Sometimes I mess up. Then I have to clean up and redo. These help me do that. This deletes FullAutoNoNextPool-12954 to FullAutoNoNextPool-12958. This creates FullAutoNoNextPool-12954 to FullAutoNoNextPool-12958.
Bacula: delete a range of volumes, create the same range Read More »
This started off as a Twitter thread earlier this morning. databases/mysql57-client has an optional dependency on security/cyrus-sasl2 which defaults to on. Let’s try turning that off and see if it also removes openldap-client from the dependency list. Why? I install net-mgmt/nagios-plugins in just above every jail and host. Even hosts which don’t use MySQL. I use poudriere to build all my own packages. I added this entry: # Trying to avoid pulling in
Turning off SASLCLIENT for databases/mysql57-client Read More »
Last last night, after renaming some buildlists, which were actually setnames, for poudriere, I realized that files in /usr/local/etc/poudriere.d also needed to be renamed. In this post: poudriere 3.3.7 nginx 1.20.1_2,2 Both running on FreeBSD 13.0-RELEASE-p4 These are my renamed files: [dan@pkg01:/usr/local/etc/poudriere.d]: $ ls *primary* primary-make.conf primary-poudriere.conf primaryi386-make.conf primaryi386-poudriere.conf The output of svn status illustrates the changes I made: [dan@pkg01:/usr/local/etc/poudriere.d]: $ svn st D master-list-i386-make.conf > moved to primaryi386-make.conf D master-list-i386-poudriere.conf > moved
poudriere: when renaming sets, also rename *-make.conf files etc Read More »
I like readability. I like it in variable names. I prefer something descriptive and easy to ready. In in this post: FreeBSD 13.0-RELEASE-p4 poudriere 3.3.7 I recently started getting messages like this from my daily poudiere build: I could just rename the sets, everything would be rebuilt, but then clients would be stuck pointing at the old no-longer built trees. To fix this easily, I will use symlinks. This is what clients use
net/mosquitto is an open source (BSD licensed) message broker that implements the MQ Telemetry Transport (MQTT) protocol. I use it for event notification. Related posts: mosquitto: upgrade from 1.x to 2.x requires configuration changes to keep working Using mtqq to create a notification network: mosquitto, mqttwarn, hare, and hared Installing Owntracks recorder on FreeBSD In this post: FreeBSD 13 mosquitto 2.0.10 My configuration Here is what I have in my /etc/rc.conf related to
Running net/mosquitto on FreeBSD as non-root and with a different pidfile Read More »
On one recent FreeBSD 13 host, I noticed a lack of motd. The MOTD (Message Of The Day) appears when you login. Typically, it looks like this: [dan@rose:~] $ r720 Last login: Mon Aug 2 00:30:13 2021 from air01.startpoint.vpn.unixathome.org FreeBSD 13.0-RELEASE-p3 (GENERIC) #0: Tue Jun 29 19:46:20 UTC 2021 Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed
suppressing motd on FreeBSD 13.0+ Read More »
HEADS UP: this is still under review. Until this notice is removed, I recommend not using this. I have a Dell R720 at an ISP. The iDRAC connection is filtered, by the ISP, and is accessible only from a small number of IP addresses. Sure, this talks about a web proxy. It works. So does the ssh forwarding shown at the bottom of this post. NOTE: I should start monitoring that IP addr
Accessing a Dell iDRAC 7 via Nginx reverse proxy Read More »
To ignore files in your subversion working directory, try this. [dan@dev-ingress01:~/scripts]: $ svn st M . ? helper_scripts ? show-config.sh ? test-categories.pl ? test-new-xml-code-single.sh ? test-new-xml-code-starting-from.sh I want to ignore all those files, so: $ svn st > .IgnoreThese Then I edit the file, so only the file names are shown. Something like this: Then tell subversion to ignore that list of files. $ svn propset svn:ignore -F .ignoreThese . property ‘svn:ignore’ set
Ignore files in a subversion working copy Read More »
This post was originally a few tweets. It’s not really about upgrading vulnerabilities in poudriere jails either. Read this as if each paragraph was a tweet. When a FreeBSD security alert comes out, or a package is marked as vulnerable, I try to get that fixed as soon as I can. Even if not using the feature. Sometimes a vuln can be leverages against something you are using. Patch it. When it comes
Fixing vulns in poudriere jails Read More »
See also SSL client vs server certificates and bacula-fd. I use OpenVPN since at least 2008 – now going on 13 years. I find it to be reliable and stable. A few days ago, I added another client to a VPN. I run this particular network with self-signed certificates which I create using ssl-admin – I find it particularly useful for this purpose. The problem Away I went, creating a new certicate, bundled
OpenVPN: unsupported certificate purpose Read More »