FreeBSD

Making my pkg.conf configuration version independent

Leave a Comment / FreeBSD, Open Source, pkg, poudriere / By /

In this post, I will talk about how I modified my pkg configuration so I don’t have to modify it after upgrading a host/jail from one version of FreeBSD to another. You might say that you don’t have to do that. Perhaps you have a different configuration and aren’t doing what I’m doing. HEADS UP: I hit a problem with this approach when updating a jail using mkjail: see https://github.com/mkjail/mkjail/issues/30 In this post: […]

Making my pkg.conf configuration version independent Read More »

freebsd-update fetch install -> Cowardly refusing to proceed any further.

Leave a Comment / FreeBSD, freebsd-update / By /

Today I encountered this. [r720-01 dan ~] % sudo freebsd-update fetch install 14:39:01 Looking up update.FreeBSD.org mirrors… 2 mirrors found. Fetching metadata signature for 13.0-RELEASE from update1.freebsd.org… done. Fetching metadata index… done. The update metadata is correctly signed, but failed an integrity check. Cowardly refusing to proceed any further. I confirmed it was just the fetch portion. [r720-01 dan ~] % sudo freebsd-update fetch 14:42:08 Looking up update.FreeBSD.org mirrors… 2 mirrors found. Fetching

freebsd-update fetch install -> Cowardly refusing to proceed any further. Read More »

Monitoring FreeBSD jails from the host

Leave a Comment / FreeBSD, Jails, Nagios, Network monitoring, nrpe / By /

It was May 2021 when I tweeted about monitoring FreeBSD jails which had jail IP addresses only in the 127.0.0.0/8 range. Yesterday, nearly 6 months later, I did the first test of this. This came up because I’m getting a new FreshPorts node ready. I’ve created a file in the jail to be run from the host. That script runs in the jail but it initiated by a process on the host. In

Monitoring FreeBSD jails from the host Read More »

Turning off SASLCLIENT for databases/mysql57-client

Leave a Comment / poudriere / By /

This started off as a Twitter thread earlier this morning. databases/mysql57-client has an optional dependency on security/cyrus-sasl2 which defaults to on. Let’s try turning that off and see if it also removes openldap-client from the dependency list. Why? I install net-mgmt/nagios-plugins in just above every jail and host. Even hosts which don’t use MySQL. I use poudriere to build all my own packages. I added this entry: # Trying to avoid pulling in

Turning off SASLCLIENT for databases/mysql57-client Read More »

poudriere: when renaming sets, also rename *-make.conf files etc

Leave a Comment / nginx, poudriere / By /

Last last night, after renaming some buildlists, which were actually setnames, for poudriere, I realized that files in /usr/local/etc/poudriere.d also needed to be renamed. In this post: poudriere 3.3.7 nginx 1.20.1_2,2 Both running on FreeBSD 13.0-RELEASE-p4 These are my renamed files: [dan@pkg01:/usr/local/etc/poudriere.d]: $ ls *primary* primary-make.conf primary-poudriere.conf primaryi386-make.conf primaryi386-poudriere.conf The output of svn status illustrates the changes I made: [dan@pkg01:/usr/local/etc/poudriere.d]: $ svn st D master-list-i386-make.conf > moved to primaryi386-make.conf D master-list-i386-poudriere.conf > moved

poudriere: when renaming sets, also rename *-make.conf files etc Read More »

poudriere: Warning: Using ‘-‘ in a SETNAME is not recommended as it causes ambiguities with parsing the build name of 122amd64-default-master-list

Leave a Comment / poudriere / By /

I like readability. I like it in variable names. I prefer something descriptive and easy to ready. In in this post: FreeBSD 13.0-RELEASE-p4 poudriere 3.3.7 I recently started getting messages like this from my daily poudiere build: I could just rename the sets, everything would be rebuilt, but then clients would be stuck pointing at the old no-longer built trees. To fix this easily, I will use symlinks. This is what clients use

poudriere: Warning: Using ‘-‘ in a SETNAME is not recommended as it causes ambiguities with parsing the build name of 122amd64-default-master-list Read More »

suppressing motd on FreeBSD 13.0+

Leave a Comment / motd / By /

On one recent FreeBSD 13 host, I noticed a lack of motd. The MOTD (Message Of The Day) appears when you login. Typically, it looks like this: [dan@rose:~] $ r720 Last login: Mon Aug 2 00:30:13 2021 from air01.startpoint.vpn.unixathome.org FreeBSD 13.0-RELEASE-p3 (GENERIC) #0: Tue Jun 29 19:46:20 UTC 2021 Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed

suppressing motd on FreeBSD 13.0+ Read More »

Fixing vulns in poudriere jails

Leave a Comment / poudriere / By /

This post was originally a few tweets. It’s not really about upgrading vulnerabilities in poudriere jails either. Read this as if each paragraph was a tweet. When a FreeBSD security alert comes out, or a package is marked as vulnerable, I try to get that fixed as soon as I can. Even if not using the feature. Sometimes a vuln can be leverages against something you are using. Patch it. When it comes

Fixing vulns in poudriere jails Read More »

cron is running all jobs twice – solved

Leave a Comment / FreeBSD, Jails, Open Source / By /

This started earlier today and I solved it only just now. It took me a while to find out it was duplicate cron jobs, and even longer to find out why. Edit: 2025-09-20 – if this is a jail, check your exec.start directives for duplicate entries. This problem arose today. Mine was two “/bin/sh /etc/rc” declarations. See https://bsd.network/web/@dvl/115237669230498431 It started with lockf notifications (if you’ve never heard of lockf before, please read this

cron is running all jobs twice – solved Read More »

Are all installed packages available for reinstall?

Leave a Comment / FreeBSD, Nagios, pkg / By /

When you install a package, you want to know it’s still around to reinstall. You’ve probably never given this much thought. Neither had I, until I read this post on Reddit. In my case, I run my own poudriere server which allows me to run my own package server. Why run your own package server? build ports with non-default configuration settings: Want databases/mantis build for PostgreSQL, not MySQL? (and who wouldn’t?) – You

Are all installed packages available for reinstall? Read More »

Scroll to Top