Displaying 20 results from an estimated 100 matches similar to: ""Cipher = none" doesn't seem to be working properly"
2013 Nov 07
2
Segfaults on connection loss
Hi there,
I'm seeing quite frequent segfaults around check_dead_connections() and
terminate_connection() when the tcp meta connection to a node times out
(or is e.g. firewalled), usually it happens when there's heavy packet loss:
Program terminated with signal 11, Segmentation fault.
#0 edge_del (e=0x1b71ba0) at edge.c:96
96 avl_delete(e->from->edge_tree, e);
(gdb)
2010 Nov 13
3
[PATCH 1/4] Experimental IFF_ONE_QUEUE support for Linux
---
doc/tinc.conf.5.in | 3 +++
src/linux/device.c | 7 +++++++
2 files changed, 10 insertions(+), 0 deletions(-)
diff --git a/doc/tinc.conf.5.in b/doc/tinc.conf.5.in
index 2bfd5fe..01f7f81 100644
--- a/doc/tinc.conf.5.in
+++ b/doc/tinc.conf.5.in
@@ -255,6 +255,9 @@ a lookup if your DNS server is not responding.
This does not affect resolving hostnames to IP addresses from the
host
2008 Sep 30
1
Problem compiling tinc-1.0.8 on gcc-2.95
Hello.
I found that anonymous structures does not work on gcc-2.95.
If you guys want to support a bit older platforms I suggest
fixing it.
You can check out patch I created to fix this issue.
I just added 2 extra structures to remove anonymous
structs inside connection_status_t and node_status_t.
Patch is here:
ftp://borg.uu3.net/pub/unix/tinc/tinc.patch
Attaching it as well.
Regards,
Borg
2011 Aug 09
1
using multiple physical interfaces
What is the suggested way of configuring tinc 1.1pre2 for multiple
physical interfaces between the nodes? In my configuration, each node
has a few IPv4 addresses (a base address for the node, and an address
for each physical interface). Route to the other node's base address
can jump around from one physical interface to another at runtime.
I've just been using the node's base
2014 May 14
2
Option to turn off listen port, e.g. client only mode
Hey,
I have this setup on my small test tinc-vpn.
HostA (runs on a server and is publicly accessible)
HostB (runs on my laptop (behind firewall) sometimes and connects to HostA)
HostC (runs on a Amazon AWS server (behind firewall) to test long uptime and connects to HostA)
This setup allows me to communicate from HostB to HostC thru HostA without any issues.
Everything works great, but I
2005 Jun 30
1
Forcing tinc to use aes-128 cipher
I am trying to get tinc to use aes-128-cbc for it's encryption algorythm for network traffic. So far, I'm not having any luck. I've tried putting it into the tinc.conf
file, and it turns out that tinc is ignoring that code completely. I'm using tinc 1.0.4 (in TCP mode). Openssl version 0.9.7d. I've made some initial investigation
into the source, and in net_setup.c I
2005 Jan 18
1
tinc svn rev 1432 segfaults
Dear readers,
Today i checked out a fresh copy of tinc from svn (rev 1432) and got the
following:
tinc[32605]: Got fatal signal 11 (Segmentation fault)
tinc[32605]: Got another fatal signal 11 (Segmentation fault): not
restarting.
I've got two nodes set up in switch mode which work fine with tinc-1.0.2
(not with 1.0.3 due to the broadcast packet issue)
gdb backtrace:
Program received
2010 Sep 17
1
friend of a friend type darknets
Hi!
here a little patch for darknet functionality, i hope it does what its
intended for sufficiently ... but it seems to work :).
what should it do?
imagine your friend-network. A trusts B and C. B trusts D and E, D trust
F, C trusts G. All trust relationships are mutal
A <---> C <---> G
^
\
\-----> B <---> D <---> F
^
\
\---> E
2009 May 27
0
[PATCH] src/linux/device.c: Fix segfault when running without `--net'.
If running without `--net', the (global) variable `netname' is NULL. This
creates a segmentation fault because this NULL-pointer is passed to strdup:
Program terminated with signal 11, Segmentation fault.
#0 0xb7d30463 in strlen () from /lib/tls/i686/cmov/libc.so.6
(gdb) bt
#0 0xb7d30463 in strlen () from /lib/tls/i686/cmov/libc.so.6
#1 0xb7d30175 in strdup () from
2017 May 27
1
Replacing of non-alphanumeric chars in Name can be confusing
Tinc replaces non-alphanumeric characters in the `Name` field of
tinc.conf by '_' (see [1] and [2]).
This includes hyphens ('-'), which are often used in host names.
That is quite surprising, and can easily lead to misconfigurations,
especially because there doesn't seem to be a warning if you configure
`Name = node-1`, and on the other machines the host file
2000 Jul 06
1
Notification: PR#9
JitterBug notification
ivo moved PR#9 from incoming to wishlist
Message summary for PR#9
From: vdongen@hetisw.nl
Subject: map
Date: Sun, 2 Jul 2000 18:23:20 0200 (CEST)
0 replies 0 followups
Notes: This is a nice idea on itself, but not really doable in tinc itself.
What would be nice is the ability to control tinc realtime with some sort of GUI
tool. This tool can then be used for much
2001 Feb 21
2
can't get tinc to compile..
Hi Tinc Mailing Group,
I've been trying for some days now, to get tinc up and running.
Could someone please suggest what I could do to get it working.
I've installed Redhat 6.2 onto a pc, and then installed the
latest 2.2 kernel: 2.2.18 from source code (The usual
make menuconfig ; make dep ; make bzImage , etc). I've followed
the tinc instructions for adding the
2006 Jun 01
1
compile cvs trunk
Hello,
should the cvs trunk compile?
a configure first gave me errors. I had to replace
any appearance of "[config.h]" to config.h in the
Makefile.
Then a make did not finish:
make[2]: Entering directory `/usr/src/tinc/lib'
make[2]: Nothing to be done for `all'.
make[2]: Leaving directory `/usr/src/tinc/lib'
Making all in src
make[2]: Entering directory
2014 Nov 22
2
Tinc 1.0.24 build failed on OSX Mavericks
Hi,
I've got the following error when tried to compile tinc-1.0.24:
gcc -g -O2 -pie -L/opt/local/lib -o tincd avl_tree.o conf.o
connection.o dropin.o dummy_device.o edge.o event.o fake-getaddrinfo.o
fake-getnameinfo.o getopt.o getopt1.o graph.o list.o logger.o meta.o
multicast_device.o net.o net_packet.o net_setup.o net_socket.o netutl.o
node.o pidfile.o process.o protocol.o
2003 Jul 29
2
can't ping to an internal IP through tinc's virtual interfaces
Hi.
As I wrote some days ago (It worked! [Was: my two hosts don't see each
other]) I succeeded at setting up a tinc VPN between two hosts
(isivirtual and pamvirtual)
I tried to ping from pamvirtual, the external machine, to an internal IP
of 'isivirtual' but it doesn't work. Neither 'traceroute'.
What's going on?
At 'isivirtual' routing (ip forwarding) is
2015 Mar 21
2
Help needed with Tinc Setup on remote hosts and lots of ISPs / Failover Problems between ISPs
Hello List,
This is our setup which we are trying in a couple of our remote offices:
+---------------------------------------+ +-------------------------------------------------------------+
| | | |
| +----------------+ |
2000 Jun 27
1
[CVS] humbolt:/tinc/cabal/src net.c netutl.c protocol.c
> - Indirectdata finally REALLY REALLY works now!
> - More precise debug messages
Hmmm ... I can't prove that using the CVS code I checked out this morning.
Everything works like yesterday: I can ping the peer but I canot go beyond:
*** SERVER ***
Jun 27 09:04:56 lemon tinc.9[10186]: tincd 1.0pre3 (Jun 27 2000 08:53:56)
startin
g, debug level 4
Jun 27 09:04:56 lemon tinc.9[10186]:
2013 Aug 23
0
SSL Cipher Order in Dovecot
Hi,
I want that dovecot uses PFS with my Apple Devices. I set the Cipher List to:
ssl_cipher_list = DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!CBC:!PSK:!SRP:!DSS:!SSLv2:!RC4
I got this from here: http://www.kuketz-blog.de/perfect-forward-secrecy-mit-apple-mail/
But then my only Outlook 2010 Client won't connect. If i enable rsa-aes128-SHA again on third place
2008 Jan 29
0
Available: Multi-threaded AES-CTR Cipher
On multiple core systems OpenSSH is limited to using a single core for
all operations. On these systems this can result in a transfer being
processor bound even though additional CPU resources exist. In order to
open up this bottleneck we've developed a multi-threaded version of
the AES-CTR cipher. Unlike CBC mode, since there is no dependency
between cipher blocks in CTR mode we
2013 Sep 12
1
Puppet SSL cipher suites
Hey there,
I looked up puppet.conf documentation and there doesn''t seem to be any
option to choose which SSL cipher suites are used for communication.
Is there some way to configure which cipher suites are preferred?
--
Gabriel Filion