Have you ever seen a message like this? From: Nvi recovery program Subject: Nvi saved the file sudoers.tmp Date: November 3, 2013 6:48:00 PM EST To: root@slocum.example.org Reply-To: root@slocum.example.org On Thu Jul 25 18:55:42 2013, the user root was editing a file named /usr/local/etc/sudoers.tmp on the machine slocum.unixathome.org, when it was saved for recovery. You […]
Nvi saved the file sudoers.tmp Read More »
In my work on FreshPorts, I’ve learned more than the average non-committer about the FreeBSD ports tree and its oddities. Just about everything learns about a port it gets from ‘make -V’. Even this method can be fraught with difficulty. In an attempt to get the fairest information possible, FreshPorts uses a chroot solution, first
mounting the FreshPorts chroot within a jail Read More »
I got this message today: $ doveadm pw -s SHA512-CRYPT Enter new password: doveadm(dan): Fatal: open(/dev/tty) failed: No such file or directory It seems if you have no tty, you can’t create a password. Surely there is a better way to do this? # w 7:21PM up 19 days, 4 mins, 0 users, load averages:
doveadm cannot work without a tty Read More »
Here are a few posts for future reading: How to add a jailed server to OpenVPN? Running OpenVPN in a ezjail jail Restarting OpenVPN in jail erase tun0 configuration OpenVPN Client in a jail
Interesting jail/OpenVPN reading Read More »
I’ve been meeting a few challenges with running an instance of bacula-fd in each of my jails. Most of them are related to networking. Perhaps my deployment strategies are imposing too many restrictions. The challenges arise on the jail hosts which are not behind my firewall at home. Each of those servers is accessible through
Accessing every jail from a VPN Read More »
I’ve been using Bacula since early 2004. I’ve been using FreeBSD since 1998. Jails are a relatively newcomer. I starting using it later in 2004. But it’s only recently that I’ve started using them intensively. Backups are always a touchy subject. With ezjail, the files you need to backup are greatly reduced. You’re not backing
ezjail-jail: making a full backup of a FreeBSD jail with Bacula Read More »
I use FreeBSD Jails. I use them a lot. I have jails for websites. I have jails for regression testing, mail servers, OpenVPN servers, etc. I like jails for many reasons. One of which is being able to create a new jail which is pretty much identical to another jail, except for a few things.
Using ezjail-admin archive to create a new jail, almost like an existing jail Read More »
I decided to set up some of my mail servers to require certification authentication on the submission port (587). In my case, I want to forward mail from my server at home to my public servers out there on the Internet. I don’t want just anyone to be able to submit mail here, so the
Postfix client certificate verification Read More »
Last week, while at EuroBSDCon in Malta, I noticed that one of my servers had the wrong time. It was Bacula who told me, through this message in one of the backup jobs: 28-Sep 21:59 nyi-fd JobId 144899: DIR and FD clocks differ by -5 seconds, FD automatically compensating Fixing the time I connected to
different times despite running ntpd Read More »
I have a number of things I want to get done in the short term: remove the mail server on my gateway box at home and start using a mail server on an internal box Configure my external mail servers (out there on the Internet) to use TLS when talking to each other Configure those