From owner-freebsd-questions@FreeBSD.ORG Mon Nov 19 10:43:08 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 5AD60B8B for ; Mon, 19 Nov 2012 10:43:08 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mx01.qsc.de (mx01.qsc.de [213.148.129.14]) by mx1.freebsd.org (Postfix) with ESMTP id 10C0D8FC0C for ; Mon, 19 Nov 2012 10:43:07 +0000 (UTC) Received: from r56.edvax.de (port-92-195-8-72.dynamic.qsc.de [92.195.8.72]) by mx01.qsc.de (Postfix) with ESMTP id 2AFDD3CB51; Mon, 19 Nov 2012 11:43:05 +0100 (CET) Received: from r56.edvax.de (localhost [127.0.0.1]) by r56.edvax.de (8.14.5/8.14.5) with SMTP id qAJAh6dj002697; Mon, 19 Nov 2012 11:43:06 +0100 (CET) (envelope-from freebsd@edvax.de) Date: Mon, 19 Nov 2012 11:43:06 +0100 From: Polytropon To: "Lucas B. Cohen" Subject: Re: Anybody use the Dell 3010?? Message-Id: <20121119114306.ff21baa9.freebsd@edvax.de> In-Reply-To: <50AA00BA.1040007@bnrlabs.com> References: <20121118085838.GA7267@ethic.thought.org> <50AA00BA.1040007@bnrlabs.com> Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: Gary Kline , FreeBSD Mailing List X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: Polytropon List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Nov 2012 10:43:08 -0000 On Mon, 19 Nov 2012 10:49:46 +0100, Lucas B. Cohen wrote: > On 2012.11.18 09:58, Gary Kline wrote: > > > > > > I probably should cc the hardward guys about this. first, see if it > > geta any traction here, tho. my tech guy got me a Delll 3010 > > that has an "improved" [[meaning screwed up]] BIOS with some > > hardware mess called the UEFI. > > > > Trying to get ssh to work *bi-directionally* i royally f'ked up my > > installation for well over 27 hours. ssh still fails to connect going > > in to my "new tao"; but this time I know what to avoid. my > > question is simple: of what use is this new/improved POS setup? > > > > im sure its the same for every flavor of unix. my view is that it > > mjust makes using non-windozw that much more painful. > > > > gary > > > > Gary, > > UEFI is more than a modified BIOS, it's something to get rid of the BIOS > altogether. It's the x86 BIOS that arguably deserves much more to be > called a screwed up POS, as it carries with it 30 years worth of legacy > weirdness, kludges to go around them in modern systems, and a whole > catalog of vendor-specific bugs and non-compliant implementations. UEFI > was designed to solve a bunch of problems for manufacturers and advanced > users, I'm not so sure that it deserves so much heat. The positive aspects you've mentioned about UEFI, the potential to solve problems originating back to half-baked solutions and "hacks" on BIOS level are well mentioned. Still I fear that UEFI will not bring them to reality. Instead it will be worse. Allow me to provide just one example: More in the series of bizarre UEFI bugs http://mjg59.dreamwidth.org/20187.html As the title suggests, there are many more. :-) > What I'm sure of, is that there's no relationship between your new > machine's UEFI and your ssh issues. That sounds possible, but still UEFI _can_ be used to interfere with any level of the machine, as far as I know. As it is somehow a kind of "micro-OS", it can surely detect network traffic and motify or deny it if desired. There are many aspects of "security" that can be realized with UEFI. Avoiding "uncertified" traffic could be one of them. Still in _this_ particular case I would not assume UEFI to be the source of the problem. > I'm also sure that this has nothing to do with FreeBSD. FreeBSD's ssh implementation (client and server) usually are simple to set up, providing a good "out of the box experience". Checking settings on both sides, using the -vvv option or maybe even using tcpdump or Wireshark to examine the traffic could help to spot the problem. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ...