I’ve only put x on one install. It was an old scrap laptop with 150mhz, 16mb, and 5GB.
I usually use openbsd with their version of Apache and Perl for servers and control nodes for research. I usually minimize and use native crypto and stack protection a lot.
You’re welcome. Typical vnconfig use of an encrypted FS:
vnconfig -k /dev/svnd0x /mountpoint
and that’s pretty much everything you have to do.
Drive imaging? I’d certainly suggest you to try with dd, because – unlike tar, dump. etc – saves all disklabels and boot sectors. You get a simple image [quite big though] of your *BSD partition [usually 6Gigs is enough for a base system,other FSs are mounted from an external drive or partitions]. But that’s just my own experience
I’ve just set my apache user to use a quota of 150000KB and that is more than enough for the logs. Usually, the logs should rotate, and old logs get discarded – no? That was my experience of UNIX anyways.
Web servers can get full very fast of you do not maintain them. I’ve had hundreds of gigabytes in logs before. “access.log typically grows by 1Mb for each 10,000 requests”, if hes just generating errors, it might be bigger, maybe you should set a quota for your apache chroot, or place it on a seperate partition?
Oh, I’d love to know how to encrypt a partition or home directory.
No idea it could be done.
I imagine you are like me and do not ‘get’ those Compiz Fusion guys who love wobbling their windows.
I much prefer a shell over a GUI. Sadly, I’ve had to use XP for the past year because of college working in Visual Studio 2005. I’d much rather learn C over the Net Framework any day of the week – but what can I do about it, eh?
I usually just encrypt my home directory, that way things are encrypted unless I move it out to some other partition, it is really the opposite of “I have nothing to hide”.
That is good practise. I read the Pocket System’s Administration Guide by O’Reilly and they state to change the root password regularly.
I’ve heard different ideas about this from people. But, I like to use a password manager for Windows that keeps all my passwords encrypted in a database. This way, I can pick new passwords each week and just update the database records on Windows.
I’ve only put x on one install. It was an old scrap laptop with 150mhz, 16mb, and 5GB.
I usually use openbsd with their version of Apache and Perl for servers and control nodes for research. I usually minimize and use native crypto and stack protection a lot.
No worries, I finally did it after reinstalling OpenBSD two or three times! lol
Basically, Fdisk, newfs, and disklabel all failed with the same error : Drive not configured.
The only way was to format the drive and prep it via OS Installation media. Now, I have a 152GB Home directory! lol
USRAS,
You are very knowledgeable about OpenBSD. Can I ask you a question?
Do you know what command(s) are used in preparing a unformatted hard drive for OpenBSD?
I am thinking FDisk for the partition layout – but how do I go about formatting it?
You’re welcome. Typical vnconfig use of an encrypted FS:
vnconfig -k /dev/svnd0x /mountpoint
and that’s pretty much everything you have to do.
Drive imaging? I’d certainly suggest you to try with dd, because – unlike tar, dump. etc – saves all disklabels and boot sectors. You get a simple image [quite big though] of your *BSD partition [usually 6Gigs is enough for a base system,other FSs are mounted from an external drive or partitions]. But that’s just my own experience
man vnconfig enlightened me.
I have a spare 160GB drive that I am thinking of using as drive image backup. Thanks for the vnconfig command – it’ll come in very useful.
X server is not a security hole, although it’s open port 6000 can be. Even though it’s easy to block with PF.
keyword: vnconfig and svnd0* devs.
Thanks for the sound advice.
I’ve just set my apache user to use a quota of 150000KB and that is more than enough for the logs. Usually, the logs should rotate, and old logs get discarded – no? That was my experience of UNIX anyways.
Web servers can get full very fast of you do not maintain them.
I’ve had hundreds of gigabytes in logs before. “access.log typically grows by 1Mb for each 10,000 requests”, if hes just generating errors, it might be bigger, maybe you should set a quota for your apache chroot, or place it on a seperate partition?
Oh compiz? I used to be into it, its a fucking waste of time. I run OpenBSD in VMware and I’ll be putting it on a real box later on.
Oh, I’d love to know how to encrypt a partition or home directory.
No idea it could be done.
I imagine you are like me and do not ‘get’ those Compiz Fusion guys who love wobbling their windows.
I much prefer a shell over a GUI. Sadly, I’ve had to use XP for the past year because of college working in Visual Studio 2005. I’d much rather learn C over the Net Framework any day of the week – but what can I do about it, eh?
Nice talking to you.
Boriddler
Everyone loves OpenBSD!
Fair enough.
I usually just encrypt my home directory, that way things are encrypted unless I move it out to some other partition, it is really the opposite of “I have nothing to hide”.
That is good practise. I read the Pocket System’s Administration Guide by O’Reilly and they state to change the root password regularly.
I’ve heard different ideas about this from people. But, I like to use a password manager for Windows that keeps all my passwords encrypted in a database. This way, I can pick new passwords each week and just update the database records on Windows.
I usually just set a long random password that I don’t know about for my root account.