02:28:20 So. . . I have apache24 running on 12.4-RELEASE-p4 and it works, but. . . 02:33:31 After the host boots, apache logs just find, but after log rotation, the access logs stop getting logged to. 02:34:02 Restarting apache doesn't help. 02:34:44 Restarting newsyslog doesn't help. 02:39:00 how are you rotating the logs? 02:39:18 newsyslog 02:39:32 /var/log/trioptimum.com-access_log 640 10 200 @0101T JC 02:41:03 that's not going to work well 02:41:41 I'm open to recommendations. 02:43:08 so the best solution is probably to log to a program that does the rotation 02:43:35 Well. . . that's always worked for me before. 02:43:43 otherwise, you have to arrange to do an apachectl graceful after the log rotation and _not_ use any compression options 02:44:30 Is that what the 'C' option is? 02:44:35 J 02:44:44 C is to create the file (which should be ok) 02:45:28 if you want to compress the files, you need to wait a significant time (10+ minutes, depending on how long you allow persistent connections to last) before doing it 02:45:47 (because existing sessions will still be writing to the old log file) 02:47:06 I'll try with compression disabled. 02:48:40 Does apache support loggin to syslogd's localX? 02:50:17 not afaik. 02:50:21 RhodiumToad: You should be able to have apache close/open the file. 02:50:35 but it can log to a program, and that program could be 'logger' 02:50:45 move file, signal apache, it closes/opens, then you compress 02:50:54 skered: pretty sure only apachectl graceful does it 02:51:19 https://httpd.apache.org/docs/2.4/logs.html <-- see "Log rotation" 02:51:20 Title: Log Files - Apache HTTP Server Version 2.4 02:54:30 Thanks. .. I thnk for now disabling compression fixes the primary issue. . . I'll read & think about a better solution. 02:55:04 RhodiumToad: That's USR1. 02:55:25 So you give newsyslog the location of the PID file and the signal to send to it. 02:56:10 What would that newsyslog config look like? 02:57:01 Look at /etc/newsyslog.conf comments 02:57:26 skered: you still have to disable compression at least for the first file 02:57:44 I think it's what you have plus "... /path/to/pid signal" 02:58:25 sig1? 02:59:07 try /var/log/trioptimum.com-access_log 640 10 200 @0101T CBJp /path/to/pid SIGUSR1 02:59:28 the 'p' flag tells it not to compress the .0 file 02:59:30 USR1. But maybe RhodiumToad is right... How does newsyslog know it's ready to compress 03:00:07 by the time the .0 file gets rotated to .1, it should be safe :-) 03:00:44 Maybe some of that syntax in the "when" column. 03:02:11 wait, 200kbytes? that seems small 03:03:07 Yeah, if it's his a service you care about them someone can DOS the log files. 03:03:30 That does seem small. 03:11:55 obviously it's 200kbytes or 1 hour, assuming you're running newsyslog once per hour as usual 03:12:21 or apparently 1 month from your "when" syntax 04:02:07 owwww yip yip feeling super hyped 04:02:37 i finally got suspend and resume to work on freebsd running on thinkpad x1 extereme gen 3 04:05:40 bsdbandit01_: awesome 04:06:01 that's good to hear, I have an Intel T16 Gen 1 05:03:36 signalblue, you mean Lenovo? 05:04:50 sometimes freebsd slows down with many browser tab and qbittorent running and top shows very low laod avg liek 1 or under 05:04:53 is top not working 05:06:19 qbittorrent sometime fills swap 16g on my z250 8x3ghz cpu i7 8g ram 05:06:29 so i turned off os cache in qbittorrent 05:06:34 seems be working better 05:06:39 mostly things run great 05:06:47 firefox will not save web pages correctly soemtimes 05:06:50 chroem does 05:09:22 load average is about cpu, if you're swapping heavily then the load average will be low 05:09:35 (since everything is waiting for swap) 05:10:10 top has a line about swap usage which includes "In" and "Out" stats, if those show up you know you are actively swapping 05:30:07 ok 05:30:22 can I switch audio in chrome to earphone without restart of chrome? 05:30:33 hw.snd.default_unit: 0 -> 1 05:30:46 I have a little script that changes this setting 05:30:56 but lose all my tabs if I restart chrome 05:31:01 gaa!! 05:31:33 RhodiumToad: are you a big postgresql user? 05:31:42 you handle looks familiar 05:33:10 user, contributor, (occasional) committer 05:33:57 * RhodiumToad knows little of chrome, sorry 05:53:33 RhodiumToad: ...where's the line between contributor and committer? 05:53:42 * LambdaComplex knows little of the postgresql dev process, sorry 05:55:22 pg has a relatively small set of committers 05:56:35 so is it more like "you submit a patch to a mailing list and someone else commits?" 05:57:37 yes, except that there's a review process and a tracking system 07:59:16 I think the review process and specifically the requirement to have someone else commit your changes is something FreeBSD should borrow from Postgres 08:01:21 I think that hurdles like that do more harm than good 08:01:42 swings and roundabouts 08:02:27 as a non-committer to freebsd I find things extremely frustrating; contributions go ignored both before and after review 08:03:00 They discourage code cleaning and refactoring and the end result is code rot and basically an unmaintable mess for a code base 08:03:21 but note, it's normal for postgres committers to commit their own work 08:03:35 which "they"? 08:04:02 intrusive process hurdles 08:05:17 I don't get it why FreeBSD and/or PostgreSQL doesn't have a self-hosted gitlab-like instance, it's so much easier to manage contributions, ci/cd, etc :) 08:05:52 some pg devs aren't big fans of web interfaces and want to do everything by email 08:05:59 mind you I've also worked on (and continue to work on) code that looks like a midden that had almost no barriers on committing changes 08:07:06 RhodiumToad: right, but for the FreeBSD folks I think it would be nice (it could replace Phabricator, Jenkins, maybe Bugzilla, etc ) 08:09:26 that reminds me of bde replying to bugzilla comments by email (to the mailing list) 08:10:37 linux glibc gcc etc all seem to like reviewing patches by email 08:11:18 paulf: yeah, I guess through some vimdiff-like $EDITOR 11:07:32 Updating FreshPorts - I noticed some unpatched vulns.Let's be truthful there. Nagios told me. Because vuxml was updated. Thanks #FreeBSD. 11:44:48 no, not sarcasm. It was thanks for giving me the tools so I can automatically monitor the vulns. 11:44:49 Done. 11:51:45 dvl: cool 13:05:56 since i can't figure out how to tell my VMs that they've been woken up from sleep, I'm gonna put service ntpd restart into cron… 13:26:11 meena, why not just disable ntpd and setup ntpdate(1) through cron 13:26:53 that would do the same… hrm… 13:26:58 */20 * * * * root /sbin/ntpdate -b ... 13:27:42 i do the same in my VB vm's 13:28:13 CmdLnKid: what do i fill into the … ? 13:28:23 time.nist.gov 13:28:29 your ntpserver 13:33:06 incase you are wondering ... ntpdate will not set the time if ntpd is running 13:33:43 i disabled (open)ntpd 13:34:22 wish we had a updated guest additions... this would be so much easier 13:47:41 good morning everyone 13:47:47 team, after a freebsd update, does the update process leave the old fstab someplace I can check? 13:48:52 CmdLnKid: right, i should look into that. 13:49:26 its there its just not quite as easy as one would think. 13:49:57 neuter it, without the fs stuff and i think it'd still be worth while 13:50:56 one could argue we don't need it to report mem and disk usage as well and then it would just be a overhyped time server ;) 13:52:49 heh 13:53:07 CmdLnKid: is this virtualbox guest addtions, or qemu? 13:53:40 vb guest additions 13:54:56 maybe there is a setting to ntpd to just adjust the time no matter how far its off but i never looked into that 13:56:01 There is, IIRC. 13:56:07 CmdLnKid: ntpd itself crashes when the time is too far, but it will happily start up, with the right setting 13:56:21 openntpd, otoh, does… nothing, until you restart it 13:57:23 stable/13 ntpd just sits there for me and refuses to update the current time 13:57:38 always slew time :P 13:57:41 been that way for me since stable/10 ish 13:57:46 -g, in 13.2. 13:58:48 so now not just iburst, but panic sync first up? wow 13:59:40 i get the refusal to update the time considering time attacks are real but see no real way to say do it anyway 14:00:24 i like that there's sanitychecks. manually sync once, and then slew forever. 14:02:49 i wouldn't even know where to begin hacking on that problem. those ntp folks are on a whole other math level than me 14:04:31 itd be great if we had a native module with some sort of standard on what to expect to adjust the time and do basic stats etc.. that additions provide 14:05:15 fs integrations are just not needed in my case at all 14:06:44 CmdLnKid: set the -g like V_PauAmma_V said, and also set slew with -x 14:06:51 on startup it should panic sync, and then maintain 14:06:58 for ntpd 14:08:28 i just hadn't looked into it yet. so really don't know where or what to begin setting it to as i have a local ntp server that excepts queries local net and ntpdate has sufficed through cron 14:08:51 not like they are production anyway 14:15:25 CrtxReavr: I mean Lenovo, yes. 14:16:41 Um. . . you can sync an ntpd with time.nist.gov, but don't point your end-clients at it. . . be a good ntp citizen. 14:18:01 I would just point your ntpd at the 0.CC.pool.ntp.org servers the FreeBSD project maintains. . . they do a very good job. 14:19:32 signalblue, I thought you meant a Thinkpad. 14:19:38 0.freebsd.pool.ntp.org I think? I'm not sure 0.CC.pool.ntp.org is FreeBSD. 14:19:39 point at your closest ntp server.... for me thats the one closest to my edge of operation 14:19:48 I do mean a Thinkpad CrtxReavr 14:20:01 Lenovo is the brand and Thinkpad is the model 14:20:08 V_PauAmma_V, oh - fair enough. 14:20:19 signalblue, I'm very aware. 14:20:35 CrtxReavr: then why get caught up in semantics 14:20:37 I remember when ThinkPads were made in the US by IBM. 14:20:44 And so do I. 14:20:53 They are still designed in the US. 14:21:32 And I remember when IBM started outsourcing manufacturing to Lenovo. . . and when Lenovo purposely started doing shit manufacturing to cheapen the ThinkPad brand. . . and then bought the Thinkpad name at a bargain price. 14:21:41 the one I have is made in Japan 14:21:54 Lenovo purposely started doing shit manufacturing to cheapen the ThinkPad brand? 14:21:56 signalblue, yes. . . about 10 minutes down the road from me. 14:22:14 I think I know what you're talking about, can you elaborate? 14:22:21 Matter of fact, I used to work in building, originally built by IBM which was the warehouse where PC were customized before being shipped. 14:22:30 huh, very interesting. 14:22:50 We turned it into an 800,000 sqft. lab for developing and testing storage products. 14:22:53 (EMC) 14:23:00 Dell? 14:23:06 Still there. . . just says "Dell-EMC" out front. 14:23:23 interesting... good to know 14:23:39 That one building is Duke Power's largest customer. 14:23:58 if not the thinkpad, which modern laptop do you recommend power users purchase for long-term ownership? 14:24:16 ThinkPads are still solid laptops. . . 14:24:19 a macbook 14:24:50 Though. . . I do sorry about chinese chips spying on their users, whether that's a valid worrry or not. 14:24:53 yes, thinkpads are still solild. mine has all of the hallmarks of older designs. 14:25:02 * CrtxReavr hates Apple hardware. 14:25:05 Shit keyboards. 14:25:07 Shit touchpads. 14:25:09 CrtxReavr: I don't believe it to be a valid worry. 14:25:10 Shit UI. 14:25:12 the power you want, the bus speed you need, the memory you want and fluidity 14:25:30 signalblue, it certainly was for SuperMicro. 14:25:41 CmdLnKid: I can't stand using macbooks, i've tried and it's just not for me. 14:25:46 expensive but you have a bsd underpinning 14:25:58 * CrtxReavr remember when SuperMicro also meant US-manufactured, high-quality server/workstation boards. 14:26:00 though credit where it's due, apple sillicon is highly rated. 14:26:09 CmdLnKid, not so much anymore. 14:26:15 bsd underpinning is possible on any hardware due to the nature of bsd 14:26:20 as close as you get a as a client 14:26:31 OSX/macOS hasn't had a BSD kernel in a long time. 14:26:33 you are not getting closer 14:26:35 10l2? 14:26:45 my production web server is 13.2 on Hyper-V on a Windows 11 Pro workstation that's 7 years old 14:26:48 everything is stable 14:27:16 er - 10.2 14:28:56 I'm not saying the move to a Mach kernel was a bad done, but it's gotten further and further from its BSD roots. 14:30:23 typical 14:35:41 OS X always had a Mach based kernel with BSD bits. Are you thinking of Mac OS Classic? 14:36:17 Considering that the BSD bits consisted of the VFS, netstack, process model, and command line utilities, it was never really that much BSD either. 14:38:15 It becomes broadly POSIX compatible because it has those bits, and one version was even certified by Open Group for the purposes of marketing (it has to be renewed for every version to count, which Apple didn't do, to the surprise of absolutely nobody), but it's not meaningfully important nowadays since there's nothing that uses any of the BSD syscalls when it runs (at least as far as I've tested). 14:39:14 OS X was built the way it was because of Jobs' time at NeXT, which combined Mach from CMU with bits from BSD. 15:08:37 10:35 < debdrup> OS X always had a Mach based kernel with BSD bits. Are you thinking of Mac OS Classic? 15:08:46 That's insulting nonsense. 15:10:03 The original MacOS, was cooperatively mulit-tasking garbage, that had zero to do with UNIX or BSD. 15:10:54 However, there was A/UX which was BSD based. 15:10:55 OSX (or MacOS v10) was absolutely BSD-based (Darwin?) 15:11:11 There's also a reason why Apple hired jkh. 15:11:53 Schamschula, sure - but that never ran on a "Macintosh" - It ran on the Apple IIgs. 15:12:15 (I had a friend who ran a BBS that offered shell access on it.) 15:13:33 Wrong! It ran on Macintosh II and up. 15:16:16 A family friend worked for the company in Berkeley that developed it. She was given a Mac II for her work. 15:16:35 regardless point being ... if you are confortable with freebsd you will be with macos, therefore making it a pretty great client system whether you are using macports or homebrew 15:17:06 its not the same as it used to be but don't get me wrong 15:24:51 CmdLnKid: that's a fair statement, I think. 15:25:12 I actually used FreeBSD and became comfortable with it first, so moving to MacOS was pretty straightforward. 15:25:44 admittedly, going from a "distribution" to an "operating system" was a shock at first. 15:29:55 Schamschula, okay, it ran on some "Macs," but it absolutely ran on the IIgs. 15:31:11 Yup. I use FreeBSD as a replacement for the long abandoned MacOS X Server and macOS with MacPorts as my client platform. 15:32:30 not trying to promote macos in freebsd but when it comes to interective content and userland it seems the most conformative with the right amount of controls and responsiveness. ya just can get that anywhere else. 15:32:39 No. A/UX never ran on Apple IIs. It had a minimun hardware requirement of a 68020 and an FPU. See https://en.wikipedia.org/wiki/A/UX 15:32:40 Title: A/UX - Wikipedia 15:34:40 there just isn't a iterm2 in linux/bsd for term interaction 15:34:57 and thats not the showstopper 15:46:38 CrtxReavr: go look at the source of Darwin, which is used to build modern macOS, and see how much (Free)BSD code is in there anymore: https://github.com/apple-oss-distributions/distribution-macOS (hint, they're in XNU, which itself is a fairly small portion of macOS considering it doesn't include any of the GUI (and everything related to it like Cocoa, Metal, Core(Audio|Video), DriverKit/kext handling, 15:46:39 Title: GitHub - apple-oss-distributions/distribution-macOS 15:46:44 Xcode (which, granted, isn't part of the distribution, but you're not going to get very far in building macOS without it), and many many other things I'm sure I'm forgetting. 15:47:57 Sorry, it's called IOKit. 15:48:32 First step in building anything in Homebrew or MacPorts: install Xcode (often the Command line tools will suffice) 15:49:59 Schamschula: well, that's got more to do with Xcode including LLVM than the IDE itself 15:50:17 Homebrew and MacPorts used to rely on GCC, I think? 15:50:17 Absolutely! 15:50:43 Way back, before Apple defaulted to LLVM/Clang 15:51:51 MacPorts still maintains ports for PPC based machines (10.6.x). They still use gcc. 15:55:17 debdrup: apple does unix certification for every major release of macOS 15:55:48 see https://www.opengroup.org/openbrand/register/, it's current up to 13.0 "Ventura" even 15:57:44 > not meaningfully important nowadays since there's nothing that uses any of the BSD syscalls when it runs (at least as far as I've tested). 15:57:57 this one's a bit vague to judge, but there's still a bunch of BSD utilities and libc under the hood that drives non-UI stuff 16:01:32 The trick used to be going into /usr/lib or similar and "strings -a * | grep -i rcs" or somesuch to find CVS information. 16:10:29 you don't even necessarily need to go that far to see what's up with how much they publish to github these days 16:10:35 z/OS is POSIX certified?! 16:10:48 e.g., I can see here that they're using bsdgrep: https://github.com/apple-oss-distributions/text_cmds/tree/main/grep 16:10:49 Title: text_cmds/grep at main · apple-oss-distributions/text_cmds · GitHub 16:11:25 Also, I'm surprised Solaris isn't certified 16:12:01 certification takes both $$$ and time 16:13:32 there's a fairly extensive test suite that you actually have to mostly pass in order to become certified 16:14:13 you can see some details here, though it costs to actually get access to the test suites: https://www.opengroup.org/testing/testsuites/unix.html 16:14:14 Title: Test Suites - UNIX Systems 16:14:38 but I mean, just reviewing the descriptions of each of these, you can tell it's pretty extensive 16:32:24 too many standards and too many names for the same standard 16:33:20 but is anything SUSv4 certified? 16:35:13 imo SUS and OpenGroup and IEEE or whatever are all very nice but the 10 billion flies have settled on Linux 16:50:58 kevans: top in macOS includes a column for BSD syscalls, and they're never used by anything I've ever run 16:52:56 this SYSBSD column is off the charts in a lot of processes on this Mac Studio serial console I have here 16:54:14 bluetoothd alone is sitting north of 20230000 16:54:46 oh, I probably haven't had a power outage lately 16:56:29 yeahhh 11:56 up 91 days, 9:03, 1 user, load averages: 0.80 0.78 0.75 17:02:26 Maybe it's also the fact that I don't use my macbook pro anymore since I got a FreeBSD laptop.. :D 17:02:45 It's clamshelled and in standby mode on my nightstand, and usually the TV remote is on top of it 17:17:55 debdrup: oh cool what laptop is the FreeBSD laptop? 17:18:47 T480s 17:19:05 that is a really nice thinkpad 17:23:51 I'm on a T495s now, depends on what you want to do with it ;) 17:24:31 ran freebsd on it for quite some time, just happen to have Garuda linux on it now though 17:26:01 (sorry, I read "that" as "what", I saw a question where there wasn't one, I'll crawl back under my rock) 21:12:48 I'm trying to write an rc.d script that needs to run with a specific group, as it will create a file that needs to be owned by root:mygroup. I set ${name}_group=mygroup but that doesn't work, it's owned by root:wheel. Changing the user works, though, via ${name}_user=. Any idea? 21:31:20 iomartin, you sourced /etc/rc.subr ? 21:32:33 iomartin: _group is respected only if _chroot is in use 21:34:12 Hmm I see. What I'm actually trying to do is create a socket somewhere on /var/run/. I noticed that if I have _chdir as /var/run/foo and change the ownership of /var/run/foo to root:mygroup, then the socket is created with the correct ownership 21:34:44 So now I just need to create that directory with the correct ownership 21:36:18 Is there an option for that I should handle it in my _start? I'm currently only setting _chdir= and command= 21:36:28 right, group ownership of new files comes from the directory, _not_ the user 21:36:39 What source browsing tool is the current place to go these days to dig for a commit? 21:37:03 I'm looking at comment #28 in this bug and trying to figure out what the "fix" was: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=221122 21:37:06 Title: 221122 – Attaching interface to a bridge stops all traffic on uplink NIC for few seconds 21:37:29 (the fix seems to have been unfixed at some point, the problem persists) 21:38:33 iomartin: looks like creation of /var/run subdirs is usually done in a _prestart function 21:42:03 some packages create their /var/run/blah subdir on install (as a directory in the plist) 21:42:56 also there's an rc.conf option to save/restore the /var/run directory structure in case you have a tmpfs there 21:44:44 Hmm thanks, let me look at _prestart 21:46:08 It's working now \o/, thanks! 23:01:07 so anyone know easy way to read some text files on a ufs thumb drive on linux? need to get freebsd interop with linux 23:01:39 cat /mnt/myfile.txt 23:01:57 or do you mean 'how do i mount my thumb drive' ? 23:02:29 ya i guess maybe that's it 23:02:39 polyex: some Linux systems have UFS compiled in 23:02:49 do they really? 23:05:44 I haven't compiled a Linux kernel in a long time, but i do remember that und FS section is excessive 23:06:08 pretty sure UFS is among it, but which version that is is hard to tell 23:09:51 and to be fair, ext2 and UFS are close relatives, so it makes sense 23:10:19 If anyone needs to know how to make Blender not lag, let me know. I found the fix. 23:10:44 i'm trying to set up a new home router with freebsd 23:10:54 i'm starting with a very simple pf.conf, just https://pastebin.com/xxvgkwmp 23:10:55 Title: int_if="{ bridge0 }"ext_if="dpni0"nat on $ext_if inet from !($ext_if) -> ($e - Pastebin.com 23:11:26 thing is, i have the full access to internet from my router and i can ping external hosts from behind the nat 23:11:45 i can also load websites via port 80, but loading anything via 443 just fails 23:12:02 but not when i try to curl something with https from the router itself 23:12:13 is there any sysctl i need to set? 23:12:24 or something in pf? 23:26:15 sounds weird. might need to keep state. not sure. perhaps you'll find something interesting here: https://docs.freebsd.org/en/books/handbook/firewalls/ 23:26:16 Title: Chapter 33. Firewalls | FreeBSD Documentation Portal 23:34:23 i added keep state, but doesn't help 23:37:45 pkubaj: did you already add the forwarding sysctl? either with the rc parameter or sysctl.conf 23:39:34 rtprio: indeed, net.inet.ip.forwarding: 1 23:39:55 and i can actually ping external hosts from inside the nat just fine 23:40:18 how are you testing https from the nat'd host? 23:40:41 e.g. curl -L -v freebsd.org 23:41:20 and the error message is? 23:46:09 rtprio: no error, just hangs 23:46:56 oh, it finally timed out 23:46:56 * SSL connection timeout 23:46:57 * Closing connection 1 23:46:57 curl: (28) SSL connection timeout 23:50:51 what about.. maybe something more determinstic 23:52:47 curl -I https://www.freebsd.org/ 23:52:48 Title: The FreeBSD Project 23:54:29 to that end, does it work on the box doing the nat 23:58:04 rtprio: that's the output from my router: https://pastebin.com/u5SUAm4q 23:58:05 Title: pkubaj@ten64:~ $ doas pfctl -snnat on dpni0 inet from 192.168.1.0/24 to any -> - Pastebin.com