I have two new drives for zuul. I’ll start adding them into the zpool soon. For now, here is the smarctl output for the new drives. I’ll start some tests on them soon. By new, I mean new to this host. The drives have 17,000 hours on them. [dan@zuul:~] $ sudo smartctl -a /dev/ada2 smartctl 7.0 2018-12-30 r4883 [FreeBSD 12.0-RELEASE-p7 amd64] (local build) Copyright (C) 2002-18, Bruce Allen, Christian Franke, www.smartmontools.org === START […]
new drives for zuul Read More »
Back in the good old days, I managed my DNS zones files by checking them into the repo, and then running svn up on the name servers. When I started using Let’s Encrypt, I stopped doing that because of the use of nsupdate. This post outlines how I added two new zones to my nameservers: vbsdcon.org vbsdcon.com The zone files Here is the zone I created. $ cat vbsdcon.org.db vbsdcon.org. 3600 IN SOA
Adding new DNS zones when using nsupdate & bind Read More »
Today is the day after BSDCan 2019. The power cables and extension cords from the hacking lounge have been laid to rest in an Ottawa basement until next year. Sitting in my parents garden, I noticed some Nagios cert warnings: I logged into my certificates server (the website from which all my hosts download their certs). The cert looked OK: [dan@webs01:/usr/local/www/certs.unixathome.org/www/certs/x8dtu.unixathome.org] $ ls -l total 14 -rw-r–r– 1 rsyncer rsyncer 1647 May 11
I’ve been making use of some FreeBSD-provided scripts within my Nagios monitoring. Recently, I started seeing a problem after some jail maintenance. This post is about that problem and the fix. Full disclosure: the issue was not what I thought it was and I did not solve it. I’m using: FreeBSD 11.2-RELEASE-p9 The scripts are: 405.pkg-base-audit 410.pkg-audit Where are they from? $ pkg which /usr/local/etc/periodic/security/405.pkg-base-audit /usr/local/etc/periodic/security/405.pkg-base-audit was installed by package base-audit-0.3 You don’t
pkg: http://vuxml.freebsd.org/freebsd/vuln.xml.bz2: No address record Read More »
ZFS is very flexible about mountpoints, and there are many features available to provide great flexibility. When you create your second zpool this is what it might look like: $$ zfs list -r main_tank NAME USED AVAIL REFER MOUNTPOINT main_tank 893G 3.52T 96K /main_tank main_tank/data 786G 3.52T 88K /main_tank/data main_tank/data/dvl 755G 3.52T 755G /main_tank/data/dvl main_tank/data/freshports 31.4G 3.52T 88K /main_tank/data/freshports main_tank/data/freshports/backend 3.11G 3.52T 88K /main_tank/data/freshports/backend This is a pool I created long ago, but
Mount your ZFS datasets anywhere you want Read More »
I am moving my existing IMAP services to a third-party, specifically FastMail. I started this process back in March 2017 when I signed up with FastMail. I did a mail migration then, but never proceeded. At present I am hosting my own IMAP server, via Dovecot, RoundCube, and Postfix, running in a FreeBSD jail. I got out of running a public incoming mail server back in 2010. It has been nearly 9 years
Moving your IMAP server to a third party: FastMail Read More »
I am about to make changes to my mail servers. I am changing third-party providers. In anticipation of this change, I will drop the TTL on my DNS MX records. This should minimize the time it takes for this change to take effect. I say should because not all servers honor the specified TTL. I started with one of my lesser used domains, to make sure I had the nsupdate commands correct. Here
Adjusting the TTL on domain records Read More »
I have used Dovecot as my IMAP server since 2007. It has always been reliable and useful. Recently, I wanted to move my IMAP server to one host to another. I am the only user on this IMAP server. Wait, not I’m not, there are some test accounts on here, mostly used to verify that IMAP is running properly, but that’s no my point. The point is: we’re not moving thousands of accounts,
Setting up a new Dovecot server on FreeBSD with an OSX mail.app client Read More »
I have been using ezjail since at least 2008 (see earlier blog post). A few years ago, I started deploying iocage on new servers. About three months ago, I starting converting systems from ezjail to iocage. When I converted my first system, I found that the existing documentation for conversion was incomplete. Specifically, symlinks were a problem. I raised an issue and wrote a better script which I have since used on a
Converting thin jails to thick jails Read More »
We know the routine. You have a desktop, and a laptop, or perhaps two laptops. You want your files in both places. A shared, remotely mounted directory is not ideal. Instead, let’s have the systems synchronize themselves. That’s where syncthing comes in: Syncthing replaces proprietary sync and cloud services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is
using syncthing between my OSX laptop and my FreeBSD server Read More »