Running net/mosquitto on FreeBSD as non-root and with a different pidfile

Leave a Comment / MQTT / By /

net/mosquitto is an open source (BSD licensed) message broker that implements the MQ Telemetry Transport (MQTT) protocol. I use it for event notification. Related posts: mosquitto: upgrade from 1.x to 2.x requires configuration changes to keep working Using mtqq to create a notification network: mosquitto, mqttwarn, hare, and hared Installing Owntracks recorder on FreeBSD In this post: FreeBSD 13 mosquitto 2.0.10 My configuration Here is what I have in my /etc/rc.conf related to […]

Running net/mosquitto on FreeBSD as non-root and with a different pidfile Read More »

stressdisk

Leave a Comment / Disks, nvme / By /

This was written a few weeks ago and I just noticed today that it had not been published. Following on from I bought a new nvme drive – or did I?, I ran stressdisk on it. [dvl@test ~]$ sudo gpart add -a 4k -t freebsd-zfs nvd0 nvd0p1 added [dvl@test ~]$ gpart show nvd0 => 34 500118125 nvd0 GPT (238G) 34 6 – free – (3.0K) 40 500118112 1 freebsd-zfs (238G) 500118152 7 –

stressdisk Read More »

How I took my name servers offline by adding a new hostname

Leave a Comment / DNS, named / By /

To be fair, the name servers weren’t offline, just the two zone files I amended. The effect: none of my services at home were available to anything at home. The other day, I was working on some procedures for adding a jail to a host and then a jail within that jail. I wanted to document the procedure to make it easier to implement when the time comes. The first step, create the

How I took my name servers offline by adding a new hostname Read More »

I bought a new nvme drive – or did I?

Leave a Comment / Disks, hardware, nvme / By /

Bought a new NVMe drive. Installed it using cheap PCIe adaptor bought off Amazon. From /var/run/dmesg.boot nvd0: NVMe namespace nvd0: 244198MB (500118192 512 byte sectors) Surprisingly, the device is already partitioned. [dvl@test ~]$ gpart show nvd0 => 34 500118125 nvd0 GPT (238G) 34 500118125 – free – (238G) [dvl@test ~]$ Eh, is is this a used device? The static bag it arrived in was sealed. Let’s see. [dvl@test ~]$ sudo smartctl -a /dev/nvd0

I bought a new nvme drive – or did I? Read More »

suppressing motd on FreeBSD 13.0+

Leave a Comment / motd / By /

On one recent FreeBSD 13 host, I noticed a lack of motd. The MOTD (Message Of The Day) appears when you login. Typically, it looks like this: [dan@rose:~] $ r720 Last login: Mon Aug 2 00:30:13 2021 from air01.startpoint.vpn.unixathome.org FreeBSD 13.0-RELEASE-p3 (GENERIC) #0: Tue Jun 29 19:46:20 UTC 2021 Welcome to FreeBSD! Release Notes, Errata: https://www.FreeBSD.org/releases/ Security Advisories: https://www.FreeBSD.org/security/ FreeBSD Handbook: https://www.FreeBSD.org/handbook/ FreeBSD FAQ: https://www.FreeBSD.org/faq/ Questions List: https://lists.FreeBSD.org/mailman/listinfo/freebsd-questions/ FreeBSD Forums: https://forums.FreeBSD.org/ Documents installed

suppressing motd on FreeBSD 13.0+ Read More »

Trouble with vnet and pf

Leave a Comment / pf, vnet / By /

In the past, I have tried vnet jails with pf, and hit trouble. I was never able to get pf to allow the vnet traffic when having a default ‘block log all’ rule. More recently, I encountered the same problem when using byhve. This time, I moved byhve to another host, which is not using pf and I am writing this post to document the issue. This post is based on two gists

Trouble with vnet and pf Read More »

Tips for running an online conference

Leave a Comment / BSDCan, Conferences, Conventions, PGCon / By /

NOTE: This post was composed in June 2020. I think I got started running conferences in 2002 when I helped with Open Source Weekend 2003. The next year, I started BSDCan. Three years later, PGCon start. All up, I think I’ve run at least 32 conferences, two of which have been online: BSDCan 2020 and PGCon 2020. This article was planned before the conferences were held. There have been requests to share what

Tips for running an online conference Read More »

Accessing a Dell iDRAC 7 via Nginx reverse proxy

Leave a Comment / DELL, nginx, R720 / By /

HEADS UP: this is still under review. Until this notice is removed, I recommend not using this. I have a Dell R720 at an ISP. The iDRAC connection is filtered, by the ISP, and is accessible only from a small number of IP addresses. Sure, this talks about a web proxy. It works. So does the ssh forwarding shown at the bottom of this post. NOTE: I should start monitoring that IP addr

Accessing a Dell iDRAC 7 via Nginx reverse proxy Read More »

Ignore files in a subversion working copy

Leave a Comment / subversion / By /

To ignore files in your subversion working directory, try this. [dan@dev-ingress01:~/scripts]: $ svn st M . ? helper_scripts ? show-config.sh ? test-categories.pl ? test-new-xml-code-single.sh ? test-new-xml-code-starting-from.sh I want to ignore all those files, so: $ svn st > .IgnoreThese Then I edit the file, so only the file names are shown. Something like this: Then tell subversion to ignore that list of files. $ svn propset svn:ignore -F .ignoreThese . property ‘svn:ignore’ set

Ignore files in a subversion working copy Read More »

Fixing vulns in poudriere jails

Leave a Comment / poudriere / By /

This post was originally a few tweets. It’s not really about upgrading vulnerabilities in poudriere jails either. Read this as if each paragraph was a tweet. When a FreeBSD security alert comes out, or a package is marked as vulnerable, I try to get that fixed as soon as I can. Even if not using the feature. Sometimes a vuln can be leverages against something you are using. Patch it. When it comes

Fixing vulns in poudriere jails Read More »

Scroll to Top