General

If it doesn’t belong anywhere, it belongs here.

Renaming and replacing zroot filesystems using mfsBSD

I am replacing one zroot with another because of missing binaries and suspect layout. The existing zroot is an old system predating current zroot layouts. This work is being performed on a test system (that link is not safe for young eyes). In this post: FreeBSD 12.1 mfsBSD 12.1 The failed attempt I tried once, …

Renaming and replacing zroot filesystems using mfsBSD Read More »

Right up until you need it, resilience looks like waste

This sounds slightly political, and it is. Intentionally so. 1. the capacity to recover quickly from difficulties; toughness. “the often remarkable resilience of so many British institutions” 2. the ability of a substance or object to spring back into shape; elasticity. “nylon is excellent in wearability and resilience” Christophe Pettus recently said: Right up until …

Right up until you need it, resilience looks like waste Read More »

ssh with 2FA

2FA has its critics: It’s so unreliable! Phones are so easily hijacked It’s not a lot of added security etc Some of these make assumptions not necessarily in evidence. In this post: FreeBSD 12.1 pam_google_authenticator-1.08 Most of the 2FA I use is time-based one-off passwords (TOTP), as opposed to text messages. These are often 6-digit …

ssh with 2FA Read More »

Archives are important to retain and pass on knowledge

Archives are important. When they are public and available for searching, it retains and passes on knowledge. It saves vast amounts of time. Case in point I started the copy-backups-to-tape process today. This appeared on the tape server: Jan 7 19:12:08 r720-01 kernel: (sa0:mps0:0:5:0): 64512-byte tape record bigger than supplied buffer Damn. Do I have …

Archives are important to retain and pass on knowledge Read More »

zfstools & sanoid – snapshots on the local host

I’m going to implement zfstools on all my ZFS-based hosts today. I first started using this tool in July 2019. In this post: FreeBSD 12.0 and 12.1 zfstools 0.3.6_1 sanoid-2.0.1_2 Local snapshots only I will be using zfstool only for creating local snapshots. If I wanted snapshots for sending to other hosts, I would probably …

zfstools & sanoid – snapshots on the local host Read More »

Registering FireTV – unable to receive verification code on phone

I was setting up my FireTV (seems to be a TV with built-in FireStick functions). I was stuck, waiting for a verification code which never arrived on my phone. I was expecting an incoming text. I was wrong to expect that. I had gotten to the stage of logging in with my Amazon credentials and …

Registering FireTV – unable to receive verification code on phone Read More »

Why is my network offline? An investigation

Happy New Year. This morning I received an email at 4:50 AM local time telling me that my camera system had been offline for 10 minutes. Based on that, I tried to access my internal monitoring system from outside. Nothing. Later emails indicated other external systems had issues connecting to the internal network. As I …

Why is my network offline? An investigation Read More »

Configuring my BIND/named DNS servers to operate from a hidden master via VPN for Let’s Encrypt

What is a hidden DNS master? If you need to ask that, this is not the blog post for you. This post assumes you already know how to configure DNS and just want ideas for your own hidden master. It also assumes the networking, VPN, and firewall are pre-configured for this. This blog post is …

Configuring my BIND/named DNS servers to operate from a hidden master via VPN for Let’s Encrypt Read More »