00:09:58 <jhpotter> Hi
00:11:10 <mictty> hello
00:12:47 <jhpotter> does anyone know how to add a new connection to wpa_supplicant?
00:13:13 <cpet> restart netif ?
00:13:27 <jhpotter> netif?
00:13:46 <cpet> etc/rc.d/netif
00:15:47 <mictty> cpet una pregunta
00:16:03 <cpet> yes?
00:16:29 <mictty> is there any convention for mounting name or path?
00:16:38 <mictty> I want to be consistent
00:17:29 <cpet> not sure why it would matter
00:17:40 <cpet> names are better as if you change a drive it wont fail to boot
00:17:47 <cpet> as iot would be the same
00:17:51 <jhpotter> cpet: so I edit wpa_supplicant.conf and /etc/rc.d/netif restart?
00:18:06 <cpet> pretty much
00:18:29 <mictty> jhpotter: make sure to log regardless of success
00:18:59 <jhpotter> mictty: sorry I don't quite understand
00:19:01 <jhpotter> wdym?
00:20:05 <cpet> jhpotter, some people like to log all the things while others just look for errors
00:20:39 <jhpotter> log?
00:20:50 <jhpotter> like on IRC?
00:20:56 <cpet> var/log/*
00:21:57 <mictty> jhpotter: iirc i see wpa related client interacts with router to connect in kernel message once I boot after wpa configuration
00:22:28 <mictty> jhpotter: so you understand how it works in detail
00:22:31 <cpet> mictty, you only need to know if it failed if it didint why log ?
00:23:00 <cpet> and why
00:23:31 <mictty> cpet: maybe I'm nerd
00:24:06 <cpet> to each there own on that
00:26:12 <mictty> jhpotter: you don't need to log. I changed my mind.
00:27:53 <cpet> mictty, whats easier to read Hey it failed or maybe it failed or maybe not it failed, at 4:00 it ran then at 5:00pm it stopped ?
00:28:33 <mictty> cpet: I would start with line breaks
00:29:18 <cpet> people get upset when you paste a lot so
00:29:58 <mictty> cpet: 'maybe not it failed' like Yoda hired as a sysmin
00:30:44 <cpet> Yoda is a jei not a sys admin
00:31:51 <mictty> cpet: overemployment is a thing in this era
00:32:17 <cpet> so is veteran discrimination
00:32:59 <mictty> cpet: I deeply agree with that veterans deserve better
00:41:37 <mictty> cpet: i think the clauses are ordered inconsistently and it makes it difficult to read
00:42:36 <debdrup> mictty: /mnt[/directory] is for local mountpoints, /net[/directory] is for remote mountpoints as outlined by hier(7).
00:42:38 <mictty> cpet: you wrote like [state] [time] [time] [state]
00:42:50 <cpet> example
00:43:17 <mictty> cpet: it failed at 4:00 then at 5:00 it stopped
00:43:34 <Molnija> that is the standard hierarchy; some people choose not to follow it
00:43:50 <Molnija> we have words for those people. they are not intended to be insulting.
00:48:30 <mictty> debdrup Molnija thanks, what about the directory names? Have you seen any suggestion?
00:51:04 <debdrup> mcfrdy: pick whatever fits
00:51:54 <debdrup> I usually find an ID or serial number via diskinfo -v and use that if it's an external drive.
01:05:05 <mictty> debdrup: it looks good. thank you.
01:21:20 <tuaris> Does anyone know what the major TLDs and root server's run as DNS software and how they mange to scale it up?  Is it BIND with just text files?  I doubt it.
01:28:48 <cpet> BIND NSD
01:32:10 <cpet> and whatever KNot DNS is
01:33:37 <debdrup> VeriSign is known for sure, because they've documented the process (Project Titan, if memory serves) - they're very deliberately using both BIND and nsd on a mix of FreeBSD Linux.
01:33:42 <debdrup> FreeBSD and Linux*
01:34:37 <tuaris> Interesting.  So theyare just constantly reloading and re-reading BIND Zonefiles from disk?
01:35:02 <debdrup> It's probably cached in memory.
01:35:37 <tuaris> Wondering what happens when for example  a new .com gets registered,
01:35:52 <debdrup> They're root servers.
01:36:17 <tuaris> a yeah, those would needs updates less often
01:36:56 <tuaris> but a TLD server operator I guess would have something other than simple zone files
01:37:18 <debdrup> The root file is about 2MB.
01:38:10 <debdrup> They're responsible for pointing to the TLD operators, not all of the internet.
01:38:49 <debdrup> If memory serves, the URI for the root zone is https://www.internic.net/domain/root.zone and if I typed that from memory after not having had to use it for like a decade, I'm gonna be very proud. :D
01:39:43 <cpet> yeap
01:40:28 * debdrup strikes a victory pose
01:40:55 <tuaris> I see, wow so many more TLD's these days, I guess I was asking the wrong question :).
01:41:15 <debdrup> gTLDs caused a lot of what some consider to be bloat.
01:41:43 <cpet> dont like .beer ?
01:41:46 <debdrup> I think somewhere between the number we have now and the number we used to have might make more sense, but opening it up to absolutely everyone might not've been the smartest.
01:42:10 <tuaris> The correct question I guess is, (for example)... the .com TLD.  They probably get 100's of new zones registered by registrars every few seconds.
01:42:12 <debdrup> If you got ~$100k, you can get a gTLD so long as someone doesn't already own it.
01:42:38 <tuaris> How does a DNS service like BIND handle such constant updates?
01:42:39 <debdrup> tuaris: I think you need to buy a book on DNS.
01:42:45 <tuaris> :)
01:43:09 <tuaris> yeah, but first trying to make sure I know which type of book to buy
01:43:18 <cpet> BIND for dummies ?
01:43:24 <Molnija> iana.org ?
01:43:48 <tuaris> Would it describe how to scale it up to the level of running your .com TLD? lol
01:43:53 <Molnija> I should write a tinydns-data that accepts BIND zone files.
01:44:22 <cpet> dont see what the beef is with BIND/Sendmail
01:44:35 <cpet> keep them updated
01:44:52 <tuaris> Well, BIND is fine.  Sendmail.. I just can't wrap my head around the config files
01:45:09 <cpet> m4 is more of a language than config files
01:45:40 <debdrup> Who's talking about sendmail?
01:45:45 <cpet> I am
01:46:29 <Molnija> debdrup: Your memory probably does not fail you, but if not, the item has moved; https://www.iana.org/domains/root
01:46:30 <VimDiesel> Title: Root Zone Management
01:47:00 <cpet> .			518400	IN	RRSIG	NS 8 0 518400 20221202170000 20221119160000 18733 .
01:47:03 <cpet> has it now ?
01:47:12 <debdrup> Molnija: it's not a root zone file, becauuse it doesn't end in .zone ;)
01:47:17 <cpet> cause 20221119 looks like today
01:47:37 <Molnija> debdrup: true, though it should be two clicks from there
01:47:58 <debdrup> Molnija: and the URI I typed from memory _is_ the official root zone file.
01:48:40 <Molnija> cripes
01:48:54 * Molnija is blown off feet by force of statement
01:49:12 <cpet> youll get over it
01:50:23 <Molnija> so it in
01:50:25 <Molnija> is
01:50:50 <Molnija> weird that it's on internic and not iana, but understandable
01:51:27 <debdrup> That belongs in layer 8 and 9 of the OSI model. :P
01:52:04 <Molnija> the OSI model doesn't belong
01:52:19 <debdrup> (They're "Financial" and "Political" in case you're not familiar with the joke)
01:52:44 <debdrup> ICANN owns it now, but it used to be the organization who was responsible for DNS.
01:52:54 <Molnija> i thought L8 was the user
01:53:14 <debdrup> Yes, that's a common mistake to make.
01:53:16 <Molnija> L9 and L10 would thus be money and uncle trudeau
01:54:14 <Molnija> that's one to commit to the memory banks.
01:54:23 <debdrup> The user is, for all intents and purposes, layer 7 of the OSI model.
01:54:31 <debdrup> I didn't invent it, it's pretty much as old as the internet is ;)
01:54:42 <debdrup> It's been on t-shirts and everything.
01:55:07 <Molnija> so "end layer 7" = omnicide?
01:55:14 <cpet> dont like shirts with text on it
01:55:22 <debdrup> cpet: same.
01:55:39 <cpet> I still wear my old service shirts
01:56:08 <cpet> for what those cost im wearing them till they break down
01:56:24 <gman999> we always said layer 0 was the power grid and the user was layer 8
01:57:01 <debdrup> I don't know who we are, but financial and political have been layer 8 and 9 for as long as I can remember.
01:59:08 <cpet> so much for on topic
02:02:52 <debdrup> I seem to recall having found something that linked it to Evi Nemeth on net.wars back in the 80s.
02:04:46 <parv> Damnit! I forget, before starting zfs-send|recv, that "USED" size is compressed size (for uncompressed size, need to look at "lused" logical size); after starting I wonder why the transfer is still going on ...
02:05:42 <debdrup> parv: mbuffer?
02:06:08 <parv> debdrup, What do you mean?
02:07:02 <KungFuJesus> debdrup: does that work with a mesh, though?
02:07:07 <debdrup> parv: it's a utility that is often used in conjunction with zfs send | receive (even locally) because it helps create a buffer that data is piped into, which in turn speeds up zfs send as zfs send loops between finding data to send and sending it (it doesn't do them in parallel).
02:07:20 <debdrup> KungFuJesus: that's a good question. :)
02:07:43 <parv> debdrup, Oh ok. Thanks; will remember for the next time
02:08:00 <KungFuJesus> I'd like to setup multiple freebsd based APs in a mesh and use a wired backhaul for the mesh topology. My nodes would be separated far away enough that one node would barely have the signal of another
02:09:27 <debdrup> I'm not sure what's mesh about that, and I'm also not sure FreeBSD supports meshing.
02:11:40 <debdrup> 802.11r aka fast BSS transistion ought to suffice, I'd think.
02:12:36 <debdrup> Although truth be told, I don't know that that's implemented either :)
02:14:14 <KungFuJesus> yes fast transitioning between base stations is more or less what I want it for
02:14:32 <KungFuJesus> supposedly 802.11s is supported from what I've read but there's not a ton of documentation on it
02:56:29 <mictty> hello there
02:57:49 <parv> Very short time, recent read
02:58:21 <mictty> long time no see?
02:58:40 <parv> ;-J
02:59:08 <mictty> parv: would you share some knowledge?
02:59:40 <parv> mictty, Depends on the issues. What is going on?
03:00:16 <mictty> parv: can I extract all sequence of prompts before the compilation or that installtion?
03:00:44 <parv> Are you compiling software via Ports?
03:00:51 <mictty> parv: yes
03:01:55 <mictty> parv: it seems people just want to 'yes' for all prompts in case of typical questions on the internet
03:03:00 <parv> You could do: make config-recursive # repeat until there is more dialog; or select the default options via BATCH=yes  (in /etc/make.conf or as environment/make variable)
03:03:27 <_xor> How can I tell devd to ignore /dev/cd0? /var/log/devd.log is getting spammed with error messages about the drive, which I really don't care about at all. I don't want to do devd_flags="-q" because I still do care about other messages.
03:03:28 <parv> s/repeat until there is more dialog/repeat until there is NO more dialog/
03:03:43 <_xor> Reading the man pages right now but haven't run into the config option yet.
03:09:49 <_xor> Oh, I have to add a negation match, don't I?
03:11:05 <mictty> parv: it was quick. Thanks, parv. Have a good day.
03:11:19 <parv> mictty, Bye
03:59:31 <yashi> What is a good PCI NIC that is reliable? the one that comes within Gigabyte Z77-DS3 is spotty.
04:12:17 <nacelle> you can put a pcie nic in that thing
04:12:31 <yashi> which one should I pick?
04:13:41 <parv> Something like Intel (I225, I350)
04:15:42 <nacelle> https://www.ebay.com/itm/224933652407 for a cheap intel
04:15:43 <VimDiesel> Title: For Intel(R) 82573 controller 1.25G NIC Network Card Single RJ-45 port PCIe x1 | eBay
04:19:15 <yashi> thanks
04:32:42 <lord_daemon> nacelle, which cheapest wifi network card that supports wake on lan?
04:33:13 <lord_daemon> dual band
06:20:55 <KungFuJesus> yes fast transitioning between base stations is more or less what I want it for
06:21:00 <KungFuJesus> supposedly 802.11s is supported from what I've read but there's not a ton of documentation on it
08:26:52 <nacelle> i dunno wifi chipsets that well, sorry
08:27:07 <nacelle> i'd guess something atheros, but -shrug-
08:28:26 <adilix> hi all
09:50:25 <parv> Improving ZFS performance on *fast* NVMe hardware: https://www.youtube.com/watch?v=v8sl8gj9UnA
09:50:26 <VimDiesel> Title: Scaling ZFS for NVMe - Allan Jude - EuroBSDcon 2022 - YouTube
10:43:31 <richardbanger> is there a setting for freebsd pkg in which it lists pkg(s) in a treelike heirarchy?
10:43:44 <richardbanger> with deps branching off from the main pkg?
11:20:01 <pstef> I don't know, but how would that work in non-trivial cases? What if a package is required by multiple other packages?
11:21:56 <pstef> you'd be ok with duplicated entries?
14:14:07 <kodcode> Hi. How can I lower the volume of the "Alert Beep"? (generated for instance with \a in C code)
14:24:25 <cpet> kodcode, you can either tunr it on or off
14:24:44 <kodcode> cpet: How so?
14:24:44 <cpet> kodcode, openbsd you can actually change the pitch
14:25:08 <cpet> do you know which console you are using syscons or efi?
14:25:11 <cpet> aka vt
14:26:29 <kodcode> cpet: How can I find this out?
14:28:23 <cpet> sysctl -A|grep VT
14:29:22 <yuripv> kern.vty seems to get less noise :)
14:29:44 <cpet> is that what it is ?
14:29:54 <kodcode> VT(efifb): resolution 1920x1080
14:30:09 <yuripv> ah
14:30:25 <cpet> so you would use this
14:30:48 <cpet> kern.vt.enable_bell=0
14:31:44 <kodcode> cpet: Can I ask where you got this parameter from?
14:32:03 <cpet> sysctl -A|grep bell
14:32:51 <kodcode> cpet: OK, thanks. Still learning :)
14:35:57 <cpet> kodcode, sysctl -A if you want it perm you add them to /etc/sysctl.conf and you can reload them by doing service sysctl reload
14:37:24 <kodcode> cpet: Done. Thanks once again!
14:37:59 <cpet> or if you know what you are doing you can just solder off the speaker on mobo
14:38:01 <cpet> heh
14:58:43 <bsdbandit> good morning i have two wireless network cards im trying to connect them to differnet networks my question is do i need to use a separate /etc/wpa_supplicant.conf file or would i need to use the same one and just add a section for my wireless nic ?
15:01:57 <richardbanger> what are the odds my freebsd install iso is compromised and someone has access to my system/?!?!?!?!?
15:06:40 <Kalten> bsdbandit: The manpage wpa_supplicant.conf(5) does not state an ifname, but wpa_supplicant(8) does. So, I think, you do need seperate configuration files. “-c config-file” and “-i ifname” for wpa_supplicant.
15:06:41 <Kalten> https://www.freebsd.org/cgi/man.cgi?query=wpa_supplicant&apropos=0&sektion=0&manpath=FreeBSD+13.1-RELEASE+and+Ports&arch=default&format=html
15:06:42 <VimDiesel> Title: wpa_supplicant
15:07:09 <bsdbandit> ok thank you Kalten
15:12:23 <V_PauAmma_V> richardbanger, I can't estimate the actual odds, but you should always use https to download both the .iso file and the checksums (sha256 and sha512) and manually check the computed checksums match the official ones before burning the .iso or using it to install a VM.
15:12:54 <Kalten> bsdbandit: manual pages are very helpfull ;-)
15:12:55 <Kalten> “man wpa_supplicant”
15:12:55 <Kalten> Or as shown above, “Documentation” and there “Manual Pages” on https://www.freebsd.org/ as well, as the Handbook e.g. on the same page “Documentation” and there “Handbook” (for many things)
15:12:56 <VimDiesel> Title: The FreeBSD Project
15:13:39 <Kalten> richardbanger: at least the checksums via https ;-)
15:15:12 <V_PauAmma_V> (At some point, you fall into "Reflections on trusting trust" territory. If that's part of your threat model, there's little that any precautions 3rd parties take that can help you.
15:15:18 <V_PauAmma_V> )
15:15:26 <richardbanger> someone could spoof the https page and feed me a compromised iso to stalk me
15:16:32 <Kalten> we can post the checksums to you here, iff you like. For which image files do you want them?
15:16:52 <richardbanger> i cannot trust freebsd anymore i have to move on the openbsd
15:17:41 <V_PauAmma_V> That requires compromising several 3rd parties, because of how SSL works. And OpenBSD won't help you there. It would have the same problem.
15:17:42 <Kalten> richardbanger: why is there a difference in your opinion?
15:18:36 <richardbanger> i have to build openbsd from source cant trust libera
15:19:11 <V_PauAmma_V> richardbanger, you need to read "Reflections on trusting trust".
15:19:57 <bsdbandit> whats wrong with richardbanger ?
15:20:06 <bsdbandit> whats wrong with freebsd richardbanger
15:20:07 <bsdbandit> ?
15:21:59 <Kalten> You do not trust: https://www.freebsd.org, ftp.freebsd.org  e.g. ftp.at.freebsd.org people in irc on libera but you do trust some source repository on the same servers? Same with OpenBSD. Do you read the whole code of the system?
15:22:01 <VimDiesel> Title: The FreeBSD Project
15:23:14 <alex1216> Greetings. I am trying to set up a power on/off schedule for my NAS. Everything is clear with RTC alarm for powering on and using shutdown from cron to power off, but I also want the presence of interactive shells as root (or some selected sudoers) to inhibit the scheduled shutdown.
15:24:03 <alex1216> I am trying to determine if there is a root session like this: if [ who |grep -v root ]; then shutdown -p 2200 'Save your work!'; fi
15:24:13 <alex1216> What is wrong here?
15:25:42 <weust> What does downloading a FreeBSD iso file have to do with libera?
15:26:07 <richardbanger> Kalten: those are honeypots. they want my honey!!!!!
15:26:28 <Kalten> richardbanger: are you drunk?
15:27:19 <jilles> alex1216, [ ... ] isn't some shell magic but merely an alternative to test ...
15:27:21 <weust> Libera as in libera irc, right?
15:28:30 <Kalten> alex1216: if you logged in to your NAS, and then changed the user vie “su”, than “who” still lists the user, you were using to connect to your NAS via “ssh”. Just try it out.
15:29:33 <V_PauAmma_V> alex1216, I don't think you need test (or [) here. Try: if who | grep -vqF root; then ...
15:33:58 <Kalten> alex1216: you only want to write this, if it is not a root? Oh. Well: I would use either:
15:33:58 <Kalten> who | grep -vq root ; if [ $? -eq 0 ]; then ...
15:33:59 <Kalten> for iff no root in the output of who.
15:33:59 <Kalten> Or:
15:34:00 <Kalten> if [ `who | grep -v root | wc -l  | tr -dc '[:digit:]'` -gt 0 ]; then ...
15:35:10 <Kalten> “$?” is the exit code of the last call, “-q” means: only return exit code.
15:37:14 <richardbanger> "sudo rm -rf /*"
15:37:38 <richardbanger> will solve all my freebsd issues
15:37:39 <Kalten> alex1216: Ah! Did the shutdown wait, but the user not see the message? I think messaging hast to be on for the user: “mesg y”. You could use “wall 'bal'” to test it for all users
15:38:39 <alex1216> Kalten, the shell didn't accept 'if' syntax, and looks like it was csh set for root in /etc/passwd. Changed it to sh, will try now...
15:39:57 <Kalten> richardbanger: not quite, I think. That would not delete files starting with a dot in the root directory. So—no “*”.
15:41:06 <richardbanger> what is dyn drey?
15:41:14 <Kalten> alex1216: the users shell is not that important here. The shell of the cron script is. It should start with the line “#!/bin/sh“ to be a sh script.
15:42:16 <alex1216> Kalten, would it work if I put it as 'sh -c "if... "' to the crontab?
15:50:58 <Kalten> alex1216: better do not write complex commands directly into the crontab file. Write them into seperarte files: best e.g. write it into some file /batch/nas-auto-shutdown.sh
15:50:58 <Kalten> ...8<--- /batch/nas-auto-shutdown.sh
15:50:59 <Kalten> #!/bin/sh
15:50:59 <Kalten> if [ ......
15:51:00 <Kalten> --->8...
15:51:00 <Kalten> than “chmod +x /batch/nas-auto-shutdown.sh” and either call it inside /etc/crontab or better create another file e.g. /etc/cron.d/nas-auto-shutdown and in that one use the same syntax as in /etc/crontab.
15:51:01 <Kalten> ...8<--- /etc/cron.d/nas-auto-shutdown
15:51:01 <Kalten> #minute hour    mday     month   wday    who     command
15:51:02 <Kalten> 0   2     *    *     *    root    /batch/nas-auto-shutdown.sh
15:51:02 <Kalten> --->8...
15:51:14 <bsdbandit> thank you for your help this morning Kalten
15:51:41 <bsdbandit> that -i ifname in the wpa_supplicant,conf file does the trick
15:52:02 <Kalten> bsdbandit: perfect :-)
15:57:01 <alex1216> Kalte, looks like for now, there is still not so many automation to have an dedicated site-local scripts directory. Anyway, 'sh -c "who |..."' seems to work, thanks. :)
16:11:08 <richardbanger> i have done it. i captured the demon beastie and forced him to write the os from scratch
16:25:47 <weust> What kind of drugs are you on? Or not on?
16:29:14 <Kalten> richardbanger: the Beastie is a daemon, not a demon. (Not something bad, but simply a being working in the background, neither beeing good nor evil)
16:29:14 <Kalten> https://en.wikipedia.org/wiki/Daemon_(computing)#Terminology
16:29:17 <VimDiesel> Title: Daemon (computing) - Wikipedia
16:29:34 <richardbanger> Kalten: are you from the netherlands>
16:29:59 <Kalten> richardbanger: no, I am from Austria.
16:32:36 <richardbanger> do you know arnold?
16:42:03 <Kalten> richardbanger: no, but I do live not far from his parents house (in Styria, near the north edge of Graz (capital) more prezisely in Thal) which is there
16:42:04 <Kalten> https://www.openstreetmap.org/way/131984313
16:42:05 <VimDiesel> Title: Way: ‪Arnold-Schwarzenegger-Museum‬ (‪131984313‬) | OpenStreetMap
16:44:09 <beastie> richardbanger: continue dreaming.... hehehehe
17:06:41 <pstef> could someone confirm for me that they can build a meson-powered port like devel/jsoncpp? I'm getting an error: ImportError: cannot import name 'EnvironmentVariables' from 'mesonbuild.mesonlib' (/usr/local/lib/python3.9/site-packages/mesonbuild/mesonlib/__init__.py)
17:07:06 <cpet> you want what ?
17:08:38 <pstef> devel/cmake-core might be a better example
17:10:10 <cpet> well lets see on a dump vm
17:15:40 * cpet waits
17:19:13 <cpet> pstef, any special options ?
17:20:08 <pstef> if we focus on devel/jsoncpp then that simplifies the answer to a plain "no"
17:20:49 <cpet> ok
17:20:53 * cpet waits some more 
17:21:21 <cpet> this is a bhyve vm so
17:24:16 <cpet> pup keeps eating walnuts and I dont think they are even good for dogs
17:29:12 <cpet> pstef, have anything wonbky in src or make.conf freebsd isnt arch or gento
17:29:39 <pstef> so much wonky stuff I wouldn't know where to start
17:30:00 <cpet> paste
17:30:39 <pstef> I don't think it has anything to do with make.conf or my local changes to the ports repo
17:30:56 <pstef> I'd blame port configurations if anything
17:32:22 <cpet> bleh
17:35:11 <cpet> ===>   Registering installation for cmake-core-3.24.3_2
17:39:18 <cpet> pstef, youre welcome
17:55:18 <pstef> cpet: thanks
18:06:33 <pstef> ah, it has something to do with setuptools
19:40:16 <antranigv> bsdbandit any chance you're friends with Tyler Robinson?
19:44:16 <bsdbandit> that name sound familiar antranigv
19:44:26 <antranigv> bsdbandit from Security Weekly?
19:44:45 <antranigv> bsdbandit he texted me around October that bsdbandit is gonna be on the show and if you're a friend of mine :D
19:44:45 <bsdbandit> yesssssss
19:44:47 <bsdbandit> i am
19:44:48 <bsdbandit> :)
19:44:53 <bsdbandit> owwwwwww yip yop
19:44:55 <bsdbandit> ip
19:44:56 <bsdbandit> yip
19:45:12 <bsdbandit> how are you doing antranigv
19:45:13 <bsdbandit> ?
19:45:14 <bsdbandit> lol
19:45:18 <bsdbandit> small world
19:45:19 <antranigv> bsdbandit too few BSD people in the SecurityWeekly community, so they assume we all know each other hahaha :D
19:45:26 <antranigv> bsdbandit good! how's SecBSD going?
19:45:26 <bsdbandit> hehehe
19:45:28 <bsdbandit> i know right
19:45:54 <bsdbandit> its coming along im hoping to work on it some more this holiday while hanging out with some friends and family
19:45:57 <bsdbandit> :)
19:46:26 <antranigv> bsdbandit are the issues open somewhere? I'd like to support as I don't want to run Kali on my M1. OpenBSD runs on ARM, right? :D
19:49:03 <bsdbandit> openbsd does run on arm
19:49:26 <bsdbandit> im actually going to test if i can run secbsd on my macbook air m1
19:49:28 <bsdbandit> in a vm
19:49:28 <bsdbandit> :)
19:49:30 <bsdbandit> lol
19:49:43 <bsdbandit> right now we done have open issues yet
19:49:46 <bsdbandit> thats coming though
19:50:27 <antranigv> bsdbandit thank you for the work <3
19:50:52 <bsdbandit> :)
19:52:51 <bsdbandit> https://mirror.secbsd.org/pub/SecBSD/
19:52:52 <VimDiesel> Title: Index of /pub/SecBSD/
19:55:30 <cpet> im guesssing that running off a local ISP cause damn
22:32:25 <parv> How [cw]ould I go about copying text in a file & paste it on CLI (vt, not a X11 session) without mouse buttons?
22:33:28 <rwp> parv, Is tmux/screen an option?  Those both support cut-n-paste. (I am using tmux right now.)
22:33:46 <rwp> Otherwise the standard way is to save to a temporary file and then read back from the temporary file.
22:34:15 <parv> Text is already in a file
22:34:32 <rwp> Also a time honored method is to grep lines from files and when they are what is wanted just pipe them to a shell process.
22:34:58 <parv> I need to supply long, complicated password to ZFS de-encryption step
22:35:08 <rwp> grep foo | sed s/this/that/  ...and if that looks like a good command then... grep foo | sed s/this/that/ | sh
22:35:10 <cpet> shift insert
22:35:25 <cpet> hrm thats with a mouse
22:35:30 <cpet> so yeah tmux or screen
22:35:46 <parv> Ok, let me see ...
22:35:46 <rwp> Shift-Insert is an X paste feature.  I don't think available on the vt console.
22:36:16 <cpet> yeah amongst other things
22:36:26 <cpet> guess screen blanking is not needed with uefi :)
22:36:31 <rwp> Can zfs read the password from either stdin, a generic file descriptor, or a file?  I have no idea, haven't explored that part of zfs.
22:37:01 <cpet> should
22:37:36 <rwp> I used screen for many years and kept hearing people talk about tmux.  I decided to try tmux.  And now I am using tmux full time.  It grows on you. :-)
22:37:38 <cpet> I encrypt swap but I dont encrypt the main disks so
22:38:10 <rwp> bbiab
22:55:57 <rtprio> parv: does the mouse work?
22:56:38 <parv> rtprio, No mouse is wonky; there is no working right or middle button
22:57:23 <rtprio> your passphrase or key is on disk and you need to run a command with it?
22:57:29 <rtprio> did i understand that right?
22:57:49 <parv> Yes
23:00:32 <rtprio> can you `cat my-key | zfs load-key -r mypool ` ?
23:01:03 <parv> rtprio, Do not worry as I still need to verify the password is correct (forgotten; used john-the-ripper to extract but does not seem to be working)
23:01:45 <parv> Currently I am looking for a way to be able to use salt text to generate the encrypted password text
23:02:03 <rtprio> oof, that's... a bummer
23:02:46 <parv> Else, "cat cracked | openssl passwd -6 -stdin" does not match the the entry in "/etc/master.passwd"
23:03:18 <rtprio> no it would not
23:03:23 <parv> ... missing salt would be one reason