everything to do with how that program was written >> >> http://lists.nycbug.org/pipermail/talk/2005-May/005497.html > On Mar 3, 2013, at 9:14 PM, Isaac (.ike) Levy wrote: > http://lists.nycbug.org/pipermail/talk/2013-March/014864.html -- And some older bits linked from that article, "Yes, You Can Hack A Pacemaker (And Other Medical Devices Too)" http://www.forbes.com/sites/singularity/2012/12/06/yes-you-can-hack-a-pacemaker-and-other-medical-devices-too/ "Hackers Killed a Simulated Human By Turning Off Its Pacemaker" http://motherboard.vice.com/read/hackers-killed-a-simulated-human-by-turning-off-its-pacemaker Best, .ike From fire at firecrow.com Tue Jun 14 10:29:37 2016 From: fire at firecrow.com (fire crow) Date: Tue, 14 Jun 2016 10:29:37 -0400 Subject: [talk] [nycbug-talk] interesting read (old pacemaker thread) In-Reply-To: <07923821-55A1-4D5A-ABE2-52743B88FF5E@blackskyresearch.net> References: <201108291308.p7TD82Ab002791@rs134.luxsci.com> <1362363303-7816302.25606558.fr242ElHk003512@rs149.luxsci.com> <07923821-55A1-4D5A-ABE2-52743B88FF5E@blackskyresearch.net> Message-ID: On Tue, Jun 14, 2016 at 9:28 AM, Isaac (.ike) Levy wrote: > Hi All, > > Can't help myself but revive a thread which is now 11 years old, > > "The NSA wants to monitor pacemakers and other medical devices" > http://www.theverge.com/platform/amp/2016/6/11/11910050/the-nsa-wants-to-monitor-pacemakers-and-other-medical-devices > >> On Aug 29, 2011, at 9:08 AM, Isaac Levy wrote: >> On Sat, 21 May 2005 alex at pilosoft.com wrote: >>>>>> Let's keep in mind that the trustworthiness of a life-critical >>>>>> application has everything to do with how that program was written >>> >>> http://lists.nycbug.org/pipermail/talk/2005-May/005497.html > > >> On Mar 3, 2013, at 9:14 PM, Isaac (.ike) Levy wrote: >> http://lists.nycbug.org/pipermail/talk/2013-March/014864.html > > > -- > And some older bits linked from that article, > > "Yes, You Can Hack A Pacemaker (And Other Medical Devices Too)" > http://www.forbes.com/sites/singularity/2012/12/06/yes-you-can-hack-a-pacemaker-and-other-medical-devices-too/ > > "Hackers Killed a Simulated Human By Turning Off Its Pacemaker" > http://motherboard.vice.com/read/hackers-killed-a-simulated-human-by-turning-off-its-pacemaker > > Best, > .ike > > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk Hi All, that's crazy, slightly related my brother's friend writes code for traffic lights in pheonix, and he says that several us cities have implemented a blue tooth scanning system to store route data. http://www.itsinternational.com/categories/networking-communication-systems/news/combining-bluetooth-and-wi-fi-to-optimise-traffic-signals/ ~fire fire at firecrow.com -- fire crow : fire at firecrow.com +1.917.306.9451 From george at ceetonetechnology.com Wed Jun 15 12:26:53 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Wed, 15 Jun 2016 12:26:53 -0400 Subject: [talk] NYC*BUG Tonight: HardenedBSD Message-ID: <4d1875c4-1d9f-b3ca-f8a4-acb49c1abc55@ceetonetechnology.com> June 15 Adventures in HardenedBSD, Shawn Webb 18:45, Stone Creek Bar & Lounge: 140 E 27th St Notice: Not the usual first Wednesday Abstract This last year has been an amazing one for HardenedBSD. We're now around 1.5 years old (though our codebase has existed for longer) and we're starting to get noticed. This presentation talks about the cool things we're doing in exploit mitigation development and OPNSense integration. You'll hear where we've come from, what we're doing now, and where we'll be headed in the next year. Included will be discussions of ASLR, W^X, PIE + RELRO, and a few other lower-level tidbits in exploit mitigation development. Speaker Bio Shawn is a security engineer for G2, Inc. He is also the cofounder of HardenedBSD and one of its lead engineers. He was introduced into the security industry as a teenager, falling in love with both offensive and defensive security. Shawn has written tools like libhijack, which aims to make runtime process infection dead simple on Linux and FreeBSD. Now he works primarily on the defensive end, implementing exploit mitigation technologies in HardenedBSD. From mcevoy.pat at gmail.com Wed Jun 15 13:40:49 2016 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Wed, 15 Jun 2016 13:40:49 -0400 Subject: [talk] Streaming tonight's meeting Message-ID: Does anyone know if Shawn would mind if we stream tonight's meeting? If we get the nod, I will stream it. Patrick From george at ceetonetechnology.com Wed Jun 15 13:42:27 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Wed, 15 Jun 2016 13:42:27 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: Message-ID: On 06/15/16 13:40, Pat McEvoy wrote: > Does anyone know if Shawn would mind if we stream tonight's meeting? If we get the nod, I will stream it. > Awesome... who cares what shawn wants! ;) It's a "must" stream meeting IMO. g From venture37 at geeklan.co.uk Wed Jun 15 13:57:10 2016 From: venture37 at geeklan.co.uk (Sevan Janiyan) Date: Wed, 15 Jun 2016 18:57:10 +0100 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: Message-ID: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> On 15/06/2016 18:42, George Rosamond wrote: > Awesome... who cares what shawn wants! > > ;) > > It's a "must" stream meeting IMO. Those of us stuck on the other side of the pond would appreciate it :) Sevan From bcallah at devio.us Wed Jun 15 13:58:37 2016 From: bcallah at devio.us (Brian Callahan) Date: Wed, 15 Jun 2016 13:58:37 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> Message-ID: <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> On 06/15/16 13:57, Sevan Janiyan wrote: > > On 15/06/2016 18:42, George Rosamond wrote: >> Awesome... who cares what shawn wants! >> >> ;) >> >> It's a "must" stream meeting IMO. > Those of us stuck on the other side of the pond would appreciate it :) > > > Sevan > You're the one who chose to fly back... none of us forced you to :D ~Brian From spork at bway.net Wed Jun 15 14:08:53 2016 From: spork at bway.net (Charles Sprickman) Date: Wed, 15 Jun 2016 14:08:53 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: Message-ID: <1B5EAF77-829A-4D79-95AA-CC50108E59F2@bway.net> > On Jun 15, 2016, at 1:42 PM, George Rosamond wrote: > > On 06/15/16 13:40, Pat McEvoy wrote: >> Does anyone know if Shawn would mind if we stream tonight's meeting? If we get the nod, I will stream it. >> > > Awesome... who cares what shawn wants! > > ;) > > It's a "must" stream meeting IMO. OT, but is there an archive of past streamed meetings? http://www.nycbug.org/index.cgi?action=streaming Charles > > g > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From venture37 at geeklan.co.uk Wed Jun 15 14:09:57 2016 From: venture37 at geeklan.co.uk (Sevan Janiyan) Date: Wed, 15 Jun 2016 19:09:57 +0100 Subject: [talk] Streaming tonight's meeting In-Reply-To: <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> Message-ID: On 15/06/2016 18:58, Brian Callahan wrote: > You're the one who chose to fly back... none of us forced you to :D Look mate, it was a toss up between long delays and being grilled by immigration or to fly back on time, minus luggage. I chose the latter. There was a knock at the door at 10pm last night, it appears that the baggage handlers are working an Canadian time, it was my luggage being delivered. Sevan From mmatalka at gmail.com Wed Jun 15 14:13:32 2016 From: mmatalka at gmail.com (Malcolm Matalka) Date: Wed, 15 Jun 2016 20:13:32 +0200 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> Message-ID: Are the streams stored on YouTube or anything? If not, you've got my vote to do it! -------------- next part -------------- An HTML attachment was scrubbed... URL: From mcevoy.pat at gmail.com Wed Jun 15 14:49:29 2016 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Wed, 15 Jun 2016 14:49:29 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> Message-ID: > On Jun 15, 2016, at 2:13 PM, Malcolm Matalka wrote: > > Are the streams stored on YouTube or anything? If not, you've got my vote to do it! > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk I will try and get those out over the summer. I am currently looking into a better presentation system for future streaming of meetings. P -------------- next part -------------- An HTML attachment was scrubbed... URL: From mcevoy.pat at gmail.com Wed Jun 15 15:11:08 2016 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Wed, 15 Jun 2016 15:11:08 -0400 Subject: [talk] MagSafe power supply Message-ID: <30C2A410-3DE1-40F4-97E1-D8EEC62DDE3C@gmail.com> If anyone has a spare Apple MagSafe power supply handy, I would like to borrow it during the presentation tonight please. Patrick From kmsujit at gmail.com Thu Jun 16 04:07:18 2016 From: kmsujit at gmail.com (Sujit K M) Date: Thu, 16 Jun 2016 13:37:18 +0530 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> Message-ID: On Thu, Jun 16, 2016 at 12:19 AM, Pat McEvoy wrote: > > On Jun 15, 2016, at 2:13 PM, Malcolm Matalka wrote: > > Are the streams stored on YouTube or anything? If not, you've got my vote > to do it! > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > > > > I will try and get those out over the summer. I am currently looking into a > better presentation system for future streaming of meetings. > P Youtube might not be the best, got to look for alternative. Youtube delays are a problem while doing commentary etc. https://productforums.google.com/forum/#!topic/youtube/BzFCJkeXVrA From george at ceetonetechnology.com Thu Jun 16 10:32:30 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Thu, 16 Jun 2016 10:32:30 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> Message-ID: <255b2d0a-68ce-26ab-4ed4-d0d2187a41f1@ceetonetechnology.com> On 06/16/16 04:07, Sujit K M wrote: > On Thu, Jun 16, 2016 at 12:19 AM, Pat McEvoy wrote: >> >> On Jun 15, 2016, at 2:13 PM, Malcolm Matalka wrote: >> >> Are the streams stored on YouTube or anything? If not, you've got my vote >> to do it! >> >> _______________________________________________ >> talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org/mailman/listinfo/talk >> >> >> >> I will try and get those out over the summer. I am currently looking into a >> better presentation system for future streaming of meetings. >> P > > Youtube might not be the best, got to look for alternative. Youtube > delays are a problem > while doing commentary etc. > > https://productforums.google.com/forum/#!topic/youtube/BzFCJkeXVrA Patrick has been voluntarily doing this for a long time with the only motivation of getting a wide audience for our meetings. It's his call how he does it, and whether he does it at all. Each time he streams a meeting we should be thanking him profusely. And there's a lot of extra effort for him to get the streams onto YouTube. Try youtube-dl if you don't like YouTube. g From arielsanchezmora at gmail.com Thu Jun 16 10:39:30 2016 From: arielsanchezmora at gmail.com (=?UTF-8?Q?Ariel_S=C3=A1nchez?=) Date: Thu, 16 Jun 2016 10:39:30 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: <255b2d0a-68ce-26ab-4ed4-d0d2187a41f1@ceetonetechnology.com> References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> <255b2d0a-68ce-26ab-4ed4-d0d2187a41f1@ceetonetechnology.com> Message-ID: I've attended meetings twice this way - Patrick, it works awesome and I'm really thankful! Hopefully I'll get to treat you to a beer next time :D Ariel Sanchez Mora "The best way out is always through."*?Robert Frost* On Thu, Jun 16, 2016 at 10:32 AM, George Rosamond < george at ceetonetechnology.com> wrote: > On 06/16/16 04:07, Sujit K M wrote: > > On Thu, Jun 16, 2016 at 12:19 AM, Pat McEvoy > wrote: > >> > >> On Jun 15, 2016, at 2:13 PM, Malcolm Matalka > wrote: > >> > >> Are the streams stored on YouTube or anything? If not, you've got my > vote > >> to do it! > >> > >> _______________________________________________ > >> talk mailing list > >> talk at lists.nycbug.org > >> http://lists.nycbug.org/mailman/listinfo/talk > >> > >> > >> > >> I will try and get those out over the summer. I am currently looking > into a > >> better presentation system for future streaming of meetings. > >> P > > > > Youtube might not be the best, got to look for alternative. Youtube > > delays are a problem > > while doing commentary etc. > > > > https://productforums.google.com/forum/#!topic/youtube/BzFCJkeXVrA > > Patrick has been voluntarily doing this for a long time with the only > motivation of getting a wide audience for our meetings. It's his call > how he does it, and whether he does it at all. > > Each time he streams a meeting we should be thanking him profusely. And > there's a lot of extra effort for him to get the streams onto YouTube. > > Try youtube-dl if you don't like YouTube. > > g > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From george at ceetonetechnology.com Thu Jun 16 10:40:34 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Thu, 16 Jun 2016 10:40:34 -0400 Subject: [talk] Streaming tonight's meeting In-Reply-To: References: <02235f15-caf2-8c42-539e-c52d37bb4729@geeklan.co.uk> <13a3dec5-e7c2-bfd7-0e72-df0f97ad83f1@devio.us> <255b2d0a-68ce-26ab-4ed4-d0d2187a41f1@ceetonetechnology.com> Message-ID: <52954317-7602-f930-1691-e91976821335@ceetonetechnology.com> On 06/16/16 10:39, Ariel S?nchez wrote: > I've attended meetings twice this way - Patrick, it works awesome and I'm > really thankful! Hopefully I'll get to treat you to a beer next time :D > That's more like it :) g From shawn.webb at hardenedbsd.org Fri Jun 17 18:33:22 2016 From: shawn.webb at hardenedbsd.org (Shawn Webb) Date: Fri, 17 Jun 2016 18:33:22 -0400 Subject: [talk] NYC*BUG Tonight: HardenedBSD In-Reply-To: <4d1875c4-1d9f-b3ca-f8a4-acb49c1abc55@ceetonetechnology.com> References: <4d1875c4-1d9f-b3ca-f8a4-acb49c1abc55@ceetonetechnology.com> Message-ID: <20160617223322.GC93725@mutt-hardenedbsd> On Wed, Jun 15, 2016 at 12:26:53PM -0400, George Rosamond wrote: > > June 15 > Adventures in HardenedBSD, Shawn Webb > 18:45, Stone Creek Bar & Lounge: 140 E 27th St > Notice: Not the usual first Wednesday > > Abstract > > This last year has been an amazing one for HardenedBSD. > > We're now around 1.5 years old (though our codebase has existed for > longer) and we're starting to get noticed. This presentation talks about > the cool things we're doing in exploit mitigation development and > OPNSense integration. > > You'll hear where we've come from, what we're doing now, and where we'll > be headed in the next year. Included will be discussions of ASLR, W^X, > PIE + RELRO, and a few other lower-level tidbits in exploit mitigation > development. > > Speaker Bio > > Shawn is a security engineer for G2, Inc. He is also the cofounder of > HardenedBSD and one of its lead engineers. He was introduced into the > security industry as a teenager, falling in love with both offensive and > defensive security. Shawn has written tools like libhijack, which aims > to make runtime process infection dead simple on Linux and FreeBSD. Now > he works primarily on the defensive end, implementing exploit mitigation > technologies in HardenedBSD. Hey Everyone, Thank you to all who attended both in person and online. I had a blast. I think that was one of my favorite presentations so far, especially with all the discussion during it. I love giving presentations, but when they turn to be more of discussions, that's even better. We even had a feature request come out of it! What would NYCBUG think about an annual "State of the HardenedBSD Union" presentation? Thanks, -- Shawn Webb Cofounder and Security Engineer HardenedBSD GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 819 bytes Desc: not available URL: From george at ceetonetechnology.com Sun Jun 19 10:12:17 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Sun, 19 Jun 2016 10:12:17 -0400 Subject: [talk] NYC*BUG Tonight: HardenedBSD In-Reply-To: <20160617223322.GC93725@mutt-hardenedbsd> References: <4d1875c4-1d9f-b3ca-f8a4-acb49c1abc55@ceetonetechnology.com> <20160617223322.GC93725@mutt-hardenedbsd> Message-ID: <897c84aa-404f-956f-ae95-47a4202e4bec@ceetonetechnology.com> On 06/17/16 18:33, Shawn Webb wrote: > On Wed, Jun 15, 2016 at 12:26:53PM -0400, George Rosamond wrote: >> >> June 15 >> Adventures in HardenedBSD, Shawn Webb > > Hey Everyone, > > Thank you to all who attended both in person and online. I had a blast. > I think that was one of my favorite presentations so far, especially > with all the discussion during it. I love giving presentations, but when > they turn to be more of discussions, that's even better. We even had a > feature request come out of it! Agree. > > What would NYCBUG think about an annual "State of the HardenedBSD Union" > presentation? That could be fun. I'm all for that. g From ike at blackskyresearch.net Mon Jun 20 08:58:58 2016 From: ike at blackskyresearch.net (Isaac (.ike) Levy) Date: Mon, 20 Jun 2016 08:58:58 -0400 Subject: [talk] Installfest, Spread the word at HOPE! Message-ID: Hi All, HOPE is coming up next month, and this is *the* opportunity to get the word out about the NYC*BUG InstallFest, to a new audience! In years past, hacking/info-sec scene was had the *BSD family at the core. A new generation coming up has not been exposed to the BSD's in the same way, and anyone from around NYC*BUG can and should play a role in taking the BSD's to a new audience! A few pertinent details: - https://hope.net/ July 22-24, Hotel Pennsylvania - The flyer attached, we need folks to print and help distribute! - The FreeBSD Foundation will have a table this year (!), I believe GNN is running it. (They may want some volunteers to help man the table? Email admin@ to get plugged into it...) Best, .ike -------------- next part -------------- A non-text attachment was scrubbed... Name: 20160803-installfest.pdf Type: application/pdf Size: 36421 bytes Desc: not available URL: From kmsujit at gmail.com Mon Jun 20 11:15:01 2016 From: kmsujit at gmail.com (Sujit K M) Date: Mon, 20 Jun 2016 20:45:01 +0530 Subject: [talk] Might be OT to list Message-ID: Hi All, I found something interesting with youtube, I believe it is more to do with machine learning and image processing etc. If you search for grey washing machine or red washing machine you get an grey or red washing machine. If you search for grey balloon or red balloon you get an grey or red balloon. Could any one of you probably direct me to an google sponsored or an Opensource library which uses machine learning and image processing to achieve this. Regards, Sujit K M From edlinuxguru at gmail.com Mon Jun 20 11:29:26 2016 From: edlinuxguru at gmail.com (Edward Capriolo) Date: Mon, 20 Jun 2016 11:29:26 -0400 Subject: [talk] Might be OT to list In-Reply-To: References: Message-ID: For text processing there are multiple algorithms to extract meaning from text. One is LDA: http://chrisstrelioff.ws/sandbox/2014/11/13/getting_started_with_latent_dirichlet_allocation_in_python.html Image processing is more involved. I would guess google uses ALT text and other content on the page. Fun reading: https://www.theguardian.com/technology/2016/apr/08/does-google-unprofessional-hair-results-prove-algorithms-racist- On Mon, Jun 20, 2016 at 11:15 AM, Sujit K M wrote: > Hi All, > > I found something interesting with youtube, I believe it is more to do > with machine learning and image processing etc. > > If you search for grey washing machine or red washing machine you get > an grey or red washing machine. > If you search for grey balloon or red balloon you get an grey or red > balloon. > > Could any one of you probably direct me to an google sponsored or an > Opensource library which uses machine learning > and image processing to achieve this. > > Regards, > Sujit K M > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From kmsujit at gmail.com Mon Jun 20 11:34:02 2016 From: kmsujit at gmail.com (Sujit K M) Date: Mon, 20 Jun 2016 21:04:02 +0530 Subject: [talk] Might be OT to list In-Reply-To: References: Message-ID: On Mon, Jun 20, 2016 at 8:59 PM, Edward Capriolo wrote: > For text processing there are multiple algorithms to extract meaning from > text. One is LDA: > http://chrisstrelioff.ws/sandbox/2014/11/13/getting_started_with_latent_dirichlet_allocation_in_python.html > > Image processing is more involved. I would guess google uses ALT text and > other content on the page. > > Fun reading: > > https://www.theguardian.com/technology/2016/apr/08/does-google-unprofessional-hair-results-prove-algorithms-racist- That was really insightful. I find my liking in the usage of Python. But I was much more interested in plugging this with say opencv(opencv.org). What are the thoughts on these? From raulcuza at gmail.com Mon Jun 20 12:47:13 2016 From: raulcuza at gmail.com (=?utf-8?Q?Ra=C3=BAl_Cuza?=) Date: Mon, 20 Jun 2016 12:47:13 -0400 Subject: [talk] Installfest, Spread the word at HOPE! In-Reply-To: References: Message-ID: > On Jun 20, 2016, at 08:58, Isaac (.ike) Levy wrote: > > Hi All, > > HOPE is coming up next month, and this is *the* opportunity to get the word out about the NYC*BUG InstallFest, to a new audience! > > In years past, hacking/info-sec scene was had the *BSD family at the core. A new generation coming up has not been exposed to the BSD's in the same way, and anyone from around NYC*BUG can and should play a role in taking the BSD's to a new audience! > > A few pertinent details: > > - https://hope.net/ July 22-24, Hotel Pennsylvania > > - The flyer attached, we need folks to print and help distribute! > > - The FreeBSD Foundation will have a table this year (!), I believe GNN is running it. > (They may want some volunteers to help man the table? Email admin@ to get plugged into it...) > > Best, > .ike > > > > > <20160803-installfest.pdf> > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk Is the back room 21 and over? (That doesn't read the way I mean it.) I know some high schoolers who might be interested in the install fest but want to make sure they can get in before spreading the word their way. Ra?l From george at ceetonetechnology.com Mon Jun 20 12:50:49 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Mon, 20 Jun 2016 12:50:49 -0400 Subject: [talk] Installfest, Spread the word at HOPE! In-Reply-To: References: Message-ID: On 06/20/16 12:47, Ra?l Cuza wrote: > > >> On Jun 20, 2016, at 08:58, Isaac (.ike) Levy >> wrote: >> >> Hi All, >> >> HOPE is coming up next month, and this is *the* opportunity to get >> the word out about the NYC*BUG InstallFest, to a new audience! >> >> In years past, hacking/info-sec scene was had the *BSD family at >> the core. A new generation coming up has not been exposed to the >> BSD's in the same way, and anyone from around NYC*BUG can and >> should play a role in taking the BSD's to a new audience! >> >> A few pertinent details: >> >> - https://hope.net/ July 22-24, Hotel Pennsylvania >> >> - The flyer attached, we need folks to print and help distribute! >> >> - The FreeBSD Foundation will have a table this year (!), I believe >> GNN is running it. (They may want some volunteers to help man the >> table? Email admin@ to get plugged into it...) >> >> Best, .ike >> >> >> >> >> <20160803-installfest.pdf> >> _______________________________________________ talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org/mailman/listinfo/talk > > Is the back room 21 and over? (That doesn't read the way I mean it.) > I know some high schoolers who might be interested in the install > fest but want to make sure they can get in before spreading the word > their way. I don't believe it's for 21 and over only... but valid point and something we need to confirm. g From bcallah at devio.us Wed Jun 22 19:12:40 2016 From: bcallah at devio.us (Brian Callahan) Date: Wed, 22 Jun 2016 19:12:40 -0400 Subject: [talk] LiteBSD and RetroBSD: the hardware for the July meeting Message-ID: Hi everyone -- I'm doing next month's meeting on RetroBSD and LiteBSD. The hardware these things run on are cheap and readily available, and likely the meeting will be much more fun if people are hacking along with me. So here's a list of hardware depending on whether or not you want to run RetroBSD or LiteBSD. If you need help deciding, RetroBSD is a port of 2.11BSD and LiteBSD is a 4.4BSD-Lite2 based OS (like all the modern big BSDs). No matter what, you'll need a microSD card. RetroBSD: http://retrobsd.org/wiki/doku.php/board/index I recommend the Olimex PIC32-RetroBSD and the chipKIT Max32. Keep in mind that if you go with the Max32, you'll need an Arduino Ethernet shield R3 (for its microSD card slot). LiteBSD: http://litebsd.org/ I recommend the chipKIT WiFIRE board and the Olimex EMZ64. If you buy the EMZ64 you will need their UEXT to USB RS232 adapter: https://www.olimex.com/Products/Modules/Interface/MOD-USB-RS232/open-source-hardware -- alternatively, you could use telnet to access the EMZ64 (this is indeed what I do with my EMZ64) but it is slower and you'll need a switch. I do ask that if you purchase from Olimex, you mention me. Olimex has been great with supporting the RetroBSD and LiteBSD communities and it would be nice to show them that we RetroBSD/LiteBSD devs are contributing back to them. Their hardware is also all Open Hardware, which I think is nice. Also, as of this morning, LiteBSD builds on FreeBSD! I will be submitting a port to build the LiteBSD toolchain, but I can provide a (10.x) binary for those who want to play around before the meeting. Hope to see everyone out for the meeting with hardware! ~Brian From bcallah at devio.us Wed Jun 22 19:15:35 2016 From: bcallah at devio.us (Brian Callahan) Date: Wed, 22 Jun 2016 19:15:35 -0400 Subject: [talk] LiteBSD and RetroBSD: the hardware for the July meeting In-Reply-To: References: Message-ID: <44e0f66c-bff5-f1c4-5767-da129435cb56@devio.us> One other thing to note (inline): On 6/22/2016 7:12 PM, Brian Callahan wrote: > Hi everyone -- > > I'm doing next month's meeting on RetroBSD and LiteBSD. The hardware > these things run on are cheap and readily available, and likely the > meeting will be much more fun if people are hacking along with me. > > So here's a list of hardware depending on whether or not you want to run > RetroBSD or LiteBSD. If you need help deciding, RetroBSD is a port of > 2.11BSD and LiteBSD is a 4.4BSD-Lite2 based OS (like all the modern big > BSDs). > > No matter what, you'll need a microSD card. > > RetroBSD: > http://retrobsd.org/wiki/doku.php/board/index > I recommend the Olimex PIC32-RetroBSD and the chipKIT Max32. Keep in > mind that if you go with the Max32, you'll need an Arduino Ethernet > shield R3 (for its microSD card slot). > > LiteBSD: > http://litebsd.org/ > I recommend the chipKIT WiFIRE board and the Olimex EMZ64. If you buy > the EMZ64 you will need their UEXT to USB RS232 adapter: > https://www.olimex.com/Products/Modules/Interface/MOD-USB-RS232/open-source-hardware > -- alternatively, you could use telnet to access the EMZ64 (this is > indeed what I do with my EMZ64) but it is slower and you'll need a switch. The EMZ64 requires a chipKIT external programmer to flash the kernel onto the board. The WiFIRE does not need any external equipment to get LiteBSD onto it (and neither of the recommended RetroBSD boards need an external programmer either). I'm happy to bring my PICkit3 programmer to the meeting for people. > > I do ask that if you purchase from Olimex, you mention me. Olimex has > been great with supporting the RetroBSD and LiteBSD communities and it > would be nice to show them that we RetroBSD/LiteBSD devs are > contributing back to them. Their hardware is also all Open Hardware, > which I think is nice. > > Also, as of this morning, LiteBSD builds on FreeBSD! I will be > submitting a port to build the LiteBSD toolchain, but I can provide a > (10.x) binary for those who want to play around before the meeting. > > Hope to see everyone out for the meeting with hardware! > > ~Brian > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From george at ceetonetechnology.com Wed Jun 22 20:32:05 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Wed, 22 Jun 2016 20:32:05 -0400 Subject: [talk] LiteBSD and RetroBSD: the hardware for the July meeting In-Reply-To: <44e0f66c-bff5-f1c4-5767-da129435cb56@devio.us> References: <44e0f66c-bff5-f1c4-5767-da129435cb56@devio.us> Message-ID: On 06/22/16 19:15, Brian Callahan wrote: > One other thing to note (inline): > > On 6/22/2016 7:12 PM, Brian Callahan wrote: >> Hi everyone -- >> >> I'm doing next month's meeting on RetroBSD and LiteBSD. The hardware >> these things run on are cheap and readily available, and likely the >> meeting will be much more fun if people are hacking along with me. Ah, the long awaited "get hardware to get involved email"... :) comments inline. >> >> So here's a list of hardware depending on whether or not you want to run >> RetroBSD or LiteBSD. If you need help deciding, RetroBSD is a port of >> 2.11BSD and LiteBSD is a 4.4BSD-Lite2 based OS (like all the modern big >> BSDs). >> >> No matter what, you'll need a microSD card. >> >> RetroBSD: >> http://retrobsd.org/wiki/doku.php/board/index >> I recommend the Olimex PIC32-RetroBSD and the chipKIT Max32. Keep in >> mind that if you go with the Max32, you'll need an Arduino Ethernet >> shield R3 (for its microSD card slot). >> >> LiteBSD: >> http://litebsd.org/ >> I recommend the chipKIT WiFIRE board and the Olimex EMZ64. If you buy >> the EMZ64 you will need their UEXT to USB RS232 adapter: >> https://www.olimex.com/Products/Modules/Interface/MOD-USB-RS232/open-source-hardware >> -- alternatively, you could use telnet to access the EMZ64 (this is >> indeed what I do with my EMZ64) but it is slower and you'll need a switch. > > The EMZ64 requires a chipKIT external programmer to flash the kernel > onto the board. The WiFIRE does not need any external equipment to get > LiteBSD onto it (and neither of the recommended RetroBSD boards need an > external programmer either). I'm happy to bring my PICkit3 programmer to > the meeting for people. In order to make sure people can flash/access their hardware, can you be sure to have all necessary cables, a switch, etc? I'm hoping we can be hands-on during or after the meeting. > >> >> I do ask that if you purchase from Olimex, you mention me. Olimex has >> been great with supporting the RetroBSD and LiteBSD communities and it >> would be nice to show them that we RetroBSD/LiteBSD devs are >> contributing back to them. Their hardware is also all Open Hardware, >> which I think is nice. Better yet, mention Brian C, these BSDs and that you're going to be at a NYC*BUG hackathon on July 6. >> >> Also, as of this morning, LiteBSD builds on FreeBSD! I will be >> submitting a port to build the LiteBSD toolchain, but I can provide a >> (10.x) binary for those who want to play around before the meeting. What about OpenBSD? I thought you mentioned it also as a build system? (previously, the images could only be compiled from Windows and Linux IIRC) >> >> Hope to see everyone out for the meeting with hardware! Very much looking forward to the meeting. Maybe give us an outline of what you intend to cover? g From bcallah at devio.us Wed Jun 22 22:57:23 2016 From: bcallah at devio.us (Brian Callahan) Date: Wed, 22 Jun 2016 22:57:23 -0400 Subject: [talk] LiteBSD and RetroBSD: the hardware for the July meeting In-Reply-To: References: <44e0f66c-bff5-f1c4-5767-da129435cb56@devio.us> Message-ID: <72c533eb-e809-74b5-efe5-66b623e8bfad@devio.us> On 6/22/2016 8:32 PM, George Rosamond wrote: > On 06/22/16 19:15, Brian Callahan wrote: >> One other thing to note (inline): >> >> On 6/22/2016 7:12 PM, Brian Callahan wrote: >>> Hi everyone -- >>> >>> I'm doing next month's meeting on RetroBSD and LiteBSD. The hardware >>> these things run on are cheap and readily available, and likely the >>> meeting will be much more fun if people are hacking along with me. > Ah, the long awaited "get hardware to get involved email"... > > :) > > comments inline. > >>> So here's a list of hardware depending on whether or not you want to run >>> RetroBSD or LiteBSD. If you need help deciding, RetroBSD is a port of >>> 2.11BSD and LiteBSD is a 4.4BSD-Lite2 based OS (like all the modern big >>> BSDs). >>> >>> No matter what, you'll need a microSD card. >>> >>> RetroBSD: >>> http://retrobsd.org/wiki/doku.php/board/index >>> I recommend the Olimex PIC32-RetroBSD and the chipKIT Max32. Keep in >>> mind that if you go with the Max32, you'll need an Arduino Ethernet >>> shield R3 (for its microSD card slot). >>> >>> LiteBSD: >>> http://litebsd.org/ >>> I recommend the chipKIT WiFIRE board and the Olimex EMZ64. If you buy >>> the EMZ64 you will need their UEXT to USB RS232 adapter: >>> https://www.olimex.com/Products/Modules/Interface/MOD-USB-RS232/open-source-hardware >>> -- alternatively, you could use telnet to access the EMZ64 (this is >>> indeed what I do with my EMZ64) but it is slower and you'll need a switch. >> The EMZ64 requires a chipKIT external programmer to flash the kernel >> onto the board. The WiFIRE does not need any external equipment to get >> LiteBSD onto it (and neither of the recommended RetroBSD boards need an >> external programmer either). I'm happy to bring my PICkit3 programmer to >> the meeting for people. > In order to make sure people can flash/access their hardware, can you be > sure to have all necessary cables, a switch, etc? Yes I'll bring all the needed hardware. > I'm hoping we can be hands-on during or after the meeting. > >>> I do ask that if you purchase from Olimex, you mention me. Olimex has >>> been great with supporting the RetroBSD and LiteBSD communities and it >>> would be nice to show them that we RetroBSD/LiteBSD devs are >>> contributing back to them. Their hardware is also all Open Hardware, >>> which I think is nice. > Better yet, mention Brian C, these BSDs and that you're going to be at a > NYC*BUG hackathon on July 6. > >>> Also, as of this morning, LiteBSD builds on FreeBSD! I will be >>> submitting a port to build the LiteBSD toolchain, but I can provide a >>> (10.x) binary for those who want to play around before the meeting. > What about OpenBSD? I thought you mentioned it also as a build system? Haven't pushed it into the build system yet for OpenBSD. There's a compile problem I haven't tracked down yet. > (previously, the images could only be compiled from Windows and Linux IIRC) Linux and Mac OS X, actually. Not Windows. >>> Hope to see everyone out for the meeting with hardware! > Very much looking forward to the meeting. > > Maybe give us an outline of what you intend to cover? > And spoil the meeting??? :) I'll cover the history of both, then I guess overview the features of RetroBSD and LiteBSD separately, outline the LiteBSD ports tree, discuss future plans for both (and my wish list for what I'd like to see in each going forward), and talk about how to get involved in the projects. If we have enough hardware around, we can finish up with a big group installfest :) ~Brian From viewtiful.icchan at gmail.com Thu Jun 23 11:33:35 2016 From: viewtiful.icchan at gmail.com (Robert Menes) Date: Thu, 23 Jun 2016 11:33:35 -0400 Subject: [talk] LiteBSD and RetroBSD: the hardware for the July meeting In-Reply-To: <72c533eb-e809-74b5-efe5-66b623e8bfad@devio.us> References: <44e0f66c-bff5-f1c4-5767-da129435cb56@devio.us> <72c533eb-e809-74b5-efe5-66b623e8bfad@devio.us> Message-ID: I have a PIC32 George lent me to try RetroBSD on. I'll bring it with an Arduino SD shield I have so we can also test on there. --Robert On Jun 22, 2016 10:57 PM, "Brian Callahan" wrote: > > > On 6/22/2016 8:32 PM, George Rosamond wrote: > > On 06/22/16 19:15, Brian Callahan wrote: > >> One other thing to note (inline): > >> > >> On 6/22/2016 7:12 PM, Brian Callahan wrote: > >>> Hi everyone -- > >>> > >>> I'm doing next month's meeting on RetroBSD and LiteBSD. The hardware > >>> these things run on are cheap and readily available, and likely the > >>> meeting will be much more fun if people are hacking along with me. > > Ah, the long awaited "get hardware to get involved email"... > > > > :) > > > > comments inline. > > > >>> So here's a list of hardware depending on whether or not you want to > run > >>> RetroBSD or LiteBSD. If you need help deciding, RetroBSD is a port of > >>> 2.11BSD and LiteBSD is a 4.4BSD-Lite2 based OS (like all the modern big > >>> BSDs). > >>> > >>> No matter what, you'll need a microSD card. > >>> > >>> RetroBSD: > >>> http://retrobsd.org/wiki/doku.php/board/index > >>> I recommend the Olimex PIC32-RetroBSD and the chipKIT Max32. Keep in > >>> mind that if you go with the Max32, you'll need an Arduino Ethernet > >>> shield R3 (for its microSD card slot). > >>> > >>> LiteBSD: > >>> http://litebsd.org/ > >>> I recommend the chipKIT WiFIRE board and the Olimex EMZ64. If you buy > >>> the EMZ64 you will need their UEXT to USB RS232 adapter: > >>> > https://www.olimex.com/Products/Modules/Interface/MOD-USB-RS232/open-source-hardware > >>> -- alternatively, you could use telnet to access the EMZ64 (this is > >>> indeed what I do with my EMZ64) but it is slower and you'll need a > switch. > >> The EMZ64 requires a chipKIT external programmer to flash the kernel > >> onto the board. The WiFIRE does not need any external equipment to get > >> LiteBSD onto it (and neither of the recommended RetroBSD boards need an > >> external programmer either). I'm happy to bring my PICkit3 programmer to > >> the meeting for people. > > In order to make sure people can flash/access their hardware, can you be > > sure to have all necessary cables, a switch, etc? > > Yes I'll bring all the needed hardware. > > > I'm hoping we can be hands-on during or after the meeting. > > > >>> I do ask that if you purchase from Olimex, you mention me. Olimex has > >>> been great with supporting the RetroBSD and LiteBSD communities and it > >>> would be nice to show them that we RetroBSD/LiteBSD devs are > >>> contributing back to them. Their hardware is also all Open Hardware, > >>> which I think is nice. > > Better yet, mention Brian C, these BSDs and that you're going to be at a > > NYC*BUG hackathon on July 6. > > > >>> Also, as of this morning, LiteBSD builds on FreeBSD! I will be > >>> submitting a port to build the LiteBSD toolchain, but I can provide a > >>> (10.x) binary for those who want to play around before the meeting. > > What about OpenBSD? I thought you mentioned it also as a build system? > > Haven't pushed it into the build system yet for OpenBSD. There's a > compile problem I haven't tracked down yet. > > > (previously, the images could only be compiled from Windows and Linux > IIRC) > > Linux and Mac OS X, actually. Not Windows. > > >>> Hope to see everyone out for the meeting with hardware! > > Very much looking forward to the meeting. > > > > Maybe give us an outline of what you intend to cover? > > > > And spoil the meeting??? :) > I'll cover the history of both, then I guess overview the features of > RetroBSD and LiteBSD separately, outline the LiteBSD ports tree, discuss > future plans for both (and my wish list for what I'd like to see in each > going forward), and talk about how to get involved in the projects. > If we have enough hardware around, we can finish up with a big group > installfest :) > > ~Brian > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From _ at thomaslevine.com Mon Jun 27 00:50:06 2016 From: _ at thomaslevine.com (Thomas Levine) Date: Mon, 27 Jun 2016 04:50:06 +0000 Subject: [talk] Why do directories not contain data? Message-ID: <20160627045007.7C4B5F29F4@mailuser.nyi.internal> In every system I have used (not very many systems), if I write(2) to a directory and read(2) from it, I either get errors or an empty result; why are these calls not supported for directories? The directory of course contains references to its children, but that's not the information I'm thinking about accessing; I naively think that a directory should be able to contain both a list of children (that I can display with ls) and an arbitrary blob of unrelated data (that I can display with cat); why I have never seen a system that works like this? From lists at eitanadler.com Mon Jun 27 04:43:14 2016 From: lists at eitanadler.com (Eitan Adler) Date: Mon, 27 Jun 2016 01:43:14 -0700 Subject: [talk] Why do directories not contain data? In-Reply-To: <20160627045007.7C4B5F29F4@mailuser.nyi.internal> References: <20160627045007.7C4B5F29F4@mailuser.nyi.internal> Message-ID: On 26 June 2016 at 21:50, Thomas Levine <_ at thomaslevine.com> wrote: > The directory of course contains references to its children, but that's > not the information I'm thinking about accessing; I naively think that a > directory should be able to contain both a list of children (that I can > display with ls) and an arbitrary blob of unrelated data (that I can > display with cat); why I have never seen a system that works like this? > In early unicies (UNIX Version 7 for example) there was only a single file system with a fairly simple struct interface. As such, read() and write() worked exactly as they do on regular files. There was no readdir(), opendir() specific system calls. Some unicies have retained bits of this, for example the ability to read() a directory. It would be directly against the history for these unicies to work as you describe. For systems that started more recently, I suspect they did not want to invent new semantics where they could be easily confused. There are some elements of what you describe as 'extended attributes' (typically stored in the directory inode) or 'resource forks' (typically stored as additional, alternate data blocks). -- Eitan Adler -------------- next part -------------- An HTML attachment was scrubbed... URL: From mark.saad at ymail.com Mon Jun 27 20:00:29 2016 From: mark.saad at ymail.com (Mark Saad) Date: Tue, 28 Jun 2016 00:00:29 +0000 (UTC) Subject: [talk] NSD and reverse zone files References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> Message-ID: <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> All?I am setting up a NSD system at work , and I am having no luck getting it to serve a simple reverse zone for 192.168.231. I have a fairly simple reverse zone $ORIGIN 231.168.192.in-addr.arpa. $TTL 1800 @?????? IN????? SOA???? ny4-ns01.dev.highonfire.com.????? admin.dev.highonfire.com. ( ;Commit Date 2016062700 ??????????????????????? 0000000002??????? ; serial number ??????????????????????? 3600??????????????????? ; refresh ??????????????????????? 900???????????????????? ; retry ??????????????????????? 86400?????????????????? ; expire ??????????????????????? 1800??????????????????? ; ttl ??????????????????????? ) ; Name servers ??????????????????????? IN????? NS????? ny4-ns01.dev.highonfire.com. ??????????????????????? IN????? NS????? ny4-ns02.dev.highonfire.com. ; PTR records 1???????????????????????? IN????? PTR???? ny4-pf01.dev.highonfire.com. 2???????????????????????? IN????? PTR???? ptr-231-2.dev.highonfire.com. No matter how I query it I keep getting a SERVFAIL .? Any ideas ? ?-- Mark Saad mark.saad at ymail.com -------------- next part -------------- An HTML attachment was scrubbed... URL: From pete at nomadlogic.org Mon Jun 27 21:59:13 2016 From: pete at nomadlogic.org (Pete Wright) Date: Mon, 27 Jun 2016 18:59:13 -0700 Subject: [talk] NSD and reverse zone files In-Reply-To: <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> Message-ID: On 06/27/16 05:00 PM, Mark Saad wrote: > All > I am setting up a NSD system at work , and I am having no luck > getting it to serve a simple reverse zone for 192.168.231. > > I have a fairly simple reverse zone > > $ORIGIN 231.168.192.in-addr.arpa. > $TTL 1800 > @ IN SOA ny4-ns01.dev.highonfire.com. > admin.dev.highonfire.com. ( > ;Commit Date 2016062700 > 0000000002 ; serial number > 3600 ; refresh > 900 ; retry > 86400 ; expire > 1800 ; ttl > ) > ; Name servers > IN NS ny4-ns01.dev.highonfire.com. > IN NS ny4-ns02.dev.highonfire.com. > > ; PTR records > 1 IN PTR ny4-pf01.dev.highonfire.com. > 2 IN PTR ptr-231-2.dev.highonfire.com. > > No matter how I query it I keep getting a SERVFAIL . Any ideas ? have you verified that you are allowing queries from the subnet you are issuing your dig/drill query from? if you are - what does the output of dig/drill look like? -pete -------------- next part -------------- An HTML attachment was scrubbed... URL: From mark.saad at ymail.com Mon Jun 27 22:55:30 2016 From: mark.saad at ymail.com (Mark Saad) Date: Tue, 28 Jun 2016 02:55:30 +0000 (UTC) Subject: [talk] NSD and reverse zone files In-Reply-To: References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> Message-ID: <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> Pete Forward lookups work , just reverse queries fail. [msaad at ny4-c108-nocbox ~]$ drill -a ny4-pf01.dev.highonfire.com ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61860 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1 ;; QUESTION SECTION: ;; ny4-pf01.dev.highonfire.com. IN A ;; ANSWER SECTION: ny4-pf01.dev.highonfire.com. 3426 IN A 192.168.201.1 ;; AUTHORITY SECTION: dev.highonfire.com. 2108 IN NS ny4-ns01.dev.highonfire.com. dev.highonfire.com. 2108 IN NS ny4-ns02.dev.highonfire.com. ;; ADDITIONAL SECTION: ny4-ns01.dev.highonfire.com. 2108 IN A 192.168.201.10 ;; Query time: 0 msec ;; SERVER: 192.168.201.10 ;; WHEN: Tue Jun 28 02:52:35 2016 ;; MSG SIZE rcvd: 119 [msaad at ny4-c108-nocbox ~]$ drill -x 192.168.221.1 ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 20754 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;; 1.221.168.192.in-addr.arpa. IN PTR ;; ANSWER SECTION: ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; Query time: 2 msec ;; SERVER: 192.168.201.10 ;; WHEN: Tue Jun 28 02:51:06 2016 ;; MSG SIZE rcvd: 44 my nsd.conf has the zone entry zone: name: "221.168.192.in-addr.arpa" zonefile: db.192.168.221 The file is readable and I can see the daemon logging that it read the file on startup / reload [2016-06-27 23:55:47.576] nsd[21702]: info: zonefile db.192.168.221 is not modified -- Mark Saad mark.saad at ymail.com On Monday, June 27, 2016 9:59 PM, Pete Wright wrote: > > > > > >On 06/27/16 05:00 PM, Mark Saad wrote: > >All >> I am setting up a NSD system at work , and I am having no luck getting it to serve a simple reverse zone for 192.168.231. >> >> >>I have a fairly simple reverse zone >> >> >>$ORIGIN 231.168.192.in-addr.arpa. >>$TTL 1800 >>@ IN SOA ny4-ns01.dev.highonfire.com. admin.dev.highonfire.com. ( >>;Commit Date 2016062700 >> 0000000002 ; serial number >> 3600 ; refresh >> 900 ; retry >> 86400 ; expire >> 1800 ; ttl >> ) >>; Name servers >> IN NS ny4-ns01.dev.highonfire.com. >> IN NS ny4-ns02.dev.highonfire.com. >> >>; PTR records >>1 IN PTR ny4-pf01.dev.highonfire.com. >>2 IN PTR ptr-231-2.dev.highonfire.com. >> >> >> >>No matter how I query it I keep getting a SERVFAIL . Any ideas ? >> >> >have you verified that you are allowing queries from the subnet you are issuing your dig/drill query from? if you are - what does the output of dig/drill look like? > >-pete > > >_______________________________________________ >talk mailing list >talk at lists.nycbug.org >http://lists.nycbug.org/mailman/listinfo/talk > > From mark.saad at ymail.com Tue Jun 28 09:19:36 2016 From: mark.saad at ymail.com (Mark Saad) Date: Tue, 28 Jun 2016 13:19:36 +0000 (UTC) Subject: [talk] NSD and reverse zone files In-Reply-To: <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> Message-ID: <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> Pete Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. NSD Directly queried on port 5300 -------------------------------- coffeepot:~ msaad$ dig @192.168.201.10 -p 5300 -x 192.168.201.1 ; <<>> DiG 9.8.3-P1 <<>> @192.168.201.10 -p 5300 -x 192.168.201.1 ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35752 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;1.201.168.192.in-addr.arpa. IN PTR ;; ANSWER SECTION: 1.201.168.192.in-addr.arpa. 1800 IN PTR ny4-pf01.ny4-ns01.dev.highonfire.com. ;; AUTHORITY SECTION: 201.168.192.in-addr.arpa. 1800 IN NS ny4-ns01.dev.highonfire.com. 201.168.192.in-addr.arpa. 1800 IN NS ny4-ns02.dev.highonfire.com. ;; Query time: 172 msec ;; SERVER: 192.168.201.10#5300(192.168.201.10) ;; WHEN: Tue Jun 28 09:16:42 2016 ;; MSG SIZE rcvd: 127 UNBOUND on port 53 ---------------------- coffeepot:~ msaad$ dig @192.168.201.10 -x 192.168.201.1 ; <<>> DiG 9.8.3-P1 <<>> @192.168.201.10 -x 192.168.201.1 ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 44128 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;1.201.168.192.in-addr.arpa. IN PTR ;; Query time: 602 msec ;; SERVER: 192.168.201.10#53(192.168.201.10) ;; WHEN: Tue Jun 28 09:17:13 2016 ;; MSG SIZE rcvd: 44 This is some kind of odd result of using a stub-zone in unbound; like this. stub-zone: name: "168.192.in-addr.arpa." stub-addr: 192.168.201.10 at 5300 Anyone know the correct way to make unbound forward reverse zones ? -- Mark Saad mark.saad at ymail.com > On Monday, June 27, 2016 10:55 PM, Mark Saad wrote: > > Pete > > Forward lookups work , just reverse queries fail. > > [msaad at ny4-c108-nocbox ~]$ drill -a ny4-pf01.dev.highonfire.com > ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 61860 > ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 1 > ;; QUESTION SECTION: > ;; ny4-pf01.dev.highonfire.com. IN A > > ;; ANSWER SECTION: > ny4-pf01.dev.highonfire.com. 3426 IN A 192.168.201.1 > > ;; AUTHORITY SECTION: > dev.highonfire.com. 2108 IN NS ny4-ns01.dev.highonfire.com. > dev.highonfire.com. 2108 IN NS ny4-ns02.dev.highonfire.com. > > ;; ADDITIONAL SECTION: > ny4-ns01.dev.highonfire.com. 2108 IN A 192.168.201.10 > > ;; Query time: 0 msec > ;; SERVER: 192.168.201.10 > ;; WHEN: Tue Jun 28 02:52:35 2016 > ;; MSG SIZE rcvd: 119 > > > [msaad at ny4-c108-nocbox ~]$ drill -x 192.168.221.1 > ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 20754 > ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 > ;; QUESTION SECTION: > ;; 1.221.168.192.in-addr.arpa. IN PTR > > ;; ANSWER SECTION: > > ;; AUTHORITY SECTION: > > ;; ADDITIONAL SECTION: > > ;; Query time: 2 msec > ;; SERVER: 192.168.201.10 > ;; WHEN: Tue Jun 28 02:51:06 2016 > ;; MSG SIZE rcvd: 44 > > > my nsd.conf has the zone entry > > zone: > name: "221.168.192.in-addr.arpa" > zonefile: db.192.168.221 > > The file is readable and I can see the daemon logging that it read the file on > startup / reload > > [2016-06-27 23:55:47.576] nsd[21702]: info: zonefile db.192.168.221 is not > modified > -- Mark Saad mark.saad at ymail.com > > > > On Monday, June 27, 2016 9:59 PM, Pete Wright wrote: > > >> >> >> >> >> >> On 06/27/16 05:00 PM, Mark Saad wrote: >> >> All >>> I am setting up a NSD system at work , and I am having no luck getting > it to serve a simple reverse zone for 192.168.231. >>> >>> >>> I have a fairly simple reverse zone >>> >>> >>> $ORIGIN 231.168.192.in-addr.arpa. >>> $TTL 1800 >>> @ IN SOA ny4-ns01.dev.highonfire.com. > admin.dev.highonfire.com. ( >>> ;Commit Date 2016062700 >>> 0000000002 ; serial number >>> 3600 ; refresh >>> 900 ; retry >>> 86400 ; expire >>> 1800 ; ttl >>> ) >>> ; Name servers >>> IN NS > ny4-ns01.dev.highonfire.com. >>> IN NS > ny4-ns02.dev.highonfire.com. >>> >>> ; PTR records >>> 1 IN PTR > ny4-pf01.dev.highonfire.com. >>> 2 IN PTR > ptr-231-2.dev.highonfire.com. >>> >>> >>> >>> No matter how I query it I keep getting a SERVFAIL . Any ideas ? >>> >>> >> have you verified that you are allowing queries from the subnet you > are issuing your dig/drill query from? if you are - what does the > output of dig/drill look like? >> >> -pete >> >> >> _______________________________________________ >> talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org/mailman/listinfo/talk >> >> > From viewtiful.icchan at gmail.com Tue Jun 28 16:18:05 2016 From: viewtiful.icchan at gmail.com (Robert Menes) Date: Tue, 28 Jun 2016 16:18:05 -0400 Subject: [talk] Upcoming installfest Message-ID: Hey guys, Here's what I'm aiming to bring for the installfest: 1) iBook G4 (PPC, Open/Free BSD) 2) Sega Dreamcast (NetBSD) 3) PIC32 board (George's; RetroBSD) I'm looking to try more quirky hardware to run either Net or OpenBSD on. Does anyone perhaps have a Sharp Zaurus laying around? :) http://ftp.openbsd.org/pub/OpenBSD/5.9/zaurus/INSTALL.zaurus --Robert -- Nobody's ever lost in life...they're merely taking the scenic route. ============================== Please avoid sending me Word or PowerPoint attachments. See http://www.gnu.org/philosophy/no-word-attachments.html ============================== -----BEGIN GEEK CODE BLOCK----- Version: 3.1.2 GCS/S/M/MU d- s+: a34 C++(+++) UL++++>$ P++ L+++ E+ W+ N+ o+ K++ w--- O- M !V PS+ PE Y+ PGP(+) t+ 5++ X++ R tv b+++ DI+++ D++(---) G++ e+ h- r++ y+ ------END GEEK CODE BLOCK------ -------------- next part -------------- An HTML attachment was scrubbed... URL: From george at ceetonetechnology.com Tue Jun 28 16:20:48 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Tue, 28 Jun 2016 16:20:48 -0400 Subject: [talk] Upcoming installfest In-Reply-To: References: Message-ID: <4b1e2807-8c30-3809-e3dd-46470957ea44@ceetonetechnology.com> On 06/28/16 16:18, Robert Menes wrote: > Hey guys, > > Here's what I'm aiming to bring for the installfest: > > 1) iBook G4 (PPC, Open/Free BSD) In the far past I ran OpenBSD on one of those. > 2) Sega Dreamcast (NetBSD) > 3) PIC32 board (George's; RetroBSD) > > I'm looking to try more quirky hardware to run either Net or OpenBSD on. > Does anyone perhaps have a Sharp Zaurus laying around? :) > > http://ftp.openbsd.org/pub/OpenBSD/5.9/zaurus/INSTALL.zaurus I had a Zaurus (was Bubs!).. but it was the wrong model, and didn't power up. Good stuff Robert. The August meeting should be fun. g From george at ceetonetechnology.com Tue Jun 28 22:49:18 2016 From: george at ceetonetechnology.com (George Rosamond) Date: Tue, 28 Jun 2016 22:49:18 -0400 Subject: [talk] NYC*BUG Upcoming: July 6 meeting, HOPE, installfest Message-ID: Several important events are on for July and August. July 6 on RetroBSD and LiteBSD July 22-24 HOPE which will feature a table from the FreeBSD Foundation (and we need volunteers to help staff the table) August 3 a post-HOPE installfest July 6: Meet the Smallest BSDs: RetroBSD and LiteBSD, Brian Callahan 18:45, Stone Creek Bar & Lounge: 140 E 27th St (note Brian's talk@ post about ordering hardware) Abstract We all expect *BSD to run on our personal computers and servers. What you may not know is that the last five years have seen a successful experiment to bring *BSD to the PIC32 microcontrollers. There are now two different full *BSD operating systems for these microcontrollers: RetroBSD, a port of 2.11BSD, and LiteBSD, based on 4.4BSD-Lite2. This talk introduces the two smallest BSDs, the differences between them, what hardware you need (with hands-on demos), and how to get involved. We'll overview what works, what doesn't, the challenges of writing a complete operating system with extremely small RAM limits in the modern era, and how to incorporate *BSD on the microcontroller into your *BSD universe. Speaker Bio Brian is a Ph.D. candidate in the Department of Science and Technology Studies at Rensselaer Polytechnic Institute. His research explores how underserved groups vie for legitimacy and normalcy in the IT sector through diversity and other initiatives. He is an ex-OpenBSD developer who used to do a lot of work on ports but now advocates for a BSD-agnostic approach. Somehow, George keeps convincing him that giving talks at NYCBUG is a good idea. ******* HOPE (www.hope.net) will feature a table sponsored by the FreeBSD Foundation. We are looking for volunteers to assist in staffing the table. It's a great opportunity to engage HOPE attendees about FreeBSD and the other BSDs. NYC*BUG will have a flier publicizing the installfest set for August 3. Our last installfest was a success in that a number of people did short overviews of their installs to more unusual hardware. Every HOPE attendee should see the fliers. It's a great opportunity to talk to those beyond the usual suspects, but the table won't happen without enough volunteers. From patrik at sigterm.se Thu Jun 30 02:23:04 2016 From: patrik at sigterm.se (Patrik Lundin) Date: Thu, 30 Jun 2016 08:23:04 +0200 Subject: [talk] NSD and reverse zone files In-Reply-To: <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> Message-ID: <20160630062303.GA6512@major.strace.se> On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: > Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. > Just a quick hint: it was possible to see something was in front of NSD becuase your drill output contained "flags: [...] ra". Since NSD is authoritative only it should never set the Recursion Available bit. > > [msaad at ny4-c108-nocbox ~]$ drill -x 192.168.221.1 > > ;; ->>HEADER<<- opcode: QUERY, rcode: SERVFAIL, id: 20754 > > ;; flags: qr rd ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 > > ;; QUESTION SECTION: > > ;; 1.221.168.192.in-addr.arpa. IN PTR > > You could try running unbound-host with your configuration file: === unbound-host -v -dd -C /path/to/unbound.conf 192.168.221.1 === The -dd will result in very detailed output showing what the unbound code is doing. You may get by with less debug as well. -- Patrik Lundin From ike at blackskyresearch.net Thu Jun 30 09:21:40 2016 From: ike at blackskyresearch.net (Isaac (.ike) Levy) Date: Thu, 30 Jun 2016 09:21:40 -0400 Subject: [talk] FCC Database, interesting hardware! Message-ID: <7024C1A3-6C0D-4F5D-83D5-72E3CD70CA71@blackskyresearch.net> Hey All, I was shown this cool gov resource, and thought it of general interest to anyone touching hardware: FCC Equipment Authorization Search https://apps.fcc.gov/oetcf/eas/reports/GenericSearch.cfm Nearly every piece of computer equipment has a FCC ID number, usually printed on the circuit board- and this online database should have it's application info. Not the snappiest site in the world, but pretty cool for anyone who wants more info on various FCC regulated hardware, (wifi, bluetooth, and whatnot). Thing is, it appears you really gotta' know how to look for it... -- Here's a cool example of some random Broadcom hardware I found in there: https://apps.fcc.gov/oetcf/eas/reports/ViewExhibitReport.cfm?mode=Exhibits&RequestTimeout=500&calledFromFrame=N&application_id=xZioggkj4K8NPN05DK%2F6%2Fg%3D%3D&fcc_id=QDS-BRCM1017 These FCC applications have all manner of useful info, photos and often circuit diagrams, form factor and photos, EF/Radio emissions reports, antennae information, production and manufacturing variables, pretty darned cool. -- I was messing around this AM, trying to find particular hardware listed in http://dmesgd.nycbug.org/ but I haven't found a clear way to connect the dots? Anyhow, for the wireless and hardware hackers on list, do shout if you find something cool in there?! Best, .ike From kmsujit at gmail.com Thu Jun 30 09:26:10 2016 From: kmsujit at gmail.com (Sujit K M) Date: Thu, 30 Jun 2016 18:56:10 +0530 Subject: [talk] NSD and reverse zone files In-Reply-To: <20160630062303.GA6512@major.strace.se> References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> <20160630062303.GA6512@major.strace.se> Message-ID: On Thu, Jun 30, 2016 at 11:53 AM, Patrik Lundin wrote: > On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: >> Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. >> > > Just a quick hint: it was possible to see something was in front of NSD > becuase your drill output contained "flags: [...] ra". Since NSD is > authoritative only it should never set the Recursion Available bit. But isn't unbound something that does this? https://calomel.org/unbound_dns.html From kmsujit at gmail.com Thu Jun 30 09:34:55 2016 From: kmsujit at gmail.com (Sujit K M) Date: Thu, 30 Jun 2016 19:04:55 +0530 Subject: [talk] FCC Database, interesting hardware! In-Reply-To: <7024C1A3-6C0D-4F5D-83D5-72E3CD70CA71@blackskyresearch.net> References: <7024C1A3-6C0D-4F5D-83D5-72E3CD70CA71@blackskyresearch.net> Message-ID: On Thu, Jun 30, 2016 at 6:51 PM, Isaac (.ike) Levy wrote: > Hey All, > > I was shown this cool gov resource, and thought it of general interest to anyone touching hardware: > > FCC Equipment Authorization Search > https://apps.fcc.gov/oetcf/eas/reports/GenericSearch.cfm > Sounds like Federal Gov, I know some people used to ask whether a companies datacenter conforms to this. From patrik at sigterm.se Thu Jun 30 11:05:20 2016 From: patrik at sigterm.se (Patrik Lundin) Date: Thu, 30 Jun 2016 17:05:20 +0200 Subject: [talk] NSD and reverse zone files In-Reply-To: References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> <20160630062303.GA6512@major.strace.se> Message-ID: <20160630150417.GA58511@major.strace.se> On Thu, Jun 30, 2016 at 06:56:10PM +0530, Sujit K M wrote: > On Thu, Jun 30, 2016 at 11:53 AM, Patrik Lundin wrote: > > On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: > >> Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. > >> > > > > Just a quick hint: it was possible to see something was in front of NSD > > becuase your drill output contained "flags: [...] ra". Since NSD is > > authoritative only it should never set the Recursion Available bit. > > But isn't unbound something that does this? > Yes of course. I was just pointing out that the drill command was indicating that we were not actually contacting NSD prior to it being clarified later in the thread. -- Patrik Lundin From mark.saad at ymail.com Thu Jun 30 12:16:08 2016 From: mark.saad at ymail.com (Mark Saad) Date: Thu, 30 Jun 2016 12:16:08 -0400 Subject: [talk] NSD and reverse zone files In-Reply-To: References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> <20160630062303.GA6512@major.strace.se> Message-ID: <06DC840A-7961-44B5-935C-B17E0DE4D511@ymail.com> Sujit So I want to have custom ptr records that replicate with DNS transfers . Which is why I am using nsd . --- Mark Saad | mark.saad at ymail.com > On Jun 30, 2016, at 9:26 AM, Sujit K M wrote: > >> On Thu, Jun 30, 2016 at 11:53 AM, Patrik Lundin wrote: >>> On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: >>> Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. >> >> Just a quick hint: it was possible to see something was in front of NSD >> becuase your drill output contained "flags: [...] ra". Since NSD is >> authoritative only it should never set the Recursion Available bit. > > But isn't unbound something that does this? > > https://calomel.org/unbound_dns.html > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From mark.saad at ymail.com Thu Jun 30 12:13:54 2016 From: mark.saad at ymail.com (Mark Saad) Date: Thu, 30 Jun 2016 12:13:54 -0400 Subject: [talk] NSD and reverse zone files In-Reply-To: <20160630150417.GA58511@major.strace.se> References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> <20160630062303.GA6512@major.strace.se> <20160630150417.GA58511@major.strace.se> Message-ID: > On Jun 30, 2016, at 11:05 AM, Patrik Lundin wrote: > >> On Thu, Jun 30, 2016 at 06:56:10PM +0530, Sujit K M wrote: >>> On Thu, Jun 30, 2016 at 11:53 AM, Patrik Lundin wrote: >>>> On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: >>>> Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. >>> >>> Just a quick hint: it was possible to see something was in front of NSD >>> becuase your drill output contained "flags: [...] ra". Since NSD is >>> authoritative only it should never set the Recursion Available bit. >> >> But isn't unbound something that does this? > > Yes of course. I was just pointing out that the drill command was > indicating that we were not actually contacting NSD prior to it being > clarified later in the thread. > > -- > Patrik Lundin > Pat I have to dig int the unbound config options ; the openbsd mailing lists have a similar thread about this but I am stumped. You are right that Unbound isn't passing the query on . --- Mark Saad | mark.saad at ymail.com > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org/mailman/listinfo/talk From okan at demirmen.com Thu Jun 30 12:36:59 2016 From: okan at demirmen.com (Okan Demirmen) Date: Thu, 30 Jun 2016 12:36:59 -0400 Subject: [talk] NSD and reverse zone files In-Reply-To: References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> <20160630062303.GA6512@major.strace.se> <20160630150417.GA58511@major.strace.se> Message-ID: <20160630163659.GA78211@carbon.khaoz.org> On Thu 2016.06.30 at 12:13 -0400, Mark Saad wrote: > > > On Jun 30, 2016, at 11:05 AM, Patrik Lundin wrote: > > > >> On Thu, Jun 30, 2016 at 06:56:10PM +0530, Sujit K M wrote: > >>> On Thu, Jun 30, 2016 at 11:53 AM, Patrik Lundin wrote: > >>>> On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: > >>>> Some further checking . I have unbound in front of nsd; and it appears that unbound is the issue. > >>> > >>> Just a quick hint: it was possible to see something was in front of NSD > >>> becuase your drill output contained "flags: [...] ra". Since NSD is > >>> authoritative only it should never set the Recursion Available bit. > >> > >> But isn't unbound something that does this? > > > > Yes of course. I was just pointing out that the drill command was > > indicating that we were not actually contacting NSD prior to it being > > clarified later in the thread. > > > > -- > > Patrik Lundin > > > > Pat > I have to dig int the unbound config options ; the openbsd mailing lists have a similar thread about this but I am stumped. You are right that Unbound isn't passing the query on . your unbound.conf needs to be told about this space, something like: local-zone: "168.192.in-addr.arpa." nodefault stub-zone: name: "168.192.in-addr.arpa." stub-addr: [your nsd ip:port] From espen at tagestad.no Thu Jun 30 13:27:27 2016 From: espen at tagestad.no (Espen Tagestad) Date: Thu, 30 Jun 2016 13:27:27 -0400 Subject: [talk] Nycbug-ers Message-ID: <9DBF2980-6CF9-40E5-B161-728B691BBBB9@tagestad.no> Hi! My name is Espen and I've been working on setting up an entity here in NY for our company for the last 12 months or so. We use FreeBSD for almost everything we do, so it would be great for us to get in touch with local BSD users and consultants around the area. Please let me know if anyone is interested in hanging out grabbing a beer or something during this or next week. I'll defintely try come to the event on the 6th, but I have some time to kill until then. Ping me here or directly on email:) Br. Espen From pete at nomadlogic.org Thu Jun 30 14:34:09 2016 From: pete at nomadlogic.org (Pete Wright) Date: Thu, 30 Jun 2016 11:34:09 -0700 Subject: [talk] FCC Database, interesting hardware! In-Reply-To: <7024C1A3-6C0D-4F5D-83D5-72E3CD70CA71@blackskyresearch.net> References: <7024C1A3-6C0D-4F5D-83D5-72E3CD70CA71@blackskyresearch.net> Message-ID: <22b2720f-fcb3-a0e7-5e14-8d85b3b2df02@nomadlogic.org> On 06/30/2016 06:21, Isaac (.ike) Levy wrote: > Hey All, > > I was shown this cool gov resource, and thought it of general interest to anyone touching hardware: > > FCC Equipment Authorization Search > https://apps.fcc.gov/oetcf/eas/reports/GenericSearch.cfm > > Nearly every piece of computer equipment has a FCC ID number, usually printed on the circuit board- and this online database should have it's application info. > Not the snappiest site in the world, but pretty cool for anyone who wants more info on various FCC regulated hardware, (wifi, bluetooth, and whatnot). Thing is, it appears you really gotta' know how to look for it... > > > -- > Here's a cool example of some random Broadcom hardware I found in there: > > https://apps.fcc.gov/oetcf/eas/reports/ViewExhibitReport.cfm?mode=Exhibits&RequestTimeout=500&calledFromFrame=N&application_id=xZioggkj4K8NPN05DK%2F6%2Fg%3D%3D&fcc_id=QDS-BRCM1017 > > These FCC applications have all manner of useful info, photos and often circuit diagrams, form factor and photos, EF/Radio emissions reports, antennae information, production and manufacturing variables, pretty darned cool. > > -- > I was messing around this AM, trying to find particular hardware listed in http://dmesgd.nycbug.org/ but I haven't found a clear way to connect the dots? > > Anyhow, for the wireless and hardware hackers on list, do shout if you find something cool in there?! > wow nice find .ike - this is awesome-o! -p -- Pete Wright pete at nomadlogic.org From mark.saad at ymail.com Thu Jun 30 19:24:25 2016 From: mark.saad at ymail.com (Mark Saad) Date: Thu, 30 Jun 2016 23:24:25 +0000 (UTC) Subject: [talk] NSD and reverse zone files In-Reply-To: <20160630163659.GA78211@carbon.khaoz.org> References: <1333215452.2597762.1467072029440.JavaMail.yahoo.ref@mail.yahoo.com> <1333215452.2597762.1467072029440.JavaMail.yahoo@mail.yahoo.com> <608070375.2612894.1467082530741.JavaMail.yahoo@mail.yahoo.com> <895732087.2886855.1467119976486.JavaMail.yahoo@mail.yahoo.com> <20160630062303.GA6512@major.strace.se> <20160630150417.GA58511@major.strace.se> <20160630163659.GA78211@carbon.khaoz.org> Message-ID: <1594560156.22391.1467329065642.JavaMail.yahoo@mail.yahoo.com> All So Here is the unbound config. http://pastebin.com/qwUcM7XD I tried a few iterations of this but still I get no reply from nsd -- Mark Saad mark.saad at ymail.com > On Thursday, June 30, 2016 12:37 PM, Okan Demirmen wrote: > > On Thu 2016.06.30 at 12:13 -0400, Mark Saad wrote: > >> >> > On Jun 30, 2016, at 11:05 AM, Patrik Lundin > wrote: >> > >> >> On Thu, Jun 30, 2016 at 06:56:10PM +0530, Sujit K M wrote: >> >>> On Thu, Jun 30, 2016 at 11:53 AM, Patrik Lundin > wrote: >> >>>> On Tue, Jun 28, 2016 at 01:19:36PM +0000, Mark Saad wrote: >> >>>> Some further checking . I have unbound in front of nsd; > and it appears that unbound is the issue. >> >>> >> >>> Just a quick hint: it was possible to see something was in > front of NSD >> >>> becuase your drill output contained "flags: [...] > ra". Since NSD is >> >>> authoritative only it should never set the Recursion Available > bit. >> >> >> >> But isn't unbound something that does this? >> > >> > Yes of course. I was just pointing out that the drill command was >> > indicating that we were not actually contacting NSD prior to it being >> > clarified later in the thread. >> > >> > -- >> > Patrik Lundin >> > >> >> Pat >> I have to dig int the unbound config options ; the openbsd mailing lists > have a similar thread about this but I am stumped. You are right that Unbound > isn't passing the query on . > > your unbound.conf needs to be told about this space, something like: > > local-zone: "168.192.in-addr.arpa." nodefault > stub-zone: > name: "168.192.in-addr.arpa." > stub-addr: [your nsd ip:port] >