Loading up an old copy of a PostgreSQL database, zfs snapshots, and sanoid snapshot management

Leave a Comment / FreeBSD, Open Source, PostgreSQL, sanoid, snapshots, ZFS / By /

Sometimes you want to go back to a known good state. And you want to do it quickly, without waiting around. In my case, that’s going to be a zfs snapshot. Today I am preparing to test some code changes so that FreshPorts properly creates a new category. See these recent blog posts for details: Welcome to the new category: filesystems Fixing the category creation code In this post: FreeBSD 14.1-RELEASE-p5 postgresql16-server-16.4 dbclone […]

Loading up an old copy of a PostgreSQL database, zfs snapshots, and sanoid snapshot management Read More »

zfs hold / release

Leave a Comment / FreeBSD, Open Source, snapshots, ZFS / By /

Let’s talk about zfs hold. Based on man zfs-hold: “If a hold exists on a snapshot, attempts to destroy that snapshot by using the zfs destroy command return EBUSY.” Let’s apply that to some FreshPorts snapshots which I don’t want going away: This is your typical FreshPorts website: [15:03 dvl-nginx01 dvl ~] % zfs list NAME USED AVAIL REFER MOUNTPOINT data02 1.13T 565G 96K none data02/freshports 671G 565G 88K none data02/freshports/jailed 326G 565G

zfs hold / release Read More »

dma: could not pick up queue file

Leave a Comment / dma / By /

see https://lists.freebsd.org/archives/freebsd-questions/2024-October/005877.html for the full archive. A while back, I changed my FreeBSD jails from using postfix to using dma. I like postfix, but I don’t want to maintain the app in so many locations. dma is less work. I wrote a short blog post about configuring dma and also blogged about replacing postfix with dma. All was well. Except this one log entry which I started to see, on some hosts, not

dma: could not pick up queue file Read More »

Self-hosting Bitwarden / VaultWarden on FreeBSD

6 Comments / FreeBSD, Jails, Open Source, Security, VaultWarden / By /

The time has come for me to consider another application for my TOTP data (think 6-digit codes produced by Google Authenticator or an RSA device. I’ve been using an app called 2STP – I have long liked it. Support for it ended about 7 years ago, yet it continued to slug along on my phone and on my watch. Recently, it stopped working on my watch. That was the tipping point. I decided

Self-hosting Bitwarden / VaultWarden on FreeBSD Read More »

fail2ban – adding to my website to deter abuse

Leave a Comment / fail2ban, FreeBSD, Open Source, pf / By /

The type of abuse recently seen on FreshPorts isn’t a big deal. I would ignore it if it was on my own server. However, I’m using a “paid” service and the credits go faster when pillocks do pillocky stuff. While I hope I’ve covered what I’ve done, I’ve been sick with a cold for a week, and helping to look after two < 4 year-olds for two weekends in a row. Perhaps I've

fail2ban – adding to my website to deter abuse Read More »

kernel: Limiting closed port RST response from x to y packets/sec

Leave a Comment / dma, FreeBSD, General, Mail, Open Source, Postfix / By /

For 3 days now, I’ve been seeing these messages. If you search online, it’s usually the result of port scanning. Aug 7 14:05:15 zuul kernel: Limiting closed port RST response from 212 to 195 packets/sec Aug 7 14:05:16 zuul kernel: Limiting closed port RST response from 219 to 215 packets/sec Aug 7 14:05:17 zuul kernel: Limiting closed port RST response from 220 to 193 packets/sec Aug 7 14:05:18 zuul kernel: Limiting closed port

kernel: Limiting closed port RST response from x to y packets/sec Read More »

Replacing postfix with dma + auth

Leave a Comment / dma, Mail, Postfix / By /

It’s a muggy Friday morning, sitting outside the cafe – it’s tolerable in the shade with a slight breeze and cold iced-latte in a glass. Dogs walking past, lots of pats. It’s time to change most of my hosts from Postfix (my favorite MTA) to dma (in FreeBSD, no install required). I have previously moved most of my jail hosts from Postfix to dma. A few days ago, I changed one of my

Replacing postfix with dma + auth Read More »

Why are some emails from Charlie Root and others are from root?

Leave a Comment / dma, Mail, Postfix / By /

It’s another Saturday morning outside the coffee shop. My abundance of free time, without conferences to run, has resulted in mind shattering pondering. Case in point: In this post: FreeBSD 14.1-RELEASE Let’s use these two hosts: r730-01 – email is from root nagios03 – email is from Charlie Root What are the differences? First idea My first idea: /etc/password differences. Let’s check that idea: [11:19 r730-01 dvl ~] % grep root /etc/passwd root:*:0:0:Charlie

Why are some emails from Charlie Root and others are from root? Read More »

What’s this gap in the graphs?

Leave a Comment / Backups, Bacula, FreeBSD / By /

I was checking email this (Friday Jul 19, 2024) morning, over coffee, while many IT folks dealt with Cloudstrike fallout, when I noticed this message from the logs: Jul 19 09:12:18 zuul kernel: [zone: pf states] PF states limit reached I’ve seen that message before. It’s not of high concern. That server contains many services including PGCon, the former BSDCan website, and my blogs. I didn’t give it much concern, although I should

What’s this gap in the graphs? Read More »

Scroll to Top