00:49:50 there anything wrong with running sshd in a jail and having ppl ssh right into jails then into the host system then jexec on the jail? 00:58:41 nothing wrong with sshd on the jail 00:59:11 allowing access to the host and letting people jexec is probably the worst method of access 00:59:23 ya thought so 00:59:37 i guess an sshd for each jail isn't too hard on ram? 01:00:44 no 01:06:18 anyone make a loop() {} script to make nested jails with basic usability like you can ssh into it and see how deep you can recurse? 01:06:38 like imagine 1000 jails each within the jail before it 01:06:48 and at the top there's just 1 root jail 01:07:06 A worm-hole, man! 01:07:27 The universe as we know it would be fundamentally altered by such setups. 01:07:36 then what if you backed a virtual FS built on a tree of jails each dedicated to an API service for 1 dir or file 01:08:04 might be a good acid test for the jail feature 01:08:16 YOu mean a test while on acid? 01:08:31 prolly 01:14:33 why 01:26:16 can I have some help. My laptop with FreeBSD 14 only suspends if you close the lid and open it again, instead of lid close 01:26:25 if you just close the lid the laptop stays on 01:26:39 Levovo Thinkpad T430 01:33:35 Is that the same as/similar to the T430s? If so, see "Tweaks" in https://wiki.freebsd.org/Laptops/Thinkpad_T430s. 01:34:12 no the s is a different laptop 01:36:34 Then I don't know. 01:42:07 alepzi: in case you were still on the fence about it, attaching to a jail is a privileged operation 01:42:53 you would want to wrap jexec into something palatable for sudo/doas grant 01:56:27 I think there's a setuid jexec program in ports too. 02:05:38 Yeah, jailme. Updated 10 years ago. 02:07:23 i'll just put sshd in each jail 02:07:26 ty!! 02:50:44 I had to set mpv.conf's vo=xv because it's default (GPU) while it would work it would take over the whole screen including my window manager and the keyboard would not work until the video stopped playing. even trying to switch VTs would not work. 02:51:16 mpv complains that the xv vo is slow, buggy, and blurry. It's true the overlay is blurry with xv 02:51:32 and that i should use something else 02:51:41 is there a better solution? 02:51:56 i tried using vo=vaapi but that doesn't seem to work at all 02:54:19 [vo/xv] Warning: this legacy VO has bad quality and performance, and will in particular result in blurry OSD and subtitles. You should fix your graphics drivers, or not force the xv VO. 03:22:23 skered: ideally one would write a MAC module instead, but configuration is hard 03:26:28 actually with jailfd coming down the pipe you could conceivably do it all in userspace depending on how they are designed 03:32:37 yeah, looks like jaildescs maintain the creds of the thread that created them 03:32:49 so you could conceivably write a jaild that can hand out jail descriptors that allow some privileged operations 03:50:08 what's the minimum system requirements for building freebsd? 03:50:17 (aka: RAM. how much RAM.) 03:55:35 iirc you need at least 1 or 2 GB or so to get past the googletest build 03:55:46 very template much fuckery 04:22:03 you almost certainly want more memory than that so you can use make -j though, otherwise the build will be very slow. higher -j = higher memory requirement 15:54:29 This host I just logged into has a motd file wider than 80 columns. 15:54:34 What kind of sociopath does that? 15:55:24 CrtxReavr: there are even people posting to freebsd.org mailing lists nowadays with lines longer than 72 columns 15:55:42 what happened to etiquette?! 15:56:21 When I write code, I always limit it 79 columns. 15:56:51 I often get asked why and I tell them it's cause I've had to hack code on a server console in a freezing datacenter too many times not to. 15:57:20 CrtxReavr: 132 column terminals exist if i remember correctly... 15:57:29 funnily enough, i found that on a modern 27" display, in an IDE, 80 columns is about the right width to display two editor views on the same monitor 15:58:05 lw: at 200% scaling? 15:58:15 flatrute: 4K, 150% 15:58:33 flatrute, sure. . . but so many things default to 80 columns. 15:58:34 lw: wayland? 15:58:44 flatrute: Windows. i don't use an IDE on Unix 15:59:17 Under normal circumstances, the only thing you use a server console for is getting it on the network, so spending time to get it to 132 columns is silly. 16:00:08 I dont' care how big you make your terminal. 16:00:38 But sysadmin's shoulds always assume 80 has a default for things to be readable. 16:00:38 CrtxReavr: i code in ada 16:01:50 You're a dentist? 16:02:19 CrtxReavr: nah just a student working too much with VHDL 16:03:04 and i used to code in pascal for years 16:03:37 When I took CS-105 at wsu.edu in summer '91, it was "Intro to Pascal." 16:04:00 They very next term it switche to "Into to C." 16:04:21 (Which would have actually been useful.) 16:06:21 CrtxReavr: standard pascal does not have an equivalent to `#include' or any sort of external libraries (they are all extensions from compiler vendors like borland) 16:08:57 pascal was made as a teaching tool, modula was made as the real programming language 16:09:17 Modula's based on Pascal? 16:09:21 yes 16:09:31 I was un-aware. 16:09:33 wirth has made 3 languages, pascal, modula and oberon 16:09:44 'Course. . . to me, Modula is just a dependancy for other things. 16:09:46 everything else, he refers to as a dialect 16:10:15 amazingly enough, oberon is the only one he implemented an entire OS in 16:11:18 its not like modula is in use, I know the folks in #modula were reimplementing modula2 for gcc but I don't think they got very far 16:11:37 nmz: i mean ada exists... 16:11:48 flatrute: ? 16:11:55 nmz: nevermind 16:12:01 hehe 16:12:12 oh, btw, I tried installing alire and couldn't 16:12:24 when I wanted to learn ada. 16:13:59 nmz: you built devel/alire manually or something? 16:18:01 nope, couldn't. I'll try again 19:06:11 is it possible to have zpool show me the size in integer instead of 17.9G or 1.2T? 19:06:55 meena: zpool list -p? 19:10:44 nice, thank you 19:51:30 anyone know if you set up a jail with no /etc/localtime, does it default to UTC or the jail host's tz? and is that tested on freebsd 13 or 14? 19:52:23 i would expect it would be utc, but i haven't tested it 19:53:33 should be utc 21:07:28 alepzi, If there is no /etc/localtime then it defaults to UTC. Which you can verify yourself with a very easy experiment. Test that time is in local tz "date -R". Then move /etc/localtime out of the way. Test again "date -R" and verify that time is in UTC. 21:08:48 afaik the kernel hasn't really tracked timezone information in years, so there's not actually a notion of 'host timezone' and it's all in userland 21:25:04 how do i set up a jail in a scripted bsdinstall? so installerconfig is running then i get to the point i want to run service jail start testjail, but it can't because the jail config doesn't expect the /mnt/* on paths during bsdinstall 21:46:55 Zoneminder wants BSD https://twitter.com/zoneminder/status/1778510272614789493?t=Pd5hm57lVojyGeXIW2awiQ&s=08 21:49:48 very cool 21:50:12 bsd physical sec appliance hype 22:03:00 The only sane time for the kernel is UTC. But /etc/localtime is for userland such as "date". Because we live on a rotating ball with moving daylight. 22:06:16 ya 22:07:39 how does pkg install work in installerconfig of a scripted bsdinstall if /mnt/ is needed for every path? 22:09:26 alepzi, Remind me again why you must do a scripted bsdinstall rather than simply untar a template image? It's really much simpler to just untar an image than to run through the installer each and every time. 22:10:28 the manpage explains this 22:10:44 scripted bsdinstall to set up a machine, and the machine in this case has some jails. so i need to do stuff like installing packages into the jail, can't just make that all file based 22:10:46 "optional second part is a shell script run under chroot(8) in the newly installed system before bsdinstall exits." 22:10:50 have to do some interactivity 22:11:04 i.e. shouldn't need /mnt, no 22:11:16 to run service jail start testjail? 22:14:46 Re: "can't just make that all file based"... Hmm... Why not? I can only think... Works for me. (shrug) 22:15:39 you do pkg install to a file path then copy all those files into an install? 22:15:52 Yes. 22:16:11 In the end at boot time everything is just files on disk. 22:17:19 The strongest argument against doing the template thing is that it's a snapshop. Not live. Not live means that it needs its own process for being updated. Or the image after booting needs to be upgraded. I chose to upgrade immediately after the first boot. 22:17:51 Whereas the install image is always alive and always gets the latest. 22:18:04 kevans: don't need /mnt for what, starting the jail? the jail's config has a path= in it that doesn't include the /mnt part needed during scripted install 22:21:11 alepzi: why do you think you need /mnt 22:21:30 the excerpt I quoted says it's all run in a chroot 22:24:13 kevans: because in installerconfig when i go to start the jail with service jail start testjail it fails /usr/local/jail/testjail/dev no such file or dir. but after installer exits and it reboots then that works 22:25:01 there's a zfs altroot during the setup script 22:25:07 "/mnt" 22:42:05 alepzi: I don't see how unless you've somehow written your script wrong, we would need to see that 22:42:19 looking at the source, it's clearly executed inside of the chroot 22:42:31 so you're saying zpool get altroot in an installerconfig shouldn't have a "/mnt" value? 22:42:58 zpool get probably shouldn't work if you've written your script right 22:43:07 why not? 22:43:27 because I don't see anywhere we mount /dev inside 22:43:51 what's that mean? 22:43:58 zpool and zfs both need /dev/zfs 22:45:11 in any event, I'll be over here doing something unless you're willing to post at least a redacted version of your script 22:45:22 is there anything i can run in the setup part of installerconfig to gather some useful info for us figuring out what's goin on? 22:57:39 kevans: https://termbin.com/y275 23:32:54 script seems fine, interesting 23:33:36 a-ha 23:34:13 oh nope, that would have been fine 23:36:01 https://cgit.freebsd.org/src/tree/usr.sbin/bsdinstall/scripts/script#n166 is specifically where your script runs 23:36:03 Title: script « scripts « bsdinstall « usr.sbin - src - FreeBSD source tree 23:36:14 so is BSDINSTALL_CHROOT shit, or? 23:38:07 the above awk to physically split it looks fine to me 23:38:42 alepzi: maybe do an ls -l $TMPDIR/bsdinstall-install* and maybe cat same, see what falls out?