mosquitto: upgrade from 1.x to 2.x requires configuration changes to keep working

I updated net/mosquitto from 1.6.7_1 to 2.0.8 on March 14, 2021. It did not get restarted at that time. It wasn’t until sysutils/anvil brought in a new certificate and attempted to restart mosquitto did the monitoring start detecting the problem: mosquitto wasn’t running. It’s the pid file Looking into it, nothing was logged when starting …

mosquitto: upgrade from 1.x to 2.x requires configuration changes to keep working Read More »

Eaton ePDU Auth Algorithm & Crypto Algorithm for SNMPv3 Configuration

I recently acquired an Eaton EMA114-10 PDU. When adding it to LibreNMS, I did not know what Authorization Algorithm or Crypto Algorithm to use when configuring it for SNMPv3. Searching did not find anything. IRC did. dagb on the LibreNMS IRC channel knew what was used for older EATON devices. Turns out, that hasn’t changed. …

Eaton ePDU Auth Algorithm & Crypto Algorithm for SNMPv3 Configuration Read More »

Labelling tapes in bulk – Bacula

This is not a significant post. It is for the record. I received 20 new LTO4 tapes recently. I attached the external labels to them after using https://kelvin.nu/barcode *label barcodes pool=Scratch storage=bacula-sd-02 drive=0 slot=1-7,11-15,17-23,39,47 Connecting to Storage daemon bacula-sd-02 at bacula-sd-02.int.unixathome.org:9103 … 3306 Issuing autochanger “slots” command. Device “bacula-sd-02” has 47 slots. Connecting to Storage …

Labelling tapes in bulk – Bacula Read More »

Converting an iocage jail to a vanilla jail

Tonight I got blocked by iocage and handling a ZFS filesystem from within an iocage jail. These are the steps I followed to convert that jail from iocage to a vanilla jail. The variable To make this solution easier to use, at least for me, on future jail migrations, I have these variables: For example, …

Converting an iocage jail to a vanilla jail Read More »

Preventing a given package from being installed

I have a few development jails dedicated to my work on FreshPorts. It’s been a hobby of mine since the late 1990s. The code I create gets packaged, ready to deploy onto the test, stage, and production hosts. What I absolutely do not want to happen, and it’s happened recently, is for those packages to …

Preventing a given package from being installed Read More »

Today I faced the first consequences of my TXT & Let’s Encrypt strict policy

Today I faced the first implications of deciding to tightly restrict the use of nsupdate keys for modifying TXT records for dns-01 challenges with Let’s Encrypt. Context This section should be on news.freshports.org and you can skip it to get to the real stuff. Today I’m working on a mostly automated FreshPorts node deployment. A …

Today I faced the first consequences of my TXT & Let’s Encrypt strict policy Read More »

Creating a very specific TXT only nsupdate connection for Let’s Encrypt

In the interests of maintaining Michael W Lucas in the lifestyle to which he has become accustomed, I am creating this blog post. Although Mr Lucas was the first to post, he is not solely to blame for my burdensome workload. Jan-Piet Mens and Evan Hunt also have much to answer for. Their misdeeds include …

Creating a very specific TXT only nsupdate connection for Let’s Encrypt Read More »