Open Source

Running net/mosquitto on FreeBSD as non-root and with a different pidfile

Leave a Comment / MQTT / By /

net/mosquitto is an open source (BSD licensed) message broker that implements the MQ Telemetry Transport (MQTT) protocol. I use it for event notification. Related posts: mosquitto: upgrade from 1.x to 2.x requires configuration changes to keep working Using mtqq to create a notification network: mosquitto, mqttwarn, hare, and hared Installing Owntracks recorder on FreeBSD In this post: FreeBSD 13 mosquitto 2.0.10 My configuration Here is what I have in my /etc/rc.conf related to […]

Running net/mosquitto on FreeBSD as non-root and with a different pidfile Read More »

suppressing motd on FreeBSD 13.0+

Leave a Comment / motd / By /

On one recent FreeBSD 13 host, I noticed a lack of motd. The MOTD (Message Of The Day) appears when you login. Typically, it looks like this: [dan@rose:~] $ r720 Last login: Mon Aug 2 00:30:13 2021 from air01.startpoint.vpn.unixathome.org FreeBSD 13.0-RELEASE-p3 (GENERIC) #0: Tue Jun 29 19:46:20 UTC 2021 Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed

suppressing motd on FreeBSD 13.0+ Read More »

Accessing a Dell iDRAC 7 via Nginx reverse proxy

Leave a Comment / DELL, nginx, R720 / By /

HEADS UP: this is still under review. Until this notice is removed, I recommend not using this. I have a Dell R720 at an ISP. The iDRAC connection is filtered, by the ISP, and is accessible only from a small number of IP addresses. Sure, this talks about a web proxy. It works. So does the ssh forwarding shown at the bottom of this post. NOTE: I should start monitoring that IP addr

Accessing a Dell iDRAC 7 via Nginx reverse proxy Read More »

Ignore files in a subversion working copy

Leave a Comment / subversion / By /

To ignore files in your subversion working directory, try this. [dan@dev-ingress01:~/scripts]: $ svn st M . ? helper_scripts ? show-config.sh ? test-categories.pl ? test-new-xml-code-single.sh ? test-new-xml-code-starting-from.sh I want to ignore all those files, so: $ svn st > .IgnoreThese Then I edit the file, so only the file names are shown. Something like this: Then tell subversion to ignore that list of files. $ svn propset svn:ignore -F .ignoreThese . property ‘svn:ignore’ set

Ignore files in a subversion working copy Read More »

Fixing vulns in poudriere jails

Leave a Comment / poudriere / By /

This post was originally a few tweets. It’s not really about upgrading vulnerabilities in poudriere jails either. Read this as if each paragraph was a tweet. When a FreeBSD security alert comes out, or a package is marked as vulnerable, I try to get that fixed as soon as I can. Even if not using the feature. Sometimes a vuln can be leverages against something you are using. Patch it. When it comes

Fixing vulns in poudriere jails Read More »

OpenVPN: unsupported certificate purpose

Leave a Comment / General, OpenSSL, OpenVPN, ssl-admin / By /

See also SSL client vs server certificates and bacula-fd. I use OpenVPN since at least 2008 – now going on 13 years. I find it to be reliable and stable. A few days ago, I added another client to a VPN. I run this particular network with self-signed certificates which I create using ssl-admin – I find it particularly useful for this purpose. The problem Away I went, creating a new certicate, bundled

OpenVPN: unsupported certificate purpose Read More »

Are all installed packages available for reinstall?

Leave a Comment / FreeBSD, Nagios, pkg / By /

When you install a package, you want to know it’s still around to reinstall. You’ve probably never given this much thought. Neither had I, until I read this post on Reddit. In my case, I run my own poudriere server which allows me to run my own package server. Why run your own package server? build ports with non-default configuration settings: Want databases/mantis build for PostgreSQL, not MySQL? (and who wouldn’t?) – You

Are all installed packages available for reinstall? Read More »

Upgrading a FreeBSD 12.2 jail to FreeBSD 13 using mkjail

Leave a Comment / FreeBSD, Jails, mkjail, Open Source, pkg, Upgrades / By /

Mark Felder and I have been working on a minimalist set of jail scripts for creating and updating jails. All jail management is accomplished via standard vanilla FreeBSD jails. No jail managers are involved. Everything goes through jail.conf. In this post: FreeBSD 13.0 host, recently update from FreeBSD 12.2 FreeBSD 12.s jail on that host, about to be updated to FreeBSD 13 These jails were NOT created with mkjail Jails are mounted at

Upgrading a FreeBSD 12.2 jail to FreeBSD 13 using mkjail Read More »

Adjusting my ZFS filesystems to conform with standard FreeBSD boot environments

Leave a Comment / beadm, bectl, ZFS / By /

Get FreeBSD 12.2 mfsBSD (because that matches the OS on slocum), burn it to a thumb drive using OSX. NOTE: the following didn’t work. I wound up not having the right values in /lib and /var/db/ I don’t know what I did wrong, but I did manage to fix them up afterwards. I suspect that I still had zroot/usr mounted and did not notice. I will keep my notes here for future reference

Adjusting my ZFS filesystems to conform with standard FreeBSD boot environments Read More »

Updating my FreeBSD 12.2 host to FreeBSD 13.0

Leave a Comment / bectl, FreeBSD, freebsd-update, Open Source, System upgrades, Upgrades / By /

I am going to upgrade a FreeBSD 12.2 host to FreeBSD 13.0 with one reboot. Actually, here, because of the zpool update, there is another reboot. This is significantly fewer than the standard upgrade process (yeah, critics claim 1 is not significantly less than 2; sigh). The instructions are taken from vermaden’s blog post on Upgrade FreeBSD with ZFS Boot Environments. I have seen a couple of references to this post lately and

Updating my FreeBSD 12.2 host to FreeBSD 13.0 Read More »

Scroll to Top