00:16:41 <nacelle> its almost as if they forked off the same base code or something
00:16:44 <nacelle> perhaps even decades ago
00:58:22 <polyex> take it to #conspiracy
01:00:20 <Erhard> Yeah, the forks never happened, man!
01:01:07 <polyex> FlatearthBSD
01:01:44 <Erhard> lol
01:01:56 <Erhard> That was forked from DragonFly
01:53:48 <MelMalik> what th-
02:44:57 <CCFL_Man> btx loder lopcks up when i try to boot an old freebsd install on a new motherboard
02:45:27 <MelMalik> ?_?
03:08:09 <polyex> when local_unbound shits out, domains stop resolving, and i lose connection to irc and other shit, the only log item is "local-unbound[10502:0] info: generate keytag query _ta-4f66. NULL IN" that enough to figure out wtf is going wrong?
03:08:48 <polyex> it's like 2-3 times a day i gotta service local_unbound restart
03:16:30 <mason> polyex: You can use BIND instead, for anything/everything unbound does.
03:17:40 <polyex> i can also switch to linux.. (not that helpful)
03:19:10 <mason> That'd be a bit more work to swap out a resolver.
03:19:46 <mason> I stopped using unbound when I found a bug, looked at the code, and what I found turned into a CVE. Moved back to BIND for the purpose, been happy ever since.
03:23:19 <polyex> k now im listening. i had time issues with ntpd switched to chrony now i'm gucci. local_unbound is the last flakey thing i have in my whole fbsd stack so i'm open to dropping it. but bind is a big pig last i remember so is there a "chrony of dns"?
03:27:09 <mason> I've got BIND service up a couple zones, under 10MB resident. Secondary for the same, roughly the same memory used. CPU use negligible.
03:29:15 <polyex> length of config?
03:30:06 <mason> Not a ton added to the base config. More config than unbound? Sure.
03:32:31 <mason> Hm, memory usage seems to scale with zone size. Just looked at an internal server with a decent number of entries, and it was using a bunch more RAM.
03:34:35 <polyex> im trying to remember a 3rd dns server option that ppl told me about... it's what i could use to blacklist domains, like "*.google.com", so dns for anything in that domain never resolved. you know what that is? maybe it's time to try that 1
03:43:09 <mason> powerdns?
03:43:58 <mason> powerdns and bind are the big ones, and there's other stuff, like dnsmasq, unbound, other stuff.
03:44:57 <mason> polyex: https://en.wikipedia.org/wiki/Comparison_of_DNS_server_software
03:44:58 <VimDiesel> Title: Comparison of DNS server software - Wikipedia
03:46:57 <polyex> i think it was dnsmasq
03:48:31 <darwin> is there any command-line search like locate (i.e., with database) that can search certain paths (so like find but faster?)
03:48:45 <CCFL_Man> MelMalik: can i install a new version of btx bootloader on an old freebsd install, say version freebsd 9.0
03:50:11 <polyex> https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dnsmasq isnt too bad right?
03:50:12 <VimDiesel> Title: CVE - Search Results
03:57:19 <MelMalik> CCFL_Man, idk
04:00:05 <CCFL_Man> have you had that problem before?
04:07:39 <MelMalik> No
04:08:02 <jmnbtslsQE> polyex: bind can be used for your purpose. i think the standard approach is to use a 'response policy', indicating a zone that contains the domains you want to block. it will use more memory with large zones, but i think usually most of it will end up paged out if necessary- maybe only if usage is low enough
04:09:04 <polyex> i wanna block any domain from resolving, then just whitelist those that i do want resolved
04:09:37 <jmnbtslsQE> i'm not sure how to do such a default block, but if it can be specified in a zone file, it can be blocked with response policy
04:11:31 <jmnbtslsQE> to block, it's something like: zone "badlist" {type master; file "/usr/local/etc/namedb/BLOCKED"; allow-query {none;}; }; response-policy { zone "badlist"; };      -- this is mostly just something i found on the internet. your BLOCKED zone should associate each domain to be blocked with something like 127.0.0.1
04:12:00 <jmnbtslsQE> i think you can find some more info on the internet, and there is also a bind support channel
04:13:21 <jmnbtslsQE> then whitelist is just, you specify the zones manually and set forward only etc.
04:30:52 <polyex> my consolidated local-unbound config is https://termbin.com/0dx7j there anything that would cause unbound to stop resolving domains a couple times a day till i service local_unbound restart?
06:26:51 <Dimonax> Anyone keep getting the message "ld-elf.so.1: /lib/libc.so.7: version FBSD_1.7 required by /usr/local/bin/alacritty not found" or something similiar?
06:39:49 <llua> happens when you didn't update your system
07:06:54 <Dimonax> llua: I did pkg update and then pkg upgrade.
07:07:05 <Dimonax> What step am I missing?
07:07:21 <llua> updating the base system
07:08:47 <Dimonax> llua: Looking through the docs now.
07:09:51 <Dimonax> I should be able to just do "freebsd-update fetch" and then "freebsd-update install".
07:10:47 <Remilia> polyex: for home use dnsmasq is decent
07:11:18 <Remilia> I mean, openwrt is on millions of devices and it just works
07:12:10 <Remilia> does unbound fail for you with no external changes like interfaces coming down or up?
07:12:45 * Remilia uses unbound from ports though
07:14:54 <polyex> ya doesnt seem like anything else fails. gonna test tho next time dns is failing i'll try pinging an IP to see if i still have network
07:17:35 <polyex> local-unbound is like 6 months behind so maybe i'll switch to pkgs unbound
07:17:40 <polyex> any risks with that?
07:18:01 <Remilia> I am not sure what you mean when you say risks
07:18:19 <polyex> k, any downside to using local-unbound instead of from pkgs
07:18:21 <polyex> ?
07:18:27 <Remilia> I use unbound from ports because I run it as a resolver for my entire LAN which the local-unbound set-up is not designed for
07:18:49 <Remilia> local-unbound is a turn-key solution, essentially
07:19:07 <Remilia> it is supposed to just work out of the box
07:19:19 <polyex> does my local-unbound config https://termbin.com/0dx7j have any obvious probs?
07:19:29 <Remilia> there is not much there
07:19:32 <Remilia> so probably not
07:21:25 <Remilia> polyex: next time you have issues, try looking at tcpdump
07:21:35 <polyex> what for?
07:21:40 <polyex> havent used it a lot
07:21:42 <Remilia> just see what it is doing
07:22:13 <Remilia> just something like `tcpdump -vvvni <interface> port 53`
07:22:43 <Remilia> lo0 for seeing what is happening when stuff on your FreeBSD host queries DNS
07:22:52 <Remilia> and your external for when you want to see if it sends out anything
07:23:23 <Remilia> use host or drill to generate requests while tcpdump is running
07:23:45 <Remilia> i. e. `host ibm.com 127.0.0.1`
07:26:03 <polyex> ok tyvm
07:26:26 <Remilia> polyex: when everything is working you should see something like this: https://paste.ee/p/GkuZO
07:26:27 <VimDiesel> Title: Paste.ee - View paste GkuZO
07:27:15 <Remilia> 1st section is host asking local_unbound, 2nd is local_unbound asking full-blown unbound
07:28:39 <polyex> full-blown unbound is on another box right?
07:35:38 <Remilia> on my router
07:35:48 <Remilia> you can see IP addresses there
07:35:56 <Remilia> 10.10.0.1 is the router
07:36:46 <Remilia> in any case, if during those outages your unbound is sending queries on the external interface but does not get any replies, it is not its fault
07:37:39 <Remilia> you may want to add a host filter for the external interface though, so `port 53 and host <your external interface IP>`
07:41:49 <polyex> got it, ty!!
09:11:02 <meena> Where is scopeid documented? it's not documented in ifconfig
09:11:23 <meena> I sort of understand that the different numbers should mean link, host, etc… but I don't know which number means what
09:35:57 <meena> hrm… so far, it's different on different OSes…
09:45:30 <meena> It's either link-local, in which case it's the index of the interface (if_nametoindex(3)), or site-local, in which case it's… the scope-id…
12:46:17 <V_PauAmma_V> meena, grep -i scope /usr/include/netinet6/in6.h
13:04:28 <meena> V_PauAmma_V: I found out that when i fed the address to Python's IPv6Interface it told me me what scope the IP has
13:25:04 * V_PauAmma_V nods at meena. I wouldn't know what to do with Python.
15:20:10 <Remilia> Python is sadness
15:20:19 <Remilia> so you have not lost must
15:20:22 <Remilia> much*
15:45:00 <meena> it's not my choice which language the project is written in
15:48:15 <mage> what's wrong with Python?
16:01:12 <meena> mage: many things, https://cathode.church/@meena/109025856128979615
16:01:15 <VimDiesel> Title: Mina: "programming vs inuitivity" - Cathode Church
17:28:30 <Miles2Go> Hi, I just installed FreeBSD 13.1 and my wired network throughput is only about 5Mbps, whereas my windows machines on the same network get 100Mbps (were on a 100/100Mbps plan with Metronet). How can I fix the slow throughput? Is there a reliable guide someone can point me to that deals specifically with slow throughput?
17:59:23 <Erhard>  MillerBOSS: Depends on the driver, but try disabling the checksum offloading
18:00:12 <Erhard> Is it bare metal or a virtual machine?
18:33:08 <Allan> how is your network configured, it should not require any tuning. Unless you are using a bridge or something to VMs, then it gets more complex
22:28:31 <skered> python39 updated! It truely is an amazing day.
22:46:19 <yuripv> http://bash.org/?400459
22:46:20 <VimDiesel> Title: QDB: Quote #400459
22:46:22 * yuripv hides
22:55:30 <mason> haha
23:44:41 <eniac> https://twitter.com/signalapp/status/1573095143384952832
23:44:44 <VimDiesel> Title: Signal on Twitter: "A request to our community: Signal is blocked in Iran. You can help people in Iran reconnect to Signal by hosting a proxy server. If you’re willing and able, please follow the instructions here: https://t.co/hznCI9EwCa 1/2 #IRanASignalProxy" / Twitter