is using a freebsd desktop as a router as well as a desktop an option

or does the router have to be in a vm

If you use vimage to give a jail its own network interface, you can probably do routing there just fine.

I've often had the thought of combining router+switch+HTPC+network storage+workstation into one machine, but it's not really doable as the sort of machine that can do all of those things without one or more of them bogging down things would be the sort of machine that'd end up using quite a bit of power.

i tried putting opnsense in a vm but i couldnt get it working for the life of me

i hit a wall when i got to setting up a virtualized software wireless access point

thegman, Almost any general purpose computer can do a variety of general things. And depending upon what you are routing for that might be okay to combine for you for you desktop. But if you are routing for a house of twenty people then I would use a dedicated router and then not hack on it so that it remains running reliably.

its just a few computers and a phone

It's always up to you. But when it is a desktop people tend to like to reboot it when they want. And then someone else gets their ssh login dropped or their game disconnected and pops up and goes, "Hey! I was using the network!"

fortunately i dont reboot very often and im the only one within 100 feet that knows how to use ssh

I would want that separation of concerns, personally. the actual computer for a fairly low-traffic router presumably doesn't have to be very powerful

is there any information on software wireless access points in virtual machines

kevans: so I'm trying to investigate your hypothesis about gzdoom's fs_findfile.cpp implicitly including sys/time.h outside of the FileSys namespace, but I'm not finding any suspects

fs_findfile.h includes stdint.h along with C++ string and vector, which seem all clear, then the cpp file itself includes string.h which seems clear, along with vector.h again

er, wait, I guess I have to check all of the includes within those files, ugh

I wish I knew how to properly follow along with the output of clang's preprocessor, because like, I do see _timeval.h in the processed output, I just don't know how to trace back to where that's initially included

I can see that timeval is defined outside of the FileSys namespace though

kevans: lmao, just adding #undef _SYS__TIMEVAL_H_ inside of the FileSys namespace fixed the compilation errors. that's kinda disgusting, though

I see that a new version of GNU Make (4.4.1) went into the ports tree but there isn't yet a package, is that expected?

crb_: It takes a while for things to build, and longer if you're on quarterly.

I could see that but 2 weeks seem pretty long

crb_: Are you on quarterly?

mason: I'm not sure I'm trying to read on repos now

freshports.org/devel/gmake notes that 4.4.1 isn't in the current quarterly

Title: FreshPorts -- devel/gmake: GNU version of 'make' utility

Hmm, is there a cmake module or something in ports that will allow a cmake project to build that specifies `dependency('pam')`?

I'm trying to figure out if there's a pam.pc file for it or if I can/should manually specify the headers + lib(s).

In FreeBSD, is it possible to have multiple versions of a package/software installed at the same time as in Gentoo?

not that i'm familiar with through ports, but jails might do something like that. how does gentoo do it?

johnjaye: Gentoo lets me specify which version I want to use when I start a service or execute a command. There is also a tool to specify the default version. As I've understood, Gentoo's package management system is influenced by FreeBSD's ports system, so I supposed that it would work in a similar way.

in freebsd ports don't typically work that way unless a port is setup for each version

i think in freebsd you're supposed to use jails to do what you're saying: freebsd.org/doc/en/books/handbook/jails.html

Title: Chapter 17. Jails and Containers | FreeBSD Documentation Portal

My problem is that I need to upgrade Nextcloud from version 15 to 18 without skipping any major versions, so I need to install netxcloud15, nextcloud16, nextcloud17, nextcloud18. I guess I have to install them in serial instead of in parallel then. However, when I look at freshports.org/www/nextcloud, it seems that only nextcloud18 is available from the ports tree. I'm running FreeBSD

14. Is there any way to install older packages?

Also, it seems that nextcloud15 requires php80, so I need to install php80 as a dependency, if though php80 is not supported on FreeBSD 14.

why do you need to do those steps?

If that's not possible, a last resort could be to move the nextcloud database and config files to Gentoo and upgrade nextcloud there and then move it back to FreeBSD. :-/

nimaje: The nextcloud doc says that one should not skip major versions while upgrading, so I need to upgrade one step for each version from 15 to 18.

Any ideas how I can accomplish it? I'm thankful for all suggestions. :-]

how do i format a sandisk usb to then save mp3?

newfs_msdos

maybe :)

ketas just did it i think lol

to writte mp3 to usb just move it there?

depends why and what

how

is to play it in my car

yeah you could just move files, or perhaps copy

oh

fine then?

ok

thanks

ketas it says invalid file name

when i try to paste it

or moved it into usb stick

managed to make non-32 fat?

no idea

can you help me format since the beggining

to make sure

please

i used gpart destroy

oh well

might as well do dd now to see if it's ok :p

how i do that?

i usually do that once just in case

but it had fat before or...?

it was brand new

it had sandisk files

gpart add -t fat32 da0

newfs_msdos -F32 /dev/da0s1

i used this

so why errors?

Title: Formatting USB drive with FAT32 using FreeBSD | codenicer.com

same tho

gpart show da0

=> 63 60125121 da0 MBR (29G)

63 60125121 1 fat32 (29G)

so it was already formated? why did you think you have to format it?

nimaje i wante to remove sandisk files that comes with the usb

wouldn't deleting the files have been enought?

nimaje when i try it said it cant be removed

or that does files dont exist

something weird is going on

try that again

now when i move files it says invalid name

skip skipall etc

but when i try again it shows like the file is all ready in usb if i want to remove it

or replace it

but when i open usb in file manager is empty cant see nothing there

how is that thing mounted

hello

is it main #freebsd or vestibule ?

/part

just to confirm, there's no option in pw useradd to give the password by hash right?

$6$...

alepzi: `man pw` should at least do it via `-H -` iirc

and there's probably an easier way

ya but that's with usermod no?

oh, both

echo '$6$...' | pw usermod $USER -H 0

works here

ya i wanted something for useradd tho but looks like that'll work. gonna test now

I think its deliberately intended *not* to allow setting it on the command line, so even hashed passwords and salts don't get logged

ok, openvpn routing, what am I doing wrong?

I want local traffic not to go via vpn

oh ya true. if i do pass the pw hash by command line to pw useradd, where will that line be logged? /var/log/messages or?

aaaaah im on teh wifi, gotta use a different gw

alepzi: my example above should not have something logged via e.g. sudo or whatever

worked for me except i had to change | pw to | sudo pw

still didn't see any logging to /var/log/messages

alepzi: i guess sudo/doas logs turn up in /var/log/auth.log ?

Mar 16 16:44:21 akai doas[75741]: dch ran command pw usermod testy -H 0 as root from /projects

thats what i see

no passwd :-)

niiice

if i lock an account, is there any security benefit to also disabling pass auth with usermod -w no?

has anyone experience making a mistake and upgrading to -CURRENT (or some other release) and then try to get back to a release like 14.0?

I do that by smearing a release tarfile over root (excluding etc) and then do a new `make world`.

cracauer: that is what iw as thinking.. pulling the source for releng/14.0 and just going to install over it :)

hopefully that fixes it..

I mean a binary release tarball extract first.

In case `make world` doesn't like to go backwards.

i am pulling from git.freebsd.org the kernel and building

but maybe your option is "smarter" than my screw up..

Only required if `make world` falls flat on its face.

right now doing a make -j8 buildworld kernel

it is chugging along

i need to update my tmux configuration to make the different hosts stand out more.. freaking crap

and i should NOT have had CURRENT in /usr/src but somewhere else

when i type lpq it says no daemon present. i am running lpd alright. what could be the problem?

check to see where it is running

like the exact path to where it is

it is interesting to see how much LESS cpu a 14.0 source build is verus a 15.0 current build

signalblue: ps -aux shows that root is running /usr/sbin/lpd

voy4g3r2: if you figure out a good way to do that let me know

so far my idea was something like have a different color for different OS. like red for linux and blue for freebsd

will do

well the buildworld kernel finished

time to see if a reboot works..

then installworld

johnjaye: i have tried to put hostnames in my header/footer but that was clearly not looked at

voy4g3r2: i saw a neat trick on time. use the shading contrast so like you can write 112233 and you can see the contrast. only works with 256 colors though

i mainly use xterm256-color option

and it looks like we have harley down for the ocunt

reboot.. and network did not come back up

son of a gun.. time to move this thing again and diagnose

cracauer: your try on the tarball thing, is that basically "sucking" out the base from an iso image and overlaying in system?

intersting this mikrotik "shutdown" my network connection because of ping floods

pretty cool but annoying feature

oh yeah!!! no pam_xdg.so error

well that is odd.. i can login through ssh but not directly into the machine

anything wrong with locking root if noone needs to login as it?

my main user account's in wheel so i can do everything from it with sudo

voy4g3r2: no that's not

that's effectively a dos

your network is down

boo urns. i built OccamBSD and just tried to remake my rtorrent jail on top of it, but rtorrent uses crypto libraries in base, which i didn't build. so it won't run

someone's DOSing my network, better shut it down.... is the stupidest possible way to handle a dos attack

just implement icmp rate limiting

it's standard practice

"You can't DoS me, I won't serve anybody! I quit!"

sfox: yes there is a firewall rule that does thazt

i was not clear.

and why the heck is pam_xdg.so gone..

voy4g3r2: it seems like that is provided by the pam_xdg package, not base

jaredj: what is odd.. if i try to login as any user direclty into machine.. it says can't find

but if i login through ssh no error

ah - yes - in /etc/pam.d there are separate PAM configs for different services

I have seen ''security appliances'' that brick the entire lan if somebody runs nmap

if you edit /etc/pam.d/login you should be able to comment out the line about pam_xdg, and then be able to log in

so nobody on it can even access the internet

voy4g3r2: or follow the "include" statements - it might be in /etc/pam.d/system

yeah it is.. in #session section

weird, i never touched this or even had pam_xdg installed till now

?? yeah that's odd

i really need to get a serial / usb cable

:D

jaredj: well i DID by mistake upgrade to CURRENT and juust downgraded

yeaaahh, i read a little bit of the scrollback

so i was expecting some things to hiccup

that was the only thing, that i saw.. which is not bad.. maybe got in there some how

oh well.. fixed now, thank you!

hurrah! :)

time to hunt on amazon for a calbe

moving this beast of a machine around house is annoying

word

will be here tomorrow andf now amazon is doing this thing.. by being a prime member i just save 9.99 on shipping

they better NOT increase my membership price again

can you mount a filesystem in multiple places?

I have a zfs filesystem that I'd like to mount inside and outside of a chroot area

there is a way to do that in ufs but not sure about zfs

johnjaye, ok how do you do that using ifs

not sure. googling isn't showing a lot.

what happens if you just issue the mount command a second time?

Title: Mount your ZFS datasets anywhere you want – Dan Langille's Other Diary

looks like there is some information on this you can set the canmount=on

crb_: you can use nullfs

thank you

mount the filesystem in one location, then nullfs mount from that location to a new one

my /compat/llinux doesn't have a password file, is that intentional? do I have to create that myself?

anything wrong with locking root if noone needs to login as it? my main user account's in wheel so i can do everything from it with sudo

alepzi, do you have physical access to that machine? I'm not sure what locking the root account would do to single-user login for repairs.

ya i do

so i guess single user mode won't let login to root if it's locked?

btw if i lock root, why can daemons, like sshd, still start running as root? when i tried to run caddy's rc.d with a user i made then locked, it said it couldn't start

if the freeports is showing "Package not present on quarterly" does it mean there are prebuilt binaries which we can somehow install (by adding repository)? building from source is taking hours..