Oct 282014

I upgraded to Yosmite today. It was not without pain. I use openconnect, which in turn, uses tuntap. After upgrading, my connection attempts resulted in: Failed to open tun device: No such file or directory Set up tun device failed I was also seeing this in /var/log/system.log: Oct 28 15:39:39 snorty.example.org com.apple.kextd[19]: ERROR: invalid signature [...]

Oct 222014

Contrary to all the examples I found, it’s not easy to get snmpwalk to communicate with snmpd. I am using the net-mgmt/net-snmp port with the default configuration options. It was installed with: pkg install net-mgmt/net-snmp This is the minimal configuration file, which should be placed at /usr/local/etc/snmp/snmpd.conf: rocommunity public When starting snmpd for the *first* [...]

Oct 162014

Short version: I used this regex when restoring to a jail on the slocum server: !/\.zfs/snapshot/snapshot-for-backup/!/! Background Today I did this when setting up an ssh-key on a new host: ssh-add -L > ~/.ssh/authorized_keys Oh. That should have been >>. Restoring During the Bacula restore, I need to change this path: /usr/jails/mydev/.zfs/snapshot/snapshot-for-backup/usr/home/dan/.ssh/ to /usr/jails/mydev/usr/home/dan/.ssh/ That [...]

Oct 042014

For future reference. This server formed the backbone of just about everything I did. It hosted about 13 domains. Sadly, it was i386 and would not do for ZFS. Copyright (c) 1992-2014 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All [...]

Sep 032014

Last night, this worked fine. This morning, it fails: # ansible-playbook jail-mailjail.yml PLAY [mailjails] ************************************************************** GATHERING FACTS *************************************************************** failed: [mailjail.example.org] => {“failed”: true, “parsed”: false} invalid output was: Sorry, try again. Sorry, try again. Sorry, try again. sudo: 3 incorrect password attempts TASK: [pkg | install pkg] ***************************************************** FATAL: no hosts matched or all hosts [...]

Aug 142014

After a lengthy Twitter discussion this afternoon, and a post to the forums, I decided to alter my ezjail basejail. The issue: when you update the basejail, /etc/rc.d and /etc/periodic do not get updated. This is by design. I wanted those directories to get updated. So I have changed the basejail. I will outline first, [...]

Aug 132014

I’m doing some work with logstash-forwarder as part of a consolidation effort to get all the logs into one place, and using logstash to put them into Elasticsearch. logstash-fowarder requires the Go programming language, and that will be our first step. Installing go, the programming language I am assuming you are installing go at /usr/local; [...]

Jul 262014

This was done on FreeBSD 9.2-RELEASE-p10. After my boss told me about losing qmail logs from a jail some time ago when a server was shutdown, I started looking at some tests to ensure that jails are shutdown properly. I am beginning to suspect they are not. Consider this test. I added this to /usr/local/etc/rc.d/nullmailer [...]

Jul 202014

Background I was asked to comment on the following: Our software is built and maintained by about 20 engineers, and runs in production on dozens of servers in a remote data center. One problem we frequently face is identity and access management on these servers – our engineers occasionally need to directly access the servers [...]