00:07:50 My upgrade finally completed on this desktop! All good. The file install took forever for some reason. And it insisted upon installing /usr/src no matter how I tried to prevent it. 00:08:29 There must be some configuration left behind after I initially installed and included /usr/src but I don't know what that is in order to disable it. 00:11:30 how many freebsd machines do you have? :) 00:18:04 I have a very small number at 6 total production working machines now. With another few VM for hacking and testing. 00:18:30 That number is slowly growing over time as I convert more machines to FreeBSD. 00:20:37 cool 00:20:54 i'm working on a couple that don't have specific purposes yet 00:21:29 tis fun imo 00:22:05 I think I should benchmark the zfs file system on my desktop and compare it to the other machines. I think something may be causing it to operate very slowly. It took a very long time to upgrade it whereas the others went reasonably quickly. 00:22:32 my first thought is a bad disk...? 00:22:54 ewrapt [~thaewrapt@user/thaewrapt] has joined #freebsd │ ashnur 00:23:16 For normal this and that everything is fast enough that I don't notice anything. But as it was grinding through the 54k files in /var/db/freebsd-update/INDEX-NEW trying to install it was just grinding through very slowly. 00:23:21 rwp: misconfigured IPv6 or no IPv6 might have slowed you down 00:23:32 No IPv6 here. 00:25:04 maybe checksum related? 00:25:47 But when I watched the process listing it was the install_from_index() function working through sort -k 1,1 -t '|' $1 | tr '|' ' ' | install -S -o ${OWNER} -g ${GROUP} -m ${PERM} ${HASH} ${BASEDIR}/${FPATH} that was taking forever. 00:26:21 Initially I saw the -S and that's an fsync() call forcing O_SYNC to disk so I thought it was that. I hacked it out and things were better but still not super great. 00:27:25 It was working through hundreds of thousands of files in /usr/src, /usr/ports, so I hacked those out of INDEX-NEW but I guess I didn't get upstream in the flow enough because it recreated this anyway. I'll have to look into where that is created. 00:29:01 I am sure I broke the ability to "rollback" but... Boot Environments FTW! So I wasn't worried about that particular feature. 01:21:34 polyex: no idea, I try very hard not to touch the installer 02:14:40 I know you can choose to include/exclude those parts during initial install, so maybe that choice is remembered somewhere 02:16:17 /etc/freebsd-update.conf, Components and/or Ignore 02:25:30 I don't remember FreeBSD man pages not wrapping properly but it seems maybe since 14 man pages wrap words vs shifting them to the next line indents are respected. 02:26:00 Anyone able to check that with a ~66 column terminal and `man man`? 02:28:41 errrm... pkg is doing something in the background and it is eating all disk IO and cpu 04:03:09 skered: I don't think that changed, 78 is the default number of output columns, you could use `MANWIDTH=66 man man` to make it work correctly; there's also MANWIDTH=tty to use the terminal size, but sadly it's only used if terminal columns > 80 for some reason in /usr/bin/man 04:17:36 there a way to send a message to all my i3 windows at the same time? 04:17:45 i wanna blast myself with a reminder on a cron 04:17:59 i don't wanna use mail for it 04:18:14 like wall, but wall doesn't show on all screens 04:37:19 looks like notify-osd works 04:50:09 dunst works too 04:50:29 we can make popups on our desktop from cron jobs. the future is fucking here 04:56:31 hmm, lw seems to have disappeared 04:58:44 meena and rhodium aren't around much lately either 05:01:31 hrm 05:02:09 i hope they're ok 05:03:12 lw at least had posted a bug just a couple days ago, maybe just busy 05:03:14 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=279850 05:03:36 just summer hours? 05:04:12 * kevans looks at his calendar 05:04:25 hot damn, it is summer 05:23:56 i made a cronjob to send me a notification every minute but it's not working: */1 * * * * polyex /usr/local/bin/notify-send foo bar. but notify-send foo bar from cmd line works? 05:24:43 pj ot 05:25:00 oh it's sending me emails saying /bin/sh: polyex: not found 05:25:02 wtf 05:25:19 user field doesn't exist if you're constructing it in a crontab 05:25:27 er, user crontab 05:25:43 only /etc/crontab and /etc/cron.d 05:27:35 ok i took user out 05:27:42 * kevans ponders the difference between * and */1 05:28:40 hm now the error mail says cannot autolaunch d-bus without x11 $DISPLAY 05:35:07 GOT IT 09:36:44 rwp: could you have been scrubing a ZFS drive when your slow down happened? 11:32:57 jauntyd, rwd: probably just running daily periodic script. it kills my zfs too. rarely finishes on time. 11:36:48 for some periodic script you should mark zfs datasets that shouldn't contain executables as noexec, at least one scans all mounts that allow something executed from them (iirc it checks suid executables, but not sure anymore), I should really look through all those enabled by default periodic scripts and disable those I don't need 11:43:42 woohoo freebsd 11:48:02 * jauntyd makes a note of noexec tip 14:29:22 yuripv: Ok i thhink that's my issue or the issue. MANWIDTH defauts to something that isn't COLUMNS 14:31:15 Thanks. 14:58:09 how good is uart card support on FreeBSD? Do most/all startech cards work? 15:03:48 the card I am looking at has a ASIX MCS9820CV chipset I can't seem to find any hardware support list or anything, so is this a matter of buy it and see? 16:19:43 after swapping out that SN770 nvme for this Crucial P3 one, i haven't had a single crash. i've rebuilt all my ~700 ports multiple times, transfered several 100gbs, and it's been up for >2.5 days (longer really, but i was doing reboots and updates and upgrades) 16:20:05 with the SN770 i didn't make it even a couple hours, so i think i can consider the problem solved 16:44:40 what is the conventional place to stick root scripts to run as cron on FreeBSD? 16:49:05 i think I recall polyex recently claiming that the environment changed in terms of running rc scripts in 14-RELEASE vs 13... and i just found that my script running PHP in 13- could find php just fine, but in 14- i needed to put /usr/local/bin/php, a change that stumped me for a while, because i expected the same script would Just Work™ 16:55:16 hi guys. i'm trying to redirect a freebsd terminal to a raw tcp socket, with socat or something. i found some instructions for linux that called for "socat -v tcp-l:3334 pty,link=/dev/trs80" so i tried all /dev/ttyvX devices but it doesn't seem to work.... what device should i be trying to hit? (the device i'm trying to connect from doesn't support telnet) 16:55:44 i can connect and i see my packets arriving, but i don't see a login prompt or any other response 17:01:33 jauntyd, scrubbing was not running. I do wonder if there is something that is not fragmentation (showing 8% here) but something related as zpool history | wc -l yields 345630 due to running zfs-auto-snap since 2022-10-22. Or it might be because I am using Boot Environments and disk clones are needing to fork disk space when used. 17:02:47 wcarson, That is a pretty strong finger pointing blame there. Since I have two of those in the collective at a client's machine let's hope you pulled a bad lot and not all of them are that way. 17:03:47 rwp: sadly i think it is the drive... or they must have a lot of "bad lots" -- there's huge threads on it 17:03:57 https://github.com/openzfs/zfs/discussions/14793 17:03:58 :-( 17:05:01 that said, as someone else mentioned, it's like the #1 most sold drive on amazon 17:05:11 and it's very highly rated, like >4.5 stars or whatever 17:06:07 so, is it just that there are a few one-in-a-million-but-we-sold-many-millions problems with the drive? or is it a zfs+sn770 issue? or a zfs+sn770+freebsd issue? hard to say. although there are linux (zfs) users reporting the same thing in that openzfs issue 17:06:17 My client bought a Penguin Pro 14 system (https://www.thinkpenguin.com/gnu-linux/penguin-pro-14-gnu-linux-desktop) with two of those installed. Obviously the ThinkPenguin folks think it is okay too or they wouldn't have chosen it. 17:07:06 Installed there is Ubuntu 24.04 + ZFS and so far have not seen a problem with it. (me makes various superstitious signings after saying that) 17:07:32 well, that's good! 17:07:58 could also be a particular controller, since i was seeing controller timeouts in the logs 17:09:08 for me, i'm just glad it was a simple solution 17:09:21 and plus the crucial was $50 cheaper :D 17:09:25 Whew! Good to have solved it for you anyway. 17:10:16 polarian, I think if you ask 10 people that question, where to place root scripts, you will get 12 different unique answers. I don't think there is a convention. People place their own programs where they think they should go. 17:11:32 welp /root/bin it is then :P 17:11:49 And some of that answer for me depends upon if I want it in the Boot Environment or outside of it. If inside then either /root/bin/ or /usr/local/sbin/ but if outside of it then I usually stash it in /home/ instead. 17:13:02 I have also created a /local/ directory in order to emphasize that what was there was something unique to that system. 17:13:40 I personally never warmed up hugely to the whole /opt/ thing. That was designed and targeted for vendors to put things, like /opt/google/bin for chrome and such. 17:13:57 It's good for them though. I think that is a fine place for them to put those types of things. 17:17:17 hjf, Your configuration question immediately makes me think you are wanting to simply install telnetd there. Doesn't the telnetd do everything you want it to do? 17:17:21 And I won't argue that passwords in the clear are a bad idea because I am sure you are operating it in an isolated network and that's not a problem. 17:17:26 But then you said "the device i'm trying to connect from doesn't support telnet" and I am wondering why socat or nc didn't work, assuming it has socat or nc? 17:18:27 And of course I am rather curious about the actual problem you are working on that would need such an unusual configuration in this day and age. 17:32:11 https://man.freebsd.org/cgi/man.cgi?hier or man hier 17:32:18 hier -- index of FreeBSD file system hierarchy 17:33:30 rennj, Yes but unfortunately that man page remains silent on the answer to the question. :-( 17:34:07 well opt is older then the netbsd freebsd openbsd 17:35:06 sun,hp,ibm,sgi had it for vendor foo unix wars 17:35:22 Yep. 17:37:57 lots of nfs back in the day also, when systems didnt have diskdrives or small disks.. nfs mount from server the local foo 17:38:27 like share var/mail from the mailserver to all the client machines..local mail from nfs mailerserver 17:39:04 sun /export/home export users homedir from nfs server and such..login any workstation have your home 17:39:31 So we can ask polarian's question of you and get your vote. "what is the conventional place to stick root scripts to run as cron on FreeBSD?" 17:39:48 My answer was that ten people will have a dozen opinions. :-) 17:40:12 somewhere it will not get hacked by non root users i suppose 17:40:46 lol 17:40:47 elevation of privilege, security 17:41:23 hardening freebsd says what ? 17:41:55 I violate the rules from hier(7) and for the most part put them in /usr/local/bin or /usr/local/sbin and just pretend that I own my system. I name things such that I am unlikely to name collide with a port. 17:42:13 (CIS, NSA, DISA) all have guides on hardening apps and os's 17:42:15 I also sometimes put them in /root/bin/ depending upon $THINGS. 17:42:47 I don't really think this is a hardening question. All of these directories have the same security level. 17:43:27 rwp: i'm connecting to this freebsd server from a Commodore 128 17:43:51 hjf, And a telnetd install didn't work? 17:44:46 but that would give me a telnet server. this thing doesn't seem to talk telnet. i tried with two different devicest that host telnet and i couldn't connect 17:45:09 i know it can connect to stuff because i can connect to commodore BBSs online. seems these don't really talk telnet but rather raw TCP 17:45:49 i was also able to connect to libera chat, since it can talk IRC too hehe 17:47:08 Though there is a TELNET protocol I rather recall being able to use nc to connect to telnetd okay. 17:47:38 And also it was common to use telnet to connect to things like we would use nc or socat to do today. Using telnet as a generic tcp tool. 17:47:40 yeah; i was going to say there's not much 'fluff' on telnet 17:47:54 you mean using nc as a proxy to telnet? 17:48:17 socat -v TCP-LISTEN:3334,reuseaddr,fork EXEC:"/usr/libexec/getty std.9600",pty,raw,echo=0 17:48:28 this seems to work at least from PuTTY on windows 17:48:43 I would monitor /var/log/auth.log during the attempt and verify that what's failing is what you think is failing. 17:50:59 Since you have such a nice example I must try it... I do. I see that the output goes to the invoking terminal and not to the remote end. Input is coming from the network okay though. I can log in. Which is pretty fun. 17:51:32 Oh, it's only stderr that is still attached to the invoking terminal. stdout goes to the socket okay. 17:54:01 hjf, Modify that command to add stderr option too: socat -v TCP-LISTEN:3334,reuseaddr,fork EXEC:"/usr/libexec/getty std.9600",stderr,pty,raw,echo=0 17:54:03 that was suggested by chatgpt actually 17:55:44 So what you are saying is that I have not yet passed the Turing test myself because I am not yet better than the machine? :-) 17:57:45 do you need to reboot between patch levels? 17:58:07 so going from 14.1-RELEASE-p0 to -p1 should reboot or nah? 17:59:23 It depends upon what has changed. A reboot is always the safest answer because then it is certain that all programs are running the updated code. 17:59:43 But in detail if the kernel was updated (freebsd-version -kr) then you must update to run the new kernel. 18:00:15 If running daemons were updated, or libraries used by those running daemons, then those running daemons might simply be restarted (service cron restart, for example) and no reboot would be required then. 18:08:18 ah that is what I thought, but I was curious because I saw it restarting sshd after patching it and stuff 18:10:53 hm... encrypted zfs... I can't seem to find it in the handbook, I assume you geli both disks and then geli the .eli partitions? 18:12:07 I do not know what automation the system is already providing to restart daemons. It might be doing this for you already. I don't know. 18:12:43 polarian, https://wiki.freebsd.org/MasonLoringBliss/ZFSandGELIbyHAND 18:13:01 oh there is an article on it 18:13:03 thanks :) 18:13:40 In this case RTFM means Read The Fine *Mason* docs. :-) 18:14:49 whats freebsd obsession with "tank0" and "tank1" 18:15:43 I feel that way too. But naming things is hard! 18:16:01 thats sun zfs 18:16:11 they used in the docs 18:16:33 see solaris zfs docs for tank foobar 18:17:51 https://docs.oracle.com/cd/E23824_01/html/821-1459/fscreate-6.html 18:18:06 zpool create tank mirror c1t0d0 c2t0d0 18:18:23 hjf, On the telnetd front I installed it for the first time in many years and poked at it. I see that telnetd has gotten very fancy and now tries to secure itself and all of that security is getting in the way of using a simple nc to connect to it. Even trying to turn all of it off it defeated my simple brute force attempts. Your socat+getty approach seems best! :-) 18:19:28 you could just use busybox binary for telnetd/ftpd/httpd of yore, no inetd needed 18:19:54 rennj: isn't the convention .eli? 18:19:55 i keep it around for my older vm's like nextstep,beos,amiga 18:20:06 thats sun notes from 2004 18:20:17 not freebsd 18:20:57 where tank came from, i was showing the old docs 18:21:16 it was in the guide you sent on zfs and geli by hand 18:21:43 no clue... https://docs.oracle.com/cd/E23824_01/html/821-1459/fscreate-6.html but those docs rock 18:22:08 docs.sun.com was oh so nice..what money buys, good documentation 18:22:16 polarian, The Mason docs I referenced are using the names that were traditionally used in the old days. 18:50:51 so I am making a storage pool, is it bad to just geli the root device and run without a partition table? 19:36:17 rwp: heh 19:37:48 polarian: The original pool names were characters from the Matrix, and I'm particularly fond of "tank" because it's notionally related to "pool" and it contains things, in addition to being a character from the Matrix. 19:38:07 But you can use pretty much whatever you like. 19:38:10 ah 19:38:35 mason: can you geli the disk without a partition table, and then zfs the .efi after? or is it conventional to use a partition table even if its a single partition? 19:39:11 polarian: I wouldn't dream of doing it that way, but I believe you can, yes. 19:39:30 I use partitions exclusively. I prefer GPT partitions so I can give them human-readable labels. 19:39:50 mason: is there any downsides of not using a partition table 19:39:55 zfs is going to eat the entire disk either way 19:40:26 polarian: The commonly noted downside is if you have disks of slightly different sizes, you can get stuck various ways. 19:40:35 If you specify partitions, you can use a uniform size. 19:41:08 Plus, you're going to tend to want partitions anyway. I still don't trust swap on ZFS, for instance, so that'd be better as a gmirror. 19:41:27 And if you're on UEFI you'll need partitions to support your ESP(s). 19:41:46 mason: this is a storage pool 19:41:58 I already have an SSD as a single disk pool for boot 19:42:23 (I dont have another SSD to mirror it, and its not the biggeest deal losing the boot disk) 19:42:47 The other thing I get from always using partitions, and always having them be GPT partitions, is that I have complete consistency everywhere. 19:43:41 meh doesn't hurt just to use a partition table lol 19:45:14 https://github.com/mmatuska/mfsbsd in-memory ram os, Disks? Where we're going we don't need disks. 19:45:47 This minimal installation gets completely loaded into memory. 19:47:28 https://mfsbsd.vx.sk/ 19:52:12 network drives or local drives, just data storage. 19:52:54 das,nas,san foobar, nothing but data. 19:55:09 closed session .iso image have fun with hacking virus/malware 19:56:02 https://en.wikipedia.org/wiki/Evil_maid_attack, https://en.wikipedia.org/wiki/Cold_boot_attack have fun. 19:57:12 encrypted FDE, steal my laptop, better not power it down, perhaps you can get keys of soldered ram... 19:57:47 s/of/off 20:03:49 keystroke logging or video camera while you enter the passphrase + keyfile might get you owned. 20:08:11 I was working on a bastille jail. Then i rebooted and the jail is gone. ls -la /usr/local/bastille/jails/my_jail/root shows dir is empty. maybe it needs to be mounted somehow ? 20:09:20 hmm that jail dir shows up in "zfs list" 20:14:25 why `freebsd-version`14.1-RELEASE-p1 20:16:05 Douglas Adams - Towel Day might save you..from the video camera anyway.. or Xkbd virtual keyboard, unless m$ recall like app taking periodic screenshots. 20:16:28 but they would have to hack the .iso 20:16:57 bah..i don't see any of that as worry 20:18:24 sorry, why does `freebsd-version` output 14.1-RELEASE-p1 but `uname -a` outputs 14.1-RELEASE? 20:21:36 https://forums.freebsd.org/threads/freebsd-version-1-and-uname-1-different.70294/ perhaps 20:22:33 freebsd-version(1) and uname(1) different? 20:23:35 https://man.freebsd.org/cgi/man.cgi?freebsd-version 20:23:48 freebsd-version -- print the version and patch level of the installed 20:23:49 system 20:25:10 Print the version and patch level of the installed kernel. Unlike uname(1), if a new kernel has been installed but the system has not yet rebooted, freebsd-version will print version and patch level of the new kernel. 20:27:55 i've rebooted after upgrading but still `uname -a` prints without the patchlevel1 20:28:56 You need to reboot, uname(1) shows the active kernel, freebsd-version(1) greps the kernel on disk. If freebsd-update(1) shows a newer version than uname(1) it means the old kernel is still active and the new kernel hasn't been loaded yet. 20:29:12 no clue Qual 20:30:29 still running the old kernel i guess.. 20:30:36 yep still 20:30:45 anyways thank you rennj 20:31:10 np 21:20:16 Bo Burnham - Welcome To The Internet --> https://www.youtube.com/watch?v=k1BneeJTDcU 21:24:13 penelope scott - rät - https://www.youtube.com/watch?v=KqyXvMrQDk8 21:24:32 my old ass feels modern...