03:59:53 It seems that by default syslogd is configured to listen globally on UDP port 514. That's fine on a LAN. But on the hostile public Internet seems less than good. 04:00:12 I decided I would add something to my standard configuration. syslogd_flags="-b ::1 -b 127.0.0.1" 04:01:04 That tells syslogd to listen only on the loopback localhost device keeping it inaccessible. That's probably a better default since most people probably don't fling remote logging packets around. 04:01:23 And if someone does want remote logging then that is easy to configure when it is desired. 04:02:08 I know I should always have a firewall up in order to block things like this though. This is just something I found that I think is worthy of a mention because sometimes people don't have firewalls in place. 04:02:53 sockstat -l | grep 514 04:32:31 netstat yes...bsdsockets/tcpip ip:port 04:32:48 how you get owned..open ports 04:32:58 see /etc/services... 04:35:45 ronnie cuber - passion fruit. jamming 04:37:04 i was talking about bsdi sidewinder firewalls other day.. 04:37:35 https://en.wikipedia.org/wiki/Secure_Computing_Corporation 04:41:09 Dizzy Gillespie- Tin Tin Deo (1951) ...rocking 04:45:23 . 04:52:15 _xor: one gotcha with using "openssl s_client -connect IP:PORT" is that more often than not we also need to add "-servername" for SNI. 04:55:59 ibm sni 04:56:13 that like back in token ring days... 04:56:29 https://www.ibm.com/docs/en/i/7.4?topic=concepts-server-name-indicationsni 04:57:23 hmm sna 04:57:30 my brain fart 04:57:41 sna and sni..trigger 04:58:12 https://en.wikipedia.org/wiki/Systems_Network_Architecture 04:59:00 don't get old kids! 04:59:13 haha 05:12:37 ... funny, as I went away from the keyboard I thought, "I should have spelt SNI out" 05:13:37 acronym shit is what it is. the industry is full of it 05:17:05 drunk irc doesn't help, 05:17:17 discord/matrix kiddies... 05:19:10 Larry Finger 84 years old still hacking. died 05:19:24 doing realtek junk 05:19:32 madwifi/atheros was better 05:20:14 ndiswrappers vs madwifi 05:22:56 good for him, hacking code @84..the commit logs 05:23:55 pooping in diapers and painting art with it...could always be worse. 07:25:13 Sorry for the many joins, my server was acting up. 07:58:20 do people still not ignore joins and parts? 07:58:27 its life-changing 08:03:57 +1, have joins/part/quits on ignore since forever 08:06:59 The people over in #c apparently don't, because they soft-banned me. But I got unbanned again, since it's just bot-based. 08:14:58 it depends on the rate 08:15:21 you're still receiving the join/part, so someone could flood via that and slow down the network 08:15:46 but that would require A lot of rejoins 08:35:49 remiliascarlet: you can get a free tiny vm from oracle, and irc from that 08:36:32 rtprio: Why should I? 08:37:23 I've been running my own server farm for years with no issues. 11:53:32 Hello, all. While reporting a bug via bugs.freebsd.org, which component should I specify for a bug in the text-mode installer UI? 11:54:26 ...I tried filing a bug with the base system, but the installer component is not listed. Should a choose `bin' (All other sources) or `misc', maybe? 11:54:37 haha 11:54:53 yo bonjour 11:55:28 Good morn, VoidKrypt. Glad I gave you a laugh. 11:56:02 * |cos| did a quick search for "installer" on bugs.freebsd.org and there seems to be roughly eaven beard between between bin and misc. 11:56:04 you know about antcoin? 11:56:37 A head-up: I have no SSL, and the internet connection is bad here, so I might end up in the overflow channel again and miss all the fun. 11:57:10 |cos|, what is an even beard :-> 11:58:27 <|cos|> It's a Swedish expression which apparently doesn't translate, meaning evenly distributed. 12:00:35 <|cos|> (or maybe rather a contest having no clear winner, but same same) 12:03:09 VoidKrypt, Nope, I know several fellow ants, including one The Ant: . 12:04:04 <|cos|> My uninitiated answer is otherwise the same as on #freebsd-irc; If being able to determine roughly where in the code the bug is the category might become more clear. If not, a wellphrased bug description is likely more important than the classification. 12:04:12 It was probably invennted or inspired by a guy with a beard growing very evently around his chin. 12:05:12 Yeah, OK. I will file under bin, I suppose. No screenshot, unfortunately, because at the installation stage I can hardly make them, and photographing the screen is... infantile? 12:05:42 Thank you for your unitialized anwer, |cos|. 12:07:06 VoidKrypt, can I ask here about the think I just got from you? 12:07:10 * thing 12:07:38 * May (`can' being about ability, rather then permission) 12:25:51 I need help with terminology: what is the term for the text in the installer's keymap-selection window saying: "Press arrows, TAB, or ENTER"? 12:34:40 Hello. I would like to know if there is a way to completely de-blob FreeBSD even if I am running on a machine that uses propietary components. 12:57:50 Does https://bugs.freebsd.org have a page where I can view all the bugs I reported? 12:59:17 I had hard time finding it: can be achieved via search, where reporter should be specified as e-mail, not full name. 13:56:14 On this page: Bugzilla offers me to save the search under an arbitrary name. But where is the Save button? 14:08:35 Do I need SLAAC (Stateless Address Auto Configuration) on a non-server personal PC? 14:19:09 if your network is managed by slaac you want it enabled and it is the default for ipv6 networks 14:20:40 nimaje, Is this some analog of DHCP? 14:30:31 it does ip address assignment (so the main use of dhcp in personal networks) in a stateless maner (so no need for some server) 14:31:43 I see, thanks. 15:11:03 Upon installation of xfce, I received instruction in stdout about enabling shutdown and reboot. Where are they stored, so I can read perulse them when needed? 15:13:41 I am referring to these insturcitons: . But in my case they are not printed by: pkg info xfce4-session 15:15:46 The pgk man-page seems incomplete: . The `info' command is nowhere documented, but mentioned in the Examples section. Am I missing something? 15:18:26 ...the commands are listed in pkg.8 . What is the difference from pkg.7 ? 15:51:04 look at the pkg-* man pages 15:57:39 Yes, I did't expect it because pkg did not mention pkg info. 15:59:05 I found the instruction via pkg info -D xfce4-session 16:18:09 What is the vi way of selecing a set of consequtive lines? In Vim, I used the visual mode (V). 16:21:49 selecting for what purpose? 16:23:08 jgh, to delete, or yank. 16:24:58 if you can count them, sit the cursor on the top one and then "5dd" to delete 5 lines, or "5Y" to yank 5 lines (choose number to suit) 16:26:19 if not... put cursor on the first one and place a mark: "ma". 16:26:27 then move to the last one 16:26:56 then "d'a" to delete, or "y'a" to yank 16:27:36 26 marks are available, using letter names 16:30:19 jgh, I know the way of counting, but thanks for the bookmarks reminder. I used them for navigation, but never for manipulating text. 16:31:39 How do I install the `intel' video driver? The manual says it is i915kms, but pciconf does not mentioned anything with `915' in it... 16:33:11 Xorg log says it cannot fails to load the `intel' module. 16:36:32 you want modesetting, not intel, load the i915 kernelmodul before starting Xorg 16:45:01 I was following the manual: 1) pkg install drm-kmod 2) sysrc kld_list+=i915kms . After this, I still get the error that Xorg failed to load the module 'intel'. 16:51:21 Hey, I had to restart the machine for it to work. Didn't know, the manual didn't mention it. Those who know what kms is, would know... 16:58:15 you just needed to load the kernel module, sysrc just adds it to /etc/rc.conf, so it will be loaded at the next load automatically 17:00:15 No the empty X11 starts. How do I make lightdm start? Was the installatio order important? I installed xfce, them lightdm, them X11. Had I better reinstall them in the correct order? 17:03:44 you have to enable lightdm, why would it run, just because you installed it? 17:04:10 I enabled it with sysrc. 17:04:40 Enabling it makes it start at boot 17:04:46 The manual says I have to use a greeter or autologin. I did not install any greeter and am trying to configure it for autologin. 17:04:59 vkarlsen, Yes. It does not start at boot. 17:06:20 ant-x: Have you tried starting it with: service lightdm start? 17:06:21 lighdm start fails to get a list of logind sears. The name org.freedesktop.login1 was not privided by any .service files 17:06:59 vkarlsen, Shall I invoke it from an already running X grahical interface (which I got by startx), or from the textmode terminal? 17:07:17 ant-x: From the terminal while X is not running 17:07:21 OK. 17:08:39 This gives me an error that my .Xauthority does not exist. There indeed is not such file in my home directory. 17:19:41 After reintalling lightdm, `service lightdm start' writes: Starting lightdm, and nothing happens. 17:21:33 lightdm.log contains the same thing that I quoted above: falied to get list of logind seats:... The name org.freedesktop.login1 was not provided by any .service files. 17:21:50 Can this be caused by the absence of a greeter package? 17:24:01 more likely a missing runtime dependency (on something else, not a greeter) or dbus not running 17:24:39 How can I check whether a service (dbus) is running? 17:25:32 `service dbus start' says: dbus already running? (pid=1441) 17:32:25 nimaje, after installing lightdm-gtk-greeter, I got into lightdm, but it asked my login and password. 17:33:09 Asking you to log in sounds like what lightdm with a greeter is supposed to do 17:33:31 vkarlsen, But I did all I could to enable autologin in lightdm.conf. 17:34:02 Funny thing, lightdm shows an unmounted 16 GB volume, which is my swap. Is it right? 17:40:47 I don't know, I've never used lightdm 18:23:03 so for a unix domain (file) socket, the server does socket(); listen(); and when it gets a connection request, accept();? Just like IP sockets? 18:23:26 yup 18:33:55 @circuitbone that's the crappiest looking fluxbox I ever seen work on that ass bitch, transparent terminals, transparent tilda, conky nice wallpaper at very least 19:21:47 I have a number of linux and freebsd machines in my network and I'm trying to mount some common things in all of my homedirs. Once upon a time NFS was the solution for this (small network, GigE). I'm wondering if this is still sufficient for multiple mounts of network shares 19:22:45 followup question, then. I have this EV_SET which I put in my kqueue. I also added an EV_TIMER event, which I am getting, but when the client connects, This EV_READ doesn't fire. 19:22:47 EV_SET(&kev, unix_socket.socket, EVFILT_READ, EV_ADD | EV_CLEAR, 0, 0, NULL); 19:22:52 what makes you to think, it might not be enough?;) 19:23:44 I NFS mount /d// and then I use symbolic links where I need them. 19:23:46 heh, NFS bit me long ago and I have never recovered :) especially with workloads that generate or touch lots of small files :) 19:24:26 nb: putting the NFS links down a couple makes having an NFS server down less painful. 19:26:03 Well... and locally I'm still using NFSv3 (because I'm too lazy to spin up kerb at home) enabling FreeBSD's NFS extensions makes it pretty painless... dunno about linux. 19:58:53 hey folks 19:59:01 IPv6 gurus, are you around? 19:59:22 I have a FreeBSD host with a /64 assigned to wg0, I also have a wg0 peer with /128 assigned 19:59:39 but the GUA is not reaching the peer because NeiSol is not responded by the host 19:59:49 I assume I need some kind of NDP Proxy, or something similar in base 19:59:50 that's not how you do that. least not with /128 19:59:55 any thoughts? 20:00:04 zBeeble thoughts? 20:00:24 so my home net is 2005:1999:1::/64. router is ::1 and my benchtop is ::9. 20:00:41 so ifconfig on the router would have 2005:1999:1::1/64 20:00:49 aha aha 20:01:04 ifconfig on the benchtop would have 2005:1999:1::9/64. 20:01:20 zBeeble even if it's a WireGuard peer? 20:01:34 The would also have fe80 addresses (link-local). 20:01:39 wireguard? 20:02:01 I assume this is something that _pretends_ to be ethernet? Then you do the ethernet thing. 20:02:29 zBeeble ah no, WireGuard is p2p, so ethernet things would not work 20:02:43 PtP on v6 is odd. I actually run an ISP. AFAICT, I _only_ allocate link-local to the PtP L2TP link ... but it works. 20:03:27 ok. Then you probably don't put a /64 on wg0. 20:04:12 On my PtP links, I have here: fe80::a236:9fff:fe17:ba10%ng0 20:04:26 ... assigned. You can ping that across the link but nowhere's else. 20:05:01 I suppose on wireguard you could have a /64, but both ends would still be a /64. You could also technically have a /127 or /126 20:05:20 ... or you could just put a /128 on lo0 and route that over the wireguard 20:05:46 zBeeble I'll that that now. thanks! 20:07:07 route -6 add 2009:1999:1:1::1/128 -iface wg0 20:07:20 I'm working with a different PtP with v6, and that has /128 for the global addresses and /64 for the link-locals. Each endpoint has multiple link-locals that don't define the opposite point. 20:07:54 I _think_ on v6, link-locals are also link-discoverable. 20:08:12 at least... the mpd5 config for the LAC is pretty minimal 20:09:08 ... almost nothing about v6... the link locals are automatic, and then routes come up --- no link addresses are globally routable. 20:10:22 Yes. This setup has the automatic link-locals, but rather than making any effort to discover the opposite points, they also have static assigned ones: fe80::1/64 and fe80::2/64 20:11:00 I got around that by just using -iface to put in the route. 20:11:06 Since they're /64, they don't specify the PtP destination. 20:11:45 ie: route -n6 add $route -iface $interface 20:12:12 Routes involving the PtP link call the assigned fe80::1 and fe80::2. 20:12:40 where in my case, $interface is set by mpd5 calling the script and $route is set: route=`psql -tA --user mpd5 -c "select value from radreply where username = '$authname' and attribute = 'Framed-IPv6-Route'" radius 20:13:32 tmp_: yeah. as-I-said ... you can just use -iface ... 20:18:03 In this case: ipv6_defaultrouter="fe80::1%ptp0" 20:21:12 * circuitbone adds another one to his special list 20:43:29 I have never done it that way. 20:43:52 ... always with route -iface. How do you decide the '1' ? 20:47:16 Hmhm. Is https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=262770 still a thing? No updates in 2+ years for something somewhat important afaict. 20:47:52 Or, more specifically, will I bump into this too when installing a mirrored 14.1-RELEASE? 20:51:49 easy to check when you do it. 20:52:03 You could be fancy an gmirror the EFI partition ... heh. 20:52:30 (the installer really should, TBH) 20:54:06 OK... Back to my problem. Server started kq, and has a EVFILT_TIMER that works. Then it creates a unix socket -> socket(), bind(), listen(). Then it says: EV_SET(&kev, unix_socket.socket, EVFILT_READ, EV_ADD, 0, 0, NULL); 20:54:14 Easy to check indeed. Fixing it though... funky stuff for my first fbsd install in 15+ years. :°) 20:55:15 Alver: dd if=/dev/ada0p1 of=/dev/ada1p1 20:55:43 or gmirror create /dev/ada0p1 /dev/ada1p1 20:56:20 zBeeble: reading up on it indeed. The syncing is not the issue really, it's telling UEFI that the second disk is also bootable. 20:56:57 (and keeping that nicely up to date automatically, and not rely on my swiss cheese brain to remember to do it manually every time) 20:57:07 ... anyways... client also sets up kq, then calls socket() / connect() ... server does not wake up with the associated kevent ... only the timer. 20:57:32 yeah... dd will do that. gmirror is just FreeBSD fancy. 20:57:49 and it does the latter nicely. 20:58:35 urm... so full disclosure, creating the mirror will do things, but you'll need to put geom_mirror_load="YES" in /boot/loader.conf to make it happen again and again. 21:00:14 and that would be gmirror create efi_mirror /dev/ada0p1 /dev/ada1p1 ---> which means you'd mount_msdosfs /dev/mirror/efi_mirror /efi (or somesuch) 21:01:16 (I often leave the EFI partition mounted) 21:09:46 nah, I still see "neighbor solicitation, who has 2001:19f0:5000:11bb:dead:beef:0:32" on my WAN. my host and peer can see each other tho 21:44:37 seriously: does the EVFILT_READ kevent not fire on listen() sockets? 21:58:19 perhaps can-accept != can-read ? 21:59:37 okay, I configured ndproxy, and it worked fine 21:59:48 but I thought that FreeBSD's ndp was supposed to proxy 21:59:54 instead I got that error 22:00:02 wait, lemme find the error 22:24:49 barg. was my own damage. 22:41:33 If I have a zpool where the root ZFS set was named zssd and I made another set called zssd/var, had zssd/var's mountpoint inherit from zssd and had zssd mounted to /mnt/sdd-temp, moved a bunch of stuff from /var to /mnt/ssd-temp/var, then later changed zssd/var's mountpoint to /var (after umounting the old /var), what could cause /var to not contain all the data but if I remount zssd, I can see the data from that mountpoint? 22:46:06 you really gotta just look at df and figure out what's mounted. 22:46:27 NB: if two things are mounted on /var, the lower-down in the list of df is the one you're using. 22:46:47 (that is you can mount a disk over data on another ... and the newly mounted disk takes precidence) 22:47:45 But to approach your question, there's about a half dozen ways to achieve that depending on what other commands you ran or what commands you ran to achived what you did say. 22:48:26 When I was moving stuff, it was going from /var to /mnt/ssd-temp/var, basically doing `mv -v /var/ /mnt/ssd-temp/var/`, and I saw it moving to the correct directories under /mnt/ssd-temp/var. 22:48:57 And I have a few datasets under zssd/var (like zssd/var/run) and it looks like /var/run has valid data. 22:50:06 I do notice that when zssd is mounted to /mnt/ssd-temp, /mnt/ssd-temp/var/run is empty, while when zssd/var/run is mounted as /var/run via zssd/var's mountpoint being /var, it is populated. 22:50:54 I am pretty sure I had zssd/var set as implictly mounted, but now I am suspecting maybe I did not have it mounted at all. 22:56:11 If you moved files from /var to zssd/var and then mounted zssd/var on /var then all of those files should be there. Any other result does not make sense to me. 22:56:43 But yes layers of mounts have often been a source of confusion. In a stack of mounts the "topmost" mount is the one seen. 22:57:13 But if you moved the files and saw them in the new destination, and then mounted that new destination at /var, then all of those files should be there in /var. 22:58:16 I'm thinking that zssd/var was not mounted, but I am wondering how even the implicit mounting of it would've led to the files only being in the root zssd set and not in the zssd/var set. 23:11:01 It especially confuses me because if zssd/var wasn't mounted properly and all the sets I have under zssd/var are set to implicit mountpoints, why did those ones get their contents mounted properly while zssd/var didn't? I had moved their contents (well /var/run because that was the only one with actual data) over just like all the others.